ddde848509bbe733484e4eca8b1257218688fa68d1febf6d2a92e80375dbbd81 | Triage

Sharing

General

Target

ddde848509bbe733484e4eca8b1257218688fa68d1febf6d2a92e80375dbbd81
Size

123KB
MD5

9fdaa92e8e04f5144e3953d2ff3a060d
SHA1

b492001cff8c1301f3a33ec2dbdfe053f88de499
SHA256

ddde848509bbe733484e4eca8b1257218688fa68d1febf6d2a92e80375dbbd81
SHA512

ea3db6a2d0bd569f9df303c3c28a079b3be3e4230f5bf7032499490fa52e6d5d72021f28789fcb8a273acb6bfaff3d0673666ac5f67686622f0957fbe0f18bf0
SSDEEP

3072:KUnA9y3BEv9Dxb4wheWKNHnMywACfCUfqeCoWYc:NnA2BEf4wViHnMzxCwdWYc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ddde848509bbe733484e4eca8b1257218688fa68d1febf6d2a92e80375dbbd81

Files

ddde848509bbe733484e4eca8b1257218688fa68d1febf6d2a92e80375dbbd81
.dll windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Exports

Exports

entry

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ