Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
1909a177d8f646c0993e5e58347e1a0b39b71dc45ad4ae49faa631683c18a3e6.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
1909a177d8f646c0993e5e58347e1a0b39b71dc45ad4ae49faa631683c18a3e6.dll
Resource
win10v2004-en-20220112
Target
1909a177d8f646c0993e5e58347e1a0b39b71dc45ad4ae49faa631683c18a3e6
Size
615KB
MD5
3bfef2a13f7cbbe2c872bef76adb676b
SHA1
dd972d20477223b75ffddf0b2e65b533a431aa14
SHA256
1909a177d8f646c0993e5e58347e1a0b39b71dc45ad4ae49faa631683c18a3e6
SHA512
5ef53f6cc283f38212c4818576bcaaee80518fc383639b4051e498778f60e1751be09c2738b4e8b9a21620a047e5e916e4effd7f48d1035779b35d9ae1a1e543
SSDEEP
12288:FTsor70Aeojgc4+o07OCi6HY7FpW0zm0pF:FTXjeojgc4+lDZY5pF
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
CN=4koncepty bar s.r.o. ,OU=IT Dept.,O=4koncepty bar s.r.o. ,ST=Olomoucký kraj,C=CZ
CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB
CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB
CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
GetThreadUILanguage
AreFileApisANSI
GetThreadErrorMode
GetCurrentProcessorNumber
GetCommandLineW
GetTickCount
IsSystemResumeAutomatic
IsDebuggerPresent
GetACP
SwitchToThread
GetLastError
TlsAlloc
GetCommandLineA
UnregisterApplicationRestart
FlushProcessWriteBuffers
GetCurrentThreadId
GetSystemDefaultUILanguage
RaiseException
InitializeCriticalSectionEx
DeleteCriticalSection
DecodePointer
MultiByteToWideChar
LoadResource
SizeofResource
FindResourceW
GetModuleHandleW
GetProcAddress
LoadLibraryExW
GetEnvironmentStringsW
lstrcmpiW
FreeLibrary
WriteConsoleW
CreateFileW
ReadConsoleW
SetStdHandle
FreeEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetFilePointerEx
GetFileSizeEx
HeapSize
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetFileType
GetStdHandle
GetProcessHeap
SetFileApisToOEM
CloseHandle
ReadFile
FindClose
GetTickCount64
GetModuleFileNameW
LoadLibraryA
HeapFree
HeapReAlloc
HeapAlloc
GetModuleHandleExW
ExitProcess
InterlockedFlushSList
RtlUnwindEx
RtlPcToFileHeader
OutputDebugStringW
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
TlsFree
TlsSetValue
TlsGetValue
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LeaveCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
WideCharToMultiByte
EncodePointer
SetLastError
IsProcessDPIAware
GetForegroundWindow
CreateMenu
GetMenuCheckMarkDimensions
CloseClipboard
GetCapture
GetKBCodePage
GetMessageTime
AnyPopup
EmptyClipboard
InSendMessage
GetMessageExtraInfo
GetClipboardSequenceNumber
GetFocus
SetCursor
LoadCursorW
CharNextW
GetActiveWindow
GetOpenClipboardWindow
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
CoFreeUnusedLibraries
CoTaskMemRealloc
VarUI4FromStr
InternetQueryDataAvailable
DllGetClassObject
DllRegisterServer
PluginInit
RunObject
agvyjdzypobnsargs
aqxwaxny
bjjaxqlla
bjyzuibwsuj
blncfpmojeayd
bwdxmcxfixuoc
bytkcfwhdrka
ccoezihsesvpls
cfkyivzitrzhur
cgxnvwjbhftolrrb
cyfsxoi
czzfsddzavhg
djmdnybzmages
dnezrvbbcx
dvoyihxgouyyexs
ecxoasmifw
elviyrknh
emcmormweuraxnaor
flcvfqwdfm
fvixnin
fytvufcjwz
gjdksjieimx
goanyccctibq
gybzdpgguj
hcnlgacvkljuyep
icwxbwznrzj
imrwynoscgwuxshn
jdsttiezudrdg
jemnjfkwaqrita
kdaztrfftbflndyo
kejikerlvemgnvue
knqaweqhmhrsxzk
lczhcemghbs
lipjetq
lveoogolfl
maxkhczficuh
mcwadssxplkxfnnmy
nddkbbduczq
njsnwilgnwovybg
nywktdinixh
nzyvzpv
oksllvcggpd
opfnqowiw
owetsge
pivdfpxswt
pombpqo
pwpguvkpsaycpfy
pzxvycwtttvgvgogc
qdxqnbreztcbgaem
qqswdfrip
rcbusnykquk
rlrrolcxmujj
rqirfekuucg
rwcbluazrf
sfthjfombv
sxstktnrufmqdttlf
tdvkufxakj
tgaysmkxmzkv
trwunokumyjcxkwpu
utkhier
vafsiizop
veydvct
vjlwuhyhgxsgxzr
vkglkjzyyfevjldrj
wwxzyrc
xefdgytmdc
xjxmjnp
xvifgxkvbcfo
xwmyova
yiquybklpy
ykdoausokanhxbqmv
yxardjae
zatwsmd
zfgzcfdjijnedifc
zhuhgtmmkeqnralx
ztzbumjfswzxc
zxjwaycxz
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ