hxitFAR
hxitFARW
hetGlobalInfoW
hetMinFarVersion
hetMinFarVersionW
hetPluginInfo
hetPluginInfoW
hpenPlugin
hpenPluginW
hpenW
hrocessSynchroEventW
hetStartupInfo
init
Static task
static1
Behavioral task
behavioral1
Sample
tmpFB1E.dll
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
tmpFB1E.dll
Resource
win10v2004-20220812-en
Target
tmpFB1E.dll
Size
269KB
MD5
c7ca67a72a6cad3fc366e6e172539859
SHA1
fd1855605f49c59a0894f7a8b848303eb099f496
SHA256
c705008b6656feabe462ebb2363d6a259581cea574872cb1c6c440dbd23ad4fa
SHA512
5727151a1e2680fd482fa8a882ead4242c1f96b4119f0c7672fc7a5b5d2df8a226b15dc69f6ce0f7ccfe17510f21a0af4c23ecb000bda6f29252daf724c16fbd
SSDEEP
6144:MTHJ5BU2WigC+/NZy40onBQ14xdN8IcfSLZ:qDB0igC+/NHBQ1SdwSd
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
WaitForMultipleObjects
GetExitCodeThread
LocalAlloc
FileTimeToSystemTime
CreateFileW
FindClose
FindFirstFileW
FindNextFileW
GetTempPathW
ResetEvent
GetTickCount
FreeLibrary
LoadLibraryW
IsBadReadPtr
GetStdHandle
SetEnvironmentVariableW
CloseHandle
GetLastError
WriteConsoleW
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
HeapSize
SetStdHandle
GetStringTypeW
Sleep
GetProcessHeap
LCMapStringW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetFileType
GetModuleHandleExW
ExitProcess
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CreateEventW
SetEvent
MultiByteToWideChar
lstrlenA
lstrcpynA
lstrcmpW
Thread32Next
Thread32First
CreateToolhelp32Snapshot
WriteConsoleInputW
ReadConsoleInputW
WideCharToMultiByte
lstrlenW
lstrcpyW
lstrcpynW
lstrcmpiW
LocalFree
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
UnmapViewOfFile
SetFilePointerEx
OpenFileMappingW
CreateFileMappingW
VirtualQuery
VirtualProtect
GetCurrentThreadId
MapViewOfFile
InitializeCriticalSectionAndSpinCount
EncodePointer
GetCurrentProcessId
WaitForSingleObject
InterlockedFlushSList
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
DebugBreak
GetEnvironmentVariableW
ReadFile
WriteFile
IsDebuggerPresent
SetLastError
SetNamedPipeHandleState
TransactNamedPipe
WaitNamedPipeW
Process32FirstW
Process32NextW
OpenThread
RaiseException
CreateThread
TerminateThread
ResumeThread
VerSetConditionMask
GetFileInformationByHandle
VerifyVersionInfoW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
FreeEnvironmentStringsW
ExpandEnvironmentStringsW
GetConsoleScreenBufferInfo
ReadConsoleOutputW
GetCurrentProcess
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
RtlUnwindEx
RtlPcToFileHeader
GetIconInfo
DrawIconEx
DestroyIcon
LoadIconW
ReleaseDC
GetDC
LoadCursorW
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
FillRect
InvalidateRect
EndPaint
BeginPaint
DrawTextW
ShowWindowAsync
DestroyWindow
IsWindow
CreateWindowExW
UnregisterClassW
RegisterClassW
DefWindowProcW
PostThreadMessageW
PostMessageW
DispatchMessageW
GetMessageW
RegisterWindowMessageW
wsprintfW
GetWindowThreadProcessId
GetClassNameW
IntersectRect
ChildWindowFromPointEx
WindowFromPoint
MapWindowPoints
MessageBoxW
GetClientRect
ShowWindow
MapVirtualKeyW
GetKeyState
IsWindowVisible
GdiFlush
GetObjectW
CreateDIBSection
GdiAlphaBlend
SetStretchBltMode
StretchBlt
MoveToEx
SetTextColor
SetBkColor
SelectObject
Rectangle
LineTo
GetStockObject
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateFontW
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
SHGetFileInfoW
CoUninitialize
CoInitializeEx
hxitFAR
hxitFARW
hetGlobalInfoW
hetMinFarVersion
hetMinFarVersionW
hetPluginInfo
hetPluginInfoW
hpenPlugin
hpenPluginW
hpenW
hrocessSynchroEventW
hetStartupInfo
init
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ