Static task
static1
Behavioral task
behavioral1
Sample
423Down.com.url
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral2
Sample
423Down.com.url
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
W10DigitalActivation.exe
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral4
Sample
W10DigitalActivation.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
W10DigitalActivation_x64.exe
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral6
Sample
W10DigitalActivation_x64.exe
Resource
win10v2004-20240220-en
windows10-2004-x64
Target
36a0ae62c0f6bc65c2eb3dfcf9a29919e35e44089c25ae708c9588412ffc5647
Size
5.9MB
MD5
273f5b1b2a6dafd31afaf608f673e5e2
SHA1
fc3a6624e950ab217297088541a1b28e4dfd6a32
SHA256
36a0ae62c0f6bc65c2eb3dfcf9a29919e35e44089c25ae708c9588412ffc5647
SHA512
42d24f7d74768cb6191b2b52edb5a0c3904052796b8172fabc75c65f515edd4b9a8c932e339041510c3b5d4cd2a7d03911f4663c4f29e3127812253ba5b8c17a
SSDEEP
98304:TvxuankaBR1zSS2e6Ob+1xhq21C4ScfSfNyLO2vJCPy/7peyfSVNSspSVfmb3:Tv0HiR1z3F6OqbhqUhFENz2N/UyOzpa8
| resource | yara_rule |
|---|---|
| static1/unpack001/W10DigitalActivation.exe | Nirsoft |
| static1/unpack001/W10DigitalActivation_x64.exe | Nirsoft |
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
memset
setlocale
memcpy
log10
_wfopen
fseek
fclose
wcslen
wcscpy
wcscat
wcscmp
memmove
memcmp
strlen
strcpy
strcat
_stricmp
strncpy
_CIfmod
fread
longjmp
_setjmp3
malloc
free
_wcsicmp
wcsncmp
wcsncpy
_snwprintf
tolower
floor
gmtime
localtime
mktime
_wcsnicmp
_itow
abs
sqrt
fmod
ftell
pow
??3@YAXPAX@Z
wcsstr
_wcsdup
frexp
modf
_CIpow
fopen
_errno
strerror
abort
atof
fflush
fwrite
exit
sprintf
__p__iob
fprintf
ferror
getenv
sscanf
_vsnwprintf
cos
sin
ceil
GetModuleHandleW
HeapCreate
GetEnvironmentVariableW
GetUserDefaultLangID
HeapDestroy
ExitProcess
SystemTimeToFileTime
LocalFileTimeToFileTime
FindResourceW
LoadResource
LockResource
SizeofResource
CreateToolhelp32Snapshot
CloseHandle
GetLogicalDriveStringsW
QueryDosDeviceW
FileTimeToLocalFileTime
FileTimeToSystemTime
ExpandEnvironmentStringsW
GetCurrentProcess
GetSystemDefaultLangID
MultiByteToWideChar
GetProcAddress
CreateRemoteThread
WaitForSingleObject
GetExitCodeThread
GetCurrentProcessId
OpenProcess
GetLastError
FormatMessageW
GetVolumeInformationW
FindFirstFileW
FindNextFileW
FindClose
WideCharToMultiByte
BeginUpdateResourceW
UpdateResourceW
EndUpdateResourceW
CreateProcessW
Process32FirstW
Process32NextW
Beep
CreateFileW
CreateSemaphoreW
DeviceIoControl
GetCommandLineW
GetComputerNameW
GetDateFormatW
GetDiskFreeSpaceExW
GetExitCodeProcess
GetFileTime
GetPrivateProfileStringW
GetShortPathNameW
GetSystemDirectoryW
GetSystemPowerStatus
GetTimeZoneInformation
GetUserDefaultLCID
GetWindowsDirectoryW
GlobalMemoryStatus
LocalFree
QueryPerformanceCounter
QueryPerformanceFrequency
SetComputerNameW
SetFileTime
SetLastError
SetSystemTime
SetVolumeLabelW
Sleep
TerminateProcess
WritePrivateProfileStringW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateThread
HeapAlloc
HeapFree
FreeLibrary
LoadLibraryW
GetCurrentThreadId
DuplicateHandle
CreatePipe
GetStdHandle
PeekNamedPipe
ReadFile
GetModuleFileNameW
SetEnvironmentVariableW
HeapReAlloc
GetFileSize
SetFilePointer
SetEndOfFile
WriteFile
TlsAlloc
TlsSetValue
GetTickCount
TlsGetValue
DeleteFileW
GetVersionExW
GetDriveTypeW
GetFileAttributesW
SetCurrentDirectoryW
CreateDirectoryW
SetFileAttributesW
RemoveDirectoryW
GetTempPathW
CopyFileW
MoveFileW
MulDiv
GetLocalTime
GlobalFree
GlobalAlloc
HeapSize
TlsFree
DeleteCriticalSection
InterlockedCompareExchange
InterlockedExchange
UnregisterWait
GetCurrentThread
RegisterWaitForSingleObject
OemToCharW
GetSysColor
GetDlgCtrlID
CallWindowProcW
SetWindowLongW
GetWindowLongW
GetClientRect
FillRect
GetClassNameW
GetWindow
SetWindowPos
InvalidateRect
SendMessageW
EnableWindow
IsWindowEnabled
RedrawWindow
SetClassLongW
GetClassLongW
GetWindowRect
OffsetRect
IsRectEmpty
MapWindowPoints
SubtractRect
IsWindow
GetParent
GetDC
ReleaseDC
BeginPaint
EndPaint
DefWindowProcW
GetAsyncKeyState
KillTimer
GetCursorPos
ScreenToClient
SetTimer
DrawTextW
FrameRect
InflateRect
FindWindowW
FindWindowExW
DrawFrameControl
EnumWindows
GetWindowThreadProcessId
GetForegroundWindow
SetCursorPos
AnimateWindow
AttachThreadInput
BlockInput
ChangeDisplaySettingsW
CharToOemW
CreateWindowExW
DrawMenuBar
EnableMenuItem
EnumDisplaySettingsW
ExitWindowsEx
FlashWindow
GetDesktopWindow
GetFocus
GetKeyState
GetLastInputInfo
GetSystemMenu
GetSystemMetrics
GetWindowTextW
LoadCursorW
LockWorkStation
MessageBeep
PostMessageW
RegisterHotKey
RemoveMenu
SetFocus
SetForegroundWindow
ShowWindow
UnregisterHotKey
UpdateWindow
WaitForInputIdle
keybd_event
mouse_event
LoadIconW
RegisterClassExW
MessageBoxW
IsWindowVisible
DestroyWindow
SystemParametersInfoW
SetWindowTextW
GetWindowTextLengthW
MoveWindow
GetIconInfo
ReleaseCapture
DrawStateW
SetCapture
SetRect
SetCursor
GetMessagePos
RemovePropW
GetPropW
SetPropW
SetScrollPos
GetWindowDC
ClientToScreen
GetSysColorBrush
EnumPropsExW
SetActiveWindow
DestroyIcon
IsZoomed
IsIconic
RegisterClassW
AdjustWindowRectEx
UnregisterClassW
CreateAcceleratorTableW
PeekMessageW
MsgWaitForMultipleObjects
GetMessageW
GetActiveWindow
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
DefFrameProcW
DestroyAcceleratorTable
EnumChildWindows
IsChild
RegisterWindowMessageW
DrawIconEx
CopyImage
CreateIconFromResourceEx
CreateIconFromResource
CharUpperW
CharLowerW
CreatePen
CreateSolidBrush
SelectObject
DeleteDC
DeleteObject
CreatePatternBrush
CreateRoundRectRgn
GetPixel
CreateCompatibleDC
SetBkMode
SetTextColor
SelectClipRgn
BitBlt
GetStockObject
RoundRect
SetDCBrushColor
SetBrushOrgEx
CreateDCW
CreateCompatibleBitmap
CreateFontIndirectW
GetObjectType
GetObjectW
GetTextExtentPoint32W
CreateRectRgnIndirect
TextOutW
MoveToEx
LineTo
ExcludeClipRect
SetBkColor
GetClipRgn
ExtSelectClipRgn
GetDeviceCaps
SelectPalette
RealizePalette
GetDIBits
SetPixelV
Rectangle
Ellipse
SetStretchBltMode
StretchDIBits
StretchBlt
SetROP2
ExtFloodFill
SetTextAlign
GetTextMetricsW
GdiGetBatchLimit
GdiSetBatchLimit
CreateDIBSection
CreateBitmap
SetPixel
CreateFontW
RegOpenKeyExW
RegOpenKeyW
RegConnectRegistryW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
LookupAccountNameW
IsValidSid
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
GetTokenInformation
LookupAccountSidW
GetSidSubAuthorityCount
GetSidSubAuthority
ChangeServiceConfigW
CloseServiceHandle
ControlService
CreateProcessAsUserW
CryptAcquireContextW
CryptCreateHash
CryptDeriveKey
CryptDestroyHash
CryptDestroyKey
CryptEncrypt
CryptHashData
CryptReleaseContext
DuplicateTokenEx
GetLengthSid
GetSecurityInfo
GetUserNameW
ImpersonateLoggedOnUser
LogonUserW
OpenSCManagerW
OpenServiceW
QueryServiceStatus
RegEnumValueW
RevertToSelf
SetSecurityInfo
SetTokenInformation
StartServiceW
SafeArrayGetDim
SafeArrayGetUBound
SafeArrayGetElement
CoInitialize
CoCreateInstance
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateGuid
StringFromGUID2
RevokeDragDrop
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ExtractIconExW
ExtractIconW
ord66
ord524
SHAddToRecentDocs
SHFileOperationW
SHFormatDrive
SHGetFileInfoW
ShellAboutW
Shell_NotifyIconW
ShellExecuteExW
WSAStartup
gethostbyname
WSACleanup
gethostbyaddr
inet_addr
closesocket
gethostname
htons
select
__WSAFDIsSet
ioctlsocket
recvfrom
socket
connect
recv
bind
timeBeginPeriod
GdipDeleteFont
GdipDeleteGraphics
GdipDeletePath
GdipDeleteMatrix
GdipDeletePen
GdipDeleteStringFormat
GdipFree
GdipGetDpiX
GdipGetDpiY
IcmpCloseHandle
IcmpCreateFile
IcmpSendEcho
MakeSureDirectoryPathExists
GetAdaptersInfo
GetNetworkParams
ord45
ord70
NetApiBufferFree
NetLocalGroupAdd
NetLocalGroupDel
NetLocalGroupEnum
NetUserDel
NetUserGetInfo
NetUserSetInfo
SetupIterateCabinetW
URLDownloadToFileW
UrlMkSetSessionOption
GetDefaultUserProfileDirectoryW
SetWindowTheme
DeleteUrlCacheEntryW
InternetCloseHandle
InternetGetConnectedState
InternetOpenUrlW
InternetOpenW
InternetReadFile
UnlockUrlCacheEntryFileW
ClosePrinter
DeletePrinter
OpenPrinterW
SetPrinterW
InitCommonControlsEx
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon
ImageList_Remove
ImageList_AddMasked
ImageList_Destroy
ImageList_Create
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
memset
setlocale
memcpy
log10
_wfopen
fseek
fclose
wcslen
wcscpy
wcscat
wcscmp
memmove
memcmp
strlen
strcpy
strcat
_stricmp
strncpy
fmod
fread
longjmp
setjmp
malloc
free
_wcsicmp
wcsncmp
wcsncpy
_snwprintf
tolower
floor
_gmtime64
_localtime64
_mktime64
_wcsnicmp
_itow
sqrtf
abs
fmodf
ftell
pow
??3@YAXPEAX@Z
wcsstr
_wcsdup
frexp
modf
fopen
_errno
strerror
abort
atof
fflush
fwrite
exit
sprintf
__iob_func
fprintf
ferror
getenv
sscanf
_vsnwprintf
sinf
cosf
ceil
GetModuleHandleW
HeapCreate
GetEnvironmentVariableW
GetUserDefaultLangID
HeapDestroy
ExitProcess
SystemTimeToFileTime
LocalFileTimeToFileTime
FindResourceW
LoadResource
LockResource
SizeofResource
CreateToolhelp32Snapshot
CloseHandle
GetLogicalDriveStringsW
QueryDosDeviceW
FileTimeToLocalFileTime
FileTimeToSystemTime
ExpandEnvironmentStringsW
GetCurrentProcess
GetSystemDefaultLangID
MultiByteToWideChar
GetProcAddress
CreateRemoteThread
WaitForSingleObject
GetExitCodeThread
GetCurrentProcessId
OpenProcess
GetLastError
FormatMessageW
GetVolumeInformationW
FindFirstFileW
FindNextFileW
FindClose
WideCharToMultiByte
BeginUpdateResourceW
UpdateResourceW
EndUpdateResourceW
CreateProcessW
Process32FirstW
Process32NextW
Beep
CreateFileW
CreateSemaphoreW
DeviceIoControl
GetCommandLineW
GetComputerNameW
GetDateFormatW
GetDiskFreeSpaceExW
GetExitCodeProcess
GetFileTime
GetPrivateProfileStringW
GetShortPathNameW
GetSystemDirectoryW
GetSystemPowerStatus
GetTimeZoneInformation
GetUserDefaultLCID
GetWindowsDirectoryW
GlobalMemoryStatus
LocalFree
QueryPerformanceCounter
QueryPerformanceFrequency
RtlZeroMemory
SetComputerNameW
SetFileTime
SetLastError
SetSystemTime
SetVolumeLabelW
Sleep
TerminateProcess
WritePrivateProfileStringW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateThread
HeapAlloc
HeapFree
FreeLibrary
LoadLibraryW
GetCurrentThreadId
DuplicateHandle
CreatePipe
GetStdHandle
PeekNamedPipe
ReadFile
GetModuleFileNameW
SetEnvironmentVariableW
HeapReAlloc
GetFileSize
SetFilePointer
SetEndOfFile
WriteFile
TlsAlloc
TlsSetValue
GetTickCount
TlsGetValue
DeleteFileW
GetVersionExW
GetDriveTypeW
GetFileAttributesW
SetCurrentDirectoryW
CreateDirectoryW
SetFileAttributesW
RemoveDirectoryW
GetTempPathW
CopyFileW
MoveFileW
MulDiv
GetLocalTime
GlobalFree
GlobalAlloc
HeapSize
TlsFree
DeleteCriticalSection
UnregisterWait
GetCurrentThread
RegisterWaitForSingleObject
OemToCharW
GetSysColor
GetDlgCtrlID
CallWindowProcW
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
FillRect
GetClassNameW
GetWindow
SetWindowPos
InvalidateRect
SendMessageW
EnableWindow
IsWindowEnabled
RedrawWindow
SetClassLongPtrW
GetClassLongPtrW
GetWindowRect
OffsetRect
IsRectEmpty
MapWindowPoints
SubtractRect
IsWindow
GetParent
GetDC
ReleaseDC
BeginPaint
EndPaint
DefWindowProcW
GetAsyncKeyState
KillTimer
GetCursorPos
ScreenToClient
SetTimer
DrawTextW
FrameRect
InflateRect
FindWindowW
FindWindowExW
DrawFrameControl
EnumWindows
GetWindowThreadProcessId
GetForegroundWindow
SetCursorPos
AnimateWindow
AttachThreadInput
BlockInput
ChangeDisplaySettingsW
CharToOemW
CreateWindowExW
DrawMenuBar
EnableMenuItem
EnumDisplaySettingsW
ExitWindowsEx
FlashWindow
GetDesktopWindow
GetFocus
GetKeyState
GetLastInputInfo
GetSystemMenu
GetSystemMetrics
GetWindowTextW
LoadCursorW
LockWorkStation
MessageBeep
PostMessageW
RegisterHotKey
RemoveMenu
SetFocus
SetForegroundWindow
ShowWindow
UnregisterHotKey
UpdateWindow
WaitForInputIdle
keybd_event
mouse_event
LoadIconW
RegisterClassExW
MessageBoxW
IsWindowVisible
DestroyWindow
SystemParametersInfoW
SetWindowTextW
GetWindowTextLengthW
MoveWindow
GetIconInfo
ReleaseCapture
DrawStateW
SetCapture
SetRect
SetCursor
GetMessagePos
RemovePropW
GetPropW
SetPropW
SetScrollPos
GetWindowDC
ClientToScreen
GetSysColorBrush
EnumPropsExW
SetActiveWindow
DestroyIcon
IsZoomed
IsIconic
RegisterClassW
AdjustWindowRectEx
UnregisterClassW
CreateAcceleratorTableW
PeekMessageW
MsgWaitForMultipleObjects
GetMessageW
GetActiveWindow
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
DefFrameProcW
DestroyAcceleratorTable
EnumChildWindows
IsChild
RegisterWindowMessageW
DrawIconEx
CopyImage
CreateIconFromResourceEx
CreateIconFromResource
CharUpperW
CharLowerW
CreatePen
CreateSolidBrush
SelectObject
DeleteDC
DeleteObject
CreatePatternBrush
CreateRoundRectRgn
GetPixel
CreateCompatibleDC
SetBkMode
SetTextColor
SelectClipRgn
BitBlt
GetStockObject
RoundRect
SetDCBrushColor
SetBrushOrgEx
CreateDCW
CreateCompatibleBitmap
CreateFontIndirectW
GetObjectType
GetObjectW
GetTextExtentPoint32W
CreateRectRgnIndirect
TextOutW
MoveToEx
LineTo
ExcludeClipRect
SetBkColor
GetClipRgn
ExtSelectClipRgn
GetDeviceCaps
SelectPalette
RealizePalette
GetDIBits
SetPixelV
Rectangle
Ellipse
SetStretchBltMode
StretchDIBits
StretchBlt
SetROP2
ExtFloodFill
SetTextAlign
GetTextMetricsW
GdiGetBatchLimit
GdiSetBatchLimit
CreateDIBSection
CreateBitmap
SetPixel
CreateFontW
RegOpenKeyExW
RegOpenKeyW
RegConnectRegistryW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
LookupAccountNameW
IsValidSid
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
GetTokenInformation
LookupAccountSidW
GetSidSubAuthorityCount
GetSidSubAuthority
ChangeServiceConfigW
CloseServiceHandle
ControlService
CreateProcessAsUserW
CryptAcquireContextW
CryptCreateHash
CryptDeriveKey
CryptDestroyHash
CryptDestroyKey
CryptEncrypt
CryptHashData
CryptReleaseContext
DuplicateTokenEx
GetLengthSid
GetSecurityInfo
GetUserNameW
ImpersonateLoggedOnUser
LogonUserW
OpenSCManagerW
OpenServiceW
QueryServiceStatus
RegEnumValueW
RevertToSelf
SetSecurityInfo
SetTokenInformation
StartServiceW
SafeArrayGetDim
SafeArrayGetUBound
SafeArrayGetElement
CoInitialize
CoCreateInstance
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateGuid
StringFromGUID2
RevokeDragDrop
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ExtractIconExW
ExtractIconW
ord66
ord524
SHAddToRecentDocs
SHFileOperationW
SHFormatDrive
SHGetFileInfoW
ShellAboutW
Shell_NotifyIconW
ShellExecuteExW
WSAStartup
gethostbyname
WSACleanup
gethostbyaddr
inet_addr
closesocket
gethostname
htons
select
__WSAFDIsSet
ioctlsocket
recvfrom
socket
connect
recv
bind
timeBeginPeriod
GdipDeleteFont
GdipDeleteGraphics
GdipDeletePath
GdipDeleteMatrix
GdipDeletePen
GdipDeleteStringFormat
GdipFree
GdipGetDpiX
GdipGetDpiY
IcmpCloseHandle
IcmpCreateFile
IcmpSendEcho
MakeSureDirectoryPathExists
GetAdaptersInfo
GetNetworkParams
ord45
ord70
NetApiBufferFree
NetLocalGroupAdd
NetLocalGroupDel
NetLocalGroupEnum
NetUserDel
NetUserGetInfo
NetUserSetInfo
SetupIterateCabinetW
URLDownloadToFileW
UrlMkSetSessionOption
GetDefaultUserProfileDirectoryW
SetWindowTheme
DeleteUrlCacheEntryW
InternetCloseHandle
InternetGetConnectedState
InternetOpenUrlW
InternetOpenW
InternetReadFile
UnlockUrlCacheEntryFileW
ClosePrinter
DeletePrinter
OpenPrinterW
SetPrinterW
InitCommonControlsEx
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon
ImageList_Remove
ImageList_AddMasked
ImageList_Destroy
ImageList_Create
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ