a26919facc69200c0b9e99d205f497f59c07ca8c25e66cfb3a597ec27606b511 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a26919facc69200c0b9e99d205f497f59c07ca8c25e66cfb3a597ec27606b511
Size

576KB
MD5

93d2766b6330c2c1a440681f3144935e
SHA1

4fb5a34a74fd80708924d2033b70c7d423f9e999
SHA256

a26919facc69200c0b9e99d205f497f59c07ca8c25e66cfb3a597ec27606b511
SHA512

dd6cf5e2794c03bd30115892b3be36869c270ec0d2a3664e02cb458fde69f14dca89cf22ea8ca4a983fb8c9f147c90d0cd07c79e3ac18e8bd6bf542693135760
SSDEEP

6144:qugeFYDZAYLc4fWjGQu7cObVOGBrjuvPK6lL4+kNW96ZuceenTnojQBObNrR8AxF:DJjWUYaQ6OVY

Score

N/A

Malware Config

Signatures

Files

a26919facc69200c0b9e99d205f497f59c07ca8c25e66cfb3a597ec27606b511
.dll windows x86

4ab64aebae0dd65a5d0dda9f9befd033

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoDeleteDevice
IoDeleteSymbolicLink
RtlInitUnicodeString
IofCompleteRequest
IoCreateSymbolicLink
IoCreateDevice
ObfDereferenceObject
ExAllocatePoolWithTag
ZwQuerySystemInformation
MmUnlockPages
IoFreeMdl
MmUnmapLockedPages
MmMapLockedPagesSpecifyCache
MmProbeAndLockPages
IoAllocateMdl
_except_handler3

Sections

.text
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 130B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ