driver[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

driver.exe
Size

200KB
MD5

f2bd768066b4581da1f4c6ae3b82cf35
SHA1

2fbe84052bae89d230529d9a82f781bb156f6bc5
SHA256

4a3e358896e47f6106a459f130af00a37970be4439f231079f0d553b1f15e3fa
SHA512

4f46f7e4e1b5270d84589081470ed37b29a4b020daf586c9381927e330f0ae18606c43ba5a28b0bd40c4601262167ebd805a19af0fb49eca5a3198056ae954ff
SSDEEP

3072:5+QAIGhud1vuZwBaNCJt3RCpwclr5LPablhKyxEmkSmTraV8u1VoGLTwXKe:5+QDld1maBaQJzQJlr5LPmyfSmgw

Score

N/A

Malware Config

Signatures

Files

driver.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ