General

  • Target

    krnl.exe

  • Size

    8.0MB

  • MD5

    abaa4e540f9e70cfe8d6cc6751230e36

  • SHA1

    f825c2830416205d0e6579b56b9bc36bab8e9a01

  • SHA256

    c4eafee020d4e22c8d0c50208ea823cccdf70eaf3008fc22aba44a723a4c4604

  • SHA512

    aa613f8754d41655d5dfdd17b8164c2fcfca21ab9c41b96d3ccfd20b22357f87be4b05ecea88d863c302f8829b582ec60fb575f746e22ca642e8eaa51f8807b9

  • SSDEEP

    196608:TsHQsvC+bT/9bvLz3S1bA32Yrl9OqewyzBc/S0:avpbTlj3S1bO2YjOqdUBl0

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • krnl.exe
    .exe windows x64

    0b5552dccd9d0a834cea55c0c8fc05be


    Headers

    Imports

    Sections

  • stub-o.pyc