750e40861eb5f95ec851f484233a2952a3c36e9a6aef659a5342ea77a149e256

General

Target

750e40861eb5f95ec851f484233a2952a3c36e9a6aef659a5342ea77a149e256
Size

57KB
MD5

becaa810bc8b65bc1442db0aa180402c
SHA1

3721d83ebdb0f6ea5a4103b97d9dc6f1b6d304a3
SHA256

750e40861eb5f95ec851f484233a2952a3c36e9a6aef659a5342ea77a149e256
SHA512

b10c505c972054895198855e728c0232f0177aea06723dc9796cb0047250cd84efa05ec9e3423dfa84d62f7737be060cb20654c7bc06614ccb952b1ebaf42e41
SSDEEP

1536:P+6v2njYVXJBkiZKpC7DFMCFvQSlHh/jUDuu:P+6+nqZYIPmE7bUDu

Score

N/A

Malware Config

Signatures

Files

750e40861eb5f95ec851f484233a2952a3c36e9a6aef659a5342ea77a149e256
.dll windows x86

219d422ecf97776c34f4c4926b9390f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

PsSetLoadImageNotifyRoutine
IoQueueWorkItem
RtlCopyLuid
ExCreateCallback
ExRaiseDatatypeMisalignment
KeRegisterBugCheckCallback
ExSystemTimeToLocalTime
RtlFindLeastSignificantBit
RtlInitAnsiString
RtlInitString
RtlEqualString
RtlTimeToSecondsSince1980
MmSizeOfMdl
KeSetImportanceDpc
RtlxAnsiStringToUnicodeSize
ZwOpenKey
KeSetTimerEx
ZwQueryVolumeInformationFile
MmUnmapLockedPages
ZwCreateSection
RtlEqualUnicodeString
MmFreeContiguousMemory
RtlHashUnicodeString
KeLeaveCriticalRegion
RtlInitUnicodeString

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata
Size: 512B - Virtual size: 363B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

219d422ecf97776c34f4c4926b9390f0

Headers

File Characteristics

Imports

ntoskrnl.exe

Sections

.text Size: 13KB - Virtual size: 13KB

.itext Size: 512B - Virtual size: 104B

.code Size: 512B - Virtual size: 192B

.icode Size: 512B - Virtual size: 192B

.data Size: 12KB - Virtual size: 12KB

.fdata Size: 512B - Virtual size: 363B

.rsrc Size: 20KB - Virtual size: 20KB

.reloc Size: 1024B - Virtual size: 572B

.text
Size: 13KB - Virtual size: 13KB

.itext
Size: 512B - Virtual size: 104B

.code
Size: 512B - Virtual size: 192B

.icode
Size: 512B - Virtual size: 192B

.data
Size: 12KB - Virtual size: 12KB

.fdata
Size: 512B - Virtual size: 363B

.rsrc
Size: 20KB - Virtual size: 20KB

.reloc
Size: 1024B - Virtual size: 572B