DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
5a93ba1c8de31dc3e77266d5b9f44872.dll
Resource
win7-20231215-en
Target
5a93ba1c8de31dc3e77266d5b9f44872
Size
132KB
MD5
5a93ba1c8de31dc3e77266d5b9f44872
SHA1
fda80789e3f232fee4bf93d7bef3303a406dfbe0
SHA256
d4e4167d8d2dbc0e05935f44a18d65a0e2cd5b2806ea64b8fb949bcebf7bd266
SHA512
5b382c1a25c544f6513b452f410290d8a9068f5a74ba4cbfff883503ee85eb3cd1c6fcc3e3b4bb560ca6609b2357004ac29e96c75357ba5e8560e8502d9dae4a
SSDEEP
3072:Ro6nwLqrSa4I+VCUgVr9kYaQBqaFM2oVhyAn1+v:e6ungVrwwM2uf1A
Checks for missing Authenticode signature.
resource |
---|
5a93ba1c8de31dc3e77266d5b9f44872 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
??2@YAPAXI@Z
ceil
free
_except_handler3
??3@YAXPAX@Z
malloc
_adjust_fdiv
_initterm
realloc
SHStrDupW
wnsprintfA
StrCpyNW
SHGetValueW
SHSetValueW
PathFindFileNameW
wnsprintfW
PathFileExistsW
CreateStreamOnHGlobal
CreateBindCtx
StringFromGUID2
CoCreateGuid
SysAllocString
SysFreeString
RaiseException
LocalAlloc
LocalReAlloc
GetSystemInfo
CreateEventA
CreateFileMappingA
InterlockedCompareExchange
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetLastError
InterlockedExchange
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
CompareStringA
FreeLibrary
Sleep
FindClose
ResetEvent
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
GetFileSize
GlobalAlloc
ReadFile
GlobalFree
WriteFile
VirtualAlloc
WaitForSingleObject
EnterCriticalSection
SetEvent
LeaveCriticalSection
InterlockedIncrement
DisableThreadLibraryCalls
LoadLibraryA
IsBadWritePtr
IsBadCodePtr
IsBadReadPtr
GetVersionExA
LocalFree
GetLastError
GetSystemTimeAsFileTime
CloseHandle
SystemTimeToFileTime
GetCurrentProcess
CompareFileTime
UnmapViewOfFile
GetSystemTime
MapViewOfFile
GetTickCount
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE