Static task
static1
Behavioral task
behavioral1
Sample
f92e369f75c77dfa367c8ea67b00b7c411dca7f21e93cf2e46833b857d17dd3f.dll
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
f92e369f75c77dfa367c8ea67b00b7c411dca7f21e93cf2e46833b857d17dd3f.dll
Resource
win10v2004-20231222-en
windows10-2004-x64
Target
f92e369f75c77dfa367c8ea67b00b7c411dca7f21e93cf2e46833b857d17dd3f
Size
796KB
MD5
41796a0e543681e5486da690a960a997
SHA1
141712d229b93f9c53c74509886cb2176c19a3bb
SHA256
f92e369f75c77dfa367c8ea67b00b7c411dca7f21e93cf2e46833b857d17dd3f
SHA512
36e92321416a195beecc5c591388e53257036ed729bcc7c5be9455c9003a351e4b6887a412c86187ced380caca5b02a2c01f55b1fe254ef20c152116e5f665cd
SSDEEP
12288:uLs+TrGVLWOfar3xleaGym+qThwXkekwCCMT6LiwtdV:2s+OVKca7xlehk4hwXkekwC9T6LiwtdV
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PathCanonicalizeW
GetTempFileNameW
SetEnvironmentVariableW
VirtualQuery
GetEnvironmentVariableW
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
QueryPerformanceFrequency
FillConsoleOutputAttribute
GetConsoleScreenBufferInfo
FillConsoleOutputCharacterW
GetStdHandle
GetTimeZoneInformation
SetConsoleCursorPosition
OpenProcess
QueryPerformanceCounter
GetCurrentProcessId
Sleep
LoadLibraryW
GetCurrentThread
GetTickCount
OutputDebugStringW
SetFilePointer
CreateFileA
SetNamedPipeHandleState
CreateEventW
DisconnectNamedPipe
WaitNamedPipeW
CreateNamedPipeW
ConnectNamedPipe
WaitForSingleObject
PeekNamedPipe
LoadLibraryA
GetProcAddress
GetLastError
FreeLibrary
GetCurrentThreadId
DeleteFileW
CreateFileW
OutputDebugStringA
SetFilePointerEx
WriteFile
ReadFile
FlushFileBuffers
CloseHandle
FindFirstFileW
WideCharToMultiByte
MultiByteToWideChar
RemoveDirectoryA
FindClose
FindNextFileW
GetFileAttributesExW
GetDiskFreeSpaceExW
DeleteFileA
wsprintfW
_Thrd_equal
?_Release@_Pad@std@@QAEXXZ
?_Launch@_Pad@std@@QAEXPAU_Thrd_imp_t@@@Z
??1_Pad@std@@QAE@XZ
??0_Pad@std@@QAE@XZ
_Thrd_join
_Thrd_current
_Thrd_sleep
_Xtime_diff_to_millis2
xtime_get
_Thrd_yield
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?_Random_device@std@@YAIXZ
?id@?$numpunct@D@std@@2V0locale@2@A
?id@?$codecvt@_WDH@std@@2V0locale@2@A
?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z
??_7?$codecvt@_WDH@std@@6B@
??_7codecvt_base@std@@6B@
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?precision@ios_base@std@@QBE_JXZ
??Bios_base@std@@QBEPAXXZ
?widen@?$ctype@D@std@@QBEPBDPBD0PAD@Z
?widen@?$ctype@D@std@@QBEDD@Z
??1?$codecvt@_WDH@std@@MAE@XZ
?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??0?$codecvt@_WDH@std@@QAE@I@Z
?out@?$codecvt@_WDH@std@@QBEHAAHPB_W1AAPB_WPAD3AAPAD@Z
??1codecvt_base@std@@UAE@XZ
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_Gettrue@_Locinfo@std@@QBEPBDXZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Swap_all@_Container_base12@std@@QAEXAAU12@@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?_Xbad_function_call@std@@YAXXZ
??0_Locinfo@std@@QAE@PBD@Z
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
??0id@locale@std@@QAE@I@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?good@ios_base@std@@QBE_NXZ
?rdstate@ios_base@std@@QBEHXZ
_Xtime_get_ticks
_Cnd_init
?_Throw_Cpp_error@std@@YAXH@Z
?_Throw_C_error@std@@YAXH@Z
_Cnd_signal
_Cnd_destroy
_Mtx_destroy
_Mtx_unlock
_Cnd_broadcast
_Cnd_wait
_Mtx_lock
_Mtx_current_owns
_Cnd_timedwait
_Mtx_init
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_BADOFF@std@@3_JB
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
_Nan
_Inf
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
?fail@ios_base@std@@QBE_NXZ
??7ios_base@std@@QBE_NXZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
??1_Container_base12@std@@QAE@XZ
??0_Container_base12@std@@QAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??1_Locinfo@std@@QAE@XZ
?id@?$collate@D@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$ctype@D@std@@2V0locale@2@A
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
_Strcoll
??_7facet@locale@std@@6B@
_Strxfrm
??_7_Facet_base@std@@6B@
?c_str@?$_Yarn@D@std@@QBEPBDXZ
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@D@std@@QBEPBDPADPBD@Z
?tolower@?$ctype@D@std@@QBEDD@Z
?is@?$ctype@D@std@@QBE_NFD@Z
??1facet@locale@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
??1_Facet_base@std@@UAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
vsprintf
remove
_vswprintf
printf
fopen
ftell
_localtime64
_time64
perror
atoi
_kbhit
_getch
_vsnwprintf
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
strcspn
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
_vsnprintf
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__CxxFrameHandler3
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_except_handler4_common
__clean_type_info_names_internal
_CxxThrowException
__libm_sse2_pow
memcpy
memset
memmove
strchr
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
??_V@YAXPAX@Z
free
__iob_func
memchr
_wgetcwd
strncpy
_mkdir
fprintf
_stat64i32
abort
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
sprintf_s
sscanf
modf
malloc
strstr
localeconv
_finite
strpbrk
strtod
_errno
strtol
strtoul
strrchr
sprintf
fflush
_wfopen
fwrite
fclose
_open_osfhandle
_fdopen
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABV01@@Z
realloc
?terminate@@YAXXZ
?wait@Concurrency@@YAXI@Z
?_Yield@_Context@details@Concurrency@@SAXXZ
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
rename
TLS_server_method
SSL_CTX_use_certificate_file
SSL_CTX_new
SSL_write
SSL_free
OPENSSL_init_ssl
SSL_read
SSL_set_connect_state
SSL_set_fd
TLS_client_method
SSL_ctrl
SSL_new
SSL_do_handshake
SSL_CTX_free
SSL_get_error
SSL_accept
SSL_CTX_use_PrivateKey_file
ERR_clear_error
ERR_print_errors_fp
RAND_bytes
pthread_cond_init
pthread_exit
pthread_create
pthread_join
pthread_self
pthread_detach
pthread_cond_wait
pthread_num_processors_np
pthread_mutex_init
pthread_cond_signal
pthread_mutexattr_destroy
pthread_mutexattr_init
pthread_mutexattr_settype
pthread_mutex_unlock
pthread_cond_destroy
pthread_mutex_lock
pthread_mutex_destroy
CreateIPCObject
CreateNileNetworkObject
CreateUtilityObject
QueryNileVersion
ReleaseIPCObject
ReleaseNileNetworkObject
ReleaseUtilityObject
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ