Extended Key Usages
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
File-Five.Nights.at.Freddys.Sister.Location.v1_858859.exe
Resource
win10v2004-20230220-en
Target
File-Five.Nights.at.Freddys.Sister.Location.v1_858859.exe
Size
14.2MB
MD5
24df7ad59eabbe35724e792e7a2ee529
SHA1
08eb769ae922185b7746fb358249ca11bf3916b9
SHA256
6fba3a266639de2e75def408f50ed3c886f9541724bf8db0f1fa276538e8c093
SHA512
583bfc20533b9c1763cfe4181971bc8ccdb044564f276c89d87bd02095f9c1246668f6b688dca7ad3ed093d7780508053932f9732681a8d4a3022dc5f2ae71dd
SSDEEP
393216:RSFiOb2vyWNWPcCPMKxMnxE6X7HL6xEjccfLExHuDJsv6tWKFdu9CN:RSFiOb2H7HL6Sp
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
SERIALNUMBER=2021-001024541,CN=Stragence Technology\, Inc.,O=Stragence Technology\, Inc.,L=Cheyenne,ST=Wyoming,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#130757796f6d696e67,1.3.6.1.4.1.311.60.2.1.3=#13025553
CN=Entrust Extended Validation Code Signing CA - EVCS2,O=Entrust\, Inc.,C=US
CN=Entrust Code Signing Root Certification Authority - CSBR1,O=Entrust\, Inc.,C=US
CN=Entrust Root Certification Authority - G2,OU=See www.entrust.net/legal-terms+OU=(c) 2009 Entrust\, Inc. - for authorized use only,O=Entrust\, Inc.,C=US
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
SetWorldTransform
CombineRgn
RemoveFontResourceExW
SelectObject
AddFontResourceExW
RemoveFontMemResourceEx
GetDeviceCaps
BitBlt
GetOutlineTextMetricsW
SetBkMode
SetGraphicsMode
GdiFlush
OffsetRgn
SetTextAlign
CreateCompatibleDC
SetTextColor
CreateRectRgn
SelectClipRgn
AddFontMemResourceEx
DeleteObject
ExtTextOutW
CreateCompatibleBitmap
GetBitmapBits
CreateDCW
GetTextMetricsW
GetDIBits
EnumFontFamiliesExW
GetCharABCWidthsW
CreateDIBSection
GetStockObject
GetCharABCWidthsFloatW
CreateBitmap
DeleteDC
GetObjectW
GetFontData
GetRegionData
GetTextFaceW
CreateFontIndirectW
GetTextExtentPoint32W
GetGlyphOutlineW
GetCharABCWidthsI
OleUninitialize
OleSetClipboard
CoGetMalloc
RegisterDragDrop
CoTaskMemFree
RevokeDragDrop
ReleaseStgMedium
CoInitialize
CoTaskMemAlloc
CoCreateInstance
CoCreateGuid
OleFlushClipboard
OleInitialize
OleIsCurrentClipboard
DoDragDrop
CoUninitialize
CoLockObjectExternal
StringFromGUID2
OleGetClipboard
ImmNotifyIME
ImmGetCompositionStringW
ImmSetCandidateWindow
ImmAssociateContext
ImmSetCompositionWindow
ImmGetVirtualKey
ImmGetDefaultIMEWnd
ImmReleaseContext
ImmGetContext
PlaySoundW
SysStringLen
SystemTimeToVariantTime
VariantChangeType
VariantInit
SysAllocStringLen
SysFreeString
SysAllocString
ShellExecuteW
SHBrowseForFolderW
SHGetSpecialFolderPathW
SHGetPathFromIDListW
SHGetFileInfoW
CommandLineToArgvW
SHGetMalloc
CryptDestroyKey
CryptEncrypt
RegQueryValueExW
FreeSid
RegCloseKey
RegEnumKeyExW
CryptHashData
RegEnumValueW
RegFlushKey
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegQueryInfoKeyW
CryptGetHashParam
CryptGenRandom
GetTokenInformation
CryptReleaseContext
GetLengthSid
CopySid
RegDeleteValueW
CryptCreateHash
RegSetValueExW
OpenProcessToken
CryptImportKey
CryptAcquireContextW
CryptDestroyHash
DefWindowProcW
HideCaret
ClientToScreen
GetCapture
GetSysColor
GetAncestor
PeekMessageW
GetAsyncKeyState
GetWindowRect
MessageBeep
TrackPopupMenuEx
MessageBoxW
GetKeyboardLayoutList
SetCursor
LoadCursorW
EnumWindows
SetTimer
GetIconInfo
ChangeClipboardChain
GetWindowLongW
ReleaseDC
InvalidateRect
DrawIconEx
GetMonitorInfoW
GetCaretBlinkTime
GetMenu
NotifyWinEvent
CreateCaret
EnableMenuItem
GetUpdateRect
ToUnicode
GetQueueStatus
RegisterClipboardFormatW
UnregisterClassW
SetCursorPos
GetForegroundWindow
ShowWindow
RegisterWindowMessageW
SetWindowLongW
wsprintfA
CharNextExA
IsWindowVisible
DestroyCursor
ToAscii
GetSystemMetrics
MsgWaitForMultipleObjectsEx
UnhookWindowsHookEx
MapVirtualKeyW
DestroyIcon
IsIconic
SetClipboardViewer
GetKeyState
RegisterClassExW
ReleaseCapture
GetClientRect
DestroyWindow
SetWindowPlacement
GetDC
SetWindowsHookExW
RealGetWindowClassW
ScreenToClient
EndPaint
IsZoomed
GetParent
DispatchMessageW
GetCursorPos
LoadImageW
GetCursor
GetMessageExtraInfo
GetClassInfoW
SetWindowPos
CallNextHookEx
SetCapture
DestroyCaret
SetParent
GetCursorInfo
SendMessageW
SetFocus
CreateWindowExW
TranslateMessage
TrackMouseEvent
GetWindowPlacement
GetSysColorBrush
EnumDisplayMonitors
RegisterClassW
CreateIconIndirect
LoadIconW
PostMessageW
FlashWindowEx
SetWindowRgn
BeginPaint
SetMenuItemInfoW
GetClipboardFormatNameW
ChildWindowFromPointEx
SystemParametersInfoW
AdjustWindowRectEx
KillTimer
GetKeyboardState
GetKeyboardLayout
SetCaretPos
GetFocus
GetDesktopWindow
GetWindowTextW
IsChild
MoveWindow
CreateCursor
GetDoubleClickTime
SetForegroundWindow
GetSystemMenu
SetWindowTextW
GetWindowThreadProcessId
FindNextChangeNotification
TlsAlloc
DeleteFileW
WaitForSingleObjectEx
ReleaseMutex
GetDateFormatA
GetVolumeInformationW
IsValidLanguageGroup
GetCurrentProcess
RemoveDirectoryW
GlobalSize
VirtualQuery
HeapAlloc
GetConsoleCP
ExitThread
WriteConsoleW
LeaveCriticalSection
FindCloseChangeNotification
MoveFileExW
GetTickCount
GetFileAttributesW
GetThreadPriority
ExitProcess
GetLongPathNameW
HeapSize
LocalFree
QueryPerformanceFrequency
SetLastError
TerminateProcess
CreateSemaphoreW
ExpandEnvironmentStringsW
UnhandledExceptionFilter
HeapFree
GetCurrentDirectoryW
GetProcessHeap
FormatMessageW
WriteFile
SetFileAttributesW
FindFirstFileW
HeapSetInformation
SetEnvironmentVariableA
SetFilePointerEx
OpenFileMappingW
OpenProcess
FreeEnvironmentStringsW
InitializeCriticalSection
GetSystemDirectoryW
FlushFileBuffers
LoadLibraryW
GetLocalTime
PeekNamedPipe
SetEvent
GetFullPathNameW
GlobalLock
SetEndOfFile
FindClose
RtlUnwind
GetConsoleMode
FileTimeToLocalFileTime
GetTimeFormatA
GetLocaleInfoW
EnumSystemLocalesA
VerSetConditionMask
GetFileSize
GetFileType
RaiseException
UnmapViewOfFile
GetACP
WideCharToMultiByte
GetModuleHandleW
SetHandleCount
GetStartupInfoW
FreeLibrary
SetErrorMode
InterlockedDecrement
GetCommandLineW
CreateFileMappingW
CreateEventW
GlobalAlloc
CreateThread
GetEnvironmentStringsW
GetCurrentThread
CreateFileA
ResetEvent
GetLocaleInfoA
GetEnvironmentVariableA
FileTimeToSystemTime
SetStdHandle
InterlockedIncrement
GetLogicalDrives
DuplicateHandle
GetCurrentThreadId
GetProcAddress
MultiByteToWideChar
CompareStringW
GetUserDefaultLangID
TlsFree
CopyFileW
GetUserDefaultUILanguage
CreateDirectoryW
GetDateFormatW
GetFileInformationByHandle
GetSystemTime
DeviceIoControl
CreateFileW
GetFileSizeEx
CheckRemoteDebuggerPresent
GetGeoInfoW
GetTimeZoneInformation
QueryPerformanceCounter
GlobalUnlock
FindFirstFileExW
lstrcmpW
GetStringTypeW
WaitForSingleObject
CreateProcessW
SleepEx
GetTempPathW
InterlockedExchange
Sleep
lstrcatA
GetTickCount64
EnterCriticalSection
TlsSetValue
DecodePointer
LoadLibraryA
GetCurrencyFormatW
GetCurrentProcessId
VirtualAlloc
MapViewOfFile
SystemTimeToTzSpecificLocalTime
GetTimeFormatW
CloseHandle
LCMapStringW
GetModuleFileNameA
IsValidCodePage
GetLastError
VerifyVersionInfoW
ReleaseSemaphore
IsValidLocale
VirtualFree
GetUserGeoID
ReadFile
GetUserDefaultLCID
DeleteFileA
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetModuleFileNameW
SetFilePointer
OutputDebugStringW
DeleteCriticalSection
HeapCreate
SetThreadPriority
GetFileAttributesExW
GetSystemTimeAsFileTime
GetDriveTypeW
FindNextFileW
GetModuleHandleA
GetConsoleWindow
GetCommandLineA
TerminateThread
FindFirstChangeNotificationW
WaitForMultipleObjects
HeapReAlloc
IsDebuggerPresent
GetSystemInfo
EncodePointer
ResumeThread
GetStdHandle
GetOEMCP
MoveFileW
TlsGetValue
lstrlenA
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
CreateMutexW
recv
WSAResetEvent
WSACloseEvent
freeaddrinfo
WSAEventSelect
WSAWaitForMultipleEvents
WSAIoctl
getaddrinfo
send
closesocket
WSAAsyncSelect
gethostname
WSACleanup
WSAStartup
setsockopt
getsockname
__WSAFDIsSet
ioctlsocket
ntohs
bind
htons
getsockopt
getpeername
socket
connect
WSASetLastError
WSAEnumNetworkEvents
WSACreateEvent
accept
listen
htonl
sendto
recvfrom
WSAGetLastError
select
CertFreeCertificateContext
CryptDecodeObjectEx
CryptStringToBinaryW
CertFreeCertificateChainEngine
CertEnumCertificatesInStore
CertCreateCertificateChainEngine
CertAddCertificateContextToStore
CertCloseStore
CryptQueryObject
CertFindCertificateInStore
CertFindExtension
CertFreeCertificateChain
CertGetCertificateChain
PFXImportCertStore
CertOpenStore
ord216
ord46
ord41
ord27
ord301
ord167
ord79
ord142
ord127
ord147
ord133
ord26
ord208
ord145
ord219
ord14
ord117
ord73
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ