41d7f95754028263a40d6b973d5959aecbfef69f5ecb3d0e1d591851e3a8ae01 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

41d7f95754028263a40d6b973d5959aecbfef69f5ecb3d0e1d591851e3a8ae01
Size

283KB
MD5

0d229536b00e326ca1f86856234bba1e
SHA1

c599cc7c92b102a92ba5f2ce6219215864225a44
SHA256

41d7f95754028263a40d6b973d5959aecbfef69f5ecb3d0e1d591851e3a8ae01
SHA512

18fa38483160982e9ee3a80e90496bb1b609130db88937bfbe2bccf0aed8462d6e1f7ca448045ec6fad40cfc73cc4ebfb5e5cd1ed1217b6851872ba8f7c85164
SSDEEP

3072:sxAJL46sOeue8Ryzd6T6YHPY4/pRHPURleJi58mfKMHK+dNKqIcp7dHPcy2fxX:sKJL4U5RyR6nFzcRlHjfKEXNdi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41d7f95754028263a40d6b973d5959aecbfef69f5ecb3d0e1d591851e3a8ae01

Files

41d7f95754028263a40d6b973d5959aecbfef69f5ecb3d0e1d591851e3a8ae01
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\!!!My_Work\!!!_MyProjects\!_MaxPlugins\!_NET\ProjectManager-v3\Manager.Forms\obj\Demo\Kstudio.Manager.Forms.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 281KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ