Static task
static1
General
-
Target
3987727d085d5ed71debf4aa39c09245
-
Size
1KB
-
MD5
3987727d085d5ed71debf4aa39c09245
-
SHA1
0de5d05e6f4f82df9248fef38d8a8262e0819009
-
SHA256
641b45839204ecc50f4a6354e69ae6e2901e358d4767a03d937911d219e394d6
-
SHA512
10ce0a85efa3cbb9cfb4c4907740adfb5966f0b1959ceac9b1913d2af53ef6833dc1847c6d8b4a44c9b62d52f8cea52d6534535020f33334c64b2444daad7184
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3987727d085d5ed71debf4aa39c09245
Files
-
3987727d085d5ed71debf4aa39c09245.sys windows:5 windows x86 arch:x86
a94f8faa78b398502ce6c362bc6011e0
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
ZwClose
ZwTerminateProcess
ZwOpenProcess
ZwQuerySystemInformation
ExAllocatePoolWithTag
ExFreePoolWithTag
Sections
.rdata Size: 256B - Virtual size: 148B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PAGE Size: 128B - Virtual size: 3B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
INIT Size: 512B - Virtual size: 474B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 128B - Virtual size: 36B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ