Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
382cb384754181fd73d484ba30d9cce6a1fbdd806597766f09449f0836bfccd7.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
382cb384754181fd73d484ba30d9cce6a1fbdd806597766f09449f0836bfccd7.exe
Resource
win10v2004-20240508-en
Target
382cb384754181fd73d484ba30d9cce6a1fbdd806597766f09449f0836bfccd7
Size
200KB
MD5
8807a855df4ca7913cf84794d0dea215
SHA1
96b5f127bb3cb0fefa0cef242599a97c73552b25
SHA256
382cb384754181fd73d484ba30d9cce6a1fbdd806597766f09449f0836bfccd7
SHA512
e115e3299cd0ebaee996e927a1e21b18d3f9dcb64f1d405f62f9b012527e44003bdb728f4f17419e9767e275880c247780f00fac25b961bb7262dce2a6b1bf1d
SSDEEP
6144:iKv8LZvdJpsYgvITVR/oRh1oFDqFQ7No2eTygs:fv8LB9sYxFo3eF+Mne1s
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
E:\videofx2_copy\Installs\bin\install_util\InstallUtility.pdb
QueryFullProcessImageNameW
GetProcessTimes
MultiByteToWideChar
WideCharToMultiByte
GetFinalPathNameByHandleW
GetModuleFileNameW
CreateFileW
GetModuleHandleW
SetFileAttributesW
CloseHandle
GetNativeSystemInfo
TerminateProcess
WaitForSingleObject
K32GetProcessImageFileNameW
K32EnumProcesses
GetSystemInfo
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetVersion
OpenProcess
CompareFileTime
CopyFileW
DeleteFileW
Sleep
RemoveDirectoryW
CreateDirectoryW
GetFileAttributesW
FindClose
FindNextFileW
GetLastError
FindFirstFileW
IsDebuggerPresent
IsProcessorFeaturePresent
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
LoadLibraryExA
GetProcAddress
FreeLibrary
VirtualProtect
VirtualQuery
RaiseException
PostMessageW
EnumWindows
MessageBoxW
GetWindowThreadProcessId
RegCloseKey
RegCreateKeyExA
RegCreateKeyExW
RegSetValueExW
RegSetValueExA
RegOpenKeyExA
RegOpenKeyExW
RegDeleteValueA
RegQueryValueExW
SHFileOperationW
SHGetKnownFolderPath
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?uncaught_exception@std@@YA_NXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@AAD@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QBE?AVlocale@2@XZ
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXXZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?unshift@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?out@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PB_W1AAPB_WPAD3AAPAD@Z
?in@?$codecvt@_WDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPA_W3AAPA_W@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
memset
__std_terminate
__current_exception_context
__std_exception_copy
memcpy
__current_exception
_CxxThrowException
strchr
_purecall
__std_exception_destroy
__CxxFrameHandler3
_except_handler4_common
memmove
__p___wargv
_c_exit
_register_thread_local_exe_atexit_callback
terminate
__p___argc
_exit
exit
_initterm_e
_initterm
_get_initial_wide_environment
_initialize_wide_environment
_configure_wide_argv
_controlfp_s
_seh_filter_exe
_cexit
_invalid_parameter_noinfo_noreturn
_errno
_crt_atexit
_set_app_type
_initialize_onexit_table
_register_onexit_function
_wfopen
__stdio_common_vsprintf
__stdio_common_vsnprintf_s
fseek
ferror
fputc
_fseeki64
fsetpos
ungetc
setvbuf
_set_fmode
fgetpos
fgetwc
__stdio_common_vfprintf
fgetc
ungetwc
fputwc
__p__commode
fwrite
__stdio_common_vsprintf_s
fflush
__stdio_common_vfwprintf
__stdio_common_vswprintf_s
fclose
__acrt_iob_func
__stdio_common_vswprintf
__stdio_common_vswscanf
ftell
fread
__stdio_common_vsscanf
tolower
_wcsnicmp
wcsncmp
strncmp
_strnicmp
isalnum
isspace
wcscpy_s
isalpha
_set_new_mode
free
malloc
_callnewh
_unlock_file
_lock_file
__setusermatherr
_configthreadlocale
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ