Behavioral task
behavioral1
Sample
4961b9fcdee81128e8e6a7970d0bf8e6_JaffaCakes118.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral2
Sample
4961b9fcdee81128e8e6a7970d0bf8e6_JaffaCakes118.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
General
-
Target
4961b9fcdee81128e8e6a7970d0bf8e6_JaffaCakes118
-
Size
516KB
-
MD5
4961b9fcdee81128e8e6a7970d0bf8e6
-
SHA1
1eba85a772c47cee3491bea995e5188e522bc783
-
SHA256
358479a440f3fadf17f72fb6c14751f7c16a8b4c3c14eaadad6b2289392aeb3b
-
SHA512
9d9247be1fdc34d77471b3e2ef7ad770955e7cf4e45dd47505681245a65f6c7960bc85d69d8e84596bf4043341ce69b40e7d89a6282fe02278f151eb53a79ad7
-
SSDEEP
12288:b/1b/EMWURwf0WEpAcWKAK8f6lfBVGCLzMWqyD5gkIS:bh/EGI0WYAcWK+6xB9FjgI
Malware Config
Signatures
-
resource yara_rule sample vmprotect -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 4961b9fcdee81128e8e6a7970d0bf8e6_JaffaCakes118
Files
-
4961b9fcdee81128e8e6a7970d0bf8e6_JaffaCakes118.exe windows:4 windows x86 arch:x86
76fea32edc57a13915c81af8361c6c3c
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ImageList_DrawEx
ImageList_Draw
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Write
ImageList_GetIcon
CreateUpDownControl
ImageList_SetFlags
ImageList_GetBkColor
ImageList_SetIconSize
ImageList_DragEnter
ImageList_SetBkColor
CreateToolbarEx
ImageList_Remove
ImageList_Copy
CreateStatusWindowW
ImageList_GetImageCount
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Create
ImageList_LoadImageA
ord17
ImageList_ReplaceIcon
InitializeFlatSB
ImageList_LoadImage
ImageList_EndDrag
ImageList_AddIcon
ImageList_DragMove
ImageList_Replace
ImageList_Duplicate
ImageList_DragShowNolock
ImageList_SetImageCount
ImageList_GetDragImage
ImageList_Add
InitCommonControlsEx
ImageList_Read
ImageList_DragLeave
FlatSB_EnableScrollBar
ImageList_GetImageInfo
_TrackMouseEvent
ImageList_Destroy
CreatePropertySheetPageW
ImageList_SetOverlayImage
FlatSB_ShowScrollBar
ImageList_Merge
ImageList_DrawIndirect
ImageList_SetDragCursorImage
ImageList_LoadImageW
MakeDragList
PropertySheetW
ImageList_GetIconSize
DrawStatusTextW
oleaut32
LoadTypeLi
version
VerInstallFileA
GetFileVersionInfoA
VerLanguageNameA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoSizeA
gdi32
SelectObject
SetICMMode
StrokePath
ScaleViewportExtEx
Pie
PlayEnhMetaFileRecord
EndPage
GetTextFaceW
SetArcDirection
Rectangle
LineDDA
SetTextColor
GetColorAdjustment
CreateSolidBrush
CreateEllipticRgn
AngleArc
FlattenPath
OffsetClipRgn
GetOutlineTextMetricsA
GetCharWidthFloatA
GetSystemPaletteEntries
GetFontLanguageInfo
SetTextJustification
SetROP2
ExtTextOutW
GetDIBColorTable
OffsetViewportOrgEx
CombineRgn
GetCharABCWidthsA
RealizePalette
DPtoLP
GetTextCharset
GetCharWidth32A
CreateCompatibleDC
GetPixelFormat
CreateICW
SetGraphicsMode
GetObjectW
GetTextExtentPoint32W
GetNearestColor
GetBoundsRect
PlayMetaFile
GetCharABCWidthsW
CopyEnhMetaFileA
GetBkMode
CreateFontIndirectW
DescribePixelFormat
SetRectRgn
GetTextCharsetInfo
GetRgnBox
PatBlt
StretchBlt
ScaleWindowExtEx
SetDIBits
CreateEllipticRgnIndirect
GetBitmapBits
SetTextCharacterExtra
SetLayout
CreateRectRgnIndirect
Escape
GetDIBits
GetMiterLimit
GetEnhMetaFileHeader
PlayMetaFileRecord
GetTextExtentPoint32A
CreatePolyPolygonRgn
SetColorAdjustment
CreateDIBSection
GdiFlush
CopyMetaFileA
ExcludeClipRect
GetTextCharacterExtra
GetCurrentPositionEx
GetROP2
CreatePolygonRgn
AbortDoc
LineTo
PolyDraw
CreateRoundRectRgn
SetPixelV
CreateHatchBrush
DeleteDC
GetMetaFileBitsEx
CreatePen
CreateDIBitmap
CreateRectRgn
Chord
SetICMProfileA
GetDCOrgEx
CloseFigure
TextOutW
ExtSelectClipRgn
EnumFontsA
EnumObjects
CreateFontIndirectA
EnumFontFamiliesExW
SetBitmapBits
GetTextMetricsA
SetBitmapDimensionEx
DrawEscape
PaintRgn
Arc
LPtoDP
SetStretchBltMode
SetWindowOrgEx
UnrealizeObject
ArcTo
CreateDiscardableBitmap
SetPolyFillMode
CreateDCA
CreateFontA
EnumFontsW
GetEnhMetaFilePaletteEntries
GetGlyphOutlineW
StartDocA
PlayEnhMetaFile
EnumFontFamiliesExA
SetBkColor
CreateBrushIndirect
StartDocW
GetTextExtentExPointA
EnumFontFamiliesA
PolylineTo
EnumEnhMetaFile
BitBlt
CreatePatternBrush
SelectPalette
SetWorldTransform
StrokeAndFillPath
SetEnhMetaFileBits
CreateHalftonePalette
SetAbortProc
SetViewportOrgEx
GetDeviceCaps
PtVisible
GetEnhMetaFileA
ResetDCW
GetViewportExtEx
CreateMetaFileW
GetObjectA
CloseMetaFile
EndDoc
Ellipse
ExtFloodFill
SelectClipPath
MoveToEx
GetCharacterPlacementW
ExtEscape
GetEnhMetaFileBits
GetArcDirection
PathToRegion
GetCurrentObject
AnimatePalette
GetClipBox
SetWinMetaFileBits
OffsetRgn
TranslateCharsetInfo
SetBrushOrgEx
DeleteMetaFile
SetDIBitsToDevice
PolyBezier
GetViewportOrgEx
SetPaletteEntries
GetNearestPaletteIndex
GetKerningPairsA
GetLayout
GetEnhMetaFileW
ExtCreatePen
GetCharWidthW
EnumFontFamiliesW
AbortPath
GetStockObject
ResizePalette
GetBkColor
FillPath
EndPath
Polyline
GetRegionData
EnumMetaFile
WidenPath
PolyPolygon
OffsetWindowOrgEx
GetCharABCWidthsFloatW
SetPixelFormat
CreateCompatibleBitmap
PolyPolyline
SetBoundsRect
CopyEnhMetaFileW
GetBrushOrgEx
CreatePenIndirect
IntersectClipRect
ChoosePixelFormat
SwapBuffers
FloodFill
SetTextAlign
PlgBlt
GetMapMode
RemoveFontResourceA
GetWinMetaFileBits
InvertRgn
AddFontResourceA
SelectClipRgn
SetWindowExtEx
GetStretchBltMode
GetGlyphOutlineA
CreateDIBPatternBrushPt
CreateEnhMetaFileW
TextOutA
RestoreDC
CreateDCW
GetTextMetricsW
FillRgn
SetMiterLimit
SetPixel
StretchDIBits
GetTextFaceA
CreateEnhMetaFileA
GetPaletteEntries
GetPixel
GetObjectType
RectVisible
GetCharWidth32W
GetTextColor
DeleteEnhMetaFile
UpdateColors
ResetDCA
GdiComment
PtInRegion
GetTextAlign
ExtTextOutA
FrameRgn
SetDIBColorTable
SetMapperFlags
DeleteObject
CreateBitmap
GetTextExtentPointW
SetDCPenColor
GetWindowExtEx
CreateMetaFileA
SaveDC
GetAspectRatioFilterEx
CreateFontW
GetMetaRgn
CloseEnhMetaFile
SetDCBrushColor
GetPolyFillMode
ExtCreateRegion
CopyMetaFileW
BeginPath
SetBkMode
SetMapMode
EqualRgn
GetFontData
GetWindowOrgEx
GetBitmapDimensionEx
GetTextExtentExPointW
GetMetaFileA
GetCharWidthA
CreateBitmapIndirect
ModifyWorldTransform
CreateICA
PolyBezierTo
MaskBlt
Polygon
StartPage
RoundRect
SetMetaFileBitsEx
GetTextExtentPointA
SetViewportExtEx
RectInRegion
GetCharABCWidthsFloatA
GetClipRgn
GetPath
GetGraphicsMode
CreatePalette
comdlg32
ChooseFontA
ChooseColorA
GetFileTitleA
ChooseFontW
PrintDlgA
PrintDlgExA
CommDlgExtendedError
ReplaceTextA
GetOpenFileNameA
GetOpenFileNameW
FindTextA
GetSaveFileNameW
FindTextW
ChooseColorW
ReplaceTextW
GetSaveFileNameA
PageSetupDlgA
GetFileTitleW
PrintDlgW
PageSetupDlgW
advapi32
EqualSid
InitializeSid
WriteEncryptedFileRaw
LogonUserA
CryptHashData
CryptReleaseContext
CryptCreateHash
RegDeleteKeyA
GetTokenInformation
RegisterEventSourceW
AllocateAndInitializeSid
OpenProcessToken
SetServiceStatus
ImpersonateNamedPipeClient
CreateServiceA
SetFileSecurityW
GetSecurityDescriptorOwner
LookupPrivilegeNameA
DuplicateTokenEx
UnlockServiceDatabase
CreateProcessAsUserA
OpenServiceW
SetFileSecurityA
StartServiceA
InitializeSecurityDescriptor
RegDeleteValueA
GetSecurityInfo
RegCreateKeyW
RegSetKeySecurity
EnumServicesStatusA
RegOpenKeyA
RegEnumValueW
InitiateSystemShutdownA
SetSecurityDescriptorGroup
OpenServiceA
OpenSCManagerW
SetSecurityDescriptorControl
StartServiceW
CloseEncryptedFileRaw
RegEnumKeyExW
CheckTokenMembership
ReadEncryptedFileRaw
OpenSCManagerA
CreateProcessAsUserW
RegSetValueExA
QueryServiceConfigA
RegNotifyChangeKeyValue
SetEntriesInAclW
RegEnumValueA
RegLoadKeyW
CreateWellKnownSid
SetSecurityDescriptorDacl
ConvertStringSidToSidW
EnumDependentServicesW
RegQueryValueA
CryptGetHashParam
RegSetValueExW
ReportEventA
GetSecurityDescriptorDacl
RegSetValueW
GetSidLengthRequired
CryptEnumProvidersW
LookupAccountSidA
RegDisablePredefinedCache
RegisterServiceCtrlHandlerW
GetLengthSid
RegGetKeySecurity
LookupAccountNameW
GetSecurityDescriptorGroup
ImpersonateSelf
SetSecurityDescriptorOwner
EncryptFileW
RegSetValueA
CryptExportKey
GetExplicitEntriesFromAclW
BuildExplicitAccessWithNameW
CryptEncrypt
RegisterServiceCtrlHandlerExA
GetAce
CryptGenRandom
ReportEventW
QueryServiceConfigW
RegConnectRegistryA
LookupPrivilegeValueW
GetUserNameA
GetFileSecurityW
SetNamedSecurityInfoW
CreateServiceW
StartServiceCtrlDispatcherA
GetFileSecurityA
InitializeAcl
RegQueryInfoKeyW
SetSecurityInfo
GetAclInformation
RegRestoreKeyA
RegOpenCurrentUser
BuildTrusteeWithNameW
ConvertStringSecurityDescriptorToSecurityDescriptorW
CryptDecrypt
LsaQueryInformationPolicy
ConvertSidToStringSidW
RegQueryValueExA
RegOpenKeyW
SetEntriesInAclA
LsaFreeMemory
RegOpenKeyExA
RegSaveKeyA
QueryServiceStatus
CryptGetKeyParam
LsaRemoveAccountRights
RegLoadKeyA
GetSecurityDescriptorControl
BuildTrusteeWithSidW
RegCreateKeyA
CopySid
CryptVerifySignatureA
RegQueryValueW
RegEnumKeyExA
RegCreateKeyExA
LookupPrivilegeDisplayNameA
AddAce
SetServiceObjectSecurity
GetSidIdentifierAuthority
ControlService
ChangeServiceConfig2A
GetNamedSecurityInfoA
RegDeleteValueW
LookupAccountNameA
RegUnLoadKeyW
RegRestoreKeyW
CloseServiceHandle
EqualPrefixSid
RevertToSelf
QueryServiceLockStatusW
IsValidSid
LookupAccountSidW
CryptDeriveKey
LsaClose
GetSecurityDescriptorSacl
LsaNtStatusToWinError
RegEnumKeyA
RegisterEventSourceA
GetEffectiveRightsFromAclA
LookupPrivilegeValueA
ChangeServiceConfigA
CryptSetProvParam
IsValidSecurityDescriptor
StartServiceCtrlDispatcherW
GetNamedSecurityInfoW
RegSaveKeyW
AccessCheck
ConvertStringSidToSidA
ChangeServiceConfigW
RegUnLoadKeyA
CryptGetUserKey
DeleteService
MakeAbsoluteSD
RegQueryInfoKeyA
GetUserNameW
RegQueryValueExW
RegDeleteKeyW
CryptImportKey
RegOpenKeyExW
OpenEncryptedFileRawW
RegConnectRegistryW
FreeSid
LogonUserW
CryptDestroyKey
CryptAcquireContextW
IsValidAcl
CryptDestroyHash
LockServiceDatabase
OpenThreadToken
GetSidSubAuthority
RegCreateKeyExW
InitiateSystemShutdownExW
ImpersonateLoggedOnUser
CryptAcquireContextA
DeregisterEventSource
CryptGenKey
AdjustTokenPrivileges
RegisterServiceCtrlHandlerA
RegCloseKey
MapGenericMask
AddAccessAllowedAce
RegEnumKeyW
ChangeServiceConfig2W
GetSecurityDescriptorLength
MakeSelfRelativeSD
DeleteAce
SetSecurityDescriptorSacl
SetNamedSecurityInfoA
DuplicateToken
QueryServiceStatusEx
GetKernelObjectSecurity
LsaAddAccountRights
LsaLookupSids
LsaOpenPolicy
RegFlushKey
GetSidSubAuthorityCount
ConvertSecurityDescriptorToStringSecurityDescriptorW
LsaLookupNames
SetThreadToken
SetTokenInformation
user32
GetGUIThreadInfo
DefWindowProcA
GetKeyboardState
DrawFrameControl
LoadCursorFromFileW
FindWindowA
GetMessageA
SetClipboardViewer
MsgWaitForMultipleObjects
ChildWindowFromPointEx
CreateMDIWindowA
GetClassInfoW
ActivateKeyboardLayout
DestroyIcon
FindWindowExA
DdeCreateStringHandleW
SetWindowTextA
DdeDisconnect
InvalidateRgn
ToAsciiEx
FreeDDElParam
RedrawWindow
MonitorFromPoint
wsprintfA
LoadImageA
GetTopWindow
SetMenuInfo
GetFocus
MapVirtualKeyExW
MsgWaitForMultipleObjectsEx
SetScrollPos
WaitForInputIdle
GetMenuStringW
IsDialogMessageA
MapVirtualKeyW
MessageBoxIndirectA
GetClassLongW
DefDlgProcA
UnregisterClassW
SetCaretBlinkTime
ReleaseDC
EnumDisplaySettingsW
HiliteMenuItem
GetUserObjectInformationW
WindowFromPoint
BringWindowToTop
DrawStateW
PtInRect
DdeConnect
DrawTextA
CopyAcceleratorTableA
OpenWindowStationW
OpenDesktopW
GetMessageExtraInfo
ReplyMessage
GetKeyNameTextW
GetWindowPlacement
ExcludeUpdateRgn
PostMessageA
GetWindowWord
DestroyMenu
GetLastActivePopup
CharPrevA
SetWindowLongA
AppendMenuW
GetSysColor
CreateAcceleratorTableA
SetProcessWindowStation
GetKeyState
GetClipCursor
ReleaseCapture
CreateMDIWindowW
IntersectRect
UnregisterDeviceNotification
GetDC
LoadKeyboardLayoutA
LookupIconIdFromDirectoryEx
DdeClientTransaction
SetWindowsHookExW
SendNotifyMessageW
RegisterClassW
OemToCharBuffA
CharUpperBuffA
GetUserObjectSecurity
GetQueueStatus
SetLayeredWindowAttributes
DdeInitializeW
IsRectEmpty
InsertMenuItemA
EnumClipboardFormats
MessageBoxExA
CreateCursor
GetClassNameA
EqualRect
DdeGetLastError
ToAscii
GetOpenClipboardWindow
IsClipboardFormatAvailable
DialogBoxIndirectParamW
TrackMouseEvent
OpenClipboard
CreateDialogParamA
GetCaretBlinkTime
MapDialogRect
IsChild
ClipCursor
IsWindowUnicode
EnumDisplayMonitors
TranslateMDISysAccel
SetWindowLongW
SendDlgItemMessageA
VkKeyScanExA
GetMenuItemCount
SetPropA
GetProcessWindowStation
DrawAnimatedRects
CheckMenuItem
UnionRect
CreateCaret
DdeGetData
MapVirtualKeyA
IsWindowEnabled
ShowCaret
SendInput
OpenDesktopA
DrawIconEx
DrawCaption
SetWindowRgn
GetDlgItem
LoadBitmapW
GetSystemMetrics
GrayStringW
UnhookWindowsHookEx
RegisterDeviceNotificationW
ToUnicode
CountClipboardFormats
GetClassWord
ShowOwnedPopups
AllowSetForegroundWindow
CharToOemBuffA
CharNextW
PostQuitMessage
SetRect
SendNotifyMessageA
SetClipboardData
CreateIconFromResourceEx
InsertMenuItemW
ChangeDisplaySettingsA
DdeNameService
GetAsyncKeyState
InvalidateRect
SetDoubleClickTime
IsWindowVisible
RegisterHotKey
SetCursor
SetClassLongW
CharUpperBuffW
CopyIcon
DrawIcon
GetUpdateRgn
CopyRect
DlgDirSelectComboBoxExA
ModifyMenuA
GetWindowLongW
SendMessageTimeoutA
SetForegroundWindow
GetCursorPos
HideCaret
EmptyClipboard
GetDlgItemInt
MessageBoxA
SetScrollInfo
DdeUninitialize
MapVirtualKeyExA
SwapMouseButton
LoadMenuIndirectW
GetSysColorBrush
SetWindowPos
CharLowerBuffW
WinHelpW
GetThreadDesktop
GetCursor
GetActiveWindow
CascadeWindows
ValidateRect
TranslateAcceleratorW
GetDlgItemTextW
GetMonitorInfoW
GetNextDlgGroupItem
SetMessageExtraInfo
SetMenuItemInfoW
GetClipboardViewer
GetWindowTextA
ValidateRgn
GetWindow
AppendMenuA
OpenIcon
IsDlgButtonChecked
TabbedTextOutA
LockSetForegroundWindow
UnhookWinEvent
ShowCursor
CloseWindowStation
IsMenu
CharLowerA
LoadMenuW
CreateDesktopW
SetCapture
TrackPopupMenuEx
DrawTextExA
EnableMenuItem
DrawTextW
MoveWindow
SetMenuContextHelpId
EnumDisplaySettingsA
GetKeyNameTextA
GetMenuBarInfo
EnableWindow
GetMenuItemRect
GetScrollInfo
wvsprintfW
CreateIconIndirect
GetClassInfoExW
LoadImageW
IsDialogMessageW
AdjustWindowRectEx
UnregisterClassA
CallWindowProcW
GetMessagePos
CharUpperW
IsWindow
GetMessageW
IsCharUpperA
DefWindowProcW
SetWindowContextHelpId
BeginPaint
EndDeferWindowPos
SetParent
InsertMenuW
VkKeyScanA
DrawEdge
EnableScrollBar
RegisterClassExW
DispatchMessageW
DeleteMenu
GetScrollBarInfo
BroadcastSystemMessage
DrawFocusRect
LoadMenuA
CreateWindowExA
DdeCreateStringHandleA
PostThreadMessageA
SubtractRect
UnpackDDElParam
GetMenuItemInfoW
CloseDesktop
DlgDirListComboBoxA
SetKeyboardState
EnumThreadWindows
IsDialogMessage
GetClipboardFormatNameW
InsertMenuA
MonitorFromWindow
CheckRadioButton
TranslateMessage
CharUpperA
GetClassLongA
GetTitleBarInfo
GetMenu
GetUserObjectInformationA
DispatchMessageA
SetClassLongA
CreateMenu
GetKeyboardLayout
CreateDialogIndirectParamA
LoadAcceleratorsW
EndDialog
GetWindowInfo
OffsetRect
LoadIconA
RegisterClassExA
DialogBoxIndirectParamA
GetDCEx
GetLastInputInfo
LoadAcceleratorsA
ReuseDDElParam
IsCharLowerA
DestroyAcceleratorTable
GetWindowTextLengthW
RemoveMenu
ScreenToClient
EnumWindows
ShowWindow
PostThreadMessageW
DdeAccessData
LoadStringW
RegisterWindowMessageW
LoadIconW
GetComboBoxInfo
GetMenuState
DefMDIChildProcA
DeferWindowPos
OpenInputDesktop
IsZoomed
CopyImage
WindowFromDC
wvsprintfA
ScrollWindowEx
MessageBoxW
CloseClipboard
IsCharAlphaA
FillRect
DlgDirSelectExA
GetWindowRgn
EnumDesktopWindows
PackDDElParam
MessageBeep
RealChildWindowFromPoint
CheckDlgButton
ShowScrollBar
GetWindowRect
GetClipboardOwner
KillTimer
NotifyWinEvent
SetCursorPos
PeekMessageA
CreateIcon
SetFocus
GetDlgItemTextA
InflateRect
RegisterWindowMessageA
GetMenuItemInfoA
RemovePropW
DialogBoxParamW
WinHelpA
SendMessageW
RegisterClipboardFormatA
CheckMenuRadioItem
SetCaretPos
ShowWindowAsync
CallMsgFilterA
mouse_event
CreateDialogIndirectParamW
SetWindowTextW
SetThreadDesktop
GetMenuContextHelpId
RegisterClassA
GetDoubleClickTime
CloseWindow
ToUnicodeEx
ChildWindowFromPoint
SetRectEmpty
SetWindowsHookExA
IsCharLowerW
CallNextHookEx
GetMenuCheckMarkDimensions
LoadStringA
CharLowerBuffA
MapWindowPoints
GetMessageTime
LoadCursorA
GetWindowDC
GetKeyboardLayoutList
MonitorFromRect
GrayStringA
SetMenuItemInfoA
DlgDirListA
GetScrollRange
CreateIconFromResource
CharLowerW
MenuItemFromPoint
FrameRect
SetDlgItemInt
GetWindowTextLengthA
GetMenuInfo
OemToCharA
LoadBitmapA
LoadCursorW
DlgDirListComboBoxW
TabbedTextOutW
IsCharAlphaNumericA
GetCursorInfo
WaitMessage
CreatePopupMenu
CreateWindowExW
GetCapture
DrawStateA
RegisterClipboardFormatW
InSendMessage
GetMenuDefaultItem
DdeFreeDataHandle
DestroyWindow
GetInputState
SetDlgItemTextW
UpdateWindow
TrackPopupMenu
GetCaretPos
EndPaint
GetParent
PostMessageW
GetDialogBaseUnits
IsIconic
BeginDeferWindowPos
DefFrameProcA
GetMenuStringA
SetMenuDefaultItem
CallWindowProcA
FindWindowW
LoadCursorFromFileA
ScrollDC
FlashWindow
FlashWindowEx
EnumChildWindows
UnregisterHotKey
CreateDialogParamW
GetClipboardData
DestroyCaret
CopyAcceleratorTableW
GetClientRect
GetScrollPos
GetWindowModuleFileNameW
RemovePropA
DefFrameProcW
SetMenuItemBitmaps
DefMDIChildProcW
SystemParametersInfoA
GetAncestor
keybd_event
SendMessageA
AdjustWindowRect
DdeQueryStringW
ModifyMenuW
DragDetect
SetUserObjectSecurity
GetDesktopWindow
FindWindowExW
GetNextDlgTabItem
OpenWindowStationA
GetMenuItemID
TileWindows
GetDlgCtrlID
SetWindowPlacement
GetSystemMenu
GetIconInfo
SendMessageTimeoutW
IsCharAlphaNumericW
GetClassInfoA
PeekMessageW
DrawMenuBar
GetMonitorInfoA
CharToOemA
DdeQueryStringA
DestroyCursor
SwitchDesktop
GetWindowThreadProcessId
DrawTextExW
SetActiveWindow
LoadMenuIndirectA
ScrollWindow
wsprintfW
GetTabbedTextExtentA
ChangeDisplaySettingsW
CreateAcceleratorTableW
SystemParametersInfoW
GetSubMenu
DdeCreateDataHandle
AnimateWindow
InvertRect
DdePostAdvise
GetClipboardFormatNameA
SetPropW
AttachThreadInput
DdeInitializeA
GetClassInfoExA
LockWindowUpdate
ExitWindowsEx
GetClassNameW
GetPropW
CharNextA
ChangeClipboardChain
LookupIconIdFromDirectory
GetPropA
GetKeyboardLayoutNameA
GetWindowLongA
DdeUnaccessData
GetUpdateRect
DdeFreeStringHandle
SetDlgItemTextA
SetMenu
ArrangeIconicWindows
SetTimer
ClientToScreen
TranslateAcceleratorA
CharNextExA
TileChildWindows
VkKeyScanW
SetScrollRange
GetForegroundWindow
SendDlgItemMessageW
GetWindowContextHelpId
kernel32
GetFileAttributesExW
GetNumberFormatA
GetFileAttributesA
DeleteFiber
OpenThread
CreateWaitableTimerW
CreateSemaphoreW
SetFileTime
CreateFileA
GetCommandLineA
SetPriorityClass
DeleteFileW
GetVolumeInformationA
ReadProcessMemory
lstrcpynA
_lwrite
WritePrivateProfileSectionA
GetTimeFormatA
GetConsoleScreenBufferInfo
SetCurrentDirectoryW
WriteConsoleA
LCMapStringA
SetThreadLocale
GetProcessHeap
VirtualUnlock
GetStringTypeExW
GetMailslotInfo
GetWindowsDirectoryA
GetSystemDefaultLangID
GetFileType
IsBadStringPtrW
LoadLibraryExW
GetProcessWorkingSetSize
GetEnvironmentVariableW
GetHandleInformation
GetStartupInfoW
SetEnvironmentVariableA
SetVolumeLabelA
GetPrivateProfileSectionA
LocalHandle
BackupWrite
GlobalAddAtomA
GetSystemDefaultLCID
GetCommTimeouts
IsDBCSLeadByteEx
lstrcmpA
GetSystemTimeAdjustment
OpenSemaphoreW
SetCommConfig
FindCloseChangeNotification
PeekNamedPipe
VerifyVersionInfoW
GetProfileIntW
FindNextVolumeW
TransmitCommChar
GetCommModemStatus
GetSystemTime
GetTempFileNameW
GetComputerNameA
FindFirstFileExW
GetShortPathNameW
VerSetConditionMask
AreFileApisANSI
SetTimeZoneInformation
SuspendThread
SetLocalTime
GetVolumeNameForVolumeMountPointW
CopyFileA
ClearCommError
QueueUserAPC
GlobalUnlock
GetOverlappedResult
GetLongPathNameA
FatalAppExitA
CreateNamedPipeA
GetUserDefaultLCID
GetPrivateProfileStringW
FindResourceA
SetEnvironmentVariableW
QueryPerformanceFrequency
SearchPathA
OpenEventW
Module32Next
HeapSize
EnumResourceLanguagesW
GetDriveTypeW
FreeEnvironmentStringsW
GetConsoleCP
PurgeComm
FlushFileBuffers
FindFirstVolumeW
GetVersionExW
GetTickCount
Module32First
FlushInstructionCache
GlobalFree
LockFileEx
GetCommConfig
WriteConsoleW
Process32NextW
SetVolumeMountPointA
MulDiv
GlobalMemoryStatus
LoadLibraryW
EnumResourceTypesA
UpdateResourceW
FindAtomW
OpenFile
SwitchToThread
GlobalMemoryStatusEx
GetDateFormatA
GetSystemInfo
GetCurrentProcess
WideCharToMultiByte
SetFileAttributesW
SetProcessWorkingSetSize
CreateFileMappingA
FindVolumeClose
CreateDirectoryExA
ReadFile
Sleep
GlobalHandle
CommConfigDialogW
InterlockedDecrement
HeapDestroy
SleepEx
SwitchToFiber
OutputDebugStringA
GetEnvironmentStrings
GetProfileIntA
AllocConsole
SizeofResource
QueueUserWorkItem
GetVolumeNameForVolumeMountPointA
GetCommProperties
Process32FirstW
FreeEnvironmentStringsA
Process32Next
LoadLibraryExA
ContinueDebugEvent
LockResource
WritePrivateProfileStructW
lstrcpyA
SetLastError
DeviceIoControl
RtlUnwind
GetLogicalDrives
GetEnvironmentVariableA
GetCurrencyFormatA
SetProcessShutdownParameters
ExitProcess
GlobalDeleteAtom
FileTimeToSystemTime
GetFileAttributesExA
GetSystemWindowsDirectoryA
WriteProfileStringA
SetVolumeLabelW
GetFileSize
GetStringTypeW
TerminateProcess
CreatePipe
ResetEvent
Heap32First
GetCPInfoExA
GetCommMask
GetDiskFreeSpaceW
GetDriveTypeA
OpenProcess
WritePrivateProfileStructA
WritePrivateProfileSectionW
FindResourceExA
FindClose
FindFirstChangeNotificationW
ExpandEnvironmentStringsA
MapViewOfFile
ProcessIdToSessionId
_hwrite
IsValidLocale
OpenMutexA
WriteFileEx
LocalCompact
LocalFree
SetCommState
SetSystemTime
SetFilePointerEx
CreateDirectoryA
DeleteFileA
GetSystemDirectoryW
IsProcessorFeaturePresent
OpenFileMappingA
CreateMailslotA
SetWaitableTimer
HeapCreate
GetVersion
DebugActiveProcess
EnumCalendarInfoExW
GetProcAddress
FreeLibrary
ReadConsoleInputA
AddAtomW
CloseHandle
CopyFileExA
GetCompressedFileSizeW
OpenMutexW
EnumUILanguagesW
VerifyVersionInfoA
GlobalFlags
MoveFileA
CreateFileW
GetLocaleInfoA
CreateThread
SetHandleInformation
IsBadWritePtr
GetThreadLocale
GetStartupInfoA
GetExitCodeThread
GetCPInfo
Module32NextW
WriteFile
Thread32Next
GetCurrentThread
RemoveDirectoryW
WaitNamedPipeA
RtlFillMemory
LocalSize
GetSystemDirectoryA
GetComputerNameW
CreateDirectoryW
lstrcmpW
ExpandEnvironmentStringsW
GetCurrentProcessId
FindFirstFileA
HeapCompact
lstrcmpiA
CreateIoCompletionPort
GetLongPathNameW
SetConsoleCtrlHandler
EnumResourceLanguagesA
lstrlenW
FileTimeToLocalFileTime
GetProcessAffinityMask
GetModuleHandleA
DeleteVolumeMountPointA
RemoveDirectoryA
GetPrivateProfileSectionNamesA
GetTempPathW
GlobalGetAtomNameW
InterlockedIncrement
Thread32First
TlsSetValue
ExitThread
GetStringTypeA
GetFileTime
Module32FirstW
GetDiskFreeSpaceExW
BackupRead
SetHandleCount
FindResourceW
CreateEventW
WaitForSingleObject
GetLocaleInfoW
GetProfileStringW
CreateProcessA
GetDiskFreeSpaceA
BuildCommDCBA
GetModuleHandleW
GetThreadTimes
CreateWaitableTimerA
GetUserDefaultLangID
CopyFileExW
GetPrivateProfileIntA
GetModuleFileNameA
GetStdHandle
CompareFileTime
LeaveCriticalSection
GetExitCodeProcess
OutputDebugStringW
UpdateResourceA
SetCommTimeouts
SetConsoleTitleW
GetVolumeInformationW
lstrcatA
VirtualFree
GetTimeZoneInformation
SetErrorMode
GlobalReAlloc
ReleaseMutex
FindNextFileA
GlobalGetAtomNameA
GlobalFindAtomW
OpenSemaphoreA
MoveFileW
FlushViewOfFile
GetProcessHeaps
lstrcpyW
SetEndOfFile
DefineDosDeviceA
GetComputerNameExW
SetTapePosition
ConvertDefaultLocale
_lcreat
EndUpdateResourceW
GetCurrentThreadId
SearchPathW
MapViewOfFileEx
DisconnectNamedPipe
SetEvent
FormatMessageA
DuplicateHandle
SetStdHandle
GetConsoleOutputCP
GetProcessVersion
GetProfileStringA
DebugBreak
UnlockFile
FileTimeToDosDateTime
WaitForSingleObjectEx
LocalReAlloc
HeapAlloc
GetFullPathNameW
GetShortPathNameA
GetThreadPriority
Process32First
GetProfileSectionA
SetThreadContext
OpenEventA
SetProcessAffinityMask
ConnectNamedPipe
GetLocalTime
GetCommState
CompareStringA
VirtualAllocEx
WritePrivateProfileStringW
GetPrivateProfileStructA
WaitForMultipleObjects
GlobalLock
_hread
WaitNamedPipeW
VirtualFreeEx
BeginUpdateResourceA
SetCurrentDirectoryA
QueryPerformanceCounter
InterlockedExchange
Beep
CreateToolhelp32Snapshot
GetCurrentDirectoryA
GlobalAlloc
FlushConsoleInputBuffer
TlsAlloc
FindNextChangeNotification
ReadDirectoryChangesW
GetTempFileNameA
UnlockFileEx
GetLogicalDriveStringsA
SetConsoleCursorPosition
GlobalFindAtomA
TlsFree
IsBadReadPtr
IsBadStringPtrA
Heap32ListNext
lstrcmpiW
VirtualProtect
WaitForMultipleObjectsEx
IsBadCodePtr
EndUpdateResourceA
GetFileAttributesW
EnumCalendarInfoA
IsDebuggerPresent
CreateFiber
HeapFree
MoveFileExW
DeleteCriticalSection
FindResourceExW
SetComputerNameW
CreateEventA
VirtualQuery
SetCommBreak
lstrcatW
GetConsoleMode
MoveFileExA
WritePrivateProfileStringA
SystemTimeToTzSpecificLocalTime
SetCommMask
SetNamedPipeHandleState
WriteProcessMemory
ConvertThreadToFiber
SetupComm
GetDateFormatW
OpenFileMappingW
QueryDosDeviceW
GetAtomNameA
FormatMessageW
EnumCalendarInfoW
CreateNamedPipeW
GetLastError
EnumLanguageGroupLocalesW
LoadResource
CompareStringW
GetSystemTimeAsFileTime
lstrcpynW
WriteConsoleOutputW
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
GetBinaryTypeA
SetThreadPriority
FindNextFileW
GetVersionExA
SetFileAttributesA
GetPriorityClass
TerminateThread
UnhandledExceptionFilter
GetUserDefaultUILanguage
VirtualAlloc
EnumResourceNamesW
GetVolumePathNameW
GetFileInformationByHandle
ReleaseSemaphore
EnterCriticalSection
_lopen
CopyFileW
DeleteAtom
CreateSemaphoreA
GetTimeFormatW
SystemTimeToFileTime
LockFile
FreeResource
GetQueuedCompletionStatus
GetLogicalDriveStringsW
CreateFileMappingW
LoadLibraryA
SetThreadExecutionState
InitializeCriticalSection
GetStringTypeExA
EnumSystemLanguageGroupsW
FreeConsole
GetDiskFreeSpaceExA
QueryDosDeviceA
Toolhelp32ReadProcessMemory
InterlockedExchangeAdd
BeginUpdateResourceW
GlobalAddAtomW
CreateProcessW
IsValidCodePage
CreateMutexW
PostQueuedCompletionStatus
GetTempPathA
HeapValidate
GetNumberFormatW
_llseek
SetFilePointer
ResumeThread
PulseEvent
BackupSeek
FindFirstFileW
Heap32Next
_lclose
SetProcessPriorityBoost
VerLanguageNameA
GetPrivateProfileStringA
LCMapStringW
RaiseException
LocalFileTimeToFileTime
WaitCommEvent
MultiByteToWideChar
GetPrivateProfileIntW
Heap32ListFirst
EnumResourceNamesA
VirtualProtectEx
VirtualQueryEx
VirtualLock
GetTapeParameters
SetThreadAffinityMask
DeleteVolumeMountPointW
_lread
CancelIo
UnmapViewOfFile
IsDBCSLeadByte
GetWindowsDirectoryW
lstrlenA
LocalUnlock
GetSystemPowerStatus
CreateMutexA
GetACP
WriteProfileStringW
HeapReAlloc
WinExec
EnumSystemLocalesA
GetProcessTimes
GetEnvironmentStringsW
SetConsoleMode
ClearCommBreak
SetMailslotInfo
TryEnterCriticalSection
GetComputerNameExA
InterlockedCompareExchange
TlsGetValue
GetOEMCP
GetThreadContext
GetVolumePathNameA
SetUnhandledExceptionFilter
winspool.drv
SetJobW
AddPrinterA
WritePrinter
DeviceCapabilitiesW
EnumFormsW
FindNextPrinterChangeNotification
AbortPrinter
FindFirstPrinterChangeNotification
StartDocPrinterW
FreePrinterNotifyInfo
DeleteFormW
EndDocPrinter
EnumPortsA
GetJobA
DeletePrinter
AddPrinterDriverA
SetPrinterA
PrinterProperties
GetJobW
EnumPrintersW
DocumentPropertiesW
SetPrinterDataW
EnumJobsW
ClosePrinter
EnumJobsA
DocumentPropertiesA
GetPrinterA
GetPrinterDriverA
GetFormW
EnumPortsW
OpenPrinterA
AddFormW
OpenPrinterW
ord204
DeletePrintProcessorA
DeviceCapabilitiesA
EnumPrinterDriversA
SetPrinterW
DeletePrinterDriverA
StartPagePrinter
GetPrinterDriverDirectoryA
DeletePrintProcessorW
EndPagePrinter
StartDocPrinterA
GetPrinterW
EnumPrintersA
Sections
.text Size: - Virtual size: 88KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 160KB - Virtual size: 216KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.vmp0 Size: - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
.vmp1 Size: 348KB - Virtual size: 346KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 4KB - Virtual size: 132B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ