9ac4aa7626b49a142c16a2f479bcbccaec7bd7e53cb84113602d06c444f2284c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9ac4aa7626b49a142c16a2f479bcbccaec7bd7e53cb84113602d06c444f2284c
Size

40KB
MD5

a2599250c41faaaaebc2317e336c145f
SHA1

d65bf27270055c0f6509faa1ccb6e8670d04cb04
SHA256

9ac4aa7626b49a142c16a2f479bcbccaec7bd7e53cb84113602d06c444f2284c
SHA512

1f7ec3ffc59020dcec6ce66e8b1bb7aeaf444d27cf17f941d5ac1c1548d5219a681cb81a7f4feedd1357d7ef5ce2ef3cdcbae21dc01ef066a33dc5a1afb3dad9
SSDEEP

768:N1H3ydw+LJX9yqHnV88rx2dU3s68vqTKctPzQJSzbqV:N1H3yWwJQKp3sjqTttM4m

Score

N/A

Malware Config

Signatures

Files

9ac4aa7626b49a142c16a2f479bcbccaec7bd7e53cb84113602d06c444f2284c
.exe windows x86

b0bd9c6c5d443fe604a7ffe9b10dedda

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ExAllocatePoolWithTag
PsProcessType
PsThreadType
KeTickCount
ZwFlushKey

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 256B - Virtual size: 242B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ