92a4d2fe52b0e2979fdf2aaea6b1c9004bee3bf38b05bef5e404d5f9206aa6e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

92a4d2fe52b0e2979fdf2aaea6b1c9004bee3bf38b05bef5e404d5f9206aa6e7
Size

135KB
MD5

3104f52a198950aae5bf636010f85860
SHA1

a9c8be2fad4d91586fc8599522cccc3fed5b041f
SHA256

92a4d2fe52b0e2979fdf2aaea6b1c9004bee3bf38b05bef5e404d5f9206aa6e7
SHA512

f1788b78a246f9b6477fc9053c8491452083b397bea59fc1e407b6e263c27d0ce663f50282e77a7d7095b2af2be5ec0e0550085fc1f939e2996526533ae82821
SSDEEP

3072:rTF0qoRjDDj8pGKUWx0M3y8FbYNq304gJ4eyTwg76VuLFUSfSEp:90/f8p4Wx0MHbY89gJ4JFVLa7

Score

N/A

Malware Config

Signatures

Files

92a4d2fe52b0e2979fdf2aaea6b1c9004bee3bf38b05bef5e404d5f9206aa6e7
.dll windows x86

708069b6d843fc4f673c6aa377569269

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoThreadToProcess
IoSetShareAccess
IoIsSystemThread
MmUnmapReservedMapping
IoReportResourceForDetection
WRITE_REGISTER_ULONG
WRITE_REGISTER_BUFFER_UCHAR
KeSetEvent
swprintf
IoCreateFile
RtlTimeFieldsToTime
IoGetDeviceObjectPointer
ExAcquireResourceSharedLite
RtlGUIDFromString
KeQueryTimeIncrement
RtlLengthSecurityDescriptor
ZwQueryKey

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE