DllRegisterServer
Static task
static1
Behavioral task
behavioral1
Sample
__8E3C3DD5-336E-4B8E-BBA3-A798F1154CE6_.dll
Resource
win7-20240903-en
General
-
Target
__8E3C3DD5-336E-4B8E-BBA3-A798F1154CE6_.dll.bin
-
Size
140KB
-
MD5
654117d70d1dfbfa4c4cb322ffcd0da1
-
SHA1
f6a14cd76cf15d3c0713532d291799a420d14208
-
SHA256
7942f25cfd89477e50bd5ee39706bae8473e3c5d63642f5c58a80c361742edd1
-
SHA512
85df87d6948661d4be7a49d94be18237d2cb80e001292cd2b5244bb7dade5171fd1dfb9010e6d84c23383ad9c07315f5b3a8bf0a27991e401ae139ef5da16b2f
-
SSDEEP
3072:BMurSpD8Jnyc4QZ1MutrzXrZKFZGi4XXOxf6lBLkLMx:BMCkD8EbIzYMXX4fsH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource __8E3C3DD5-336E-4B8E-BBA3-A798F1154CE6_.dll.bin
Files
-
__8E3C3DD5-336E-4B8E-BBA3-A798F1154CE6_.dll.bin.dll regsvr32 windows:6 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Exports
Exports
Sections
.text Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 708B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 117KB - Virtual size: 117KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 424B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ