?GetPrm@@YAHXZ
?rlsret@@YAHXZ
DllRegisterServer
PluginInit
Static task
static1
Behavioral task
behavioral1
Sample
235d6de72f89720100e2289c3b551145.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
235d6de72f89720100e2289c3b551145.dll
Resource
win10v2004-20231222-en
Target
235d6de72f89720100e2289c3b551145
Size
199KB
MD5
235d6de72f89720100e2289c3b551145
SHA1
02abd83737ecffc6a02db5bd4eefd52bbd8ff287
SHA256
9c44eace5667e2c23b40294ba1875fa8a93b6cf9e40c59bfb2378532cbc81823
SHA512
4d4f6aaeeea4a453940fc69f27f5fcc37c2c44f03746b69f8bd35fbb34ade1f63e971c4d45e8698fcb3d6ccdfe3497164a1e2e7eccf18509add84809408ac049
SSDEEP
1536:Vq8ByBeZnwLGM+NoV1XjeNSaziIz7Ja5j/Nj/IXoZcq+M6qaCZZtr2wS+FJZLT:Q8+Kjv4RECZnrDSGZn
Checks for missing Authenticode signature.
Processes:
resource |
---|
235d6de72f89720100e2289c3b551145 |
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
wnsprintfA
Sleep
SetTimer
GetClassNameA
SystemParametersInfoA
SendMessageA
GetWindowDC
MessageBoxA
GetForegroundWindow
GetSysColor
GetWindowTextA
?GetPrm@@YAHXZ
?rlsret@@YAHXZ
DllRegisterServer
PluginInit
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ