DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MgHookCls
MgHookOpn
Static task
static1
Behavioral task
behavioral1
Sample
1b86c097dce98c2bc1b36a4eba384c3c.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
1b86c097dce98c2bc1b36a4eba384c3c.dll
Resource
win10v2004-20231215-en
Target
1b86c097dce98c2bc1b36a4eba384c3c
Size
47KB
MD5
1b86c097dce98c2bc1b36a4eba384c3c
SHA1
a3f53ab1ab69437f30aee744a0e33b9956aa5325
SHA256
f5214ed2a067d1e6b8be4b1de70432483ac9720cbb98ffc2ebc314818ed6a9e0
SHA512
cabad7447404525406e93dc43f4ce3a69479c5cb5d273054f64d9b9a099c2270566902a884d17863b5762e79ca427b89b42f17e7caf9528e47fa28f97f8bb3d4
SSDEEP
768:lSVMqQCVaQkUwjWnoyX6QDYbs/wpTiO5OpBlwan/ubR5ggC/aFox7ixOHhQOae:kVMqFVaQbVFDAzpTiGOpBlwou/BoxWIL
Checks for missing Authenticode signature.
resource |
---|
1b86c097dce98c2bc1b36a4eba384c3c |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MgHookCls
MgHookOpn
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ