fbcc4709929abad68ef08c83f8da1af51307e7472ff1fabcd81de8f3689a231e | Triage

Sharing

General

Target

fbcc4709929abad68ef08c83f8da1af51307e7472ff1fabcd81de8f3689a231e
Size

2.2MB
MD5

bbd0d1b03b1db4bc444a2b72e760edbe
SHA1

a5754fd24e04b6fb4b9c0f2e8518a20f4219ed22
SHA256

fbcc4709929abad68ef08c83f8da1af51307e7472ff1fabcd81de8f3689a231e
SHA512

c6192fadadbd3d4618d1501ff79b250ffcd6bffbca13559348d7582ac3ad613f502751fa840554f7d73caa1223e089437b4012e5bab766dfedd2f7757cc47d51
SSDEEP

24576:qrlZRhbsE1M1IFCmFSxmhYowRsLTLOpA3bbiqJBLb:qrjbsEeyyGwR9pA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fbcc4709929abad68ef08c83f8da1af51307e7472ff1fabcd81de8f3689a231e

Files

fbcc4709929abad68ef08c83f8da1af51307e7472ff1fabcd81de8f3689a231e
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\定时更新BOM数据库\BOM审核与器件选型\源代码\TRJ_NewBOM\obj\Debug\TRJ_NewBOM.pdb

Imports

mscoree

_CorDllMain

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ