DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
VirusShare-0038e2aefbb6835291044caaf1fae6bb.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
VirusShare-0038e2aefbb6835291044caaf1fae6bb.dll
Resource
win10v2004-20231215-en
Target
VirusShare-0038e2aefbb6835291044caaf1fae6bb
Size
39KB
MD5
0038e2aefbb6835291044caaf1fae6bb
SHA1
af88ef0784f8d4ed3bce6358095b19450c8ab94f
SHA256
f2c84d4f50e0a2d1ca44b12b9e01a8dd460dd9c66a365a02b0885b6085109c12
SHA512
677f9611c3f2a3f3c7e853b7317a035aaf7b67d96b6ad3fa22a6018470ed9f5c36822c5622cd23034c7e3448cae43d4a65ca5eeceb942759ed1f9f6df4e1c009
SSDEEP
768:Y68qVoHBPzSPDBY7FqrrwK/hrXbfJ7q6UTuyEn8C6djV06eYdchGBkxoERmRhV8r:JBoHBP2PDBY7FqrrwK/hrXbfJ7q6UTuT
Checks for missing Authenticode signature.
| resource |
|---|
| VirusShare-0038e2aefbb6835291044caaf1fae6bb |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
SendMessageA
MessageBoxA
MessageBeep
GetForegroundWindow
GetClassNameA
FindWindowExA
wsprintfA
ShellExecuteA
lstrlenA
lstrcpynA
CloseHandle
CompareStringA
CreateFileA
CreateProcessA
CreateThread
DeleteFileA
GetModuleFileNameA
GetStartupInfoA
GetSystemDirectoryA
GetSystemTime
GetTickCount
GetWindowsDirectoryA
GlobalAddAtomA
GlobalFindAtomA
lstrcmpiA
LocalFree
ReadFile
SetFilePointer
Sleep
SystemTimeToFileTime
WriteFile
lstrcatA
lstrcmpA
LocalAlloc
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegCloseKey
FindFirstUrlCacheEntryA
FindNextUrlCacheEntryA
URLDownloadToFileA
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ