n:\ttmuohkap\ceoeew\bfniemyqc.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
fc6ff3fbb982829cf2c644c0da38c8a0_JaffaCakes118.exe
Resource
win7-20240903-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
fc6ff3fbb982829cf2c644c0da38c8a0_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
2 signatures
150 seconds
General
-
Target
fc6ff3fbb982829cf2c644c0da38c8a0_JaffaCakes118
-
Size
804KB
-
MD5
fc6ff3fbb982829cf2c644c0da38c8a0
-
SHA1
7d3b77878bc30569ad420a62c94c2e69a2438859
-
SHA256
7a8aaf221b949befc2458b379a9d2dbee76db43735b1a4b340205cec8bc6ab0b
-
SHA512
31648b63cac322e15d194c716412706b0a930e2f9f8e4dcb318ff0e7482003994f9a97a030a5ffc9c5cc724b77a5a68373965810f0788f7baf9332115eb156cf
-
SSDEEP
24576:SLj/QgUP3JRXcauwjWnsRWC9HS005/m6yEYS5IaH:sI3JRKLBC9705/PRYSa
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource fc6ff3fbb982829cf2c644c0da38c8a0_JaffaCakes118
Files
-
fc6ff3fbb982829cf2c644c0da38c8a0_JaffaCakes118.exe windows:4 windows x86 arch:x86
de7432e2a97163cbdcba0ca822d75f4e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
gdi32
StretchBlt
GetCharABCWidthsFloatW
SetMapperFlags
GetMapMode
ExtCreatePen
CreateHalftonePalette
GetCharABCWidthsA
SetStretchBltMode
FillRgn
SetDCBrushColor
GetROP2
SetWorldTransform
OffsetViewportOrgEx
FillPath
SetBkColor
StartPage
SelectClipRgn
GetColorAdjustment
SetDCPenColor
SetLayout
GetPixelFormat
LineTo
GetTextExtentPointA
EnumFontsA
CreateDIBPatternBrushPt
CreatePalette
CopyMetaFileW
PathToRegion
GetDCOrgEx
CloseEnhMetaFile
RoundRect
SetPolyFillMode
SetTextColor
CreateEnhMetaFileW
SetPixelV
AnimatePalette
CreateCompatibleDC
CreatePolyPolygonRgn
Polyline
GdiFlush
StartDocW
Arc
ModifyWorldTransform
ExtTextOutA
CreateICW
CreateEnhMetaFileA
GetArcDirection
SelectPalette
FrameRgn
GetCharWidthA
Escape
CreateRoundRectRgn
LPtoDP
SetMetaFileBitsEx
GetTextExtentExPointW
Chord
CreateICA
SetICMMode
GetTextExtentPointW
DPtoLP
Pie
SwapBuffers
GetDeviceCaps
CreateBitmapIndirect
Rectangle
GetViewportExtEx
GetNearestPaletteIndex
DeleteMetaFile
AbortDoc
CreateBrushIndirect
GetEnhMetaFileBits
CreateMetaFileA
SetDIBitsToDevice
ExtSelectClipRgn
UpdateColors
DeleteDC
SetBitmapDimensionEx
StretchDIBits
RemoveFontResourceA
GetCharWidthFloatA
ResetDCA
GetCharABCWidthsW
CopyMetaFileA
EnumFontsW
GetDIBColorTable
GetWinMetaFileBits
PlayEnhMetaFileRecord
GetFontLanguageInfo
SetMapMode
OffsetClipRgn
CloseMetaFile
ExtEscape
EnumMetaFile
EnumFontFamiliesExW
PolyDraw
GetBitmapBits
SetPixel
GetTextExtentExPointA
WidenPath
SetWindowExtEx
GetTextMetricsW
CreateFontA
SetDIBColorTable
GetWindowExtEx
GetBkColor
GetWindowOrgEx
CreateDiscardableBitmap
CloseFigure
SetTextCharacterExtra
CreateEllipticRgn
OffsetWindowOrgEx
TranslateCharsetInfo
GetClipBox
SetRectRgn
CreateBitmap
CombineRgn
SetViewportExtEx
GetCharacterPlacementW
GetObjectType
GetObjectA
GetPixel
Ellipse
CreateRectRgnIndirect
ExtCreateRegion
GetObjectW
OffsetRgn
CopyEnhMetaFileW
CreatePen
GetPolyFillMode
LineDDA
CreateEllipticRgnIndirect
SetTextAlign
GetKerningPairsA
TextOutW
SetViewportOrgEx
CreateFontIndirectW
SetPixelFormat
GetPaletteEntries
SetROP2
EndDoc
ResizePalette
StrokePath
InvertRgn
SetBoundsRect
SetAbortProc
SelectClipPath
GetCurrentObject
CreateFontW
CreateSolidBrush
GetEnhMetaFileW
StrokeAndFillPath
DeleteObject
GetDIBits
GetCharWidth32W
SetWindowOrgEx
GetMetaFileBitsEx
CreatePatternBrush
CreateDIBSection
EndPath
GetBkMode
PolyPolyline
SetPaletteEntries
GetTextCharacterExtra
CreateRectRgn
DrawEscape
MoveToEx
GetCharWidthW
DeleteEnhMetaFile
DescribePixelFormat
SetWinMetaFileBits
SetDIBits
GetEnhMetaFilePaletteEntries
UnrealizeObject
SetGraphicsMode
PolyBezier
SelectObject
AbortPath
AddFontResourceA
CreateDCA
ExtFloodFill
PlgBlt
GetBitmapDimensionEx
GetGraphicsMode
GetNearestColor
PlayMetaFile
RectVisible
PaintRgn
GetGlyphOutlineA
GetRgnBox
EnumEnhMetaFile
GetAspectRatioFilterEx
GetMetaFileA
SetColorAdjustment
GetBrushOrgEx
GetGlyphOutlineW
BeginPath
GetOutlineTextMetricsA
IntersectClipRect
GetTextMetricsA
GetFontData
GetTextFaceW
RectInRegion
SetBrushOrgEx
GetMetaRgn
GetEnhMetaFileHeader
Polygon
GdiComment
PolylineTo
EnumObjects
ResetDCW
EndPage
FloodFill
GetTextExtentPoint32W
GetPath
GetTextColor
GetCharABCWidthsFloatA
CopyEnhMetaFileA
ArcTo
GetEnhMetaFileA
PlayEnhMetaFile
GetCharWidth32A
CreatePolygonRgn
EnumFontFamiliesA
ScaleViewportExtEx
ScaleWindowExtEx
SetICMProfileA
SetBkMode
EnumFontFamiliesExA
SetTextJustification
RestoreDC
PolyBezierTo
AngleArc
StartDocA
ExtTextOutW
CreateCompatibleBitmap
CreatePenIndirect
GetViewportOrgEx
SetEnhMetaFileBits
EnumFontFamiliesW
GetTextFaceA
GetStockObject
GetTextAlign
GetRegionData
ChoosePixelFormat
GetClipRgn
GetBoundsRect
ExcludeClipRect
EqualRgn
CreateDCW
PolyPolygon
SaveDC
PatBlt
GetTextCharset
GetLayout
PlayMetaFileRecord
GetStretchBltMode
GetTextExtentPoint32A
GetMiterLimit
TextOutA
SetArcDirection
CreateHatchBrush
PtInRegion
FlattenPath
CreateMetaFileW
MaskBlt
CreateFontIndirectA
SetMiterLimit
GetSystemPaletteEntries
RealizePalette
PtVisible
GetTextCharsetInfo
SetBitmapBits
BitBlt
GetCurrentPositionEx
CreateDIBitmap
user32
GetSysColor
PostMessageA
MonitorFromWindow
wvsprintfA
LookupIconIdFromDirectory
IsWindowVisible
OpenInputDesktop
DrawTextW
GetMenuInfo
RealChildWindowFromPoint
GetWindowPlacement
RemovePropW
CopyRect
LoadMenuW
DrawStateA
GetUserObjectInformationW
CopyImage
CountClipboardFormats
GetSystemMetrics
WaitMessage
SetMenu
GetOpenClipboardWindow
OpenClipboard
EnumDisplaySettingsA
InsertMenuItemW
EqualRect
CreateIconFromResourceEx
GetClipCursor
GetPropW
GetGUIThreadInfo
GetPropA
EnableMenuItem
GetCursor
DlgDirListComboBoxW
ToUnicodeEx
LoadCursorW
DdeUninitialize
MsgWaitForMultipleObjectsEx
BringWindowToTop
IsWindowEnabled
EnableScrollBar
DefMDIChildProcW
SetWindowLongW
ShowWindowAsync
GetForegroundWindow
UnhookWinEvent
DdeCreateStringHandleW
IsCharLowerW
CreateDialogParamA
TranslateMDISysAccel
DefWindowProcA
DdeGetData
GetMessageW
ShowCaret
InflateRect
IsMenu
SetCaretPos
RegisterClassExW
GetMenuStringW
IsCharAlphaNumericA
DeleteMenu
CreateMDIWindowA
DlgDirListA
AppendMenuA
GetProcessWindowStation
InvertRect
GetMessageTime
LoadMenuA
GetNextDlgGroupItem
DialogBoxIndirectParamW
PostQuitMessage
CallWindowProcA
RegisterDeviceNotificationW
ModifyMenuA
IsDialogMessage
FindWindowExA
IsZoomed
AdjustWindowRectEx
MsgWaitForMultipleObjects
ShowWindow
GrayStringA
AllowSetForegroundWindow
RegisterClassW
GetDCEx
GetKeyboardLayoutNameA
UpdateWindow
SetClipboardData
CallMsgFilterA
CallWindowProcW
ExcludeUpdateRgn
GetWindowRect
TrackMouseEvent
GetCapture
GetMonitorInfoW
IsClipboardFormatAvailable
DispatchMessageW
CharToOemBuffA
GetMenuItemCount
GetMenuItemInfoW
SetClipboardViewer
CreateWindowExW
SetCursorPos
GetKeyNameTextA
OemToCharA
SwapMouseButton
ToAscii
EnumChildWindows
SubtractRect
CharNextW
OpenDesktopA
DdeFreeStringHandle
DestroyIcon
CharPrevA
GetDoubleClickTime
ClientToScreen
UnregisterClassA
LoadMenuIndirectA
TileWindows
NotifyWinEvent
FindWindowW
GetKeyboardLayout
UnregisterDeviceNotification
ArrangeIconicWindows
DdeConnect
EnumDisplaySettingsW
SwitchDesktop
LoadIconA
SetMenuDefaultItem
WindowFromPoint
SendNotifyMessageA
HiliteMenuItem
VkKeyScanExA
DdeAccessData
InvalidateRect
GetScrollPos
TrackPopupMenuEx
GetKeyNameTextW
GetClipboardOwner
DdePostAdvise
PeekMessageW
EnableWindow
OpenWindowStationA
DrawStateW
mouse_event
SystemParametersInfoA
DefMDIChildProcA
DefDlgProcA
CharUpperW
CharLowerW
IsWindowUnicode
EnumThreadWindows
ChildWindowFromPointEx
GetSysColorBrush
CloseDesktop
GetScrollRange
DrawIconEx
GetAsyncKeyState
TranslateMessage
CreateIconIndirect
MapVirtualKeyExW
FillRect
DdeInitializeA
HideCaret
SetDlgItemTextW
GetWindowWord
RegisterWindowMessageW
SetCaretBlinkTime
IsWindow
UnpackDDElParam
IsDlgButtonChecked
MoveWindow
RegisterClipboardFormatA
CreateMDIWindowW
EmptyClipboard
GetWindowInfo
UnregisterHotKey
GetClassInfoExW
GetWindowThreadProcessId
FrameRect
MapVirtualKeyW
MapVirtualKeyExA
RemovePropA
MenuItemFromPoint
CallNextHookEx
MessageBeep
GetClipboardData
CreateCursor
RegisterWindowMessageA
SetDlgItemTextA
AdjustWindowRect
SetParent
TranslateAcceleratorW
GetQueueStatus
GetMessageExtraInfo
LoadCursorA
SetMessageExtraInfo
DestroyCaret
SetWindowPos
GetDC
CopyIcon
GetWindow
GetUserObjectInformationA
ReleaseCapture
MessageBoxExA
GetWindowRgn
LoadIconW
BroadcastSystemMessage
GetParent
RedrawWindow
DdeFreeDataHandle
DialogBoxParamA
SetPropA
ValidateRect
PostThreadMessageW
ModifyMenuW
IsCharAlphaNumericW
GetMenu
InsertMenuItemA
SetPropW
GetIconInfo
DefWindowProcW
DdeInitializeW
CreateAcceleratorTableA
GetClassLongW
GetActiveWindow
CheckMenuRadioItem
SetActiveWindow
LockWindowUpdate
DestroyCursor
OpenIcon
GetWindowLongW
wsprintfW
SendMessageTimeoutA
OffsetRect
ToUnicode
GetLastInputInfo
CheckMenuItem
GetTitleBarInfo
RegisterHotKey
CreateDialogIndirectParamW
IntersectRect
MapWindowPoints
InSendMessage
DefFrameProcA
ToAsciiEx
FindWindowA
GetMenuItemRect
SetDlgItemInt
GetWindowTextLengthW
GetDesktopWindow
SetKeyboardState
SetWindowPlacement
GetTabbedTextExtentA
GetNextDlgTabItem
RegisterClassExA
DdeClientTransaction
GetCursorPos
FindWindowExW
GetMenuItemID
IsIconic
IsCharLowerA
keybd_event
DrawEdge
IsRectEmpty
CreateCaret
CharToOemA
ScrollWindow
GetMenuContextHelpId
PackDDElParam
SetProcessWindowStation
GetClassWord
DdeCreateDataHandle
GetClassNameA
SetCursor
CloseWindow
SetScrollPos
ChangeDisplaySettingsA
MonitorFromPoint
GetUpdateRect
GetWindowLongA
DrawAnimatedRects
TranslateAcceleratorA
LoadStringA
GetWindowDC
EndPaint
PtInRect
CloseWindowStation
SetLayeredWindowAttributes
GetDialogBaseUnits
EndDialog
SetTimer
PostMessageW
CreateIcon
CharLowerBuffA
DrawFocusRect
ChildWindowFromPoint
EnumDisplayMonitors
LookupIconIdFromDirectoryEx
MessageBoxW
ShowCursor
CharLowerBuffW
GetMenuDefaultItem
SetWindowLongA
GetComboBoxInfo
SetRect
GetWindowModuleFileNameW
GetWindowTextW
SetWindowTextW
GetClassInfoExA
DrawTextA
GetClipboardFormatNameA
SetWindowContextHelpId
InvalidateRgn
GetSystemMenu
DrawCaption
SetWindowsHookExW
SetCapture
GetUpdateRgn
GetUserObjectSecurity
CharNextExA
SetThreadDesktop
GetThreadDesktop
ReuseDDElParam
GetSubMenu
DdeQueryStringA
GetDlgItem
SetUserObjectSecurity
SetWindowTextA
GetClientRect
GetWindowTextA
DdeQueryStringW
CheckRadioButton
LoadKeyboardLayoutA
GetInputState
GetTopWindow
GetClipboardViewer
DrawIcon
DrawTextExA
GetKeyboardLayoutList
FreeDDElParam
TileChildWindows
InsertMenuA
ReplyMessage
CharUpperBuffW
SetMenuItemBitmaps
CopyAcceleratorTableW
DialogBoxIndirectParamA
DdeNameService
GetDlgItemInt
AppendMenuW
SendMessageTimeoutW
CharUpperA
GetScrollBarInfo
MapDialogRect
UnionRect
BeginPaint
SetMenuContextHelpId
LoadBitmapW
GetMenuStringA
FlashWindowEx
DdeUnaccessData
wvsprintfW
SetClassLongA
OpenWindowStationW
DrawTextExW
LoadAcceleratorsA
DdeGetLastError
WinHelpA
PeekMessageA
RegisterClipboardFormatW
CreateWindowExA
DragDetect
ShowScrollBar
DdeCreateStringHandleA
wsprintfA
UnregisterClassW
ScreenToClient
InsertMenuW
LoadAcceleratorsW
GetCursorInfo
ShowOwnedPopups
SetMenuItemInfoW
DlgDirSelectExA
DlgDirSelectComboBoxExA
ChangeClipboardChain
GetFocus
SendMessageA
EnumWindows
CharLowerA
GetMessageA
GetMenuItemInfoA
SetForegroundWindow
SendDlgItemMessageW
GetWindowTextLengthA
EndDeferWindowPos
OemToCharBuffA
LoadBitmapA
KillTimer
CreateMenu
DrawMenuBar
CheckDlgButton
DestroyMenu
GetCaretBlinkTime
PostThreadMessageA
GetLastActivePopup
SendNotifyMessageW
GetMenuState
ExitWindowsEx
ValidateRgn
ActivateKeyboardLayout
SetWindowsHookExA
VkKeyScanW
OpenDesktopW
CreateDesktopW
GetMessagePos
MonitorFromRect
LoadCursorFromFileW
RegisterClassA
VkKeyScanA
AttachThreadInput
GetClassInfoW
GetClassInfoA
ReleaseDC
GetClipboardFormatNameW
AnimateWindow
CloseClipboard
DispatchMessageA
TabbedTextOutA
CharUpperBuffA
ClipCursor
DeferWindowPos
IsDialogMessageA
BeginDeferWindowPos
WaitForInputIdle
CopyAcceleratorTableA
SetMenuItemInfoA
EnumDesktopWindows
CreateIconFromResource
SendMessageW
DdeDisconnect
EnumClipboardFormats
GetDlgItemTextA
DlgDirListComboBoxA
LoadImageA
GetMenuBarInfo
MessageBoxA
SetRectEmpty
LockSetForegroundWindow
SetScrollRange
SendDlgItemMessageA
GetClassLongA
CreateAcceleratorTableW
CharNextA
GrayStringW
DestroyWindow
SetClassLongW
DrawFrameControl
CreateDialogParamW
IsChild
ChangeDisplaySettingsW
LoadCursorFromFileA
SetScrollInfo
IsDialogMessageW
TrackPopupMenu
MapVirtualKeyA
CreatePopupMenu
GetWindowContextHelpId
TabbedTextOutW
GetKeyboardState
LoadStringW
GetKeyState
SetMenuInfo
WindowFromDC
CascadeWindows
SetFocus
GetDlgItemTextW
UnhookWindowsHookEx
RemoveMenu
GetScrollInfo
GetCaretPos
DestroyAcceleratorTable
MessageBoxIndirectA
LoadMenuIndirectW
GetMenuCheckMarkDimensions
SendInput
ScrollWindowEx
CreateDialogIndirectParamA
FlashWindow
IsCharUpperA
GetClassNameW
GetMonitorInfoA
GetDlgCtrlID
SetWindowRgn
WinHelpW
ScrollDC
GetAncestor
DefFrameProcW
SetDoubleClickTime
IsCharAlphaA
LoadImageW
oleaut32
LoadTypeLi
mfc42
ord1576
shell32
SHGetInstanceExplorer
DragQueryFileA
DragAcceptFiles
SHCreateDirectoryExW
ExtractIconW
SHGetFileInfoA
DragFinish
SHGetSpecialFolderLocation
FindExecutableW
ShellExecuteExA
DuplicateIcon
SHGetDesktopFolder
SHBrowseForFolderW
DragQueryFileW
FindExecutableA
Shell_NotifyIconA
ShellExecuteA
SHAddToRecentDocs
SHGetPathFromIDListW
SHFreeNameMappings
ExtractIconExW
SHBindToParent
ExtractIconA
SHGetSpecialFolderPathA
SHBrowseForFolderA
SHEmptyRecycleBinA
ord155
ShellExecuteExW
Shell_NotifyIconW
SHCreateDirectoryExA
SHGetPathFromIDListA
SHFileOperationA
SHGetFolderLocation
ExtractIconExA
SHChangeNotify
SHGetDataFromIDListW
SHGetFolderPathA
DragQueryPoint
SHFileOperationW
SHGetFileInfoW
SHGetDataFromIDListA
SHGetMalloc
CommandLineToArgvW
SHGetFolderPathW
ShellExecuteW
DoEnvironmentSubstW
SHAppBarMessage
SHGetSpecialFolderPathW
advapi32
RegDeleteValueA
CreateServiceW
InitializeSid
LsaLookupSids
OpenThreadToken
AllocateAndInitializeSid
RegUnLoadKeyA
BuildTrusteeWithSidW
CryptAcquireContextA
SetServiceStatus
QueryServiceConfigW
ConvertSecurityDescriptorToStringSecurityDescriptorW
LookupAccountSidA
OpenProcessToken
CryptDecrypt
RegisterEventSourceA
RegFlushKey
ReportEventW
GetSecurityDescriptorControl
ConvertStringSidToSidA
LookupPrivilegeValueA
StartServiceW
DeleteService
InitializeSecurityDescriptor
WriteEncryptedFileRaw
QueryServiceLockStatusW
BuildExplicitAccessWithNameW
IsValidSecurityDescriptor
ConvertSidToStringSidW
GetSecurityDescriptorOwner
InitiateSystemShutdownExW
RegConnectRegistryA
CloseServiceHandle
BuildTrusteeWithNameW
SetFileSecurityW
RegDeleteKeyA
GetSidLengthRequired
RegOpenCurrentUser
GetAclInformation
GetExplicitEntriesFromAclW
QueryServiceStatus
CryptGetUserKey
InitiateSystemShutdownA
RevertToSelf
IsValidAcl
EncryptFileW
ChangeServiceConfigA
ControlService
RegEnumKeyExW
CryptReleaseContext
LookupPrivilegeValueW
LookupAccountNameW
DuplicateToken
LsaQueryInformationPolicy
RegOpenKeyExW
CloseEncryptedFileRaw
GetSecurityDescriptorLength
RegEnumKeyExA
EqualPrefixSid
ImpersonateNamedPipeClient
ReportEventA
CryptGenRandom
CryptHashData
CryptDestroyKey
CryptGetKeyParam
CreateWellKnownSid
RegQueryValueExA
CryptExportKey
GetFileSecurityW
LsaAddAccountRights
RegCloseKey
LsaLookupNames
RegQueryInfoKeyA
RegisterServiceCtrlHandlerExA
StartServiceCtrlDispatcherA
GetNamedSecurityInfoW
RegConnectRegistryW
ConvertStringSidToSidW
SetEntriesInAclA
LookupPrivilegeDisplayNameA
RegSaveKeyA
RegDeleteKeyW
SetSecurityDescriptorSacl
QueryServiceStatusEx
GetSidSubAuthorityCount
ConvertStringSecurityDescriptorToSecurityDescriptorW
ImpersonateSelf
RegSetValueExA
GetNamedSecurityInfoA
RegCreateKeyExA
SetSecurityInfo
StartServiceCtrlDispatcherW
RegLoadKeyW
GetSecurityDescriptorDacl
CryptDestroyHash
DeleteAce
GetUserNameA
SetNamedSecurityInfoW
DeregisterEventSource
RegEnumValueW
InitializeAcl
OpenSCManagerA
RegOpenKeyA
LsaRemoveAccountRights
CryptEnumProvidersW
SetSecurityDescriptorOwner
LockServiceDatabase
CheckTokenMembership
CreateProcessAsUserW
CryptCreateHash
RegDisablePredefinedCache
CreateProcessAsUserA
ChangeServiceConfigW
GetSidSubAuthority
RegQueryValueW
RegLoadKeyA
IsValidSid
RegSetValueA
RegSetValueW
AddAccessAllowedAce
QueryServiceConfigA
RegRestoreKeyA
OpenServiceA
LogonUserW
RegDeleteValueW
GetFileSecurityA
CopySid
RegQueryValueExW
DuplicateTokenEx
GetSecurityInfo
RegisterServiceCtrlHandlerW
RegEnumKeyW
RegQueryInfoKeyW
GetLengthSid
RegSetKeySecurity
LsaClose
SetNamedSecurityInfoA
CryptGetHashParam
SetEntriesInAclW
SetFileSecurityA
OpenEncryptedFileRawW
ChangeServiceConfig2W
MakeSelfRelativeSD
LsaOpenPolicy
GetTokenInformation
RegCreateKeyA
RegSetValueExW
EnumServicesStatusA
RegRestoreKeyW
RegCreateKeyW
LookupPrivilegeNameA
RegSaveKeyW
SetSecurityDescriptorGroup
GetSidIdentifierAuthority
GetSecurityDescriptorSacl
GetEffectiveRightsFromAclA
FreeSid
RegNotifyChangeKeyValue
RegisterServiceCtrlHandlerA
RegCreateKeyExW
CryptSetProvParam
LookupAccountSidW
CryptVerifySignatureA
MapGenericMask
SetSecurityDescriptorControl
GetSecurityDescriptorGroup
LookupAccountNameA
AccessCheck
ChangeServiceConfig2A
CreateServiceA
OpenSCManagerW
RegUnLoadKeyW
RegEnumValueA
ReadEncryptedFileRaw
RegQueryValueA
OpenServiceW
RegEnumKeyA
RegOpenKeyW
LsaFreeMemory
GetKernelObjectSecurity
SetSecurityDescriptorDacl
GetUserNameW
CryptDeriveKey
EqualSid
RegOpenKeyExA
ImpersonateLoggedOnUser
CryptGenKey
MakeAbsoluteSD
GetAce
SetThreadToken
StartServiceA
CryptAcquireContextW
CryptEncrypt
LogonUserA
LsaNtStatusToWinError
CryptImportKey
AdjustTokenPrivileges
RegisterEventSourceW
UnlockServiceDatabase
RegGetKeySecurity
SetTokenInformation
AddAce
EnumDependentServicesW
SetServiceObjectSecurity
kernel32
SetupComm
InterlockedCompareExchange
GetCompressedFileSizeW
ConvertThreadToFiber
lstrcmpiW
InitializeCriticalSection
MoveFileW
WaitForSingleObject
SetCurrentDirectoryA
EnumCalendarInfoExW
ConnectNamedPipe
IsValidCodePage
GetFileAttributesW
GetCommState
FileTimeToLocalFileTime
DisconnectNamedPipe
CreateWaitableTimerA
WaitNamedPipeA
GetModuleFileNameW
ResumeThread
GetPriorityClass
GetCPInfo
SetTimeZoneInformation
FindFirstFileA
BackupSeek
GetStartupInfoW
GlobalGetAtomNameW
SetErrorMode
GlobalFindAtomA
UnmapViewOfFile
BackupRead
Process32FirstW
EndUpdateResourceA
IsValidLocale
QueryPerformanceCounter
GetEnvironmentVariableA
GetShortPathNameW
GetVolumeInformationA
GetProfileIntA
ReleaseSemaphore
WritePrivateProfileSectionW
OpenEventA
LocalAlloc
SetEnvironmentVariableW
lstrcpyW
Heap32First
DebugBreak
GetBinaryTypeA
GlobalFindAtomW
SetUnhandledExceptionFilter
OpenFileMappingA
CreateSemaphoreA
EscapeCommFunction
IsBadWritePtr
QueueUserWorkItem
GetStdHandle
GlobalGetAtomNameA
GlobalSize
lstrcmpiA
CommConfigDialogW
EnterCriticalSection
GetPrivateProfileSectionNamesA
CompareStringA
GetVersion
FreeEnvironmentStringsW
HeapSize
GetEnvironmentStrings
GetTapeParameters
GetSystemPowerStatus
WritePrivateProfileStringA
GlobalUnlock
GetProfileStringW
LocalLock
FormatMessageW
Heap32ListFirst
PurgeComm
Thread32First
OutputDebugStringW
VirtualProtectEx
SetHandleInformation
GetUserDefaultLCID
GetDiskFreeSpaceA
GetProcessHeap
GetCommConfig
WaitNamedPipeW
ReadProcessMemory
GetHandleInformation
GetPrivateProfileStructA
GetConsoleMode
GlobalLock
GetProcessWorkingSetSize
Process32NextW
lstrcmpW
GetDateFormatA
OpenFile
WriteConsoleOutputW
FindResourceW
EnumCalendarInfoA
CreateMailslotA
DosDateTimeToFileTime
EnumResourceTypesA
SetThreadAffinityMask
GetFileTime
Module32Next
DeleteVolumeMountPointW
GetSystemWindowsDirectoryA
GetEnvironmentStringsW
LCMapStringW
FreeResource
GetSystemDirectoryW
AddAtomW
MoveFileA
GetTempFileNameW
FindAtomW
GetQueuedCompletionStatus
CreateIoCompletionPort
Heap32ListNext
SetNamedPipeHandleState
_hread
IsBadStringPtrA
FreeEnvironmentStringsA
SetHandleCount
EnumResourceNamesW
CreateEventW
CreateDirectoryA
FindCloseChangeNotification
GlobalFree
GetCommProperties
ExpandEnvironmentStringsW
SetConsoleTitleW
GetVolumePathNameA
BackupWrite
FindFirstChangeNotificationW
CreateThread
GetCommTimeouts
ProcessIdToSessionId
FindResourceA
SetProcessWorkingSetSize
GetVersionExA
CompareFileTime
CopyFileExA
GetTempPathA
ClearCommError
VerLanguageNameA
GetVersionExW
GetModuleFileNameA
LoadLibraryExW
IsDebuggerPresent
BeginUpdateResourceA
SetVolumeLabelA
GetCPInfoExA
GetVolumeNameForVolumeMountPointA
WritePrivateProfileSectionA
GetExitCodeThread
Beep
GetProcessAffinityMask
DefineDosDeviceA
WaitForSingleObjectEx
FindNextFileW
FindNextChangeNotification
WritePrivateProfileStructW
GetLocaleInfoA
FileTimeToSystemTime
CopyFileW
WriteProcessMemory
SystemTimeToTzSpecificLocalTime
GetTempFileNameA
SwitchToFiber
GetProcessVersion
OpenEventW
FindResourceExW
OpenFileMappingW
Process32Next
GetPrivateProfileSectionA
WaitForMultipleObjectsEx
GetMailslotInfo
UpdateResourceA
GlobalFlags
GetACP
ReadDirectoryChangesW
GetFileAttributesExW
SetThreadContext
WideCharToMultiByte
SearchPathW
TlsAlloc
VirtualFree
CompareStringW
SetThreadPriority
QueueUserAPC
SetTapePosition
HeapFree
GetStartupInfoA
SetFileTime
SetFileAttributesW
EnumResourceNamesA
GetComputerNameExA
EnumCalendarInfoW
WaitForDebugEvent
lstrcatA
SetLocalTime
GetNumberFormatA
TlsGetValue
FindFirstFileExW
SetCommState
GetFullPathNameW
CreateDirectoryW
GetDiskFreeSpaceExA
LocalHandle
IsBadCodePtr
PeekNamedPipe
SetFilePointerEx
GetThreadTimes
GetTimeFormatA
ResetEvent
WriteFileEx
GetLastError
AreFileApisANSI
Heap32Next
FindResourceExA
GetStringTypeExA
QueryDosDeviceW
MoveFileExA
LockFileEx
MapViewOfFile
GetFileInformationByHandle
RemoveDirectoryW
GetProfileStringA
DisableThreadLibraryCalls
CloseHandle
FileTimeToDosDateTime
SetProcessPriorityBoost
InterlockedIncrement
GetDiskFreeSpaceW
GetLongPathNameA
GetSystemDefaultLangID
GetFullPathNameA
GetSystemTimeAsFileTime
GetFileSizeEx
SystemTimeToFileTime
SetThreadExecutionState
GetComputerNameExW
GetSystemDirectoryA
GetComputerNameA
BeginUpdateResourceW
GetCurrentProcessId
CreateFileMappingW
VerifyVersionInfoA
WriteProfileStringA
lstrcpynW
RtlFillMemory
CreateProcessA
DebugActiveProcess
GetEnvironmentVariableW
GetThreadContext
GetVolumeInformationW
SuspendThread
FindFirstVolumeW
SetCurrentDirectoryW
_lclose
AllocConsole
CreateFiber
HeapCompact
DeleteFiber
GetLocaleInfoW
ReadFile
GetDiskFreeSpaceExW
GetUserDefaultLangID
WaitCommEvent
GetSystemTime
MapViewOfFileEx
LocalUnlock
FreeConsole
GetCommModemStatus
FlushConsoleInputBuffer
GetDriveTypeA
GetCurrentThreadId
GetModuleHandleA
GetConsoleScreenBufferInfo
VirtualUnlock
MultiByteToWideChar
GetLongPathNameW
GetCommandLineW
SetConsoleCtrlHandler
GetFileAttributesA
LocalFileTimeToFileTime
GlobalMemoryStatus
IsDBCSLeadByteEx
WriteFile
CreateNamedPipeA
SetLastError
MulDiv
GetWindowsDirectoryA
LoadResource
ReleaseMutex
WriteProfileStringW
WriteConsoleA
CreatePipe
SetConsoleCursorPosition
SetEndOfFile
SleepEx
LocalReAlloc
Sleep
SetWaitableTimer
TlsSetValue
Module32FirstW
GlobalMemoryStatusEx
GetTickCount
VirtualAllocEx
PulseEvent
SetComputerNameW
GetProcAddress
GetDateFormatW
SetCommBreak
lstrlenA
VirtualAlloc
ExitThread
lstrcpyA
CreateSemaphoreW
SetSystemTime
GetCurrentDirectoryA
CreateMutexW
GlobalAlloc
GlobalAddAtomA
CreateEventA
EnumResourceLanguagesA
GetDriveTypeW
SetFileAttributesA
LoadLibraryW
CreateFileMappingA
DeleteAtom
GetCurrencyFormatA
GetProcessHeaps
VirtualProtect
LCMapStringA
GetLogicalDriveStringsW
SetThreadLocale
GetOEMCP
UpdateResourceW
GetAtomNameA
GetConsoleCP
GetStringTypeExW
IsDBCSLeadByte
HeapValidate
EnumSystemLanguageGroupsW
FlushViewOfFile
LockResource
WritePrivateProfileStructA
FindFirstChangeNotificationA
SetEnvironmentVariableA
LockFile
SetCommMask
EnumLanguageGroupLocalesW
GetModuleHandleW
SetMailslotInfo
SetConsoleMode
GetSystemDefaultLCID
GetExitCodeProcess
Process32First
SetStdHandle
_lcreat
CancelIo
TerminateProcess
CreateWaitableTimerW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
FindVolumeClose
GlobalDeleteAtom
GetFileType
OpenThread
GetPrivateProfileStringW
CreateMutexA
GetPrivateProfileIntA
GetPrivateProfileIntW
FatalAppExitA
DeleteFileA
HeapDestroy
_llseek
MoveFileExW
VerSetConditionMask
DeviceIoControl
VerifyVersionInfoW
GetComputerNameW
FlushFileBuffers
CreateDirectoryExA
PostQueuedCompletionStatus
Thread32Next
SetFilePointer
GetSystemInfo
InterlockedExchange
SetVolumeMountPointA
GetCommMask
GetTimeZoneInformation
ConvertDefaultLocale
GetProfileIntW
GetCurrentDirectoryW
GetSystemTimeAdjustment
GetWindowsDirectoryW
IsBadReadPtr
GetTimeFormatW
InterlockedDecrement
GetFileSize
UnlockFile
GlobalReAlloc
WriteConsoleW
Toolhelp32ReadProcessMemory
GetCurrentThread
LocalCompact
HeapAlloc
LoadLibraryExA
DeleteFileW
CopyFileA
FindFirstFileW
FindNextFileA
LoadLibraryA
OpenProcess
GetLocalTime
OpenSemaphoreW
GetNumberFormatW
QueryDosDeviceA
_lopen
OpenMutexW
HeapReAlloc
SearchPathA
RtlUnwind
SetProcessAffinityMask
DeleteVolumeMountPointA
GetStringTypeA
QueryPerformanceFrequency
SetCommConfig
SetVolumeLabelW
ClearCommBreak
GetCurrentProcess
Module32NextW
Module32First
GetVolumeNameForVolumeMountPointW
LocalSize
CreateNamedPipeW
RemoveDirectoryA
IsBadStringPtrW
_lwrite
GetStringTypeW
CreateToolhelp32Snapshot
GetLogicalDriveStringsA
InterlockedExchangeAdd
OpenSemaphoreA
SizeofResource
WaitForMultipleObjects
GlobalAddAtomW
CreateFileW
ReadConsoleInputA
GetOverlappedResult
VirtualQueryEx
ExitProcess
GlobalHandle
ExpandEnvironmentStringsA
DuplicateHandle
HeapCreate
EndUpdateResourceW
GetProfileSectionA
lstrcpynA
GetThreadPriority
FindClose
GetThreadLocale
TlsFree
TryEnterCriticalSection
ContinueDebugEvent
GetCommandLineA
GetVolumePathNameW
VirtualQuery
EnumUILanguagesW
GetConsoleOutputCP
_lread
SetProcessShutdownParameters
GetPrivateProfileStringA
OpenMutexA
EnumSystemLocalesA
LeaveCriticalSection
WinExec
GetTempPathW
EnumResourceLanguagesW
SwitchToThread
lstrcmpA
CreateFileA
TransmitCommChar
UnhandledExceptionFilter
lstrcatW
GetProcessTimes
GetUserDefaultUILanguage
CopyFileExW
SetPriorityClass
SetEvent
CreateProcessW
RaiseException
GetLogicalDrives
FormatMessageA
IsProcessorFeaturePresent
lstrlenW
TerminateThread
_hwrite
VirtualFreeEx
comdlg32
PageSetupDlgW
CommDlgExtendedError
GetFileTitleA
ReplaceTextW
FindTextW
PageSetupDlgA
FindTextA
GetSaveFileNameA
ReplaceTextA
ChooseFontA
GetOpenFileNameW
PrintDlgExA
ChooseColorA
PrintDlgW
GetSaveFileNameW
ChooseColorW
GetFileTitleW
PrintDlgA
ChooseFontW
GetOpenFileNameA
comctl32
ImageList_DragMove
CreateStatusWindowW
ImageList_AddIcon
ImageList_Add
CreatePropertySheetPageW
ImageList_Read
ImageList_Replace
DrawStatusTextW
CreateToolbarEx
ImageList_BeginDrag
ImageList_DrawEx
InitCommonControlsEx
ImageList_SetFlags
DestroyPropertySheetPage
ImageList_EndDrag
CreateUpDownControl
ImageList_DragShowNolock
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_Copy
FlatSB_EnableScrollBar
ImageList_LoadImage
ImageList_Create
ord17
ImageList_Write
FlatSB_ShowScrollBar
ImageList_GetIcon
ImageList_SetBkColor
ImageList_GetBkColor
ImageList_LoadImageW
ImageList_Destroy
ImageList_Remove
_TrackMouseEvent
ImageList_GetImageCount
ImageList_SetImageCount
ImageList_DragEnter
ImageList_DragLeave
ImageList_GetImageInfo
ImageList_DrawIndirect
ImageList_LoadImageA
ImageList_SetDragCursorImage
CreatePropertySheetPageA
InitializeFlatSB
PropertySheetA
ImageList_Merge
ImageList_Draw
ImageList_Duplicate
ImageList_GetDragImage
ImageList_AddMasked
ImageList_SetOverlayImage
PropertySheetW
ImageList_SetIconSize
MakeDragList
winmm
mixerOpen
waveInStop
midiInOpen
midiInGetNumDevs
waveOutUnprepareHeader
waveInGetDevCapsW
timeEndPeriod
mciSendCommandW
timeGetTime
midiOutGetNumDevs
waveOutSetVolume
waveOutWrite
mixerGetLineControlsA
waveOutOpen
mixerGetDevCapsA
sndPlaySoundW
mmioRead
mmioCreateChunk
midiInClose
waveOutGetVolume
mciSendCommandA
waveInPrepareHeader
mixerGetControlDetailsW
PlaySoundW
mixerGetNumDevs
midiOutGetVolume
mmioGetInfo
midiInStart
timeKillEvent
waveOutGetPosition
mixerGetLineInfoA
midiInStop
waveInUnprepareHeader
waveInMessage
waveOutReset
mciGetErrorStringA
midiOutClose
mmioAscend
waveInStart
waveInGetNumDevs
joySetCapture
mixerGetDevCapsW
mciGetDeviceIDA
waveOutGetErrorTextA
timeGetDevCaps
mmioSeek
midiInGetDevCapsW
mmioOpenA
waveOutMessage
waveInReset
mixerGetID
waveInGetDevCapsA
timeSetEvent
mmioDescend
sndPlaySoundA
waveOutRestart
mciSendStringW
midiOutOpen
waveInOpen
waveOutGetNumDevs
timeBeginPeriod
joyReleaseCapture
mixerGetLineInfoW
mixerGetLineControlsW
midiOutGetDevCapsA
mciSendStringA
waveInGetErrorTextA
waveOutPause
mixerGetControlDetailsA
waveOutGetDevCapsA
midiOutShortMsg
waveInAddBuffer
mmioClose
waveOutGetDevCapsW
mixerClose
waveOutClose
mmioWrite
waveOutPrepareHeader
waveInClose
joyGetPos
waveOutSetPlaybackRate
PlaySoundA
mixerSetControlDetails
winspool.drv
AddFormW
EnumJobsW
DeleteFormW
SetPrinterW
SetPrinterA
DocumentPropertiesA
GetJobW
OpenPrinterA
GetJobA
StartDocPrinterA
OpenPrinterW
DeletePrinterDriverA
AbortPrinter
DeletePrinter
EnumPrintersW
DeletePrintProcessorA
ord204
GetPrinterDriverA
EnumPrinterDriversA
FindFirstPrinterChangeNotification
DocumentPropertiesW
GetPrinterA
DeviceCapabilitiesA
AddPrinterDriverA
EndPagePrinter
GetFormW
StartPagePrinter
EndDocPrinter
EnumPortsA
FreePrinterNotifyInfo
SetPrinterDataW
SetJobW
AddPrinterA
EnumJobsA
GetPrinterW
ClosePrinter
EnumPortsW
EnumPrintersA
WritePrinter
FindNextPrinterChangeNotification
GetPrinterDriverDirectoryA
DeletePrintProcessorW
PrinterProperties
DeviceCapabilitiesW
EnumFormsW
StartDocPrinterW
Sections
.text Size: 96KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 496KB - Virtual size: 492KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 136KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 69KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ