d:\sys\i386\RESSDT.pdb
Static task
static1
1 signatures
General
-
Target
7c7e7262ac461e107f02895595adbe95
-
Size
3KB
-
MD5
7c7e7262ac461e107f02895595adbe95
-
SHA1
29f964e7e17960f1aec4b8d4f5a7ccad3d07886d
-
SHA256
b966b3b51c5a98e64484e25db91097937e816e26aeb7cb1b150d055eee6cb614
-
SHA512
01d51b64ac80628d7b45ab6156799731a9d4c534b7761fabdc7fe22d601f382ddff007ebf7fc28937d7ef90d74c3118d729609c6cfdfba62c5d680c1ef9c1b55
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7c7e7262ac461e107f02895595adbe95
Files
-
7c7e7262ac461e107f02895595adbe95.sys windows:5 windows x86 arch:x86
594e43653bf56a8fcabe744f912e533a
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ntoskrnl.exe
IoCreateSymbolicLink
DbgPrint
IoCreateDevice
RtlInitUnicodeString
IofCompleteRequest
IoDeleteDevice
IoDeleteSymbolicLink
KeServiceDescriptorTable
ProbeForWrite
ProbeForRead
_except_handler3
KeTickCount
Sections
.text Size: 1024B - Virtual size: 1024B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 256B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 512B - Virtual size: 418B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 256B - Virtual size: 130B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ