Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
AdvancedAll.dll
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
AdvancedAll.dll
Resource
win10v2004-20230220-en
Target
AdvancedAll.dll
Size
1.9MB
MD5
fbff63ea2cf4421f5dff8542dd0bdc0d
SHA1
edf43b3f59d1c4eb897653f99e0d275546d9a6d3
SHA256
a89e56b102ef3c4e836d1cdf1dbf79566b76921be93379e67c3a8e5dd11cce35
SHA512
4add02dc31ef3d60973cc3239c107fd908039463ce1888948fc68f3e1d5695d049e4a3ac0e3aada91bbf36724ab600d84899f2cd191a8a6ea46c1fe907eef1b5
SSDEEP
49152:5m27b+eEzzZPiNHNHnb9oNmx2GK0x/ZTaUP:j
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
FindResourceExW
OutputDebugStringA
LockResource
GlobalAlloc
GlobalLock
CreateFileA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
WriteFile
UnhandledExceptionFilter
TerminateProcess
InterlockedExchange
WideCharToMultiByte
lstrlenA
HeapSize
HeapReAlloc
HeapDestroy
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
Sleep
SetLastError
GetCurrentThreadId
lstrlenW
GetCurrentProcess
FlushInstructionCache
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
MultiByteToWideChar
FreeLibrary
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
GetModuleFileNameW
LoadLibraryW
lstrcmpiW
GetModuleHandleW
GetProcAddress
GetLastError
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
SetUnhandledExceptionFilter
GetDesktopWindow
GetClientRect
GetDCEx
GetDC
GetWindowDC
RemovePropW
ReleaseDC
SetRectEmpty
SendMessageW
EndDialog
GetDlgItem
GetActiveWindow
LoadCursorW
LoadImageW
GetWindowRect
GetCursorPos
DialogBoxParamW
PtInRect
SetWindowLongW
IsWindow
KillTimer
GetPropW
SetTimer
SetPropW
UnionRect
wsprintfW
PostMessageW
ScreenToClient
SetCursor
CopyRect
IsRectEmpty
GetCursor
ReleaseCapture
UnregisterClassA
CharNextW
OffsetRect
IntersectRect
SetCapture
LoadStringW
SelectObject
DeleteObject
DeleteDC
SetViewportOrgEx
CreateDIBSection
StretchBlt
CreatePolygonRgn
CreateRectRgn
ExtCreateRegion
GetDIBits
CreateICW
GetObjectW
CreateCompatibleDC
OffsetRgn
CreateDCW
PtInRegion
BitBlt
CreateCompatibleBitmap
GetViewportOrgEx
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
CoTaskMemFree
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc
CoTaskMemAlloc
OleTranslateColor
VariantClear
SysAllocStringLen
BSTR_UserSize
BSTR_UserMarshal
BSTR_UserUnmarshal
BSTR_UserFree
LoadRegTypeLi
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
SysStringLen
_TrackMouseEvent
AlphaBlend
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipCreateSolidFill
GdipCreateFromHDC
GdipFillRectangleI
GdipCloneBrush
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromFile
GdipCreateHBITMAPFromBitmap
GdipCloneBitmapAreaI
GdipCloneImage
GdipDeleteMatrix
GdipCreatePen1
GdipDeletePen
GdipCreateStringFormat
GdipDeleteStringFormat
GdipDeleteFont
GdipCreateMatrix
GdipTranslateMatrix
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetWorldTransform
GdipResetWorldTransform
GdipDrawLine
GdipDrawLineI
GdipFillEllipseI
GdipDrawString
GdipCreateFontFromLogfontW
GdipDeleteRegion
GdipCreateRegionHrgn
GdipFillRectangle
GdipSetPenWidth
GdipSetPenDashStyle
GdipDrawRectangle
GdipDrawEllipse
GdipFillEllipse
GdipCreateFontFamilyFromName
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFont
GdipDrawRectangleI
GdipSetClipHrgn
GdipResetClip
GdipDeleteBrush
GdipRotateMatrix
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHPB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
vswprintf_s
_initterm
_vsnprintf
strcat_s
wcsftime
floor
ceil
_localtime64_s
_gmtime64
sprintf
_mktime64
_localtime64
_vswprintf
_swprintf
memmove_s
_wcsicmp
??0exception@std@@QAE@ABV01@@Z
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
memcpy
??2@YAPAXI@Z
_encoded_null
_resetstkoflw
__CxxFrameHandler3
memset
calloc
_recalloc
??_V@YAXPAX@Z
wcscat_s
wcsncpy_s
wcscpy_s
_CxxThrowException
memcpy_s
free
malloc
wcsstr
??3@YAXPAX@Z
_malloc_crt
_decode_pointer
__RTDynamicCast
_onexit
NdrStubCall2
IUnknown_Release_Proxy
IUnknown_AddRef_Proxy
IUnknown_QueryInterface_Proxy
NdrOleFree
NdrOleAllocate
NdrDllGetClassObject
NdrDllCanUnloadNow
NdrCStdStubBuffer_Release
NdrCStdStubBuffer2_Release
NdrDllRegisterProxy
NdrDllUnregisterProxy
NdrClientCall2
NdrStubForwardingFunction
??4_Init_locks@std@@QAEAAV01@ABV01@@Z
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ