da80c26b29668867fcaa3bf98d2f1e28b7e6d5559c5727d07f12352dc615fc0cN | Triage

Sharing

General

Target

da80c26b29668867fcaa3bf98d2f1e28b7e6d5559c5727d07f12352dc615fc0cN
Size

8KB
MD5

fe2d07f20c9e3cd3108231045aa444e0
SHA1

eb60572c605a0f620f92c872ffef598af9d4997d
SHA256

da80c26b29668867fcaa3bf98d2f1e28b7e6d5559c5727d07f12352dc615fc0c
SHA512

23e0f54177b5b7f31f0130018f743eece12c6ef1cf0d6a8b20cc98765d37fa88e5fa4119ea9a2d07d87f8f3aebf35b25561daccd83243c9efcde56837c769301
SSDEEP

96:SuJUJSWan6+14GppTfkjqS8G1AKAzKsinwPp55PipMymMS:nG4nR4Aujx8G1TAzOnwhPUMH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da80c26b29668867fcaa3bf98d2f1e28b7e6d5559c5727d07f12352dc615fc0cN

Files

da80c26b29668867fcaa3bf98d2f1e28b7e6d5559c5727d07f12352dc615fc0cN
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Windows\Microsoft.NET\Framework64\v4.0.30319\Temporary ASP.NET Files\root\4f630ac0\547d1a42\App_Web_zqwgbd0b.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ