Static task
static1
General
-
Target
35398975e395e4fe3ed27f33a5fb2d90
-
Size
5KB
-
MD5
35398975e395e4fe3ed27f33a5fb2d90
-
SHA1
1dab79ebc7e8bf9cd20ab53b437a15900673a37d
-
SHA256
56af7f6c987842f4d93cec6e2b070fd712b86d7defa3fe0eaff941ffbc4080e4
-
SHA512
8c8c80b08103d0c52f78984d8c366eb4adc5c256004530ca30364b29d3e97b8959938ab90a921c2c432c61a849adeec1f0ac3ff138b31b54d9c132d4b7ef5130
-
SSDEEP
96:jx7P4fAlEbwWAULP+MOX158dSue2sTGehNNw0E6UB1EdUlsw10Yd2NswnO:d7PS01UL2b15Fue2verNXZyJOYaswn
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 35398975e395e4fe3ed27f33a5fb2d90
Files
-
35398975e395e4fe3ed27f33a5fb2d90.sys windows:5 windows x86 arch:x86
5f0b48b4944f2fe0fae4b9426df6bddd
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
KeBugCheckEx
KeTickCount
pciidex.sys
PciIdeXSetBusData
PciIdeXInitialize
PciIdeXGetBusData
Sections
.text Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 128B - Virtual size: 97B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 384B - Virtual size: 280B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 128B - Virtual size: 72B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ