?hoperd@@YAHXZ
?kompw@@YAHXZ
?paramt@@YAHXZ
DllRegisterServer
DllUnregisterServer
PluginInit
Static task
static1
Behavioral task
behavioral1
Sample
71da7690e0efcfeaebc74684960053ac.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
71da7690e0efcfeaebc74684960053ac.dll
Resource
win10v2004-20231215-en
Target
71da7690e0efcfeaebc74684960053ac
Size
42KB
MD5
71da7690e0efcfeaebc74684960053ac
SHA1
707415e6f2f76c0dd32828e32d3510509ee7213a
SHA256
c3301a4571749953f7dac5cfbddafcfdb0df4422618bf177de09d5bea0068873
SHA512
5ff2d74a6b019166387be5dade9eaa005fe2560556b217412b9b0cfeb5695e3f9a502d7901e7bcfcc6496487c702b2f2e212c9b237c935fe4deb4dec5b3f7edb
SSDEEP
768:atj+ZsANytyuDqIeJ6PLuCO2qQlgTuorrOw6tOl3RT0bxUsTWQ2fx:WjFCPpcPLuCO20aoQM3RgVUFJ
Checks for missing Authenticode signature.
Processes:
resource |
---|
71da7690e0efcfeaebc74684960053ac |
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
ord15
wnsprintfA
StrStrA
GetModuleFileNameW
Sleep
GetProcAddress
LoadLibraryA
GetCurrentThreadId
GetCurrentProcessId
DeleteFileA
GetMessageW
DispatchMessageW
GetForegroundWindow
SystemParametersInfoW
GetSysColor
SendMessageW
GetWindowTextW
SendMessageA
SetTimer
GetBkColor
?hoperd@@YAHXZ
?kompw@@YAHXZ
?paramt@@YAHXZ
DllRegisterServer
DllUnregisterServer
PluginInit
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ