Static task
static1
Behavioral task
behavioral1
Sample
9a4ec1d662a332e01975683ec91e00d1c338d98e327ae61c96203905ffe9280d.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
9a4ec1d662a332e01975683ec91e00d1c338d98e327ae61c96203905ffe9280d.exe
Resource
win10v2004-20220901-en
windows10-2004-x64
General
-
Target
9a4ec1d662a332e01975683ec91e00d1c338d98e327ae61c96203905ffe9280d
-
Size
328KB
-
MD5
0f4568e7ec0b32d95eaa92c48f96b706
-
SHA1
79a37ebef1036787758a32c609cccfc4ee4415a2
-
SHA256
9a4ec1d662a332e01975683ec91e00d1c338d98e327ae61c96203905ffe9280d
-
SHA512
ee36cbb0114660ea8db189e28e6a675cd727924bf7b6e714081fce0949aeee5abe3f42ae17830a2616bcd5b74ea77199076012970fc8c08282d7ce61118bcb7b
-
SSDEEP
6144:Fh5inLt1UkDY5bZYUHyES6QGbuY/jjEOf9c0hCpYBpKw:QjU+qbjTSnPYVf9TsYBYw
Malware Config
Signatures
Files
-
9a4ec1d662a332e01975683ec91e00d1c338d98e327ae61c96203905ffe9280d.exe windows x86
01d1107e1c89b65b898298d682a620e2
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
RoundRect
SetBrushOrgEx
GetPath
BitBlt
CreateFontIndirectA
SetAbortProc
FillPath
GetGraphicsMode
ArcTo
GetMapMode
Arc
CreateFontW
SetViewportExtEx
CreateBitmap
GetColorAdjustment
CreateHatchBrush
ResetDCW
Chord
MaskBlt
GetCharWidthFloatA
TextOutW
SelectClipRgn
ExtTextOutA
Ellipse
CreateRoundRectRgn
GetGlyphOutlineW
CloseEnhMetaFile
GetCharWidth32A
ChoosePixelFormat
GetGlyphOutlineA
PolyBezierTo
GetROP2
GetTextMetricsA
CreateSolidBrush
ScaleViewportExtEx
GetTextExtentPointW
GetBitmapBits
SetDIBits
GetCurrentObject
StretchDIBits
EndPage
GetCharABCWidthsW
PathToRegion
SetMetaFileBitsEx
GetMetaFileBitsEx
CreatePatternBrush
GetEnhMetaFileBits
GetEnhMetaFileW
AngleArc
PtInRegion
CreateCompatibleDC
GetClipBox
GetCharWidth32W
LineDDA
SetDCPenColor
CreateEnhMetaFileA
CreatePenIndirect
ExcludeClipRect
PlgBlt
GetCharWidthA
FloodFill
StartPage
GetMetaRgn
CreateCompatibleBitmap
SetEnhMetaFileBits
MoveToEx
EqualRgn
WidenPath
IntersectClipRect
SetROP2
GetLayout
DrawEscape
StrokePath
CreatePolygonRgn
GetViewportOrgEx
GdiFlush
EnumMetaFile
CopyMetaFileA
GetCharABCWidthsFloatW
GetSystemPaletteEntries
SetWinMetaFileBits
CreateEllipticRgnIndirect
GetStockObject
SetWorldTransform
CreatePolyPolygonRgn
SetViewportOrgEx
GetRgnBox
PatBlt
SetWindowOrgEx
GetTextCharsetInfo
UnrealizeObject
RectInRegion
ExtTextOutW
CreateDiscardableBitmap
GetCharABCWidthsFloatA
CreateBrushIndirect
CopyEnhMetaFileA
EndPath
SetBkMode
PolyBezier
GetClipRgn
GetTextExtentExPointW
SelectClipPath
CreateEllipticRgn
GetFontLanguageInfo
PolyDraw
SwapBuffers
GetEnhMetaFilePaletteEntries
ExtEscape
OffsetClipRgn
TranslateCharsetInfo
ExtFloodFill
GetCharWidthW
GetMetaFileA
AbortDoc
GetCurrentPositionEx
Polyline
RealizePalette
EnumFontsA
GetTextExtentPointA
GetDeviceCaps
GetTextColor
CloseMetaFile
CopyMetaFileW
SetBitmapDimensionEx
LPtoDP
ExtCreatePen
GetTextExtentExPointA
CreateICW
GetEnhMetaFileA
SetBitmapBits
Polygon
SetColorAdjustment
PtVisible
BeginPath
EnumObjects
GdiComment
SetBoundsRect
PlayMetaFile
GetPixelFormat
SetArcDirection
ScaleWindowExtEx
PlayEnhMetaFile
GetTextExtentPoint32W
DPtoLP
EndDoc
FrameRgn
CreateHalftonePalette
OffsetWindowOrgEx
SetPixel
SetStretchBltMode
OffsetViewportOrgEx
SetPolyFillMode
DescribePixelFormat
GetNearestPaletteIndex
SetICMMode
GetStretchBltMode
GetTextAlign
SetTextJustification
SetTextColor
DeleteDC
GetEnhMetaFileHeader
CreateMetaFileW
GetNearestColor
DeleteMetaFile
GetMiterLimit
CombineRgn
SetPaletteEntries
InvertRgn
GetDCOrgEx
PaintRgn
RestoreDC
GetCharacterPlacementW
GetBitmapDimensionEx
SetRectRgn
GetOutlineTextMetricsA
GetObjectType
ResetDCA
GetTextFaceW
SetDIBColorTable
SetTextAlign
GetWinMetaFileBits
FlattenPath
EnumFontsW
CreateMetaFileA
SaveDC
PolyPolygon
EnumFontFamiliesA
FillRgn
RemoveFontResourceA
CreateBitmapIndirect
SetTextCharacterExtra
GetTextCharset
SetMapperFlags
StretchBlt
GetTextExtentPoint32A
ExtCreateRegion
CreateEnhMetaFileW
SelectPalette
CreateDIBSection
CreateDIBitmap
SetDCBrushColor
GetWindowOrgEx
CreateDCW
CreateRectRgnIndirect
EnumEnhMetaFile
LineTo
CreateDCA
DeleteObject
AddFontResourceA
GetPixel
PlayEnhMetaFileRecord
GetPolyFillMode
Rectangle
SetDIBitsToDevice
SetPixelV
GetDIBits
GetTextCharacterExtra
CloseFigure
Escape
SetWindowExtEx
StartDocW
GetAspectRatioFilterEx
GetCharABCWidthsA
UpdateColors
EnumFontFamiliesExW
DeleteEnhMetaFile
CreateICA
GetRegionData
CreatePen
Pie
GetBkColor
GetBkMode
GetObjectW
GetFontData
GetKerningPairsA
CreatePalette
PolylineTo
SetBkColor
SelectObject
GetPaletteEntries
PolyPolyline
GetDIBColorTable
GetBoundsRect
SetMapMode
SetICMProfileA
TextOutA
SetLayout
GetTextMetricsW
SetPixelFormat
EnumFontFamiliesExA
GetArcDirection
ExtSelectClipRgn
GetViewportExtEx
GetObjectA
CreateDIBPatternBrushPt
CreateRectRgn
ResizePalette
SetGraphicsMode
ModifyWorldTransform
CreateFontA
AbortPath
CopyEnhMetaFileW
RectVisible
GetBrushOrgEx
AnimatePalette
SetMiterLimit
StrokeAndFillPath
GetTextFaceA
PlayMetaFileRecord
CreateFontIndirectW
OffsetRgn
GetWindowExtEx
StartDocA
EnumFontFamiliesW
kernel32
Heap32ListFirst
GetVersionExW
GlobalSize
ExpandEnvironmentStringsA
FindResourceExW
GetProcessHeap
lstrcpynA
OpenThread
GetOEMCP
QueryDosDeviceA
GetUserDefaultLangID
HeapDestroy
GlobalReAlloc
RaiseException
DeleteFileA
MapViewOfFile
MoveFileExA
GetStringTypeW
GetSystemDefaultLCID
LocalFileTimeToFileTime
Beep
VerifyVersionInfoW
VirtualQueryEx
HeapAlloc
GetFullPathNameA
WriteConsoleOutputW
lstrlenA
GetProcAddress
SearchPathW
EnumResourceNamesA
WriteProcessMemory
DeleteCriticalSection
SizeofResource
CreateMutexA
GetSystemTimeAdjustment
GetFileAttributesExW
DeleteVolumeMountPointW
FindFirstFileExW
WriteFile
FormatMessageA
SetCommState
GetEnvironmentStrings
GetTempPathA
SetProcessShutdownParameters
GetProfileIntA
Heap32First
SystemTimeToTzSpecificLocalTime
VirtualLock
ReadConsoleInputA
LoadLibraryW
FindAtomW
GlobalGetAtomNameW
EnumLanguageGroupLocalesW
WritePrivateProfileStructW
WriteProfileStringW
LoadResource
DisconnectNamedPipe
EnumResourceLanguagesA
GetComputerNameA
GlobalFlags
lstrcmpiW
QueueUserWorkItem
EnumSystemLanguageGroupsW
GetPrivateProfileStringA
GetConsoleOutputCP
VirtualFreeEx
CreateEventW
Heap32ListNext
GetVolumePathNameA
SetNamedPipeHandleState
BackupRead
FindNextFileW
ClearCommBreak
DeleteFiber
lstrcmpiA
WaitForMultipleObjects
EnumResourceNamesW
GetProfileStringA
VirtualQuery
GetCurrentThreadId
FatalAppExitA
InitializeCriticalSectionAndSpinCount
CreateDirectoryExA
SetupComm
GetProfileIntW
ResumeThread
InterlockedDecrement
WriteProfileStringA
CreateWaitableTimerA
GetCurrentDirectoryW
WaitForMultipleObjectsEx
GlobalFindAtomW
TryEnterCriticalSection
DeviceIoControl
lstrcmpW
GetCommConfig
DeleteAtom
WideCharToMultiByte
GetLogicalDriveStringsA
RemoveDirectoryA
GetComputerNameExW
GetSystemInfo
GlobalGetAtomNameA
InterlockedIncrement
GetFullPathNameW
RemoveDirectoryW
WinExec
UnlockFile
GetTickCount
EndUpdateResourceW
GlobalLock
SetThreadPriority
GetBinaryTypeA
PostQueuedCompletionStatus
DisableThreadLibraryCalls
GetCurrentThread
CreateThread
FlushConsoleInputBuffer
Thread32First
DebugActiveProcess
GetThreadContext
GetPrivateProfileIntW
EnumCalendarInfoW
GetDriveTypeA
CreateProcessA
_lread
CopyFileA
SetConsoleCtrlHandler
VirtualAllocEx
_lwrite
lstrcpynW
InterlockedCompareExchange
GetModuleHandleA
ReadDirectoryChangesW
GetTimeFormatA
IsBadWritePtr
GetStringTypeA
GlobalFindAtomA
GetCommTimeouts
GetNumberFormatA
QueryPerformanceCounter
WaitNamedPipeW
LocalSize
OpenSemaphoreW
WaitForDebugEvent
GetCurrentProcessId
OpenProcess
EnumCalendarInfoA
IsValidCodePage
GetLogicalDriveStringsW
SetFileTime
GetUserDefaultUILanguage
CloseHandle
FlushFileBuffers
DefineDosDeviceA
GetACP
_lcreat
SetHandleCount
SetCommConfig
ConvertThreadToFiber
CreateFileW
LCMapStringA
SetVolumeMountPointA
EnumResourceLanguagesW
GetDriveTypeW
GetPrivateProfileSectionNamesA
GetWindowsDirectoryA
DebugBreak
FindFirstFileW
lstrlenW
CreateToolhelp32Snapshot
FreeConsole
CreateMutexW
AreFileApisANSI
GetLocalTime
SwitchToFiber
GetVolumePathNameW
GlobalMemoryStatusEx
FindNextFileA
ExpandEnvironmentStringsW
WriteFileEx
FindNextVolumeW
FlushViewOfFile
ResetEvent
WaitForSingleObjectEx
OpenFile
SetFilePointer
WaitNamedPipeA
HeapValidate
EnumSystemLocalesA
FindFirstChangeNotificationA
LocalHandle
WritePrivateProfileStructA
VirtualProtectEx
QueryDosDeviceW
LoadLibraryExW
_lopen
GetCPInfo
GetCurrentProcess
ReleaseMutex
GetConsoleScreenBufferInfo
TlsFree
CompareStringA
GetProcessTimes
GetTimeFormatW
SetStdHandle
GetFileAttributesExA
UpdateResourceA
GetCompressedFileSizeW
SetCommMask
WritePrivateProfileStringA
SetProcessPriorityBoost
PurgeComm
HeapCreate
GetDiskFreeSpaceA
QueueUserAPC
FlushInstructionCache
BeginUpdateResourceA
DosDateTimeToFileTime
GetStartupInfoA
lstrcpyW
GetPrivateProfileStringW
VirtualProtect
GetHandleInformation
SetTimeZoneInformation
ExitProcess
GetQueuedCompletionStatus
OpenSemaphoreA
CreateFiber
SleepEx
GetFileInformationByHandle
CopyFileExA
WaitCommEvent
BuildCommDCBA
AllocConsole
_hread
ConnectNamedPipe
GetSystemDirectoryA
GetVolumeInformationW
OpenEventW
GetFileAttributesA
GetModuleHandleW
VirtualAlloc
OpenMutexW
GlobalDeleteAtom
BeginUpdateResourceW
SetEnvironmentVariableW
SetFileAttributesA
CreateFileMappingA
lstrcatW
CreateMailslotA
SetSystemTime
Module32NextW
DeleteVolumeMountPointA
SetThreadContext
GetLongPathNameA
WritePrivateProfileStringW
GetVersion
GetLastError
GetVolumeInformationA
GetCommState
TlsGetValue
CreateSemaphoreA
ReadProcessMemory
GetFileType
TerminateProcess
SetCommTimeouts
UnlockFileEx
GetConsoleCP
HeapSize
GetNumberFormatW
InitializeCriticalSection
FreeResource
TlsAlloc
GetThreadTimes
CreateWaitableTimerW
GlobalHandle
WritePrivateProfileSectionA
EscapeCommFunction
GetCommProperties
SetEvent
MulDiv
InterlockedExchange
GetTapeParameters
GetProcessAffinityMask
GetSystemPowerStatus
GetFileAttributesW
GetCurrentDirectoryA
ClearCommError
CommConfigDialogW
OpenEventA
_lclose
GetStringTypeExW
GetDiskFreeSpaceExW
FindResourceA
Thread32Next
ConvertDefaultLocale
GetOverlappedResult
SetConsoleCursorPosition
SwitchToThread
GetDateFormatW
Toolhelp32ReadProcessMemory
GetProcessWorkingSetSize
OpenFileMappingA
GetShortPathNameA
GetMailslotInfo
TlsSetValue
Heap32Next
WriteConsoleA
BackupSeek
GetShortPathNameW
_hwrite
WriteConsoleW
WritePrivateProfileSectionW
GetSystemDefaultLangID
Process32FirstW
MoveFileA
GetSystemDirectoryW
GetVersionExA
SetEnvironmentVariableA
ProcessIdToSessionId
SetLastError
GlobalUnlock
GetEnvironmentVariableW
SetWaitableTimer
LeaveCriticalSection
VerSetConditionMask
GetCommModemStatus
SearchPathA
CompareStringW
IsBadStringPtrA
Module32FirstW
VirtualFree
MultiByteToWideChar
SetErrorMode
GetSystemTime
GetCommandLineW
LCMapStringW
TransmitCommChar
DuplicateHandle
ExitThread
SetMailslotInfo
IsBadCodePtr
SetThreadLocale
SetThreadAffinityMask
SetProcessWorkingSetSize
ContinueDebugEvent
FindNextChangeNotification
GetFileSizeEx
UpdateResourceW
VirtualUnlock
GetThreadPriority
SetThreadExecutionState
FindClose
GetLocaleInfoA
GetVolumeNameForVolumeMountPointA
SetTapePosition
LocalReAlloc
LockFileEx
OpenFileMappingW
GlobalMemoryStatus
FreeEnvironmentStringsA
SetFileAttributesW
UnmapViewOfFile
MapViewOfFileEx
OpenMutexA
GetAtomNameA
GetTempPathW
VerifyVersionInfoA
GetCPInfoExA
EnumUILanguagesW
CreateProcessW
_llseek
PulseEvent
FileTimeToSystemTime
GetProcessVersion
SetComputerNameW
GetWindowsDirectoryW
GlobalAddAtomW
ReleaseSemaphore
FileTimeToDosDateTime
FindFirstVolumeW
Sleep
GlobalAddAtomA
TerminateThread
VerLanguageNameA
CompareFileTime
EnumCalendarInfoExW
GetEnvironmentVariableA
LocalCompact
SuspendThread
SetConsoleTitleW
LockResource
SetCurrentDirectoryW
FormatMessageW
GetThreadLocale
Module32First
InterlockedExchangeAdd
CreatePipe
SetLocalTime
CreateDirectoryA
CreateFileA
GetDiskFreeSpaceW
IsBadReadPtr
MoveFileW
CopyFileW
LocalFree
FindCloseChangeNotification
FindResourceExA
DeleteFileW
GetStringTypeExA
PeekNamedPipe
GetUserDefaultLCID
GetCommMask
RtlFillMemory
OutputDebugStringW
GetFileTime
GetTempFileNameA
BackupWrite
SetVolumeLabelW
GetDateFormatA
SetProcessAffinityMask
SystemTimeToFileTime
GetPrivateProfileIntA
GetFileSize
SetFilePointerEx
FileTimeToLocalFileTime
CancelIo
MoveFileExW
GetExitCodeThread
GlobalFree
LocalLock
FindVolumeClose
SetCommBreak
GetSystemTimeAsFileTime
GetEnvironmentStringsW
SetUnhandledExceptionFilter
CreateNamedPipeA
FindResourceW
GetDiskFreeSpaceExA
GetModuleFileNameW
SetVolumeLabelA
GetVolumeNameForVolumeMountPointW
GetStdHandle
SetEndOfFile
CreateEventA
AddAtomW
EnumResourceTypesA
GetComputerNameExA
ReadFile
GetPrivateProfileSectionA
GetProcessHeaps
LoadLibraryExA
GetPriorityClass
GetCommandLineA
GetProfileStringW
EndUpdateResourceA
LockFile
lstrcpyA
GetTimeZoneInformation
GetLogicalDrives
Process32NextW
IsProcessorFeaturePresent
IsDBCSLeadByte
lstrcmpA
RtlUnwind
GetLongPathNameW
QueryPerformanceFrequency
FindFirstChangeNotificationW
LocalAlloc
OutputDebugStringA
GlobalAlloc
GetTempFileNameW
GetConsoleMode
Module32Next
UnhandledExceptionFilter
SetHandleInformation
WaitForSingleObject
Process32Next
FindFirstFileA
SetCurrentDirectoryA
GetCurrencyFormatA
CopyFileExW
CreateSemaphoreW
GetModuleFileNameA
lstrcatA
EnterCriticalSection
CreateDirectoryW
CreateNamedPipeW
GetPrivateProfileStructA
GetProfileSectionA
SetPriorityClass
GetLocaleInfoW
HeapCompact
CreateIoCompletionPort
GetSystemWindowsDirectoryA
Process32First
FreeLibrary
HeapFree
IsValidLocale
oleaut32
LoadTypeLi
shell32
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetFileInfoW
ExtractIconExW
SHChangeNotify
SHAddToRecentDocs
SHBindToParent
DragFinish
DragQueryFileA
SHCreateDirectoryExW
SHGetPathFromIDListW
DragAcceptFiles
SHEmptyRecycleBinA
SHFreeNameMappings
CommandLineToArgvW
ShellExecuteA
SHGetSpecialFolderPathA
DragQueryFileW
ExtractIconA
DoEnvironmentSubstW
ExtractIconW
SHGetSpecialFolderPathW
ExtractIconExA
SHFileOperationW
SHGetMalloc
ord155
SHGetFileInfoA
SHGetFolderPathA
SHGetInstanceExplorer
SHGetPathFromIDListA
Shell_NotifyIconA
DragQueryPoint
FindExecutableA
SHCreateDirectoryExA
DuplicateIcon
ShellExecuteExW
ShellExecuteW
SHGetFolderLocation
FindExecutableW
SHAppBarMessage
SHGetFolderPathW
SHBrowseForFolderW
Shell_NotifyIconW
SHGetDataFromIDListW
SHBrowseForFolderA
SHFileOperationA
ShellExecuteExA
SHGetDataFromIDListA
comctl32
ImageList_Duplicate
PropertySheetA
ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_BeginDrag
ImageList_DragShowNolock
ImageList_SetImageCount
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_EndDrag
ord17
ImageList_Destroy
CreateUpDownControl
ImageList_Create
ImageList_GetIcon
ImageList_SetIconSize
ImageList_Replace
ImageList_DrawIndirect
FlatSB_EnableScrollBar
InitializeFlatSB
ImageList_Remove
ImageList_SetBkColor
ImageList_Copy
ImageList_DragMove
ImageList_DrawEx
ImageList_SetOverlayImage
ImageList_GetBkColor
ImageList_GetDragImage
CreateStatusWindowW
ImageList_LoadImageW
DrawStatusTextW
CreatePropertySheetPageA
CreatePropertySheetPageW
ImageList_DragEnter
ImageList_Read
PropertySheetW
ImageList_DragLeave
CreateToolbarEx
ImageList_Merge
ImageList_GetIconSize
MakeDragList
FlatSB_ShowScrollBar
ImageList_Add
ImageList_LoadImage
ImageList_AddIcon
DestroyPropertySheetPage
ImageList_Write
InitCommonControlsEx
ImageList_LoadImageA
ImageList_SetFlags
ImageList_Draw
ImageList_GetImageCount
ImageList_SetDragCursorImage
version
VerQueryValueW
VerInstallFileA
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeW
VerLanguageNameA
GetFileVersionInfoW
GetFileVersionInfoSizeA
advapi32
SetEntriesInAclA
SetServiceStatus
RegCreateKeyW
GetSecurityInfo
CloseServiceHandle
OpenServiceW
GetNamedSecurityInfoW
DeleteService
LockServiceDatabase
GetSecurityDescriptorGroup
RegGetKeySecurity
DuplicateTokenEx
GetNamedSecurityInfoA
LsaClose
SetSecurityDescriptorOwner
QueryServiceStatusEx
RegDeleteKeyW
LsaLookupSids
SetSecurityDescriptorControl
CryptSetProvParam
RegUnLoadKeyW
RegOpenKeyExA
CryptCreateHash
RegisterServiceCtrlHandlerExA
RegConnectRegistryW
GetUserNameW
RegSaveKeyW
RegNotifyChangeKeyValue
RegLoadKeyW
ImpersonateNamedPipeClient
SetFileSecurityA
LookupPrivilegeValueA
GetAce
CryptEncrypt
EnumDependentServicesW
CryptEnumProvidersW
CreateServiceA
ConvertSecurityDescriptorToStringSecurityDescriptorW
RegQueryValueA
CryptGetKeyParam
CryptGenKey
IsValidSecurityDescriptor
GetSidSubAuthorityCount
SetServiceObjectSecurity
ChangeServiceConfigA
CryptDeriveKey
InitializeSecurityDescriptor
ConvertSidToStringSidW
LsaNtStatusToWinError
RegEnumValueA
LookupPrivilegeDisplayNameA
LsaQueryInformationPolicy
LsaLookupNames
MakeSelfRelativeSD
GetEffectiveRightsFromAclA
RegCreateKeyExA
LsaRemoveAccountRights
InitializeSid
LsaOpenPolicy
CryptGetUserKey
ConvertStringSidToSidW
UnlockServiceDatabase
LookupAccountNameW
GetSidIdentifierAuthority
EqualPrefixSid
GetFileSecurityW
ChangeServiceConfigW
LookupPrivilegeNameA
GetExplicitEntriesFromAclW
CryptAcquireContextW
ImpersonateSelf
RegDisablePredefinedCache
RegEnumKeyA
GetKernelObjectSecurity
RegEnumKeyW
CopySid
RegUnLoadKeyA
CryptImportKey
QueryServiceConfigW
ReadEncryptedFileRaw
RevertToSelf
RegSetValueW
WriteEncryptedFileRaw
CryptGetHashParam
RegisterServiceCtrlHandlerW
StartServiceW
RegOpenKeyW
RegQueryValueExA
StartServiceCtrlDispatcherW
ChangeServiceConfig2W
ConvertStringSidToSidA
LsaFreeMemory
GetSecurityDescriptorLength
RegisterServiceCtrlHandlerA
OpenSCManagerA
QueryServiceLockStatusW
CryptVerifySignatureA
RegRestoreKeyA
CreateServiceW
CheckTokenMembership
FreeSid
StartServiceA
RegQueryValueW
RegisterEventSourceA
RegCreateKeyA
CreateProcessAsUserW
CryptDestroyKey
LogonUserW
AdjustTokenPrivileges
CryptAcquireContextA
GetSecurityDescriptorDacl
StartServiceCtrlDispatcherA
RegRestoreKeyW
RegOpenCurrentUser
DuplicateToken
SetNamedSecurityInfoA
InitiateSystemShutdownExW
AddAce
RegOpenKeyA
SetSecurityDescriptorDacl
CreateProcessAsUserA
OpenEncryptedFileRawW
EnumServicesStatusA
GetSidLengthRequired
IsValidSid
AllocateAndInitializeSid
BuildExplicitAccessWithNameW
RegDeleteValueA
SetNamedSecurityInfoW
RegDeleteValueW
CryptHashData
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegEnumKeyExW
GetSecurityDescriptorOwner
RegEnumKeyExA
CloseEncryptedFileRaw
GetSecurityDescriptorSacl
MapGenericMask
BuildTrusteeWithSidW
InitiateSystemShutdownA
SetThreadToken
SetSecurityDescriptorSacl
LogonUserA
GetSidSubAuthority
RegEnumValueW
SetTokenInformation
DeleteAce
IsValidAcl
GetLengthSid
RegSaveKeyA
RegQueryValueExW
AddAccessAllowedAce
LsaAddAccountRights
RegSetKeySecurity
LookupAccountNameA
RegConnectRegistryA
RegFlushKey
CryptDecrypt
OpenSCManagerW
GetAclInformation
OpenThreadToken
RegSetValueExW
LookupAccountSidA
SetEntriesInAclW
QueryServiceConfigA
CreateWellKnownSid
InitializeAcl
RegLoadKeyA
ReportEventA
GetSecurityDescriptorControl
CryptDestroyHash
RegCreateKeyExW
CryptReleaseContext
GetTokenInformation
ImpersonateLoggedOnUser
EqualSid
RegQueryInfoKeyA
GetFileSecurityA
BuildTrusteeWithNameW
RegCloseKey
SetSecurityDescriptorGroup
ChangeServiceConfig2A
LookupAccountSidW
OpenProcessToken
CryptGenRandom
SetFileSecurityW
RegisterEventSourceW
RegDeleteKeyA
GetUserNameA
RegOpenKeyExW
DeregisterEventSource
AccessCheck
QueryServiceStatus
LookupPrivilegeValueW
ControlService
SetSecurityInfo
RegSetValueA
ReportEventW
OpenServiceA
MakeAbsoluteSD
RegSetValueExA
EncryptFileW
CryptExportKey
RegQueryInfoKeyW
user32
ActivateKeyboardLayout
GetUserObjectInformationW
GetClipboardData
CopyImage
FindWindowExA
LoadMenuIndirectA
SendMessageTimeoutW
GetClassInfoExW
GetScrollInfo
MessageBoxA
IsChild
EnableScrollBar
DlgDirListA
CreateWindowExA
FindWindowExW
ChangeDisplaySettingsW
IsDialogMessage
DlgDirListComboBoxA
GetDC
SetCursor
ModifyMenuA
GetSubMenu
EndDialog
GetAncestor
OpenInputDesktop
GetWindowTextW
SetMessageExtraInfo
IsMenu
TabbedTextOutW
UnregisterHotKey
GetClassNameW
InvalidateRect
CreateCaret
CharToOemA
DefWindowProcW
HideCaret
SystemParametersInfoA
MapWindowPoints
InsertMenuA
MoveWindow
PostThreadMessageA
RegisterClassA
LoadMenuA
ChildWindowFromPointEx
WaitMessage
GetCapture
DefDlgProcA
GetUpdateRgn
DrawIcon
SendMessageA
wvsprintfA
GetCursor
DrawStateA
ShowScrollBar
SetCapture
TranslateMDISysAccel
WinHelpW
GetDlgItem
AdjustWindowRectEx
CreateAcceleratorTableA
TrackPopupMenu
RemovePropA
ChildWindowFromPoint
DdeUninitialize
CallNextHookEx
GetClassLongA
FlashWindowEx
GetUserObjectInformationA
PostMessageA
GetWindowDC
GetPropW
GetKeyNameTextA
CopyAcceleratorTableA
GetKeyNameTextW
DdeInitializeA
EnumDisplaySettingsA
GetWindowTextLengthW
MapVirtualKeyExW
IsRectEmpty
IsWindowVisible
SendNotifyMessageA
PeekMessageA
OemToCharA
IsWindowEnabled
OffsetRect
TranslateAcceleratorW
SetDoubleClickTime
ReplyMessage
TrackPopupMenuEx
GetGUIThreadInfo
GetWindowLongW
MsgWaitForMultipleObjectsEx
GetMenu
SetForegroundWindow
SetPropW
ArrangeIconicWindows
GetClipCursor
LoadStringA
SetWindowsHookExA
UnpackDDElParam
SendNotifyMessageW
GetDesktopWindow
ReleaseCapture
GetSysColor
ExcludeUpdateRgn
SetProcessWindowStation
LockWindowUpdate
GetTopWindow
CharNextW
SendMessageW
IsCharUpperA
GetWindowInfo
DeleteMenu
SetDlgItemInt
TranslateMessage
SetScrollRange
OemToCharBuffA
CharUpperA
MenuItemFromPoint
DefMDIChildProcA
SetScrollInfo
MapDialogRect
SetWindowsHookExW
TrackMouseEvent
LoadKeyboardLayoutA
GetFocus
AppendMenuW
DestroyIcon
SetCursorPos
EndPaint
RegisterClipboardFormatW
SetMenuItemBitmaps
DefFrameProcW
PostMessageW
OpenClipboard
CharNextExA
DrawAnimatedRects
SetFocus
GetProcessWindowStation
GetMessageA
mouse_event
IsCharLowerW
SendDlgItemMessageA
GetMessagePos
MessageBeep
IsDlgButtonChecked
SetRectEmpty
GetMenuStringW
EnumDisplayMonitors
GetClassInfoA
IsWindow
CloseClipboard
GetClassInfoW
GetDlgItemTextW
GetLastInputInfo
DragDetect
CreateMDIWindowA
SendDlgItemMessageW
DrawTextExA
EnableWindow
GetScrollBarInfo
TileChildWindows
GetCaretBlinkTime
ModifyMenuW
CharUpperBuffW
DialogBoxParamW
CascadeWindows
CheckRadioButton
DdeGetData
GetDCEx
UnhookWinEvent
SwapMouseButton
CountClipboardFormats
LoadStringW
GetMenuItemCount
FillRect
UnregisterClassA
CloseWindow
ToAscii
InvertRect
UnionRect
GetUpdateRect
DdeFreeDataHandle
MonitorFromPoint
DefMDIChildProcW
DrawFocusRect
GetClassNameA
GetScrollPos
InsertMenuItemW
CharLowerBuffW
GetMessageTime
GetClipboardFormatNameA
ReuseDDElParam
FindWindowW
DlgDirSelectComboBoxExA
FlashWindow
SetDlgItemTextW
TabbedTextOutA
RegisterDeviceNotificationW
IsCharAlphaNumericA
LoadCursorA
DrawMenuBar
IsDialogMessageA
WindowFromPoint
GetMonitorInfoA
ScrollWindow
DeferWindowPos
DrawStateW
OpenWindowStationW
CharLowerBuffA
ToUnicodeEx
EmptyClipboard
DdeAccessData
EnumClipboardFormats
PostQuitMessage
GetMessageW
SwitchDesktop
CharUpperW
CloseDesktop
GetWindowModuleFileNameW
SetScrollPos
ScreenToClient
MonitorFromWindow
InvalidateRgn
GetKeyboardLayout
EnableMenuItem
GetLastActivePopup
SetUserObjectSecurity
MapVirtualKeyExA
GetWindow
GetKeyboardLayoutList
GetWindowContextHelpId
LoadMenuIndirectW
ToAsciiEx
CreateDesktopW
WaitForInputIdle
MapVirtualKeyW
CreateDialogParamA
SetActiveWindow
DdeQueryStringA
IsCharAlphaNumericW
GetClassWord
MsgWaitForMultipleObjects
SetClipboardData
IsDialogMessageW
WinHelpA
GetSystemMenu
SetMenuItemInfoW
GetIconInfo
CallMsgFilterA
DialogBoxParamA
DdePostAdvise
InsertMenuW
PeekMessageW
SetMenuInfo
CreateCursor
UnhookWindowsHookEx
GetMenuState
GetClientRect
SubtractRect
SetWindowTextW
RegisterClassExA
LoadImageW
AnimateWindow
IsCharAlphaA
GetMenuBarInfo
SetKeyboardState
GetThreadDesktop
GetClassLongW
DialogBoxIndirectParamA
GetMonitorInfoW
GetNextDlgTabItem
GetMenuContextHelpId
ShowOwnedPopups
GetInputState
DefFrameProcA
DestroyCursor
GetDlgCtrlID
GetNextDlgGroupItem
PackDDElParam
CharNextA
DestroyCaret
SetMenuContextHelpId
LoadImageA
SendInput
GetWindowLongA
GetKeyboardLayoutNameA
InsertMenuItemA
GetMenuCheckMarkDimensions
GetTabbedTextExtentA
ValidateRect
GetMenuInfo
DdeDisconnect
GetMenuItemRect
ClientToScreen
GetClipboardOwner
BroadcastSystemMessage
GetClipboardFormatNameW
OpenWindowStationA
GetClassInfoExA
SetRect
SetMenuItemInfoA
SetWindowPlacement
LoadIconW
CharUpperBuffA
FrameRect
GetMenuStringA
CreateMDIWindowW
MessageBoxExA
IsIconic
DdeConnect
VkKeyScanW
CreateIcon
NotifyWinEvent
MessageBoxW
CheckMenuItem
CreateIconIndirect
PtInRect
DdeUnaccessData
DispatchMessageA
GetKeyState
GrayStringW
AdjustWindowRect
GetWindowRgn
CharToOemBuffA
UnregisterClassW
SetMenu
AppendMenuA
GetClipboardViewer
DdeQueryStringW
DdeInitializeW
SetClipboardViewer
UnregisterDeviceNotification
GetMenuDefaultItem
CreateDialogIndirectParamW
GetAsyncKeyState
SetMenuDefaultItem
EndDeferWindowPos
MessageBoxIndirectA
InSendMessage
GetWindowThreadProcessId
wsprintfA
SystemParametersInfoW
ShowWindowAsync
BringWindowToTop
DdeCreateDataHandle
ChangeClipboardChain
DrawEdge
CreateIconFromResourceEx
SetWindowLongA
LoadBitmapA
MapVirtualKeyA
RedrawWindow
CheckDlgButton
DefWindowProcA
ShowCursor
GetCursorInfo
LoadAcceleratorsA
InflateRect
LoadCursorFromFileA
EnumDisplaySettingsW
ShowWindow
GetMenuItemID
GetWindowPlacement
ValidateRgn
DestroyWindow
DialogBoxIndirectParamW
CopyRect
HiliteMenuItem
ExitWindowsEx
GetWindowTextA
LoadBitmapW
CreateDialogIndirectParamA
GetPropA
keybd_event
TranslateAcceleratorA
IsWindowUnicode
VkKeyScanExA
GetComboBoxInfo
EnumThreadWindows
FreeDDElParam
EnumChildWindows
CloseWindowStation
ChangeDisplaySettingsA
DlgDirSelectExA
OpenDesktopW
ToUnicode
GetDlgItemInt
BeginDeferWindowPos
BeginPaint
ClipCursor
RemovePropW
RegisterClassW
DestroyMenu
GetSysColorBrush
SetWindowTextA
SetLayeredWindowAttributes
GetScrollRange
ScrollDC
EqualRect
RemoveMenu
SetCaretBlinkTime
GetDoubleClickTime
GetMessageExtraInfo
CopyAcceleratorTableW
IntersectRect
RegisterClipboardFormatA
CreateMenu
TileWindows
CharLowerA
GetDialogBaseUnits
MonitorFromRect
CallWindowProcA
RegisterClassExW
GetWindowRect
GetTitleBarInfo
SetWindowLongW
DdeGetLastError
CreateIconFromResource
SetWindowRgn
IsClipboardFormatAvailable
wvsprintfW
GetSystemMetrics
RegisterHotKey
LoadAcceleratorsW
GetActiveWindow
EnumDesktopWindows
SetWindowPos
FindWindowA
GrayStringA
SetPropA
GetWindowTextLengthA
DrawFrameControl
EnumWindows
SetThreadDesktop
CreateWindowExW
GetOpenClipboardWindow
SetWindowContextHelpId
GetWindowWord
KillTimer
GetCaretPos
DdeCreateStringHandleA
SendMessageTimeoutA
DestroyAcceleratorTable
IsZoomed
CallWindowProcW
LookupIconIdFromDirectoryEx
wsprintfW
LoadIconA
PostThreadMessageW
DrawCaption
SetCaretPos
ShowCaret
GetUserObjectSecurity
DrawTextA
ReleaseDC
OpenIcon
SetClassLongW
DdeClientTransaction
AttachThreadInput
GetMenuItemInfoW
UpdateWindow
LoadCursorFromFileW
SetTimer
DrawTextW
GetQueueStatus
CreateAcceleratorTableW
DdeCreateStringHandleW
LoadMenuW
GetKeyboardState
DrawTextExW
DdeFreeStringHandle
RegisterWindowMessageA
SetDlgItemTextA
DispatchMessageW
SetParent
IsCharLowerA
LookupIconIdFromDirectory
VkKeyScanA
GetForegroundWindow
DdeNameService
GetDlgItemTextA
SetClassLongA
AllowSetForegroundWindow
CharLowerW
LoadCursorW
GetMenuItemInfoA
GetParent
CreatePopupMenu
RegisterWindowMessageW
CharPrevA
LockSetForegroundWindow
CreateDialogParamW
OpenDesktopA
GetCursorPos
CopyIcon
ScrollWindowEx
CheckMenuRadioItem
RealChildWindowFromPoint
DrawIconEx
Sections
.text Size: 84KB - Virtual size: 82KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 112KB - Virtual size: 110KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 113KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 40KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ