CreateProcessNotify
atmasol
Static task
static1
Behavioral task
behavioral1
Sample
efcbd1c837fb1bbf8b91417cd356cfde6fca9d0e5b723f51c1b193d2c66bb9db.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
efcbd1c837fb1bbf8b91417cd356cfde6fca9d0e5b723f51c1b193d2c66bb9db.dll
Resource
win10v2004-20220812-en
Target
efcbd1c837fb1bbf8b91417cd356cfde6fca9d0e5b723f51c1b193d2c66bb9db
Size
57KB
MD5
8821288a3d74c6ad5a1d37a602322c71
SHA1
f9929e6b9925c7e8f60cfc4135af9a3aa4977d46
SHA256
efcbd1c837fb1bbf8b91417cd356cfde6fca9d0e5b723f51c1b193d2c66bb9db
SHA512
144d90456a31732bcf0cf4916bb7939c3e6c83566ba5bc07602f09d0fcefad0c4bfa2b109568959afa3b3e194a4a966deb9c0fffa37c2885519247fd1d9d7c65
SSDEEP
1536:55sNN4NQFNGr1gToQb92JQjOij92hCm+vjBat3D6C:LsE6NGWPIj+7Ix
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
ILCombine
ImmPenAuxInput
CtfImmTIMActivate
ImmGetOpenStatus
SdbCloseApphelpInformation
CtfImmSetCiceroStartInThread
SdbReadMsiTransformInfo
DAD_DragEnterEx
CheckEscapesA
DAD_DragLeave
ILFindChild
ImmSetConversionStatus
DragQueryFileA
SdbGrabMatchingInfo
SdbOpenDatabase
ImmWINNLSEnableIME
SdbDeletePermLayerKeys
ImmNotifyIME
ImmLockIMC
OpenAs_RunDLL
ImmGetCandidateListA
ImmGetIMCCSize
ImmEnumInputContext
DAD_SetDragImage
ImmSetCompositionStringA
ImmSetActiveContext
SdbGetNextChild
CtfImmLeaveCoInitCountSkipMode
RegenerateUserEnvironment
ImmProcessKey
SdbReadBinaryTag
ImmGetHotKey
ImmDestroyIMCC
ImmGetStatusWindowPos
DragQueryFile
ImmSetStatusWindowPos
DragAcceptFiles
ImmUnlockIMC
ImmSimulateHotKey
SdbGetFirstChild
IsLFNDrive
PathGetShortPath
DllGetClassObject
DuplicateIcon
IsNetDrive
ScreenToClient
InvalidateRgn
SetCursor
ShowWindow
GetSystemMetrics
ChildWindowFromPoint
GetNextDlgGroupItem
SetTimer
DrawFocusRect
DeleteMenu
CreateFileMappingA
SetErrorMode
UnmapViewOfFile
ReleaseMutex
BackupRead
GlobalAlloc
CreateThread
LoadLibraryA
GetModuleHandleA
BackupSeek
HeapFree
GetTapeParameters
LeaveCriticalSection
WaitForMultipleObjects
MapViewOfFile
PrepareTape
GetTapePosition
SetUnhandledExceptionFilter
VirtualQueryEx
CloseHandle
AddAccessAllowedAce
GetTokenInformation
ControlService
InitializeSecurityDescriptor
RegCloseKey
NetApiBufferFree
NetShareGetInfo
CoInitializeEx
CoUninitialize
NtQueryQuotaInformationFile
CreateProcessNotify
atmasol
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ