Static task
static1
Behavioral task
behavioral1
Sample
959eab4bb88b8100471a9a2ce73d35ceebd5ac073b6ebcc87f48aa65ede66612.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
959eab4bb88b8100471a9a2ce73d35ceebd5ac073b6ebcc87f48aa65ede66612.exe
Resource
win10v2004-20220901-en
windows10-2004-x64
General
-
Target
959eab4bb88b8100471a9a2ce73d35ceebd5ac073b6ebcc87f48aa65ede66612
-
Size
504KB
-
MD5
889ebb2ee81cbab3e25f6a70a774e012
-
SHA1
be5c4773ec0f86393aa1291ecbf427afa0e101a2
-
SHA256
959eab4bb88b8100471a9a2ce73d35ceebd5ac073b6ebcc87f48aa65ede66612
-
SHA512
3faaef58149861b16c2ce893604de505d751f977511065d32caab270759a57f7cf9bc72432d70d64a887e188a7e8800e71ca4f8eeb392ac0f218aab3a6160cb9
-
SSDEEP
12288:oW8FrTYa9YTMMc4Yoq8hqTD8Q5+twu/m4pPq23QaG:pksa9YS4YozwTD8blPq
Malware Config
Signatures
Files
-
959eab4bb88b8100471a9a2ce73d35ceebd5ac073b6ebcc87f48aa65ede66612.exe windows x86
b97875184aa493e6b2af7bea418358d3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetComboBoxInfo
CharToOemA
GetQueueStatus
LoadAcceleratorsW
AnimateWindow
SetUserObjectSecurity
InsertMenuA
CharToOemBuffA
GetClassNameA
CharUpperW
TranslateAcceleratorA
ShowWindow
GetMenuBarInfo
SetWindowTextA
GetNextDlgGroupItem
DestroyAcceleratorTable
GetDlgItemTextA
ActivateKeyboardLayout
CreateAcceleratorTableA
GetDoubleClickTime
IsChild
GetCursorInfo
ToUnicode
IsWindow
SetClassLongW
GetMenuItemInfoW
HideCaret
SetDlgItemInt
IsDlgButtonChecked
RegisterDeviceNotificationW
SetDlgItemTextW
CheckDlgButton
UnregisterClassA
DefWindowProcA
UnregisterHotKey
RegisterClassExW
SetWindowRgn
FillRect
CharUpperBuffA
GetOpenClipboardWindow
HiliteMenuItem
DdeConnect
MonitorFromWindow
CreateWindowExA
ShowOwnedPopups
GetWindowDC
EnableScrollBar
DdeInitializeW
GetWindowLongA
EnumDisplaySettingsW
GetSubMenu
GetSystemMenu
CharUpperBuffW
ReleaseDC
GetKeyboardState
TrackPopupMenuEx
SetCursorPos
PostQuitMessage
DrawFocusRect
CharUpperA
CountClipboardFormats
GetTitleBarInfo
ExitWindowsEx
RedrawWindow
LoadMenuIndirectW
SetMenuContextHelpId
CloseClipboard
GetMessageA
OpenClipboard
GetClassLongA
InvertRect
CreateIcon
DeleteMenu
ChildWindowFromPointEx
GetMenuCheckMarkDimensions
LoadKeyboardLayoutA
LoadMenuW
GetMenuItemRect
WinHelpA
SetTimer
InsertMenuItemW
CharLowerBuffA
SendDlgItemMessageW
SetClipboardViewer
DestroyWindow
IsWindowUnicode
ArrangeIconicWindows
GrayStringW
GetClassInfoA
GetMenuItemInfoA
keybd_event
CharPrevA
DrawTextA
ReuseDDElParam
wvsprintfW
SetPropA
SendDlgItemMessageA
ChangeDisplaySettingsA
UnhookWinEvent
RegisterWindowMessageA
CopyAcceleratorTableA
GetGUIThreadInfo
CharLowerW
CreateCursor
GetClipboardViewer
GetWindowTextLengthW
LookupIconIdFromDirectoryEx
GetMessagePos
DlgDirSelectExA
FindWindowA
SetMenuDefaultItem
TrackPopupMenu
GetClipCursor
DdeNameService
GetClipboardOwner
LoadCursorFromFileW
EmptyClipboard
DdePostAdvise
GetWindow
DeferWindowPos
SetWindowPlacement
RealChildWindowFromPoint
GetWindowThreadProcessId
GetClassLongW
EnumThreadWindows
SetWindowsHookExW
BroadcastSystemMessage
CharNextW
LockWindowUpdate
GetMenuItemID
ModifyMenuW
GetScrollRange
ReleaseCapture
CreateMenu
PostMessageA
SystemParametersInfoA
OpenDesktopW
SwapMouseButton
DefFrameProcA
GetDesktopWindow
ShowCursor
IsIconic
GetScrollPos
CascadeWindows
GetForegroundWindow
ClipCursor
IsCharAlphaA
ScreenToClient
DrawTextW
GetMenuState
SetRect
DrawIconEx
SendMessageW
GetUserObjectInformationW
ScrollWindow
DdeAccessData
PostThreadMessageA
LockSetForegroundWindow
GetLastInputInfo
ShowCaret
GetDlgItem
DrawStateW
RegisterClipboardFormatW
GetMenuStringA
MsgWaitForMultipleObjects
GetMenuDefaultItem
GetLastActivePopup
WindowFromPoint
MessageBoxIndirectA
SetCaretBlinkTime
AllowSetForegroundWindow
FrameRect
SetFocus
SetMenuItemBitmaps
GetUpdateRect
CreateDialogIndirectParamW
SendMessageTimeoutA
GetWindowContextHelpId
RegisterClassA
GetProcessWindowStation
EnumClipboardFormats
SetPropW
EndDialog
DlgDirListA
SendNotifyMessageW
AppendMenuA
GetClipboardData
GetCursor
CheckRadioButton
MessageBeep
AdjustWindowRect
LoadStringA
GetWindowTextW
OpenWindowStationW
LoadImageW
InSendMessage
LoadIconA
DdeCreateDataHandle
PeekMessageW
CallMsgFilterA
TileChildWindows
SetMenu
DdeGetData
KillTimer
wsprintfA
MapVirtualKeyExW
MessageBoxExA
GetMenu
ToAsciiEx
EndPaint
SetWindowLongA
IsWindowVisible
CreateAcceleratorTableW
DispatchMessageA
BeginDeferWindowPos
CopyImage
CharLowerBuffW
LoadBitmapA
GetTabbedTextExtentA
AttachThreadInput
DdeCreateStringHandleW
ReplyMessage
SendMessageTimeoutW
GetCapture
MapWindowPoints
CreateIconIndirect
LoadIconW
GetDlgItemTextW
DialogBoxParamW
GetWindowPlacement
ShowScrollBar
WindowFromDC
ScrollDC
GetWindowTextA
CreateDesktopW
SetThreadDesktop
RegisterClassExA
OpenDesktopA
FreeDDElParam
SetLayeredWindowAttributes
AppendMenuW
LoadCursorW
OffsetRect
DestroyCursor
IsCharLowerW
DefFrameProcW
IsDialogMessageW
GetKeyNameTextA
FindWindowW
DlgDirListComboBoxA
IsCharAlphaNumericW
DrawStateA
ValidateRgn
SetMenuInfo
InflateRect
GetIconInfo
TranslateAcceleratorW
IsMenu
EnableMenuItem
GetClipboardFormatNameA
PtInRect
LoadBitmapW
UpdateWindow
GetDlgItemInt
SendInput
DdeGetLastError
CharNextA
TileWindows
CloseWindow
LoadAcceleratorsA
GetWindowModuleFileNameW
TabbedTextOutA
CreateDialogParamW
SetScrollRange
LoadImageA
ClientToScreen
LoadCursorFromFileA
SetScrollInfo
GetCaretPos
wvsprintfA
UnhookWindowsHookEx
MenuItemFromPoint
RegisterClipboardFormatA
GetScrollInfo
SetDoubleClickTime
CallWindowProcA
SystemParametersInfoW
CopyRect
GetInputState
DdeCreateStringHandleA
MapVirtualKeyW
SwitchDesktop
RemovePropW
MapVirtualKeyExA
CopyIcon
CloseDesktop
GetFocus
DrawFrameControl
CreateWindowExW
GetClassNameW
GetThreadDesktop
GetClassWord
OpenIcon
GetSysColorBrush
GetUserObjectSecurity
UnregisterClassW
PeekMessageA
GetClassInfoW
SetActiveWindow
SetScrollPos
ToAscii
OpenWindowStationA
GetDialogBaseUnits
IsDialogMessageA
DialogBoxIndirectParamW
SetKeyboardState
GetKeyState
IsDialogMessage
ScrollWindowEx
AdjustWindowRectEx
GetMenuInfo
MonitorFromRect
DrawIcon
SendNotifyMessageA
GetClassInfoExA
SetCapture
GetMonitorInfoW
GetScrollBarInfo
GetCaretBlinkTime
NotifyWinEvent
DefWindowProcW
EqualRect
OemToCharA
PostMessageW
GetCursorPos
MapDialogRect
DefMDIChildProcA
DestroyMenu
LoadCursorA
MapVirtualKeyA
PostThreadMessageW
DispatchMessageW
DdeQueryStringW
CreatePopupMenu
SetDlgItemTextA
LookupIconIdFromDirectory
GetActiveWindow
DrawEdge
IsCharLowerA
GetWindowLongW
GetParent
SetMenuItemInfoW
CallWindowProcW
DdeFreeDataHandle
DragDetect
FlashWindowEx
GetPropA
DdeClientTransaction
mouse_event
CreateDialogIndirectParamA
IsClipboardFormatAvailable
SetWindowPos
MoveWindow
UnpackDDElParam
DdeFreeStringHandle
ShowWindowAsync
DestroyCaret
EndDeferWindowPos
GetAncestor
GetDCEx
GetKeyboardLayoutList
DdeDisconnect
SetClassLongA
DrawTextExW
SubtractRect
RegisterClassW
IsCharUpperA
DlgDirListComboBoxW
CloseWindowStation
GetMenuStringW
ChildWindowFromPoint
DdeInitializeA
LoadStringW
GetClientRect
MessageBoxA
GetKeyNameTextW
GetKeyboardLayoutNameA
GetClipboardFormatNameW
InvalidateRect
GetWindowTextLengthA
WaitMessage
IsRectEmpty
CheckMenuRadioItem
LoadMenuA
TranslateMDISysAccel
DrawCaption
DlgDirSelectComboBoxExA
DrawMenuBar
IntersectRect
GetSysColor
SetProcessWindowStation
ExcludeUpdateRgn
GetMenuContextHelpId
DrawTextExA
DrawAnimatedRects
DestroyIcon
GetAsyncKeyState
GetClassInfoExW
TrackMouseEvent
DialogBoxIndirectParamA
SendMessageA
EnumDisplaySettingsA
GetPropW
GetUserObjectInformationA
EnumChildWindows
FlashWindow
DefDlgProcA
SetForegroundWindow
SetRectEmpty
VkKeyScanExA
GetNextDlgTabItem
RegisterHotKey
GetKeyboardLayout
IsZoomed
CreateMDIWindowW
EnumDisplayMonitors
SetClipboardData
RemoveMenu
FindWindowExA
CreateCaret
InsertMenuItemA
ChangeClipboardChain
InsertMenuW
IsCharAlphaNumericA
TranslateMessage
CreateDialogParamA
UnionRect
GetDlgCtrlID
DdeQueryStringA
SetMenuItemInfoA
CallNextHookEx
DefMDIChildProcW
FindWindowExW
CopyAcceleratorTableW
MonitorFromPoint
GetTopWindow
DialogBoxParamA
ChangeDisplaySettingsW
OpenInputDesktop
SetParent
GetWindowRgn
ModifyMenuA
GetMessageExtraInfo
InvalidateRgn
GetMessageW
ToUnicodeEx
UnregisterDeviceNotification
ValidateRect
SetWindowContextHelpId
SetMessageExtraInfo
GetMenuItemCount
CheckMenuItem
OemToCharBuffA
wsprintfW
CreateMDIWindowA
WinHelpW
CreateIconFromResourceEx
VkKeyScanA
EnumWindows
CharNextExA
DdeUnaccessData
GetMessageTime
LoadMenuIndirectA
DdeUninitialize
GetWindowWord
RemovePropA
GetWindowRect
TabbedTextOutW
GetUpdateRgn
MessageBoxW
CreateIconFromResource
VkKeyScanW
GetSystemMetrics
GetMonitorInfoA
MsgWaitForMultipleObjectsEx
SetWindowsHookExA
PackDDElParam
BringWindowToTop
IsWindowEnabled
GetWindowInfo
BeginPaint
EnumDesktopWindows
CharLowerA
EnableWindow
GrayStringA
GetDC
SetWindowTextW
WaitForInputIdle
SetCaretPos
SetWindowLongW
wininet
FtpCreateDirectoryA
InternetSetFilePointer
InternetOpenW
HttpOpenRequestA
InternetSetStatusCallback
InternetAutodial
InternetGetLastResponseInfoW
HttpQueryInfoA
FtpOpenFileW
SetUrlCacheEntryInfoA
FtpGetFileSize
InternetCheckConnectionA
InternetGetConnectedState
HttpEndRequestW
InternetReadFile
InternetCheckConnectionW
HttpSendRequestExA
FtpFindFirstFileA
DeleteUrlCacheEntry
InternetFindNextFileA
InternetSetOptionExA
InternetCrackUrlW
InternetOpenUrlA
FindCloseUrlCache
CreateUrlCacheEntryA
InternetGetCookieW
FindNextUrlCacheEntryW
InternetOpenUrlW
InternetCloseHandle
FtpGetCurrentDirectoryA
HttpAddRequestHeadersW
FindFirstUrlCacheEntryW
InternetAttemptConnect
InternetConnectW
HttpAddRequestHeadersA
FtpRemoveDirectoryW
FtpFindFirstFileW
InternetGoOnline
InternetSetOptionW
InternetGetLastResponseInfoA
FtpPutFileA
InternetGetConnectedStateExW
DeleteUrlCacheEntryW
HttpSendRequestA
RetrieveUrlCacheEntryStreamW
ReadUrlCacheEntryStream
InternetAutodialHangup
InternetTimeFromSystemTime
FindNextUrlCacheEntryA
HttpSendRequestW
InternetGetCookieA
FtpGetFileA
InternetCanonicalizeUrlA
InternetErrorDlg
InternetTimeToSystemTimeW
FtpRenameFileA
FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryA
InternetQueryOptionW
UnlockUrlCacheEntryStream
HttpOpenRequestW
InternetTimeToSystemTime
FtpPutFileW
InternetSetOptionA
FtpOpenFileA
InternetSetCookieA
FindFirstUrlCacheEntryA
FtpCreateDirectoryW
HttpSendRequestExW
InternetSetStatusCallbackW
HttpEndRequestA
InternetQueryDataAvailable
FtpDeleteFileA
InternetOpenA
InternetCrackUrlA
InternetCombineUrlA
HttpQueryInfoW
InternetConnectA
FtpRemoveDirectoryA
GetUrlCacheEntryInfoW
FtpDeleteFileW
InternetWriteFile
InternetQueryOptionA
DetectAutoProxyUrl
InternetCanonicalizeUrlW
CommitUrlCacheEntryA
InternetDial
oleaut32
LoadTypeLi
comctl32
ImageList_Create
ImageList_GetImageCount
ImageList_Read
ImageList_Remove
InitializeFlatSB
ImageList_GetImageInfo
ImageList_Merge
ImageList_Replace
ImageList_DrawEx
ImageList_Destroy
_TrackMouseEvent
DestroyPropertySheetPage
ImageList_DragLeave
ImageList_SetOverlayImage
ImageList_AddIcon
PropertySheetA
ImageList_DragEnter
PropertySheetW
ImageList_SetFlags
ImageList_SetImageCount
ImageList_ReplaceIcon
ImageList_SetIconSize
ImageList_LoadImageA
ImageList_DragShowNolock
CreateUpDownControl
ImageList_Copy
MakeDragList
DrawStatusTextW
ImageList_DragMove
InitCommonControlsEx
CreateToolbarEx
ImageList_GetIcon
ImageList_EndDrag
ImageList_GetDragImage
ImageList_Draw
ImageList_SetDragCursorImage
ImageList_BeginDrag
FlatSB_ShowScrollBar
CreatePropertySheetPageW
ImageList_LoadImageW
ImageList_SetBkColor
ImageList_DrawIndirect
CreatePropertySheetPageA
ImageList_AddMasked
ImageList_Add
ord17
ImageList_Duplicate
ImageList_GetBkColor
ImageList_LoadImage
ImageList_Write
FlatSB_EnableScrollBar
ImageList_GetIconSize
CreateStatusWindowW
kernel32
GetProcessVersion
IsBadReadPtr
GetFileInformationByHandle
LocalFileTimeToFileTime
GlobalMemoryStatusEx
GetCurrentThread
GetFullPathNameA
GetFileAttributesExW
GetCurrentDirectoryW
FreeEnvironmentStringsA
EnumResourceNamesW
WriteProfileStringA
WritePrivateProfileStructW
GetCompressedFileSizeW
PurgeComm
VerSetConditionMask
MoveFileExA
GetModuleFileNameA
GetCurrentProcess
WaitForSingleObjectEx
GetConsoleCP
SetProcessShutdownParameters
GetTempFileNameW
GetCommModemStatus
lstrcpyA
LockFile
FindCloseChangeNotification
TerminateProcess
FormatMessageA
GetUserDefaultLCID
SetProcessWorkingSetSize
MulDiv
LCMapStringW
VerifyVersionInfoA
TlsSetValue
GlobalAddAtomA
SetThreadContext
VirtualUnlock
ConvertThreadToFiber
SetStdHandle
AllocConsole
GetVolumeInformationW
GetProfileSectionA
SetThreadLocale
GetWindowsDirectoryW
UnlockFile
HeapAlloc
GetFileAttributesA
CreateNamedPipeA
HeapSize
GlobalHandle
CancelIo
Process32NextW
FindFirstFileW
ResumeThread
EnumSystemLanguageGroupsW
GetDiskFreeSpaceW
SetConsoleCursorPosition
InterlockedExchangeAdd
SetFileTime
IsBadStringPtrA
CreateEventA
RtlFillMemory
HeapValidate
WideCharToMultiByte
SetProcessPriorityBoost
GetExitCodeProcess
GetThreadPriority
lstrcpynA
Toolhelp32ReadProcessMemory
GlobalAlloc
GetFullPathNameW
MoveFileExW
LocalUnlock
SetCurrentDirectoryA
SetCommConfig
GetFileTime
WaitForMultipleObjects
HeapCreate
GetNumberFormatA
TransmitCommChar
GetThreadLocale
ReleaseSemaphore
CreateDirectoryExA
SetEnvironmentVariableW
lstrcatA
CreateEventW
Module32FirstW
ClearCommBreak
Process32Next
SearchPathW
CompareStringW
SetSystemTime
SetConsoleTitleW
OpenProcess
VirtualProtectEx
WaitForSingleObject
GetQueuedCompletionStatus
GlobalFindAtomA
lstrcatW
EnumResourceTypesA
CreateThread
HeapFree
CreateWaitableTimerA
VirtualProtect
CreateSemaphoreW
CreateFileMappingW
RemoveDirectoryA
IsValidCodePage
GetCommProperties
WriteFileEx
GetProfileStringA
SetConsoleMode
SetTimeZoneInformation
OpenEventW
GetSystemInfo
GetCPInfoExA
GetVolumePathNameA
EnumLanguageGroupLocalesW
InterlockedCompareExchange
TlsGetValue
TryEnterCriticalSection
GetOverlappedResult
GetTempPathW
InterlockedExchange
EnterCriticalSection
EnumCalendarInfoExW
GetProcessAffinityMask
SwitchToFiber
GetHandleInformation
FormatMessageW
GlobalLock
FatalAppExitA
DisconnectNamedPipe
LoadLibraryExW
RtlUnwind
OpenEventA
ClearCommError
GetSystemDirectoryW
DeleteFileA
GetVersionExW
BuildCommDCBA
GetPrivateProfileIntW
WritePrivateProfileStringW
CreateFiber
FindResourceExW
TerminateThread
GetCommandLineW
FlushConsoleInputBuffer
IsBadWritePtr
Process32FirstW
WriteConsoleA
WriteProfileStringW
DeleteFileW
OpenFileMappingA
Beep
FindFirstChangeNotificationA
DebugBreak
GetSystemTime
Heap32First
GetVolumeNameForVolumeMountPointW
SetVolumeMountPointA
LoadLibraryExA
SetFilePointerEx
FindNextFileW
PulseEvent
HeapReAlloc
OpenThread
GetPrivateProfileSectionA
CopyFileW
FindFirstChangeNotificationW
OpenMutexW
GetDiskFreeSpaceExA
EndUpdateResourceW
IsProcessorFeaturePresent
EnumCalendarInfoA
GetModuleFileNameW
GetShortPathNameA
UnlockFileEx
WriteProcessMemory
WritePrivateProfileStructA
RemoveDirectoryW
GetVolumePathNameW
GetModuleHandleW
EscapeCommFunction
PeekNamedPipe
QueryPerformanceFrequency
SetThreadAffinityMask
DeleteAtom
GetSystemWindowsDirectoryA
SetVolumeLabelA
IsBadStringPtrW
GetLocaleInfoW
GetConsoleOutputCP
FileTimeToLocalFileTime
FindResourceExA
Thread32First
SetTapePosition
GetTickCount
ProcessIdToSessionId
SetConsoleCtrlHandler
GetBinaryTypeA
SetComputerNameW
GetCurrentDirectoryA
Heap32Next
LocalLock
GetPrivateProfileStringA
ResetEvent
FlushViewOfFile
InitializeCriticalSection
FreeResource
CopyFileA
GetNumberFormatW
IsDBCSLeadByteEx
GetMailslotInfo
DeleteCriticalSection
MapViewOfFileEx
GetTimeZoneInformation
CreateMailslotA
BeginUpdateResourceW
LocalReAlloc
GetEnvironmentStringsW
LeaveCriticalSection
FindFirstFileExW
OutputDebugStringW
LoadLibraryW
CreateFileMappingA
InterlockedIncrement
DefineDosDeviceA
lstrcpynW
UnhandledExceptionFilter
GetFileAttributesW
DosDateTimeToFileTime
GetFileSize
Module32First
lstrcpyW
GetFileSizeEx
GetComputerNameA
GetCommandLineA
GetCurrentThreadId
GlobalReAlloc
GetPrivateProfileStringW
SetPriorityClass
GetThreadContext
GetLastError
SetCommMask
GetProcessTimes
TlsAlloc
HeapCompact
SetUnhandledExceptionFilter
SearchPathA
GetCommMask
MoveFileW
DisableThreadLibraryCalls
SizeofResource
SetCommTimeouts
SetupComm
FindNextVolumeW
GetThreadTimes
GetFileType
GetVersion
GetDiskFreeSpaceA
SetFilePointer
CreateNamedPipeW
SetErrorMode
Heap32ListNext
lstrlenW
OpenFile
SetHandleCount
AreFileApisANSI
Module32Next
_lclose
GetTapeParameters
GetExitCodeThread
SuspendThread
DebugActiveProcess
FindResourceA
DeviceIoControl
GlobalFree
SetNamedPipeHandleState
GetDriveTypeW
GlobalGetAtomNameW
_hread
CreateFileW
GlobalAddAtomW
UnmapViewOfFile
_lwrite
Sleep
LocalSize
CreateMutexW
SetCommBreak
QueryPerformanceCounter
SetMailslotInfo
FlushInstructionCache
SetEnvironmentVariableA
GetCurrentProcessId
FreeEnvironmentStringsW
SetCommState
GetOEMCP
QueryDosDeviceA
FindFirstFileA
CreateMutexA
TlsFree
GetDriveTypeA
lstrcmpW
SetFileAttributesA
GetStdHandle
lstrcmpiW
GetComputerNameExW
GetSystemTimeAsFileTime
MoveFileA
QueueUserAPC
LockResource
Heap32ListFirst
InterlockedDecrement
WaitCommEvent
CompareFileTime
GetTimeFormatW
GetLocalTime
GetSystemDefaultLangID
GetWindowsDirectoryA
UpdateResourceW
VirtualLock
_hwrite
GetSystemTimeAdjustment
CreateFileA
GetUserDefaultUILanguage
GetAtomNameA
CompareStringA
OpenSemaphoreA
ConvertDefaultLocale
FlushFileBuffers
ExpandEnvironmentStringsA
GetTimeFormatA
lstrcmpiA
IsBadCodePtr
WritePrivateProfileSectionW
GetStartupInfoA
LoadLibraryA
VirtualFree
SetFileAttributesW
GetStringTypeExA
FileTimeToDosDateTime
LocalAlloc
FindAtomW
GetTempFileNameA
GetFileAttributesExA
GetACP
FindFirstVolumeW
GetProcAddress
FindClose
GetStringTypeW
LocalFree
WaitForMultipleObjectsEx
SleepEx
EnumResourceLanguagesA
DeleteFiber
CreateToolhelp32Snapshot
GetUserDefaultLangID
GetSystemPowerStatus
VirtualFreeEx
GetStringTypeA
GetLongPathNameW
GetProcessHeap
GetLongPathNameA
DuplicateHandle
GetCommConfig
GetTempPathA
IsDebuggerPresent
WriteConsoleW
GetLocaleInfoA
_lcreat
GetDiskFreeSpaceExW
BackupSeek
WriteFile
CreateWaitableTimerW
OpenSemaphoreW
CreatePipe
GlobalDeleteAtom
lstrlenA
SetLocalTime
GlobalSize
VerLanguageNameA
GetProfileIntW
ReadDirectoryChangesW
GlobalFlags
CreateProcessA
SetWaitableTimer
ExpandEnvironmentStringsW
WinExec
WriteConsoleOutputW
LockFileEx
GetShortPathNameW
Module32NextW
IsDBCSLeadByte
VirtualAllocEx
GetVersionExA
WritePrivateProfileStringA
CreateProcessW
GetPrivateProfileSectionNamesA
ReadFile
GetComputerNameW
_lread
ReleaseMutex
GetCPInfo
GetStartupInfoW
SetProcessAffinityMask
CopyFileExW
GetSystemDefaultLCID
WaitNamedPipeA
GetProcessHeaps
GetProfileIntA
UpdateResourceA
GetEnvironmentStrings
GetConsoleMode
GetLogicalDriveStringsA
GlobalUnlock
FindVolumeClose
IsValidLocale
OpenFileMappingW
SystemTimeToFileTime
GetLogicalDriveStringsW
GetEnvironmentVariableA
GetPrivateProfileStructA
lstrcmpA
BackupWrite
CommConfigDialogW
Process32First
FindNextChangeNotification
VirtualAlloc
OpenMutexA
GetEnvironmentVariableW
ReadConsoleInputA
EnumResourceLanguagesW
_llseek
LoadResource
GetLogicalDrives
GetProfileStringW
VirtualQuery
WaitNamedPipeW
EnumResourceNamesA
HeapDestroy
LocalHandle
SetLastError
MultiByteToWideChar
GetCommState
CreateDirectoryW
FindNextFileA
SetThreadExecutionState
GetModuleHandleA
FreeConsole
CreateSemaphoreA
SwitchToThread
GetProcessWorkingSetSize
GetCurrencyFormatA
SetVolumeLabelW
GetPrivateProfileIntA
CopyFileExA
SystemTimeToTzSpecificLocalTime
GetVolumeInformationA
GlobalGetAtomNameA
ContinueDebugEvent
SetHandleInformation
GetCommTimeouts
LocalCompact
EnumUILanguagesW
SetThreadPriority
RaiseException
QueueUserWorkItem
SetEvent
FindResourceW
CloseHandle
PostQueuedCompletionStatus
GetStringTypeExW
ExitThread
GetSystemDirectoryA
MapViewOfFile
EndUpdateResourceA
BackupRead
DeleteVolumeMountPointA
LCMapStringA
BeginUpdateResourceA
GetDateFormatA
VerifyVersionInfoW
WritePrivateProfileSectionA
GetComputerNameExA
QueryDosDeviceW
GlobalMemoryStatus
WaitForDebugEvent
ReadProcessMemory
AddAtomW
FileTimeToSystemTime
SetEndOfFile
Thread32Next
FreeLibrary
SetCurrentDirectoryW
GetDateFormatW
GetVolumeNameForVolumeMountPointA
ExitProcess
CreateDirectoryA
comdlg32
ChooseColorW
PrintDlgExA
ChooseFontA
ChooseColorA
PrintDlgW
ChooseFontW
GetSaveFileNameW
PageSetupDlgW
CommDlgExtendedError
ReplaceTextW
ReplaceTextA
FindTextA
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleW
PrintDlgA
FindTextW
PageSetupDlgA
GetFileTitleA
GetOpenFileNameW
advapi32
RegisterServiceCtrlHandlerA
DuplicateTokenEx
SetTokenInformation
GetFileSecurityW
OpenEncryptedFileRawW
CryptEnumProvidersW
GetSidLengthRequired
RegDisablePredefinedCache
ConvertSidToStringSidW
CryptDestroyKey
GetAce
RegSetValueExA
StartServiceCtrlDispatcherA
ImpersonateNamedPipeClient
SetEntriesInAclW
LsaAddAccountRights
RegOpenCurrentUser
BuildTrusteeWithNameW
SetFileSecurityW
RegSetValueW
RegQueryValueExW
IsValidSecurityDescriptor
RegSaveKeyW
StartServiceA
EqualSid
RegEnumValueW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
CryptGetHashParam
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegQueryInfoKeyW
RegEnumKeyW
RegisterServiceCtrlHandlerW
QueryServiceConfigA
LsaOpenPolicy
RegCreateKeyExA
SetNamedSecurityInfoW
FreeSid
GetUserNameA
SetSecurityInfo
CryptImportKey
RegisterEventSourceW
QueryServiceConfigW
GetSidIdentifierAuthority
MakeAbsoluteSD
DeleteService
EnumDependentServicesW
CryptGenKey
LookupPrivilegeValueW
OpenProcessToken
RegRestoreKeyA
RegEnumKeyA
LsaClose
OpenSCManagerW
InitiateSystemShutdownA
ChangeServiceConfigA
RegSetValueA
IsValidSid
ChangeServiceConfig2A
InitializeAcl
InitiateSystemShutdownExW
SetFileSecurityA
LsaLookupSids
RegGetKeySecurity
ImpersonateLoggedOnUser
CreateProcessAsUserA
CryptGetUserKey
LookupAccountSidW
LookupAccountNameW
GetFileSecurityA
ConvertStringSidToSidW
RegDeleteKeyA
RegCreateKeyW
LogonUserA
OpenServiceA
RegQueryValueA
QueryServiceStatus
RegisterEventSourceA
GetEffectiveRightsFromAclA
CryptHashData
RegCreateKeyA
SetSecurityDescriptorGroup
CryptAcquireContextW
ChangeServiceConfigW
ChangeServiceConfig2W
CloseServiceHandle
RegQueryValueExA
AddAccessAllowedAce
EqualPrefixSid
LookupPrivilegeNameA
RegConnectRegistryA
AdjustTokenPrivileges
RegQueryInfoKeyA
SetNamedSecurityInfoA
RegCreateKeyExW
GetKernelObjectSecurity
RegUnLoadKeyA
ReportEventW
LookupPrivilegeDisplayNameA
CreateProcessAsUserW
RegUnLoadKeyW
SetSecurityDescriptorOwner
RegDeleteValueA
GetSecurityDescriptorDacl
DeleteAce
RegCloseKey
CryptDecrypt
AddAce
CreateServiceW
RegOpenKeyExA
CryptCreateHash
GetTokenInformation
CryptAcquireContextA
RegLoadKeyW
CreateServiceA
DuplicateToken
ReportEventA
CloseEncryptedFileRaw
OpenSCManagerA
ConvertSecurityDescriptorToStringSecurityDescriptorW
RegDeleteKeyW
BuildTrusteeWithSidW
CryptVerifySignatureA
RegSetValueExW
GetSecurityDescriptorControl
CryptDeriveKey
MapGenericMask
IsValidAcl
GetSidSubAuthority
GetNamedSecurityInfoA
GetSecurityDescriptorOwner
OpenThreadToken
DeregisterEventSource
GetSecurityInfo
CryptGenRandom
LsaNtStatusToWinError
LookupAccountSidA
RevertToSelf
CryptReleaseContext
SetSecurityDescriptorControl
LsaLookupNames
CreateWellKnownSid
QueryServiceStatusEx
CryptEncrypt
RegLoadKeyA
RegSetKeySecurity
MakeSelfRelativeSD
GetNamedSecurityInfoW
CryptGetKeyParam
ImpersonateSelf
QueryServiceLockStatusW
ConvertStringSidToSidA
LsaQueryInformationPolicy
CheckTokenMembership
SetSecurityDescriptorSacl
GetUserNameW
SetEntriesInAclA
InitializeSid
RegNotifyChangeKeyValue
RegEnumValueA
RegOpenKeyExW
LockServiceDatabase
SetServiceStatus
GetSidSubAuthorityCount
CopySid
AllocateAndInitializeSid
GetSecurityDescriptorGroup
GetSecurityDescriptorLength
GetAclInformation
EnumServicesStatusA
CryptExportKey
RegEnumKeyExA
LookupAccountNameA
GetExplicitEntriesFromAclW
BuildExplicitAccessWithNameW
StartServiceW
RegConnectRegistryW
ControlService
CryptSetProvParam
LogonUserW
AccessCheck
RegEnumKeyExW
WriteEncryptedFileRaw
CryptDestroyHash
SetServiceObjectSecurity
LsaRemoveAccountRights
LookupPrivilegeValueA
ReadEncryptedFileRaw
RegisterServiceCtrlHandlerExA
RegOpenKeyA
RegDeleteValueW
RegSaveKeyA
LsaFreeMemory
RegQueryValueW
OpenServiceW
SetThreadToken
UnlockServiceDatabase
GetLengthSid
RegFlushKey
RegOpenKeyW
GetSecurityDescriptorSacl
EncryptFileW
StartServiceCtrlDispatcherW
RegRestoreKeyW
Sections
.text Size: 212KB - Virtual size: 208KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 144KB - Virtual size: 141KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 111KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 56KB - Virtual size: 55KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ