2ce57161c8749e7db23ccc7e723366481fd5ce5217aedf1a9e582a9f7d7c5420 | Triage

Sharing

General

Target

2ce57161c8749e7db23ccc7e723366481fd5ce5217aedf1a9e582a9f7d7c5420
Size

162KB
MD5

2c6e5d323cb7d20551dcf18d51a69ff9
SHA1

3cae28582aad56ae7e3f2b15836a536a57fd12f8
SHA256

2ce57161c8749e7db23ccc7e723366481fd5ce5217aedf1a9e582a9f7d7c5420
SHA512

23de55e384098292fe0ec3e2eb699985d95a9838aae498e0d00500f4c4163d789496fd9e550d850414bd5fbb02d4ade97f6067c5232302a190badeb0db75d29a
SSDEEP

1536:9+BRZF4U6b46j25hc0d7TFTF6McOeHj7qvfyOro0V+hLn+HC:u+j25hZlhTF63OeHj7qnxrou+pn+i

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ce57161c8749e7db23ccc7e723366481fd5ce5217aedf1a9e582a9f7d7c5420

Files

2ce57161c8749e7db23ccc7e723366481fd5ce5217aedf1a9e582a9f7d7c5420
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Virtek.ApplicationFramework.UserAccess.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.sdata
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ