c162dbccb802e9d877882b86e71286e0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c162dbccb802e9d877882b86e71286e0_JaffaCakes118
Size

2.0MB
MD5

c162dbccb802e9d877882b86e71286e0
SHA1

7636917cfbc530b478c3ea66f9ea892b589de6dc
SHA256

5031a8426c707b9b2037cc83dfa18a119abb81023ebcbcf40f8711f1937991d4
SHA512

785b3544f8011cec82997eb64820b531cb1a633c00f5f64275f54bb6cb7e2b007e48bae32008714fdd35f437db770589df9b8d0c6c2fa0ab006e778b95335feb
SSDEEP

49152:txfoBmd27fF5092Jmyr8iqON6LO1z7Sj2CCwRFL:tREmde82JmcmO1zAs6L

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
c162dbccb802e9d877882b86e71286e0_JaffaCakes118
unpack001/CPLEX112/bin/x86_win32/$PROGRAMFILES/ILOG-Uninstallers/cplex112.dll.x86_win32-uninstaller.exe
unpack001/CPLEX112/bin/x86_win32/ILOG.CPLEX.dll
unpack001/CPLEX112/bin/x86_win32/ILOG.Concert.dll
unpack001/CPLEX112/bin/x86_win32/cplex112.dll

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/CPLEX112/bin/x86_win32/$PROGRAMFILES/ILOG-Uninstallers/cplex112.dll.x86_win32-uninstaller.exe	nsis_installer_1
static1/unpack001/CPLEX112/bin/x86_win32/$PROGRAMFILES/ILOG-Uninstallers/cplex112.dll.x86_win32-uninstaller.exe	nsis_installer_2

Files

c162dbccb802e9d877882b86e71286e0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 256KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CPLEX112/bin/x86_win32/$PROGRAMFILES/ILOG-Uninstallers/cplex112.dll.x86_win32-uninstaller.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 256KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CPLEX112/bin/x86_win32/ILOG.CPLEX.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 440KB - Virtual size: 438KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CPLEX112/bin/x86_win32/ILOG.CPLEX.xml
.xml
CPLEX112/bin/x86_win32/ILOG.Concert.dll
.dll windows:4 windows x86 arch:x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mscoree

_CorDllMain

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CPLEX112/bin/x86_win32/cplex112.dll
.dll windows:5 windows x86 arch:x86

931192fbb9879dc6130c4849b2eab82a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

WSAStartup
ioctlsocket
WSAGetLastError
connect
socket
htons
gethostbyname
closesocket
setsockopt
recv
select
send

advapi32

GetUserNameA

kernel32

CreateDirectoryA
DeleteFileA
SetEndOfFile
CreateFileA
RemoveDirectoryA
SetStdHandle
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
CompareStringW
CompareStringA
HeapSize
GetCPInfo
Sleep
HeapAlloc
GetProcessHeap
GetModuleFileNameA
HeapFree
GetVersionExA
GetLastError
GetVolumeInformationA
GetDriveTypeA
GetComputerNameA
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
GetSystemTimeAsFileTime
DeleteCriticalSection
InitializeCriticalSection
GetTickCount
GetProcessTimes
GetCurrentProcess
GetSystemInfo
FormatMessageA
LoadLibraryA
GetThreadLocale
GetModuleHandleW
GetProcAddress
ExitProcess
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
GetFileAttributesA
HeapReAlloc
CloseHandle
CreateProcessA
DuplicateHandle
ExitThread
ResumeThread
CreateThread
WriteConsoleW
GetFileType
GetStdHandle
RaiseException
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetModuleHandleA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetEnvironmentVariableW
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
WideCharToMultiByte
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
WriteFile
SetHandleCount
GetStartupInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
InitializeCriticalSectionAndSpinCount
GetFullPathNameA
GetCurrentDirectoryA
GetTimeZoneInformation
LCMapStringA
MultiByteToWideChar
LCMapStringW
ReadFile
SetFilePointer
CreatePipe
GetExitCodeProcess
WaitForSingleObject
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStringTypeA
GetStringTypeW
GetLocaleInfoA

Exports

Exports

?Java_ilog_cplex_Cplex_CPXEgeneric_lock@@YGXPAUJNIEnv_@@PAV_jclass@@PAV_jintArray@@@Z
?Java_ilog_cplex_Cplex_CPXEgeneric_unlock@@YGXPAUJNIEnv_@@PAV_jclass@@PAV_jintArray@@@Z
CPXEaddabs
CPXEaddindconstr
CPXEaddmaxexpr
CPXEaddminexpr
CPXEaddpwl
CPXEaddsetvar
CPXEaddsetvarcard
CPXEaddsetvardomain
CPXEaddsetvareq
CPXEaddsetvarintersect
CPXEaddsetvarintersection
CPXEaddsetvarmax
CPXEaddsetvarmember
CPXEaddsetvarmin
CPXEaddsetvarneq
CPXEaddsetvarneqcst
CPXEaddsetvarnullintersect
CPXEaddsetvarsubset
CPXEaddsetvarsum
CPXEaddsetvarunion
CPXEcacheNewCols
CPXEcacheNewNZsByNZ
CPXEcacheNewRows
CPXEcangetbase
CPXEchgqcname
CPXEchgsetvar
CPXEchgsosname
CPXEdelgconstrs
CPXEdelnames
CPXEfeasopt
CPXEgetCache
CPXEgetJNI
CPXEgetThreadNumber
CPXEgetbigreal
CPXEgetindicator
CPXEgetlazyconstraintname
CPXEgetlazyconstraints
CPXEgetmaxthreads
CPXEgetnumgconstrs
CPXEgetnumrownz
CPXEgetorigcolind
CPXEgetorigrowind
CPXEgetsetvarvalues
CPXEgetusercutname
CPXEgetusercuts
CPXEinsort
CPXEisort
CPXEispromotion
CPXErangesa
CPXEsetJNI
CPXEsetnamedef
CPXEsetnamefunctions
CPXEwriteparam
CPXNETaddarcs
CPXNETaddnodes
CPXNETbasewrite
CPXNETchgarcname
CPXNETchgarcnodes
CPXNETchgbds
CPXNETchgname
CPXNETchgnodename
CPXNETchgobj
CPXNETchgobjsen
CPXNETchgsupply
CPXNETcopybase
CPXNETcopynet
CPXNETcreateprob
CPXNETdelarcs
CPXNETdelnodes
CPXNETdelset
CPXNETextract
CPXNETfreeprob
CPXNETgetarcindex
CPXNETgetarcname
CPXNETgetarcnodes
CPXNETgetbase
CPXNETgetdj
CPXNETgetitcnt
CPXNETgetlb
CPXNETgetnodearcs
CPXNETgetnodeindex
CPXNETgetnodename
CPXNETgetnumarcs
CPXNETgetnumnodes
CPXNETgetobj
CPXNETgetobjsen
CPXNETgetobjval
CPXNETgetphase1cnt
CPXNETgetpi
CPXNETgetprobname
CPXNETgetslack
CPXNETgetstat
CPXNETgetsupply
CPXNETgetub
CPXNETgetx
CPXNETprimopt
CPXNETreadcopybase
CPXNETreadcopyprob
CPXNETsolninfo
CPXNETsolution
CPXNETwriteprob
CPXaddchannel
CPXaddcols
CPXaddfpdest
CPXaddfuncdest
CPXaddindconstr
CPXaddlazyconstraints
CPXaddmipstarts
CPXaddqconstr
CPXaddrows
CPXaddsolnpooldivfilter
CPXaddsolnpoolrngfilter
CPXaddsos
CPXaddusercuts
CPXbaropt
CPXbasicpresolve
CPXbinsolwrite
CPXbinvacol
CPXbinvarow
CPXbinvcol
CPXbinvrow
CPXboundsa
CPXbranchcallbackbranchbds
CPXbranchcallbackbranchconstraints
CPXbranchcallbackbranchgeneral
CPXbtran
CPXcheckdfeas
CPXcheckpfeas
CPXchecksoln
CPXchgbds
CPXchgcoef
CPXchgcoeflist
CPXchgcolname
CPXchgctype
CPXchgmipstart
CPXchgmipstarts
CPXchgname
CPXchgobj
CPXchgobjsen
CPXchgprobname
CPXchgprobtype
CPXchgprobtypesolnpool
CPXchgqpcoef
CPXchgrhs
CPXchgrngval
CPXchgrowname
CPXchgsense
CPXcleanup
CPXcloneprob
CPXcloseCPLEX
CPXclpwrite
CPXcompletelp
CPXconcurrentlpopt
CPXconcurrentmipopt
CPXcopybase
CPXcopybasednorms
CPXcopyctype
CPXcopydnorms
CPXcopylp
CPXcopylpwnames
CPXcopymipstart
CPXcopynettolp
CPXcopyobjname
CPXcopyorder
CPXcopypartialbase
CPXcopypnorms
CPXcopyprotected
CPXcopyqpsep
CPXcopyquad
CPXcopysos
CPXcopystart
CPXcreateprob
CPXcrushform
CPXcrushpi
CPXcrushx
CPXcutcallbackadd
CPXcutcallbackaddlocal
CPXdelchannel
CPXdelcols
CPXdelfpdest
CPXdelfuncdest
CPXdelindconstrs
CPXdelmipstarts
CPXdelnames
CPXdelqconstrs
CPXdelrows
CPXdelsetcols
CPXdelsetmipstarts
CPXdelsetrows
CPXdelsetsolnpoolfilters
CPXdelsetsolnpoolsolns
CPXdelsetsos
CPXdelsolnpoolfilters
CPXdelsolnpoolsolns
CPXdisconnectchannel
CPXdisplayiis
CPXdjfrompi
CPXdperwrite
CPXdratio
CPXdualfarkas
CPXdualopt
CPXdualwrite
CPXembwrite
CPXfclose
CPXfeasopt
CPXfeasoptext
CPXfindiis
CPXfltwrite
CPXflushchannel
CPXflushstdchannels
CPXfopen
CPXfputs
CPXfree
CPXfreelazyconstraints
CPXfreeparenv
CPXfreepresolve
CPXfreeprob
CPXfreeusercuts
CPXftran
CPXgetax
CPXgetbaritcnt
CPXgetbase
CPXgetbasednorms
CPXgetbestobjval
CPXgetbhead
CPXgetbranchcallbackfunc
CPXgetbranchnosolncallbackfunc
CPXgetcallbackbranchconstraints
CPXgetcallbackctype
CPXgetcallbackgloballb
CPXgetcallbackglobalub
CPXgetcallbackincumbent
CPXgetcallbackindicatorinfo
CPXgetcallbackinfo
CPXgetcallbacklp
CPXgetcallbacknodeinfo
CPXgetcallbacknodeintfeas
CPXgetcallbacknodelb
CPXgetcallbacknodelp
CPXgetcallbacknodeobjval
CPXgetcallbacknodestat
CPXgetcallbacknodeub
CPXgetcallbacknodex
CPXgetcallbackorder
CPXgetcallbackpseudocosts
CPXgetcallbackseqinfo
CPXgetcallbacksosinfo
CPXgetchannels
CPXgetchgparam
CPXgetcoef
CPXgetcolindex
CPXgetcolinfeas
CPXgetcolname
CPXgetcols
CPXgetconflict
CPXgetconflictext
CPXgetcrossdexchcnt
CPXgetcrossdpushcnt
CPXgetcrosspexchcnt
CPXgetcrossppushcnt
CPXgetctype
CPXgetcutcallbackfunc
CPXgetcutoff
CPXgetdblparam
CPXgetdblquality
CPXgetdeletenodecallbackfunc
CPXgetdj
CPXgetdnorms
CPXgetdsbcnt
CPXgeterrorstring
CPXgetgrad
CPXgetheuristiccallbackfunc
CPXgetiis
CPXgetijdiv
CPXgetijrow
CPXgetincumbentcallbackfunc
CPXgetindconstr
CPXgetindconstrindex
CPXgetindconstrinfeas
CPXgetindconstrname
CPXgetindconstrslack
CPXgetinfocallbackfunc
CPXgetintparam
CPXgetintquality
CPXgetitcnt
CPXgetlb
CPXgetlogfile
CPXgetlpcallbackfunc
CPXgetmethod
CPXgetmipcallbackfunc
CPXgetmipitcnt
CPXgetmiprelgap
CPXgetmipstart
CPXgetmipstartindex
CPXgetmipstartname
CPXgetmipstarts
CPXgetnetcallbackfunc
CPXgetnodecallbackfunc
CPXgetnodecnt
CPXgetnodeint
CPXgetnodeleftcnt
CPXgetnumbin
CPXgetnumcols
CPXgetnumcuts
CPXgetnumindconstrs
CPXgetnumint
CPXgetnummipstarts
CPXgetnumnz
CPXgetnumqconstrs
CPXgetnumqpnz
CPXgetnumquad
CPXgetnumrows
CPXgetnumsemicont
CPXgetnumsemiint
CPXgetnumsos
CPXgetobj
CPXgetobjname
CPXgetobjoffset
CPXgetobjsen
CPXgetobjval
CPXgetorder
CPXgetparamname
CPXgetparamnum
CPXgetparamtype
CPXgetphase1cnt
CPXgetpi
CPXgetpnorms
CPXgetprestat
CPXgetprobname
CPXgetprobtype
CPXgetprotected
CPXgetpsbcnt
CPXgetqconstr
CPXgetqconstrindex
CPXgetqconstrinfeas
CPXgetqconstrname
CPXgetqconstrslack
CPXgetqpcoef
CPXgetquad
CPXgetray
CPXgetredlp
CPXgetrhs
CPXgetrngval
CPXgetrowindex
CPXgetrowinfeas
CPXgetrowname
CPXgetrows
CPXgetsense
CPXgetsiftitcnt
CPXgetsiftphase1cnt
CPXgetslack
CPXgetsolnpooldblquality
CPXgetsolnpooldivfilter
CPXgetsolnpoolfilter
CPXgetsolnpoolfilterindex
CPXgetsolnpoolfiltername
CPXgetsolnpoolfiltertype
CPXgetsolnpoolintquality
CPXgetsolnpoolmeanobjval
CPXgetsolnpoolmipstart
CPXgetsolnpoolnumfilters
CPXgetsolnpoolnummipstarts
CPXgetsolnpoolnumreplaced
CPXgetsolnpoolnumsolns
CPXgetsolnpoolobjval
CPXgetsolnpoolqconstrslack
CPXgetsolnpoolrngfilter
CPXgetsolnpoolslack
CPXgetsolnpoolsolnindex
CPXgetsolnpoolsolnname
CPXgetsolnpoolx
CPXgetsolvecallbackfunc
CPXgetsos
CPXgetsosindex
CPXgetsosinfeas
CPXgetsosname
CPXgetstat
CPXgetstatstring
CPXgetstrparam
CPXgetsubmethod
CPXgetsubstat
CPXgettime
CPXgettuningcallbackfunc
CPXgetub
CPXgetweight
CPXgetx
CPXgetxqxax
CPXhybbaropt
CPXhybnetopt
CPXiiswrite
CPXindconstrslackfromx
CPXinfodblparam
CPXinfointparam
CPXinfostrparam
CPXkilldnorms
CPXkillpnorms
CPXlpopt
CPXlprewrite
CPXlpwrite
CPXmalloc
CPXmbasewrite
CPXmdleave
CPXmemcpy
CPXmipopt
CPXmpsrewrite
CPXmpswrite
CPXmsg
CPXmsgstr
CPXmstwrite
CPXmstwritesolnpool
CPXmstwritesolnpoolall
CPXnewcols
CPXnewrows
CPXobjsa
CPXopenCPLEX
CPXopenCPLEXruntime
CPXordread
CPXordwrite
CPXparenv
CPXpivot
CPXpivotin
CPXpivotout
CPXpopulate
CPXpperwrite
CPXpratio
CPXpreaddrows
CPXprechgobj
CPXpreslvwrite
CPXpresolve
CPXprimopt
CPXputenv
CPXqconstrslackfromx
CPXqpdjfrompi
CPXqpindefcertificate
CPXqpopt
CPXqpuncrushpi
CPXreadcopybase
CPXreadcopymipstart
CPXreadcopymipstarts
CPXreadcopyorder
CPXreadcopyparam
CPXreadcopyprob
CPXreadcopysol
CPXreadcopysolnpoolfilters
CPXreadcopyvec
CPXrealloc
CPXrefineconflict
CPXrefineconflictext
CPXrefinemipstartconflict
CPXrefinemipstartconflictext
CPXrhssa
CPXrobustopt
CPXsavwrite
CPXsetbranchcallbackfunc
CPXsetbranchnosolncallbackfunc
CPXsetcutcallbackfunc
CPXsetdblparam
CPXsetdefaults
CPXsetdeletenodecallbackfunc
CPXsetheuristiccallbackfunc
CPXsetincumbentcallbackfunc
CPXsetinfocallbackfunc
CPXsetintparam
CPXsetlogfile
CPXsetlpcallbackfunc
CPXsetmipcallbackfunc
CPXsetnetcallbackfunc
CPXsetnodecallbackfunc
CPXsetphase2
CPXsetprofcallbackfunc
CPXsetsolvecallbackfunc
CPXsetstaringsol
CPXsetstrparam
CPXsetterminate
CPXsettuningcallbackfunc
CPXsiftopt
CPXslackfromx
CPXsolninfo
CPXsolution
CPXsolwrite
CPXsolwritesolnpool
CPXsolwritesolnpoolall
CPXstrcpy
CPXstrlen
CPXstrongbranch
CPXtightenbds
CPXtuneparam
CPXtuneparamprobset
CPXtxtsolwrite
CPXuncrushform
CPXuncrushpi
CPXuncrushx
CPXunscaleprob
CPXvecwrite
CPXversion
CPXwritemipstarts
CPXwriteparam
CPXwriteprob

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 301KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fa974366048f9c551ef45714595665e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 3.7MB

.ndata Size: - Virtual size: 256KB

.rsrc Size: 2KB - Virtual size: 1KB

7fa974366048f9c551ef45714595665e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 3.7MB

.ndata Size: - Virtual size: 256KB

.rsrc Size: 2KB - Virtual size: 1KB

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 440KB - Virtual size: 438KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 12B

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 13KB - Virtual size: 13KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

931192fbb9879dc6130c4849b2eab82a

Headers

File Characteristics

Imports

wsock32

advapi32

kernel32

Exports

Exports

Sections

.text Size: 3.3MB - Virtual size: 3.3MB

.rdata Size: 301KB - Virtual size: 300KB

.data Size: 14KB - Virtual size: 29KB

.data1 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 984B

.reloc Size: 82KB - Virtual size: 81KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 3.7MB

.ndata
Size: - Virtual size: 256KB

.rsrc
Size: 2KB - Virtual size: 1KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 3.7MB

.ndata
Size: - Virtual size: 256KB

.rsrc
Size: 2KB - Virtual size: 1KB

.text
Size: 440KB - Virtual size: 438KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 12B

.text
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 3.3MB - Virtual size: 3.3MB

.rdata
Size: 301KB - Virtual size: 300KB

.data
Size: 14KB - Virtual size: 29KB

.data1
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 984B

.reloc
Size: 82KB - Virtual size: 81KB