Extended Key Usages
ExtKeyUsageCodeSigning
Static task
static1
Behavioral task
behavioral1
Sample
VBoxSVC.exe
Resource
win10v2004-20231023-en
Target
hvn.tar
Size
7.9MB
MD5
1ab992531cbdd131b5170edd5c131033
SHA1
891155f3ddaec088a0220f725f4cb1eff3a8caa1
SHA256
4ccb066c63e1b7acbd50687de973afe44da86c522fc0d8fb9dbf0004548cab89
SHA512
f840083f514ad5e3e6f0aa8946628ef6467c636b13f3552a5303608c1febc575a3b77be6ad9a783c4b86e8e10f4c339bfb11913c85d6c176b06f2f65538abe22
SSDEEP
196608:/5cK8TN380OwBhgjnoHETcHQGbBbkzAK:f8TC0OpoHwc9bBkzA
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
SetEvent
ResetEvent
WaitForSingleObject
CreateEventW
CreateThread
GetCurrentThreadId
FindResourceExW
FreeLibrary
LeaveCriticalSection
LoadLibraryExW
LoadResource
LockResource
SizeofResource
LocalFree
FormatMessageW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
DelayLoadFailureHook
EnterCriticalSection
HeapSetInformation
SetLastError
GetLastError
RaiseException
CloseHandle
GetFileTime
GetModuleFileNameW
CreateFileW
ResolveDelayLoadedAPI
MoveToEx
SelectObject
LineTo
CreateSolidBrush
CreatePen
DeleteObject
CreateFontIndirectW
Rectangle
UpdateWindow
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
GetClientRect
GetWindowRect
MessageBoxW
GetWindowLongPtrW
SetWindowLongPtrW
LoadCursorW
DestroyAcceleratorTable
GetParent
GetFocus
SetCapture
EnableMenuItem
BeginPaint
EndPaint
GetSysColor
FillRect
SetClassLongPtrW
LockWindowUpdate
LoadAcceleratorsW
KillTimer
LoadStringW
SetTimer
GetActiveWindow
LoadMenuW
SendDlgItemMessageW
SetDlgItemTextW
GetDlgItem
EndDialog
ReleaseCapture
TranslateAcceleratorW
DialogBoxParamW
SetWindowPos
ShowWindow
DestroyWindow
CreateWindowExW
GetClassInfoExW
RegisterClassExW
CallWindowProcW
PostQuitMessage
DefWindowProcW
PostMessageW
SendMessageW
DispatchMessageW
LoadIconW
TranslateMessage
GetMessageW
memset
wcscmp
_initterm
_initterm_e
_c_exit
_register_thread_local_exe_atexit_callback
_o__configthreadlocale
_o__configure_wide_argv
_o__crt_atexit
_o__errno
_o__exit
_o__get_wide_winmain_command_line
_o__initialize_onexit_table
_o__initialize_wide_environment
_o__invalid_parameter_noinfo
_o__recalloc
_o__register_onexit_function
_o__seh_filter_exe
_o__set_app_type
_o__set_new_mode
_o__wcsicmp
_o__wtoi
_o__wtol
_o_calloc
_o_exit
_o_free
_o_malloc
_o_terminate
_o_wcscpy_s
_o_wcstoul
_o_wmemcpy_s
__C_specific_handler
__current_exception
__current_exception_context
memmove
memcpy
_o__cexit
_o__callnewh
_o___stdio_common_vswscanf
_o___stdio_common_vswprintf_s
_o___p__commode
_o___stdio_common_vswprintf
wcschr
_o__set_fmode
TEDGetAttributeType
TEDCreateMediaTypeViewer
TEDCreateDataLoader
TEDCreateTopoViewer
TEDMTStringFromGUID
TEDGetAttributeTypeFromGUID
TEDGetMTKnownAttributes
TEDGetMTKnownGUIDStrings
TEDGetAttributeListLength
TEDGetAttributeName
TEDGetAttributeCategory
PropVariantClear
CoInitializeEx
CoCreateInstance
IIDFromString
StringFromGUID2
CoTaskMemFree
CoUninitialize
DeleteCriticalSection
InitializeCriticalSection
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
HeapSize
HeapDestroy
VirtualFree
VirtualAlloc
GetCurrentProcess
GetStartupInfoW
TerminateProcess
GetCurrentProcessId
GetProcAddress
LoadLibraryExA
GetModuleHandleW
EncodePointer
DecodePointer
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPopEntrySList
InterlockedPushEntrySList
InitializeSListHead
QueryPerformanceCounter
GetSystemTimeAsFileTime
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
MFCreateTopology
MFCreateMediaSession
MFEnumDeviceSources
MFTranscodeGetAudioOutputAvailableTypes
MFCreateTranscodeTopology
MFCreateTranscodeProfile
MFCreateTopoLoader
MFCreateVideoRendererActivate
MFCreateAudioRendererActivate
MFRequireProtectedEnvironment
MFGetService
MFCreateTopologyNode
MFCreatePMPMediaSession
MFCreateSourceResolver
MFTEnumEx
MFCreateMediaType
MFCreateAttributes
MFStartup
MFShutdown
MFInvokeCallback
MFCreateAsyncResult
WMCreateReader
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
memset
wcscmp
_initterm
_initterm_e
_o__initialize_narrow_environment
_o__initialize_onexit_table
_o__invalid_parameter_noinfo
_o__purecall
_o__recalloc
_o__register_onexit_function
_o__seh_filter_dll
_o__wtof
_o__wtoi
_o__wtoi64
_o__wtol
_o_calloc
_o_free
_o_malloc
_o_strcpy_s
_o_wcscat_s
_o_wcscpy_s
_o_wcsncpy_s
_o_wcstod
_o_wcstoul
_o_wmemcpy_s
_o___std_type_info_destroy_list
_o__execute_onexit_table
_o__errno
_o__crt_atexit
_o__configure_narrow_argv
_o__cexit
_o__callnewh
_o___stdio_common_vswprintf_s
_o___stdio_common_vswprintf
_o___stdio_common_vsprintf_s
_o___stdio_common_vsprintf
wcschr
memmove
wcsrchr
memcpy
memcmp
__C_specific_handler
UnRegisterTypeLi
LoadRegTypeLi
SysFreeString
SysAllocString
SysStringLen
LoadTypeLi
VarUI4FromStr
VarBstrCmp
VariantClear
VariantInit
RegisterTypeLi
GetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
RaiseException
SetEvent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
CreateEventW
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ResetEvent
LoadLibraryExW
LoadResource
LoadLibraryExA
GetModuleHandleW
FindResourceExW
SizeofResource
LockResource
GetModuleFileNameW
GetProcAddress
FreeLibrary
lstrcmpiW
CharNextW
WideCharToMultiByte
MultiByteToWideChar
GetThreadLocale
SetThreadLocale
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
IIDFromString
PropVariantClear
StringFromCLSID
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CreateFileW
WriteFile
CloseHandle
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
SystemTimeToFileTime
TerminateProcess
GetCurrentThreadId
GetCurrentProcess
GetCurrentProcessId
HeapAlloc
HeapFree
HeapReAlloc
HeapDestroy
HeapSize
GetProcessHeap
VirtualFree
VirtualAlloc
EncodePointer
DecodePointer
FlushInstructionCache
IsProcessorFeaturePresent
InitializeSListHead
InterlockedPushEntrySList
InterlockedPopEntrySList
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
IsDebuggerPresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
MFRequireProtectedEnvironment
MFCreateVideoRendererActivate
MFCreateMPEG4MediaSink
MFCreateSequencerSource
MFCreateTranscodeProfile
MFCreateTopology
MFCreateTopologyNode
MFCreateTranscodeSinkActivate
MFCreateASFProfile
MFCreateASFMediaSink
MFCreateAudioRendererActivate
MFCreateSourceResolver
MFCreateFile
MFCreateAttributes
MFTEnumEx
MFCreateEventQueue
MFInitAMMediaTypeFromMFMediaType
MFCreateMediaType
MFCreateCollection
VariantToPropVariant
PropVariantToVariant
ResolveDelayLoadedAPI
DelayLoadFailureHook
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
TEDCreateDataLoader
TEDCreateDataSaver
TEDCreateMediaTypeViewer
TEDCreateTopoViewer
TEDCreateTopoViewerWindow
TEDGetAttributeCategory
TEDGetAttributeGUID
TEDGetAttributeListLength
TEDGetAttributeName
TEDGetAttributeType
TEDGetAttributeTypeFromGUID
TEDGetMTKnownAttributes
TEDGetMTKnownGUIDStrings
TEDMTStringFromGUID
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ