Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
421b71ac924938e9b47291f38233d9e4b8116c1f4ec8db523d229535c8c12212.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
421b71ac924938e9b47291f38233d9e4b8116c1f4ec8db523d229535c8c12212.dll
Resource
win10v2004-20220901-en
Target
421b71ac924938e9b47291f38233d9e4b8116c1f4ec8db523d229535c8c12212.exe
Size
665KB
MD5
01f0836fe176750d2163e36177e581b4
SHA1
c6cb7ec82ee55ccb56a4cc8b91c64e9b4f4e14da
SHA256
421b71ac924938e9b47291f38233d9e4b8116c1f4ec8db523d229535c8c12212
SHA512
81aa866692c6220db40ed95b4efaf7613f10d932913120995156c4bca36d0ba32055826a7289fec0eb0e5c40fb22ee56a0fb3fc32d56f649610d8828450a6497
SSDEEP
12288:1qeDSdwfsttoz8nW2+VQz8WOoOPYgq7iUVs3lVXG8Lp:1qISIsttoqW2+VQzHO9YDjS1VXNp
resource | yara_rule |
---|---|
sample | family_screencap |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
CN=DEEPSoft Co.\, Ltd.,O=DEEPSoft Co.\, Ltd.,L=Gangnam-gu,ST=Seoul,C=KR
CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US
CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
FileTimeToSystemTime
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
DeleteFileA
WaitForSingleObject
lstrcpyA
lstrlenA
GetLocalTime
CreateMutexA
VirtualQuery
ExpandEnvironmentStringsA
lstrcatA
GetComputerNameA
CreateThread
GetModuleFileNameA
CreateDirectoryA
FlushFileBuffers
CreateFileW
GetSystemTime
SetStdHandle
HeapReAlloc
GetFileSize
GetStringTypeW
LoadLibraryW
HeapSize
LeaveCriticalSection
EnterCriticalSection
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetWindowsDirectoryA
FindResourceA
SizeofResource
LoadResource
LockResource
GetFileTime
SetFileTime
SetFileAttributesA
WriteConsoleW
CreateFileA
SetFilePointer
WriteFile
GetVersionExA
Sleep
SetLastError
GetStdHandle
WideCharToMultiByte
GetLastError
CreateProcessA
OpenProcess
TerminateProcess
GetProcAddress
GetCurrentProcess
DeleteCriticalSection
CloseHandle
GetStartupInfoW
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
MultiByteToWideChar
GetModuleHandleA
RtlUnwindEx
RaiseException
RtlPcToFileHeader
RtlLookupFunctionEntry
HeapAlloc
GetCurrentThreadId
FlsSetValue
GetCommandLineA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
DecodePointer
EncodePointer
HeapFree
FlsGetValue
FlsFree
FlsAlloc
GetModuleHandleW
ExitProcess
GetModuleFileNameW
HeapSetInformation
GetVersion
HeapCreate
HeapDestroy
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
GetFileAttributesA
GetWindowTextA
GetMessageA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
KillTimer
DefWindowProcA
SetTimer
GetKeyState
GetForegroundWindow
GetAsyncKeyState
GetWindowThreadProcessId
GetKeyboardLayout
EnumChildWindows
SendMessageA
FindWindowExA
GetDesktopWindow
GetWindowRect
SetRect
GetDC
ReleaseDC
GetClassNameA
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteObject
GetObjectA
CreateCompatibleDC
GetDIBits
DeleteDC
GetStockObject
GetUserNameA
AVISaveOptionsFree
AVIStreamRelease
AVIFileRelease
AVIStreamWrite
AVIStreamSetFormat
AVIMakeCompressedStream
AVIFileCreateStreamA
AVIFileOpenA
AVIFileInit
AVIFileExit
ord2
timeGetTime
GetUserNameExA
DirectInput8Create
DllRegisterServer
Start
i
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ