DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
Static task
static1
Behavioral task
behavioral1
Sample
8fb196fb857f96e1b9ea60f13e213774.dll
Resource
win7-20231215-en
Target
8fb196fb857f96e1b9ea60f13e213774
Size
64KB
MD5
8fb196fb857f96e1b9ea60f13e213774
SHA1
7dc6132df05b748a74b028be85f542a05837e7fc
SHA256
d9268821d11021e9f6a840132c645085c8a20321b13e301309d8d498fbf3018c
SHA512
5904dcf0cacce79c58b7773539c6f2bde7430da392f437c4794cda372591ab7643f8c7daf1f8b4bbe5038e04457bd74d2804054887a9a5b7f643d4234b33cdca
SSDEEP
384:A5bTbFWsxly1ody8y3EpkLhdgdS/asc0FMV3X9o/00SjT++1AQOOjNeLNek+vD2y:4bQSyo6mGpmuSjTx8N
Checks for missing Authenticode signature.
| resource |
|---|
| 8fb196fb857f96e1b9ea60f13e213774 |
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
InterlockedIncrement
EnterCriticalSection
InterlockedDecrement
lstrlenW
LeaveCriticalSection
HeapFree
WinExec
DeleteCriticalSection
InitializeCriticalSection
HeapCreate
GetSystemInfo
HeapAlloc
DisableThreadLibraryCalls
FindFirstFileA
WaitForSingleObject
GetWindowsDirectoryA
CreateDirectoryA
DebugBreak
wsprintfA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
SysFreeString
SysStringLen
LoadRegTypeLi
URLDownloadToFileA
ord18
ord15
ord16
ord21
ord32
ord57
ord58
ord30
ord23
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ