Static task
static1
Behavioral task
behavioral1
Sample
916b39450764eae5e6f3fc90f544639a1059b933f554cee4dbe7741958195f47.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
916b39450764eae5e6f3fc90f544639a1059b933f554cee4dbe7741958195f47.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
916b39450764eae5e6f3fc90f544639a1059b933f554cee4dbe7741958195f47
-
Size
472KB
-
MD5
7ad44409e7761c35611cbe320236941a
-
SHA1
98602baa40cef90db3850cc962cd07460c958a92
-
SHA256
916b39450764eae5e6f3fc90f544639a1059b933f554cee4dbe7741958195f47
-
SHA512
994f45171c54dcb0305c6324eb22bab29dc684c0b6a1ca186be3618c1656c1ca8aa36006d3c986588fbfe2c44458960cfc78f557a3977477d70886952cf5ed2c
-
SSDEEP
6144:K5+hDf72uiJWHPcNIZjYmCvbj3oLhJ7pUvkGXrdS1lamntet7nvq3G+2EKt:0giq3jYmCTj4LhJ7pUN7dRmO7naJ
Malware Config
Signatures
Files
-
916b39450764eae5e6f3fc90f544639a1059b933f554cee4dbe7741958195f47.exe windows x86
b8fef530dc6eb1543e129b4d486bebe0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
setupapi
SetupDiGetClassDescriptionW
SetupDiLoadClassIcon
SetupDiGetClassDevsExA
SetupDecompressOrCopyFileA
SetupDiGetClassDescriptionExW
SetupDiUnremoveDevice
SetupDiCreateDeviceInfoA
SetupInstallFromInfSectionW
SetupQueueCopySectionW
SetupLogFileA
SetupDiGetDriverInfoDetailA
SetupDiCreateDeviceInfoList
SetupAddToSourceListA
SetupAddSectionToDiskSpaceListW
SetupDiOpenDevRegKey
SetupInitDefaultQueueCallback
SetupDiGetDeviceInstallParamsW
SetupCreateDiskSpaceListW
SetupGetSourceInfoA
SetupTermDefaultQueueCallback
SetupAddToDiskSpaceListW
SetupSetSourceListW
SetupDiClassGuidsFromNameExA
SetupQueryInfFileInformationW
SetupQueryDrivesInDiskSpaceListA
SetupInitializeFileLogA
SetupQueueDeleteSectionA
SetupDiCreateDeviceInfoW
SetupOpenAppendInfFileW
SetupQueryInfVersionInformationA
SetupDiClassGuidsFromNameA
SetupDiEnumDriverInfoW
SetupRemoveFromSourceListW
SetupCloseInfFile
SetupPromptForDiskA
SetupInitializeFileLogW
SetupInstallFileExA
SetupGetInfInformationA
SetupQueueCopySectionA
SetupSetSourceListA
SetupDiClassNameFromGuidW
SetupInitDefaultQueueCallbackEx
SetupDiGetHwProfileList
SetupDiOpenClassRegKeyExW
SetupDiGetDeviceInstanceIdW
SetupDiGetDriverInstallParamsW
SetupInstallFilesFromInfSectionA
SetupDiRegisterDeviceInfo
SetupCreateDiskSpaceListA
SetupDiInstallClassExA
SetupDiGetActualSectionToInstallW
SetupDiGetSelectedDriverA
SetupAddInstallSectionToDiskSpaceListA
SetupDiSetSelectedDriverW
SetupDiGetHwProfileListExA
SetupDiCreateDeviceInfoListExA
SetupDiClassNameFromGuidA
SetupFreeSourceListW
SetupInstallFileW
SetupAdjustDiskSpaceListA
SetupDuplicateDiskSpaceListW
SetupDiGetDriverInfoDetailW
SetupDiGetClassImageIndex
SetupInstallServicesFromInfSectionA
SetupDiInstallDevice
SetupInstallServicesFromInfSectionW
SetupQueryFileLogA
SetupDiGetClassDevsW
SetupGetSourceFileLocationA
SetupDiGetDeviceInstallParamsA
SetupDiGetHwProfileFriendlyNameW
SetupQueueRenameA
SetupDiGetClassImageListExW
SetupDiCreateDeviceInterfaceRegKeyW
SetupDiOpenDeviceInfoW
SetupGetInfFileListW
SetupDiCreateDeviceInfoListExW
SetupDiDestroyDriverInfoList
SetupDiGetINFClassW
SetupDiBuildClassInfoList
SetupGetLineCountW
SetupPromptReboot
SetupPromptForDiskW
SetupSetDirectoryIdExA
SetupAddToSourceListW
SetupFindNextMatchLineA
SetupGetInfInformationW
SetupDiSetClassInstallParamsA
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsA
SetupCopyOEMInfW
SetupFindFirstLineW
SetupDiGetDeviceRegistryPropertyW
SetupDiRegisterCoDeviceInstallers
SetupDiGetDeviceInterfaceDetailA
SetupDiCancelDriverInfoSearch
SetupGetIntField
SetupDiGetClassImageList
SetupQuerySourceListA
SetupGetLineByIndexW
SetupRemoveInstallSectionFromDiskSpaceListA
SetupCloseFileQueue
SetupQuerySourceListW
SetupGetSourceFileSizeW
SetupDiEnumDriverInfoA
SetupGetLineCountA
SetupDiGetSelectedDriverW
SetupDiRemoveDevice
SetupGetTargetPathA
SetupDiSelectBestCompatDrv
SetupCommitFileQueueA
SetupGetStringFieldW
SetupGetSourceInfoW
SetupDiSetDriverInstallParamsW
SetupDiOpenDeviceInterfaceA
SetupQueueCopyA
SetupDiOpenDeviceInfoA
SetupFindFirstLineA
SetupScanFileQueueA
SetupLogErrorA
SetupDiGetHwProfileFriendlyNameExW
SetupQueueRenameSectionW
SetupDiOpenClassRegKeyExA
SetupDiSetDeviceInstallParamsA
SetupDiGetActualSectionToInstallA
SetupAddToDiskSpaceListA
SetupInstallFilesFromInfSectionW
SetupDiGetDeviceInfoListDetailA
SetupLogFileW
SetupDiSetDeviceInstallParamsW
SetupDiSelectOEMDrv
SetupInstallFileA
SetupDiDestroyDeviceInfoList
SetupGetTargetPathW
SetupQueueRenameSectionA
SetupQueueDefaultCopyA
SetupDiCreateDevRegKeyA
SetupDiDeleteDevRegKey
SetupGetFieldCount
SetupScanFileQueueW
SetupQueueCopyW
SetupGetMultiSzFieldW
SetupSetDirectoryIdExW
SetupDiGetClassImageListExA
SetupDeleteErrorA
SetupRemoveFromSourceListA
SetupDiGetDeviceInfoListClass
SetupDiClassGuidsFromNameW
SetupDiDestroyClassImageList
SetupDiGetClassDevsExW
SetupSetDirectoryIdA
SetupDiBuildDriverInfoList
SetupGetSourceFileSizeA
SetupDiSetSelectedDriverA
SetupCloseLog
SetupQueueRenameW
SetupRemoveFromDiskSpaceListW
SetupDiGetClassDescriptionExA
SetupDiGetClassInstallParamsA
SetupDiGetWizardPage
SetupInstallFileExW
SetupTerminateFileLog
SetupDefaultQueueCallbackW
SetupQueryFileLogW
SetupDiCreateDevRegKeyW
SetupIterateCabinetA
SetupCopyOEMInfA
SetupDiClassNameFromGuidExW
SetupRemoveSectionFromDiskSpaceListW
SetupCopyErrorA
SetupGetMultiSzFieldA
SetupRemoveFromDiskSpaceListA
SetupDiInstallClassW
SetupDiOpenClassRegKey
SetupRemoveSectionFromDiskSpaceListA
SetupDiInstallDriverFiles
SetupDiMoveDuplicateDevice
SetupDefaultQueueCallbackA
SetupCopyErrorW
SetupDiSetClassInstallParamsW
SetupQueueDefaultCopyW
SetupDiGetINFClassA
SetupQueryDrivesInDiskSpaceListW
SetupDiCreateDeviceInterfaceA
SetupSetDirectoryIdW
SetupDiOpenDeviceInterfaceRegKey
SetupOpenInfFileW
SetupOpenInfFileA
SetupGetSourceFileLocationW
SetupRemoveFileLogEntryW
SetupDiDrawMiniIcon
SetupQueueDeleteSectionW
SetupDiInstallClassA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupAdjustDiskSpaceListW
SetupDiCreateDeviceInterfaceW
SetupDiDeleteDeviceInterfaceData
SetupDiBuildClassInfoListExW
SetupGetInfFileListA
SetupOpenFileQueue
SetupQuerySpaceRequiredOnDriveW
SetupGetLineTextA
SetupGetFileCompressionInfoA
SetupOpenLog
SetupDiGetClassDevPropertySheetsA
SetupFindNextLine
SetupDiSetDeviceRegistryPropertyW
SetupGetFileCompressionInfoW
SetupIterateCabinetW
SetupDuplicateDiskSpaceListA
SetupDiSetSelectedDevice
SetupDiRemoveDeviceInterface
SetupSetPlatformPathOverrideA
SetupDiEnumDeviceInterfaces
SetupDiGetDriverInstallParamsA
SetupDiGetDeviceInfoListDetailW
SetupQuerySpaceRequiredOnDriveA
SetupFindNextMatchLineW
SetupDiSetDeviceRegistryPropertyA
SetupGetLineByIndexA
SetupFreeSourceListA
SetupDiDeleteDeviceInfo
SetupInstallServicesFromInfSectionExW
SetupRenameErrorA
SetupDiChangeState
SetupQueryInfFileInformationA
SetupOpenMasterInf
SetupDiClassNameFromGuidExA
SetupDiGetClassInstallParamsW
SetupQueueDeleteW
SetupDeleteErrorW
SetupQueryInfVersionInformationW
SetupDestroyDiskSpaceList
SetupDiInstallDeviceInterfaces
SetupDiGetDeviceInterfaceAlias
SetupDiCreateDeviceInterfaceRegKeyA
SetupGetStringFieldA
SetupDiDeleteDeviceInterfaceRegKey
SetupAddSectionToDiskSpaceListA
SetupDiAskForOEMDisk
SetupGetLineTextW
SetupDiBuildClassInfoListExA
SetupAddInstallSectionToDiskSpaceListW
SetupInstallFromInfSectionA
SetupSetPlatformPathOverrideW
SetupCommitFileQueueW
SetupDiOpenDeviceInterfaceW
SetupDiGetHwProfileListExW
SetupGetBinaryField
SetupRemoveInstallSectionFromDiskSpaceListW
SetupDiGetClassBitmapIndex
SetupDiCallClassInstaller
SetupDiGetHwProfileFriendlyNameA
mpr
WNetCloseEnum
WNetAddConnection3A
WNetOpenEnumA
WNetUseConnectionA
WNetGetLastErrorW
WNetEnumResourceW
MultinetGetConnectionPerformanceA
MultinetGetConnectionPerformanceW
WNetGetProviderNameW
WNetConnectionDialog
WNetGetProviderNameA
WNetGetConnectionW
msvcrt
_except_handler3
nddeapi
ord510
ord609
ord610
ord612
ord502
ord511
ord601
ord506
ole32
CoInitialize
DoDragDrop
comctl32
CreateToolbarEx
ImageList_Add
DestroyPropertySheetPage
_TrackMouseEvent
PropertySheetW
imm32
ImmGetCandidateWindow
ImmConfigureIMEW
ImmGetConversionStatus
ImmAssociateContext
clusapi
GetClusterResourceState
GetClusterNetInterfaceKey
CreateClusterResource
DeleteClusterGroup
ClusterNodeCloseEnum
ClusterRegDeleteKey
ClusterRegSetKeySecurity
ClusterCloseEnum
GetClusterGroupKey
ChangeClusterResourceGroup
ClusterOpenEnum
ClusterRegQueryValue
DeleteClusterResourceType
CloseClusterNetInterface
AddClusterResourceDependency
ClusterRegCreateKey
ClusterNetworkCloseEnum
ClusterNodeOpenEnum
advapi32
RegSaveKeyA
DuplicateTokenEx
RegOpenKeyExA
AddAce
OpenEventLogW
RegCreateKeyExA
GetSidSubAuthorityCount
RegEnumKeyA
InitializeSid
AbortSystemShutdownA
RegOpenKeyExW
RegQueryValueExA
GetSidIdentifierAuthority
RegisterEventSourceA
GetSecurityDescriptorGroup
OpenServiceA
LockServiceDatabase
RegQueryValueExW
RegOpenKeyA
RegCloseKey
SetThreadToken
RegSetValueExA
ImpersonateSelf
IsTextUnicode
GetUserNameA
GetSecurityDescriptorSacl
GetSecurityDescriptorControl
GetFileSecurityW
ChangeServiceConfig2W
QueryServiceStatus
RegOpenKeyW
SetEntriesInAclW
LogonUserW
GetSecurityInfo
DeleteService
LookupAccountSidW
FreeSid
RegSetValueA
AllocateAndInitializeSid
CloseEventLog
OpenServiceW
RegEnumValueA
LsaFreeMemory
EnumServicesStatusW
GetKernelObjectSecurity
StartServiceCtrlDispatcherA
StartServiceW
IsValidSid
GetSidLengthRequired
SetSecurityInfo
RegQueryInfoKeyA
GetNamedSecurityInfoW
GetSecurityDescriptorLength
RegDeleteKeyA
RegEnumValueW
RegGetKeySecurity
EnumDependentServicesW
RegDeleteValueA
SetNamedSecurityInfoA
RegConnectRegistryA
EqualSid
RegQueryValueW
ReportEventA
MakeAbsoluteSD
GetSecurityDescriptorDacl
AllocateLocallyUniqueId
InitializeSecurityDescriptor
user32
DdeAccessData
ToUnicodeEx
kernel32
GetNumberOfConsoleInputEvents
GetVersion
GetVersionExW
VerLanguageNameW
AddAtomA
CompareFileTime
DisconnectNamedPipe
GetEnvironmentStrings
ClearCommError
GetPrivateProfileStringA
GetDateFormatW
GetCurrentProcess
GetVolumeInformationW
GetStartupInfoA
GetCommandLineW
GetTempPathW
GetSystemDirectoryW
FindClose
DuplicateHandle
GetComputerNameA
CreateEventW
AreFileApisANSI
FindAtomA
GetLastError
GetCurrentProcessId
GetConsoleCP
GetEnvironmentStringsW
DefineDosDeviceW
GetDiskFreeSpaceExA
ConvertDefaultLocale
GetUserDefaultLangID
ConnectNamedPipe
GlobalLock
GlobalAddAtomW
CreateMutexA
FindFirstFileW
CreateThread
GetDiskFreeSpaceExW
CloseHandle
CopyFileA
GetStringTypeA
GetExitCodeProcess
GetExitCodeThread
GetVolumeInformationA
GetFileSize
GetTempPathA
GetSystemDefaultLCID
FormatMessageW
GlobalAddAtomA
GlobalFindAtomA
FindAtomW
ExitThread
FlushViewOfFile
HeapSize
FatalAppExitA
CreateSemaphoreW
GetCurrentDirectoryA
GetNumberFormatW
GlobalFree
GetFileType
GetOEMCP
FreeEnvironmentStringsA
HeapDestroy
FreeLibrary
FindFirstChangeNotificationW
CreateFileMappingW
ExpandEnvironmentStringsA
EnumResourceLanguagesW
GetProcessAffinityMask
CreateFileMappingA
GetSystemPowerStatus
GetFileAttributesExA
CreateDirectoryW
GetProcessVersion
FindResourceA
CreateEventA
FindNextFileW
GetStringTypeW
GetAtomNameW
GetDiskFreeSpaceW
DosDateTimeToFileTime
GetFileAttributesExW
GetDateFormatA
CreateRemoteThread
HeapReAlloc
GetCurrentThreadId
DeleteAtom
Beep
FindFirstChangeNotificationA
GetStdHandle
GetPrivateProfileSectionNamesW
GetTimeFormatA
GetSystemInfo
FindNextFileA
CreateSemaphoreA
GetWindowsDirectoryW
GetDriveTypeW
GetTempFileNameW
FreeConsole
FreeLibraryAndExitThread
GlobalHandle
FlushInstructionCache
GetLogicalDriveStringsA
GetShortPathNameW
AllocConsole
GetConsoleScreenBufferInfo
HeapCreate
FileTimeToSystemTime
CompareStringW
GetSystemTimeAsFileTime
HeapCompact
winmm
midiOutGetDevCapsW
waveOutSetPlaybackRate
timeEndPeriod
midiOutReset
midiOutGetDevCapsA
mixerMessage
midiInGetDevCapsW
mmioClose
mixerGetControlDetailsA
midiInGetID
waveOutGetPlaybackRate
mciSetYieldProc
mciSendStringA
mixerGetLineInfoA
waveOutGetPosition
midiDisconnect
midiStreamRestart
DrvGetModuleHandle
midiInGetNumDevs
timeGetSystemTime
midiOutMessage
mmioFlush
joyGetPosEx
waveOutGetID
mciGetDeviceIDW
mmioDescend
sndPlaySoundW
waveInStart
mixerGetNumDevs
midiOutGetID
midiInGetDevCapsA
waveOutGetVolume
midiOutPrepareHeader
midiInPrepareHeader
PlaySoundW
CloseDriver
PlaySoundA
auxGetDevCapsW
mmioRenameA
waveOutSetPitch
waveInGetNumDevs
auxOutMessage
mixerGetLineInfoW
midiOutClose
mciGetErrorStringW
midiStreamOut
mciGetCreatorTask
midiOutLongMsg
auxGetVolume
waveOutRestart
mixerGetControlDetailsW
GetDriverModuleHandle
mmioRenameW
waveOutMessage
mmioAdvance
waveOutReset
joyGetDevCapsA
midiInClose
midiStreamClose
midiOutGetVolume
midiInUnprepareHeader
mciGetDeviceIDA
midiInGetErrorTextA
midiInStop
timeGetDevCaps
mciGetDeviceIDFromElementIDA
midiInGetErrorTextW
mmioOpenW
OpenDriver
auxSetVolume
mciSendCommandA
joyGetThreshold
mciSendStringW
sndPlaySoundA
mmioInstallIOProcW
midiInAddBuffer
midiOutUnprepareHeader
waveOutBreakLoop
joyGetPos
SendDriverMessage
timeSetEvent
DefDriverProc
mixerOpen
mmioWrite
joyGetDevCapsW
midiOutCacheDrumPatches
midiStreamOpen
midiOutGetErrorTextA
midiOutShortMsg
mixerSetControlDetails
msi
ord52
ord71
ord24
ord70
ord72
ord59
ord51
ord18
ord53
ord57
ord27
ord65
ord42
ord45
ord60
ord74
ord15
ord33
ord38
ord21
ord66
ord46
ord62
ord170
ord19
ord171
ord43
ord61
ord75
ord54
ord73
ord29
ord47
ord25
ord44
resutils
ResUtilStopResourceService
ResUtilGetBinaryProperty
ResUtilIsPathValid
ResUtilVerifyService
ResUtilResourcesEqual
ResUtilDupString
ResUtilGetMultiSzProperty
ResUtilGetPrivateProperties
ResUtilAddUnknownProperties
ResUtilGetEnvironmentWithNetName
ResUtilVerifyPrivatePropertyList
ResUtilGetProperty
ResUtilVerifyPropertyTable
ResUtilResourceTypesEqual
ClusWorkerCheckTerminate
ResUtilSetPrivatePropertyList
ResUtilGetAllProperties
ResUtilGetPropertiesToParameterBlock
ResUtilEnumPrivateProperties
ResUtilSetPropertyTable
ResUtilFindDwordProperty
ResUtilDupParameterBlock
ResUtilFindSzProperty
ClusWorkerTerminate
ResUtilGetDwordProperty
ResUtilStartResourceService
ResUtilGetPropertySize
ResUtilGetSzProperty
ResUtilSetPropertyParameterBlock
ResUtilSetMultiSzValue
rpcrt4
RpcBindingSetAuthInfoExW
IUnknown_Release_Proxy
long_from_ndr
RpcMgmtStatsVectorFree
RpcSmDestroyClientContext
NdrClientInitializeNew
RpcMgmtEnableIdleCleanup
I_RpcNsBindingSetEntryNameW
NdrRpcSmClientAllocate
RpcServerUseProtseqIfExA
NdrFullPointerQueryRefId
RpcImpersonateClient
NdrConformantVaryingArrayMemorySize
NDRCContextMarshall
NdrConformantArrayFree
I_RpcFreePipeBuffer
NdrConformantArrayMarshall
RpcEpRegisterNoReplaceW
RpcBindingSetAuthInfoExA
RpcMgmtIsServerListening
I_RpcMapWin32Status
NdrMesTypeEncode
NdrServerUnmarshall
NdrServerInitializeMarshall
NdrInterfacePointerMemorySize
NdrComplexStructMemorySize
RpcRevertToSelfEx
NdrClientContextMarshall
MesEncodeIncrementalHandleCreate
NdrServerCall2
RpcBindingFromStringBindingW
NdrFullPointerQueryPointer
RpcBindingInqAuthInfoW
RpcServerInqBindings
NdrClientContextUnmarshall
I_RpcIfInqTransferSyntaxes
NdrUserMarshalMarshall
NdrNsSendReceive
MesDecodeIncrementalHandleCreate
NdrComplexArrayUnmarshall
NdrPointerBufferSize
RpcMgmtInqIfIds
RpcNetworkIsProtseqValidW
NdrFullPointerFree
NdrRpcSsDefaultFree
NdrServerContextUnmarshall
RpcEpRegisterNoReplaceA
NdrRpcSmClientFree
short_from_ndr
I_UuidCreate
NdrNonConformantStringMarshall
I_RpcPauseExecution
NdrNonConformantStringMemorySize
MesBufferHandleReset
RpcMgmtStopServerListening
RpcBindingInqAuthClientW
RpcBindingInqAuthClientA
NdrByteCountPointerBufferSize
NdrConformantVaryingArrayMarshall
RpcAsyncCancelCall
I_RpcConnectionSetSockBuffSize
RpcServerUseProtseqW
NdrMesSimpleTypeAlignSize
I_RpcReallocPipeBuffer
NdrComplexArrayFree
RpcBindingToStringBindingA
UuidCreateNil
RpcServerUseProtseqIfA
I_RpcBindingInqTransportType
RpcSsDontSerializeContext
char_from_ndr
RpcObjectSetInqFn
RpcSmGetThreadHandle
NdrNonEncapsulatedUnionMarshall
RpcEpRegisterW
RpcMgmtEpEltInqBegin
RpcServerUseProtseqIfExW
NdrNonEncapsulatedUnionFree
NdrFullPointerInsertRefId
RpcSsFree
NdrMapCommAndFaultStatus
NdrFixedArrayMarshall
NdrSimpleStructMarshall
RpcBindingServerFromClient
NdrSimpleStructMemorySize
RpcMgmtEpEltInqNextA
RpcMgmtInqServerPrincNameW
NdrFullPointerXlatInit
RpcSmFree
NdrNonEncapsulatedUnionBufferSize
data_into_ndr
NDRSContextMarshall
NDRSContextUnmarshall
RpcStringBindingComposeA
RpcStringFreeW
NdrSimpleStructFree
RpcSsSetThreadHandle
UuidCompare
NdrComplexArrayBufferSize
RpcServerUseProtseqA
NdrNonConformantStringBufferSize
NdrStubCall
I_RpcRequestMutex
RpcSsDestroyClientContext
NdrAllocate
I_RpcBindingCopy
I_RpcSendReceive
RpcMgmtSetAuthorizationFn
NdrVaryingArrayFree
RpcSmSetThreadHandle
RpcServerUseAllProtseqs
RpcBindingReset
RpcNsBindingInqEntryNameA
RpcServerRegisterIf
I_RpcNsBindingSetEntryNameA
NdrConvert
NdrComplexArrayMemorySize
NdrEncapsulatedUnionMemorySize
NdrOleAllocate
NdrConformantArrayMemorySize
RpcSmEnableAllocate
RpcAsyncCompleteCall
MesEncodeDynBufferHandleCreate
NdrVaryingArrayMemorySize
RpcBindingSetAuthInfoA
NdrComplexArrayMarshall
RpcBindingFromStringBindingA
NdrAsyncServerCall
RpcServerInqDefaultPrincNameA
NdrPointerMemorySize
RpcBindingSetObject
UuidEqual
RpcAsyncInitializeHandle
NdrServerInitializeNew
MesEncodeFixedBufferHandleCreate
NdrServerInitialize
I_RpcDeleteMutex
UuidToStringA
NdrMesTypeDecode
NdrInterfacePointerMarshall
NdrPointerUnmarshall
NdrEncapsulatedUnionFree
UuidIsNil
UuidToStringW
NdrXmitOrRepAsMemorySize
RpcAsyncRegisterInfo
RpcRaiseException
RpcServerUseAllProtseqsEx
RpcServerInqIf
NdrEncapsulatedUnionUnmarshall
NdrOleFree
NdrComplexStructMarshall
RpcMgmtEpUnregister
NdrServerInitializePartial
NdrConformantStringBufferSize
IUnknown_QueryInterface_Proxy
NdrXmitOrRepAsUnmarshall
RpcBindingInqObject
UuidFromStringA
I_RpcAsyncSetHandle
RpcRevertToSelf
shlwapi
PathRemoveExtensionW
PathFindExtensionW
SHQueryValueExW
SHRegDeleteEmptyUSKeyW
SHRegWriteUSValueW
PathParseIconLocationW
PathIsFileSpecW
SHDeleteEmptyKeyW
PathIsFileSpecA
PathFindOnPathA
SHRegGetBoolUSValueA
PathRemoveBackslashA
PathSkipRootA
PathIsRelativeW
PathCombineW
PathRemoveBlanksW
SHSetValueW
PathSearchAndQualifyW
PathMakeSystemFolderW
SHDeleteValueA
PathRemoveFileSpecW
PathAddBackslashW
SHRegWriteUSValueA
PathAppendA
PathStripPathW
PathCommonPrefixA
StrTrimW
SHRegQueryUSValueA
StrCmpIW
PathCompactPathA
SHDeleteValueW
SHRegGetBoolUSValueW
PathRemoveBackslashW
PathFileExistsW
SHRegDeleteUSValueA
PathCommonPrefixW
StrIsIntlEqualW
PathIsPrefixA
ChrCmpIA
StrCSpnW
PathRemoveBlanksA
PathFindFileNameW
SHRegOpenUSKeyW
SHRegGetUSValueW
PathBuildRootA
PathFindExtensionA
PathCompactPathExW
PathRelativePathToW
PathIsDirectoryA
PathIsUNCA
PathRelativePathToA
PathIsSystemFolderW
PathAppendW
PathRemoveArgsA
StrCSpnA
StrFromTimeIntervalW
SHGetValueA
StrCmpW
PathGetDriveNumberA
StrFormatByteSizeA
SHRegEnumUSKeyA
StrFormatByteSizeW
PathFileExistsA
PathSetDlgItemPathW
PathIsSameRootA
PathMakePrettyW
PathUnquoteSpacesA
SHEnumKeyExA
SHQueryInfoKeyA
PathStripToRootA
ChrCmpIW
StrFromTimeIntervalA
PathRenameExtensionW
PathIsDirectoryW
SHRegEnumUSValueW
PathQuoteSpacesA
PathIsUNCServerA
PathIsRelativeA
SHQueryInfoKeyW
PathRemoveArgsW
StrToIntW
SHDeleteKeyA
PathIsUNCServerShareA
StrNCatA
PathGetDriveNumberW
PathRenameExtensionA
StrToIntExA
StrTrimA
StrIsIntlEqualA
SHCreateShellPalette
PathAddBackslashA
SHEnumKeyExW
StrPBrkA
PathSearchAndQualifyA
PathAddExtensionA
PathStripPathA
PathIsRootA
PathFindNextComponentW
PathUnquoteSpacesW
PathIsPrefixW
PathQuoteSpacesW
PathIsURLW
PathCanonicalizeW
PathRemoveFileSpecA
PathCompactPathExA
SHRegQueryUSValueW
PathGetCharTypeW
StrCatW
PathStripToRootW
PathIsRootW
StrPBrkW
SHRegSetUSValueA
StrToIntExW
SHOpenRegStreamA
PathBuildRootW
PathIsContentTypeW
PathCompactPathW
PathIsUNCServerW
StrCSpnIA
SHRegEnumUSKeyW
StrSpnA
SHRegQueryInfoUSKeyA
PathParseIconLocationA
StrSpnW
SHSetValueA
PathFindOnPathW
PathIsUNCW
SHRegDeleteEmptyUSKeyA
PathSkipRootW
PathCombineA
SHDeleteKeyW
SHRegEnumUSValueA
PathSetDlgItemPathA
SHRegCreateUSKeyA
PathIsContentTypeA
PathIsSameRootW
PathGetArgsW
SHDeleteEmptyKeyA
PathFindFileNameA
PathMakePrettyA
PathMatchSpecW
SHEnumValueW
StrCpyW
SHRegGetUSValueA
SHGetValueW
PathUnmakeSystemFolderA
SHRegCreateUSKeyW
PathUnmakeSystemFolderW
PathFindNextComponentA
SHRegCloseUSKey
StrCSpnIW
StrToIntA
StrDupA
PathGetArgsA
PathAddExtensionW
PathMatchSpecA
SHRegSetUSValueW
SHEnumValueA
wininet
InternetCrackUrlW
InternetAttemptConnect
InternetConnectW
HttpAddRequestHeadersA
GopherGetAttributeA
FtpGetCurrentDirectoryA
InternetAutodialHangup
RetrieveUrlCacheEntryFileW
FindFirstUrlCacheEntryExA
InternetGetLastResponseInfoA
InternetConfirmZoneCrossing
FtpPutFileW
InternetCanonicalizeUrlA
GopherFindFirstFileA
CreateUrlCacheEntryW
GopherCreateLocatorW
GetUrlCacheEntryInfoA
InternetCombineUrlA
InternetLockRequestFile
winspool.drv
OpenPrinterA
AddJobW
GetPrinterDataA
DeletePortA
DeletePrinterConnectionW
DocumentPropertiesW
ConnectToPrinterDlg
GetPrinterDataExA
DeletePrinterDataExW
FindClosePrinterChangeNotification
AddJobA
OpenPrinterW
AddMonitorA
FindNextPrinterChangeNotification
EnumPrinterDataW
FreePrinterNotifyInfo
PrinterMessageBoxA
StartDocPrinterW
DeletePrinterDataExA
AddPrinterDriverExW
GetPrinterDriverDirectoryA
AddPrinterConnectionW
EnumFormsW
GetPrinterDriverW
GetFormW
EnumPrintProcessorDatatypesW
EnumFormsA
SetPortA
AddPrinterDriverA
AddPrinterA
DeletePrinterDriverExW
EndPagePrinter
FindFirstPrinterChangeNotification
DeletePortW
DeletePrinterDriverA
EnumPrinterKeyW
GetJobW
GetFormA
DeletePrinterKeyW
EnumPrintProcessorsA
WaitForPrinterChange
SetJobW
DeleteFormW
EnumPrinterDriversW
ReadPrinter
DeleteMonitorW
GetPrinterDriverA
AbortPrinter
AddPrintProvidorW
AddPrintProcessorW
GetPrinterDataW
DeletePrinterKeyA
EnumMonitorsW
AddPortA
DeletePrintProcessorW
ConfigurePortW
SetPrinterA
EnumPortsW
AddPrintProcessorA
AdvancedDocumentPropertiesA
EnumMonitorsA
GetPrinterDataExW
GetJobA
ConfigurePortA
EnumPrinterDriversA
AddPrinterW
PrinterProperties
GetPrinterW
DeletePrinterConnectionA
DeviceCapabilitiesA
SetJobA
EnumPrintersW
DocumentPropertiesA
SetPrinterW
EnumPrintProcessorsW
AddMonitorW
comdlg32
FindTextA
ReplaceTextW
GetSaveFileNameA
PrintDlgA
GetOpenFileNameA
CommDlgExtendedError
ChooseColorA
GetFileTitleA
ChooseColorW
PageSetupDlgW
PrintDlgW
GetSaveFileNameW
ReplaceTextA
FindTextW
Sections
.text Size: 452KB - Virtual size: 448KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 2.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ