DriverProc
widMessage
wodMessage
Static task
static1
Behavioral task
behavioral1
Sample
151a8504e1f2055be53719dbc60f7ee8.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
151a8504e1f2055be53719dbc60f7ee8.dll
Resource
win10v2004-20231215-en
Target
151a8504e1f2055be53719dbc60f7ee8
Size
15KB
MD5
151a8504e1f2055be53719dbc60f7ee8
SHA1
2efa35715d24f345941303efb0cc3da3ceb9f02a
SHA256
bdd22a262cfb28062fa1543e174def3bd6efc57440a09aa0f1f57c8950468cfe
SHA512
f199c510d6b72701c17fc9d1abd4719acef615fc1c9f4c04cd4935cc2a924e7ca37bb1031d5efd1e779e50cfedb171d7dda25f182a66be0269ffd29edf1b09d4
SSDEEP
384:zdqH2iV3O2VaK/z3PaSy9v8Y3v5WMo/bwW:5idOBODlyv8Y3v+
Checks for missing Authenticode signature.
resource |
---|
151a8504e1f2055be53719dbc60f7ee8 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
CreateThread
lstrcmpiA
GetModuleFileNameA
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
ExitProcess
strrchr
strcat
memcpy
strlen
free
_initterm
malloc
_adjust_fdiv
DriverProc
widMessage
wodMessage
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ