Static task
static1
General
-
Target
0254bd0ef41af7001052dabb226f58a8
-
Size
8KB
-
MD5
0254bd0ef41af7001052dabb226f58a8
-
SHA1
74aa4d36526f91fd540fe096e73dd8bcde42be61
-
SHA256
3d383b9e6d8053d8b98bbe879c7f41adb88f5f88668605c9eef0b70334536db5
-
SHA512
1a9ad9dccf95923b20c044dfc7bafe5756ad21855ec15ba9c5e4901dfb7e8495e08ca232cb97360f7ef5f51d55ca096ead7d1a9c937521f7354a63b99e7cd43d
-
SSDEEP
96:aB8EsCbVkNGBsSyUfcOszMBs86NAvpAbxxLTHV4Au/n99/ls49cyLcbddtwEpLCt:As6sOsWs8tkxxnV4Au/n99KgcKEkma
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0254bd0ef41af7001052dabb226f58a8
Files
-
0254bd0ef41af7001052dabb226f58a8.sys windows:5 windows x86 arch:x86
839504a3b3e7f0c6f906b22a2933a8e3
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
IofCompleteRequest
ZwDeleteFile
KeTickCount
RtlInitUnicodeString
Sections
.text Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 256B - Virtual size: 133B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128B - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 256B - Virtual size: 226B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 256B - Virtual size: 164B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ