dd1f320471b918b283149cbd040f16ba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dd1f320471b918b283149cbd040f16ba_JaffaCakes118
Size

567KB
MD5

dd1f320471b918b283149cbd040f16ba
SHA1

83588c50beda2a88000b28292ebb60eea8d70be0
SHA256

36fd455abb5d34e825e38e838b7db128b48c0f4450f032f9c0beea88539de997
SHA512

cfc50c19c233b2aaca0a27cd8306f64f5f6084e8e8684f6324e1e71e19cca978c66ef0af7a684297db77483fce83cc9293ce6f93482f9b79ba53a5637abea1bf
SSDEEP

12288:ppU6UThbSCj9Yg06BS3w8v98w1hWN2xiLOnYuEJFcwgeoq/l83oHdf4tQ:AN9NjiLA8+w1IAidJrcwqIf9QK

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/CrystalDiskMark2_1_4/DiskMark.exe
unpack001/CrystalDiskMark2_1_4/DiskMark9x.exe
unpack001/CrystalDiskMark2_1_4/DiskMarkX64.exe

Files

dd1f320471b918b283149cbd040f16ba_JaffaCakes118
.rar
CrystalDiskMark2_1_4/COPYRIGHT-ja.txt
CrystalDiskMark2_1_4/COPYRIGHT.txt
CrystalDiskMark2_1_4/DiskMark.exe
.exe windows:4 windows x86 arch:x86

78df39e1d5b5fd4616d5296c087b5b9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesW
GetFileTime
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
RtlUnwind
VirtualProtect
GetSystemInfo
VirtualQuery
HeapReAlloc
ExitProcess
ExitThread
CreateThread
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetFullPathNameW
HeapDestroy
HeapCreate
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
Sleep
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
lstrlenA
FileTimeToSystemTime
GetThreadLocale
InterlockedIncrement
GetModuleHandleA
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
CreateEventW
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
WideCharToMultiByte
GetCurrentProcessId
FormatMessageW
LocalFree
MulDiv
InterlockedDecrement
GlobalFree
lstrlenW
RaiseException
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
FreeLibrary
CompareStringW
LoadLibraryA
GetLastError
SetLastError
lstrcmpW
GetModuleHandleW
GetProcAddress
GetVersionExA
GetLocalTime
WritePrivateProfileStringW
GetDriveTypeW
GetLogicalDriveStringsW
FindNextFileW
GetPrivateProfileStringW
FindResourceW
LoadResource
LockResource
GlobalUnlock
SizeofResource
GlobalLock
GlobalAlloc
FindClose
FindFirstFileW
GetModuleFileNameW
DeviceIoControl
MultiByteToWideChar
VirtualAlloc
DeleteFileW
CloseHandle
FlushFileBuffers
WriteFile
SetFilePointer
CreateFileW
ReadFile
GetDiskFreeSpaceExW
GetVersionExW
GetVolumeInformationW
CreateDirectoryW
RemoveDirectoryW
VirtualFree
GetStartupInfoA
GetUserDefaultLCID

user32

CharUpperW
RegisterClipboardFormatW
GetNextDlgGroupItem
MessageBeep
PostThreadMessageW
CopyAcceleratorTableW
LoadCursorW
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
ClientToScreen
DestroyMenu
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
GetWindowThreadProcessId
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
GetPropW
RemovePropW
GetFocus
IsWindow
SetFocus
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
GetParent
EqualRect
UnregisterClassW
SetWindowContextHelpId
MapDialogRect
CharNextW
ReleaseCapture
CopyRect
PtInRect
SetCapture
InvalidateRgn
InvalidateRect
SetRect
IsDialogMessageW
IsRectEmpty
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetWindowLongW
SetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetWindow
EmptyClipboard
SetMenu
OpenClipboard
ModifyMenuW
GetMenu
AdjustWindowRect
CheckMenuRadioItem
GetClientRect
AppendMenuW
RemoveMenu
GetSubMenu
SendMessageW
CloseClipboard
LoadIconW
SetClipboardData
PostMessageW
SetTimer
wsprintfW
KillTimer
TranslateAcceleratorW
GetSystemMetrics
LoadAcceleratorsW
EnableWindow
SetPropW
UnregisterClassA

gdi32

PtVisible
ExtSelectClipRgn
DeleteDC
GetStockObject
CreateRectRgnIndirect
GetBkColor
GetTextColor
GetMapMode
GetWindowExtEx
GetViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
GetRgnBox
SetMapMode
RestoreDC
SaveDC
DeleteObject
ExtTextOutW
GetDeviceCaps
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
RectVisible

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegCloseKey
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyW

shell32

ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CoGetClassObject
CLSIDFromString
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
CoTaskMemFree
OleFlushClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CLSIDFromProgID
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoRevokeClassObject
CoTaskMemAlloc

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SafeArrayCreate
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnaccessData
SysStringLen
LoadRegTypeLi
DispCallFunc
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysAllocString
SysFreeString

winmm

timeBeginPeriod
timeGetDevCaps
timeGetTime
timeEndPeriod

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Sections

.text
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CrystalDiskMark2_1_4/DiskMark9x.exe
.exe windows:4 windows x86 arch:x86

0a9d10f577480f8b00f49ac81866d5ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
DuplicateHandle
GetCurrentProcess
GetFullPathNameA
GetTickCount
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesA
GetFileTime
HeapFree
HeapReAlloc
HeapAlloc
VirtualProtect
GetSystemInfo
VirtualQuery
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RtlUnwind
ExitProcess
ExitThread
CreateThread
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapDestroy
SetEndOfFile
Sleep
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
UnlockFile
LockFile
FileTimeToSystemTime
GetThreadLocale
GetOEMCP
GetCPInfo
InterlockedIncrement
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
CreateEventA
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GetCurrentProcessId
FormatMessageA
LocalFree
MulDiv
GlobalFree
InterlockedDecrement
GetModuleFileNameW
RaiseException
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
LoadLibraryA
SetLastError
lstrcmpW
GetModuleHandleA
GetProcAddress
CompareStringA
GetLastError
GetVersion
lstrlenA
InterlockedExchange
CompareStringW
GlobalLock
LockResource
GlobalAlloc
SizeofResource
WideCharToMultiByte
GetLocalTime
WritePrivateProfileStringA
GetDriveTypeA
GetLogicalDriveStringsA
FindNextFileA
GetPrivateProfileStringA
FindResourceA
GlobalUnlock
LoadResource
FindClose
FindFirstFileA
GetModuleFileNameA
DeleteFileA
CloseHandle
WriteFile
CreateFileA
GetDiskFreeSpaceExA
GetVersionExA
FlushFileBuffers
GetVolumeInformationA
SetFilePointer
CreateDirectoryA
ReadFile
RemoveDirectoryA
VirtualFree
DeviceIoControl
VirtualAlloc
MultiByteToWideChar
HeapCreate
GetUserDefaultLCID

user32

RegisterClipboardFormatA
GetNextDlgGroupItem
MessageBeep
PostThreadMessageA
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ClientToScreen
DestroyMenu
SetCursor
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
GetWindowThreadProcessId
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
UnregisterClassA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
IsWindow
SetFocus
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenuItemID
GetMenuItemCount
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
GetParent
EqualRect
CopyRect
PtInRect
GetDlgCtrlID
SetWindowContextHelpId
MapDialogRect
CharNextA
ReleaseCapture
SetCapture
InvalidateRgn
DefWindowProcA
CallWindowProcA
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableA
LoadCursorA
GetWindowLongA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetWindow
CharUpperA
EmptyClipboard
SetMenu
OpenClipboard
ModifyMenuA
GetMenu
AdjustWindowRect
CheckMenuRadioItem
GetClientRect
AppendMenuA
RemoveMenu
GetSubMenu
SendMessageA
CloseClipboard
SetClipboardData
LoadIconA
SetTimer
wsprintfA
KillTimer
PostMessageA
TranslateAcceleratorA
GetSystemMetrics
EnableWindow
LoadAcceleratorsA
GetFocus

gdi32

PtVisible
ExtSelectClipRgn
DeleteDC
GetStockObject
CreateRectRgnIndirect
GetBkColor
GetTextColor
GetMapMode
GetWindowExtEx
GetViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutA
GetRgnBox
SetMapMode
RestoreDC
SaveDC
DeleteObject
ExtTextOutA
GetDeviceCaps
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
RectVisible

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegEnumKeyA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA

shell32

ShellExecuteA

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CoTaskMemAlloc
OleFlushClipboard
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
CLSIDFromProgID
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoRevokeClassObject
OleIsCurrentClipboard

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SafeArrayCreate
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringByteLen
SysStringLen
LoadRegTypeLi
SysAllocString
DispCallFunc
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString

winmm

timeBeginPeriod
timeGetDevCaps
timeGetTime
timeEndPeriod

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 260KB - Virtual size: 256KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CrystalDiskMark2_1_4/DiskMarkX64.exe
.exe windows:4 windows x64 arch:x64

452b88dfab38e7da370d6471f8e8d4df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\HotProject\DiskMark\DiskMarkX64.pdb

Imports

kernel32

FileTimeToLocalFileTime
GetFileAttributesW
GetFileTime
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
RtlLookupFunctionEntry
RtlUnwindEx
RtlPcToFileHeader
VirtualProtect
GetSystemInfo
VirtualQuery
HeapReAlloc
ExitProcess
ExitThread
CreateThread
HeapSize
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
FlsGetValue
FlsSetValue
FlsFree
SetErrorMode
HeapSetInformation
HeapCreate
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
Sleep
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetTickCount
GetFullPathNameW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
lstrlenA
FileTimeToSystemTime
GetThreadLocale
GetModuleHandleA
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
GlobalHandle
GlobalReAlloc
TlsAlloc
InitializeCriticalSection
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
CreateEventW
SuspendThread
SetEvent
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
WideCharToMultiByte
GetCurrentProcessId
GlobalFree
FormatMessageW
LocalFree
MulDiv
lstrlenW
RaiseException
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
FreeLibrary
CompareStringW
LoadLibraryA
GetLastError
SetLastError
lstrcmpW
GetModuleHandleW
GetProcAddress
GetVersionExA
GetLocalTime
FindNextFileW
FindResourceW
GetPrivateProfileStringW
WritePrivateProfileStringW
LoadResource
LockResource
GetDriveTypeW
SizeofResource
GetLogicalDriveStringsW
GlobalUnlock
GlobalLock
GlobalAlloc
FindClose
FindFirstFileW
GetModuleFileNameW
CreateDirectoryW
RemoveDirectoryW
VirtualFree
DeviceIoControl
FlushFileBuffers
SetFilePointer
ReadFile
MultiByteToWideChar
VirtualAlloc
DeleteFileW
CloseHandle
WriteFile
CreateFileW
GetDiskFreeSpaceExW
GetVersionExW
GetVolumeInformationW
FlsAlloc
GetUserDefaultLCID

user32

CharUpperW
RegisterClipboardFormatW
GetNextDlgGroupItem
MessageBeep
PostThreadMessageW
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
ClientToScreen
DestroyMenu
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
GetWindowThreadProcessId
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
GetMenuState
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
UnregisterClassW
RegisterWindowMessageW
SendDlgItemMessageA
SendDlgItemMessageW
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassNameW
GetClassLongPtrW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
GetDlgItem
GetTopWindow
DestroyWindow
GetWindowLongPtrW
SetWindowLongPtrW
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
GetParent
EqualRect
SetWindowContextHelpId
MapDialogRect
CharNextW
ReleaseCapture
SetCapture
InvalidateRgn
CopyRect
PtInRect
InvalidateRect
SetRect
IsRectEmpty
CopyAcceleratorTableW
LoadCursorW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetWindowLongW
SetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetWindow
EmptyClipboard
OpenClipboard
LoadIconW
AdjustWindowRect
GetClientRect
CheckMenuRadioItem
SetMenu
AppendMenuW
ModifyMenuW
RemoveMenu
GetMenu
GetSubMenu
SendMessageW
CloseClipboard
SetClipboardData
wsprintfW
KillTimer
PostMessageW
SetTimer
TranslateAcceleratorW
GetSystemMetrics
EnableWindow
LoadAcceleratorsW
IsWindow
UnregisterClassA

gdi32

ExtSelectClipRgn
DeleteDC
PtVisible
GetStockObject
CreateRectRgnIndirect
GetBkColor
GetTextColor
GetMapMode
GetWindowExtEx
GetViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
GetRgnBox
SetMapMode
RestoreDC
SaveDC
DeleteObject
ExtTextOutW
CreateBitmap
GetDeviceCaps
GetObjectW
SetBkColor
SetTextColor
GetClipBox
RectVisible

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegCloseKey
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyW

shell32

ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CoGetClassObject
CLSIDFromString
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
CoTaskMemFree
OleFlushClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CLSIDFromProgID
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoRevokeClassObject
CoTaskMemAlloc

oleaut32

OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SafeArrayCreate
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnaccessData
SysStringLen
LoadRegTypeLi
DispCallFunc
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysAllocString
SysFreeString

winmm

timeBeginPeriod
timeGetDevCaps
timeGetTime
timeEndPeriod

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Sections

.text
Size: 361KB - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CrystalDiskMark2_1_4/ReadMe.html
.html
CrystalDiskMark2_1_4/ReadMeJ.html
.html
CrystalDiskMark2_1_4/resource/language/Bulgarian.lang
CrystalDiskMark2_1_4/resource/language/Czech.lang
CrystalDiskMark2_1_4/resource/language/Danish.lang
CrystalDiskMark2_1_4/resource/language/English.lang
CrystalDiskMark2_1_4/resource/language/Finnish.lang
CrystalDiskMark2_1_4/resource/language/French.lang
CrystalDiskMark2_1_4/resource/language/German.lang
CrystalDiskMark2_1_4/resource/language/Greek.lang
CrystalDiskMark2_1_4/resource/language/Hungarian.lang
CrystalDiskMark2_1_4/resource/language/Indonesian.lang
CrystalDiskMark2_1_4/resource/language/Indonesian2.lang
CrystalDiskMark2_1_4/resource/language/Italian.lang
CrystalDiskMark2_1_4/resource/language/Italian2.lang
CrystalDiskMark2_1_4/resource/language/Japanese.lang
CrystalDiskMark2_1_4/resource/language/JapaneseSJIS.lang
CrystalDiskMark2_1_4/resource/language/Korean.lang
CrystalDiskMark2_1_4/resource/language/Lithuanian.lang
CrystalDiskMark2_1_4/resource/language/Norwegian.lang
CrystalDiskMark2_1_4/resource/language/Polish.lang
CrystalDiskMark2_1_4/resource/language/Portuguese.lang
CrystalDiskMark2_1_4/resource/language/Russian.lang
CrystalDiskMark2_1_4/resource/language/Russian2.lang
CrystalDiskMark2_1_4/resource/language/SimplifiedChinese.lang
CrystalDiskMark2_1_4/resource/language/Spanish.lang
CrystalDiskMark2_1_4/resource/language/Swedish.lang
CrystalDiskMark2_1_4/resource/language/TraditionalChinese.lang
CrystalDiskMark2_1_4/resource/language/Turkish.lang
CrystalDiskMark2_1_4/resource/theme/Main.dlg
.html
CrystalDiskMark2_1_4/resource/theme/aqua/All.png
.png
CrystalDiskMark2_1_4/resource/theme/aqua/Main.css
CrystalDiskMark2_1_4/resource/theme/aqua/Random4KB.png
.png
CrystalDiskMark2_1_4/resource/theme/aqua/Random512KB.png
.png
CrystalDiskMark2_1_4/resource/theme/aqua/Sequential.png
.png
CrystalDiskMark2_1_4/resource/theme/aqua/Stop.png
.png
CrystalDiskMark2_1_4/resource/theme/aqua/background.png
.png
CrystalDiskMark2_1_4/resource/theme/aqua/line.png
.png
CrystalDiskMark2_1_4/resource/theme/default/All.png
.png
CrystalDiskMark2_1_4/resource/theme/default/Main.css
CrystalDiskMark2_1_4/resource/theme/default/Random4KB.png
.png
CrystalDiskMark2_1_4/resource/theme/default/Random512KB.png
.png
CrystalDiskMark2_1_4/resource/theme/default/Sequential.png
.png
CrystalDiskMark2_1_4/resource/theme/default/Stop.png
.png
CrystalDiskMark2_1_4/resource/theme/default/background.png
.png
CrystalDiskMark2_1_4/resource/theme/default/line.png
.png
CrystalDiskMark2_1_4/resource/theme/flower/All.png
.png
CrystalDiskMark2_1_4/resource/theme/flower/Main.css
CrystalDiskMark2_1_4/resource/theme/flower/Random4KB.png
.png
CrystalDiskMark2_1_4/resource/theme/flower/Random512KB.png
.png
CrystalDiskMark2_1_4/resource/theme/flower/Sequential.png
.png
CrystalDiskMark2_1_4/resource/theme/flower/Stop.png
.png
CrystalDiskMark2_1_4/resource/theme/flower/background.png
.png
CrystalDiskMark2_1_4/resource/theme/flower/line.png
.png
CrystalDiskMark2_1_4/resource/theme/mono/All.png
.png
CrystalDiskMark2_1_4/resource/theme/mono/Main.css
CrystalDiskMark2_1_4/resource/theme/mono/Random4KB.png
.png
CrystalDiskMark2_1_4/resource/theme/mono/Random512KB.png
.png
CrystalDiskMark2_1_4/resource/theme/mono/Sequential.png
.png
CrystalDiskMark2_1_4/resource/theme/mono/Stop.png
.png
CrystalDiskMark2_1_4/resource/theme/mono/background.png
.png
CrystalDiskMark2_1_4/resource/theme/mono/line.png
.png
CrystalDiskMark2_1_4/resource/theme/sakura/All.png
.png
CrystalDiskMark2_1_4/resource/theme/sakura/Main.css
CrystalDiskMark2_1_4/resource/theme/sakura/Random4KB.png
.png
CrystalDiskMark2_1_4/resource/theme/sakura/Random512KB.png
.png
CrystalDiskMark2_1_4/resource/theme/sakura/Sequential.png
.png
CrystalDiskMark2_1_4/resource/theme/sakura/Stop.png
.png
CrystalDiskMark2_1_4/resource/theme/sakura/background.png
.png
CrystalDiskMark2_1_4/resource/theme/sakura/line.png
.png
CrystalDiskMark2_1_4/resource/theme/sepia/All.png
.png
CrystalDiskMark2_1_4/resource/theme/sepia/Main.css
CrystalDiskMark2_1_4/resource/theme/sepia/Random4KB.png
.png
CrystalDiskMark2_1_4/resource/theme/sepia/Random512KB.png
.png
CrystalDiskMark2_1_4/resource/theme/sepia/Sequential.png
.png
CrystalDiskMark2_1_4/resource/theme/sepia/Stop.png
.png
CrystalDiskMark2_1_4/resource/theme/sepia/background.png
.png
CrystalDiskMark2_1_4/resource/theme/sepia/line.png
.png
CrystalDiskMark2_1_4/resource/theme/wine/All.png
.png
CrystalDiskMark2_1_4/resource/theme/wine/Main.css
CrystalDiskMark2_1_4/resource/theme/wine/Random4KB.png
.png
CrystalDiskMark2_1_4/resource/theme/wine/Random512KB.png
.png
CrystalDiskMark2_1_4/resource/theme/wine/Sequential.png
.png
CrystalDiskMark2_1_4/resource/theme/wine/Stop.png
.png
CrystalDiskMark2_1_4/resource/theme/wine/background.png
.png
CrystalDiskMark2_1_4/resource/theme/wine/line.png
.png
CrystalDiskMark2_1_4/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

78df39e1d5b5fd4616d5296c087b5b9e

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

version

Sections

.text Size: 260KB - Virtual size: 257KB

.rdata Size: 72KB - Virtual size: 68KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 48KB - Virtual size: 47KB

0a9d10f577480f8b00f49ac81866d5ac

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

version

Sections

.text Size: 260KB - Virtual size: 256KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 12KB - Virtual size: 26KB

.rsrc Size: 48KB - Virtual size: 47KB

452b88dfab38e7da370d6471f8e8d4df

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

version

Sections

.text Size: 361KB - Virtual size: 361KB

.rdata Size: 121KB - Virtual size: 120KB

.data Size: 15KB - Virtual size: 38KB

.pdata Size: 26KB - Virtual size: 26KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 260KB - Virtual size: 257KB

.rdata
Size: 72KB - Virtual size: 68KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 48KB - Virtual size: 47KB

.text
Size: 260KB - Virtual size: 256KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 12KB - Virtual size: 26KB

.rsrc
Size: 48KB - Virtual size: 47KB

.text
Size: 361KB - Virtual size: 361KB

.rdata
Size: 121KB - Virtual size: 120KB

.data
Size: 15KB - Virtual size: 38KB

.pdata
Size: 26KB - Virtual size: 26KB

.rsrc
Size: 48KB - Virtual size: 47KB