Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
ccdbb96947b1d80bff7ee3f407b6c652.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
ccdbb96947b1d80bff7ee3f407b6c652.exe
Resource
win10v2004-20231215-en
Target
ccdbb96947b1d80bff7ee3f407b6c652
Size
1023KB
MD5
ccdbb96947b1d80bff7ee3f407b6c652
SHA1
5c5c5ff3d5b72eecc50276ac84a720b6decc060d
SHA256
94c53e6c7b2072e0a43760278b90abfa9dd1abcb9dea845cfca88fab9538ea7f
SHA512
5f9721cf209cc1eb86cae992cca80bfea6fb41efe86646012e2362bfc4504a6d938f7db838c07cf0f856d47298a1474122e8a3807dedac5df755ee6d6b30c1c5
SSDEEP
24576:SlF3ow4Zggv7fWA6SEn4MTEUwhmxYDJ3I4rKp6:uYB/TfWos4MTxE5W6
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
K:\liebao_src_pool\release.branch_73\src_import\build\Release\DesktopTips.pdb
GetModuleFileNameExW
SetLastError
MulDiv
lstrcmpW
VirtualAllocEx
VirtualFreeEx
ReadProcessMemory
WriteProcessMemory
TerminateProcess
WaitForSingleObject
CreateThread
Sleep
CreateDirectoryW
FindClose
LockResource
GetLongPathNameW
FindResourceExW
GetFullPathNameW
GetCurrentThread
GetTempFileNameW
GetCommandLineW
ReplaceFileW
GetCurrentDirectoryW
MoveFileW
RemoveDirectoryW
GetFileAttributesExW
GetVolumeInformationW
InterlockedExchangeAdd
IsDebuggerPresent
SetEndOfFile
SetFilePointerEx
FlushFileBuffers
GetFileInformationByHandle
InterlockedCompareExchange
SetEvent
ResetEvent
CreateEventW
WaitForMultipleObjects
CreateMutexW
VirtualQuery
DuplicateHandle
ReleaseMutex
GetStdHandle
OutputDebugStringA
QueryPerformanceCounter
GetSystemTimeAsFileTime
GlobalUnlock
GetCurrentProcess
TlsGetValue
TlsSetValue
TlsAlloc
TlsFree
GetQueuedCompletionStatus
InterlockedExchange
PostQueuedCompletionStatus
CreateIoCompletionPort
GetNativeSystemInfo
GetModuleHandleExW
GetModuleHandleExA
RegisterWaitForSingleObject
UnregisterWaitEx
GetUserDefaultLangID
ConnectNamedPipe
CreateNamedPipeW
CancelIo
GetNamedPipeInfo
InitializeCriticalSection
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateFileMappingA
GetModuleFileNameA
CreateMutexA
GetTempPathA
DeleteFileA
GetComputerNameA
GetLocalTime
GetDiskFreeSpaceExW
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
SetEnvironmentVariableA
GetDriveTypeW
WriteConsoleW
GetTimeZoneInformation
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
GetACP
IsValidCodePage
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetFileType
SetStdHandle
AreFileApisANSI
ExitProcess
ExitThread
VirtualAlloc
IsProcessorFeaturePresent
RtlUnwind
EncodePointer
GetStringTypeW
FlushInstructionCache
GlobalLock
GlobalAlloc
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
WideCharToMultiByte
GetVersionExW
FindNextFileW
FindFirstFileW
GetFileAttributesW
OutputDebugStringW
GetStartupInfoW
CreateProcessW
GetTickCount
GetExitCodeProcess
GetCurrentProcessId
OpenProcess
LocalFree
MultiByteToWideChar
FindResourceW
GetModuleFileNameW
LoadLibraryExW
lstrcmpiW
SizeofResource
LoadResource
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
GetSystemDirectoryW
LoadLibraryW
lstrlenW
FreeLibrary
DeleteFileW
CreateFileW
GetModuleHandleW
OpenFileMappingW
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
CloseHandle
SetFilePointer
ReadFile
WriteFile
GetFileSize
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
GetCurrentThreadId
RaiseException
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetProcAddress
DecodePointer
QueryPerformanceFrequency
VirtualFree
FindWindowW
FindWindowA
GetAncestor
wsprintfW
UnregisterClassW
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
DefWindowProcW
DestroyWindow
GetDesktopWindow
MonitorFromWindow
GetMonitorInfoW
ShowWindow
AnimateWindow
SetLayeredWindowAttributes
MoveWindow
PtInRect
SetRect
UpdateWindow
PostMessageW
LoadCursorW
GetWindow
FillRect
GetSysColor
ScreenToClient
ClientToScreen
GetClientRect
RedrawWindow
InvalidateRgn
MessageBoxW
MsgWaitForMultipleObjectsEx
CallMsgFilterW
WaitMessage
KillTimer
PostQuitMessage
SetTimer
SetCursor
MapWindowPoints
LoadImageW
GetWindowDC
SetWindowTextW
GetWindowPlacement
OffsetRect
UpdateLayeredWindow
CreateDialogParamW
CharNextW
InvalidateRect
EndPaint
BeginPaint
SetWindowPos
IsIconic
IsZoomed
MsgWaitForMultipleObjects
GetSystemMetrics
GetForegroundWindow
GetWindowTextW
GetWindowTextLengthW
GetWindowRect
GetCursorPos
WindowFromPoint
GetWindowLongW
SetWindowLongW
GetParent
SetParent
FindWindowExW
GetClassNameW
GetWindowThreadProcessId
SendMessageW
GetQueueStatus
CallWindowProcW
RegisterClassExW
GetClassInfoExW
CreateWindowExW
IsWindow
IsChild
GetDlgItem
SetFocus
GetFocus
SetCapture
ReleaseCapture
CreateAcceleratorTableW
DestroyAcceleratorTable
GetDC
ReleaseDC
DeleteDC
DeleteObject
GetDeviceCaps
CreateSolidBrush
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
SelectObject
GetObjectW
GetObjectA
CreateDIBSection
BitBlt
RegQueryValueExW
RegOpenKeyW
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
SHGetSpecialFolderPathW
ShellExecuteW
SHFileOperationW
CommandLineToArgvW
CoInitialize
CoUninitialize
CoCreateGuid
CoInitializeEx
CoGetMalloc
CreateStreamOnHGlobal
OleLockRunning
StringFromGUID2
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
SysStringLen
LoadTypeLi
LoadRegTypeLi
VariantClear
OleCreateFontIndirect
VariantCopy
VariantInit
SysFreeString
SysAllocString
SysAllocStringLen
VarUI4FromStr
DispCallFunc
ord12
PathRemoveExtensionW
PathAppendW
PathRemoveFileSpecW
PathCombineW
SHSetValueA
PathRemoveFileSpecA
SHGetValueW
SHSetValueW
PathFindFileNameA
SHGetValueA
_TrackMouseEvent
InitCommonControlsEx
GdipSetStringFormatTrimming
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipGetImageWidth
GdiplusShutdown
GdiplusStartup
GdipCreateFromHDC
GdipDeleteStringFormat
GdipCreateStringFormat
GdipGraphicsClear
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDrawString
GdipSetTextRenderingHint
GdipCreateBitmapFromScan0
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipRestoreGraphics
GdipSetClipRectI
GdipTranslateWorldTransform
GdipLoadImageFromStream
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipCreateFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteFont
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc
GdipDrawImageRectRectI
GdipGetImageHeight
GdipSaveGraphics
CoInternetGetSession
AccessibleChildren
AccessibleObjectFromWindow
GetRoleTextW
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoW
timeEndPeriod
timeBeginPeriod
timeGetTime
GetAdaptersInfo
inet_addr
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ