WinProj[.]dll | Triage

Sharing

General

Target

WinProj.dll
Size

1.9MB
MD5

aef11dcf11e0eb85b6f43a54edf14187
SHA1

e4f6d64ff0737956e5dc9c8979c4c3adc5270527
SHA256

9285382223a0bb5e3d7fbb9713be9d7afb6a101f5bae346af6f56beccecf0c07
SHA512

0f150e2379ed23b5a5fb541aae2d98850cd880e1c1d7376ee71a77fabaf7bc5b3142522dbebaff101e71857d5863047a4279654d0e7bdd2bfcb6322ad8c29819
SSDEEP

49152:pKvt3iI1Oqp51PIf7/G2WX86sdcGkZFbjToEAjcrnboOUfA5:4tSI8Ay71y8NdkfjToEAYrmfA5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Device/HarddiskVolume3/Backup/02-07-2024/EVS/CentralComputer/WinProj.dll

Files

WinProj.dll
.zip

Password: Sentinel1!
Device/HarddiskVolume3/Backup/02-07-2024/EVS/CentralComputer/WinProj.dll
.dll windows:6 windows x86 arch:x86

Password: Sentinel1!

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

??0CWin32Project1@@QAE@XZ
??4CWin32Project1@@QAEAAV0@ABV0@@Z
?fnWin32Project1@@YAHXZ
?nWin32Project1@@3HA

Sections

.text
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2.1MB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
manifest.json