Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Static task
static1
Behavioral task
behavioral1
Sample
Video fragment of the movie script.exe
Resource
win7-20240903-en
Target
Requirements and film scenarios by Žbanić(checked by Avast antivirus).zip
Size
819KB
MD5
246635206c6bbd31ab6d08c3cc62b3e4
SHA1
0a8e9de880dddbdc8cf947977ea4201288b905af
SHA256
3b304c9645018a8d032b649931401efd2d0e73c7eaba630e3d4490b43ec37a59
SHA512
ed593cbe4620a6cab47617fe60210ffb148afe9fce6cba8ae489b084b3d6e6d9f748fc9eaeacdd1979a2d35777dfe6eb3a8cd389add6804a21e95250fc9028d4
SSDEEP
12288:Vbr8bvwftqwb1df9bcNlAE9oLvZbPazPt3aUI4P3ZkqvVo56Tf1u8/84N0U6zSuf:VbrCo1zbA8bP+tK4PVVLEjU03SYB
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
GetCurrentProcess
DeviceIoControl
GetLastError
SetLastError
QueryPerformanceCounter
GetSystemDirectoryA
CloseHandle
GetVersionExA
GetDriveTypeA
GetVolumeInformationA
SetErrorMode
DuplicateHandle
Sleep
VirtualAlloc
VirtualFree
QueryPerformanceFrequency
CreateFileA
DisableThreadLibraryCalls
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetThreadExecutionState
LocalAlloc
FreeLibrary
InterlockedExchange
LoadLibraryA
RaiseException
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
WideCharToMultiByte
GetTimeZoneInformation
HeapDestroy
HeapCreate
HeapReAlloc
WriteFile
FlushFileBuffers
ExitProcess
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
VirtualQuery
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetLocaleInfoA
SetFilePointer
SetStdHandle
LCMapStringA
LCMapStringW
GetTickCount
GetCurrentProcessId
SetEndOfFile
ReadFile
VirtualProtect
GetSystemInfo
HeapSize
CompareStringA
CompareStringW
SetEnvironmentVariableA
CloakCDR_SendCommand
ElbyCDIO_ClearAllUsedTitles
ElbyCDIO_ClearAllValidTitles
ElbyCDIO_ClearUsedTitle
ElbyCDIO_ClearUsedTitles
ElbyCDIO_ClearValidTitle
ElbyCDIO_ClearValidTitles
ElbyCDIO_CloseScanTargets
ElbyCDIO_CloseTarget
ElbyCDIO_CreateDevice
ElbyCDIO_CreateFile
ElbyCDIO_DeInitScsi
ElbyCDIO_DisableAutoInsertNotification
ElbyCDIO_DisablePowerSaving
ElbyCDIO_DoScsiIO
ElbyCDIO_Eject
ElbyCDIO_EnableAutoInsertNotification
ElbyCDIO_EnablePowerSaving
ElbyCDIO_EnableUsedTitles
ElbyCDIO_EnableValidTitles
ElbyCDIO_EnumTargets
ElbyCDIO_ExCloseTray
ElbyCDIO_ExDoScsiIO
ElbyCDIO_ExEject
ElbyCDIO_ExToggleTray
ElbyCDIO_Free
ElbyCDIO_GetDllVersion
ElbyCDIO_GetDriveLetter
ElbyCDIO_GetDriveName
ElbyCDIO_GetDriverVersion
ElbyCDIO_GetFileVersion
ElbyCDIO_GetMaxTransferSize
ElbyCDIO_GetOSVersion
ElbyCDIO_GetPerformance
ElbyCDIO_GetScsiAddress
ElbyCDIO_GetUsedTitle
ElbyCDIO_GetValidTitle
ElbyCDIO_InitScsi
ElbyCDIO_InitScsiAspi
ElbyCDIO_InitScsiEx
ElbyCDIO_LockBuffer
ElbyCDIO_LockTarget
ElbyCDIO_Malloc
ElbyCDIO_OpenTarget1
ElbyCDIO_OpenTarget2
ElbyCDIO_OpenTarget3
ElbyCDIO_OpenTargetLetter
ElbyCDIO_Perform
ElbyCDIO_PreventAllowMediumRemoval
ElbyCDIO_ReadItem
ElbyCDIO_RegCreateKeyEx
ElbyCDIO_RegDeleteKey
ElbyCDIO_RegOpenKeyEx
ElbyCDIO_SameBus
ElbyCDIO_ScanAndOpenTargets
ElbyCDIO_SendPrivateCommand
ElbyCDIO_SetUsedTitle
ElbyCDIO_SetValidTitle
ElbyCDIO_UnLockTarget
ElbyCDIO_UnlockBuffer
ElbyCDIO_UsesLockedIO
ElbyCDIO_UsesNoTimedIO
ElbyCDIO_UsesWinASPI32
ElbyCDIO_WriteItem
IoAddSafeHead
IoAddSafeTail
IoCreateList
IoCreateSafeList
IoDeInitSafeList
IoDeleteList
IoDeleteSafeList
IoEnqueue
IoGetSafeHead
IoGetSafeTail
IoInitSafeList
IoIsSafeEmpty
IoObtainSafeList
IoReleaseSafeList
IoRemHead
IoRemSafeHead
IoRemSafeTail
IoRemTail
RegKill_SendCommand
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
ElbyCDIO_CreateDevice
ElbyCDIO_OpenTarget3
ElbyCDIO_GetScsiAddress
ElbyCDIO_InitScsi
ElbyCDIO_GetOSVersion
ElbyCDIO_ExEject
ElbyCDIO_ExToggleTray
ElbyCDIO_OpenTargetLetter
ElbyCDIO_ExCloseTray
ElbyCDIO_CloseTarget
ElbyCDIO_SendPrivateCommand
CM_Locate_DevNodeA
CM_Reenumerate_DevNode
FindClose
FindFirstFileA
FindFirstFileW
CreateFileW
CreateFileA
GetDiskFreeSpaceA
GetFullPathNameA
GetPrivateProfileStringA
GetLastError
GetFileSize
ReadFile
SetFilePointer
SetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryA
GetCurrentThreadId
GetCurrentProcessId
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapSize
GetFullPathNameW
MultiByteToWideChar
lstrlenW
lstrlenA
WideCharToMultiByte
lstrcmpiA
CloseHandle
DeviceIoControl
GetDriveTypeA
HeapFree
HeapAlloc
HeapReAlloc
RaiseException
RtlUnwind
GetCommandLineA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
SetUnhandledExceptionFilter
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
InterlockedExchange
VirtualQuery
VirtualProtect
GetSystemInfo
GetStringTypeA
GetStringTypeW
GetCPInfo
GetLocaleInfoA
GetACP
GetOEMCP
SetStdHandle
FlushFileBuffers
IsBadReadPtr
IsBadCodePtr
LoadLibraryA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
SetEndOfFile
wsprintfW
FindWindowA
SendMessageA
wsprintfA
RegQueryValueExW
RegDeleteValueA
RegSetValueExA
RegSetValueExW
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
CloseVCCD
OpenVCCD
OpenVCCDLetter
PurgeHistory
VCCDCloseDevice
VCCDCloseTray
VCCDEjectTray
VCCDGetDrives
VCCDGetStatus
VCCDInit
VCCDIsInstalled
VCCDIsInstalledEx
VCCDMultiOpenDevice
VCCDMultiOpenDeviceEx
VCCDNop
VCCDOpenDevice
VCCDOpenDeviceW
VCCDOpenLastMountedFile
VCCDOpenLastMountedFiles
VCCDRestoreDrives
VCCDSetDrives
VCCDToggleTray
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
VCCDInit
VCCDRestoreDrives
VCCDGetDrives
VCCDOpenLastMountedFile
VCCDGetStatus
VCCDCloseDevice
VCCDOpenDeviceW
OpenVCCDLetter
VCCDOpenDevice
CloseVCCD
ElbyCDIO_GetOSVersion
ElbyCDIO_InitScsi
lstrcpyA
GetExitCodeProcess
WaitForSingleObject
CloseHandle
CreateProcessW
CreateProcessA
MultiByteToWideChar
lstrlenW
GetDriveTypeA
GetLastError
CreateEventA
GetModuleFileNameW
GetModuleFileNameA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
HeapSize
SetEndOfFile
InterlockedExchange
RtlUnwind
GetOEMCP
GetACP
CreateFileA
SetFilePointer
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
VirtualQuery
GetSystemInfo
VirtualProtect
GetCPInfo
GetLocaleInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
lstrcatA
LoadLibraryA
WriteFile
TerminateProcess
ExitProcess
FreeLibrary
GetModuleHandleA
GetProcAddress
GetCurrentProcess
lstrcmpA
lstrlenA
lstrcmpiA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
ReadFile
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
LCMapStringW
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersionExA
LCMapStringA
GetSystemTimeAsFileTime
TrackPopupMenu
PostMessageA
LoadImageA
wsprintfA
SetForegroundWindow
wsprintfW
MessageBoxA
GetMessageA
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterWindowMessageA
RegisterClassExA
DestroyWindow
PostQuitMessage
GetMenu
GetSubMenu
DefWindowProcA
GetCursorPos
DestroyMenu
SetTimer
KillTimer
CreateWindowExA
SetMenuDefaultItem
CreatePopupMenu
AppendMenuW
AppendMenuA
MessageBoxW
GetStockObject
GetOpenFileNameW
GetOpenFileNameA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExW
RegDeleteValueA
ShellExecuteA
Shell_NotifyIconA
CreateClassMoniker
CoUninitialize
CoInitialize
GetRunningObjectTable
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ