Ninez[.]pluh_TEST[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Ninez.pluh_TEST.dll
Size

58KB
MD5

d9fc80a740abb7bdbab9159c357bc03e
SHA1

6ccb8c328835f6225cf6e250ebd4ade16b0f5121
SHA256

04108bcb5a1a21b2416aad52b01d7f44a106bf2517f3f73a9c20ba66e002a3cc
SHA512

d7dcfcbd2f1519860fa8f692278bfae13398f3359c94d400350ce0e98b2847a592c40f04aeafde190a356c6ca941883dfb064c63d432d61e662e38e1f169d382
SSDEEP

768:x+WumfRm47uEYrVomexT2UGlYYYY5K6KkJKXybnpFsWfa8WhP2n8n:x+WumomqoLxT2UKYYYYNKkKypPfz8n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Ninez.pluh_TEST.dll

Files

Ninez.pluh_TEST.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Bentl\Downloads\ShibaGTTemplate_1_1_6_1_-_Copy\ShibaGTTemplate_1_1_6 (1) - Copy\ShibaGTTemplate\obj\Debug\ShibaGT Template.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ