c:\views\antioch_nnpl_cysuiteusb_latest\software\products\hsusb\cysuiteusb\cyusb_sys\src\objfre_wnet_amd64\amd64\cyusb.pdb
Static task
static1
1 signatures
General
-
Target
1acd9836a5c760e726fb89e66c24177f64195d39b8f6a3371167afd9a1bb60d7
-
Size
46KB
-
MD5
b6364455e51d781032d8ab6689cc2102
-
SHA1
61e421ad45a76d254fc340b9b31b30bf8eebca26
-
SHA256
1acd9836a5c760e726fb89e66c24177f64195d39b8f6a3371167afd9a1bb60d7
-
SHA512
dcaf096d7b8413fccd25979c28fe13c8a869b38f04101a67c2314bb29136b2a1bdaa2312c9caa4fdc94a8cb337e0e1f9f798512528693d750437f6a1e931d317
-
SSDEEP
768:w7UgXNCpiwRZuZoACAkQn88ok0Q8dpSiooDseaq98GPadlm3oBe3I815nV13EtJ:w91CKok5epupg3fznV13EtJ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1acd9836a5c760e726fb89e66c24177f64195d39b8f6a3371167afd9a1bb60d7
Files
-
1acd9836a5c760e726fb89e66c24177f64195d39b8f6a3371167afd9a1bb60d7.sys windows:6 windows x64 arch:x64
c294c3f793300bd60d3e6a308fe01d1f
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
ntoskrnl.exe
KeClearEvent
ExFreePoolWithTag
IoRegisterDeviceInterface
IoDeleteDevice
KeSetEvent
KeInitializeEvent
IoDetachDevice
PoSetPowerState
IofCompleteRequest
IoAttachDeviceToDeviceStack
IoIsWdmVersionAvailable
IoInitializeRemoveLockEx
IoCreateDevice
IoAllocateWorkItem
KeWaitForSingleObject
IoQueueWorkItem
PoStartNextPowerIrp
PoCallDriver
IofCallDriver
ZwReadFile
RtlInitUnicodeString
ZwCreateFile
ZwClose
ZwQueryInformationFile
IoAcquireRemoveLockEx
IoSetDeviceInterfaceState
RtlFreeUnicodeString
IoReleaseRemoveLockAndWaitEx
ObfReferenceObject
IoReleaseRemoveLockEx
KeAcquireSpinLockRaiseToDpc
IoCancelIrp
IoFreeWorkItem
IoGetDeviceProperty
IoFreeIrp
IoAllocateIrp
IoBuildDeviceIoControlRequest
KeSetImportanceDpc
IoFreeMdl
KeInsertQueueDpc
MmUnlockPages
MmUnmapLockedPages
IoBuildPartialMdl
KeInitializeDpc
IoAllocateMdl
RtlGUIDFromString
IoReportTargetDeviceChangeAsynchronous
ProbeForRead
ProbeForWrite
RtlUnicodeStringToAnsiString
MmMapLockedPagesSpecifyCache
MmProbeAndLockPages
RtlQueryRegistryValues
IoOpenDeviceRegistryKey
KeBugCheckEx
ExFreePool
KeReleaseSpinLock
PoRequestPowerIrp
ExAllocatePoolWithTag
__C_specific_handler
usbd.sys
USBD_CreateConfigurationRequestEx
USBD_ParseConfigurationDescriptorEx
USBD_GetUSBDIVersion
Sections
.text Size: 34KB - Virtual size: 33KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
PAGE Size: 512B - Virtual size: 288B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
INIT Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 238B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ