Static task
static1
General
-
Target
01cd2ad5533c6915c8d96de6216c32a2
-
Size
8KB
-
MD5
01cd2ad5533c6915c8d96de6216c32a2
-
SHA1
9527c95312c3875678f86d5e3a20bc2a77ad77b4
-
SHA256
6ba4c1ef9352df078b81523415e1609e4e4796aabb0a8e4ed61914090816011b
-
SHA512
35fd1e3b071a8c3f375febc086fa2522b95be17f9fa9c9d1a11eeff58211117b43a38b2c38884b840da304179b1781faaae62ac2b28394b5a4e2d98116b15678
-
SSDEEP
96:y8EsCbVkNGBsSyUfcOszMBs86NARylcosWvQJYhU6qwrnBuLZ3Chx5jC3BCJ3sjK:ys6sOsWs8tolFHYJYljBuNyhLjom
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 01cd2ad5533c6915c8d96de6216c32a2
Files
-
01cd2ad5533c6915c8d96de6216c32a2.sys windows:5 windows x86 arch:x86
839504a3b3e7f0c6f906b22a2933a8e3
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
IofCompleteRequest
ZwDeleteFile
KeTickCount
RtlInitUnicodeString
Sections
.text Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 256B - Virtual size: 143B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128B - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 256B - Virtual size: 226B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 256B - Virtual size: 164B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ