Static task
static1
General
-
Target
729106406073cc6ddff1c0e212d1da40N
-
Size
146KB
-
MD5
729106406073cc6ddff1c0e212d1da40
-
SHA1
53d5c9ac7b46369336e2be25899ace497dc3796d
-
SHA256
f2406f747a6b608eb1bb2e3f1d3330bb4aebba74362c8a179f4aecc990d86475
-
SHA512
69d56323f75f1aaf7bf35b6f15aec955ce533bc24526278e6b1f9aefa2dbc739c43c8c3795165e4ca5870f45ed6b169d5a3d5a8bc51512a9aec64e8a5eaf9937
-
SSDEEP
3072:7P0kFWt6UZEpY3cAihkgcWeysr3Kthh6mV7ZItuCJ:vLsMbUWeysr30hhx7ZIzJ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 729106406073cc6ddff1c0e212d1da40N
Files
-
729106406073cc6ddff1c0e212d1da40N.sys windows:6 windows x86 arch:x86
afa034687d96cd869e362168e9f477a8
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ntoskrnl.exe
wcsncat
IoAllocateMdl
MmProbeAndLockPages
MmMapLockedPagesSpecifyCache
MmUnlockPages
IoFreeMdl
ExAllocatePool
ExFreePool
NtQuerySystemInformation
hal
KeRaiseIrqlToDpcLevel
HalMakeBeep
fltmgr.sys
FltUnregisterFilter
Sections
.text Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 768B - Virtual size: 708B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 256B - Virtual size: 144B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
INIT Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.abb0 Size: 81KB - Virtual size: 81KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.abb1 Size: 50KB - Virtual size: 50KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ