Static task
static1
Behavioral task
behavioral1
Sample
App_Web_b67b0821-49ef-6aa8-844a-ff00009b11c6_redfolder.aspx.d63928b6.x8hoc2du.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
App_Web_b67b0821-49ef-6aa8-844a-ff00009b11c6_redfolder.aspx.d63928b6.x8hoc2du.dll
Resource
win10v2004-20240508-en
General
-
Target
App_Web_b67b0821-49ef-6aa8-844a-ff00009b11c6_redfolder.aspx.d63928b6.x8hoc2du.dll
-
Size
16KB
-
MD5
09efa95de0d05e2b18789a313febbc31
-
SHA1
b2ea84ee96cf495eea6ea2ae5c0d9f5419d111c7
-
SHA256
f44b9dfe6cd8fa2aa1bdead50ab14f5c5cd7e01757dd1b08bc956cae11f00822
-
SHA512
d10ae45a13f2f314a9f73d8515f6bcafa894a0e27e4d8d2f8dcb423c77720a1a3cdcfbe4e7b4cfe262563e47db898ceb8f40ae5259741bbb6a93927462109401
-
SSDEEP
192:kfYg3dxUNeHAQsc2WncAgEg/Fd/VpXsgCFFQ43I2703/86J2zn5oMNq9u59:kV3dxUNe9DOL/V44qI2K59u59
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource App_Web_b67b0821-49ef-6aa8-844a-ff00009b11c6_redfolder.aspx.d63928b6.x8hoc2du.dll
Files
-
App_Web_b67b0821-49ef-6aa8-844a-ff00009b11c6_redfolder.aspx.d63928b6.x8hoc2du.dll.dll windows:4 windows x86 arch:x86
dae02f32a21e03ce65412f6e56942daa
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
mscoree
_CorDllMain
Sections
.text Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 952B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ