O:\OOO330\ooo\filter\wntmsci12.pro\bin\epsmi.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
4465859043b799e4e65cfea39c64db0e_JaffaCakes118.dll
Resource
win7-20240705-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
4465859043b799e4e65cfea39c64db0e_JaffaCakes118.dll
Resource
win10v2004-20240709-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
4465859043b799e4e65cfea39c64db0e_JaffaCakes118
-
Size
61KB
-
MD5
4465859043b799e4e65cfea39c64db0e
-
SHA1
b73ac960e790c5a85dd8844bf6bfa29a80492fbd
-
SHA256
6c3d8c6c68eb58e8ed9465ace24aad30686d1b1a985895d00ac57a2321823e42
-
SHA512
289c7601acfae9bfe11eee84233754757c2e2bd61115241f0eea240707ece000a33bbf50b30afdc62cf904e542874c260dbef7d1cae0d37f41f233fa192590a3
-
SSDEEP
1536:vFW8nKooyA/EyW7dO22NWjisH+OteiLW:AmA/hW7JnjisH+Oteiy
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4465859043b799e4e65cfea39c64db0e_JaffaCakes118
Files
-
4465859043b799e4e65cfea39c64db0e_JaffaCakes118.dll windows:5 windows x86 arch:x86
46ff3921097e71f181407bf50638eab8
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
tlmi
?SetNumberFormatInt@SvStream@@QAEXG@Z
??0String@@QAE@PBDGGK@Z
??BString@@QBE?AVOUString@rtl@@XZ
??6SvStream@@QAEAAV0@K@Z
??6SvStream@@QAEAAV0@G@Z
??0String@@QAE@ABVResId@@@Z
?GetObject@Container@@QBEPAXK@Z
?Center@Rectangle@@QBE?AVPoint@@XZ
??0Polygon@@QAE@ABVPoint@@JJG@Z
??0PolyPolygon@@QAE@ABVPolygon@@@Z
??0Polygon@@QAE@ABVRectangle@@ABVPoint@@1W4PolyStyle@@@Z
??0Polygon@@QAE@ABV0@@Z
?HasFlags@Polygon@@QBEEXZ
?GetConstFlagAry@Polygon@@QBEPBEXZ
?GetConstPointAry@Polygon@@QBEPBVPoint@@XZ
??0Polygon@@QAE@GPBVPoint@@PBE@Z
??0String@@QAE@ABV0@GG@Z
??0Polygon@@QAE@ABVRectangle@@@Z
??0PolyPolygon@@QAE@ABV0@@Z
?Seek@SvStream@@QAEKK@Z
??0Fraction@@QAE@N@Z
?Write@SvStream@@QAEKPBXK@Z
?CompareIgnoreCaseToAscii@ByteString@@QBE?AW4StringCompare@@PBDG@Z
?Equals@ByteString@@QBEEPBD@Z
??4PolyPolygon@@QAEAAV0@ABV0@@Z
??0SvMemoryStream@@QAE@PAXKG@Z
??0ByteString@@QAE@XZ
?Assign@ByteString@@QAEAAV1@ABV1@@Z
??0Polygon@@QAE@XZ
??0ByteString@@QAE@ABV0@@Z
?Equals@ByteString@@QBEEABV1@@Z
??1SvMemoryStream@@UAE@XZ
??0Polygon@@QAE@G@Z
??0PolyPolygon@@QAE@GG@Z
?SetPoint@Polygon@@QAEXABVPoint@@G@Z
?Rotate@Polygon@@QAEXABVPoint@@G@Z
??1Polygon@@QAE@XZ
??0ByteString@@QAE@ABVString@@GK@Z
?GetWidth@Rectangle@@QBEJXZ
?GetHeight@Rectangle@@QBEJXZ
?TopLeft@Rectangle@@QBE?AVPoint@@XZ
??BFraction@@QBENXZ
??0String@@QAE@D@Z
??0Rectangle@@QAE@ABVPoint@@ABVSize@@@Z
?Move@Rectangle@@QAEXJJ@Z
?Count@PolyPolygon@@QBEGXZ
?GetObject@PolyPolygon@@QBEABVPolygon@@G@Z
?GetSize@Polygon@@QBEGXZ
?GetPoint@Polygon@@QBEABVPoint@@G@Z
?GetFlags@Polygon@@QBE?AW4PolyFlags@@G@Z
??6SvStream@@QAEAAV0@PBD@Z
??1PolyPolygon@@QAE@XZ
??0ByteString@@QAE@PBD@Z
?CreateResMgr@ResMgr@@SAPAV1@PBDULocale@lang@star@sun@com@@@Z
?SeekRel@SvStream@@QAEKJ@Z
?CreateFromInt32@ByteString@@SA?AV1@JF@Z
??6SvStream@@QAEAAV0@D@Z
??1ByteString@@QAE@XZ
??6SvStream@@QAEAAV0@E@Z
?GetBoundRect@PolyPolygon@@QBE?AVRectangle@@XZ
??1String@@QAE@XZ
?PopContext@ResMgr@@QAEXPBVResource@@@Z
??1ResMgr@@QAE@XZ
vclmi
??0SvtGraphicFill@@QAE@XZ
??1SvtGraphicStroke@@QAE@XZ
?getMiterLimit@SvtGraphicStroke@@QBENXZ
?getCapType@SvtGraphicStroke@@QBE?AW4CapType@1@XZ
?getDashArray@SvtGraphicStroke@@QBEXAAV?$vector@NV?$allocator@N@_STL@@@_STL@@@Z
?getEndArrow@SvtGraphicStroke@@QBEXAAVPolyPolygon@@@Z
?getStartArrow@SvtGraphicStroke@@QBEXAAVPolyPolygon@@@Z
?getJoinType@SvtGraphicStroke@@QBE?AW4JoinType@1@XZ
?getStrokeWidth@SvtGraphicStroke@@QBENXZ
?getPath@SvtGraphicStroke@@QBEXAAVPolygon@@@Z
??5@YAAAVSvStream@@AAV0@AAVSvtGraphicStroke@@@Z
??0SvtGraphicStroke@@QAE@XZ
?Move@GDIMetaFile@@QAEXJJ@Z
?Scale@GDIMetaFile@@QAEXNN@Z
??1GfxLink@@QAE@XZ
?SetScaleY@MapMode@@QAEXABVFraction@@@Z
?SetScaleX@MapMode@@QAEXABVFraction@@@Z
?SetOrigin@MapMode@@QAEXABVPoint@@@Z
?LogicToLogic@OutputDevice@@SA?AVPoint@@ABV2@ABVMapMode@@1@Z
??0MapMode@@QAE@ABV0@@Z
?GetDataSize@GfxLink@@QBEKXZ
?GetData@GfxLink@@QBEPBEXZ
??0GDIMetaFile@@QAE@ABV0@@Z
??0GfxLink@@QAE@ABV0@@Z
?Pop@OutputDevice@@QAEXXZ
?Push@OutputDevice@@QAEXG@Z
??0Region@@QAE@ABV0@@Z
??0Region@@QAE@ABVRectangle@@@Z
??1Wallpaper@@QAE@XZ
?GetColor@Wallpaper@@QBEABVColor@@XZ
?IsGradient@Wallpaper@@QBEEXZ
?IsTransparent@BitmapEx@@QBEEXZ
?GetBitmap@Wallpaper@@QBE?AVBitmapEx@@XZ
?IsBitmap@Wallpaper@@QBEEXZ
??5@YAAAVSvStream@@AAV0@AAVSvtGraphicFill@@@Z
?AddHatchActions@OutputDevice@@QAEXABVPolyPolygon@@ABVHatch@@AAVGDIMetaFile@@@Z
?Crop@BitmapEx@@QAEEABVRectangle@@@Z
??1BitmapEx@@QAE@XZ
?GetMask@BitmapEx@@QBE?AVBitmap@@XZ
?GetBitmap@BitmapEx@@QBE?AVBitmap@@PBVColor@@@Z
??0BitmapEx@@QAE@ABV0@@Z
??1InfoBox@@UAE@XZ
??1MessBox@@UAE@XZ
?Execute@Dialog@@UAEFXZ
??0InfoBox@@QAE@PAVWindow@@ABVString@@@Z
?GetGDIMetaFile@Graphic@@QBEABVGDIMetaFile@@XZ
?GetType@Graphic@@QBE?AW4GraphicType@@XZ
?Export@GraphicConverter@@SAKAAVSvStream@@ABVGraphic@@K@Z
??0Graphic@@QAE@ABVBitmapEx@@@Z
?Convert@BitmapEx@@QAEEW4BmpConversion@@@Z
?GetBitmapEx@Graphic@@QBE?AVBitmapEx@@ABVGraphicConversionParameters@@@Z
?Linker@GDIMetaFile@@MAEXPAVOutputDevice@@E@Z
?Hook@GDIMetaFile@@MAEJXZ
?Enable@Window@@QAEX_N0@Z
??1Dialog@@UAE@XZ
??1Button@@UAE@XZ
??1Control@@UAE@XZ
??1RadioButton@@UAE@XZ
??1PushButton@@UAE@XZ
?SetSettings@Window@@UAEXABVAllSettings@@@Z
?SetMapMode@OutputDevice@@UAEXXZ
?SetRelativeMapMode@OutputDevice@@UAEXABVMapMode@@@Z
?MouseMove@Window@@UAEXABVMouseEvent@@@Z
?MouseButtonDown@Window@@UAEXABVMouseEvent@@@Z
?MouseButtonUp@Window@@UAEXABVMouseEvent@@@Z
?KeyInput@Window@@UAEXABVKeyEvent@@@Z
?KeyUp@Window@@UAEXABVKeyEvent@@@Z
?PrePaint@Window@@UAEXXZ
?Paint@Window@@UAEXABVRectangle@@@Z
?Draw@Dialog@@MAEXPAVOutputDevice@@ABVPoint@@ABVSize@@K@Z
?Move@Window@@UAEXXZ
?Resize@Window@@UAEXXZ
?Activate@Window@@UAEXXZ
?Deactivate@Window@@UAEXXZ
?GetFocus@Window@@UAEXXZ
?LoseFocus@Window@@UAEXXZ
?RequestHelp@Window@@UAEXABVHelpEvent@@@Z
?Command@Window@@UAEXABVCommandEvent@@@Z
?Tracking@Window@@UAEXABVTrackingEvent@@@Z
?UserEvent@Window@@UAEXKPAX@Z
?StateChanged@Dialog@@UAEXG@Z
?DataChanged@Dialog@@UAEXABVDataChangedEvent@@@Z
?PreNotify@SystemWindow@@UAEJAAVNotifyEvent@@@Z
?Notify@Dialog@@UAEJAAVNotifyEvent@@@Z
?GetPreferredKeyInputWindow@Window@@UAEPAV1@XZ
?SetSettings@Window@@UAEXABVAllSettings@@E@Z
?SetPosSizePixel@Window@@UAEXABVPoint@@ABVSize@@@Z
?SetPosSizePixel@Window@@UAEXJJJJG@Z
?SetPosPixel@Window@@UAEXABVPoint@@@Z
?GetPosPixel@Window@@UBE?AVPoint@@XZ
?SetSizePixel@Window@@UAEXABVSize@@@Z
?GetSizePixel@Window@@UBE?AVSize@@XZ
?SetOutputSizePixel@Window@@UAEXABVSize@@@Z
?IsScrollable@Window@@UBEEXZ
?Scroll@Window@@UAEXJJABVRectangle@@G@Z
?Scroll@Window@@UAEXJJG@Z
?Invalidate@Window@@UAEXABVRegion@@G@Z
?Invalidate@Window@@UAEXABVRectangle@@G@Z
?Invalidate@Window@@UAEXG@Z
?SetText@Window@@UAEXABVString@@@Z
?GetText@Window@@UBE?AVString@@XZ
?GetDisplayText@Window@@UBE?AVString@@XZ
?GetDisplayBackground@Window@@UBEABVWallpaper@@XZ
?GetComponentInterface@Window@@UAE?AV?$Reference@VXWindowPeer@awt@star@sun@com@@@uno@star@sun@com@@E@Z
?SetComponentInterface@Window@@UAEXV?$Reference@VXWindowPeer@awt@star@sun@com@@@uno@star@sun@com@@@Z
?CreateAccessible@Window@@UAE?AV?$Reference@VXAccessible@accessibility@star@sun@com@@@uno@star@sun@com@@XZ
?GetParentLabelFor@Window@@UBEPAV1@PBV1@@Z
?GetParentLabeledBy@Window@@UBEPAV1@PBV1@@Z
?GetDropTarget@Window@@UAE?AV?$Reference@VXDropTarget@dnd@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetDragSource@Window@@UAE?AV?$Reference@VXDragSource@dnd@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetDragGestureRecognizer@Window@@UAE?AV?$Reference@VXDragGestureRecognizer@dnd@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetClipboard@Window@@UAE?AV?$Reference@VXClipboard@clipboard@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetPrimarySelection@Window@@UAE?AV?$Reference@VXClipboard@clipboard@datatransfer@star@sun@com@@@uno@star@sun@com@@XZ
?GetOptimalSize@Window@@UBE?AVSize@@W4WindowSizeType@@@Z
?GetSurroundingText@Window@@UBE?AVString@@XZ
?GetSurroundingTextSelection@Window@@UBE?AVSelection@@XZ
?Close@Dialog@@UAEEXZ
?TitleButtonClick@SystemWindow@@UAEXG@Z
?Pin@SystemWindow@@UAEXXZ
?Roll@SystemWindow@@UAEXXZ
?Resizing@SystemWindow@@UAEXAAVSize@@@Z
?StartExecuteModal@Dialog@@UAEXABVLink@@@Z
?EndDialog@Dialog@@QAEXJ@Z
?Check@RadioButton@@QAEXE@Z
?SetState@CheckBox@@QAEXW4TriState@@@Z
??0HelpButton@@QAE@PAVWindow@@ABVResId@@@Z
??0CancelButton@@QAE@PAVWindow@@ABVResId@@@Z
??0OKButton@@QAE@PAVWindow@@ABVResId@@@Z
??0RadioButton@@QAE@PAVWindow@@ABVResId@@@Z
??0CheckBox@@QAE@PAVWindow@@ABVResId@@@Z
??0FixedLine@@QAE@PAVWindow@@ABVResId@@@Z
??0ModalDialog@@QAE@PAVWindow@@ABVResId@@@Z
?getFillType@SvtGraphicFill@@QBE?AW4FillType@1@XZ
?getPath@SvtGraphicFill@@QBEXAAVPolyPolygon@@@Z
?AddAction@GDIMetaFile@@QAEXPAVMetaAction@@@Z
?getFillColor@SvtGraphicFill@@QBE?AVColor@@XZ
??1Graphic@@UAE@XZ
??1SvtGraphicFill@@QAE@XZ
??0Font@@QAE@ABV0@@Z
?SetOrientation@Font@@QAEXF@Z
?SetFont@OutputDevice@@QAEXABVFont@@@Z
?SetTextAlign@OutputDevice@@QAEXW4TextAlign@@@Z
?GetTextOutlines@OutputDevice@@QBEEAAV?$vector@VPolyPolygon@@V?$allocator@VPolyPolygon@@@_STL@@@_STL@@ABVString@@GGGEKPBJ@Z
??0Font@@QAE@XZ
??1Font@@QAE@XZ
?GetOrientation@Font@@QBEFXZ
?GetSize@Font@@QBEABVSize@@XZ
??8Font@@QBEEABV0@@Z
?GetPitch@Font@@QBE?AW4FontPitch@@XZ
?GetCharSet@Font@@QBEGXZ
?GetFamily@Font@@QBE?AW4FontFamily@@XZ
??4Font@@QAEAAV0@ABV0@@Z
?GetDefaultDevice@Application@@SAPAVOutputDevice@@XZ
??0MapMode@@QAE@W4MapUnit@@@Z
?LogicToLogic@OutputDevice@@SA?AVSize@@ABV2@ABVMapMode@@1@Z
??1MapMode@@QAE@XZ
??0GraphicConversionParameters@@QAE@ABVSize@@_N11@Z
?GetBitmap@Graphic@@QBE?AVBitmap@@ABVGraphicConversionParameters@@@Z
?Scale@Bitmap@@QAEEABVSize@@K@Z
?Convert@Bitmap@@QAEEW4BmpConversion@@@Z
?GetBestMatchingColor@BitmapReadAccess@@QAE?AVBitmapColor@@ABV2@@Z
??8BitmapColor@@QBEEABV0@@Z
?GetWeight@Font@@QBE?AW4FontWeight@@XZ
?GetItalic@Font@@QBE?AW4FontItalic@@XZ
?GetTextWidth@OutputDevice@@QBEJABVString@@GG@Z
?GetSizePixel@Bitmap@@QBE?AVSize@@XZ
??0Bitmap@@QAE@ABV0@@Z
??0Region@@QAE@XZ
?CreateRegion@Bitmap@@QBE?AVRegion@@ABVColor@@ABVRectangle@@@Z
??4Region@@QAEAAV0@ABV0@@Z
??1Region@@QAE@XZ
?GetRectCount@Region@@QBEKXZ
??1Bitmap@@QAE@XZ
?Crop@Bitmap@@QAEEABVRectangle@@@Z
?AcquireReadAccess@Bitmap@@QAEPAVBitmapReadAccess@@XZ
?GetPixel@BitmapReadAccess@@QBE?AVBitmapColor@@JJ@Z
?HasPalette@BitmapReadAccess@@QBEEXZ
?GetPaletteEntryCount@BitmapReadAccess@@QBEGXZ
?ReleaseAccess@Bitmap@@QAEXPAVBitmapReadAccess@@@Z
??1BitmapColor@@QAE@XZ
?GetType@Region@@QBE?AW4RegionType@@XZ
?BeginEnumRects@Region@@QAEJXZ
?GetEnumRects@Region@@QAEEJAAVRectangle@@@Z
?EndEnumRects@Region@@QAEXJ@Z
?GetSettings@Application@@SAABVAllSettings@@XZ
?GetUILocale@AllSettings@@QBEABULocale@lang@star@sun@com@@XZ
??0VirtualDevice@@QAE@G@Z
??0GDIMetaFile@@QAE@XZ
?SetMapMode@OutputDevice@@UAEXABVMapMode@@@Z
?AddGradientActions@OutputDevice@@QAEXABVRectangle@@ABVGradient@@AAVGDIMetaFile@@@Z
??1GDIMetaFile@@UAE@XZ
??1VirtualDevice@@UAE@XZ
??0Wallpaper@@QAE@ABV0@@Z
svtmi
?WriteInt32@FilterConfigItem@@QAEXABVOUString@rtl@@J@Z
?GetFilterData@FilterConfigItem@@QBE?AV?$Sequence@UPropertyValue@beans@star@sun@com@@@uno@star@sun@com@@XZ
??1FilterConfigItem@@QAE@XZ
?GetStatusIndicator@FilterConfigItem@@QBE?AV?$Reference@VXStatusIndicator@task@star@sun@com@@@uno@star@sun@com@@XZ
??0FilterConfigItem@@QAE@ABVOUString@rtl@@PAV?$Sequence@UPropertyValue@beans@star@sun@com@@@uno@star@sun@com@@@Z
?ReadInt32@FilterConfigItem@@QAEJABVOUString@rtl@@J@Z
cppu3
typelib_static_type_init
typelib_static_sequence_type_init
uno_type_destructData
uno_type_sequence_assign
sal3
rtl_uString_acquire
rtl_uString_release
rtl_uString_new
msvcr90
_except_handler4_common
memmove
__CxxFrameHandler3
??3@YAXPAX@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
_CxxThrowException
??2@YAPAXI@Z
_encode_pointer
_malloc_crt
free
_encoded_null
_decode_pointer
_initterm
_initterm_e
_onexit
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_amsg_exit
kernel32
QueryPerformanceCounter
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
stlport_vc7145
?allocate@?$__node_alloc@$00$0A@@_STL@@SAPAXI@Z
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
Exports
Exports
DoExportDialog
GetVersionInfo
GraphicExport
Sections
.text Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 22KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ