Behind
Factpresent
Steadunder
Static task
static1
Behavioral task
behavioral1
Sample
0196aa6b6e09389e94acafba9049fe5f.dll
Resource
win7-20231215-en
Target
0196aa6b6e09389e94acafba9049fe5f
Size
355KB
MD5
0196aa6b6e09389e94acafba9049fe5f
SHA1
6248bd71cc01f4dd0728bf8536c29aff31adb4ce
SHA256
84b16227e05b966470c3624cc9129296d73b96c11c90ff5d02a6aea8ab196b9e
SHA512
004683c3bcc190134f6715bef7fc1d788e3b7d02c68f6f51980433078be7c126f382fb2832d2668c23f234f9b6ab0d0e1e2e1d0dca33d9f40803f412f566c81a
SSDEEP
6144:BstpyZ+ANKcOVwmBfjdLz5kazt+x1gLY3TGAa7VGpwCu:BstpbA3OOmljdLGeZOGH7Cu
Checks for missing Authenticode signature.
Processes:
resource |
---|
0196aa6b6e09389e94acafba9049fe5f |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetFileAttributesA
CreateProcessA
GetEnvironmentVariableA
RemoveDirectoryA
GetDiskFreeSpaceA
GetModuleFileNameA
VirtualProtect
GetCurrentDirectoryA
GetCurrentThreadId
GetTempPathA
CreateFileW
ReadConsoleW
WriteConsoleW
SetStdHandle
OutputDebugStringW
LoadLibraryExW
HeapReAlloc
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
CloseHandle
GetOEMCP
GetACP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
HeapSize
GetModuleFileNameW
WriteFile
GetStdHandle
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetLastError
HeapFree
HeapAlloc
GetCommandLineA
GetCPInfo
RaiseException
RtlUnwind
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
GetProcAddress
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsDebuggerPresent
GetProcessHeap
ExitProcess
GetModuleHandleExW
GetMessagePos
CheckMenuItem
FindWindowA
UpdateWindow
LoadImageA
DispatchMessageA
ShowWindow
EnumChildWindows
CheckMenuRadioItem
GetAsyncKeyState
GetWindowTextW
GetDC
DrawIcon
IsWindowEnabled
GetClassNameA
OleUninitialize
OleInitialize
OleSetContainedObject
CLSIDFromString
CoUninitialize
CoInitialize
CoCreateInstance
DhcpRequestParams
DhcpCApiInitialize
DhcpRegisterParamChange
DhcpCApiCleanup
DhcpUndoRequestParams
DhcpRemoveDNSRegistrations
Behind
Factpresent
Steadunder
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ