Extended Key Usages
ExtKeyUsageTimeStamping
Static task
static1
Behavioral task
behavioral1
Sample
MediaCreationToolx64 (1).exe
Resource
win10v2004-20240709-en
Target
MediaCreationToolx64 (1).exe
Size
18.8MB
MD5
b43008ee512684977f1c4360869effe8
SHA1
c40a324ded4a183e7bc99eaca9265aaefde816d4
SHA256
17fc5714b5b048a34fcaa46a81fa1547e1177498167b184313334bf06a6d6f15
SHA512
8521b41f4ecfb90cc69a5146ca7a685d8689afbb8c2a500d575b71a20377dcbf0abd13197cf6424f6bc25a7407b3b85e61fc08649fe20479a7901832fe798f6b
SSDEEP
196608:rE9I50VCxi63wKG5NCgBR2mjbDgQXCdzcBOadEOj13LsSGUtB0mOd:MI58C/G5NR7UeCdQBOa6Oj1+Sufd
ExtKeyUsageTimeStamping
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP
SetupPrep.pdb
OpenProcessToken
OpenThreadToken
GetTokenInformation
RegEnumKeyW
CopySid
RegCreateKeyExW
RegQueryValueExW
CreateProcessAsUserW
RegQueryInfoKeyW
InitializeSecurityDescriptor
SetTokenInformation
RegDeleteKeyW
SetSecurityDescriptorDacl
GetAce
DuplicateTokenEx
RegDeleteValueW
InitializeAcl
AllocateAndInitializeSid
AddAccessAllowedAce
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetSecurityInfo
FreeSid
RegSetKeySecurity
RegOpenKeyExW
GetLengthSid
CheckTokenMembership
RegCloseKey
RegSetValueExW
RegisterTraceGuidsW
GetTraceEnableLevel
UnregisterTraceGuids
GetTraceEnableFlags
QueryAllTracesW
StopTraceW
GetTraceLoggerHandle
RegEnumValueW
AdjustTokenPrivileges
LookupPrivilegeValueW
WaitForMultipleObjects
FindNextFileW
DeleteCriticalSection
CloseHandle
DeleteFileW
GetCurrentProcessId
LocalFree
GetSystemTime
SetFileAttributesW
ExpandEnvironmentStringsW
CreateEventW
LockResource
CreateHardLinkW
IsValidCodePage
VerifyVersionInfoW
IsValidLocale
VerSetConditionMask
GetUserDefaultUILanguage
CreateFileMappingW
GetSystemDefaultUILanguage
UnmapViewOfFile
MapViewOfFile
SearchPathW
GetExitCodeProcess
LeaveCriticalSection
ResetEvent
FindClose
EnterCriticalSection
LockFileEx
GetLastError
GetFileSizeEx
FlushFileBuffers
CompareStringW
GetOverlappedResult
CreateFileW
GetTimeZoneInformation
GetModuleFileNameW
ReadFile
TerminateProcess
GetFileAttributesW
SetThreadPreferredUILanguages
GetLocaleInfoW
GetVersionExW
GetPrivateProfileIntW
CopyFileW
GlobalUnlock
GlobalLock
InitializeCriticalSection
LoadLibraryW
FindResourceW
LocalFileTimeToFileTime
SetFileTime
CreateFileA
DosDateTimeToFileTime
DuplicateHandle
GetShortPathNameW
SetEndOfFile
SetFilePointer
HeapSize
HeapReAlloc
WideCharToMultiByte
SetCurrentDirectoryW
GetFileInformationByHandle
DeviceIoControl
CopyFileExW
GetPrivateProfileSectionW
SetLastError
GetCurrentDirectoryW
LoadLibraryExW
FreeLibrary
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStartupInfoW
Sleep
HeapAlloc
HeapFree
GetModuleHandleExW
GetProcessHeap
GetProcAddress
GetFullPathNameW
GetCommandLineW
CreateMutexW
FindFirstFileW
GetNativeSystemInfo
GetDriveTypeW
FindResourceExW
LoadResource
CreateProcessW
SystemTimeToTzSpecificLocalTime
MoveFileExW
GetCurrentProcess
SetFilePointerEx
GetLogicalDriveStringsW
GetSystemWindowsDirectoryW
CreateDirectoryW
WaitForSingleObject
SetEvent
GetModuleHandleW
GetCurrentThread
UnlockFileEx
WriteFile
GetSystemDirectoryW
MulDiv
InitializeCriticalSectionAndSpinCount
GetSysColorBrush
GetSystemMetrics
IsWindowVisible
SystemParametersInfoW
GetClientRect
GetSystemMenu
PostMessageW
GetParent
GetWindowLongW
EnableMenuItem
SetWindowLongW
GetFocus
LoadStringW
GetKeyState
EnableWindow
SendMessageW
MessageBoxW
PostThreadMessageW
KillTimer
LoadImageW
GetWindowRect
IsChild
GetNextDlgTabItem
SetTimer
GetSysColor
InvalidateRect
GetDC
FillRect
CopyRect
RedrawWindow
DrawFocusRect
DrawTextW
ord3362
ord4815
ord3231
ord3366
ord3052
ord3166
ord3046
ord4082
ord4083
ord4077
ord3164
ord2420
ord4371
ord6243
ord4599
ord6708
ord6705
ord1441
ord337
ord2094
ord3243
ord3049
ord2193
ord4218
ord4557
ord1812
ord342
ord6352
ord3286
ord4445
ord854
ord629
ord1043
ord4612
ord4187
ord1799
ord2586
ord4741
ord1646
ord336
ord6559
ord851
ord6127
ord525
ord984
ord4131
ord2900
ord1930
ord1586
ord287
ord812
ord288
ord1082
ord665
ord5699
ord2140
ord2457
ord5683
ord1736
ord6614
ord6612
ord6102
ord6632
ord5484
ord3933
ord6814
ord2060
ord2670
ord4789
ord5229
ord4017
ord5712
ord4694
ord6812
ord5586
ord2399
ord5663
ord4752
ord1778
ord4365
ord4988
ord6440
ord3535
ord4550
ord1574
ord3790
ord2427
ord1505
ord1405
ord1479
ord3783
ord1463
ord3894
ord1035
ord5077
ord5406
ord5245
ord4771
ord1777
ord6437
ord5687
ord663
ord4215
ord6054
ord5711
ord5730
ord5066
ord4368
ord5725
ord5722
ord3468
ord1066
ord2412
ord3830
ord1430
ord286
ord2408
ord2329
ord1949
ord822
ord626
ord1126
ord1040
ord4770
ord4983
ord3076
ord3174
ord3177
ord4130
ord4424
ord2661
ord6351
ord5467
ord2393
ord3754
ord3742
ord1647
ord852
ord5702
ord4826
ord599
ord4481
ord6734
ord4014
ord4623
ord1966
ord2906
ord4721
ord2665
ord2517
ord2903
ord2898
_cexit
_wtoi
wcsstr
_commode
_exit
exit
__set_app_type
__wgetmainargs
_amsg_exit
_XcptFilter
_fmode
__setusermatherr
_initterm
__C_specific_handler
bsearch
towlower
_wcsnicmp
_wcsicmp
wcsrchr
wcsncmp
__RTDynamicCast
memcmp
memcpy
memset
__CxxFrameHandler3
_vsnwprintf
memmove
wcschr
_wcmdln
??1type_info@@UEAA@XZ
?terminate@@YAXXZ
_onexit
__dllonexit
_unlock
_lock
wcscmp
RtlGetVersion
RtlAllocateHeap
RtlFreeHeap
RtlNtStatusToDosError
NtSetInformationFile
RtlAdjustPrivilege
NtDuplicateToken
RtlCaptureContext
RtlVirtualUnwind
RtlLookupFunctionEntry
CoInitializeEx
CoCreateInstance
CoUninitialize
UuidCreate
RpcStringFreeW
UuidToStringW
I_RpcMapWin32Status
WIMSetFileIOCallbackTemporaryPath
WIMInitFileIOCallbacks
WIMUnmountImage
InitCommonControlsEx
CommandLineToArgvW
DestroyEnvironmentBlock
CreateEnvironmentBlock
WTSFreeMemory
WTSEnumerateSessionsW
WTSQueryUserToken
GetStockObject
GetObjectW
CreateFontIndirectW
CreateCompatibleDC
CreateSolidBrush
StretchBlt
BitBlt
SetBkMode
SetTextColor
DeleteDC
GetDeviceCaps
SetBrushOrgEx
EnumFontFamiliesExW
CreateICW
CreateDCW
TranslateCharsetInfo
SysFreeString
VerQueryValueW
GetFileVersionInfoExW
GetFileVersionInfoSizeExW
BCryptCloseAlgorithmProvider
BCryptFinishHash
BCryptHashData
BCryptDestroyHash
BCryptOpenAlgorithmProvider
BCryptCreateHash
ord22
ord23
ord20
IsAppThemed
ConstructPartialMsgVW
CurrentIP
WdsSetupLogMessageW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ