6771bb72e769bd6e0e25d3a2d36ab14f9ae076aecf8d28d6f0c7a9176dba0dc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6771bb72e769bd6e0e25d3a2d36ab14f9ae076aecf8d28d6f0c7a9176dba0dc4
Size

4KB
MD5

17ece53c6c3c50fce2ec7a403061d95d
SHA1

845dfc7117a115beaa10d615f17bde12f13b429f
SHA256

6771bb72e769bd6e0e25d3a2d36ab14f9ae076aecf8d28d6f0c7a9176dba0dc4
SHA512

4275ec1ee5924aa2872fb83f55c17a2ff64a4f7b29a71feb02f8ebd4392b6cd2332deaadf2fece8b8d3fcc999ec08547c66eccb897eeba0d9233b25f631d05c6
SSDEEP

48:I1xHtibzA2jto6OM6922XZqCbmXGY8t7MatYy7RoYwqcfqPqdb6Y5AyQ:awlB0yXamOPcyidOY5AyQ

Score

N/A

Malware Config

Signatures

Files

6771bb72e769bd6e0e25d3a2d36ab14f9ae076aecf8d28d6f0c7a9176dba0dc4
.exe windows x86

9083d860012824450b2c94f76807bb33

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlAppendUnicodeToString
RtlInitUnicodeString
ExFreePoolWithTag
wcslen
memmove
ExAllocatePoolWithTag
RtlCompareUnicodeString
_except_handler3
KeTickCount
KeBugCheckEx

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 768B - Virtual size: 756B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 384B - Virtual size: 366B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 256B - Virtual size: 234B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ