DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetClassInfoForCurrentUser
GetDefaultPartitionForCurrentUser
GetDefaultPartitionForSid
PartitionAccessCheck
Static task
static1
Behavioral task
behavioral1
Sample
b7e6f4075bd43c77df502fe81e10705fc7efe52c9c9e6aecc17c68030cc0e1e4.dll
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
b7e6f4075bd43c77df502fe81e10705fc7efe52c9c9e6aecc17c68030cc0e1e4.dll
Resource
win10v2004-20220812-en
Target
b7e6f4075bd43c77df502fe81e10705fc7efe52c9c9e6aecc17c68030cc0e1e4
Size
125KB
MD5
aa52eb8d79a0bb85fb9bd64643514d8e
SHA1
1f2344517c7202158b8321794270a91de7a55584
SHA256
b7e6f4075bd43c77df502fe81e10705fc7efe52c9c9e6aecc17c68030cc0e1e4
SHA512
41ee1430434a3d3583d4467053ed2038b2e21b4d08d62a8a9c77bdd1877db9f53523143363d528bf02353b4d7be5174b4369fd7d0920fbd3c718222416cedad1
SSDEEP
1536:BqlFdMkgw0MykkhexqQazNqFqlE7Rc71kYxb0yuxB+YLUr9p6H/YRWdcEq:8rdVpHxtazNqMyyJkYxb0tL4fgQM
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
LoadStringW
wsprintfW
CloseDesktop
GetThreadDesktop
SetThreadDesktop
OpenDesktopW
DialogBoxParamW
EndDialog
SetDlgItemTextW
CloseWindowStation
GetProcessWindowStation
wsprintfA
SetWindowPos
MapWindowPoints
GetClientRect
GetWindowRect
GetDesktopWindow
SetProcessWindowStation
OpenWindowStationW
GetModuleHandleW
lstrlenW
lstrcatW
lstrcpyW
InterlockedIncrement
InterlockedDecrement
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
GetProcAddress
FreeLibrary
OutputDebugStringA
GetLastError
LoadLibraryW
WaitForSingleObject
CreateThread
CreateEventA
LeaveCriticalSection
EnterCriticalSection
GetSystemTimeAsFileTime
GetTickCount
InterlockedExchange
InterlockedCompareExchange
CloseHandle
TlsSetValue
TlsGetValue
GetCurrentProcess
GetCurrentThread
LoadLibraryA
TlsFree
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
GetVersionExA
GetSystemInfo
GetModuleFileNameW
Sleep
SetEvent
ReleaseSemaphore
lstrcpynW
FormatMessageW
LockResource
LoadResource
FindResourceW
ReleaseMutex
FindClose
DeleteFileW
SetFileAttributesW
FindNextFileW
FindFirstFileW
GetExitCodeProcess
CreateProcessW
ExpandEnvironmentStringsW
CreateDirectoryW
GetLocalTime
DebugBreak
GetThreadContext
IsDebuggerPresent
LoadLibraryExW
CreateFileW
GetWindowsDirectoryW
InitializeCriticalSection
WriteFile
SetFilePointer
LocalFree
lstrcatA
lstrcpyA
GetModuleFileNameA
VirtualQueryEx
DisableThreadLibraryCalls
DeleteCriticalSection
lstrcmpiW
CreateSemaphoreA
TlsAlloc
DelayLoadFailureHook
OpenMutexW
MapViewOfFile
OpenFileMappingW
CompareFileTime
CreateFileMappingW
QueryPerformanceCounter
CreateMutexW
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
StringFromGUID2
CoGetObjectContext
EqualSid
SetEntriesInAclW
IsValidSid
CheckTokenMembership
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
DeregisterEventSource
ReportEventW
RegisterEventSourceW
OpenThreadToken
OpenProcessToken
GetTokenInformation
GetLengthSid
CopySid
DuplicateToken
RegNotifyChangeKeyValue
AllocateAndInitializeSid
FreeSid
RegSetValueExW
UuidToStringW
RpcStringFreeA
RpcStringFreeW
UuidFromStringA
RpcRevertToSelf
RpcImpersonateClient
UuidToStringA
VerQueryValueW
_wstrtime
wcsrchr
__CxxFrameHandler
malloc
free
_initterm
_adjust_fdiv
__dllonexit
_onexit
_waccess
_CIfmod
_ftol
floor
wcscat
wcscpy
wcslen
_purecall
sprintf
_except_handler3
_vsnwprintf
rand
srand
time
_wstrdate
wcscmp
RtlInitializeCriticalSection
DbgPrint
COMResModuleInstance
GetUserNameExW
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetClassInfoForCurrentUser
GetDefaultPartitionForCurrentUser
GetDefaultPartitionForSid
PartitionAccessCheck
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ