DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
435b003b46be5e0d146ce87cff9047f6.dll
Resource
win7-20231129-en
Target
435b003b46be5e0d146ce87cff9047f6
Size
195KB
MD5
435b003b46be5e0d146ce87cff9047f6
SHA1
089390dc07ec262e5db98e781d22d83582067738
SHA256
cea58740353f8f9fa14eab0140071a4ca6765131d12e2b5a944eb9c5bb692a3d
SHA512
d9bc74cdfdc3c22eefd63a725e0984abe806d5258bc5b040eddfea4cf63c955e2784720c2b8872d39a99b7e0bc2621b304fe48c5c20fea0741874807d8392bce
SSDEEP
3072:opbHWb43rambIfqEnqgc2rqVKR0BYRqhUypyVVxs9r1KYQ4eqv3zlbU:6HWb4bbIfqOqyNR0BIxVzrYQ8vhbU
Checks for missing Authenticode signature.
resource |
---|
435b003b46be5e0d146ce87cff9047f6 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetCurrentProcess
FlushInstructionCache
lstrlenW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DisableThreadLibraryCalls
WaitForMultipleObjects
lstrlenA
MultiByteToWideChar
WaitForSingleObject
CreateThread
Sleep
SetEvent
CloseHandle
CreateEventW
ResetEvent
GetFileSize
ReadFile
CreateFileW
FormatMessageW
LocalAlloc
LocalFree
FreeLibrary
LoadLibraryW
GetProcAddress
lstrcpyA
lstrcmpW
GetLocaleInfoW
GetLastError
GetVersionExW
WideCharToMultiByte
lstrcpyW
GetModuleFileNameW
GetComputerNameW
lstrcpynW
CoCreateInstance
CoInitialize
CoUninitialize
VariantClear
LoadRegTypeLi
DispCallFunc
SysAllocString
SysAllocStringLen
SysFreeString
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
VariantInit
SysStringLen
StrStrW
StrToIntW
StrChrW
ord23
ord21
ord16
ord15
ord18
ord57
ord32
ord58
ord11
ord10
ord30
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0exception@@QAE@ABV0@@Z
_except_handler3
strtol
printf
memset
??1exception@@UAE@XZ
_purecall
memcpy
_CxxThrowException
strlen
time
__CxxFrameHandler
??2@YAPAXI@Z
??0exception@@QAE@ABQBD@Z
strchr
free
__dllonexit
_onexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_initterm
_adjust_fdiv
memcmp
malloc
wsprintfA
wsprintfW
RegCloseKey
RegQueryInfoKeyW
RegEnumValueW
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ