Static task
static1
General
-
Target
51a9675a4300224fc23778df31f63066
-
Size
108KB
-
MD5
51a9675a4300224fc23778df31f63066
-
SHA1
61ade0c7f185efb24fcd73467746955c7a1910ab
-
SHA256
21164c0dd04d57f5556c2f6a3255bf46319d1979bf430167854e31812732c0c6
-
SHA512
fa80db943648b2cb1713af1977885d1c88033529c618272b1025199e8df73dd4488705a114db99828f0189269f3005ccce70f970dde6bc91719d898da93a2109
-
SSDEEP
1536:X7T5iS5DAPJwkeyXtEvFxk44iCp5zqhvADzNFl7pSLRHMDJCoORC0ITd0wqd:LT5iwDAPTeyJpIhvAFrlSLRJC0I7qd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 51a9675a4300224fc23778df31f63066
Files
-
51a9675a4300224fc23778df31f63066.sys windows:5 windows x86 arch:x86
578b7369e425a7a93edbc847ba0f3f59
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
swprintf
ExFreePool
RtlCompareUnicodeString
ExAllocatePoolWithTag
RtlImageDirectoryEntryToData
Sections
Size: 11KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE