814dfaa681ef30a2357565c3a8d67968b9055bf42cdf2d4f30d83129c1c95415 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

814dfaa681ef30a2357565c3a8d67968b9055bf42cdf2d4f30d83129c1c95415
Size

14KB
MD5

aa7a81f197e2b7d8b68d536f9a701cb2
SHA1

865a33c7d6ca78347728a530c17fbdf5b6a560b2
SHA256

814dfaa681ef30a2357565c3a8d67968b9055bf42cdf2d4f30d83129c1c95415
SHA512

d7d04e823b4cbd5cdd3d2661817a6fac0c011724857ab8925faf58c664c76eec13f0ae90762b4a3ec12217553bba7b0a8054630e212cbe51389a14048c6df285
SSDEEP

192:mkhFh1SKF4kUcJM3cNLIlQwoIhajdbrfQ8cWgIq+DBwbYMRxWtuewRUHGnLz:Fhfh+vo5ZkW7TViYMRQyRUH4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
814dfaa681ef30a2357565c3a8d67968b9055bf42cdf2d4f30d83129c1c95415

Files

814dfaa681ef30a2357565c3a8d67968b9055bf42cdf2d4f30d83129c1c95415
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\maxik\OneDrive\Рабочий стол\проектусы\round\Rounds\Library\Bee\artifacts\1900b0aE.dag\PhotonUnityNetworking.Utilities.PhotonPlayer.Editor.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ