bukeni
jzrundll
jzrundll2
Static task
static1
Behavioral task
behavioral1
Sample
e7b092a180fe29357c81eb9ddc5d639be5d6d6356e3717296c73937362206507.dll
Resource
win7-20230712-en
Target
e7b092a180fe29357c81eb9ddc5d639be5d6d6356e3717296c73937362206507
Size
66KB
MD5
bdf1ef10afa4333b0b0b5311811f27c7
SHA1
0c0fb1927e2f01455085bf9e4298b45012cc1bd1
SHA256
e7b092a180fe29357c81eb9ddc5d639be5d6d6356e3717296c73937362206507
SHA512
a0993a6db5dee6587f216a5ca7e9aa5be4b738c51ed01ab1ca3b25fa6e023da68787d9b5f046f5ade5e44148d0c06dfae74680161fecfca41681d8f8a4cac1a8
SSDEEP
768:M82KW9EwEj9RLoMFYAFkdp9smFesjxCCTaMfFNV35j/+6TC3SBJbdbTya0vmw1k9:MRKBQlFreqsZ3SBLbTX0vk3cUM5wNV
Checks for missing Authenticode signature.
resource |
---|
e7b092a180fe29357c81eb9ddc5d639be5d6d6356e3717296c73937362206507 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
wsprintfA
RegSetValueExA
SHGetSpecialFolderPathA
InternetOpenA
PathFileExistsA
bukeni
jzrundll
jzrundll2
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE