Bringname
Cleartoward
Donewere
Legdrive
OneFinger
Sonswim
Thousand
Washcome
Static task
static1
Behavioral task
behavioral1
Sample
d8609d51a67ae6dad5b6953236bb59ca9563cdb00aaa746636225eda1a0fba98.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
d8609d51a67ae6dad5b6953236bb59ca9563cdb00aaa746636225eda1a0fba98.dll
Resource
win10-en-20211208
Target
d8609d51a67ae6dad5b6953236bb59ca9563cdb00aaa746636225eda1a0fba98
Size
315KB
MD5
9f24e3374fd1786b9f5246463413ec08
SHA1
0575006428526121cc1b0382512b27d77a742026
SHA256
d8609d51a67ae6dad5b6953236bb59ca9563cdb00aaa746636225eda1a0fba98
SHA512
6f586650038f82e8620d44375f3f71b6851d3ef7d52af2516c7e4e714160f25b370db32a5d8f04235ff8a9cabe28836f7b108df4fd6465dbbc14b5eec169c948
SSDEEP
3072:TsN//P/zD85fNsfmMBkw28lmNQOfNcopS94e+gpiHLXQAAAvvzBSV278HjCFo3s:MzDkmra8oNBTppeCVSV278DufMs9zD
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GetEnvironmentVariableW
GetDateFormatW
GetFileSize
SetEndOfFile
CreateProcessW
QueryPerformanceCounter
GetModuleHandleW
OpenProcess
SizeofResource
GetVersionExW
ReadFile
CreateFileW
GetCurrentDirectoryW
CreateSemaphoreW
LockResource
VirtualProtect
DeleteCriticalSection
CloseHandle
GetWindowsDirectoryW
GetSystemTime
SetFileAttributesW
OutputDebugStringW
WriteConsoleW
GetStringTypeW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
EncodePointer
DecodePointer
DuplicateHandle
GetLastError
GetCurrentProcess
GetCommandLineA
GetCurrentThreadId
RaiseException
RtlUnwind
IsDebuggerPresent
IsProcessorFeaturePresent
GetFileType
GetProcAddress
ExitProcess
GetModuleHandleExW
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
HeapSize
HeapFree
GetACP
EnterCriticalSection
LeaveCriticalSection
SetLastError
SetStdHandle
GetStdHandle
GetStartupInfoW
HeapAlloc
GetProcessHeap
GetModuleFileNameA
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
WriteFile
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetModuleFileNameW
LoadLibraryExW
IsValidCodePage
GetOEMCP
GetCPInfo
HeapReAlloc
LCMapStringW
GetLocaleInfoW
FlushFileBuffers
WSAStartup
WSASocketW
WSAWaitForMultipleEvents
WSAConnect
WSACleanup
Bringname
Cleartoward
Donewere
Legdrive
OneFinger
Sonswim
Thousand
Washcome
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ