Static task
static1
Target
Essential Mod Installer.exe
Size
11.7MB
MD5
2963c94d283ceb389ce34ddbc604842b
SHA1
cd70728f4dba9ec82d4cc5d7b7d5ac5755ba71d9
SHA256
ca0d81739db3299a92d730d344285df70dbcfe7fb06eed622397730433a7c64b
SHA512
51dc712f1a1bd3a487976e3df6c3af7735dfa0636729c190adb9a8e2ff3844d9003d92155ba59b1690dad352f2aa963006fc0714bb578011fa1750654abe9f93
SSDEEP
196608:MoAPOAjsYFZHWzQYlS9bsUZRAEOXfz34HS:QmAjsYFqQ99bsGyEOXr34HS
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
CN=ModCore Inc,O=ModCore Inc,L=Mount Vernon,ST=New York,C=US
CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US
CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US
CN=ModCore Inc,O=ModCore Inc,L=Mount Vernon,ST=New York,C=US
CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US
CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US
CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
RtlUnwind
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlGetNtVersionNumbers
NtQueryInformationProcess
RtlPcToFileHeader
NtQuerySystemInformation
RtlGetVersion
RtlUnwindEx
GetModuleHandleA
GetProcAddress
AcquireSRWLockShared
ReleaseSRWLockShared
TryAcquireSRWLockExclusive
SleepConditionVariableSRW
LoadLibraryA
DeviceIoControl
GetVolumeInformationW
GetDriveTypeW
WriteConsoleW
GetTempPathW
GetSystemTimeAsFileTime
TlsSetValue
TlsGetValue
CreateThread
GlobalLock
GlobalUnlock
GetSystemInfo
CreateFileW
GlobalAlloc
CreateProcessW
GetWindowsDirectoryW
GetSystemDirectoryW
CreateNamedPipeW
GetFullPathNameW
ExitProcess
GetConsoleMode
CancelIo
ReadFile
CreateEventW
CopyFileExW
CreateHardLinkW
CreateSymbolicLinkW
RemoveDirectoryW
DeleteFileW
FindFirstFileW
GetExitCodeProcess
GetDiskFreeSpaceExW
GetFileInformationByHandleEx
FindNextFileW
CreateMutexA
WaitForSingleObjectEx
HeapReAlloc
QueryPerformanceFrequency
WakeConditionVariable
WakeAllConditionVariable
QueryPerformanceCounter
GetOverlappedResult
GetLogicalDrives
WaitForMultipleObjects
lstrlenW
GetProcessId
TerminateProcess
ReadFileEx
SleepEx
WriteFileEx
SetHandleInformation
GetStdHandle
CreateDirectoryW
SetFilePointerEx
SetEnvironmentVariableW
GetEnvironmentStringsW
GetCurrentDirectoryW
GetCurrentThread
Sleep
SwitchToThread
SetThreadStackGuarantee
AddVectoredExceptionHandler
CompareStringOrdinal
GetFileAttributesW
GetModuleFileNameW
OutputDebugStringA
OutputDebugStringW
GlobalMemoryStatusEx
GetTickCount64
GetCurrentProcessId
LoadLibraryExW
LoadLibraryW
FreeLibrary
GetEnvironmentVariableW
FindClose
ReleaseMutex
FreeEnvironmentStringsW
SetEvent
WaitForSingleObject
ReadProcessMemory
VirtualQueryEx
FormatMessageW
LocalFree
SetFileTime
GetFinalPathNameByHandleW
GetProcessIoCounters
TlsFree
GetCurrentProcess
DuplicateHandle
GetSystemTimes
GetProcessTimes
OpenProcess
HeapAlloc
GetLastError
HeapFree
GetProcessHeap
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
ResetEvent
InitializeSListHead
SetLastError
SetFileInformationByHandle
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentThreadId
SetUnhandledExceptionFilter
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
CloseHandle
MoveFileExW
IsProcessorFeaturePresent
RaiseException
EncodePointer
TlsAlloc
CreatePipe
SetFileAttributesW
GetFileInformationByHandle
CheckMenuItem
SetMenuItemInfoW
MessageBoxW
TranslateAcceleratorW
EnableMenuItem
AppendMenuW
GetRawInputData
CreateIcon
SetClipboardData
RegisterClipboardFormatA
EmptyClipboard
CloseClipboard
GetClipboardData
OpenClipboard
SetCapture
SetWindowLongPtrW
MsgWaitForMultipleObjectsEx
RegisterRawInputDevices
DestroyIcon
ShowWindow
GetMessageW
FlashWindowEx
ChangeDisplaySettingsExW
DispatchMessageA
PeekMessageW
DestroyAcceleratorTable
RegisterClassExW
RegisterWindowMessageA
MapVirtualKeyW
DestroyWindow
TranslateMessage
SendInput
PostQuitMessage
CreateMenu
EnumDisplayMonitors
MonitorFromPoint
GetMessageA
EnumChildWindows
SetWindowTextW
SetWindowPlacement
GetWindowLongPtrW
SetForegroundWindow
GetWindowPlacement
GetWindowRect
GetMenu
GetKeyboardLayout
SetWindowPos
InvalidateRgn
LoadCursorW
RedrawWindow
RegisterHotKey
UnregisterHotKey
SystemParametersInfoA
MapVirtualKeyExW
GetKeyState
GetKeyboardState
ToUnicodeEx
GetDC
IsProcessDPIAware
CreateAcceleratorTableW
AdjustWindowRectEx
ShowCursor
GetClipCursor
ClipCursor
IsWindowVisible
SendMessageW
PostThreadMessageW
PostMessageW
SetWindowLongW
DispatchMessageW
GetAncestor
GetMonitorInfoW
MonitorFromRect
MonitorFromWindow
CloseTouchInputHandle
ScreenToClient
GetTouchInputInfo
GetWindowLongW
TrackMouseEvent
GetAsyncKeyState
SetCursorPos
ReleaseCapture
GetCursorPos
GetActiveWindow
GetForegroundWindow
ClientToScreen
SetMenu
GetClientRect
GetUpdateRect
ValidateRect
SetCursor
VkKeyScanW
DefWindowProcW
RegisterTouchWindow
GetSystemMetrics
IsWindow
CreateWindowExW
DefSubclassProc
RemoveWindowSubclass
SetWindowSubclass
CreateRectRgn
GetDeviceCaps
DeleteObject
DwmEnableBlurBehindWindow
CoTaskMemAlloc
CoTaskMemFree
OleInitialize
RegisterDragDrop
RevokeDragDrop
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateInstance
CreateStreamOnHGlobal
freeaddrinfo
WSACleanup
select
connect
WSAStartup
WSASocketW
WSADuplicateSocketW
ioctlsocket
send
recv
getsockopt
setsockopt
WSAGetLastError
shutdown
getaddrinfo
closesocket
RegOpenKeyExW
RegQueryValueExW
OpenProcessToken
GetTokenInformation
LookupAccountSidW
EventRegister
EventSetInformation
EventWriteTransfer
EventUnregister
RegEnumKeyExW
RegGetValueW
RegCloseKey
AcceptSecurityContext
InitializeSecurityContextW
EncryptMessage
AcquireCredentialsHandleA
DecryptMessage
QueryContextAttributesW
LsaEnumerateLogonSessions
LsaGetLogonSessionData
LsaFreeReturnBuffer
DeleteSecurityContext
FreeContextBuffer
FreeCredentialsHandle
CertDuplicateCertificateContext
CertDuplicateStore
CertDuplicateCertificateChain
CertFreeCertificateChain
CertCloseStore
CertOpenStore
CertFreeCertificateContext
CertGetCertificateChain
CertAddCertificateContextToStore
CertVerifyCertificateChainPolicy
CertEnumCertificatesInStore
CommandLineToArgvW
DragQueryFileW
ShellExecuteW
DragFinish
SHCreateItemFromParsingName
SHGetKnownFolderPath
PdhCollectQueryData
PdhAddEnglishCounterW
PdhGetFormattedCounterValue
PdhRemoveCounter
PdhOpenQueryA
PdhCloseQuery
CallNtPowerInformation
SysFreeString
SysStringLen
VariantClear
SysAllocString
GetErrorInfo
SetErrorInfo
NetUserGetLocalGroups
NetUserEnum
NetApiBufferFree
GetIfTable2
FreeMibTable
GetIfEntry2
SetWindowTheme
BCryptGenRandom
BCryptCloseAlgorithmProvider
BCryptOpenAlgorithmProvider
GetPerformanceInfo
GetModuleFileNameExW
EnumProcessModulesEx
round
trunc
__setusermatherr
floor
_wcsicmp
wcslen
wcsncmp
strcpy_s
wcstol
_ultow_s
_crt_atexit
abort
_initialize_onexit_table
_set_app_type
_seh_filter_exe
_register_onexit_function
terminate
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
__p___argv
__p___argc
_configure_narrow_argv
_exit
exit
_initterm_e
_initterm
_initialize_narrow_environment
_get_initial_narrow_environment
_set_fmode
__p__commode
_configthreadlocale
_set_new_mode
calloc
malloc
free
_callnewh
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ