f:\project\wang\ch34xser\ch343ser\v160t\ch343ser_v16\objfre_w2K_x86\i386\CH343SER.pdb
Static task
static1
1 signatures
General
-
Target
9543dfb282dff383ad4a04098ada1c2855e6a6bec8f3c3a70f1b0de760b00fc8
-
Size
46KB
-
MD5
9cdd2cabde20d7cdefdcd97e06910cde
-
SHA1
0dd5fa0bfa6fd978ffa255085b0023fea1952ed1
-
SHA256
9543dfb282dff383ad4a04098ada1c2855e6a6bec8f3c3a70f1b0de760b00fc8
-
SHA512
e60c51820c59d8750a95efdf2739926eeab7c9dd8e34672aaa69d52045685a36a49b2e8e9a7660df13f4aa63fb89376fb6fe311fba5435715f970affe3fc9f65
-
SSDEEP
768:206zJVOU6jT4NL2xLOKUSfksfqN3Eipssxm9osxQSkdJQTNoo3GI:CJajTOKHfrfqZq60LzkdJYj3G
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 9543dfb282dff383ad4a04098ada1c2855e6a6bec8f3c3a70f1b0de760b00fc8
Files
-
9543dfb282dff383ad4a04098ada1c2855e6a6bec8f3c3a70f1b0de760b00fc8.sys windows:5 windows x86 arch:x86
5a1cfd0a893b9f3aeecd2cb370e9425c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ntoskrnl.exe
_allmul
ExFreePool
ExAllocatePool
InterlockedExchange
IoReleaseCancelSpinLock
InterlockedExchangeAdd
IoAcquireCancelSpinLock
InterlockedCompareExchange
KeClearEvent
KeInsertQueueDpc
KeRemoveQueueDpc
KeCancelTimer
ZwQueryValueKey
RtlInitUnicodeString
RtlQueryRegistryValues
memmove
ZwClose
IoOpenDeviceRegistryKey
PsTerminateSystemThread
KeSetPriorityThread
KeGetCurrentThread
KeDelayExecutionThread
PoRequestPowerIrp
KeSetTimer
KeQuerySystemTime
PsCreateSystemThread
sprintf
IoDeleteDevice
InterlockedIncrement
IoDetachDevice
IoDeleteSymbolicLink
IoAllocateIrp
RtlFreeUnicodeString
IoSetDeviceInterfaceState
RtlFreeAnsiString
RtlUnicodeStringToAnsiString
KeWaitForMultipleObjects
IoRegisterDeviceInterface
RtlWriteRegistryValue
IoCreateSymbolicLink
KeInitializeDpc
KeInitializeTimer
KeInitializeSpinLock
IoAttachDeviceToDeviceStack
IoCreateDevice
RtlAppendUnicodeStringToString
RtlIntegerToUnicodeString
RtlAppendUnicodeToString
IoFreeWorkItem
PoSetPowerState
PoCallDriver
IoWMIRegistrationControl
IoAllocateWorkItem
DbgPrint
KeTickCount
KeBugCheckEx
KeInitializeEvent
IoBuildDeviceIoControlRequest
KeWaitForSingleObject
InterlockedDecrement
KeSetEvent
IofCallDriver
IoQueueWorkItem
IoCancelIrp
RtlDeleteRegistryValue
IoFreeIrp
PoStartNextPowerIrp
IoGetConfigurationInformation
IofCompleteRequest
hal
ExReleaseFastMutex
KfRaiseIrql
ExAcquireFastMutex
KfLowerIrql
KfAcquireSpinLock
KfReleaseSpinLock
wmilib.sys
WmiSystemControl
WmiCompleteRequest
usbd.sys
_USBD_CreateConfigurationRequestEx@8
_USBD_ParseConfigurationDescriptorEx@28
Sections
.text Size: 38KB - Virtual size: 38KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 640B - Virtual size: 622B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 896B - Virtual size: 832B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 896B - Virtual size: 828B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ