Static task
static1
Behavioral task
behavioral1
Sample
vmmap.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
vmmap.exe
Resource
win10v2004-20240419-en
windows10-2004-x64
Target
vmmap.exe
Size
1.2MB
MD5
cf5b711d4852ef4fd9d5e605adf0123a
SHA1
8b9207b334e0c12752992f17d8b38979b0dff004
SHA256
bb0253dc57119ae9b658171d2044fa36d5eb9553b2a5067c52ea4bdb18b4ac43
SHA512
930a4103fd1a2842e42c42d26d0764d5c59f32f2428c7ef46ab607f7edf5a7092e05a3101ebd6ad832e1c6018d0263d515550fc8871b3cd2f2aa1f2e2afcbace
SSDEEP
24576:gusrLzjNBWGG8bFZIWyqjQnAZaO5tThLeopmHjM4k+QQiXGWQ+oi2:ejNtTkqjQM59hLeopmI4k+QQip/oJ
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
C:\agent\_work\24\s\Win32\Release\vmmap.pdb
GdipCloneBrush
GdipFree
GdiplusStartup
GdipDeleteBrush
GdipCreateSolidFill
GdipAlloc
GdipFillRectangleI
GdipSetCompositingQuality
GdipDeleteGraphics
GdipCreateFromHDC
SHAutoComplete
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_SetBkColor
InitCommonControlsEx
ImageList_Destroy
ord17
ImageList_Create
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
LoadResource
SizeofResource
FindResourceW
GetNumberFormatW
OpenProcess
GetSystemTimeAsFileTime
FindClose
GetEnvironmentVariableW
SetEnvironmentVariableW
FindFirstFileW
GetOverlappedResult
ResumeThread
SetEvent
WaitForMultipleObjects
ReadFile
FormatMessageW
ConnectNamedPipe
CreateEventW
CreateNamedPipeW
QueryPerformanceCounter
QueryPerformanceFrequency
GlobalAddAtomW
VerSetConditionMask
GlobalFree
GlobalMemoryStatusEx
SetProcessWorkingSetSize
GetCurrentProcessId
TerminateProcess
CreateThread
OpenThread
GetThreadContext
SuspendThread
GetNativeSystemInfo
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTempPathA
SetCurrentDirectoryW
QueryDosDeviceW
IsBadReadPtr
VerifyVersionInfoW
GetTimeFormatW
Process32FirstW
Process32NextW
Thread32First
Thread32Next
VirtualQueryEx
DebugBreak
SetLastError
ExitProcess
LockResource
VirtualProtectEx
WriteProcessMemory
ExpandEnvironmentStringsA
LoadLibraryA
CreateFileW
SetStdHandle
HeapReAlloc
DecodePointer
GetConsoleCP
GetStringTypeW
LCMapStringW
GetACP
WriteFile
GetModuleFileNameA
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
FreeLibraryAndExitThread
ExitThread
SetConsoleMode
ReadConsoleInputA
GetConsoleMode
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
RtlUnwind
GetProcessHeap
HeapFree
HeapAlloc
InitializeSListHead
GetCurrentThreadId
GetStartupInfoW
WideCharToMultiByte
MultiByteToWideChar
RaiseException
IsDebuggerPresent
WaitForSingleObjectEx
ResetEvent
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateFileMappingW
UnmapViewOfFile
MapViewOfFile
GetTickCount
GetSystemInfo
SetFilePointer
SetEndOfFile
FindNextFileA
GetFileSize
IsValidCodePage
GetOEMCP
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualAlloc
GetLocaleInfoW
CompareStringW
GlobalUnlock
GlobalLock
GlobalAlloc
Module32NextW
Module32FirstW
CreateToolhelp32Snapshot
GetModuleHandleExW
LoadLibraryExW
FreeLibrary
InterlockedIncrement
DeleteFileW
GetFileAttributesW
GetCurrentDirectoryW
ExpandEnvironmentStringsW
CreateProcessW
GetModuleFileNameW
CloseHandle
Sleep
WaitForSingleObject
GetLastError
GetCurrentProcess
InterlockedDecrement
GetCommandLineW
ReadProcessMemory
GetModuleHandleW
LoadLibraryW
GetStdHandle
GetFileType
LocalFree
LocalAlloc
GetProcAddress
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
ReadConsoleW
FindFirstFileExA
FlushFileBuffers
GetCPInfo
WriteConsoleW
SetFilePointerEx
GetTimeZoneInformation
HeapSize
VirtualAllocEx
SetMenuItemInfoW
GetMenuItemInfoW
InsertMenuW
GetSubMenu
EnableMenuItem
CheckMenuItem
DrawMenuBar
GetMenuState
GetMenu
TranslateAcceleratorW
DestroyAcceleratorTable
LoadAcceleratorsW
IsWindowEnabled
KillTimer
SetTimer
GetActiveWindow
IsDlgButtonChecked
CheckDlgButton
CreateDialogParamW
IsZoomed
IsIconic
SetWindowPlacement
GetWindowPlacement
MoveWindow
DestroyWindow
PostQuitMessage
PostMessageW
DispatchMessageW
TranslateMessage
GetMessageW
DrawFrameControl
RegisterWindowMessageW
SetScrollInfo
GetClassLongW
IntersectRect
SetActiveWindow
SetForegroundWindow
SetWindowTextA
GetWindowTextW
ChildWindowFromPoint
UnionRect
GetDesktopWindow
EnumChildWindows
GetClassNameW
CheckMenuRadioItem
ScrollWindowEx
InvalidateRect
DestroyIcon
BeginPaint
ReleaseDC
GetDC
GetKeyState
GetFocus
CallWindowProcW
GetParent
MessageBoxW
DrawIconEx
GetPropW
SetPropW
EnableWindow
SetFocus
GetDlgItemTextW
SetDlgItemTextW
DialogBoxParamW
SetWindowLongW
OffsetRect
ScreenToClient
ReleaseCapture
SetCapture
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPos
CreateWindowExW
RegisterClassExW
DefWindowProcW
GetScrollInfo
FillRect
DrawFocusRect
MapWindowPoints
DrawTextW
LoadStringW
LoadImageW
LoadIconW
GetWindowLongW
PtInRect
GetSysColor
GetWindowRect
GetClientRect
UpdateWindow
GetSystemMetrics
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
ShowWindow
LoadCursorW
InflateRect
GetSysColorBrush
SetCursor
SetWindowTextW
GetDlgItem
EndDialog
DialogBoxIndirectParamW
SendMessageW
GetUpdateRgn
IsDialogMessageW
EndPaint
CreateRectRgnIndirect
RectInRegion
GetBkColor
CreateFontW
SelectClipRgn
CreateFontIndirectW
CombineRgn
Polyline
GetTextMetricsW
GetObjectW
CreateRectRgn
Polygon
MoveToEx
SetTextColor
SetBkMode
GetDeviceCaps
SetMapMode
StartDocW
EndDoc
LineTo
SelectObject
FrameRgn
SetBkColor
EndPage
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreatePen
CreateSolidBrush
DeleteDC
DeleteObject
GetStockObject
StartPage
PrintDlgW
GetOpenFileNameW
GetSaveFileNameW
FindTextW
ChooseFontW
RegOpenKeyExA
RegQueryValueExA
OpenSCManagerW
EnumServicesStatusExW
CloseServiceHandle
LookupPrivilegeValueW
LookupAccountSidW
AdjustTokenPrivileges
RegSetValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
FreeSid
AllocateAndInitializeSid
EqualSid
GetTokenInformation
OpenProcessToken
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegOpenKeyW
RegCreateKeyW
RegCloseKey
ShellExecuteW
SHChangeNotify
SHGetMalloc
SHGetFileInfoW
CommandLineToArgvW
ShellExecuteExW
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
CoTaskMemFree
CoCreateInstance
CoInitialize
SysStringLen
SysFreeString
VariantInit
VariantClear
VariantChangeType
SysAllocStringByteLen
SysAllocString
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ