Static task
static1
Behavioral task
behavioral1
Sample
67a97e75d3d0113c81e86a6415c0a860_NEAS.exe
Resource
win7-20240220-en
windows7-x64
Behavioral task
behavioral2
Sample
67a97e75d3d0113c81e86a6415c0a860_NEAS.exe
Resource
win10v2004-20240419-en
windows10-2004-x64
Target
67a97e75d3d0113c81e86a6415c0a860_NEAS
Size
1.5MB
MD5
67a97e75d3d0113c81e86a6415c0a860
SHA1
aca6e3389ddc762fbf15541c6acb99c11b074480
SHA256
4a9e412d7f99bee75513ce9753a044394bccdb33cda32965ff04962230cc7753
SHA512
0537e456fedd0a075907df19e9b75afe228fa49161b0b0874ca3a750508d497f0656936852808a02037d98e471a1d7d617c1605509cb9e548f39cc193436a95a
SSDEEP
12288:Zj4eamhFTirO96xe5Ml7utyoaKGq14Qg2nT54TOt:Z0ea2iC96k5Mloy3KN4QznTS8
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
E:\Visual C++\Release\SpeedCommander\20.x\20.5x\[OutDir]\x32#Release\SpeedCommander\fsc\fsc.pdb
ord3806
ord3818
ord2106
ord2230
ord2234
ord2228
ord1307
ord1337
ord3535
ord3992
ord4073
ord8903
ord9323
ord44
ord56
ord54
ord57
ord5733
ord51
ord1440
ord1445
ord2643
ord4874
ord2650
ord7097
ord7121
ord8986
ord3668
ord4506
ord5643
ord11192
ord1341
ord65
ord2512
ord7094
ord2642
ord1054
ord30
ord24
ord40
ord3534
ord7058
ord7053
ord7044
ord7043
ord9607
ord4517
ord4876
ord11183
ord70
ord6892
ord6644
ord64
ord68
ord8805
ord6740
ord7049
ord2506
ord6693
ord9002
ord1883
ord3669
ord9000
ord2497
ord1919
ord1344
ord9057
ord7095
ord10384
ord10378
ord7143
ord7144
ord9123
ord3805
ord6992
ord69
ord66
ord1343
ord11182
ord3536
ord6664
ord2294
ord9001
ord6918
ord3349
ord6663
ord60
ord5045
ord681
ord1059
ord1063
ord3709
ord71
ord10372
ord8925
ord4927
ord2659
ord10299
ord1444
ord48
ord8673
ord2115
ord9202
ord1067
ord3350
ord72
ord680
ord36
ord4873
ord1335
ord4537
ord5655
ord10524
ord8781
ord2573
ord2725
ord8457
ord682
ord63
ord684
ord5751
ord5044
ord10425
ord6797
ord4192
ord2295
ord1346
ord74
ord75
ord1066
ord683
ord5688
GetNativeSystemInfo
LCMapStringEx
GetCPInfo
CompareStringEx
EncodePointer
CloseThreadpoolWork
WaitForThreadpoolWorkCallbacks
SubmitThreadpoolWork
CreateThreadpoolWork
TryAcquireSRWLockExclusive
GetStringTypeW
RaiseException
OutputDebugStringW
RtlUnwind
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetConsoleCP
ExitProcess
GetModuleHandleExW
WriteFile
GetCommandLineA
GetCommandLineW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileType
GetConsoleMode
SetConsoleMode
GetNumberOfConsoleInputEvents
ReadConsoleInputW
PeekConsoleInputA
ReadConsoleW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
SetFilePointerEx
GetConsoleOutputCP
ReadFile
SetErrorMode
GetModuleHandleW
LocalFree
FormatMessageW
DecodePointer
GetLastError
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InitializeCriticalSectionEx
DeleteCriticalSection
CreateDirectoryW
CreateFileW
SetFileAttributesW
CloseHandle
DeviceIoControl
GetSystemTimeAsFileTime
GetTickCount64
DosDateTimeToFileTime
GetLocalTime
lstrlenW
GetDateFormatW
GetTimeFormatW
CompareFileTime
FindClose
FindFirstFileW
SetLastError
lstrlenA
GetStdHandle
WriteConsoleW
GetEnvironmentVariableW
ExpandEnvironmentStringsW
FlushFileBuffers
GetFileAttributesW
DisconnectNamedPipe
CallNamedPipeW
Sleep
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetProcessId
GetModuleFileNameW
GetProcAddress
GetPrivateProfileIntW
EnterCriticalSection
LeaveCriticalSection
lstrcmpW
CopyFileExW
FindFirstFileExW
FindNextFileW
InitializeCriticalSection
CreateFileMappingW
MapViewOfFile
LoadLibraryExA
WideCharToMultiByte
MultiByteToWideChar
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
InitializeSListHead
SetEndOfFile
GetSystemInfo
VirtualProtect
VirtualQuery
UnmapViewOfFile
CharUpperW
RegisterWindowMessageW
SendMessageTimeoutW
CharLowerA
OemToCharBuffA
CharToOemBuffA
CharUpperA
SetWindowLongW
DestroyWindow
CreateWindowExW
GetClassInfoW
RegisterClassW
DefWindowProcW
GetWindow
GetWindowThreadProcessId
EnumWindows
FindWindowExW
GetParent
GetWindowLongW
IsWindowVisible
GetNamedSecurityInfoW
SetNamedSecurityInfoW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
CopySid
GetLengthSid
GetSidLengthRequired
GetSidSubAuthority
SetEntriesInAclW
InitializeSid
IsValidSid
OpenProcessToken
AccessCheck
AdjustTokenPrivileges
DuplicateToken
GetFileSecurityW
GetTokenInformation
MapGenericMask
LookupPrivilegeValueW
RegGetValueW
SetFileSecurityW
ShellExecuteExW
SHGetFileInfoW
ord155
SHGetDesktopFolder
PathIsUNCW
PathIsRelativeW
PathCompactPathExW
PathAppendW
PathRemoveFileSpecW
PathFindExtensionW
SHCreateStreamOnFileW
CoCreateInstance
CoSetProxyBlanket
CoInitialize
CoUninitialize
CoInitializeSecurity
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE