6178c45e8d0785363c467fcc529b86fcabc2d2ee2487ebfffd899d2670305b5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6178c45e8d0785363c467fcc529b86fcabc2d2ee2487ebfffd899d2670305b5d
Size

8KB
MD5

6f14569586fb26493b3b9d48b8fdd3d0
SHA1

ace15f52f17b593054de42babef812126d88e868
SHA256

6178c45e8d0785363c467fcc529b86fcabc2d2ee2487ebfffd899d2670305b5d
SHA512

73ca4a3be225ca4aa511247dcc3450114b8ea702a7cc106f6bb09647fa13c465788a21f24b638e518be1fafeb9b43d3e098cd89bc495d9e460d58a8ad89d93b0
SSDEEP

192:s3GJikd+3Gxf5IDeOpdiYezORk7rwUvTJt7:dikdiGxxIaOiYGEU7Jt7

Score

N/A

Malware Config

Signatures

Files

6178c45e8d0785363c467fcc529b86fcabc2d2ee2487ebfffd899d2670305b5d
.exe windows x86

554014d0c358ee3a7c185ee0a9895342

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ExAllocatePool
ExFreePool
MmGetSystemRoutineAddress

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 224B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 160B - Virtual size: 130B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 576B - Virtual size: 562B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ