Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
2023_TAX_ORGANIZER/Tax Organizer.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2023_TAX_ORGANIZER/Tax Organizer.exe
Resource
win10v2004-20240412-en
Behavioral task
behavioral3
Sample
2023_TAX_ORGANIZER/g2m.dll
Resource
win7-20240221-en
Behavioral task
behavioral4
Sample
2023_TAX_ORGANIZER/g2m.dll
Resource
win10v2004-20240412-en
Target
24042024_1016_2023_TAX_ORGANIZER_s.zip
Size
3.2MB
MD5
25008f3430aa2a97eaa03e1014794f4a
SHA1
3c6d45485d737506375f5d8da473424f9048cd33
SHA256
d7a77526e580263c2374f51a2a960d7494d12d489859e1ab421e3bba7e558b4b
SHA512
f258f4a433ab4b4ae47ae152c6257870e4c241c7c19a1e6e83e4afcf450364f86736bec74579ea5288eaf819fbcac117671cd94e164ddf114c6611d2d2df7527
SSDEEP
49152:i3TapyfA9ZJXV+9xVLO6xfhmsTihBmFN1sCun1bBLtWyLY6VGphZuFO6L/71Lr:MsA9xt1vTiUkCuXh06UvwN/71/
Checks for missing Authenticode signature.
Processes:
| resource |
|---|
| unpack001/2023_TAX_ORGANIZER/g2m.dll |
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
c:\jenkins\workspace\Communication_Cloud\G2MWTEndpoint\Production\build-g2mwt-endpoint\output\G2M_Exe.pdb
GetStartupInfoW
GetModuleFileNameA
GetCommandLineW
GetModuleHandleA
GetProcAddress
ExitProcess
GetModuleHandleW
MessageBoxA
g2mcomm_winmain
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
c:\p4builds\Products\GoToMeeting\v4.5_builds\output\G2M.pdb
SetEvent
WaitForMultipleObjects
CreateEventW
InterlockedDecrement
InterlockedIncrement
SetLastError
GlobalFree
GetPrivateProfileStringW
GetPrivateProfileIntW
GetPrivateProfileSectionNamesW
DeleteFileW
ReadFile
GetFileInformationByHandle
CreateFileW
WriteFile
LocalFree
FormatMessageW
LoadLibraryW
GetTimeZoneInformation
GetWindowsDirectoryW
GetCurrentProcess
GetTempPathA
CreateDirectoryA
GetVersionExW
GetCurrentThreadId
LocalAlloc
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
GetDiskFreeSpaceExW
CreateProcessW
CreateMutexW
GetShortPathNameW
GetSystemDirectoryW
GetLocalTime
SystemTimeToFileTime
GetSystemTime
SetWaitableTimer
CreateWaitableTimerW
WritePrivateProfileStringW
ReleaseMutex
GetDateFormatW
OpenMutexW
GetLocaleInfoW
VirtualFree
VirtualAlloc
GlobalLock
GlobalUnlock
GlobalAlloc
lstrlenW
FlushInstructionCache
lstrcmpW
MulDiv
GetTimeFormatW
FileTimeToSystemTime
GetVersionExA
GetTempPathW
ExpandEnvironmentStringsW
MultiByteToWideChar
LockResource
SizeofResource
LoadResource
FindResourceW
GetTickCount
CompareFileTime
GetModuleFileNameW
QueryPerformanceCounter
CreateDirectoryW
FindClose
FindNextFileW
FindFirstFileW
GetFileSize
GetFileAttributesW
GetFileTime
Thread32Next
Thread32First
CreateToolhelp32Snapshot
Process32NextW
Process32FirstW
DisableThreadLibraryCalls
LoadLibraryExW
lstrcmpiW
SetThreadPriority
IsBadReadPtr
SetUnhandledExceptionFilter
ResumeThread
GetThreadContext
SuspendThread
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
TerminateThread
ResetEvent
OpenEventW
GetSystemWindowsDirectoryW
GetComputerNameW
GetSystemInfo
GlobalMemoryStatusEx
lstrlenA
SetFilePointer
SetEndOfFile
FlushFileBuffers
CopyFileW
GetTempFileNameW
MoveFileW
TryEnterCriticalSection
WideCharToMultiByte
RemoveDirectoryW
SetCurrentDirectoryW
GetSystemTimeAsFileTime
ReleaseSemaphore
CreateSemaphoreW
FindVolumeClose
FindNextVolumeW
QueryDosDeviceW
FindFirstVolumeW
HeapCreate
HeapDestroy
HeapAlloc
HeapFree
TlsFree
GetVolumeInformationW
GetLogicalDriveStringsW
GetProcessHeap
GlobalMemoryStatus
GetDiskFreeSpaceW
GetDriveTypeW
SetErrorMode
CreateThread
GetTimeFormatA
InterlockedExchange
GetModuleFileNameA
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
GetCurrentThread
TerminateProcess
OpenProcess
GetLastError
GetCurrentProcessId
GetCommandLineW
WaitForSingleObject
CloseHandle
GetProcAddress
FreeLibrary
Sleep
TlsAlloc
TlsSetValue
TlsGetValue
GetExitCodeProcess
ExitProcess
RaiseException
GetDateFormatA
GetVersion
CreateEventA
UnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
ExitThread
RtlUnwind
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
HeapReAlloc
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleA
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
GetFullPathNameA
PeekNamedPipe
CreateFileA
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringA
CompareStringW
SetEnvironmentVariableA
FoldStringW
QueryPerformanceFrequency
SaveDC
BitBlt
CreateSolidBrush
SetBkMode
SetBrushOrgEx
CreateCompatibleBitmap
CreatePatternBrush
CreateCompatibleDC
SelectObject
GetPixel
SetPixel
DeleteDC
DeleteObject
GetObjectW
GetStockObject
CreateFontIndirectW
GetDCOrgEx
GetClipBox
CombineRgn
SetRectRgn
CreateRectRgn
GetTextExtentPoint32W
SetTextColor
SetBkColor
TextOutW
GetTextMetricsW
RestoreDC
CreateDIBSection
CreateFontW
SetDIBits
SetDIBColorTable
GetDIBits
SetPixelV
MoveToEx
LineTo
SetViewportOrgEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
SetMapMode
ExcludeClipRect
SelectClipRgn
StretchBlt
SetStretchBltMode
CreateRoundRectRgn
CreatePolygonRgn
PaintRgn
GetSystemPaletteEntries
Polyline
EqualRgn
GetRgnBox
OffsetRgn
CreateRectRgnIndirect
GetRegionData
FillRgn
SetROP2
CreateBitmap
ExtTextOutW
FrameRgn
Polygon
SetPolyFillMode
CreatePen
GetDIBColorTable
GetPaletteEntries
CreateDIBitmap
CreatePalette
GetDeviceCaps
PathRemoveExtensionW
PathStripPathW
StrFormatByteSizeW
HttpOpenRequestW
InternetReadFileExA
HttpQueryInfoW
HttpSendRequestExW
InternetQueryOptionW
HttpEndRequestW
InternetErrorDlg
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetSetOptionW
InternetSetStatusCallbackW
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
g2mchat_winmain
g2mcomm_winmain
g2mfeedback_winmain
g2mhost_winmain
g2minstaller_winmain
g2minsthigh_winmain
g2mlauncher_winmain
g2mmatchmaking_winmain
g2mmaterials_winmain
g2mpolling_winmain
g2mqanda_winmain
g2mrecorder_winmain
g2msessioncontrol_winmain
g2mstart_winmain
g2mtesting_winmain
g2mtranscoder_winmain
g2mui_winmain
g2muninstall_winmain
g2mview_winmain
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ