DllCanUnloadNow
DllGetClassObject
DllRegisterServer
Static task
static1
Behavioral task
behavioral1
Sample
64f018fd83a1394e344098b745c6613e.dll
Resource
win7-20231215-en
Target
64f018fd83a1394e344098b745c6613e
Size
13KB
MD5
64f018fd83a1394e344098b745c6613e
SHA1
8ea5c226374e5539368f19664ef7282183d7f592
SHA256
2eb1c19527755d99f6dbfddb53db8b3c583df18c837eb1e913863601e2a35492
SHA512
182938f75ddfedb1189528292820d716c84b48f6fa7be14dc0933ded78d4123aab5cef82bcef7bac7c1ed60b3b58e56615ea89a75b0520d0cce63ce4944b999d
SSDEEP
192:WbrkCT3OeRtQIOmhgdTEQuUSqKy+R/MoD4rHjDp0RWv38WLm:gki9uZEQBKyQWDD1vMC
Checks for missing Authenticode signature.
resource |
---|
64f018fd83a1394e344098b745c6613e |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetSystemDirectoryW
lstrlenW
GetVersionExA
lstrcpyW
lstrcatW
lstrlenA
MultiByteToWideChar
GetModuleFileNameA
SetFileAttributesA
HeapAlloc
GetProcessHeap
SetFileAttributesW
Sleep
RtlUnwind
lstrcmpA
CompareStringW
WinExec
HeapFree
GetFileAttributesA
wsprintfW
CharLowerA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
SysFreeString
SysAllocString
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ