Static task
static1
Behavioral task
behavioral1
Sample
1865fa3827a2f4b5861705c522a603bb.exe
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral2
Sample
1865fa3827a2f4b5861705c522a603bb.exe
Resource
win10v2004-20231222-en
windows10-2004-x64
Target
1865fa3827a2f4b5861705c522a603bb
Size
3.9MB
MD5
1865fa3827a2f4b5861705c522a603bb
SHA1
28a4b3982cae3074517443dba10e1bc08233890a
SHA256
9daa7abfcf1733b7051e1832b3dab4725623e86fb0c22d14fc5f71c1030ec59b
SHA512
4188b8d6f00eafcc20d72a4cb61d3518dd8ff5f210b97c580a51096d76829b0fad0310a2c320dc90ecf54b09b19403aa292dda8eefa4d67d94f082f451af254c
SSDEEP
98304:dXYhswArlJQwIg1Hef+61oNc8zTo2IedM/R:dXXwoMDg1Hef+6uO4ozedMJ
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
CreateFileW
GetCurrentProcessId
CreateProcessW
GetLocalTime
TerminateThread
CreateEventW
ResetEvent
SetEvent
InterlockedExchange
InterlockedCompareExchange
GetTickCount
WaitForMultipleObjects
UnmapViewOfFile
SetFilePointer
MapViewOfFile
CreateFileMappingW
GetFileAttributesExW
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
LockResource
CreateMutexW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
GetLongPathNameW
MulDiv
WideCharToMultiByte
DeleteFileA
GetSystemDefaultLangID
GetVersion
TerminateProcess
GetShortPathNameW
GetTempFileNameW
VirtualFreeEx
ReadProcessMemory
WriteProcessMemory
VirtualAllocEx
WriteFile
GetTempPathW
DeviceIoControl
GetVersionExW
OpenProcess
OutputDebugStringW
DebugBreak
GetLastError
FreeLibrary
lstrcmpiA
GetCurrentProcess
DeleteAtom
lstrcmpiW
ReleaseMutex
AddAtomW
OpenThread
GetAtomNameW
GetSystemTime
FormatMessageW
GetFileSizeEx
SetFilePointerEx
SetEndOfFile
LocalFileTimeToFileTime
SystemTimeToFileTime
IsProcessorFeaturePresent
GetProcessHeap
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
CreateFileA
GetTimeZoneInformation
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
ReadFile
GetLocaleInfoW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
InitializeCriticalSectionAndSpinCount
LoadLibraryA
SetConsoleCtrlHandler
HeapSize
LCMapStringW
LCMapStringA
GetCurrentThread
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
InitializeCriticalSection
GetModuleHandleW
FlushInstructionCache
LeaveCriticalSection
EnterCriticalSection
RaiseException
DeleteCriticalSection
GetCurrentThreadId
Sleep
GetPrivateProfileIntW
WritePrivateProfileStringW
WaitForSingleObject
FindAtomW
LocalAlloc
CloseHandle
LocalFree
LoadLibraryW
GetProcAddress
GetModuleFileNameW
MultiByteToWideChar
lstrcpyW
GetFullPathNameW
SetLastError
lstrlenW
InterlockedIncrement
InterlockedDecrement
MoveFileExW
GetFileAttributesW
SetFileAttributesW
FindFirstFileW
FindNextFileW
DeleteFileW
lstrlenA
FindClose
lstrcmpA
RemoveDirectoryW
HeapFree
HeapAlloc
RtlUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetOEMCP
GetACP
GetCPInfo
GetModuleHandleA
GetModuleFileNameA
GetStdHandle
HeapReAlloc
VirtualAlloc
FatalAppExitA
VirtualFree
HeapDestroy
HeapCreate
ExitProcess
ExitThread
CreateThread
GetStartupInfoW
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
CreateWindowExW
GetClassInfoExW
LoadCursorW
RegisterClassExW
GetWindowRect
WindowFromPoint
GetWindowThreadProcessId
GetDesktopWindow
GetForegroundWindow
GetAncestor
EnumDisplaySettingsW
CallWindowProcW
MonitorFromPoint
GetWindowInfo
GetWindow
GetShellWindow
MessageBoxW
GetActiveWindow
CharUpperW
wsprintfW
SetTimer
KillTimer
FindWindowExW
SetRect
OffsetRect
DestroyWindow
DefWindowProcW
LoadStringW
PostMessageW
PtInRect
ReleaseDC
GetDC
EndPaint
BeginPaint
SetWindowLongW
SendMessageW
GetParent
ShowWindow
InvalidateRect
GetClientRect
SetWindowPos
MoveWindow
GetMonitorInfoW
CharNextW
wvsprintfW
LoadImageW
GetSystemMetrics
SystemParametersInfoW
UnregisterClassA
SendMessageTimeoutW
FindWindowW
PostQuitMessage
IsWindow
CopyRect
GetWindowLongW
SetWindowRgn
IsWindowVisible
UpdateLayeredWindow
IsRectEmpty
DrawFocusRect
SetCursor
SetWindowTextW
CreateRectRgn
SetBkColor
ExtTextOutW
GetDeviceCaps
CreateFontIndirectW
GetTextExtentPoint32W
DeleteObject
CombineRgn
EnumFontFamiliesW
CreateCompatibleBitmap
BitBlt
SetViewportOrgEx
SelectObject
CreateCompatibleDC
DeleteDC
CreateFontW
RegDeleteKeyW
RegEnumKeyExA
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegQueryInfoKeyW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegOpenKeyExA
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
DuplicateTokenEx
CreateWellKnownSid
GetLengthSid
SetTokenInformation
RegQueryValueExW
RegQueryValueExA
ShellExecuteExW
ShellExecuteW
SHGetSpecialFolderPathW
SHGetPathFromIDListW
SHFileOperationW
SHGetSpecialFolderLocation
ord165
SHChangeNotify
CommandLineToArgvW
CoUninitialize
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoInitializeEx
CreateStreamOnHGlobal
CLSIDFromProgID
OleRun
CoCreateGuid
CoSetProxyBlanket
CoInitializeSecurity
CoInitialize
VariantChangeType
SysAllocString
SysFreeString
VarUI4FromStr
VariantInit
VariantCopy
CreateErrorInfo
SetErrorInfo
GetErrorInfo
VariantClear
SHSetValueA
PathFileExistsW
PathFindExtensionW
PathCombineW
PathRemoveFileSpecW
AssocQueryStringW
StrCmpIW
PathFindFileNameW
SHGetValueW
StrCmpW
SHDeleteKeyW
PathIsPrefixW
StrToIntExW
SHGetValueA
PathAppendW
_TrackMouseEvent
InitCommonControlsEx
GdipDrawImageRectRect
GdiplusShutdown
GdiplusStartup
GdipDeleteGraphics
GdipCreateFromHDC
GdipDrawImageRectRectI
GdipGetImageWidth
GdipDrawImagePointRectI
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipMeasureString
GdipDrawString
GdipSetTextRenderingHint
GdipSetStringFormatTrimming
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdipDeleteStringFormat
GdipCreateStringFormat
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipCloneImage
GdipDisposeImage
GdipFree
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipAlloc
GdipGetImageHeight
GetModuleFileNameExW
WTHelperProvDataFromStateData
WinVerifyTrust
CertGetNameStringW
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetAdaptersInfo
InternetGetConnectedState
URLDownloadToCacheFileW
URLDownloadToFileW
URLDownloadToCacheFileA
SetupIterateCabinetW
Netbios
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ