GetReportManager
ReleaseReportManager
Static task
static1
Behavioral task
behavioral1
Sample
6cabedf56cb4d5fac1f3abf8e5d44177d2e2d636fe8e03f9c1bb089b80f6dd44.dll
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
6cabedf56cb4d5fac1f3abf8e5d44177d2e2d636fe8e03f9c1bb089b80f6dd44.dll
Resource
win10v2004-20230915-en
Target
6cabedf56cb4d5fac1f3abf8e5d44177d2e2d636fe8e03f9c1bb089b80f6dd44
Size
265KB
MD5
2f1fe1ca11509a972795c09ba20e238c
SHA1
6bf7cd9384591793d814bf09bd5ae285a4eacd54
SHA256
6cabedf56cb4d5fac1f3abf8e5d44177d2e2d636fe8e03f9c1bb089b80f6dd44
SHA512
9d10b88731d430938db937d41bace1a63d7e3af9f40ae72f03a1fb795075e6ecfcf9f3d1b0a26e7a3f38c23a93d300fca4c10b06df087906e5ba01d8ac475e83
SSDEEP
6144:b/PFjevN+T2Pr7M5BBvP9HQxmfBha5go:bXZelFTA5B1906a9
Checks for missing Authenticode signature.
resource |
---|
6cabedf56cb4d5fac1f3abf8e5d44177d2e2d636fe8e03f9c1bb089b80f6dd44 |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
SetFilePointer
Sleep
MultiByteToWideChar
WideCharToMultiByte
GetFileAttributesW
OpenFileMappingW
MapViewOfFile
GetTickCount
GetCurrentProcessId
CloseHandle
GetCurrentThreadId
DeleteCriticalSection
SetNamedPipeHandleState
CreateEventW
ProcessIdToSessionId
EnterCriticalSection
GetLastError
GetPrivateProfileIntW
CreateFileW
GetModuleFileNameW
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
WriteFile
GetSystemTimeAsFileTime
GetModuleHandleW
SetEvent
WaitForSingleObject
GetModuleHandleExW
FormatMessageA
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
HeapFree
GetProcessHeap
GetFileSizeEx
ResetEvent
InterlockedCompareExchange
InterlockedExchangeAdd
GlobalFree
GlobalAlloc
GetVolumeInformationA
CreateDirectoryW
LocalFree
OutputDebugStringW
InterlockedExchange
SetLastError
InitializeCriticalSection
DeleteFileW
DeviceIoControl
FindClose
GetVersionExW
CreateEventA
WaitForSingleObjectEx
CopyFileW
ReadFile
SetEndOfFile
GetProcAddress
GetCurrentProcess
LoadLibraryW
GetSystemDirectoryW
FreeLibrary
FindFirstFileW
GetFileSize
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
OpenEventA
GetCommandLineW
MsgWaitForMultipleObjects
DispatchMessageW
TranslateMessage
PeekMessageW
KillTimer
PostMessageW
SetTimer
CreateWindowExW
DestroyWindow
UnregisterClassW
SetWindowLongW
GetWindowLongW
DefWindowProcW
RegisterClassExW
SHGetSpecialFolderPathW
ord165
SHGetFolderPathW
?_Orphan_all@_Container_base0@std@@QAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?_Xbad_function_call@std@@YAXXZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?id@?$ctype@_W@std@@2V0locale@2@A
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
?widen@?$ctype@_W@std@@QBEPBDPBD0PA_W@Z
??Bid@locale@std@@QAEIXZ
?id@?$numpunct@_W@std@@2V0locale@2@A
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0facet@locale@std@@IAE@I@Z
??_7facet@locale@std@@6B@
??1facet@locale@std@@MAE@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Gettrue@_Locinfo@std@@QBEPBDXZ
_Mbrtowc
??0_Lockit@std@@QAE@H@Z
??0_Locinfo@std@@QAE@PBD@Z
??1_Lockit@std@@QAE@XZ
??1_Locinfo@std@@QAE@XZ
?_Incref@facet@locale@std@@UAEXXZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
??_7_Facet_base@std@@6B@
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_BADOFF@std@@3_JB
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
_except_handler4_common
strerror
??0exception@std@@QAE@ABQBDH@Z
memset
_snprintf
fprintf
fflush
__iob_func
memcpy
_CxxThrowException
_vscprintf
memmove
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
_wcsicmp
wcsrchr
??_V@YAXPAX@Z
_vsnwprintf
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
wcsncmp
??0exception@std@@QAE@ABV01@@Z
_time64
swprintf_s
sprintf_s
??0bad_cast@std@@QAE@ABV01@@Z
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
localeconv
strcspn
?terminate@@YAXXZ
sscanf_s
_beginthreadex
strncmp
_vsnprintf
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__CppXcptFilter
_amsg_exit
free
_malloc_crt
_initterm
_initterm_e
__CxxFrameHandler3
__clean_type_info_names_internal
vsprintf_s
_stricmp
memchr
wcsncat_s
toupper
_wstat64
isprint
_snprintf_s
_snwprintf_s
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
isspace
malloc
_wsplitpath_s
_wmkdir
isalnum
tolower
PathFileExistsW
ImmDisableIME
?CreateHttpClientInDefaultManager@basic_net@@YAPAVIHttpClient@1@XZ
?ReleaseHttpClientInDefaultManager@basic_net@@YAHPAVIHttpClient@1@@Z
GetAdaptersAddresses
GetAdaptersInfo
Netbios
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyW
RegEnumKeyW
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExA
RegOpenKeyExW
RegCloseKey
AllocateAndInitializeSid
SetEntriesInAclW
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetSecurityDescriptorSacl
FreeSid
GetNamedSecurityInfoW
SetNamedSecurityInfoW
RegEnumKeyExA
CoInitialize
CoCreateGuid
CoUninitialize
GetReportManager
ReleaseReportManager
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ