Born
Fitsecond
Pastput
Static task
static1
Behavioral task
behavioral1
Sample
681b65ba5f4ca3b98a08da2c7ae9da0a.dll
Resource
win7-20231215-en
Target
681b65ba5f4ca3b98a08da2c7ae9da0a
Size
643KB
MD5
681b65ba5f4ca3b98a08da2c7ae9da0a
SHA1
00fc38ab30e4c52ebb0e2c3cdddb99927052b1b0
SHA256
8932ac8878c5eafb68986b8bab98e50f6f2a6e7ce49c28ce682708f25656c9cc
SHA512
8fee3513eaf2d7f3065ad4495e0f58f5b623579dca0601ddeee2075ba6aeea98ee6717ebe5e11e046eb31de7262843bc75b1afb895f762511a6f88af24d1d3de
SSDEEP
12288:HMUpikM1ABVY4lsBnllWzwazxRvwY9QKC71L715+PoR5nFIlW2i:K4Y4lglQzwyxRvwMSJLT5FIV
Checks for missing Authenticode signature.
Processes:
resource |
---|
681b65ba5f4ca3b98a08da2c7ae9da0a |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
OpenProcess
GetSystemDirectoryW
LoadLibraryW
Sleep
GetVersionExW
CreateFileW
GetTempPathW
GetCurrentDirectoryW
GetProcAddress
VirtualProtectEx
GetSystemTime
GetVolumeInformationW
GetModuleHandleW
CreateFileA
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
LoadLibraryA
QueryPerformanceCounter
LoadResource
FreeLibrary
FindResourceW
GetDateFormatW
GetEnvironmentVariableW
InitializeCriticalSectionAndSpinCount
CloseHandle
SetFilePointer
ReadFile
VirtualAlloc
HeapReAlloc
HeapSize
HeapAlloc
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStartupInfoA
SetHandleCount
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetStringTypeA
IsValidCodePage
GetOEMCP
GetACP
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
MultiByteToWideChar
InterlockedCompareExchange
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleFileNameW
GetCurrentThreadId
GetCommandLineA
GetCPInfo
HeapValidate
IsBadReadPtr
RaiseException
RtlUnwind
LCMapStringW
LCMapStringA
GetLastError
GetStringTypeW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
DebugBreak
GetStdHandle
WriteFile
OutputDebugStringA
WriteConsoleW
GetFileType
OutputDebugStringW
ExitProcess
GetModuleHandleA
EndDeferWindowPos
ReleaseCapture
EndDialog
IntersectRect
OffsetRect
LoadIconW
CloseClipboard
GetMessageA
WindowFromPoint
ExitWindowsEx
GetDoubleClickTime
InflateRect
CreateCompatibleDC
PtVisible
CreateFontW
CreateRectRgn
GetPixel
SelectClipRgn
OleInitialize
OleUninitialize
CoRegisterSurrogate
CoInitialize
CoRegisterClassObject
CoUninitialize
SetupGetSourceInfoW
SetupRemoveFromSourceListW
SetupQueryInfVersionInformationW
SetupSetSourceListW
SetupQuerySourceListW
SetupCancelTemporarySourceList
SetupIterateCabinetW
SetupCopyOEMInfW
SetupGetStringFieldW
SetupDefaultQueueCallbackW
SetupTermDefaultQueueCallback
SetupSetPlatformPathOverrideW
SetupGetIntField
SetupQueueDefaultCopyW
SetupQueueCopyW
SetupQueueDeleteW
SetupGetLineByIndexW
SetupPromptReboot
SetupAddToSourceListW
SetupFreeSourceListW
SetupQuerySpaceRequiredOnDriveW
SetupGetFieldCount
SetupQueueRenameW
SetupGetLineCountW
SetupGetLineTextW
SetupGetTargetPathW
Born
Fitsecond
Pastput
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ