Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Static task
static1
Behavioral task
behavioral1
Sample
amdcleanuputility.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
amdcleanuputility.exe
Resource
win10v2004-20240220-en
Target
amdcleanuputility.exe
Size
2.2MB
MD5
870479088a7b8641c8d39e8c48ebf871
SHA1
6c6353623e061917488e60342a4db7b4d7426970
SHA256
84197986b057d8ae3029d3a9f1a43fb5c6e1213bc0a99175ee8c3807367413f7
SHA512
bcf78c99888a32c563548993c12e804f16ba7d981dd108497e34c79f97c8c7eb3c85dc5778d46eba294220f138df95594c427fc6a60f3241375f12da322c3a1b
SSDEEP
24576:mudRwrUoMRqypMmsK1iIhgHm3ozbs5YJ47fDKq2KL2VUJH64VBGOlQr7z2N7:mu8zXG36w57fDKq2KL22Ja4VB9efz2h
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
c:\constructicon\builds\gfx\six\22.40\install\Neoma\InstallNeoma\IN_Apps\Bin\Config\x64\AMDCleanupUtility.pdb
PathAppendW
PathIsDirectoryW
PathFindFileNameW
PathFileExistsW
PathGetDriveNumberW
CM_Get_DevNode_Status
CM_Get_Parent
SetupFindFirstLineW
SetupDiSetDeviceInstallParamsW
SetupOpenInfFileW
SetupDiCallClassInstaller
CM_Get_Child
CM_Get_Device_IDW
SetupGetStringFieldW
SetupDiBuildDriverInfoList
SetupDiSetClassInstallParamsW
CM_Get_Sibling
SetupDiGetDriverInfoDetailW
SetupDiSetSelectedDriverW
SetupDiEnumDriverInfoW
SetupDiGetDeviceInstallParamsW
CM_Reenumerate_DevNode
CM_Locate_DevNodeW
SetupFindNextLine
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiRemoveDevice
SetupScanFileQueueW
SetupDiGetDeviceRegistryPropertyW
SetupOpenFileQueue
SetupCloseInfFile
SetupDiDestroyDriverInfoList
SetupUninstallOEMInfW
SetupCloseFileQueue
CM_Get_Device_ID_Size
ord70
ord88
ord141
ord205
DiUninstallDevice
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
RtlPcToFileHeader
InterlockedPushEntrySList
RtlUnwindEx
GetStartupInfoW
HeapFree
InitializeCriticalSectionEx
HeapSize
GetLastError
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
HeapDestroy
DeleteCriticalSection
GetProcessHeap
SizeofResource
FindFirstFileW
FindNextFileW
lstrlenW
TerminateProcess
FindClose
WaitForSingleObject
CreateFileW
GetFileAttributesW
GetSystemDirectoryW
UnmapViewOfFile
SetFileAttributesW
Sleep
FormatMessageW
LockResource
DeleteFileW
CloseHandle
LoadResource
FindResourceW
GetWindowsDirectoryW
GetProcAddress
LocalFree
MoveFileExW
VerSetConditionMask
CreateProcessW
GetModuleHandleW
VerifyVersionInfoW
CreateFileMappingW
MapViewOfFile
GetTickCount
GetExitCodeProcess
CreateDirectoryW
GetTempPathW
GetCurrentThreadId
OutputDebugStringW
GetCurrentProcessId
ReadFile
LoadLibraryExW
GetCommandLineW
GetCurrentProcess
GetStdHandle
GetModuleFileNameW
GetUserDefaultLocaleName
GetUserDefaultUILanguage
CreatePipe
PeekNamedPipe
CreateMutexW
MultiByteToWideChar
LoadLibraryW
FindResourceExW
FreeLibrary
CopyFileW
MulDiv
GetTimeFormatEx
GetDateFormatEx
FileTimeToSystemTime
InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
IsDebuggerPresent
GetCPInfo
CompareStringEx
GetSystemTimeAsFileTime
QueryPerformanceCounter
LCMapStringEx
EncodePointer
TryEnterCriticalSection
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetDriveTypeW
GetFileType
SystemTimeToTzSpecificLocalTime
GetFileSizeEx
SetStdHandle
WriteFile
GetACP
RtlUnwind
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetTimeZoneInformation
FlushFileBuffers
GetConsoleCP
GetConsoleMode
ReadConsoleW
IsValidCodePage
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
WriteConsoleW
SetHandleInformation
LeaveCriticalSection
EnterCriticalSection
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
GetExitCodeThread
WaitForSingleObjectEx
WideCharToMultiByte
GetFileInformationByHandleEx
AreFileApisANSI
SetFilePointerEx
SetFileInformationByHandle
SetEndOfFile
GetFullPathNameW
GetFileAttributesExW
FindFirstFileExW
GetCurrentDirectoryW
FormatMessageA
GetStringTypeW
PostQuitMessage
GetDesktopWindow
GetDlgItem
DialogBoxParamW
ReleaseCapture
InvalidateRect
ReleaseDC
BeginPaint
EndPaint
GetClientRect
PostThreadMessageW
GetWindowLongW
GetMessageW
CreateDialogParamW
DefWindowProcW
GetWindowRect
DestroyWindow
GetDC
SetWindowPos
MessageBoxW
CreateWindowExW
SendMessageW
SetWindowLongW
SetCursor
LoadCursorW
LoadIconW
TranslateMessage
TranslateAcceleratorW
LoadBitmapW
PeekMessageW
ExitWindowsEx
CopyRect
IsDialogMessageW
SetTimer
DispatchMessageW
OffsetRect
ShowWindow
LoadStringW
LoadAcceleratorsW
RegisterClassExW
SetWindowTextW
GetSystemMetrics
EndDialog
GetParent
SelectObject
CreateCompatibleDC
StretchBlt
CreateFontW
GetStockObject
GetDeviceCaps
SetTextColor
SetBkMode
GetObjectW
DeleteObject
RegOpenKeyW
LookupPrivilegeValueW
SetSecurityDescriptorDacl
AdjustTokenPrivileges
SetSecurityDescriptorOwner
SetEntriesInAclW
CreateWellKnownSid
RegCreateKeyExW
RegDeleteTreeW
RegSetValueExW
OpenProcessToken
InitializeSecurityDescriptor
RegGetValueW
SetSecurityDescriptorGroup
DeleteService
RegCloseKey
RegQueryInfoKeyW
CloseServiceHandle
OpenSCManagerW
RegDeleteKeyW
RegDeleteKeyValueW
ControlService
RegEnumKeyExW
RegOpenKeyExW
RegDeleteValueW
OpenServiceW
QueryServiceStatusEx
RegEnumValueW
RegQueryValueExW
FindExecutableW
SHGetMalloc
SHGetFolderPathW
SHFileOperationW
ShellExecuteExW
SHGetPathFromIDListW
SHGetFolderLocation
ShellExecuteW
SHGetSpecialFolderPathW
CommandLineToArgvW
CoInitialize
CoCreateInstance
CoSetProxyBlanket
CoInitializeSecurity
CoInitializeEx
IIDFromString
CoUninitialize
SysFreeString
SysAllocString
VariantClear
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ