G:\Driver\i386\Driver.pdb
Static task
static1
1 signatures
General
-
Target
a27a5502dc7b970ce8cd3a5066fd5ab9
-
Size
2KB
-
MD5
a27a5502dc7b970ce8cd3a5066fd5ab9
-
SHA1
15cdcfab09aac9adaa1306136a71ba189bbec05b
-
SHA256
a9085dbfebefa884c1055ba50f0b911d11d64c67364d797255915efdc07bf6ba
-
SHA512
ce6b60460383b44a3983071716822fb5cc8173fd382114e00ad537fb618eec39e30fba37342a397c8fe9e2ce03256b4ea7b6e03a9e87d05e01eda7c97ada7403
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a27a5502dc7b970ce8cd3a5066fd5ab9
Files
-
a27a5502dc7b970ce8cd3a5066fd5ab9.sys windows:5 windows x86 arch:x86
5ae8f84fe4ac06efef4c115c1d97240a
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ntoskrnl.exe
IofCompleteRequest
IoDeleteDevice
IoDeleteSymbolicLink
IoFreeMdl
MmUnmapLockedPages
MmMapLockedPages
MmBuildMdlForNonPagedPool
MmCreateMdl
ZwQueryDirectoryFile
KeServiceDescriptorTable
ProbeForWrite
ProbeForRead
IoCreateSymbolicLink
IoCreateDevice
RtlInitUnicodeString
PsGetVersion
_except_handler3
Sections
.text Size: 768B - Virtual size: 714B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 256B - Virtual size: 174B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 128B - Virtual size: 32B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 512B - Virtual size: 472B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 128B - Virtual size: 110B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ