api-ms-win-appmodel-state-l1-1-1[.]dll

General

Target

api-ms-win-appmodel-state-l1-1-1.dll
Size

4KB
MD5

2d92de8f40f63b1e78b1e04541949da0
SHA1

95ae3e02e921e4e4a1a78bade627986eb90570ea
SHA256

1cf72e6ecc422e1dbba4b87d96fbaf76cf46385d727b99204685f5ef5113e239
SHA512

4e8aabffa7c0f1e9be2146764915779256a52cfc9cd440cd21aea2a027a5b61b3c0813f46a67e17ec9a9f7ff9aeeb2ac611f44307ceee48aaba30a79f4531548

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
api-ms-win-appmodel-state-l1-1-1.dll

Files

api-ms-win-appmodel-state-l1-1-1.dll
.dll windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

api-ms-win-appmodel-state-l1-1-1.pdb

Exports

Exports

AcquireStateLock
CheckIfStateChangeNotificationExists
CloseState
CloseStateAtom
CloseStateChangeNotification
CloseStateContainer
CloseStateLock
CommitStateAtom
CreateStateAtom
CreateStateChangeNotification
CreateStateContainer
CreateStateLock
CreateStateSubcontainer
DeleteStateAtomValue
DeleteStateContainer
DeleteStateContainerValue
DuplicateStateContainerHandle
EnumerateStateAtomValues
EnumerateStateContainerItems
GetHivePath
GetRoamingLastObservedChangeTime
GetSerializedAtomBytes
GetStateContainerDepth
GetStateFolder
GetStateRootFolder
GetStateSettingsFolder
GetStateVersion
GetSystemAppDataFolder
GetSystemAppDataKey
OpenState
OpenStateAtom
OpenStateExplicit
OverrideRoamingDataModificationTimesInRange
PublishStateChangeNotification
QueryStateAtomValueInfo
QueryStateContainerItemInfo
ReadStateAtomValue
ReadStateContainerValue
RegisterStateChangeNotification
RegisterStateLock
ReleaseStateLock
ResetState
SetRoamingLastObservedChangeTime
SetStateVersion
SubscribeStateChangeNotification
UnregisterStateChangeNotification
UnregisterStateLock
UnsubscribeStateChangeNotification
WriteStateAtomValue
WriteStateContainerValue

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

DLL Characteristics

File Characteristics

PDB Paths

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 1008B

.text
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 1008B