?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32
Static task
static1
Behavioral task
behavioral1
Sample
bd640c0f617c88753e3e94cf34076a5165cc8d5fffe3fd479300f5708e367199.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
bd640c0f617c88753e3e94cf34076a5165cc8d5fffe3fd479300f5708e367199.dll
Resource
win10v2004-20240802-en
Target
bd640c0f617c88753e3e94cf34076a5165cc8d5fffe3fd479300f5708e367199
Size
3KB
MD5
6dc2599d78d3ac3d0cd0106518bdb690
SHA1
2a60769a78a9b3db3924e1a1a24ed72bce5f750b
SHA256
bd640c0f617c88753e3e94cf34076a5165cc8d5fffe3fd479300f5708e367199
SHA512
5596d4b7b4c2fe972b967a92244fdefa5023a691dfe5d37b628967ad222142aeb07cb847996db44fc19adb88acd48f8238e5567d8a1000611dc7603f6c065bb8
Checks for missing Authenticode signature.
resource |
---|
bd640c0f617c88753e3e94cf34076a5165cc8d5fffe3fd479300f5708e367199 |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
LoadLibraryA
GetProcAddress
?rundll@@YGXPAUHWND__@@PAUHINSTANCE__@@PBDH@Z
rundll32
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ