Static task
static1
General
-
Target
98667da1c9b3bd9b396645393438db6a
-
Size
40KB
-
MD5
98667da1c9b3bd9b396645393438db6a
-
SHA1
791c3626d0ac3281f6439096677245935eb44b3f
-
SHA256
3b3c1820d96398fc8325737af06beff391876f173eebf88155040049c2c89638
-
SHA512
2d7b8eb60cbf55d9792e419e48103df7783c97766afa24b7637ae1da343bbeb1ce6e8ec300d53260a6d1436aac8b8c6fd566e719a07c4431377ac34b41aced3a
-
SSDEEP
768:O4MxiLSnOrBBQARQkttPETFqFLPZw6WFGx+KfESX1:GxiLSOrBBQARAT2WFGx+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 98667da1c9b3bd9b396645393438db6a
Files
-
98667da1c9b3bd9b396645393438db6a.sys windows:4 windows x86 arch:x86
c05d4fd4654981e3c5673665976cecba
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
KeAttachProcess
KeDe
IoIsWdmVersionAvailable
IoGetCurrentProcess
Sections
.text Size: 33KB - Virtual size: 33KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 32B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 928B - Virtual size: 928B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 1012B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ