Sleepy_Client-V1[.]1[.]0[.]dll | Triage

Resubmissions

01-06-2024 03:48

240601-ec26asgh6w 3

01-06-2024 03:43

240601-ead1pahd34 3

01-06-2024 03:34

240601-d4y3aaha98 3

01-06-2024 03:31

240601-d3ebgsgd4s 3

01-06-2024 03:15

240601-dry7hsgf23 3

01-06-2024 03:12

240601-dqbd3age57 4

01-06-2024 03:10

240601-dn1wyafg6y 4

01-06-2024 03:09

240601-dnmpbafg5w 3

01-06-2024 03:08

240601-dnb8ksfg4w 3

Sharing

General

Target

Sleepy_Client-V1.1.0.dll
Size

227KB
MD5

e1e1b60e42260feb2b050f65d5de94ae
SHA1

8a319cb46853a11efc52cf7293c764909c3cdbef
SHA256

f41a447f673c34d7fc2bae1f60ba0f3a5608443dfff491179109bb0de393a3dd
SHA512

8d20957dc9dd6749828f78bf5c3a60b1d0ef531d7a1ac096f59f24eaba235a22c7b992d365a233006579e0a27ee98115ec0d16e0ede51a1c8782f653eeba720e
SSDEEP

6144:ezu8YpgkQeOAVu2uRuaujfefNo4rKZzQI9:ezuPpgkQeOAVu2uRuaujWfNo4eZF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Sleepy_Client-V1.1.0.dll

Files

Sleepy_Client-V1.1.0.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\pa\Desktop\Parrot\backup\obj\Debug\MalachiTemp.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 224KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ