PGPhkDeleteHook
PGPhkSetHook
Static task
static1
Behavioral task
behavioral1
Sample
99d6221839278f652754992a51cc353959a0ccaa6fcbe75c498eac133d105286.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
99d6221839278f652754992a51cc353959a0ccaa6fcbe75c498eac133d105286.dll
Resource
win10v2004-20240802-en
Target
99d6221839278f652754992a51cc353959a0ccaa6fcbe75c498eac133d105286
Size
3.5MB
MD5
338e4c4b8404d4d4703d67401c755878
SHA1
9ca89421c263ad487760c70aa5be7e284da02992
SHA256
99d6221839278f652754992a51cc353959a0ccaa6fcbe75c498eac133d105286
SHA512
84ef156827fbaa898d46371882b62687bf969772ffedb51e0d6e5ed0297eda45963de27fd569a86a2cf4bbf23cffb8f30fe56e6f2991e1c0d5b2b3314004dad0
SSDEEP
49152:1m9HeH4FtP460/Igc9F3eKozoBkwAYwlNUdh12MZXHBSn+YmW4O3m7cjmMQTC+z5:8QKotcTlBk9YwzEhPbYzjmMtccXk8Kl
Checks for missing Authenticode signature.
resource |
---|
99d6221839278f652754992a51cc353959a0ccaa6fcbe75c498eac133d105286 |
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
ReadFile
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress
PGPhkDeleteHook
PGPhkSetHook
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ