cd78861f9f060d7c44897c0f11e647b9b7dd31ae6a6fe30af68e5453303e3fb2

General

Target

cd78861f9f060d7c44897c0f11e647b9b7dd31ae6a6fe30af68e5453303e3fb2
Size

73KB
MD5

889ec15778a718c81b685dbef146dee8
SHA1

a4266d9e01d777701a2facfc242a3455184112d1
SHA256

cd78861f9f060d7c44897c0f11e647b9b7dd31ae6a6fe30af68e5453303e3fb2
SHA512

3d0e5520eeb19d4e9c3fab9975ef041fa3bcdbe818968f60b64f24527c87ba938fef0ed8ce827cbdea47b38acbb44cfd2b5f17ac3cb0b6d6e5152a21aa37819d
SSDEEP

1536:aJUSV4Uzp/5ZJzM4S7e2eZ4C9ve8oTOxIbMdudyd7lmJp2cP:+uUttzTsMZ4CNhJINyd7lmJh

Score

N/A

Malware Config

Signatures

Files

cd78861f9f060d7c44897c0f11e647b9b7dd31ae6a6fe30af68e5453303e3fb2
.dll windows x86

b5eef883b759a53f1a0caa357291350d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ExSetTimerResolution
IoAllocateErrorLogEntry
KeInitializeDpc
RtlUnicodeStringToOemString
RtlGetVersion
SeCaptureSubjectContext
IoVerifyPartitionTable
ExGetPreviousMode
ZwReadFile
KeEnterCriticalRegion
IoDeleteDevice
KeInitializeSemaphore
RtlCreateAcl
FsRtlNotifyUninitializeSync
RtlInitializeGenericTable
CcFlushCache
IoBuildPartialMdl
MmIsVerifierEnabled
ExDeleteResourceLite
IoReleaseVpbSpinLock
PsCreateSystemThread
KeInitializeQueue
KeDelayExecutionThread
FsRtlIsFatDbcsLegal
RtlCreateSecurityDescriptor
ExRegisterCallback
ObReferenceObjectByHandle
IoStartPacket
ObCreateObject
SeLockSubjectContext
IoGetDeviceProperty
KeGetCurrentThread
KeSetTargetProcessorDpc
RtlFindNextForwardRunClear
ZwDeleteValueKey
RtlWriteRegistryValue
IoGetInitialStack
CcMapData
KeTickCount
MmUnmapReservedMapping
FsRtlFastUnlockSingle
KeSetBasePriorityThread
ExAllocatePoolWithTag
KeInitializeSpinLock
KeLeaveCriticalRegion
ExRaiseAccessViolation
ObReleaseObjectSecurity
IoBuildSynchronousFsdRequest
MmMapLockedPagesSpecifyCache

Exports

Exports

?IsValidPointer@@YGPAIEH<V
?CallVersionOld@@YGPA_NPAHPAD<V
?IsNotStringW@@YGMIPAJ<V
?FormatDeviceEx@@YGHM<V
?IsDateTimeW@@YG_NJF<V
?InsertText9;

Sections

.text
Size: 65KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b5eef883b759a53f1a0caa357291350d

Headers

File Characteristics

Imports

ntoskrnl.exe

Exports

Exports

Sections

.text Size: 65KB - Virtual size: 91KB

.text
Size: 65KB - Virtual size: 91KB