9e4844858d41a4fa0d5468540f503d84b7b7df1f5a2861ff33c6670c61cb289cN | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9e4844858d41a4fa0d5468540f503d84b7b7df1f5a2861ff33c6670c61cb289cN
Size

32KB
MD5

1b3f97c3b0611640e9cd79c24b58a3a0
SHA1

30ef1bb8e31f1f7853efdbe9df6bbaec8cfe2178
SHA256

9e4844858d41a4fa0d5468540f503d84b7b7df1f5a2861ff33c6670c61cb289c
SHA512

b83918c16da96340c0ec5eab57ed296c79f3e28f8ca7bb3e19889bae190860ab7562c4505a596ca1d1f8fdaa9c5cdd8f5ec669b3e81ceace5292f7dd7346f2f3
SSDEEP

384:3X+jKuyVqFj8CmR//jhtmclwD9s0rDkrYy+paWMBZI07c+bvKPR9ZcMKJClyLv43:3X2KuyV5Z/LucwmKdke0iR9ZZKJClu4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9e4844858d41a4fa0d5468540f503d84b7b7df1f5a2861ff33c6670c61cb289cN

Files

9e4844858d41a4fa0d5468540f503d84b7b7df1f5a2861ff33c6670c61cb289cN
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

BepInEx.Unity.Mono.Preloader.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ