Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
81cd6e1c6e1f9400e31b122dfa2c7acf274192ec560a9d29190a70abd04b20e2.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
81cd6e1c6e1f9400e31b122dfa2c7acf274192ec560a9d29190a70abd04b20e2.exe
Resource
win10v2004-20231020-en
Target
81cd6e1c6e1f9400e31b122dfa2c7acf274192ec560a9d29190a70abd04b20e2
Size
837KB
MD5
b458e336911f092177a64d07b0bf1c76
SHA1
53c66117a6f17e2d76b7a8a658f1ff0773516081
SHA256
81cd6e1c6e1f9400e31b122dfa2c7acf274192ec560a9d29190a70abd04b20e2
SHA512
2b19cd8e173543449711bbb5f829096688ef688240a68a2021b622ccbdbad53559e171d38b161f71c9585ed58e0871b6fc7d98dc52bd4e36f3435fd11e8621c4
SSDEEP
24576:8II1yp0tk0TdMil1iD5Fk8C1LGF6KXcA9:VS1k0JleFk82CF5d
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IsProcessorFeaturePresent
IsDebuggerPresent
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
TryEnterCriticalSection
DeleteCriticalSection
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
QueryPerformanceFrequency
WaitForSingleObjectEx
Sleep
GetExitCodeThread
EncodePointer
DecodePointer
LCMapStringEx
GetProcAddress
GetStringTypeW
GetCPInfo
GetLastError
SleepEx
GetSystemDirectoryA
FreeLibrary
GetModuleHandleA
SetUnhandledExceptionFilter
GetTickCount
SetLastError
FormatMessageW
MoveFileExA
GetEnvironmentVariableA
GetStdHandle
GetFileType
WaitForMultipleObjects
VerifyVersionInfoA
CreateFileA
GetFileSizeEx
RtlUnwindEx
RtlPcToFileHeader
RaiseException
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
WriteFile
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
SetFilePointerEx
HeapFree
HeapAlloc
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
ReadConsoleW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetProcessHeap
SetStdHandle
HeapReAlloc
GetTimeZoneInformation
GetFileAttributesExW
SetEndOfFile
GetCurrentDirectoryW
GetFullPathNameW
HeapSize
WriteConsoleW
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCurrentProcess
RtlUnwind
VerifyVersionInfoW
CreateProcessW
GetComputerNameW
VerSetConditionMask
CloseHandle
WaitForSingleObject
PeekNamedPipe
CreatePipe
TerminateProcess
ReadFile
GetStartupInfoW
WideCharToMultiByte
LoadLibraryA
MultiByteToWideChar
DeleteFileW
CryptHashData
CryptReleaseContext
CryptGetHashParam
CryptGenRandom
CryptCreateHash
GetUserNameW
CryptAcquireContextA
CryptDestroyHash
CryptDestroyKey
CryptEncrypt
CryptImportKey
send
WSACloseEvent
WSACreateEvent
WSAStartup
WSACleanup
WSAEventSelect
WSAResetEvent
WSAWaitForMultipleEvents
closesocket
WSAGetLastError
recv
bind
connect
getpeername
getsockname
getsockopt
htons
ntohs
setsockopt
socket
WSASetLastError
WSAIoctl
__WSAFDIsSet
select
accept
htonl
listen
getaddrinfo
freeaddrinfo
recvfrom
sendto
ioctlsocket
gethostname
ntohl
WSAEnumNetworkEvents
WinHttpGetIEProxyConfigForCurrentUser
CertEnumCertificatesInStore
CertFindCertificateInStore
CertCloseStore
CertOpenStore
CertFreeCertificateContext
CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringA
CryptStringToBinaryA
PFXImportCertStore
CryptDecodeObjectEx
CertFindExtension
CertAddCertificateContextToStore
IdnToAscii
ord301
ord143
ord217
ord46
ord211
ord60
ord45
ord50
ord41
ord22
ord26
ord27
ord32
ord33
ord35
ord79
ord30
ord200
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ