Static task
static1
Behavioral task
behavioral1
Sample
78fb2fee11341cf5da6af6f8040a471cb392b2389af8a0fe574fd500262df603.exe
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral2
Sample
78fb2fee11341cf5da6af6f8040a471cb392b2389af8a0fe574fd500262df603.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
78fb2fee11341cf5da6af6f8040a471cb392b2389af8a0fe574fd500262df603
-
Size
321KB
-
MD5
0d12761f08b2bb9c67eec996754eac30
-
SHA1
9a0772e9a957e869a3f7937c47968abcf28a189d
-
SHA256
78fb2fee11341cf5da6af6f8040a471cb392b2389af8a0fe574fd500262df603
-
SHA512
b402c7f0d458d91c140eaf2b2aa8618ba50bb216e04667e0c41b956381b95fd060899827ba119207d9372b70b68576680e089f9f9244c73365f9c1df6cdbe667
-
SSDEEP
6144:c3wgN3wH9YRH1tbf161LqtuuCxGFtYYm99RyXBqOHW:c3NGYRHNGLkuuycpazx0
Malware Config
Signatures
Files
-
78fb2fee11341cf5da6af6f8040a471cb392b2389af8a0fe574fd500262df603.exe windows x86
421f847f3bf8a36af4fc40610556ff17
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
oleaut32
LoadTypeLi
shlwapi
PathCompactPathA
PathFindExtensionA
SHSetValueW
PathIsRootA
StrCpyW
PathFindExtensionW
PathRemoveExtensionW
PathRemoveExtensionA
StrToIntW
StrRetToStrW
PathStripPathA
PathFindFileNameW
PathRemoveBackslashW
PathQuoteSpacesA
SHDeleteEmptyKeyA
PathIsFileSpecW
PathIsUNCServerA
PathGetDriveNumberA
AssocQueryStringW
PathIsURLW
PathRemoveBlanksW
StrToIntExW
PathIsDirectoryW
StrFromTimeIntervalA
PathAddBackslashA
SHDeleteKeyW
PathRenameExtensionA
StrRetToBufW
PathRemoveFileSpecW
PathCombineA
SHCreateStreamOnFileA
SHAutoComplete
PathIsUNCW
StrStrIW
PathRelativePathToA
PathIsURLA
StrCmpIW
PathSetDlgItemPathW
PathIsRootW
PathRemoveArgsA
PathAppendA
PathRemoveFileSpecA
PathMakePrettyW
StrCmpW
PathFindFileNameA
StrStrW
SHDeleteValueA
PathSkipRootA
PathFileExistsA
PathRelativePathToW
PathAddBackslashW
PathMakePrettyA
PathIsRelativeW
StrToInt64ExW
UrlCombineW
StrCmpNIW
PathCanonicalizeW
PathCompactPathW
PathCanonicalizeA
PathFileExistsW
SHCreateStreamOnFileW
UrlUnescapeW
PathMakeSystemFolderW
StrStrIA
PathMatchSpecW
PathIsNetworkPathW
PathAppendW
SHCopyKeyA
StrFormatKBSizeW
UrlUnescapeA
UrlCreateFromPathW
PathStripToRootW
PathGetCharTypeW
PathRenameExtensionW
SHDeleteValueW
StrCatW
UrlCanonicalizeW
PathParseIconLocationA
PathRemoveBackslashA
PathIsDirectoryEmptyW
PathBuildRootA
PathStripToRootA
StrDupW
StrTrimW
PathCreateFromUrlW
PathIsRelativeA
PathCombineW
StrToIntA
StrFormatByteSizeW
SHDeleteKeyA
PathUnquoteSpacesA
StrTrimA
PathCommonPrefixW
PathIsUNCServerShareA
PathStripPathW
PathIsDirectoryA
StrStrA
UrlIsW
PathIsUNCA
mfc42
ord1576
user32
CreateIconFromResourceEx
LoadCursorFromFileA
GetCursor
GetPropW
IsDialogMessageA
CreateMenu
DrawStateA
LoadIconW
CreateIconFromResource
SendInput
GetWindowRgn
DrawMenuBar
GetWindowPlacement
GetOpenClipboardWindow
ToUnicode
ValidateRect
SetMenuDefaultItem
RegisterClipboardFormatW
CreateDialogIndirectParamA
GetTopWindow
DdeDisconnect
SendDlgItemMessageA
SetActiveWindow
InvalidateRect
SetCursor
OffsetRect
GetDlgItemTextW
ShowOwnedPopups
LoadBitmapW
GetCursorPos
GetClipboardFormatNameA
wvsprintfA
TranslateMDISysAccel
CharNextA
SetProcessWindowStation
ModifyMenuW
EqualRect
MonitorFromPoint
GetMessagePos
DrawTextExA
DdeUninitialize
ClientToScreen
OpenWindowStationW
CharUpperA
GetProcessWindowStation
BringWindowToTop
GetTabbedTextExtentA
GetDCEx
DdeAccessData
SetScrollPos
GetComboBoxInfo
GetClipboardViewer
GetAncestor
PostThreadMessageW
DdeFreeStringHandle
OemToCharBuffA
DrawFrameControl
ScrollWindow
ModifyMenuA
SetCursorPos
GetDlgItem
GetDesktopWindow
DefFrameProcW
CreateMDIWindowA
OemToCharA
MsgWaitForMultipleObjects
TrackMouseEvent
DialogBoxParamW
MessageBoxW
SetDoubleClickTime
AppendMenuW
EnableMenuItem
mouse_event
CallWindowProcW
TrackPopupMenuEx
SetWindowContextHelpId
LoadImageA
GetWindowTextLengthA
ActivateKeyboardLayout
InsertMenuW
GetSysColorBrush
LookupIconIdFromDirectory
LoadBitmapA
ToUnicodeEx
IsDialogMessage
NotifyWinEvent
CheckRadioButton
FindWindowA
GetIconInfo
LoadAcceleratorsW
CreateAcceleratorTableW
DeleteMenu
AppendMenuA
GetKeyboardLayoutNameA
EnumClipboardFormats
PtInRect
GrayStringW
MonitorFromRect
OpenDesktopW
SetWindowLongA
DdeQueryStringW
IsRectEmpty
EnumChildWindows
DestroyCaret
BeginDeferWindowPos
GetCaretBlinkTime
SetWindowPos
TranslateAcceleratorW
LockWindowUpdate
LoadCursorFromFileW
HideCaret
SetMenuItemBitmaps
VkKeyScanExA
AdjustWindowRect
GetMenuItemID
FindWindowExA
GetMenuItemInfoW
LoadMenuW
IsCharAlphaNumericA
GetWindowTextA
TileChildWindows
GetUserObjectInformationA
GetMenuStringW
IsZoomed
SetClassLongA
ReleaseDC
EnumDisplaySettingsW
DialogBoxIndirectParamA
InsertMenuItemA
TabbedTextOutW
EmptyClipboard
CharLowerBuffW
UnregisterClassA
IsCharLowerA
GetWindowLongA
SetPropW
GetKeyNameTextW
InflateRect
IsChild
EndPaint
RegisterClassExA
GetWindowDC
GetInputState
TranslateMessage
FlashWindow
CreateDialogParamW
GetParent
GetMenu
GetDlgCtrlID
HiliteMenuItem
DdeInitializeA
wsprintfW
DragDetect
DeferWindowPos
wvsprintfW
CreateMDIWindowW
DdeQueryStringA
LoadKeyboardLayoutA
TileWindows
CreateCaret
IsCharUpperA
RegisterClipboardFormatA
LookupIconIdFromDirectoryEx
InSendMessage
MessageBoxIndirectA
CharNextExA
DefWindowProcA
GrayStringA
LoadMenuIndirectW
GetClassInfoW
UnpackDDElParam
CharPrevA
FreeDDElParam
DdeInitializeW
DlgDirListComboBoxA
GetMenuItemCount
ChildWindowFromPointEx
ValidateRgn
SendMessageW
DdeCreateStringHandleA
DrawEdge
DialogBoxParamA
CheckDlgButton
PeekMessageA
SetMessageExtraInfo
GetLastActivePopup
DlgDirSelectExA
GetWindowContextHelpId
GetUserObjectInformationW
SetUserObjectSecurity
SetMenu
DefMDIChildProcW
EnumDisplaySettingsA
GetWindow
MapVirtualKeyW
GetMessageA
MessageBeep
OpenIcon
ScreenToClient
BroadcastSystemMessage
RegisterWindowMessageA
CallWindowProcA
GetWindowThreadProcessId
CascadeWindows
GetCaretPos
CloseWindowStation
GetNextDlgTabItem
LoadStringW
LoadImageW
GetMenuCheckMarkDimensions
InvalidateRgn
DrawCaption
SetMenuItemInfoA
SetScrollInfo
DrawTextA
MonitorFromWindow
IsClipboardFormatAvailable
SetMenuContextHelpId
ScrollWindowEx
OpenWindowStationA
MoveWindow
ReuseDDElParam
GetSystemMenu
CharToOemBuffA
LoadIconA
SetWindowLongW
OpenClipboard
RealChildWindowFromPoint
GetKeyState
SetKeyboardState
KillTimer
GetClassInfoExW
DdeNameService
CreateDialogParamA
EnableScrollBar
GetMenuContextHelpId
EnumDisplayMonitors
SetWindowTextA
MapDialogRect
GetClipboardOwner
GetWindowRect
SwitchDesktop
SetFocus
GetKeyboardState
IsDlgButtonChecked
MenuItemFromPoint
RegisterClassExW
GetUserObjectSecurity
FillRect
GetClassInfoExA
PostMessageA
GetSysColor
SetMenuItemInfoW
GetSubMenu
IsWindowEnabled
DrawAnimatedRects
CharUpperBuffA
GetQueueStatus
SendNotifyMessageA
CopyAcceleratorTableW
RegisterClassW
IsMenu
GetKeyboardLayoutList
DdeClientTransaction
PostThreadMessageA
WaitForInputIdle
ChangeClipboardChain
SendDlgItemMessageW
SetDlgItemTextA
IntersectRect
SetCaretPos
SendNotifyMessageW
GetMessageW
GetClassLongW
TrackPopupMenu
DrawFocusRect
SetWindowTextW
DlgDirSelectComboBoxExA
CheckMenuItem
GetDialogBaseUnits
GetDC
EnumWindows
PostQuitMessage
DlgDirListA
CallMsgFilterA
PostMessageW
LoadMenuIndirectA
GetMenuInfo
GetForegroundWindow
MessageBoxExA
CountClipboardFormats
EnumDesktopWindows
TabbedTextOutA
UnhookWindowsHookEx
AdjustWindowRectEx
GetMenuDefaultItem
SetWindowsHookExA
RegisterClassA
CallNextHookEx
LoadMenuA
InsertMenuA
UnregisterHotKey
CopyIcon
DdeConnect
DefDlgProcA
GetKeyboardLayout
FindWindowW
GetDlgItemTextA
GetClipCursor
CreateCursor
DispatchMessageW
ChildWindowFromPoint
DdeFreeDataHandle
GetScrollBarInfo
DlgDirListComboBoxW
SetMenuInfo
MapVirtualKeyExA
GetScrollInfo
UpdateWindow
DestroyMenu
WindowFromDC
GetClassInfoA
AnimateWindow
ShowWindow
GetClientRect
GetUpdateRect
CharToOemA
GetWindowWord
GetClassWord
FrameRect
UnregisterDeviceNotification
GetActiveWindow
DrawIcon
SetRect
CreateWindowExW
SendMessageA
SetParent
CharNextW
DefMDIChildProcA
IsWindowUnicode
TranslateAcceleratorA
GetSystemMetrics
GetWindowTextW
GetMenuBarInfo
GetPropA
CreateDialogIndirectParamW
LoadAcceleratorsA
BeginPaint
DestroyAcceleratorTable
ReleaseCapture
RemoveMenu
GetLastInputInfo
SystemParametersInfoA
ShowCursor
GetThreadDesktop
MsgWaitForMultipleObjectsEx
AllowSetForegroundWindow
DispatchMessageA
MapVirtualKeyA
SetClipboardData
DestroyWindow
CreateIconIndirect
GetFocus
IsCharAlphaA
ArrangeIconicWindows
GetNextDlgGroupItem
RegisterDeviceNotificationW
VkKeyScanA
GetMonitorInfoW
DdeGetData
GetClipboardData
SubtractRect
RedrawWindow
CopyAcceleratorTableA
CreateDesktopW
WinHelpA
GetClassLongA
PeekMessageW
SetDlgItemTextW
DdeCreateDataHandle
wsprintfA
SetLayeredWindowAttributes
DrawIconEx
SetClipboardViewer
DdeUnaccessData
GetWindowLongW
ToAscii
FlashWindowEx
UnionRect
DrawStateW
SetWindowsHookExW
CloseWindow
GetClassNameW
RegisterWindowMessageW
CharLowerA
DefFrameProcA
ShowWindowAsync
GetUpdateRgn
CloseClipboard
SetWindowRgn
EnableWindow
EndDialog
ShowCaret
SetCapture
GetMessageExtraInfo
GetMenuItemInfoA
CharUpperW
DdeCreateStringHandleW
MessageBoxA
InsertMenuItemW
RemovePropA
SetTimer
UnhookWinEvent
SetForegroundWindow
IsWindow
GetMenuStringA
ToAsciiEx
ScrollDC
WinHelpW
ChangeDisplaySettingsA
GetKeyNameTextA
DdeGetLastError
ChangeDisplaySettingsW
ExitWindowsEx
CloseDesktop
GetClassNameA
CopyRect
SendMessageTimeoutW
ReplyMessage
EnumThreadWindows
SetPropA
PackDDElParam
GetTitleBarInfo
IsWindowVisible
DdePostAdvise
GetMenuState
OpenDesktopA
LockSetForegroundWindow
UnregisterClassW
SetScrollRange
DestroyIcon
RemovePropW
CharLowerW
OpenInputDesktop
InvertRect
SystemParametersInfoW
SetRectEmpty
GetAsyncKeyState
CharUpperBuffW
SetClassLongW
CreatePopupMenu
MapVirtualKeyExW
ExcludeUpdateRgn
SetDlgItemInt
keybd_event
FindWindowExW
DrawTextExW
ClipCursor
EndDeferWindowPos
GetWindowInfo
GetMonitorInfoA
SendMessageTimeoutA
SetCaretBlinkTime
VkKeyScanW
GetWindowTextLengthW
GetMessageTime
CreateWindowExA
RegisterHotKey
LoadStringA
GetGUIThreadInfo
LoadCursorW
GetScrollPos
GetDlgItemInt
GetDoubleClickTime
GetCapture
GetScrollRange
MapWindowPoints
IsCharLowerW
WaitMessage
CreateAcceleratorTableA
AttachThreadInput
DialogBoxIndirectParamW
ShowScrollBar
SetWindowPlacement
IsDialogMessageW
WindowFromPoint
GetClipboardFormatNameW
IsCharAlphaNumericW
SetThreadDesktop
GetCursorInfo
SwapMouseButton
DefWindowProcW
CreateIcon
IsIconic
DestroyCursor
GetWindowModuleFileNameW
CopyImage
GetMenuItemRect
CheckMenuRadioItem
CharLowerBuffA
comctl32
ImageList_SetImageCount
ImageList_GetIcon
ImageList_Draw
ImageList_AddIcon
FlatSB_EnableScrollBar
ImageList_SetFlags
ImageList_DragMove
ImageList_Duplicate
ImageList_AddMasked
DestroyPropertySheetPage
ImageList_LoadImageW
ImageList_LoadImage
ImageList_LoadImageA
ImageList_Add
CreateStatusWindowW
CreatePropertySheetPageA
InitializeFlatSB
ImageList_GetIconSize
CreateUpDownControl
CreateToolbarEx
ImageList_DrawEx
ImageList_GetDragImage
ImageList_GetImageCount
ImageList_Remove
ImageList_Create
ImageList_DragShowNolock
ImageList_Merge
ImageList_Destroy
PropertySheetW
ImageList_DragEnter
DrawStatusTextW
ImageList_BeginDrag
ImageList_Copy
ImageList_DragLeave
ImageList_SetOverlayImage
ImageList_SetDragCursorImage
ImageList_Write
ImageList_SetBkColor
_TrackMouseEvent
PropertySheetA
ImageList_DrawIndirect
ImageList_Read
ImageList_Replace
ord17
ImageList_GetBkColor
ImageList_ReplaceIcon
FlatSB_ShowScrollBar
MakeDragList
ImageList_EndDrag
ImageList_GetImageInfo
ImageList_SetIconSize
InitCommonControlsEx
CreatePropertySheetPageW
gdi32
BeginPath
GetEnhMetaFileBits
MaskBlt
SetPixelV
GdiComment
CloseFigure
SaveDC
EnumEnhMetaFile
SetROP2
GetWindowExtEx
GetTextAlign
GetCharWidthW
EnumFontFamiliesW
GetCharABCWidthsW
SetRectRgn
OffsetViewportOrgEx
CreatePatternBrush
GetOutlineTextMetricsA
SetAbortProc
CreateDIBitmap
CreatePenIndirect
PolyBezierTo
PathToRegion
GetBitmapBits
GetEnhMetaFileA
IntersectClipRect
GetCharABCWidthsFloatW
CopyEnhMetaFileW
SetDIBitsToDevice
GetGlyphOutlineA
GetCharABCWidthsFloatA
GetStretchBltMode
CreateFontIndirectA
GetMetaFileA
GetEnhMetaFileHeader
SetDCPenColor
AddFontResourceA
SetWinMetaFileBits
CreateICA
GetViewportOrgEx
RemoveFontResourceA
CreateDCA
RealizePalette
GetBitmapDimensionEx
InvertRgn
CreateMetaFileW
RestoreDC
SetWindowOrgEx
CloseMetaFile
GetGlyphOutlineW
ExtCreateRegion
CreateMetaFileA
Ellipse
PatBlt
SetPixelFormat
CreateEllipticRgnIndirect
GetMetaFileBitsEx
CreateEnhMetaFileA
CreatePalette
SetICMMode
GetCharWidth32A
CreateCompatibleDC
CreatePolyPolygonRgn
PlayMetaFileRecord
EndDoc
GetCurrentPositionEx
GetLayout
GetMetaRgn
CreateBitmapIndirect
SetPolyFillMode
SetMapperFlags
WidenPath
EnumObjects
StretchBlt
SetEnhMetaFileBits
GetWinMetaFileBits
ResetDCA
CopyMetaFileW
GetCharWidthFloatA
CloseEnhMetaFile
GetCharWidthA
EnumFontsW
SelectClipPath
SetPaletteEntries
LPtoDP
SetGraphicsMode
FillPath
SetTextJustification
CreateEllipticRgn
PolyPolygon
PaintRgn
GetArcDirection
GetTextExtentExPointW
CreateSolidBrush
ScaleWindowExtEx
ScaleViewportExtEx
GdiFlush
CreateFontA
SetBitmapDimensionEx
ArcTo
GetCurrentObject
CreateRectRgn
AbortDoc
CreateDiscardableBitmap
StartDocA
GetNearestPaletteIndex
CreateDIBPatternBrushPt
GetTextMetricsW
EndPage
SetTextAlign
CreateBrushIndirect
GetTextCharset
UpdateColors
GetTextExtentExPointA
EnumFontFamiliesExW
CopyEnhMetaFileA
ExtTextOutW
CreateHatchBrush
GetPolyFillMode
GetMapMode
ExtSelectClipRgn
GetTextExtentPointA
DescribePixelFormat
SetViewportExtEx
CreateBitmap
GetCharABCWidthsA
SwapBuffers
GetDeviceCaps
GetEnhMetaFileW
RectInRegion
ExtTextOutA
SelectPalette
EnumFontsA
GetSystemPaletteEntries
EnumMetaFile
DeleteEnhMetaFile
ResizePalette
UnrealizeObject
FillRgn
SetMetaFileBitsEx
PolyBezier
StrokeAndFillPath
AbortPath
SetWindowExtEx
SetArcDirection
EqualRgn
CreateFontIndirectW
TranslateCharsetInfo
SetColorAdjustment
SetStretchBltMode
TextOutA
DPtoLP
SelectClipRgn
GetBoundsRect
GetClipBox
SetBoundsRect
FlattenPath
CreatePen
StretchDIBits
CreateCompatibleBitmap
Arc
StartDocW
ChoosePixelFormat
CreateRectRgnIndirect
CreateICW
SetTextColor
CreateEnhMetaFileW
GetGraphicsMode
DeleteObject
GetNearestColor
SetMiterLimit
OffsetRgn
SetBitmapBits
CreateFontW
OffsetClipRgn
EnumFontFamiliesExA
CopyMetaFileA
GetKerningPairsA
Rectangle
CreateHalftonePalette
ModifyWorldTransform
BitBlt
MoveToEx
StartPage
CombineRgn
PtVisible
PolylineTo
GetCharWidth32W
GetTextFaceW
DeleteMetaFile
DrawEscape
GetROP2
PtInRegion
GetFontData
SetViewportOrgEx
GetTextExtentPoint32W
GetAspectRatioFilterEx
PlayEnhMetaFile
GetMiterLimit
LineTo
ExtCreatePen
ResetDCW
RectVisible
GetPaletteEntries
CreatePolygonRgn
SetBkColor
SelectObject
GetViewportExtEx
CreateDIBSection
GetRegionData
GetTextExtentPointW
FloodFill
SetBkMode
CreateRoundRectRgn
SetDIBColorTable
GetColorAdjustment
GetObjectType
Chord
GetCharacterPlacementW
ExtFloodFill
GetTextColor
SetDCBrushColor
GetTextCharsetInfo
GetTextCharacterExtra
GetDIBits
StrokePath
PlayEnhMetaFileRecord
GetDIBColorTable
GetPixelFormat
SetICMProfileA
PlayMetaFile
GetFontLanguageInfo
GetEnhMetaFilePaletteEntries
GetPixel
GetTextMetricsA
GetObjectA
Pie
LineDDA
CreateDCW
Polyline
GetPath
PolyPolyline
SetPixel
GetBkColor
AngleArc
PolyDraw
GetStockObject
SetMapMode
GetRgnBox
GetObjectW
FrameRgn
RoundRect
SetWorldTransform
EndPath
DeleteDC
GetDCOrgEx
SetLayout
OffsetWindowOrgEx
ExtEscape
SetBrushOrgEx
GetWindowOrgEx
GetBkMode
GetTextFaceA
Escape
Polygon
AnimatePalette
ExcludeClipRect
TextOutW
EnumFontFamiliesA
GetBrushOrgEx
SetDIBits
PlgBlt
GetClipRgn
GetTextExtentPoint32A
SetTextCharacterExtra
advapi32
StartServiceW
CryptEnumProvidersW
ImpersonateLoggedOnUser
MapGenericMask
IsValidAcl
RegUnLoadKeyW
OpenSCManagerW
RegQueryInfoKeyA
RegEnumKeyExA
GetExplicitEntriesFromAclW
BuildExplicitAccessWithNameW
GetSecurityDescriptorOwner
AllocateAndInitializeSid
AdjustTokenPrivileges
RegOpenKeyW
SetSecurityInfo
GetUserNameW
QueryServiceConfigA
UnlockServiceDatabase
LookupPrivilegeValueA
RegSetValueW
RegOpenKeyExW
CryptGetHashParam
RegEnumValueA
SetServiceStatus
IsValidSid
RegQueryValueA
LsaFreeMemory
RegConnectRegistryA
OpenServiceA
RegConnectRegistryW
GetAce
ReportEventA
SetSecurityDescriptorDacl
ChangeServiceConfig2A
StartServiceA
GetSidSubAuthority
LookupPrivilegeValueW
LsaClose
ChangeServiceConfigA
CryptAcquireContextA
CryptDecrypt
EqualSid
CryptGenKey
RegQueryValueExW
RegSaveKeyA
SetSecurityDescriptorControl
StartServiceCtrlDispatcherW
CryptExportKey
GetSidIdentifierAuthority
ChangeServiceConfigW
RegLoadKeyW
RegLoadKeyA
SetSecurityDescriptorOwner
WriteEncryptedFileRaw
EnumServicesStatusA
OpenThreadToken
RegQueryValueW
SetNamedSecurityInfoW
SetSecurityDescriptorSacl
GetTokenInformation
SetThreadToken
CreateServiceW
DeleteAce
CryptGetKeyParam
BuildTrusteeWithSidW
CreateProcessAsUserW
MakeAbsoluteSD
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSecurityDescriptorToStringSecurityDescriptorW
CryptGenRandom
RegEnumValueW
RegCloseKey
CryptDeriveKey
RegRestoreKeyA
CryptEncrypt
RegDeleteValueA
GetEffectiveRightsFromAclA
LsaAddAccountRights
ConvertSidToStringSidW
LookupAccountNameA
LsaLookupNames
GetUserNameA
CloseServiceHandle
GetFileSecurityW
AddAccessAllowedAce
RegNotifyChangeKeyValue
ConvertStringSidToSidW
LogonUserW
StartServiceCtrlDispatcherA
GetSecurityDescriptorLength
QueryServiceLockStatusW
RegOpenCurrentUser
RegSetValueA
RegSetValueExW
EnumDependentServicesW
CryptReleaseContext
OpenSCManagerA
CryptDestroyHash
GetSecurityDescriptorDacl
GetSecurityDescriptorGroup
RegRestoreKeyW
CryptGetUserKey
ControlService
CryptDestroyKey
GetLengthSid
CloseEncryptedFileRaw
CreateWellKnownSid
LsaNtStatusToWinError
QueryServiceStatusEx
LsaOpenPolicy
IsValidSecurityDescriptor
QueryServiceStatus
CreateProcessAsUserA
LogonUserA
LookupAccountSidW
GetAclInformation
SetServiceObjectSecurity
OpenServiceW
SetEntriesInAclA
RegEnumKeyA
GetSecurityInfo
RegGetKeySecurity
RegSetKeySecurity
CryptHashData
RegOpenKeyExA
GetSecurityDescriptorControl
CryptSetProvParam
CheckTokenMembership
RegEnumKeyW
SetFileSecurityA
ImpersonateSelf
RegEnumKeyExW
DuplicateTokenEx
AccessCheck
RegisterEventSourceA
RegDisablePredefinedCache
RegisterServiceCtrlHandlerW
InitializeSid
RegSetValueExA
LookupAccountNameW
LsaLookupSids
MakeSelfRelativeSD
GetNamedSecurityInfoW
ImpersonateNamedPipeClient
ConvertStringSidToSidA
SetTokenInformation
OpenProcessToken
SetFileSecurityW
BuildTrusteeWithNameW
GetNamedSecurityInfoA
RegQueryValueExA
RegDeleteValueW
LookupPrivilegeDisplayNameA
GetSidSubAuthorityCount
CryptImportKey
LookupPrivilegeNameA
RegCreateKeyW
RegCreateKeyExA
RegOpenKeyA
QueryServiceConfigW
OpenEncryptedFileRawW
RegisterEventSourceW
InitiateSystemShutdownExW
GetSecurityDescriptorSacl
AddAce
CryptVerifySignatureA
CreateServiceA
RegDeleteKeyW
ChangeServiceConfig2W
DeregisterEventSource
RegFlushKey
SetSecurityDescriptorGroup
RegUnLoadKeyA
ReportEventW
RegCreateKeyExW
DeleteService
CopySid
LsaRemoveAccountRights
CryptCreateHash
SetNamedSecurityInfoA
RevertToSelf
EncryptFileW
RegDeleteKeyA
RegCreateKeyA
GetFileSecurityA
FreeSid
DuplicateToken
EqualPrefixSid
LsaQueryInformationPolicy
InitializeSecurityDescriptor
RegSaveKeyW
InitializeAcl
LookupAccountSidA
RegQueryInfoKeyW
InitiateSystemShutdownA
ReadEncryptedFileRaw
RegisterServiceCtrlHandlerExA
RegisterServiceCtrlHandlerA
LockServiceDatabase
SetEntriesInAclW
GetSidLengthRequired
GetKernelObjectSecurity
CryptAcquireContextW
kernel32
GetConsoleMode
SystemTimeToTzSpecificLocalTime
OutputDebugStringA
LockFile
PeekNamedPipe
_lcreat
GetCommMask
GetCurrentThreadId
TlsFree
GetVolumePathNameA
WaitCommEvent
GetVersionExA
Sleep
Heap32Next
SetFilePointerEx
ConvertDefaultLocale
Module32NextW
SetLastError
OpenEventW
GlobalFindAtomW
GetVersionExW
GetFileTime
SwitchToThread
CreateProcessW
SetProcessAffinityMask
OpenSemaphoreW
WriteConsoleA
_hwrite
SetComputerNameW
SetCommBreak
DebugBreak
EnumSystemLanguageGroupsW
CreateWaitableTimerW
DeleteAtom
TerminateThread
GetPrivateProfileIntA
WinExec
GetModuleFileNameA
InitializeCriticalSectionAndSpinCount
GlobalMemoryStatus
GetPrivateProfileSectionA
GetProcessHeaps
RtlUnwind
FindVolumeClose
CreateSemaphoreA
WaitForDebugEvent
CopyFileExW
GetTempFileNameA
CreateNamedPipeA
GetSystemTimeAdjustment
UnlockFileEx
GetComputerNameA
IsDBCSLeadByteEx
CreateFileA
ClearCommBreak
ExpandEnvironmentStringsW
Process32First
WritePrivateProfileStructA
GetPriorityClass
GetThreadPriority
GetSystemInfo
SetThreadPriority
CreateEventW
WriteProfileStringW
WritePrivateProfileStringW
FindNextVolumeW
LeaveCriticalSection
WriteConsoleW
UnmapViewOfFile
Module32FirstW
SetConsoleMode
GetCommandLineA
SetConsoleCursorPosition
SearchPathW
WritePrivateProfileStringA
CreateWaitableTimerA
InitializeCriticalSection
EnumResourceNamesW
HeapAlloc
SetVolumeLabelW
SetLocalTime
SetCurrentDirectoryW
FreeResource
CreateFiber
_lopen
GetCommState
lstrcmpW
_lclose
Toolhelp32ReadProcessMemory
SetupComm
GetTimeFormatA
GetProfileIntW
RaiseException
IsProcessorFeaturePresent
GlobalGetAtomNameW
SetThreadAffinityMask
GetStringTypeW
HeapDestroy
UnlockFile
GetLocaleInfoA
GetLogicalDriveStringsA
InterlockedIncrement
EnumCalendarInfoA
SetStdHandle
FindFirstChangeNotificationW
FlushFileBuffers
FlushInstructionCache
SetTapePosition
CommConfigDialogW
AddAtomW
SetEndOfFile
GlobalFlags
FindNextFileW
GetExitCodeThread
ExitThread
GetOverlappedResult
EnumLanguageGroupLocalesW
Process32NextW
LocalReAlloc
HeapCreate
GetWindowsDirectoryA
UpdateResourceW
GetProcessAffinityMask
CreateFileMappingW
GetSystemDefaultLangID
SwitchToFiber
FindNextChangeNotification
CopyFileA
GetPrivateProfileStringW
GetProfileIntA
GetFileAttributesExW
CreateFileW
WritePrivateProfileSectionW
FreeEnvironmentStringsA
ConvertThreadToFiber
GetCurrentDirectoryW
GetTapeParameters
GetStartupInfoW
DeleteVolumeMountPointW
TryEnterCriticalSection
ReadFile
LocalCompact
lstrcpynA
QueryPerformanceCounter
FindResourceExA
EnumResourceLanguagesA
ClearCommError
VerLanguageNameA
FileTimeToSystemTime
DeleteVolumeMountPointA
ExitProcess
InterlockedDecrement
DeleteCriticalSection
GetDriveTypeW
WaitNamedPipeA
WaitNamedPipeW
PulseEvent
GetDateFormatA
SetVolumeMountPointA
SetThreadContext
GetTickCount
LoadLibraryExA
EnumCalendarInfoW
SetEnvironmentVariableW
GetDiskFreeSpaceW
GetLongPathNameW
GetPrivateProfileStringA
GetTempFileNameW
WaitForSingleObjectEx
GetThreadLocale
WriteProfileStringA
Thread32First
BeginUpdateResourceW
GetVersion
VirtualProtectEx
SetSystemTime
GlobalLock
OpenFile
ResumeThread
EnterCriticalSection
WriteProcessMemory
GetDiskFreeSpaceExW
GetStringTypeExA
GetUserDefaultLCID
PurgeComm
VerifyVersionInfoW
SetCommConfig
SetCommTimeouts
VirtualAlloc
SetConsoleTitleW
SetConsoleCtrlHandler
LocalFileTimeToFileTime
MoveFileExW
EnumResourceTypesA
GetEnvironmentVariableA
GlobalAddAtomW
GetModuleHandleW
SetEnvironmentVariableA
AllocConsole
GetVolumePathNameW
HeapValidate
CompareStringW
GetThreadTimes
IsBadStringPtrW
GetVolumeInformationA
GetLongPathNameA
BackupSeek
GetSystemDirectoryA
Process32FirstW
CompareStringA
SystemTimeToFileTime
GetExitCodeProcess
VirtualLock
IsBadReadPtr
GetCurrentProcess
SetFileAttributesA
PostQueuedCompletionStatus
FatalAppExitA
AreFileApisANSI
EnumCalendarInfoExW
lstrcmpiW
Thread32Next
InterlockedExchangeAdd
FileTimeToLocalFileTime
lstrcpyW
CreateThread
SetThreadExecutionState
SetCommMask
FindClose
QueryDosDeviceA
WritePrivateProfileStructW
CopyFileW
GetSystemPowerStatus
GetStartupInfoA
GetDiskFreeSpaceA
GetDiskFreeSpaceExA
LocalLock
SetHandleCount
GetLogicalDriveStringsW
EnumResourceNamesA
SearchPathA
QueueUserWorkItem
LCMapStringW
BackupRead
GetCommModemStatus
CreateDirectoryA
DisconnectNamedPipe
VirtualQuery
SetTimeZoneInformation
EnumUILanguagesW
TransmitCommChar
ExpandEnvironmentStringsA
GetWindowsDirectoryW
Heap32First
VerifyVersionInfoA
IsValidLocale
FindFirstChangeNotificationA
GetSystemWindowsDirectoryA
SetCommState
TlsSetValue
FindAtomW
GetDateFormatW
GetSystemTime
GetComputerNameExW
VirtualFree
GetTempPathW
ReadConsoleInputA
FindFirstFileA
GetQueuedCompletionStatus
OutputDebugStringW
SizeofResource
OpenSemaphoreA
SetCurrentDirectoryA
EndUpdateResourceA
OpenMutexW
CreateNamedPipeW
GetLastError
GetBinaryTypeA
EscapeCommFunction
CreateMutexW
SetFileTime
VirtualFreeEx
SetProcessShutdownParameters
IsDebuggerPresent
QueueUserAPC
OpenProcess
GetEnvironmentStringsW
LoadLibraryExW
HeapCompact
ProcessIdToSessionId
WriteFileEx
InterlockedCompareExchange
GetCompressedFileSizeW
GlobalSize
CreateDirectoryW
ContinueDebugEvent
LoadLibraryW
GetCPInfo
GetFileAttributesExA
lstrcmpiA
LoadLibraryA
GetProfileStringW
HeapSize
TlsAlloc
WaitForMultipleObjects
GlobalMemoryStatusEx
RemoveDirectoryA
GetVolumeNameForVolumeMountPointA
UpdateResourceA
lstrcatW
lstrcatA
FindCloseChangeNotification
OpenEventA
lstrlenA
CreateDirectoryExA
QueryDosDeviceW
FindFirstVolumeW
VirtualQueryEx
GlobalFree
OpenFileMappingA
GetEnvironmentStrings
DeleteFiber
QueryPerformanceFrequency
GetConsoleOutputCP
GetCurrentThread
SetFileAttributesW
CloseHandle
ConnectNamedPipe
GetFileInformationByHandle
GetProcessTimes
CreateProcessA
FreeLibrary
SetEvent
UnhandledExceptionFilter
_lwrite
SetNamedPipeHandleState
Process32Next
CreateIoCompletionPort
lstrcpyA
GetCommandLineW
FormatMessageW
GetTimeFormatW
GetMailslotInfo
BackupWrite
FlushConsoleInputBuffer
GetDriveTypeA
LocalHandle
GetShortPathNameW
GetCommTimeouts
CreateToolhelp32Snapshot
WideCharToMultiByte
FindResourceW
LockResource
GetLocalTime
GetNumberFormatA
HeapFree
GetCurrentProcessId
SetFilePointer
IsDBCSLeadByte
MulDiv
SleepEx
GlobalFindAtomA
FindFirstFileExW
IsBadWritePtr
GetProfileSectionA
FindResourceExW
GetSystemDirectoryW
OpenMutexA
MoveFileA
IsValidCodePage
GlobalUnlock
EndUpdateResourceW
WaitForSingleObject
GetVolumeInformationW
CreatePipe
GlobalGetAtomNameA
GetPrivateProfileStructA
GlobalReAlloc
GetUserDefaultUILanguage
GetFullPathNameA
DebugActiveProcess
HeapReAlloc
SetWaitableTimer
MultiByteToWideChar
IsBadCodePtr
IsBadStringPtrA
GetCommProperties
GetStdHandle
lstrlenW
GetSystemDefaultLCID
_hread
WritePrivateProfileSectionA
RemoveDirectoryW
SetVolumeLabelA
DeleteFileW
GetEnvironmentVariableW
GetSystemTimeAsFileTime
GlobalAddAtomA
CopyFileExA
GetComputerNameExA
GetFileAttributesA
GetVolumeNameForVolumeMountPointW
VirtualAllocEx
GetLocaleInfoW
MapViewOfFileEx
FindFirstFileW
CancelIo
GetProcessWorkingSetSize
FlushViewOfFile
GetFileAttributesW
lstrcpynW
RtlFillMemory
CreateMailslotA
DosDateTimeToFileTime
LocalSize
GetStringTypeExW
GetHandleInformation
SetProcessPriorityBoost
GetFullPathNameW
WaitForMultipleObjectsEx
LocalFree
WriteConsoleOutputW
GetPrivateProfileSectionNamesA
SuspendThread
FileTimeToDosDateTime
VirtualProtect
lstrcmpA
SetThreadLocale
SetErrorMode
EnumSystemLocalesA
DuplicateHandle
OpenThread
Heap32ListNext
SetMailslotInfo
ResetEvent
CreateMutexA
FreeConsole
GlobalAlloc
SetHandleInformation
VerSetConditionMask
DeviceIoControl
SetProcessWorkingSetSize
GetUserDefaultLangID
GetProfileStringA
GetPrivateProfileIntW
VirtualUnlock
GetCurrencyFormatA
FindNextFileA
ReadProcessMemory
Heap32ListFirst
GetFileType
_llseek
TerminateProcess
Module32First
GetComputerNameW
InterlockedExchange
CompareFileTime
LockFileEx
BuildCommDCBA
GetModuleFileNameW
GetConsoleScreenBufferInfo
GetOEMCP
BeginUpdateResourceA
GetStringTypeA
GetTempPathA
CreateEventA
ReleaseMutex
LCMapStringA
DeleteFileA
GetFileSize
ReleaseSemaphore
GetFileSizeEx
FreeEnvironmentStringsW
SetPriorityClass
LocalUnlock
SetUnhandledExceptionFilter
GetCurrentDirectoryA
GlobalHandle
CreateFileMappingA
GetTimeZoneInformation
GetProcessVersion
LocalAlloc
DisableThreadLibraryCalls
GetThreadContext
GetProcAddress
GetModuleHandleA
GlobalDeleteAtom
GetACP
GetNumberFormatW
GetProcessHeap
GetShortPathNameA
GetConsoleCP
ReadDirectoryChangesW
_lread
GetCommConfig
FindResourceA
WriteFile
Module32Next
GetLogicalDrives
OpenFileMappingW
Sections
.text Size: 79KB - Virtual size: 78KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 137KB - Virtual size: 136KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 87KB - Virtual size: 94KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ