Behavioral task
behavioral1
Sample
e65a8e743ab9371c6f4afccb55cf9e48f9403be1e1c0389bd7689e80a92b2b1e.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
e65a8e743ab9371c6f4afccb55cf9e48f9403be1e1c0389bd7689e80a92b2b1e.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
Target
e65a8e743ab9371c6f4afccb55cf9e48f9403be1e1c0389bd7689e80a92b2b1e
Size
2.5MB
MD5
adab001c615da88124f4165c78910ddb
SHA1
735ac74f92b5b46e004566f91209e46f0f897c56
SHA256
e65a8e743ab9371c6f4afccb55cf9e48f9403be1e1c0389bd7689e80a92b2b1e
SHA512
7d62485882b79e051eee6f8552afdb7f8240083131b817f2f60bed373b30255535912437aca93df2750dedba489851f5aa76515d5d66d18bf3db4967ea8239f5
SSDEEP
49152:DRG5IlbCtDnDl1W70r/7KFnQ9p8S/nkb18hG6mKQ:lG5IRCd+0XcnXAJQ6S
| resource | yara_rule |
|---|---|
| sample | upx |
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
LoadResource
SizeofResource
FindResourceW
WriteFile
LeaveCriticalSection
EnterCriticalSection
DeleteFileW
GetSystemDirectoryW
TerminateProcess
ResumeThread
QueueUserAPC
LoadLibraryW
CreateProcessW
GetExitCodeProcess
Sleep
CreateThread
GetCurrentThreadId
DeleteCriticalSection
SetLastError
FlushInstructionCache
lstrcmpiW
CompareStringW
FreeLibrary
LoadLibraryExW
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
InitializeCriticalSectionAndSpinCount
CreateFileA
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
GetSystemTimeAsFileTime
GetFileSize
GetTickCount
LockResource
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
ExitProcess
HeapSize
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
ReadFile
GetStartupInfoW
HeapAlloc
HeapFree
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
InterlockedDecrement
LoadLibraryA
lstrlenW
RaiseException
SetEndOfFile
GetProcessHeap
InterlockedCompareExchange
InitializeCriticalSection
OutputDebugStringW
DebugBreak
InterlockedIncrement
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
QueryPerformanceCounter
CreateFileW
OpenProcess
GetModuleFileNameW
VirtualAllocEx
WriteProcessMemory
VirtualFreeEx
CloseHandle
GetModuleHandleW
GetProcAddress
CreateRemoteThread
WaitForSingleObject
OutputDebugStringA
GetVersionExW
GetCurrentProcess
GetCurrentProcessId
GetLastError
IsProcessorFeaturePresent
FillRect
GetSysColor
CallWindowProcW
DrawFocusRect
IsWindowEnabled
GetFocus
GetDlgCtrlID
DrawTextW
ReleaseDC
GetDC
OffsetRect
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SystemParametersInfoW
GetClassNameW
LoadCursorW
ScreenToClient
GetCursorPos
GetCapture
ReleaseCapture
SetFocus
SetCapture
UpdateWindow
PtInRect
SetCursor
InvalidateRect
EndPaint
BeginPaint
CreateDialogParamW
EndDialog
DialogBoxParamW
IsWindow
SetRectEmpty
DestroyWindow
DefWindowProcW
GetDlgItem
PostQuitMessage
CheckDlgButton
IsDlgButtonChecked
GetActiveWindow
SetDlgItemTextW
SetWindowTextW
GetParent
GetWindow
GetWindowRect
GetWindowLongW
MonitorFromWindow
GetMonitorInfoW
GetClientRect
MapWindowPoints
SetWindowPos
SendMessageW
GetSystemMetrics
LoadImageW
RegisterWindowMessageW
IsDialogMessageW
GetClassInfoW
RegisterClassW
ShowWindow
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
PostMessageW
MessageBoxW
CharNextW
LoadStringW
CreateWindowExW
UnregisterClassA
SetBkMode
GetObjectW
GetStockObject
SelectObject
CreateFontIndirectW
DeleteDC
DeleteObject
SetTextColor
GetOpenFileNameW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegQueryInfoKeyW
ShellExecuteW
CoTaskMemFree
CoCreateInstance
CoInitialize
CoUninitialize
CoTaskMemAlloc
CoTaskMemRealloc
SysAllocString
VarUI4FromStr
SysFreeString
PathFileExistsW
PathRemoveFileSpecW
SHSetValueW
InitCommonControlsEx
_TrackMouseEvent
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
strncpy
GetInterfaceInfo
GetMappedFileNameW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ