Static task
static1
Target
bootstrapper - Copy.exe
Size
254KB
MD5
e086d8004fc9b60a0bbea2ca14150b20
SHA1
95c47221955d855fba60c92018ea82a36595d005
SHA256
475fc84ce25e505a79cea42dd7ecc59ba28e792d18f08a0fa3a89a10dec1ce2e
SHA512
fe63c8b9491c70e200978b28571f8f2a11ccec1e738edb5acad6ffed8d1b891ee4375799b238840b8f1d59245270823e1cda6c6a459f396da1268a56a44562c7
SSDEEP
6144:ReYEHqyOPFx0OTkwO2mIZzNqEeNKGyJCtIt:Rp4qyOH0OTkwO2pZ9CO
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
E:\acme\nda1\branches\master\qq_runtime\Valkyrie\x64\Release\bootstrapper.pdb
HeapFree
GetCommandLineW
GetCurrentProcess
GetModuleFileNameW
CreateMutexA
WaitForSingleObject
CreateFileW
OpenProcess
CreateToolhelp32Snapshot
Sleep
Process32NextW
CreateFileA
Process32FirstW
CloseHandle
HeapAlloc
LocalFree
ReadFile
GetProcessHeap
CreateProcessW
GetModuleHandleW
QueryFullProcessImageNameW
GetFileAttributesW
SetEvent
ReleaseMutex
CreateEventW
CreateDirectoryW
GetTempPathW
GetSystemTime
GetModuleFileNameA
GetModuleHandleA
WideCharToMultiByte
WriteConsoleW
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
GetCurrentProcessId
ExitProcess
CreateThread
RaiseException
GetLastError
GetCurrentThreadId
OutputDebugStringA
GetFileSize
WriteFile
ReadConsoleW
GetFileSizeEx
GetStringTypeW
SetStdHandle
LCMapStringW
FlsFree
FlsSetValue
UnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
FormatMessageA
FindClose
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
SetEndOfFile
SetFileInformationByHandle
SetFilePointerEx
AreFileApisANSI
GetFileInformationByHandleEx
MultiByteToWideChar
RtlUnwindEx
RtlPcToFileHeader
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
GetLocalTime
GetModuleHandleExW
GetStdHandle
GetCPInfo
GetFileType
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlsAlloc
FlsGetValue
wsprintfW
RegCloseKey
CloseServiceHandle
OpenSCManagerA
ControlService
StartServiceW
QueryServiceConfigW
RegOpenKeyW
RegEnumValueW
OpenServiceA
CommandLineToArgvW
SHGetKnownFolderPath
RtlCaptureContext
RtlVirtualUnwind
RtlLookupFunctionEntry
NtQueryInformationProcess
BCryptHashData
BCryptCloseAlgorithmProvider
BCryptDestroyHash
BCryptOpenAlgorithmProvider
BCryptFinishHash
BCryptCreateHash
BCryptGetProperty
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ