VerifySignature
VerifySignatureOnParent
Static task
static1
Behavioral task
behavioral1
Sample
6f0a3c400463eb217cc3b49e9edae8bb.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
6f0a3c400463eb217cc3b49e9edae8bb.dll
Resource
win10v2004-20231222-en
Target
6f0a3c400463eb217cc3b49e9edae8bb
Size
66KB
MD5
6f0a3c400463eb217cc3b49e9edae8bb
SHA1
64691723d223c76cbe5a865063ba84a7621c507c
SHA256
e85c8df9de0e425ac5a158cf49b4d464f89277d48b7bb957e2cac548e9918af1
SHA512
b88f3a672fff660ceeb7f86039a12f89deb23a517a860b5a9b5324971453f05b4ebf9201e10e6cd7281474b3c807afc7edc88b828b7869f2e65c00673b23ba96
SSDEEP
1536:8zC8cnG+3ONTTxHL/lmDO+GMDjUMkK0CWZNv:81xLlmDQKU20CWZNv
Checks for missing Authenticode signature.
resource |
---|
6f0a3c400463eb217cc3b49e9edae8bb |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
WideCharToMultiByte
FreeLibrary
GetProcAddress
LocalFree
FormatMessageA
LocalAlloc
GetLastError
LoadLibraryA
GlobalFree
lstrcpyA
lstrcpynA
GlobalAlloc
CloseHandle
OpenProcess
MultiByteToWideChar
GetModuleFileNameA
GetCurrentProcessId
FlushFileBuffers
CreateFileW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
RtlUnwind
GetCurrentThreadId
DecodePointer
GetCommandLineA
EncodePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
GetModuleHandleW
SetLastError
InterlockedDecrement
IsProcessorFeaturePresent
HeapCreate
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
SetFilePointer
WriteFile
GetConsoleCP
GetConsoleMode
LCMapStringW
GetStringTypeW
LoadLibraryW
GetModuleFileNameW
SetStdHandle
WriteConsoleW
wsprintfA
SysFreeString
SysAllocStringLen
VerifySignature
VerifySignatureOnParent
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ