Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
KeyUsageContentCommitment
Windows 7 will be removed from tria.ge on 2025-03-31
Behavioral task
behavioral1
Sample
38e85a75e735212c97451a706dfafd8f54abad84d970dbd26188c945740d3718.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
38e85a75e735212c97451a706dfafd8f54abad84d970dbd26188c945740d3718.exe
Resource
win10v2004-20240802-en
Target
38e85a75e735212c97451a706dfafd8f54abad84d970dbd26188c945740d3718
Size
86KB
MD5
e18d3f6f4d5f4a9ab3ba43770b93bdf2
SHA1
900ab7811db5db764a8458a4132f167789b344c7
SHA256
38e85a75e735212c97451a706dfafd8f54abad84d970dbd26188c945740d3718
SHA512
ac73cabf47ccc1150596b979842ce6e734109b91e668e7624fa36074cc9483c8308d3aac2612dbc3b0b8beb3fa4884842c42e133356a89deb4267788b75cfd20
SSDEEP
1536:BpOxH/IMrqOgU/Qa42rjDyV+gKnkl3PLyWBcUsSArKg8vn/3QaasW5oNcdPexG4u:mxHQsgHaDKCnkl3PLymcUsTKg8X3Qflp
metasploit
windows/download_exec
http://192.168.3.7:83/o3lN
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageContentCommitment
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
D:\VS项目\shellcode提取与加载\Release\shellcode提取与加载.pdb
WriteProcessMemory
GetCurrentProcess
WaitForSingleObject
VirtualAllocEx
CreateRemoteThread
WriteConsoleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RtlUnwind
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
RaiseException
GetStdHandle
WriteFile
GetModuleFileNameW
ExitProcess
GetModuleHandleExW
GetCommandLineA
GetCommandLineW
HeapFree
CloseHandle
GetExitCodeProcess
CreateProcessW
GetFileAttributesExW
HeapAlloc
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetFileType
GetStringTypeW
CompareStringW
LCMapStringW
GetProcessHeap
HeapSize
HeapReAlloc
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetFilePointerEx
CreateFileW
DecodePointer
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ