312d549ac168b2e30cda64ffb1db9bfd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

312d549ac168b2e30cda64ffb1db9bfd_JaffaCakes118
Size

723KB
MD5

312d549ac168b2e30cda64ffb1db9bfd
SHA1

70bdef9e2006d1c9c9c728bcbdbfc459a0962883
SHA256

65fc29146d22553c2ed6da4a5f75f474c7bee0c64690d88fc6180c18510a2c92
SHA512

ec96abf734d03ae1bab9a59035ca5b04cdc6abe8c1e9d42c82a036bf43c4930475922daeb3f4547b5789b31e73150de4baaf3f622e625cbe1ffbf5c533c17fc1
SSDEEP

12288:+AC/2m+2R3/mkNWmnIekySw6sQ/tBgZ651Ps4EOJkemDcMjjNJJyQBYEuABvMW:PC/L3/mkHdky0sQrAQLE4iDcUjNyQuEp

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/bpp.exe
unpack001/cbtpc.exe
unpack001/dbtpc.exe
unpack001/psnr.exe

Files

312d549ac168b2e30cda64ffb1db9bfd_JaffaCakes118
.zip
bpp.cpp
bpp.exe
.exe windows:1 windows x86 arch:x86

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
DragQueryPoint
ExtractAssociatedIconA
ExtractIconA
FindExecutableA
SHAddToRecentDocs
SHFileOperationA
SHGetFileInfoA
ShellExecuteA

winmm

PlaySoundA
waveOutGetNumDevs

advapi32

AbortSystemShutdownA
GetUserNameA
InitiateSystemShutdownA

comctl32

ord17
ord16
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_DrawEx
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Merge
ImageList_Remove
ImageList_ReplaceIcon
ImageList_Replace
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetOverlayImage

gdi32

AbortDoc
ArcTo
Arc
BitBlt
Chord
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateEllipticRgn
CreateFontIndirectA
CreateHatchBrush
CreateICA
CreatePalette
CreatePatternBrush
CreatePen
CreatePolyPolygonRgn
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EndDoc
EndPage
EqualRgn
ExtFloodFill
ExtTextOutA
FillRgn
FrameRgn
GetArcDirection
GetBkColor
GetBkMode
GetBrushOrgEx
GetClipBox
GetCurrentObject
GetCurrentPositionEx
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectA
GetPolyFillMode
GetROP2
GetRgnBox
GetStockObject
GetTextAlign
GetTextColor
GetTextExtentExPointA
GetTextExtentPoint32A
GetTextExtentPointA
GetTextFaceA
GetTextMetricsA
InvertRgn
LineTo
MoveToEx
OffsetRgn
PaintRgn
PatBlt
Pie
PolyBezierTo
PolyBezier
PolyPolygon
Polygon
PolylineTo
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetArcDirection
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
SetTextCharacterExtra
SetTextColor
StartDocA
StartPage
StretchBlt
TextOutA
UpdateColors

user32

AttachThreadInput
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
CharLowerBuffA
CharUpperBuffA
CheckMenuItem
ClientToScreen
ClipCursor
CloseClipboard
CopyAcceleratorTableA
CopyImage
CreateAcceleratorTableA
CreateDialogIndirectParamA
CreateDialogParamA
CreateIconIndirect
CreateMenu
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DeferWindowPos
DestroyAcceleratorTable
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DispatchMessageA
DrawFocusRect
DrawIcon
DrawIconEx
DrawMenuBar
DrawTextA
DrawTextExA
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumChildWindows
EnumThreadWindows
EnumWindows
FillRect
FrameRect
GetActiveWindow
GetAsyncKeyState
GetCapture
GetClassNameA
GetClientRect
GetClipCursor
GetClipboardData
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetMenuCheckMarkDimensions
GetMenu
GetMenuContextHelpId
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetMessageA
GetNextDlgGroupItem
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindowContextHelpId
GetWindowDC
GetWindowLongA
GetWindow
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
InSendMessage
InsertMenuA
InvalidateRect
InvalidateRgn
InvertRect
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadStringA
LockWindowUpdate
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ReplyMessage
ScreenToClient
ScrollWindow
SendMessageA
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetMenuContextHelpId
SetMenuItemBitmaps
SetMenuItemInfoA
SetParent
SetPropA
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
SetWindowsHookExA
ShowCursor
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateAcceleratorA
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
ValidateRect
ValidateRgn
WaitMessage
WinHelpA
WindowFromPoint
wsprintfA

kernel32

AddAtomA
CloseHandle
CopyFileA
CreateEventA
CreateFileA
CreateMutexA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileA
DosDateTimeToFileTime
DuplicateHandle
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetComputerNameA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentProcess
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeThread
GetFileAttributesA
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProfileStringA
GetStdHandle
GetSystemDirectoryA
GetSystemTime
GetThreadPriority
GetTickCount
GetTimeZoneInformation
GetVersionExA
GetVersion
GetWindowsDirectoryA
GlobalAlloc
GlobalFlags
GlobalFree
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalFileTimeToFileTime
LocalFree
LockResource
MoveFileA
MulDiv
MultiByteToWideChar
OpenEventA
OpenFile
OpenMutexA
OpenSemaphoreA
OutputDebugStringA
PulseEvent
ReadConsoleInputA
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
ResumeThread
SearchPathA
SetConsoleCtrlHandler
SetConsoleMode
SetCurrentDirectoryA
SetEnvironmentVariableA
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteFile
WritePrivateProfileStringA
WriteProfileStringA
_hread
_hwrite
_lclose
_llseek
lstrcpyA
lstrcpynA

Sections

AUTO
Size: 286KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 46KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 17KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 21KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
cbtpc.cpp
cbtpc.exe
.exe windows:1 windows x86 arch:x86

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
DragQueryPoint
ExtractAssociatedIconA
ExtractIconA
FindExecutableA
SHAddToRecentDocs
SHFileOperationA
SHGetFileInfoA
ShellExecuteA

winmm

PlaySoundA
waveOutGetNumDevs

advapi32

AbortSystemShutdownA
GetUserNameA
InitiateSystemShutdownA

comctl32

ord17
ord16
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_DrawEx
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Merge
ImageList_Remove
ImageList_ReplaceIcon
ImageList_Replace
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetOverlayImage

gdi32

AbortDoc
ArcTo
Arc
BitBlt
Chord
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateEllipticRgn
CreateFontIndirectA
CreateHatchBrush
CreateICA
CreatePalette
CreatePatternBrush
CreatePen
CreatePolyPolygonRgn
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EndDoc
EndPage
EqualRgn
ExtFloodFill
ExtTextOutA
FillRgn
FrameRgn
GetArcDirection
GetBkColor
GetBkMode
GetBrushOrgEx
GetClipBox
GetCurrentObject
GetCurrentPositionEx
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectA
GetPolyFillMode
GetROP2
GetRgnBox
GetStockObject
GetTextAlign
GetTextColor
GetTextExtentExPointA
GetTextExtentPoint32A
GetTextExtentPointA
GetTextFaceA
GetTextMetricsA
InvertRgn
LineTo
MoveToEx
OffsetRgn
PaintRgn
PatBlt
Pie
PolyBezierTo
PolyBezier
PolyPolygon
Polygon
PolylineTo
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetArcDirection
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
SetTextCharacterExtra
SetTextColor
StartDocA
StartPage
StretchBlt
TextOutA
UpdateColors

user32

AttachThreadInput
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
CharLowerBuffA
CharUpperBuffA
CheckMenuItem
ClientToScreen
ClipCursor
CloseClipboard
CopyAcceleratorTableA
CopyImage
CreateAcceleratorTableA
CreateDialogIndirectParamA
CreateDialogParamA
CreateIconIndirect
CreateMenu
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DeferWindowPos
DestroyAcceleratorTable
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DispatchMessageA
DrawFocusRect
DrawIcon
DrawIconEx
DrawMenuBar
DrawTextA
DrawTextExA
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumChildWindows
EnumThreadWindows
EnumWindows
FillRect
FrameRect
GetActiveWindow
GetAsyncKeyState
GetCapture
GetClassNameA
GetClientRect
GetClipCursor
GetClipboardData
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetMenuCheckMarkDimensions
GetMenu
GetMenuContextHelpId
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetMessageA
GetNextDlgGroupItem
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindowContextHelpId
GetWindowDC
GetWindowLongA
GetWindow
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
InSendMessage
InsertMenuA
InvalidateRect
InvalidateRgn
InvertRect
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadStringA
LockWindowUpdate
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ReplyMessage
ScreenToClient
ScrollWindow
SendMessageA
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetMenuContextHelpId
SetMenuItemBitmaps
SetMenuItemInfoA
SetParent
SetPropA
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
SetWindowsHookExA
ShowCursor
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateAcceleratorA
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
ValidateRect
ValidateRgn
WaitMessage
WinHelpA
WindowFromPoint
wsprintfA

kernel32

AddAtomA
CloseHandle
CopyFileA
CreateEventA
CreateFileA
CreateMutexA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileA
DosDateTimeToFileTime
DuplicateHandle
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetComputerNameA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentProcess
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeThread
GetFileAttributesA
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProfileStringA
GetStdHandle
GetSystemDirectoryA
GetSystemTime
GetThreadPriority
GetTickCount
GetTimeZoneInformation
GetVersionExA
GetVersion
GetWindowsDirectoryA
GlobalAlloc
GlobalFlags
GlobalFree
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalFileTimeToFileTime
LocalFree
LockResource
MoveFileA
MulDiv
MultiByteToWideChar
OpenEventA
OpenFile
OpenMutexA
OpenSemaphoreA
OutputDebugStringA
PulseEvent
ReadConsoleInputA
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
ResumeThread
SearchPathA
SetConsoleCtrlHandler
SetConsoleMode
SetCurrentDirectoryA
SetEnvironmentVariableA
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteFile
WritePrivateProfileStringA
WriteProfileStringA
_hread
_hwrite
_lclose
_llseek
lstrcpyA
lstrcpynA

Sections

AUTO
Size: 289KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 44KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 24KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 21KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
colmap.cpp
compact.cpp
compact.hpp
dbtpc.cpp
dbtpc.exe
.exe windows:1 windows x86 arch:x86

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
DragQueryPoint
ExtractAssociatedIconA
ExtractIconA
FindExecutableA
SHAddToRecentDocs
SHFileOperationA
SHGetFileInfoA
ShellExecuteA

winmm

PlaySoundA
waveOutGetNumDevs

advapi32

AbortSystemShutdownA
GetUserNameA
InitiateSystemShutdownA

comctl32

ord17
ord16
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_DrawEx
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Merge
ImageList_Remove
ImageList_ReplaceIcon
ImageList_Replace
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetOverlayImage

gdi32

AbortDoc
ArcTo
Arc
BitBlt
Chord
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateEllipticRgn
CreateFontIndirectA
CreateHatchBrush
CreateICA
CreatePalette
CreatePatternBrush
CreatePen
CreatePolyPolygonRgn
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EndDoc
EndPage
EqualRgn
ExtFloodFill
ExtTextOutA
FillRgn
FrameRgn
GetArcDirection
GetBkColor
GetBkMode
GetBrushOrgEx
GetClipBox
GetCurrentObject
GetCurrentPositionEx
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectA
GetPolyFillMode
GetROP2
GetRgnBox
GetStockObject
GetTextAlign
GetTextColor
GetTextExtentExPointA
GetTextExtentPoint32A
GetTextExtentPointA
GetTextFaceA
GetTextMetricsA
InvertRgn
LineTo
MoveToEx
OffsetRgn
PaintRgn
PatBlt
Pie
PolyBezierTo
PolyBezier
PolyPolygon
Polygon
PolylineTo
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetArcDirection
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
SetTextCharacterExtra
SetTextColor
StartDocA
StartPage
StretchBlt
TextOutA
UpdateColors

user32

AttachThreadInput
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
CharLowerBuffA
CharUpperBuffA
CheckMenuItem
ClientToScreen
ClipCursor
CloseClipboard
CopyAcceleratorTableA
CopyImage
CreateAcceleratorTableA
CreateDialogIndirectParamA
CreateDialogParamA
CreateIconIndirect
CreateMenu
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DeferWindowPos
DestroyAcceleratorTable
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DispatchMessageA
DrawFocusRect
DrawIcon
DrawIconEx
DrawMenuBar
DrawTextA
DrawTextExA
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumChildWindows
EnumThreadWindows
EnumWindows
FillRect
FrameRect
GetActiveWindow
GetAsyncKeyState
GetCapture
GetClassNameA
GetClientRect
GetClipCursor
GetClipboardData
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetMenuCheckMarkDimensions
GetMenu
GetMenuContextHelpId
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetMessageA
GetNextDlgGroupItem
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindowContextHelpId
GetWindowDC
GetWindowLongA
GetWindow
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
InSendMessage
InsertMenuA
InvalidateRect
InvalidateRgn
InvertRect
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadStringA
LockWindowUpdate
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ReplyMessage
ScreenToClient
ScrollWindow
SendMessageA
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetMenuContextHelpId
SetMenuItemBitmaps
SetMenuItemInfoA
SetParent
SetPropA
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
SetWindowsHookExA
ShowCursor
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateAcceleratorA
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
ValidateRect
ValidateRgn
WaitMessage
WinHelpA
WindowFromPoint
wsprintfA

kernel32

AddAtomA
CloseHandle
CopyFileA
CreateEventA
CreateFileA
CreateMutexA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileA
DosDateTimeToFileTime
DuplicateHandle
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetComputerNameA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentProcess
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeThread
GetFileAttributesA
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProfileStringA
GetStdHandle
GetSystemDirectoryA
GetSystemTime
GetThreadPriority
GetTickCount
GetTimeZoneInformation
GetVersionExA
GetVersion
GetWindowsDirectoryA
GlobalAlloc
GlobalFlags
GlobalFree
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalFileTimeToFileTime
LocalFree
LockResource
MoveFileA
MulDiv
MultiByteToWideChar
OpenEventA
OpenFile
OpenMutexA
OpenSemaphoreA
OutputDebugStringA
PulseEvent
ReadConsoleInputA
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
ResumeThread
SearchPathA
SetConsoleCtrlHandler
SetConsoleMode
SetCurrentDirectoryA
SetEnvironmentVariableA
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteFile
WritePrivateProfileStringA
WriteProfileStringA
_hread
_hwrite
_lclose
_llseek
lstrcpyA
lstrcpynA

Sections

AUTO
Size: 291KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 45KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 23KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 21KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
declevel.cpp
enclevel.cpp
macro.cpp
psnr.cpp
psnr.exe
.exe windows:1 windows x86 arch:x86

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DragFinish
DragQueryFileA
DragQueryPoint
ExtractAssociatedIconA
ExtractIconA
FindExecutableA
SHAddToRecentDocs
SHFileOperationA
SHGetFileInfoA
ShellExecuteA

winmm

PlaySoundA
waveOutGetNumDevs

advapi32

AbortSystemShutdownA
GetUserNameA
InitiateSystemShutdownA

comctl32

ord17
ord16
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_DrawEx
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_Merge
ImageList_Remove
ImageList_ReplaceIcon
ImageList_Replace
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_SetOverlayImage

gdi32

AbortDoc
ArcTo
Arc
BitBlt
Chord
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
CreateEllipticRgn
CreateFontIndirectA
CreateHatchBrush
CreateICA
CreatePalette
CreatePatternBrush
CreatePen
CreatePolyPolygonRgn
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EndDoc
EndPage
EqualRgn
ExtFloodFill
ExtTextOutA
FillRgn
FrameRgn
GetArcDirection
GetBkColor
GetBkMode
GetBrushOrgEx
GetClipBox
GetCurrentObject
GetCurrentPositionEx
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectA
GetPolyFillMode
GetROP2
GetRgnBox
GetStockObject
GetTextAlign
GetTextColor
GetTextExtentExPointA
GetTextExtentPoint32A
GetTextExtentPointA
GetTextFaceA
GetTextMetricsA
InvertRgn
LineTo
MoveToEx
OffsetRgn
PaintRgn
PatBlt
Pie
PolyBezierTo
PolyBezier
PolyPolygon
Polygon
PolylineTo
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetArcDirection
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
SetTextCharacterExtra
SetTextColor
StartDocA
StartPage
StretchBlt
TextOutA
UpdateColors

user32

AttachThreadInput
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
CharLowerBuffA
CharUpperBuffA
CheckMenuItem
ClientToScreen
ClipCursor
CloseClipboard
CopyAcceleratorTableA
CopyImage
CreateAcceleratorTableA
CreateDialogIndirectParamA
CreateDialogParamA
CreateIconIndirect
CreateMenu
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DeferWindowPos
DestroyAcceleratorTable
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxIndirectParamA
DialogBoxParamA
DispatchMessageA
DrawFocusRect
DrawIcon
DrawIconEx
DrawMenuBar
DrawTextA
DrawTextExA
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
EnumChildWindows
EnumThreadWindows
EnumWindows
FillRect
FrameRect
GetActiveWindow
GetAsyncKeyState
GetCapture
GetClassNameA
GetClientRect
GetClipCursor
GetClipboardData
GetCursor
GetCursorPos
GetDC
GetDCEx
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItem
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetMenuCheckMarkDimensions
GetMenu
GetMenuContextHelpId
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoA
GetMenuState
GetMenuStringA
GetMessageA
GetNextDlgGroupItem
GetParent
GetPropA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindowContextHelpId
GetWindowDC
GetWindowLongA
GetWindow
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
InSendMessage
InsertMenuA
InvalidateRect
InvalidateRgn
InvertRect
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadMenuA
LoadStringA
LockWindowUpdate
MapWindowPoints
MessageBeep
MessageBoxA
ModifyMenuA
MoveWindow
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ReplyMessage
ScreenToClient
ScrollWindow
SendMessageA
SetActiveWindow
SetCapture
SetClassLongA
SetClipboardData
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetMenuContextHelpId
SetMenuItemBitmaps
SetMenuItemInfoA
SetParent
SetPropA
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
SetWindowsHookExA
ShowCursor
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateAcceleratorA
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
ValidateRect
ValidateRgn
WaitMessage
WinHelpA
WindowFromPoint
wsprintfA

kernel32

AddAtomA
CloseHandle
CopyFileA
CreateEventA
CreateFileA
CreateMutexA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileA
DosDateTimeToFileTime
DuplicateHandle
EnterCriticalSection
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetComputerNameA
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentProcess
GetCurrentThreadId
GetCurrentThread
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeThread
GetFileAttributesA
GetFileTime
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProfileStringA
GetStdHandle
GetSystemDirectoryA
GetSystemTime
GetThreadPriority
GetTickCount
GetTimeZoneInformation
GetVersionExA
GetVersion
GetWindowsDirectoryA
GlobalAlloc
GlobalFlags
GlobalFree
GlobalLock
GlobalReAlloc
GlobalSize
GlobalUnlock
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalFileTimeToFileTime
LocalFree
LockResource
MoveFileA
MulDiv
MultiByteToWideChar
OpenEventA
OpenFile
OpenMutexA
OpenSemaphoreA
OutputDebugStringA
PulseEvent
ReadConsoleInputA
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
ResumeThread
SearchPathA
SetConsoleCtrlHandler
SetConsoleMode
SetCurrentDirectoryA
SetEnvironmentVariableA
SetEvent
SetFileAttributesA
SetFilePointer
SetFileTime
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteFile
WritePrivateProfileStringA
WriteProfileStringA
_hread
_hwrite
_lclose
_llseek
lstrcpyA
lstrcpynA

Sections

AUTO
Size: 287KB - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DGROUP
Size: 46KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 17KB - Virtual size:

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 21KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

Imports

shell32

winmm

advapi32

comctl32

gdi32

user32

kernel32

Sections

AUTO Size: 286KB - Virtual size:

.idata Size: 11KB - Virtual size:

DGROUP Size: 46KB - Virtual size:

.bss Size: 17KB - Virtual size:

.reloc Size: 21KB - Virtual size:

.rsrc Size: 11KB - Virtual size:

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

Imports

shell32

winmm

advapi32

comctl32

gdi32

user32

kernel32

Sections

AUTO Size: 289KB - Virtual size:

.idata Size: 11KB - Virtual size:

DGROUP Size: 44KB - Virtual size:

.bss Size: 24KB - Virtual size:

.reloc Size: 21KB - Virtual size:

.rsrc Size: 11KB - Virtual size:

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

Imports

shell32

winmm

advapi32

comctl32

gdi32

user32

kernel32

Sections

AUTO Size: 291KB - Virtual size:

.idata Size: 11KB - Virtual size:

DGROUP Size: 45KB - Virtual size:

.bss Size: 23KB - Virtual size:

.reloc Size: 21KB - Virtual size:

.rsrc Size: 11KB - Virtual size:

0d1fc8e42fdbf40b16b42f8fc4fd65aa

Headers

File Characteristics

Imports

shell32

winmm

advapi32

comctl32

gdi32

user32

kernel32

Sections

AUTO Size: 287KB - Virtual size:

.idata Size: 11KB - Virtual size:

DGROUP Size: 46KB - Virtual size:

.bss Size: 17KB - Virtual size:

.reloc Size: 21KB - Virtual size:

.rsrc Size: 11KB - Virtual size:

AUTO
Size: 286KB - Virtual size:

.idata
Size: 11KB - Virtual size:

DGROUP
Size: 46KB - Virtual size:

.bss
Size: 17KB - Virtual size:

.reloc
Size: 21KB - Virtual size:

.rsrc
Size: 11KB - Virtual size:

AUTO
Size: 289KB - Virtual size:

.idata
Size: 11KB - Virtual size:

DGROUP
Size: 44KB - Virtual size:

.bss
Size: 24KB - Virtual size:

.reloc
Size: 21KB - Virtual size:

.rsrc
Size: 11KB - Virtual size:

AUTO
Size: 291KB - Virtual size:

.idata
Size: 11KB - Virtual size:

DGROUP
Size: 45KB - Virtual size:

.bss
Size: 23KB - Virtual size:

.reloc
Size: 21KB - Virtual size:

.rsrc
Size: 11KB - Virtual size:

AUTO
Size: 287KB - Virtual size:

.idata
Size: 11KB - Virtual size:

DGROUP
Size: 46KB - Virtual size:

.bss
Size: 17KB - Virtual size:

.reloc
Size: 21KB - Virtual size:

.rsrc
Size: 11KB - Virtual size: