04fe01b67dc6e139db54956d0558a7eaea60d33046cd3561e94bc130c55c2687 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

04fe01b67dc6e139db54956d0558a7eaea60d33046cd3561e94bc130c55c2687
Size

942KB
MD5

c2a7a40efcde2be085ee90f4dd3aeb04
SHA1

68d05f27a7cef1e9124b54c0162919b763b6dd8c
SHA256

04fe01b67dc6e139db54956d0558a7eaea60d33046cd3561e94bc130c55c2687
SHA512

1f0335200f169456a02bbc2782220a2926d1db9692b9038298672f948b348da6d1e5215f700379c1da1477df6350eabefa4cd04716ca494a2e6aa6efd56bf888
SSDEEP

24576:tGoKkE/W3ij/GLARxZKSeLxG9VQwBEUVY:thE/W3++6ULxG9VQwBEL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04fe01b67dc6e139db54956d0558a7eaea60d33046cd3561e94bc130c55c2687

Files

04fe01b67dc6e139db54956d0558a7eaea60d33046cd3561e94bc130c55c2687
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\epic1\VRTest\Temp\Unity.InputSystem.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 940KB - Virtual size: 939KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ