80865896c1a67fa42a4c3f7d2da22f1f6135b957807885eaee76c5697cb93691 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

80865896c1a67fa42a4c3f7d2da22f1f6135b957807885eaee76c5697cb93691
Size

69KB
MD5

2f73d72aec02308c2d858aa505d6f001
SHA1

6c34953275d4e150dd434f28b6fa5519c3200103
SHA256

80865896c1a67fa42a4c3f7d2da22f1f6135b957807885eaee76c5697cb93691
SHA512

935707f76113cb40bdde157e9d7a14cc2f95a3fccea20605487e221dc41c2b523eb2b3946fb980345e62cf67a00faadde005ee4e4307b90eff2582ae576e8c02
SSDEEP

1536:trSY8wQ04TdmCjyzv7vXPDJrDQsoVC5fQl+vWZK/u1zfXL:tOYDxJhLJrDQsoVqfQl+uZK+zPL

Score

N/A

Malware Config

Signatures

Files

80865896c1a67fa42a4c3f7d2da22f1f6135b957807885eaee76c5697cb93691
.exe windows x86

daccb897b5a5b70377ca1e49d5b58389

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

memset
ExFreePoolWithTag
ExAllocatePoolWithTag
RtlHashUnicodeString
RtlInitUnicodeString
IoFreeIrp
IoAllocateIrp
RtlGetVersion
RtlCharToInteger
KeTickCount
KeBugCheckEx

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 384B - Virtual size: 378B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ