Static task
static1
Behavioral task
behavioral1
Sample
a7582ca7b6e0cb1cd6200fad7332edb0N.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral2
Sample
a7582ca7b6e0cb1cd6200fad7332edb0N.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
Target
a7582ca7b6e0cb1cd6200fad7332edb0N.exe
Size
2.1MB
MD5
a7582ca7b6e0cb1cd6200fad7332edb0
SHA1
cb0e83c93aab3745a97aa619546fddd2a514b7e6
SHA256
0322c17bb15f8ed9ece3b26e3a35fc861097d4ec61f48b376d6e0e7acb35856d
SHA512
83861253bb89caa571c7376c97f4deb8f2134434e48a5a9b54cb574d74424f28c74169cf9075deef6b382c78c411296145fa7de61db200958a3b3188fb250b11
SSDEEP
24576:0049HMam9+k/bpC20G8Oa2m5yQtMOtJZKPqbYBDT+tVt5f0sEnDEBonVFpy5Anoc:TF/VcKCMBDTq5FZonjpy5aoSKrBda7
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
e:\project\sogouime\branch\PinyinDev_R_7_8\Bin\SogouPdb\SogouInput\PinyinUp.pdb
InternetCloseHandle
HttpEndRequestW
HttpOpenRequestA
HttpAddRequestHeadersW
InternetWriteFile
InternetReadFile
InternetCrackUrlA
HttpSendRequestExW
InternetConnectA
InternetSetOptionW
InternetOpenUrlW
InternetOpenW
InternetSetCookieW
InitCommonControlsEx
SHGetValueW
StrToIntW
StrCmpIW
StrStrIW
SHDeleteKeyA
htons
getsockopt
getpeername
setsockopt
connect
socket
inet_addr
bind
getservbyname
inet_ntoa
gethostname
gethostbyname
WSAStartup
gethostbyaddr
getservbyport
WSASetLastError
sendto
recvfrom
ntohs
getsockname
send
recv
WSAGetLastError
closesocket
WSACleanup
ioctlsocket
select
__WSAFDIsSet
listen
accept
htonl
SetErrorMode
WaitForSingleObject
GetExitCodeProcess
CreateEventW
GetCurrentProcessId
SuspendThread
SetFileAttributesW
GlobalMemoryStatusEx
GetFileAttributesExW
SetEvent
FileTimeToSystemTime
ResetEvent
WaitForMultipleObjects
FileTimeToLocalFileTime
FindResourceW
FreeLibrary
LoadResource
LoadLibraryExW
SizeofResource
lstrcmpiW
MulDiv
OpenEventW
InterlockedCompareExchange
DeleteFileW
ReadFile
GetTempFileNameW
ResumeThread
GetCurrentThreadId
DeleteCriticalSection
EnterCriticalSection
InterlockedExchange
RaiseException
IsProcessorFeaturePresent
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
IsValidLocale
FlushInstructionCache
GetLocaleInfoA
GetUserDefaultLCID
SetStdHandle
GetFullPathNameA
GetModuleHandleA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCurrentDirectoryA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetConsoleMode
GetConsoleCP
GetStartupInfoA
SetHandleCount
IsValidCodePage
QueryPerformanceCounter
GetACP
HeapSize
HeapDestroy
HeapCreate
GetFileInformationByHandle
FindFirstFileA
GetDriveTypeA
GetTimeZoneInformation
RtlUnwind
GetStartupInfoW
GetDriveTypeW
GetCPInfo
ExitProcess
GetFullPathNameW
UnhandledExceptionFilter
FormatMessageA
ExpandEnvironmentStringsA
GetStdHandle
GetFileType
PeekNamedPipe
SleepEx
WaitForSingleObjectEx
TlsFree
TlsAlloc
TlsSetValue
TlsGetValue
InitializeCriticalSectionAndSpinCount
OpenMutexW
QueryDosDeviceW
GetLogicalDriveStringsW
lstrcpynW
LeaveCriticalSection
GetVersionExW
InitializeCriticalSection
lstrcpynA
GetModuleFileNameW
lstrcpyW
DebugBreak
FindNextFileW
CreateFileMappingW
FindClose
GetTempPathW
MultiByteToWideChar
CreateFileW
Sleep
WriteFile
OutputDebugStringW
InterlockedIncrement
lstrlenA
SetFilePointer
FindFirstFileW
LocalFree
CloseHandle
GetModuleHandleW
GetCurrentProcess
InterlockedDecrement
CreateMutexW
GetCommandLineW
lstrlenW
WideCharToMultiByte
GetSystemDirectoryW
GlobalFree
SetLastError
GlobalAlloc
GetTickCount
GetProcAddress
LoadLibraryW
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
GetLocalTime
GetLastError
LCMapStringW
OpenFileMappingW
DuplicateHandle
GetProcessId
GetFileAttributesW
CopyFileW
MoveFileExW
FlushFileBuffers
IsDebuggerPresent
lstrcatW
QueryPerformanceFrequency
GetQueuedCompletionStatus
TransactNamedPipe
CreateIoCompletionPort
WaitNamedPipeW
SetNamedPipeHandleState
TerminateProcess
EnumSystemLocalesA
FormatMessageW
SetUnhandledExceptionFilter
CreateProcessW
VirtualQuery
CopyFileA
GetOEMCP
lstrcatA
GetSystemDirectoryA
lstrcpyA
CreateFileA
OpenProcess
DeviceIoControl
LocalAlloc
GetFileSize
RemoveDirectoryW
CreateDirectoryW
VirtualProtect
VirtualFree
LoadLibraryA
VirtualAlloc
GetModuleFileNameA
ReleaseMutex
UnmapViewOfFile
MapViewOfFile
IsBadReadPtr
ExitThread
CreateThread
GetSystemTimeAsFileTime
RemoveMenu
IsWindow
GetMenuItemCount
SetMenuDefaultItem
MapWindowPoints
UpdateWindow
DestroyMenu
SetWindowTextW
GetSystemMetrics
DestroyIcon
LoadStringW
SendMessageW
FindWindowW
wvsprintfW
CharNextW
MoveWindow
CopyRect
UnregisterClassA
LoadBitmapW
CreateWindowExW
SetMenuItemInfoW
CreatePopupMenu
ShowWindow
SetWindowPos
GetMonitorInfoW
CallWindowProcW
SetRectEmpty
IsCharAlphaNumericW
DefWindowProcW
MessageBoxW
SubtractRect
FillRect
GetParent
EnableWindow
DestroyWindow
GetMessageW
LoadImageW
wsprintfW
GetDC
TranslateMessage
LoadAcceleratorsW
LoadMenuW
ReleaseDC
GetDlgItem
DispatchMessageW
EndPaint
SetCursor
TranslateAcceleratorW
GetSystemMenu
SetTimer
GetWindowRect
MonitorFromPoint
PostQuitMessage
PostMessageW
DrawTextW
KillTimer
LoadStringA
DialogBoxParamW
LoadCursorW
MessageBeep
EndDialog
DrawIcon
GetClientRect
SetFocus
GetMenuItemInfoW
BeginPaint
PtInRect
GetClassInfoExW
RegisterClassExW
LoadIconW
TrackPopupMenuEx
IntersectRect
InvalidateRect
GetWindowLongW
AppendMenuW
GetWindowTextW
SetClassLongW
PeekMessageW
EnableMenuItem
SetWindowLongW
wsprintfA
MoveToEx
LineTo
SetTextColor
CreateFontIndirectW
SetBkMode
DeleteObject
SelectObject
CreatePen
CreateSolidBrush
GetTextMetricsW
GetDeviceCaps
DPtoLP
LookupAccountSidW
SetSecurityDescriptorSacl
GetLengthSid
InitializeAcl
AddAccessAllowedAceEx
BuildExplicitAccessWithNameW
GetSecurityDescriptorSacl
SetSecurityInfo
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetNamedSecurityInfoW
SetNamedSecurityInfoW
CryptGetKeyParam
CryptDecrypt
CryptReleaseContext
CryptDestroyKey
CryptEncrypt
CryptSetKeyParam
CryptImportKey
CryptAcquireContextW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegOpenKeyW
RegSetValueExW
RegCreateKeyExW
FreeSid
AllocateAndInitializeSid
RegCreateKeyW
EqualSid
GetTokenInformation
OpenProcessToken
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetEntriesInAclW
RegDeleteValueA
RegEnumValueA
RegNotifyChangeKeyValue
RegCreateKeyExA
SHFileOperationW
ShellExecuteW
ShellExecuteExW
CommandLineToArgvW
Shell_NotifyIconW
SHGetFolderPathW
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoInitialize
CoInitializeEx
CLSIDFromProgID
CoUninitialize
CoCreateInstance
VariantInit
SysStringLen
SysAllocString
SysFreeString
SysAllocStringByteLen
VarUI4FromStr
GetProcessMemoryInfo
ImmDisableIME
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
ord143
ord211
ord22
ord50
ord26
ord30
ord32
ord35
ord79
ord200
ord33
ord301
ord27
ord41
ord46
ord60
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ