Static task
static1
Behavioral task
behavioral1
Sample
2831ab8f2d7944466055775ffc1f3bee_JaffaCakes118.exe
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral2
Sample
2831ab8f2d7944466055775ffc1f3bee_JaffaCakes118.exe
Resource
win10v2004-20240704-en
windows10-2004-x64
General
-
Target
2831ab8f2d7944466055775ffc1f3bee_JaffaCakes118
-
Size
383KB
-
MD5
2831ab8f2d7944466055775ffc1f3bee
-
SHA1
bf77a9ac26fff559217079f22f3e2de1f8dd2ff1
-
SHA256
28e36754f46fdb18c8e2047ae0d7414ebf0d3085f950c3158c1ad4870258aa69
-
SHA512
2ed969d0d7c3bf0669e7b974d293808b900c75eccf0631a76a0be5329973adb87e16cf07f61b91d588269f7c65a32c22c947f6ff6f189b67f66ce9a5de33ad61
-
SSDEEP
6144:pQ0o+NjWV8fgx+OfYdlV0NjxK0/YdFCumFKP2h6aK3y3iVhXVrLuVa9JtVm4Fos1:u0o+himC+OQujxiC5220aNiVfR8mD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2831ab8f2d7944466055775ffc1f3bee_JaffaCakes118
Files
-
2831ab8f2d7944466055775ffc1f3bee_JaffaCakes118.exe windows:4 windows x86 arch:x86
a18304132994ab72ee24ec5dcb858f9d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetStringTypeA
LoadModule
GetUserDefaultLCID
GetModuleHandleA
HeapCreate
GlobalCompact
GetNamedPipeInfo
HeapReAlloc
EnumResourceNamesW
GetTempFileNameA
CreateProcessW
Process32First
SetConsoleMode
CreateFileA
GetFileTime
DosDateTimeToFileTime
BackupSeek
GetSystemPowerStatus
SystemTimeToTzSpecificLocalTime
CreateSemaphoreW
ReadConsoleOutputA
IsBadHugeWritePtr
OpenFileMappingA
GetPriorityClass
lstrlenW
Sleep
GetCalendarInfoA
InterlockedCompareExchange
GetBinaryTypeW
SetFileAttributesW
SetLastError
VirtualQueryEx
ReadConsoleOutputCharacterW
CommConfigDialogA
SetCurrentDirectoryW
GetTapePosition
HeapValidate
FillConsoleOutputAttribute
FatalAppExitA
DebugActiveProcess
OpenSemaphoreW
LocalAlloc
SetPriorityClass
LeaveCriticalSection
WaitNamedPipeW
Heap32First
GetFileAttributesExA
GetProcessHeaps
GlobalDeleteAtom
GetPrivateProfileSectionNamesA
UnlockFileEx
SetThreadAffinityMask
WritePrivateProfileSectionW
SetConsoleCursorInfo
DeviceIoControl
QueryDosDeviceW
Thread32First
GetCPInfo
ResetWriteWatch
GetCommandLineW
FindResourceA
LocalLock
GlobalGetAtomNameW
WaitCommEvent
GetDiskFreeSpaceExA
HeapAlloc
VirtualAlloc
WriteProfileSectionW
GetThreadPriority
CreateEventW
QueryPerformanceFrequency
TransmitCommChar
LCMapStringA
SetProcessAffinityMask
SetDefaultCommConfigA
SetConsoleTextAttribute
lstrcmpA
VerLanguageNameW
UpdateResourceW
WideCharToMultiByte
SetLocaleInfoW
CompareFileTime
SetConsoleTitleW
WriteProfileStringW
CreateIoCompletionPort
Heap32ListFirst
GlobalLock
GetCommConfig
GetAtomNameA
ReadFileEx
InterlockedDecrement
FindResourceExA
FileTimeToLocalFileTime
GlobalHandle
LocalFlags
SetEnvironmentVariableA
GetFileType
GetCompressedFileSizeW
UpdateResourceA
BackupWrite
GetProcessAffinityMask
FileTimeToDosDateTime
SetTapeParameters
WaitForDebugEvent
CreateSemaphoreA
GetCommTimeouts
Heap32ListNext
Module32First
LocalSize
TlsGetValue
EnumResourceNamesA
GetModuleFileNameW
GlobalGetAtomNameA
CreateToolhelp32Snapshot
GetCurrentDirectoryW
FreeLibrary
OpenFileMappingW
SetConsoleCursorPosition
SetDefaultCommConfigW
GlobalAddAtomA
MoveFileW
GetModuleFileNameA
GetBinaryTypeA
QueryDosDeviceA
LocalUnlock
FindFirstFileA
SetComputerNameW
GetNumberOfConsoleInputEvents
GetConsoleMode
LoadLibraryExA
WaitForSingleObjectEx
SetUnhandledExceptionFilter
GlobalFlags
WritePrivateProfileSectionA
EscapeCommFunction
UnmapViewOfFile
GetTempPathW
WriteConsoleOutputA
IsValidLocale
SetSystemPowerState
InitAtomTable
SetProcessPriorityBoost
_lwrite
GetConsoleOutputCP
GetPrivateProfileStringA
GetEnvironmentStrings
GetTimeFormatA
EnumTimeFormatsW
AreFileApisANSI
SetCommTimeouts
VerLanguageNameA
FindNextFileW
InterlockedIncrement
GetDiskFreeSpaceW
InterlockedExchangeAdd
WritePrivateProfileStringA
GetVersionExA
GlobalUnlock
GetStartupInfoW
CreateTapePartition
DeleteAtom
GetConsoleScreenBufferInfo
CreateMutexA
_hwrite
LockFile
IsSystemResumeAutomatic
Heap32Next
GetSystemInfo
ReadConsoleW
CloseHandle
ReadConsoleA
LocalShrink
IsDBCSLeadByte
GetTapeParameters
FindAtomA
WriteConsoleA
LocalCompact
SetThreadExecutionState
WriteConsoleOutputCharacterW
GetLocaleInfoW
OutputDebugStringA
ReadFile
GetDriveTypeW
GetCPInfoExA
DeleteCriticalSection
ClearCommBreak
GetProfileStringA
FormatMessageA
lstrcmpW
WriteConsoleW
CreateProcessA
GetConsoleTitleA
GetSystemDirectoryA
GetEnvironmentVariableA
ReadConsoleInputA
GetStartupInfoA
GetComputerNameW
SetTimeZoneInformation
ReadConsoleInputW
WinExec
WriteProfileSectionA
GetConsoleTitleW
SetEnvironmentVariableW
GetCurrentProcessId
TlsFree
GlobalUnfix
AddAtomW
GetDiskFreeSpaceExW
CancelDeviceWakeupRequest
DefineDosDeviceW
WaitForMultipleObjects
GetLargestConsoleWindowSize
LoadResource
GetCurrentThread
GetPrivateProfileIntA
SetErrorMode
EnumSystemCodePagesA
GetTickCount
DuplicateHandle
TlsSetValue
WaitForMultipleObjectsEx
GlobalReAlloc
HeapCompact
CancelIo
SleepEx
IsBadCodePtr
GetStdHandle
IsBadStringPtrW
IsBadStringPtrA
SetTapePosition
MulDiv
ResumeThread
OpenMutexW
SetConsoleWindowInfo
CreateNamedPipeA
LockFileEx
SetConsoleTitleA
IsBadReadPtr
SearchPathW
SetConsoleScreenBufferSize
GetProcessWorkingSetSize
FlushViewOfFile
GetProfileStringW
GetLogicalDrives
CreatePipe
SetFileTime
GetThreadPriorityBoost
ConnectNamedPipe
VirtualAllocEx
BuildCommDCBA
GetLogicalDriveStringsA
EraseTape
UnlockFile
SetConsoleCP
GetLogicalDriveStringsW
LocalReAlloc
RequestWakeupLatency
FillConsoleOutputCharacterW
Toolhelp32ReadProcessMemory
PurgeComm
LCMapStringW
GetDefaultCommConfigA
GenerateConsoleCtrlEvent
GetNumberOfConsoleMouseButtons
ClearCommError
FreeLibraryAndExitThread
_hread
FindResourceW
lstrcatA
GetProfileSectionW
GetExitCodeThread
HeapUnlock
lstrcpynW
GetDriveTypeA
FreeEnvironmentStringsW
SetProcessWorkingSetSize
SetCommState
GlobalFree
AllocConsole
PostQueuedCompletionStatus
ReadConsoleOutputAttribute
GlobalSize
BuildCommDCBAndTimeoutsA
CreateDirectoryExW
OpenSemaphoreA
DisableThreadLibraryCalls
WaitForSingleObject
DebugBreak
PeekConsoleInputW
SetCurrentDirectoryA
OutputDebugStringW
RaiseException
MoveFileA
SetSystemTime
PeekNamedPipe
CreateFileMappingA
lstrcpyA
GetProcessPriorityBoost
SizeofResource
VirtualProtectEx
FindFirstFileW
EnumCalendarInfoA
GetProcessHeap
ContinueDebugEvent
FlushConsoleInputBuffer
FindResourceExW
GetSystemTime
HeapFree
BuildCommDCBW
GetStringTypeExA
CreateDirectoryW
UnhandledExceptionFilter
GetPrivateProfileSectionW
ExpandEnvironmentStringsW
CopyFileA
EnterCriticalSection
GetSystemTimeAdjustment
IsDBCSLeadByteEx
GlobalFix
FindNextChangeNotification
IsBadWritePtr
CreateMutexW
SetFileAttributesA
OpenEventA
lstrcatW
GetTempPathA
GetComputerNameA
GetFullPathNameA
TerminateProcess
FreeEnvironmentStringsA
GetProcAddress
MapViewOfFile
ReadFileScatter
GetSystemDefaultLCID
GetPrivateProfileSectionNamesW
GetHandleInformation
FlushInstructionCache
MapViewOfFileEx
ResetEvent
GlobalAddAtomW
MultiByteToWideChar
WriteFileEx
lstrcmpiA
ConvertDefaultLocale
GetPrivateProfileSectionA
CreateConsoleScreenBuffer
GetProcessTimes
ReadProcessMemory
FoldStringW
VirtualFree
GetWindowsDirectoryW
CommConfigDialogW
GetCalendarInfoW
CreateFileMappingW
CompareStringW
SetupComm
GetOverlappedResult
GetLongPathNameA
EnumDateFormatsW
SetSystemTimeAdjustment
SetCommConfig
GetTapeStatus
GetTimeFormatW
AddAtomA
CreateFileW
FatalExit
BuildCommDCBAndTimeoutsW
_lopen
LocalFree
lstrcpynA
GetFileSize
_llseek
FreeConsole
TlsAlloc
GetTempFileNameW
HeapSize
GlobalWire
user32
SetCapture
GetSystemMetrics
SetLastErrorEx
RegisterClassExW
CharLowerA
GetUpdateRect
GetClassNameA
PaintDesktop
CreateWindowStationW
DrawTextExW
AdjustWindowRectEx
SetClassLongW
GetActiveWindow
DragObject
SetMessageExtraInfo
DialogBoxIndirectParamW
SetFocus
DestroyIcon
GetParent
SetMenuItemBitmaps
ShowCaret
EnumDisplaySettingsW
GetDlgItemTextW
WinHelpA
FindWindowExA
GetWindowThreadProcessId
OpenWindowStationW
SetParent
MessageBoxA
OemToCharBuffW
SetWindowsHookExW
CreateWindowExA
GetSubMenu
ArrangeIconicWindows
SetRectEmpty
GetCursor
GetProcessWindowStation
IsCharAlphaNumericW
SetUserObjectInformationA
DestroyCursor
ToAsciiEx
EnumPropsExW
InflateRect
GetWindowTextW
PostThreadMessageA
ChangeDisplaySettingsExA
CopyImage
LoadImageA
GetFocus
OpenInputDesktop
EnumWindows
SetMenuDefaultItem
CharToOemA
BringWindowToTop
ToAscii
CallMsgFilterA
GetMenu
SystemParametersInfoA
DialogBoxParamW
CreateWindowExW
InsertMenuW
SetDlgItemTextA
SendNotifyMessageA
GetClassInfoExW
IsCharLowerW
IsZoomed
GetWindowRect
RegisterWindowMessageA
ShowOwnedPopups
IsCharLowerA
CreateDesktopA
IsCharUpperW
GetMenuItemInfoW
EnumWindowStationsW
MessageBoxIndirectW
GetWindowLongW
DispatchMessageA
HideCaret
InvalidateRect
GetClipboardFormatNameW
ChangeMenuA
GetSysColor
wsprintfW
GetTopWindow
GetTabbedTextExtentA
EqualRect
GetSystemMenu
SetClipboardData
MsgWaitForMultipleObjects
DispatchMessageW
EnumChildWindows
OffsetRect
CreateWindowStationA
RegisterClassExA
CharUpperA
OemToCharBuffA
CheckMenuItem
LoadStringA
CreateAcceleratorTableA
PostQuitMessage
OemKeyScan
AttachThreadInput
DestroyWindow
GetClipCursor
LoadKeyboardLayoutW
IntersectRect
GetWindowWord
GetCaretBlinkTime
OemToCharW
AppendMenuA
LoadCursorFromFileW
DestroyAcceleratorTable
TabbedTextOutA
GetClassWord
PtInRect
CharUpperBuffA
GetMessagePos
CharPrevExA
ShowScrollBar
BeginDeferWindowPos
RegisterClipboardFormatW
CloseWindowStation
GetMenuState
wvsprintfW
CharLowerBuffW
DrawEdge
EnumClipboardFormats
OpenDesktopW
CharToOemW
EndDialog
GetWindowContextHelpId
VkKeyScanExA
CharPrevW
LoadStringW
GetKeyboardLayoutNameW
FlashWindow
GetMessageExtraInfo
SwitchDesktop
wvsprintfA
GetMenuDefaultItem
AnyPopup
GetShellWindow
CharLowerBuffA
DrawIcon
InsertMenuItemA
FrameRect
AppendMenuW
GetClientRect
DlgDirListA
VkKeyScanExW
CloseClipboard
EnableMenuItem
GetForegroundWindow
MapVirtualKeyExA
IsCharAlphaNumericA
DefDlgProcA
ShowWindowAsync
SetUserObjectInformationW
LockWindowUpdate
GetQueueStatus
GetMenuContextHelpId
UnregisterHotKey
RemoveMenu
SetSystemCursor
ClientToScreen
GetMenuItemInfoA
OemToCharA
GetLastActivePopup
SetWindowPlacement
DrawTextW
wsprintfA
IsMenu
SetActiveWindow
CreateDesktopW
CreatePopupMenu
SetDlgItemInt
GetDlgCtrlID
IsWindowUnicode
IsCharAlphaA
LoadMenuIndirectA
DefDlgProcW
GetClipboardViewer
DestroyMenu
SetWindowPos
SetPropA
GetTabbedTextExtentW
GetMenuItemID
SendDlgItemMessageA
ChildWindowFromPointEx
GetClassInfoW
GetDC
CharUpperW
CharToOemBuffW
OpenClipboard
LookupIconIdFromDirectory
GetPriorityClipboardFormat
LoadAcceleratorsA
ToUnicodeEx
LoadCursorFromFileA
OpenDesktopA
GetDCEx
InvalidateRgn
GetWindowPlacement
GetCaretPos
ValidateRgn
ChangeDisplaySettingsW
GetKeyNameTextA
FindWindowA
ModifyMenuA
InSendMessage
CallMsgFilterW
ScrollWindow
GetKBCodePage
GetKeyNameTextW
ScrollDC
GetKeyState
GetNextDlgGroupItem
MapVirtualKeyA
GetClassLongA
DrawCaption
SetSysColors
SendDlgItemMessageW
GetOpenClipboardWindow
MapDialogRect
MenuItemFromPoint
DrawAnimatedRects
LoadCursorA
SetMenuContextHelpId
GetClipboardFormatNameA
IsDlgButtonChecked
DefFrameProcA
CheckDlgButton
GrayStringW
SetWindowContextHelpId
UpdateWindow
CharUpperBuffW
ActivateKeyboardLayout
SetMessageQueue
RegisterWindowMessageW
LoadBitmapA
DrawMenuBar
GetKeyboardLayoutNameA
CopyAcceleratorTableW
TrackPopupMenuEx
GetPropW
DefFrameProcW
WindowFromDC
DlgDirSelectExW
EnumDesktopsW
GetClassLongW
GetMenuStringA
DialogBoxParamA
ModifyMenuW
GetUserObjectInformationA
GetMenuStringW
ShowWindow
MessageBoxExW
SetThreadDesktop
RegisterClipboardFormatA
PostMessageW
DeleteMenu
RedrawWindow
MapVirtualKeyW
HiliteMenuItem
RegisterClassA
InvertRect
UnhookWindowsHookEx
RemovePropW
IsIconic
DeferWindowPos
GetWindowTextLengthW
FindWindowW
DrawFocusRect
SetWindowsHookA
SetCaretPos
IsCharAlphaW
EnumWindowStationsA
GetMessageA
EnumPropsA
UnregisterClassW
GetScrollInfo
UnregisterClassA
GetKeyboardState
GetWindow
DestroyCaret
CascadeWindows
LoadAcceleratorsW
SetRect
MessageBeep
MessageBoxExA
mouse_event
GetIconInfo
SendMessageTimeoutW
GetMenuItemRect
ValidateRect
SetWindowsHookExA
SetMenuItemInfoW
CloseWindow
MapVirtualKeyExW
SetClassLongA
IsDialogMessageA
GetMenuItemCount
DefMDIChildProcA
LoadMenuIndirectW
GetCursorPos
EnumThreadWindows
DlgDirListW
ChangeDisplaySettingsA
CheckMenuRadioItem
LoadIconA
TranslateAcceleratorW
AdjustWindowRect
CopyIcon
LoadMenuA
GrayStringA
TileWindows
EndDeferWindowPos
ExcludeUpdateRgn
DlgDirListComboBoxW
gdi32
RemoveFontResourceW
CreateFontIndirectW
SetBoundsRect
SetICMProfileW
GetNearestColor
GetBkColor
GetGlyphOutlineW
CopyEnhMetaFileA
SetViewportOrgEx
SetPixel
SetTextCharacterExtra
CreateMetaFileA
ExtCreatePen
SetRectRgn
CombineRgn
Chord
GetOutlineTextMetricsA
ResizePalette
CheckColorsInGamut
GetCharABCWidthsW
GetCharWidth32A
PlayEnhMetaFileRecord
GetDIBColorTable
CreatePen
GetLogColorSpaceW
GetDIBits
GetCharWidthA
SetPolyFillMode
GetBitmapBits
GetFontLanguageInfo
GetFontData
PolyPolyline
OffsetRgn
DrawEscape
GetCurrentObject
CreatePenIndirect
GetBoundsRect
GetTextExtentExPointW
UpdateICMRegKeyW
GetROP2
GetEnhMetaFilePaletteEntries
CloseFigure
GetPixel
AnimatePalette
GetCharWidthFloatW
UnrealizeObject
PlayMetaFile
StartPage
EnumEnhMetaFile
ExtEscape
ArcTo
SetMapperFlags
GetBkMode
EnumICMProfilesA
PolyPolygon
InvertRgn
GetICMProfileA
GetTextExtentExPointA
GetGlyphOutlineA
PtVisible
GetKerningPairsW
SetTextJustification
SetStretchBltMode
FrameRgn
GetMetaFileW
ExtTextOutA
GetViewportExtEx
PolyTextOutW
PolyTextOutA
EnumFontFamiliesExA
PolyBezier
CreateDIBSection
PlayEnhMetaFile
GetAspectRatioFilterEx
SetEnhMetaFileBits
LineDDA
GetCharWidth32W
CloseEnhMetaFile
GetEnhMetaFileHeader
GetEnhMetaFileBits
RestoreDC
CreateDIBPatternBrush
SetROP2
GdiGetBatchLimit
GetLogColorSpaceA
GetTextExtentPointA
StrokePath
SetArcDirection
CreateRectRgn
GetTextFaceW
Polyline
EnumFontFamiliesA
CreateDIBitmap
LPtoDP
ModifyWorldTransform
TextOutW
GetTextAlign
GetMetaFileBitsEx
GdiFlush
CreateDCA
GetPath
OffsetWindowOrgEx
GdiComment
GetPixelFormat
PatBlt
GetTextCharsetInfo
CreateRectRgnIndirect
CreateFontW
SetGraphicsMode
CopyMetaFileW
CopyMetaFileA
GetMiterLimit
GetSystemPaletteEntries
PolylineTo
SetDIBColorTable
SetMiterLimit
SetBkMode
BitBlt
GetTextFaceA
EnumFontsW
CloseMetaFile
EndPath
WidenPath
Escape
EndDoc
GetTextExtentPointW
GetCharacterPlacementW
PaintRgn
ChoosePixelFormat
StretchBlt
UpdateICMRegKeyA
GetDeviceGammaRamp
EnumFontsA
GetGraphicsMode
GetWinMetaFileBits
GetTextMetricsA
SetPaletteEntries
GetICMProfileW
PlgBlt
GetTextColor
SetDeviceGammaRamp
EnumFontFamiliesExW
GetSystemPaletteUse
GetOutlineTextMetricsW
GetClipBox
CreateCompatibleBitmap
CreateHalftonePalette
CreateRoundRectRgn
SetICMMode
RectInRegion
FixBrushOrgEx
ExtSelectClipRgn
CreateEllipticRgn
GetColorSpace
DeleteDC
Ellipse
SetColorAdjustment
CreateEnhMetaFileW
CreateCompatibleDC
GetBitmapDimensionEx
MoveToEx
PlayMetaFileRecord
GetDCOrgEx
GetEnhMetaFileW
CopyEnhMetaFileW
Polygon
SelectClipPath
CreateSolidBrush
AddFontResourceW
GetEnhMetaFileA
CreateEllipticRgnIndirect
GetStretchBltMode
GetCharABCWidthsFloatW
Arc
EqualRgn
GetTextMetricsW
SetPixelFormat
GetObjectA
SetColorSpace
SetViewportExtEx
SetBitmapBits
GetRegionData
GetDeviceCaps
LineTo
PtInRegion
GetCharABCWidthsA
DeleteObject
SetBkColor
GetCharABCWidthsFloatA
SetBitmapDimensionEx
BeginPath
RectVisible
DPtoLP
AbortDoc
CreateBitmapIndirect
CreateHatchBrush
CreateFontA
SetICMProfileA
CreateBitmap
ExtCreateRegion
TextOutA
SelectClipRgn
SetDIBits
GetPolyFillMode
comdlg32
FindTextA
GetSaveFileNameA
PageSetupDlgA
GetFileTitleW
CommDlgExtendedError
ChooseFontW
ChooseFontA
GetOpenFileNameW
GetFileTitleA
advapi32
CryptDecrypt
CreateServiceW
CryptCreateHash
GetSecurityDescriptorGroup
LookupPrivilegeNameA
RegSetValueExW
CryptDestroyHash
BuildSecurityDescriptorA
GetOldestEventLogRecord
ReadEventLogW
EnumDependentServicesW
GetFileSecurityW
RegEnumValueW
GetServiceKeyNameW
RegOpenKeyExW
RegSetValueExA
RegFlushKey
CryptGetUserKey
AccessCheckAndAuditAlarmW
InitializeAcl
NotifyChangeEventLog
CryptGetHashParam
SetEntriesInAclW
CryptEnumProvidersA
CreateProcessAsUserW
GetPrivateObjectSecurity
SetSecurityDescriptorSacl
OpenThreadToken
QueryServiceLockStatusW
ObjectDeleteAuditAlarmA
CryptSetProviderExA
ObjectOpenAuditAlarmA
ObjectDeleteAuditAlarmW
GetTokenInformation
CryptReleaseContext
FindFirstFreeAce
RegCreateKeyW
QueryServiceLockStatusA
CryptDuplicateHash
GetMultipleTrusteeOperationW
CryptGetDefaultProviderA
CryptGetDefaultProviderW
CryptSetHashParam
CryptSignHashW
ObjectPrivilegeAuditAlarmW
RegQueryInfoKeyW
GetUserNameW
BuildTrusteeWithNameA
GetAce
BuildImpersonateTrusteeA
OpenSCManagerA
CryptGetKeyParam
CryptExportKey
RegUnLoadKeyW
AreAllAccessesGranted
RegConnectRegistryA
AdjustTokenGroups
SetSecurityDescriptorDacl
QueryServiceConfigA
AreAnyAccessesGranted
GetAuditedPermissionsFromAclW
OpenProcessToken
GetEffectiveRightsFromAclA
IsTextUnicode
ObjectOpenAuditAlarmW
CryptGenRandom
RegisterServiceCtrlHandlerA
RegisterServiceCtrlHandlerW
DuplicateTokenEx
ImpersonateLoggedOnUser
GetNumberOfEventLogRecords
RegReplaceKeyA
RegLoadKeyW
OpenBackupEventLogA
AddAuditAccessAce
StartServiceW
CryptContextAddRef
RegQueryValueW
MakeAbsoluteSD
ReadEventLogA
OpenServiceW
BuildExplicitAccessWithNameW
RegOpenKeyW
CreatePrivateObjectSecurity
CryptSetProvParam
AllocateLocallyUniqueId
CloseEventLog
ImpersonateNamedPipeClient
SetFileSecurityW
GetTrusteeTypeW
GetLengthSid
GetKernelObjectSecurity
ImpersonateSelf
RegLoadKeyA
DeregisterEventSource
SetSecurityInfo
RegSaveKeyA
GetTrusteeNameA
EqualPrefixSid
RegDeleteValueA
RegOpenKeyExA
RegDeleteValueW
RegRestoreKeyW
CreateServiceA
CryptVerifySignatureW
OpenBackupEventLogW
CryptGenKey
CryptEnumProviderTypesA
ClearEventLogA
OpenServiceA
CryptSignHashA
RegQueryMultipleValuesW
RegGetKeySecurity
GetSidSubAuthorityCount
ReportEventW
SetThreadToken
RegEnumKeyW
CryptSetProviderExW
SetFileSecurityA
GetUserNameA
SetPrivateObjectSecurity
ReportEventA
DeleteService
OpenEventLogW
GetServiceDisplayNameW
GetServiceDisplayNameA
DuplicateToken
RegEnumKeyA
LogonUserA
AddAccessDeniedAce
PrivilegedServiceAuditAlarmW
GetAuditedPermissionsFromAclA
EnumServicesStatusW
LockServiceDatabase
CryptSetKeyParam
AccessCheck
AllocateAndInitializeSid
SetServiceBits
BackupEventLogW
CryptImportKey
MapGenericMask
SetEntriesInAclA
CryptDeriveKey
ChangeServiceConfigA
SetAclInformation
QueryServiceConfigW
DeleteAce
QueryServiceStatus
GetMultipleTrusteeOperationA
SetServiceObjectSecurity
SetServiceStatus
AddAccessAllowedAce
PrivilegeCheck
LookupAccountSidA
GetSidSubAuthority
ChangeServiceConfigW
GetNamedSecurityInfoA
CloseServiceHandle
CryptEnumProvidersW
LookupSecurityDescriptorPartsA
BuildImpersonateExplicitAccessWithNameA
EqualSid
StartServiceCtrlDispatcherA
RegCreateKeyExA
RegOpenKeyA
RegEnumKeyExW
RegQueryValueExA
shell32
DragAcceptFiles
ExtractAssociatedIconExW
Shell_NotifyIconA
SHGetSettings
SHGetSpecialFolderPathA
SHChangeNotify
ExtractIconExW
SHInvokePrinterCommandA
SHLoadInProc
SHGetPathFromIDListW
DragQueryFileW
SHFileOperationA
SHGetDataFromIDListW
DragFinish
ExtractAssociatedIconW
ShellAboutA
DoEnvironmentSubstW
SHGetDesktopFolder
ExtractAssociatedIconExA
SHEmptyRecycleBinA
FindExecutableA
ExtractIconW
SHAddToRecentDocs
DoEnvironmentSubstA
SHGetSpecialFolderLocation
Shell_NotifyIconW
DuplicateIcon
ExtractIconExA
SHGetMalloc
CommandLineToArgvW
ShellExecuteExA
SHQueryRecycleBinA
SHGetFileInfoW
SHFreeNameMappings
SHBrowseForFolderA
SHFileOperationW
ExtractAssociatedIconA
SHEmptyRecycleBinW
DragQueryFileA
msvcrt
__setusermatherr
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_initterm
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
Sections
.text Size: 280KB - Virtual size: 280KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 30KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 22KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
0jc8clmt Size: 45KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
x1b.d569 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ