Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Static task
static1
Behavioral task
behavioral1
Sample
HControl.exe
Resource
win7-20240704-en
Target
HControl
Size
364KB
MD5
23e92c5aabbd4619f0ec16d54e785318
SHA1
509165fe33d45e973b5a6615d8b210dad8a2aaa8
SHA256
2c2182aa1d6b70c6ac9c6778b2a5612d6c02b653109764a39d299c046006f860
SHA512
802474277edab5dacb05bb841b7c19bf11837d51d5371194f532f1e8257020758eb6d8106b694bf3c36afd74c339bd92d35ce818a8e3dfed1a189a6c4e5cc8fa
SSDEEP
6144:+kgwfOQlrM2gLKOVW0IiTUmgBV+UdvrEFp7hKhT:+kneLKOVW0IcgBjvrEH7y
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
d:\Recent\ATKRelation\ATK Hotkey\HControl\Release\HControl.pdb
CreateMutexA
OpenMutexA
GetProcAddress
GetModuleHandleA
GetCurrentProcess
GetVersionExA
GetCurrentThreadId
CreateFileA
WinExec
ProcessIdToSessionId
GetCurrentProcessId
CreateProcessA
OpenProcess
GetEnvironmentVariableA
GetModuleFileNameA
OpenEventA
GetSystemDirectoryA
InterlockedIncrement
InterlockedDecrement
LoadLibraryA
FreeLibrary
GetDriveTypeA
GetLogicalDrives
LocalFree
WTSGetActiveConsoleSessionId
LocalAlloc
WriteFile
ExpandEnvironmentStringsA
CompareStringW
CompareStringA
GetLocaleInfoW
ReadFile
SetEndOfFile
GetTimeZoneInformation
InterlockedExchange
SetConsoleCtrlHandler
HeapSize
InitializeCriticalSection
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetLastError
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
ExitProcess
HeapReAlloc
VirtualAlloc
FatalAppExitA
DeleteCriticalSection
CreateEventA
GetTickCount
CreateThread
WaitForMultipleObjects
DeviceIoControl
CloseHandle
SetEvent
WaitForSingleObject
GetExitCodeThread
TerminateThread
VirtualFree
HeapCreate
HeapDestroy
RaiseException
SetFilePointer
GetConsoleMode
GetConsoleCP
LeaveCriticalSection
EnterCriticalSection
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
SetEnvironmentVariableA
GetCurrentThread
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetProcessHeap
GetCommandLineA
RtlUnwind
HeapAlloc
HeapFree
Sleep
ResumeThread
GetTimeFormatA
SuspendThread
CreateWindowExA
RegisterClassExA
LoadCursorA
PostMessageA
DefWindowProcA
PeekMessageA
LoadIconA
LockWorkStation
FindWindowA
DestroyWindow
PostQuitMessage
GetSystemMetrics
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
GetMessageA
GetDlgItem
GetUserObjectInformationA
SetThreadDesktop
EnumDisplaySettingsExA
ChangeDisplaySettingsExA
EnumDisplayDevicesA
EnumDisplaySettingsA
ExitWindowsEx
GetForegroundWindow
keybd_event
GetThreadDesktop
GetLastInputInfo
UnregisterDeviceNotification
RegisterDeviceNotificationA
KillTimer
SetTimer
OpenInputDesktop
CloseDesktop
SendMessageA
RegisterWindowMessageA
AdjustTokenPrivileges
RegSetValueExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
RegQueryValueExA
CreateProcessAsUserA
DuplicateTokenEx
RegOpenKeyExA
ShellExecuteA
SHGetSpecialFolderPathA
CoCreateGuid
CoCreateInstance
CoTaskMemFree
PropVariantClear
CoInitializeEx
CoUninitialize
CoInitializeSecurity
VariantClear
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SysFreeString
SysAllocString
VariantInit
SafeArrayUnaccessData
WTSQuerySessionInformationA
WTSQueryUserToken
WTSFreeMemory
WTSRegisterSessionNotification
WTSUnRegisterSessionNotification
SetupDiGetDeviceRegistryPropertyA
SetupDiGetDeviceInstanceIdA
SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
DestroyEnvironmentBlock
CreateEnvironmentBlock
HidD_GetPreparsedData
HidD_FreePreparsedData
HidP_GetCaps
mciSendCommandA
StrRStrIA
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ