C:\Gitlab-Runner\builds\3sdy2s5z\1\deepl\apps\deepl-windows\Utilities\obj\x64\Release\Utilities.pdb
Static task
static1
Behavioral task
behavioral1
Sample
f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N.dll
Resource
win10v2004-20241007-en
General
-
Target
f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N
-
Size
55KB
-
MD5
d2e71127840237e545cfb919ddff6a80
-
SHA1
595398f933d156844b34babb7e73d32fbf6fd709
-
SHA256
f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14
-
SHA512
180a4f125a47441dd8ab19bda843cdbcde0a0800805cec27a34394b037c7064e536359cb6907b88959adba0c1456a2e979b4cba45f7d8af6ec0556379561fe31
-
SSDEEP
768:jpKM//BDi3Ae/xVsqFk7olvXNX4oJZMCkroWyxWcRoqOuZLJ:lvHBatxFk0NZTkroWyxWIoqOuT
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N
Files
-
f481835cb181a07b0dca462d0a51e224ad366b2b0a1939b544b130ad9f1fca14N.dll windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Sections
.text Size: 53KB - Virtual size: 53KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 844B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ