5bcab3d78317b440e23c97606c0ef68c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5bcab3d78317b440e23c97606c0ef68c_JaffaCakes118
Size

521KB
MD5

5bcab3d78317b440e23c97606c0ef68c
SHA1

637fe573dc8c0a0d9608dadf5c0eb6695a6f1e91
SHA256

24f23f8a0b19c4bd476d870a0507a6dbf0c9cea831b840a7b628be739c9e9880
SHA512

e0918234cfde176804b95ec5a62bc232adac3b057b651acc6baf3e7e5436561721883b0f77bdcb610081b4f94789a396d49a2592895f2620bfad642356e6cfce
SSDEEP

12288:QRg5h9WleqrncJfSUTQGMPApZXhWX9n2k/PSJ/yte:QRmh92ncwZoZQX99PA/yte

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5bcab3d78317b440e23c97606c0ef68c_JaffaCakes118

Files

5bcab3d78317b440e23c97606c0ef68c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

afc5b5aa94011363a551489d36101f93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

StretchDIBits
GetEnhMetaFileDescriptionW
CreatePalette
EnumObjects
GetLogColorSpaceW
StretchBlt
DeleteEnhMetaFile
PolyTextOutW
UpdateICMRegKeyA
GetCharABCWidthsW
SetViewportOrgEx
CreateFontIndirectW
SaveDC
GetCharABCWidthsFloatW
PathToRegion
CombineRgn
SetMetaFileBitsEx
TextOutW
CreateDCA
CreateBitmapIndirect
gdiPlaySpoolStream
RemoveFontResourceW
GetROP2
SetMagicColors
GetAspectRatioFilterEx
GetPolyFillMode
OffsetClipRgn
SetBitmapBits
GetCharacterPlacementW
Pie
SetSystemPaletteUse
SetMiterLimit
SetTextJustification
CreateEnhMetaFileW
PlayMetaFileRecord
UnrealizeObject
CreateRectRgn
ExtTextOutA
ResetDCW
StrokePath
CreateSolidBrush
SetWorldTransform
GdiSetBatchLimit
CreateDIBPatternBrush
Ellipse
GetTextCharsetInfo
SetRectRgn
ScaleWindowExtEx
GetOutlineTextMetricsW
CreateBrushIndirect
GetLogColorSpaceA

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
InitializeCriticalSection
MoveFileW
CreateSemaphoreA
GetQueuedCompletionStatus
GlobalUnfix
GetTempFileNameA
ResetEvent
SetConsoleTitleA
CopyFileExA
LoadLibraryExA
UnlockFileEx
CreateDirectoryW
GetDateFormatW
GetDiskFreeSpaceExW
GetWindowsDirectoryA
CopyFileA
GetUserDefaultLCID
RtlZeroMemory
lstrcmpiA
FindFirstFileExW
TransactNamedPipe
FileTimeToDosDateTime
SetEnvironmentVariableW
CreateToolhelp32Snapshot
FindResourceExA
LocalUnlock
GetHandleInformation
EnumDateFormatsW
SetCurrentDirectoryW
GetWindowsDirectoryW
FindAtomA
GetPrivateProfileSectionW
GetSystemInfo
FindNextChangeNotification
ReadConsoleOutputCharacterA
SetHandleCount
EnumResourceNamesW
GetSystemDirectoryA
ReadConsoleOutputA
GetStartupInfoW
IsValidLocale
ReadConsoleW
GetDriveTypeA
CreateMailslotW
GetModuleFileNameW
SetLocaleInfoA
Heap32Next
FindFirstFileExA
DeviceIoControl
MulDiv
EnumSystemLocalesA
SetTimeZoneInformation
SearchPathA
Module32Next
GetLastError
GetSystemDefaultLangID
IsValidCodePage
GlobalFix
lstrcpyW
GetDiskFreeSpaceW
MapViewOfFile
WritePrivateProfileStructA
OpenFile
CloseHandle
WriteConsoleOutputCharacterA
InterlockedCompareExchange
FlushViewOfFile
GetFileAttributesExA
CreateMutexA
GetPrivateProfileStructA
GetStdHandle
FindNextFileW
DebugBreak
GetStringTypeExW
SearchPathW
SetThreadExecutionState
GetShortPathNameW
SetEvent
SetConsoleActiveScreenBuffer
WriteProcessMemory
FreeEnvironmentStringsW
LoadLibraryExW
SetComputerNameA
SetCurrentDirectoryA
GetUserDefaultLangID
SetConsoleScreenBufferSize
SleepEx
GetTempFileNameW
GetDiskFreeSpaceExA
FindNextFileA
SetLocaleInfoW
WritePrivateProfileSectionA
CreateEventA
FindFirstFileA
EnumDateFormatsA
ExitThread
OpenSemaphoreW
TryEnterCriticalSection
SetCriticalSectionSpinCount
GetConsoleCursorInfo
GetLocalTime
GetAtomNameA
LoadResource
GetNumberOfConsoleInputEvents
GetProfileStringW
SetVolumeLabelW
EnumCalendarInfoW
SetLastError
EnumSystemLocalesW
FlushInstructionCache
GetProcessTimes
CreateEventW
GlobalFindAtomW
EnumTimeFormatsA
GetProcessHeaps
GetProfileIntA
GetVolumeInformationA
VirtualProtectEx
WriteFileGather
EnumDateFormatsExA
CreateMailslotA
GetThreadPriority
GetFileAttributesW
GetStringTypeExA
GetVolumeInformationW
GetProcessHeap
WriteConsoleOutputAttribute
FreeResource
SetConsoleWindowInfo
GetCurrentThread
SetThreadIdealProcessor
AllocConsole
CreateFileMappingW
FileTimeToLocalFileTime
DeleteFiber
GetPrivateProfileIntA
SetWaitableTimer
WaitForDebugEvent
LeaveCriticalSection
GetThreadTimes
GetNumberOfConsoleMouseButtons
ReadConsoleOutputCharacterW
GlobalSize
lstrcmpA
WriteConsoleW
WaitForSingleObject
UnhandledExceptionFilter
OpenFileMappingA
ContinueDebugEvent
SignalObjectAndWait
HeapWalk
CreateDirectoryExA
WriteProfileStringA
LockResource
ReadProcessMemory
GetPrivateProfileSectionNamesA
lstrcatW
GetConsoleScreenBufferInfo
WriteFile
GetProfileIntW
GetPrivateProfileStringW
ReadConsoleA
Thread32Next
GetEnvironmentStringsW
EnumResourceTypesW
InterlockedDecrement
GetLogicalDriveStringsW
GetCurrentDirectoryA
FreeEnvironmentStringsA
WaitForMultipleObjects
WriteConsoleInputA
EraseTape
FindFirstFileW
SetThreadLocale
HeapCompact
lstrlenA
Module32First
GetFullPathNameA
PulseEvent
lstrcpy
TransmitCommChar
GetSystemDirectoryW
VirtualUnlock
SystemTimeToFileTime
lstrlenW
GetSystemTimeAdjustment
DeleteCriticalSection
SetLocalTime
CreateWaitableTimerW
FindFirstChangeNotificationW
DisconnectNamedPipe
HeapDestroy
Toolhelp32ReadProcessMemory
WriteFileEx
GetProcessAffinityMask
GetMailslotInfo
ReadFileScatter
WaitNamedPipeW
GetThreadLocale
OpenEventW
RemoveDirectoryA
lstrcpynA
GetConsoleMode
WriteConsoleInputW
OpenWaitableTimerW
FreeLibraryAndExitThread
FillConsoleOutputCharacterA
GetNumberFormatA
CreateMutexW
GetPrivateProfileIntW
GetEnvironmentStrings
InterlockedIncrement
WritePrivateProfileStringW
GetCalendarInfoA
GlobalFindAtomA
ReleaseMutex
SetConsoleOutputCP
MoveFileExW
CommConfigDialogW
ConnectNamedPipe
GetConsoleCP
CreateSemaphoreW
GetVersionExA
ResetWriteWatch
FindResourceExW
CreateProcessW
GetThreadSelectorEntry
SetThreadAffinityMask
EnumCalendarInfoA
MapViewOfFileEx
lstrcpynW
GetCompressedFileSizeW
GetProfileSectionA
GetProcessVersion
CompareFileTime
ReadFile
WideCharToMultiByte
lstrcpyA
FreeConsole
lstrcmpi
LocalSize
GetSystemTime
OpenEventA
GetComputerNameA
ReadConsoleInputA
SetSystemTimeAdjustment
GetFileType
EnumCalendarInfoExA
WaitCommEvent
GetProfileSectionW
HeapSize
FillConsoleOutputAttribute
WriteConsoleA
GlobalDeleteAtom
GetModuleHandleW
GetLogicalDriveStringsA
SetComputerNameW
GlobalGetAtomNameW
BeginUpdateResourceW
FillConsoleOutputCharacterW
VirtualQueryEx
EnumResourceTypesA
GetCommandLineA
GetPrivateProfileStringA
GetExitCodeProcess
GetCurrentDirectoryW
UnmapViewOfFile
GlobalLock
EscapeCommFunction
AddAtomA
GetPrivateProfileSectionA
GetNamedPipeHandleStateW
UnlockFile
LoadLibraryW
PeekNamedPipe
Process32Next
SuspendThread
DefineDosDeviceW
GlobalAddAtomA
GetTimeFormatA
GetLongPathNameW
GetLongPathNameA
GetVersion
GetCalendarInfoW
ReadFileEx
GetCommandLineW
SetThreadPriority
CreateFileMappingA
ReleaseSemaphore
GlobalUnWire
GetFileTime
GetTimeZoneInformation
CreateThread
SetFileTime
LocalFileTimeToFileTime
HeapUnlock
OutputDebugStringW
FoldStringW
FormatMessageA
lstrlen
GetSystemDefaultLCID
RtlMoveMemory
WriteConsoleOutputA
GetACP
ExpandEnvironmentStringsA
GetProcAddress
VirtualAllocEx
LocalFlags
ReadDirectoryChangesW
GetLogicalDrives
CreateRemoteThread
WritePrivateProfileStructW
DosDateTimeToFileTime
SetEnvironmentVariableA
GetTempPathA
CreateFileA
GetEnvironmentVariableW
HeapLock
OpenProcess
FoldStringA
LockFileEx
WaitForMultipleObjectsEx
WriteConsoleOutputCharacterW
FlushFileBuffers
EnumResourceLanguagesW
CreateDirectoryExW
GlobalUnlock
AddAtomW
GetNamedPipeHandleStateA
TerminateThread
WriteProfileSectionA
CreatePipe
GetDriveTypeW
LoadModule
GetLocaleInfoA
lstrcatA
GetConsoleTitleA
VirtualFreeEx
OpenSemaphoreA
LocalAlloc
EnumTimeFormatsW
SetConsoleCtrlHandler
GetFullPathNameW
TlsFree
SetConsoleTitleW
UpdateResourceA
GetDiskFreeSpaceA
Heap32ListFirst
GetComputerNameW
MoveFileExA
WritePrivateProfileSectionW
GetLocaleInfoW
GetProfileStringA
LocalHandle
GlobalReAlloc
FindAtomW
lstrcat
LockFile
CreateFileW
HeapValidate
FreeLibrary
GetWriteWatch
RemoveDirectoryW
CompareStringA
CreateProcessA
MultiByteToWideChar
GetFileInformationByHandle
RtlFillMemory
TlsGetValue
MoveFileA
DeleteFileW
TlsSetValue
GetVersionExW
DefineDosDeviceA
InitAtomTable
GetExitCodeThread
FlushConsoleInputBuffer
InitializeCriticalSectionAndSpinCount
GetDateFormatA
GetCurrencyFormatA
DebugActiveProcess
InterlockedExchangeAdd
OpenMutexW
EnumDateFormatsExW
GetEnvironmentVariableA
FindFirstChangeNotificationA
ResumeThread
UpdateResourceW
WritePrivateProfileStringA
SetConsoleMode
lstrcmp
GetProcessShutdownParameters
EnumSystemCodePagesA
WaitForSingleObjectEx
GetShortPathNameA
SetConsoleCP
ReadConsoleInputW
SetConsoleCursorPosition
GetEnvironmentStringsA
GlobalAddAtomW
GetPriorityClass
lstrcmpiW
GetTimeFormatW
OpenMutexA
SetSystemTime
LocalFree
GetStringTypeW
OpenFileMappingW
GetCompressedFileSizeA
HeapCreate
DisableThreadLibraryCalls
CreateConsoleScreenBuffer
IsDebuggerPresent
GetPrivateProfileStructW
DuplicateHandle
LocalLock
GetTempPathW
lstrcpyn
EnumResourceLanguagesA
LocalCompact
Heap32First
GetAtomNameW
FindResourceW
SetFileAttributesW
GlobalFree
SetThreadPriorityBoost
GetPrivateProfileSectionNamesW
PeekConsoleInputW
GlobalWire
GetCurrencyFormatW
WaitNamedPipeA
PeekConsoleInputA
lstrcmpW
GetThreadContext
GlobalFlags
ReadConsoleOutputAttribute
Sleep
SetEndOfFile
GlobalHandle
OpenWaitableTimerA
ExpandEnvironmentStringsW
CreateDirectoryA
FileTimeToSystemTime
CreateNamedPipeW
EnumSystemCodePagesW
GetStartupInfoA
EnumCalendarInfoExW
VirtualProtect
GetThreadPriorityBoost
SetThreadContext
VirtualFree
SetFileAttributesA
SetConsoleTextAttribute
CreateTapePartition
WriteConsoleOutputW
TlsAlloc
GlobalMemoryStatus
GlobalCompact
SetConsoleCursorInfo
WinExec
GetSystemPowerStatus
GetLargestConsoleWindowSize
GlobalGetAtomNameA
GetNamedPipeInfo
CreateWaitableTimerA

comdlg32

PrintDlgW
ReplaceTextW
ChooseFontA
ChooseColorA
PrintDlgA
GetFileTitleA
ReplaceTextA
ChooseFontW
FindTextW
LoadAlterBitmap
ChooseColorW
PageSetupDlgA
FindTextA
GetFileTitleW
PageSetupDlgW
GetSaveFileNameA

wininet

GopherCreateLocatorW
FindFirstUrlCacheEntryW
HttpSendRequestExW
FtpGetFileW
InternetConfirmZoneCrossingW
InternetReadFileExA
InternetCanonicalizeUrlW
FindFirstUrlCacheContainerA
SetUrlCacheConfigInfoW
GopherGetLocatorTypeA
InternetGetConnectedState
InternetGetLastResponseInfoA
InternetErrorDlg
SetUrlCacheConfigInfoA
InternetCrackUrlW
InternetGetConnectedStateEx
SetUrlCacheEntryInfoW
InternetLockRequestFile
InternetShowSecurityInfoByURL
FindCloseUrlCache
InternetDialA
IsUrlCacheEntryExpiredA
IncrementUrlCacheHeaderData
FtpCommandA
InternetOpenW
DeleteUrlCacheEntry
GopherGetAttributeW
FtpSetCurrentDirectoryW
FindNextUrlCacheContainerA
InternetUnlockRequestFile
InternetFindNextFileW
InternetInitializeAutoProxyDll
FtpRenameFileW
InternetTimeToSystemTimeW
GetUrlCacheConfigInfoA
FindFirstUrlCacheEntryExA
FtpOpenFileA
FtpGetCurrentDirectoryA
InternetWriteFileExA
InternetWriteFile
FindNextUrlCacheContainerW
FreeUrlCacheSpaceW
InternetGetLastResponseInfoW
DetectAutoProxyUrl
InternetSecurityProtocolToStringA
InternetCanonicalizeUrlA
FtpFindFirstFileA
UnlockUrlCacheEntryFile
FindNextUrlCacheEntryExA

wsock32

ord1142
ord1107
htonl
ord1117
getservbyname
WSAAsyncGetProtoByNumber
ord1118
gethostbyname
WSACancelBlockingCall
ord1114
WSACleanup
ord1119
sendto
connect
ord1141
ord1106
__WSAFDIsSet
htons
WEP
ord1113
ntohl
WSAUnhookBlockingHook
WSAStartup
shutdown
ord1110
send
ord1112
listen
getprotobyname
recv
WSASetBlockingHook
ord1115
ord1109
ord1130

user32

RealChildWindowFromPoint
DestroyWindow
CloseDesktop
CheckDlgButton
UnloadKeyboardLayout
DrawIcon
SwitchDesktop
InsertMenuItemW
IsDialogMessage
EnumDesktopsA
GetClassInfoA
SetWindowTextA
MapWindowPoints
TabbedTextOutA
CallWindowProcW
LoadCursorFromFileA
LookupIconIdFromDirectory
IsCharAlphaNumericW
SendMessageTimeoutW
UnionRect
SetDlgItemTextW
FreeDDElParam
TranslateMessage
CallMsgFilterA
GetMenuItemRect
BeginDeferWindowPos
CharPrevW
EnableMenuItem
SendMessageA
CascadeWindows
GetCursorInfo
SetClassLongA
IntersectRect
InSendMessage
MessageBoxW
AppendMenuW
ReleaseDC
EnumDisplaySettingsExA
EnumClipboardFormats
UnregisterDeviceNotification
MessageBeep
GetMessagePos
wvsprintfA
CharNextW
PostThreadMessageA
EndPaint
AdjustWindowRect
CreateMDIWindowA
IsZoomed
DispatchMessageA
BroadcastSystemMessage
DdeCreateStringHandleA
UpdateWindow
VkKeyScanA
DdeQueryStringA
GetNextDlgGroupItem
CloseClipboard
GetMessageTime
GetClipboardSequenceNumber
MessageBoxIndirectW
KillTimer
TranslateMDISysAccel
ImpersonateDdeClientWindow
GetWindowLongW
CountClipboardFormats
RegisterClassW
IsCharLowerW
GetKeyState
SetWindowsHookW
GetWindowRect
GetDoubleClickTime
RemovePropW
DlgDirSelectExW
GetWindowModuleFileNameA
EndDeferWindowPos
TabbedTextOutW
ShowWindow
GetClipboardOwner
EnumPropsA
OpenClipboard
SetWindowsHookExW
GetInputDesktop
GetSystemMetrics
UnregisterHotKey
DrawIconEx
OpenIcon
IsDialogMessageA
DestroyAcceleratorTable
SendMessageTimeoutA
SetWinEventHook
EqualRect
ReuseDDElParam
GetMenu
EnumWindows
LoadKeyboardLayoutA
DdeGetData
CallMsgFilter
ChangeDisplaySettingsExA
SetCursor
ScrollWindowEx
DrawCaption
CreateWindowExA
GetScrollInfo
GetTitleBarInfo
CheckMenuItem
IsWindow
LockWindowUpdate
ChildWindowFromPointEx
DdeUninitialize
GetDlgItem
SetTimer
CharToOemBuffA
DrawStateA
MapDialogRect
FindWindowExA
DlgDirListComboBoxA
CharUpperBuffA
TranslateAcceleratorW
CharToOemA
RegisterClassA
EnableScrollBar
GetWindowLongA
OpenWindowStationA
DdeUnaccessData
VkKeyScanExW
SetScrollInfo
SetDlgItemInt
CreateDialogIndirectParamA
DdeInitializeW
DdeInitializeA
DefFrameProcW
ModifyMenuW
PtInRect
PeekMessageA
GetScrollBarInfo
GetCursorPos
CharUpperA
LoadMenuIndirectA
EndDialog
SetDeskWallpaper
ClientToScreen
GetKeyNameTextA
WinHelpA
GetNextDlgTabItem
GetWindowInfo
GetMenuStringA
SetParent
GetForegroundWindow
TranslateAccelerator
ShowCursor
GetClientRect
GetCaretPos
InflateRect
CopyRect
GetCaretBlinkTime
GetUpdateRect
ReplyMessage
GetScrollPos
EmptyClipboard
EndTask
GetFocus
ClipCursor
GetTabbedTextExtentW
EnumDesktopsW
SystemParametersInfoW
GetClassWord
MoveWindow
RegisterHotKey
SetWindowRgn
GetKeyboardLayout
DrawFrame
EnumDisplaySettingsW
DdeQueryConvInfo
SetMenuItemInfoW
VkKeyScanExA
ExcludeUpdateRgn
DrawEdge
CopyAcceleratorTableW
SetWindowPos
DdeKeepStringHandle
EnumPropsExA
GetLastActivePopup
GetMessageExtraInfo
DlgDirSelectComboBoxExA
SetWindowLongW
OpenDesktopA
DdeImpersonateClient
EnumThreadWindows
GetMenuItemCount
SetShellWindow
OemToCharBuffW
CharLowerA
BlockInput
TileWindows
SetProcessDefaultLayout
GetSysColorBrush
SetClipboardViewer
EnumDisplaySettingsA
GetMenuInfo
GetWindow
DdeAccessData
UnregisterClassW
GetPropW
IsCharAlphaW
GetClassLongW
DdeSetQualityOfService
SendInput
IsChild
GetUserObjectInformationW
NotifyWinEvent
AdjustWindowRectEx
EnumDisplayDevicesW
VkKeyScanW
GetMenuState
GetWindowWord
CreateDialogIndirectParamW
DdeSetUserHandle
FrameRect
OemKeyScan
AppendMenuA
GetClassInfoExW
BeginPaint
GetWindowThreadProcessId
GetCursor
GetKeyboardLayoutList
DdeGetLastError
GetClipCursor
PostQuitMessage
TrackPopupMenuEx
SetCapture
CreateWindowStationA
EnumPropsExW
DialogBoxParamW
CharLowerBuffA
LoadMenuIndirectW
GetClipboardData
IsWindowUnicode
WINNLSEnableIME
UnhookWindowsHook
GetKBCodePage
GetAltTabInfo
SendNotifyMessageA
SendIMEMessageExA
SendDlgItemMessageA
IsCharUpperW
FindWindowExW
InvalidateRgn
LoadBitmapA
ModifyMenuA
CreateDialogParamA
SetSystemCursor
IsCharAlphaNumericA
LoadImageA
DlgDirListComboBoxW
GetKeyboardState
SetWindowLongA
LoadCursorW
CharPrevExA
CreateAcceleratorTableW
DrawTextW
TranslateAcceleratorA
SetMenuItemBitmaps
GetMessageW
AttachThreadInput
GetListBoxInfo
IsCharLowerA
GetGUIThreadInfo
CopyImage
GetDCEx
DialogBoxIndirectParamW
GetWindowTextLengthW
GetClassInfoW
DdeCreateDataHandle
MsgWaitForMultipleObjectsEx
DlgDirListW
DialogBoxIndirectParamA
MonitorFromRect
CopyAcceleratorTableA
SetDebugErrorLevel
GetSubMenu
LoadMenuA
ScreenToClient
LoadIconW
RedrawWindow
GetMenuItemInfoA
EnumChildWindows
RegisterWindowMessageA
SetMenuDefaultItem
GetPriorityClipboardFormat
LoadImageW
GetWindowPlacement
WindowFromPoint
DefWindowProcA
FlashWindowEx
CharNextA
RegisterClassExW
WindowFromDC
DdeDisconnectList
MapVirtualKeyExA
SendDlgItemMessageW
PackDDElParam
SetWindowsHookExA
IsRectEmpty
SendMessageW
ToUnicode
SetMessageExtraInfo
EnumDisplayMonitors
EnumWindowStationsW
GetClassNameA
GetSystemMenu
ToAscii
SetThreadDesktop
CreateWindowExW
TrackPopupMenu
BringWindowToTop
DefMDIChildProcA
DestroyCaret
WaitForInputIdle
GetActiveWindow
DefWindowProcW
ReleaseCapture
GetTopWindow
RegisterClipboardFormatW
SetUserObjectInformationA
wvsprintfW
CreateIcon
SubtractRect
LoadStringW
SetWindowContextHelpId
GetCapture
TrackMouseEvent
CheckRadioButton
IsDlgButtonChecked
GetProcessDefaultLayout
LoadAcceleratorsW
FlashWindow
UnpackDDElParam
MessageBoxIndirectA
EditWndProc
RemoveMenu
UnhookWindowsHookEx
GetDlgItemInt
DdeDisconnect
PostMessageA
OffsetRect
ChangeMenuA
GetDlgItemTextW
DrawTextA
SwitchToThisWindow
DdePostAdvise
CharNextExA
GetProcessWindowStation
GetAncestor
ShowScrollBar
SetProcessWindowStation
CallNextHookEx
wsprintfW
GetComboBoxInfo
CreateIconFromResource
CharUpperBuffW
OpenInputDesktop
SetCaretBlinkTime
DispatchMessageW
ShowWindowAsync
SetUserObjectInformationW
IsWindowVisible
MessageBoxExW
CreateIconIndirect
GetMenuItemInfoW
DefMDIChildProcW
LoadKeyboardLayoutW
DefDlgProcW
CreateIconFromResourceEx
GetDlgCtrlID
DragObject
DlgDirSelectComboBoxExW
DeleteMenu
LoadAcceleratorsA
GetDlgItemTextA
ExitWindowsEx
GetWindowTextW
DestroyCursor
DefDlgProcA
OemToCharA
GrayStringA
GetWindowContextHelpId
CreateDesktopW
GetKeyNameTextW
GetWindowTextLengthA
CallMsgFilterW
DdeConnect
RegisterClipboardFormatA
SetWindowWord
InvalidateRect
MapVirtualKeyW
GetKeyboardLayoutNameA
SetPropA
GetQueueStatus
IsIconic
ChangeDisplaySettingsExW
DdeReconnect
EnumPropsW
ArrangeIconicWindows
MapVirtualKeyA
SetSysColors
DdeQueryStringW
DdeCreateStringHandleW

advapi32

RegEnumValueA
RegFlushKey
CryptDeriveKey
CryptEnumProvidersA
RegReplaceKeyW
GetUserNameW
RegSetKeySecurity
RegCloseKey
RegCreateKeyW
RegEnumValueW
RegSetValueExA
RegSaveKeyW
RevertToSelf
CryptGenKey
InitiateSystemShutdownW
RegCreateKeyA
RegOpenKeyA
LookupPrivilegeNameW
CryptEnumProvidersW
LookupPrivilegeDisplayNameA
RegSetValueA
RegEnumKeyA
RegConnectRegistryW
CryptEncrypt
LookupPrivilegeNameA
CreateServiceW
CryptAcquireContextA
RegDeleteValueA
CryptSetProviderA
CryptGetDefaultProviderA
CryptDecrypt
CryptVerifySignatureW
LookupSecurityDescriptorPartsA
RegEnumKeyW
RegLoadKeyW
RegLoadKeyA
RegQueryValueW
LookupAccountSidA
InitializeSecurityDescriptor
RegCreateKeyExW
LookupAccountNameW
CryptContextAddRef
CryptHashData
CreateServiceA
CryptSignHashA
LogonUserW
GetUserNameA
CryptSignHashW
RegCreateKeyExA
CryptEnumProviderTypesA
RegQueryInfoKeyA
RegSaveKeyA
RegQueryValueA
RegQueryMultipleValuesW
AbortSystemShutdownA
LookupPrivilegeValueA
CryptReleaseContext
RegQueryValueExW
CryptCreateHash
CryptSetHashParam
CryptVerifySignatureA
RegQueryMultipleValuesA
RegDeleteValueW
CryptGetUserKey
RegRestoreKeyW
ReportEventA
ReportEventW
CryptAcquireContextW
CryptImportKey
RegReplaceKeyA
InitiateSystemShutdownA
CryptGetHashParam
LookupAccountSidW
CryptSetKeyParam
CryptHashSessionKey

Sections

.text
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

afc5b5aa94011363a551489d36101f93

Headers

File Characteristics

Imports

gdi32

kernel32

comdlg32

wininet

wsock32

user32

advapi32

Sections

.text Size: 372KB - Virtual size: 371KB

.data Size: 148KB - Virtual size: 148KB

.text
Size: 372KB - Virtual size: 371KB

.data
Size: 148KB - Virtual size: 148KB