Static task
static1
General
-
Target
755c35663b2fdd5e6289cc73517dafe4
-
Size
1KB
-
MD5
755c35663b2fdd5e6289cc73517dafe4
-
SHA1
64e22b92360c11a82afda147d019c6027a71ca90
-
SHA256
cf22abf6928f74093d8d0538d5335c357b826d7ffa0036c3ab3c95e2051c323d
-
SHA512
03b1b4e401ec0c684f7a0ba71a83faa7774233a587da54867071731eca10f0f1c6a8197fdfe4baf3dc15cffca48093ab03d105d2a9017c085e6941149d3c1897
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 755c35663b2fdd5e6289cc73517dafe4
Files
-
755c35663b2fdd5e6289cc73517dafe4.sys windows:5 windows x86 arch:x86
a94f8faa78b398502ce6c362bc6011e0
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
ZwClose
ZwTerminateProcess
ZwOpenProcess
ZwQuerySystemInformation
ExAllocatePoolWithTag
ExFreePoolWithTag
Sections
.rdata Size: 256B - Virtual size: 130B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PAGE Size: 128B - Virtual size: 3B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
INIT Size: 640B - Virtual size: 594B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 128B - Virtual size: 36B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ