Overview
overview
3Static
static
3SiGNMAKER/...it.exe
windows7-x64
3SiGNMAKER/...it.exe
windows10-2004-x64
3SiGNMAKER/...NC.exe
windows7-x64
3SiGNMAKER/...NC.exe
windows10-2004-x64
3SiGNMAKER/...n5.exe
windows7-x64
3SiGNMAKER/...n5.exe
windows10-2004-x64
3SiGNMAKER/DNCMax5.exe
windows7-x64
3SiGNMAKER/DNCMax5.exe
windows10-2004-x64
3SiGNMAKER/...rl.exe
windows7-x64
3SiGNMAKER/...rl.exe
windows10-2004-x64
3SiGNMAKER/...er.exe
windows7-x64
3SiGNMAKER/...er.exe
windows10-2004-x64
3SiGNMAKER/...up.exe
windows7-x64
1SiGNMAKER/...up.exe
windows10-2004-x64
3SiGNMAKER/...er.exe
windows7-x64
1SiGNMAKER/...er.exe
windows10-2004-x64
3Static task
static1
Behavioral task
behavioral1
Sample
SiGNMAKER/CIMCOEdit.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral2
Sample
SiGNMAKER/CIMCOEdit.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
SiGNMAKER/CimcoDNC.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral4
Sample
SiGNMAKER/CimcoDNC.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
SiGNMAKER/DNCAdmin5.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral6
Sample
SiGNMAKER/DNCAdmin5.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
SiGNMAKER/DNCMax5.exe
Resource
win7-20240705-en
windows7-x64
Behavioral task
behavioral8
Sample
SiGNMAKER/DNCMax5.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
SiGNMAKER/DNCMaxCtrl.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral10
Sample
SiGNMAKER/DNCMaxCtrl.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
SiGNMAKER/DNCMaxServiceManager.exe
Resource
win7-20240708-en
windows7-x64
Behavioral task
behavioral12
Sample
SiGNMAKER/DNCMaxServiceManager.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral13
Sample
SiGNMAKER/NCBaseBackup.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral14
Sample
SiGNMAKER/NCBaseBackup.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
Behavioral task
behavioral15
Sample
SiGNMAKER/NCBaseServer.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral16
Sample
SiGNMAKER/NCBaseServer.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
a80b4e75e68dab5c3d4b4ad1faab7e32_JaffaCakes118
-
Size
1.5MB
-
MD5
a80b4e75e68dab5c3d4b4ad1faab7e32
-
SHA1
67d50fe6fdb75b0663b87fd77d6f5c12108a910e
-
SHA256
c10bcc320aab0894e39931ce4e13666ac8827bf01d9c3605b766922cdcabce2b
-
SHA512
644c78e2033636c95f49555d50f993b40596e10a091ab36efab34744ccd66eb1be9a0c617e98dd7f962a368ba4187517525e9be516fc11a7c408584c39a28470
-
SSDEEP
24576:0d/ZzXWx8kKSgg2KJiYSLBFBh9hMcISoX11wt65iizAB588GGjxYpY:m7VaJ2KJiVLfBhkcDoXr26g6G88WpY
Malware Config
Signatures
-
Unsigned PE 8 IoCs
Checks for missing Authenticode signature.
resource unpack001/SiGNMAKER/CIMCOEdit.exe unpack001/SiGNMAKER/CimcoDNC.exe unpack001/SiGNMAKER/DNCAdmin5.exe unpack001/SiGNMAKER/DNCMax5.exe unpack001/SiGNMAKER/DNCMaxCtrl.exe unpack001/SiGNMAKER/DNCMaxServiceManager.exe unpack001/SiGNMAKER/NCBaseBackup.exe unpack001/SiGNMAKER/NCBaseServer.exe
Files
-
a80b4e75e68dab5c3d4b4ad1faab7e32_JaffaCakes118.rar
-
SiGNMAKER/CIMCOEdit.exe.exe windows:4 windows x86 arch:x86
d35519132c3bd468b1d16fbc83cc1215
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
netapi32
Netbios
mfc42
ord1669
ord3499
ord2515
ord355
ord793
ord790
ord3007
ord3078
ord3074
ord482
ord5148
ord4694
ord4220
ord2584
ord3654
ord2438
ord1644
ord3797
ord941
ord924
ord5265
ord4376
ord4998
ord2514
ord6052
ord1775
ord5280
ord4425
ord3597
ord2575
ord4396
ord3574
ord324
ord2302
ord4234
ord4710
ord4853
ord3721
ord3692
ord6880
ord3573
ord5875
ord2380
ord5782
ord4123
ord6696
ord3920
ord3998
ord3302
ord815
ord4274
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord2725
ord4079
ord4698
ord5307
ord5714
ord4622
ord3738
ord561
ord1200
ord668
ord2770
ord356
ord1205
ord2621
ord1134
ord860
ord5289
ord3181
ord3178
ord2781
ord686
ord384
ord2096
ord4287
ord2867
ord2859
ord5787
ord283
ord472
ord2567
ord4246
ord2107
ord3495
ord2863
ord3353
ord1133
ord6571
ord5460
ord3869
ord2127
ord2391
ord5102
ord3350
ord975
ord2880
ord4153
ord2383
ord4437
ord5255
ord3651
ord5284
ord2558
ord2627
ord692
ord3452
ord3803
ord6307
ord4167
ord521
ord1193
ord3698
ord5105
ord4468
ord4428
ord765
ord796
ord529
ord402
ord3373
ord4145
ord2092
ord2078
ord2108
ord3294
ord3482
ord6069
ord6067
ord6000
ord2117
ord4457
ord6197
ord6379
ord5032
ord4724
ord6242
ord6605
ord2971
ord5759
ord5756
ord4330
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord6194
ord5791
ord2713
ord2860
ord5303
ord1944
ord4083
ord1861
ord1247
ord1577
ord535
ord551
ord4129
ord2763
ord5710
ord922
ord1938
ord1842
ord4216
ord1859
ord2448
ord4204
ord2841
ord2044
ord5450
ord5834
ord5440
ord6383
ord6394
ord3831
ord2243
ord6209
ord1832
ord350
ord2818
ord1803
ord4230
ord4454
ord1864
ord2652
ord772
ord500
ord3089
ord5153
ord2714
ord4023
ord2569
ord6458
ord2767
ord5860
ord6142
ord3521
ord6402
ord5103
ord5473
ord4151
ord5282
ord1724
ord5256
ord407
ord706
ord645
ord4247
ord2088
ord4160
ord2151
ord6412
ord4815
ord4816
ord5030
ord1708
ord4658
ord4284
ord3092
ord4268
ord6794
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord2582
ord4402
ord3640
ord693
ord4243
ord6905
ord6673
ord548
ord5572
ord4267
ord6230
ord6148
ord2568
ord6268
ord6271
ord3225
ord3257
ord3912
ord2544
ord2543
ord2511
ord978
ord1731
ord5851
ord2883
ord2398
ord2418
ord6224
ord6226
ord2429
ord2250
ord4732
ord4541
ord5477
ord2259
ord4836
ord4440
ord3720
ord527
ord794
ord4264
ord6232
ord3716
ord3719
ord6111
ord1771
ord6366
ord2413
ord2024
ord4219
ord2581
ord4401
ord3639
ord2152
ord1768
ord1270
ord1232
ord939
ord6877
ord3755
ord1920
ord3289
ord2408
ord2614
ord1576
ord6662
ord5856
ord4202
ord926
ord940
ord6663
ord3830
ord3402
ord2976
ord3081
ord2985
ord3262
ord562
ord5789
ord816
ord2405
ord5781
ord3084
ord2884
ord1883
ord1217
ord536
ord1176
ord1229
ord6380
ord6403
ord2919
ord6453
ord4124
ord2089
ord1829
ord2801
ord882
ord1140
ord291
ord6109
ord2546
ord6335
ord6874
ord290
ord2623
ord614
ord1799
ord1127
ord1567
ord268
ord1265
ord1234
ord979
ord4114
ord3815
ord6442
ord2639
ord4021
ord3136
ord4465
ord3259
ord3147
ord2982
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1776
ord4078
ord6055
ord2864
ord5873
ord2753
ord3811
ord2820
ord5785
ord2634
ord3706
ord289
ord613
ord470
ord2754
ord755
ord6128
ord6130
ord6129
ord2086
ord4224
ord818
ord3742
ord3571
ord5283
ord4772
ord4467
ord2252
ord1949
ord5031
ord5910
ord4299
ord4427
ord4995
ord5254
ord1233
ord4245
ord674
ord4458
ord3481
ord5484
ord3870
ord4413
ord6195
ord1175
ord401
ord2445
ord4436
ord1665
ord2649
ord2382
ord5237
ord4077
ord4152
ord2878
ord2879
ord3403
ord5472
ord976
ord5012
ord3351
ord4303
ord5104
ord5100
ord3059
ord2390
ord2723
ord2101
ord5101
ord1858
ord3874
ord3873
ord6199
ord6215
ord2642
ord2379
ord4275
ord567
ord540
ord3610
ord4424
ord4627
ord4080
ord3079
ord3701
ord3825
ord2915
ord858
ord800
ord323
ord1640
ord6227
ord6021
ord6192
ord6186
ord6189
ord6170
ord1641
ord6172
ord5788
ord2450
ord2414
ord537
ord4297
ord4133
ord640
ord3663
ord3626
ord3693
ord3619
ord609
ord795
ord656
ord641
ord616
msvcrt
atoi
strncmp
strchr
floor
toupper
_vsnprintf
fclose
fopen
strrchr
time
_strnicmp
malloc
_strdup
exit
setlocale
tolower
rand
bsearch
qsort
fwrite
_purecall
_stricmp
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
fputs
fread
fprintf
strftime
localtime
_exit
raise
atol
strcspn
strstr
isupper
islower
strspn
_strupr
_itoa
wcscmp
wcsstr
_wcslwr
memcpy
strcpy
calloc
srand
pow
abs
strcmp
sqrt
strlen
_setmbcp
sprintf
_ftol
free
realloc
strncpy
sscanf
fgets
mktime
fseek
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
??0exception@@QAE@ABQBD@Z
_CxxThrowException
atof
wcslen
printf
_mbscmp
_mbsstr
strtoul
__dllonexit
isalpha
isdigit
isalnum
isspace
memmove
__CxxFrameHandler
_onexit
_except_handler3
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
memset
_controlfp
kernel32
LoadLibraryExA
GetWindowsDirectoryA
GetShortPathNameA
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
GetModuleHandleA
CreateDirectoryA
GetTempPathA
GetTempFileNameA
MultiByteToWideChar
lstrcpynA
IsBadReadPtr
OpenProcess
GetCurrentThreadId
GetSystemDirectoryA
GetComputerNameA
LoadLibraryA
GetDriveTypeA
GetVolumeInformationA
GetDiskFreeSpaceA
SetFilePointer
FindNextFileA
GetUserDefaultLangID
GetVersionExA
GlobalMemoryStatus
GetProcAddress
FreeLibrary
lstrcatA
lstrlenA
WinExec
lstrcpyA
ReleaseMutex
OpenFileMappingA
LocalAlloc
LocalFree
GetCommandLineA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CreateMutexA
GetModuleFileNameA
CopyFileA
GetTickCount
GetFileTime
FindFirstFileA
FindClose
GetFileAttributesA
SetFileAttributesA
MoveFileA
GlobalFree
GlobalUnlock
GlobalReAlloc
GlobalAlloc
GlobalLock
GetCurrentDirectoryA
SetCurrentDirectoryA
GetEnvironmentStrings
CreateProcessA
GetExitCodeProcess
WaitForSingleObject
FreeEnvironmentStringsA
MulDiv
GetLastError
WriteFile
CreateFileA
GetFileSize
CloseHandle
ReadFile
DeleteFileA
Sleep
FreeResource
LockResource
LoadResource
FindResourceA
InterlockedIncrement
GetStartupInfoA
user32
EnableWindow
GetKeyState
GetParent
IsWindowVisible
TabbedTextOutA
MessageBoxA
LoadCursorA
SetCursor
MessageBeep
PostMessageA
SendMessageA
ScrollDC
CreateCaret
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClipboardData
SetCapture
KillTimer
ReleaseCapture
GetActiveWindow
GetWindow
GetCursorPos
GetTabbedTextExtentA
DestroyCaret
GetFocus
CreateIconIndirect
PeekMessageA
GetSystemMetrics
EnumChildWindows
SetWindowRgn
IsWindow
GetClassInfoA
UpdateWindow
CopyIcon
RegisterClassA
DefWindowProcA
DestroyCursor
FrameRect
DrawFocusRect
BringWindowToTop
SetTimer
GetClientRect
LoadIconA
GetWindowRect
ScreenToClient
PtInRect
GetIconInfo
CreateWindowExA
DestroyWindow
AppendMenuA
SetParent
GetDlgItem
GetKeyboardLayout
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
EnableScrollBar
ShowCaret
SetCaretPos
HideCaret
CopyAcceleratorTableA
SetCursorPos
GetSubMenu
GetMenuStringA
MapWindowPoints
IsClipboardFormatAvailable
GetMenuItemID
LoadMenuA
GetLastActivePopup
wsprintfA
RedrawWindow
GetClassLongA
FillRect
BeginDeferWindowPos
EndDeferWindowPos
IsChild
CallWindowProcA
GetForegroundWindow
CallNextHookEx
InflateRect
SetWindowLongA
UnhookWindowsHookEx
SetWindowsHookExA
GetSystemMenu
SetRectEmpty
SystemParametersInfoA
DrawStateA
DestroyIcon
WindowFromPoint
GetCapture
GetMessageA
DispatchMessageA
GetDlgCtrlID
DrawFrameControl
LoadImageA
GrayStringA
DrawTextA
SetRect
GetMenuItemCount
CheckMenuItem
DeleteMenu
IsIconic
SetActiveWindow
SetForegroundWindow
GetMenu
SetMenu
IsZoomed
GetWindowPlacement
MoveWindow
SetWindowPlacement
SetFocus
GetWindowTextA
GetDC
ReleaseDC
CopyRect
SetWindowPos
RegisterWindowMessageA
EqualRect
IsRectEmpty
IntersectRect
GetSysColor
InvalidateRect
GetWindowLongA
GetTopWindow
GetClassNameA
ClientToScreen
OffsetRect
GetDesktopWindow
CreatePopupMenu
InsertMenuA
LoadBitmapA
gdi32
Rectangle
SetPixel
DPtoLP
RealizePalette
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreatePalette
GetDIBColorTable
CreateHalftonePalette
DeleteDC
GetClipBox
SetTextColor
DeleteObject
CreateRectRgn
GetTextColor
GetPixel
EnumFontFamiliesA
PatBlt
SetBkColor
SetBkMode
FillRgn
FrameRgn
SelectClipRgn
OffsetRgn
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
StretchBlt
CreateBitmap
LineTo
MoveToEx
CombineRgn
GetStockObject
CreateSolidBrush
GetObjectA
CreateCompatibleDC
CreateCompatibleBitmap
CreateRectRgnIndirect
BitBlt
StartPage
CreateDCA
GetDeviceCaps
CreatePen
CreateFontIndirectA
SelectObject
GetTextMetricsA
EndDoc
EndPage
StretchDIBits
GetDIBits
GetTextCharsetInfo
Polygon
GetDCOrgEx
CreatePatternBrush
GetTextExtentPoint32A
winspool.drv
WritePrinter
StartDocPrinterA
StartPagePrinter
EndPagePrinter
EndDocPrinter
ClosePrinter
OpenPrinterA
advapi32
RegSetValueExA
InitializeSecurityDescriptor
RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegDeleteKeyA
RegCreateKeyExA
SetSecurityDescriptorDacl
RegEnumKeyExA
shell32
SHGetPathFromIDListA
SHGetMalloc
DragQueryFileA
ShellExecuteA
SHGetDesktopFolder
comctl32
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Draw
ImageList_Add
ImageList_AddMasked
ImageList_GetIcon
ole32
OleInitialize
CoInitialize
CoCreateInstance
OleUninitialize
oleaut32
SysStringLen
SysFreeString
SysAllocString
wsock32
inet_ntoa
closesocket
setsockopt
bind
htons
socket
WSAGetLastError
select
__WSAFDIsSet
recvfrom
inet_addr
ioctlsocket
gethostbyname
recv
send
connect
gethostname
sendto
msvcp60
??0logic_error@std@@QAE@ABV01@@Z
??1out_of_range@std@@UAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??_7out_of_range@std@@6B@
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??0out_of_range@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0out_of_range@std@@QAE@ABV01@@Z
Sections
.text Size: 896KB - Virtual size: 894KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 88KB - Virtual size: 84KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 48KB - Virtual size: 549KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 804KB - Virtual size: 800KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
SiGNMAKER/CimcoDNC.exe.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 48KB - Virtual size: 152KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
SiGNMAKER/DNCAdmin5.exe.exe windows:4 windows x86 arch:x86
75afedaed1fe76a0f37ea1ce974a2c53
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
netapi32
Netbios
mfc42
ord1200
ord1247
ord6438
ord1134
ord1205
ord2621
ord2586
ord4405
ord3723
ord3698
ord765
ord797
ord6195
ord2078
ord2108
ord5655
ord2118
ord2863
ord2086
ord640
ord1640
ord323
ord2558
ord755
ord470
ord3870
ord6605
ord2546
ord291
ord4774
ord4538
ord613
ord289
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord616
ord816
ord2753
ord562
ord2513
ord293
ord3742
ord818
ord4275
ord3706
ord2754
ord2567
ord5782
ord3317
ord540
ord3610
ord535
ord5789
ord2763
ord5875
ord283
ord4133
ord4297
ord5788
ord472
ord3693
ord5787
ord3920
ord2587
ord4406
ord3729
ord804
ord4267
ord5810
ord5481
ord2031
ord1971
ord966
ord3570
ord278
ord605
ord1670
ord6221
ord4335
ord4411
ord4447
ord4863
ord4919
ord4975
ord5809
ord5478
ord5796
ord668
ord3181
ord2781
ord2770
ord356
ord2820
ord860
ord2077
ord2029
ord551
ord5480
ord4058
ord3874
ord2860
ord4243
ord1193
ord6673
ord548
ord6242
ord6129
ord5148
ord6128
ord6130
ord5785
ord2243
ord941
ord5572
ord2915
ord858
ord924
ord5873
ord6172
ord2971
ord5759
ord6192
ord5756
ord6186
ord4330
ord6189
ord6021
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord2713
ord4129
ord5710
ord922
ord2107
ord1938
ord1858
ord3495
ord1842
ord4216
ord4083
ord1859
ord2448
ord4204
ord2841
ord2044
ord5450
ord815
ord5440
ord6383
ord6394
ord3571
ord2405
ord6209
ord1803
ord4230
ord1233
ord4454
ord1864
ord3701
ord772
ord500
ord5153
ord2714
ord4023
ord2569
ord6458
ord2767
ord5860
ord6142
ord3986
ord2723
ord2390
ord3059
ord5100
ord5103
ord4467
ord4303
ord3350
ord5012
ord975
ord5473
ord3403
ord2879
ord2878
ord4151
ord4077
ord5237
ord5282
ord2649
ord1665
ord4436
ord1724
ord5256
ord4427
ord407
ord706
ord645
ord4247
ord2088
ord4160
ord2151
ord6412
ord5484
ord4815
ord4816
ord5030
ord3797
ord1708
ord4658
ord6197
ord4268
ord6794
ord3721
ord6194
ord1576
ord4853
ord5981
ord4710
ord6199
ord6215
ord6880
ord4299
ord1768
ord4376
ord4683
ord4234
ord2302
ord561
ord3738
ord4622
ord5714
ord5289
ord5307
ord4698
ord3084
ord2884
ord1883
ord1217
ord2818
ord1176
ord536
ord5856
ord939
ord1229
ord2919
ord882
ord1799
ord1140
ord290
ord614
ord6109
ord6335
ord2623
ord4124
ord3803
ord5460
ord6571
ord1829
ord6380
ord1234
ord979
ord6379
ord4114
ord3815
ord3353
ord5265
ord6442
ord2639
ord4021
ord1127
ord1567
ord268
ord1265
ord5781
ord1133
ord6877
ord6874
ord2152
ord1949
ord5608
ord3988
ord541
ord5861
ord2393
ord403
ord273
ord6387
ord2801
ord5443
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord4274
ord4673
ord6905
ord3302
ord1168
ord1669
ord2652
ord6696
ord2862
ord4284
ord693
ord3640
ord3370
ord4402
ord2582
ord6675
ord3286
ord3998
ord6007
ord6907
ord6888
ord2096
ord384
ord686
ord4123
ord4694
ord3089
ord6111
ord793
ord790
ord3719
ord3716
ord656
ord3873
ord1105
ord355
ord2515
ord3499
ord4224
ord3092
ord1175
ord2642
ord1644
ord6270
ord2438
ord3654
ord2584
ord4220
ord521
ord4167
ord6307
ord823
ord4287
ord413
ord711
ord2379
ord4476
ord2864
ord2380
ord1146
ord1641
ord2859
ord537
ord800
ord3619
ord2414
ord3663
ord3626
ord795
ord5834
ord3573
ord1969
ord1989
ord603
ord703
ord4202
ord940
ord1197
ord2571
ord1570
ord3752
ord1270
ord2089
ord2614
ord6140
ord5603
ord3981
ord5858
ord5606
ord6453
ord1180
ord1568
ord341
ord654
ord1642
ord2764
ord1187
ord4317
ord3138
ord2737
ord825
ord324
ord567
ord641
ord609
ord3574
ord4424
ord4627
ord4080
ord3079
ord3825
ord3831
ord3830
ord3402
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4396
ord1776
ord4078
ord6055
ord2575
ord3597
ord4425
ord5280
ord4407
ord1775
ord6052
ord2514
ord4998
msvcrt
qsort
sscanf
_CIpow
_strnicmp
strcspn
strncpy
_setmbcp
calloc
abs
strcmp
_wcslwr
wcsstr
wcscmp
sqrt
pow
_mbschr
memcpy
strlen
strcpy
_mbsnbcpy
memset
_strupr
_strdup
_stricmp
setlocale
srand
memmove
strstr
isalnum
fwrite
free
rand
_vsnprintf
malloc
realloc
strftime
localtime
fread
isspace
toupper
isalpha
strncmp
atol
fprintf
fgets
mktime
fseek
tolower
isupper
printf
_mbsicmp
_mbscmp
wcslen
??1type_info@@UAE@XZ
__dllonexit
_onexit
_except_handler3
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
bsearch
_purecall
fopen
fputs
fclose
strrchr
isdigit
atoi
strspn
time
_ftol
floor
atof
strchr
sprintf
__CxxFrameHandler
kernel32
GetWindowsDirectoryA
GetShortPathNameA
lstrcpyA
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
GetModuleHandleA
GetModuleFileNameA
lstrlenA
MultiByteToWideChar
CreateDirectoryA
GetUserDefaultLangID
GetTempPathA
GetVersionExA
FileTimeToLocalFileTime
GlobalAlloc
GlobalFree
GetSystemDirectoryA
GetDriveTypeA
GetVolumeInformationA
GetDiskFreeSpaceA
GetCurrentProcessId
OpenFileMappingA
UnmapViewOfFile
CreateEventA
LocalAlloc
CreateFileMappingA
MapViewOfFile
LocalFree
SetFileAttributesA
GetFileAttributesA
MoveFileA
SetEndOfFile
SetFilePointer
ReadFile
WriteFile
GetFileTime
CreateFileA
GetFileSize
GetTempFileNameA
GetSystemTimeAsFileTime
GetSystemTimeAdjustment
QueryPerformanceFrequency
QueryPerformanceCounter
GetLogicalDrives
GetCurrentThreadId
TlsSetValue
GetExitCodeThread
TerminateThread
GetCurrentProcess
DuplicateHandle
ResumeThread
LoadLibraryA
GetProcAddress
FreeLibrary
GetComputerNameA
CreateProcessA
CopyFileA
GetLastError
DeleteFileA
GetCommandLineA
WaitForMultipleObjects
CreateMutexA
WaitForSingleObject
ReleaseMutex
CloseHandle
SetEvent
Sleep
MulDiv
GetTickCount
GetVersion
FreeResource
LockResource
LoadResource
FindResourceA
InterlockedIncrement
GetCurrentDirectoryA
GetStartupInfoA
user32
SetForegroundWindow
SetActiveWindow
SetCursor
LoadCursorA
DeleteMenu
IsIconic
GetSystemMetrics
DrawIcon
BringWindowToTop
GetDlgItem
GetKeyboardLayout
MapVirtualKeyExA
GetKeyNameTextA
IsCharLowerA
CopyAcceleratorTableA
SetWindowRgn
SetCursorPos
GetMenu
RegisterWindowMessageA
MessageBoxA
SetParent
CreatePopupMenu
InsertMenuA
EnableMenuItem
ReleaseCapture
ClientToScreen
GetCursorPos
ScreenToClient
SetCapture
PostMessageA
SetTimer
GetParent
GetWindow
GetWindowLongA
ShowWindow
GetClientRect
IsWindowVisible
InvalidateRect
GetSysColor
LoadBitmapA
GetDC
ReleaseDC
EnableWindow
SendMessageA
GetWindowRect
OffsetRect
ModifyMenuA
GetSubMenu
LoadIconA
GetDesktopWindow
GetMenuItemID
GetMenuItemCount
CreateMenu
PtInRect
IsZoomed
GetFocus
SetRectEmpty
IsRectEmpty
KillTimer
GetDlgCtrlID
GetClassNameA
GetWindowPlacement
DispatchMessageA
GetMessageA
PeekMessageA
SetFocus
GetForegroundWindow
DestroyCursor
DefWindowProcA
EnableScrollBar
RegisterClassA
CopyIcon
DrawFrameControl
GetCapture
WindowFromPoint
TabbedTextOutA
DrawTextA
GrayStringA
GetMenuItemInfoA
DestroyIcon
DrawStateA
SystemParametersInfoA
CopyRect
RemovePropA
SetPropA
GetPropA
SetMenuItemInfoA
GetSystemMenu
IsMenu
GetMenuItemRect
FrameRect
DrawFocusRect
GetIconInfo
CreateWindowExA
LoadImageA
DestroyWindow
IntersectRect
AppendMenuA
wsprintfA
RedrawWindow
GetClassLongA
FillRect
BeginDeferWindowPos
EndDeferWindowPos
GetKeyState
IsChild
CallWindowProcA
CallNextHookEx
EqualRect
InflateRect
SetWindowLongA
UnhookWindowsHookEx
SetMenu
GetTabbedTextExtentA
SetRect
UpdateWindow
DrawIconEx
DeferWindowPos
ShowScrollBar
MessageBeep
GetActiveWindow
CreateIconIndirect
IsWindow
GetLastActivePopup
IsClipboardFormatAvailable
MapWindowPoints
ShowCaret
HideCaret
GetMenuStringA
LoadMenuA
SetWindowsHookExA
gdi32
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextMetricsA
EnumFontFamiliesA
GetDeviceCaps
PatBlt
SetBkColor
GetPixel
GetTextColor
GetCurrentObject
DeleteObject
SetTextColor
GetClipBox
DeleteDC
CreateFontIndirectA
GetObjectA
CreateCompatibleBitmap
BitBlt
FillRgn
CreateRectRgn
CombineRgn
CreatePen
Rectangle
CreateRectRgnIndirect
SetPixel
GetViewportExtEx
GetWindowOrgEx
CreateCompatibleDC
SelectObject
CreateSolidBrush
GetBkColor
GetTextCharsetInfo
Polygon
StretchDIBits
CreatePatternBrush
CreateBitmap
CreateDIBSection
GetDIBits
GetDCOrgEx
GetStockObject
SetBkMode
GetViewportOrgEx
GetWindowExtEx
GetTextExtentPoint32A
advapi32
SetSecurityDescriptorDacl
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
InitializeSecurityDescriptor
shell32
ShellExecuteA
DragQueryPoint
DragQueryFileA
ExtractIconExA
comctl32
ImageList_DragEnter
ImageList_DragLeave
ImageList_BeginDrag
ImageList_DragMove
ImageList_EndDrag
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_Draw
ImageList_SetBkColor
ImageList_GetImageCount
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_DragShowNolock
ImageList_Add
ImageList_Merge
ole32
CoCreateInstance
CoInitialize
oleaut32
SysStringLen
SysAllocString
SysFreeString
wsock32
connect
send
recv
gethostbyname
socket
closesocket
bind
htons
sendto
select
__WSAFDIsSet
recvfrom
inet_addr
ioctlsocket
listen
inet_ntoa
setsockopt
WSAGetLastError
WSASetLastError
Sections
.text Size: 720KB - Virtual size: 717KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 96KB - Virtual size: 93KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 28KB - Virtual size: 170KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 180KB - Virtual size: 177KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
SiGNMAKER/DNCMax5.exe.exe windows:4 windows x86 arch:x86
e672d41603abb6b73bd7b6ecdb9e4f1e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mpr
WNetOpenEnumA
WNetEnumResourceA
WNetCloseEnum
WNetGetConnectionA
netapi32
Netbios
mfc42
ord293
ord6270
ord2514
ord613
ord289
ord4476
ord3706
ord2652
ord1669
ord2086
ord5787
ord5788
ord283
ord472
ord2859
ord4376
ord3610
ord3873
ord2971
ord5759
ord6192
ord5756
ord6186
ord4330
ord6189
ord6021
ord6172
ord5873
ord5789
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord640
ord2713
ord1640
ord323
ord3693
ord3573
ord5875
ord4133
ord4297
ord5303
ord1944
ord4083
ord1861
ord5810
ord5481
ord2031
ord1971
ord966
ord3570
ord278
ord605
ord1670
ord6221
ord4335
ord4411
ord4447
ord4863
ord4919
ord4975
ord5809
ord5478
ord5796
ord2820
ord535
ord2077
ord2029
ord551
ord5480
ord3178
ord2721
ord3319
ord3311
ord858
ord4129
ord2763
ord5710
ord922
ord2754
ord2107
ord1938
ord1858
ord3495
ord1842
ord4216
ord1859
ord2448
ord2096
ord384
ord4204
ord2841
ord2044
ord5450
ord5834
ord5440
ord6383
ord6394
ord2915
ord2513
ord1832
ord350
ord2818
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord616
ord4275
ord4284
ord6673
ord548
ord3742
ord818
ord6242
ord6129
ord5148
ord4694
ord6128
ord6130
ord2753
ord5785
ord941
ord5572
ord635
ord1193
ord2621
ord1134
ord1247
ord355
ord2515
ord3499
ord656
ord4853
ord2642
ord6880
ord4299
ord291
ord2863
ord1232
ord909
ord4185
ord3435
ord5628
ord696
ord394
ord354
ord5583
ord2393
ord6571
ord1871
ord3692
ord353
ord1083
ord5600
ord773
ord501
ord1105
ord521
ord4167
ord6307
ord1200
ord860
ord561
ord540
ord3738
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord3953
ord5714
ord5289
ord5307
ord4698
ord4079
ord2725
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord1168
ord795
ord641
ord2546
ord470
ord755
ord2379
ord2438
ord4710
ord3092
ord2860
ord1641
ord1644
ord537
ord2118
ord5655
ord2380
ord2078
ord6195
ord1175
ord3654
ord2584
ord4220
ord4224
ord3870
ord2864
ord1768
ord5981
ord6215
ord4234
ord2302
ord2414
ord3663
ord3626
ord324
ord567
ord1146
ord797
ord609
ord3723
ord4627
ord3402
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4405
ord1776
ord4078
ord6055
ord2586
ord3619
ord3571
ord3721
ord4407
ord3574
ord4396
ord2575
ord3597
ord4425
ord5280
ord1775
ord6052
ord4998
ord5265
ord356
ord2770
ord2781
ord3181
ord668
ord6199
ord1577
ord317
ord268
ord5200
ord1978
ord1567
ord825
ord413
ord823
ord711
ord800
ord815
ord4673
ord4058
ord1576
msvcrt
fwrite
atol
fread
strchr
free
strftime
localtime
fputc
realloc
fseek
strspn
ftell
fgets
strncmp
fputs
_ftol
isspace
bsearch
_vsnprintf
raise
_exit
strrchr
memcpy
memset
getenv
fgetc
_onexit
strlen
strcmp
calloc
pow
strcpy
vfprintf
_iob
memcmp
_stricmp
_strdup
_strupr
_itoa
_setmbcp
isalnum
toupper
atoi
memmove
fopen
fprintf
fclose
time
setlocale
srand
rand
sprintf
strncpy
_strnicmp
malloc
isdigit
_purecall
printf
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
isalpha
floor
difftime
strcspn
strstr
sscanf
mktime
qsort
atof
__CxxFrameHandler
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
??0exception@@QAE@ABQBD@Z
_CxxThrowException
_pctype
_isctype
__mb_cur_max
tolower
isupper
vsprintf
wcslen
_mbsstr
__dllonexit
??1type_info@@UAE@XZ
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_mbsnbcpy
kernel32
GetWindowsDirectoryA
GlobalLock
GetShortPathNameA
lstrcpyA
lstrcatA
WinExec
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
GetModuleHandleA
CreateDirectoryA
GetTempPathA
lstrcpynA
OpenProcess
GlobalUnlock
FileTimeToLocalFileTime
GlobalAlloc
GlobalFree
GetSystemDirectoryA
LoadLibraryA
OpenFileMappingA
CreateEventA
SetFileAttributesA
GetFileAttributesA
MoveFileA
SetEndOfFile
SetFilePointer
ReadFile
WriteFile
GetFileTime
CreateFileA
GetFileSize
GetTempFileNameA
GetSystemTimeAsFileTime
GetSystemTimeAdjustment
QueryPerformanceFrequency
QueryPerformanceCounter
GetExitCodeThread
SetEvent
GetCommandLineA
GetUserDefaultLangID
GlobalMemoryStatus
lstrlenA
MultiByteToWideChar
MulDiv
GetVolumeInformationA
FindFirstFileA
FindNextFileA
FindClose
GetProcAddress
FreeLibrary
GetModuleFileNameA
GetCurrentThreadId
TlsSetValue
TlsGetValue
TerminateThread
GetCurrentProcess
DuplicateHandle
ResumeThread
GetLogicalDrives
GetDriveTypeA
GetDiskFreeSpaceA
GetVersionExA
DeleteFileA
WaitForMultipleObjects
SetUnhandledExceptionFilter
TlsAlloc
GetCurrentProcessId
GetTickCount
GetComputerNameA
CreateFileMappingA
MapViewOfFile
Sleep
UnmapViewOfFile
CreateProcessA
CopyFileA
LocalAlloc
LocalFree
CreateMutexA
WaitForSingleObject
GetLastError
ReleaseMutex
CloseHandle
IsBadReadPtr
GetModuleHandleW
LocalUnlock
LocalLock
MoveFileExA
GlobalHandle
_lread
_lwrite
_llseek
_lclose
GetStartupInfoA
user32
CopyIcon
RegisterClassA
LoadCursorA
SetCursor
EnableScrollBar
DefWindowProcA
LoadMenuA
SetMenu
RegisterWindowMessageA
PostMessageA
DestroyCursor
ModifyMenuA
EnumWindows
GetFocus
FillRect
FrameRect
DrawFocusRect
GetIconInfo
GetClientRect
GetWindowRect
GetDesktopWindow
EnableWindow
LoadIconA
CreateWindowExA
LoadImageA
DestroyWindow
wsprintfA
SetForegroundWindow
BringWindowToTop
MessageBoxA
OffsetRect
InflateRect
SetWindowLongA
GetMenuItemRect
IsMenu
GetSystemMenu
SetRectEmpty
SetMenuItemInfoA
GetMenu
GetPropA
SetPropA
RemovePropA
CopyRect
SystemParametersInfoA
DrawStateA
DestroyIcon
LoadBitmapA
GetMenuItemInfoA
GrayStringA
DrawTextA
TabbedTextOutA
GetCapture
SetCapture
PtInRect
GetMessageA
ClientToScreen
DispatchMessageA
ReleaseCapture
KillTimer
GetDlgCtrlID
DrawFrameControl
IsRectEmpty
ReleaseDC
GetDC
GetSysColor
PeekMessageA
MessageBeep
GetWindow
IsWindowVisible
CreatePopupMenu
InsertMenuA
SetMenuDefaultItem
GetCursorPos
GetWindowLongA
InvalidateRect
GetMenuItemCount
GetMenuItemID
GetSubMenu
IsIconic
GetSystemMetrics
DrawIcon
SendMessageA
SetTimer
GetWindowTextA
gdi32
GetCurrentObject
GetTextColor
GetPixel
SetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CombineRgn
GetTextMetricsA
DeleteObject
GetDeviceCaps
SetBkColor
SetBkMode
SetBitmapBits
GetBitmapBits
SetTextColor
GetStockObject
CreateSolidBrush
CreatePen
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
Rectangle
CreateRectRgnIndirect
CreatePalette
FillRgn
SelectObject
GetTextExtentPoint32A
GetObjectA
CreateFontIndirectA
CreateRectRgn
winspool.drv
EnumPrintersA
advapi32
RegOpenKeyExA
InitializeSecurityDescriptor
StartServiceCtrlDispatcherA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegEnumValueA
SetSecurityDescriptorDacl
RegEnumKeyExA
RegQueryValueExA
RegCloseKey
SetServiceStatus
RegisterServiceCtrlHandlerA
shell32
ShellExecuteA
Shell_NotifyIconA
comctl32
ImageList_GetIcon
ImageList_Draw
ImageList_AddMasked
ole32
CoInitialize
CoCreateInstance
oleaut32
SysFreeString
SysStringLen
SysAllocString
wsock32
__WSAFDIsSet
gethostname
connect
gethostbyname
sendto
recvfrom
send
recv
setsockopt
htons
socket
inet_ntoa
bind
listen
closesocket
WSAGetLastError
select
accept
WSASetLastError
inet_addr
ioctlsocket
msvcp60
??0logic_error@std@@QAE@ABV01@@Z
??1out_of_range@std@@UAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??_7out_of_range@std@@6B@
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??0out_of_range@std@@QAE@ABV01@@Z
Sections
.text Size: 488KB - Virtual size: 486KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 48KB - Virtual size: 45KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 180KB - Virtual size: 368KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 44KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
SiGNMAKER/DNCMaxCtrl.exe.exe windows:4 windows x86 arch:x86
09d0478591d4f788cb3e5ea416c25237
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
Sections
.text Size: 52KB - Virtual size: 628KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
SiGNMAKER/DNCMaxServiceManager.exe.exe windows:4 windows x86 arch:x86
8120728b148f2ce47e2452ed8936b3c9
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
netapi32
Netbios
mfc42
ord535
ord860
ord1247
ord551
ord3610
ord656
ord4275
ord3873
ord2864
ord6215
ord1193
ord1175
ord640
ord1640
ord323
ord6673
ord548
ord3742
ord818
ord537
ord4284
ord6129
ord5148
ord4694
ord4133
ord4297
ord5875
ord5787
ord5788
ord283
ord472
ord6128
ord6130
ord2753
ord5785
ord289
ord941
ord5572
ord2915
ord540
ord858
ord924
ord2754
ord5873
ord6172
ord4123
ord6880
ord2820
ord356
ord2770
ord2781
ord3181
ord800
ord668
ord1576
ord1105
ord521
ord4167
ord6307
ord823
ord1669
ord5681
ord2652
ord470
ord755
ord2379
ord3092
ord2860
ord1641
ord1168
ord1146
ord3619
ord3571
ord4224
ord5981
ord4853
ord2642
ord4710
ord6199
ord4234
ord2302
ord324
ord567
ord3721
ord4627
ord3402
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1776
ord4078
ord6055
ord3574
ord4396
ord2575
ord3597
ord4425
ord5280
ord1775
ord6052
ord4998
ord4376
ord5265
ord2621
ord2514
ord2414
ord609
ord795
ord641
ord1200
ord3663
ord3626
ord815
ord825
ord561
ord3738
ord4424
ord4622
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord4274
ord711
ord413
ord4673
ord6242
msvcrt
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
_purecall
atof
_except_handler3
fwrite
fread
_strupr
_strdup
_stricmp
fseek
mktime
fgets
fprintf
strspn
_strnicmp
strstr
strcspn
isdigit
strncpy
rand
free
malloc
atol
_vsnprintf
_ftol
atoi
realloc
strncmp
isalpha
toupper
isalnum
isspace
memmove
localtime
strftime
fputs
strchr
fopen
time
strrchr
sscanf
sprintf
__CxxFrameHandler
setlocale
srand
_setmbcp
fclose
kernel32
GetCommandLineA
LocalAlloc
LocalFree
CreateMutexA
WaitForSingleObject
ReleaseMutex
DeleteFileA
OpenFileMappingA
MapViewOfFile
UnmapViewOfFile
CloseHandle
Sleep
GetCurrentProcessId
GetTickCount
HeapFree
GetProcessHeap
HeapReAlloc
HeapAlloc
lstrlenW
MulDiv
GetTempPathA
GetUserDefaultLangID
FreeLibrary
CreateDirectoryA
GetModuleFileNameA
GetModuleHandleA
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetWindowsDirectoryA
GetStartupInfoA
GetProcAddress
SetEvent
ResumeThread
DuplicateHandle
GetCurrentProcess
TerminateThread
GetExitCodeThread
TlsSetValue
GetCurrentThreadId
GetLogicalDrives
QueryPerformanceCounter
QueryPerformanceFrequency
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
CopyFileA
GetTempFileNameA
FindClose
FindNextFileA
FindFirstFileA
GetVolumeInformationA
GetDriveTypeA
GetComputerNameA
GetLastError
GetFileSize
CreateFileA
GetFileTime
WriteFile
ReadFile
SetFilePointer
SetEndOfFile
MoveFileA
GetFileAttributesA
SetFileAttributesA
GetDiskFreeSpaceA
LoadLibraryA
GetSystemDirectoryA
GetVersionExA
lstrlenA
user32
LoadCursorA
SetCursor
SetCapture
ReleaseCapture
KillTimer
EnableScrollBar
DefWindowProcA
DestroyCursor
PeekMessageA
GetMessageA
DispatchMessageA
InvalidateRect
OffsetRect
PostMessageA
GetDlgCtrlID
GetWindowRect
GetWindow
wsprintfW
GetWindowLongA
IsIconic
GetClientRect
GetSystemMetrics
DrawIcon
SetTimer
LoadBitmapA
GetSysColor
CopyIcon
RegisterClassA
MessageBoxA
SendMessageA
EnableWindow
LoadIconA
GetFocus
gdi32
GetBitmapBits
SetBitmapBits
GetStockObject
SelectObject
CreateCompatibleBitmap
Rectangle
BitBlt
CreateCompatibleDC
GetObjectA
CreateFontIndirectA
GetTextExtentPoint32A
advapi32
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
LsaOpenPolicy
LsaAddAccountRights
LsaRemoveAccountRights
LookupAccountNameW
LsaClose
StartServiceA
OpenServiceA
ControlService
QueryServiceStatus
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
RegSetValueExA
CloseServiceHandle
CreateServiceA
OpenSCManagerA
DeleteService
wsock32
recvfrom
__WSAFDIsSet
select
WSAGetLastError
sendto
htons
bind
setsockopt
closesocket
inet_ntoa
socket
gethostbyname
recv
send
connect
ioctlsocket
inet_addr
Sections
.text Size: 144KB - Virtual size: 142KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 44KB - Virtual size: 43KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
SiGNMAKER/Info.txt
-
SiGNMAKER/NCBaseBackup.exe.exe windows:4 windows x86 arch:x86
8ca6062a37a59b4a04e286e5ac49b3ec
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mpr
WNetGetConnectionA
libmysql
mysql_init
mysql_data_seek
mysql_fetch_lengths
mysql_fetch_row
mysql_fetch_field
mysql_field_seek
mysql_errno
mysql_close
mysql_connect
mysql_select_db
mysql_info
mysql_affected_rows
mysql_insert_id
mysql_query
mysql_store_result
mysql_error
mysql_num_fields
mysql_free_result
mysql_escape_string
mysql_num_rows
netapi32
Netbios
mfc42
ord3092
ord2379
ord755
ord470
ord2652
ord1669
ord2915
ord317
ord635
ord775
ord503
ord4099
ord1567
ord268
ord1978
ord2721
ord5200
ord3171
ord3169
ord639
ord3168
ord3170
ord322
ord4129
ord939
ord6877
ord941
ord5710
ord6876
ord3663
ord3811
ord668
ord3181
ord2781
ord2770
ord356
ord5714
ord1105
ord551
ord4275
ord2754
ord2864
ord3089
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord616
ord3873
ord6215
ord3610
ord656
ord640
ord5789
ord2860
ord1640
ord323
ord2859
ord4284
ord2380
ord4123
ord1193
ord1175
ord6673
ord548
ord3626
ord2414
ord1641
ord3742
ord818
ord6242
ord6129
ord5148
ord4694
ord3571
ord4133
ord4297
ord5875
ord5787
ord5788
ord283
ord472
ord6128
ord1168
ord2753
ord5785
ord289
ord3619
ord2243
ord5572
ord3719
ord793
ord5873
ord6172
ord6880
ord5289
ord5307
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord4274
ord4673
ord823
ord5981
ord795
ord3721
ord2642
ord4224
ord4853
ord4710
ord6199
ord4234
ord2302
ord825
ord324
ord567
ord641
ord609
ord3574
ord4424
ord4627
ord4080
ord3079
ord3825
ord3831
ord3830
ord3402
ord2976
ord3081
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4396
ord1776
ord4078
ord6055
ord2575
ord3597
ord4425
ord5280
ord4407
ord1775
ord6052
ord2514
ord4998
ord4376
ord5265
ord1146
ord926
ord922
ord1247
ord2621
ord1200
ord535
ord521
ord4167
ord2818
ord6307
ord858
ord924
ord540
ord860
ord537
ord800
ord561
ord413
ord815
ord711
ord3738
ord6130
ord4622
ord1576
msvcrt
_stricmp
_itoa
_strdup
_strupr
_setmbcp
atol
_ftol
fseek
_except_handler3
atof
wcslen
_CIpow
ftell
_fdopen
_errno
fputc
__dllonexit
_onexit
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
__CxxFrameHandler
sprintf
strchr
memmove
_vsnprintf
realloc
malloc
strcspn
toupper
isalpha
free
strtoul
strtol
?name@type_info@@QBEPBDXZ
tolower
_CxxThrowException
strspn
mktime
strncmp
printf
strstr
fwrite
_purecall
sscanf
_mbscmp
_strnicmp
fgets
fputs
fread
localtime
strftime
setlocale
srand
isspace
isalnum
time
fopen
fprintf
fclose
strrchr
strncpy
bsearch
atoi
?before@type_info@@QBEHABV1@@Z
kernel32
CreateDirectoryA
SetFilePointer
GetModuleHandleA
LocalFileTimeToFileTime
SystemTimeToFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
MulDiv
GetWindowsDirectoryA
GetStartupInfoA
MoveFileA
GetUserDefaultLangID
GetTempPathA
MultiByteToWideChar
lstrlenW
HeapAlloc
HeapReAlloc
GetProcessHeap
HeapFree
SetFileTime
lstrlenA
GetVersionExA
GetSystemDirectoryA
GetComputerNameA
LoadLibraryA
GetVolumeInformationA
GetDiskFreeSpaceA
GetDriveTypeA
Sleep
GetCommandLineA
GetCurrentProcessId
DeleteFileA
CloseHandle
TerminateProcess
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetShortPathNameA
GetTempFileNameA
GetModuleFileNameA
SetFileAttributesA
GetFileAttributesA
FreeLibrary
GetProcAddress
GetLastError
GetFileSize
CreateFileA
GetFileTime
WriteFile
SetEndOfFile
CopyFileA
ReadFile
user32
SendMessageA
LoadCursorA
EnableWindow
LoadIconA
SetTimer
RegisterClassA
CopyIcon
LoadBitmapA
MessageBoxA
DrawIcon
GetSystemMetrics
GetClientRect
IsIconic
PeekMessageA
MessageBeep
wsprintfW
KillTimer
GetParent
GetCursorPos
GetWindow
ReleaseDC
GetDC
DestroyIcon
DestroyWindow
LoadImageA
CreateWindowExA
GetIconInfo
DrawFocusRect
InflateRect
SetCursor
EnableScrollBar
DefWindowProcA
DestroyCursor
GetDlgCtrlID
ReleaseCapture
PostMessageA
GetFocus
GetWindowRect
ClientToScreen
PtInRect
InvalidateRect
DrawStateA
GetCapture
SetCapture
CopyRect
GetSysColor
FillRect
FrameRect
DrawFrameControl
OffsetRect
DrawTextA
gdi32
GetTextExtentPoint32A
GetObjectA
GetBitmapBits
SetBitmapBits
GetStockObject
SelectObject
CreateCompatibleBitmap
Rectangle
BitBlt
SetBkMode
CreateSolidBrush
SetTextColor
SetBkColor
SetPixel
DeleteObject
CreateCompatibleDC
advapi32
RegCreateKeyExA
RegQueryValueExA
LsaOpenPolicy
LsaAddAccountRights
LsaRemoveAccountRights
LookupAccountNameW
LsaClose
StartServiceA
OpenServiceA
ControlService
QueryServiceStatus
DeleteService
OpenSCManagerA
CreateServiceA
CloseServiceHandle
RegOpenKeyExA
RegSetValueExA
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
RegCloseKey
shell32
ExtractIconExA
ole32
CoCreateInstance
CoInitialize
oleaut32
SysFreeString
SysStringLen
SysAllocString
wsock32
setsockopt
sendto
__WSAFDIsSet
recvfrom
inet_addr
gethostname
send
recv
ioctlsocket
gethostbyname
socket
WSAGetLastError
inet_ntoa
bind
htons
connect
closesocket
select
msvcp60
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1ios_base@std@@UAE@XZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1strstream@std@@UAE@XZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??_7ios_base@std@@6B@
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PADH@Z
?seekpos@strstreambuf@std@@MAE?AV?$fpos@H@2@V32@H@Z
?seekoff@strstreambuf@std@@MAE?AV?$fpos@H@2@JW4seekdir@ios_base@2@H@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPBDH@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPADH@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?underflow@strstreambuf@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?pbackfail@strstreambuf@std@@MAEHH@Z
?overflow@strstreambuf@std@@MAEHH@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Init@strstreambuf@std@@IAEXHPAD0H@Z
?_Global@_Locimp@locale@std@@0PAV123@A
?_Init@locale@std@@CAPAV_Locimp@12@XZ
??1strstreambuf@std@@UAE@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?ends@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z
?clear@ios_base@std@@QAEXH_N@Z
??0Init@ios_base@std@@QAE@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
?_Xlen@std@@YAXXZ
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
Sections
.text Size: 864KB - Virtual size: 860KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 120KB - Virtual size: 119KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 48KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
SiGNMAKER/NCBaseServer.exe.exe windows:4 windows x86 arch:x86
8161b8ec0a8d0ea990e7c5207cf2f3ba
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
mpr
WNetGetConnectionA
libmysql
mysql_init
netapi32
Netbios
mfc42
ord6876
msvcrt
_stricmp
user32
SendMessageA
gdi32
GetObjectA
advapi32
LookupAccountNameW
ole32
CoInitialize
oleaut32
SysFreeString
wsock32
socket
msvcp60
?overflow@strstreambuf@std@@MAEHH@Z
Sections
.text Size: 206KB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
-
SiGNMAKER/下载说明.htm.html .js polyglot
-
下载说明.htm.html .js polyglot