Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
Static task
static1
Behavioral task
behavioral1
Sample
NEAS.fe3e055fc6ca6c9e32dd80528de83eb0_JC.exe
Resource
win7-20231020-en
Behavioral task
behavioral2
Sample
NEAS.fe3e055fc6ca6c9e32dd80528de83eb0_JC.exe
Resource
win10v2004-20231023-en
Target
NEAS.fe3e055fc6ca6c9e32dd80528de83eb0_JC.exe
Size
265KB
MD5
fe3e055fc6ca6c9e32dd80528de83eb0
SHA1
89632b2804bb3ed6e5313cf0eee9930985ea0e96
SHA256
14cfdb0f4405ca844293abcebe96dbaa4da7e35946d9264094bda06f1e3f4db5
SHA512
50dc5ae52dd7ed1ec0fa6480e931d3f96ae1197917b48699a05638269bcd87f0138da211fb2d4229f0f4f3983d5128ed8fe9c93cea84eb82a42669116e4cd784
SSDEEP
3072:LMgIpOAAldqyL9yDidnif3AkTH+/9O987tF/9:LMgIQdxJNi/DTb8b9
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
HeapReAlloc
VirtualAlloc
HeapSize
IsValidLocale
EnumSystemLocalesA
SetFilePointer
GetConsoleCP
GetConsoleMode
SetConsoleCtrlHandler
InterlockedExchange
InitializeCriticalSection
GetTimeZoneInformation
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
FlushFileBuffers
CompareStringA
GetCurrentThread
GetLastError
GetCurrentProcess
GetWindowsDirectoryA
GetUserDefaultLCID
GetLocaleInfoA
WaitForSingleObject
CloseHandle
LoadLibraryA
GetProcAddress
FreeLibrary
GlobalAlloc
GlobalFree
Sleep
GetSystemInfo
IsValidCodePage
GetVersionExA
GetDateFormatA
GetTimeFormatA
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
CompareStringW
LCMapStringA
GetSystemTimeAsFileTime
RtlUnwind
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFileAttributesA
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
RaiseException
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
RedrawWindow
ReleaseDC
LoadCursorA
GetClientRect
DefWindowProcA
PostQuitMessage
GetDC
LoadIconA
MessageBoxA
LoadImageA
LoadBitmapA
DialogBoxParamA
LoadStringA
RegisterClassA
SetTimer
InvalidateRect
UpdateWindow
DestroyWindow
BeginPaint
EndPaint
SelectPalette
GetObjectA
CreateCompatibleDC
SelectObject
GetDIBColorTable
RealizePalette
SetStretchBltMode
StretchBlt
DeleteDC
DeleteObject
CreatePalette
GetStockObject
ControlService
DeleteService
OpenSCManagerA
CreateServiceA
ChangeServiceConfig2A
StartServiceA
CloseServiceHandle
OpenThreadToken
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
OpenServiceA
ShellExecuteExA
??1CEventGenerator@@UAE@XZ
??1CEvents@@UAE@XZ
?HasEventTriggered@CEvents@@QAE_NW4EventParam@1@@Z
?GetUPSEvents@CEventGenerator@@QAE?AVErrCode@@PAVCEvents@@@Z
??0CEvents@@QAE@XZ
??0CEventGenerator@@QAE@XZ
?CreateNewUPSControl@CUPSControl@@SA?AVErrCode@@PAPAV1@IJ@Z
?InitUPS@CEventGenerator@@QAE?AVErrCode@@XZ
?GetDataItem@CEventGenerator@@QBE?AVErrCode@@_KPAN@Z
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ