36b4fd327ed01a31d9f7216c89760fc6eb5bfe7d5e192736b781b5105e3b8e58N | Triage

Sharing

General

Target

36b4fd327ed01a31d9f7216c89760fc6eb5bfe7d5e192736b781b5105e3b8e58N
Size

13KB
MD5

00670d3a7ecdfd57e62d11a22a4a1470
SHA1

18989e7e22059c7e0600b31aec3f73ed728981a8
SHA256

36b4fd327ed01a31d9f7216c89760fc6eb5bfe7d5e192736b781b5105e3b8e58
SHA512

4ba1b4ac798e5e9d1d7559b5a50dfdf15d0720aec095895cf939a68dadf37c8a8d341ee5e23c5dc9e2e0dc6fd67825e212dc9f8f220e7537ac1e7bdb34dfa6e5
SSDEEP

192:h4aXb6rnAbWHlVsLxLeyOs1T7YaCALGLt4TmxOQadkXtTpT:qgWHlVsLxLevg/9aLt4TmxOtKXtTpT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
36b4fd327ed01a31d9f7216c89760fc6eb5bfe7d5e192736b781b5105e3b8e58N

Files

36b4fd327ed01a31d9f7216c89760fc6eb5bfe7d5e192736b781b5105e3b8e58N
.dll .js windows:4 windows x86 arch:x86 polyglot

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ