Behaviors
List of software behaviors discovered with static code analysis.
Contains IP addresses. (x3)
network
Decrypts data using the Windows Data Protection API. (x3)
execution
Enumerates system information. (x3)
search
Contains URLs. (x1)
network
Loads additional libraries. (x3)
execution
Loads additional APIs. (x3)
execution
Contains patterns identifying the constants related to the SHA-256 hash function, from the SHA-2 hash family. (x5)
signature
Enumerates user locale information. (x3)
search
Contains reference to bcrypt.dll which is Windows Cryptographic Primitives Library (Wow64). (x3)
execution
Contains a reference to a common dynamic library or an executable file. (x6)
execution