Static task
static1
General
-
Target
c9eb625fe174af124321eb91e5253338
-
Size
33KB
-
MD5
c9eb625fe174af124321eb91e5253338
-
SHA1
40593ed2098ad274d350dd24161e89fada4454c3
-
SHA256
e9e834d3ecc30da7e149b08e8ede2b75bc931de0f1f3c4ecd344e86856c24d5e
-
SHA512
2576561e3b2deeb4b2aa0bf0748a508fa495faac3df017f14a5e11ecafe2874dd18eaaf8b1b272c63112bbafd2aecdf665216955e2a1f00752bfeb133b7c917d
-
SSDEEP
768:eNNLklk65IJOW88Gbpj+Bi8CvhyP/kvxtGmpF//RfNBy7FaMh0lWvUKg1a:6Ak67W88MsdCesOY/RNBy7F8Wv+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource c9eb625fe174af124321eb91e5253338
Files
-
c9eb625fe174af124321eb91e5253338.sys windows:4 windows x86 arch:x86
f3d2b2b4069b4b7ef59f94d85caaf96f
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ntoskrnl.exe
ord43780
ord43796
ord43806
ord43816
ord43828
ord43846
ord43860
ord43872
ord43896
ord43916
ord43950
ord43982
ord43996
ord44020
ord44046
ord44070
ord44094
ord44120
ord44146
ord44174
ord44184
ord44194
ord44206
ord44224
ord44248
ord44276
ord44290
ord44316
ord44336
ord44350
ord44360
ord44382
ord44400
ord44424
ord44442
ord44452
ord44472
ord44508
ord44520
ord44530
ord44560
ord44574
ord44584
ord44606
ord44618
ord44650
ord44666
ord44678
ord44698
ord44722
ord44732
ord44742
Sections
.text Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
PAGE Size: 64B - Virtual size: 50B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
INIT Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 640B - Virtual size: 616B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ