a35d45e919ef08ae27421a1ccbeba20eca1bf76af0eb65601e2a873b19cb03cf

Sharing

Copy URL

Twitter E-mail

General

Target

a35d45e919ef08ae27421a1ccbeba20eca1bf76af0eb65601e2a873b19cb03cf
Size

331KB
MD5

21bce6997bc168f08279f6c7b06e6560
SHA1

1ff04781358054a75bc7ce206a6d0faac567081e
SHA256

a35d45e919ef08ae27421a1ccbeba20eca1bf76af0eb65601e2a873b19cb03cf
SHA512

6df7a20ca22707378ce0e96dba6670af60362de85d778f58a6432d16be503eb38b09d629dca446add2360cd1868b6860ca5c00373b77044526db4bd24e63f2d8
SSDEEP

6144:4OTeYZFiEhDAep/gEubrw4pmDh9jNfQJR/1l+7UuWNKH/jzIRkQ0dWihh1Bm:TlZFiEXpYrVpmt9jy1l+7xWsH/jzI2QJ

Score

N/A

Malware Config

Signatures

Files

a35d45e919ef08ae27421a1ccbeba20eca1bf76af0eb65601e2a873b19cb03cf
.dll windows x86

1212e8a813666371797759da5a3797e2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlCopyString
ExGetExclusiveWaiterCount
RtlValidSecurityDescriptor
KeRemoveQueueDpc
RtlFindUnicodePrefix
KeInitializeTimer
IoAcquireCancelSpinLock
ExVerifySuite
IoInvalidateDeviceState
FsRtlIsHpfsDbcsLegal
ExSystemTimeToLocalTime
FsRtlFreeFileLock
RtlFindLeastSignificantBit
KeCancelTimer
RtlInitAnsiString
KeWaitForMultipleObjects
FsRtlCheckLockForReadAccess
RtlEnumerateGenericTable
ExLocalTimeToSystemTime
IoFreeMdl
ObReferenceObjectByHandle
RtlCopyLuid

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.i_txt
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.e_txt
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tele3
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tele1
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tele2
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tele4
Size: 512B - Virtual size: 399B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1212e8a813666371797759da5a3797e2

Headers

File Characteristics

Imports

ntoskrnl.exe

Sections

.text Size: 15KB - Virtual size: 14KB

.i_txt Size: 512B - Virtual size: 92B

.e_txt Size: 512B - Virtual size: 512B

.tele3 Size: 512B - Virtual size: 28B

.tele1 Size: 512B - Virtual size: 44B

.tele2 Size: 512B - Virtual size: 44B

.tele4 Size: 512B - Virtual size: 399B

.data Size: 22KB - Virtual size: 69KB

.rsrc Size: 15KB - Virtual size: 14KB

.reloc Size: 1024B - Virtual size: 620B

.text
Size: 15KB - Virtual size: 14KB

.i_txt
Size: 512B - Virtual size: 92B

.e_txt
Size: 512B - Virtual size: 512B

.tele3
Size: 512B - Virtual size: 28B

.tele1
Size: 512B - Virtual size: 44B

.tele2
Size: 512B - Virtual size: 44B

.tele4
Size: 512B - Virtual size: 399B

.data
Size: 22KB - Virtual size: 69KB

.rsrc
Size: 15KB - Virtual size: 14KB

.reloc
Size: 1024B - Virtual size: 620B