Static task
static1
Behavioral task
behavioral1
Sample
2bd89e50d0ed2fb22097af0ab8c96c5ab0a7fefdd79b5ca92f8e1668fc620a3f.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
2bd89e50d0ed2fb22097af0ab8c96c5ab0a7fefdd79b5ca92f8e1668fc620a3f.exe
Resource
win10v2004-20220901-en
windows10-2004-x64
General
-
Target
2bd89e50d0ed2fb22097af0ab8c96c5ab0a7fefdd79b5ca92f8e1668fc620a3f
-
Size
392KB
-
MD5
f466a2e05eb23f08e781b4312189b770
-
SHA1
16c5fa5c33dabc6d5706f4bdc7fc399475dc4e0a
-
SHA256
2bd89e50d0ed2fb22097af0ab8c96c5ab0a7fefdd79b5ca92f8e1668fc620a3f
-
SHA512
4fd99d449b62f756acc10429f358139ee9c906d996fd07e8c2f7f9bfe5b83a9ff63660b1c2df5bb5bec2ce9992c55ce08772a8a805271b46f2aed06d2951d1c3
-
SSDEEP
6144:zzkREODw+/Qqzy6eLZFqnfyZPHgzkGqzqcSlOUVw6ovrMVCVBpx72icLiHQ2Sv:zBz+/QqzXe9EfIgAGqzqx8XZQV47
Malware Config
Signatures
Files
-
2bd89e50d0ed2fb22097af0ab8c96c5ab0a7fefdd79b5ca92f8e1668fc620a3f.exe windows x86
681d0a9adb7e05d6fa72970d91d6b82b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
RegOpenCurrentUser
RegGetKeySecurity
RegCloseKey
OpenSCManagerA
InitializeAcl
BuildTrusteeWithNameW
RegisterServiceCtrlHandlerW
RegLoadKeyA
WriteEncryptedFileRaw
RegOpenKeyExW
RegQueryValueExW
LsaQueryInformationPolicy
EqualSid
AllocateAndInitializeSid
GetSecurityDescriptorLength
LookupPrivilegeValueA
RegDeleteValueA
LsaLookupNames
CryptAcquireContextA
GetAclInformation
CryptGetHashParam
OpenThreadToken
CryptReleaseContext
AccessCheck
SetEntriesInAclA
RegEnumValueA
RegNotifyChangeKeyValue
GetFileSecurityW
GetSidSubAuthority
RegDisablePredefinedCache
IsValidAcl
CryptGenKey
UnlockServiceDatabase
RegRestoreKeyA
RegDeleteValueW
ConvertSecurityDescriptorToStringSecurityDescriptorW
InitializeSid
GetSecurityInfo
LookupAccountNameW
RegSetValueExA
RegSaveKeyW
GetSecurityDescriptorDacl
RevertToSelf
GetTokenInformation
SetSecurityDescriptorOwner
CryptImportKey
MapGenericMask
OpenProcessToken
RegSetKeySecurity
ControlService
EncryptFileW
GetExplicitEntriesFromAclW
SetNamedSecurityInfoW
LookupPrivilegeDisplayNameA
SetFileSecurityA
CreateServiceA
SetSecurityDescriptorSacl
RegCreateKeyExW
CreateWellKnownSid
SetTokenInformation
ChangeServiceConfig2A
RegRestoreKeyW
CryptHashData
GetNamedSecurityInfoA
LookupAccountSidW
QueryServiceStatusEx
LogonUserA
GetFileSecurityA
ImpersonateSelf
RegisterEventSourceA
InitiateSystemShutdownA
SetNamedSecurityInfoA
MakeSelfRelativeSD
GetLengthSid
LogonUserW
FreeSid
DeleteAce
QueryServiceLockStatusW
RegUnLoadKeyW
LsaAddAccountRights
GetSecurityDescriptorControl
CreateProcessAsUserW
DuplicateTokenEx
OpenServiceA
CloseEncryptedFileRaw
RegOpenKeyExA
GetAce
CryptExportKey
RegQueryInfoKeyW
RegisterServiceCtrlHandlerExA
GetSidLengthRequired
GetSecurityDescriptorOwner
IsValidSecurityDescriptor
LookupPrivilegeNameA
RegOpenKeyW
ImpersonateNamedPipeClient
GetEffectiveRightsFromAclA
SetServiceObjectSecurity
AddAce
SetThreadToken
LsaNtStatusToWinError
OpenSCManagerW
ChangeServiceConfig2W
CreateProcessAsUserA
CopySid
ImpersonateLoggedOnUser
CryptDestroyHash
RegEnumKeyExW
ReportEventW
DuplicateToken
OpenServiceW
LsaOpenPolicy
ReportEventA
LsaClose
RegCreateKeyExA
LsaFreeMemory
CryptDestroyKey
AdjustTokenPrivileges
CheckTokenMembership
BuildTrusteeWithSidW
CryptGetUserKey
RegFlushKey
SetSecurityDescriptorControl
RegisterServiceCtrlHandlerA
InitiateSystemShutdownExW
CryptSetProvParam
CryptCreateHash
ConvertSidToStringSidW
RegSetValueA
CryptDecrypt
LookupPrivilegeValueW
EqualPrefixSid
IsValidSid
RegUnLoadKeyA
ChangeServiceConfigA
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegCreateKeyW
GetUserNameW
CryptEnumProvidersW
StartServiceW
StartServiceCtrlDispatcherW
OpenEncryptedFileRawW
RegQueryValueW
ConvertStringSidToSidW
GetUserNameA
SetSecurityDescriptorDacl
SetServiceStatus
GetSecurityDescriptorSacl
QueryServiceConfigA
RegSaveKeyA
LsaRemoveAccountRights
RegSetValueExW
LookupAccountSidA
GetSidSubAuthorityCount
BuildExplicitAccessWithNameW
GetKernelObjectSecurity
CryptGenRandom
EnumServicesStatusA
RegEnumKeyA
CryptGetKeyParam
CryptEncrypt
CloseServiceHandle
RegOpenKeyA
RegisterEventSourceW
AddAccessAllowedAce
CryptDeriveKey
SetSecurityInfo
MakeAbsoluteSD
SetFileSecurityW
RegDeleteKeyW
LookupAccountNameA
RegConnectRegistryA
SetEntriesInAclW
ChangeServiceConfigW
GetNamedSecurityInfoW
RegQueryValueExA
RegQueryValueA
ReadEncryptedFileRaw
RegDeleteKeyA
RegQueryInfoKeyA
SetSecurityDescriptorGroup
CreateServiceW
RegLoadKeyW
GetSidIdentifierAuthority
DeleteService
LsaLookupSids
LockServiceDatabase
GetSecurityDescriptorGroup
RegEnumValueW
RegSetValueW
StartServiceCtrlDispatcherA
InitializeSecurityDescriptor
EnumDependentServicesW
CryptVerifySignatureA
RegCreateKeyA
QueryServiceConfigW
RegEnumKeyW
RegConnectRegistryW
RegEnumKeyExA
StartServiceA
ConvertStringSidToSidA
QueryServiceStatus
CryptAcquireContextW
DeregisterEventSource
comctl32
ImageList_Draw
CreatePropertySheetPageW
InitializeFlatSB
DrawStatusTextW
ImageList_GetBkColor
ImageList_GetImageCount
ImageList_GetIcon
ImageList_Destroy
MakeDragList
ImageList_AddIcon
ImageList_DragEnter
ImageList_DrawEx
PropertySheetA
CreateToolbarEx
ImageList_ReplaceIcon
CreateStatusWindowW
ImageList_SetDragCursorImage
FlatSB_ShowScrollBar
ImageList_DragLeave
ImageList_Write
ImageList_LoadImageW
ImageList_GetIconSize
ImageList_Create
PropertySheetW
ImageList_SetIconSize
InitCommonControlsEx
CreateUpDownControl
ImageList_Merge
ImageList_Add
ImageList_SetFlags
ImageList_Duplicate
_TrackMouseEvent
ImageList_SetBkColor
FlatSB_EnableScrollBar
ImageList_GetImageInfo
ImageList_Replace
ImageList_DrawIndirect
ImageList_Read
ImageList_Copy
ord17
DestroyPropertySheetPage
ImageList_EndDrag
ImageList_LoadImage
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_AddMasked
ImageList_SetImageCount
ImageList_GetDragImage
ImageList_Remove
ImageList_LoadImageA
ImageList_DragMove
ImageList_SetOverlayImage
CreatePropertySheetPageA
kernel32
CopyFileA
Heap32ListNext
SuspendThread
IsBadWritePtr
GetSystemDirectoryA
GetSystemTime
EnumUILanguagesW
CloseHandle
AllocConsole
lstrcmpA
GetProcessTimes
ResetEvent
GetDiskFreeSpaceExW
SetFilePointerEx
CreatePipe
Process32First
LeaveCriticalSection
BeginUpdateResourceW
GetCommConfig
CreateDirectoryW
FindResourceExA
CreateMailslotA
GlobalSize
MulDiv
SetCurrentDirectoryA
LocalFileTimeToFileTime
FileTimeToDosDateTime
LocalLock
GetUserDefaultUILanguage
GetSystemDefaultLCID
WaitForMultipleObjectsEx
lstrcmpW
WaitNamedPipeW
SetEvent
DeleteAtom
WaitForSingleObjectEx
SetNamedPipeHandleState
CopyFileW
OpenEventW
OpenFile
GetTimeZoneInformation
SetLastError
DisableThreadLibraryCalls
SearchPathW
HeapDestroy
CompareStringW
WriteProfileStringA
VirtualFree
GetDiskFreeSpaceW
Module32Next
SetUnhandledExceptionFilter
SetFileTime
OutputDebugStringA
TlsAlloc
SetConsoleMode
GetPrivateProfileIntW
FlushFileBuffers
GlobalAddAtomW
UnlockFileEx
CreateToolhelp32Snapshot
FindResourceW
SetMailslotInfo
MapViewOfFileEx
GetFileInformationByHandle
EscapeCommFunction
TlsSetValue
HeapValidate
DeviceIoControl
_hread
GetProfileStringA
GetExitCodeProcess
GetQueuedCompletionStatus
GetStringTypeExA
GetTempFileNameA
GetCurrentThread
GetSystemDefaultLangID
GetConsoleCP
SetProcessShutdownParameters
EnumResourceNamesA
VerSetConditionMask
OpenSemaphoreA
LockFileEx
GetCurrentDirectoryA
WaitForMultipleObjects
OpenThread
CreateFileMappingW
WaitForSingleObject
WaitForDebugEvent
GetTempPathA
ResumeThread
GetCurrentDirectoryW
FileTimeToSystemTime
MultiByteToWideChar
VerifyVersionInfoW
MoveFileA
GetTapeParameters
SetTapePosition
GetTickCount
FindResourceA
SetConsoleCtrlHandler
CreateFileA
SetThreadAffinityMask
ReadProcessMemory
CreateThread
SetThreadExecutionState
DeleteFileA
ReadFile
CreateMutexW
SetErrorMode
GetFileSizeEx
WritePrivateProfileStringA
GetSystemWindowsDirectoryA
VirtualAllocEx
SetupComm
SetThreadContext
SetTimeZoneInformation
lstrcpyW
CreateProcessA
CreateProcessW
CreateMutexA
LCMapStringW
GetStringTypeW
BuildCommDCBA
GetFileAttributesExW
GlobalMemoryStatusEx
HeapCompact
GetProcessHeaps
GetVolumeInformationA
GetEnvironmentVariableA
IsBadCodePtr
FindFirstChangeNotificationA
GetVersion
HeapCreate
Heap32Next
CreateDirectoryExA
CancelIo
FatalAppExitA
MoveFileW
ProcessIdToSessionId
EnumCalendarInfoA
CompareFileTime
GetProcAddress
RtlFillMemory
GetPrivateProfileStringW
VerifyVersionInfoA
VirtualFreeEx
GetProfileIntW
GetComputerNameExA
CreateNamedPipeA
GetFullPathNameW
UnmapViewOfFile
GetCommTimeouts
GetThreadLocale
_lread
SetFileAttributesA
LocalUnlock
GetStartupInfoW
FreeLibrary
EnumResourceLanguagesA
GlobalMemoryStatus
GetVolumeNameForVolumeMountPointA
FreeConsole
InitializeCriticalSection
GetShortPathNameA
SetThreadLocale
QueryDosDeviceA
GetDateFormatW
SetVolumeMountPointA
GetCurrencyFormatA
CreateFileW
VirtualQuery
GlobalLock
PostQueuedCompletionStatus
GetDiskFreeSpaceA
CreateEventA
SleepEx
EndUpdateResourceW
GlobalUnlock
FindNextFileW
SetCommBreak
UnlockFile
MoveFileExW
GetCurrentProcess
LocalCompact
WritePrivateProfileStructW
QueueUserAPC
GetCommandLineA
SystemTimeToTzSpecificLocalTime
SetHandleCount
IsValidCodePage
DebugActiveProcess
HeapReAlloc
FindClose
FindResourceExW
FindFirstVolumeW
GetVersionExW
GetProcessWorkingSetSize
lstrcatA
GetProfileStringW
Beep
Toolhelp32ReadProcessMemory
GetLastError
TransmitCommChar
ExitProcess
LockFile
SetConsoleTitleW
IsBadStringPtrW
GetCommandLineW
FreeEnvironmentStringsW
RemoveDirectoryW
LoadLibraryExA
GetTempPathW
GetProcessVersion
SetCommMask
GlobalDeleteAtom
GetDiskFreeSpaceExA
Thread32Next
FlushViewOfFile
CompareStringA
GetFileAttributesW
InterlockedIncrement
GetModuleHandleA
CommConfigDialogW
GetLocaleInfoA
Heap32ListFirst
WriteConsoleW
_hwrite
GlobalFindAtomW
GetLocalTime
LocalSize
GetFileAttributesA
FindFirstChangeNotificationW
lstrcpynA
ClearCommBreak
VirtualProtectEx
LockResource
IsDebuggerPresent
GetEnvironmentVariableW
SetVolumeLabelA
UpdateResourceA
SizeofResource
GetLogicalDrives
GetFileAttributesExA
VirtualAlloc
AddAtomW
RaiseException
SetEndOfFile
PulseEvent
HeapAlloc
SetVolumeLabelW
ReadConsoleInputA
LoadLibraryExW
IsValidLocale
FormatMessageA
VirtualProtect
EnumCalendarInfoW
GetVolumePathNameA
GetModuleFileNameA
GetDriveTypeA
QueueUserWorkItem
LocalHandle
GetProfileIntA
CreateIoCompletionPort
GetFileSize
GetProcessAffinityMask
GetCPInfoExA
EnumSystemLocalesA
LocalReAlloc
GetBinaryTypeA
GetFileType
DebugBreak
SetPriorityClass
DeleteVolumeMountPointA
ConvertDefaultLocale
WriteConsoleA
Module32FirstW
CopyFileExW
CreateSemaphoreA
GlobalFree
SetEnvironmentVariableW
GlobalHandle
GetLongPathNameW
IsBadStringPtrA
SetSystemTime
CreateFileMappingA
BackupWrite
LCMapStringA
Sleep
ExitThread
FreeEnvironmentStringsA
UnhandledExceptionFilter
DeleteCriticalSection
OutputDebugStringW
InterlockedCompareExchange
SystemTimeToFileTime
GetCommModemStatus
SetCurrentDirectoryW
WriteProfileStringW
WriteFileEx
CreateDirectoryA
EnumCalendarInfoExW
GetSystemTimeAsFileTime
WaitNamedPipeA
SetThreadPriority
GetComputerNameA
lstrcmpiW
_llseek
GetLogicalDriveStringsA
GetTempFileNameW
FindFirstFileW
SetHandleInformation
SetFileAttributesW
GetPrivateProfileSectionNamesA
RemoveDirectoryA
MapViewOfFile
GetModuleFileNameW
CreateSemaphoreW
GlobalGetAtomNameA
GetSystemDirectoryW
GetCurrentProcessId
WritePrivateProfileSectionA
GetUserDefaultLangID
GetConsoleScreenBufferInfo
OpenEventA
WideCharToMultiByte
WriteConsoleOutputW
FileTimeToLocalFileTime
GlobalAddAtomA
GetCurrentThreadId
lstrcpyA
GetStringTypeExW
WritePrivateProfileSectionW
OpenFileMappingA
DuplicateHandle
Module32First
FindNextFileA
GetNumberFormatA
GetSystemTimeAdjustment
WriteProcessMemory
InterlockedDecrement
WriteFile
LoadLibraryW
GlobalReAlloc
GetVolumePathNameW
GetPrivateProfileStringA
OpenProcess
GetShortPathNameW
GetPrivateProfileSectionA
GetOEMCP
lstrcatW
SetFilePointer
TryEnterCriticalSection
CreateNamedPipeW
GetConsoleMode
VirtualLock
CreateEventW
DisconnectNamedPipe
EnumResourceLanguagesW
GlobalFindAtomA
GetThreadContext
TerminateThread
EnumResourceNamesW
SwitchToFiber
DeleteVolumeMountPointW
IsProcessorFeaturePresent
SetLocalTime
BackupSeek
HeapSize
GetDateFormatA
IsBadReadPtr
GetDriveTypeW
_lopen
InitializeCriticalSectionAndSpinCount
TlsFree
LocalFree
GetComputerNameW
_lclose
WinExec
FindNextVolumeW
GetOverlappedResult
IsDBCSLeadByte
GetExitCodeThread
SetProcessPriorityBoost
Process32FirstW
LoadResource
ReadDirectoryChangesW
Process32Next
GetMailslotInfo
lstrlenA
CreateWaitableTimerA
CopyFileExA
GetCommProperties
GetCPInfo
DeleteFiber
PurgeComm
OpenFileMappingW
OpenMutexA
ReleaseMutex
GetCompressedFileSizeW
FindFirstFileExW
GetCommState
Thread32First
FindFirstFileA
GlobalFlags
OpenMutexW
ClearCommError
VirtualUnlock
PeekNamedPipe
FreeResource
WritePrivateProfileStructA
VirtualQueryEx
ConvertThreadToFiber
HeapFree
GetSystemInfo
lstrlenW
lstrcmpiA
GetSystemPowerStatus
MoveFileExA
lstrcpynW
DeleteFileW
ExpandEnvironmentStringsW
GetPrivateProfileStructA
GetThreadTimes
ContinueDebugEvent
SetConsoleCursorPosition
FindVolumeClose
GetPriorityClass
GetEnvironmentStrings
SetCommTimeouts
SetProcessWorkingSetSize
SearchPathA
AreFileApisANSI
FindCloseChangeNotification
GetStdHandle
_lwrite
GetFullPathNameA
GetPrivateProfileIntA
CreateWaitableTimerW
LocalAlloc
GetStringTypeA
QueryPerformanceFrequency
IsDBCSLeadByteEx
Module32NextW
_lcreat
GetLongPathNameA
GlobalGetAtomNameW
RtlUnwind
GetFileTime
SwitchToThread
EnumResourceTypesA
EnumLanguageGroupLocalesW
BeginUpdateResourceA
FlushInstructionCache
GetLocaleInfoW
GetTimeFormatA
QueryDosDeviceW
GetConsoleOutputCP
GetUserDefaultLCID
GetWindowsDirectoryA
SetCommState
SetProcessAffinityMask
SetStdHandle
FindNextChangeNotification
EnterCriticalSection
GetNumberFormatW
GetEnvironmentStringsW
GetStartupInfoA
GetAtomNameA
GetThreadPriority
QueryPerformanceCounter
FormatMessageW
FindAtomW
GetCommMask
InterlockedExchange
UpdateResourceW
ReleaseSemaphore
GetLogicalDriveStringsW
WritePrivateProfileStringW
GetComputerNameExW
SetEnvironmentVariableA
GetHandleInformation
GetWindowsDirectoryW
GetProcessHeap
InterlockedExchangeAdd
DosDateTimeToFileTime
GetACP
OpenSemaphoreW
GetVolumeNameForVolumeMountPointW
GetVolumeInformationW
GlobalAlloc
SetWaitableTimer
ConnectNamedPipe
SetCommConfig
LoadLibraryA
EndUpdateResourceA
CreateFiber
GetProfileSectionA
WaitCommEvent
TerminateProcess
GetModuleHandleW
gdi32
CreateHalftonePalette
SetGraphicsMode
CreateICA
GetTextExtentExPointA
CreateDIBPatternBrushPt
GetCharABCWidthsFloatA
SelectPalette
ModifyWorldTransform
SelectClipRgn
PlgBlt
SetPixel
CreateDIBSection
SetStretchBltMode
SetROP2
PlayMetaFileRecord
GetObjectW
GetKerningPairsA
GetBitmapDimensionEx
GetTextCharacterExtra
GetEnhMetaFileA
SetBrushOrgEx
GetTextMetricsW
PlayEnhMetaFile
GetPaletteEntries
GetWindowExtEx
GetFontLanguageInfo
SetICMProfileA
DeleteEnhMetaFile
CopyEnhMetaFileA
Arc
CreateFontW
CreateFontIndirectA
WidenPath
StretchDIBits
ExtFloodFill
GetTextExtentPoint32W
TranslateCharsetInfo
GetTextMetricsA
CloseFigure
GetTextColor
GetEnhMetaFileW
GetOutlineTextMetricsA
SetTextAlign
CreateICW
PlayEnhMetaFileRecord
AnimatePalette
SetBkColor
ExcludeClipRect
FillPath
GetNearestColor
GetMetaFileBitsEx
CreateDCW
LPtoDP
SetWindowExtEx
RestoreDC
GetViewportOrgEx
GetTextExtentPoint32A
SetArcDirection
CreatePolyPolygonRgn
EndPath
PatBlt
GetPixelFormat
GdiFlush
SetTextColor
GetArcDirection
SetPaletteEntries
Polyline
GetTextCharset
CreateDiscardableBitmap
CreateBrushIndirect
EqualRgn
SelectObject
GetCharABCWidthsA
GetWindowOrgEx
StartPage
FrameRgn
GetEnhMetaFileBits
GetEnhMetaFilePaletteEntries
CreateEllipticRgnIndirect
TextOutA
AddFontResourceA
SetWorldTransform
MaskBlt
ScaleWindowExtEx
RoundRect
RemoveFontResourceA
SetDIBColorTable
DescribePixelFormat
GetDeviceCaps
CreateDCA
FloodFill
OffsetWindowOrgEx
PathToRegion
SetBoundsRect
SetMiterLimit
GetCharABCWidthsW
SetDCPenColor
CreatePenIndirect
CreateHatchBrush
GetBkColor
SetPixelFormat
GetViewportExtEx
CloseMetaFile
SetICMMode
GetStretchBltMode
CreateRectRgnIndirect
SetDCBrushColor
Ellipse
SetBitmapBits
SetLayout
SetPolyFillMode
GetPixel
CombineRgn
PolyDraw
GetTextExtentPointW
SetWinMetaFileBits
ExtCreatePen
GetCharWidthW
DPtoLP
OffsetClipRgn
RealizePalette
BeginPath
AngleArc
ExtEscape
GetMetaFileA
GetObjectType
ExtCreateRegion
GetWinMetaFileBits
GetMapMode
SaveDC
Polygon
LineDDA
BitBlt
SwapBuffers
SelectClipPath
GetCharABCWidthsFloatW
EnumObjects
StrokeAndFillPath
GetCharacterPlacementW
CreateMetaFileW
CreateRectRgn
GetClipBox
CreateEllipticRgn
GetCharWidthFloatA
Rectangle
Escape
GetLayout
ScaleViewportExtEx
GetBrushOrgEx
PolyBezier
SetRectRgn
EnumFontFamiliesExW
GetEnhMetaFileHeader
CreateFontA
InvertRgn
SetViewportOrgEx
SetWindowOrgEx
StartDocA
DrawEscape
EnumFontFamiliesA
GetROP2
GetBkMode
GetNearestPaletteIndex
GetRegionData
Pie
GetBitmapBits
CreatePatternBrush
CreateBitmap
SetTextJustification
ExtTextOutW
SetAbortProc
ChoosePixelFormat
ArcTo
UpdateColors
StretchBlt
CreateFontIndirectW
GetTextAlign
EnumFontsW
CreatePalette
StrokePath
SetViewportExtEx
GetColorAdjustment
GetCharWidth32A
TextOutW
GetTextCharsetInfo
CopyMetaFileA
GetRgnBox
CopyMetaFileW
DeleteDC
CreateSolidBrush
EnumFontsA
GetPath
GetCharWidthA
EnumFontFamiliesW
PolyPolygon
OffsetViewportOrgEx
SetMapMode
GetBoundsRect
SetBitmapDimensionEx
CopyEnhMetaFileW
CloseEnhMetaFile
GetTextFaceA
GetGraphicsMode
CreatePolygonRgn
IntersectClipRect
ExtTextOutA
UnrealizeObject
CreateBitmapIndirect
SetDIBitsToDevice
GetGlyphOutlineW
ResizePalette
CreatePen
LineTo
GetMetaRgn
GetDIBColorTable
FlattenPath
GetCurrentObject
GetAspectRatioFilterEx
GetPolyFillMode
EnumFontFamiliesExA
PtInRegion
PaintRgn
EndPage
GdiComment
GetTextExtentPointA
SetTextCharacterExtra
GetCharWidth32W
StartDocW
GetSystemPaletteEntries
CreateEnhMetaFileW
SetPixelV
CreateMetaFileA
MoveToEx
SetMapperFlags
Chord
DeleteObject
GetTextFaceW
SetBkMode
OffsetRgn
GetObjectA
SetMetaFileBitsEx
EndDoc
EnumEnhMetaFile
SetColorAdjustment
ResetDCW
AbortPath
PolylineTo
CreateRoundRectRgn
FillRgn
ResetDCA
GetDIBits
SetDIBits
ExtSelectClipRgn
EnumMetaFile
CreateCompatibleBitmap
CreateDIBitmap
GetGlyphOutlineA
GetFontData
GetDCOrgEx
PolyBezierTo
AbortDoc
GetTextExtentExPointW
CreateEnhMetaFileA
SetEnhMetaFileBits
GetStockObject
GetCurrentPositionEx
RectInRegion
GetClipRgn
PtVisible
RectVisible
PolyPolyline
DeleteMetaFile
PlayMetaFile
GetMiterLimit
CreateCompatibleDC
shell32
DragQueryFileW
SHGetPathFromIDListW
DragAcceptFiles
ord155
SHBrowseForFolderA
SHAppBarMessage
SHEmptyRecycleBinA
SHBrowseForFolderW
SHBindToParent
DragFinish
SHGetMalloc
SHGetDataFromIDListA
SHGetSpecialFolderLocation
SHChangeNotify
ShellExecuteExW
SHGetFileInfoA
SHGetFolderPathA
FindExecutableW
FindExecutableA
SHGetFileInfoW
Shell_NotifyIconW
SHFileOperationA
ShellExecuteW
ExtractIconExA
DragQueryFileA
ShellExecuteExA
SHFileOperationW
Shell_NotifyIconA
SHGetDesktopFolder
SHGetPathFromIDListA
CommandLineToArgvW
DuplicateIcon
SHCreateDirectoryExA
SHGetFolderPathW
SHGetDataFromIDListW
SHGetInstanceExplorer
ExtractIconExW
DragQueryPoint
SHGetFolderLocation
SHGetSpecialFolderPathA
SHGetSpecialFolderPathW
ShellExecuteA
ExtractIconW
ExtractIconA
DoEnvironmentSubstW
SHCreateDirectoryExW
SHAddToRecentDocs
SHFreeNameMappings
user32
MessageBoxA
DrawStateW
WindowFromDC
SetLayeredWindowAttributes
GetClassInfoExA
GetSystemMetrics
SetCursorPos
AdjustWindowRect
SetPropW
TranslateMDISysAccel
DlgDirListComboBoxW
GetCapture
GetWindowModuleFileNameW
DrawFrameControl
InsertMenuA
ActivateKeyboardLayout
CreateWindowExW
MessageBoxExA
EnumDisplaySettingsA
GetWindowTextA
LockSetForegroundWindow
DdeFreeDataHandle
GetCursorPos
SetMenuInfo
SendNotifyMessageW
DrawFocusRect
ScreenToClient
OpenIcon
FrameRect
UpdateWindow
wsprintfA
RegisterWindowMessageW
DialogBoxParamW
PtInRect
SetCursor
IsDlgButtonChecked
SetDlgItemTextA
GetQueueStatus
ChildWindowFromPointEx
MapVirtualKeyW
FlashWindowEx
CharToOemBuffA
PostThreadMessageW
SendDlgItemMessageW
LoadIconA
GetKeyNameTextA
CopyAcceleratorTableW
CharNextW
ReplyMessage
PostThreadMessageA
ValidateRect
GetMenuItemID
InSendMessage
GetUserObjectInformationW
DialogBoxIndirectParamW
IsCharUpperA
GetMessageTime
GetClipboardFormatNameW
ShowScrollBar
IsCharLowerW
ShowWindowAsync
GetMenuItemCount
SetWindowLongA
GetWindowTextW
MsgWaitForMultipleObjects
CreateMDIWindowA
SendNotifyMessageA
SendInput
InvalidateRect
LookupIconIdFromDirectory
CloseDesktop
LoadBitmapW
TrackMouseEvent
ClientToScreen
DestroyCursor
CloseClipboard
RegisterClassW
MapVirtualKeyA
SetScrollInfo
ScrollDC
DialogBoxParamA
DlgDirListA
IsCharLowerA
GetDC
DefWindowProcW
RegisterDeviceNotificationW
keybd_event
SetScrollRange
IsDialogMessageA
IntersectRect
SetThreadDesktop
NotifyWinEvent
EndPaint
SetWindowsHookExW
GetClassNameW
GetMenuContextHelpId
IsWindowUnicode
CharUpperBuffA
CopyAcceleratorTableA
FreeDDElParam
WaitForInputIdle
GetForegroundWindow
FindWindowA
OpenWindowStationA
DeleteMenu
DdeQueryStringA
IsMenu
DestroyMenu
GetKeyboardLayoutNameA
SendDlgItemMessageA
GetSysColor
DestroyCaret
ChangeDisplaySettingsA
CreateIconFromResource
OemToCharBuffA
PostMessageA
GetFocus
LoadStringW
GetWindowInfo
GetDlgCtrlID
GetWindowLongW
DrawTextA
CheckRadioButton
SendMessageW
MapWindowPoints
GetWindowLongA
UnhookWinEvent
CreateMenu
GetScrollRange
SetActiveWindow
GetClassInfoExW
ValidateRgn
InvertRect
DrawIcon
GetComboBoxInfo
DdeUninitialize
SetCapture
InvalidateRgn
OpenWindowStationW
WinHelpW
TrackPopupMenuEx
GetCursorInfo
LoadBitmapA
LoadAcceleratorsW
CharToOemA
DrawEdge
SetWindowTextA
DdeAccessData
RedrawWindow
UnregisterClassA
PeekMessageA
GetThreadDesktop
LoadCursorFromFileA
GrayStringA
SetClassLongA
AdjustWindowRectEx
SetMessageExtraInfo
GetDesktopWindow
GetMessagePos
SetWindowPos
CallNextHookEx
SubtractRect
DefFrameProcA
GetMenuInfo
GetTitleBarInfo
ScrollWindowEx
DdeClientTransaction
VkKeyScanExA
DdeGetData
GetMenuBarInfo
GetKeyNameTextW
MessageBoxIndirectA
LoadStringA
ModifyMenuW
BringWindowToTop
ShowOwnedPopups
GetCaretPos
GetMenuDefaultItem
ChangeClipboardChain
DrawIconEx
CascadeWindows
GetClipboardViewer
MenuItemFromPoint
DispatchMessageW
wvsprintfA
GetTabbedTextExtentA
SetScrollPos
SystemParametersInfoW
LoadIconW
GetLastInputInfo
ReleaseDC
SetWindowTextW
DialogBoxIndirectParamA
DefMDIChildProcA
SetWindowContextHelpId
SetDlgItemInt
SetMenuItemInfoA
RealChildWindowFromPoint
LoadAcceleratorsA
DeferWindowPos
TileChildWindows
GetMenuItemInfoW
GetUpdateRect
CharUpperW
LoadMenuA
LookupIconIdFromDirectoryEx
GetMenuStringW
PostQuitMessage
ArrangeIconicWindows
IsWindowVisible
GetMonitorInfoW
EndDeferWindowPos
KillTimer
ToAscii
CreateDesktopW
OpenClipboard
IsZoomed
GetClassLongW
OemToCharA
RegisterHotKey
GetClientRect
GetSubMenu
GetMenuState
MapVirtualKeyExW
GetNextDlgGroupItem
ReleaseCapture
SetMenuItemBitmaps
SetUserObjectSecurity
DdeCreateStringHandleW
ChildWindowFromPoint
MonitorFromWindow
AppendMenuA
VkKeyScanW
GetScrollBarInfo
GetKeyboardLayout
CloseWindow
CharLowerBuffA
GetWindowDC
GetPropA
SetClipboardViewer
SetTimer
InsertMenuItemW
GetDlgItemInt
DdeDisconnect
MapDialogRect
LoadKeyboardLayoutA
GetAsyncKeyState
GetLastActivePopup
EndDialog
GetUserObjectSecurity
EnableScrollBar
GetSystemMenu
EnumThreadWindows
CharNextA
DdeGetLastError
GetDlgItemTextW
DlgDirSelectExA
DispatchMessageA
CreateIcon
SendMessageTimeoutA
GetKeyState
UnionRect
GetCursor
GetWindowContextHelpId
GetOpenClipboardWindow
CharUpperA
GetWindowPlacement
SetDlgItemTextW
ChangeDisplaySettingsW
SetDoubleClickTime
GetWindow
CharLowerBuffW
GetClassLongA
ReuseDDElParam
LoadCursorA
IsWindow
DrawCaption
EnumClipboardFormats
CountClipboardFormats
DefWindowProcA
DefDlgProcA
GetMessageExtraInfo
TabbedTextOutW
AnimateWindow
MessageBeep
GetInputState
MonitorFromRect
EnumDisplayMonitors
CreateCursor
GetMenuStringA
SetCaretPos
IsDialogMessageW
SendMessageTimeoutW
GetProcessWindowStation
FlashWindow
MsgWaitForMultipleObjectsEx
CallWindowProcW
TranslateAcceleratorW
GetWindowTextLengthW
IsClipboardFormatAvailable
DrawTextExA
CharUpperBuffW
GetClipboardData
CheckMenuItem
DrawAnimatedRects
OpenInputDesktop
ShowCursor
ClipCursor
SetWindowPlacement
CharLowerA
SetKeyboardState
CreateDialogParamW
DefMDIChildProcW
GetActiveWindow
GetWindowThreadProcessId
SetClipboardData
SetWindowRgn
RegisterClipboardFormatA
ShowWindow
GetMessageW
PeekMessageW
DrawMenuBar
SetCaretBlinkTime
GetClassWord
MapVirtualKeyExA
GetClipboardOwner
SetForegroundWindow
CloseWindowStation
DlgDirSelectComboBoxExA
AttachThreadInput
SendMessageA
FindWindowW
DdeFreeStringHandle
BeginPaint
DdeQueryStringW
DefFrameProcW
GetMonitorInfoA
GetGUIThreadInfo
FillRect
WinHelpA
SetMenuItemInfoW
EmptyClipboard
PackDDElParam
WindowFromPoint
CreateDialogIndirectParamA
GetWindowWord
GetUserObjectInformationA
ModifyMenuA
InsertMenuItemA
IsCharAlphaNumericA
ToUnicodeEx
CallMsgFilterA
DdePostAdvise
wsprintfW
LoadMenuIndirectA
DrawStateA
EnableWindow
RemovePropW
ExitWindowsEx
RegisterClassExA
CallWindowProcA
AllowSetForegroundWindow
MoveWindow
HiliteMenuItem
ScrollWindow
AppendMenuW
SetProcessWindowStation
MonitorFromPoint
GetWindowRgn
LoadMenuIndirectW
UnregisterClassW
DdeCreateStringHandleA
EnumWindows
CreateIconIndirect
GetClipCursor
GetMenu
wvsprintfW
GetDCEx
CreateCaret
IsChild
GetNextDlgTabItem
OpenDesktopW
EnumDisplaySettingsW
LoadMenuW
GetDlgItem
GetMenuItemRect
DlgDirListComboBoxA
CreatePopupMenu
GetMessageA
GetSysColorBrush
ExcludeUpdateRgn
DestroyWindow
GetClassInfoW
CreateAcceleratorTableA
DdeConnect
EnumChildWindows
InsertMenuW
DdeUnaccessData
CheckDlgButton
DdeInitializeW
EqualRect
LockWindowUpdate
PostMessageW
TranslateMessage
SetWindowsHookExA
CharPrevA
RemovePropA
GetScrollPos
mouse_event
GetIconInfo
GrayStringW
GetParent
DestroyAcceleratorTable
SetMenuContextHelpId
CopyImage
GetWindowRect
CreateAcceleratorTableW
WaitMessage
RemoveMenu
GetScrollInfo
GetDlgItemTextA
SetRect
InflateRect
GetClassNameA
LoadCursorW
ToAsciiEx
GetAncestor
GetCaretBlinkTime
GetKeyboardLayoutList
SwitchDesktop
OffsetRect
TileWindows
LoadImageA
SetFocus
RegisterClassA
SetRectEmpty
SetWindowLongW
HideCaret
IsIconic
EnableMenuItem
GetMenuItemInfoA
DragDetect
SetParent
DdeCreateDataHandle
TabbedTextOutA
TrackPopupMenu
GetClassInfoA
CopyRect
CreateWindowExA
ToUnicode
SetMenu
CreateMDIWindowW
EnumDesktopWindows
UnregisterDeviceNotification
CharLowerW
ShowCaret
CheckMenuRadioItem
GetKeyboardState
CreateDialogParamA
VkKeyScanA
UnhookWindowsHookEx
GetClipboardFormatNameA
GetMenuCheckMarkDimensions
TranslateAcceleratorA
IsRectEmpty
IsCharAlphaA
CreateIconFromResourceEx
MessageBoxW
GetTopWindow
DrawTextW
IsDialogMessage
GetUpdateRgn
FindWindowExA
LoadCursorFromFileW
GetPropW
CreateDialogIndirectParamW
UnregisterHotKey
LoadImageW
OpenDesktopA
SetMenuDefaultItem
SwapMouseButton
IsWindowEnabled
SystemParametersInfoA
RegisterClipboardFormatW
DdeNameService
SetPropA
GetDialogBaseUnits
CopyIcon
GetDoubleClickTime
UnpackDDElParam
IsCharAlphaNumericW
DestroyIcon
DrawTextExW
GetWindowTextLengthA
FindWindowExW
SetClassLongW
RegisterWindowMessageA
BroadcastSystemMessage
BeginDeferWindowPos
DdeInitializeA
Sections
.text Size: 64KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 108KB - Virtual size: 104KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 92KB - Virtual size: 116KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 124KB - Virtual size: 121KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ