c6d6f39a0414dded591252593a64aa599c91399af87002cde017b3f906fad754 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6d6f39a0414dded591252593a64aa599c91399af87002cde017b3f906fad754
Size

682KB
MD5

96a95fdc72e0ca513839af932c651d42
SHA1

e059135bdb6db08338f55024d36b451d746eb776
SHA256

c6d6f39a0414dded591252593a64aa599c91399af87002cde017b3f906fad754
SHA512

27c4d1da4114f72c21aabd5302860d6ee018f68ee6a189779dc972ccf7522879270325864e68d6550751e6f81fbf7c34ab32f5fbf2be4556fbb38496b38b8161
SSDEEP

12288:Nm/jKkKoLv9wRajNMzVSo/z/u34j5JYTxqxqX:A/jCoL6RajGzV5S3u5qTxqxq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c6d6f39a0414dded591252593a64aa599c91399af87002cde017b3f906fad754

Files

c6d6f39a0414dded591252593a64aa599c91399af87002cde017b3f906fad754
.dll windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\jk_9\workspace\CBB_DH3.RDA000419_NetSDK_Windows_package\code_path\Main\Demo\C#\Snap\NetSDKCS\obj\x64\Release\NetSDKCS.pdb

Sections

.text
Size: 681KB - Virtual size: 680KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ