PoksMenu[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

PoksMenu.dll
Size

17KB
MD5

fa3862d3f83bd83387d2b16bd52d34cc
SHA1

6e13126f629fd9e8aab9a8d528a804fe7b3d91b1
SHA256

b4c2fbba5e6c601030f0e063781efc39c62084415fbf95e92a927ba7c5bb9e82
SHA512

8c0779d39919a7e52b9a1820319c5ca2c24cc487812d8ea08f021505a69b0c4aaceddcfb916054d9d333fc92d28f91ba17f51d47115c5237939b99d4c689ffe7
SSDEEP

384:FRi3ah7isumdCl+0b3U4lFjmPanX9DNHOVCB/:equslCtbE4lFiIzu4B/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PoksMenu.dll

Files

PoksMenu.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\langs\source\repos\higuys\higuys\obj\Debug\higuys.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ