Static task
static1
1 signatures
General
-
Target
a1dba12ebe2be234d3946a7fd6776d65
-
Size
59KB
-
MD5
a1dba12ebe2be234d3946a7fd6776d65
-
SHA1
b70707f0c89630ed70a7c25d51bc320e5a3036a2
-
SHA256
60d4363b1f123d64ab534252297246e9eed2ed39c4d32a7a1d3dd72adc3cd0ec
-
SHA512
142208f1c440dcae63627a15fb696ea1788002bd5c3c1c9d6f8ce6b16b8e2295bd06403bee63a0858fc84036d228d78e39ae38ca2055ad2c59b322169f0261a5
-
SSDEEP
1536:X88j6809EAGsZK+nY/lN9UCzx/MDxTpGMozef3w2nik8A:MrPSAGsH2lnvx/MDxTg3zef3Bnii
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a1dba12ebe2be234d3946a7fd6776d65
Files
-
a1dba12ebe2be234d3946a7fd6776d65.sys windows:5 windows x86 arch:x86
578b7369e425a7a93edbc847ba0f3f59
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
swprintf
ExFreePool
RtlCompareUnicodeString
ExAllocatePoolWithTag
RtlImageDirectoryEntryToData
Sections
Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE