@dfkvodv@0
@mctraxer@0
Static task
static1
Behavioral task
behavioral1
Sample
488fc31a56df22ee62120505326df0699627525c17fbdde472437f447ba2b779.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
488fc31a56df22ee62120505326df0699627525c17fbdde472437f447ba2b779.exe
Resource
win10v2004-20240802-en
Target
488fc31a56df22ee62120505326df0699627525c17fbdde472437f447ba2b779.exe
Size
735KB
MD5
e02fd1eee5d9fc50ac508abf6896982e
SHA1
7c93d2e15ef9201a6f7154f924f2acd05b62511c
SHA256
488fc31a56df22ee62120505326df0699627525c17fbdde472437f447ba2b779
SHA512
1e78d958c25e41b217b0b5ac97b5fa0c643a6d8a997314d8d531372e497357e863792446bd812228d9a1b4aec054be3504d8337df6515535c69efca0e0bd6314
SSDEEP
12288:T4wbKp60OwVHlsiOnNjS9zVy4sn232h2kkjo7UModgPcBJa0sQtaG4l:TLp0OwjiN25VJsnkkkk7s/tTtaGw
Checks for missing Authenticode signature.
resource |
---|
488fc31a56df22ee62120505326df0699627525c17fbdde472437f447ba2b779.exe |
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE
SetConsoleCtrlHandler
ConnectNamedPipe
GetPrivateProfileStringA
GetQueuedCompletionStatus
WideCharToMultiByte
SetCommBreak
EnumDateFormatsExW
GetSystemWindowsDirectoryA
GetCurrentProcess
GlobalAlloc
GetFullPathNameW
ResetWriteWatch
GetProcAddress
HeapReAlloc
ReadConsoleW
lstrcpyW
SetThreadExecutionState
GetDefaultCommConfigW
GetEnvironmentVariableW
BuildCommDCBAndTimeoutsW
GetAtomNameW
GetLastError
FindNextVolumeW
GetMailslotInfo
GetTickCount
lstrlenA
lstrlenW
SetupComm
LoadResource
LoadLibraryA
CompareStringW
InterlockedIncrement
InterlockedDecrement
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RaiseException
HeapFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
GetStartupInfoW
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetCPInfo
HeapAlloc
GetModuleHandleA
HeapCreate
VirtualFree
VirtualAlloc
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
SetFilePointer
CloseHandle
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetACP
GetOEMCP
IsValidCodePage
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
HeapSize
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
SetStdHandle
FlushFileBuffers
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
ReadFile
CreateFileA
IsValidSid
RegisterEventSourceW
RegQueryMultipleValuesA
@dfkvodv@0
@mctraxer@0
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ