DllCanUnloadNow
DllGetClassObject
DllGetObjectType
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
5ccdb5e01b32c0ace353473d41eb395e1f7102789ccbb87d116e8da17e2e3b0b.dll
Resource
win7-20221111-en
Target
5ccdb5e01b32c0ace353473d41eb395e1f7102789ccbb87d116e8da17e2e3b0b
Size
56KB
MD5
ebacb3f46b2ed361fa9f1cb3893be830
SHA1
877294b5cd1ceeb0da85413ab981ecec940f0386
SHA256
5ccdb5e01b32c0ace353473d41eb395e1f7102789ccbb87d116e8da17e2e3b0b
SHA512
9795e93b0e0dd6bc57be79c540e80c72d723841b36f249a6864bd7ee0147e536645499a0e8558957bad4719aa4bc9fab726bbab02c02ba2891746b6c416afcd3
SSDEEP
768:b9jYuXHm9lkHN9KxbG7JGJHej7NQZhJPZR7yB4SWJnhAeX0u07JDiA0uA3L4D:bKIHNI9Gwc7CxHYWJWKx07Jb0uAbA
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
WideCharToMultiByte
lstrlenW
GetCommandLineW
FindNextFileA
GetPrivateProfileStringA
FindFirstFileA
Sleep
GetExitCodeProcess
WaitForSingleObject
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
HeapDestroy
GetShortPathNameA
GetModuleHandleA
ExitProcess
CreateDirectoryA
CreateThread
GetProcAddress
WritePrivateProfileStringA
lstrlenA
Process32First
Process32Next
LoadLibraryA
FreeLibrary
LocalFree
MultiByteToWideChar
SetFileAttributesA
DeleteFileA
MoveFileA
GetSystemDirectoryA
GetModuleFileNameA
CreateProcessA
CloseHandle
InitializeCriticalSection
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryInfoKeyA
RegEnumKeyExA
RegDeleteKeyA
RegCloseKey
GetNamedSecurityInfoA
BuildExplicitAccessWithNameA
SetEntriesInAclA
SetNamedSecurityInfoA
RegQueryValueExA
SHGetSpecialFolderPathA
CommandLineToArgvW
CoInitialize
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CoUninitialize
CoCreateInstance
SysStringLen
LoadRegTypeLi
SysAllocString
VariantClear
SysFreeString
fseek
_stricmp
_strupr
_adjust_fdiv
malloc
_initterm
free
_wcslwr
wcsstr
_access
_purecall
strcmp
atoi
strncmp
strchr
strncpy
??3@YAXPAX@Z
memset
sprintf
strlen
strstr
??2@YAPAXI@Z
strcpy
fclose
fread
ftell
_strlwr
fopen
strcat
strrchr
memcmp
memcpy
SHSetValueA
SHDeleteKeyA
SHDeleteValueA
DllCanUnloadNow
DllGetClassObject
DllGetObjectType
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ