_GetAllocCounters@0
Static task
static1
Behavioral task
behavioral1
Sample
7810bd4fb07e7e3bf0804d54a1ed7dfae53ea01dfabb8db94a0200054176cf53.exe
Resource
win7-20220901-en
windows7-x64
5 signatures
150 seconds
Behavioral task
behavioral2
Sample
7810bd4fb07e7e3bf0804d54a1ed7dfae53ea01dfabb8db94a0200054176cf53.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
7810bd4fb07e7e3bf0804d54a1ed7dfae53ea01dfabb8db94a0200054176cf53
-
Size
1.4MB
-
MD5
3fce664e6ec823821f3b4ee749704c20
-
SHA1
f73743a5ba94fc72a0e7da96b2a8da18526b4bb1
-
SHA256
7810bd4fb07e7e3bf0804d54a1ed7dfae53ea01dfabb8db94a0200054176cf53
-
SHA512
bdab9f118df0c05e36f5e6ca6bb274a3d7c42dda9247ad1048f7e1949f356fb635dd7cf376609debde3bf06a039c33e3d9ed286f6d71b448a930d7b0fc40d26a
-
SSDEEP
24576:TyQrYXcH+klbpZCJeGTMSoBw2Ie9SqZvOB++++yLpI9JGl+vzNT/Th++o+++++6V:TyKHjbpUMGISoBw2n9SqZvOB++++yLpi
Score
N/A
Malware Config
Signatures
Files
-
7810bd4fb07e7e3bf0804d54a1ed7dfae53ea01dfabb8db94a0200054176cf53.exe windows x86
d14cb11fa50353d75bbae3640b99d496
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mfc42u
ord5047
ord3282
ord3291
ord3909
ord3296
ord3344
ord4282
ord6373
ord5977
ord3494
ord537
ord5640
ord4343
ord3905
ord4502
ord3288
ord4583
ord4893
ord4335
ord4884
ord4525
ord4539
ord4537
ord4520
ord4523
ord4518
ord4958
ord4955
ord4103
ord5236
ord3743
ord1719
ord4426
ord813
ord560
ord2108
ord4458
ord4717
ord3621
ord2406
ord3614
ord1634
ord5237
ord3397
ord3716
ord795
ord2447
ord1635
ord686
ord2445
ord384
ord4582
ord4364
ord4886
ord5070
ord4279
ord816
ord5871
ord6168
ord2746
ord4018
ord3871
ord5785
ord562
ord3566
ord3792
ord682
ord3568
ord4270
ord4239
ord5249
ord6238
ord2572
ord4394
ord3625
ord3084
ord6896
ord3281
ord613
ord289
ord860
ord2857
ord2575
ord4526
ord4397
ord3366
ord3636
ord303
ord2836
ord2099
ord5674
ord283
ord5869
ord5732
ord2400
ord2088
ord1192
ord6900
ord3629
ord6712
ord6316
ord1850
ord4240
ord674
ord4407
ord4998
ord4788
ord976
ord2858
ord5250
ord1243
ord4718
ord1561
ord1177
ord5048
ord2373
ord5095
ord4494
ord4452
ord2715
ord2382
ord5094
ord4461
ord4298
ord5006
ord5468
ord3398
ord2874
ord2873
ord4147
ord4072
ord5233
ord2374
ord5279
ord2641
ord1658
ord4430
ord2437
ord4421
ord401
ord4766
ord808
ord3726
ord4264
ord6105
ord291
ord3391
ord6451
ord6195
ord6331
ord2538
ord6456
ord6437
ord2854
ord4457
ord6266
ord1941
ord3916
ord4229
ord4847
ord3870
ord3093
ord3605
ord656
ord5261
ord4370
ord4992
ord4704
ord6048
ord1767
ord5276
ord3356
ord4419
ord3592
ord324
ord2455
ord1644
ord6237
ord2115
ord2637
ord1826
ord4224
ord4828
ord5061
ord4629
ord4601
ord4710
ord4744
ord4602
ord5010
ord4369
ord4846
ord355
ord5228
ord5264
ord1173
ord3688
ord3701
ord4292
ord4128
ord5784
ord472
ord755
ord470
ord1851
ord4241
ord4272
ord4148
ord4869
ord4787
ord3016
ord4331
ord4495
ord5280
ord4904
ord5251
ord6325
ord5096
ord3864
ord2119
ord2383
ord3054
ord4462
ord975
ord2875
ord2375
ord4431
ord4422
ord402
ord2634
ord4451
ord1264
ord2506
ord1900
ord4709
ord4254
ord1899
ord5155
ord5156
ord5154
ord4899
ord4736
ord4970
ord4942
ord4352
ord4371
ord5283
ord4829
ord768
ord609
ord4253
ord6024
ord4848
ord489
ord2567
ord4390
ord3569
ord1008
ord1683
ord5284
ord4433
ord2046
ord4425
ord771
ord2520
ord2362
ord2293
ord2290
ord2294
ord5949
ord6868
ord5706
ord496
ord6330
ord765
ord773
ord3697
ord501
ord3693
ord6303
ord3579
ord543
ord803
ord6279
ord6278
ord5596
ord521
ord2100
ord1147
ord1934
ord4267
ord5255
ord3394
ord3729
ord3298
ord4501
ord3292
ord3728
ord810
ord4266
ord3393
ord2966
ord5755
ord6188
ord5752
ord6182
ord4324
ord6185
ord6017
ord5790
ord5575
ord5567
ord6057
ord5860
ord3573
ord5783
ord3215
ord1863
ord1258
ord3808
ord861
ord2606
ord5215
ord5213
ord2755
ord5848
ord1567
ord2879
ord6375
ord6193
ord6004
ord2225
ord1090
ord5256
ord1229
ord2527
ord2371
ord4268
ord1937
ord3133
ord4294
ord4078
ord3087
ord567
ord818
ord3737
ord4621
ord5273
ord2116
ord2438
ord5257
ord1720
ord5059
ord3744
ord6372
ord2047
ord4609
ord4606
ord4604
ord3658
ord1165
ord1172
ord5214
ord617
ord296
ord4215
ord2576
ord3649
ord2430
ord1637
ord1143
ord4689
ord5935
ord5726
ord3943
ord2177
ord2176
ord4209
ord3102
ord5612
ord988
ord3439
ord3188
ord4157
ord2977
ord3142
ord3254
ord4459
ord3131
ord3257
ord2980
ord3076
ord2640
ord4435
ord4831
ord3793
ord5286
ord4347
ord6370
ord5157
ord2377
ord4401
ord1768
ord4073
ord6051
ord3490
ord2855
ord4607
ord4608
ord941
ord641
ord338
ord652
ord4420
ord4617
ord6171
ord6076
ord3193
ord3449
ord4381
ord5649
ord3167
ord5573
ord1739
ord5239
ord6332
ord3053
ord4690
ord2385
ord3865
ord2532
ord4155
ord4414
ord6191
ord1594
ord5679
ord4124
ord1197
ord2391
ord4817
ord4233
ord1817
ord1196
ord1995
ord561
ord815
ord4418
ord5710
ord4074
ord5298
ord5296
ord3341
ord2388
ord5193
ord1089
ord3917
ord5727
ord2504
ord2546
ord4480
ord6371
ord6315
ord6113
ord1131
ord2613
ord4154
ord986
ord2627
ord5297
ord2776
ord927
ord2862
ord5285
ord1151
ord6466
ord5713
ord5712
ord2717
ord5499
ord2810
ord2422
ord4211
ord4692
ord4118
ord858
ord540
ord2910
ord5568
ord535
ord538
ord942
ord940
ord800
ord648
ord709
ord823
ord1215
ord6211
ord2644
ord1662
msvcrt
wcscpy
swprintf
_itow
strtol
atoi
fwrite
_iob
wcsncpy
_callnewh
_except_handler3
__CxxFrameHandler
wcslen
_wcsnicmp
_vsnwprintf
_wcsicmp
_purecall
__RTDynamicCast
qsort
wcsncmp
_ltow
_ultow
wcstoul
memmove
iswspace
wcsrchr
swscanf
free
__argc
__wargv
realloc
malloc
wcscmp
wcstol
_mbsnbcnt
_mbslen
_CxxThrowException
wcsstr
_wtoi
wcschr
?what@exception@@UBEPBDXZ
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
??0exception@@QAE@ABV0@@Z
_c_exit
_exit
_XcptFilter
_snwprintf
_cexit
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_controlfp
_onexit
__dllonexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
msvcp60
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
?erase@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@II@Z
?data@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEPBGXZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
?c_str@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEPBGXZ
?size@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
?length@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
?erase@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEPAGPAG0@Z
?begin@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEPAGXZ
?end@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEPAGXZ
?end@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEPBGXZ
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??_F?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXXZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IGABV?$allocator@G@1@@Z
??A?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAGI@Z
?find_first_of@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIPBGI@Z
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBGI@Z
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@G@Z
?nothrow@std@@3Unothrow_t@1@B
?_C@?1??_Nullstr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@CAPBGXZ@4GB
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
?data@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??Hstd@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@PBG@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??Hstd@@YA?AV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@ABV10@G@Z
??Mstd@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
advapi32
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
UnregisterTraceGuids
RegisterTraceGuidsW
GetTraceLoggerHandle
GetTraceEnableLevel
RegQueryValueExA
RegOpenKeyExA
GetTraceEnableFlags
TraceEvent
RegSetValueExW
kernel32
MultiByteToWideChar
HeapAlloc
GetProcessHeap
HeapFree
GetFileSize
FindNextFileW
FindClose
GlobalAlloc
GlobalLock
GlobalUnlock
QueryPerformanceCounter
GetCurrentProcess
FlushInstructionCache
GetTickCount
GlobalFree
Sleep
FindResourceW
CompareStringW
LoadLibraryA
DeleteAtom
WriteFile
AddAtomW
CreateFileW
GetFileTime
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
DeleteFileW
InterlockedDecrement
SetCurrentDirectoryW
GetSystemDirectoryW
EnterCriticalSection
LeaveCriticalSection
HeapDestroy
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
lstrcpyW
lstrlenW
GetVersionExW
GetCurrentDirectoryW
CreateProcessW
CloseHandle
GetCommandLineW
OutputDebugStringW
GetFullPathNameW
GetLongPathNameW
ExpandEnvironmentStringsW
lstrcmpiW
lstrcmpW
FreeLibrary
OutputDebugStringA
GetModuleFileNameW
SetLastError
GetLastError
LoadLibraryW
LocalAlloc
LocalFree
GetCurrentThreadId
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
VirtualFree
RaiseException
FindAtomW
LoadResource
GetWindowsDirectoryW
lstrcpynW
HeapCreate
InterlockedExchange
InterlockedExchangeAdd
FormatMessageW
GlobalReAlloc
CreateDirectoryW
ReadFile
MulDiv
TlsGetValue
HeapReAlloc
LockResource
SizeofResource
GetUserDefaultUILanguage
GetLocaleInfoW
TlsAlloc
TlsFree
TlsSetValue
GetAtomNameW
SetProcessWorkingSetSize
GetVersionExA
FindFirstFileW
gdi32
SetBrushOrgEx
SetStretchBltMode
GetBrushOrgEx
GetDIBits
CreateDIBSection
SetTextAlign
SetBkMode
SetTextColor
CreatePatternBrush
PlayEnhMetaFile
CreateRectRgn
CreateDIBPatternBrushPt
StretchDIBits
LPtoDP
ExtTextOutA
SetBkColor
Escape
ExtTextOutW
TextOutW
PatBlt
RectVisible
PtVisible
CreateSolidBrush
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
DeleteDC
GetDeviceCaps
GetLayout
SetLayout
GetTextMetricsW
FillRgn
PtInRegion
OffsetRgn
CreatePolygonRgn
GetStockObject
SelectObject
GetTextExtentPoint32W
GetObjectW
DeleteObject
CreateFontIndirectW
SelectPalette
CreateHalftonePalette
GetPixel
StretchBlt
GetObjectA
RealizePalette
DeleteEnhMetaFile
user32
SetParent
GetWindowPlacement
SetWindowLongW
EnableMenuItem
GetSystemMenu
BringWindowToTop
BeginDeferWindowPos
EndDeferWindowPos
DeferWindowPos
GetCapture
AdjustWindowRectEx
NotifyWinEvent
ReleaseCapture
SetMenuDefaultItem
GetForegroundWindow
CharLowerW
GetNextDlgTabItem
GetDlgItem
TrackPopupMenuEx
IsWindowEnabled
DrawFocusRect
DefWindowProcW
SetWindowPos
SetTimer
KillTimer
GetMenuItemID
GetWindowTextW
GetClassLongW
GetMenu
SetMenu
IsZoomed
ChangeClipboardChain
SetClipboardViewer
SetForegroundWindow
SetActiveWindow
EnumThreadWindows
DrawFrameControl
UnionRect
DestroyIcon
GetSubMenu
UnhookWindowsHookEx
CallNextHookEx
IsChild
CopyImage
DrawIconEx
GetDoubleClickTime
CharUpperW
GetMessageTime
SetWindowsHookExW
CreatePopupMenu
GetClassInfoExW
CreateWindowExW
wsprintfW
SetWindowTextW
GetWindowTextLengthW
GetDesktopWindow
ReleaseDC
InvalidateRgn
CallWindowProcW
EndPaint
SetWindowPlacement
GetClassNameW
CreateAcceleratorTableW
IsMenu
TabbedTextOutW
GrayStringW
DestroyAcceleratorTable
LoadAcceleratorsW
TranslateAcceleratorW
SetMenuItemInfoW
DestroyMenu
GetMenuItemInfoW
GetMenuStringW
GetMenuItemCount
AppendMenuW
DrawEdge
RegisterWindowMessageW
MapWindowPoints
GetCursorPos
SetCapture
SetFocus
MoveWindow
GetKeyState
GetSysColorBrush
IntersectRect
SystemParametersInfoA
SendMessageA
SetWindowLongA
EqualRect
CreateIconIndirect
DefWindowProcA
PostMessageA
GetWindowLongA
PostQuitMessage
InsertMenuW
GetMenuState
DeleteMenu
FillRect
InflateRect
SetRectEmpty
PtInRect
IsRectEmpty
MessageBoxW
MonitorFromPoint
GetMonitorInfoW
SystemParametersInfoW
GetFocus
InvalidateRect
EnumChildWindows
GetMessagePos
SetCursor
GetDlgCtrlID
GetSystemMetrics
ShowWindow
GetClassInfoW
LoadCursorW
DrawTextW
LoadImageW
BeginPaint
OffsetRect
SendMessageTimeoutW
GetSysColor
EnableWindow
RegisterClassExW
ScreenToClient
ClientToScreen
GetClientRect
GetWindowRect
IsIconic
ChildWindowFromPointEx
GetIconInfo
WinHelpW
CopyIcon
GetDC
SetWindowRgn
LoadMenuW
SendMessageW
PostMessageW
UpdateWindow
IsWindowVisible
GetParent
MessageBeep
DestroyWindow
IsWindow
PeekMessageW
LoadIconW
CharNextW
LoadStringW
GetWindow
SetRect
CopyRect
GetWindowLongW
RedrawWindow
GetWindowThreadProcessId
FindWindowExW
ModifyMenuW
oleaut32
SysReAllocStringLen
SysAllocString
VariantClear
SetErrorInfo
CreateErrorInfo
LoadTypeLi
RegisterTypeLi
SysStringLen
LoadRegTypeLi
VariantInit
SysAllocStringLen
OleCreateFontIndirect
SysFreeString
ole32
CoInitializeEx
CoUninitialize
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoCreateInstance
CoRegisterClassObject
CoTaskMemFree
ProgIDFromCLSID
OleRun
CoDisconnectObject
CoCreateGuid
RevokeDragDrop
DoDragDrop
RegisterDragDrop
CoGetClassObject
CreateStreamOnHGlobal
StringFromCLSID
CoTaskMemAlloc
OleLockRunning
CLSIDFromProgID
CLSIDFromString
CoGetMalloc
StringFromGUID2
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
GetHGlobalFromStream
CoRevokeClassObject
oleacc
CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject
shell32
ShellExecuteExW
ShellAboutW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
ExtractIconW
ExtractIconExW
SHGetFolderPathW
SHGetSpecialFolderPathW
shlwapi
ord225
ord176
PathFindFileNameW
urlmon
CoInternetGetSession
mmcbase
?InterfaceMethodException@BookKeeping@@SGXHPBG0KPAU_EXCEPTION_POINTERS@@@Z
?GetSnapinName@BookKeeping@@SGPBGH@Z
?MMCNullInterface@BookKeeping@@SGXHPBG0@Z
?InvalidInterface@BookKeeping@@SGXHPBG0@Z
?ReleaseSnapinInterface@BookKeeping@@SGJPAUIUnknown@@H@Z
?AddSnapinInterface@BookKeeping@@SG_NPAUIUnknown@@PBGAAH@Z
?MMCInterfaceError@BookKeeping@@SGXHPBG0@Z
?AddSnapin@BookKeeping@@SGJPBGAAH@Z
?RemoveItem@BookKeeping@@SGJPAX@Z
?AddItem@BookKeeping@@SGJAAVItemHandle@@@Z
??7SC@mmcerror@@QBEHXZ
?s_hWnd@SC@mmcerror@@0PAUHWND__@@A
?Clear@SC@mmcerror@@QAEXXZ
?FromMMC@SC@mmcerror@@QAEAAV12@J@Z
?TraceSnapinError@@YGXPBGABVSC@mmcerror@@@Z
??1?$CEventLock@UAppEvents@@@@QAE@XZ
?FatalError@SC@mmcerror@@QBEXXZ
?Throw@SC@mmcerror@@QAEXXZ
?Throw@SC@mmcerror@@QAEXJ@Z
?FromWin32@SC@mmcerror@@QAEAAV12@J@Z
?MMCErrorBox@@YGHPBGI@Z
?IsError@SC@mmcerror@@QBE_NXZ
?Release@CMMCStrongReferences@@SGKXZ
?AddRef@CMMCStrongReferences@@SGKXZ
?GetComObjectEventSource@@YGAAV?$CEventSource@VCComObjectObserver@@VCVoid@@V2@V2@V2@@@XZ
??8SC@mmcerror@@QBE_NABV01@@Z
?GetEventBuffer@@YGAAVCEventBuffer@@XZ
?MMCErrorBox@@YGHII@Z
?GetStringModule@@YGPAUHINSTANCE__@@XZ
?s_CallDepth@SC@mmcerror@@0IA
?ScEmitOrPostpone@CEventBuffer@@QAE?AVSC@mmcerror@@PAUIDispatch@@JPAVCComVariant@ATL@@H@Z
?MMC_PickIconDlg@@YGHPAUHWND__@@PAGIPAH@Z
?FindAllSnapinUIThreads@BookKeeping@@SGJPAPAKPAK@Z
?LKResult2HRESULT@BookKeeping@@SGJJ@Z
??0SC@mmcerror@@QAE@J@Z
??0SC@mmcerror@@QAE@ABV01@@Z
??1SC@mmcerror@@QAE@XZ
??4SC@mmcerror@@QAEAAV01@ABV01@@Z
?ScFromMMC@@YG?AVSC@mmcerror@@J@Z
?SetFunctionName@SC@mmcerror@@QAEXPBG@Z
??9SC@mmcerror@@QBE_NJ@Z
?FindItem@BookKeeping@@SGPAVItemHandle@@PAX@Z
??4SC@mmcerror@@QAEAAV01@J@Z
?TraceError@@YGXPBGABVSC@mmcerror@@@Z
??BSC@mmcerror@@QBE_NXZ
?MMCUpdateRegistry@@YGJHPBVCObjectRegParams@@PBVCControlRegParams@@@Z
?LoadStandardOverlays@@YGJPAU_IMAGELIST@@HPAH1@Z
?LastRefReleased@CMMCStrongReferences@@SG_NXZ
?GetHelpID@SC@mmcerror@@QAEKXZ
?GetHelpFile@SC@mmcerror@@SGPBGXZ
?ToHr@SC@mmcerror@@QBEJXZ
?GetErrorMessage@SC@mmcerror@@QBEXIPAG@Z
?TraceAndClear@SC@mmcerror@@QAEXXZ
?ScSetConsoleEventDispatcher@CConsoleEventDispatcherProvider@@SG?AVSC@mmcerror@@PAVCConsoleEventDispatcher@@@Z
?MMCErrorBox@@YGHPBGVSC@mmcerror@@I@Z
?FromLastError@SC@mmcerror@@QAEAAV12@XZ
?SetMainThreadID@SC@mmcerror@@SGXK@Z
?SetHWnd@SC@mmcerror@@SGXPAUHWND__@@@Z
?MMCErrorBox@@YGHVSC@mmcerror@@I@Z
??8SC@mmcerror@@QBE_NJ@Z
uxtheme
DrawThemeBackground
OpenThemeData
CloseThemeData
GetThemePartSize
duser
SetGadgetFocus
SetGadgetParent
SetGadgetRect
SetGadgetRootInfo
LookupGadgetTicket
InvalidateGadget
FindGadgetFromPoint
GetGadgetFocus
InitGadgets
FindStdColor
CreateGadget
SetGadgetMessageFilter
DeleteHandle
GetGadgetAnimation
BuildInterpolation
BuildAnimation
GetGadgetSize
DUserPostEvent
DUserSendEvent
GetStdColorBrushI
GetStdColorI
UtilDrawBlendRect
GetGadgetTicket
MapGadgetPoints
SetGadgetBufferInfo
GetGadgetRgn
GetGadgetRect
SetGadgetStyle
AttachWndProcW
ForwardGadgetMessage
CreateAction
apphelp
ApphelpCheckShellObject
msimg32
AlphaBlend
TransparentBlt
GradientFill
Exports
Exports
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 114KB - Virtual size: 115KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 187KB - Virtual size: 188KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE