Static task
static1
Behavioral task
behavioral1
Sample
48f65291522ecba4a59c28ab9b0df46c_JaffaCakes118.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral2
Sample
48f65291522ecba4a59c28ab9b0df46c_JaffaCakes118.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
General
-
Target
48f65291522ecba4a59c28ab9b0df46c_JaffaCakes118
-
Size
328KB
-
MD5
48f65291522ecba4a59c28ab9b0df46c
-
SHA1
656dde0a8ed1c3f7e93af1b139db21385688026b
-
SHA256
6113632b419142822a56a5c04ee66826c517e31600e064fd57eedc62fafd0837
-
SHA512
51c2b516fcdeea2161e23368694bf3b4a5bafe7500419757d39934e4591468155ed208c9c2f3be0239f77cf4166118405c1ef880f1f85ad8128b49f5db62cf5a
-
SSDEEP
6144:fkKiIW0UpRJUznPqBOHK0LBW5/MrW04S/BxdxikawzBQ6Ae:sJlBpLUbqOq+tKeZxd0Oyl
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 48f65291522ecba4a59c28ab9b0df46c_JaffaCakes118
Files
-
48f65291522ecba4a59c28ab9b0df46c_JaffaCakes118.exe windows:4 windows x86 arch:x86
92f254497fd93c3f0cce02454c60bfa0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SearchPathA
InterlockedDecrement
CreateConsoleScreenBuffer
OpenEventA
SetProcessWorkingSetSize
GetConsoleOutputCP
WriteTapemark
CallNamedPipeW
SetProcessAffinityMask
CreateDirectoryA
PurgeComm
GetCalendarInfoW
FindCloseChangeNotification
BuildCommDCBW
SetEndOfFile
GetNumberFormatW
PeekNamedPipe
GetCommTimeouts
GetTapeParameters
IsBadHugeWritePtr
PostQueuedCompletionStatus
CompareStringW
VirtualFreeEx
FillConsoleOutputAttribute
SetThreadLocale
GetSystemPowerStatus
WriteConsoleInputA
WriteFileEx
RequestDeviceWakeup
GetQueuedCompletionStatus
WaitForMultipleObjects
BeginUpdateResourceA
GetDateFormatA
SetFileAttributesA
GlobalWire
WaitForSingleObject
TransmitCommChar
AddAtomW
SetConsoleTitleW
LocalFileTimeToFileTime
LoadLibraryExW
TerminateProcess
InitAtomTable
DisableThreadLibraryCalls
GetPrivateProfileSectionNamesA
IsBadHugeReadPtr
CreateIoCompletionPort
UnlockFileEx
GetTempFileNameA
GetExitCodeThread
BeginUpdateResourceW
ReadConsoleInputA
CommConfigDialogW
GetConsoleCursorInfo
GetModuleFileNameW
LockResource
SetConsoleActiveScreenBuffer
InterlockedExchange
CreateDirectoryExW
lstrcmpiA
WaitForSingleObjectEx
CreateFileMappingW
GetPrivateProfileStringA
SetConsoleTitleA
GetProcessAffinityMask
SetLocaleInfoW
GetNamedPipeInfo
LocalCompact
GlobalFindAtomA
EnterCriticalSection
GetEnvironmentVariableW
CreateFileW
CreateFileMappingA
SetEvent
GetPrivateProfileSectionW
EnumCalendarInfoA
GetTapeStatus
HeapUnlock
GetCommConfig
BackupSeek
Heap32ListFirst
GetFileInformationByHandle
WriteProcessMemory
GetConsoleMode
EnumSystemLocalesW
WaitForMultipleObjectsEx
Beep
GetThreadSelectorEntry
GetDiskFreeSpaceW
GetHandleInformation
UnhandledExceptionFilter
GetProfileIntA
SetConsoleTextAttribute
GlobalUnWire
CreateToolhelp32Snapshot
GetFileType
lstrcpyW
_lopen
GetProcessHeaps
lstrlenA
GlobalGetAtomNameA
LeaveCriticalSection
QueryPerformanceCounter
RemoveDirectoryA
GlobalAlloc
PulseEvent
GetProfileSectionW
FlushViewOfFile
SetConsoleCP
GetTempPathA
SetStdHandle
FileTimeToDosDateTime
OpenFileMappingA
SuspendThread
GetTempPathW
CopyFileW
GetLongPathNameA
GetCPInfoExA
lstrcmpA
WritePrivateProfileStructA
GetStartupInfoA
LockFileEx
GetDiskFreeSpaceA
WriteConsoleOutputA
MoveFileW
ReadConsoleA
HeapSize
ContinueDebugEvent
CancelIo
GetPrivateProfileIntA
HeapAlloc
GlobalUnfix
SetConsoleWindowInfo
GetSystemTime
SetVolumeLabelA
EnumResourceTypesW
SetCalendarInfoA
GetSystemTimeAdjustment
WaitForDebugEvent
GetStringTypeExA
WaitNamedPipeW
GetCurrentThreadId
VirtualLock
FindFirstFileW
InterlockedExchangeAdd
EscapeCommFunction
CreateFileA
EraseTape
SetThreadContext
SetFilePointer
GetLogicalDrives
FlushFileBuffers
FindResourceA
GetProfileSectionA
EnumTimeFormatsW
DebugBreak
GetWriteWatch
CompareStringA
WritePrivateProfileSectionA
GetDriveTypeW
FormatMessageA
WriteProfileStringW
LoadLibraryA
CreateThread
MoveFileA
GetAtomNameA
UpdateResourceA
SetComputerNameA
VirtualQuery
EnumSystemCodePagesW
PrepareTape
SetConsoleMode
VirtualAlloc
CreateTapePartition
GetSystemTimeAsFileTime
GetThreadPriorityBoost
GetUserDefaultLCID
GetProfileStringW
GetModuleHandleA
SetCommConfig
FileTimeToLocalFileTime
ReadFileScatter
LocalLock
SetCalendarInfoW
IsBadStringPtrW
WriteConsoleA
GetVolumeInformationA
EnumDateFormatsA
GetTimeZoneInformation
Toolhelp32ReadProcessMemory
RemoveDirectoryW
ReadConsoleOutputW
GetCurrentProcessId
GetSystemDefaultLangID
OpenMutexA
GetACP
IsBadReadPtr
GetConsoleScreenBufferInfo
OpenFileMappingW
GetShortPathNameA
DeleteFileW
LocalUnlock
ReadConsoleOutputCharacterW
ReadConsoleOutputAttribute
GlobalGetAtomNameW
SetCurrentDirectoryA
BuildCommDCBAndTimeoutsA
LoadLibraryW
GetFileAttributesW
IsBadWritePtr
FlushInstructionCache
CreateDirectoryW
SetConsoleCursorPosition
SetLastError
GetShortPathNameW
HeapCreate
LocalFlags
Thread32Next
GetVersion
GetThreadContext
SetThreadPriority
OpenEventW
WritePrivateProfileSectionW
SetLocalTime
SetTapePosition
GetCommModemStatus
GetModuleHandleW
OpenFile
WaitNamedPipeA
MoveFileExA
FindResourceW
HeapWalk
Sleep
CreateNamedPipeA
GetLocalTime
ResetWriteWatch
GetEnvironmentVariableA
CommConfigDialogA
LockFile
GlobalFlags
CreateMailslotW
VirtualProtectEx
Heap32ListNext
SetSystemTime
CreateMailslotA
_lclose
GetNumberOfConsoleInputEvents
IsValidCodePage
EndUpdateResourceW
HeapCompact
SetLocaleInfoA
SetNamedPipeHandleState
SetDefaultCommConfigW
SetDefaultCommConfigA
ReadConsoleOutputA
FatalAppExitW
GetCommandLineA
GetNamedPipeHandleStateA
GetCPInfoExW
GetDefaultCommConfigW
OpenSemaphoreA
EnumResourceLanguagesW
GetCommandLineW
lstrcpyA
SetVolumeLabelW
OpenSemaphoreW
SetErrorMode
GetAtomNameW
FindResourceExW
ExpandEnvironmentStringsW
FatalExit
FindClose
AddAtomA
GetLogicalDriveStringsW
LocalReAlloc
GetSystemDefaultLCID
WriteConsoleOutputCharacterW
MultiByteToWideChar
FindNextChangeNotification
WriteFileGather
lstrlenW
GetDateFormatW
SetFileTime
HeapFree
WideCharToMultiByte
VirtualUnlock
VirtualQueryEx
DebugActiveProcess
LocalAlloc
TlsSetValue
BackupRead
GetProcessTimes
FindNextFileW
GlobalFindAtomW
ResetEvent
MapViewOfFileEx
GetDiskFreeSpaceExA
GetOverlappedResult
TlsAlloc
ExitProcess
_llseek
GetLargestConsoleWindowSize
ResumeThread
SetTimeZoneInformation
GetCompressedFileSizeW
FindFirstFileA
ExitThread
lstrcatA
_hread
SetCurrentDirectoryW
GetPrivateProfileStructA
GetMailslotInfo
GetStringTypeW
GetThreadTimes
ConnectNamedPipe
UpdateResourceW
SetCommMask
GetOEMCP
WriteConsoleW
GetLocaleInfoW
SetupComm
GetStartupInfoW
SetMessageWaitingIndicator
SetProcessPriorityBoost
SetConsoleCursorInfo
GetDevicePowerState
GenerateConsoleCtrlEvent
DeleteAtom
GetBinaryTypeA
GetFullPathNameA
SetProcessShutdownParameters
OpenProcess
BackupWrite
LocalShrink
lstrcpynW
GetProcAddress
EnumResourceTypesA
WinExec
UnmapViewOfFile
GetPriorityClass
GetProfileIntW
DefineDosDeviceA
MoveFileExW
GetExitCodeProcess
TransactNamedPipe
GetVersionExA
user32
DialogBoxParamA
MessageBoxExW
SetPropW
ChildWindowFromPoint
DialogBoxIndirectParamA
GetMessagePos
DrawTextExA
EqualRect
GetMenuState
LoadStringA
GetMenu
ExitWindowsEx
GetCapture
CreateWindowStationW
ValidateRect
SetCapture
SetDlgItemInt
CharLowerW
IsWindowVisible
DlgDirListW
GetClassNameW
WinHelpW
CreateMenu
SetThreadDesktop
ShowScrollBar
DrawTextW
SetForegroundWindow
SendNotifyMessageW
DispatchMessageA
SetSystemCursor
SetClassLongW
GetDlgCtrlID
GetWindowLongW
SetMenuItemBitmaps
GetMenuItemID
CreateCursor
PeekMessageA
VkKeyScanW
SetWindowPos
GetDoubleClickTime
CharToOemW
SwapMouseButton
CascadeWindows
SystemParametersInfoA
GetSubMenu
CharUpperBuffW
GetKeyState
GetKeyNameTextW
InsertMenuItemA
AppendMenuW
GetKeyboardLayoutNameW
SetWindowsHookExA
GetMenuItemCount
MapVirtualKeyExW
DestroyIcon
GetWindow
GetMenuItemRect
SendNotifyMessageA
SetClipboardViewer
IsIconic
GetUpdateRgn
DlgDirSelectExA
PtInRect
GetClipboardData
DrawMenuBar
DrawFrameControl
DestroyCaret
LoadCursorFromFileA
InternalGetWindowText
CreatePopupMenu
IsCharAlphaW
GetMenuStringW
EnumPropsA
DlgDirSelectComboBoxExA
InvertRect
LoadCursorW
ReleaseCapture
GetKeyboardState
SetCursor
DrawIcon
ReplyMessage
EndPaint
EnumDisplaySettingsA
TrackPopupMenu
CloseClipboard
TranslateAcceleratorA
GetMenuItemInfoW
DestroyCursor
DrawFocusRect
GetPropW
SwitchDesktop
RegisterWindowMessageW
SetTimer
IsCharLowerA
IsDialogMessageW
OemToCharBuffW
SetScrollPos
ToUnicodeEx
SendMessageCallbackW
SendDlgItemMessageA
GetInputState
OpenIcon
GetFocus
LoadKeyboardLayoutW
InvalidateRgn
GetTopWindow
RemovePropW
SetWindowRgn
AttachThreadInput
SetWindowWord
IsCharAlphaA
CopyRect
AppendMenuA
SetWindowsHookW
SetUserObjectSecurity
DefMDIChildProcA
GetClipboardFormatNameA
SetMenuDefaultItem
SetMenuItemInfoA
HiliteMenuItem
ChangeMenuW
IsCharLowerW
LoadAcceleratorsW
ClipCursor
CallWindowProcW
InflateRect
MenuItemFromPoint
SubtractRect
LoadBitmapW
SetScrollRange
DialogBoxParamW
OpenInputDesktop
RemovePropA
TranslateMDISysAccel
CopyAcceleratorTableW
EnumChildWindows
GetSystemMetrics
UnregisterClassA
CreateAcceleratorTableW
GetScrollPos
SetParent
TranslateMessage
SetWindowsHookA
PostQuitMessage
IsClipboardFormatAvailable
SetWindowTextA
CreateIcon
CallMsgFilterA
DlgDirListA
GetDlgItemInt
MapVirtualKeyW
MessageBoxA
SetDlgItemTextA
SetUserObjectInformationA
IsChild
OemToCharA
SetMenu
GetPropA
PostThreadMessageW
SetWindowTextW
GetUserObjectInformationA
EndDeferWindowPos
SetSysColors
EnumWindowStationsA
GetWindowContextHelpId
RemoveMenu
GetWindowThreadProcessId
MessageBoxIndirectW
ReleaseDC
GetSysColorBrush
GetKBCodePage
GetMenuContextHelpId
SetMessageExtraInfo
CallWindowProcA
UnionRect
CharToOemBuffW
SendMessageTimeoutW
GetClassInfoA
WaitForInputIdle
SetRect
GetPriorityClipboardFormat
GetQueueStatus
SetMessageQueue
CharLowerBuffW
GetCursorPos
SetClassWord
IsCharAlphaNumericA
WaitMessage
AnyPopup
FindWindowExW
PostThreadMessageA
IsRectEmpty
VkKeyScanExW
DrawStateW
WindowFromPoint
EnumDesktopsW
SetKeyboardState
FindWindowA
MsgWaitForMultipleObjects
LoadIconW
GetShellWindow
DestroyMenu
SetWindowContextHelpId
CreateMDIWindowW
SetWindowPlacement
GetTabbedTextExtentW
MapDialogRect
MessageBoxW
ChangeMenuA
GetDC
GetCaretBlinkTime
GetClipboardViewer
GetLastActivePopup
FrameRect
OpenWindowStationA
GrayStringA
CharToOemA
RegisterWindowMessageA
SetCaretBlinkTime
MsgWaitForMultipleObjectsEx
SetPropA
GetMenuCheckMarkDimensions
TranslateAcceleratorW
DrawTextA
FlashWindow
TabbedTextOutW
mouse_event
GetUpdateRect
DefMDIChildProcW
SendMessageTimeoutA
OffsetRect
LoadKeyboardLayoutA
ClientToScreen
RegisterClassW
CharPrevA
IntersectRect
GetMenuDefaultItem
DrawStateA
GetNextDlgGroupItem
DrawAnimatedRects
ChildWindowFromPointEx
SetDlgItemTextW
CopyIcon
ShowCursor
GetWindowTextW
DragDetect
ArrangeIconicWindows
LoadCursorA
MapVirtualKeyA
DefDlgProcW
SetWindowLongW
InsertMenuA
SetRectEmpty
DlgDirListComboBoxW
GetScrollInfo
ChangeClipboardChain
VkKeyScanA
EnumWindows
EnumPropsExA
GetForegroundWindow
TileWindows
GetClassNameA
CheckRadioButton
CharPrevW
wsprintfA
GetTabbedTextExtentA
InSendMessage
SendMessageW
MapWindowPoints
wvsprintfA
InvalidateRect
GetWindowPlacement
GetKeyboardType
IsZoomed
GetClipboardFormatNameW
RegisterClipboardFormatW
AdjustWindowRectEx
GetOpenClipboardWindow
DefWindowProcW
DlgDirSelectExW
ModifyMenuA
DefDlgProcA
GetClientRect
CharToOemBuffA
DefFrameProcA
InsertMenuItemW
OpenWindowStationW
SendMessageA
gdi32
GetOutlineTextMetricsW
PaintRgn
SetWinMetaFileBits
UnrealizeObject
PolyDraw
SetDeviceGammaRamp
GetCharABCWidthsA
PolyPolygon
CreateCompatibleBitmap
LPtoDP
EnumMetaFile
GetBkMode
GetGlyphOutlineA
CombineTransform
WidenPath
InvertRgn
GetColorAdjustment
PlayEnhMetaFileRecord
ColorMatchToTarget
GdiGetBatchLimit
Chord
EnumFontFamiliesA
SelectObject
EnumEnhMetaFile
SetSystemPaletteUse
SetBitmapBits
SetBoundsRect
GetTextMetricsA
GetRandomRgn
GetTextFaceA
CreateBitmapIndirect
SaveDC
ScaleWindowExtEx
AngleArc
SetBrushOrgEx
CreateCompatibleDC
EnumFontsA
CreatePolyPolygonRgn
GetEnhMetaFileDescriptionA
EnumFontsW
CreateFontIndirectW
CreateSolidBrush
SetPolyFillMode
FixBrushOrgEx
ExtTextOutW
FloodFill
SetMiterLimit
CreateDCW
GetCharABCWidthsFloatA
CreateColorSpaceA
EndDoc
SelectClipRgn
GetKerningPairsA
GetMetaFileBitsEx
SetBkMode
FillPath
ResizePalette
GetMapMode
CreateRectRgn
CopyMetaFileW
GetCurrentObject
SetMetaFileBitsEx
EqualRgn
GetTextExtentPointA
EndPage
DeleteObject
CreateEllipticRgnIndirect
EnumFontFamiliesExW
CreateFontW
GetEnhMetaFileDescriptionW
SetROP2
SetColorAdjustment
CreateDIBitmap
GetViewportOrgEx
CancelDC
GetSystemPaletteEntries
EnumFontFamiliesExA
SetViewportOrgEx
SetStretchBltMode
GetMetaFileW
RectInRegion
FlattenPath
GetStretchBltMode
EndPath
PlgBlt
CreatePolygonRgn
GetCharacterPlacementW
Pie
GetCharWidthFloatA
GetEnhMetaFileHeader
IntersectClipRect
SetBkColor
GetWindowExtEx
CreateEnhMetaFileW
UpdateICMRegKeyW
Escape
ChoosePixelFormat
PolyBezierTo
GetCharWidth32W
OffsetViewportOrgEx
AddFontResourceW
ExtEscape
GetCharacterPlacementA
SetTextColor
GetEnhMetaFileA
GetMetaFileA
RectVisible
GetOutlineTextMetricsA
GetEnhMetaFileBits
GetCharWidthA
SetPixel
StartPage
PolyPolyline
GetCharWidthFloatW
PolylineTo
StartDocA
SetMetaRgn
GetCurrentPositionEx
PatBlt
GetICMProfileA
EnumFontFamiliesW
Rectangle
GetLogColorSpaceW
CreateBrushIndirect
CreateFontA
ArcTo
OffsetRgn
GetDIBColorTable
SetTextJustification
GetNearestPaletteIndex
GetColorSpace
GetDeviceCaps
GetTextCharset
ModifyWorldTransform
CreateFontIndirectA
SelectClipPath
ExtFloodFill
EnumICMProfilesA
CreateHatchBrush
ResetDCW
GetBkColor
DeleteColorSpace
CreateDIBSection
ExcludeClipRect
DeleteMetaFile
GetBrushOrgEx
CreatePalette
CreateDCA
CreateDiscardableBitmap
SetWorldTransform
Polyline
AbortDoc
SetAbortProc
GetTextCharacterExtra
UpdateICMRegKeyA
GetBoundsRect
CloseMetaFile
BeginPath
SetGraphicsMode
CopyEnhMetaFileA
StrokePath
CreateRectRgnIndirect
GetCharWidthW
DescribePixelFormat
CreateEnhMetaFileA
CombineRgn
BitBlt
AnimatePalette
GetTextExtentExPointW
SelectPalette
GetPaletteEntries
GetEnhMetaFileW
SetEnhMetaFileBits
SetViewportExtEx
GetObjectW
GetCharABCWidthsW
AbortPath
CreateRoundRectRgn
GetViewportExtEx
GetTextExtentPoint32A
PlayMetaFile
comdlg32
ReplaceTextW
GetSaveFileNameA
GetSaveFileNameW
ChooseColorA
GetOpenFileNameA
advapi32
GetSecurityDescriptorOwner
CloseEventLog
RevertToSelf
RegQueryValueExA
QueryServiceLockStatusA
CryptVerifySignatureA
BuildTrusteeWithSidW
GetServiceDisplayNameW
SetPrivateObjectSecurity
GetServiceDisplayNameA
AbortSystemShutdownA
CryptEnumProviderTypesW
GetFileSecurityW
CryptDuplicateKey
SetTokenInformation
CreateProcessAsUserW
InitiateSystemShutdownW
GetServiceKeyNameA
RegSetValueW
RegEnumValueW
EqualPrefixSid
PrivilegedServiceAuditAlarmW
GetTrusteeTypeW
RegQueryValueExW
OpenSCManagerA
CryptHashSessionKey
CryptSignHashW
BuildImpersonateTrusteeA
RegEnumKeyA
CryptSetProvParam
GetMultipleTrusteeW
CryptGetHashParam
CryptEnumProvidersW
CryptSetKeyParam
FreeSid
FindFirstFreeAce
RegQueryMultipleValuesA
ChangeServiceConfigW
DeleteService
ObjectCloseAuditAlarmW
DeleteAce
GetSecurityDescriptorLength
CryptGetKeyParam
StartServiceW
CopySid
GetExplicitEntriesFromAclW
CryptHashData
AreAnyAccessesGranted
BuildSecurityDescriptorA
SetKernelObjectSecurity
GetTrusteeNameW
RegDeleteKeyW
CryptSetProviderA
GetNumberOfEventLogRecords
OpenServiceA
DuplicateTokenEx
GetTrusteeNameA
ChangeServiceConfigA
ReadEventLogA
IsTextUnicode
RegRestoreKeyW
AddAce
SetAclInformation
RegLoadKeyA
GetLengthSid
CryptDestroyHash
BuildExplicitAccessWithNameW
ImpersonateNamedPipeClient
SetFileSecurityA
DestroyPrivateObjectSecurity
StartServiceA
RegDeleteKeyA
IsValidAcl
CryptReleaseContext
EnumServicesStatusA
GetSidLengthRequired
RegSaveKeyW
RegReplaceKeyW
PrivilegeCheck
CreatePrivateObjectSecurity
RegOpenKeyExA
GetUserNameA
LogonUserA
SetServiceObjectSecurity
AccessCheck
CryptDuplicateHash
CryptGenRandom
CryptSetProviderW
InitializeSid
ImpersonateSelf
RegCloseKey
UnlockServiceDatabase
BuildSecurityDescriptorW
AddAccessDeniedAce
SetEntriesInAclW
QueryServiceStatus
RegConnectRegistryW
GetMultipleTrusteeOperationW
GetSecurityInfo
OpenEventLogA
SetServiceBits
SetSecurityDescriptorDacl
RegSetKeySecurity
RegSetValueExW
RegQueryInfoKeyA
RegisterEventSourceW
LookupSecurityDescriptorPartsW
RegisterEventSourceA
ObjectDeleteAuditAlarmA
LookupPrivilegeNameA
NotifyBootConfigStatus
RegisterServiceCtrlHandlerA
GetSecurityDescriptorGroup
SetEntriesInAclA
CryptGetDefaultProviderW
OpenSCManagerW
PrivilegedServiceAuditAlarmA
ObjectOpenAuditAlarmA
StartServiceCtrlDispatcherW
RegUnLoadKeyW
ReportEventA
QueryServiceObjectSecurity
CreateProcessAsUserA
CryptSetProviderExA
ImpersonateLoggedOnUser
InitializeSecurityDescriptor
EnumDependentServicesW
CreateServiceA
RegCreateKeyA
AllocateLocallyUniqueId
EqualSid
LookupPrivilegeValueA
CloseServiceHandle
RegQueryValueW
CryptSignHashA
RegSaveKeyA
SetSecurityDescriptorSacl
SetNamedSecurityInfoW
RegEnumValueA
ObjectOpenAuditAlarmW
GetSecurityDescriptorDacl
OpenThreadToken
AbortSystemShutdownW
CryptGenKey
RegRestoreKeyA
RegReplaceKeyA
ReadEventLogW
OpenEventLogW
RegCreateKeyExA
GetSidSubAuthority
ObjectPrivilegeAuditAlarmW
QueryServiceConfigA
GetAce
MapGenericMask
shell32
SHEmptyRecycleBinW
ExtractIconExA
SHGetSpecialFolderPathA
SHFileOperationW
SHGetSpecialFolderPathW
SHInvokePrinterCommandA
ShellExecuteExA
ExtractAssociatedIconA
SHEmptyRecycleBinA
ord179
SHQueryRecycleBinA
DragAcceptFiles
SHGetPathFromIDListW
SHFileOperationA
DoEnvironmentSubstW
ShellExecuteW
ShellExecuteA
SHGetDesktopFolder
ExtractAssociatedIconExW
DragQueryFileW
SHGetFileInfoW
SHGetFileInfoA
Shell_NotifyIconW
SHAddToRecentDocs
SHBrowseForFolderA
FindExecutableW
CommandLineToArgvW
SHQueryRecycleBinW
ExtractIconA
SHChangeNotify
SHGetInstanceExplorer
DragQueryFileA
ExtractIconExW
SHGetSettings
SHAppBarMessage
DragQueryPoint
msvcrt
__p__fmode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__p__commode
__set_app_type
_except_handler3
_controlfp
Sections
.text Size: 280KB - Virtual size: 278KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 28KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ