Static task
static1
General
-
Target
754c6acf6faac479974d6a4aab0675c7
-
Size
13KB
-
MD5
754c6acf6faac479974d6a4aab0675c7
-
SHA1
5392aa61851102ee1f2d9e2319080acdfd3da7f7
-
SHA256
e0e1f3b03ecce83b8c10b3c41374c54d59a78d9521b9400fcbcce023f8ed09a2
-
SHA512
de6b2dc180dfbd87cad4159dca3aba964f52d0fdc511320b15e39a4a5070b59d34b4d521587c883d1e0eb2b280f199e5008e78f9b385e536887c9f5b2b7e52ca
-
SSDEEP
192:xeL4yrPTU9+E8p3tOW0/nVpdmQUZmXEBm2yjLTCuzrb56ZbyseiER:80ATU9H8HOW+HEoLCulAbyseiE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 754c6acf6faac479974d6a4aab0675c7
Files
-
754c6acf6faac479974d6a4aab0675c7.sys windows:4 windows x86 arch:x86
2df80650cc1853520a241690a4ebf486
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ndis.sys
NdisWaitEvent
ntoskrnl.exe
DbgBreakPointWithStatus
MmGetSystemRoutineAddress
Sections
.text Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 192B - Virtual size: 172B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 960B - Virtual size: 956B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE