DllCanUnloadNow
DllGetClassObject
DllGetObjectType
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
941becbce9962af1a734cc93d867f21d30a59097dd9c48b42a33c92909b72ab1.dll
Resource
win7-20220812-en
Target
941becbce9962af1a734cc93d867f21d30a59097dd9c48b42a33c92909b72ab1
Size
60KB
MD5
56dea1cbf5b8647aeabcb8dbb98e6b63
SHA1
11e986d21a4060263f69803aca58d6ca28ba1cda
SHA256
941becbce9962af1a734cc93d867f21d30a59097dd9c48b42a33c92909b72ab1
SHA512
ca703a65a30c29ba2bec81f40c5ac54badc89e31fd14696c7906e0a76ca1a6e646f5820cb10bc89246181dabb174ea1cef4b3bd53c0ebef464314340654dd511
SSDEEP
768:MlT+3lAAq0KiQ4yvegtGYa//R/uUDg8mdOrbjAD3ZA3RtvoF0Ft0aCNzQIsNa/jU:MlC3zuna//pNDg8mSjcQboFmt+vsNab
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
GetCommandLineW
MoveFileA
SetFileAttributesA
ExitProcess
GetProcAddress
WideCharToMultiByte
lstrlenW
DisableThreadLibraryCalls
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
Sleep
EnterCriticalSection
InterlockedDecrement
HeapDestroy
GetShortPathNameA
GetModuleHandleA
GetCurrentProcessId
CreateThread
Process32Next
Process32First
LoadLibraryA
FreeLibrary
LocalFree
FindFirstFileA
GetPrivateProfileStringA
FindNextFileA
DeleteFileA
GetSystemDirectoryA
GetModuleFileNameA
CreateProcessA
WaitForSingleObject
CloseHandle
GetExitCodeProcess
CreateDirectoryA
lstrlenA
MultiByteToWideChar
WritePrivateProfileStringA
InterlockedIncrement
RegQueryValueExA
RegEnumKeyExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
RegQueryInfoKeyA
GetNamedSecurityInfoA
BuildExplicitAccessWithNameA
SetEntriesInAclA
SetNamedSecurityInfoA
RegCreateKeyExA
RegSetValueExA
SHGetSpecialFolderPathA
CommandLineToArgvW
CoGetInterfaceAndReleaseStream
CoCreateInstance
CoMarshalInterThreadInterfaceInStream
CoInitialize
CoUninitialize
SysStringLen
LoadRegTypeLi
SysFreeString
SysAllocString
VariantClear
atoi
_stricmp
_strlwr
_adjust_fdiv
malloc
_initterm
free
fopen
fseek
ftell
fread
fclose
strncmp
strncpy
_purecall
memcpy
sprintf
??3@YAXPAX@Z
_access
strcat
memset
wcsstr
_wcslwr
strcpy
strstr
strrchr
_strupr
strchr
strlen
??2@YAPAXI@Z
strcmp
memcmp
SHDeleteKeyA
SHSetValueA
SHDeleteValueA
DllCanUnloadNow
DllGetClassObject
DllGetObjectType
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ