5b5336503b3c7af4f7088f2deb5884b0N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5b5336503b3c7af4f7088f2deb5884b0N
Size

17KB
MD5

5b5336503b3c7af4f7088f2deb5884b0
SHA1

95fb5d4266edd1333607ba46ecf7afd1b38d7a77
SHA256

4747a978b1305ddba590566c43b75c09f4aca1c0cec9ffc06395d2b5acaea6bb
SHA512

7b254b8558619cf6e15bbfc113bb6faf06ff798a4b68e07d9d7e0a569f3e2e060f42943ac1fd215e67144489ed86a0bbbc7886f9c82c1c0ce5b3460ad4008127
SSDEEP

384:03bwPgHaarT8/zvenFLg64pHYqZjBkz5wuDf67VEm/DptrHTwm8HLAWE:Tp68/benFLKdg2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5b5336503b3c7af4f7088f2deb5884b0N

Files

5b5336503b3c7af4f7088f2deb5884b0N
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

App_Web_aspx2.aspx.cdcab7d2.1ip-5ivi.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ