CPlApplet
DKnkg4ur
Hviq052j3
Static task
static1
Behavioral task
behavioral1
Sample
processo.dll
Resource
win7-20230831-en
Target
NEAS.53f8d92b0aad5836d7806f4ac7e6a3ab389f25640c86a34c6b82ff0880453c71zip_JC.zip
Size
159KB
MD5
c68c7df72b5f7925c1d45724640757c7
SHA1
2748bc5ebcdf61414695d5452ec1e9b073c8e33c
SHA256
53f8d92b0aad5836d7806f4ac7e6a3ab389f25640c86a34c6b82ff0880453c71
SHA512
d0ae3b0d68edacb698637f91fb6ca08c0bac3c315d7e3d57f7e6eec723350f4f29c965893924891debb58f5d06a37613151e69dea17c18569c230087bb0afc50
SSDEEP
3072:JQ0nEQH0AkecLGrcchh3s47XlXfT+Fgjl/P5pcAyVV3wsOmtEQsh41TBKF7As01N:m0nEBA5r3h3LX9r+qNBazgFmWQsudBc4
Checks for missing Authenticode signature.
Processes:
resource |
---|
unpack001/processo.cpl |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CreateFileA
CloseHandle
GetLastError
FindFirstFileA
FindNextFileA
LockFile
UnlockFile
GetFileType
DeleteFileA
SetEndOfFile
WaitForMultipleObjects
GetCurrentThread
CallNamedPipeA
VirtualAlloc
CreateMutexA
ReleaseMutex
GetDiskFreeSpaceA
GetSystemTime
RtlUnwind
SetLastError
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsGetValue
TlsSetValue
FreeLibrary
GetProcAddress
LoadLibraryExW
RaiseException
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
IsProcessorFeaturePresent
HeapAlloc
HeapFree
GetModuleHandleW
GetCurrentProcess
ExitProcess
TerminateProcess
GetModuleHandleExW
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
MultiByteToWideChar
WideCharToMultiByte
GetACP
GetStringTypeW
LCMapStringW
IsValidCodePage
GetOEMCP
GetCPInfo
SetStdHandle
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FlushFileBuffers
DecodePointer
WriteConsoleW
CreateFileW
CPlApplet
DKnkg4ur
Hviq052j3
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ