d7a8b980e9bc20d55aef4f92f1e5a7ad5f6227a6a45f0f0fc5d90a5ca5ae7d18 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d7a8b980e9bc20d55aef4f92f1e5a7ad5f6227a6a45f0f0fc5d90a5ca5ae7d18
Size

3KB
MD5

62b511261c5cabad22b80f686bc8fe16
SHA1

0c8025adf348116b4d355926ad117c04b35a6389
SHA256

d7a8b980e9bc20d55aef4f92f1e5a7ad5f6227a6a45f0f0fc5d90a5ca5ae7d18
SHA512

0a212819d2f7c104f2ad87e113eabf4afde86b8d8fd3da4b137bbab72c071c141278dedaf2fb724117b6d4a7698b22a26a8110235dcea2bb96096da4bd0b5629

Score

N/A

Malware Config

Signatures

Files

d7a8b980e9bc20d55aef4f92f1e5a7ad5f6227a6a45f0f0fc5d90a5ca5ae7d18
.exe windows x86

a94f8faa78b398502ce6c362bc6011e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ZwClose
ZwTerminateProcess
ZwOpenProcess
ZwQuerySystemInformation
ExAllocatePoolWithTag
ExFreePoolWithTag

Sections

.rdata
Size: 256B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PAGE
Size: 128B - Virtual size: 3B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 640B - Virtual size: 514B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 128B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ