Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
sG.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
sG.exe
Resource
win10v2004-20231215-en
Target
sG.exe
Size
4.4MB
MD5
930b0cb37d4332364f0686547037ada4
SHA1
29b71f91a661c6a62cd64cd77db4c807f23c49ac
SHA256
b873befd3937949e2ba52a32378b94d0d69a16ec603717eaeff5376c74cde0b1
SHA512
a841ee01f483469047ed2a0d171f298c7ac65a39c20e8c8c828f956f910a23d1c6f3740b6a0b796b40f9c75e863324bb8bd80d8e50ba0515a08544b833ec6675
SSDEEP
49152:rOCxSImaFXmyp7U5OK91KLQBeAnUJN5pdeBv9MdoDCwYc:vUAFXmyxe1KLQBeivKd2CwJ
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
E:\cpp\Notepad3\Bin\Debug_x86_v143\grepWinNP3.pdb
StrCmpLogicalW
SHGetValueW
AssocQueryStringW
PathCompactPathExW
StrFormatByteSizeW
SHDeleteKeyW
PathRemoveFileSpecW
PathAppendW
PathIsURLW
PathIsRootW
PathIsRelativeW
PathCanonicalizeW
PathIsDirectoryW
PathFileExistsW
SHSetValueW
PathRelativePathToW
SHAutoComplete
BufferedPaintSetAlpha
EndBufferedPaint
BeginBufferedPaint
SetWindowTheme
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeBackgroundContentRect
GetThemeColor
GetThemeInt
lstrlenW
LoadResource
LockResource
SizeofResource
FindResourceW
MultiByteToWideChar
GetCurrentThreadId
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
GetFullPathNameW
GetLongPathNameW
GetShortPathNameW
GetTempFileNameW
GetTempPathW
CloseHandle
Sleep
GetModuleFileNameW
SetCurrentDirectoryW
GetTickCount64
FormatMessageW
GetWindowsDirectoryW
GetCurrentProcess
DeleteFileW
GetFileSizeEx
GetFileTime
ReadFile
SetFileTime
WriteFile
GlobalMemoryStatusEx
WideCharToMultiByte
FindResourceExW
FlushFileBuffers
GetFileSize
SetEndOfFile
SetFilePointer
GetCommandLineW
SetErrorMode
CreateMutexW
GetSystemDirectoryW
SetDllDirectoryW
SystemTimeToFileTime
LoadLibraryA
GetStringTypeExW
LCMapStringW
GetUserDefaultLCID
ExpandEnvironmentStringsW
CompareFileTime
CreateFileA
GetFileAttributesW
GetFileInformationByHandle
SetFileAttributesW
OutputDebugStringW
QueryPerformanceCounter
QueryPerformanceFrequency
CreateThread
CreateProcessW
GetSystemTime
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
CopyFileW
MoveFileExA
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
LCMapStringA
GetStringTypeExA
lstrcpyW
ReadConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
EnumSystemLocalesW
IsValidLocale
GetLocaleInfoW
CompareStringW
GetProcessHeap
HeapQueryInformation
HeapSize
HeapReAlloc
HeapFree
SetConsoleCtrlHandler
GetCurrentThread
FreeLibraryAndExitThread
ResumeThread
ExitThread
ExitProcess
SetEnvironmentVariableW
GlobalAddAtomW
HeapAlloc
WriteConsoleW
GetFileType
GetStdHandle
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
CreateFileMappingA
GetModuleHandleA
MapViewOfFileEx
GetSystemInfo
InitializeSListHead
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
CompareStringEx
CreateSymbolicLinkW
GetFileInformationByHandleEx
CloseThreadpoolWait
SetThreadpoolWait
CreateThreadpoolWait
CloseThreadpoolTimer
WaitForThreadpoolTimerCallbacks
SetThreadpoolTimer
CreateThreadpoolTimer
GetSystemTimeAsFileTime
GetCurrentProcessorNumber
FlushProcessWriteBuffers
CreateSemaphoreExW
CreateEventExW
InitOnceExecuteOnce
SetFileInformationByHandle
LCMapStringEx
DecodePointer
EncodePointer
GetLocaleInfoEx
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
IsProcessorFeaturePresent
RtlCaptureStackBackTrace
GetModuleHandleExW
CloseThreadpoolWork
SubmitThreadpoolWork
CreateThreadpoolWork
FreeLibraryWhenCallbackReturns
InitOnceComplete
InitOnceBeginInitialize
SleepConditionVariableSRW
WakeAllConditionVariable
WakeConditionVariable
GetNativeSystemInfo
GetExitCodeThread
SwitchToThread
WaitForSingleObjectEx
RaiseException
TryAcquireSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
GetStringTypeW
FormatMessageA
GlobalLock
GlobalUnlock
GlobalAlloc
FindNextFileW
FindFirstFileExW
FindFirstFileW
FindClose
lstrcpynW
MulDiv
GetModuleHandleW
VerifyVersionInfoW
LoadLibraryW
GetProcAddress
FreeLibrary
SetLastError
GetLastError
VerSetConditionMask
LocalFree
LocalAlloc
GlobalFree
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
DeleteAtom
HeapValidate
GetSysColor
LoadIconA
RedrawWindow
GetDCEx
AppendMenuW
InsertMenuW
CheckMenuItem
DestroyMenu
CreatePopupMenu
GetKeyState
SendDlgItemMessageW
DrawFocusRect
SendMessageW
GetFocus
GetCapture
GetSystemMetrics
DrawTextW
GetDC
ReleaseDC
BeginPaint
EndPaint
InvalidateRgn
GetWindowTextW
GetWindowTextLengthW
GetClientRect
CheckDlgButton
CreateWindowExA
PostMessageW
GetWindowRect
GetCursorPos
ScreenToClient
MapWindowPoints
FrameRect
InflateRect
IntersectRect
PtInRect
GetWindowLongW
GetParent
GetClassNameW
SystemParametersInfoW
GetMessageW
TranslateMessage
DispatchMessageW
GetMessagePos
PostQuitMessage
CreateWindowExW
DestroyWindow
ShowWindow
SetLayeredWindowAttributes
MoveWindow
SetWindowPos
GetWindowPlacement
BringWindowToTop
CreateDialogParamW
CreateDialogIndirectParamW
DialogBoxParamW
DialogBoxIndirectParamW
LoadStringA
KillTimer
SetTimer
IsDlgButtonChecked
EnumWindows
RegisterWindowMessageW
ClientToScreen
TrackPopupMenu
EndDialog
GetDlgItem
GetDlgItemTextW
DefDlgProcW
GetSubMenu
LoadMenuW
LoadStringW
DrawIconEx
GetSysColorBrush
SetDlgItemTextW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
GetMonitorInfoW
EnumThreadWindows
EnumChildWindows
SetWindowTextW
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuItemCount
GetSystemMenu
CloseWindow
LoadCursorW
CheckRadioButton
SetCursor
ReleaseCapture
SetCapture
RemovePropW
GetPropW
SetPropW
RegisterClipboardFormatW
InvalidateRect
SetWindowRgn
IsZoomed
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
FindWindowExW
CallWindowProcW
SetWindowPlacement
RegisterClassExW
DefWindowProcW
IsDialogMessageW
LoadImageW
GetDesktopWindow
SetWindowLongW
OffsetRect
CopyRect
SetCursorPos
MessageBoxW
GetWindowDC
SetForegroundWindow
TranslateAcceleratorW
LoadAcceleratorsW
EnableWindow
SetFocus
SetBkMode
GetObjectW
CreateSolidBrush
EnumFontsW
SetTextColor
DeleteObject
SetRectRgn
CreateRectRgn
GetStockObject
PatBlt
SelectObject
SetPixel
SetBkColor
CreateRectRgnIndirect
ExtTextOutW
CreateFontIndirectW
GetDeviceCaps
CombineRgn
GetOpenFileNameW
CryptAcquireContextW
CryptReleaseContext
RegOpenKeyW
GetTokenInformation
OpenProcessToken
RegSetValueExW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
SHBrowseForFolderW
SHGetKnownFolderPath
ShellExecuteExW
ShellExecuteW
SHGetFileInfoW
SHGetFolderPathW
CommandLineToArgvW
DragQueryFileW
SHGetDesktopFolder
ord701
SHCreateItemFromParsingName
SHGetMalloc
SHGetPathFromIDListW
CoTaskMemAlloc
DoDragDrop
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CoInitialize
OleInitialize
CoInitializeEx
RegisterDragDrop
OleRun
CoCreateInstance
CoTaskMemFree
OleUninitialize
CreateErrorInfo
SysFreeString
GetErrorInfo
VariantInit
VariantClear
VariantChangeType
SetErrorInfo
SysAllocString
GdipCloneImage
GdipSetPenDashStyle
GdipDeletePen
GdipCreatePen1
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipAddPathArcI
GdipClosePathFigure
GdipStartPathFigure
GdipResetPath
GdipDeletePath
GdipCreatePath
GdipDisposeImage
GdiplusStartup
GdipFree
GdipAlloc
GdipDrawCachedBitmap
GdipDeleteCachedBitmap
GdipCreateCachedBitmap
GdipFillRectangleI
GdiplusShutdown
GdipDrawPath
GdipDrawRectangleI
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromHICON
GdipCreateBitmapFromHBITMAP
ImageList_GetImageInfo
ord410
ord412
ord381
ord413
InitCommonControlsEx
ImageList_GetImageCount
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
CryptStringToBinaryA
CryptStringToBinaryW
CryptBinaryToStringA
CryptBinaryToStringW
CryptProtectData
CryptUnprotectData
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ