ext-ms-win-domainjoin-netjoin-l1-1-0[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ext-ms-win-domainjoin-netjoin-l1-1-0.dll
Size

4KB
MD5

cf55da045355fb9fc609b282d1c2c35a
SHA1

346c3a0a2d49f57578442371327a98d85cfeda12
SHA256

d8bd9947614bf7abb9dbbedb24a85f3582f9d9fb986a04c34a2a8786e0934c41
SHA512

6fa351ef216910c90867c8a5968cac5ef999dd3df83fb0db43fa9c5ec4a11b902882cb28cf88aed68fbdbcf8a2b717f4cceb132c28fea4e3756a023577d93d83

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ext-ms-win-domainjoin-netjoin-l1-1-0.dll

Files

ext-ms-win-domainjoin-netjoin-l1-1-0.dll
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

ext-ms-win-domainjoin-netjoin-l1-1-0.pdb

Exports

Exports

NetSetuppCloseLog
NetSetuppOpenLog
NetpAvoidNetlogonSpnSet
NetpChangeMachineName
NetpCheckOfflineLsaPolicyUpdate
NetpCompleteOfflineDomainJoin
NetpContinueProvisioningPackageInstall
NetpControlServices
NetpCrackNamesStatus2Win32Error
NetpDoDomainJoin
NetpDomainJoinLicensingCheck
NetpFreeLdapLsaDomainInfo
NetpGetJoinInformation
NetpGetListOfJoinableOUs
NetpGetLsaPrimaryDomain
NetpGetMachineAccountName
NetpGetNewMachineName
NetpIsSetupInProgress
NetpLogPrintHelper
NetpMachineValidToJoin
NetpManageIPCConnect
NetpQueryService
NetpSeparateUserAndDomain
NetpUnJoinDomain
NetpValidateName

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ