Static task
static1
Behavioral task
behavioral1
Sample
1b571ec6fd664a422ea1ddf57d18b28e3ea57b05aba1ab4e5d635cdd3260b489.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
1b571ec6fd664a422ea1ddf57d18b28e3ea57b05aba1ab4e5d635cdd3260b489.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
1b571ec6fd664a422ea1ddf57d18b28e3ea57b05aba1ab4e5d635cdd3260b489
-
Size
344KB
-
MD5
78f7e6e0c390bfa4241067ad8fe7ea3d
-
SHA1
3f25d39f70c759f98b50e526d708f25b15d82ba7
-
SHA256
1b571ec6fd664a422ea1ddf57d18b28e3ea57b05aba1ab4e5d635cdd3260b489
-
SHA512
949fba862fd2a2976ef6044773421dfc42c0e9ac2325c2ae9f7a5d13da57d38342ad70d91c3fe94b39107533935fdc7ddb2fcabe48cc3768a1e2c1f9852bd1a7
-
SSDEEP
6144:txwdVsraiTkQCtUXPrWnzARqCm3ZdT8FeHABQJWle20s47TM:t2vsraiIHnzvCSfYFOvc47TM
Malware Config
Signatures
Files
-
1b571ec6fd664a422ea1ddf57d18b28e3ea57b05aba1ab4e5d635cdd3260b489.exe windows x86
4b654f8f2f1ce2c9980ee79712e6708b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
GetBitmapBits
SetMetaFileBitsEx
GetOutlineTextMetricsA
ExcludeClipRect
GetDCOrgEx
StrokeAndFillPath
SwapBuffers
SetICMProfileA
GetGlyphOutlineW
CreatePenIndirect
CreateCompatibleBitmap
EndPage
ArcTo
GetObjectType
SetAbortProc
CreateSolidBrush
GetSystemPaletteEntries
SetWorldTransform
ResetDCA
GetCurrentPositionEx
StretchBlt
CreateMetaFileA
GetBitmapDimensionEx
GetTextAlign
GetFontLanguageInfo
GetEnhMetaFilePaletteEntries
GetBkColor
OffsetRgn
GetCurrentObject
CreateEllipticRgn
OffsetWindowOrgEx
CreateBitmapIndirect
EnumFontFamiliesW
SetWindowOrgEx
PlayEnhMetaFile
GetEnhMetaFileW
GetClipBox
SelectClipPath
GetTextColor
GetWindowExtEx
GetArcDirection
MoveToEx
GetPath
SetBkColor
GetTextExtentExPointA
GetDIBColorTable
StrokePath
StretchDIBits
PtInRegion
ExtTextOutA
Chord
SetBitmapDimensionEx
GetColorAdjustment
RestoreDC
GetPixel
GetTextCharacterExtra
SetDCBrushColor
GetCharWidth32W
StartDocW
GetCharWidthA
CopyEnhMetaFileW
DeleteDC
SetDIBitsToDevice
SetStretchBltMode
EnumFontFamiliesExA
CopyMetaFileA
BitBlt
DescribePixelFormat
GetCharABCWidthsW
Polyline
ChoosePixelFormat
CreateBrushIndirect
GetGraphicsMode
GetTextExtentPointA
SetLayout
LineDDA
DrawEscape
CloseMetaFile
SetBrushOrgEx
GetEnhMetaFileA
FrameRgn
SetMapMode
GetGlyphOutlineA
AnimatePalette
GetCharABCWidthsFloatW
ResetDCW
GetDIBits
Pie
GetTextExtentPoint32A
GetROP2
SetColorAdjustment
Polygon
CreateEnhMetaFileA
GetPixelFormat
SetWinMetaFileBits
CreateMetaFileW
CombineRgn
GetCharacterPlacementW
EnumEnhMetaFile
PlayEnhMetaFileRecord
GetRgnBox
CreateICW
CreateDCA
GetTextMetricsA
GetBoundsRect
PaintRgn
GetMetaFileBitsEx
CloseFigure
SetTextAlign
GetCharWidthW
ExtCreatePen
RectInRegion
GdiComment
SetEnhMetaFileBits
CreateEnhMetaFileW
SetTextJustification
GetDeviceCaps
DeleteObject
PathToRegion
PolyBezierTo
GetMapMode
SetDIBits
RectVisible
SetPixelV
ModifyWorldTransform
SetTextColor
EnumFontsW
CreateFontA
CreateCompatibleDC
SetBitmapBits
GetCharABCWidthsA
EndDoc
GetMetaRgn
InvertRgn
EnumFontFamiliesExW
GetTextExtentExPointW
GetStockObject
ExtSelectClipRgn
AngleArc
SelectClipRgn
StartPage
PlayMetaFileRecord
DeleteMetaFile
GetCharABCWidthsFloatA
SelectObject
CreatePalette
GetFontData
SetViewportExtEx
SetBoundsRect
SelectPalette
ExtFloodFill
ResizePalette
TextOutA
GetTextFaceA
GetTextCharset
GetWindowOrgEx
EnumFontsA
CreateFontW
LineTo
GetTextExtentPoint32W
CreateDIBPatternBrushPt
RealizePalette
GetClipRgn
StartDocA
OffsetClipRgn
UpdateColors
PlgBlt
SetPixel
SetMapperFlags
GetEnhMetaFileBits
SetICMMode
CreateRectRgnIndirect
GetTextFaceW
CreateHalftonePalette
SaveDC
RemoveFontResourceA
EnumFontFamiliesA
SetArcDirection
TranslateCharsetInfo
CreateRectRgn
SetDIBColorTable
BeginPath
LPtoDP
SetWindowExtEx
PolyPolyline
OffsetViewportOrgEx
SetRectRgn
GetRegionData
EndPath
Arc
Escape
ExtTextOutW
EnumObjects
GetBkMode
CreateDiscardableBitmap
GdiFlush
FlattenPath
CreatePatternBrush
SetPixelFormat
GetObjectW
ScaleViewportExtEx
CreateFontIndirectW
CreateRoundRectRgn
GetViewportOrgEx
SetBkMode
CloseEnhMetaFile
PolyPolygon
GetLayout
CopyEnhMetaFileA
GetNearestColor
GetObjectA
EnumMetaFile
GetMetaFileA
GetCharWidthFloatA
GetWinMetaFileBits
CreateDIBSection
GetTextMetricsW
CreatePen
CreateDIBitmap
MaskBlt
RoundRect
AddFontResourceA
PolylineTo
WidenPath
PolyDraw
GetAspectRatioFilterEx
PtVisible
CreateBitmap
UnrealizeObject
GetStretchBltMode
CreateFontIndirectA
PolyBezier
GetTextCharsetInfo
GetViewportExtEx
DeleteEnhMetaFile
GetBrushOrgEx
SetMiterLimit
ScaleWindowExtEx
CopyMetaFileW
EqualRgn
GetPaletteEntries
AbortPath
SetPaletteEntries
IntersectClipRect
FillRgn
ExtEscape
PlayMetaFile
CreateEllipticRgnIndirect
TextOutW
SetDCPenColor
GetCharWidth32A
SetGraphicsMode
CreatePolyPolygonRgn
GetTextExtentPointW
CreateHatchBrush
FloodFill
FillPath
SetViewportOrgEx
PatBlt
CreatePolygonRgn
CreateDCW
ExtCreateRegion
GetNearestPaletteIndex
CreateICA
Rectangle
GetPolyFillMode
SetROP2
GetMiterLimit
AbortDoc
GetKerningPairsA
SetPolyFillMode
Ellipse
DPtoLP
GetEnhMetaFileHeader
SetTextCharacterExtra
comctl32
CreatePropertySheetPageA
ImageList_GetDragImage
ImageList_ReplaceIcon
ImageList_EndDrag
ImageList_SetBkColor
DestroyPropertySheetPage
ImageList_Write
ImageList_Replace
ImageList_AddMasked
CreateUpDownControl
CreatePropertySheetPageW
ImageList_DragEnter
ImageList_Create
ImageList_AddIcon
InitCommonControlsEx
MakeDragList
CreateStatusWindowW
ImageList_LoadImage
ImageList_GetImageCount
ImageList_GetIconSize
CreateToolbarEx
ImageList_GetBkColor
ImageList_DragShowNolock
ImageList_Copy
ImageList_BeginDrag
ImageList_SetFlags
ImageList_Merge
FlatSB_EnableScrollBar
ImageList_SetDragCursorImage
ImageList_LoadImageA
ImageList_DragLeave
ord17
DrawStatusTextW
ImageList_DrawIndirect
InitializeFlatSB
FlatSB_ShowScrollBar
ImageList_Draw
PropertySheetW
ImageList_Destroy
PropertySheetA
ImageList_Read
ImageList_DragMove
ImageList_GetImageInfo
ImageList_Remove
ImageList_SetIconSize
ImageList_Duplicate
ImageList_SetOverlayImage
_TrackMouseEvent
ImageList_DrawEx
ImageList_GetIcon
ImageList_LoadImageW
ImageList_Add
ImageList_SetImageCount
advapi32
DuplicateToken
RegOpenCurrentUser
LsaOpenPolicy
SetTokenInformation
QueryServiceLockStatusW
ImpersonateSelf
GetAce
DuplicateTokenEx
GetSidSubAuthorityCount
LookupPrivilegeValueA
LookupAccountSidA
InitiateSystemShutdownExW
AllocateAndInitializeSid
CheckTokenMembership
LsaClose
RegRestoreKeyW
LockServiceDatabase
OpenProcessToken
LookupPrivilegeValueW
CryptEnumProvidersW
ConvertSidToStringSidW
CryptEncrypt
RegOpenKeyExW
SetServiceObjectSecurity
RegGetKeySecurity
GetSecurityDescriptorSacl
InitiateSystemShutdownA
CreateServiceW
GetSecurityInfo
RegQueryValueExW
LsaNtStatusToWinError
RegCloseKey
IsValidAcl
RegCreateKeyExA
GetSecurityDescriptorOwner
BuildTrusteeWithSidW
RegConnectRegistryA
SetFileSecurityA
ChangeServiceConfig2W
DeregisterEventSource
GetSecurityDescriptorLength
GetSidLengthRequired
IsValidSecurityDescriptor
IsValidSid
RegConnectRegistryW
ReadEncryptedFileRaw
RegQueryInfoKeyW
ChangeServiceConfigA
RegRestoreKeyA
RegQueryValueExA
MakeAbsoluteSD
CopySid
OpenServiceW
CreateProcessAsUserW
LsaFreeMemory
InitializeAcl
SetEntriesInAclW
LsaAddAccountRights
SetSecurityInfo
InitializeSid
CryptDestroyHash
CreateProcessAsUserA
ConvertStringSidToSidW
RegOpenKeyW
CloseServiceHandle
CryptAcquireContextA
RegFlushKey
CryptGetHashParam
RegEnumKeyExW
SetFileSecurityW
QueryServiceConfigW
RegCreateKeyExW
ConvertStringSecurityDescriptorToSecurityDescriptorW
CryptDecrypt
GetUserNameW
CryptDeriveKey
AddAccessAllowedAce
RegisterServiceCtrlHandlerA
RegisterEventSourceW
ConvertSecurityDescriptorToStringSecurityDescriptorW
CryptGetKeyParam
UnlockServiceDatabase
GetEffectiveRightsFromAclA
GetSecurityDescriptorControl
EqualPrefixSid
ChangeServiceConfigW
RegEnumKeyA
DeleteService
CloseEncryptedFileRaw
CryptVerifySignatureA
SetNamedSecurityInfoA
CryptAcquireContextW
GetTokenInformation
LogonUserW
CreateWellKnownSid
LsaQueryInformationPolicy
CryptCreateHash
RegDisablePredefinedCache
GetNamedSecurityInfoW
ConvertStringSidToSidA
OpenThreadToken
RegSetKeySecurity
QueryServiceConfigA
RegQueryInfoKeyA
GetExplicitEntriesFromAclW
LogonUserA
ReportEventA
RegCreateKeyW
RegLoadKeyW
CryptGetUserKey
SetThreadToken
RegSaveKeyW
RegEnumValueW
RegisterEventSourceA
GetKernelObjectSecurity
RegUnLoadKeyA
RegQueryValueW
LookupPrivilegeNameA
CryptDestroyKey
CryptReleaseContext
AccessCheck
LsaRemoveAccountRights
FreeSid
OpenEncryptedFileRawW
RevertToSelf
CryptSetProvParam
GetFileSecurityW
RegSetValueA
RegUnLoadKeyW
SetSecurityDescriptorSacl
RegEnumKeyW
StartServiceW
SetServiceStatus
StartServiceCtrlDispatcherW
RegDeleteKeyA
SetSecurityDescriptorControl
SetSecurityDescriptorGroup
MapGenericMask
RegEnumValueA
GetUserNameA
AddAce
CreateServiceA
GetAclInformation
LookupAccountNameW
EncryptFileW
SetEntriesInAclA
SetSecurityDescriptorDacl
RegDeleteKeyW
LookupAccountNameA
EnumDependentServicesW
QueryServiceStatusEx
RegNotifyChangeKeyValue
LsaLookupNames
QueryServiceStatus
OpenSCManagerA
LsaLookupSids
GetNamedSecurityInfoA
StartServiceCtrlDispatcherA
AdjustTokenPrivileges
StartServiceA
DeleteAce
InitializeSecurityDescriptor
WriteEncryptedFileRaw
GetFileSecurityA
GetSecurityDescriptorGroup
RegDeleteValueW
RegSetValueExA
CryptGenKey
EqualSid
CryptHashData
OpenSCManagerW
ChangeServiceConfig2A
RegSaveKeyA
BuildExplicitAccessWithNameW
RegisterServiceCtrlHandlerW
RegisterServiceCtrlHandlerExA
OpenServiceA
GetSidIdentifierAuthority
RegQueryValueA
ImpersonateLoggedOnUser
LookupPrivilegeDisplayNameA
CryptExportKey
SetNamedSecurityInfoW
ImpersonateNamedPipeClient
BuildTrusteeWithNameW
RegCreateKeyA
CryptImportKey
RegOpenKeyA
ReportEventW
MakeSelfRelativeSD
RegOpenKeyExA
EnumServicesStatusA
GetSidSubAuthority
SetSecurityDescriptorOwner
LookupAccountSidW
GetSecurityDescriptorDacl
GetLengthSid
ControlService
RegSetValueW
CryptGenRandom
RegEnumKeyExA
RegSetValueExW
RegDeleteValueA
RegLoadKeyA
comdlg32
GetSaveFileNameW
FindTextW
PrintDlgA
ChooseColorA
CommDlgExtendedError
ReplaceTextW
PrintDlgExA
GetOpenFileNameA
ChooseFontW
ChooseColorW
GetFileTitleA
PageSetupDlgW
ReplaceTextA
ChooseFontA
GetFileTitleW
FindTextA
PrintDlgW
GetSaveFileNameA
GetOpenFileNameW
PageSetupDlgA
kernel32
GetCommMask
GetCurrentDirectoryW
GetCompressedFileSizeW
EnterCriticalSection
CreateDirectoryW
SetHandleInformation
ClearCommError
GetStdHandle
LoadResource
WriteProcessMemory
LockFile
LocalAlloc
WideCharToMultiByte
GetNumberFormatW
FlushInstructionCache
GetModuleHandleA
FindNextFileW
FindFirstFileW
lstrlenW
WritePrivateProfileSectionA
OpenProcess
VerifyVersionInfoA
FindFirstVolumeW
lstrlenA
HeapFree
BeginUpdateResourceA
Sleep
FindFirstFileExW
CreateMutexW
lstrcatW
VirtualQuery
GetCommState
SetThreadAffinityMask
GetProcessTimes
GetFileAttributesW
Process32NextW
GetTempFileNameW
OpenEventW
CreateEventW
FatalAppExitA
lstrcmpA
GetCPInfoExA
FileTimeToLocalFileTime
ExitProcess
GetTimeZoneInformation
BuildCommDCBA
GetTempPathW
GetLogicalDrives
FindFirstChangeNotificationW
SetUnhandledExceptionFilter
GetConsoleOutputCP
GetComputerNameExA
DeleteCriticalSection
ExpandEnvironmentStringsW
CreateFileA
CreateSemaphoreA
IsDebuggerPresent
SetWaitableTimer
LockResource
FindNextVolumeW
HeapDestroy
InterlockedCompareExchange
GlobalFindAtomW
WaitNamedPipeW
WriteProfileStringA
CommConfigDialogW
GetProfileIntA
QueueUserWorkItem
WaitCommEvent
GetVolumeNameForVolumeMountPointA
WriteConsoleA
IsBadReadPtr
GetDiskFreeSpaceExA
SetPriorityClass
HeapReAlloc
TlsSetValue
Thread32First
OpenSemaphoreA
GetPrivateProfileStringA
SetThreadExecutionState
GlobalAddAtomA
Heap32ListFirst
GetBinaryTypeA
AreFileApisANSI
GetDateFormatA
ExpandEnvironmentStringsA
EnumCalendarInfoW
EnumLanguageGroupLocalesW
WriteConsoleW
_hwrite
SetConsoleCursorPosition
GetTempFileNameA
GlobalUnlock
IsBadStringPtrA
GetProfileSectionA
lstrcpynW
GetFileTime
AddAtomW
FreeResource
GetSystemWindowsDirectoryA
TryEnterCriticalSection
SetCommConfig
CreateNamedPipeW
RtlFillMemory
GetLongPathNameA
DeleteFiber
DeleteVolumeMountPointW
VirtualProtect
SetVolumeLabelW
GetTimeFormatW
TlsAlloc
QueryDosDeviceA
OutputDebugStringA
UnlockFile
GetWindowsDirectoryW
CompareStringW
FreeLibrary
GetDiskFreeSpaceExW
ReleaseMutex
GetLocalTime
SetProcessPriorityBoost
WritePrivateProfileStringW
GetDateFormatW
RemoveDirectoryA
GetCPInfo
LocalLock
GetFileInformationByHandle
WaitForDebugEvent
SetThreadContext
_lwrite
GetCurrentThreadId
GetProfileIntW
WriteFileEx
Process32FirstW
CopyFileW
MoveFileExA
MapViewOfFile
FormatMessageW
VirtualFree
SetThreadPriority
LoadLibraryExA
SetConsoleMode
GetDriveTypeA
EnumCalendarInfoA
SetSystemTime
OpenFile
SetErrorMode
VirtualProtectEx
HeapCompact
GlobalFree
SetProcessAffinityMask
SetCommMask
SleepEx
OpenFileMappingW
Thread32Next
GetLogicalDriveStringsW
DisableThreadLibraryCalls
GetDiskFreeSpaceA
GetEnvironmentVariableA
GetPrivateProfileStringW
GlobalLock
SwitchToThread
WaitForSingleObject
GetVersionExA
GetTapeParameters
CreateMailslotA
GlobalFlags
ReadDirectoryChangesW
SetFileAttributesW
DosDateTimeToFileTime
GetHandleInformation
FreeEnvironmentStringsW
OpenEventA
lstrcmpiA
Beep
PulseEvent
Process32First
GetSystemDirectoryW
SwitchToFiber
GetCommProperties
PurgeComm
CreateWaitableTimerA
GlobalMemoryStatus
ReadProcessMemory
IsValidLocale
PeekNamedPipe
GetFileAttributesExW
SearchPathA
GetUserDefaultUILanguage
TransmitCommChar
CreateProcessW
TlsGetValue
GetExitCodeThread
GetQueuedCompletionStatus
CreateFileMappingW
SetCurrentDirectoryA
BackupSeek
GetACP
FlushConsoleInputBuffer
GetUserDefaultLCID
GetUserDefaultLangID
GetExitCodeProcess
GetSystemPowerStatus
WaitForMultipleObjects
FindNextFileA
VirtualAllocEx
GetFullPathNameA
InterlockedExchangeAdd
GetAtomNameA
WriteConsoleOutputW
SetVolumeLabelA
GetPrivateProfileStructA
WaitForMultipleObjectsEx
GetCurrentDirectoryA
EnumResourceLanguagesW
BackupWrite
GetCurrentProcess
DeleteAtom
EnumUILanguagesW
EnumCalendarInfoExW
PostQueuedCompletionStatus
GlobalSize
FindNextChangeNotification
SetEnvironmentVariableA
RtlUnwind
LockFileEx
HeapAlloc
EnumResourceTypesA
GetTempPathA
QueryPerformanceCounter
EnumResourceLanguagesA
DebugBreak
EndUpdateResourceW
CreateToolhelp32Snapshot
SetLocalTime
CloseHandle
IsBadWritePtr
MultiByteToWideChar
VirtualQueryEx
GetWindowsDirectoryA
GlobalGetAtomNameA
Process32Next
GetCommandLineA
GetVersion
SetCommBreak
GetNumberFormatA
GetStringTypeA
InterlockedDecrement
lstrcatA
GetMailslotInfo
Module32FirstW
GetTickCount
GetProcessHeaps
GetCommTimeouts
GetVolumeInformationA
GetVersionExW
GetVolumePathNameA
SetThreadLocale
CreateDirectoryExA
ResetEvent
GetLastError
GetStringTypeW
IsBadStringPtrW
Heap32First
ClearCommBreak
SetMailslotInfo
GetSystemDefaultLangID
GetOEMCP
ResumeThread
InterlockedIncrement
CreateNamedPipeA
EnumSystemLocalesA
GetProcessHeap
SetConsoleTitleW
ConnectNamedPipe
FindCloseChangeNotification
UnmapViewOfFile
GetCurrencyFormatA
OpenMutexA
InitializeCriticalSectionAndSpinCount
InterlockedExchange
DuplicateHandle
AllocConsole
_lcreat
WriteProfileStringW
SetProcessWorkingSetSize
HeapCreate
GetStringTypeExW
WaitNamedPipeA
_hread
QueueUserAPC
GlobalDeleteAtom
UnlockFileEx
GetProcessVersion
GetFileAttributesA
ReadConsoleInputA
SetComputerNameW
OpenThread
_lread
UpdateResourceW
IsDBCSLeadByteEx
InitializeCriticalSection
CompareStringA
LoadLibraryA
FindResourceExA
WritePrivateProfileStructA
GetPrivateProfileSectionA
TerminateThread
_llseek
LocalCompact
lstrcpyW
FindResourceW
SetNamedPipeHandleState
GetSystemTime
SetEnvironmentVariableW
GetComputerNameW
GetConsoleMode
GetPrivateProfileIntA
VirtualUnlock
OpenSemaphoreW
IsDBCSLeadByte
GetLongPathNameW
SetCurrentDirectoryW
ProcessIdToSessionId
CreateEventA
GetSystemDirectoryA
lstrcpyA
GetSystemDefaultLCID
FlushViewOfFile
SetCommTimeouts
SetFileTime
GetLocaleInfoW
DeviceIoControl
MoveFileA
GlobalFindAtomA
ReleaseSemaphore
SetHandleCount
WritePrivateProfileStringA
CopyFileExA
TlsFree
lstrcpynA
GetCommModemStatus
GetVolumeInformationW
CompareFileTime
DeleteVolumeMountPointA
FindResourceExW
SetEvent
SetProcessShutdownParameters
GetVolumePathNameW
GetCommConfig
LocalFree
GetConsoleCP
GetShortPathNameW
GetVolumeNameForVolumeMountPointW
SetCommState
GetEnvironmentVariableW
SetFilePointer
ReadFile
DeleteFileA
GetStringTypeExA
Module32NextW
GetShortPathNameA
FindFirstChangeNotificationA
RemoveDirectoryW
Heap32Next
CreateSemaphoreW
HeapSize
SearchPathW
QueryPerformanceFrequency
GetCurrentProcessId
GetSystemTimeAsFileTime
ConvertDefaultLocale
FindAtomW
GlobalMemoryStatusEx
GetProfileStringA
FormatMessageA
GetTimeFormatA
GlobalGetAtomNameW
GetLocaleInfoA
GetSystemInfo
UpdateResourceA
GetThreadContext
lstrcmpiW
GetFileType
FileTimeToSystemTime
SetTapePosition
LocalHandle
CreateIoCompletionPort
CreateFiber
GetOverlappedResult
HeapValidate
TerminateProcess
LoadLibraryExW
SystemTimeToTzSpecificLocalTime
GetModuleFileNameA
GetCurrentThread
LeaveCriticalSection
ContinueDebugEvent
EscapeCommFunction
SetTimeZoneInformation
FileTimeToDosDateTime
DefineDosDeviceA
WritePrivateProfileStructW
FreeEnvironmentStringsA
ConvertThreadToFiber
_lclose
GetModuleFileNameW
GetCommandLineW
OpenFileMappingA
GetPrivateProfileSectionNamesA
GetFileSizeEx
WaitForSingleObjectEx
SystemTimeToFileTime
CreateThread
SetEndOfFile
LocalFileTimeToFileTime
GlobalAlloc
GetFileSize
Toolhelp32ReadProcessMemory
GlobalReAlloc
LCMapStringA
MoveFileW
lstrcmpW
EnumResourceNamesW
EnumResourceNamesA
ExitThread
BeginUpdateResourceW
BackupRead
GlobalHandle
Module32Next
GetDiskFreeSpaceW
VirtualLock
QueryDosDeviceW
GetProfileStringW
_lopen
SetFileAttributesA
GetLogicalDriveStringsA
WinExec
MoveFileExW
GetSystemTimeAdjustment
WritePrivateProfileSectionW
VirtualFreeEx
LocalReAlloc
LocalUnlock
GetConsoleScreenBufferInfo
GetProcAddress
VerSetConditionMask
GetPriorityClass
GetThreadLocale
Module32First
GetProcessWorkingSetSize
DebugActiveProcess
GetStartupInfoA
Heap32ListNext
GetFileAttributesExA
EndUpdateResourceA
FindResourceA
GetStartupInfoW
CopyFileExW
GetComputerNameExW
IsValidCodePage
CreateFileW
DeleteFileW
VerifyVersionInfoW
CreateProcessA
SetConsoleCtrlHandler
WriteFile
CreateMutexA
SetLastError
GetThreadPriority
CreateDirectoryA
LCMapStringW
GetEnvironmentStringsW
SetVolumeMountPointA
GetProcessAffinityMask
IsBadCodePtr
CopyFileA
GetPrivateProfileIntW
EnumSystemLanguageGroupsW
SizeofResource
CreatePipe
GlobalAddAtomW
SetStdHandle
FindVolumeClose
GetThreadTimes
UnhandledExceptionFilter
FindClose
MulDiv
FlushFileBuffers
VirtualAlloc
GetModuleHandleW
GetComputerNameA
GetEnvironmentStrings
FreeConsole
OpenMutexW
MapViewOfFileEx
VerLanguageNameA
OutputDebugStringW
SetupComm
SuspendThread
user32
SetRect
GetDlgItemInt
GetClassNameA
TabbedTextOutW
GetClassInfoExA
UnhookWindowsHookEx
IsCharAlphaNumericA
IsIconic
GetDlgItemTextA
GetDC
TranslateAcceleratorW
GetUserObjectSecurity
CreateIconFromResource
UpdateWindow
CharUpperBuffA
GetMenuContextHelpId
DrawStateA
CreateMenu
IsWindowVisible
SetPropA
BroadcastSystemMessage
CreateDialogIndirectParamA
IsZoomed
GetClipboardData
WinHelpA
SetKeyboardState
GetWindowTextW
DragDetect
MessageBeep
RegisterDeviceNotificationW
NotifyWinEvent
MessageBoxW
DefFrameProcA
AllowSetForegroundWindow
GetPropW
MapVirtualKeyA
CreateWindowExA
IsChild
ChangeDisplaySettingsA
GetIconInfo
DdeClientTransaction
MsgWaitForMultipleObjectsEx
GetMessageTime
DlgDirSelectComboBoxExA
EnableMenuItem
WaitMessage
CallMsgFilterA
DdeQueryStringA
DlgDirListComboBoxA
GetDlgItem
GetKeyboardState
CharNextExA
GetKeyboardLayout
OpenWindowStationW
SetDlgItemTextA
wsprintfA
FlashWindow
IsWindowEnabled
TrackMouseEvent
DdeFreeStringHandle
SwapMouseButton
ScrollDC
UnregisterClassA
SetLayeredWindowAttributes
CreateAcceleratorTableA
DdeInitializeA
GetKeyboardLayoutList
DrawTextExW
UnionRect
MessageBoxExA
GetWindowDC
LoadStringA
CloseWindowStation
InvalidateRect
UnhookWinEvent
GetScrollPos
DestroyCursor
EqualRect
DrawAnimatedRects
wsprintfW
LoadStringW
ToUnicodeEx
GetSubMenu
MoveWindow
GetClientRect
GetMenuItemID
GetSystemMenu
GetDlgItemTextW
CharUpperBuffW
SetProcessWindowStation
CloseDesktop
DrawTextExA
IsCharAlphaNumericW
LoadKeyboardLayoutA
RegisterClassW
SetPropW
ScrollWindowEx
LockSetForegroundWindow
UnregisterClassW
GetCaretBlinkTime
AnimateWindow
CreateCursor
DdeNameService
CharLowerA
CharToOemA
GetQueueStatus
OpenClipboard
ToUnicode
GetCursor
ScrollWindow
CopyIcon
SetCapture
CharUpperA
CreateWindowExW
GetWindowTextLengthA
SystemParametersInfoW
RemovePropW
DdeFreeDataHandle
CallWindowProcW
SetWindowLongA
DefWindowProcW
LoadIconW
GetNextDlgTabItem
GetWindowModuleFileNameW
GetDlgCtrlID
AdjustWindowRect
ShowCursor
SetClassLongA
WinHelpW
DialogBoxParamW
IsWindowUnicode
CreateCaret
DialogBoxParamA
DrawIconEx
ExcludeUpdateRgn
GetTitleBarInfo
GetClassInfoA
ExitWindowsEx
ModifyMenuA
DrawStateW
EnableWindow
DrawCaption
CheckMenuItem
WindowFromDC
DdeInitializeW
LookupIconIdFromDirectoryEx
LoadCursorA
GetWindowRgn
GetUpdateRect
LoadImageW
SetWindowsHookExA
AppendMenuW
wvsprintfA
MapVirtualKeyExA
LoadMenuIndirectA
TranslateMessage
DrawEdge
HideCaret
GetWindow
EndDialog
GetSysColor
LoadAcceleratorsW
CreateIconFromResourceEx
IsCharLowerW
ChildWindowFromPoint
GetPropA
GetNextDlgGroupItem
GetWindowRect
GetLastActivePopup
IsDlgButtonChecked
DefDlgProcA
DestroyCaret
RealChildWindowFromPoint
DispatchMessageA
IsCharLowerA
IsDialogMessage
GetCaretPos
SetDoubleClickTime
SetMenuInfo
LoadCursorFromFileW
IntersectRect
ModifyMenuW
CreateMDIWindowA
IsCharUpperA
DdeCreateStringHandleA
DestroyAcceleratorTable
SetTimer
InsertMenuW
ValidateRgn
PostMessageW
BeginDeferWindowPos
DefFrameProcW
SetUserObjectSecurity
GetMonitorInfoA
MessageBoxA
RegisterClipboardFormatA
CountClipboardFormats
CheckDlgButton
PeekMessageW
LoadMenuIndirectW
GetCursorPos
GetClassLongW
PeekMessageA
GetClipboardViewer
CheckMenuRadioItem
InsertMenuA
GetProcessWindowStation
InvertRect
PostThreadMessageA
GetMenuItemInfoA
GetWindowInfo
GetClassWord
EndPaint
SetWindowPlacement
GetScrollBarInfo
MessageBoxIndirectA
LoadImageA
EnableScrollBar
DdeUninitialize
DdeAccessData
LoadCursorFromFileA
ReuseDDElParam
CreateIconIndirect
SendMessageTimeoutA
SetWindowLongW
GetWindowLongA
LoadMenuW
DdePostAdvise
DlgDirSelectExA
GetMessageW
SetParent
GetMenu
DeleteMenu
DefMDIChildProcA
MonitorFromPoint
DefWindowProcA
RedrawWindow
KillTimer
GetClassNameW
VkKeyScanW
SetCaretPos
RemoveMenu
MapDialogRect
CreateDialogIndirectParamW
MapVirtualKeyExW
GetWindowWord
TrackPopupMenu
ClientToScreen
DestroyIcon
GetMenuStringA
FindWindowExA
PackDDElParam
DestroyWindow
CreateMDIWindowW
IsMenu
DispatchMessageW
GetThreadDesktop
GetMenuDefaultItem
MapVirtualKeyW
SetMenuItemInfoW
DrawFrameControl
SetThreadDesktop
CallNextHookEx
SendMessageTimeoutW
CharLowerBuffW
GetMonitorInfoW
InvalidateRgn
OpenInputDesktop
ClipCursor
GetWindowTextLengthW
ValidateRect
DdeDisconnect
SetClipboardData
SendInput
PostThreadMessageW
OemToCharBuffA
MapWindowPoints
GetScrollInfo
GetActiveWindow
ArrangeIconicWindows
HiliteMenuItem
GetKeyboardLayoutNameA
TranslateAcceleratorA
CharLowerW
GetDialogBaseUnits
InsertMenuItemW
GetTabbedTextExtentA
AttachThreadInput
SetForegroundWindow
GetMenuCheckMarkDimensions
PostMessageA
GetWindowThreadProcessId
ShowScrollBar
TileWindows
GetClassLongA
OffsetRect
SetActiveWindow
OpenIcon
GetWindowLongW
RegisterClipboardFormatW
WaitForInputIdle
InsertMenuItemA
CloseClipboard
UnregisterDeviceNotification
DdeQueryStringW
GetWindowContextHelpId
PostQuitMessage
FindWindowW
LoadIconA
CharNextA
EnumWindows
IsDialogMessageA
CopyAcceleratorTableA
SetDlgItemInt
CreateDialogParamW
SetMessageExtraInfo
GrayStringW
EmptyClipboard
EnumDisplayMonitors
DdeUnaccessData
GrayStringA
DdeCreateDataHandle
GetMenuItemInfoW
SetMenuItemBitmaps
MonitorFromWindow
SetWindowTextA
CreateDialogParamA
GetComboBoxInfo
RegisterHotKey
SetWindowRgn
GetClassInfoExW
GetClipboardFormatNameA
LoadAcceleratorsA
keybd_event
SetDlgItemTextW
GetClipboardFormatNameW
SetScrollInfo
LockWindowUpdate
AdjustWindowRectEx
CharToOemBuffA
DefMDIChildProcW
CharPrevA
BeginPaint
SystemParametersInfoA
IsRectEmpty
FreeDDElParam
IsWindow
SetRectEmpty
UnpackDDElParam
CharUpperW
UnregisterHotKey
CreatePopupMenu
GetMenuItemRect
EnumChildWindows
ReleaseCapture
CopyRect
GetTopWindow
CreateAcceleratorTableW
MsgWaitForMultipleObjects
RegisterClassExW
CopyAcceleratorTableW
RegisterClassA
DrawMenuBar
ShowWindowAsync
GetSysColorBrush
ToAsciiEx
DrawFocusRect
GetAncestor
SetClipboardViewer
EnumDisplaySettingsW
MonitorFromRect
DlgDirListA
GetKeyNameTextW
GetCursorInfo
ShowOwnedPopups
LookupIconIdFromDirectory
DestroyMenu
GetSystemMetrics
DrawIcon
SetWindowContextHelpId
CreateIcon
GetFocus
CascadeWindows
ReplyMessage
GetLastInputInfo
RegisterClassExA
EnumClipboardFormats
SetCursorPos
GetWindowTextA
DrawTextA
SendNotifyMessageA
FillRect
GetMenuState
InSendMessage
EnumDesktopWindows
GetOpenClipboardWindow
ChangeDisplaySettingsW
EndDeferWindowPos
EnumThreadWindows
ShowWindow
ShowCaret
ChildWindowFromPointEx
ReleaseDC
ActivateKeyboardLayout
EnumDisplaySettingsA
DialogBoxIndirectParamA
BringWindowToTop
SetWindowPos
SetMenuDefaultItem
AppendMenuA
GetMessageExtraInfo
VkKeyScanExA
CreateDesktopW
CharNextW
SetCursor
FindWindowA
SetMenuContextHelpId
GetGUIThreadInfo
FrameRect
SetMenuItemInfoA
wvsprintfW
GetForegroundWindow
GetMenuInfo
GetKeyState
IsCharAlphaA
OpenDesktopW
TileChildWindows
GetUserObjectInformationA
TabbedTextOutA
DdeGetData
SetScrollRange
LoadBitmapA
DdeCreateStringHandleW
GetMenuStringW
GetInputState
RegisterWindowMessageW
SetWindowsHookExW
LoadCursorW
GetMessagePos
GetDCEx
TrackPopupMenuEx
GetClipboardOwner
SetScrollPos
VkKeyScanA
SendNotifyMessageW
SubtractRect
GetMenuItemCount
GetDesktopWindow
DlgDirListComboBoxW
WindowFromPoint
GetParent
ToAscii
GetKeyNameTextA
DeferWindowPos
MenuItemFromPoint
SetFocus
CharLowerBuffA
LoadMenuA
TranslateMDISysAccel
SwitchDesktop
LoadBitmapW
SetCaretBlinkTime
SendMessageA
IsClipboardFormatAvailable
SetClassLongW
GetCapture
GetClassInfoW
GetMessageA
ScreenToClient
SetWindowTextW
SendDlgItemMessageA
IsDialogMessageW
OpenDesktopA
DialogBoxIndirectParamW
PtInRect
CopyImage
CloseWindow
OpenWindowStationA
CallWindowProcA
SendMessageW
GetMenuBarInfo
DdeConnect
GetWindowPlacement
OemToCharA
GetAsyncKeyState
GetClipCursor
SendDlgItemMessageW
GetUpdateRgn
FlashWindowEx
RemovePropA
SetMenu
GetDoubleClickTime
GetUserObjectInformationW
DrawTextW
FindWindowExW
mouse_event
CheckRadioButton
RegisterWindowMessageA
GetScrollRange
InflateRect
shell32
SHGetSpecialFolderLocation
ord155
SHGetFileInfoW
SHGetFolderLocation
SHFileOperationA
SHGetDataFromIDListA
SHBindToParent
SHChangeNotify
SHGetDesktopFolder
FindExecutableA
SHGetDataFromIDListW
SHEmptyRecycleBinA
SHCreateDirectoryExW
DragQueryPoint
ExtractIconA
DuplicateIcon
ShellExecuteW
SHCreateDirectoryExA
SHGetFolderPathA
ShellExecuteExW
CommandLineToArgvW
DragFinish
SHAddToRecentDocs
DragQueryFileW
SHGetPathFromIDListA
SHGetSpecialFolderPathA
DragQueryFileA
SHGetFolderPathW
DoEnvironmentSubstW
SHGetInstanceExplorer
SHAppBarMessage
ShellExecuteExA
SHGetMalloc
SHGetSpecialFolderPathW
Shell_NotifyIconA
ExtractIconW
ExtractIconExW
SHBrowseForFolderA
FindExecutableW
SHFreeNameMappings
SHFileOperationW
SHGetFileInfoA
DragAcceptFiles
Shell_NotifyIconW
ExtractIconExA
ShellExecuteA
SHGetPathFromIDListW
SHBrowseForFolderW
Sections
.text Size: 84KB - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 136KB - Virtual size: 135KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 92KB - Virtual size: 113KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ