Extended Key Usages
ExtKeyUsageCodeSigning
Static task
static1
Behavioral task
behavioral1
Sample
Gosjeufon.cpl.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
Gosjeufon.cpl.exe
Resource
win10v2004-20241007-en
Target
Gosjeufon.cpl.bin
Size
881KB
MD5
9049faba5517305c44bd5f28398fb6b9
SHA1
036c6b32f3e7d7d689c9b4d482091eebcc669bfa
SHA256
d2100ffe58eb50c05d97a3da738ccd1f0be9672c057c26a10140af80595b78c3
SHA512
65a33506f970675775468f80b94a3f8bb2d3672e6fb08fc9f2e5107020095ca6d4bca927c59b72488e2ef4208a64a56ced7511ea14c0445cd50ea3ff9b827f6a
SSDEEP
12288:I2wMm7l55+OeO+OeNhBBhhBBaELPA081o9baXpL3K+HDFgZUid4X9dCU5+Kazw4t:I2wMm7lfCIL3K+gY9dfcw4h3DX9X1
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Z:\scvhost\Release\scvhost.pdb
InitializeCriticalSectionEx
FindClose
WaitForSingleObject
GetModuleHandleA
OpenProcess
HeapSize
CreateToolhelp32Snapshot
CreateEventW
Sleep
GetTempPathA
FormatMessageW
CopyFileA
GetLastError
Process32NextW
SetEvent
TerminateThread
TlsAlloc
Process32FirstW
HeapReAlloc
LeaveCriticalSection
RaiseException
ResetEvent
HeapAlloc
QueueUserAPC
DecodePointer
GetProcAddress
LocalFree
DeleteCriticalSection
GetProcessHeap
CreateProcessW
WideCharToMultiByte
SleepEx
TlsGetValue
TlsFree
FormatMessageA
IsDebuggerPresent
WriteConsoleW
CreateFileW
SetStdHandle
InitializeCriticalSectionAndSpinCount
WaitForMultipleObjects
GetModuleFileNameW
TerminateProcess
GetCurrentProcess
FindNextFileW
EnterCriticalSection
HeapFree
TlsSetValue
CloseHandle
FindFirstFileW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
SetLastError
QueryPerformanceCounter
QueryPerformanceFrequency
WaitForSingleObjectEx
GetCurrentThreadId
GetNativeSystemInfo
InitializeConditionVariable
WakeConditionVariable
WakeAllConditionVariable
SleepConditionVariableCS
SleepConditionVariableSRW
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
TryEnterCriticalSection
GetSystemTimeAsFileTime
GetModuleHandleW
EncodePointer
MultiByteToWideChar
LCMapStringEx
GetStringTypeW
GetCPInfo
OutputDebugStringW
InitializeSListHead
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetCurrentProcessId
RtlUnwind
InterlockedPushEntrySList
FreeLibrary
LoadLibraryExW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetModuleFileNameA
GetStdHandle
WriteFile
GetCommandLineA
GetCommandLineW
GetACP
GetFileType
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
DeleteFileW
MoveFileExW
ReadFile
ReadConsoleW
SetFilePointerEx
SetEndOfFile
LookupPrivilegeValueW
AdjustTokenPrivileges
RegCloseKey
RegGetValueA
RegCreateKeyExW
RegSetValueExW
OpenProcessToken
RegOpenKeyExW
RegCreateKeyW
RegQueryValueExW
SHGetKnownFolderPath
CoTaskMemFree
WSAStartup
WSACleanup
BCryptGenRandom
BCryptCloseAlgorithmProvider
BCryptOpenAlgorithmProvider
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ