Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
ba924b94dbadac36c43e75be5a57b6ffe267db4ad91f8ca59e5dc5b283ba0add.dll
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
ba924b94dbadac36c43e75be5a57b6ffe267db4ad91f8ca59e5dc5b283ba0add.dll
Resource
win10v2004-20220812-en
Target
ba924b94dbadac36c43e75be5a57b6ffe267db4ad91f8ca59e5dc5b283ba0add
Size
692KB
MD5
456d35e66dfc0f5396d469044e3587aa
SHA1
27f2fb96ac33da8b6f33ea49e23eb5c19fae3a40
SHA256
ba924b94dbadac36c43e75be5a57b6ffe267db4ad91f8ca59e5dc5b283ba0add
SHA512
725ac893cfc2285aff7801e12f02c5d4e90633a78d804fb3adb0998ee46ae558c6b40a9b694ab6e7e55579309062dc260a4aad2c944e1db8b95fd93f274b55c3
SSDEEP
12288:AZSWePFp2CIzKBFC6aCLw5CoAcZfvmZWSw4YZYn+PFJJZ:EnSC6aCof2bwRZYo1
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
CompareFileTime
lstrcpynW
lstrcatW
CreateEventW
GetModuleHandleW
GetTempPathW
GetWindowsDirectoryW
DeleteFileW
FindFirstFileW
FindNextFileW
WideCharToMultiByte
Sleep
GetTickCount
GetCurrentThreadId
SetLastError
ReleaseMutex
DeviceIoControl
OpenMutexW
CreateFileW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
LoadLibraryExW
GetLongPathNameW
OpenProcess
lstrlenW
CreateMutexW
GetLogicalDriveStringsW
QueryDosDeviceW
ExitThread
InterlockedFlushSList
RtlUnwind
ResetEvent
SetEvent
CreateThread
GetCurrentProcess
FreeLibrary
MultiByteToWideChar
FindResourceExW
FindResourceW
GetModuleFileNameW
LoadLibraryW
SizeofResource
LoadResource
DeleteCriticalSection
FileTimeToSystemTime
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
FindClose
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
ReadConsoleW
SetStdHandle
FileTimeToLocalFileTime
SystemTimeToFileTime
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetLastError
RaiseException
DecodePointer
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetProcAddress
LockResource
WaitForMultipleObjects
GetFullPathNameW
GetCurrentDirectoryW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetVersionExW
GetSystemWindowsDirectoryW
FreeResource
InterlockedCompareExchange
CreateFileA
GetACP
ExitProcess
WriteConsoleW
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
CloseHandle
GetStdHandle
GetTimeZoneInformation
GetConsoleMode
GetSystemDirectoryW
GetConsoleCP
SetFilePointerEx
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
GetDriveTypeW
GetModuleHandleExW
FreeLibraryAndExitThread
GetCommandLineA
WaitForSingleObject
GetStringTypeW
EncodePointer
SwitchToThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetLocaleInfoW
GetCPInfo
GetCurrentProcessId
OutputDebugStringW
IsDebuggerPresent
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
IsProcessorFeaturePresent
VirtualAlloc
VirtualFree
LoadLibraryExA
GetFileSizeEx
MapViewOfFile
UnmapViewOfFile
CreateFileMappingW
GetFileSize
WriteFile
ReadFile
FlushFileBuffers
GetPrivateProfileIntW
WritePrivateProfileStringW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
WaitForSingleObjectEx
GetStartupInfoW
QueryPerformanceCounter
SetEndOfFile
SetFilePointer
GetFileTime
GetSystemTime
FileTimeToDosDateTime
GetTempFileNameW
lstrcmpA
lstrcmpiA
LoadIconW
RemovePropW
GetPropW
UnregisterClassW
EndPaint
BeginPaint
GetClassInfoW
RegisterClassW
CharNextW
LoadCursorW
SetWindowLongW
GetWindowLongW
KillTimer
SetTimer
wsprintfW
DestroyWindow
CreateWindowExW
GetClassInfoExW
RegisterClassExW
CallWindowProcW
PostQuitMessage
DefWindowProcW
DispatchMessageW
TranslateMessage
RegisterWindowMessageW
PostThreadMessageW
PeekMessageW
GetMessageW
IsWindow
PostMessageW
SetPropW
GetStockObject
RegDeleteValueW
LookupPrivilegeValueW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AdjustTokenPrivileges
OpenProcessToken
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
GetTokenInformation
CoCreateGuid
CoInitialize
CoUninitialize
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
VariantTimeToSystemTime
VarUI4FromStr
SystemTimeToVariantTime
VarDateFromStr
SHGetValueW
PathCombineW
PathIsDirectoryW
StrStrIW
wnsprintfW
PathRemoveFileSpecW
PathFileExistsW
PathAppendW
PathFindFileNameW
SHGetValueA
SHSetValueA
StrCmpNIW
StrTrimA
StrStrIA
StrCmpIW
GetAdaptersInfo
InternetGetConnectedState
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
GetProcessImageFileNameW
GetModuleFileNameExW
WTHelperProvDataFromStateData
WinVerifyTrust
CertGetNameStringW
ord165
SHGetSpecialFolderPathW
URLDownloadToCacheFileW
URLDownloadToFileW
CreateEntClient
CreateTrayClient
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ