Trojan.MSIL.Inject.ED
Table of Contents
Analysis Report
General information
| Family Name: | Trojan.MSIL.Inject.ED |
|---|---|
| Signature status: | No Signature |
Known Samples
Known Samples
This section lists other file samples believed to be associated with this family.|
MD5:
f67f9ac3408d659f9158e5476c262c5b
SHA1:
fb263f500e19f7414381ef85b8f4b15aac2f07d5
SHA256:
54DE6383A879488A35AD03613E8DFBF4655E92CE3FD165CE9AA3DE41F812744E
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
0c56f23c629084e8dd1c9dfc96a2133f
SHA1:
fbe27de790ccdc851bd0e677f5c7ed5ee65e65fc
SHA256:
E77DAEE5ADA396BAC61AD5A3868AA61D41E4449E0A52490FF56D90CA95EB1966
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
3cb0ae7116c21a0aa0a1a692480a82dd
SHA1:
30059a2d51cc86b93876d223c60c36e1f2283b4c
SHA256:
660774C95156F939EAF309AE96A2B6C16F861C582E697D41E4013D9BBFC1A6A6
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
13c47c8380dccbe0c4012622d10a21bb
SHA1:
dc4b94274b98e4bc49f43202200d559eb36c5d75
SHA256:
553DC2DE59C758522C3E282937ADA691E338AEA6BCC32C19113363BFCD9AB270
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
b7c5cf9882e7eef1d26413ffe99cf347
SHA1:
f99d37dcf28d281554a58479c1a0277056084504
SHA256:
8311BD4E80602FDB1BC4F50A20FFC1EED797CDF671E9685C5CF706069BC3142F
File Size:
6.66 KB, 6656 bytes
|
Show More
|
MD5:
cd6538d2e1a828d11e1ce09a5af96a3c
SHA1:
551795271eee1faed2e4d301f8d15f40f7de23d0
SHA256:
1FAC07797D353CED4158D533DE2A7370CA5B07A89C878BE60BBE2F8C4AD0C381
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
b3772a4834f2b3e31c9f065008081a8b
SHA1:
6795a75f82e3c2752865c6197ee4e250c6a7e635
SHA256:
A87FF12386C1BB87A91B8FAD38E19BA879548E1A9C88CF32D641CC3BDFEE590E
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
ec5ec4ad8739b95a3ec1223c31e6e734
SHA1:
e13a5cb064f6cd06530b5b7d577a878462c45f28
SHA256:
97A86B7741A128E3972A562E9BE014EC8F3BC09A5C714748EFB0CBFAAAEF6D80
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
089df7fcd3737ce59ac53949fe86c2f7
SHA1:
e5ba3adf28f676ee80dc32d0aebac57269762654
SHA256:
0B4028CB4CB12BA2E00FAF2597D07456ABB46469FE7E93CD34F566420B33CA3C
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
5e308e68eb6f8abeb52f1f3199373058
SHA1:
c4976ffa3a60e9bf875d8ad047caec82bb7158ca
SHA256:
99DEB08E09F43CEE5586D1A68FF2D8A85BF662E48862D1813640BE084340BD6D
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
9abd86c81bd37d7312992988ac8881e3
SHA1:
a32cdaacea37802914d5722d830f797d804b9253
SHA256:
9109997FF33E673E39BE211779582D2504991546BA88DC48C828DAEBA2A2DA47
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
b03bc1d11d28755d5366a4ddc1fd8b9e
SHA1:
86c7d2ff1b02c96540437431f54c9014af9a66d5
SHA256:
9E0B8FE26A90C089A70C58C1CBBA2F2DF73D5BDA1C760125AF13157A1487AA21
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
1cb625a4aa3069d6a7cc029bd7043907
SHA1:
0161ab89bbe274cec8a39857460a68d70df276e4
SHA256:
5E97D5E6849059AE04C30740B8F70CCD1F9FEB228A0DE2C923D5380F0D23B8AB
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
417510003a0eb83ead5107eddae58c11
SHA1:
5842078979f30dfac3ebbc520cecf6dff045629e
SHA256:
CACCA75707C3F348820A171C2891E5231C57BC9B3F0DE75B2A66BF566678FDB3
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
22e670879ad9040f0479a20ce05532e1
SHA1:
aad2f3970e0d4db2b07f5256c925e8c78e494ee9
SHA256:
ACAF027C7BBFC2B6346796F448C662D1AD9373E24EB03341B7A7B024B47736B5
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
4471936ec40e666aee882f72c21c97b4
SHA1:
a6ecb006a6145e2c3761137296a7f2f39778adac
SHA256:
4A81C801D0D7ED43A67ADE09F1C6D731CF0A4E2B6B270DC1586F4EADEDD78BB8
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
2d77296f8790f99dfdd7c625e66b7fcf
SHA1:
15f6442200a6427631c69f3f464783f02bc4f92c
SHA256:
FED043828054806675CBCD751B317BE295964429F21616256AD6AFD13DD6B475
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
53514bb3fd5dc035fdf4ee1fc1548879
SHA1:
99401d4025a62eb793859439ae8b8bf05c0d9b57
SHA256:
0B548604AC87E46D1B7FDE363228339A81E08CEF69DE40D7034EFE49E56EE2FE
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
e8f952299ef61c25e3d1dbe9c6d08f31
SHA1:
a6883e8e68e3ada820f10fd41e843a3e3fd5f912
SHA256:
4A3429403BC25CD76ACEA4C212F5655899F0439D66BF487D31863C3A562BBF0F
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
f18c68f91b81028267a51145c3b096ba
SHA1:
a207d690541a75241226a1a7bc376008bcc00e3c
SHA256:
3ED4B7E4C028420B7FF5BC39E1D10B25C60BA4BB0DF12D262C73C77DA247DBEC
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
e3ca1513bbf35faaa84cf4b79b5cae3b
SHA1:
92c3e5c160a4be50308acfc2de87cd812d209340
SHA256:
A26D863165BEF29DA19058961339F03D32A34CE0A2C92D7362327FD460A15E47
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
eb2f1eb18b7eceb0986ae1acc1b3fa7f
SHA1:
1f333c0399220a7158ef03d8ab9fb8e5f0702d3b
SHA256:
14F4B14BB9FFBC1D309D68607FF878AC44857FA72CAE6CA5F8EEA72522BD4949
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
1082d2bf74a63488aaff8d918052aef2
SHA1:
96d875910ee92c0447f133a652b5d2e00381299f
SHA256:
A3955CB41F9F8A15C9D658F98DDF05FAD8FE6B1AC0F30F00FF1CA936DBF842D5
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
100f8d2f238fd77d8298d309fcae6eda
SHA1:
6089e245674105621fde1c9ffe6104960aa6b5a7
SHA256:
D56E751AD81993183814A5BFAD6417B91293B9BB1E9052586843849EBB10177E
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
691b26e2832ed4e538d36140ecb25e7b
SHA1:
a67eda67d8bc3b913db2d21f71ad99e5ba18050a
SHA256:
6A37FFE54B4695FB0431D508A547D7A54829EA96F46D925AEB77B99DA728BEC1
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
4364da08254f59e99e1ac9bfed133412
SHA1:
9d107bca1d745ebb6eaaa4ca6042201d39fd861f
SHA256:
50F76706F199194D97572E9B7E94596820E0F51F64675AAEC6D3299D902ABA62
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
89be3c753f3c34471ce26bfdf997889b
SHA1:
adfc54044ffa2946cc5e4b806065dca8f8d3fba2
SHA256:
59963F781D54C8BF073FE65DA68DBB69AFCDED576223A038835645BEECC99934
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
f0780777c5491a1e4baf35c3e0c8257e
SHA1:
e633a011fbbe34c023c453db72e23ccff5746bde
SHA256:
0A57825275300713F3CA5C6DB8B35349C924A4719A88694275DD118ACE5C6494
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
ba6bcc2cb04ecd00fae561602f8d3058
SHA1:
54604b2ed678130e214f30bad2e29ddb54482691
SHA256:
0D24009ACFE7AF61AF5DBE727550123AA12C007D14CAB8DDA5B5EC1FEE94C57A
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
0204901ecfa486e799acf67ddf50f7c2
SHA1:
32f1b693d5abc97575545c1be4b9bdfa22b9595c
SHA256:
753400DDDF4EBE6A4F36F850B31A107D3FFC51FD24F0DF6D6A3B08E8B875D212
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
c3a08d05a0547593d41dace27cca4866
SHA1:
44ceae9a882c22bc60058079e96e520be0817d0a
SHA256:
27BBE79704F9BD1F2DB586D036B3005D1CDD9BFC0F5A428CEC8E82BB9EADDCB4
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
6aa3f59daf724ec7103f04c9a3e1bc60
SHA1:
d03ddd9750f0b6a19b10eac9efa160a36ebe0808
SHA256:
50505D0369C2D2E31660238A9DB74B15F1A15BE83EB113E1C1DC66A562D77770
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
75a3807417b3878601f5e2f7dfa7194f
SHA1:
dfd5e04f36460ef8ac24e28439f4908686be714e
SHA256:
1B856E0A9C1F73F0132A505EF7CC03F9F70A73BECA3D68614B9F9E43D8F25207
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
2dab430ed5118d62a713f11bd97c10e0
SHA1:
00b4426b022fef6b809c2af77eb23c7e04ae3c4c
SHA256:
9387BF9A741C2C304F2CBC1B36292427909D3770F4A9181AD37A8DB268F13371
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
e9509daed21da85849108ec243932f27
SHA1:
9b0795987d9b0cdd94dabc5897dc41d0c6375842
SHA256:
98EF23634D74A0964C1B2BF90CB3B785E53838787B97E867FCED38E499181BB7
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
c654695078723a4e44f5dc761ddfffea
SHA1:
6829cd144098e2a84db91b903879ce608e320d6c
SHA256:
3A0760B2E2893183F8CA37B57D545FF345B433A9D67BA14F1A2DBF875101EFF7
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
1a29c2067b0cf62fbd6db29112b557dd
SHA1:
b6a839ad049384776666de960fb56919104e9ed3
SHA256:
44591895993016389951591A28800EFF47C35FD3D54CCEC69B6BA03D22187AE1
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
d49c3bfc086aa7688878f8952b893490
SHA1:
23c082cc11caa479f45cd4f7656c2ae0b8a78de1
SHA256:
80C6ACD15FD0E6D0C3EABB5AE5A01952318B5EC0A5B0273AC09E9516F40C4CF0
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
7dc42a38872e74892f16160782c98eeb
SHA1:
76169be63121b8d34f2fc8e73f0b31da13af3b96
SHA256:
58E067835E2FF3EEC4CF55F76E520D697499C81D1B308E6A31A3BAC65B9A7B29
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
d3404250ff3880cedc94a7e4b2904c30
SHA1:
c45a5d571479ceaf8d357efaf8001077a9112fc8
SHA256:
E29D50FBD6DFCAE0A328B158D54EEAE6550FB00200E04ACA3CDE5F1775AE2805
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
231686dd66636a383cc89847a9378ded
SHA1:
2af447bfd073cbe20e2989a065082dc6b2665337
SHA256:
B9F6234D60582B09BAA5297CF9A3CBE1E64DE1D0778BE4402DB3D65C9D14E147
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
a18524bbbed0680136c5608bb1651ea5
SHA1:
2d009f6273c286c7cb9ab63d5c65a8f2df2a2195
SHA256:
87042D1B92BF93AB2B83EA2A8219EFD1DA103A715A6D58DE39E8E027FADF6711
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
d8b1ffef7ad9c5a3da9b3b7138326306
SHA1:
a8e14a247ef3782fc8c5e9963eb6b24d4354fdfb
SHA256:
71CD746B8C9423F674149D8B0E05EE617B05709842224188B2F3603D9E970258
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
eda7620a917ec44ba45404a3744ceca5
SHA1:
8bf1c4a22d7ad57f12b36ca6cab93131d9cc8ded
SHA256:
DFEE21D54933F9007AE2C03605D6A4C16CA7F35FED041760BC7E81FFD8D34E6E
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
03b538ec9c280fc5b48192eeeb8e97ad
SHA1:
d75dd66e018750db84c27c79873343fde639570a
SHA256:
7753579B63B5F3B1C36F3709681A54D974CD38852071D84543716A1BE4963694
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
2c7cf468cd926546bf9e10b07e01d277
SHA1:
0a717cae6713acd478757ef95d0ba9e5a82878f7
SHA256:
F184AF4F4E971980D20F175CB31964AA3996CC7194D5A3FAEE5DF3CC9E96E785
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
2840491f396bc086b5f9a7fbe21e15ea
SHA1:
ee69e327cd927703180cce9053ac0730acf44913
SHA256:
D2AF7E2DDB8DC3CCEA1E547AE0733903B8784CE869031829403B8DC113EB46C4
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
34ddad307a6d4209e19997e0f7bd2330
SHA1:
50a332b7816ea68b35552c6d816589ba1aae29e2
SHA256:
2B9397542C49315710D20F8FE04F80668BB1EF49F4BF78B23184B93354661A2D
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
0ad26ebb9677c3ac1d68480cf9645fcb
SHA1:
09acff29bf41a94ea77839d673c9f4182ddbc687
SHA256:
D152A2118779DCA01CD9D657B3FE9E17C1CA1876DBB13296A60DD9B4B53EF2F3
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
d5905335e4cfb63941aa5ecad27c9f63
SHA1:
2d7fcfe1a906d5fd9123ca41516815b3e8b8c120
SHA256:
C68D1011A3242954AB90EE87DDE2C69510C290475D7912D55520AB217F952D93
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
79f9561d2da24abff9bfff26b7b3cb4f
SHA1:
28c4f6f124714edb762010192c47d8f122f8eded
SHA256:
0BC7EA0E4A6B8AD065F13A31A8C62BDAEBD0517FCC95CE8B0FC8CE13E8741876
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
020f943589f59b5e66db4477c5738533
SHA1:
cc890d95dac6c3cfdf5fb2465e4b92cc3ba8a5bf
SHA256:
D569C5BC6F129151CA3E810B54E7775B2BC51503AAD5767242AC27EF0E7A57A0
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
8969054747d18878d6cba72f10fc7729
SHA1:
a4d7afe4b4d304eab8e14145dbfb921fc4f3b01a
SHA256:
8E4752DE7BFFD7CD8C476238E28EA96585C5476E41502E23B46614382E9CCEE0
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
59680f4b95873b41a0a29ff0e1995788
SHA1:
29d2e5659bc54299775f645f26cd9fcbf6bc8377
SHA256:
C19E32234688776E81FA045C2AD9371C6A9BA4CC14D6BE5D0140A9971E8F43A5
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
5527be9f878e70981f79049f5451c0fd
SHA1:
472b7f6cc71c63ca73f8067fb36084c27a480fab
SHA256:
18B2937CADA050838DF7CCF4B70DB29964B9C7DEC41A808BD9004B30D9144471
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
166cee88034297de661204086f48e106
SHA1:
93264d7ad0477500c6a1f38026c145d8b8b98a82
SHA256:
D1C59937396DD9F407FF2C6FEAC3650E4DE85CDC07505D73F5F4D5E020FA9F46
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
32132299a980aadcc8d1c46d7f283827
SHA1:
f27af34d85ab5591fdb036235fdcabe009a3d5f2
SHA256:
C10AEEBFB47D3D99988482520B9035BFEEBDEFD89419F781CD95C29BD80DE318
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
f569d403775f8632c9ffdd4a2f9d728b
SHA1:
1ea69bad8837f85d50b9c274ca989e5a77ab7bda
SHA256:
DBDF0F1ABC3DE746A02D146F47267D9C10B69DC2EF6DD7A0BE1AD04048B78554
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
0283a2b0ba9d9b15a53bc449164e3d5a
SHA1:
315ee0a60c87cef0cd2203449b7755afa1a01908
SHA256:
A1B52C4C4784235338EB8AE3AE70F4CA50C9C7CB058BCB1751364CC42769FF4B
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
af15f33429a2f98501dc32d6ec319140
SHA1:
53324467ded9ee0d1911f6a2269b437e0d67908a
SHA256:
C41BC770D80570B8FC0E9A6C6D6E7EFB0708AE71B7701361D2477CB9BFCD6063
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
d2d67e4135adfc3c70ec0071954787d1
SHA1:
197d57e7981044ee3255b1f6cf14e5c3d0961683
SHA256:
DBE66C075EE3F4AA329009B756846DA9DCDD2604E1BB7BB14C43509198C733BB
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
adca4c39f76a93229546ea19e886cee7
SHA1:
af6e63ced86c4c360d0d18ce827e79eb29286d03
SHA256:
F5AA7EF9DF9C0C2950497F9FAD4BC1653C6B90747500951529BCCEF3C0F699E5
File Size:
6.66 KB, 6656 bytes
|
|
MD5:
529b685ba3a16fe45a1fb255f88258dd
SHA1:
fe8d33c8a730cc439b622ff0239207fa587c9564
SHA256:
9866015E9C5213A1E27FEA621F278046C92118BD8498EC7BC1BA44B1E83EB875
File Size:
7.17 KB, 7168 bytes
|
|
MD5:
e2250b17280767122b60282196c9b1d2
SHA1:
1136b54d1e5a33705a13abf5b18d9b1ffbd1880f
SHA256:
588A23A318EF65C20AB11D4CA94A563840F8958D29AF4198533C5262CFF6F3D4
File Size:
8.19 KB, 8192 bytes
|
|
MD5:
4d1f326361ca7aaf0b8ec8b4f4c2bea0
SHA1:
fe779a066f04abbbf1d2cac794eca1c00e3e0454
SHA256:
5E71C4058DBB280CC843DBB96AA4E8EEEF942FBFA5AD24725173209C2F75BFAA
File Size:
7.17 KB, 7168 bytes
|
|
MD5:
01e919f331afef7723b2ef554338bf61
SHA1:
e7a211337c7caa5e5167d002f4929040b0194b35
SHA256:
62ACF5D63E01188B991CAB61323A3E59E3AA726666CA4175533B898D4D6E86A4
File Size:
7.68 KB, 7680 bytes
|
|
MD5:
b164c7aa4c03aa7f7507d25c031165b5
SHA1:
dcaf38ab1aa0d15d0f25847c88b5f78ed2c95e53
SHA256:
DBD6A996E4CFC768006CC3DC30ACF1E5A891C37D3C5DBE3D83AA86588518E56F
File Size:
7.17 KB, 7168 bytes
|
|
MD5:
7aacbfe7bc0a479aaeb191809c94bfc0
SHA1:
1a4947856c1373e274f10b0b295bc183d35695e5
SHA256:
FB8C1A213015B80FCB4ADE9177A648CF3D84310A2DB5380AA971F4D1FE666D79
File Size:
7.17 KB, 7168 bytes
|
|
MD5:
0b3acf177e685892c3fea559f16ed2b5
SHA1:
33f893bc73f750708a683e7aa247581fc9f128ce
SHA256:
E610851B0B8C01FF6B5B0BC8244076BDA667DED10025ADE0D169339A54F95B36
File Size:
7.17 KB, 7168 bytes
|
|
MD5:
610857b248790cbf1749832dccd242e0
SHA1:
a6e9e0d4ed2c6c116d56e90dca1208da0a5812e2
SHA256:
46520585754FFCC3AD13473EFE93671AB9955F17CD1AA76F079A1BFCAE00655D
File Size:
7.17 KB, 7168 bytes
|
|
MD5:
db1b60444ebd776282f2ed8fe11bebbb
SHA1:
a2f7b8a306c6639c7e5e31dd6e3e88e4e8d1e25b
SHA256:
AAEE5779CBB88102F7EF72A945590F7F93C4B96A72B07AAF83099EF39AF6290D
File Size:
7.68 KB, 7680 bytes
|
|
MD5:
9b4cd7f0984acd0dd73d801fe8f2b5f8
SHA1:
b49640369b37b7fac581e5ef72f1ab218dca465b
SHA256:
C2975E67131349C5958084D32A63945373A95BA17CE8A645666DD88E1C55A862
File Size:
7.17 KB, 7168 bytes
|
|
MD5:
277b159f7b4075083df35ee5127228fe
SHA1:
3934b9c024847a10a430b2c97ad3d39074481251
SHA256:
2632D802331FEB3F42C5EAC03BD9A070CC2E34224CE7274D07D807E13CBCAC7B
File Size:
8.19 KB, 8192 bytes
|
|
MD5:
9af8cd590446e4a92eaff302ddfae128
SHA1:
c41074029f3354a2fe84d2d69b69883e55100931
SHA256:
4C7F85D44A16B9F1FA1A6B56055C0B7068D79E8ABCB51306E644BD578070080D
File Size:
7.17 KB, 7168 bytes
|
Windows Portable Executable Attributes
- File doesn't have "Rich" header
- File doesn't have debug information
- File doesn't have exports table
- File doesn't have security information
- File is .NET application
- File is 32-bit executable
- File is console application (IMAGE_SUBSYSTEM_WINDOWS_CUI)
- File is either console or GUI application
- File is not packed
- IMAGE_FILE_DLL is not set inside PE header (Executable)
Show More
- IMAGE_FILE_EXECUTABLE_IMAGE is set inside PE header (Executable Image)
Windows PE Version Information
Windows PE Version Information
This section displays values and attributes that have been set in the Windows file version information data structure for samples within this family. To mislead users, malware actors often add fake version information mimicking legitimate software.| Name | Value |
|---|---|
| Assembly Version | 0.0.0.0 |
| File Version | 0.0.0.0 |
| Internal Name |
Show More
|
| Original Filename |
Show More
|
| Product Version | 0.0.0.0 |
File Traits
- .NET
- dll
- WriteProcessMemory
- x86
Block Information
Block Information
During analysis, EnigmaSoft breaks file samples into logical blocks for classification and comparison with other samples. Blocks can be used to generate malware detection rules and to group file samples into families based on shared source code, functionality and other distinguishing attributes and characteristics. This section lists a summary of this block data, as well as its classification by EnigmaSoft. A visual representation of the block data is also displayed, where available.| Total Blocks: | 7 |
|---|---|
| Potentially Malicious Blocks: | 7 |
| Whitelisted Blocks: | 0 |
| Unknown Blocks: | 0 |
Visual Map
x
x
x
x
x
x
x
0 - Probable Safe Block
? - Unknown Block
x - Potentially Malicious Block
? - Unknown Block
x - Potentially Malicious Block
Similar Families
Similar Families
This section lists other families that share similarities with this family, based on EnigmaSoft’s analysis. Many malware families are created from the same malware toolkits and use the same packing and encryption techniques but uniquely extend functionality. Similar families may also share source code, attributes, icons, subcomponents, compromised and/or invalid digital signatures, and network characteristics. Researchers leverage these similarities to rapidly and effectively triage file samples and extend malware detection rules.- MSIL.Inject.ED
- MSIL.Inject.EDA
Registry Modifications
Registry Modifications
This section lists registry keys and values that were created, modified and/or deleted by samples in this family. Windows Registry activity can provide valuable insight into malware functionality. Additionally, malware often creates registry values to allow itself to automatically start and indefinitely persist after an initial infection has compromised the system.| Key::Value | Data | API Name |
|---|---|---|
| HKLM\software\microsoft\windows nt\currentversion\notifications\data::418a073aa3bc1c75 | RegNtPreCreateKey |
Windows API Usage
Windows API Usage
This section lists Windows API calls that are used by the samples in this family. Windows API usage analysis is a valuable tool that can help identify malicious activity, such as keylogging, security privilege escalation, data encryption, data exfiltration, interference with antivirus software, and network request manipulation.| Category | API |
|---|---|
| Syscall Use |
Show More
|
