Report - ZeroBOX

ScreenShot

Info
Location map


Created	2024.09.02 10:30	Machine	s1_win7_x6401
Filename	66d1b41544279_build.exe
Type	PE32+ executable (GUI) x86-64, for MS Windows
AI Score	Not founds	Behavior Score	2.2
ZERO API	file : mailcious
VT API (file)	23 detected (AIDetectMalware, malicious, high confidence, GenericKD, Attribute, HighConfidence, MalwareX, SleepObf, Kryptik@AI, RDML, yKNjfil47gNo23RUsF4vmQ, PRIVATELOADER, YXEH5Z, Detected, ai score=83, Casdet)
md5	084e0e9053875ee1c7eb25799b4f2a55
sha256	e242523ba15340f0001135ef832d6c5a90e1349b0bbfa09f92737832dec60836
ssdeep	98304:2m1T2tvZagS9dAk4wAtqU/J1vD3NSPUv3KWQSy+Bk5dQI:2+T2txadAkBAtFRlfKkhBk
imphash	5baf00027826d0a6cac39c60cf82fa58
impfuzzy	192:occPu+RuudXEUh994ORosN5T6OXISF96SU1JehRPbOQR5E/exxw1X6jlmk:SuSdv943iIM4F1J4PbOQR5iexK1xk

Network IP location

Signature (5cnts)

Level	Description
warning	File has been identified by 23 AntiVirus engines on VirusTotal as malicious
notice	Allocates read-write-execute memory (usually to unpack itself)
notice	Foreign language identified in PE resource
notice	The binary likely contains encrypted or compressed data indicative of a packer
info	The executable contains unknown PE section names indicative of a packer (could be a false positive)

Rules (6cnts)

Level	Name	Description	Collection
watch	Malicious_Library_Zero	Malicious_Library	binaries (upload)
watch	UPX_Zero	UPX packed file	binaries (upload)
info	IsPE64	(no description)	binaries (upload)
info	mzp_file_format	MZP(Delphi) file format	binaries (upload)
info	OS_Processor_Check_Zero	OS Processor Check	binaries (upload)
info	PE_Header_Zero	PE File Signature	binaries (upload)

Network (0cnts) ?

Request	CC	ASN Co	IP4	Rule ?	ZERO ?

Suricata ids

PE API

IAT(Import Address Table) Library

oleaut32.dll
0xd14520 SysFreeString
0xd14528 SysReAllocStringLen
0xd14530 SysAllocStringLen
advapi32.dll
0xd14540 RegQueryValueExW
0xd14548 RegOpenKeyExW
0xd14550 RegCloseKey
user32.dll
0xd14560 CharNextW
0xd14568 LoadStringW
kernel32.dll
0xd14578 Sleep
0xd14580 VirtualFree
0xd14588 VirtualAlloc
0xd14590 lstrlenW
0xd14598 VirtualQuery
0xd145a0 QueryPerformanceCounter
0xd145a8 GetTickCount
0xd145b0 GetSystemInfo
0xd145b8 GetVersion
0xd145c0 CompareStringW
0xd145c8 IsValidLocale
0xd145d0 SetThreadLocale
0xd145d8 GetSystemDefaultUILanguage
0xd145e0 GetUserDefaultUILanguage
0xd145e8 GetLocaleInfoW
0xd145f0 WideCharToMultiByte
0xd145f8 MultiByteToWideChar
0xd14600 GetACP
0xd14608 LoadLibraryExW
0xd14610 GetStartupInfoW
0xd14618 GetProcAddress
0xd14620 GetModuleHandleW
0xd14628 GetModuleFileNameW
0xd14630 GetCommandLineW
0xd14638 FindResourceW
0xd14640 FreeLibrary
0xd14648 GetLastError
0xd14650 UnhandledExceptionFilter
0xd14658 RtlUnwindEx
0xd14660 RtlUnwind
0xd14668 RaiseException
0xd14670 ExitProcess
0xd14678 ExitThread
0xd14680 SwitchToThread
0xd14688 GetCurrentThreadId
0xd14690 CreateThread
0xd14698 DeleteCriticalSection
0xd146a0 LeaveCriticalSection
0xd146a8 EnterCriticalSection
0xd146b0 InitializeCriticalSection
0xd146b8 FindFirstFileW
0xd146c0 FindClose
0xd146c8 WriteFile
0xd146d0 GetStdHandle
0xd146d8 CloseHandle
kernel32.dll
0xd146e8 GetProcAddress
0xd146f0 RaiseException
0xd146f8 LoadLibraryA
0xd14700 GetLastError
0xd14708 TlsSetValue
0xd14710 TlsGetValue
0xd14718 LocalFree
0xd14720 LocalAlloc
0xd14728 GetModuleHandleW
0xd14730 FreeLibrary
user32.dll
0xd14740 WINNLSEnableIME
0xd14748 SetClassLongPtrW
0xd14750 GetClassLongPtrW
0xd14758 SetWindowLongPtrW
0xd14760 GetWindowLongPtrW
0xd14768 CreateWindowExW
0xd14770 WindowFromPoint
0xd14778 WaitMessage
0xd14780 UpdateLayeredWindow
0xd14788 UpdateWindow
0xd14790 UnregisterClassW
0xd14798 UnhookWindowsHookEx
0xd147a0 TranslateMessage
0xd147a8 TranslateMDISysAccel
0xd147b0 TrackPopupMenu
0xd147b8 TrackMouseEvent
0xd147c0 SystemParametersInfoW
0xd147c8 ShowWindow
0xd147d0 ShowScrollBar
0xd147d8 ShowOwnedPopups
0xd147e0 ShowCaret
0xd147e8 SetWindowRgn
0xd147f0 SetWindowsHookExW
0xd147f8 SetWindowTextW
0xd14800 SetWindowPos
0xd14808 SetWindowPlacement
0xd14810 SetTimer
0xd14818 SetScrollRange
0xd14820 SetScrollPos
0xd14828 SetScrollInfo
0xd14830 SetRect
0xd14838 SetPropW
0xd14840 SetParent
0xd14848 SetMenuItemInfoW
0xd14850 SetMenu
0xd14858 SetForegroundWindow
0xd14860 SetFocus
0xd14868 SetCursorPos
0xd14870 SetCursor
0xd14878 SetClipboardData
0xd14880 SetCapture
0xd14888 SetActiveWindow
0xd14890 SendMessageTimeoutW
0xd14898 SendMessageA
0xd148a0 SendMessageW
0xd148a8 ScrollWindow
0xd148b0 ScreenToClient
0xd148b8 RemovePropW
0xd148c0 RemoveMenu
0xd148c8 ReleaseDC
0xd148d0 ReleaseCapture
0xd148d8 RegisterWindowMessageW
0xd148e0 RegisterClipboardFormatW
0xd148e8 RegisterClassW
0xd148f0 RedrawWindow
0xd148f8 PostQuitMessage
0xd14900 PostMessageW
0xd14908 PeekMessageA
0xd14910 PeekMessageW
0xd14918 OpenClipboard
0xd14920 MsgWaitForMultipleObjectsEx
0xd14928 MsgWaitForMultipleObjects
0xd14930 MessageBoxIndirectW
0xd14938 MessageBoxW
0xd14940 MessageBeep
0xd14948 MapWindowPoints
0xd14950 MapVirtualKeyW
0xd14958 LoadStringW
0xd14960 LoadKeyboardLayoutW
0xd14968 LoadIconW
0xd14970 LoadCursorW
0xd14978 LoadBitmapW
0xd14980 KillTimer
0xd14988 IsZoomed
0xd14990 IsWindowVisible
0xd14998 IsWindowUnicode
0xd149a0 IsWindowEnabled
0xd149a8 IsWindow
0xd149b0 IsIconic
0xd149b8 IsDialogMessageA
0xd149c0 IsDialogMessageW
0xd149c8 IsChild
0xd149d0 InvalidateRect
0xd149d8 InsertMenuItemW
0xd149e0 InsertMenuW
0xd149e8 HideCaret
0xd149f0 GetWindowThreadProcessId
0xd149f8 GetWindowTextLengthW
0xd14a00 GetWindowTextW
0xd14a08 GetWindowRect
0xd14a10 GetWindowPlacement
0xd14a18 GetWindowDC
0xd14a20 GetUpdateRgn
0xd14a28 GetUpdateRect
0xd14a30 GetTopWindow
0xd14a38 GetSystemMetrics
0xd14a40 GetSystemMenu
0xd14a48 GetSysColorBrush
0xd14a50 GetSysColor
0xd14a58 GetSubMenu
0xd14a60 GetScrollRange
0xd14a68 GetScrollPos
0xd14a70 GetScrollInfo
0xd14a78 GetScrollBarInfo
0xd14a80 GetPropW
0xd14a88 GetParent
0xd14a90 GetWindow
0xd14a98 GetMessageTime
0xd14aa0 GetMessagePos
0xd14aa8 GetMessageExtraInfo
0xd14ab0 GetMenuStringW
0xd14ab8 GetMenuState
0xd14ac0 GetMenuItemInfoW
0xd14ac8 GetMenuItemID
0xd14ad0 GetMenuItemCount
0xd14ad8 GetMenu
0xd14ae0 GetLastActivePopup
0xd14ae8 GetKeyboardState
0xd14af0 GetKeyboardLayoutNameW
0xd14af8 GetKeyboardLayoutList
0xd14b00 GetKeyboardLayout
0xd14b08 GetKeyState
0xd14b10 GetKeyNameTextW
0xd14b18 GetIconInfo
0xd14b20 GetForegroundWindow
0xd14b28 GetFocus
0xd14b30 GetDlgCtrlID
0xd14b38 GetDesktopWindow
0xd14b40 GetDCEx
0xd14b48 GetDC
0xd14b50 GetCursorPos
0xd14b58 GetCursor
0xd14b60 GetClipboardData
0xd14b68 GetClientRect
0xd14b70 GetClassNameW
0xd14b78 GetClassInfoExW
0xd14b80 GetClassInfoW
0xd14b88 GetCapture
0xd14b90 GetActiveWindow
0xd14b98 FrameRect
0xd14ba0 FindWindowExW
0xd14ba8 FindWindowW
0xd14bb0 FillRect
0xd14bb8 EnumWindows
0xd14bc0 EnumThreadWindows
0xd14bc8 EnumChildWindows
0xd14bd0 EndPaint
0xd14bd8 EndMenu
0xd14be0 EnableWindow
0xd14be8 EnableScrollBar
0xd14bf0 EnableMenuItem
0xd14bf8 EmptyClipboard
0xd14c00 DrawTextExW
0xd14c08 DrawTextW
0xd14c10 DrawMenuBar
0xd14c18 DrawIconEx
0xd14c20 DrawIcon
0xd14c28 DrawFrameControl
0xd14c30 DrawFocusRect
0xd14c38 DrawEdge
0xd14c40 DispatchMessageA
0xd14c48 DispatchMessageW
0xd14c50 DestroyWindow
0xd14c58 DestroyMenu
0xd14c60 DestroyIcon
0xd14c68 DestroyCursor
0xd14c70 DeleteMenu
0xd14c78 DefWindowProcW
0xd14c80 DefMDIChildProcW
0xd14c88 DefFrameProcW
0xd14c90 CreatePopupMenu
0xd14c98 CreateMenu
0xd14ca0 CreateIcon
0xd14ca8 CreateAcceleratorTableW
0xd14cb0 CopyImage
0xd14cb8 CopyIcon
0xd14cc0 CloseClipboard
0xd14cc8 ClientToScreen
0xd14cd0 CheckMenuItem
0xd14cd8 CharUpperBuffW
0xd14ce0 CharUpperW
0xd14ce8 CharNextW
0xd14cf0 CharLowerBuffW
0xd14cf8 CharLowerW
0xd14d00 CallWindowProcW
0xd14d08 CallNextHookEx
0xd14d10 BeginPaint
0xd14d18 AppendMenuW
0xd14d20 AdjustWindowRectEx
0xd14d28 ActivateKeyboardLayout
gdi32.dll
0xd14d38 UnrealizeObject
0xd14d40 TextOutW
0xd14d48 StretchDIBits
0xd14d50 StretchBlt
0xd14d58 StartPage
0xd14d60 StartDocW
0xd14d68 SetWindowOrgEx
0xd14d70 SetWinMetaFileBits
0xd14d78 SetViewportOrgEx
0xd14d80 SetTextColor
0xd14d88 SetTextAlign
0xd14d90 SetStretchBltMode
0xd14d98 SetRectRgn
0xd14da0 SetROP2
0xd14da8 SetPixel
0xd14db0 SetMapMode
0xd14db8 SetEnhMetaFileBits
0xd14dc0 SetDIBits
0xd14dc8 SetDIBColorTable
0xd14dd0 SetBrushOrgEx
0xd14dd8 SetBkMode
0xd14de0 SetBkColor
0xd14de8 SetAbortProc
0xd14df0 SelectPalette
0xd14df8 SelectObject
0xd14e00 SaveDC
0xd14e08 RoundRect
0xd14e10 RestoreDC
0xd14e18 Rectangle
0xd14e20 RectVisible
0xd14e28 RealizePalette
0xd14e30 Polyline
0xd14e38 Polygon
0xd14e40 PolyBezierTo
0xd14e48 PolyBezier
0xd14e50 PlayEnhMetaFile
0xd14e58 Pie
0xd14e60 PatBlt
0xd14e68 MoveToEx
0xd14e70 MaskBlt
0xd14e78 LineTo
0xd14e80 LPtoDP
0xd14e88 IntersectClipRect
0xd14e90 GetWindowOrgEx
0xd14e98 GetWinMetaFileBits
0xd14ea0 GetTextMetricsW
0xd14ea8 GetTextExtentPointW
0xd14eb0 GetTextExtentPoint32W
0xd14eb8 GetTextAlign
0xd14ec0 GetSystemPaletteEntries
0xd14ec8 GetStockObject
0xd14ed0 GetRgnBox
0xd14ed8 GetRegionData
0xd14ee0 GetPixel
0xd14ee8 GetPaletteEntries
0xd14ef0 GetObjectA
0xd14ef8 GetObjectW
0xd14f00 GetEnhMetaFilePaletteEntries
0xd14f08 GetEnhMetaFileHeader
0xd14f10 GetEnhMetaFileDescriptionW
0xd14f18 GetEnhMetaFileBits
0xd14f20 GetDeviceCaps
0xd14f28 GetDIBits
0xd14f30 GetDIBColorTable
0xd14f38 GetCurrentPositionEx
0xd14f40 GetClipBox
0xd14f48 GetCharABCWidthsFloatW
0xd14f50 GetBrushOrgEx
0xd14f58 GetBitmapBits
0xd14f60 GdiFlush
0xd14f68 FrameRgn
0xd14f70 ExtTextOutW
0xd14f78 ExtFloodFill
0xd14f80 ExtCreateRegion
0xd14f88 ExcludeClipRect
0xd14f90 EnumFontsW
0xd14f98 EnumFontFamiliesExW
0xd14fa0 EndPage
0xd14fa8 EndDoc
0xd14fb0 Ellipse
0xd14fb8 DeleteObject
0xd14fc0 DeleteEnhMetaFile
0xd14fc8 DeleteDC
0xd14fd0 CreateSolidBrush
0xd14fd8 CreateRectRgn
0xd14fe0 CreatePenIndirect
0xd14fe8 CreatePalette
0xd14ff0 CreateICW
0xd14ff8 CreateHalftonePalette
0xd15000 CreateFontIndirectW
0xd15008 CreateFontW
0xd15010 CreateEnhMetaFileW
0xd15018 CreateDIBitmap
0xd15020 CreateDIBSection
0xd15028 CreateDCW
0xd15030 CreateCompatibleDC
0xd15038 CreateCompatibleBitmap
0xd15040 CreateBrushIndirect
0xd15048 CreateBitmap
0xd15050 CopyEnhMetaFileW
0xd15058 CombineRgn
0xd15060 CloseEnhMetaFile
0xd15068 Chord
0xd15070 BitBlt
0xd15078 ArcTo
0xd15080 Arc
0xd15088 AngleArc
0xd15090 AbortDoc
version.dll
0xd150a0 VerQueryValueW
0xd150a8 GetFileVersionInfoSizeW
0xd150b0 GetFileVersionInfoW
kernel32.dll
0xd150c0 lstrlenW
0xd150c8 WriteFile
0xd150d0 WideCharToMultiByte
0xd150d8 WaitForSingleObject
0xd150e0 WaitForMultipleObjectsEx
0xd150e8 VirtualQueryEx
0xd150f0 VirtualQuery
0xd150f8 VirtualProtect
0xd15100 VirtualFree
0xd15108 VirtualAlloc
0xd15110 VerSetConditionMask
0xd15118 VerifyVersionInfoW
0xd15120 TryEnterCriticalSection
0xd15128 SwitchToThread
0xd15130 SuspendThread
0xd15138 Sleep
0xd15140 SizeofResource
0xd15148 SetThreadPriority
0xd15150 SetThreadLocale
0xd15158 SetLastError
0xd15160 SetFilePointer
0xd15168 SetEvent
0xd15170 SetErrorMode
0xd15178 SetEndOfFile
0xd15180 ResumeThread
0xd15188 ResetEvent
0xd15190 RemoveDirectoryW
0xd15198 ReadFile
0xd151a0 RaiseException
0xd151a8 QueryPerformanceFrequency
0xd151b0 QueryPerformanceCounter
0xd151b8 IsDebuggerPresent
0xd151c0 OutputDebugStringW
0xd151c8 MulDiv
0xd151d0 LockResource
0xd151d8 LocalFree
0xd151e0 LoadResource
0xd151e8 LoadLibraryW
0xd151f0 LeaveCriticalSection
0xd151f8 LCMapStringW
0xd15200 IsValidLocale
0xd15208 InitializeCriticalSection
0xd15210 HeapSize
0xd15218 HeapFree
0xd15220 HeapDestroy
0xd15228 HeapCreate
0xd15230 HeapAlloc
0xd15238 GlobalUnlock
0xd15240 GlobalSize
0xd15248 GlobalLock
0xd15250 GlobalFree
0xd15258 GlobalFindAtomW
0xd15260 GlobalDeleteAtom
0xd15268 GlobalAlloc
0xd15270 GlobalAddAtomW
0xd15278 GetVersionExW
0xd15280 GetVersion
0xd15288 GetUserDefaultLCID
0xd15290 GetTickCount
0xd15298 GetThreadPriority
0xd152a0 GetThreadLocale
0xd152a8 GetTempPathW
0xd152b0 GetSystemDirectoryW
0xd152b8 GetStdHandle
0xd152c0 GetLongPathNameW
0xd152c8 GetProcAddress
0xd152d0 GetModuleHandleW
0xd152d8 GetModuleFileNameW
0xd152e0 GetLocaleInfoW
0xd152e8 GetLocalTime
0xd152f0 GetLastError
0xd152f8 GetFullPathNameW
0xd15300 GetFileAttributesW
0xd15308 GetExitCodeThread
0xd15310 GetDiskFreeSpaceW
0xd15318 GetDateFormatW
0xd15320 GetCurrentThreadId
0xd15328 GetCurrentThread
0xd15330 GetCurrentProcessId
0xd15338 GetCurrentProcess
0xd15340 GetComputerNameW
0xd15348 GetCPInfoExW
0xd15350 GetCPInfo
0xd15358 GetACP
0xd15360 FreeResource
0xd15368 FreeLibrary
0xd15370 FormatMessageW
0xd15378 FindResourceW
0xd15380 FindFirstFileW
0xd15388 FindClose
0xd15390 ExpandEnvironmentStringsW
0xd15398 EnumSystemLocalesW
0xd153a0 EnumResourceNamesW
0xd153a8 EnumCalendarInfoW
0xd153b0 EnterCriticalSection
0xd153b8 DeleteFileW
0xd153c0 DeleteCriticalSection
0xd153c8 CreateThread
0xd153d0 CreateFileW
0xd153d8 CreateEventW
0xd153e0 CompareStringW
0xd153e8 CloseHandle
advapi32.dll
0xd153f8 RegUnLoadKeyW
0xd15400 RegSetValueExW
0xd15408 RegSaveKeyW
0xd15410 RegRestoreKeyW
0xd15418 RegReplaceKeyW
0xd15420 RegQueryValueExW
0xd15428 RegQueryInfoKeyW
0xd15430 RegOpenKeyExW
0xd15438 RegLoadKeyW
0xd15440 RegFlushKey
0xd15448 RegEnumValueW
0xd15450 RegEnumKeyW
0xd15458 RegEnumKeyExW
0xd15460 RegDeleteValueW
0xd15468 RegDeleteKeyW
0xd15470 RegCreateKeyExW
0xd15478 RegConnectRegistryW
0xd15480 RegCloseKey
kernel32.dll
0xd15490 Sleep
oleaut32.dll
0xd154a0 SafeArrayPtrOfIndex
0xd154a8 SafeArrayGetUBound
0xd154b0 SafeArrayGetLBound
0xd154b8 SafeArrayCreate
0xd154c0 VariantChangeType
0xd154c8 VariantCopyInd
0xd154d0 VariantCopy
0xd154d8 VariantClear
0xd154e0 VariantInit
oleaut32.dll
0xd154f0 GetErrorInfo
0xd154f8 GetActiveObject
0xd15500 SysFreeString
ole32.dll
0xd15510 CreateStreamOnHGlobal
0xd15518 OleRegEnumVerbs
0xd15520 IsAccelerator
0xd15528 ReleaseStgMedium
0xd15530 OleDraw
0xd15538 OleSetMenuDescriptor
0xd15540 DoDragDrop
0xd15548 RevokeDragDrop
0xd15550 RegisterDragDrop
0xd15558 OleUninitialize
0xd15560 OleInitialize
0xd15568 CoTaskMemFree
0xd15570 CoTaskMemAlloc
0xd15578 ProgIDFromCLSID
0xd15580 StringFromCLSID
0xd15588 CoCreateInstance
0xd15590 CoGetClassObject
0xd15598 CoUninitialize
0xd155a0 CoInitialize
0xd155a8 IsEqualGUID
comctl32.dll
0xd155b8 InitializeFlatSB
0xd155c0 FlatSB_SetScrollProp
0xd155c8 FlatSB_SetScrollPos
0xd155d0 FlatSB_SetScrollInfo
0xd155d8 FlatSB_GetScrollPos
0xd155e0 FlatSB_GetScrollInfo
0xd155e8 _TrackMouseEvent
0xd155f0 ImageList_GetImageInfo
0xd155f8 ImageList_SetIconSize
0xd15600 ImageList_GetIconSize
0xd15608 ImageList_Write
0xd15610 ImageList_Read
0xd15618 ImageList_GetDragImage
0xd15620 ImageList_DragShowNolock
0xd15628 ImageList_DragMove
0xd15630 ImageList_DragLeave
0xd15638 ImageList_DragEnter
0xd15640 ImageList_EndDrag
0xd15648 ImageList_BeginDrag
0xd15650 ImageList_Copy
0xd15658 ImageList_LoadImageW
0xd15660 ImageList_GetIcon
0xd15668 ImageList_Remove
0xd15670 ImageList_DrawEx
0xd15678 ImageList_Replace
0xd15680 ImageList_Draw
0xd15688 ImageList_SetOverlayImage
0xd15690 ImageList_GetBkColor
0xd15698 ImageList_SetBkColor
0xd156a0 ImageList_ReplaceIcon
0xd156a8 ImageList_Add
0xd156b0 ImageList_SetImageCount
0xd156b8 ImageList_GetImageCount
0xd156c0 ImageList_Destroy
0xd156c8 ImageList_Create
user32.dll
0xd156d8 EnumDisplayMonitors
0xd156e0 GetMonitorInfoW
0xd156e8 MonitorFromPoint
0xd156f0 MonitorFromRect
0xd156f8 MonitorFromWindow
msvcrt.dll
0xd15708 isxdigit
0xd15710 isupper
0xd15718 isspace
0xd15720 ispunct
0xd15728 isprint
0xd15730 islower
0xd15738 isgraph
0xd15740 isdigit
0xd15748 iscntrl
0xd15750 isalpha
0xd15758 isalnum
0xd15760 toupper
0xd15768 tolower
0xd15770 strchr
0xd15778 strncmp
0xd15780 memset
0xd15788 memcpy
0xd15790 memcmp
shell32.dll
0xd157a0 ShellExecuteW
0xd157a8 Shell_NotifyIconW
0xd157b0 DragQueryFileW
comdlg32.dll
0xd157c0 PageSetupDlgW
0xd157c8 PrintDlgW
0xd157d0 GetSaveFileNameW
0xd157d8 GetOpenFileNameW
winspool.drv
0xd157e8 SetPrinterW
0xd157f0 OpenPrinterW
0xd157f8 GetPrinterW
0xd15800 GetDefaultPrinterW
0xd15808 EnumPrintersW
0xd15810 DocumentPropertiesW
0xd15818 DeviceCapabilitiesW
0xd15820 ClosePrinter
winspool.drv
0xd15830 GetDefaultPrinterW
winmm.dll
0xd15840 timeGetTime
d3d9.dll
0xd15850 Direct3DCreate9

EAT(Export Address Table) Library

0x49f500 TMethodImplementationIntercept
0x417bc0 __dbk_fcall_wrapper
0xcf7f58 dbkFCallWrapperAddr

Report - 66d1b41544279_build.exe

Signature (5cnts)

Rules (6cnts)

Network (0cnts) ?

Suricata ids

PE API

Similarity measure (PE file only) - Checking for service failure