CovidClientV3[.]dll | Triage

Sharing

General

Target

CovidClientV3.dll
Size

24KB
MD5

80c7e70dfc09d49259509f2bb99cbde3
SHA1

43a6fee2613f3931d372d64c0cd5ad1f7de3d905
SHA256

7a43f9965c712f8051cbb2ac70af2cb80eeee7ea6fbc74035b45d246609afa62
SHA512

ed1b396a1f37d229f3cb519e06e1b8c182a8f5c6abd04267cb42a709ecd5e828c81b7eaf96620acbad5e1f3a463e79a3e79ad7a9b9e32722fa24daedf4794080
SSDEEP

384:86Vv4kLk4+Fh8kRKOaKgewWtfSWjgErmsgyJejhzwniaLt7joXukH39:80clh8FO+FWtTsECUi7X9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
CovidClientV3.dll

Files

CovidClientV3.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ