Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
b5fe9af692205ebc867859f7006712b34b5c4532e0895841c66d0aebb88cffc6.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
b5fe9af692205ebc867859f7006712b34b5c4532e0895841c66d0aebb88cffc6.exe
Resource
win10v2004-20220414-en
Target
b5fe9af692205ebc867859f7006712b34b5c4532e0895841c66d0aebb88cffc6
Size
235KB
MD5
1f7f6928534ff002dbe843380d619e45
SHA1
5712a3cd5c72e2cfb648135a97850637ac9c4681
SHA256
b5fe9af692205ebc867859f7006712b34b5c4532e0895841c66d0aebb88cffc6
SHA512
8ec6d3bd9d30f9b659bcf22d23e6985e5e88b7ef5b719f7e23250a18b267218bc0b62d5cf07b057fe5f3105228313385d33b3a63d75107ec44d7f519caf9a3b9
SSDEEP
3072:iumnHhDaVB4gUtWbP8cJfpmIFGkyooKrulU2FrfUIfNjfvbBt/Tt:ZmncVB4x4P8cJAn/bU47J1jfDjrt
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
CN=5Y TECHNOLOGY LIMITED,O=5Y TECHNOLOGY LIMITED,ST=Essex,C=GB
CN=Sectigo Public Code Signing CA R36,O=Sectigo Limited,C=GB
CN=Sectigo Public Code Signing Root R46,O=Sectigo Limited,C=GB
CN=AAA Certificate Services,O=Comodo CA Limited,L=Salford,ST=Greater Manchester,C=GB
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
lstrcatA
lstrcmpW
MultiByteToWideChar
lstrlenW
Process32FirstW
FileTimeToSystemTime
Process32NextW
GetModuleHandleA
lstrcatW
CloseHandle
Sleep
GetSystemTimeAsFileTime
InterlockedDecrement
LocalAlloc
lstrcmpA
CreateFileW
FlushFileBuffers
WriteConsoleW
SetStdHandle
HeapReAlloc
GetStringTypeW
LCMapStringW
GetConsoleMode
GetLastError
lstrlenA
WideCharToMultiByte
LocalFree
HeapAlloc
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
RaiseException
HeapFree
RtlUnwind
EncodePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteFile
GetStdHandle
GetModuleFileNameW
HeapCreate
GetCPInfo
InterlockedIncrement
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LoadLibraryW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapSize
IsProcessorFeaturePresent
SetFilePointer
GetConsoleCP
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExW
RegCloseKey
CoUninitialize
CoInitializeSecurity
CoInitializeEx
CoCreateInstance
SysFreeString
VariantInit
VariantClear
SysAllocString
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ