DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
79eb03ce8382e7fb9504cc088cd22fe7b755e515875a559c98a805c4bff40248.dll
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
79eb03ce8382e7fb9504cc088cd22fe7b755e515875a559c98a805c4bff40248.dll
Resource
win10v2004-20221111-en
Target
79eb03ce8382e7fb9504cc088cd22fe7b755e515875a559c98a805c4bff40248
Size
48KB
MD5
10ce704e75733b95b7bdd62de7bd0288
SHA1
c9098e40e4a348240cbdab634786bfe429cb2648
SHA256
79eb03ce8382e7fb9504cc088cd22fe7b755e515875a559c98a805c4bff40248
SHA512
7c385a1aea18aec32a240b56bfe067758a82b49bf4c6ffc13fe4b17d5632326907ac90475a46aa24e7cbd171bb6f73bfb2ee3f947c24f0b0f48c54f16f9cb729
SSDEEP
768:T+V/ZxHT6KBR6kYZ9bckIeW43Z1Nyxa19x+6+u9fWD3YDSwxFPSV+kPMU:T+VHHTN/grb5Ibm1713OHD3aSgFGP
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
MultiByteToWideChar
FindNextFileA
FindFirstFileA
GetWindowsDirectoryA
GetSystemDirectoryA
GetLastError
CreateEventA
GetCurrentProcessId
CreateThread
GetLocalTime
Sleep
WideCharToMultiByte
lstrlenW
lstrlenA
DisableThreadLibraryCalls
InitializeCriticalSection
SetFileAttributesA
LeaveCriticalSection
InterlockedIncrement
EnterCriticalSection
InterlockedDecrement
HeapAlloc
GetSystemInfo
GetVersionExA
HeapCreate
HeapDestroy
GetShortPathNameA
GetModuleHandleA
FreeLibrary
Process32Next
Process32First
GetCommandLineW
DeleteFileA
MoveFileA
WritePrivateProfileStringA
GetModuleFileNameA
LoadLibraryA
GetProcAddress
DeleteCriticalSection
CloseHandle
SendMessageA
PostMessageA
FindWindowExA
CreateWindowExA
ShowWindow
RegisterClassExA
GetMessageA
TranslateMessage
CallNextHookEx
IsWindow
KillTimer
SetTimer
DefWindowProcA
SetWindowTextA
DispatchMessageA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
CommandLineToArgvW
CoInitialize
CoCreateInstance
SysStringLen
LoadRegTypeLi
SysAllocString
VariantClear
SysFreeString
_stricmp
memcmp
memcpy
_purecall
memset
strcmp
??2@YAPAXI@Z
free
_initterm
malloc
_adjust_fdiv
_strlwr
rand
strchr
fopen
fwrite
fclose
strrchr
sprintf
strcat
strcpy
_access
strstr
strlen
??3@YAXPAX@Z
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ