Static task
static1
Behavioral task
behavioral1
Sample
481377a18053e51afd140f0cdfaf41fdab8e53c1f2d26df3edeb9c6d99eb73ea.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
481377a18053e51afd140f0cdfaf41fdab8e53c1f2d26df3edeb9c6d99eb73ea.exe
Resource
win10v2004-20220901-en
windows10-2004-x64
General
-
Target
481377a18053e51afd140f0cdfaf41fdab8e53c1f2d26df3edeb9c6d99eb73ea
-
Size
812KB
-
MD5
0f3305881e11a95672a2a15325528d10
-
SHA1
97a7b075015173e22ea2daf47ef21d60c3480676
-
SHA256
481377a18053e51afd140f0cdfaf41fdab8e53c1f2d26df3edeb9c6d99eb73ea
-
SHA512
8d0f75882a073ac67e0ad0946af601bcc9535e5136e5edeb5e6d866cc1c2be3cf573efd0ba4a46d9ec97a87b9b73bd52336c5d44cbef4c577bdfc48463448bdd
-
SSDEEP
24576:s7h5qqNoKafsqVEFEJjqGY5BDFgLkd7XwdwcdjXogvz4So4:svFIgCjygZbogvzI4
Malware Config
Signatures
Files
-
481377a18053e51afd140f0cdfaf41fdab8e53c1f2d26df3edeb9c6d99eb73ea.exe windows x86
9dbfd4fdf95839fccf5340cdb6dcb495
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
winmm
timeGetTime
engine
??1Archive@GAME@@QAE@XZ
?Open@Archive@GAME@@QAE_NPBDW4FileMode@12@@Z
??0Archive@GAME@@QAE@XZ
?Close@Archive@GAME@@QAEX_N@Z
?ExtractFileToDisk@Archive@GAME@@QBE_NHPBD@Z
??1LoadTableBinary@GAME@@UAE@XZ
?MapView@MemoryMappedFile@GAME@@QAEPBXII@Z
?GetNumFiles@Archive@GAME@@QBEIXZ
??0LoadTableBinary@GAME@@QAE@PAVDatabaseArchive@1@@Z
??1WorldFile@GAME@@QAE@XZ
?GetRegion@WorldFile@GAME@@QBEABURegion@12@I@Z
?GetNumRegions@WorldFile@GAME@@QBEIXZ
?Read@WorldFile@GAME@@QAE_NAAVBinaryReader@2@@Z
??0WorldFile@GAME@@QAE@XZ
?UnmapView@MemoryMappedFile@GAME@@QAEXPBXI@Z
?GetFileEntry@Archive@GAME@@QBEABUFileEntry@12@H@Z
?FindMatchingFilesEnd@Archive@GAME@@QAEIAAV?$vector@H@mem@@ABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
??0MemoryMappedFile@GAME@@QAE@XZ
?Open@MemoryMappedFile@GAME@@QAE_NABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
??1MemoryMappedFile@GAME@@UAE@XZ
?Deserialize@LoadTableBinary@GAME@@UAEXAAVBinaryReader@2@@Z
?GetLength@MemoryMappedFile@GAME@@QBEIXZ
?Serialize@LoadTableBinary@GAME@@UBEXPAU_iobuf@@@Z
sourcecontrol
?CheckInFile@SourceControlClient@@QAE_NPBD@Z
?AddFile@SourceControlClient@@QAE_NPBD@Z
??0FileStatus@@QAE@XZ
?GetFileStatus@SourceControlClient@@QAEHPBDPAVFileStatus@@@Z
??1FileStatus@@QAE@XZ
?SetUserName@SourceControlClient@@QAEXPBD@Z
?Connect@SourceControlClient@@QAE_NPBD@Z
?GetClientDirectory@SourceControlClient@@QBEPBDXZ
?CheckOutFile@SourceControlClient@@QAEHPBD_N@Z
?GetUserNameA@SourceControlClient@@QBEPBDXZ
?SetLog@SourceControlClient@@QAEXPAVSourceControlLog@@@Z
?SyncPath@SourceControlClient@@QAE?AW4ErrorCode@@PBD_NPAX@Z
?CreateDirectoryA@SourceControlClient@@QAE_NPBD@Z
?RevertFile@SourceControlClient@@QAE_NPBD@Z
?SetClientDirectory@SourceControlClient@@QAEXPBD@Z
?Disconnect@SourceControlClient@@QAEXXZ
??0SourceControlClient@@QAE@XZ
?GetFilesUnderDirectory@SourceControlClient@@QBEXABV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@AAV?$vector@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@V?$allocator@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@2@@3@@Z
??1SourceControlClient@@UAE@XZ
?GetFolders@SourceControlClient@@QAEXPBDAAV?$vector@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@V?$allocator@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@2@@_STL@@@Z
?GetFiles@SourceControlClient@@QAEXPBDAAV?$vector@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@V?$allocator@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@2@@_STL@@I_N0@Z
?IsFileWriteable@SourceControlClient@@QAE_NPBD@Z
?RenameFile@SourceControlClient@@QAEHPBD0@Z
?DeleteFileA@SourceControlClient@@QAEHPBD@Z
?GetClientFileVersion@SourceControlClient@@QBE?AUFileVersion@@PBD@Z
?GetFiles@SourceControlClient@@QAEXPBDAAV?$vector@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@V?$allocator@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@2@@_STL@@@Z
?IsRelativeFileUpToDate@SourceControlClient@@QAE_NPBD@Z
?GetFoldersFast@SourceControlClient@@QAEXPBDAAV?$vector@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@V?$allocator@V?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@2@@_STL@@@Z
?DeleteDirectory@SourceControlClient@@QAEHPBD@Z
?CreateAllDirectories@SourceControlClient@@QAE_NPBD@Z
??0Socket@@QAE@XZ
?Connect@Socket@@QAE_NPBDI@Z
?Disconnect@Socket@@QAEXXZ
?SendData@Socket@@QAEXPBXHH@Z
?SendInt@Socket@@QAEXHH@Z
?SendString@Socket@@QAEXPBDH@Z
?ReceiveData@Socket@@QAEHPAXHH@Z
?ReceiveInt@Socket@@QAEHH@Z
?ReceiveString@Socket@@QAEHPADHH@Z
?PingServer@SourceControlClient@@QAEHXZ
?GetUserState@SourceControlClient@@QAEXAAV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@@Z
stlport_vc7146
?get_allocator@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$allocator@D@2@XZ
??0_Loc_init@ios_base@_STL@@QAE@XZ
??0Init@ios_base@_STL@@QAE@XZ
??1_Loc_init@ios_base@_STL@@QAE@XZ
??1Init@ios_base@_STL@@QAE@XZ
?_M_increment@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?_M_decrement@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@@Z
?replace@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@IIPBD@Z
?clear@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
?_Rebalance@?$_Rb_global@_N@_STL@@SAXPAU_Rb_tree_node_base@2@AAPAU32@@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDIABV?$allocator@D@1@@Z
?push_back@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXD@Z
?_M_allocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXI@Z
??1?$allocator@D@_STL@@QAE@XZ
?_M_throw_length_error@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QBEXXZ
?allocate@?$allocator@D@_STL@@QAEPADIPBX@Z
?_M_deallocate_block@?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAEXXZ
?rfind@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@II@Z
?substr@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV12@II@Z
??Y?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@PBD@Z
??1?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@ABV01@@Z
?deallocate@?$__node_alloc@$00$0A@@_STL@@SAXPAXI@Z
?allocate@?$__node_alloc@$00$0A@@_STL@@SAPAXI@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
??4?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@PBD@Z
??1?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@XZ
??0?$_String_base@DV?$allocator@D@_STL@@@_STL@@QAE@ABV?$allocator@D@1@@Z
?compare@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEHABV12@@Z
?_M_put_nowiden@?$basic_ostream@DV?$char_traits@D@_STL@@@_STL@@QAEXPBD@Z
?sputc@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHD@Z
??1?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@XZ
?setstate@?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@QAEXH@Z
?sputn@?$basic_streambuf@DV?$char_traits@D@_STL@@@_STL@@QAEHPBDH@Z
??0?$_Osentry@DV?$char_traits@D@_STL@@@_STL@@QAE@AAV?$basic_ostream@DV?$char_traits@D@_STL@@@1@@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIPBDII@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@U_String_reserve_t@1@IABV?$allocator@D@1@@Z
??_7?$basic_ios@DV?$char_traits@D@_STL@@@_STL@@6B@
??1?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@UAE@XZ
?str@?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBE?AV?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@H@Z
?erase@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEPADPAD0@Z
?_Rebalance_for_erase@?$_Rb_global@_N@_STL@@SAPAU_Rb_tree_node_base@2@PAU32@AAPAU32@11@Z
??Y?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@D@Z
?resize@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXI@Z
?compare@?$char_traits@D@_STL@@SAHPBD0I@Z
?assign@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@PBDI@Z
??1?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@XZ
?_M_list@?$_Stl_prime@_N@_STL@@2QBIB
?_M_fill_insert@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAEXPAPAXIABQAX@Z
?reserve@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAEXI@Z
??1?$allocator@PAX@_STL@@QAE@XZ
?swap@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAEXAAV12@@Z
??0?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@IABQAXABV?$allocator@PAX@1@@Z
?find@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QBEIDI@Z
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@XZ
??Y?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV01@ABV01@@Z
?get_allocator@?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QBE?AV?$allocator@PAX@2@XZ
??0?$vector@PAXV?$allocator@PAX@_STL@@@_STL@@QAE@ABV?$allocator@PAX@1@@Z
??_D?$basic_stringstream@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEXXZ
??0?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAE@PBDABV?$allocator@D@1@@Z
??1ios_base@_STL@@UAE@XZ
?append@?$basic_string@DV?$char_traits@D@_STL@@V?$allocator@D@2@@_STL@@QAEAAV12@ABV12@@Z
mfc71
ord1671
ord1670
ord1551
ord5912
ord1620
ord1617
ord3946
ord1401
ord4244
ord5152
ord1908
ord5073
ord6275
ord4185
ord5203
ord3403
ord4722
ord4282
ord1600
ord5960
ord923
ord928
ord932
ord930
ord934
ord2410
ord2394
ord2413
ord2408
ord2385
ord2387
ord2405
ord2178
ord2172
ord1522
ord6279
ord3802
ord6277
ord3345
ord4967
ord1362
ord5175
ord1964
ord1656
ord1655
ord1599
ord5200
ord2537
ord2731
ord2835
ord4307
ord2714
ord2862
ord2540
ord2646
ord2533
ord3718
ord3719
ord3709
ord2644
ord3949
ord4486
ord4262
ord3182
ord354
ord764
ord266
ord605
ord3210
ord1934
ord3161
ord1280
ord1063
ord2095
ord1591
ord5915
ord1402
ord4240
ord5214
ord2991
ord4261
ord3317
ord572
ord741
ord1554
ord3195
ord620
ord2092
ord1641
ord1571
ord4238
ord2958
ord3230
ord658
ord3879
ord1654
ord1598
ord2987
ord3328
ord754
ord310
ord784
ord578
ord911
ord1794
ord907
ord6067
ord2882
ord2168
ord297
ord1489
ord299
ord2933
ord2370
ord781
ord4109
ord865
ord651
ord1969
ord1564
ord416
ord304
ord2867
ord4104
ord2322
ord1931
ord1483
ord4098
ord2089
ord1547
ord4234
ord3171
ord591
ord3441
ord1892
ord2086
ord1545
ord4232
ord3164
ord587
ord630
ord2021
ord3056
ord2164
ord3761
ord3683
ord762
ord2306
ord1181
ord305
ord1916
ord265
ord5563
ord1482
ord6286
ord1211
ord3997
ord629
ord584
ord317
ord6288
ord5089
ord384
ord4081
ord1439
ord2248
ord5491
ord4038
ord4014
ord6278
ord3801
ord6276
ord4326
ord2063
ord2018
ord5583
ord3806
ord1010
ord5102
ord6219
ord5382
ord3832
ord1920
ord2931
ord5224
ord5226
ord3948
ord4568
ord5230
ord5213
ord5566
ord2838
ord4481
ord3333
ord757
ord566
ord2271
ord2131
ord6090
ord5975
ord1126
ord2259
ord5320
ord1159
ord3875
ord3255
ord1185
ord2020
ord4444
ord4443
ord4790
ord4204
ord4781
ord4387
ord4980
ord4172
ord4181
ord4591
ord4777
ord4386
ord4401
ord4399
ord4381
ord4384
ord4379
ord4864
ord4861
ord3974
ord4239
ord5151
ord3344
ord1361
ord5167
ord4273
ord5331
ord6297
ord6208
ord4048
ord4035
ord5173
ord6005
ord5714
ord1091
ord3287
ord3163
ord3204
ord1279
ord5637
ord4100
ord2094
ord3244
ord1955
ord1283
ord2371
ord2367
ord2372
ord4041
ord2527
ord5611
ord6060
ord5608
ord6054
ord4161
ord6057
ord5888
ord6037
ord5727
ord5642
ord5647
ord5523
ord5588
ord5414
ord5401
ord5921
ord5719
ord3180
ord602
ord6062
ord347
ord3295
ord530
ord722
ord3503
ord1929
ord751
ord2477
ord1470
ord1595
ord562
ord5641
ord5640
ord4001
ord4123
ord2075
ord2263
ord1118
ord2938
ord3952
ord5444
ord4108
ord908
ord2272
ord298
ord1968
ord1930
ord5731
ord5529
ord5833
ord2657
ord1790
ord1793
ord385
ord2468
ord3677
ord2875
ord1651
ord6014
ord4198
ord3929
ord5355
ord3987
ord1912
ord2081
ord2077
ord2039
ord1352
ord4991
ord1345
ord1351
ord5145
ord6269
ord5202
ord4966
ord5161
ord1962
ord3325
ord3991
ord2884
ord3762
ord3883
ord1903
ord4353
ord5658
ord6065
ord5497
ord5725
ord3652
ord340
ord596
ord3490
ord6144
ord1207
ord2321
ord5871
ord4115
ord2794
ord3674
ord6110
ord6108
ord6010
ord2076
ord6142
ord6146
ord2797
ord2832
ord3797
ord2053
ord2052
ord2017
ord947
ord1367
ord5704
ord2429
ord1921
ord1936
ord6102
ord6104
ord1946
ord1734
ord4606
ord1744
ord1736
ord1590
ord4721
ord4281
ord3316
ord552
ord740
ord4397
ord1162
ord5613
ord3575
ord2719
ord3076
ord3378
ord3636
ord4211
ord4734
ord5142
ord5185
ord1123
ord3681
ord3588
ord4306
ord3799
ord4351
ord1880
ord1643
ord1581
ord3292
ord715
ord3651
ord2368
ord3648
ord3466
ord2246
ord1913
ord2615
ord5009
ord5012
ord4135
ord2939
ord4904
ord943
ord5356
ord2992
ord2425
ord2424
ord4019
ord1557
ord3945
ord5148
ord5205
ord2173
ord1306
ord635
ord742
ord1161
ord5165
ord4309
ord5977
ord4118
ord4927
ord3156
ord4250
ord553
ord395
ord4277
ord4265
ord5927
ord5859
ord4299
ord1397
ord6266
ord1933
ord1484
ord4099
ord2091
ord1570
ord4237
ord3229
ord657
ord1248
ord6020
ord2469
ord3684
ord3596
ord760
ord4320
ord5403
ord3350
ord3349
ord6168
ord3459
ord4972
ord4464
ord4584
ord4625
ord4910
ord4719
ord1486
ord2771
ord3088
ord4465
ord1084
ord3286
ord3337
ord589
ord330
ord709
ord5644
ord501
ord1395
ord3302
ord2654
ord3057
ord3406
ord3038
ord2055
ord332
msvcr71
tolower
_stricmp
_purecall
strrchr
putchar
puts
printf
__p___argv
__p___argc
fclose
fread
ftell
fseek
fopen
fwrite
_snprintf
wcslen
_strcmpi
strchr
strncpy
atoi
isalnum
_strnicmp
toupper
_itoa
_mbschr
strncmp
ispunct
isspace
atof
isdigit
isalpha
_fcvt
_chmod
realloc
memset
__security_error_handler
?terminate@@YAXXZ
__dllonexit
_onexit
_c_exit
_exit
_XcptFilter
_ismbblead
_cexit
exit
_acmdln
_amsg_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
sprintf
_CxxThrowException
memmove
_strdup
__CxxFrameHandler
wcscpy
_except_handler3
free
malloc
_setmbcp
kernel32
InterlockedExchange
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetStartupInfoA
ExitProcess
CreateDirectoryA
SystemTimeToFileTime
SetFileTime
GetSystemTime
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
WriteFile
SetEndOfFile
CreateFileA
GetFileSize
CreateThread
lstrcpyA
GetCPInfo
FindResourceA
LoadResource
LockResource
CreateEventA
GetCurrentDirectoryA
GetModuleHandleA
GetModuleFileNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
CreatePipe
RemoveDirectoryA
SetFileAttributesA
SetUnhandledExceptionFilter
CopyFileA
WritePrivateProfileStringA
FormatMessageA
LocalFree
ResetEvent
FindClose
SetEvent
PeekNamedPipe
ReadFile
Sleep
GetExitCodeProcess
CloseHandle
GetFileAttributesExA
CompareFileTime
WaitForSingleObject
CreateProcessA
DeleteFileA
GetTempPathA
GetFileAttributesA
FindFirstFileA
FindNextFileA
lstrlenA
lstrlenW
lstrcmpiA
GetVersion
DeleteCriticalSection
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
GetLastError
InitializeCriticalSection
GetACP
user32
PostMessageA
GetCaretPos
GetKeyState
TranslateMessage
SetWindowLongA
SetMenu
LoadMenuA
GetWindowLongA
RedrawWindow
LoadImageA
KillTimer
SetTimer
FindWindowExA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
MsgWaitForMultipleObjects
EnableWindow
LoadBitmapA
SendMessageA
MessageBoxA
UpdateWindow
SetRect
CopyRect
FillRect
DrawEdge
CreateMenu
CreatePopupMenu
DeleteMenu
AppendMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
ModifyMenuA
GetDC
ReleaseDC
GetDesktopWindow
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
DestroyIcon
DrawIconEx
GetSysColor
GetSysColorBrush
SystemParametersInfoA
GetSystemMetrics
GetMenuItemInfoA
IsWindowVisible
GetParent
IsWindow
ScreenToClient
GetCursorPos
InflateRect
EqualRect
FrameRect
GetWindowRect
GetClientRect
InvalidateRect
EndDeferWindowPos
BeginDeferWindowPos
CheckMenuItem
GetMenu
GetFocus
IsChild
LoadIconA
DispatchMessageA
PeekMessageA
gdi32
CreateSolidBrush
CreatePolygonRgn
FillRgn
PtInRegion
CreatePen
GetDIBColorTable
RealizePalette
CreateHalftonePalette
CreatePalette
StartDocA
StartPage
EndPage
EndDoc
CreateFontA
MoveToEx
LineTo
SetBkMode
GetStockObject
GetCurrentObject
GetTextExtentPoint32W
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetTextExtentPoint32A
SetPixel
GetPixel
BitBlt
PatBlt
Ellipse
GetBkMode
GetDeviceCaps
CreateCompatibleDC
GetObjectA
CreateCompatibleBitmap
CreateFontIndirectA
comdlg32
PrintDlgA
CommDlgExtendedError
advapi32
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
shell32
ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
comctl32
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Draw
ImageList_GetIconSize
ImageList_GetImageCount
zlib1
compress2
adler32
uncompress
Sections
.text Size: 356KB - Virtual size: 354KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 116KB - Virtual size: 113KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 332KB - Virtual size: 329KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ