?IsCommandLine@@YGXI<V
?RemoveSystemExW@@YGPAXPAHK<V
?SetSectionA@@YGIMGJ<V
?PutDialogOriginal@@YGXE<V
?RemoveRect@@YGDKPA_N<V
?DecrementDirectoryOriginal@@YGGPAKPAEH<V
Static task
static1
Behavioral task
behavioral1
Sample
d04025f3da16436a689232dbf1603d189e93b7bf6fb838be9b81ebc06e49d77e.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d04025f3da16436a689232dbf1603d189e93b7bf6fb838be9b81ebc06e49d77e.dll
Resource
win10v2004-20220812-en
Target
d04025f3da16436a689232dbf1603d189e93b7bf6fb838be9b81ebc06e49d77e
Size
159KB
MD5
70fe2eb5716d3549242e61b4cc1f19b3
SHA1
d98d78fbb8d1881f361750555a390f4cf65f14c6
SHA256
d04025f3da16436a689232dbf1603d189e93b7bf6fb838be9b81ebc06e49d77e
SHA512
6dc38c8a5fb046c3c35ea97c1f3e0b7e41c3307e230ce59c7944e089ce760b2bb172ce93304e17180618ace77792b648aee29f08600c8d34d39081d60d8b31b2
SSDEEP
3072:BTQ/iXjoSGkAbNRXtqL4OOyveIn0C2cJaJFs0r9gkJKqDm+TAnBRjvt:BTSvBZkL4OB0C2ckJ4f+iBRjv
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
RtlInsertUnicodePrefix
SeImpersonateClientEx
RtlAreBitsSet
CcPinMappedData
IoFreeMdl
MmUnmapReservedMapping
RtlCompareUnicodeString
KeReleaseMutex
CcUninitializeCacheMap
IoGetDeviceProperty
IoRemoveShareAccess
RtlNtStatusToDosError
SeCaptureSubjectContext
KeLeaveCriticalRegion
PoCallDriver
IoSetHardErrorOrVerifyDevice
ZwSetValueKey
IofCompleteRequest
KeTickCount
RtlPrefixUnicodeString
ZwCreateKey
RtlInitializeUnicodePrefix
RtlFindLeastSignificantBit
IoGetTopLevelIrp
RtlWriteRegistryValue
IoVerifyPartitionTable
IoCheckEaBufferValidity
IoWMIRegistrationControl
KeGetCurrentThread
KeEnterCriticalRegion
ExDeleteResourceLite
RtlTimeToSecondsSince1970
FsRtlIsHpfsDbcsLegal
CcRepinBcb
KeCancelTimer
ExAllocatePool
MmUnsecureVirtualMemory
ExSetResourceOwnerPointer
ObfReferenceObject
RtlValidSid
ExVerifySuite
RtlCreateSecurityDescriptor
RtlFreeAnsiString
ProbeForRead
IoSetPartitionInformationEx
ObReferenceObjectByPointer
IoReleaseVpbSpinLock
RtlAnsiCharToUnicodeChar
RtlDelete
IoGetAttachedDevice
MmSetAddressRangeModified
IoAllocateErrorLogEntry
CcPreparePinWrite
?IsCommandLine@@YGXI<V
?RemoveSystemExW@@YGPAXPAHK<V
?SetSectionA@@YGIMGJ<V
?PutDialogOriginal@@YGXE<V
?RemoveRect@@YGDKPA_N<V
?DecrementDirectoryOriginal@@YGGPAKPAEH<V
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.