ebdf812791c696d3650b4dfdf772cc9a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ebdf812791c696d3650b4dfdf772cc9a_JaffaCakes118
Size

1.4MB
MD5

ebdf812791c696d3650b4dfdf772cc9a
SHA1

18f02bc3d76be08745125c0091faf2f9d15152be
SHA256

093ee1c69f335cd8874f3612b7bec08e1ee89623c956a1491896a37cd50789a0
SHA512

bc3eeef38ef8a684ffdd09951062d368724e7fd38bafa6c68953b1296d73179b37b656006484941116852af40becf6b2a37cbda8837df5129a15a22046de3194
SSDEEP

24576:Lp054n7aa9zEx8zqXK3gK4xZ3KO2TSfpjQo03r5qJFAC4x4hRQzBPOT5x3Anbf3q:QOaa968zYUgR4J+tQoo5qLcnzasbXlHs

Score

3^/10

Malware Config

Signatures

Unsigned PE 12 IoCs

Checks for missing Authenticode signature.

resource
ebdf812791c696d3650b4dfdf772cc9a_JaffaCakes118
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/nsDialogs.dll
unpack001/$TEMP/[email protected]
unpack001/DDLPCMiler.dll
unpack001/DDLProMiles.dll
unpack001/DDLclassic.dll
unpack001/DDLddvir.dll
unpack001/DDLreports.dll
unpack001/DDLsettings.dll
unpack001/DriversDailyLog.exe
unpack001/uninstDDL.exe

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/uninstDDL.exe	nsis_installer_1
static1/unpack001/uninstDDL.exe	nsis_installer_2

Files

ebdf812791c696d3650b4dfdf772cc9a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyA
lstrcpynA
FreeLibrary
lstrcatA
GetProcAddress
LoadLibraryA
GetModuleHandleA
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
VirtualAlloc
VirtualProtect

user32

wsprintfA

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 520B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:4 windows x86 arch:x86

1e2884056e655f2b7bc5a904e352fc80

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyA
GetFileAttributesA
lstrcmpiA
MulDiv
lstrlenA
HeapFree
GetCurrentDirectoryA
HeapAlloc
HeapReAlloc
GlobalFree
lstrcpynA
GlobalAlloc
GetProcessHeap
SetCurrentDirectoryA

user32

GetPropA
DestroyWindow
CallWindowProcA
SetCursor
LoadCursorA
RemovePropA
CharPrevA
GetWindowLongA
DrawTextA
GetWindowTextA
GetDlgItem
SetWindowLongA
SetWindowPos
CreateDialogParamA
MapWindowPoints
GetWindowRect
SetPropA
CreateWindowExA
IsWindow
SetTimer
KillTimer
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
ShowWindow
wsprintfA
MapDialogRect
GetClientRect
CharNextA
SendMessageA
DrawFocusRect

gdi32

SetTextColor

shell32

SHBrowseForFolderA
SHGetPathFromIDListA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$TEMP/[email protected]
.dll windows:1 windows x86 arch:x86

fce95dea9b540449fe77cc702d981cc0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
GetCurrentProcess
GetEnvironmentStringsA
GetModuleHandleA
GetProcAddress
RtlUnwind
lstrcpyA

crtdll

_fdopen
_open_osfhandle
atol
fclose
_cexit
localtime
malloc
raise
setbuf
strftime
strncpy
time

Exports

Exports

checkexpired
currentdate

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 24B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 196B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 668B - Virtual size: 668B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 192B - Virtual size: 192B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE

.edata
Size: 104B - Virtual size: 104B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
DDLPCMiler.chm
.chm
DDLPCMiler.dll
.dll windows:4 windows x86 arch:x86

87748a437b78dc4bc9e749481e2bb34f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetVersionExA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetEnvironmentVariableA
HeapReAlloc
GetLastError
HeapSize
GetACP
GetTimeZoneInformation
TerminateProcess
ExitProcess
RaiseException
HeapAlloc
GetCommandLineA
HeapFree
RtlUnwind
GetTickCount
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GlobalFlags
GetProcessVersion
FindResourceExA
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileTime
GetFileSize
GetFileAttributesA
lstrcmpA
GetCurrentThread
GetThreadLocale
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
MulDiv
SetLastError
LocalFree
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
FindResourceA
LoadResource
LockResource
GlobalFree
LoadLibraryA
GetProcAddress
InterlockedDecrement
lstrlenA
FormatMessageA
GetModuleFileNameA
GlobalAlloc
GlobalLock
GlobalUnlock
GetStringTypeW

user32

PostThreadMessageA
GetDesktopWindow
PtInRect
GetClassNameA
GetSysColorBrush
LoadStringA
UnregisterClassA
SetWindowContextHelpId
GetMessageA
TranslateMessage
GetCursorPos
SetCursor
PostQuitMessage
DestroyMenu
CharUpperA
GetWindowDC
ClientToScreen
GetDC
ReleaseDC
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
ScreenToClient
RegisterClipboardFormatA
GetScrollPos
GetTopWindow
MessageBoxA
IsChild
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
CopyAcceleratorTableA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
SendMessageA
EnableWindow
GetWindowRect
PostMessageA
GetParent
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
InvalidateRect
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
MessageBeep
GetNextDlgGroupItem
IsWindowVisible
SetRect
CreateDialogIndirectParamA
DestroyWindow
UnhookWindowsHookEx
MapDialogRect
ShowWindow
GetCapture
GetActiveWindow
SetActiveWindow
GetAsyncKeyState
SetFocus
IsWindowEnabled
DrawFrameControl
ReleaseCapture
SetCapture
SystemParametersInfoA
LoadCursorA
LoadIconA
GetSysColor
ValidateRect
GetClientRect
IsWindow
LoadMenuA
SetWindowPos
EqualRect
UnionRect
GetWindowLongA
GetSystemMetrics
GetDlgItem
LockWindowUpdate
DrawFocusRect
FillRect
GetFocus
CopyRect
UpdateWindow
OffsetRect
DrawTextA
BeginPaint
EndPaint
TabbedTextOutA
GrayStringA
SetWindowLongA
InsertMenuA
GetSystemMenu
GetWindowTextA
CharNextA
SendDlgItemMessageA

gdi32

GetViewportExtEx
GetWindowExtEx
CreatePen
GetMapMode
DPtoLP
EnumFontFamiliesExA
GetTextColor
LPtoDP
DeleteObject
LineTo
MoveToEx
ScaleWindowExtEx
SetWindowExtEx
EndDoc
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetROP2
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetBkColor
GetStockObject
Rectangle
StartDocA
Escape
TextOutA
RectVisible
PtVisible
ExtTextOutA
GetTextExtentPoint32A
CreateFontIndirectA
CreateSolidBrush
StartPage
GetDeviceCaps
GetTextMetricsA
EndPage

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA
PrintDlgA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

comctl32

ImageList_GetIconSize
ImageList_DrawEx
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
ImageList_Destroy
ImageList_Draw

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
OleRun
CLSIDFromString
CLSIDFromProgID
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard

olepro32

ord253

oleaut32

SysAllocStringByteLen
SysFreeString
VariantChangeType
VariantClear
SysAllocString
SysAllocStringLen
SysStringLen
VariantCopy
VariantTimeToSystemTime

Exports

Exports

CreateDDLPCMilerObject

Sections

.text
Size: 184KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DDLProMiles.chm
.chm
DDLProMiles.dll
.dll windows:4 windows x86 arch:x86

538683087bda15abc78d53d23bef8844

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LCMapStringW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
LCMapStringA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapReAlloc
GetModuleFileNameA
HeapSize
GetACP
GetTimeZoneInformation
TerminateProcess
ExitProcess
RaiseException
HeapAlloc
GetCommandLineA
HeapFree
RtlUnwind
GetTickCount
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GlobalFlags
GetProcessVersion
FindResourceExA
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileTime
GetFileSize
GetFileAttributesA
lstrcmpA
GetCurrentThread
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
MulDiv
SetLastError
lstrcpynA
LocalFree
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
FindResourceA
LoadResource
LockResource
GlobalFree
LoadLibraryA
GetProcAddress
lstrlenA
FormatMessageA
GlobalAlloc
GlobalLock
GlobalUnlock
GetLastError
InterlockedDecrement
GetModuleHandleA
GetStringTypeA

user32

PostThreadMessageA
SetRect
CopyAcceleratorTableA
GetDesktopWindow
PtInRect
GetClassNameA
GetSysColorBrush
LoadStringA
UnregisterClassA
DestroyMenu
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
SetCursor
PostQuitMessage
CharNextA
CharUpperA
GetWindowDC
ClientToScreen
GetDC
ReleaseDC
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
ScreenToClient
RegisterClipboardFormatA
IsWindowVisible
GetScrollPos
GetTopWindow
MessageBoxA
IsChild
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetNextDlgGroupItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
SendMessageA
EnableWindow
GetWindowRect
PostMessageA
GetParent
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClientRect
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
IsIconic
GetWindowPlacement
MessageBeep
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
UnhookWindowsHookEx
MapDialogRect
ShowWindow
GetCapture
GetActiveWindow
SetActiveWindow
GetAsyncKeyState
SetFocus
IsWindowEnabled
GetSystemMetrics
SystemParametersInfoA
LoadCursorA
LoadIconA
GetSysColor
SetWindowPos
IsWindow
EqualRect
UnionRect
InvalidateRect
GetWindowLongA
GetDlgItem
LockWindowUpdate
DrawFocusRect
FillRect
GetFocus
CopyRect
UpdateWindow
OffsetRect
DrawTextA
BeginPaint
EndPaint
TabbedTextOutA
GrayStringA
SetWindowLongA
InsertMenuA
GetSystemMenu
SetCapture
ReleaseCapture
DrawFrameControl

gdi32

GetViewportExtEx
GetWindowExtEx
CreatePen
GetTextColor
EnumFontFamiliesExA
GetMapMode
DPtoLP
LPtoDP
DeleteObject
LineTo
MoveToEx
ScaleWindowExtEx
EndDoc
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetBkColor
StartDocA
Escape
TextOutA
RectVisible
PtVisible
ExtTextOutA
GetTextExtentPoint32A
CreateFontIndirectA
CreateSolidBrush
StartPage
GetDeviceCaps
GetTextMetricsA
EndPage
SetWindowExtEx

comdlg32

PrintDlgA
GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA

comctl32

ImageList_GetIconSize
ImageList_DrawEx
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
ImageList_Destroy
ImageList_Draw

oledlg

ord8

ole32

OleInitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard

olepro32

ord253

oleaut32

SysAllocStringByteLen
SysStringByteLen
SysFreeString
VariantCopy
VariantClear
VariantChangeType
SysAllocStringLen
SysAllocString
SysStringLen
VariantTimeToSystemTime

Exports

Exports

CreateDDLProMilesObject

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DDLReports.chm
.chm
DDLclassic.chm
.chm
DDLclassic.dll
.dll windows:4 windows x86 arch:x86

ab7fea070dd9fe107b5f3d9bc96e1a6c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
LCMapStringA
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
HeapReAlloc
HeapSize
GetTimeZoneInformation
GetACP
TerminateProcess
ExitProcess
HeapAlloc
GetCommandLineA
RaiseException
HeapFree
RtlUnwind
GetOEMCP
GetCPInfo
GetProcessVersion
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SetFileAttributesA
GetFileAttributesA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpA
GetCurrentThread
SetLastError
CloseHandle
MulDiv
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrlenA
lstrcpynA
FormatMessageA
LoadLibraryA
GetLastError
GlobalAlloc
GlobalLock
GlobalFlags
LocalAlloc
LocalFree
FindResourceA
LoadResource
LockResource
SizeofResource
GlobalUnlock
GlobalFree
GetModuleHandleA
GetProcAddress
GetCurrentProcess
GetVersionExA
GetModuleFileNameA
IsBadReadPtr
FreeLibrary

user32

GetMenuCheckMarkDimensions
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
WindowFromPoint
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
GetDesktopWindow
DestroyMenu
ReuseDDElParam
UnpackDDElParam
PostQuitMessage
ShowOwnedPopups
CreateDialogIndirectParamA
EndDialog
CharUpperA
LoadStringA
SetRect
WaitMessage
GetWindowThreadProcessId
IsZoomed
UnregisterClassA
GetClassNameA
GetSysColorBrush
InflateRect
GetTabbedTextExtentA
SetTimer
GetDCEx
LockWindowUpdate
SetParent
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
EnableMenuItem
GetNextDlgTabItem
GetMessageA
TranslateMessage
GetActiveWindow
ValidateRect
GetCursorPos
FillRect
MapWindowPoints
DispatchMessageA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetKeyState
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
OffsetRect
IntersectRect
GetWindowPlacement
SetFocus
ShowWindow
MoveWindow
SetWindowLongA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
IsWindowEnabled
GetWindowLongA
MessageBoxA
LoadMenuA
SetWindowPos
SetMenu
IsMenu
DeleteMenu
FindWindowA
GetLastActivePopup
GetClassInfoA
DefWindowProcA
RegisterWindowMessageA
UpdateWindow
ReleaseCapture
GetFocus
MapDialogRect
GetParent
DestroyCursor
SetClassLongA
SystemParametersInfoA
PeekMessageA
IsIconic
DrawIcon
LoadIconA
SetCursor
PtInRect
SetActiveWindow
SetForegroundWindow
SetCapture
GetMenu
CheckMenuItem
EnableWindow
GetDlgCtrlID
IsWindow
GetSysColor
LoadCursorA
KillTimer
SendMessageA
GetClientRect
CopyRect
GetWindowRect
GetSystemMetrics
PostMessageA
BringWindowToTop
InvalidateRect
RemovePropA

gdi32

SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
GetNearestColor
SetTextAlign
GetCurrentPositionEx
DeleteDC
EndPage
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
TextOutA
Escape
CreateDCA
PatBlt
CreateRectRgnIndirect
GetViewportOrgEx
StretchDIBits
CreateCompatibleDC
CreateCompatibleBitmap
GetCharWidthA
SetRectRgn
CombineRgn
GetBkColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
CreateBitmap
DPtoLP
LPtoDP
SetBkColor
SetTextColor
GetClipBox
CreateHatchBrush
CreateRectRgn
StartPage
CreateSolidBrush
GetTextMetricsA
GetDeviceCaps
ExtTextOutA
SetAbortProc
AbortDoc
EndDoc
StartDocA
GetObjectA
DeleteObject
CreateFontIndirectA
Rectangle
CreatePen
GetTextExtentPoint32A
GetTextAlign

comdlg32

PrintDlgA
CommDlgExtendedError

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

DragQueryFileA
DragFinish

comctl32

ord17

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Exports

Exports

GetPrintInterface2

Sections

.rdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 249KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DDLddvir.chm
.chm
DDLddvir.dll
.dll windows:4 windows x86 arch:x86

6d63bab00e81ba67532658065c119375

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetErrorMode
GlobalFlags
GetProcessVersion
GetCPInfo
GetOEMCP
RtlUnwind
HeapFree
GetCommandLineA
ExitProcess
TerminateProcess
HeapAlloc
RaiseException
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
TlsGetValue
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SetFileAttributesA
GetFileAttributesA
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
GetLastError
SetLastError
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GetModuleFileNameA
LocalFree
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
CloseHandle
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
LoadLibraryA
GetProcAddress
FreeLibrary
lstrcpyA
MulDiv
GetVersionExA
LCMapStringA

user32

wsprintfA
WinHelpA
GetCapture
GetTopWindow
SetScrollPos
SetScrollRange
ScrollWindow
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
EqualRect
AdjustWindowRectEx
SetFocus
MapWindowPoints
SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
ClientToScreen
GetDC
ReleaseDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
LoadStringA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
UnregisterClassA
GetClassNameA
GetSysColorBrush
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
RegisterClassA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
RegisterWindowMessageA
IsIconic
GetWindowPlacement
EndDialog
SetActiveWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
ShowOwnedPopups
PostQuitMessage
LoadIconA
GetClassInfoA
DefWindowProcA
SystemParametersInfoA
PeekMessageA
SetCursor
GetWindowRect
SendMessageA
DestroyIcon
DestroyCursor
LoadImageA
PtInRect
GetCursorPos
ScreenToClient
EnableWindow
GetParent
PostMessageA
CopyRect
GetClientRect
GetMenu
GetMenuItemCount
GetSubMenu
GetClassLongA
GetMenuItemID
SetTimer
InvalidateRect
UpdateWindow
KillTimer
SetWindowPos
LoadCursorA
IsWindow
GetSysColor
ModifyMenuA

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
CreateSolidBrush
LineTo
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPoint32A
DeleteObject
GetWindowOrgEx
GetNearestColor
CreatePen
GetDeviceCaps
CreateFontIndirectA
MoveToEx
GetTextMetricsA

comdlg32

CommDlgExtendedError
PrintDlgA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA

shell32

DragFinish
DragQueryFileA

comctl32

ord17

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Exports

Exports

CreateDDVIRObject

Sections

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 254KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DDLreports.dll
.dll windows:4 windows x86 arch:x86

83e5dbc7d51a4a48d847d9bc2dfbf00d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
HeapDestroy
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetEnvironmentVariableA
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
RaiseException
HeapAlloc
TerminateProcess
ExitProcess
GetCommandLineA
HeapFree
RtlUnwind
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
GetPrivateProfileStringA
SetFileAttributesA
GetFileTime
GetFileSize
GetFileAttributesA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GlobalFindAtomA
MulDiv
GetModuleHandleA
SetLastError
LocalFree
LockResource
FindResourceA
LoadResource
lstrcatA
GetModuleFileNameA
lstrcpyA
lstrcpynA
GlobalGetAtomNameA
GlobalAddAtomA
GetVersion
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
CloseHandle
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
LoadLibraryA
GetProcAddress
GetLastError
FreeLibrary
_lopen
_lread
_llseek
GlobalAlloc
_hread
_lclose
GlobalFree
GlobalLock
GlobalUnlock
GetVersionExA
GetStringTypeW

user32

CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
RegisterClassA
IsChild
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
AdjustWindowRectEx
MapWindowPoints
CharUpperA
InflateRect
SetRect
FillRect
PtInRect
FindWindowA
LoadStringA
WaitMessage
GetWindowThreadProcessId
WindowFromPoint
IsZoomed
UnregisterClassA
GetClassNameA
GetSysColorBrush
GetTabbedTextExtentA
GetDCEx
LockWindowUpdate
SetParent
IntersectRect
GetWindowPlacement
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
EndDialog
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
BringWindowToTop
IsIconic
EqualRect
CopyRect
wsprintfA
GetMenuItemCount
GetSubMenu
GetMenuItemID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
RemovePropA
LoadMenuA
DestroyMenu
GetDesktopWindow
GetWindow
GetCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
UnhookWindowsHookEx
SetFocus
ShowWindow
SetWindowLongA
GetDlgCtrlID
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
CallNextHookEx
ValidateRect
IsWindowVisible
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
ShowOwnedPopups
PostQuitMessage
SetWindowPos
LoadIconA
GetClassInfoA
DefWindowProcA
SetTimer
KillTimer
RegisterWindowMessageA
SetForegroundWindow
GetKeyState
ReleaseCapture
SetCapture
SetCursor
GetCursorPos
ScreenToClient
GetClientRect
GetDC
ReleaseDC
GetParent
GetWindowRect
InvalidateRect
DestroyCursor
UpdateWindow
PostMessageA
SetClassLongA
GetSysColor
GetMessageTime
GetMessagePos
GetForegroundWindow
GetMenu
OffsetRect
IsWindow
LoadCursorA
EnableWindow
PeekMessageA
SendMessageA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SystemParametersInfoA
MoveWindow

gdi32

CreateBitmap
CreateDCA
StartDocA
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
CreateRectRgn
DeleteDC
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
SetRectRgn
CombineRgn
CreateRectRgnIndirect
DPtoLP
Rectangle
GetViewportOrgEx
LPtoDP
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateCompatibleDC
CreateCompatibleBitmap
GetCharWidthA
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
GetTextExtentPoint32A
GetTextMetricsA
CreatePen
GetDeviceCaps
CreateSolidBrush
DeleteObject
SetBrushOrgEx
UnrealizeObject
PatBlt
CreateFontIndirectA
SetStretchBltMode
StretchDIBits

comdlg32

GetSaveFileNameA
GetFileTitleA
PrintDlgA
CommDlgExtendedError
GetOpenFileNameA
ChooseFontA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegSetValueExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA

shell32

DragFinish
DragQueryFileA

comctl32

ord17

Exports

Exports

CreateReportObject

Sections

.rdata
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 206KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DDLsettings.dll
.dll windows:4 windows x86 arch:x86

633639f74a18a8d3a278663fda665b38

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

RaiseException
HeapSize
HeapReAlloc
GetACP
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapAlloc
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
HeapFree
TerminateProcess
ExitProcess
GetCommandLineA
RtlUnwind
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
GetOEMCP
GetCPInfo
GetProcessVersion
WritePrivateProfileStringA
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetLastError
lstrcpynA
GlobalFree
GetModuleFileNameA
LocalFree
GlobalUnlock
SetLastError
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
CloseHandle
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
lstrcpyA
MulDiv
GetVersionExA
HeapDestroy

user32

GetTopWindow
SetScrollInfo
GetScrollInfo
AdjustWindowRectEx
SetFocus
SetActiveWindow
MapWindowPoints
SendDlgItemMessageA
LoadIconA
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
CreateDialogIndirectParamA
EndDialog
DestroyMenu
LoadStringA
UnregisterClassA
GetClassNameA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetCapture
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IsIconic
GetWindowPlacement
GetSystemMetrics
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
CallNextHookEx
ValidateRect
IsWindowVisible
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
PostQuitMessage
CreatePopupMenu
InsertMenuA
IsClipboardFormatAvailable
GetKeyState
SetRect
GetSysColorBrush
SetRectEmpty
DrawEdge
InflateRect
GetDC
ReleaseDC
ReleaseCapture
SetCapture
ChildWindowFromPoint
GetCursorPos
ScreenToClient
SetCursor
IsRectEmpty
OffsetRect
PtInRect
DestroyCursor
LoadImageA
PeekMessageA
IsChild
SendMessageA
GetWindowRect
SystemParametersInfoA
DestroyIcon
EnableWindow
GetParent
PostMessageA
GetSysColor
WinHelpA
DefWindowProcA
wsprintfA
IsWindow
LoadCursorA
KillTimer
UpdateWindow
InvalidateRect
CopyRect
FillRect
GetClientRect
SetTimer
ModifyMenuA

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
CreateSolidBrush
Rectangle
GetStockObject
CreateRectRgn
CreatePen
Ellipse
GetBkColor
CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SelectObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
BitBlt
MoveToEx
LineTo
SetTextAlign
DeleteObject
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextCharsetInfo
EnumFontFamiliesA
SetBrushOrgEx
UnrealizeObject
PatBlt
GetDeviceCaps
CreateFontIndirectA
CreatePolygonRgn
FillRgn
GetTextMetricsA

comdlg32

ChooseFontA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA

comctl32

ord17

Exports

Exports

CreateDDLSettingsObject

Sections

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 141KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DriversDailyLog.chm
.chm
DriversDailyLog.exe
.exe windows:4 windows x86 arch:x86

41e5619dc9713966fe2ccce91b1775d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetGetConnectionA

wininet

InternetReadFile
InternetOpenUrlA
InternetCloseHandle
InternetOpenA

kernel32

RaiseException
GetTimeZoneInformation
GetSystemTime
SetCurrentDirectoryA
GetStartupInfoA
GetCommandLineA
HeapReAlloc
GetACP
HeapSize
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
TerminateProcess
IsBadWritePtr
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
ExitProcess
RtlUnwind
GetOEMCP
GetCPInfo
FindResourceExA
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
ReleaseMutex
CreateMutexA
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalFindAtomA
MulDiv
GetShortPathNameA
GetThreadLocale
GetFullPathNameA
lstrcpynA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
WriteFile
DuplicateHandle
GetTickCount
GlobalAddAtomA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
WaitForSingleObject
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
GetSystemInfo
GlobalMemoryStatus
GetVolumeInformationA
InterlockedDecrement
SetErrorMode
GetLocalTime
OpenFileMappingA
CreateFileMappingA
GlobalReAlloc
SearchPathA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
SetLastError
lstrcpyA
GetProfileStringA
GetModuleHandleA
WinExec
GetFileAttributesA
GetProcAddress
LoadLibraryA
CreateDirectoryA
FlushFileBuffers
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindFirstFileA
OutputDebugStringA
FindClose
GetCurrentDirectoryA
DeleteFileA
FormatMessageA
RemoveDirectoryA
Sleep
GetFileSize
SetFilePointer
ReadFile
_lopen
_lread
_llseek
GlobalAlloc
_hread
_lclose
GlobalFree
FindResourceA
LoadResource
LockResource
SizeofResource
GlobalLock
GlobalUnlock
GetCurrentProcess
GetLastError
GetProcessHeap
HeapAlloc
HeapFree
GetVersionExA
UnhandledExceptionFilter
CreateFileA
CloseHandle
lstrlenA
FreeLibrary
GetComputerNameA
GetModuleFileNameA
VirtualAlloc

user32

SetParent
UnpackDDElParam
ReuseDDElParam
TranslateAcceleratorA
LoadAcceleratorsA
GetWindowThreadProcessId
GetDesktopWindow
WaitMessage
WindowFromPoint
SetRectEmpty
LoadStringA
MapWindowPoints
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetMenuItemID
TrackPopupMenu
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindowPlacement
EndPaint
BeginPaint
GetWindowDC
CharUpperA
GetAsyncKeyState
EndDialog
CreateDialogIndirectParamA
RegisterClipboardFormatA
SetWindowContextHelpId
ShowWindow
MoveWindow
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetMenuCheckMarkDimensions
LoadBitmapA
SetMenuItemBitmaps
EnableMenuItem
GetNextDlgTabItem
GetMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
SetWindowsHookExA
IsWindowEnabled
MessageBoxA
ShowOwnedPopups
UnhookWindowsHookEx
PostQuitMessage
TranslateMessage
DispatchMessageA
DrawEdge
CreateWindowExA
DestroyWindow
GetDC
GetClassNameA
SetWindowPos
IsMenu
ModifyMenuA
DrawMenuBar
SetMenu
GetMenuState
GetClassInfoA
DefWindowProcA
RegisterWindowMessageA
IntersectRect
GetCursorPos
ClientToScreen
CheckMenuItem
GetDlgCtrlID
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
PostMessageA
GetSysColor
SendMessageA
DeleteMenu
GetMenu
InvalidateRect
IsWindow
LoadCursorA
OffsetRect
GetLastActivePopup
GetSystemMenu
GetMenuStringA
wsprintfA
InsertMenuA
GetMenuItemCount
GrayStringA
DrawTextA
TabbedTextOutA
SetTimer
KillTimer
MapDialogRect
GetIconInfo
SetFocus
GetFocus
DrawFocusRect
LockWindowUpdate
GetDCEx
PostThreadMessageA
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
GetSysColorBrush
GetDlgItem
LoadMenuA
GetSubMenu
DestroyCursor
InflateRect
LoadImageA
LoadIconA
SetClassLongA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SystemParametersInfoA
PeekMessageA
MessageBeep
IsIconic
BringWindowToTop
ScreenToClient
GetClientRect
GetWindowRect
GetParent
EqualRect
UnionRect
GetWindowLongA
GetSystemMetrics
FillRect
SetRect
DrawIcon
UpdateWindow
CopyRect
EnableWindow
GetWindow
ReleaseCapture
SetCapture
GetCapture
DestroyIcon
SetForegroundWindow
SetActiveWindow
PtInRect
SetCursor
IsWindowVisible
CallWindowProcA
SetWindowLongA
FindWindowA
DrawFrameControl
IsZoomed
ReleaseDC
DestroyMenu

gdi32

CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
DPtoLP
GetCharWidthA
CreateFontA
LPtoDP
GetTextColor
EnumFontFamiliesExA
SetTextAlign
LineTo
MoveToEx
IntersectClipRect
ExcludeClipRect
SelectClipRgn
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetBkColor
CreateCompatibleBitmap
GetTextExtentPointA
CreateDIBitmap
CreateCompatibleDC
StretchBlt
GetStockObject
Rectangle
SelectPalette
RestoreDC
SaveDC
DeleteDC
CreateBitmap
RealizePalette
BitBlt
GetDIBColorTable
CreatePalette
CreateHalftonePalette
GetTextAlign
CreateHatchBrush
GetNearestColor
GetBkColor
StartDocA
CreatePen
Escape
TextOutA
RectVisible
PtVisible
GetObjectA
CreateSolidBrush
DeleteObject
CreateFontIndirectA
GetTextExtentPoint32A
GetDeviceCaps
StartPage
EndPage
SelectObject
EndDoc
ExtTextOutA
CreatePolygonRgn
FillRgn
SetStretchBltMode
StretchDIBits
GetTextMetricsA
SetBkMode

comdlg32

PrintDlgA
GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

LookupPrivilegeNameA
GetTokenInformation
OpenProcessToken
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegSetValueA

shell32

DragQueryFileA
DragFinish
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA
SHFileOperationA

comctl32

ImageList_DrawEx
ImageList_Draw
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_SetBkColor
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CreateILockBytesOnHGlobal
CoInitializeSecurity
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoInitialize
OleInitialize

olepro32

ord253

oleaut32

VariantInit
SysAllocString
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocStringByteLen
VariantClear
SysStringLen

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.rdata
Size: 373KB - Virtual size: 373KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.8MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 321KB - Virtual size: 321KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
I. M. Sample Driver/Driver_Folder.ini
I. M. Sample Driver/Oct2008.LogData
I. M. Sample Driver/Sample.bmp
I. M. Sample Driver/Sep2008.LogData
Readme.txt
uninstDDL.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

099c0646ea7282d232219f8807883be0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 80KB

.rsrc Size: 4KB - Virtual size: 3KB

2017f2acbdaa42ab3e4adeb8b4c37e7b

Headers

File Characteristics

Imports

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 1024B - Virtual size: 784B

.data Size: 512B - Virtual size: 100B

.reloc Size: 1024B - Virtual size: 520B

1e2884056e655f2b7bc5a904e352fc80

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 572B

fce95dea9b540449fe77cc702d981cc0

Headers

File Characteristics

Imports

kernel32

crtdll

Exports

Exports

Sections

.text Size: 1KB - Virtual size: 1KB

.bss Size: - Virtual size: 24B

.data Size: 196B - Virtual size: 196B

.idata Size: 668B - Virtual size: 668B

.reloc Size: 192B - Virtual size: 192B

.edata Size: 104B - Virtual size: 104B

87748a437b78dc4bc9e749481e2bb34f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 80KB

.rsrc
Size: 4KB - Virtual size: 3KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 784B

.data
Size: 512B - Virtual size: 100B

.reloc
Size: 1024B - Virtual size: 520B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 572B

.text
Size: 1KB - Virtual size: 1KB

.bss
Size: - Virtual size: 24B

.data
Size: 196B - Virtual size: 196B

.idata
Size: 668B - Virtual size: 668B

.reloc
Size: 192B - Virtual size: 192B

.edata
Size: 104B - Virtual size: 104B

.text
Size: 184KB - Virtual size: 181KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 24KB - Virtual size: 35KB

.rsrc
Size: 20KB - Virtual size: 16KB

.reloc
Size: 32KB - Virtual size: 29KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 24KB - Virtual size: 34KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 32KB - Virtual size: 28KB

.rdata
Size: 49KB - Virtual size: 49KB

.data
Size: 249KB - Virtual size: 264KB

.rsrc
Size: 28KB - Virtual size: 28KB

.reloc
Size: 31KB - Virtual size: 31KB