abb99aa54fb5af3ecd0ad5161bc24cbe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

abb99aa54fb5af3ecd0ad5161bc24cbe
Size

992KB
MD5

abb99aa54fb5af3ecd0ad5161bc24cbe
SHA1

68620fe0a567dd36082b1ac6baa4086ec7fc34d7
SHA256

e2ec3071bb33be8f3310a2b06ec9a7746fb7fc4f9b2b5c1720c3483d4ed3ecad
SHA512

9907670e45f34211d63a78b0f4f4197a7878de32c34378124bcaec9efd3a30a83d7486388cc3840660ab5705481487a80fc40be750bcaecac38fdbf9fd140309
SSDEEP

24576:jq34H261959KOEwhvVXdN/XPPdq5OHm//RyRXEPS7YOp5X9:m34X/9KihdN/XPPdq+MojX9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abb99aa54fb5af3ecd0ad5161bc24cbe

Files

abb99aa54fb5af3ecd0ad5161bc24cbe
.sys windows:6 windows x64 arch:x64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

init
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

page
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.aot
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ