sample-cleaned-noped | Triage

Sharing

General

Target

sample-cleaned-noped
Size

493KB
MD5

96cf5a937ca79146e03cf5559ae0c7dc
SHA1

e67a289e06feface19f118371be106ab2b6a2a1d
SHA256

1a207ec57ec736bc5eb8a4d2044a1d410b4063b5499e9b79589b0b89ea570f5a
SHA512

0db7ccf60c9fafe45b4d8d1091b3e9efc2379ff832646082c47124b97b49123b3f7c47fb81530af081a29859162ed0fcbd1f9cd6dbb9f2aaef43ff4c526ca10d
SSDEEP

12288:caA23jkvG2wZ//0aUFF4mGRJAQTrjW9Cld:bhTkmEiRRTrq9Cl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
sample-cleaned-noped

Files

sample-cleaned-noped
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 491KB - Virtual size: 490KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ