Extended Key Usages
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
SetupVirtualCloneDrive5520.exe
Resource
win7-20230703-es
Behavioral task
behavioral2
Sample
SetupVirtualCloneDrive5520.exe
Resource
win10v2004-20230703-es
Target
SetupVirtualCloneDrive5520.exe
Size
1.7MB
MD5
dec8eda3a1af6a8039987fe854a84a91
SHA1
b869a7c4f1f8e2ceeb9b248ccc41782f005b02a1
SHA256
b69ab416fa1c2db43d9d4a900abbf5e1ad6daf0ab914afcdfa74b25af390747f
SHA512
6971525cbe99e21ec2bdd6ec9e1ef5465d10fa92c4c71cdda62796425275a6d21f156400ba01309df8eeb2853be00181300535f37898d53c76e3e45b9cd9a995
SSDEEP
24576:wihLOEdf7GOApNkiGz7CyNjP6xs1pBeNORUvL4nOTgr4EWl8DXfX8aGko77ISC4F:wiBOEdvvz7CyhgNrMn34ElXf0kxh4EW
ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
ord17
SHFileOperationA
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetSpecialFolderLocation
ShellExecuteA
WaitForSingleObject
ExpandEnvironmentStringsA
GetEnvironmentVariableA
SetFileTime
CompareFileTime
GetFileAttributesA
GetTempFileNameA
GetTempPathA
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
Sleep
GetSystemDirectoryA
SetEvent
CreateEventA
CopyFileA
GetFileSize
GetModuleFileNameA
GetUserDefaultLangID
lstrcpynA
GetCommandLineA
SetEnvironmentVariableA
GetTickCount
SetPriorityClass
CreateProcessA
CreateFileA
GetDiskFreeSpaceA
CreateThread
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetWindowsDirectoryA
CreateDirectoryA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
IsValidCodePage
GetOEMCP
GlobalAlloc
GetExitCodeProcess
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetPrivateProfileStringA
VirtualFree
HeapCreate
HeapDestroy
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetStringTypeW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetProcessHeap
HeapAlloc
HeapFree
GlobalFree
GetCurrentDirectoryA
SetCurrentDirectoryA
ExitProcess
WriteFile
ReadFile
SetFilePointer
MulDiv
lstrcatA
FindFirstFileA
lstrcpyA
FindNextFileA
FindClose
RemoveDirectoryA
GetPrivateProfileIntA
lstrlenA
SetFileAttributesA
lstrcmpiA
GetCPInfo
DeleteFileA
GetCurrentThread
GetLastError
LocalAlloc
LocalFree
CloseHandle
LoadLibraryA
FreeLibrary
GetVersionExA
GetModuleHandleA
GetProcAddress
GetCurrentProcess
RtlUnwind
HeapSize
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
QueryPerformanceCounter
WritePrivateProfileStringA
GetACP
LoadBitmapA
SendDlgItemMessageA
CharPrevA
EnableWindow
GetParent
EnumChildWindows
GetDlgItemTextA
GetDlgItem
GetWindowRect
SetWindowPos
CharNextA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
SetDlgItemTextA
PostQuitMessage
ShowWindow
SetForegroundWindow
FindWindowExA
IsWindowVisible
PeekMessageA
DispatchMessageA
ExitWindowsEx
SendMessageA
wsprintfA
MessageBoxA
LoadIconA
LoadCursorA
RegisterClassA
SystemParametersInfoA
GetDesktopWindow
CreateWindowExA
DefWindowProcA
BeginPaint
GetClientRect
SetRect
FillRect
GetWindowTextA
DrawTextA
EndPaint
SetFocus
EndDialog
IsWindowEnabled
SetClassLongA
DialogBoxParamA
IsWindow
ScreenToClient
GetNearestColor
SetBkColor
GetStockObject
CreatePen
MoveToEx
LineTo
GetTextColor
CreateCompatibleDC
BitBlt
GetObjectA
CreateFontIndirectA
DeleteObject
CreateSolidBrush
CreateFontA
SetBkMode
SetTextColor
SelectObject
CreateBrushIndirect
SetEntriesInAclA
RegEnumValueA
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey
ImpersonateSelf
OpenThreadToken
OpenProcessToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
SetSecurityDescriptorOwner
IsValidSecurityDescriptor
AccessCheck
FreeSid
RevertToSelf
RegCreateKeyExA
OleUninitialize
OleInitialize
CoCreateInstance
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ