Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-14_e6adc4ecfc77b4dea92c884cea392f45_megazord.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
2024-06-14_e6adc4ecfc77b4dea92c884cea392f45_megazord.exe
Resource
win10v2004-20240611-en
Target
2024-06-14_e6adc4ecfc77b4dea92c884cea392f45_megazord
Size
10.0MB
MD5
e6adc4ecfc77b4dea92c884cea392f45
SHA1
56cf0eff3fa883f757bddbd133efac955f5e366e
SHA256
960ed995dc7eab832950769e86f8a333085a84fc33a721073948671cf05df806
SHA512
f6f772414c3a574fe68402ce2b473f00a09c12f17db31172d271cf9a79def30fdb645b0d397367be203f1cced920a99976639735498247f775c9c701d0104f7d
SSDEEP
98304:TuG8R7L9xoGMYrx6+DJbiYelSpStwvfAsOrb07JcWuOESxDAme7lb/:TA0SHuDtwvfAsOrbQJvD4
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
CloseHandle
ReleaseSRWLockExclusive
CreateSemaphoreA
SetConsoleCtrlHandler
WaitForSingleObject
AcquireSRWLockExclusive
GetCurrentProcess
LoadLibraryExW
VirtualQuery
FreeLibrary
GetComputerNameExW
GetModuleHandleA
GetProcAddress
GetSystemInfo
GetNativeSystemInfo
TryAcquireSRWLockExclusive
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
ReleaseMutex
WaitForSingleObjectEx
LoadLibraryA
GetCurrentProcessId
CreateMutexA
lstrlenW
ReleaseSRWLockShared
AcquireSRWLockShared
SetHandleInformation
CreatePipe
GetExitCodeProcess
ReadFile
MultiByteToWideChar
WideCharToMultiByte
ReleaseSemaphore
FormatMessageW
LoadLibraryExA
GetProcessHeap
HeapAlloc
HeapFree
GetLastError
SleepConditionVariableSRW
LocalFree
SetLastError
FlushFileBuffers
GetTickCount
QueryPerformanceCounter
MapViewOfFile
CreateFileMappingW
FormatMessageA
GetSystemTime
GetSystemTimeAsFileTime
SystemTimeToFileTime
GetFileSize
LockFileEx
UnlockFile
HeapDestroy
HeapCompact
LoadLibraryW
HeapReAlloc
DeleteFileW
DeleteFileA
CreateFileA
FlushViewOfFile
OutputDebugStringW
GetFileAttributesExW
GetFileAttributesA
GetDiskFreeSpaceA
GetTempPathA
Sleep
HeapSize
HeapValidate
UnmapViewOfFile
GetFileAttributesW
CreateFileW
CreateMutexW
GetTempPathW
UnlockFileEx
SetEndOfFile
GetFullPathNameA
SetFilePointer
LockFile
OutputDebugStringA
GetDiskFreeSpaceW
WriteFile
GetFullPathNameW
HeapCreate
AreFileApisANSI
RaiseException
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
GetCurrentThreadId
GetTimeZoneInformationForYear
RegisterWaitForSingleObject
UnregisterWaitEx
DuplicateHandle
CreateIoCompletionPort
GetQueuedCompletionStatusEx
PostQueuedCompletionStatus
SetFileCompletionNotificationModes
GetConsoleMode
SetConsoleMode
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
FreeEnvironmentStringsW
DeleteProcThreadAttributeList
CompareStringOrdinal
AddVectoredExceptionHandler
SetThreadStackGuarantee
SwitchToThread
GetCurrentDirectoryW
GetEnvironmentStringsW
GetEnvironmentVariableW
SetEnvironmentVariableW
GetCommandLineW
SetFileInformationByHandle
SetFilePointerEx
GetStdHandle
WriteFileEx
SleepEx
TerminateProcess
WakeAllConditionVariable
WakeConditionVariable
QueryPerformanceFrequency
FindNextFileW
FindClose
GetFileInformationByHandle
GetFileInformationByHandleEx
CreateDirectoryW
FindFirstFileW
MoveFileExW
GetFinalPathNameByHandleW
GetFileType
GetModuleHandleW
GetModuleFileNameW
ExitProcess
CreateNamedPipeW
ReadFileEx
GetSystemDirectoryW
GetWindowsDirectoryW
CreateProcessW
InitializeProcThreadAttributeList
UpdateProcThreadAttribute
WriteConsoleW
CreateThread
GetCurrentThread
GetStringTypeW
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetTimeZoneInformation
GetConsoleOutputCP
LCMapStringW
CompareStringW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
GetModuleHandleExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
EncodePointer
RtlPcToFileHeader
RtlUnwindEx
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
MessageBoxA
GetSystemMetrics
GetModuleFileNameExW
EnumProcessModules
GetModuleInformation
RegOpenKeyExW
RegQueryValueExW
GetTokenInformation
DuplicateTokenEx
CreateProcessAsUserW
StartServiceCtrlDispatcherW
RegisterServiceCtrlHandlerExW
RegCloseKey
SetServiceStatus
SystemFunction036
ReportEventW
RegisterEventSourceW
ConvertSidToStringSidW
ConvertStringSidToSidW
GetLengthSid
CopySid
LookupPrivilegeValueW
OpenProcessToken
AdjustTokenPrivileges
GetSecurityInfo
GetNamedSecurityInfoW
SetSecurityInfo
SetNamedSecurityInfoW
IsValidAcl
GetAclInformation
GetAce
IsValidSid
EqualSid
AddAccessAllowedAceEx
AddAccessDeniedAceEx
AddAuditAccessAceEx
AddMandatoryAce
AddAce
InitializeAcl
RegSetValueExW
RegCreateKeyExW
DeregisterEventSource
WSACleanup
WSAStartup
getsockname
socket
WSAGetLastError
WSAIoctl
setsockopt
freeaddrinfo
getpeername
WSASocketW
getsockopt
WSASend
getaddrinfo
send
recv
shutdown
ioctlsocket
closesocket
connect
bind
DeleteSecurityContext
QueryContextAttributesW
FreeCredentialsHandle
InitializeSecurityContextW
FreeContextBuffer
DecryptMessage
EncryptMessage
AcceptSecurityContext
ApplyControlToken
AcquireCredentialsHandleA
CertFreeCertificateContext
CertVerifyCertificateChainPolicy
CertDuplicateCertificateContext
CertGetCertificateChain
CertDuplicateStore
CertDuplicateCertificateChain
CertFreeCertificateChain
CertCloseStore
CertOpenStore
CertAddCertificateContextToStore
CertEnumCertificatesInStore
EvtRender
EvtSubscribe
WTSQueryUserToken
WTSQuerySessionInformationW
WTSFreeMemory
WTSEnumerateSessionsW
CreateEnvironmentBlock
SysStringLen
GetErrorInfo
SysFreeString
BCryptGenRandom
NtCancelIoFileEx
NtCreateFile
RtlNtStatusToDosError
NtReadFile
NtWriteFile
NtDeviceIoControlFile
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ