Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
9d8d0c90b0fc5c3343a7f615c01f16cb859ef6fa37e46cdad9548787489f0996.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9d8d0c90b0fc5c3343a7f615c01f16cb859ef6fa37e46cdad9548787489f0996.exe
Resource
win10v2004-20220812-en
Target
9d8d0c90b0fc5c3343a7f615c01f16cb859ef6fa37e46cdad9548787489f0996
Size
576KB
MD5
102f924661a4788b3779c98c3f4729e0
SHA1
07a00ddb67eacc5052ab914f8969940730839362
SHA256
9d8d0c90b0fc5c3343a7f615c01f16cb859ef6fa37e46cdad9548787489f0996
SHA512
a0863f92bc1c5f8c9a433a64258e56664a12243a1bef741b61eebb47baaee3443bc038d9a17cdc44298c14fa137cc7dbcb23b0ec44f98afc98bdbb99f95d6349
SSDEEP
6144:y7lB27PYyYWIei23/lyl+GApU7ucEvsXGrNJ0gHnd2qNXggiuB/M/DlghHbN4zHe:ycPwT2PloKcEYo0Yggnos0todLnmMl
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
GetTabbedTextExtentA
TrackMouseEvent
DrawTextA
OemToCharW
DestroyIcon
MenuWindowProcA
RegisterHotKey
InvalidateRect
EnumDesktopWindows
CharToOemBuffA
BroadcastSystemMessageExA
GetWindowInfo
BringWindowToTop
CharPrevW
ChangeDisplaySettingsW
GetUpdateRgn
MessageBoxA
CreateDialogIndirectParamA
UnregisterDeviceNotification
GetSystemMetrics
OpenIcon
CheckRadioButton
ShowWindowAsync
CloseWindowStation
SendNotifyMessageW
IsIconic
SetCursorPos
GetMenuContextHelpId
SetFocus
EnumPropsExA
AppendMenuW
SetDlgItemInt
GetMenuItemID
GetWindowThreadProcessId
CharUpperBuffA
RemovePropA
SetCaretBlinkTime
UnregisterClassA
SetClassWord
GetMonitorInfoW
GetForegroundWindow
FillRect
GetTopWindow
SetProgmanWindow
GetAltTabInfoW
SetMenuItemInfoW
MenuItemFromPoint
ChangeMenuW
GetListBoxInfo
CharLowerW
CharToOemA
GetDC
CreateDialogParamA
SetProcessWindowStation
DrawCaptionTempW
EnumThreadWindows
DialogBoxParamW
GetClassLongW
CopyIcon
SetCursorContents
LockWindowUpdate
FindWindowExW
UnregisterClassW
DefFrameProcW
GetMenuState
GetDesktopWindow
SetSystemMenu
EnableWindow
CharToOemBuffW
CheckMenuItem
SetWindowsHookA
LoadStringW
DestroyAcceleratorTable
AttachThreadInput
RealGetWindowClassW
AdjustWindowRect
SetInternalWindowPos
DrawIcon
GetAncestor
GetUserObjectInformationW
RealGetWindowClassA
GetWindowWord
ClipCursor
DrawCaptionTempA
OpenWindowStationA
SetRect
ScrollWindow
GetDlgItemInt
SetPropW
LoadKeyboardLayoutA
ReleaseDC
CharPrevA
InvalidateRgn
IsDialogMessageA
GetWindowModuleFileNameW
CreateAcceleratorTableW
ValidateRgn
CloseWindow
ValidateRect
GetWindowDC
GetMenuStringW
SetCaretPos
GetWindowTextA
SetWindowWord
GetShellWindow
GetConsoleFontInfo
SuspendThread
GetTapePosition
GetLargestConsoleWindowSize
GetLogicalDriveStringsW
SetFileValidData
GetProcessAffinityMask
GetPrivateProfileStructW
GetAtomNameA
SetVolumeMountPointW
Sleep
GetProcessPriorityBoost
GlobalAddAtomA
CreateThread
EnumTimeFormatsW
GetCurrentActCtx
LocalFlags
LoadResource
WriteFileEx
LocalHandle
OpenMutexW
CreateWaitableTimerA
ExpandEnvironmentStringsA
EndUpdateResourceW
QueryDosDeviceA
GetCPInfoExW
GetDiskFreeSpaceW
GetExitCodeProcess
CallNamedPipeA
CreateSocketHandle
lstrcmpiA
LCMapStringA
QueueUserWorkItem
WriteProfileStringA
EnumCalendarInfoA
RegisterWaitForInputIdle
GetTapeParameters
GetCommMask
SystemTimeToTzSpecificLocalTime
GetNamedPipeHandleStateW
WriteProfileStringW
GlobalUnWire
SetTimeZoneInformation
FindFirstVolumeA
MoveFileWithProgressA
GetNumberOfConsoleInputEvents
GetFileType
WriteTapemark
UnmapViewOfFile
lstrcmpA
RegisterWowExec
CreateEventA
GlobalSize
UpdateResourceW
FindResourceExA
WritePrivateProfileSectionW
ReadFile
Heap32ListNext
WideCharToMultiByte
FindAtomA
InterlockedDecrement
GetProcessTimes
TryEnterCriticalSection
QueryMemoryResourceNotification
SetFileApisToOEM
GetPrivateProfileSectionNamesA
GlobalWire
FillConsoleOutputCharacterW
InitializeCriticalSection
AddRefActCtx
GetNamedPipeInfo
DelayLoadFailureHook
SetSystemTime
GetTempPathW
SetCommTimeouts
GetModuleHandleExA
GetProfileIntW
SetFileShortNameA
GlobalGetAtomNameW
GetProcessHeap
GetLastError
ConvertDefaultLocale
VirtualQuery
LoadLibraryA
GetCurrentProcessId
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess
PathAddExtensionW
CommDlgExtendedError
GetOpenFileNameA
ChooseColorA
ChooseFontW
VarUI2FromBool
GetVarConversionLocaleSetting
VarR4FromI2
VarI2FromDisp
ADVANCEDSETUPDIALOG
AddMonitorA
CreateBitmap
RemoveFontResourceA
GdiCleanCacheDC
GetFileVersionInfoSizeW
WTSWaitSystemEvent
WTSEnumerateProcessesW
WTSVirtualChannelPurgeInput
gethostname
WSARecvDisconnect
CreatePropertySheetPage
MenuHelp
ImageList_SetFlags
ImageList_SetIconSize
�┬-�$L����@���m��M�[V8!��d��a����䄲 ��9j�u�'K�i;��ҕ�`�����R��'�T���/�T�Ԕ��/�5��c�� �����?( ���kY�����9��g�"f����A��pj�/+�༻�(�3 N}���u�W枣�y��k}�R�~D5��¶�BR�+����w�@��=Zqq[�9�����$���<4[lV�h��м�M��$�㦍�K� @�%��xkϫ������Yt��μ���{r����#��"5[ܬ�(��y� �Wu_�X��Hh�F�x�8+.gW(��(?�k�� ���F�aFT)�u���S��N�K�5!��Ne�ʛ%h�ǭG����Vl$��!�����NK�*�K���$�����ǹuS���.�ހ�ɨ>��� ��k1d{�����S㚜�_������)o���n짋߹袅@��`�pb��bYA� �J��OgW���S�$*d������f��j�)������grLJ\��^'���L"�����������A5�e�꣠�ns����qF0y�1��xd�,��]�L#d�l�%�"fNT��&',V�lU��)H�M1�ɑw�k3�ت�|YNI�c�4����x�K��0�8���,��bԄZH�)�����Eh%h��Ɍ�ys\�1P�َz���]��a}�l��D��H��+�Q��1�E�!��"���u�q�` �r�'EY(�g�}V��?�;�5gE��������/���^���l�El�Z���\2���q�1�+a�+ˊ{-�\2ɿ1_ڒ� ��BS or�6�A;�� &HI����P���^�A~b��1N^�)J��A{�r"�����K���&m8N���^���p?9��m!�nm�0|���mC.(yݵ�K�?XZ��}�K�2t1svr4m� �5��ti�:����Q��7'`4�]����1�k��t،s��m��l?�;Y̺�i��[��!����@����v�kL]�'���Z�S+�3Ho��E�U�?Z��U�eߕ����48�Y�C����h��D�� �:Ӡ8B���~^��#�I앜B���7��&�d���^�G��m]�E���^(Ђ� �.u RJ�E'1�dl< �2_U�H�^N�P1V�/\#�-�U/�� ���S>�Oyc�i��9=���%.ñ\�q#���*��Ԧ71b EQ�e���L�~��d��~�P"��[=���y�0Ϧ��^Z��w�R�*�s�����s�V�XP����r�4t���y���=<}�^��4�X22� Ū����vCOҲQ���>�h����.?[�7��ChU5�x"5�R�)���ϧ����|��25�=��E;�#�n~,�L�t���ewiQ�2��x5�*1����f�tN�yJ^�b�ؑզ���y>w��h� R[��`B�Z:���<��d+�$��@e��K��Ȍ"-�3ݥi��Ǒ����DZ(�a�?�G�8 ��И 9~s�9�xjҸ��ɟ��8����h�sp3��g�:����'����8@b'HS ����2����vsj_.|�+<��p�8 �<�@>u��]����x^����o��c����*Y��U�����F�Ѱ)qFxO����wl.%�����X���p m��N����͇���ͷ����0ǥ4�\-<�hj�jǑ�/��n�_e�P�r��$��=���d���V��0��(���`��9�1���;u5��:%�����Zy#�[)�0$u��,q��.$)v����ʻu� R����ܥ[��� ���@�qM�� �(YO�ΒI;À�i�n��<2T*�1�����ȏ�/uVf<805���E �7�m�;�0�e�B��q�J��zzmß@�?� ��� SMkP_�₮9���Su�q���F����&փ��Ͱb�Z��;��������h#|�q2���u�t�D�Sx�ĉ�t�3��;I�O��m��%it���F*�_x;j�^��&=W_Hj��+�$%k{�p�e(A��c�����L�W���ma�q:���n*�6+�o�7��(�ʵR�U��+�<HM����GJ�z�'T��sB �����2�k����F��d��n7z͒xWR���i����\I�cX ;f�8�đ��&Q�l_�l�]R���g��G��2���R�F�u,EAjW�ɡaf{�jTK�+�U��/X���nV���п?�]}���3�ѻ.ɲì���^���laNY=wƭ���� �����>�`h�C!����ȹ�a\�YW��h�f�ު�3���@%��-nG��K&0����u�N9j�Œnx���z5���b�����h��z)�ܬr0���2���������%��p:j�������3���mj���+X�����&�c���Y�,X���a�3�����%x�9P�u���F=�tV0�INf-��� 6��VP�-�>�'�s���^�Q��68���%�ryG���=ۜ~�����tyRdH������ڠ�l�zmP�ͤ�݄�+��ժ���[�M(�U�N��rO�XW$�� 7�H:�cZP[��I�J��W[ �`��Q��`�,k�6�_M��.�E<g�2�[�-�q�D�[C����!�2�7K�c���>/2�R����z�_��_����:Ӵ́/p+�2�d�'�ʷ�H���sQ�b�KP�ζCpm���D�֥��42E#�lR+�<]ϛ�~F��t��A��_I��8��ۛR�������b�н1#=����t�N[��xoW��͐e����2����>�����K�����2t� ��q��(��(�nʪ�5 �LJGִ�*�&���z��Nq����\�F �bC*9�� O����@&���\"��6]�x�KT5�Z���@jaTU�#s~�ݸL�k-#��]�^�7�h�����on�G�o�$������"7��7Ŝ��C���n�S̥/J�H���@�o2u�������@�V�V��G�1$���{bO��*~���5��^C �jGjX�:���N���^� ���n�w� Ǩ�
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ