Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
f546c5157e59836a3303cdc40d850d487d8f3367f5e16df7f17e9ab43c0f57fd.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
f546c5157e59836a3303cdc40d850d487d8f3367f5e16df7f17e9ab43c0f57fd.exe
Resource
win10v2004-20230220-en
Target
f546c5157e59836a3303cdc40d850d487d8f3367f5e16df7f17e9ab43c0f57fd
Size
5.6MB
MD5
02db26832c0bb6794af5bd95e5b8c15a
SHA1
cccf7944135e4674c82bd7b303fe9e350c1bda30
SHA256
f546c5157e59836a3303cdc40d850d487d8f3367f5e16df7f17e9ab43c0f57fd
SHA512
5ec2bbf1bd5b60107600834373077b8ea2d81549ae67b3784c8bc48c7dfec1b0ca7f2c92ec944ba8d00e48fcbe9d0a62667507e19eedb7f4ad599bf6098f5a94
SSDEEP
49152:++B2YpiKpmh282sU3ZdZh8SmTuZWfrK9Df8Pr2P8Dy7YPd+zkGTnTvEBGnT71cYN:++B2lK6282pJdZ67uZWfrYN7c+zL1mYN
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
SERIALNUMBER=91440300MA5G7J4U1P,CN=Shenzhen Chongcheng zhisui Technology Co.\, Ltd,O=Shenzhen Chongcheng zhisui Technology Co.\, Ltd,L=深圳市,ST=广东省,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c09e6b7b1e59cb3e5b882,1.3.6.1.4.1.311.60.2.1.2=#0c09e5b9bfe4b89ce79c81,1.3.6.1.4.1.311.60.2.1.3=#1302434e
CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US
CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US
SERIALNUMBER=91440300MA5G7J4U1P,CN=Shenzhen Chongcheng zhisui Technology Co.\, Ltd,O=Shenzhen Chongcheng zhisui Technology Co.\, Ltd,L=深圳市,ST=广东省,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c09e6b7b1e59cb3e5b882,1.3.6.1.4.1.311.60.2.1.2=#0c09e5b9bfe4b89ce79c81,1.3.6.1.4.1.311.60.2.1.3=#1302434e
CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US
CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US
CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GetSystemTime
ReadConsoleA
SetConsoleMode
ConvertThreadToFiber
ConvertFiberToThread
CreateFiber
DeleteFiber
SwitchToFiber
VerifyVersionInfoA
GetSystemDirectoryA
PeekNamedPipe
SleepEx
FormatMessageA
SwitchToThread
lstrlenA
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
GlobalUnlock
GlobalLock
GlobalAlloc
GetTempPathW
InterlockedCompareExchange
GetFileInformationByHandle
GetFileSizeEx
MapViewOfFile
MulDiv
GetLastError
MultiByteToWideChar
LocalFree
FormatMessageW
GetFileAttributesW
MoveFileExW
SetFileTime
SetFileAttributesW
LocalFileTimeToFileTime
GetModuleHandleW
FindClose
FindFirstFileW
FindNextFileW
GetSystemTimeAsFileTime
FileTimeToDosDateTime
DosDateTimeToFileTime
GetSystemInfo
FileTimeToLocalFileTime
ResetEvent
ReleaseSemaphore
CreateSemaphoreW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetVersionExW
WaitForMultipleObjects
WriteFile
SetEndOfFile
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
RemoveDirectoryW
GetModuleHandleA
LocalAlloc
GetCurrentProcess
OutputDebugStringW
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
InitializeSListHead
GetPrivateProfileIntW
GetPrivateProfileStringW
UnmapViewOfFile
GetEnvironmentVariableW
GlobalFree
GetExitCodeProcess
lstrcpyW
CreateProcessW
DecodePointer
HeapDestroy
HeapReAlloc
HeapSize
RaiseException
GetVolumeInformationW
GetFileAttributesExW
FileTimeToSystemTime
ReleaseMutex
CreateMutexW
DeviceIoControl
SetPriorityClass
FlushInstructionCache
HeapCreate
FreeResource
LockResource
LoadResource
SizeofResource
FindResourceW
GetFullPathNameW
GetLocalTime
GetVersionExA
FindFirstFileA
FindNextFileA
ExpandEnvironmentStringsA
CreateFileA
VerSetConditionMask
RtlUnwind
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetStdHandle
GetACP
GetFileType
WriteConsoleW
GetStringTypeW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetTimeZoneInformation
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetConsoleCtrlHandler
SetStdHandle
GetConsoleCP
FlushFileBuffers
SystemTimeToFileTime
GetLongPathNameW
GetModuleFileNameW
WideCharToMultiByte
OutputDebugStringA
InterlockedDecrement
InterlockedIncrement
CreateFileW
WritePrivateProfileStringW
ReadFile
GetFileSize
CreateEventW
WaitForSingleObject
SetEvent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetExitCodeThread
TerminateThread
CreateThread
QueryDosDeviceW
GetWindowsDirectoryW
LoadLibraryW
GetLogicalDriveStringsW
lstrcmpiW
LoadLibraryA
lstrlenW
SetLastError
GetProcessHeap
HeapFree
HeapAlloc
VirtualFree
CreateFileMappingW
VirtualAlloc
GetProcAddress
FreeLibrary
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
DeleteFileW
CloseHandle
Sleep
GetSystemDirectoryW
OpenProcess
GetMenuItemCount
AppendMenuW
TrackPopupMenu
GetMenuInfo
SetMenuInfo
GetMenuItemInfoW
SetMenuContextHelpId
MsgWaitForMultipleObjects
BeginPaint
UpdateWindow
ReleaseCapture
SetCapture
GetCapture
IsZoomed
IsIconic
SetLayeredWindowAttributes
AnimateWindow
PostQuitMessage
TrackMouseEvent
GetMonitorInfoW
MonitorFromWindow
GetWindow
GetParent
MapWindowPoints
GetWindowRect
GetClientRect
GetActiveWindow
GetDlgItem
CreateWindowExW
RegisterClassExW
CallWindowProcW
DefWindowProcW
GetFocus
SetFocus
PtInRect
EqualRect
IsRectEmpty
DestroyMenu
CopyRect
SetRect
SetCursor
KillTimer
SetTimer
DestroyWindow
DestroyCursor
LoadCursorW
IntersectRect
GetKeyState
GetWindowLongW
GetForegroundWindow
UnregisterClassW
GetClassNameW
PeekMessageW
DispatchMessageW
TranslateMessage
CreatePopupMenu
IsWindowEnabled
IsMenu
UpdateLayeredWindow
MapVirtualKeyA
CharLowerBuffW
PostMessageW
FindWindowW
SendMessageW
ShowWindow
SetWindowPos
LoadStringW
wsprintfW
CharPrevExA
CharUpperW
GetIconInfo
DrawIconEx
OffsetRect
InflateRect
ReleaseDC
GetDC
SetWindowTextW
IsWindow
SetForegroundWindow
SystemParametersInfoA
DrawTextW
IsWindowVisible
SetWindowLongW
MessageBoxW
GetSystemMetrics
GetSysColor
EnableMenuItem
ClientToScreen
GetMessageW
CharNextW
LoadImageW
CreateIconFromResource
LoadBitmapW
DestroyIcon
ScreenToClient
SetCaretPos
HideCaret
GetCaretBlinkTime
CreateCaret
GetCursorPos
InvalidateRect
UnionRect
EndPaint
SystemParametersInfoW
GetUserObjectInformationW
GetProcessWindowStation
RegOpenKeyW
RegisterEventSourceW
OpenProcessToken
CreateProcessAsUserW
CryptAcquireContextW
CryptReleaseContext
CryptGenRandom
DeregisterEventSource
RegCloseKey
RegSetValueExW
GetTokenInformation
LookupAccountSidW
RegDeleteKeyW
RevertToSelf
ImpersonateLoggedOnUser
SetTokenInformation
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCreateKeyExW
DuplicateTokenEx
RegEnumKeyW
RegOpenKeyExW
RegDeleteValueW
OpenServiceW
StartServiceW
DeleteService
RegFlushKey
OpenSCManagerW
CloseServiceHandle
CreateServiceW
RegQueryValueExA
RegQueryValueExW
ReportEventW
SHBrowseForFolderW
ShellExecuteExW
SHChangeNotify
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetFolderPathW
SHCreateDirectoryExW
SHGetSpecialFolderPathW
ShellExecuteW
SHFileOperationW
CoCreateGuid
CoUninitialize
CoTaskMemFree
CreateBindCtx
CLSIDFromProgID
CLSIDFromString
OleInitialize
OleUninitialize
CreateStreamOnHGlobal
CoCreateInstance
OleLockRunning
CoInitialize
GetProcessImageFileNameW
EnumProcessModules
EnumProcesses
GetModuleFileNameExW
SHDeleteKeyW
SHDeleteValueW
SHSetValueW
SHCreateStreamOnFileEx
PathFileExistsW
SHGetValueW
StrToIntExW
CreateEnvironmentBlock
DestroyEnvironmentBlock
GdipFree
GdipAlloc
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdiplusShutdown
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapUnlockBits
GdiplusStartup
GdipImageSelectActiveFrame
GdipDeleteGraphics
GdipDrawImageI
GdipCloneImage
GdipGetImageGraphicsContext
GdipBitmapLockBits
GdipGraphicsClear
GdipDrawImageRectI
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipSaveImageToFile
ImmReleaseContext
ImmAssociateContext
ImmGetContext
SetGraphicsMode
GetObjectW
DeleteDC
DeleteObject
ExtCreateRegion
GetRegionData
IntersectClipRect
SelectClipRgn
SelectObject
CreateDIBSection
SetViewportOrgEx
GetCurrentObject
GetViewportOrgEx
BitBlt
EnumFontsW
CreateRoundRectRgn
CreateBitmap
GetDeviceCaps
StretchBlt
SetBkMode
Rectangle
GetStockObject
GdiFlush
GetTextFaceW
ExtTextOutW
SetWorldTransform
GetTextMetricsW
SetTextAlign
SetTextColor
RemoveFontMemResourceEx
AddFontMemResourceEx
GetTextExtentPointI
GetGlyphIndicesW
GetFontUnicodeRanges
GetOutlineTextMetricsW
GetGlyphOutlineW
GetFontData
GetCharABCWidthsW
EnumFontFamiliesExW
CreateSolidBrush
CreateFontIndirectW
CreateCompatibleDC
SysFreeString
VariantClear
VariantCopy
SysAllocStringLen
SysAllocString
CertGetNameStringW
CryptQueryObject
CertFreeCertificateContext
CryptMsgClose
CertFindCertificateInStore
CertCloseStore
CryptMsgGetParam
ord33
ord200
ord30
ord301
ord35
ord143
ord46
ord211
ord60
ord50
ord41
ord22
ord26
ord32
ord79
ord27
freeaddrinfo
recvfrom
sendto
accept
listen
ioctlsocket
gethostname
WSAStartup
WSACleanup
recv
send
WSAIoctl
WSAGetLastError
__WSAFDIsSet
select
WSASetLastError
bind
closesocket
connect
getpeername
getsockname
getsockopt
htons
ntohs
setsockopt
getaddrinfo
socket
ScriptFreeCache
ScriptShape
ScriptItemize
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ