7c870954b9d3c7a7ef100ca6dd54b2d776b40a9af88d4fd0d70f182c855f19e7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7c870954b9d3c7a7ef100ca6dd54b2d776b40a9af88d4fd0d70f182c855f19e7
Size

10KB
MD5

9657dcecc0529625d3e23f7307a0793a
SHA1

27299c90bd6fd882e5d311b7437efde115c9e42b
SHA256

7c870954b9d3c7a7ef100ca6dd54b2d776b40a9af88d4fd0d70f182c855f19e7
SHA512

a9fb0ea965e5e42d2b71394a36992ec6ee9cee987e77d9e89920244014282a49d778e38ffe05ca6806973e9eecd159766e2d6579563f8368965082a689d4ee81
SSDEEP

48:qZs7U1X+r/34o0dVYDP9O6sbo6GYDpwQRr3EYJlLu48:2K8A0doP9VsxGYtN1fJlLr8

Score

N/A

Malware Config

Signatures

Files

7c870954b9d3c7a7ef100ca6dd54b2d776b40a9af88d4fd0d70f182c855f19e7
.dll windows x86

4ab64aebae0dd65a5d0dda9f9befd033

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoDeleteDevice
IoDeleteSymbolicLink
RtlInitUnicodeString
IofCompleteRequest
IoCreateSymbolicLink
IoCreateDevice
ObfDereferenceObject
ExAllocatePoolWithTag
ZwQuerySystemInformation
MmUnlockPages
IoFreeMdl
MmUnmapLockedPages
MmMapLockedPagesSpecifyCache
MmProbeAndLockPages
IoAllocateMdl
_except_handler3

Sections

.text
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 130B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ