Niko Paid Gui V3[.]6[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Niko Paid Gui V3.6.dll
Size

51KB
MD5

5fd320398884a6b3aa6d1cabd14832a0
SHA1

fa6ceaaf70aac8ff6a2dfdc582e6a6c6e463f0af
SHA256

8970138997ecf039aa6862b2970826f330f66faab41322049cd1b878ba53b9de
SHA512

5b3ee2cd53446b483a56af5d3570c26df7644cd77d388d2d63a71b7001a0073fd332bc7c0431f49d0ffee65c40f2b4ef2ad7e0fefda8464763d4840c394ce511
SSDEEP

768:+rSF35SbpeHFTtt5O3B2OF7z3e3hRi8tgPYDhW:UVOT44c3eDIPYlW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Niko Paid Gui V3.6.dll

Files

Niko Paid Gui V3.6.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ