76eb77c59776214767b0600c1b5463b24ef417f4a6bb3acaeeef95978c542a8f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

76eb77c59776214767b0600c1b5463b24ef417f4a6bb3acaeeef95978c542a8f
Size

45KB
MD5

2b94353f31d0bac7856a709456009206
SHA1

d7f20afaf14c8e868ee3f1f6ff2ecd174a7f9438
SHA256

76eb77c59776214767b0600c1b5463b24ef417f4a6bb3acaeeef95978c542a8f
SHA512

2b2dbee7bfe265c0998448e7ef25a2e85d9f20837ea84cc6acc2027ddc3816cfedd1e0a1667b7d2fac5c4fd7b6f7713ab7895c657fb0b3a2e3e1a32c3784a9bc
SSDEEP

768:KxTn+2Wx64f3UomXbFllhpYJxyG6AsamtJvZyz0SOp:KxT+2W5koebFllhpYJxh6laMoYSOp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
76eb77c59776214767b0600c1b5463b24ef417f4a6bb3acaeeef95978c542a8f

Files

76eb77c59776214767b0600c1b5463b24ef417f4a6bb3acaeeef95978c542a8f
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Administrator\Desktop\Test\TestPotato\TestPotato\obj\Debug\TestPotato.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ