Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-10_6ecadbed44c9c1dd175cce7a328d56b8_mafia.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-10_6ecadbed44c9c1dd175cce7a328d56b8_mafia.exe
Resource
win10v2004-20240426-en
Target
2024-06-10_6ecadbed44c9c1dd175cce7a328d56b8_mafia
Size
636KB
MD5
6ecadbed44c9c1dd175cce7a328d56b8
SHA1
382fc5aa2c192b39bba52178993525e877660f75
SHA256
82417e3cafc094b4bb64f12a695f3ed5a76060af73dc1f00e5ec51cf3a814181
SHA512
a7d869c0a1ed2d46eb22ce7076038ccd57c7de5c46d8e8ca5ecc88c2f716050de840f2bd22f182302c748931ac68706eb0908624155d3c464f6f705e416bedd9
SSDEEP
12288:HkCbgE5bSq2wgdm5YLzeWq7zpX66T/1b3aCuFT0Mm0jN9geN14HOnzncITvCV:HkCsE5bSRLk5YLze/umMm0J9ZNgunhT8
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
E:\workplace\PPS_UI\PPS3\geeplayer\trunk\pub\bin\Publish\GpUpdate.pdb
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
gethostname
ioctlsocket
select
__WSAFDIsSet
listen
accept
recvfrom
sendto
getaddrinfo
freeaddrinfo
connect
socket
getpeername
getsockopt
htons
bind
ntohs
getsockname
setsockopt
send
recv
WSASocketW
closesocket
WSAStartup
WSACreateEvent
WSASetEvent
WSAEventSelect
WSARecv
WSAResetEvent
WSASend
WSAGetOverlappedResult
WSAConnect
WSAGetLastError
WSAEnumNetworkEvents
WSACloseEvent
WSACleanup
WSASetLastError
GetAddrInfoW
FreeAddrInfoW
ord301
ord22
ord143
ord60
ord50
ord26
ord30
ord32
ord35
ord79
ord200
ord33
ord211
ord27
ord41
ord46
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
CompareStringW
IsValidCodePage
GetOEMCP
ExitProcess
HeapCreate
SetHandleCount
GetConsoleMode
GetConsoleCP
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetStringTypeW
IsProcessorFeaturePresent
GetLocaleInfoW
GetTimeZoneInformation
LCMapStringW
FindFirstFileExA
GetDriveTypeA
FileTimeToLocalFileTime
GetStartupInfoW
HeapSetInformation
GetCommandLineW
GetSystemTimeAsFileTime
GetCurrentThreadId
ExitThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
DecodePointer
EncodePointer
InterlockedDecrement
InterlockedIncrement
HeapSize
HeapDestroy
RaiseException
GetCPInfo
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetFullPathNameA
MultiByteToWideChar
WideCharToMultiByte
GetACP
FormatMessageW
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
lstrlenW
FreeLibrary
GetModuleFileNameW
GetPrivateProfileIntW
CreateMutexW
Sleep
OpenMutexW
LoadLibraryW
SetDllDirectoryW
GetFileAttributesW
CreateFileA
CloseHandle
DisconnectNamedPipe
FlushFileBuffers
WriteFile
ReadFile
GetExitCodeThread
WaitForSingleObject
CreateThread
ConnectNamedPipe
CreateNamedPipeW
TerminateThread
GetPrivateProfileStringW
WritePrivateProfileStringW
GetWindowsDirectoryW
GetVersionExW
GetEnvironmentVariableW
GetProcAddress
CreateDirectoryW
DeleteFileW
GetFileSize
CreateFileW
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
FindClose
FindNextFileW
FindFirstFileW
lstrcpynW
lstrcpyW
GetModuleHandleW
TerminateProcess
GetCurrentProcess
SetLastError
GetFullPathNameW
LoadLibraryA
lstrlenA
GetCurrentProcessId
RemoveDirectoryW
SetFileAttributesW
GetFileAttributesExW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetCurrentDirectoryW
SetEnvironmentVariableA
HeapFree
HeapAlloc
HeapReAlloc
MoveFileExW
GetTickCount
SetFilePointer
GetFileType
DuplicateHandle
SystemTimeToFileTime
DosDateTimeToFileTime
GetCurrentDirectoryW
SetFileTime
FileTimeToSystemTime
GetFileInformationByHandle
FormatMessageA
SleepEx
PeekNamedPipe
WaitForMultipleObjects
GetStdHandle
ExpandEnvironmentStringsA
SetStdHandle
WriteConsoleW
GetDriveTypeW
SetEndOfFile
GetLocalTime
GetProcessHeap
SetForegroundWindow
GetPropW
IsWindow
PostThreadMessageW
wsprintfW
GetMessageW
GetWindow
PeekMessageW
IsWindowVisible
SendMessageTimeoutW
IsIconic
GetDesktopWindow
RegCloseKey
RegOpenKeyExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegQueryValueExW
ShellExecuteExW
SHGetFolderPathW
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHFileOperationW
ord165
CoUninitialize
CoCreateInstance
CoInitialize
UrlCanonicalizeW
PathFileExistsW
StrCpyNW
PathRemoveFileSpecW
StrCatW
PathCanonicalizeW
PathMatchSpecW
GetAdaptersInfo
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ