9009b08bbe03e202e74e02540c311f821fb3bcf8c6bc2a92257ee6aad38b9f4b

General

Target

9009b08bbe03e202e74e02540c311f821fb3bcf8c6bc2a92257ee6aad38b9f4b
Size

28KB
MD5

6f029d195b40ee6adbc981cf85dc22f9
SHA1

8a9969a1647932dbaa5678cd57e319b91ae51347
SHA256

9009b08bbe03e202e74e02540c311f821fb3bcf8c6bc2a92257ee6aad38b9f4b
SHA512

4b0fd738792571982a983192bb796ec05c75b9d698b153f6e560150a3901378b7ddee3dbcdc14ea969104c6cbd52050127d72f038c9a9929a7758e37646e4de9
SSDEEP

384:aN0SgrDNCu+cooyR7w3X1lEF2aQBulV+TwmtqM5cWdq4uCxzdfhlwv5ugsXVFp8n:G0SODNw7wn1q2aQBmV7NnWfJimTLI

Score

N/A

Malware Config

Signatures

Files

9009b08bbe03e202e74e02540c311f821fb3bcf8c6bc2a92257ee6aad38b9f4b
.exe windows x86

6f925e039d66111e1436f78be696933b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

hal

WRITE_PORT_BUFFER_UCHAR
READ_PORT_USHORT
READ_PORT_UCHAR
WRITE_PORT_UCHAR
WRITE_PORT_USHORT
READ_PORT_BUFFER_ULONG
READ_PORT_BUFFER_USHORT
READ_PORT_BUFFER_UCHAR
WRITE_PORT_BUFFER_ULONG
WRITE_PORT_BUFFER_USHORT
READ_PORT_ULONG

ndis.sys

EthFilterDprIndicateReceiveComplete
EthFilterDprIndicateReceive
NdisWriteErrorLogEntry
NDIS_BUFFER_TO_SPAN_PAGES
NdisQueryBufferOffset
NdisQueryBuffer
NdisTerminateWrapper
NdisSetTimer
NdisMRegisterMiniport
NdisInitializeWrapper
NdisAllocateSpinLock
NdisCloseConfiguration
NdisFreeMemory
NdisReadConfiguration
NdisOpenConfiguration
NdisAllocateMemory
NdisMRegisterInterrupt
NdisMInitializeTimer
NdisMRegisterIoPortRange
NdisMSetAttributes
NdisMCancelTimer
NdisMDeregisterIoPortRange
NdisMDeregisterInterrupt
NdisMSleep
NdisAcquireSpinLock
NdisReleaseSpinLock
NdisMIndicateStatusComplete
NdisMIndicateStatus

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 352B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 960B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 506B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f925e039d66111e1436f78be696933b

Headers

File Characteristics

Imports

hal

ndis.sys

Sections

.text Size: 15KB - Virtual size: 15KB

.data Size: 352B - Virtual size: 336B

INIT Size: 1KB - Virtual size: 1KB

.rsrc Size: 960B - Virtual size: 944B

.reloc Size: 512B - Virtual size: 506B

.text
Size: 15KB - Virtual size: 15KB

.data
Size: 352B - Virtual size: 336B

INIT
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 960B - Virtual size: 944B

.reloc
Size: 512B - Virtual size: 506B