Static task
static1
Behavioral task
behavioral1
Sample
start_protected_game.exe
Resource
win7-20230621-en
windows7-x64
Behavioral task
behavioral2
Sample
start_protected_game.exe
Resource
win10v2004-20230621-en
windows10-2004-x64
Target
start_protected_game.exe
Size
3.3MB
MD5
86c5bf05043374f9e2a9a726ffaa7acf
SHA1
7d401abe97f43a1eefc9a0080583d138f32a41d7
SHA256
dd04bc0361d35fce36861caff8c098856a99cb2c0c1288145c460198bc1c0c4b
SHA512
dcfe52b6b5266191cf4af8708c0a40748167ae5ec0714e9677c8ea18f0c32d7a7bcfa7dd40289d12aa359c4c1f35171b1325450484fe5e8dd3bb858ba8c419dd
SSDEEP
49152:2OCOmzqbqKqNkLm2h/wJsKTruy3wrgktVic3HDz5DMcRc/s+kobXnz/q/xnd/c/T:+OzqrkL6ruygrjVic3HJCfgqFjt
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
LoadLibraryW
IsWow64Process
HeapFree
GetProcessHeap
WriteFile
GetBinaryTypeW
DuplicateHandle
SetEnvironmentVariableW
GetTempPathW
OpenProcess
FormatMessageW
CreateProcessW
GetExitCodeProcess
GetCommandLineW
OutputDebugStringW
SetFilePointer
SetFilePointerEx
SetErrorMode
GetTickCount
SetThreadExecutionState
TerminateProcess
GlobalMemoryStatusEx
GetSystemInfo
CreateToolhelp32Snapshot
Process32First
Process32Next
InitializeCriticalSectionAndSpinCount
GetCurrentThreadId
WaitForSingleObjectEx
GetEnvironmentVariableA
SetEnvironmentVariableA
IsDebuggerPresent
RaiseException
QueryPerformanceCounter
QueryPerformanceFrequency
TlsAlloc
TlsGetValue
TlsSetValue
VerSetConditionMask
VerifyVersionInfoW
GlobalAlloc
GlobalUnlock
GlobalLock
CompareStringA
MulDiv
GetModuleHandleExW
CreateFileA
GetLocaleInfoA
DeviceIoControl
GetOverlappedResult
CancelIo
CreateEventA
SetLastError
InitializeCriticalSectionEx
SleepEx
MoveFileExA
VirtualFree
SetEndOfFile
WriteConsoleW
HeapSize
GetFileAttributesExW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
SetStdHandle
VirtualProtect
HeapReAlloc
GetTimeZoneInformation
LocalAlloc
EnumSystemLocalesW
GetUserDefaultLCID
LocalFree
LCMapStringW
GetTimeFormatW
GetDateFormatW
HeapAlloc
GetConsoleOutputCP
ReadConsoleW
GetConsoleMode
GetStdHandle
FreeLibraryAndExitThread
ExitThread
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
GetDriveTypeW
SetConsoleCtrlHandler
LoadLibraryExW
TlsFree
RtlUnwind
InitializeSListHead
GetCurrentProcessId
GetStartupInfoW
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStringTypeW
GetCPInfo
CompareStringEx
LCMapStringEx
DecodePointer
EncodePointer
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
GetLocaleInfoW
GetFileTime
GetSystemTime
GetModuleHandleW
SystemTimeToFileTime
CloseHandle
DeleteFileW
GetSystemDirectoryW
GetSystemTimeAsFileTime
ExitProcess
GetLocalTime
FileTimeToSystemTime
GetCurrentProcess
FormatMessageA
FlushFileBuffers
WideCharToMultiByte
MultiByteToWideChar
DeleteFileA
GetFileInformationByHandle
GetFileAttributesW
CreateFileW
FindClose
GetFullPathNameW
CreateSemaphoreA
CreateSemaphoreW
ReleaseSemaphore
CreateThread
GetCurrentThread
GetLastError
Sleep
ResumeThread
SetThreadPriority
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
TryEnterCriticalSection
ResetEvent
SetEvent
CreateEventW
WaitForSingleObject
GetModuleHandleA
DebugBreak
lstrcmpA
lstrlenA
IsValidLocale
VirtualAlloc
GetModuleFileNameW
FindNextFileW
CompareStringW
GetFileSizeEx
FindFirstFileW
ReadFile
CreateDirectoryW
FreeLibrary
GetProcAddress
GlobalFree
GetCurrentDirectoryW
LoadLibraryA
AllowSetForegroundWindow
LoadImageW
EnumWindows
DestroyIcon
GetSystemMetrics
SendMessageW
IsWindowVisible
GetWindowThreadProcessId
MessageBoxA
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
GetMessageExtraInfo
PostMessageW
DefWindowProcW
CallWindowProcW
UnregisterClassW
RegisterClassExW
GetClassInfoExW
IsIconic
GetKeyState
GetAsyncKeyState
SetTimer
KillTimer
GetMenu
GetUpdateRect
InvalidateRect
ValidateRect
GetPropW
GetClientRect
GetParent
GetWindowRect
SystemParametersInfoW
DrawTextW
SetFocus
GetDlgItem
EndDialog
DialogBoxIndirectParamW
PostThreadMessageW
GetRawInputDeviceList
GetRawInputDeviceInfoA
CreateWindowExA
RegisterClassExA
UnregisterClassA
UnregisterDeviceNotification
RegisterDeviceNotificationW
AdjustWindowRectEx
SetCursor
GetCursorPos
GetClipCursor
ClientToScreen
ScreenToClient
WindowFromPoint
ClipCursor
IsRectEmpty
GetWindowLongW
CallNextHookEx
LoadIconW
GetRawInputData
RegisterWindowMessageA
GetDoubleClickTime
OpenClipboard
CloseClipboard
GetClipboardSequenceNumber
SetClipboardData
GetClipboardData
EmptyClipboard
IsClipboardFormatAvailable
GetDesktopWindow
RegisterRawInputDevices
CreateIconIndirect
LoadCursorW
SetCursorPos
SetWindowRgn
CreateIconFromResource
GetKeyboardLayout
GetKeyboardState
ToUnicode
MapVirtualKeyW
UnhookWindowsHookEx
SetWindowsHookExW
SystemParametersInfoA
SetWindowLongW
PtInRect
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
RemovePropW
SetPropW
SetForegroundWindow
GetFocus
SetWindowPos
FlashWindowEx
SetLayeredWindowAttributes
ShowWindow
DestroyWindow
CreateWindowExW
RegisterClassW
TrackMouseEvent
EnumDisplayMonitors
GetMonitorInfoW
EnumDisplayDevicesW
EnumDisplaySettingsW
ChangeDisplaySettingsExW
ReleaseDC
GetDC
GetTextExtentPoint32A
CreateFontIndirectW
BitBlt
SwapBuffers
SetPixelFormat
GetPixelFormat
DescribePixelFormat
ChoosePixelFormat
CreateBitmap
CreateRectRgn
CombineRgn
SetDeviceGammaRamp
GetDeviceGammaRamp
GetDIBits
GetDeviceCaps
CreateDCW
CreateCompatibleBitmap
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
GetTextMetricsW
CryptAcquireContextW
CryptGetHashParam
CryptGenRandom
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
CryptReleaseContext
CryptCreateHash
CryptHashData
CryptDestroyHash
ShellExecuteW
DragAcceptFiles
DragFinish
SHGetFolderPathW
DragQueryFileW
ExtractIconExW
CommandLineToArgvW
PropVariantClear
CoTaskMemFree
CoInitializeEx
CoUninitialize
CoCreateInstance
SysFreeString
connect
getpeername
bind
getsockname
getsockopt
htons
closesocket
recv
send
WSAGetLastError
ntohs
freeaddrinfo
getaddrinfo
select
__WSAFDIsSet
ioctlsocket
listen
htonl
accept
WSACleanup
WSAStartup
WSAIoctl
WSASetLastError
socket
setsockopt
CertOpenStore
CertCreateCertificateChainEngine
CertFreeCertificateChainEngine
CertGetNameStringW
CertGetCertificateChain
CertFreeCertificateChain
CertFindExtension
CertAddCertificateContextToStore
CryptDecodeObjectEx
CryptStringToBinaryW
CertFreeCertificateContext
CertFindCertificateInStore
CertEnumCertificatesInStore
CryptQueryObject
CertCloseStore
ImmGetIMEFileNameA
ImmReleaseContext
ImmAssociateContext
ImmGetCompositionStringW
ImmSetCompositionStringW
ImmGetCandidateListW
ImmNotifyIME
ImmSetCompositionWindow
ImmGetContext
waveInReset
waveInStart
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInClose
waveInOpen
waveInGetDevCapsW
timeGetTime
waveOutReset
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutGetErrorTextW
waveOutGetDevCapsW
waveOutGetNumDevs
timeEndPeriod
timeBeginPeriod
waveInGetNumDevs
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ