Claim
DllRegisterServer
Static task
static1
Behavioral task
behavioral1
Sample
JEsNEuI.dll
Resource
win7-20231129-en
Target
JEsNEuI.dll
Size
356KB
MD5
9eea7a0571baf33fa6877e8f8ebb3ad7
SHA1
9a7738f3f73d78d9fe18ba5401081d27f4222c8d
SHA256
121d7fc3a0a43a6ef4b73f564175b92727281155b221ff6f34c00d73438b679e
SHA512
90b6440f8c0fd2946eb5e47882aaf6b608fc900e9684daf4da74579d8863e83d26be7d27e2e074a98fdf631f2e9d44bc3e79a619ef88db009ade73516afa3e94
SSDEEP
6144:IOA9EZYHHOsAFPtetI7AW7JOpoTIXbv6M19HBqxJPVZ5IebbnB:9A9EZgAFPtkI751OnrRbOJ1P
Checks for missing Authenticode signature.
resource |
---|
JEsNEuI.dll |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
SetupGetSourceInfoW
SetupRemoveFromSourceListW
SetupQueryInfVersionInformationW
SetupSetSourceListW
SetupQuerySourceListW
SetupCancelTemporarySourceList
SetupIterateCabinetW
SetupCopyOEMInfW
SetupGetStringFieldW
SetupDefaultQueueCallbackW
SetupTermDefaultQueueCallback
SetupSetPlatformPathOverrideW
SetupGetIntField
SetupQueueDefaultCopyW
SetupQueueCopyW
SetupGetLineByIndexW
SetupPromptReboot
SetupAddToSourceListW
SetupFreeSourceListW
SetupQuerySpaceRequiredOnDriveW
SetupGetFieldCount
SetupQueueRenameW
SetupGetLineCountW
SetupGetLineTextW
SetupGetTargetPathW
GetProcAddress
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
MultiByteToWideChar
HeapSize
GetOEMCP
GetACP
GetCPInfo
LoadLibraryA
RtlUnwind
FindFirstChangeNotificationW
GetSystemDirectoryW
Sleep
GetModuleFileNameW
GetTempPathW
VirtualProtectEx
VirtualProtect
HeapAlloc
GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RaiseException
InitializeCriticalSection
Claim
DllRegisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ