DllCanUnloadNow
DllGetClassObject
DllGetObjectType
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
90803b6e93c2b8b1fc29b679ce9c4a0b2b3fcbf6480b413afe8696a545d72c28.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
90803b6e93c2b8b1fc29b679ce9c4a0b2b3fcbf6480b413afe8696a545d72c28.dll
Resource
win10v2004-20220812-en
Target
90803b6e93c2b8b1fc29b679ce9c4a0b2b3fcbf6480b413afe8696a545d72c28
Size
52KB
MD5
3504899407a9dd3ce3e75b40a711f24a
SHA1
6627a39b5eaaa126ab524d946cc48397a0b6fb56
SHA256
90803b6e93c2b8b1fc29b679ce9c4a0b2b3fcbf6480b413afe8696a545d72c28
SHA512
f79eec8b9e1f82a670ea97013a662f9684100027c325e351e1750a53cb28d1bde2a01ffa39b83a858483934e169c065d136221afb65b1e8db64af6c538a26bbb
SSDEEP
768:HJj2ICb4EtYwEZoT1lLp3ICqmyJ9uSUF/EpJbZ9tUx+iWtmmXbN/+uwidCA:pjNCb4EtYT6zF4x1Zr9flt7X5Wuw9
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
DeleteFileA
GetPrivateProfileStringA
FindFirstFileA
WideCharToMultiByte
lstrlenW
LeaveCriticalSection
EnterCriticalSection
MoveFileA
GetExitCodeProcess
WaitForSingleObject
Process32Next
FindNextFileA
DisableThreadLibraryCalls
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
HeapDestroy
GetShortPathNameA
GetModuleHandleA
RemoveDirectoryA
CreateDirectoryA
WritePrivateProfileStringA
ExitProcess
lstrlenA
MultiByteToWideChar
Sleep
CreateThread
SetFileAttributesA
GetCommandLineW
GetCurrentProcessId
GetSystemDirectoryA
GetModuleFileNameA
CreateProcessA
CloseHandle
LocalFree
GetProcAddress
FreeLibrary
LoadLibraryA
Process32First
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegQueryInfoKeyA
RegEnumKeyExA
RegCloseKey
GetNamedSecurityInfoA
BuildExplicitAccessWithNameA
SetEntriesInAclA
SetNamedSecurityInfoA
CommandLineToArgvW
SHGetSpecialFolderPathA
CoUninitialize
CoInitialize
CoCreateInstance
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
SysStringLen
LoadRegTypeLi
SysAllocString
VariantClear
SysFreeString
strcat
_strlwr
_stricmp
_adjust_fdiv
malloc
_initterm
free
_access
_purecall
fopen
fseek
ftell
fread
fclose
memcpy
??2@YAPAXI@Z
??3@YAXPAX@Z
memset
sprintf
strstr
strcmp
strrchr
wcsstr
_wcslwr
atoi
strchr
_strupr
strncpy
strncmp
strlen
strcpy
memcmp
SHDeleteValueA
SHSetValueA
SHDeleteKeyA
DllCanUnloadNow
DllGetClassObject
DllGetObjectType
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ