f02651a900567872207051c3a3cb0350c9261f8a7db7839f2d5c5d1f1d0c40ca

Sharing

Copy URL Twitter E-mail

General

Target

f02651a900567872207051c3a3cb0350c9261f8a7db7839f2d5c5d1f1d0c40ca
Size

73KB
MD5

1abf4959452b41085e900dcfe16adb50
SHA1

e67cc9723e36cdd8b0afafdda654fcaa78e17ec1
SHA256

f02651a900567872207051c3a3cb0350c9261f8a7db7839f2d5c5d1f1d0c40ca
SHA512

dcf4e79d8fa238a99f540f0f6ced6918ec6cb273aa78122b912bc3af67f7c53b09563a7e41e5c504427e22e1009dbdfbecdabbd427aeb21895a53edbe6949ee9
SSDEEP

768:0uVWQJGJFh0KZ9kwzfEB7JbFMW8RrrDHZR3Al5rsnht7PvNXJLa85:DVWVRBn/cJbu1rLZhAonhnXB

Score

N/A

Malware Config

Signatures

Files

f02651a900567872207051c3a3cb0350c9261f8a7db7839f2d5c5d1f1d0c40ca
.dll windows x86

fa2c3374cbbb7cb7a937170a643aa7e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

FsRtlAllocateFileLock
FsRtlMdlWriteCompleteDev
RtlInitAnsiString
ZwDeleteKey
RtlCreateSecurityDescriptor
ExSystemTimeToLocalTime
KeInitializeApc
ExLocalTimeToSystemTime
ExVerifySuite
ExReleaseFastMutexUnsafe
RtlNumberOfClearBits
RtlFindLeastSignificantBit
KeInsertByKeyDeviceQueue
MmHighestUserAddress
KeReadStateTimer
ExGetExclusiveWaiterCount
ExRaiseAccessViolation

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.i_txt
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.e_txt
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tele3
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tele1
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tele2
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tele4
Size: 1024B - Virtual size: 713B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa2c3374cbbb7cb7a937170a643aa7e0

Headers

File Characteristics

Imports

ntoskrnl.exe

Sections

.text Size: 15KB - Virtual size: 15KB

.i_txt Size: 512B - Virtual size: 72B

.e_txt Size: 512B - Virtual size: 512B

.tele3 Size: 512B - Virtual size: 28B

.tele1 Size: 512B - Virtual size: 44B

.tele2 Size: 512B - Virtual size: 44B

.tele4 Size: 1024B - Virtual size: 713B

.data Size: 21KB - Virtual size: 68KB

.rsrc Size: 19KB - Virtual size: 18KB

.reloc Size: 1024B - Virtual size: 624B

.text
Size: 15KB - Virtual size: 15KB

.i_txt
Size: 512B - Virtual size: 72B

.e_txt
Size: 512B - Virtual size: 512B

.tele3
Size: 512B - Virtual size: 28B

.tele1
Size: 512B - Virtual size: 44B

.tele2
Size: 512B - Virtual size: 44B

.tele4
Size: 1024B - Virtual size: 713B

.data
Size: 21KB - Virtual size: 68KB

.rsrc
Size: 19KB - Virtual size: 18KB

.reloc
Size: 1024B - Virtual size: 624B