7252cb8650cde35741b390541e4ccf7966d0892f305f38e604be4ceda11c8964 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7252cb8650cde35741b390541e4ccf7966d0892f305f38e604be4ceda11c8964
Size

12KB
MD5

23d7f4d0997549e9d312f7545f43344d
SHA1

dc016b5f7390142ae51448f0247b188575a39db9
SHA256

7252cb8650cde35741b390541e4ccf7966d0892f305f38e604be4ceda11c8964
SHA512

f6eed0e5e6bf029578a5ca3147a77a9e0a650507d42ff44351de7d83c17b40f2cfc0fb57a7eef4ee4181e10ce7a7426b0f059febe67f49c232ce4f6cec67f1ce
SSDEEP

192:QXQ/5vORd3swcR6U0PVMXNilDuarPbCy7c8Cip84wz6FsOw:QXQ/5vORd3fcR6UeVMX4g2Cuc8CiXw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7252cb8650cde35741b390541e4ccf7966d0892f305f38e604be4ceda11c8964

Files

7252cb8650cde35741b390541e4ccf7966d0892f305f38e604be4ceda11c8964
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\gus33\Documents\GitHub\WOA-Device-Manager\Fastboot\obj\Release\net6.0-windows\FastBoot.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ