dunker[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dunker.dll
Size

687KB
MD5

d163d59c0134c25588882a8756de2b49
SHA1

ef321b126c65ccc8f747b61c66430629edb061be
SHA256

f5c8be3ab642f71c6a3f91ff6b08e87f7f26f7aafe16e7aa0da2759df06b39f5
SHA512

408c0790f4498a64223018b8d6e650c9dc5a03a1df3a735173fbcb3ee5220e63a4ee32b2f88e944bf9e716dd04dfa5cba1c04f9d1482d54ca0cbd207eda232f2
SSDEEP

12288:NJb6VjBR+ihShu0ya5jgF4GOGHX1+1aH:NoP70shL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dunker.dll

Files

dunker.dll
.dll windows:4 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Sections

.text
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 564KB - Virtual size: 564KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ