ServiceRouteEx
StartServiceEx
StopServiceEx
Static task
static1
Behavioral task
behavioral1
Sample
87f9ec04bf2a087f778ae20c1a637b4c.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
87f9ec04bf2a087f778ae20c1a637b4c.dll
Resource
win10v2004-20231222-en
Target
87f9ec04bf2a087f778ae20c1a637b4c
Size
24KB
MD5
87f9ec04bf2a087f778ae20c1a637b4c
SHA1
78dba1d7e7ea882e1f22a8c36ed09f67319a2d54
SHA256
9a9fb447e4b3080591277db1609faa7ad7e9fe8afc1ca964d4499e9e2a49f15b
SHA512
f84e35ba3f81de4cf567a4b45b3ad7dbe4de3da43695c35de584fc052fe1303bec91561cdae7ba0c1e33f9f043326d98bda55de6ec6add7097339f0a1fce865d
SSDEEP
192:2TfMDNvP6lmJuBBQ6PRQkbgCBsOgqgbv2+E07+1tS:2YVPhuBBQARQkkKsbvlE07+1t
Checks for missing Authenticode signature.
resource |
---|
87f9ec04bf2a087f778ae20c1a637b4c |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
lstrlenA
ExitProcess
Sleep
VirtualProtect
lstrcatA
GetCurrentDirectoryA
CloseHandle
CreateThread
GetModuleFileNameA
SetWindowsHookExA
SetTimer
wsprintfA
CallNextHookEx
UnhookWindowsHookEx
gethostname
InternetOpenA
InternetCloseHandle
InternetOpenUrlA
InternetReadFile
_adjust_fdiv
malloc
_initterm
free
strstr
memcpy
strcmp
strrchr
strlen
memset
strcpy
exit
memcmp
strcat
_strlwr
_itoa
ServiceRouteEx
StartServiceEx
StopServiceEx
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ