DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MsgHookOff
MsgHookOn
Static task
static1
Behavioral task
behavioral1
Sample
4a581fb9d84e2ff55ac3f6c2c7248531.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4a581fb9d84e2ff55ac3f6c2c7248531.dll
Resource
win10v2004-20231215-en
Target
4a581fb9d84e2ff55ac3f6c2c7248531
Size
20KB
MD5
4a581fb9d84e2ff55ac3f6c2c7248531
SHA1
3eac4c4b992f116cea8e180b56d1fb42d8cb94b3
SHA256
2ba898c8a15f1e8e794649adf5b33cb6441061b0cf5004d184faff9ce6f81002
SHA512
614ae8bc84ce3f1028931bf7273ac3a64a077c4846c0453dfae9df63ab2b1c1932a0e296ee995365f7d8522887a56ef7512acfdc9484018b1f6f3ef068039c32
SSDEEP
384:I9RdCyPMqlW4mQm6NPoTkEFRrGxoq/cGmWzAztu/i6d:2Cykql9mQRFuAxzEh/tua
Checks for missing Authenticode signature.
| resource |
|---|
| 4a581fb9d84e2ff55ac3f6c2c7248531 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
MsgHookOff
MsgHookOn
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ