Static task
static1
General
-
Target
02f4daa51acf49ed4fbb3bec7b321e28
-
Size
88KB
-
MD5
02f4daa51acf49ed4fbb3bec7b321e28
-
SHA1
f6aaff904faa577447ef23c535100d32fd20ab7a
-
SHA256
25dd4f404b097606ba6d9b396599fcf9545e93b6fcf68ac814625a9d14809814
-
SHA512
5f5d2d1f5e536b6ef518a0caca70d576f46d66c2f70b4674d88914e49295d6cb1a71d44f7716feac0e179baf554ca834595890944bb788fe914962dd4091ff49
-
SSDEEP
1536:zb/dg5l19XujH6lGp9yc2pbP3DMqy3U5ckw7P9OVmjgqS:/VSl19ejH6MCc2bP3DIkvVyTS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 02f4daa51acf49ed4fbb3bec7b321e28
Files
-
02f4daa51acf49ed4fbb3bec7b321e28.sys windows:5 windows x86 arch:x86
c3151e02a09a1afbeafc12ab3c2f24b7
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
KeInitializeEvent
DbgPrint
IoAllocateMdl
KeInitializeDpc
IoGetRelatedDeviceObject
Sections
.text Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 25KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 256B - Virtual size: 172B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 256B - Virtual size: 152B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ