XenoUI[.]dll | Triage

Resubmissions

18/10/2024, 11:58

241018-n45vyayarj 4

18/10/2024, 11:56

241018-n379nsyamp 3

Sharing

General

Target

XenoUI.dll
Size

63KB
MD5

2ebb7e2da26699b1d0df73590e525800
SHA1

44ad5f76c15e63b286024419e81bd97b0b95cf4f
SHA256

16a5afc5562d0e3168b251d3ce4756bf38d56bf0fdaab57379fc6d4e86068a0e
SHA512

7db5301e05b748d3601d979037e5d88cf180b3fce22d2a015c3c041114bdbc7d0f23e351623acf80bdc903df561146947713610604bc2536e3ba1a35aeff3b79
SSDEEP

1536:rL1vZfUw9Tr/msZrBgp9MlhM/APHV5y67sqQ:rJl9Tr/msZlg747Pby67NQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
XenoUI.dll

Files

XenoUI.dll
.exe windows:4 windows x64 arch:x64

Password: ye

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\rizve\Desktop\Projects\Xeno\XenoUI\obj\Release\net8.0-windows\XenoUI.pdb

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ