Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
de49d99aca6f263329701def3789f4844cec7b66eada3ecdfc122d91a061beed.exe
Resource
win10v2004-20230831-en
Target
de49d99aca6f263329701def3789f4844cec7b66eada3ecdfc122d91a061beed
Size
1.2MB
MD5
1f65e4a559b6ca5bca255e34914d2a16
SHA1
35177abc3c3b2d8bde1e5fb5b91223d9f9a80d96
SHA256
de49d99aca6f263329701def3789f4844cec7b66eada3ecdfc122d91a061beed
SHA512
44c0560fd0fb995a07a4bda63bdc45184048c42038cd79a314949640353951862c511cdd8ff7f1b0c4c7bc1fce677124f9ef6c289893c0c534f65737aaf1cd8c
SSDEEP
12288:aG3LBPOWjgduS18IFGL55r8eHwN6hKNCoJn1jZMPBP6IVmtQFLkw8tBKyp/DH2DS:hBry8IFQL8x8C1QOw8tBJtHaSlYITb26
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GlobalLock
GlobalAlloc
GetVolumeInformationW
GetDriveTypeW
GetDiskFreeSpaceExW
GetTickCount
FindNextFileW
LoadLibraryA
GetWindowsDirectoryW
QueryDosDeviceW
InterlockedExchange
Sleep
InterlockedCompareExchange
ReleaseMutex
ResetEvent
WaitForSingleObject
SetEvent
TerminateProcess
CreateEventW
WaitForMultipleObjects
CreateThread
GetSystemWindowsDirectoryW
GetPrivateProfileIntW
GetFileSize
ReadFile
SetFilePointer
WriteFile
SetEndOfFile
LockFile
UnlockFile
DeleteFileW
GetFileAttributesExW
MapViewOfFileEx
CreateFileMappingW
UnmapViewOfFile
GetSystemDirectoryW
IsBadReadPtr
GetDiskFreeSpaceW
GetPrivateProfileStringW
SetFileAttributesW
ReleaseSemaphore
CreateSemaphoreW
GlobalSize
HeapFree
GetProcessHeap
SystemTimeToFileTime
GetSystemTime
GlobalFree
DuplicateHandle
HeapAlloc
lstrcpyW
lstrlenA
CreateFileA
RemoveDirectoryW
WideCharToMultiByte
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
CopyFileExW
CreateDirectoryW
CompareFileTime
SetCurrentDirectoryW
GlobalUnlock
SetEnvironmentVariableA
FreeResource
CompareStringA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetLocaleInfoW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
LCMapStringA
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
GetModuleHandleA
InitializeCriticalSectionAndSpinCount
SetConsoleCtrlHandler
GetModuleFileNameA
GetStdHandle
LCMapStringW
GetCurrentThread
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
FatalAppExitA
HeapCreate
MoveFileA
ExitThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
ExitProcess
TlsFree
TlsAlloc
HeapWalk
HeapLock
OpenThread
HeapUnlock
TlsSetValue
OutputDebugStringW
TlsGetValue
GetFileSizeEx
SetFilePointerEx
LocalFileTimeToFileTime
GetSystemTimeAsFileTime
HeapSize
HeapReAlloc
HeapDestroy
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
FindFirstFileW
FindClose
GetStartupInfoW
GetSystemInfo
GetVersionExW
OpenProcess
CreateProcessW
GetCurrentProcessId
CreateFileW
DeviceIoControl
CloseHandle
lstrcmpiW
LoadLibraryExW
MultiByteToWideChar
lstrlenW
GetModuleFileNameW
InterlockedDecrement
InterlockedIncrement
FindResourceExW
LoadResource
LockResource
SizeofResource
FindResourceW
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
GetProcAddress
FreeLibrary
LoadLibraryW
InitializeCriticalSection
GetCurrentProcess
FlushInstructionCache
DeleteCriticalSection
RaiseException
GetLastError
GetCurrentThreadId
SetLastError
GetCommandLineW
SetErrorMode
CreateMutexW
CompareStringW
RegisterWindowMessageW
DefWindowProcW
CreateWindowExW
CallWindowProcW
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
GetWindowTextW
LoadImageW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
SetWindowTextW
FindWindowExW
InflateRect
MoveWindow
SendMessageW
UnregisterClassA
GetCursorPos
GetMenuItemCount
GetMenuStringW
GetDC
SetCursor
TrackMouseEvent
SetCapture
OffsetRect
IsDialogMessageW
BringWindowToTop
DrawTextW
MapWindowPoints
MonitorFromWindow
SetForegroundWindow
EndDialog
SetActiveWindow
EnumWindows
DialogBoxParamW
ScreenToClient
UpdateLayeredWindow
ReleaseDC
GetWindowDC
ReleaseCapture
DestroyWindow
SetWindowLongW
GetWindowLongW
ShowWindow
MessageBoxW
GetActiveWindow
GetClassInfoExW
LoadCursorW
RegisterClassExW
IsZoomed
CharNextW
GetWindowRect
WindowFromPoint
GetWindowThreadProcessId
GetDesktopWindow
GetForegroundWindow
GetAncestor
EnumDisplaySettingsW
GetMonitorInfoW
MonitorFromPoint
GetWindowInfo
GetWindow
GetShellWindow
WaitForInputIdle
RegisterClassW
GetClassInfoW
SetWindowPos
SystemParametersInfoW
GetClientRect
PostMessageW
FindWindowW
wsprintfW
IsWindow
IsRectEmpty
EqualRect
IntersectRect
PostQuitMessage
mouse_event
SetCursorPos
IsIconic
IsWindowVisible
PtInRect
ClientToScreen
SetRectEmpty
SetLayeredWindowAttributes
UpdateWindow
InvalidateRect
InsertMenuW
CheckMenuItem
SetDlgItemTextW
GetDlgItem
RegisterClipboardFormatW
GetMenuItemID
SetTimer
KillTimer
CreateDialogParamW
LoadStringW
DefDlgProcW
SendMessageTimeoutW
CopyRect
RedrawWindow
GetSubMenu
LoadMenuW
DeleteMenu
GetMenuItemInfoW
TrackPopupMenu
GetParent
CreatePopupMenu
DestroyMenu
GetSystemMetrics
CreateFontW
SetViewportOrgEx
EnumFontFamiliesW
CreateCompatibleBitmap
SetBkColor
ExtTextOutW
SetTextColor
SetBkMode
CreateDIBSection
CreateCompatibleDC
DeleteDC
SelectObject
BitBlt
GetTextMetricsW
GetStockObject
GetTextExtentPoint32W
TextOutW
GetObjectA
DeleteObject
GetDeviceCaps
RegQueryValueExW
OpenProcessToken
GetTokenInformation
CreateWellKnownSid
CheckTokenMembership
RegQueryInfoKeyW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExA
RegCloseKey
SHAppBarMessage
SHBrowseForFolderW
SHGetPathFromIDListW
DragQueryFileW
DragFinish
DragAcceptFiles
SHGetSpecialFolderPathW
SHParseDisplayName
ord155
ShellExecuteExW
SHGetDesktopFolder
SHFileOperationW
ord680
SHBindToParent
ExtractIconExW
ShellExecuteW
SHGetFolderPathW
SHGetFileInfoW
OleDuplicateData
ReleaseStgMedium
RegisterDragDrop
RevokeDragDrop
GetHGlobalFromStream
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
OleInitialize
OleUninitialize
CreateStreamOnHGlobal
CreateErrorInfo
VariantChangeType
VariantCopy
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString
VarUI4FromStr
VariantClear
VariantInit
DispCallFunc
GetErrorInfo
SetErrorInfo
SHGetValueW
StrCmpIW
PathFindFileNameW
PathFindExtensionW
SHSetValueW
wnsprintfW
StrCmpW
StrStrW
PathRemoveBackslashW
StrStrIA
PathIsRootW
SHDeleteValueW
StrChrW
StrCmpNIW
PathIsDirectoryW
PathFileExistsW
StrStrIW
PathCombineW
PathRemoveFileSpecW
PathAppendW
ord410
ord413
InitCommonControlsEx
GdipCreateSolidFill
GdiplusShutdown
GdipGetFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFontFamilyFromName
GdipCreateFont
GdipGetFamilyName
GdipDeleteFontFamily
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipDrawString
GdipSetPixelOffsetMode
GdipSetSmoothingMode
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipCloneBrush
GdipDeleteBrush
GdipDeleteGraphics
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCloneImage
GdipDisposeImage
GdipFree
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipAlloc
GdiplusStartup
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
WTHelperProvDataFromStateData
WinVerifyTrust
CertGetNameStringW
GetModuleFileNameExW
GetProcessImageFileNameW
SetupDiEnumDeviceInterfaces
CM_Get_Device_IDW
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
CM_Get_Parent
SetupDiGetDeviceInterfaceDetailW
MakeSureDirectoryPathExists
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ