iis_Stupid_Menu[.]dll | Triage

Sharing

General

Target

iis_Stupid_Menu.dll
Size

705KB
MD5

52ac8f339c5cff9996d6133330c1ddc7
SHA1

b3f62244b8ba22e3134ebf1793b87c3b7d63a21f
SHA256

2e9ce15dd72d9b41e2d52d8c2dd2833f4a91e9ccbeed059524d72dedeea7e654
SHA512

b1a9e378250353855cae93ac97a9f8ed88967f26b9fc95f04bfa5221ec842376f15b9c56dfadb04f508b196c23a4f7626ff79e43574fc3cb287a13bd9f9c6054
SSDEEP

12288:5hbz8ze4PZkCk5n6QHbRKDGDeT7Pc5XKnx8I:jzEXPXk5nZHbQSKOMx8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
iis_Stupid_Menu.dll

Files

iis_Stupid_Menu.dll
.dll windows:4 windows x86 arch:x86

Password: e

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Grayson\Desktop\Gorilla Tag Mods\! ii'sStupidMenu\obj\Debug\netstandard2.1\ii's Stupid Menu.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 703KB - Virtual size: 702KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ