Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
b08c465c2c632fe982cdf3bdf7c4b878b3a3efd27c2cf2ccb8d8362a2143aaa1.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
b08c465c2c632fe982cdf3bdf7c4b878b3a3efd27c2cf2ccb8d8362a2143aaa1.dll
Resource
win10v2004-20220901-en
Target
b08c465c2c632fe982cdf3bdf7c4b878b3a3efd27c2cf2ccb8d8362a2143aaa1
Size
3.2MB
MD5
1cea64269063570cc3318c558c8094db
SHA1
510994f57114c6f0e7e8c7611cce1e6a77670f2e
SHA256
b08c465c2c632fe982cdf3bdf7c4b878b3a3efd27c2cf2ccb8d8362a2143aaa1
SHA512
b11c1f1e87e4bab0a441c841c481805850181cc47dc1332854a1bfa735a9cf38bd90639a059a72d93851564918897876010413709ab081171f0fb0c166d947c6
SSDEEP
49152:0siSsiq1x8WUT/Oact9nrIZqFFrEwLPCZPoTNLmV8MCoEYjvOdA5xOAP8bY9aZsH:PiSsbowL6ZgTIV8MXEEvL5xOAP84
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
SetEvent
WaitForSingleObject
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
EncodePointer
GetThreadLocale
SetThreadLocale
LocalFree
WaitForMultipleObjects
PeekNamedPipe
VerifyVersionInfoA
VerSetConditionMask
SleepEx
GetVersion
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LoadLibraryW
lstrcatW
lstrcpynW
lstrcmpW
GetTempPathW
GetTempFileNameW
GetFileAttributesW
GetDriveTypeW
CreateDirectoryW
DecodePointer
lstrlenW
LockResource
FindResourceExW
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
FindResourceW
lstrcmpiW
GlobalUnlock
GlobalLock
GetLocaleInfoW
GetACP
UnregisterWait
RegisterWaitForSingleObject
CreateEventW
FindNextFileW
FindFirstFileW
FindClose
GetTickCount
GetLocalTime
OutputDebugStringW
lstrcmpiA
ResumeThread
TerminateThread
GetCurrentThreadId
Sleep
CreateMutexW
LeaveCriticalSection
EnterCriticalSection
SizeofResource
LoadResource
GetModuleHandleW
GetModuleFileNameW
DeleteCriticalSection
RaiseException
WideCharToMultiByte
ExpandEnvironmentStringsA
SetStdHandle
CreatePipe
ReadConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
GetTimeZoneInformation
GetConsoleCP
FreeLibraryAndExitThread
ExitThread
DuplicateHandle
QueryPerformanceFrequency
WriteConsoleW
GetFileType
ExitProcess
InterlockedFlushSList
RtlUnwind
SetFilePointerEx
GetSystemDirectoryA
AreFileApisANSI
HeapCreate
GetFullPathNameW
MultiByteToWideChar
lstrcpyW
CloseHandle
SetFilePointer
InterlockedCompareExchange
GetDiskFreeSpaceW
OutputDebugStringA
LockFile
GetFullPathNameA
CreateThread
GetSystemDefaultUILanguage
ReadFile
CreateFileW
LoadLibraryExW
GetProcAddress
FreeLibrary
InitializeCriticalSectionAndSpinCount
SetLastError
GetLastError
UnlockFileEx
HeapValidate
GetDiskFreeSpaceA
GetFileAttributesA
GetFileAttributesExW
FlushViewOfFile
WaitForSingleObjectEx
GetVersionExA
HeapCompact
UnlockFile
CreateFileMappingA
LockFileEx
SystemTimeToFileTime
GetSystemTime
IsDebuggerPresent
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
GetCurrentProcess
FlushInstructionCache
IsProcessorFeaturePresent
LoadLibraryExA
FormatMessageW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetStringTypeW
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetVersionExW
GetSystemInfo
DeviceIoControl
GlobalAlloc
GetVolumeInformationW
GetFileTime
LoadLibraryA
LocalAlloc
GetModuleFileNameA
GetModuleHandleExW
CreateToolhelp32Snapshot
GetTempPathA
Process32NextW
MoveFileExA
DeleteFileA
Process32FirstW
GetNativeSystemInfo
IsBadReadPtr
DeleteFileW
MoveFileExW
GetFileSize
CreateProcessW
GetExitCodeProcess
TryEnterCriticalSection
InitializeCriticalSection
GetStdHandle
GetConsoleMode
SetEndOfFile
WriteFile
CreateFileA
SetThreadAffinityMask
GetSystemDirectoryW
GetCurrentThread
GetComputerNameW
GetModuleHandleA
CreateProcessA
ExpandEnvironmentStringsW
SetEnvironmentVariableW
SetEnvironmentVariableA
FormatMessageA
ReleaseMutex
WriteProcessMemory
CreateRemoteThread
FlushFileBuffers
GetCurrentDirectoryW
GetDC
SetMenuItemInfoW
InsertMenuItemW
SetMenuItemBitmaps
InsertMenuW
CharUpperA
CreateMenu
FindWindowW
WindowFromPoint
GetSystemMetrics
GetMonitorInfoW
GetWindowThreadProcessId
BlockInput
EnumDisplaySettingsW
EnumDisplayDevicesW
MonitorFromWindow
SendMessageTimeoutW
CharLowerA
wsprintfW
GetParent
GetSysColor
GetClientRect
EndPaint
BeginPaint
SetDlgItemTextW
GetDlgItem
LoadCursorW
SetWindowLongW
GetWindowLongW
CreateWindowExW
GetClassInfoExW
RegisterClassExW
CallWindowProcW
DefWindowProcW
SendMessageW
GetMessageW
LoadStringW
CharLowerBuffW
CharLowerW
DestroyIcon
ReleaseDC
UnregisterClassW
LoadImageW
LoadBitmapW
CharNextW
CreatePen
DeleteDC
GetTextFaceW
Polyline
Polygon
TextOutW
GetTextMetricsW
SetTextColor
SetBkColor
SelectObject
CreateSolidBrush
CreateFontW
CreateDIBSection
GetObjectW
SetBitmapBits
GetBitmapBits
DeleteObject
GetDeviceCaps
CreateDCW
EnumServicesStatusW
CryptImportKey
CryptDestroyKey
CryptGenRandom
CryptAcquireContextA
OpenSCManagerW
BuildExplicitAccessWithNameW
SetNamedSecurityInfoW
SetEntriesInAclW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegQueryInfoKeyW
RegOpenCurrentUser
CryptReleaseContext
CryptGetHashParam
CryptDestroyHash
CryptHashData
CryptCreateHash
LookupAccountNameW
ConvertSidToStringSidA
CryptEncrypt
ord165
ord75
SHChangeNotify
SHGetSpecialFolderPathW
SHGetPathFromIDListW
ShellExecuteExW
DragQueryFileW
SHGetFolderPathW
SHGetSpecialFolderPathA
ShellExecuteA
SHCreateDirectoryExA
StringFromGUID2
OleUninitialize
OleInitialize
CoCreateInstance
StringFromCLSID
CoSetProxyBlanket
CoInitializeSecurity
CoInitializeEx
CoCreateGuid
ReleaseStgMedium
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
UnRegisterTypeLi
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SysStringLen
SysAllocStringLen
SysAllocString
SysFreeString
VarUI4FromStr
VariantClear
PathFindFileNameW
PathFindExtensionW
StrCmpNIW
PathAppendW
PathRemoveBackslashW
PathRenameExtensionW
PathCombineW
SHDeleteKeyW
PathRemoveFileSpecW
PathFileExistsA
PathFileExistsW
StrStrW
StrIsIntlEqualW
PathAppendA
StrStrIA
PathStripPathA
StrCmpIW
PathAddExtensionW
PathStripPathW
DestroyPropertySheetPage
InitCommonControlsEx
CreatePropertySheetPageW
timeSetEvent
timeKillEvent
GetAdaptersInfo
CryptMsgClose
CertFreeCertificateContext
CryptQueryObject
CertCloseStore
CryptMsgGetParam
CertFindCertificateInStore
CertGetNameStringW
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
bind
closesocket
connect
getpeername
getsockname
getsockopt
htons
ntohs
setsockopt
WSAIoctl
getaddrinfo
freeaddrinfo
send
recv
accept
listen
recvfrom
sendto
select
__WSAFDIsSet
socket
WSAGetLastError
WSACleanup
WSAStartup
ntohl
htonl
ioctlsocket
gethostname
WSASetLastError
ord79
ord200
ord301
ord32
ord33
ord27
ord26
ord22
ord41
ord50
ord60
ord211
ord46
ord143
ord35
ord30
DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ