f:\crdjreqame\veeggsayts\zuefotcet.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
dcb4e5a64de7951d394d8208ebc03610_JaffaCakes118.exe
Resource
win7-20240903-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
dcb4e5a64de7951d394d8208ebc03610_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
dcb4e5a64de7951d394d8208ebc03610_JaffaCakes118
-
Size
360KB
-
MD5
dcb4e5a64de7951d394d8208ebc03610
-
SHA1
7c7ea1e828398f5fa0a7220ead6b39a1088116c3
-
SHA256
ccbd3db088a41731ecf062550d1471ca21319832ab0e90325333ddde7394e187
-
SHA512
783fadaefabe8927277b3a77ba4d65bb3939c03c47e94709f9ea2d845d05ec6f48b6675e2cd05c67a9ffe86d2b37355a03dacb01f59db9688bdc68747eb3aa27
-
SSDEEP
6144:Nv/l7Mcb3u6rjBgOnvQsid1H0i5Y3doY2IUtev1Tigm:9l7Mcq6ZgMHiHrCyY2vtev1TJ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dcb4e5a64de7951d394d8208ebc03610_JaffaCakes118
Files
-
dcb4e5a64de7951d394d8208ebc03610_JaffaCakes118.exe windows:4 windows x86 arch:x86
3aa53c8622b2f09de41cc974a4eb14f1
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
gdi32
GetDCOrgEx
SetWindowOrgEx
GetTextAlign
EnumEnhMetaFile
RectInRegion
CreateRectRgn
GetWindowExtEx
DeleteMetaFile
DeleteEnhMetaFile
GetTextMetricsW
OffsetWindowOrgEx
CreateHalftonePalette
CloseFigure
RemoveFontResourceA
EnumMetaFile
GetBitmapBits
SetTextCharacterExtra
RoundRect
DescribePixelFormat
CreateDiscardableBitmap
GetEnhMetaFileBits
FloodFill
PlayEnhMetaFileRecord
ExtCreatePen
TextOutW
TranslateCharsetInfo
EnumFontFamiliesA
CreatePolygonRgn
PolylineTo
GetCurrentPositionEx
SetEnhMetaFileBits
GetCharWidth32W
StrokePath
SetBrushOrgEx
PlgBlt
LineTo
GdiComment
GetLayout
SetICMMode
GetAspectRatioFilterEx
GetTextCharsetInfo
AnimatePalette
SetBitmapDimensionEx
GetROP2
GetCharABCWidthsW
Arc
GetDIBColorTable
GetGraphicsMode
UnrealizeObject
DrawEscape
Rectangle
ScaleViewportExtEx
EndPath
Polyline
FrameRgn
SetStretchBltMode
CreateHatchBrush
ExtTextOutA
SetPixelV
SetPolyFillMode
GetKerningPairsA
PatBlt
StartDocA
CreateRectRgnIndirect
PolyBezierTo
CreateDIBSection
OffsetViewportOrgEx
CreatePen
CreateBrushIndirect
GetBkColor
CopyMetaFileW
GetRgnBox
GetSystemPaletteEntries
CreatePatternBrush
GetCurrentObject
GetCharWidthFloatA
GetGlyphOutlineW
GetEnhMetaFilePaletteEntries
CopyEnhMetaFileA
SetColorAdjustment
EnumFontFamiliesExA
CreateEnhMetaFileA
EndDoc
CreateDCW
StartPage
ArcTo
CreateDIBPatternBrushPt
EnumFontFamiliesExW
CopyEnhMetaFileW
SetBitmapBits
Pie
GetDIBits
SetTextColor
CreateMetaFileA
GetTextExtentPoint32W
FlattenPath
SetWindowExtEx
GetFontData
SetICMProfileA
GetBitmapDimensionEx
CreateDCA
CreateICA
EnumFontFamiliesW
PathToRegion
SetGraphicsMode
OffsetClipRgn
Chord
PaintRgn
GetArcDirection
CreateCompatibleBitmap
SetMiterLimit
Polygon
RealizePalette
BeginPath
StretchDIBits
LineDDA
PolyPolygon
Ellipse
SetTextAlign
CreatePalette
CreatePolyPolygonRgn
CreateICW
GetRegionData
GetTextCharset
CreateDIBitmap
SetDIBitsToDevice
GetCharABCWidthsFloatA
PolyBezier
SetPixel
DeleteObject
InvertRgn
CombineRgn
BitBlt
GetTextExtentPointW
GetGlyphOutlineA
FillPath
IntersectClipRect
SelectClipPath
GetClipRgn
ExtEscape
DeleteDC
CreateMetaFileW
PlayEnhMetaFile
SetViewportExtEx
SetBoundsRect
CreateEnhMetaFileW
AbortPath
PtVisible
TextOutA
CloseMetaFile
SetDIBColorTable
GetMetaFileA
RectVisible
Escape
ResetDCA
GetEnhMetaFileW
SetBkMode
GetStretchBltMode
StrokeAndFillPath
CreateFontA
CreateFontW
SetWorldTransform
GetWinMetaFileBits
PtInRegion
SetROP2
GetPixelFormat
GetBrushOrgEx
GdiFlush
SetPaletteEntries
SelectObject
OffsetRgn
CreateBitmap
SetLayout
SetViewportOrgEx
GetOutlineTextMetricsA
GetTextExtentExPointW
CloseEnhMetaFile
ResizePalette
GetDeviceCaps
GetColorAdjustment
SetDCPenColor
AbortDoc
ExtSelectClipRgn
SetArcDirection
SetMapperFlags
EnumFontsW
GetPath
SetAbortProc
GetMiterLimit
GetCharABCWidthsFloatW
ChoosePixelFormat
RestoreDC
CreateEllipticRgn
GetEnhMetaFileA
GetEnhMetaFileHeader
FillRgn
GetTextExtentPoint32A
EnumObjects
EnumFontsA
GetTextExtentPointA
SetTextJustification
DPtoLP
GetBoundsRect
GetPaletteEntries
GetPolyFillMode
GetViewportOrgEx
CreateFontIndirectW
EqualRgn
GetCharWidthA
GetNearestColor
PolyPolyline
CopyMetaFileA
SwapBuffers
GetTextExtentExPointA
LPtoDP
GetNearestPaletteIndex
ExtFloodFill
SetPixelFormat
ExtCreateRegion
CreateSolidBrush
GetMapMode
GetCharWidthW
PlayMetaFile
SelectClipRgn
GetObjectType
GetObjectA
GetCharWidth32A
GetPixel
PolyDraw
CreateRoundRectRgn
GetWindowOrgEx
StartDocW
UpdateColors
PlayMetaFileRecord
ExtTextOutW
GetTextColor
EndPage
SetMetaFileBitsEx
GetTextCharacterExtra
AddFontResourceA
GetFontLanguageInfo
SetRectRgn
GetClipBox
SetDIBits
ExcludeClipRect
ModifyWorldTransform
StretchBlt
MaskBlt
GetTextFaceA
CreateCompatibleDC
GetStockObject
CreatePenIndirect
SelectPalette
GetBkMode
AngleArc
GetTextFaceW
ResetDCW
GetObjectW
MoveToEx
GetCharacterPlacementW
SetWinMetaFileBits
GetMetaFileBitsEx
SetDCBrushColor
GetMetaRgn
GetCharABCWidthsA
SaveDC
CreateBitmapIndirect
GetTextMetricsA
ScaleWindowExtEx
SetMapMode
WidenPath
CreateEllipticRgnIndirect
GetViewportExtEx
CreateFontIndirectA
SetBkColor
shell32
SHGetFileInfoA
SHGetFolderPathW
SHBrowseForFolderA
SHAddToRecentDocs
SHGetFolderPathA
SHCreateDirectoryExA
ExtractIconExW
DragQueryPoint
SHGetInstanceExplorer
SHBrowseForFolderW
Shell_NotifyIconA
SHChangeNotify
SHGetPathFromIDListW
SHGetDataFromIDListA
ShellExecuteA
ShellExecuteW
DragQueryFileA
ShellExecuteExW
ExtractIconA
DragQueryFileW
DragAcceptFiles
CommandLineToArgvW
SHFreeNameMappings
SHGetFolderLocation
DragFinish
FindExecutableW
SHGetMalloc
SHGetSpecialFolderPathA
SHGetFileInfoW
SHGetSpecialFolderLocation
SHGetDataFromIDListW
SHGetSpecialFolderPathW
SHFileOperationA
DuplicateIcon
SHGetDesktopFolder
SHGetPathFromIDListA
SHEmptyRecycleBinA
FindExecutableA
DoEnvironmentSubstW
ShellExecuteExA
ExtractIconW
Shell_NotifyIconW
SHAppBarMessage
SHBindToParent
ExtractIconExA
ord155
SHCreateDirectoryExW
SHFileOperationW
kernel32
CreateMutexW
lstrlenW
GetBinaryTypeA
GetSystemDefaultLCID
GetVolumePathNameA
GetLocaleInfoA
GetSystemWindowsDirectoryA
GetCommProperties
CreateMutexA
PulseEvent
GetSystemTimeAsFileTime
FindResourceW
FindFirstFileExW
GetFileType
lstrlenA
GlobalMemoryStatus
TryEnterCriticalSection
FindNextVolumeW
CopyFileExA
HeapCompact
GetExitCodeThread
QueueUserAPC
SetLocalTime
CopyFileA
GetSystemTime
SetThreadPriority
IsProcessorFeaturePresent
SearchPathA
UnhandledExceptionFilter
RemoveDirectoryW
IsBadStringPtrA
CreateProcessA
Sleep
EnumResourceLanguagesA
GlobalAlloc
GetPrivateProfileIntW
GetDiskFreeSpaceExW
SetupComm
CreateFileMappingW
MoveFileExW
GlobalMemoryStatusEx
FlushInstructionCache
FindAtomW
FindClose
CopyFileW
GetFileAttributesExW
GetPrivateProfileStructA
OpenThread
TlsGetValue
SetNamedPipeHandleState
AddAtomW
RtlUnwind
TerminateThread
GetEnvironmentVariableA
VirtualAlloc
GetLogicalDriveStringsW
WaitForDebugEvent
GetACP
VirtualQueryEx
GetVolumeNameForVolumeMountPointA
QueryPerformanceCounter
ReadFile
lstrcmpA
ProcessIdToSessionId
lstrcmpiA
OutputDebugStringA
EndUpdateResourceW
Toolhelp32ReadProcessMemory
UpdateResourceA
FreeResource
FormatMessageA
GetCommTimeouts
GetProcessWorkingSetSize
CompareFileTime
SetEnvironmentVariableW
MapViewOfFileEx
FormatMessageW
CreateFileMappingA
ResumeThread
VerLanguageNameA
GetConsoleMode
CreateSemaphoreA
ReadDirectoryChangesW
SetCommState
GetCurrentDirectoryW
GlobalAddAtomA
GetProfileStringW
ConnectNamedPipe
ResetEvent
GetProcessHeaps
GetProcessAffinityMask
GlobalFindAtomA
HeapReAlloc
DeleteFileA
GetFileInformationByHandle
Process32NextW
DeleteFileW
GetCPInfoExA
GlobalGetAtomNameA
TransmitCommChar
ExpandEnvironmentStringsW
GetStartupInfoW
CancelIo
lstrcmpW
GetTempFileNameW
HeapSize
WritePrivateProfileStructW
GetDiskFreeSpaceW
TerminateProcess
MoveFileExA
ExitProcess
HeapCreate
GetStartupInfoA
LocalFree
GetModuleFileNameA
IsDBCSLeadByteEx
LocalAlloc
EnumResourceTypesA
InterlockedExchange
MulDiv
QueryDosDeviceW
Module32FirstW
ReleaseMutex
GetVolumeNameForVolumeMountPointW
GetFileSizeEx
GetLastError
QueryPerformanceFrequency
EnumCalendarInfoExW
Heap32ListNext
GetNumberFormatA
SearchPathW
IsBadReadPtr
lstrcpynA
GetLogicalDrives
_hwrite
SetStdHandle
SetThreadAffinityMask
Process32FirstW
GetCommandLineW
Heap32First
GetThreadLocale
SuspendThread
SetVolumeLabelW
FindResourceExW
GetCurrentProcess
CreateDirectoryA
GetPrivateProfileSectionA
WaitForSingleObjectEx
SetCommMask
WinExec
LocalLock
GetModuleFileNameW
GetProcAddress
GetOEMCP
UpdateResourceW
FreeConsole
FindFirstChangeNotificationW
EndUpdateResourceA
SetConsoleTitleW
GlobalDeleteAtom
DeviceIoControl
FlushConsoleInputBuffer
GetWindowsDirectoryA
GetCommState
GetCommConfig
SetCommConfig
FindResourceExA
WideCharToMultiByte
GetComputerNameExW
EnterCriticalSection
DisconnectNamedPipe
GlobalGetAtomNameW
SetTapePosition
GlobalReAlloc
Thread32First
VirtualAllocEx
CommConfigDialogW
ReadProcessMemory
LocalReAlloc
DeleteVolumeMountPointA
SetThreadExecutionState
GetAtomNameA
LoadLibraryExA
GetFullPathNameA
SizeofResource
OpenProcess
SetProcessPriorityBoost
GetSystemDirectoryA
SetFilePointerEx
SetThreadContext
GetPrivateProfileIntA
EnumSystemLanguageGroupsW
GetSystemPowerStatus
LocalSize
GlobalLock
RemoveDirectoryA
ClearCommBreak
FlushFileBuffers
IsBadStringPtrW
SetVolumeLabelA
GetCommMask
GetDiskFreeSpaceA
GetUserDefaultUILanguage
FindResourceA
GetVolumeInformationA
SleepEx
CreateFileA
FindFirstFileW
SetProcessShutdownParameters
GetExitCodeProcess
SetSystemTime
HeapFree
VirtualProtectEx
UnlockFile
EnumCalendarInfoA
WriteConsoleA
IsDBCSLeadByte
SetLastError
WritePrivateProfileStructA
LocalFileTimeToFileTime
DeleteVolumeMountPointW
GetTickCount
TlsFree
CreateThread
lstrcpyW
GetFileTime
CreatePipe
GetPrivateProfileStringW
GetCommModemStatus
EnumResourceNamesA
CreateIoCompletionPort
LoadResource
GetNumberFormatW
GetDateFormatW
SetCurrentDirectoryW
GetPriorityClass
FreeLibrary
FatalAppExitA
SetProcessWorkingSetSize
LockFile
GetCurrentThreadId
WaitNamedPipeW
SetConsoleMode
GetTapeParameters
WriteProcessMemory
DebugBreak
GetTimeFormatA
SetFileAttributesW
IsValidCodePage
SetErrorMode
GetVersionExW
WritePrivateProfileSectionW
ExitThread
GetMailslotInfo
GetComputerNameW
OpenSemaphoreA
GetCPInfo
FileTimeToSystemTime
DefineDosDeviceA
GetSystemDirectoryW
SwitchToFiber
GetDriveTypeA
GetFileAttributesExA
Process32First
GetEnvironmentStrings
SetComputerNameW
GlobalUnlock
SetCommBreak
VirtualLock
GetComputerNameA
SetMailslotInfo
VerifyVersionInfoA
GetLocaleInfoW
Thread32Next
LockResource
WritePrivateProfileSectionA
WritePrivateProfileStringA
GetCommandLineA
WriteProfileStringA
GetThreadTimes
FindNextFileA
FreeEnvironmentStringsW
SwitchToThread
SetEnvironmentVariableA
GetComputerNameExA
GetFileSize
SetHandleInformation
lstrcpyA
GetShortPathNameW
GetStringTypeA
WaitNamedPipeA
GetProfileIntW
GetCurrentThread
ContinueDebugEvent
SetCurrentDirectoryA
GetCurrentProcessId
VirtualUnlock
SetCommTimeouts
WriteFile
CreateProcessW
CopyFileExW
FindFirstFileA
AllocConsole
GetFullPathNameW
FileTimeToDosDateTime
GetTimeFormatW
GetTimeZoneInformation
IsDebuggerPresent
ConvertDefaultLocale
SetWaitableTimer
PurgeComm
FreeEnvironmentStringsA
LoadLibraryExW
QueryDosDeviceA
CreateFileW
GetModuleHandleA
CreateMailslotA
GetStdHandle
CreateDirectoryExA
MoveFileW
FindCloseChangeNotification
GetSystemInfo
GetProcessVersion
TlsAlloc
GlobalSize
GetOverlappedResult
Module32Next
AreFileApisANSI
GetDiskFreeSpaceExA
GetSystemDefaultLangID
SetFilePointer
GlobalHandle
ReadConsoleInputA
OpenMutexA
MultiByteToWideChar
GetDriveTypeW
OpenEventW
FindFirstVolumeW
GetTempPathA
_lcreat
DosDateTimeToFileTime
MoveFileA
lstrcpynW
FindNextChangeNotification
EnumUILanguagesW
VirtualProtect
SetFileTime
BackupRead
DeleteAtom
GetLongPathNameA
EnumSystemLocalesA
GetProfileStringA
RaiseException
SetHandleCount
ExpandEnvironmentStringsA
WaitForSingleObject
BackupWrite
FileTimeToLocalFileTime
GetPrivateProfileStringA
LockFileEx
SetConsoleCtrlHandler
VerifyVersionInfoW
GetThreadContext
PeekNamedPipe
VirtualFree
LoadLibraryW
SetEvent
HeapAlloc
InitializeCriticalSectionAndSpinCount
PostQueuedCompletionStatus
FindNextFileW
GetShortPathNameA
CompareStringW
Module32First
GetVolumeInformationW
OutputDebugStringW
SystemTimeToTzSpecificLocalTime
DeleteCriticalSection
SetProcessAffinityMask
SetConsoleCursorPosition
GetProcessTimes
SetPriorityClass
QueueUserWorkItem
InterlockedIncrement
MapViewOfFile
GetUserDefaultLCID
Heap32ListFirst
WaitCommEvent
SetEndOfFile
EscapeCommFunction
GetVolumePathNameW
GetProfileSectionA
OpenMutexW
GetConsoleScreenBufferInfo
SetVolumeMountPointA
ClearCommError
GetLongPathNameW
GetTempPathW
CreateWaitableTimerA
OpenFile
GlobalFree
GetCurrencyFormatA
GetLocalTime
CreateEventA
GetStringTypeExW
DebugActiveProcess
GetEnvironmentStringsW
LeaveCriticalSection
GetQueuedCompletionStatus
DisableThreadLibraryCalls
UnlockFileEx
CreateWaitableTimerW
CreateDirectoryW
CreateFiber
InitializeCriticalSection
_lwrite
GetWindowsDirectoryW
InterlockedExchangeAdd
IsBadWritePtr
GlobalFindAtomW
TlsSetValue
lstrcmpiW
InterlockedDecrement
CompareStringA
GetProfileIntA
_lclose
LocalUnlock
SystemTimeToFileTime
OpenEventA
SetTimeZoneInformation
IsValidLocale
GetSystemTimeAdjustment
GetConsoleCP
FindVolumeClose
ConvertThreadToFiber
EnumResourceLanguagesW
VirtualQuery
FlushViewOfFile
GetStringTypeExA
LocalCompact
WriteProfileStringW
Process32Next
GetLogicalDriveStringsA
lstrcatW
GetTempFileNameA
GetFileAttributesW
GetDateFormatA
GetFileAttributesA
OpenFileMappingA
OpenFileMappingW
LocalHandle
IsBadCodePtr
UnmapViewOfFile
VerSetConditionMask
GetCurrentDirectoryA
RtlFillMemory
EnumCalendarInfoW
GetEnvironmentVariableW
CreateNamedPipeW
SetUnhandledExceptionFilter
OpenSemaphoreW
ReleaseSemaphore
HeapDestroy
WritePrivateProfileStringW
GetModuleHandleW
DuplicateHandle
Heap32Next
GlobalAddAtomW
Beep
EnumResourceNamesW
_llseek
GetUserDefaultLangID
LCMapStringW
LoadLibraryA
CreateNamedPipeA
GetConsoleOutputCP
WriteConsoleW
GetCompressedFileSizeW
WriteFileEx
InterlockedCompareExchange
LCMapStringA
CreateSemaphoreW
GetStringTypeW
WaitForMultipleObjectsEx
_hread
_lread
GetProcessHeap
WriteConsoleOutputW
WaitForMultipleObjects
GetThreadPriority
CloseHandle
GetPrivateProfileSectionNamesA
GetVersionExA
EnumLanguageGroupLocalesW
CreateToolhelp32Snapshot
BackupSeek
Module32NextW
SetThreadLocale
GetHandleInformation
BuildCommDCBA
user32
SendDlgItemMessageA
PostThreadMessageW
CharNextW
CallWindowProcA
SetScrollInfo
IsWindowVisible
LockSetForegroundWindow
SystemParametersInfoW
GetWindowInfo
SetWindowContextHelpId
EnumChildWindows
GrayStringW
LookupIconIdFromDirectoryEx
RegisterClipboardFormatW
ArrangeIconicWindows
GetIconInfo
MessageBoxExA
ClientToScreen
GetMenuStringW
SetMenuInfo
GetAsyncKeyState
GetWindowModuleFileNameW
CheckRadioButton
DrawMenuBar
DrawFrameControl
GetNextDlgTabItem
CharLowerA
IsZoomed
SetWindowLongW
MapDialogRect
GetActiveWindow
GetClassNameW
LoadMenuIndirectA
UnhookWinEvent
PeekMessageW
GetClipCursor
SetMenu
DrawStateA
SetDoubleClickTime
FillRect
DdeInitializeW
VkKeyScanA
GetClassInfoExW
CharToOemA
SwitchDesktop
OemToCharA
GetDlgCtrlID
LoadBitmapA
OpenDesktopW
LoadBitmapW
WaitForInputIdle
MapVirtualKeyExW
EnumClipboardFormats
TrackPopupMenuEx
GetProcessWindowStation
GetTabbedTextExtentA
GetScrollRange
SetClassLongW
CopyIcon
GetWindowRect
DrawStateW
SendNotifyMessageA
DrawFocusRect
SetScrollRange
OpenIcon
CopyImage
UnregisterDeviceNotification
BroadcastSystemMessage
SubtractRect
InsertMenuItemA
GetMenuItemInfoW
ToUnicode
GetCursorPos
CascadeWindows
ScrollDC
TileChildWindows
AttachThreadInput
UnregisterClassW
GetClipboardViewer
FreeDDElParam
DlgDirSelectExA
DefFrameProcW
RegisterClassExW
GetFocus
DdeClientTransaction
CreateDialogParamA
SetCaretPos
GetMenuBarInfo
LoadImageW
InflateRect
GetMenuState
SetPropW
LoadMenuW
GetComboBoxInfo
RegisterHotKey
LoadKeyboardLayoutA
wvsprintfW
BringWindowToTop
GetScrollBarInfo
GetKeyboardLayoutList
TrackMouseEvent
DrawIconEx
LoadIconA
CharUpperW
IsChild
GetAncestor
SetKeyboardState
DdeAccessData
InsertMenuA
GetLastInputInfo
IsDialogMessageW
CreateMenu
SetProcessWindowStation
DestroyIcon
CharNextExA
OpenDesktopA
SetMenuItemInfoW
OpenWindowStationA
GrayStringA
SetLayeredWindowAttributes
UnregisterClassA
GetClipboardData
RedrawWindow
GetKeyNameTextW
ExcludeUpdateRgn
RegisterClipboardFormatA
MessageBoxW
RegisterClassA
GetSubMenu
SetUserObjectSecurity
CreateDialogIndirectParamW
EnableScrollBar
GetMonitorInfoA
EnableMenuItem
VkKeyScanExA
MapVirtualKeyW
DdeInitializeA
GetWindowTextA
GetSystemMetrics
GetUpdateRgn
CheckDlgButton
MapWindowPoints
RemovePropW
SetMenuItemBitmaps
WaitMessage
LoadCursorA
GetNextDlgGroupItem
GetWindowTextLengthA
DragDetect
DdeUninitialize
LoadMenuA
PtInRect
SetClassLongA
LoadStringW
HideCaret
CreateAcceleratorTableW
SetCursorPos
GetMessagePos
SetActiveWindow
ActivateKeyboardLayout
GetKeyState
ChildWindowFromPoint
SetWindowsHookExA
GetKeyNameTextA
GetKeyboardLayout
GetWindowThreadProcessId
RegisterClassW
CheckMenuRadioItem
GetClipboardOwner
DefDlgProcA
GetMessageTime
CallWindowProcW
DialogBoxParamA
LoadCursorW
SetMenuItemInfoA
GetWindowTextW
PackDDElParam
FlashWindow
MonitorFromPoint
CreateCursor
DefMDIChildProcA
GetCapture
SetTimer
GetCaretPos
InsertMenuW
GetClassWord
GetMessageW
wvsprintfA
EnumDesktopWindows
DdeQueryStringA
AppendMenuA
DestroyCursor
DdeConnect
ToAscii
EqualRect
IsCharAlphaNumericA
IsCharLowerW
BeginDeferWindowPos
GetClassNameA
GetSysColor
OpenClipboard
WinHelpW
CloseWindowStation
IsWindow
EnumWindows
DdeGetLastError
GetWindow
EmptyClipboard
DlgDirSelectComboBoxExA
DefFrameProcA
NotifyWinEvent
PostQuitMessage
WindowFromDC
AnimateWindow
GetUserObjectInformationW
GetForegroundWindow
GetDlgItemTextW
GetThreadDesktop
GetUpdateRect
ChangeClipboardChain
MonitorFromWindow
GetCursor
CharPrevA
IsDialogMessageA
GetClipboardFormatNameA
CreateIconFromResource
GetMenuItemID
DlgDirListComboBoxA
LoadMenuIndirectW
PostMessageA
CreatePopupMenu
ToAsciiEx
ShowWindow
LoadAcceleratorsA
DdeQueryStringW
TranslateAcceleratorW
DestroyAcceleratorTable
SetRectEmpty
CopyAcceleratorTableA
DestroyMenu
TranslateMDISysAccel
SetScrollPos
SetRect
GetDialogBaseUnits
CallMsgFilterA
ShowScrollBar
GetMenuDefaultItem
SetCursor
DrawCaption
LoadCursorFromFileA
SetClipboardViewer
GetClassLongA
ShowCursor
GetPropA
CharLowerBuffW
MapVirtualKeyExA
TrackPopupMenu
SetClipboardData
EndDeferWindowPos
CharLowerW
SetWindowTextW
GetSystemMenu
GetDC
SendMessageTimeoutW
EnumDisplaySettingsA
SendInput
GetClassInfoExA
LockWindowUpdate
GetOpenClipboardWindow
GetDCEx
TabbedTextOutA
MonitorFromRect
MapVirtualKeyA
CallNextHookEx
MoveWindow
IsWindowEnabled
IsCharUpperA
GetQueueStatus
GetWindowPlacement
TranslateAcceleratorA
FindWindowW
GetWindowTextLengthW
GetKeyboardState
SetCapture
GetUserObjectSecurity
MenuItemFromPoint
OpenWindowStationW
GetGUIThreadInfo
InvalidateRgn
CloseWindow
DrawTextExW
GetDlgItemInt
ToUnicodeEx
CreateWindowExW
SetMenuDefaultItem
OffsetRect
LoadAcceleratorsW
ModifyMenuA
CreateMDIWindowA
CreateDialogParamW
GetClientRect
ShowWindowAsync
DrawIcon
IsDialogMessage
LookupIconIdFromDirectory
ChangeDisplaySettingsA
FindWindowA
DdeGetData
OpenInputDesktop
InSendMessage
mouse_event
CreateIcon
GetParent
GetScrollPos
GetClassLongW
PostThreadMessageA
ReplyMessage
DdeCreateDataHandle
SetMessageExtraInfo
WinHelpA
SwapMouseButton
GetMessageExtraInfo
LoadIconW
GetMenuItemCount
WindowFromPoint
SetWindowRgn
UnpackDDElParam
SetWindowPlacement
ReleaseDC
GetClassInfoW
GetClipboardFormatNameW
GetInputState
RealChildWindowFromPoint
GetLastActivePopup
DefMDIChildProcW
IsCharLowerA
KillTimer
PeekMessageA
ScrollWindow
RegisterWindowMessageA
SetDlgItemTextW
IsDlgButtonChecked
TranslateMessage
LoadImageA
DeferWindowPos
ChildWindowFromPointEx
GetPropW
RegisterDeviceNotificationW
CreateIconFromResourceEx
DefWindowProcA
CharNextA
FrameRect
IsClipboardFormatAvailable
GetWindowLongW
CreateCaret
SetDlgItemInt
EnumThreadWindows
GetTitleBarInfo
LoadStringA
EnableWindow
CharUpperBuffA
DestroyWindow
ShowOwnedPopups
ExitWindowsEx
GetWindowDC
ModifyMenuW
IsCharAlphaNumericW
DrawTextW
SetParent
SetWindowsHookExW
SetForegroundWindow
SystemParametersInfoA
GetMenuItemRect
GetClassInfoA
IsWindowUnicode
ScreenToClient
SetWindowTextA
DispatchMessageW
MessageBoxA
UnhookWindowsHookEx
UnregisterHotKey
IsRectEmpty
OemToCharBuffA
ScrollWindowEx
DdeCreateStringHandleW
ShowCaret
SendMessageTimeoutA
TabbedTextOutW
AdjustWindowRect
ValidateRect
GetSysColorBrush
DdeDisconnect
GetDesktopWindow
IsCharAlphaA
RegisterWindowMessageW
SendMessageW
GetCursorInfo
DrawAnimatedRects
InvertRect
CloseClipboard
DdeFreeDataHandle
GetScrollInfo
DestroyCaret
IsMenu
InvalidateRect
CountClipboardFormats
CharLowerBuffA
EndPaint
GetMenuItemInfoA
RemoveMenu
DrawEdge
EnumDisplaySettingsW
DeleteMenu
CopyAcceleratorTableW
ValidateRgn
DialogBoxParamW
DdeFreeStringHandle
GetDoubleClickTime
DlgDirListComboBoxW
GetWindowLongA
GetMenu
DialogBoxIndirectParamA
SetThreadDesktop
UnionRect
CreateIconIndirect
GetWindowWord
SetPropA
CopyRect
CloseDesktop
CharUpperBuffW
EndDialog
CreateDesktopW
CharUpperA
PostMessageW
GetMenuInfo
SendDlgItemMessageW
DispatchMessageA
CreateDialogIndirectParamA
DdeNameService
RemovePropA
DlgDirListA
MessageBoxIndirectA
GetWindowContextHelpId
SetCaretBlinkTime
ReleaseCapture
GetMenuCheckMarkDimensions
CreateMDIWindowW
AdjustWindowRectEx
DdeCreateStringHandleA
CheckMenuItem
wsprintfA
TileWindows
SendMessageA
CharToOemBuffA
FlashWindowEx
DrawTextExA
GetMessageA
SetDlgItemTextA
GetMenuContextHelpId
AllowSetForegroundWindow
MsgWaitForMultipleObjectsEx
GetTopWindow
DefWindowProcW
InsertMenuItemW
GetCaretBlinkTime
LoadCursorFromFileW
DdePostAdvise
DialogBoxIndirectParamW
GetMenuStringA
SetFocus
IntersectRect
SetMenuContextHelpId
keybd_event
wsprintfW
FindWindowExA
IsIconic
SetWindowPos
ChangeDisplaySettingsW
MsgWaitForMultipleObjects
BeginPaint
UpdateWindow
RegisterClassExA
GetDlgItemTextA
CreateWindowExA
ReuseDDElParam
GetWindowRgn
FindWindowExW
DdeUnaccessData
GetUserObjectInformationA
GetDlgItem
GetMonitorInfoW
ClipCursor
EnumDisplayMonitors
VkKeyScanW
MessageBeep
GetKeyboardLayoutNameA
AppendMenuW
HiliteMenuItem
CreateAcceleratorTableA
DrawTextA
ole32
OleCreateFromFile
WriteFmtUserTypeStg
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleSetMenuDescriptor
OleRun
OleTranslateAccelerator
CreateOleAdviseHolder
OleInitialize
OleIsRunning
OleLoad
OleCreate
OleDestroyMenuDescriptor
CoCreateInstanceEx
OleRegGetUserType
StringFromIID
GetClassFile
CoTaskMemRealloc
CoRegisterMallocSpy
CoImpersonateClient
CoUnmarshalInterface
ReadFmtUserTypeStg
ReleaseStgMedium
OleLockRunning
CoTreatAsClass
OleUninitialize
CoFileTimeNow
CoCreateInstance
OleSaveToStream
CreateStreamOnHGlobal
CLSIDFromString
CoMarshalInterThreadInterfaceInStream
WriteClassStm
BindMoniker
IsAccelerator
StgCreateDocfileOnILockBytes
OleIsCurrentClipboard
CreateBindCtx
CreateFileMoniker
ReadClassStm
CreateILockBytesOnHGlobal
OleSetContainedObject
OleDuplicateData
CoInitializeSecurity
GetHGlobalFromILockBytes
StgIsStorageFile
StgOpenStorageOnILockBytes
OleRegEnumVerbs
CoRevokeClassObject
GetRunningObjectTable
CreateItemMoniker
CreateClassMoniker
CoGetMalloc
CoLoadLibrary
DoDragDrop
OleGetClipboard
OleSave
MkParseDisplayName
StgCreateDocfile
CoTaskMemAlloc
StringFromGUID2
CoLockObjectExternal
CoGetInterfaceAndReleaseStream
StgCreateStorageEx
CoUninitialize
OleLoadFromStream
OleDraw
OleRegGetMiscStatus
IIDFromString
OleQueryLinkFromData
RevokeDragDrop
CoReleaseMarshalData
GetHGlobalFromStream
CoRegisterClassObject
CreateDataAdviseHolder
CoGetClassObject
OleCreateLinkFromData
OleFlushClipboard
CoMarshalInterface
CoQueryProxyBlanket
ReadClassStg
CoTaskMemFree
CoCopyProxy
CoInitialize
PropVariantClear
CoSetProxyBlanket
CoDisconnectObject
CoRevertToSelf
FreePropVariantArray
ProgIDFromCLSID
OleGetIconOfClass
RegisterDragDrop
OleSetClipboard
CoRevokeMallocSpy
CoSuspendClassObjects
StringFromCLSID
CoGetObject
OleCreateMenuDescriptor
StgIsStorageILockBytes
OleCreateFromData
OleCreateStaticFromData
SetConvertStg
StgOpenStorage
WriteClassStg
OleQueryCreateFromData
CLSIDFromProgID
CoCreateGuid
CoResumeClassObjects
CreateGenericComposite
OleCreateLinkToFile
CoInitializeEx
comctl32
ImageList_DragLeave
ImageList_LoadImage
ImageList_Duplicate
ImageList_GetImageInfo
FlatSB_ShowScrollBar
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_DragEnter
PropertySheetW
ImageList_DragMove
CreatePropertySheetPageW
ImageList_SetFlags
MakeDragList
ImageList_GetBkColor
ImageList_GetIconSize
ImageList_Remove
ImageList_SetDragCursorImage
ImageList_LoadImageA
ImageList_Copy
ImageList_Write
ImageList_DrawIndirect
InitializeFlatSB
ImageList_SetIconSize
ImageList_SetOverlayImage
CreateStatusWindowW
ImageList_Merge
ImageList_GetImageCount
ImageList_Create
ImageList_Add
ImageList_Replace
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_AddMasked
InitCommonControlsEx
ImageList_GetIcon
PropertySheetA
ImageList_DragShowNolock
FlatSB_EnableScrollBar
ImageList_GetDragImage
DrawStatusTextW
ImageList_SetImageCount
_TrackMouseEvent
ImageList_EndDrag
ord17
ImageList_AddIcon
CreatePropertySheetPageA
CreateUpDownControl
ImageList_Draw
ImageList_LoadImageW
DestroyPropertySheetPage
CreateToolbarEx
ImageList_Read
advapi32
RegUnLoadKeyW
RegCreateKeyA
ImpersonateSelf
RegQueryValueA
AddAce
GetSidSubAuthorityCount
OpenServiceA
SetFileSecurityW
SetSecurityInfo
CryptExportKey
CreateProcessAsUserA
CreateProcessAsUserW
CryptDeriveKey
RegGetKeySecurity
EqualPrefixSid
RegNotifyChangeKeyValue
SetThreadToken
GetSecurityDescriptorControl
RegisterServiceCtrlHandlerW
SetEntriesInAclW
RegUnLoadKeyA
ConvertStringSidToSidW
CloseEncryptedFileRaw
RegDeleteKeyA
RegEnumValueA
LsaLookupNames
UnlockServiceDatabase
ImpersonateLoggedOnUser
ChangeServiceConfigA
CryptVerifySignatureA
CryptGenKey
RegOpenCurrentUser
SetSecurityDescriptorDacl
RegQueryInfoKeyA
SetFileSecurityA
CopySid
LsaClose
RegLoadKeyA
OpenEncryptedFileRawW
QueryServiceStatusEx
GetAclInformation
DuplicateTokenEx
CryptGetUserKey
EncryptFileW
RegDeleteValueW
LookupAccountSidA
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegEnumValueW
ReportEventW
AllocateAndInitializeSid
RegDeleteValueA
GetTokenInformation
ChangeServiceConfigW
LsaNtStatusToWinError
SetSecurityDescriptorSacl
GetSecurityInfo
CreateServiceW
CryptImportKey
RegisterServiceCtrlHandlerExA
RegOpenKeyA
InitializeSecurityDescriptor
WriteEncryptedFileRaw
GetNamedSecurityInfoA
LogonUserA
LsaFreeMemory
OpenServiceW
RegSetValueA
StartServiceW
GetUserNameW
CryptHashData
LookupAccountNameA
SetTokenInformation
RegCloseKey
SetNamedSecurityInfoA
GetUserNameA
GetSecurityDescriptorLength
OpenThreadToken
QueryServiceStatus
RegSaveKeyW
LsaAddAccountRights
RegSetValueW
LookupAccountSidW
StartServiceCtrlDispatcherA
CryptDestroyKey
LsaRemoveAccountRights
DeregisterEventSource
RegCreateKeyExA
RegEnumKeyExW
AccessCheck
SetSecurityDescriptorOwner
CryptEnumProvidersW
RegisterEventSourceA
GetFileSecurityW
DeleteAce
OpenProcessToken
DeleteService
AddAccessAllowedAce
RegQueryValueW
OpenSCManagerA
GetFileSecurityA
CryptGetHashParam
InitiateSystemShutdownA
CryptAcquireContextA
CryptCreateHash
LockServiceDatabase
CryptDestroyHash
RegQueryInfoKeyW
CryptDecrypt
RegLoadKeyW
EnumServicesStatusA
RegSaveKeyA
RegCreateKeyW
RegisterEventSourceW
CryptAcquireContextW
RegEnumKeyExA
InitializeSid
ReportEventA
GetSecurityDescriptorDacl
LookupPrivilegeNameA
GetExplicitEntriesFromAclW
CryptReleaseContext
CloseServiceHandle
IsValidAcl
GetEffectiveRightsFromAclA
EnumDependentServicesW
RegRestoreKeyW
RegCreateKeyExW
GetKernelObjectSecurity
GetSecurityDescriptorSacl
LookupPrivilegeValueA
ReadEncryptedFileRaw
CryptGenRandom
RegEnumKeyA
RegDeleteKeyW
MakeAbsoluteSD
ImpersonateNamedPipeClient
LsaQueryInformationPolicy
BuildTrusteeWithNameW
LookupPrivilegeValueW
CryptGetKeyParam
RegisterServiceCtrlHandlerA
ConvertSecurityDescriptorToStringSecurityDescriptorW
QueryServiceConfigA
RegSetKeySecurity
BuildExplicitAccessWithNameW
GetSidLengthRequired
ChangeServiceConfig2W
ControlService
RegRestoreKeyA
IsValidSid
FreeSid
SetSecurityDescriptorControl
SetNamedSecurityInfoW
GetSidIdentifierAuthority
CryptEncrypt
RegOpenKeyExA
LookupPrivilegeDisplayNameA
EqualSid
ConvertSidToStringSidW
StartServiceA
SetSecurityDescriptorGroup
SetEntriesInAclA
LogonUserW
RegOpenKeyExW
GetNamedSecurityInfoW
RevertToSelf
GetLengthSid
BuildTrusteeWithSidW
RegFlushKey
RegConnectRegistryW
LsaOpenPolicy
MakeSelfRelativeSD
CreateWellKnownSid
SetServiceStatus
RegSetValueExW
GetAce
QueryServiceLockStatusW
RegSetValueExA
RegConnectRegistryA
ChangeServiceConfig2A
LookupAccountNameW
MapGenericMask
RegDisablePredefinedCache
RegOpenKeyW
GetSidSubAuthority
OpenSCManagerW
DuplicateToken
StartServiceCtrlDispatcherW
RegEnumKeyW
IsValidSecurityDescriptor
QueryServiceConfigW
CheckTokenMembership
CreateServiceA
LsaLookupSids
GetSecurityDescriptorGroup
RegQueryValueExA
GetSecurityDescriptorOwner
InitiateSystemShutdownExW
SetServiceObjectSecurity
RegQueryValueExW
InitializeAcl
CryptSetProvParam
AdjustTokenPrivileges
ConvertStringSidToSidA
oleaut32
LoadTypeLi
Sections
.text Size: 81KB - Virtual size: 81KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 130KB - Virtual size: 130KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 121KB - Virtual size: 121KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ