ASIO32.sys
We were not able to verify the hash of this driver successfully, it has not been confirmed.
Description
ASIO32.sys is a vulnerable driver and more information will be added as found.
- UUID: 920e3326-e5dc-446a-9993-6ec05266e0e0
- Created: 2023-01-09
- Author: Michael Haag
- Acknowledgement: |
Commands
sc.exe create ASIO32.sys binPath=C:\windows\temp\ASIO32.sys type=kernel && sc.exe start ASIO32.sys
| Use Case | Privileges | Operating System |
|---|
| Elevate privileges | kernel | Windows 10 |
Detections
Sigma 🛡️
Expand
Names
detects loading using name only
Hashes
detects loading using hashes only
Resources
https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/microsoft-recommended-driver-block-rulesKnown Vulnerable Samples
Imports
Expand
Imported Functions
Expand
Exported Functions
Expand
Sections
Expand
Signature
Expand
Imports
Expand
Imported Functions
Expand
Exported Functions
Expand
Sections
Expand
Signature
Expand
Imports
Expand
Imported Functions
Expand
Exported Functions
Expand
Sections
Expand
Signature
Expand
Imports
Expand
Imported Functions
Expand
Exported Functions
Expand
Sections
Expand
Signature
Expand
Imports
Expand
Imported Functions
Expand
Exported Functions
Expand
Sections
Expand
Signature
Expand
Imports
Expand
Imported Functions
Expand
Exported Functions
Expand
Sections
Expand
Signature
Expand
source
last_updated: 2024-09-26