f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N
Size

55KB
MD5

d2e71127840237e545cfb919ddff6a80
SHA1

595398f933d156844b34babb7e73d32fbf6fd709
SHA256

f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14
SHA512

180a4f125a47441dd8ab19bda843cdbcde0a0800805cec27a34394b037c7064e536359cb6907b88959adba0c1456a2e979b4cba45f7d8af6ec0556379561fe31
SSDEEP

768:jpKM//BDi3Ae/xVsqFk7olvXNX4oJZMCkroWyxWcRoqOuZLJ:lvHBatxFk0NZTkroWyxWIoqOuT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N

Files

f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N
.dll windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Gitlab-Runner\builds\3sdy2s5z\1\deepl\apps\deepl-windows\Utilities\obj\x64\Release\Utilities.pdb

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ