Static task
static1
Behavioral task
behavioral1
Sample
26f1eace173800ebed64a1a3b9006119_JaffaCakes118.exe
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral2
Sample
26f1eace173800ebed64a1a3b9006119_JaffaCakes118.exe
Resource
win10v2004-20241007-en
windows10-2004-x64
General
-
Target
26f1eace173800ebed64a1a3b9006119_JaffaCakes118
-
Size
3.6MB
-
MD5
26f1eace173800ebed64a1a3b9006119
-
SHA1
dabcc3495c9e5d9993e8215844e3f87fcecca129
-
SHA256
df40e277efb8f7fe98fd21cc0a69266b73deac7011f6195e7fb67e48a45c70b0
-
SHA512
22724e339ba3dada89a8825adabd504cbd053f095ad400b573c65d3d2bfc46cbda9ef50198ecce4a87d5db8da181d134b669de8aff28e33a74684fd8ac0c6d38
-
SSDEEP
98304:g/cV5OoUsWtNIDml69zNvPmvSR1HJKhfMwOX940LKwi:PjtoQ79ZHmvSnYfHOX94wi
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 26f1eace173800ebed64a1a3b9006119_JaffaCakes118
Files
-
26f1eace173800ebed64a1a3b9006119_JaffaCakes118.exe windows:4 windows x86 arch:x86
65dacb079b2b837a5f7889b3f168c1bd
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GetProcessTimes
OpenSemaphoreA
FindClose
FileTimeToLocalFileTime
GetStartupInfoW
GlobalFindAtomA
GetStringTypeA
OpenSemaphoreW
OpenEventW
MoveFileA
GetPrivateProfileSectionW
GetTempPathA
GlobalCompact
LockFile
PulseEvent
DebugActiveProcess
GlobalHandle
GetVersionExA
CreateWaitableTimerA
FlushFileBuffers
ResumeThread
FlushViewOfFile
CopyFileA
FindNextFileW
GetComputerNameW
GetWindowsDirectoryA
GetLogicalDrives
WriteConsoleA
CreatePipe
HeapDestroy
CreateToolhelp32Snapshot
SetFilePointer
GetVolumeInformationW
SuspendThread
ExpandEnvironmentStringsA
Sleep
ReleaseMutex
FillConsoleOutputAttribute
OutputDebugStringA
GetStdHandle
GetNumberOfConsoleMouseButtons
ReadConsoleOutputAttribute
GlobalLock
EnumCalendarInfoExA
LocalHandle
EnumTimeFormatsA
GetTimeZoneInformation
DisconnectNamedPipe
WideCharToMultiByte
SetEvent
FindFirstFileExW
GetConsoleTitleW
GetCompressedFileSizeW
RtlFillMemory
UnmapViewOfFile
GlobalUnWire
MultiByteToWideChar
FillConsoleOutputCharacterW
Toolhelp32ReadProcessMemory
GetConsoleMode
GetLastError
RtlMoveMemory
RtlZeroMemory
SearchPathA
CreateProcessW
ExitThread
lstrcpynW
GetSystemDirectoryW
SetSystemTimeAdjustment
SetThreadExecutionState
OpenMutexA
ReadConsoleInputA
TransactNamedPipe
LocalLock
GetStringTypeExW
BeginUpdateResourceW
TlsFree
PeekNamedPipe
WritePrivateProfileSectionA
FindCloseChangeNotification
GlobalReAlloc
ReadFileScatter
OpenEventA
CreateFileMappingA
GetProfileSectionW
EnumTimeFormatsW
AllocConsole
lstrcmpA
CreateFileMappingW
UpdateResourceA
GetDriveTypeW
DefineDosDeviceW
EscapeCommFunction
EnumCalendarInfoExW
LocalUnlock
MoveFileExA
GetCurrencyFormatA
TryEnterCriticalSection
GetLocaleInfoW
MapViewOfFile
CreateEventW
SetConsoleWindowInfo
GlobalFree
GlobalUnfix
GlobalUnlock
ConnectNamedPipe
CloseHandle
FindNextChangeNotification
Module32First
TlsGetValue
GetCommandLineA
SetThreadPriorityBoost
EnumCalendarInfoW
GetCompressedFileSizeA
GetThreadPriority
GetThreadSelectorEntry
FormatMessageW
CreateMutexA
FindFirstChangeNotificationA
GetSystemDefaultLangID
EnumDateFormatsExW
RemoveDirectoryA
LoadLibraryExA
CommConfigDialogA
CopyFileExA
GetCurrentThread
SystemTimeToTzSpecificLocalTime
EnumDateFormatsExA
CreateSemaphoreA
WriteConsoleOutputW
EnumResourceNamesW
GetCommandLineW
LocalFileTimeToFileTime
GetVersionExW
GlobalAlloc
InitializeCriticalSection
WriteProcessMemory
GetSystemPowerStatus
InterlockedIncrement
CompareFileTime
OpenFile
SetFileAttributesA
FindAtomW
OpenFileMappingA
FreeEnvironmentStringsA
GetPrivateProfileStructA
GetNamedPipeHandleStateW
CreateRemoteThread
TransmitCommChar
GetShortPathNameA
SetComputerNameW
lstrcpyn
GetPrivateProfileStructW
HeapCreate
lstrlenW
TlsSetValue
CommConfigDialogW
GlobalAddAtomW
ReadConsoleOutputW
GetCurrentDirectoryW
GetSystemDefaultLCID
EnumResourceLanguagesW
WriteFileGather
GetPrivateProfileStringA
GetFullPathNameA
GetWindowsDirectoryW
VirtualProtectEx
GetTimeFormatW
GetAtomNameW
GetTempPathW
ReadFile
UnlockFileEx
CompareStringA
WaitCommEvent
SetLastError
WriteProfileSectionW
GetSystemTime
SetConsoleOutputCP
WritePrivateProfileStructA
ExpandEnvironmentStringsW
lstrlen
SetThreadContext
GetProcessVersion
GetThreadPriorityBoost
FindNextFileA
GetAtomNameA
DisableThreadLibraryCalls
GetSystemTimeAdjustment
OutputDebugStringW
lstrcmp
MulDiv
GetProcessShutdownParameters
Module32Next
EnumResourceTypesA
GetThreadLocale
GetStringTypeExA
lstrlenA
WaitForSingleObjectEx
GetEnvironmentStrings
GlobalWire
LocalFree
ResetEvent
TerminateThread
SetThreadAffinityMask
GetPrivateProfileSectionNamesA
GetLocaleInfoA
GetLongPathNameA
FindResourceA
GetLongPathNameW
GetQueuedCompletionStatus
DeviceIoControl
WriteConsoleInputA
PeekConsoleInputA
FindResourceExA
GetHandleInformation
lstrcmpi
BeginUpdateResourceA
FindFirstChangeNotificationW
WaitForDebugEvent
SetConsoleCP
GetPriorityClass
GetTempFileNameW
EnumDateFormatsW
GlobalMemoryStatus
GetProfileStringA
DefineDosDeviceA
GetExitCodeProcess
Thread32First
SetEndOfFile
GetExitCodeThread
SetEnvironmentVariableW
GetDriveTypeA
GetThreadContext
SetVolumeLabelA
SleepEx
SetThreadPriority
GetStartupInfoA
CreateNamedPipeW
WriteFile
GetProfileIntW
LocalFlags
GetFileTime
ReadConsoleW
SearchPathW
GetModuleFileNameW
EnumSystemLocalesW
EnumCalendarInfoA
VirtualProtect
GetPrivateProfileIntA
WritePrivateProfileStringA
SetThreadIdealProcessor
WaitForMultipleObjects
FindFirstFileExA
FreeEnvironmentStringsW
DeleteFileW
CreateDirectoryW
GetProfileIntA
IsDebuggerPresent
GetFileAttributesExA
GetFileType
CreateDirectoryExA
SetCurrentDirectoryW
OpenFileMappingW
GetFileAttributesA
MoveFileExW
GlobalFlags
lstrcmpW
SetConsoleMode
ReleaseSemaphore
SetLocaleInfoW
WritePrivateProfileStructW
Process32Next
FreeLibrary
LocalAlloc
Heap32Next
SetConsoleCursorPosition
ReadConsoleInputW
EnterCriticalSection
SetVolumeLabelW
GetConsoleCursorInfo
WriteConsoleOutputCharacterW
GetEnvironmentStringsA
lstrcpy
GetCalendarInfoA
GlobalGetAtomNameW
WaitNamedPipeA
WriteConsoleW
LoadLibraryExW
WritePrivateProfileSectionW
EnumSystemCodePagesA
OpenWaitableTimerA
ContinueDebugEvent
LockResource
FoldStringW
lstrcat
ConvertDefaultLocale
FormatMessageA
SetConsoleTitleA
PeekConsoleInputW
GetFullPathNameW
FlushInstructionCache
Thread32Next
lstrcatW
SetComputerNameA
GetEnvironmentStringsW
SetConsoleScreenBufferSize
GlobalSize
WriteConsoleOutputAttribute
CreateFileW
GetProcessPriorityBoost
GetFileAttributesW
IsValidLocale
CreateMailslotW
AddAtomA
GetTimeFormatA
CreateSemaphoreW
LoadLibraryW
GetProfileStringW
FindFirstFileA
CreateThread
CreateDirectoryA
CreateNamedPipeA
GetNamedPipeHandleStateA
DuplicateHandle
GetLogicalDriveStringsA
FileTimeToDosDateTime
DeleteCriticalSection
SetFileTime
GetModuleHandleW
GetUserDefaultLCID
CreateFileA
GetPrivateProfileStringW
GetFileSize
GetFileAttributesExW
CreateDirectoryExW
lstrcpyW
IsValidCodePage
EnumResourceTypesW
GetDiskFreeSpaceA
RemoveDirectoryW
InitializeCriticalSectionAndSpinCount
SetHandleCount
SetConsoleTextAttribute
FindResourceW
GetConsoleOutputCP
MapViewOfFileEx
GetLargestConsoleWindowSize
GetMailslotInfo
OpenMutexW
EnumSystemCodePagesW
FindFirstFileW
HeapWalk
UnhandledExceptionFilter
SignalObjectAndWait
SetTimeZoneInformation
GetCalendarInfoW
GetVersion
HeapUnlock
DeleteFileA
GetNumberFormatA
FoldStringA
EraseTape
CreateWaitableTimerW
GetFileInformationByHandle
ReadConsoleA
GetPrivateProfileSectionA
SetConsoleCursorInfo
TlsAlloc
CreateProcessA
GetCurrentDirectoryA
GetProcessHeap
GetNamedPipeInfo
SetConsoleTitleW
GlobalGetAtomNameA
Heap32First
CreateMutexW
GetConsoleScreenBufferInfo
WaitNamedPipeW
HeapSize
GetUserDefaultLangID
lstrcpyA
GetTempFileNameA
lstrcmpiA
LocalReAlloc
SetConsoleCtrlHandler
GetDateFormatA
ReadDirectoryChangesW
lstrcpynA
UnlockFile
InterlockedDecrement
GetSystemDirectoryA
CreateTapePartition
LocalCompact
GetProcessHeaps
EnumDateFormatsA
GetEnvironmentVariableW
SetCurrentDirectoryA
GetWriteWatch
GetConsoleCP
DeleteFiber
LeaveCriticalSection
SetConsoleActiveScreenBuffer
GlobalDeleteAtom
WriteFileEx
GetSystemInfo
SetLocalTime
FindAtomA
FlushConsoleInputBuffer
InitAtomTable
SetFileAttributesW
GlobalFix
VirtualUnlock
GlobalFindAtomW
FileTimeToSystemTime
SetPriorityClass
GetDiskFreeSpaceExW
MoveFileW
InterlockedExchangeAdd
VirtualFree
ReadProcessMemory
GetACP
GetVolumeInformationA
SetThreadLocale
UpdateResourceW
EnumResourceLanguagesA
GetDiskFreeSpaceW
GetNumberFormatW
WaitForMultipleObjectsEx
GetConsoleTitleA
GetNumberOfConsoleInputEvents
EnumSystemLocalesA
VirtualLock
DeleteAtom
WriteProfileStringA
SetCriticalSectionSpinCount
LockFileEx
Heap32ListNext
VirtualQueryEx
lstrcmpiW
GetPrivateProfileIntW
WriteConsoleInputW
CreateEventA
OpenWaitableTimerW
GlobalAddAtomA
SetWaitableTimer
ResetWriteWatch
SystemTimeToFileTime
WriteProfileSectionA
LoadModule
GetProcessAffinityMask
DosDateTimeToFileTime
OpenProcess
GetProcAddress
SetEnvironmentVariableA
GetThreadTimes
WritePrivateProfileStringW
LocalSize
ReadConsoleOutputA
EnumResourceNamesA
SetLocaleInfoA
HeapValidate
FreeResource
lstrcatA
WriteProfileStringW
GetDateFormatW
VirtualFreeEx
ReadFileEx
FindResourceExW
GetCurrencyFormatW
HeapCompact
InterlockedCompareExchange
GetStringTypeW
CreateConsoleScreenBuffer
GetPrivateProfileSectionNamesW
GetShortPathNameW
GetLogicalDriveStringsW
AddAtomW
FreeLibraryAndExitThread
VirtualAllocEx
GetLocalTime
HeapLock
wininet
GetUrlCacheEntryInfoExW
GopherFindFirstFileW
DeleteIE3Cache
FtpPutFileW
InternetGetCookieW
FreeUrlCacheSpaceW
FtpCreateDirectoryA
InternetSecurityProtocolToStringW
UnlockUrlCacheEntryStream
InternetAlgIdToStringA
InternetShowSecurityInfoByURL
InternetCloseHandle
InternetSecurityProtocolToStringA
InternetCombineUrlA
InternetDialA
FindNextUrlCacheEntryExW
InternetUnlockRequestFile
InternetSetOptionW
InternetTimeToSystemTimeW
SetUrlCacheHeaderData
InternetGetConnectedState
HttpOpenRequestA
RetrieveUrlCacheEntryFileW
FindCloseUrlCache
InternetCrackUrlA
FindNextUrlCacheGroup
FtpPutFileA
FtpOpenFileA
ShowX509EncodedCertificate
InternetDialW
SetUrlCacheEntryGroupA
RunOnceUrlCache
FtpRemoveDirectoryA
InternetOpenUrlW
ShowSecurityInfo
InternetGetConnectedStateEx
LoadUrlCacheContent
user32
GetCaretBlinkTime
GetWindowTextA
GetCursor
EnableWindow
TabbedTextOutA
CharUpperA
SetScrollPos
SystemParametersInfoA
SwitchToThisWindow
FreeDDElParam
DdeUninitialize
DefFrameProcA
CharLowerA
GetKeyNameTextW
IsDialogMessage
ShowWindow
GetScrollInfo
LoadKeyboardLayoutW
EndTask
LoadMenuIndirectA
CreateDialogParamA
DrawIconEx
ToUnicodeEx
GetKeyboardLayoutNameA
CopyAcceleratorTableW
SetDlgItemTextW
DestroyCaret
SetClassWord
DestroyAcceleratorTable
CharUpperW
SetWindowsHookA
GetPropA
GetWindowModuleFileNameW
PostThreadMessageW
RegisterClipboardFormatW
ToUnicode
EnumDisplaySettingsExA
GetDesktopWindow
OpenWindowStationA
WINNLSGetEnableStatus
DdeClientTransaction
RemoveMenu
GetClientRect
GetProcessWindowStation
VkKeyScanExA
IsWindowEnabled
wvsprintfW
GetClipboardFormatNameA
OpenInputDesktop
DdeDisconnectList
SetForegroundWindow
LoadMenuIndirectW
SetFocus
SetUserObjectSecurity
GetMessageW
SetParent
SetMenuItemInfoA
MenuItemFromPoint
RedrawWindow
CreateDesktopA
RealGetWindowClass
InSendMessageEx
SetMenuDefaultItem
UnregisterClassW
LoadImageW
IsCharUpperW
SetWindowRgn
IsRectEmpty
IsCharAlphaNumericW
GetLastActivePopup
UnhookWindowsHookEx
MessageBoxExW
DdeQueryConvInfo
MessageBoxExA
GetMenuStringA
SendMessageA
CascadeChildWindows
MapDialogRect
ShowWindowAsync
DdeReconnect
RegisterClassExA
MessageBoxW
TranslateAcceleratorA
DdeFreeStringHandle
PostMessageA
AppendMenuW
GetWindowContextHelpId
DeferWindowPos
DlgDirSelectComboBoxExW
CascadeWindows
InvalidateRgn
HideCaret
SetRectEmpty
TrackPopupMenu
ActivateKeyboardLayout
ScrollWindowEx
UnregisterClassA
DragDetect
OpenIcon
CreateIconIndirect
GetInputState
CountClipboardFormats
SwapMouseButton
WinHelpW
SendNotifyMessageW
RegisterClassExW
SetSystemCursor
DdeCreateStringHandleW
CreateDialogIndirectParamA
GetDlgCtrlID
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
DispatchMessageW
DefMDIChildProcW
CreateDialogParamW
GetTitleBarInfo
IsIconic
FindWindowExA
GetForegroundWindow
ScreenToClient
SetWindowsHookExA
DdeCmpStringHandles
CheckDlgButton
DefDlgProcW
GetCursorInfo
DdeGetData
RealChildWindowFromPoint
SetUserObjectInformationW
DialogBoxParamA
DdeInitializeW
GetCaretPos
LoadAcceleratorsW
RegisterClassA
SetUserObjectInformationA
DdeCreateStringHandleA
EnumDisplaySettingsW
OffsetRect
EnumDesktopsA
VkKeyScanW
ChangeDisplaySettingsW
GetWindowRgn
SetDlgItemInt
TileChildWindows
DdeSetQualityOfService
DdeQueryStringW
GetWindowThreadProcessId
MessageBoxIndirectW
EnumDisplayDevicesA
SendInput
GetScrollBarInfo
GetKeyNameTextA
SetCaretBlinkTime
CharToOemW
PostQuitMessage
DlgDirSelectExW
ExitWindowsEx
GetClassLongW
DlgDirListW
GetKeyboardLayoutList
GetGuiResources
ModifyMenuW
WINNLSGetIMEHotkey
EnumThreadWindows
LookupIconIdFromDirectoryEx
SetWindowWord
DrawStateW
AnimateWindow
TrackPopupMenuEx
CharToOemBuffA
GetIconInfo
CallMsgFilterA
OpenClipboard
IsMenu
DefFrameProcW
GetClassLongA
DdeAccessData
DrawCaption
GetTabbedTextExtentA
CharPrevA
GetSystemMenu
PtInRect
DrawFrame
SendDlgItemMessageW
BroadcastSystemMessageA
TileWindows
DrawAnimatedRects
InsertMenuA
GetInputDesktop
GetClassNameW
ReplyMessage
MapVirtualKeyExW
ShowScrollBar
WindowFromPoint
WinHelpA
BroadcastSystemMessage
GetClipboardSequenceNumber
TranslateMDISysAccel
DrawTextExA
MsgWaitForMultipleObjectsEx
CloseDesktop
CharUpperBuffW
ClientToScreen
MapWindowPoints
DestroyMenu
CreateCursor
DrawIcon
GetParent
SubtractRect
GetWindowWord
AppendMenuA
LoadBitmapA
GetDialogBaseUnits
GetUpdateRect
GetClassNameA
MonitorFromWindow
SetKeyboardState
GetQueueStatus
GetMenuContextHelpId
OpenDesktopA
KillTimer
FillRect
LoadCursorFromFileW
AdjustWindowRectEx
GetKeyboardState
RegisterWindowMessageA
EditWndProc
DlgDirSelectExA
GetMenuInfo
CharNextA
SetCursor
GetPropW
DlgDirListComboBoxW
CharNextExA
CharToOemA
ChangeMenuW
WaitMessage
PeekMessageA
SetDebugErrorLevel
GetMessageExtraInfo
MapVirtualKeyW
SendDlgItemMessageA
OemToCharW
SetMenuInfo
RegisterClassW
InsertMenuW
FlashWindow
DrawEdge
CreateMenu
GetClassInfoExA
GetKeyboardLayout
DdeAbandonTransaction
EnumDesktopsW
GetThreadDesktop
DestroyIcon
GetMonitorInfoA
GetWindow
FindWindowW
GetMenuDefaultItem
SendIMEMessageExW
BlockInput
BroadcastSystemMessageW
OemToCharA
IsWindow
SetDeskWallpaper
GetMenuItemInfoW
InflateRect
PeekMessageW
DdeFreeDataHandle
wsprintfA
LoadMenuA
IsCharAlphaA
DdeQueryNextServer
GetScrollRange
AnyPopup
SendMessageTimeoutA
BeginPaint
EndPaint
AdjustWindowRect
CallMsgFilterW
SendMessageTimeoutW
FindWindowA
SetProcessWindowStation
CreateIconFromResourceEx
CheckMenuItem
InsertMenuItemA
CharLowerBuffW
MonitorFromPoint
DrawFrameControl
wvsprintfA
EndMenu
LoadCursorFromFileA
WINNLSEnableIME
SetScrollInfo
GetClassInfoA
GetMessageA
GetNextDlgTabItem
IsChild
PaintDesktop
SetMessageQueue
ExcludeUpdateRgn
GetTabbedTextExtentW
IsCharAlphaW
SetCursorPos
CheckMenuRadioItem
SystemParametersInfoW
GetMenuItemCount
CloseWindow
ValidateRect
TrackMouseEvent
GetOpenClipboardWindow
EnumDisplaySettingsExW
EnumChildWindows
GetKeyState
SetClipboardViewer
DrawTextW
UnhookWindowsHook
SetMenuItemInfoW
ShowCaret
CreateAcceleratorTableW
OemToCharBuffW
LockWindowUpdate
ChildWindowFromPointEx
AttachThreadInput
ChildWindowFromPoint
GetSysColor
GetMenuStringW
ToAscii
CloseWindowStation
LoadKeyboardLayoutA
CreateDialogIndirectParamW
DialogBoxIndirectParamW
TranslateAccelerator
GetClipboardOwner
DdeGetLastError
WindowFromDC
CreateDesktopW
NotifyWinEvent
CreatePopupMenu
EndDeferWindowPos
GetComboBoxInfo
SetShellWindow
GetProcessDefaultLayout
GetScrollPos
GetPriorityClipboardFormat
TranslateAcceleratorW
GetSystemMetrics
IsCharUpperA
MessageBoxA
CharToOemBuffW
RemovePropW
CreateIcon
ModifyMenuA
GetMessagePos
TranslateMessage
EnableScrollBar
DeleteMenu
SendMessageW
GetActiveWindow
GetDlgItemInt
VkKeyScanA
GetClassWord
MapVirtualKeyExA
SetClassLongW
GetSubMenu
EnumClipboardFormats
CharLowerW
CharPrevExA
EnumPropsW
DdeConnect
SetPropA
RegisterDeviceNotificationA
ValidateRgn
EnumDisplayDevicesW
GetUpdateRgn
DialogBoxIndirectParamA
CopyRect
ScrollWindow
OemToCharBuffA
GetCapture
SetMessageExtraInfo
LoadStringA
CallWindowProcA
InSendMessage
TabbedTextOutW
DrawTextA
GetDC
LoadMenuW
BringWindowToTop
ChangeDisplaySettingsA
GetUserObjectInformationW
CallNextHookEx
GetMenuItemInfoA
GetWindowLongW
GetMenuState
GetWindowInfo
OpenWindowStationW
CreateAcceleratorTableA
GetGUIThreadInfo
DdeQueryStringA
DragObject
GetNextDlgGroupItem
GetKBCodePage
CreateWindowExW
IsClipboardFormatAvailable
SendIMEMessageExA
GetClipboardData
DdeUnaccessData
DlgDirListA
CharLowerBuffA
SetCapture
RegisterWindowMessageW
GetAltTabInfo
ToAsciiEx
SetWindowTextW
SetWindowPlacement
EnumPropsExA
GrayStringW
CreateIconFromResource
DefWindowProcW
GetWindowTextLengthW
DispatchMessageA
DestroyCursor
GetWindowRect
GetMonitorInfoW
MsgWaitForMultipleObjects
ScrollDC
SetWindowsHookExW
SetLastErrorEx
UpdateWindow
GetWindowModuleFileNameA
CloseClipboard
SetDoubleClickTime
GetClassInfoExW
CreateMDIWindowW
DlgDirListComboBoxA
SetSysColors
DdeImpersonateClient
SetDlgItemTextA
GetMenu
CheckRadioButton
IsDialogMessageA
UnregisterHotKey
SetWindowLongA
EnumPropsExW
GetWindowDC
VkKeyScanExW
GetDCEx
ChangeDisplaySettingsExW
SetWindowPos
SetClassLongA
LoadCursorW
EnumDisplaySettingsA
GetDlgItem
IntersectRect
MoveWindow
CreateWindowStationW
UnregisterDeviceNotification
LookupIconIdFromDirectory
GetAsyncKeyState
LoadIconA
InternalGetWindowText
UnloadKeyboardLayout
CopyAcceleratorTableA
comdlg32
GetSaveFileNameA
ChooseColorW
ReplaceTextW
GetFileTitleA
FindTextW
GetFileTitleW
PrintDlgA
ChooseColorA
ReplaceTextA
shell32
SheSetCurDrive
FreeIconList
RealShellExecuteExA
SHBrowseForFolder
SHGetFileInfo
SHAddToRecentDocs
RealShellExecuteA
ExtractIconExA
ShellExecuteW
SHAppBarMessage
ExtractAssociatedIconExW
ShellExecuteEx
SheChangeDirExW
ShellHookProc
ExtractIconExW
SHGetDataFromIDListA
FindExecutableA
SHEmptyRecycleBinW
CheckEscapesW
DoEnvironmentSubstW
SHQueryRecycleBinW
InternalExtractIconListW
ShellAboutA
SHFileOperationA
SheGetDirA
SHFileOperation
DragQueryFileAorW
DragQueryPoint
SHBrowseForFolderW
SHBrowseForFolderA
DragQueryFileA
SHGetNewLinkInfo
SHFormatDrive
DuplicateIcon
ShellAboutW
SHGetSettings
CommandLineToArgvW
DoEnvironmentSubstA
RealShellExecuteW
FindExecutableW
SHFileOperationW
DragQueryFileW
SHFreeNameMappings
SHGetFileInfoA
SHQueryRecycleBinA
ExtractIconA
ExtractAssociatedIconExA
SHGetSpecialFolderLocation
SHGetPathFromIDList
SHGetFileInfoW
SHChangeNotify
DragFinish
SHInvokePrinterCommandA
SHGetPathFromIDListA
InternalExtractIconListA
ExtractIconEx
SHGetMalloc
ShellExecuteExW
DragAcceptFiles
SHGetInstanceExplorer
DragQueryFile
ShellExecuteExA
SHGetDiskFreeSpaceA
SHGetDesktopFolder
SHGetSpecialFolderPathW
SHLoadInProc
SHGetPathFromIDListW
RealShellExecuteExW
ShellExecuteA
SHInvokePrinterCommandW
ExtractIconW
SHGetDataFromIDListW
Sections
.text Size: 137KB - Virtual size: 136KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 302KB - Virtual size: 302KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 19KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: 3.2MB - Virtual size: 3.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE