DllRegisterServer
UCTZiYGViyQbzVuGnbHyw
XxCcdtqp8iwfvW9NBN9MV
YNMYqnzadzJPXZ2zDkdRe
jEQ2uTHnv4apm8gHy2Lni
pxJTkgUAj6dSu6WgtZQt5
vzjazkhVDC4VWGpyrER9V
Static task
static1
Behavioral task
behavioral1
Sample
830f0d134de2f4fd05bda9c095ec43f21e56c35083ed767ca78ebf2f2a1e236a.dll
Resource
win7-20241010-en
Target
830f0d134de2f4fd05bda9c095ec43f21e56c35083ed767ca78ebf2f2a1e236a
Size
474KB
MD5
e1176533b6a93c12492ec8610baf429b
SHA1
acabee9a09978c593225d5f48f8db0931c086353
SHA256
830f0d134de2f4fd05bda9c095ec43f21e56c35083ed767ca78ebf2f2a1e236a
SHA512
1cd3b20a93c443a7a8eab12e3e488de4e55eb0ec103e983d0ef0a53d4de0f3a9e79ca003c74b47c966eb46b09634df7b9a9e2a98fe1e98c0761c5cc2acce475f
SSDEEP
12288:kanNc33WelXH64VWE9HKRU2wKUNuugOOP:tnu33Wa6sN9NeAuW
Checks for missing Authenticode signature.
Processes:
resource |
---|
830f0d134de2f4fd05bda9c095ec43f21e56c35083ed767ca78ebf2f2a1e236a |
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
ExitProcess
VirtualAlloc
SetEndOfFile
CreateFileW
OutputDebugStringW
ReadConsoleW
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
EncodePointer
DecodePointer
MultiByteToWideChar
GetStringTypeW
RtlPcToFileHeader
RaiseException
RtlLookupFunctionEntry
RtlUnwindEx
GetLastError
HeapFree
GetCommandLineA
GetCurrentThreadId
GetCPInfo
HeapAlloc
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
GetProcAddress
IsProcessorFeaturePresent
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetModuleHandleExW
AreFileApisANSI
HeapSize
IsDebuggerPresent
GetProcessHeap
CloseHandle
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
GetStdHandle
GetFileType
ReadFile
SetFilePointerEx
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameW
IsValidCodePage
GetACP
GetOEMCP
HeapReAlloc
LoadLibraryExW
SetStdHandle
WriteConsoleW
CoTaskMemFree
CoTaskMemAlloc
CoLoadLibrary
DllRegisterServer
UCTZiYGViyQbzVuGnbHyw
XxCcdtqp8iwfvW9NBN9MV
YNMYqnzadzJPXZ2zDkdRe
jEQ2uTHnv4apm8gHy2Lni
pxJTkgUAj6dSu6WgtZQt5
vzjazkhVDC4VWGpyrER9V
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ