Static task
static1
General
-
Target
99bd8cd19e026e7b084d0d3bf50627cb
-
Size
7KB
-
MD5
99bd8cd19e026e7b084d0d3bf50627cb
-
SHA1
f20ee03fba19d56a49defe4273e1d95a119d8cef
-
SHA256
2408c05c3c1bb4baeb2bb5f18566541e434ff466f581098e7da8dc0c11f8976d
-
SHA512
982ec73a916f6ea7947871e414a62872a0efb80bd51f9c054fd0f993a1d8a67c8526066e89310b6a6141a3672fe0d13767f90ef0dd71dbec4d2b11056a57e9aa
-
SSDEEP
48:icB2qPndhyvcnG4E9RGmLqrfYmwpxVh0d7hkBbNk:0UnSvcnhUwAmc0Zhk9
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 99bd8cd19e026e7b084d0d3bf50627cb
Files
-
99bd8cd19e026e7b084d0d3bf50627cb.sys windows:5 windows x86 arch:x86
d9c9c4541168665f44917e3ddc4a00d5
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
DbgPrint
Sections
.text Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 128B - Virtual size: 100B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 96B - Virtual size: 68B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
INIT Size: 96B - Virtual size: 74B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 96B - Virtual size: 90B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ