Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
87116862827be160dded1fc8e6117a1a34208be160fc67edd4fbc29b68f8c06a.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
87116862827be160dded1fc8e6117a1a34208be160fc67edd4fbc29b68f8c06a.exe
Resource
win10v2004-20231222-en
Target
87116862827be160dded1fc8e6117a1a34208be160fc67edd4fbc29b68f8c06a
Size
4.1MB
MD5
51189a0040dd1c24d84fbacb355bdcfe
SHA1
55c899b5e71d365d2f56009306f40febdbbcbc85
SHA256
87116862827be160dded1fc8e6117a1a34208be160fc67edd4fbc29b68f8c06a
SHA512
a64ed4c04f6faa796d6064cfaa5e0b0d7dfdf95ea280a5d039ee0ed1a24994dad66b29b902eba5468fc12baf300409bbcf6eda81eae164949f303f3bdc16a21e
SSDEEP
49152:QZ4Sb2ypFoTkisggggM60T9XygislFUUCyg2ON6gLZ4IdNKPnhknm/J0AeaSKLh3:Ebyki8gEgTKN6WFch4mDG9Hg
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
ReadFile
lstrlenW
GetCurrentDirectoryW
CreateFileW
VerSetConditionMask
OpenProcess
MulDiv
VerifyVersionInfoW
GetACP
ExitProcess
WriteFile
SetFilePointer
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
CreateDirectoryW
GetFileAttributesW
LocalFree
GlobalAlloc
GetModuleHandleA
GetLocalTime
lstrcpynW
lstrcpyW
VirtualQuery
MoveFileW
InitializeCriticalSection
WaitForSingleObject
FindClose
GetTempPathW
RemoveDirectoryW
CreateFileA
DeleteFileW
FindFirstFileW
FindNextFileW
GlobalFree
LocalAlloc
GetFileInformationByHandle
GetHandleInformation
GetLogicalDriveStringsW
CreateProcessW
QueryDosDeviceW
GetVersionExW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
DeviceIoControl
InitializeSListHead
GetEnvironmentVariableW
GetDriveTypeW
VirtualAlloc
VirtualFree
WaitForMultipleObjects
VirtualProtect
GetNativeSystemInfo
LoadLibraryA
IsBadReadPtr
SignalObjectAndWait
SwitchToThread
SetThreadPriority
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
GlobalUnlock
RegisterWaitForSingleObject
UnregisterWait
GetCurrentThread
GetThreadTimes
FreeLibraryAndExitThread
DuplicateHandle
ReleaseSemaphore
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
CreateTimerQueue
RtlUnwind
GetTimeZoneInformation
GetModuleHandleExW
GetStdHandle
GetFileType
GetConsoleCP
GetConsoleMode
SetFilePointerEx
ExitThread
SetConsoleCtrlHandler
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetStdHandle
ReadConsoleW
SetEndOfFile
WriteConsoleW
GetFileAttributesExW
FlushFileBuffers
GetStartupInfoW
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
ReadConsoleA
SetConsoleMode
SwitchToFiber
DeleteFiber
CreateFiber
GlobalMemoryStatus
WaitForSingleObjectEx
ResetEvent
SetEvent
CloseHandle
GetCPInfo
GetLocaleInfoW
LCMapStringW
CompareStringW
QueryPerformanceFrequency
QueryPerformanceCounter
EncodePointer
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
Sleep
CreateEventW
SetLastError
TryEnterCriticalSection
GetStringTypeW
WideCharToMultiByte
FormatMessageW
OutputDebugStringW
IsDebuggerPresent
ConvertFiberToThread
ConvertThreadToFiber
GetSystemTime
GetFileSize
SetThreadAffinityMask
GetFullPathNameW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetEnvironmentVariableA
CompareFileTime
GetSystemDirectoryW
SleepEx
GlobalLock
FindResourceExW
CreateThread
CopyFileW
MoveFileExW
SetErrorMode
GetModuleFileNameA
LoadLibraryExW
lstrcmpiW
InterlockedIncrement
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleW
FindResourceW
LoadResource
LockResource
FreeResource
InterlockedDecrement
SizeofResource
GetTickCount
DeleteCriticalSection
GetCurrentThreadId
FreeLibrary
GetProcessHeap
GetCurrentProcessId
GetProcAddress
HeapDestroy
DecodePointer
HeapAlloc
LoadLibraryW
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
GetCommandLineW
GetSystemDirectoryA
HeapFree
MoveWindow
UpdateLayeredWindow
MessageBoxW
SetWindowRgn
InflateRect
SetCursor
MonitorFromPoint
LoadCursorW
GetPropW
SetPropW
GetSystemMetrics
EnableWindow
ShowWindow
GetClassInfoExW
RegisterClassExW
RegisterClassW
CallWindowProcW
DefWindowProcW
wsprintfW
GetMonitorInfoW
MonitorFromWindow
LoadImageW
GetWindow
GetParent
SetWindowLongW
GetWindowLongW
PtInRect
IsRectEmpty
DrawTextA
UnionRect
IntersectRect
GetSysColor
CharPrevW
SetForegroundWindow
GetCursorPos
GetWindowRect
GetClientRect
InvalidateRect
GetUpdateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
KillTimer
SetTimer
ReleaseCapture
DrawTextW
FillRect
SetRect
CreatePopupMenu
DestroyMenu
EnableMenuItem
AppendMenuW
TrackPopupMenu
SetCapture
GetKeyState
GetFocus
GetActiveWindow
SetFocus
IsZoomed
IsIconic
IsWindowVisible
SetWindowPos
IsWindow
CreateAcceleratorTableW
InvalidateRgn
GetCursor
CreateCaret
GetCaretBlinkTime
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
ClientToScreen
UpdateWindow
PrivateExtractIconsW
DestroyIcon
DrawIconEx
CreateWindowExW
SendMessageW
GetProcessWindowStation
GetUserObjectInformationW
FindWindowW
GetDesktopWindow
MapVirtualKeyExW
GetKeyNameTextW
EqualRect
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
IsWindowEnabled
GetWindowRgn
MapWindowPoints
wsprintfA
OffsetRect
GetKeyboardLayout
DestroyWindow
ActivateKeyboardLayout
PostQuitMessage
GetMessageW
DispatchMessageW
PeekMessageW
CharNextW
TranslateMessage
PostMessageW
ScreenToClient
GetGUIThreadInfo
CryptEnumProvidersW
RegCreateKeyExW
ImpersonateLoggedOnUser
GetUserNameW
RevertToSelf
RegQueryValueExW
DuplicateTokenEx
LookupAccountSidW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
GetTokenInformation
OpenProcessToken
RegEnumKeyExW
DeregisterEventSource
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
CryptSetHashParam
CryptGetProvParam
CryptGetUserKey
CryptExportKey
CryptDecrypt
CryptCreateHash
CryptDestroyHash
CryptSignHashW
RegSetValueExW
CryptGenRandom
RegOpenKeyExW
RegCloseKey
RegQueryInfoKeyW
RegDeleteValueW
RegDeleteKeyW
CLSIDFromProgID
DoDragDrop
OleDuplicateData
ReleaseStgMedium
CreateStreamOnHGlobal
CLSIDFromString
CoTaskMemAlloc
CoUninitialize
CoInitialize
CoTaskMemRealloc
CoTaskMemFree
CoCreateInstance
OleLockRunning
SysFreeString
VariantClear
VariantInit
SysAllocString
VarUI4FromStr
PathFindFileNameW
PathRemoveFileSpecW
PathIsDirectoryW
PathIsSameRootW
SHDeleteKeyW
PathCombineW
PathFileExistsW
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
EnumProcessModules
GetModuleFileNameExW
GetProcessImageFileNameW
EnumProcesses
MiniDumpWriteDump
ObtainUserAgentString
SetBkMode
CreateCompatibleBitmap
GetObjectA
SetBkColor
ExtSelectClipRgn
SelectClipRgn
TextOutW
GdiFlush
CreatePatternBrush
GetTextExtentPointA
GetBitmapBits
LineTo
GetTextExtentPoint32W
GetClipBox
GetCharABCWidthsW
SetTextColor
SetStretchBltMode
StretchBlt
CreateSolidBrush
CreateRectRgnIndirect
CreatePenIndirect
CombineRgn
CreateDIBSection
PtInRegion
CreateRectRgn
CreateRoundRectRgn
SetWindowOrgEx
GetObjectW
GetTextMetricsW
PlayEnhMetaFile
GetEnhMetaFileHeader
CreateEnhMetaFileW
CloseEnhMetaFile
SelectObject
SaveDC
RestoreDC
Rectangle
RemoveFontMemResourceEx
AddFontMemResourceEx
GetStockObject
GetDeviceCaps
DeleteObject
DeleteDC
CreatePen
CreateFontIndirectW
CreateDIBitmap
CreateCompatibleDC
MoveToEx
SetBitmapBits
BitBlt
SHGetFileInfoW
CommandLineToArgvW
ShellExecuteExW
SHGetSpecialFolderPathW
SHGetFolderPathW
DragQueryFileW
ord17
InitCommonControlsEx
_TrackMouseEvent
GdiplusShutdown
GdipAlloc
GdipFree
GdipCreatePath
GdipDeletePath
GdipAddPathLine
ord1
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipCreatePen1
GdipDeletePen
GdipSetPenMode
GdipCreateFontFromLogfontA
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipCloneImage
GdipDisposeImage
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetSmoothingMode
GdipSetTextRenderingHint
GdiplusStartup
GdipDrawRectangleI
GdipDrawPath
GdipFillRectangleI
GdipDrawString
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipDrawImageRectI
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipFillPath
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipGetImageHeight
GdipGetImageWidth
GdipMeasureString
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipCloneStringFormat
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipCreateFontFromDC
GdipDeleteFont
GdipSetInterpolationMode
GdipImageSelectActiveFrame
ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
CertOpenSystemStoreW
CryptQueryObject
CertDuplicateCertificateContext
CertOpenStore
CertGetNameStringW
CertFreeCertificateContext
CertFindCertificateInStore
CertCloseStore
CryptMsgGetParam
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertGetCertificateContextProperty
CertEnumCertificatesInStore
CryptMsgClose
ntohs
getnameinfo
sendto
recvfrom
WSAEventSelect
WSAEnumNetworkEvents
WSACreateEvent
WSACloseEvent
gethostbyname
gethostname
WSAStartup
freeaddrinfo
getaddrinfo
select
__WSAFDIsSet
ioctlsocket
listen
htonl
accept
WSACleanup
WSAIoctl
WSASetLastError
socket
setsockopt
shutdown
htons
getsockopt
getsockname
getpeername
connect
closesocket
recv
send
WSAGetLastError
bind
ord147
ord219
ord46
ord301
ord145
ord133
ord79
ord142
ord167
ord127
ord27
ord26
ord117
ord41
ord208
ord216
ord14
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ