GetDLlVersion
Run
Sunbelt
Static task
static1
Behavioral task
behavioral1
Sample
1f9da95394e3e57d6510757a067c6186.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
1f9da95394e3e57d6510757a067c6186.dll
Resource
win10v2004-20231215-en
Target
1f9da95394e3e57d6510757a067c6186
Size
24KB
MD5
1f9da95394e3e57d6510757a067c6186
SHA1
ccafdca057b445c7be3df6a064e264a316a4aa4c
SHA256
fa31b07bab75ea6f1ab7ba8d9a6e274e1a39b50723d747dd7ef0a74354b9c576
SHA512
0fcdf6a55ffc78d192d365f522b018d3794434d7b6cb1dd71ea5046c47ceae84bb18986d6d8ab684785b856c579a79aaf28186981551a071ff039269cfd08228
SSDEEP
192:GsNGS9RWanc9Lht82SrBOUzk9m4VM8GjFVemPej8V1TqMXkP:GcG8W59LhtEQA/4O82FV9PS8VkwkP
Checks for missing Authenticode signature.
resource |
---|
1f9da95394e3e57d6510757a067c6186 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
TerminateProcess
GetLastError
DisableThreadLibraryCalls
Sleep
CreateProcessA
OutputDebugStringA
SendMessageA
GetWindowThreadProcessId
GetClassNameA
GetParent
CloseDesktop
SetForegroundWindow
EnumDesktopWindows
PostMessageA
CreateDesktopA
OpenDesktopA
EnumChildWindows
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
WSAStartup
connect
setsockopt
socket
send
recv
closesocket
shutdown
inet_addr
gethostbyname
WSACleanup
htons
_adjust_fdiv
_initterm
time
srand
strchr
rand
atoi
realloc
sprintf
malloc
strstr
free
GetDLlVersion
Run
Sunbelt
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ