AreNecessaryJcpIt
InEndorsedStandaloneEndorsedPlatform
IncorporateSMImplementTo
LaterInSeeJCPUsed
MayA
MayOfWherebyVersionsBe
OfStandalone
TheOfUpdate
Static task
static1
Behavioral task
behavioral1
Sample
d0af49bb251ff5efc5d77000e3087bf340e52849cce67ea82cf64aa44bece4a2.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d0af49bb251ff5efc5d77000e3087bf340e52849cce67ea82cf64aa44bece4a2.dll
Resource
win10v2004-20220812-en
Target
d0af49bb251ff5efc5d77000e3087bf340e52849cce67ea82cf64aa44bece4a2
Size
154KB
MD5
067e3b009e869b2763fa8d4efd07c870
SHA1
99fd50bfdf91a8338975e61c6113031de7f28384
SHA256
d0af49bb251ff5efc5d77000e3087bf340e52849cce67ea82cf64aa44bece4a2
SHA512
5638fba93e1ab484ac2814d9f5891015199f6b155d530a46eb3d8860119d7e83153ae315c9f5782a06710ff63e07e796a91a5bb73173e22bf980be8cba8f31dc
SSDEEP
1536:n9q76ghda2Py2Ok3/Lfc2DhCXWs+fD+6Wj2ed3BphzYAwloNlhuf7VGdDQRtnhQm:n9qtdRPyO3/Lf9dCD7h9lWV3RtCUBl
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
lstrcmpiW
SearchPathA
lstrlenA
MultiByteToWideChar
LocalAlloc
LocalFree
SetLastError
FreeLibrary
GetModuleFileNameW
DeactivateActCtx
UnhandledExceptionFilter
QueryPerformanceCounter
InterlockedCompareExchange
lstrlenW
InterlockedExchange
ActivateActCtx
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
GlobalLock
GlobalUnlock
HeapFree
GetProcessHeap
HeapAlloc
GetModuleHandleW
CreateActCtxW
ReleaseActCtx
GetCurrentDirectoryW
GetCommandLineW
HeapSetInformation
CreateFileW
CloseHandle
GetLastError
CreateMutexW
GetStdHandle
GetFileType
WriteConsoleW
WideCharToMultiByte
HeapReAlloc
GetDriveTypeA
GetTickCount
Sleep
GetLogicalDrives
EnableWindow
RegisterClipboardFormatW
ShowWindow
LoadStringW
KillTimer
AllocateAndInitializeSid
RegisterEventSourceW
RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
SetSecurityDescriptorDacl
IsTextUnicode
RegDeleteKeyW
RegEnumKeyW
RegQueryInfoKeyW
InitializeSecurityDescriptor
ReportEventW
ShellExecuteExW
wcschr
exit
memmove
memset
free
fprintf
AreNecessaryJcpIt
InEndorsedStandaloneEndorsedPlatform
IncorporateSMImplementTo
LaterInSeeJCPUsed
MayA
MayOfWherebyVersionsBe
OfStandalone
TheOfUpdate
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ