Static task
static1
Behavioral task
behavioral1
Sample
b47fe9377753185759de05a033528e8e27ede4e2dc59e9a1083ad557c7fe66df.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
b47fe9377753185759de05a033528e8e27ede4e2dc59e9a1083ad557c7fe66df.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
Target
b47fe9377753185759de05a033528e8e27ede4e2dc59e9a1083ad557c7fe66df
Size
367KB
MD5
833e3799e0b9cd5ff81b222c76602620
SHA1
42688e1fd3ca447b86cf79a05fd496a4f303e91f
SHA256
b47fe9377753185759de05a033528e8e27ede4e2dc59e9a1083ad557c7fe66df
SHA512
bd764adbee616060e834aaf73dee7a08d354a0a9a436297b61efcabafa464203377424896fd2c6e9eb93fc2e1f6ace11e5a293b7d7704e34ac3c6a0128d1c34a
SSDEEP
6144:ei35i/okIEicKuuVeLqIXFqp75do9wdGLaSh222YyQpcdheu+jE29czK2V2nyMbW:ls/oBPYuVeGIXFqp75doiGLaSh222YyV
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
CN=McAfee\, Inc.,OU=Engineering,O=McAfee\, Inc.,L=Santa Clara,ST=California,C=US
CN=GlobalSign CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE
CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
GetExitCodeProcess
WaitForSingleObject
CreateProcessW
CreateFileW
CreateMutexW
QueryFullProcessImageNameW
OpenProcess
CreateDirectoryW
GetTempPathW
GetFileAttributesW
GetCurrentProcess
GlobalLock
GlobalAlloc
SetEnvironmentVariableW
GetLongPathNameW
GetTickCount
GetSystemTimeAsFileTime
Sleep
GetModuleFileNameA
FindClose
FindNextFileA
FindFirstFileA
GetLocalTime
ProcessIdToSessionId
InterlockedIncrement
GetCurrentThreadId
GetModuleHandleW
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetTimeZoneInformation
PeekNamedPipe
GetFileInformationByHandle
GetFullPathNameW
MoveFileW
DeleteFileW
FindFirstFileExW
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetModuleHandleExW
GetProcAddress
GetDriveTypeW
FileTimeToLocalFileTime
FileTimeToSystemTime
LoadLibraryA
FreeLibrary
GetCurrentDirectoryW
OutputDebugStringW
GetModuleFileNameW
LoadLibraryExW
CloseHandle
GetLastError
DeviceIoControl
WriteFile
CreateEventW
InterlockedDecrement
lstrlenW
LocalAlloc
LocalFree
CompareStringW
LCMapStringW
FlushFileBuffers
GetStringTypeW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
SetEnvironmentVariableA
InitializeCriticalSection
GetFileType
HeapAlloc
HeapFree
ReadFile
GetConsoleCP
GetConsoleMode
SetFilePointer
RaiseException
DecodePointer
EncodePointer
RtlUnwind
ExitProcess
GetCommandLineW
HeapSetInformation
GetStartupInfoW
InterlockedExchange
LoadLibraryW
GetCurrentProcessId
SetStdHandle
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
SetEndOfFile
GetProcessHeap
HeapCreate
HeapDestroy
WriteConsoleW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
IsProcessorFeaturePresent
HeapReAlloc
HeapSize
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
PostThreadMessageW
MsgWaitForMultipleObjects
DispatchMessageW
TranslateMessage
PeekMessageW
GetProcessWindowStation
wsprintfW
CryptAcquireContextW
TraceEvent
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
RegDeleteValueW
RegNotifyChangeKeyValue
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegSetValueExW
SHFileOperationW
CoRevertToSelf
CoInitializeEx
CoGetInterfaceAndReleaseStream
CreateStreamOnHGlobal
CLSIDFromString
CoImpersonateClient
CoUninitialize
VariantInit
VariantClear
PathRemoveFileSpecA
PathAppendW
PathFindFileNameW
StrStrIW
PathFileExistsW
wnsprintfW
StrCmpIW
WinVerifyTrust
UuidCreate
EnumProcesses
ExtractFilesW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ