Static task
static1
Behavioral task
behavioral1
Sample
8aaeb898c3ce10e2d49c282bc1a8fbaa25cc90fec15a9ab7effd55eb652abbc7.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
8aaeb898c3ce10e2d49c282bc1a8fbaa25cc90fec15a9ab7effd55eb652abbc7.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
8aaeb898c3ce10e2d49c282bc1a8fbaa25cc90fec15a9ab7effd55eb652abbc7
-
Size
368KB
-
MD5
2263228d31326073a8431e66574fa807
-
SHA1
fab120797d89aa0385912ef6067639a8ecd2d6ce
-
SHA256
8aaeb898c3ce10e2d49c282bc1a8fbaa25cc90fec15a9ab7effd55eb652abbc7
-
SHA512
14c7ca273f4a4f3b48f3fce93bb391b422323d83a0ee9fdb7ca5375185f278b6b1af5ee2cd23afb0856b4219c800a16f8095e1bcaf0f157f72bb8b9a75792a98
-
SSDEEP
6144:4oTFQydFUMFQpWOaNLOKKNvTG20eCRoHERQuoyl4+4jF5TRjvW8PSAD:BTCynP9tKNvTj0CkporRR5TRTW8P
Malware Config
Signatures
Files
-
8aaeb898c3ce10e2d49c282bc1a8fbaa25cc90fec15a9ab7effd55eb652abbc7.exe windows x86
72a26f751e4c9531741db049be78c81c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetDateFormatW
GetFileAttributesExW
EnterCriticalSection
GetCurrentProcess
RaiseException
SetConsoleTitleW
GetCurrentProcessId
VirtualProtectEx
GetConsoleOutputCP
GetLongPathNameW
FlushFileBuffers
SearchPathA
GetEnvironmentVariableW
GetStdHandle
CreateNamedPipeW
AreFileApisANSI
GetProcessAffinityMask
GetEnvironmentStringsW
lstrcpynA
DisconnectNamedPipe
CreateSemaphoreA
FileTimeToDosDateTime
CreateToolhelp32Snapshot
SetCurrentDirectoryW
GetDateFormatA
GetProcessVersion
HeapFree
InitializeCriticalSection
SetEndOfFile
AllocConsole
GlobalUnlock
ExpandEnvironmentStringsA
Toolhelp32ReadProcessMemory
GetStringTypeA
IsBadCodePtr
_llseek
IsBadStringPtrW
_lwrite
GetFileSize
LockFileEx
SetCommBreak
GetCurrentThread
lstrcpynW
DebugBreak
GlobalAlloc
_hwrite
lstrcpyA
SetTimeZoneInformation
GetProfileIntW
GlobalAddAtomW
InterlockedCompareExchange
CompareStringA
SetErrorMode
GetCurrencyFormatA
GetProfileStringW
WriteConsoleOutputW
GetCommandLineA
CompareFileTime
PulseEvent
VirtualLock
RtlUnwind
GetTimeFormatW
CreateMailslotA
WaitForSingleObjectEx
FatalAppExitA
ResetEvent
ReadDirectoryChangesW
WaitNamedPipeW
DuplicateHandle
GetPrivateProfileIntA
VirtualQueryEx
MoveFileExA
GetComputerNameExA
GetProcessTimes
WriteProcessMemory
lstrcpyW
SetCurrentDirectoryA
EnumCalendarInfoW
MulDiv
EnumResourceTypesA
LocalLock
HeapValidate
GetAtomNameA
GetSystemTime
WaitForDebugEvent
OpenFileMappingW
FindFirstVolumeW
FindClose
GetConsoleScreenBufferInfo
ProcessIdToSessionId
CreateFileW
GetEnvironmentStrings
GlobalHandle
GetStringTypeW
SetCommConfig
HeapCreate
SetEvent
CreateNamedPipeA
GetStringTypeExA
GetOverlappedResult
FindNextFileW
GetLogicalDriveStringsA
lstrlenW
Process32NextW
TlsSetValue
GetVolumeNameForVolumeMountPointA
WriteConsoleW
LCMapStringA
ContinueDebugEvent
GetStringTypeExW
SetThreadLocale
GetProcessWorkingSetSize
GetProcessHeap
CreateMutexA
WaitForMultipleObjectsEx
FileTimeToSystemTime
CreateFileMappingA
Thread32First
SetMailslotInfo
EnumSystemLanguageGroupsW
SleepEx
CompareStringW
SetVolumeLabelA
GetCommModemStatus
EndUpdateResourceA
LoadResource
UpdateResourceW
GetTempFileNameW
CreateThread
GetVersionExW
GlobalLock
FindNextChangeNotification
GetTempPathA
LocalHandle
SetStdHandle
TlsAlloc
EnumResourceLanguagesW
CreateSemaphoreW
TryEnterCriticalSection
GetEnvironmentVariableA
ReleaseSemaphore
RemoveDirectoryW
Beep
GetDiskFreeSpaceA
WaitCommEvent
PurgeComm
EnumCalendarInfoA
RtlFillMemory
GetTempFileNameA
LoadLibraryExW
VerifyVersionInfoW
GetComputerNameA
GetVolumeInformationW
GetPriorityClass
GlobalMemoryStatus
GetHandleInformation
GetDriveTypeA
GetCommTimeouts
GetVolumePathNameA
GetVolumeNameForVolumeMountPointW
GlobalFindAtomW
IsBadReadPtr
FlushConsoleInputBuffer
GetShortPathNameW
PostQueuedCompletionStatus
SwitchToThread
CloseHandle
VirtualFreeEx
FindResourceExA
IsBadStringPtrA
GetSystemDirectoryA
SetVolumeMountPointA
GetTimeZoneInformation
CreateProcessW
DeleteVolumeMountPointA
GetVolumeInformationA
WriteProfileStringA
BackupWrite
SetThreadAffinityMask
SetEnvironmentVariableW
GetCurrentDirectoryW
WaitForSingleObject
GetVersion
GetCommandLineW
EnumLanguageGroupLocalesW
EnumResourceNamesW
GetPrivateProfileStringA
MapViewOfFileEx
QueueUserWorkItem
GetDriveTypeW
GlobalFlags
OpenEventA
_lclose
OpenProcess
SetProcessWorkingSetSize
LocalFileTimeToFileTime
lstrcmpiA
GetConsoleMode
GetSystemDefaultLCID
VerLanguageNameA
LCMapStringW
FormatMessageA
WritePrivateProfileStructA
GlobalFindAtomA
VirtualAllocEx
CopyFileExW
Module32FirstW
GetModuleHandleA
SetFileTime
SetCommMask
OutputDebugStringA
SetTapePosition
GetModuleFileNameA
HeapReAlloc
GetUserDefaultLCID
GlobalGetAtomNameW
lstrcatA
GetExitCodeProcess
CreateFileMappingW
FindFirstChangeNotificationW
GetPrivateProfileSectionA
GetTimeFormatA
lstrcmpA
Module32NextW
CreateWaitableTimerA
SetProcessShutdownParameters
ReleaseMutex
Heap32ListNext
MapViewOfFile
LockFile
ReadConsoleInputA
GetTempPathW
VerSetConditionMask
EnumResourceNamesA
GetVersionExA
SetThreadPriority
CreateEventA
CommConfigDialogW
UnlockFileEx
SetConsoleMode
OpenMutexW
WritePrivateProfileStructW
IsProcessorFeaturePresent
SetNamedPipeHandleState
GetThreadTimes
FindFirstFileW
GetVolumePathNameW
Process32FirstW
SetCommState
FindResourceExW
SetConsoleCursorPosition
LocalSize
GetFileAttributesW
GetThreadLocale
SetUnhandledExceptionFilter
SetVolumeLabelW
MoveFileA
ClearCommBreak
GetSystemPowerStatus
OutputDebugStringW
Heap32ListFirst
GetNumberFormatW
ExitProcess
CopyFileW
AddAtomW
DeleteAtom
WriteProfileStringW
BuildCommDCBA
BackupSeek
CreateFiber
GetConsoleCP
WritePrivateProfileSectionW
GetLongPathNameA
GetLogicalDriveStringsW
lstrcmpW
GetFileAttributesExA
FormatMessageW
MoveFileW
EnumUILanguagesW
GlobalSize
FindVolumeClose
FlushViewOfFile
FreeConsole
SetFileAttributesW
GetPrivateProfileIntW
SetupComm
FreeLibrary
SystemTimeToFileTime
InterlockedExchangeAdd
GetFileAttributesA
GetCPInfoExA
OpenEventW
QueryDosDeviceA
DisableThreadLibraryCalls
_lopen
GetProcessHeaps
LeaveCriticalSection
SetEnvironmentVariableA
GlobalAddAtomA
lstrlenA
UnmapViewOfFile
GetBinaryTypeA
GetModuleFileNameW
VirtualQuery
ExitThread
WideCharToMultiByte
DebugActiveProcess
GetWindowsDirectoryA
HeapSize
VirtualProtect
Heap32Next
GetQueuedCompletionStatus
GlobalReAlloc
MoveFileExW
GetUserDefaultUILanguage
FreeEnvironmentStringsW
SetThreadContext
FindFirstChangeNotificationA
SetLastError
GetPrivateProfileStringW
GetNumberFormatA
SizeofResource
SetComputerNameW
GetCommMask
InterlockedIncrement
CreateWaitableTimerW
SetWaitableTimer
FlushInstructionCache
ExpandEnvironmentStringsW
IsValidLocale
GetSystemDirectoryW
Sleep
SetFileAttributesA
PeekNamedPipe
GetFileType
WritePrivateProfileSectionA
FreeEnvironmentStringsA
LoadLibraryA
OpenMutexA
FindFirstFileA
GetCommConfig
OpenFile
lstrcatW
WaitForMultipleObjects
SwitchToFiber
WriteFile
GetCommState
GetLastError
CancelIo
VirtualUnlock
GetSystemDefaultLangID
FileTimeToLocalFileTime
BeginUpdateResourceW
UnhandledExceptionFilter
CreateIoCompletionPort
GetShortPathNameA
SetSystemTime
HeapAlloc
CreateEventW
QueryPerformanceCounter
IsDBCSLeadByteEx
DeleteFileA
ReadFile
GetFileInformationByHandle
GetUserDefaultLangID
LocalFree
RemoveDirectoryA
CreateMutexW
CreateDirectoryExA
InitializeCriticalSectionAndSpinCount
GetModuleHandleW
ClearCommError
BackupRead
EscapeCommFunction
TerminateProcess
GetLocalTime
EnumSystemLocalesA
GetMailslotInfo
_hread
SetConsoleCtrlHandler
DeleteFiber
GetThreadContext
SetProcessAffinityMask
InterlockedDecrement
GetProfileSectionA
GetExitCodeThread
MultiByteToWideChar
TlsFree
TlsGetValue
FindCloseChangeNotification
Heap32First
VirtualAlloc
SetPriorityClass
SetFilePointerEx
FindAtomW
GetFileTime
WriteConsoleA
FindNextVolumeW
IsBadWritePtr
CreateProcessA
Module32Next
OpenSemaphoreW
EndUpdateResourceW
WriteFileEx
SystemTimeToTzSpecificLocalTime
CopyFileA
CopyFileExA
DeviceIoControl
GetProfileStringA
SetHandleInformation
GetCurrentThreadId
LocalAlloc
Module32First
DeleteCriticalSection
Process32Next
GetPrivateProfileSectionNamesA
GetFullPathNameA
QueryPerformanceFrequency
VerifyVersionInfoA
GetPrivateProfileStructA
SetLocalTime
QueryDosDeviceW
LocalUnlock
EnumResourceLanguagesA
GetWindowsDirectoryW
UnlockFile
lstrcmpiW
_lread
GetOEMCP
GetProfileIntA
GetSystemInfo
ReadProcessMemory
SetThreadExecutionState
OpenSemaphoreA
SearchPathW
FreeResource
DosDateTimeToFileTime
IsDebuggerPresent
GetTickCount
ConvertDefaultLocale
GetComputerNameExW
GlobalFree
Process32First
FindFirstFileExW
GetProcAddress
GetCommProperties
LoadLibraryExA
HeapDestroy
GlobalDeleteAtom
GetSystemTimeAdjustment
CreateDirectoryW
DefineDosDeviceA
GetThreadPriority
GetDiskFreeSpaceExW
WritePrivateProfileStringA
GetSystemTimeAsFileTime
LoadLibraryW
LockResource
SetCommTimeouts
GetCurrentDirectoryA
_lcreat
GetStartupInfoA
IsValidCodePage
CreateDirectoryA
GetStartupInfoW
EnumCalendarInfoExW
CreatePipe
GetCPInfo
ConvertThreadToFiber
ResumeThread
ConnectNamedPipe
GetDiskFreeSpaceExA
WritePrivateProfileStringW
GetSystemWindowsDirectoryA
BeginUpdateResourceA
GetFileSizeEx
FindNextFileA
OpenThread
HeapCompact
GlobalGetAtomNameA
InterlockedExchange
LocalReAlloc
OpenFileMappingA
FindResourceA
DeleteVolumeMountPointW
GetLocaleInfoW
GetCompressedFileSizeW
SuspendThread
DeleteFileW
TerminateThread
FindResourceW
SetFilePointer
IsDBCSLeadByte
WinExec
SetProcessPriorityBoost
GetLocaleInfoA
VirtualFree
GetACP
QueueUserAPC
GetLogicalDrives
wininet
CreateUrlCacheEntryA
RetrieveUrlCacheEntryStreamW
FtpPutFileW
HttpSendRequestA
DeleteUrlCacheEntry
FtpCreateDirectoryW
InternetErrorDlg
InternetCanonicalizeUrlA
InternetSetCookieA
InternetCloseHandle
HttpAddRequestHeadersW
InternetGetLastResponseInfoW
HttpQueryInfoW
FtpRemoveDirectoryA
InternetGetCookieW
InternetWriteFile
InternetTimeToSystemTimeW
FtpOpenFileW
HttpOpenRequestA
InternetCrackUrlA
HttpQueryInfoA
InternetSetOptionA
InternetGetLastResponseInfoA
DetectAutoProxyUrl
InternetFindNextFileA
FtpFindFirstFileA
FtpSetCurrentDirectoryW
InternetAttemptConnect
HttpEndRequestW
InternetSetOptionW
InternetSetStatusCallbackW
HttpOpenRequestW
FtpDeleteFileW
FtpGetFileA
InternetAutodial
FtpPutFileA
FtpGetFileSize
GetUrlCacheEntryInfoW
InternetDial
FtpRenameFileA
InternetOpenA
InternetTimeToSystemTime
UnlockUrlCacheEntryStream
InternetGetConnectedStateExW
HttpEndRequestA
ReadUrlCacheEntryStream
InternetSetStatusCallback
InternetQueryOptionA
SetUrlCacheEntryInfoA
InternetSetFilePointer
InternetOpenUrlW
HttpSendRequestExA
HttpSendRequestExW
InternetGetCookieA
InternetReadFile
InternetCrackUrlW
FindFirstUrlCacheEntryA
HttpAddRequestHeadersA
FtpOpenFileA
FindNextUrlCacheEntryA
InternetCombineUrlA
FindFirstUrlCacheEntryW
FtpRemoveDirectoryW
FtpDeleteFileA
InternetConnectA
InternetOpenUrlA
InternetQueryDataAvailable
InternetCheckConnectionW
InternetCanonicalizeUrlW
InternetCheckConnectionA
HttpSendRequestW
CommitUrlCacheEntryA
InternetConnectW
InternetOpenW
FtpCreateDirectoryA
FindNextUrlCacheEntryW
InternetTimeFromSystemTime
InternetGoOnline
FtpSetCurrentDirectoryA
FtpGetCurrentDirectoryA
DeleteUrlCacheEntryW
InternetQueryOptionW
FindCloseUrlCache
InternetGetConnectedState
InternetSetOptionExA
InternetAutodialHangup
FtpFindFirstFileW
comdlg32
GetFileTitleW
GetSaveFileNameW
PageSetupDlgA
ChooseColorA
PrintDlgExA
GetSaveFileNameA
CommDlgExtendedError
GetOpenFileNameA
GetOpenFileNameW
PrintDlgW
ChooseFontW
ReplaceTextW
PrintDlgA
FindTextA
PageSetupDlgW
GetFileTitleA
ChooseColorW
ChooseFontA
FindTextW
ReplaceTextA
comctl32
ImageList_LoadImageW
ImageList_BeginDrag
ImageList_Read
CreatePropertySheetPageA
ImageList_Add
FlatSB_ShowScrollBar
ord17
ImageList_SetIconSize
ImageList_Duplicate
FlatSB_EnableScrollBar
_TrackMouseEvent
ImageList_Merge
ImageList_Replace
ImageList_AddIcon
PropertySheetW
ImageList_DragLeave
InitCommonControlsEx
ImageList_SetDragCursorImage
MakeDragList
ImageList_GetIconSize
ImageList_EndDrag
ImageList_GetImageCount
DrawStatusTextW
ImageList_DrawEx
ImageList_Draw
ImageList_DragEnter
ImageList_LoadImageA
ImageList_SetBkColor
ImageList_SetOverlayImage
ImageList_GetBkColor
PropertySheetA
CreateStatusWindowW
ImageList_GetDragImage
DestroyPropertySheetPage
ImageList_GetIcon
ImageList_Destroy
ImageList_DragShowNolock
CreateToolbarEx
ImageList_DragMove
ImageList_AddMasked
ImageList_LoadImage
ImageList_SetFlags
CreateUpDownControl
ImageList_Copy
ImageList_DrawIndirect
ImageList_Remove
ImageList_SetImageCount
ImageList_Create
CreatePropertySheetPageW
InitializeFlatSB
ImageList_GetImageInfo
ImageList_Write
ImageList_ReplaceIcon
gdi32
PolyBezierTo
GetTextExtentExPointA
GetPixel
GetObjectType
EnumEnhMetaFile
GetEnhMetaFilePaletteEntries
SelectClipRgn
GetCharABCWidthsW
Escape
SetMetaFileBitsEx
GetPolyFillMode
SetBkMode
GdiFlush
CreateDiscardableBitmap
GetROP2
GetOutlineTextMetricsA
EndPage
ExtEscape
CreateHatchBrush
CreateCompatibleBitmap
GetTextMetricsW
CombineRgn
GetTextCharacterExtra
TextOutA
PlayEnhMetaFile
CreateDIBitmap
SetStretchBltMode
CreateSolidBrush
EndDoc
CopyMetaFileA
SetViewportExtEx
GetTextExtentPointW
EnumMetaFile
SetPaletteEntries
CreateFontA
GetMapMode
GetTextAlign
GetFontData
ScaleWindowExtEx
CreateBrushIndirect
GetFontLanguageInfo
GetEnhMetaFileHeader
OffsetRgn
PtVisible
EnumFontFamiliesExW
CreateEllipticRgnIndirect
GetCharABCWidthsFloatA
RectInRegion
CreateBitmapIndirect
DeleteDC
SetRectRgn
CreateRectRgn
TranslateCharsetInfo
MoveToEx
SetICMProfileA
DPtoLP
DrawEscape
GetGraphicsMode
GetBitmapBits
RectVisible
SetMapperFlags
GdiComment
Polygon
WidenPath
GetMetaRgn
CreatePatternBrush
SaveDC
SetICMMode
SetDIBitsToDevice
ResetDCW
SetTextJustification
OffsetWindowOrgEx
GetDeviceCaps
GetStretchBltMode
FillRgn
SetWinMetaFileBits
SetPixel
PlgBlt
SetMiterLimit
GetGlyphOutlineA
SelectClipPath
GetMetaFileA
FlattenPath
CreateRoundRectRgn
GetCharacterPlacementW
GetRgnBox
CreatePen
GetDIBits
ExtTextOutW
Pie
StartPage
GetObjectA
GetCharABCWidthsFloatW
CreateEnhMetaFileW
SetTextCharacterExtra
AbortPath
PlayMetaFileRecord
LineTo
Ellipse
GetArcDirection
GetPath
SetDCPenColor
FloodFill
CreateDIBPatternBrushPt
GetCurrentObject
GetBoundsRect
CreateHalftonePalette
ExtCreatePen
CreateFontW
PlayEnhMetaFileRecord
SetPixelFormat
EnumFontFamiliesExA
GetNearestColor
ExtCreateRegion
EnumObjects
CreateEnhMetaFileA
RoundRect
BeginPath
GetAspectRatioFilterEx
RealizePalette
DescribePixelFormat
DeleteObject
GetStockObject
IntersectClipRect
AngleArc
SetBitmapBits
GetTextFaceA
PolyBezier
GetDCOrgEx
CloseMetaFile
CreateDCW
GetGlyphOutlineW
SetTextColor
GetClipRgn
CloseEnhMetaFile
Polyline
PtInRegion
GetObjectW
ModifyWorldTransform
PolyPolyline
SetPixelV
ChoosePixelFormat
PlayMetaFile
GetCharWidthW
CreatePolygonRgn
GetTextExtentExPointW
PolylineTo
TextOutW
GetCharABCWidthsA
Chord
GetWindowOrgEx
GetPaletteEntries
GetEnhMetaFileA
SetDIBits
GetViewportOrgEx
ExtFloodFill
ExcludeClipRect
GetMetaFileBitsEx
ExtTextOutA
SetTextAlign
EnumFontFamiliesW
CreateRectRgnIndirect
OffsetViewportOrgEx
CreateFontIndirectA
GetColorAdjustment
SetViewportOrgEx
StartDocA
GetBkColor
StrokePath
EnumFontFamiliesA
UnrealizeObject
GetBkMode
Arc
GetBitmapDimensionEx
GetEnhMetaFileW
GetClipBox
GetWinMetaFileBits
CreatePalette
SetDIBColorTable
CreateICA
GetBrushOrgEx
CreateMetaFileA
GetTextCharset
GetNearestPaletteIndex
GetTextExtentPoint32W
SetMapMode
GetTextMetricsA
UpdateColors
LPtoDP
Rectangle
EnumFontsA
GetCharWidth32A
SetBitmapDimensionEx
ArcTo
CreateDCA
ResetDCA
GetEnhMetaFileBits
DeleteMetaFile
CloseFigure
StretchBlt
SetBkColor
EnumFontsW
SelectPalette
CreateEllipticRgn
GetCharWidthA
SelectObject
CopyEnhMetaFileW
SwapBuffers
RemoveFontResourceA
GetWindowExtEx
GetPixelFormat
GetTextCharsetInfo
SetWindowExtEx
SetROP2
FillPath
GetTextExtentPointA
GetCharWidthFloatA
InvertRgn
ExtSelectClipRgn
SetArcDirection
GetCharWidth32W
StartDocW
CreateICW
EqualRgn
LineDDA
PathToRegion
StrokeAndFillPath
GetTextExtentPoint32A
CreateDIBSection
CreatePolyPolygonRgn
PolyDraw
GetCurrentPositionEx
CreateBitmap
OffsetClipRgn
CreateFontIndirectW
CreatePenIndirect
AnimatePalette
CreateMetaFileW
AddFontResourceA
PaintRgn
CreateCompatibleDC
CopyMetaFileW
SetBrushOrgEx
GetRegionData
CopyEnhMetaFileA
PatBlt
GetViewportExtEx
SetDCBrushColor
SetLayout
ScaleViewportExtEx
SetPolyFillMode
GetTextFaceW
SetColorAdjustment
EndPath
SetEnhMetaFileBits
GetSystemPaletteEntries
AbortDoc
StretchDIBits
SetWindowOrgEx
BitBlt
GetTextColor
GetMiterLimit
SetWorldTransform
DeleteEnhMetaFile
GetKerningPairsA
SetAbortProc
SetGraphicsMode
GetLayout
MaskBlt
SetBoundsRect
RestoreDC
PolyPolygon
FrameRgn
ResizePalette
GetDIBColorTable
user32
MapVirtualKeyA
SetClipboardViewer
GetClipboardFormatNameA
OpenWindowStationW
HideCaret
MapVirtualKeyExA
WaitForInputIdle
CallNextHookEx
MessageBoxA
DdeClientTransaction
SendMessageTimeoutA
InsertMenuW
WinHelpW
DrawIcon
GetDesktopWindow
GetDialogBaseUnits
InSendMessage
GetMenuItemCount
UnregisterClassA
LoadIconA
CreateWindowExA
ToUnicodeEx
DrawTextExA
DdeQueryStringA
FindWindowA
GetThreadDesktop
CharNextW
ScrollWindowEx
DdeInitializeW
LoadAcceleratorsW
PostThreadMessageW
SetScrollPos
GetScrollInfo
LookupIconIdFromDirectoryEx
GetComboBoxInfo
SendInput
CountClipboardFormats
GetScrollBarInfo
GetNextDlgTabItem
IsCharAlphaNumericW
mouse_event
SetRect
InvalidateRect
ShowCursor
DdeQueryStringW
OpenIcon
keybd_event
SetDlgItemInt
GetMenuStringW
DdeInitializeA
DdeFreeStringHandle
RedrawWindow
DrawIconEx
MessageBoxW
DdeCreateDataHandle
FindWindowW
FlashWindowEx
GetClipboardViewer
SystemParametersInfoA
DdeCreateStringHandleA
GetClassInfoExA
GetMessagePos
DlgDirSelectExA
ChangeDisplaySettingsA
EnableScrollBar
LoadMenuIndirectA
ModifyMenuW
ShowScrollBar
DlgDirListComboBoxW
GetUserObjectInformationW
GetUserObjectSecurity
SetWindowPos
GetCursorPos
DdeAccessData
GetCursor
IsCharAlphaA
FindWindowExA
ChangeDisplaySettingsW
DialogBoxIndirectParamW
GetWindowTextA
ValidateRect
wsprintfA
PeekMessageW
SwapMouseButton
SetPropA
PeekMessageA
RegisterClipboardFormatW
InvertRect
ToUnicode
SetWindowContextHelpId
EnumDisplaySettingsW
LoadCursorFromFileW
DrawEdge
SetMenuItemBitmaps
LoadCursorW
EnumDesktopWindows
GetSystemMenu
TranslateMDISysAccel
CopyAcceleratorTableW
IntersectRect
RemovePropA
CreatePopupMenu
DrawTextW
CloseDesktop
SetCursor
CharPrevA
GetAncestor
CheckMenuItem
OpenClipboard
DefDlgProcA
DefMDIChildProcW
IsDlgButtonChecked
OemToCharA
SendMessageW
SetCaretPos
GetDC
DefFrameProcW
GetUpdateRect
SetLayeredWindowAttributes
PostMessageA
wsprintfW
IsZoomed
SetTimer
IsWindowEnabled
GetClassNameW
GetParent
CheckMenuRadioItem
LockWindowUpdate
DestroyCursor
DdeConnect
DefFrameProcA
ModifyMenuA
GetClipboardData
LoadMenuIndirectW
RegisterWindowMessageW
OpenDesktopA
ReplyMessage
ShowOwnedPopups
GetMenuItemRect
GetMenuStringA
OffsetRect
DialogBoxParamW
ChangeClipboardChain
CreateIconIndirect
GetWindowThreadProcessId
GetClipboardOwner
GetWindowModuleFileNameW
FillRect
CreateAcceleratorTableW
CharNextExA
GetKeyboardLayout
GetMenuDefaultItem
GetActiveWindow
GetClassNameA
OpenInputDesktop
CloseWindow
RegisterDeviceNotificationW
GetProcessWindowStation
GetWindow
DrawAnimatedRects
GetMenuContextHelpId
ValidateRgn
GetClassLongW
ExitWindowsEx
SetDlgItemTextW
CharUpperBuffW
GetClipCursor
TileWindows
OpenWindowStationA
IsDialogMessageA
DeleteMenu
EndPaint
CallWindowProcA
GetUpdateRgn
SetCursorPos
SetMenuContextHelpId
GetMenuItemInfoW
CharToOemA
GetSysColor
DdeGetData
SetScrollInfo
CharUpperBuffA
GetUserObjectInformationA
CreateMenu
ClientToScreen
SetActiveWindow
wvsprintfA
SetWindowLongA
GetWindowTextLengthW
CallWindowProcW
MessageBoxExA
GetMonitorInfoW
PackDDElParam
AllowSetForegroundWindow
SetThreadDesktop
KillTimer
ChildWindowFromPointEx
CreateDialogIndirectParamA
BeginDeferWindowPos
WindowFromDC
MonitorFromWindow
SendDlgItemMessageW
GetMenuBarInfo
DrawCaption
DispatchMessageW
CharLowerA
CreateDesktopW
GetOpenClipboardWindow
EnumDisplaySettingsA
ToAscii
InsertMenuA
LoadBitmapW
CopyRect
SetScrollRange
DestroyWindow
CreateIconFromResourceEx
DefMDIChildProcA
DdeUninitialize
OpenDesktopW
EnumWindows
GetDoubleClickTime
MoveWindow
AttachThreadInput
EnumDisplayMonitors
CreateIcon
SetWindowLongW
EnumClipboardFormats
SetFocus
UpdateWindow
CharLowerBuffW
DrawTextA
IsMenu
RegisterHotKey
IsCharUpperA
WinHelpA
SetUserObjectSecurity
SetDoubleClickTime
GetSysColorBrush
SetCaretBlinkTime
GetClassInfoW
SetWindowsHookExW
GetTitleBarInfo
GetMenu
SetParent
MonitorFromPoint
PostQuitMessage
LoadStringA
DefWindowProcA
MenuItemFromPoint
LookupIconIdFromDirectory
SetMenuDefaultItem
UnhookWinEvent
DdePostAdvise
ShowCaret
GetCapture
TranslateAcceleratorA
LoadImageW
UnregisterClassW
SetMessageExtraInfo
GetWindowInfo
SetForegroundWindow
GetTopWindow
GetMessageTime
WindowFromPoint
GetMenuCheckMarkDimensions
DdeNameService
CheckDlgButton
SetWindowRgn
SubtractRect
GetLastInputInfo
DispatchMessageA
GetWindowDC
SwitchDesktop
GetClientRect
EnableWindow
GetMenuItemInfoA
DestroyAcceleratorTable
PtInRect
CopyIcon
GrayStringW
OemToCharBuffA
GetKeyNameTextA
wvsprintfW
SetMenuInfo
AppendMenuA
EnumChildWindows
DialogBoxIndirectParamA
EndDeferWindowPos
CopyImage
IsClipboardFormatAvailable
AnimateWindow
CharNextA
LoadImageA
GetDlgItemTextW
CharLowerBuffA
AdjustWindowRectEx
GetSystemMetrics
RealChildWindowFromPoint
LoadMenuW
RemovePropW
VkKeyScanW
WaitMessage
GetSubMenu
InflateRect
BroadcastSystemMessage
ReleaseCapture
SetProcessWindowStation
UnpackDDElParam
CreateCaret
GetMenuItemID
EqualRect
DestroyMenu
InsertMenuItemA
GetKeyState
AdjustWindowRect
GetCursorInfo
GetLastActivePopup
CharUpperA
SetCapture
GetPropA
CloseClipboard
GetKeyNameTextW
TrackPopupMenu
SetMenu
MsgWaitForMultipleObjectsEx
TileChildWindows
GetWindowTextLengthA
BringWindowToTop
ChildWindowFromPoint
GetTabbedTextExtentA
SetMenuItemInfoA
AppendMenuW
GetFocus
LoadStringW
CreateAcceleratorTableA
LoadAcceleratorsA
GetInputState
SendMessageA
RegisterClassA
SendMessageTimeoutW
CharUpperW
GetIconInfo
DlgDirListComboBoxA
CreateMDIWindowA
GetKeyboardState
RemoveMenu
CharToOemBuffA
CharLowerW
LoadIconW
IsDialogMessageW
IsChild
CreateDialogIndirectParamW
UnregisterDeviceNotification
DdeFreeDataHandle
CreateMDIWindowW
TranslateMessage
GetWindowLongW
TabbedTextOutA
GetClassLongA
DrawFrameControl
ScrollWindow
DefWindowProcW
SetClassLongW
RegisterClassW
EnableMenuItem
GetNextDlgGroupItem
FindWindowExW
GetClassInfoExW
GetMenuState
GetQueueStatus
InsertMenuItemW
DdeGetLastError
SystemParametersInfoW
GetMessageExtraInfo
GetMessageA
EndDialog
ActivateKeyboardLayout
TranslateAcceleratorW
GetWindowWord
GetWindowPlacement
ReuseDDElParam
FreeDDElParam
HiliteMenuItem
RegisterClassExA
ArrangeIconicWindows
CheckRadioButton
BeginPaint
PostMessageW
SetClassLongA
GetWindowContextHelpId
CloseWindowStation
GetKeyboardLayoutNameA
GetAsyncKeyState
FlashWindow
MapVirtualKeyExW
VkKeyScanA
DdeDisconnect
IsCharLowerA
DdeCreateStringHandleW
ShowWindow
TabbedTextOutW
CreateCursor
IsIconic
GetWindowLongA
DialogBoxParamA
LoadBitmapA
DeferWindowPos
CreateWindowExW
MessageBeep
UnionRect
CreateDialogParamA
IsDialogMessage
GetDCEx
MapDialogRect
ShowWindowAsync
SetWindowPlacement
FrameRect
EmptyClipboard
IsRectEmpty
GetScrollPos
CallMsgFilterA
MapVirtualKeyW
TrackMouseEvent
DrawStateW
GetKeyboardLayoutList
GetCaretPos
SendDlgItemMessageA
ScreenToClient
SetKeyboardState
ClipCursor
SetDlgItemTextA
GetPropW
GetDlgItem
IsWindow
SendNotifyMessageW
DestroyIcon
PostThreadMessageA
IsCharLowerW
LoadKeyboardLayoutA
GetMonitorInfoA
DlgDirSelectComboBoxExA
RegisterClassExW
LoadMenuA
TrackPopupMenuEx
ScrollDC
MapWindowPoints
IsCharAlphaNumericA
UnhookWindowsHookEx
IsWindowVisible
CascadeWindows
LoadCursorFromFileA
SetRectEmpty
RegisterWindowMessageA
GetWindowRgn
RegisterClipboardFormatA
GetMessageW
SetWindowTextW
GetWindowRect
GetGUIThreadInfo
CopyAcceleratorTableA
DrawTextExW
DestroyCaret
DrawMenuBar
GrayStringA
CreateDialogParamW
DrawStateA
SetPropW
GetMenuInfo
GetClassInfoA
SetClipboardData
IsWindowUnicode
SendNotifyMessageA
GetForegroundWindow
ReleaseDC
DragDetect
DrawFocusRect
InvalidateRgn
GetDlgItemTextA
DdeUnaccessData
NotifyWinEvent
MonitorFromRect
GetClassWord
UnregisterHotKey
GetWindowTextW
SetWindowsHookExA
MessageBoxIndirectA
GetDlgCtrlID
SetMenuItemInfoW
SetWindowTextA
GetDlgItemInt
GetCaretBlinkTime
LockSetForegroundWindow
ExcludeUpdateRgn
DlgDirListA
LoadCursorA
GetScrollRange
MsgWaitForMultipleObjects
VkKeyScanExA
CreateIconFromResource
ToAsciiEx
shlwapi
StrCpyW
PathIsUNCA
PathIsUNCServerShareA
PathStripPathA
SHSetValueW
UrlCanonicalizeW
PathGetDriveNumberA
PathRelativePathToA
PathStripPathW
PathRemoveFileSpecA
PathRelativePathToW
PathStripToRootA
StrCmpIW
SHCreateStreamOnFileW
StrDupW
UrlUnescapeW
PathIsRootW
StrToInt64ExW
PathMatchSpecW
PathFindExtensionW
PathUnquoteSpacesA
StrStrIA
StrToIntA
SHDeleteValueW
PathIsUNCServerA
PathRemoveArgsA
PathIsFileSpecW
StrCmpNIW
SHCreateStreamOnFileA
PathFileExistsA
SHDeleteKeyA
PathFindExtensionA
SHAutoComplete
PathSetDlgItemPathW
PathIsDirectoryA
PathRemoveBackslashW
PathAppendW
PathAppendA
StrRetToStrW
StrFormatKBSizeW
PathMakeSystemFolderW
PathFileExistsW
PathCommonPrefixW
StrStrW
PathBuildRootA
PathCompactPathA
StrStrA
StrCmpW
UrlIsW
PathRemoveExtensionW
UrlUnescapeA
PathRemoveBackslashA
PathCombineA
StrFromTimeIntervalA
PathRemoveFileSpecW
StrFormatByteSizeW
UrlCombineW
PathCanonicalizeW
PathIsDirectoryW
PathIsNetworkPathW
StrCatW
PathAddBackslashA
PathFindFileNameW
PathQuoteSpacesA
PathIsUNCW
SHCopyKeyA
PathCreateFromUrlW
PathAddBackslashW
PathCanonicalizeA
SHDeleteValueA
StrRetToBufW
SHDeleteEmptyKeyA
StrStrIW
PathIsRootA
SHDeleteKeyW
PathIsRelativeW
UrlCreateFromPathW
PathCombineW
AssocQueryStringW
PathRenameExtensionA
StrToIntExW
PathCompactPathW
PathMakePrettyW
PathRenameExtensionW
PathFindFileNameA
StrTrimW
PathRemoveBlanksW
PathGetCharTypeW
PathRemoveExtensionA
PathIsURLA
PathIsDirectoryEmptyW
PathMakePrettyA
PathIsRelativeA
PathSkipRootA
PathParseIconLocationA
PathStripToRootW
PathIsURLW
StrToIntW
StrTrimA
advapi32
GetNamedSecurityInfoW
CreateProcessAsUserA
CryptHashData
AccessCheck
LsaAddAccountRights
RegDeleteKeyA
GetSidSubAuthority
LogonUserA
RegEnumValueA
RegUnLoadKeyW
EnumServicesStatusA
QueryServiceStatus
RegDisablePredefinedCache
RegCreateKeyW
CryptDecrypt
ReportEventA
ChangeServiceConfigW
RegisterEventSourceA
GetSecurityDescriptorLength
FreeSid
UnlockServiceDatabase
RegLoadKeyW
GetSecurityDescriptorControl
RegSetValueW
GetSecurityInfo
LsaQueryInformationPolicy
ReadEncryptedFileRaw
InitializeSecurityDescriptor
OpenServiceA
RegCloseKey
IsValidAcl
LsaClose
ImpersonateNamedPipeClient
LookupPrivilegeValueW
CreateWellKnownSid
GetNamedSecurityInfoA
LookupPrivilegeDisplayNameA
SetServiceStatus
DeleteAce
SetNamedSecurityInfoW
OpenThreadToken
CryptAcquireContextW
QueryServiceLockStatusW
OpenEncryptedFileRawW
RegSetValueA
OpenSCManagerA
CryptVerifySignatureA
ConvertSidToStringSidW
LogonUserW
ReportEventW
EqualSid
CryptDestroyKey
LookupPrivilegeValueA
CryptGetHashParam
CreateServiceA
RegSetValueExW
InitializeSid
EnumDependentServicesW
SetSecurityDescriptorGroup
AdjustTokenPrivileges
OpenServiceW
RegEnumValueW
GetFileSecurityA
RegSetKeySecurity
LsaFreeMemory
MakeAbsoluteSD
DuplicateToken
SetSecurityDescriptorOwner
InitiateSystemShutdownA
RegFlushKey
OpenProcessToken
CryptGenKey
LsaLookupSids
LsaOpenPolicy
ImpersonateLoggedOnUser
RegOpenKeyExA
StartServiceA
RegLoadKeyA
StartServiceW
RegCreateKeyExW
LookupAccountNameA
SetSecurityDescriptorControl
ConvertStringSidToSidW
SetSecurityInfo
RegQueryValueExA
RegGetKeySecurity
RegOpenKeyW
CreateProcessAsUserW
RegQueryValueW
DeregisterEventSource
RegConnectRegistryW
CryptImportKey
StartServiceCtrlDispatcherA
SetEntriesInAclW
RegEnumKeyW
GetSidSubAuthorityCount
GetSidIdentifierAuthority
SetTokenInformation
StartServiceCtrlDispatcherW
BuildTrusteeWithNameW
IsValidSecurityDescriptor
ChangeServiceConfigA
GetSecurityDescriptorDacl
SetFileSecurityW
CryptSetProvParam
ControlService
RegDeleteKeyW
RegCreateKeyExA
SetThreadToken
CreateServiceW
CryptCreateHash
GetAclInformation
GetAce
QueryServiceConfigW
AddAccessAllowedAce
LookupAccountNameW
RegSaveKeyA
GetUserNameA
RegCreateKeyA
GetTokenInformation
CryptGetUserKey
CloseEncryptedFileRaw
RegDeleteValueW
LookupAccountSidW
LsaNtStatusToWinError
DeleteService
GetFileSecurityW
SetEntriesInAclA
IsValidSid
EqualPrefixSid
GetExplicitEntriesFromAclW
RegSetValueExA
SetSecurityDescriptorSacl
WriteEncryptedFileRaw
RevertToSelf
CryptReleaseContext
LookupAccountSidA
RegisterServiceCtrlHandlerW
CheckTokenMembership
AllocateAndInitializeSid
CryptGetKeyParam
RegisterServiceCtrlHandlerExA
GetSecurityDescriptorGroup
GetSecurityDescriptorSacl
CryptDestroyHash
RegisterEventSourceW
GetLengthSid
CryptGenRandom
SetServiceObjectSecurity
RegSaveKeyW
RegOpenKeyA
GetKernelObjectSecurity
RegQueryValueA
EncryptFileW
CryptEncrypt
SetSecurityDescriptorDacl
CryptAcquireContextA
LookupPrivilegeNameA
RegQueryValueExW
RegConnectRegistryA
DuplicateTokenEx
CryptDeriveKey
RegQueryInfoKeyA
MapGenericMask
RegEnumKeyA
CopySid
RegEnumKeyExA
GetSecurityDescriptorOwner
InitiateSystemShutdownExW
BuildTrusteeWithSidW
SetNamedSecurityInfoA
ImpersonateSelf
RegNotifyChangeKeyValue
RegDeleteValueA
GetEffectiveRightsFromAclA
BuildExplicitAccessWithNameW
RegOpenCurrentUser
GetUserNameW
RegisterServiceCtrlHandlerA
CloseServiceHandle
CryptEnumProvidersW
QueryServiceStatusEx
RegEnumKeyExW
InitializeAcl
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegQueryInfoKeyW
AddAce
GetSidLengthRequired
ChangeServiceConfig2A
RegOpenKeyExW
SetFileSecurityA
LsaLookupNames
MakeSelfRelativeSD
ConvertStringSidToSidA
OpenSCManagerW
LockServiceDatabase
RegRestoreKeyW
RegUnLoadKeyA
RegRestoreKeyA
ConvertSecurityDescriptorToStringSecurityDescriptorW
CryptExportKey
LsaRemoveAccountRights
QueryServiceConfigA
ChangeServiceConfig2W
Sections
.text Size: 60KB - Virtual size: 58KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 116KB - Virtual size: 112KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 84KB - Virtual size: 95KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 104KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ