Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
ac16ae9bd06ad2d2f2246e8a3ca9cd5c6b1867387aae90a6bc299dafb59cd1b5.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
ac16ae9bd06ad2d2f2246e8a3ca9cd5c6b1867387aae90a6bc299dafb59cd1b5.exe
Resource
win10v2004-20221111-en
Target
ac16ae9bd06ad2d2f2246e8a3ca9cd5c6b1867387aae90a6bc299dafb59cd1b5
Size
9.9MB
MD5
91c62456318590946e8cd36539a249a9
SHA1
50369852776c41c8ddf97fd8e446d0c4d981dcd4
SHA256
ac16ae9bd06ad2d2f2246e8a3ca9cd5c6b1867387aae90a6bc299dafb59cd1b5
SHA512
47662c2bb1cd6584ff66c289d6143d1431f91355e9ecdf1160d4d424a62e2d7ca8394f908249db0128c004895a0122ffaf6448f4ab5a36caed115ef8c81c1e6c
SSDEEP
98304:3l9h+jbFYm1hJYl2Y75WPA+hbSsDRbzdF/hyE9QtbwRSn0ZSO/DGveU:3Xh+fFJ1bm28IAGFdF/hMUZ/oeU
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
IcmpCloseHandle
IcmpSendEcho
IcmpCreateFile
PathCreateFromUrlW
StrRetToStrW
PathCombineW
InternetCloseHandle
InternetCrackUrlW
HttpOpenRequestW
HttpSendRequestW
InternetConnectW
InternetOpenA
InternetSetOptionW
HttpQueryInfoW
GetSaveFileNameW
GetOpenFileNameW
AuthzAccessCheck
AuthzFreeResourceManager
AuthzInitializeResourceManager
AuthzFreeContext
AuthzInitializeContextFromSid
AlphaBlend
htons
htonl
freeaddrinfo
setsockopt
WSAAddressToStringW
WSCGetProviderPath
getsockname
gethostbyname
listen
getaddrinfo
bind
closesocket
socket
inet_ntoa
ioctlsocket
WSAGetLastError
connect
inet_addr
getnameinfo
WSCEnumProtocols
SHBindToParent
DragQueryFileW
DragAcceptFiles
Shell_NotifyIconW
SHCreateStdEnumFmtEtc
ShellExecuteExW
DragFinish
SHGetFolderPathW
SHGetFileInfoW
SHChangeNotify
SHFileOperationW
SHAppBarMessage
ShellExecuteW
MoveWindow
CreateWindowExW
PeekMessageW
MonitorFromWindow
MessageBoxA
SetTimer
AllowSetForegroundWindow
WindowFromPoint
BeginPaint
FrameRect
RegisterWindowMessageW
FillRect
DispatchMessageW
EnumWindows
GetClassInfoW
SetActiveWindow
GetActiveWindow
GetKeyboardLayoutList
EnumChildWindows
ReleaseCapture
LoadCursorW
SetCapture
GetCapture
GetCursorInfo
CharLowerBuffW
GetSystemMetrics
PostMessageW
SetWindowLongW
CharUpperBuffW
GetClientRect
LoadImageA
ShowCursor
SetClipboardData
GetClipboardData
ClientToScreen
IsIconic
GetMonitorInfoW
ShowWindow
CharUpperW
DefWindowProcW
SetForegroundWindow
GetForegroundWindow
GetAsyncKeyState
MapVirtualKeyExW
EnableWindow
GetShellWindow
DestroyWindow
RegisterClassW
CharNextW
GetWindowThreadProcessId
RedrawWindow
GetDC
SetFocus
ReleaseDC
EndPaint
TrackMouseEvent
GetParent
MessageBeep
MessageBoxW
SetClassLongW
RegisterHotKey
MsgWaitForMultipleObjects
DestroyIcon
IsWindowVisible
EmptyClipboard
FlashWindowEx
PtInRect
UnregisterClassW
SendMessageW
GetLastInputInfo
IsWindow
EnumThreadWindows
InvalidateRect
ScreenToClient
GetWindowInfo
SendMessageTimeoutW
BringWindowToTop
SetCursor
LoadStringW
SetWindowPos
OpenClipboard
TranslateMessage
EnumDisplayMonitors
CallWindowProcW
CloseClipboard
UpdateLayeredWindow
keybd_event
DrawIconEx
GetClassNameW
GetIconInfo
GetKeyNameTextW
GetDesktopWindow
GetCursorPos
DeferWindowPos
EndDeferWindowPos
UnregisterHotKey
GetKeyState
MonitorFromPoint
SystemParametersInfoW
CreateIconFromResourceEx
GetWindow
GetWindowLongW
GetWindowRect
KillTimer
BeginDeferWindowPos
PostThreadMessageW
IsWindowEnabled
GetWindowPlacement
CreateIconIndirect
FindWindowW
GetKeyboardLayout
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
SafeArrayPutElement
SysFreeString
VariantClear
VariantInit
SysReAllocStringLen
SysAllocString
SafeArrayCreate
SysAllocStringLen
SafeArrayPtrOfIndex
SafeArrayCreateVector
SafeArrayGetUBound
SafeArrayGetLBound
VariantCopy
VariantChangeType
ConvertStringSecurityDescriptorToSecurityDescriptorA
CloseServiceHandle
RegSetValueExW
AddAccessDeniedObjectAce
AddAccessAllowedObjectAce
AddAuditAccessAceEx
AddAce
OpenThreadToken
CloseEventLog
RegQueryInfoKeyW
IsValidSid
CreateWellKnownSid
GetLengthSid
AddAccessAllowedAceEx
OpenEventLogW
GetTokenInformation
ReadEventLogW
RegCreateKeyExW
SetSecurityDescriptorDacl
OpenServiceW
InitializeAcl
RegEnumKeyExW
AdjustTokenPrivileges
QueryServiceConfigW
CopySid
SetSecurityInfo
AddAuditAccessObjectAce
RegDeleteKeyW
LookupPrivilegeValueW
OpenSCManagerW
RegOpenKeyExW
OpenProcessToken
RegDeleteValueW
RegNotifyChangeKeyValue
AddAccessDeniedAceEx
GetNamedSecurityInfoW
SetNamedSecurityInfoW
RegFlushKey
RegEnumValueW
RegQueryValueExW
ConvertSidToStringSidW
RegCloseKey
InitializeSecurityDescriptor
EnumServicesStatusW
NetWkstaGetInfo
NetApiBufferFree
ReadFileEx
SetFileTime
GetFileTime
GetACP
Process32FirstW
GetExitCodeProcess
CloseHandle
LocalFree
SizeofResource
GetCurrentProcessId
TerminateThread
SetHandleInformation
GetHandleInformation
GetFullPathNameW
FindNextFileW
WriteProcessMemory
SetUnhandledExceptionFilter
GetTimeZoneInformation
SystemTimeToTzSpecificLocalTime
FreeLibrary
SetDllDirectoryW
GetUserDefaultLCID
SetLastError
WaitNamedPipeW
GetModuleFileNameW
GetLastError
GlobalAlloc
GlobalUnlock
OpenMutexW
CreateThread
CompareStringW
GetGeoInfoW
LoadLibraryA
CreateMutexW
ResetEvent
GetVolumeInformationW
RaiseException
FormatMessageW
OpenJobObjectW
GetCurrentThread
GetLogicalDrives
IsBadReadPtr
ExpandEnvironmentStringsW
LoadLibraryExW
MoveFileWithProgressW
FileTimeToSystemTime
GetShortPathNameW
VirtualQuery
VirtualQueryEx
Sleep
SetFilePointer
FlushFileBuffers
LoadResource
SuspendThread
GetTickCount
WritePrivateProfileStringW
GetFileSize
GetStartupInfoW
GetFileAttributesW
SetThreadPriority
VirtualAlloc
GetSystemInfo
GetTempPathW
LeaveCriticalSection
VerSetConditionMask
GetDiskFreeSpaceW
GetUserDefaultUILanguage
WriteFileEx
GetModuleFileNameA
CompareStringA
WaitForSingleObjectEx
GetCompressedFileSizeW
WideCharToMultiByte
MultiByteToWideChar
FindClose
LoadLibraryW
SetEvent
FreeEnvironmentStringsW
GetLocaleInfoW
ConnectNamedPipe
GetLocalTime
WaitForSingleObject
GetSystemPowerStatus
DeleteCriticalSection
OpenThread
SetErrorMode
TzSpecificLocalTimeToSystemTime
SleepEx
IsValidLocale
LocalAlloc
WaitForMultipleObjectsEx
GetVolumePathNameW
SetFileAttributesW
VirtualProtect
SetEnvironmentVariableW
ReadProcessMemory
QueryPerformanceFrequency
SetThreadContext
VirtualFree
GetThreadContext
FlushInstructionCache
ExitProcess
GetLongPathNameW
RtlUnwind
GetCPInfo
GetStdHandle
DisconnectNamedPipe
GetModuleHandleW
SetInformationJobObject
ReadFile
CreateProcessW
CreateRemoteThread
FindResourceW
GetUserGeoID
CopyFileW
CheckRemoteDebuggerPresent
MapViewOfFile
MulDiv
CreateFileA
GetVersion
GetDriveTypeW
FreeResource
Module32NextW
MoveFileW
SetThreadExecutionState
GlobalAddAtomW
GetSystemTimeAsFileTime
OpenProcess
SwitchToThread
GetExitCodeThread
GetEnvironmentVariableA
OutputDebugStringW
GetFileAttributesExW
SetNamedPipeHandleState
GlobalMemoryStatusEx
LockResource
TerminateProcess
QueryInformationJobObject
GetCurrentThreadId
MoveFileExW
UnhandledExceptionFilter
PeekNamedPipe
GlobalFree
EnterCriticalSection
GetDiskFreeSpaceExW
ReleaseMutex
EnumResourceLanguagesW
GlobalDeleteAtom
SetCurrentDirectoryW
GetCurrentDirectoryW
InitializeCriticalSection
GlobalLock
GetCurrentProcess
GetCommandLineW
ResumeThread
GetProcAddress
VirtualAllocEx
FindResourceExW
GetVersionExW
VerifyVersionInfoW
GetEnvironmentStringsW
DeviceIoControl
FindFirstFileW
UnmapViewOfFile
Process32NextW
lstrlenW
SetEndOfFile
QueryPerformanceCounter
GetVolumeNameForVolumeMountPointW
CreateToolhelp32Snapshot
SystemTimeToFileTime
CreateFileW
GetSystemDirectoryW
EnumResourceNamesW
DeleteFileW
GetEnvironmentVariableW
WriteFile
GetFileInformationByHandle
Module32FirstW
FindFirstFileExW
ExitThread
CreateNamedPipeW
CreateFileMappingW
CreatePipe
TlsGetValue
GetDateFormatW
TlsSetValue
GetSystemDefaultUILanguage
GetOverlappedResult
CreateDirectoryW
EnumCalendarInfoW
RemoveDirectoryW
CreateEventW
SetThreadLocale
GetThreadLocale
WinVerifyTrust
SHGetFolderPathA
accept
htonl
htons
setsockopt
select
WSAStartup
__WSAFDIsSet
WSACleanup
getsockname
listen
bind
closesocket
socket
recv
ioctlsocket
WSAGetLastError
shutdown
send
CertGetNameStringW
CryptQueryObject
CertFindCertificateInStore
CertFreeCertificateContext
CertCloseStore
CryptMsgGetParam
CryptMsgClose
DnsQuery_W
DnsRecordListFree
OleInitialize
CoSetProxyBlanket
PropVariantClear
OleUninitialize
CoInitialize
CoCreateGuid
CoInitializeSecurity
CoCreateInstance
CoUninitialize
CoTaskMemFree
DoDragDrop
GetAdaptersAddresses
SetBkMode
GetObjectW
CreateCompatibleBitmap
CreateDIBSection
SetMapMode
CreateSolidBrush
SelectObject
DeleteObject
DeleteDC
BitBlt
GetDeviceCaps
CreateCompatibleDC
NoGCLayPipe
__dbk_fcall_wrapper
dbkFCallWrapperAddr
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ