Static task
static1
Behavioral task
behavioral1
Sample
SpyHunter-Installer.exe
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral2
Sample
SpyHunter-Installer.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
Target
SpyHunter-Installer.exe
Size
6.9MB
MD5
91205adee79859b7e4bf800aee7ba748
SHA1
7a91f48b5527b08ddd43297fce9e83247af817fb
SHA256
e970685b0dc7e9b8e44396cc04a7a7a9cef5cd2e297059543e5738b2950c2683
SHA512
12fa87438fc4501e2c36f7bf084173052072a64f69b6dbfc8b296e97f0a105dcba65cd3ec565f64dc38ba3ebce1778b2d448816f32f2c11a16aca4e00ea69a00
SSDEEP
98304:JruMv+uP00//6XN7c9y7w6y9GsYEEqwQt1H9G6P8BFswuzEk1c2bAbrZPbhHie:J3GuP0m69I6DQt1HZPAuzduV9Hie
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
S:\Git\dev\esginstaller\_Builds\Release\Win32\Installer.pdb
GdipDeleteGraphics
GdipDeleteRegion
GdipGetClip
GdipGetImageHeight
GdipSetInfinite
GdipSetClipRegion
GdipCreateRegion
GdipCreatePath
GdipCreateFromHDC
GdipSetSmoothingMode
GdipGraphicsClear
GdiplusShutdown
GdiplusStartup
GdipImageRotateFlip
GdipGetImagePixelFormat
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromResource
GdipCreateBitmapFromStream
GdipAddPathLine2I
GdipClosePathFigure
GdipAddPathArcI
GdipResetPath
GdipFillPath
GdipCreateSolidFill
GdipDeletePen
GdipDrawPath
GdipSetPenDashStyle
GdipCreatePen1
GdipSetInterpolationMode
GdipSetCompositingQuality
GdipSetCompositingMode
GdipFillRectangleI
GdipCloneBrush
GdipDeleteBrush
GdipCreateTextureIAI
GdipSetImageAttributesColorKeys
GdipSetImageAttributesWrapMode
GdipDrawImagePointRectI
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipDrawImageRectRectI
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdipCreateBitmapFromHBITMAP
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipDeletePath
GdipCombineRegionPath
GdipGetImageWidth
ScriptStringAnalyse
ScriptString_pLogAttr
ScriptStringFree
ScriptString_pcOutChars
ScriptString_pSize
ScriptStringXtoCP
ScriptStringGetOrder
ScriptStringGetLogicalWidths
ScriptStringCPtoX
ScriptStringOut
CertDuplicateCertificateContext
CertGetCertificateContextProperty
CryptDecodeObject
CryptMsgClose
CryptQueryObject
CertFindCertificateInStore
CertGetNameStringW
CryptHashCertificate
CertOpenStore
CertFreeCertificateContext
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertCloseStore
CertEnumCertificatesInStore
CryptMsgGetParam
CertOpenSystemStoreW
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
freeaddrinfo
accept
listen
recvfrom
sendto
ioctlsocket
__WSAFDIsSet
select
bind
WSAIoctl
closesocket
WSASetLastError
getpeername
getsockname
socket
ntohs
htonl
gethostname
shutdown
connect
getsockopt
htons
setsockopt
send
recv
WSAGetLastError
WSACloseEvent
WSACreateEvent
WSAEventSelect
WSAResetEvent
WSAWaitForMultipleEvents
WSAEnumNetworkEvents
WSACleanup
WSAStartup
getaddrinfo
getnameinfo
MoveFileExW
InitializeCriticalSectionEx
RaiseException
DecodePointer
DeleteCriticalSection
DeleteFileW
Sleep
GetCurrentProcess
SetLastError
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
GetTickCount
CreateFileW
HeapFree
QueryPerformanceFrequency
GetProcessHeap
lstrcmpiW
QueryPerformanceCounter
FindResourceW
LCMapStringA
GetStringTypeExA
GetUserDefaultLCID
GetDiskFreeSpaceExW
LoadLibraryA
LoadLibraryW
HeapAlloc
GetProcAddress
CreateMutexW
WaitForSingleObject
ReleaseMutex
GetCurrentProcessId
GetLocalTime
ReadFile
GetFileSizeEx
WriteFile
RemoveDirectoryW
GetFileAttributesW
SetFileAttributesW
GetExitCodeProcess
EnumResourceNamesW
SizeofResource
GetModuleFileNameW
MultiByteToWideChar
LoadResource
GetModuleHandleW
SetDllDirectoryW
LoadLibraryExW
VerSetConditionMask
VerifyVersionInfoW
FileTimeToSystemTime
SystemTimeToFileTime
TerminateProcess
OpenProcess
OpenMutexW
GetSystemDirectoryW
SleepEx
GetEnvironmentVariableA
GetStdHandle
WaitForMultipleObjects
PeekNamedPipe
GetFileType
CompareFileTime
GetSystemTimeAsFileTime
WaitForSingleObjectEx
GetEnvironmentVariableW
CreateEventA
SetConsoleMode
ReadConsoleA
ReadConsoleW
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleExW
SwitchToFiber
DeleteFiber
CreateFiber
ConvertFiberToThread
ConvertThreadToFiber
FindClose
FindFirstFileW
FindNextFileW
GetSystemTime
InitializeCriticalSection
OutputDebugStringW
GetStringTypeExW
LCMapStringW
MulDiv
ExpandEnvironmentStringsW
GetLongPathNameW
CreateDirectoryW
CopyFileW
DeviceIoControl
GetSystemInfo
GetNativeSystemInfo
LocalAlloc
ProcessIdToSessionId
GetVolumeInformationW
GetVersionExW
lstrcpyW
lstrcatW
CreateProcessW
CreatePipe
SetHandleInformation
HeapReAlloc
GetComputerNameW
GetCurrentThread
GetLogicalDriveStringsW
GetDriveTypeW
GetModuleHandleA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GlobalSize
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
K32GetProcessImageFileNameW
FindFirstVolumeW
GetVolumePathNamesForVolumeNameW
QueryDosDeviceW
FindNextVolumeW
FindVolumeClose
K32EnumProcessModules
K32GetModuleFileNameExW
lstrlenW
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
SetFilePointer
MoveFileW
SetFilePointerEx
GetTimeFormatW
GetDateFormatW
LockResource
GetLogicalDrives
DeleteVolumeMountPointW
DefineDosDeviceW
GetVolumeNameForVolumeMountPointW
FormatMessageA
GlobalMemoryStatusEx
GetLocaleInfoW
CreateEventW
CreateNamedPipeW
GetLocaleInfoA
CreateTimerQueue
DeleteTimerQueueEx
CreateTimerQueueTimer
lstrcmpA
FileTimeToLocalFileTime
lstrcpynW
RemoveVectoredExceptionHandler
SetUnhandledExceptionFilter
AddVectoredExceptionHandler
K32GetProcessMemoryInfo
IsBadReadPtr
VirtualQuery
FreeResource
GetFileSize
CreateSemaphoreA
DuplicateHandle
ReleaseSemaphore
WideCharToMultiByte
FreeLibrary
LocalFree
CloseHandle
SetEvent
FormatMessageW
GetStringTypeW
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryEnterCriticalSection
InitOnceComplete
InitOnceBeginInitialize
EncodePointer
LCMapStringEx
GetLocaleInfoEx
CompareStringEx
GetCPInfo
ResetEvent
WaitForMultipleObjectsEx
OpenEventA
SetWaitableTimer
ResumeThread
CreateWaitableTimerA
UnhandledExceptionFilter
IsProcessorFeaturePresent
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
VirtualAlloc
VirtualFree
LoadLibraryExA
RtlUnwind
WriteConsoleW
GetFileAttributesExW
GetFileInformationByHandle
SystemTimeToTzSpecificLocalTime
CreateThread
ExitThread
FreeLibraryAndExitThread
GetLastError
SetConsoleCtrlHandler
ExitProcess
GetCommandLineA
GetCommandLineW
GetConsoleOutputCP
HeapSize
GetTempPathW
CompareStringW
IsValidLocale
EnumSystemLocalesW
IsValidCodePage
GetACP
GetOEMCP
GetCurrentDirectoryW
GetFullPathNameW
SetStdHandle
FlushFileBuffers
GetTimeZoneInformation
SetEnvironmentVariableW
FindFirstFileExW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEndOfFile
GetModuleFileNameA
GetConsoleMode
SetVolumeMountPointW
HideCaret
InsertMenuW
TrackPopupMenu
UpdateLayeredWindow
ScreenToClient
IsCharAlphaNumericA
SetWindowRgn
IntersectRect
ClientToScreen
KillTimer
SetTimer
EnableWindow
GetClipboardData
IsClipboardFormatAvailable
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
ExitWindowsEx
GetMessageExtraInfo
wsprintfW
GetUserObjectInformationW
GetProcessWindowStation
FindWindowExW
GetWindowTextLengthW
GetMenuItemInfoW
AllowSetForegroundWindow
MonitorFromPoint
GetMenuItemCount
LockSetForegroundWindow
MessageBeep
CreatePopupMenu
GetActiveWindow
IsDialogMessageW
DestroyMenu
BringWindowToTop
TranslateAcceleratorW
LoadIconW
TrackPopupMenuEx
RemoveMenu
AppendMenuW
PostQuitMessage
DialogBoxParamW
GetMessageW
LoadMenuW
MessageBoxW
GetSystemMetrics
LoadAcceleratorsW
LoadStringW
GetClassInfoW
DispatchMessageW
CopyRect
ShowCaret
CharNextW
TranslateMessage
UpdateWindow
SetForegroundWindow
LoadImageW
GetWindow
MonitorFromWindow
EndDialog
GetWindowInfo
GetMonitorInfoW
MapWindowPoints
EnumWindows
GetWindowDC
SetWindowTextW
MoveWindow
InvalidateRect
LoadStringA
GetDC
ReleaseDC
GetFocus
RegisterClassExW
IsWindowEnabled
SetRect
GetClassInfoExW
InflateRect
IsZoomed
DrawTextW
IsIconic
GetCapture
TrackMouseEvent
SetFocus
SetCapture
ReleaseCapture
GetCursorPos
PostMessageW
ShowWindow
RedrawWindow
GetDlgItem
GetWindowLongW
DefWindowProcW
AdjustWindowRectEx
CallWindowProcW
GetWindowRect
DestroyWindow
IsWindowVisible
SetWindowPos
EnumChildWindows
CreateWindowExW
SendMessageW
IsWindow
OffsetRect
LoadCursorW
SetCursor
SetWindowLongW
GetClientRect
GetParent
PtInRect
BeginPaint
EndPaint
UnregisterClassW
CreateCaret
DestroyCaret
GetKeyState
SetActiveWindow
RegisterClassW
SetCaretPos
PeekMessageW
StartPage
EndPage
GetBkColor
SetTextAlign
GetTextColor
GetDeviceCaps
CombineRgn
CreateRectRgn
GetDIBits
ExtCreatePen
LineTo
MoveToEx
ExcludeClipRect
SetViewportOrgEx
CreatePolygonRgn
GetTextMetricsW
TextOutW
CreateDIBSection
CreateRoundRectRgn
ExtTextOutW
CreateFontW
GetObjectW
SetBrushOrgEx
SetStretchBltMode
DeleteDC
CreateCompatibleDC
SelectObject
SaveDC
CreateCompatibleBitmap
BitBlt
SetBkMode
SetTextColor
CreateSolidBrush
GetTextExtentPoint32W
CreatePen
Rectangle
RestoreDC
DeleteObject
ExtSelectClipRgn
IntersectClipRect
SetBkColor
SelectClipRgn
ConvertSidToStringSidW
RegEnumValueW
RevertToSelf
RegSaveKeyExW
LookupAccountNameW
ControlService
QueryServiceStatusEx
CloseServiceHandle
OpenServiceW
OpenSCManagerW
AccessCheck
IsValidSecurityDescriptor
SetSecurityDescriptorGroup
AllocateAndInitializeSid
GetTokenInformation
GetLengthSid
RegDeleteValueW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegQueryInfoKeyW
RegCloseKey
DeregisterEventSource
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
CryptSetHashParam
CryptGetProvParam
CryptGetUserKey
CryptExportKey
CryptDecrypt
CryptCreateHash
CryptDestroyHash
CryptSignHashW
CryptEnumProvidersW
GetNamedSecurityInfoW
GetExplicitEntriesFromAclW
InitializeAcl
SetEntriesInAclW
SetNamedSecurityInfoW
OpenProcessToken
RegQueryValueExW
InitializeSecurityDescriptor
SetSecurityDescriptorOwner
RegSetKeySecurity
AddAccessAllowedAce
SetSecurityDescriptorDacl
LookupPrivilegeValueW
AdjustTokenPrivileges
GetUserNameW
DuplicateToken
OpenThreadToken
FreeSid
ShellExecuteW
SHOpenFolderAndSelectItems
SHParseDisplayName
CoTaskMemFree
CoInitialize
CoUninitialize
CoTaskMemAlloc
CoTaskMemRealloc
CoInitializeEx
CreateStreamOnHGlobal
CoCreateInstance
SysAllocString
VariantInit
VarUI4FromStr
VariantClear
SysFreeString
ord1
StrCmpNIW
StrCmpIW
ord410
ord413
ord412
AlphaBlend
BCryptGenRandom
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ