Static task
static1
Behavioral task
behavioral1
Sample
280a496ed9ecb5a9130b827cd150bbfa_JaffaCakes118.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral2
Sample
280a496ed9ecb5a9130b827cd150bbfa_JaffaCakes118.exe
Resource
win10v2004-20240704-en
windows10-2004-x64
General
-
Target
280a496ed9ecb5a9130b827cd150bbfa_JaffaCakes118
-
Size
336KB
-
MD5
280a496ed9ecb5a9130b827cd150bbfa
-
SHA1
aed7c988849ab6b0296a55b182c7507738236b0d
-
SHA256
5fb3648673861d6a92e8a818277b382592910fb299c84bac25465cbe61425b1b
-
SHA512
3ba1534ab8c323fe6e22eddcb6ed4a6d1877a9792da62b33ec99a2aa30e33342e40a117f2d2c767ce664900083882864f095560737c6c0d14c514d7c70af3b85
-
SSDEEP
6144:A6pE1eSSvtPusP49lGmZoP5HKDScaJ0WAopWA2YwHEfTdGIcI/FJzr+uOtAkALv3:XpyQvtPusP4vGm2hHJhJ0WAkWA5OjXK7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 280a496ed9ecb5a9130b827cd150bbfa_JaffaCakes118
Files
-
280a496ed9ecb5a9130b827cd150bbfa_JaffaCakes118.exe windows:4 windows x86 arch:x86
cfdf2bf4da40cc7905e48d0013311e7e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateFileW
LCMapStringA
GetFileInformationByHandle
SystemTimeToFileTime
GetConsoleTitleA
GetProcessHeap
InitializeCriticalSection
GetDiskFreeSpaceW
SetFileApisToOEM
GetPrivateProfileStringW
lstrcpyA
CreateRemoteThread
GetComputerNameW
GetWindowsDirectoryA
OpenSemaphoreW
VirtualFree
EnumSystemLocalesA
WritePrivateProfileSectionW
lstrlenW
ReadConsoleOutputCharacterW
GetDateFormatW
GetUserDefaultLCID
SetHandleCount
GetNamedPipeHandleStateA
GlobalFlags
GetEnvironmentStrings
GetDateFormatA
CreateEventA
TlsFree
FormatMessageA
GetEnvironmentStringsW
OpenEventA
CreateMutexA
LocalSize
EscapeCommFunction
GetCommProperties
InterlockedExchangeAdd
GlobalMemoryStatus
IsProcessorFeaturePresent
TransmitCommChar
EnumResourceTypesA
ExpandEnvironmentStringsA
VirtualLock
HeapUnlock
AllocConsole
GetFileTime
LoadLibraryExA
SetHandleInformation
ExitThread
GetTapeStatus
AddAtomW
FlushInstructionCache
GetNamedPipeInfo
SetFilePointer
GlobalFree
GetVolumeInformationA
UnmapViewOfFile
GetPrivateProfileSectionNamesA
lstrcatW
DisconnectNamedPipe
_lread
SetVolumeLabelA
GetProfileSectionW
GetVersionExA
SleepEx
GetEnvironmentVariableW
RequestWakeupLatency
WriteConsoleInputW
GetPrivateProfileStructW
SetDefaultCommConfigA
GetStringTypeExW
SetLocalTime
AreFileApisANSI
HeapReAlloc
ReleaseMutex
GetCalendarInfoA
GetOverlappedResult
GlobalUnWire
IsValidLocale
GetLocalTime
OpenMutexA
ReleaseSemaphore
CreateMailslotA
SetProcessWorkingSetSize
CommConfigDialogW
WaitForMultipleObjects
OpenFileMappingW
LocalLock
Heap32ListFirst
GetVolumeInformationW
GetDiskFreeSpaceExA
OpenFileMappingA
CreateTapePartition
FindResourceExW
DebugBreak
VirtualAlloc
TerminateProcess
_lopen
PeekConsoleInputW
GetLogicalDriveStringsW
GetHandleInformation
EraseTape
GetFileAttributesA
VirtualQueryEx
GetCPInfoExA
GetSystemDefaultLangID
SetStdHandle
GenerateConsoleCtrlEvent
GetFileAttributesExA
ConvertDefaultLocale
WriteConsoleOutputW
GetFullPathNameW
GetProcessTimes
EnumResourceNamesW
IsBadStringPtrA
GetBinaryTypeA
GetSystemDirectoryW
UnhandledExceptionFilter
RequestDeviceWakeup
TlsSetValue
GetWindowsDirectoryW
WinExec
GetAtomNameA
LocalFlags
SetConsoleTitleW
SetProcessAffinityMask
CopyFileW
VirtualProtect
LockFile
DosDateTimeToFileTime
Beep
GetStringTypeW
Thread32First
GetTempPathW
SetConsoleScreenBufferSize
GetStartupInfoA
CreateProcessW
CallNamedPipeW
SetThreadPriority
SetLocaleInfoA
EnumSystemCodePagesW
FillConsoleOutputAttribute
GetProfileIntW
GetDevicePowerState
RemoveDirectoryW
OpenMutexW
BeginUpdateResourceW
InterlockedCompareExchange
WriteConsoleOutputCharacterW
SetSystemTimeAdjustment
CreateNamedPipeA
EndUpdateResourceA
Thread32Next
ReadFileScatter
GlobalUnfix
WaitForSingleObject
ReadConsoleInputW
IsBadStringPtrW
IsBadHugeReadPtr
GetBinaryTypeW
CreateDirectoryW
WriteConsoleOutputAttribute
GetTimeFormatW
_lcreat
GlobalGetAtomNameA
FindFirstChangeNotificationW
BeginUpdateResourceA
FoldStringA
GetPriorityClass
GetThreadPriority
QueryPerformanceCounter
MoveFileExA
FormatMessageW
IsBadCodePtr
GetCommMask
CancelIo
Process32Next
TlsAlloc
lstrcpynA
FindNextFileA
GetCommandLineA
VirtualQuery
ReadConsoleA
lstrcpynW
SetFileAttributesA
ReadConsoleOutputA
ScrollConsoleScreenBufferW
LCMapStringW
GetTimeFormatA
HeapAlloc
OpenFile
SetPriorityClass
GetThreadContext
SetLastError
Heap32ListNext
GetCommState
WriteConsoleOutputCharacterA
GetFileSize
SetCurrentDirectoryW
LocalFree
SetCurrentDirectoryA
IsBadWritePtr
GetTempPathA
GetLocaleInfoW
GetSystemTimeAsFileTime
FindAtomA
GetTempFileNameW
GetPrivateProfileSectionA
EnumDateFormatsW
DefineDosDeviceW
SetCommMask
GetThreadPriorityBoost
GetTapePosition
GetLongPathNameA
CreateSemaphoreA
GlobalAddAtomW
FindResourceW
SetThreadAffinityMask
Toolhelp32ReadProcessMemory
DefineDosDeviceA
GetStringTypeExA
GetStartupInfoW
CancelDeviceWakeupRequest
CreateEventW
SetMessageWaitingIndicator
SetConsoleTitleA
SetNamedPipeHandleState
BackupSeek
GetNamedPipeHandleStateW
GetSystemDirectoryA
ReadFile
LoadLibraryExW
GetDefaultCommConfigW
TerminateThread
WriteConsoleW
RemoveDirectoryA
CreateToolhelp32Snapshot
LocalHandle
GetNumberOfConsoleInputEvents
DeleteAtom
CreateFileA
SetSystemTime
IsDBCSLeadByteEx
FillConsoleOutputCharacterA
IsDBCSLeadByte
LocalShrink
GetProcessAffinityMask
GetLogicalDriveStringsA
ReadConsoleOutputAttribute
GetProcessPriorityBoost
GetCurrentDirectoryA
SetupComm
PrepareTape
DebugActiveProcess
ScrollConsoleScreenBufferA
ClearCommBreak
WriteProfileStringW
SetComputerNameW
EnterCriticalSection
WaitNamedPipeW
CompareFileTime
SizeofResource
PostQueuedCompletionStatus
MultiByteToWideChar
GetVersion
GetProfileSectionA
GetDiskFreeSpaceA
GetCurrentProcessId
GetCalendarInfoW
GetPrivateProfileIntW
GetDriveTypeW
CreateProcessA
SetConsoleMode
GetAtomNameW
FileTimeToSystemTime
MoveFileW
WriteConsoleInputA
GlobalFindAtomW
CopyFileA
GetCurrentDirectoryW
CompareStringA
GetQueuedCompletionStatus
HeapDestroy
EnumSystemCodePagesA
VerLanguageNameW
Module32Next
SetConsoleCP
GetTapeParameters
SetConsoleWindowInfo
UpdateResourceW
SetProcessShutdownParameters
_lclose
TlsGetValue
MapViewOfFileEx
WriteFile
WaitForSingleObjectEx
OutputDebugStringW
ResumeThread
SystemTimeToTzSpecificLocalTime
LockFileEx
GetNumberFormatA
HeapSize
SetThreadPriorityBoost
CreateIoCompletionPort
BackupWrite
CreateDirectoryExW
GetComputerNameA
FindNextFileW
CompareStringW
SetFileTime
GetDefaultCommConfigA
GetThreadLocale
GetCommTimeouts
_hwrite
GetACP
GetPrivateProfileStructA
HeapWalk
BuildCommDCBAndTimeoutsA
GetProfileStringW
SetProcessPriorityBoost
WriteTapemark
FindCloseChangeNotification
lstrcatA
WaitForMultipleObjectsEx
GetLargestConsoleWindowSize
SetLocaleInfoW
EnumSystemLocalesW
GetStdHandle
QueryDosDeviceW
GetModuleHandleA
Heap32First
HeapFree
ResetWriteWatch
GetMailslotInfo
lstrcmpiA
DeviceIoControl
FreeConsole
GetConsoleMode
EnumDateFormatsA
lstrlenA
GetProfileStringA
EnumResourceLanguagesA
WriteProfileStringA
GetModuleHandleW
FileTimeToLocalFileTime
EnumTimeFormatsA
InterlockedExchange
SetSystemPowerState
WritePrivateProfileStructA
LoadLibraryA
ReadProcessMemory
WriteProfileSectionA
GetThreadTimes
GetFileAttributesW
FindFirstFileA
GetDriveTypeA
SetMailslotInfo
GetLocaleInfoA
SetConsoleActiveScreenBuffer
_lwrite
GetDiskFreeSpaceExW
user32
OpenDesktopW
GetClassLongW
SwitchDesktop
LoadMenuW
GetClipboardFormatNameA
SetRect
RemoveMenu
GetCapture
UnhookWindowsHook
CreateDialogIndirectParamA
LoadKeyboardLayoutW
SetScrollRange
IsWindowEnabled
ClientToScreen
ScrollWindowEx
GetWindowTextW
RegisterClassW
SetFocus
IsCharLowerA
DeleteMenu
InflateRect
SetDlgItemInt
DragObject
CallMsgFilterA
SendMessageCallbackA
ShowCaret
InsertMenuItemA
GetSubMenu
ChildWindowFromPointEx
CheckMenuItem
KillTimer
BringWindowToTop
IsWindowUnicode
GetMessageA
SendDlgItemMessageW
OffsetRect
GetKeyboardType
CharToOemA
SetDebugErrorLevel
GetDlgItemTextA
SetClassWord
GetWindowLongW
OemToCharA
GrayStringA
SetCaretBlinkTime
RegisterClassExW
OpenWindowStationA
GetActiveWindow
GetOpenClipboardWindow
DrawAnimatedRects
ExcludeUpdateRgn
OemToCharW
CharNextA
SendMessageCallbackW
GetWindowDC
ArrangeIconicWindows
EnumPropsExA
ReleaseDC
GetMenuStringW
SetSystemCursor
DlgDirListComboBoxA
GetPriorityClipboardFormat
GetMenuState
GetKeyState
GetMessageW
CharUpperBuffW
SetKeyboardState
GetCaretBlinkTime
GetWindowTextLengthW
SetWindowLongA
CreateDialogIndirectParamW
InsertMenuW
GetWindowThreadProcessId
CreateMDIWindowW
VkKeyScanA
VkKeyScanExW
MoveWindow
InsertMenuItemW
TranslateAcceleratorW
ChangeDisplaySettingsExW
GetMenuCheckMarkDimensions
SetCaretPos
CharPrevA
TranslateMDISysAccel
GetDlgCtrlID
GetWindowTextLengthA
DrawTextW
MessageBoxExW
GetKeyboardLayoutNameW
ShowScrollBar
GetMenuItemInfoW
ChildWindowFromPoint
GetKeyNameTextW
SetMessageExtraInfo
GetClipboardFormatNameW
VkKeyScanExA
GetShellWindow
LockWindowUpdate
EnumWindowStationsW
DefMDIChildProcA
DefFrameProcA
MessageBoxExA
GetSystemMetrics
EnumPropsA
GetQueueStatus
CharNextW
GetCursor
DestroyCursor
OemKeyScan
GetWindowPlacement
GetDoubleClickTime
DestroyCaret
CreateDesktopW
ChangeMenuW
IsMenu
LoadBitmapW
CreateWindowExW
WaitMessage
ToUnicode
LoadStringW
GetSysColorBrush
SetClipboardData
GetScrollPos
MessageBoxIndirectW
SendDlgItemMessageA
SetClassLongA
SetUserObjectInformationA
GetTabbedTextExtentA
GetClientRect
DialogBoxIndirectParamW
CheckMenuRadioItem
SetWindowPlacement
CreateAcceleratorTableA
AppendMenuA
GetProcessWindowStation
GetParent
ShowWindow
CloseWindowStation
InsertMenuA
DestroyWindow
GetKeyboardLayoutNameA
CopyImage
GetWindow
LoadCursorFromFileA
CallWindowProcA
IsCharAlphaNumericW
MapVirtualKeyW
GetSystemMenu
DialogBoxParamA
ShowOwnedPopups
SetWindowsHookExA
DefMDIChildProcW
GetMenu
InSendMessage
EmptyClipboard
GetCursorPos
UnregisterHotKey
DestroyIcon
EnumDisplaySettingsW
LoadStringA
EnumDesktopsW
DispatchMessageW
IsDialogMessageW
SendMessageTimeoutW
SendMessageW
TranslateMessage
GetClipboardOwner
EnumWindowStationsA
CreateCaret
CharUpperA
ModifyMenuA
GetClassInfoW
DefDlgProcA
GetDesktopWindow
DlgDirListA
BeginDeferWindowPos
MessageBeep
CreateWindowExA
GetTabbedTextExtentW
IsChild
GetMenuStringA
DlgDirSelectExW
GetWindowWord
wsprintfW
GetUserObjectInformationA
IsDlgButtonChecked
GetKeyboardState
CharUpperBuffA
EnumChildWindows
SetWindowWord
RegisterHotKey
SetUserObjectInformationW
HideCaret
GetClassInfoA
SetWindowsHookW
AdjustWindowRect
CreateIcon
ScreenToClient
ScrollDC
keybd_event
AttachThreadInput
CreateIconFromResourceEx
DialogBoxParamW
PostQuitMessage
CloseWindow
DispatchMessageA
GetMenuItemInfoA
wvsprintfW
EndPaint
EnableScrollBar
WinHelpW
GetUpdateRgn
LoadCursorA
UpdateWindow
DlgDirListComboBoxW
EqualRect
EnumDesktopsA
DrawTextA
LoadImageW
EnableMenuItem
RegisterClassA
CharLowerW
CreatePopupMenu
GetMenuItemID
SystemParametersInfoW
GetMessageExtraInfo
ScrollWindow
CharToOemBuffW
ActivateKeyboardLayout
CharUpperW
LoadKeyboardLayoutA
SetClipboardViewer
SetWindowContextHelpId
MsgWaitForMultipleObjects
SetMessageQueue
CloseClipboard
LoadCursorW
SetMenu
SetMenuDefaultItem
IsRectEmpty
GetThreadDesktop
SetMenuItemInfoA
DrawStateW
TrackPopupMenu
UnhookWindowsHookEx
LoadIconW
ValidateRgn
ExitWindowsEx
IntersectRect
DrawTextExW
ChangeDisplaySettingsW
RegisterWindowMessageW
EnumPropsW
GrayStringW
MapWindowPoints
IsDialogMessageA
GetClassWord
CallNextHookEx
CreateIconIndirect
PeekMessageA
SetCursorPos
AnyPopup
CharToOemW
GetWindowTextA
ToUnicodeEx
DlgDirSelectExA
UnregisterClassW
SendNotifyMessageA
GetDlgItem
mouse_event
CharToOemBuffA
EnumPropsExW
OpenClipboard
GetFocus
EnableWindow
GetClassNameA
DrawTextExA
SendMessageTimeoutA
MsgWaitForMultipleObjectsEx
GetClassInfoExW
FlashWindow
CopyAcceleratorTableW
ChangeDisplaySettingsA
EnumDisplaySettingsA
CharLowerA
DrawStateA
GetMessageTime
UnionRect
RegisterClassExA
GetMenuDefaultItem
FindWindowA
ChangeDisplaySettingsExA
DrawCaption
MapVirtualKeyA
IsIconic
GetKeyboardLayoutList
InternalGetWindowText
GetForegroundWindow
GetMessagePos
DrawFocusRect
CreateWindowStationW
gdi32
SetViewportOrgEx
EnumICMProfilesA
GetMetaFileW
CreateDIBPatternBrush
SetAbortProc
SetGraphicsMode
PlayEnhMetaFile
CopyMetaFileW
MaskBlt
GetKerningPairsA
CreatePenIndirect
DeleteMetaFile
GetEnhMetaFileDescriptionW
EnumFontFamiliesA
GetPixel
GdiGetBatchLimit
GetCharWidthA
ExtEscape
SetWorldTransform
PlayMetaFileRecord
UnrealizeObject
CreatePatternBrush
FlattenPath
GetCharWidthFloatW
GetPaletteEntries
SetWindowExtEx
SetPolyFillMode
GetNearestColor
EnumFontFamiliesExA
ExtCreatePen
ModifyWorldTransform
CreateMetaFileA
Polygon
GetOutlineTextMetricsW
CreateHalftonePalette
Escape
GetBkMode
GetStockObject
EnumICMProfilesW
PlayEnhMetaFileRecord
GetEnhMetaFilePaletteEntries
SetTextJustification
ScaleViewportExtEx
FillRgn
RealizePalette
EnumMetaFile
GetWinMetaFileBits
PathToRegion
CreateScalableFontResourceA
GetTextMetricsW
GetAspectRatioFilterEx
GetBitmapDimensionEx
GetMetaRgn
SetMapperFlags
SetBitmapBits
GetDeviceCaps
CreateCompatibleDC
StrokePath
CheckColorsInGamut
SetDIBits
GetRasterizerCaps
EnumFontsW
GetNearestPaletteIndex
GetWorldTransform
WidenPath
CreatePolyPolygonRgn
RectInRegion
EnumObjects
EnumFontsA
GetEnhMetaFileHeader
RectVisible
CreateMetaFileW
SetDIBitsToDevice
GetTextCharset
GetTextFaceA
CombineTransform
SetWinMetaFileBits
GetROP2
DrawEscape
GdiComment
CreateRoundRectRgn
SetTextAlign
ResetDCW
EndPath
GetCharABCWidthsW
ResetDCA
ResizePalette
CopyEnhMetaFileW
SetBkColor
GetFontData
LineDDA
EndDoc
FixBrushOrgEx
RoundRect
SetColorSpace
CreateDiscardableBitmap
GetTextExtentPointA
SetPixel
CreatePolygonRgn
StretchBlt
SetSystemPaletteUse
BitBlt
CloseMetaFile
GetCharWidthFloatA
StartDocW
ArcTo
CreateBitmapIndirect
SetMetaRgn
SetWindowOrgEx
PlgBlt
GetTextAlign
GetPolyFillMode
GetMetaFileBitsEx
CancelDC
SetBkMode
SetMiterLimit
SelectPalette
PolyTextOutW
AbortDoc
UpdateColors
GetMetaFileA
PtVisible
GetCharABCWidthsFloatW
RemoveFontResourceW
LineTo
PtInRegion
GetDCOrgEx
SelectObject
CreateDIBitmap
CreateICA
SetDeviceGammaRamp
SetPixelFormat
GdiFlush
GetGlyphOutlineW
GetWindowExtEx
OffsetViewportOrgEx
GetDIBColorTable
AddFontResourceW
GetPixelFormat
CreateRectRgn
GetCurrentObject
ExtTextOutA
SetICMProfileA
CreateDCW
EnumEnhMetaFile
GetTextExtentExPointA
GetRgnBox
GetGlyphOutlineA
GetBrushOrgEx
Polyline
CreateBrushIndirect
GetSystemPaletteEntries
CreateColorSpaceW
SelectClipPath
GetBoundsRect
GetTextMetricsA
Ellipse
GetObjectW
GetTextColor
PatBlt
GetTextExtentPointW
GetPath
StartPage
GetMiterLimit
AngleArc
GetDIBits
GetColorSpace
SetBrushOrgEx
GetStretchBltMode
CreateFontA
GdiSetBatchLimit
GetEnhMetaFileBits
CreateSolidBrush
DeleteColorSpace
SetDIBColorTable
comdlg32
FindTextA
GetSaveFileNameA
ChooseFontW
ReplaceTextW
GetOpenFileNameA
ChooseColorA
ChooseFontA
PrintDlgW
GetSaveFileNameW
ChooseColorW
FindTextW
advapi32
StartServiceA
CryptVerifySignatureA
RegisterServiceCtrlHandlerW
RegReplaceKeyA
GetServiceDisplayNameA
GetSidSubAuthorityCount
RegSetKeySecurity
EqualPrefixSid
RegQueryMultipleValuesA
IsValidAcl
DeregisterEventSource
SetServiceBits
BuildTrusteeWithSidA
EnumServicesStatusW
QueryServiceConfigW
PrivilegedServiceAuditAlarmA
RegisterEventSourceW
GetAce
RevertToSelf
GetSidSubAuthority
ImpersonateLoggedOnUser
BuildImpersonateTrusteeW
CryptDecrypt
OpenEventLogA
AbortSystemShutdownA
RegSetValueExW
GetSidLengthRequired
CryptSetKeyParam
BuildTrusteeWithSidW
LookupSecurityDescriptorPartsW
ReadEventLogA
GetSidIdentifierAuthority
QueryServiceObjectSecurity
CryptGenKey
BuildImpersonateExplicitAccessWithNameW
CryptGetKeyParam
CreateProcessAsUserA
OpenThreadToken
RegSetValueW
GetNumberOfEventLogRecords
RegDeleteKeyA
GetServiceKeyNameW
GetFileSecurityW
RegEnumValueW
InitializeSid
CryptDestroyKey
GetLengthSid
ChangeServiceConfigW
GetMultipleTrusteeOperationW
QueryServiceLockStatusW
PrivilegedServiceAuditAlarmW
RegCloseKey
BackupEventLogW
GetExplicitEntriesFromAclA
CryptEnumProvidersW
DuplicateToken
GetAclInformation
GetUserNameW
GetServiceKeyNameA
CryptSetProviderW
SetAclInformation
SetThreadToken
RegisterEventSourceA
GetSecurityDescriptorLength
BuildSecurityDescriptorA
RegRestoreKeyW
RegDeleteValueW
QueryServiceStatus
RegOpenKeyExW
MakeAbsoluteSD
RegQueryValueA
CryptDuplicateHash
InitiateSystemShutdownA
CryptSignHashA
GetSecurityDescriptorSacl
CryptCreateHash
RegQueryValueExW
BackupEventLogA
InitializeAcl
GetSecurityDescriptorControl
DuplicateTokenEx
GetAuditedPermissionsFromAclW
SetEntriesInAclA
GetServiceDisplayNameW
LookupSecurityDescriptorPartsA
CryptImportKey
GetTrusteeNameW
RegRestoreKeyA
StartServiceCtrlDispatcherA
RegDeleteKeyW
RegCreateKeyA
CloseEventLog
GetMultipleTrusteeW
RegOpenKeyExA
RegUnLoadKeyW
GetSecurityDescriptorDacl
CreateProcessAsUserW
CreateServiceA
OpenServiceA
RegQueryInfoKeyW
SetServiceObjectSecurity
RegSetValueExA
BuildExplicitAccessWithNameW
RegOpenKeyW
LogonUserW
SetPrivateObjectSecurity
SetSecurityDescriptorSacl
CryptGetProvParam
RegQueryMultipleValuesW
RegUnLoadKeyA
GetTokenInformation
NotifyBootConfigStatus
LookupPrivilegeDisplayNameW
SetSecurityDescriptorOwner
QueryServiceLockStatusA
IsValidSid
BuildTrusteeWithNameA
RegQueryValueW
FindFirstFreeAce
UnlockServiceDatabase
ReportEventA
CryptGetDefaultProviderW
CryptGenRandom
IsTextUnicode
ObjectOpenAuditAlarmW
ObjectPrivilegeAuditAlarmA
GetSecurityDescriptorOwner
RegEnumKeyExA
GetMultipleTrusteeOperationA
SetServiceStatus
GetTrusteeNameA
OpenBackupEventLogW
RegQueryValueExA
CryptEnumProvidersA
LookupPrivilegeValueW
AccessCheck
GetTrusteeTypeW
GetFileSecurityA
AreAnyAccessesGranted
CryptEnumProviderTypesA
RegDeleteValueA
ObjectPrivilegeAuditAlarmW
GetMultipleTrusteeA
CryptSignHashW
LogonUserA
BuildSecurityDescriptorW
LookupPrivilegeNameW
InitializeSecurityDescriptor
EnumDependentServicesW
GetSecurityInfo
NotifyChangeEventLog
LookupAccountNameA
CryptSetProviderExA
RegEnumKeyExW
DestroyPrivateObjectSecurity
AllocateLocallyUniqueId
GetKernelObjectSecurity
CryptDestroyHash
BuildExplicitAccessWithNameA
CreateServiceW
CryptContextAddRef
SetNamedSecurityInfoA
shell32
FindExecutableW
SHGetSpecialFolderPathW
SHGetSettings
SHFileOperationW
ShellExecuteExW
ShellExecuteA
CommandLineToArgvW
FindExecutableA
SHGetInstanceExplorer
Shell_NotifyIconW
ShellExecuteW
ExtractIconExW
SHFreeNameMappings
Shell_NotifyIconA
SHGetPathFromIDListW
DoEnvironmentSubstA
ExtractAssociatedIconExW
SHGetSpecialFolderLocation
ShellAboutW
DragQueryFileA
SHGetDataFromIDListW
DragFinish
SHQueryRecycleBinW
DragAcceptFiles
SHGetPathFromIDListA
SHBrowseForFolderA
SHAddToRecentDocs
ord179
SHGetFileInfoW
SHInvokePrinterCommandW
SHGetDataFromIDListA
SHGetSpecialFolderPathA
SHFileOperationA
ExtractIconA
DragQueryFileW
ShellAboutA
SHGetMalloc
msvcrt
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
Sections
.text Size: 280KB - Virtual size: 278KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 32KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ