modiloader | a3e09c7e274a216088d72deb3f930598_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a3e09c7e274a216088d72deb3f930598_JaffaCakes118
Size

796KB
MD5

a3e09c7e274a216088d72deb3f930598
SHA1

1e0a619b3c700a7b62f318dd93bce2407e5fc7b9
SHA256

9daed0fdaca35c99f1559328257b646749dafda5830e4fb0ce2588a0df9067c0
SHA512

e81a05a658aa98edf4f6d78bf78a8843cb73efbbf89b012fb00382a492a9a5a04b49d438a223a67eb0a8daace2ace72ad168b99666c35076b800c2ea64cd9dc8
SSDEEP

24576:CNzy8PM4mbnxAticFvgXU4AA97C4DkhD:CNW8PMfx07CU4AitDI

Score

10^/10

upx modiloader

Malware Config

Signatures

ModiLoader First Stage 1 IoCs

resource	yara_rule
static1/unpack001/out.upx	modiloader_stage1

Modiloader family
modiloader

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
sample	upx

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
a3e09c7e274a216088d72deb3f930598_JaffaCakes118
unpack001/out.upx

Files

a3e09c7e274a216088d72deb3f930598_JaffaCakes118
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Sections

UPX0
Size: - Virtual size: 2.0MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 779KB - Virtual size: 780KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Exports

Exports

@$xp$10TCCalendar
@$xp$11TCColorGrid
@$xp$16Jvtypes@EOSError
@$xp$16Jvtypes@PBoolean
@$xp$17Jvtypes@PCardinal
@$xp$17Jvtypes@PJvAniTag
@$xp$17Jvtypes@PWordBool
@$xp$17Jvtypes@TInputKey
@$xp$17Jvtypes@TJvAniTag
@$xp$17Jvtypes@TJvFourCC
@$xp$17Jvtypes@TJvLayout
@$xp$17Jvtypes@TJvRegKey
@$xp$17TPerformanceGraph
@$xp$18Jvjclutils@TdtKind
@$xp$18Jvthread@TJvThread
@$xp$18Jvtypes@IInvokable
@$xp$18Jvtypes@JvTypes__5
@$xp$18Jvtypes@JvTypes__6
@$xp$18Jvtypes@JvTypes__7
@$xp$18Jvtypes@TColorType
@$xp$18Jvtypes@TDateOrder
@$xp$18Jvtypes@TInputKeys
@$xp$18Jvtypes@TJvDiskRes
@$xp$18Jvtypes@TJvRegKeys
@$xp$18Jvtypes@TWMNCPaint
@$xp$18Jvwizard@TJvWizard
@$xp$19Jvcomponent@TJvForm
@$xp$19Jvexforms@TJvExForm
@$xp$19Jvtypes@PJvRGBArray
@$xp$19Jvtypes@PRGBPalette
@$xp$19Jvtypes@TDaysOfWeek
@$xp$19Jvtypes@TJvRGBArray
@$xp$19Jvtypes@TRGBPalette
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Jvexforms@TJvExFrame
@$xp$20Jvthemes@JvThemes__2
@$xp$20Jvthemes@TThemeStyle
@$xp$20Jvtracker@TJvTracker
@$xp$20Jvtypes@TCMForceSize
@$xp$20Jvtypes@TJvAniHeader
@$xp$20Jvtypes@TJvAnimation
@$xp$20Jvtypes@TJvDiskStyle
@$xp$20Jvtypes@TJvDriveType
@$xp$20Jvtypes@TJvImageSize
@$xp$20Jvtypes@TJvRGBTriple
@$xp$20Jvvcl5utils@PPointer
@$xp$21Jvexcontrols@TDlgCode
@$xp$21Jvtypes@PRGBQuadArray
@$xp$21Jvtypes@TDefColorItem
@$xp$21Jvtypes@TJvAnimations
@$xp$21Jvtypes@TJvBevelStyle
@$xp$21Jvtypes@TJvDiskStyles
@$xp$21Jvtypes@TJvDriveTypes
@$xp$21Jvtypes@TJvErrorEvent
@$xp$21Jvtypes@TJvImageAlign
@$xp$21Jvtypes@TJvOutputMode
@$xp$21Jvtypes@TJvPersistent
@$xp$21Jvtypes@TJvSortMethod
@$xp$21Jvtypes@TRGBQuadArray
@$xp$22Jvclver@TJVCLAboutInfo
@$xp$22Jvexcontrols@TDlgCodes
@$xp$22Jvexextctrls@TJvExPage
@$xp$22Jvthread@TJvBaseThread
@$xp$22Jvtypes@EJVCLException
@$xp$22Jvtypes@TDayOfWeekName
@$xp$22Jvtypes@TJvBitmapStyle
@$xp$22Jvtypes@TJvDeleteStyle
@$xp$22Jvtypes@TJvFileInfoRec
@$xp$22Jvtypes@TJvParentEvent
@$xp$22Jvtypes@TJvTriggerKind
@$xp$22Jvvcl5utils@TEditStyle
@$xp$22Jvvcl5utils@TValueSign
@$xp$22Jvvcl5utils@UTF8String
@$xp$22Outline@TOutlineOption
@$xp$23Jvexextctrls@TJvExBevel
@$xp$23Jvexextctrls@TJvExImage
@$xp$23Jvexextctrls@TJvExPanel
@$xp$23Jvexextctrls@TJvExShape
@$xp$23Jvexstdctrls@TJvExLabel
@$xp$23Jvtypes@TJvDeleteStyles
@$xp$23Jvtypes@TJvWaveLocation
@$xp$23Jvvcl5utils@TCollection
@$xp$23Jvwizard@TJvWizardAlign
@$xp$23Jvwizard@TJvWizardImage
@$xp$24Jvexcomctrls@TJvExHotKey
@$xp$24Jvexcomctrls@TJvExUpDown
@$xp$24Jvexcontrols@IJvHotTrack
@$xp$24Jvexextctrls@TJvExHeader
@$xp$24Jvexforms@TJvExScrollBox
@$xp$24Jvexstdctrls@TJvExButton
@$xp$24Jvtypes@TJvDoneFileEvent
@$xp$24Jvtypes@TJvGradientStyle
@$xp$24Jvtypes@TJvNextPageEvent
@$xp$24Jvtypes@TJvPopupPosition
@$xp$24Jvtypes@TJvProgressEvent
@$xp$25Jvcomponent@TJvWinControl
@$xp$25Jvexcomctrls@TJvExAnimate
@$xp$25Jvexcomctrls@TJvExCoolBar
@$xp$25Jvexcomctrls@TJvExToolBar
@$xp$25Jvexcontrols@IJvExControl
@$xp$25Jvexcontrols@TJvExControl
@$xp$25Jvexforms@TJvExCustomForm
@$xp$25Jvexforms@TJvExToolWindow
@$xp$25Jvtracker@TOnChangedValue
@$xp$25Jvtracker@TjtbOrientation
@$xp$25Jvtypes@TJvClickColorType
@$xp$25Jvtypes@TJvLinkClickEvent
@$xp$26Jvcomponent@TJvCustomPanel
@$xp$26Jvexcomctrls@TJvExListView
@$xp$26Jvexcomctrls@TJvExTabSheet
@$xp$26Jvexcomctrls@TJvExTrackBar
@$xp$26Jvexcomctrls@TJvExTreeView
@$xp$26Jvexextctrls@TJvExNotebook
@$xp$26Jvexextctrls@TJvExPaintBox
@$xp$26Jvexextctrls@TJvExSplitter
@$xp$26Jvexforms@TJvExCustomFrame
@$xp$26Jvexstdctrls@TJvExCheckBox
@$xp$26Jvexstdctrls@TJvExGroupBox
@$xp$26Jvtypes@TJvColorQuadLayOut
@$xp$26Jvtypes@TJvDoneStreamEvent
@$xp$26Jvtypes@TJvTrackFontOption
@$xp$26Jvwizard@TJvWizardPageList
@$xp$27Cdiroutl@TCDirectoryOutline
@$xp$27Jvcomponent@TJvPopupListBox
@$xp$27Jvexcomctrls@TJvExStatusBar
@$xp$27Jvexstdctrls@TJvExScrollBar
@$xp$27Jvtypes@TJvChangeColorEvent
@$xp$27Jvtypes@TJvClipboardCommand
@$xp$27Jvtypes@TJvFTPProgressEvent
@$xp$27Jvtypes@TJvFocusChangeEvent
@$xp$27Jvtypes@TJvTrackFontOptions
@$xp$27Jvwizard@TJvWizardButtonSet
@$xp$27Jvwizard@TJvWizardLeftRight
@$xp$27Jvwizard@TJvWizardPagePanel
@$xp$27Jvwizard@TJvWizardPageTitle
@$xp$27Jvwizard@TJvWizardWaterMark
@$xp$28Jvcomponent@TJvCustomControl
@$xp$28Jvcomponentbase@TJvComponent
@$xp$28Jvexcomctrls@TJvExTabControl
@$xp$28Jvexcomctrls@TJvExToolButton
@$xp$28Jvexcontrols@TJvExHintWindow
@$xp$28Jvexcontrols@TJvExWinControl
@$xp$28Jvexextctrls@TJvExControlBar
@$xp$28Jvexextctrls@TJvExRadioGroup
@$xp$28Jvexstdctrls@TJvExCustomEdit
@$xp$28Jvexstdctrls@TJvExCustomMemo
@$xp$28Jvexstdctrls@TJvExStaticText
@$xp$28Jvthreadtimer@TJvThreadTimer
@$xp$28Jvtypes@TJvClipboardCommands
@$xp$28Jvtypes@TJvHTTPProgressEvent
@$xp$28Jvtypes@TJvNotifyParamsEvent
@$xp$28Jvvcl5utils@TOwnedCollection
@$xp$28Jvwizard@TJvWizardButtonKind
@$xp$28Jvwizard@TJvWizardCustomPage
@$xp$28Jvwizard@TJvWizardPageHeader
@$xp$28Jvwizard@TJvWizardPageObject
@$xp$29Jvcomponent@TJvCustomTreeView
@$xp$29Jvcomponent@TJvGraphicControl
@$xp$29Jvcomponent@TJvPubCustomPanel
@$xp$29Jvexcomctrls@TJvExPageControl
@$xp$29Jvexcomctrls@TJvExProgressBar
@$xp$29Jvexextctrls@TJvExCustomPanel
@$xp$29Jvexforms@TJvExCustomDockForm
@$xp$29Jvexstdctrls@TJvExCustomLabel
@$xp$29Jvexstdctrls@TJvExRadioButton
@$xp$29Jvthemes@TWinControlThemeInfo
@$xp$29Jvtypes@TJvPersistentProperty
@$xp$29Jvwizard@TJvWizardWelcomePage
@$xp$29Jvwizardcommon@EJvWizardError
@$xp$30Jvexcomctrls@TJvExCustomHotKey
@$xp$30Jvexcomctrls@TJvExCustomUpDown
@$xp$30Jvexcomctrls@TJvExPageScroller
@$xp$30Jvexcontrols@TStructPtrMessage
@$xp$30Jvthread@TJvCustomThreadDialog
@$xp$30Jvtypes@TJvPropertyChangeEvent
@$xp$30Jvwizard@TJvWizardInteriorPage
@$xp$31Jvexcomctrls@TJvExHeaderControl
@$xp$31Jvexcomctrls@TJvExMonthCalendar
@$xp$31Jvexcontrols@IJvDenySubClassing
@$xp$31Jvexcontrols@TJvExCustomControl
@$xp$31Jvexcontrols@TJvHotTrackOptions
@$xp$31Jvexstdctrls@TJvExButtonControl
@$xp$31Jvexstdctrls@TJvExCustomListBox
@$xp$31Jvtypes@TJvAddInControlSiteInfo
@$xp$31Jvtypes@TJvHoldCustomColorEvent
@$xp$31Jvwizard@TJvWizardAboutInfoForm
@$xp$31Jvwizard@TJvWizardButtonControl
@$xp$31Jvwizard@TJvWizardGraphicObject
@$xp$32Jvcomponent@TJvPubGraphicControl
@$xp$32Jvexcomctrls@TJvExCommonCalendar
@$xp$32Jvexcomctrls@TJvExCustomListView
@$xp$32Jvexcomctrls@TJvExCustomTreeView
@$xp$32Jvexcomctrls@TJvExDateTimePicker
@$xp$32Jvexcontrols@TJvExGraphicControl
@$xp$32Jvexextctrls@TJvExPubCustomPanel
@$xp$32Jvexstdctrls@TJvExCustomCheckBox
@$xp$32Jvexstdctrls@TJvExCustomComboBox
@$xp$32Jvexstdctrls@TJvExCustomGroupBox
@$xp$32Jvwizard@TJvWizardNavigateButton
@$xp$32Jvwizard@TJvWizardPageClickEvent
@$xp$32Jvwizard@TJvWizardPaintPageEvent
@$xp$33Jvvcl5utils@TInterfacedPersistent
@$xp$33Jvwizard@TJvWizardChangePageEvent
@$xp$33Jvwizard@TJvWizardRouteMapControl
@$xp$33Jvwizard@TJvWizardSelectPageEvent
@$xp$34Jvexcomctrls@TJvExCustomTabControl
@$xp$34Jvexextctrls@TJvExCustomControlBar
@$xp$34Jvexextctrls@TJvExCustomRadioGroup
@$xp$34Jvexforms@TJvExScrollingWinControl
@$xp$34Jvexstdctrls@TJvExCustomStaticText
@$xp$34Jvthread@TJvCustomThreadDialogForm
@$xp$34Jvtypes@TJvListViewColumnSortEvent
@$xp$34Jvwizardcommon@TJvWizardFrameStyle
@$xp$35Jvexcontrols@TJvExPubGraphicControl
@$xp$35Jvvcl5utils@TCollectionNotification
@$xp$35Jvwizard@TJvWizardChangingPageEvent
@$xp$35Jvwizardcommon@TJvWizardImageLayout
@$xp$36Jvwizard@TJvWizardButtonControlClass
@$xp$37Jvthread@TJvCustomThreadDialogOptions
@$xp$38Jvwizard@TJvWizardRouteMapDisplayEvent
@$xp$38Jvwizardcommon@TJvWizardImageAlignment
@$xp$38Jvwizardcommon@TJvWizardImageLeftRight
@$xp$39Jvthread@TJvCustomThreadDialogFormEvent
@$xp$39Jvtypes@TJvGetAddInControlSiteInfoEvent
@$xp$5TDate
@$xp$5TTime
@$xp$7TCGauge
@@Ccalendr@Finalize
@@Ccalendr@Initialize
@@Cdiroutl@Finalize
@@Cdiroutl@Initialize
@@Cgauges@Finalize
@@Cgauges@Initialize
@@Cgrid@Finalize
@@Cgrid@Initialize
@@Device@Finalize
@@Device@Initialize
@@Perfgrap@Finalize
@@Perfgrap@Initialize
@@Unit10@Finalize
@@Unit10@Initialize
@@Unit1@Finalize
@@Unit1@Initialize
@@Unit2@Finalize
@@Unit2@Initialize
@@Unit3@Finalize
@@Unit3@Initialize
@@Unit4@Finalize
@@Unit4@Initialize
@@Unit5@Finalize
@@Unit5@Initialize
@@Unit6@Finalize
@@Unit6@Initialize
@@Unit7@Finalize
@@Unit7@Initialize
@@Unit8@Finalize
@@Unit8@Initialize
@@Unit9@Finalize
@@Unit9@Initialize
@@Unit_atacmd@Finalize
@@Unit_atacmd@Initialize
@@Unit_defrag@Finalize
@@Unit_defrag@Initialize
@@Unit_fileserch@Finalize
@@Unit_fileserch@Initialize
@@Unit_fsfastclone@Finalize
@@Unit_fsfastclone@Initialize
@@Unit_sector_readwrite@Finalize
@@Unit_sector_readwrite@Initialize
@@Unit_usbremove@Finalize
@@Unit_usbremove@Initialize
@Ccalendr@Register$qqrv
@Cdiroutl@Register$qqrv
@Cdiroutl@TCDirectoryOutline@
@Cdiroutl@TCDirectoryOutline@$bctr$qqrp18Classes@TComponent
@Cdiroutl@TCDirectoryOutline@APointer
@Cdiroutl@TCDirectoryOutline@AssignCaseProc$qqrv
@Cdiroutl@TCDirectoryOutline@BuildOneLevel$qqrl
@Cdiroutl@TCDirectoryOutline@BuildSubTree$qqrl
@Cdiroutl@TCDirectoryOutline@BuildTree$qqrv
@Cdiroutl@TCDirectoryOutline@Change$qqrv
@Cdiroutl@TCDirectoryOutline@Click$qqrv
@Cdiroutl@TCDirectoryOutline@CreateWnd$qqrv
@Cdiroutl@TCDirectoryOutline@CurDir$qv
@Cdiroutl@TCDirectoryOutline@DriveToInt$qqrc
@Cdiroutl@TCDirectoryOutline@Expand$qqri
@Cdiroutl@TCDirectoryOutline@ForceCase$qqrrx17System@AnsiString
@Cdiroutl@TCDirectoryOutline@GetChildNamed$qqrrx17System@AnsiStringl
@Cdiroutl@TCDirectoryOutline@InvalidIndex
@Cdiroutl@TCDirectoryOutline@Loaded$qqrv
@Cdiroutl@TCDirectoryOutline@RootIndex
@Cdiroutl@TCDirectoryOutline@SetDirectory$qqr17System@AnsiString
@Cdiroutl@TCDirectoryOutline@SetDrive$qqrc
@Cdiroutl@TCDirectoryOutline@SetTextCase$qqr18Cdiroutl@TTextCase
@Cdiroutl@TCDirectoryOutline@WalkTree$qqrrx17System@AnsiString
@Cgauges@Register$qqrv
@Cgrid@Register$qqrv
@Jvclver@Finalization$qqrv
@Jvclver@initialization$qqrv
@Jvcomponent@Finalization$qqrv
@Jvcomponent@TJvCustomControl@
@Jvcomponent@TJvCustomPanel@
@Jvcomponent@TJvCustomTreeView@
@Jvcomponent@TJvForm@
@Jvcomponent@TJvForm@CreateParams$qqrr22Controls@TCreateParams
@Jvcomponent@TJvGraphicControl@
@Jvcomponent@TJvPopupListBox@
@Jvcomponent@TJvPopupListBox@CreateParams$qqrr22Controls@TCreateParams
@Jvcomponent@TJvPopupListBox@CreateWnd$qqrv
@Jvcomponent@TJvPopupListBox@KeyPress$qqrrc
@Jvcomponent@TJvPubCustomPanel@
@Jvcomponent@TJvPubGraphicControl@
@Jvcomponent@TJvWinControl@
@Jvcomponent@initialization$qqrv
@Jvcomponentbase@Finalization$qqrv
@Jvcomponentbase@TJvComponent@
@Jvcomponentbase@initialization$qqrv
@Jvconsts@Finalization$qqrv
@Jvconsts@Separators
@Jvconsts@crDragAlt
@Jvconsts@crDragHand
@Jvconsts@crHand
@Jvconsts@crJVCLFirst
@Jvconsts@crJVCLLast
@Jvconsts@crMultiDragAlt
@Jvconsts@crMultiDragLink
@Jvconsts@crMultiDragLinkAlt
@Jvconsts@initialization$qqrv
@Jvexcomctrls@Finalization$qqrv
@Jvexcomctrls@TJvExAnimate@
@Jvexcomctrls@TJvExAnimate@$bctr$qqrp18Classes@TComponent
@Jvexcomctrls@TJvExAnimate@BaseWndProc$qqriii
@Jvexcomctrls@TJvExAnimate@BaseWndProc$qqriip17Controls@TControl
@Jvexcomctrls@TJvExAnimate@BaseWndProcEx$qqriipv
@Jvexcomctrls@TJvExAnimate@BoundsChanged$qqrv
@Jvexcomctrls@TJvExAnimate@CMSetAutoSize$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExAnimate@ColorChanged$qqrv
@Jvexcomctrls@TJvExAnimate@ControlsListChanged$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExAnimate@ControlsListChanging$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExAnimate@CursorChanged$qqrv
@Jvexcomctrls@TJvExAnimate@DoEraseBackground$qqrp16Graphics@TCanvasi
@Jvexcomctrls@TJvExAnimate@EnabledChanged$qqrv
@Jvexcomctrls@TJvExAnimate@FocusChanged$qqrp20Controls@TWinControl
@Jvexcomctrls@TJvExAnimate@FocusKilled$qqrui
@Jvexcomctrls@TJvExAnimate@FocusSet$qqrui
@Jvexcomctrls@TJvExAnimate@FontChanged$qqrv
@Jvexcomctrls@TJvExAnimate@GetDlgCode$qqrr49System@%Set$t21Jvexcontrols@TDlgCode$iuc$0$iuc$6%
@Jvexcomctrls@TJvExAnimate@HintShow$qqrr15Forms@THintInfo
@Jvexcomctrls@TJvExAnimate@HitTest$qqrii
@Jvexcomctrls@TJvExAnimate@MouseEnter$qqrp17Controls@TControl
@Jvexcomctrls@TJvExAnimate@MouseLeave$qqrp17Controls@TControl
@Jvexcomctrls@TJvExAnimate@ParentColorChanged$qqrv
@Jvexcomctrls@TJvExAnimate@ParentFontChanged$qqrv
@Jvexcomctrls@TJvExAnimate@ParentShowHintChanged$qqrv
@Jvexcomctrls@TJvExAnimate@SetAutoSize$qqro
@Jvexcomctrls@TJvExAnimate@ShowHintChanged$qqrv
@Jvexcomctrls@TJvExAnimate@ShowingChanged$qqrv
@Jvexcomctrls@TJvExAnimate@TextChanged$qqrv
@Jvexcomctrls@TJvExAnimate@VisibleChanged$qqrv
@Jvexcomctrls@TJvExAnimate@WantKey$qqri46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%x17System@WideString
@Jvexcomctrls@TJvExAnimate@WndProc$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCommonCalendar@
@Jvexcomctrls@TJvExCommonCalendar@$bctr$qqrp18Classes@TComponent
@Jvexcomctrls@TJvExCommonCalendar@BaseWndProc$qqriii
@Jvexcomctrls@TJvExCommonCalendar@BaseWndProc$qqriip17Controls@TControl
@Jvexcomctrls@TJvExCommonCalendar@BaseWndProcEx$qqriipv
@Jvexcomctrls@TJvExCommonCalendar@BoundsChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@CMSetAutoSize$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCommonCalendar@ColorChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@ControlsListChanged$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCommonCalendar@ControlsListChanging$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCommonCalendar@CursorChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@DoEraseBackground$qqrp16Graphics@TCanvasi
@Jvexcomctrls@TJvExCommonCalendar@EnabledChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@FocusChanged$qqrp20Controls@TWinControl
@Jvexcomctrls@TJvExCommonCalendar@FocusKilled$qqrui
@Jvexcomctrls@TJvExCommonCalendar@FocusSet$qqrui
@Jvexcomctrls@TJvExCommonCalendar@FontChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@GetDlgCode$qqrr49System@%Set$t21Jvexcontrols@TDlgCode$iuc$0$iuc$6%
@Jvexcomctrls@TJvExCommonCalendar@HintShow$qqrr15Forms@THintInfo
@Jvexcomctrls@TJvExCommonCalendar@HitTest$qqrii
@Jvexcomctrls@TJvExCommonCalendar@MouseEnter$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCommonCalendar@MouseLeave$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCommonCalendar@ParentColorChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@ParentFontChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@ParentShowHintChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@SetAutoSize$qqro
@Jvexcomctrls@TJvExCommonCalendar@ShowHintChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@ShowingChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@TextChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@VisibleChanged$qqrv
@Jvexcomctrls@TJvExCommonCalendar@WantKey$qqri46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%x17System@WideString
@Jvexcomctrls@TJvExCommonCalendar@WndProc$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCoolBar@
@Jvexcomctrls@TJvExCoolBar@$bctr$qqrp18Classes@TComponent
@Jvexcomctrls@TJvExCoolBar@BaseWndProc$qqriii
@Jvexcomctrls@TJvExCoolBar@BaseWndProc$qqriip17Controls@TControl
@Jvexcomctrls@TJvExCoolBar@BaseWndProcEx$qqriipv
@Jvexcomctrls@TJvExCoolBar@BoundsChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@CMSetAutoSize$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCoolBar@ColorChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@ControlsListChanged$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCoolBar@ControlsListChanging$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCoolBar@CursorChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@DoEraseBackground$qqrp16Graphics@TCanvasi
@Jvexcomctrls@TJvExCoolBar@EnabledChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@FocusChanged$qqrp20Controls@TWinControl
@Jvexcomctrls@TJvExCoolBar@FocusKilled$qqrui
@Jvexcomctrls@TJvExCoolBar@FocusSet$qqrui
@Jvexcomctrls@TJvExCoolBar@FontChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@GetDlgCode$qqrr49System@%Set$t21Jvexcontrols@TDlgCode$iuc$0$iuc$6%
@Jvexcomctrls@TJvExCoolBar@HintShow$qqrr15Forms@THintInfo
@Jvexcomctrls@TJvExCoolBar@HitTest$qqrii
@Jvexcomctrls@TJvExCoolBar@MouseEnter$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCoolBar@MouseLeave$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCoolBar@ParentColorChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@ParentFontChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@ParentShowHintChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@SetAutoSize$qqro
@Jvexcomctrls@TJvExCoolBar@ShowHintChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@ShowingChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@TextChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@VisibleChanged$qqrv
@Jvexcomctrls@TJvExCoolBar@WantKey$qqri46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%x17System@WideString
@Jvexcomctrls@TJvExCoolBar@WndProc$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCustomHotKey@
@Jvexcomctrls@TJvExCustomHotKey@$bctr$qqrp18Classes@TComponent
@Jvexcomctrls@TJvExCustomHotKey@BaseWndProc$qqriii
@Jvexcomctrls@TJvExCustomHotKey@BaseWndProc$qqriip17Controls@TControl
@Jvexcomctrls@TJvExCustomHotKey@BaseWndProcEx$qqriipv
@Jvexcomctrls@TJvExCustomHotKey@BoundsChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@CMSetAutoSize$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCustomHotKey@ColorChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@ControlsListChanged$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCustomHotKey@ControlsListChanging$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCustomHotKey@CursorChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@DoEraseBackground$qqrp16Graphics@TCanvasi
@Jvexcomctrls@TJvExCustomHotKey@EnabledChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@FocusChanged$qqrp20Controls@TWinControl
@Jvexcomctrls@TJvExCustomHotKey@FocusKilled$qqrui
@Jvexcomctrls@TJvExCustomHotKey@FocusSet$qqrui
@Jvexcomctrls@TJvExCustomHotKey@FontChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@GetDlgCode$qqrr49System@%Set$t21Jvexcontrols@TDlgCode$iuc$0$iuc$6%
@Jvexcomctrls@TJvExCustomHotKey@HintShow$qqrr15Forms@THintInfo
@Jvexcomctrls@TJvExCustomHotKey@HitTest$qqrii
@Jvexcomctrls@TJvExCustomHotKey@MouseEnter$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCustomHotKey@MouseLeave$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCustomHotKey@ParentColorChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@ParentFontChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@ParentShowHintChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@SetAutoSize$qqro
@Jvexcomctrls@TJvExCustomHotKey@ShowHintChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@ShowingChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@TextChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@VisibleChanged$qqrv
@Jvexcomctrls@TJvExCustomHotKey@WantKey$qqri46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%x17System@WideString
@Jvexcomctrls@TJvExCustomHotKey@WndProc$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCustomListView@
@Jvexcomctrls@TJvExCustomListView@$bctr$qqrp18Classes@TComponent
@Jvexcomctrls@TJvExCustomListView@BaseWndProc$qqriii
@Jvexcomctrls@TJvExCustomListView@BaseWndProc$qqriip17Controls@TControl
@Jvexcomctrls@TJvExCustomListView@BaseWndProcEx$qqriipv
@Jvexcomctrls@TJvExCustomListView@BoundsChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@CMSetAutoSize$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCustomListView@ColorChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@ControlsListChanged$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCustomListView@ControlsListChanging$qqrp17Controls@TControlo
@Jvexcomctrls@TJvExCustomListView@CursorChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@DoEraseBackground$qqrp16Graphics@TCanvasi
@Jvexcomctrls@TJvExCustomListView@EnabledChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@FocusChanged$qqrp20Controls@TWinControl
@Jvexcomctrls@TJvExCustomListView@FocusKilled$qqrui
@Jvexcomctrls@TJvExCustomListView@FocusSet$qqrui
@Jvexcomctrls@TJvExCustomListView@FontChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@GetDlgCode$qqrr49System@%Set$t21Jvexcontrols@TDlgCode$iuc$0$iuc$6%
@Jvexcomctrls@TJvExCustomListView@HintShow$qqrr15Forms@THintInfo
@Jvexcomctrls@TJvExCustomListView@HitTest$qqrii
@Jvexcomctrls@TJvExCustomListView@MouseEnter$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCustomListView@MouseLeave$qqrp17Controls@TControl
@Jvexcomctrls@TJvExCustomListView@ParentColorChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@ParentFontChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@ParentShowHintChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@SetAutoSize$qqro
@Jvexcomctrls@TJvExCustomListView@ShowHintChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@ShowingChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@TextChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@VisibleChanged$qqrv
@Jvexcomctrls@TJvExCustomListView@WantKey$qqri46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%x17System@WideString
@Jvexcomctrls@TJvExCustomListView@WndProc$qqrr17Messages@TMessage
@Jvexcomctrls@TJvExCustomTabControl@
@Jvexcomctrls@TJvExCustomTabControl@$bctr$qqrp18Classes@TComponent
@Jvexcomctrls@TJvExCustomTabControl@BaseWndProc$qqriii
@Jvexcomctrls@TJvExCustomTabControl@BaseWndProc$qqriip17Controls@TControl
@Jvexcomctrls@TJvExCustomTabControl@BaseWndProcEx$qqriipv
@Jvexcomctrls@TJvExCustomTabControl@BoundsChanged$qqrv
@Jvexcomctrls@TJvExCustomTabControl@CMSetAutoSize$qqrr17Messages@TMessage

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 335KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 266KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 691KB - Virtual size: 692KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 95KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 2.0MB

UPX1 Size: 779KB - Virtual size: 780KB

.rsrc Size: 10KB - Virtual size: 12KB

Headers

File Characteristics

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.data Size: 335KB - Virtual size: 360KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 13KB - Virtual size: 16KB

.edata Size: 266KB - Virtual size: 268KB

.rsrc Size: 691KB - Virtual size: 692KB

.reloc Size: 95KB - Virtual size: 96KB

UPX0
Size: - Virtual size: 2.0MB

UPX1
Size: 779KB - Virtual size: 780KB

.rsrc
Size: 10KB - Virtual size: 12KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 335KB - Virtual size: 360KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 13KB - Virtual size: 16KB

.edata
Size: 266KB - Virtual size: 268KB

.rsrc
Size: 691KB - Virtual size: 692KB

.reloc
Size: 95KB - Virtual size: 96KB