Static task
static1
General
-
Target
39581eb95dd4b671952056656969d161
-
Size
7KB
-
MD5
39581eb95dd4b671952056656969d161
-
SHA1
1744ec3fb3d23905be6c2396f742d0d3edc0b036
-
SHA256
d74febfe21f74e814c9f5e5c21f3f8f89dc62bfae930252155abf701056d3180
-
SHA512
b33d4e402c82e11d81549ba9dfb3cbbcc6ba9ef3cd316fa1b2256640377c6328422b4324ffece5fd5b70abc422f2f792698560fde99f84d19b182b18f43703fd
-
SSDEEP
48:icB6O8OlUPndqv33Eqrcn/ZEE9bQ6t/1cqJDw6w+EUh0LGJ8R:d6Op8n9ecnBNQ6F1Jw6lE20LG
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 39581eb95dd4b671952056656969d161
Files
-
39581eb95dd4b671952056656969d161.sys windows:5 windows x86 arch:x86
d9c9c4541168665f44917e3ddc4a00d5
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
DbgPrint
Sections
.text Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 128B - Virtual size: 100B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 96B - Virtual size: 68B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
INIT Size: 96B - Virtual size: 74B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 128B - Virtual size: 98B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ