Overview
overview
10Static
static
7saruro/02a...8d.exe
windows7-x64
3saruro/02a...8d.exe
windows10-2004-x64
3saruro/7a9...fe.exe
windows7-x64
10saruro/7a9...fe.exe
windows10-2004-x64
10saruro/c5d...9e.exe
windows7-x64
7saruro/c5d...9e.exe
windows10-2004-x64
7saruro/d6c...5d.exe
windows7-x64
3saruro/d6c...5d.exe
windows10-2004-x64
3Behavioral task
behavioral1
Sample
saruro/02a33dfc61b9f6fd5edcad7fcf2eb58d.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
saruro/02a33dfc61b9f6fd5edcad7fcf2eb58d.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
saruro/7a939924177e0b931b9fe2f1e2804dfe.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral4
Sample
saruro/7a939924177e0b931b9fe2f1e2804dfe.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
saruro/c5d5ed5c8bd0b3fd408be86a7d55629e.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral6
Sample
saruro/c5d5ed5c8bd0b3fd408be86a7d55629e.exe
Resource
win10v2004-20230824-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
saruro/d6c59cc2d7805e64d9947e69defa9e5d.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral8
Sample
saruro/d6c59cc2d7805e64d9947e69defa9e5d.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
Target
saruro.7z
Size
8.9MB
MD5
562f861270289c51a2083454c727987d
SHA1
fe304a26f044ecb1115f44cbc344b17a1de2f0f3
SHA256
57da217ab59a9f4a5bb13095171703eb23af2dc031fb51069124e3daf59c9563
SHA512
b374db2b2905c926a8cc83ebd74ab512c44af02cbd1012a0a066cc078289d5275f48bc08a3e84e7d70652ab607a362313222bffdf72e7034c39fb9a9d8e8c67d
SSDEEP
196608:9naGEiC/yIb4j1J3qDWLn98BBHDnUgqiqsNXzNInkvTBx:9napiC6IJU94BHDUgnXzNDLBx
| resource | yara_rule |
|---|---|
| static1/unpack001/saruro/c5d5ed5c8bd0b3fd408be86a7d55629e.exe | upx |
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/saruro/02a33dfc61b9f6fd5edcad7fcf2eb58d.exe |
| unpack001/saruro/c5d5ed5c8bd0b3fd408be86a7d55629e.exe |
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
SetHandleCount
QueryPerformanceCounter
GetCurrentDirectoryW
GetStringTypeW
CompareStringW
GetTimeZoneInformation
WriteConsoleW
SetEnvironmentVariableA
GetDriveTypeW
GetProcessHeap
CreateFileW
GetConsoleMode
GetConsoleCP
HeapCreate
IsValidCodePage
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
SetStdHandle
HeapSize
HeapQueryInformation
VirtualQuery
VirtualAlloc
RaiseException
Sleep
RtlUnwind
GetDriveTypeA
GetFileInformationByHandle
CreateThread
ExitThread
GetSystemTimeAsFileTime
HeapReAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineA
FindFirstFileExA
FindNextFileW
ExitProcess
HeapAlloc
HeapFree
GetEnvironmentStringsW
EncodePointer
FindResourceExW
VirtualProtect
SearchPathA
GetProfileIntA
InitializeCriticalSectionAndSpinCount
GetNumberFormatA
GetWindowsDirectoryA
GetTempPathA
GetTempFileNameA
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
GetFileAttributesExA
SetErrorMode
GetACP
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InterlockedIncrement
FileTimeToSystemTime
InterlockedDecrement
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
FreeEnvironmentStringsW
LCMapStringW
DecodePointer
IsProcessorFeaturePresent
lstrcmpiA
GetThreadLocale
ResumeThread
SetThreadPriority
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoA
InterlockedExchange
lstrcmpA
GetModuleHandleW
GetCurrentProcessId
FindResourceA
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
CompareStringA
LoadLibraryW
ActivateActCtx
DeactivateActCtx
lstrcmpW
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
LocalFree
lstrlenW
MulDiv
MultiByteToWideChar
ExpandEnvironmentStringsA
GetStdHandle
GetFileType
WaitForMultipleObjects
PeekNamedPipe
FormatMessageA
WaitForSingleObject
GetModuleHandleA
LoadLibraryA
GetSystemDirectoryA
VerSetConditionMask
VerifyVersionInfoA
SleepEx
GetTickCount
SetLastError
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
FreeLibrary
GetProcAddress
WritePrivateProfileStringA
GetModuleFileNameA
SetFileTime
WriteFile
CreateDirectoryA
GetFileAttributesA
LocalFileTimeToFileTime
lstrcatA
lstrlenA
lstrcpyA
GetCurrentDirectoryA
SystemTimeToFileTime
ReadFile
SetFilePointer
FindResourceW
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
DeleteFileA
FindClose
FindFirstFileA
GetSystemInfo
UnmapViewOfFile
CloseHandle
GetLastError
CreateFileA
CharUpperBuffA
CopyIcon
UnpackDDElParam
ReuseDDElParam
LoadMenuA
LoadAcceleratorsA
InsertMenuItemA
TranslateAcceleratorA
FrameRect
RegisterClipboardFormatA
LoadImageW
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
LoadImageA
CopyImage
GetIconInfo
HideCaret
InvertRect
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableA
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetClassLongA
DestroyAcceleratorTable
SetParent
UnregisterClassA
DestroyIcon
GetNextDlgGroupItem
InvalidateRgn
SetRect
CopyAcceleratorTableA
CharNextA
WaitMessage
GetMenuDefaultItem
SetMenuDefaultItem
CreatePopupMenu
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsRectEmpty
IsZoomed
NotifyWinEvent
MessageBeep
ReleaseCapture
WindowFromPoint
SetCapture
RedrawWindow
SetWindowRgn
DeleteMenu
OffsetRect
RealChildWindowFromPoint
LoadCursorW
SetLayeredWindowAttributes
EnumDisplayMonitors
SetRectEmpty
GetSysColorBrush
IntersectRect
DestroyMenu
GetMenuItemInfoA
InflateRect
MapVirtualKeyA
GetKeyNameTextA
CharUpperA
ShowOwnedPopups
GetMessageA
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetCursorPos
EndPaint
PostThreadMessageA
GetWindowDC
ReleaseDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
CheckMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
CheckDlgButton
RegisterWindowMessageA
LoadIconW
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetFocus
IsWindow
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MonitorFromWindow
GetMonitorInfoA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
CreateMenu
IsClipboardFormatAvailable
GetUpdateRect
GetDoubleClickTime
IsCharLowerA
MapVirtualKeyExA
SubtractRect
DestroyCursor
PostMessageA
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
GetParent
ScreenToClient
EqualRect
BeginPaint
GetWindowRgn
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
PtInRect
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
GetWindowLongA
SetWindowLongA
SetWindowPos
GetWindow
GetClassNameA
LoadBitmapW
UpdateWindow
FillRect
DrawStateA
GetMenuState
GetMenuStringA
GetMenuItemID
InsertMenuA
GetMenuItemCount
RemoveMenu
SetTimer
KillTimer
EnableMenuItem
GetSubMenu
LoadMenuW
GetAsyncKeyState
DrawIcon
GetSystemMetrics
IsIconic
InvalidateRect
GetClientRect
GetDC
LoadBitmapA
AppendMenuA
GetSystemMenu
SetCursor
LoadCursorA
GetWindowRect
wsprintfA
SendMessageA
EnableWindow
SystemParametersInfoA
GetTextColor
GetRgnBox
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
RealizePalette
GetSystemPaletteEntries
OffsetRgn
SetDIBColorTable
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExA
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
GetBkColor
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceA
SetPixelV
SelectObject
Escape
ExtTextOutA
CreateDIBSection
CreateRoundRectRgn
TextOutA
SetViewportOrgEx
GetTextCharsetInfo
EnumFontFamiliesA
GetTextMetricsA
CreateCompatibleBitmap
CreateDIBitmap
DPtoLP
GetMapMode
CombineRgn
SetRectRgn
GetTextExtentPoint32A
CreateFontIndirectA
PatBlt
CreateRectRgnIndirect
CreateHatchBrush
CreatePen
GetObjectType
SelectPalette
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
RectVisible
PtVisible
PtInRegion
GetDeviceCaps
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetStockObject
GetObjectA
CreateSolidBrush
DeleteObject
CreateDCA
CopyMetaFileA
OffsetViewportOrgEx
AlphaBlend
TransparentBlt
GetFileTitleA
DocumentPropertiesA
OpenPrinterA
ClosePrinter
RegDeleteKeyA
RegCloseKey
RegCreateKeyA
RegSetValueExA
RegQueryValueExA
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
CryptCreateHash
CryptHashData
CryptDestroyHash
CryptGetHashParam
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
CryptDestroyKey
RegDeleteValueA
RegCreateKeyExA
CryptImportKey
CryptEncrypt
RegOpenKeyExA
SHAppBarMessage
DragFinish
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
DragQueryFileA
ShellExecuteA
SHGetFileInfoA
InitCommonControlsEx
ImageList_GetIconSize
PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathStripPathA
PathRemoveFileSpecW
OleLockRunning
ReleaseStgMedium
CoTaskMemAlloc
OleDuplicateData
CoCreateGuid
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoUninitialize
CoInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoInitializeEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
RevokeDragDrop
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
CoTaskMemFree
CreateStreamOnHGlobal
CoRegisterMessageFilter
CoRevokeClassObject
SysFreeString
SysAllocString
OleCreateFontIndirect
VarBstrFromDate
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
ord8
GdipDrawImageI
GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdiplusStartup
GdiplusShutdown
GdipCreateFromHWND
GdipDeleteGraphics
GdipDrawImageRectI
GdipCreateBitmapFromStream
ord41
ord27
ord301
ord33
ord79
ord35
ord32
ord200
ord30
ord26
ord50
ord60
ord143
ord211
ord22
ord46
bind
ntohs
getsockname
htons
WSAIoctl
send
recv
select
WSAGetLastError
__WSAFDIsSet
WSASetLastError
WSAStartup
WSACleanup
getsockopt
getpeername
closesocket
socket
connect
freeaddrinfo
getaddrinfo
sendto
recvfrom
accept
listen
ioctlsocket
gethostname
htonl
ntohl
setsockopt
CertFreeCertificateContext
LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject
ImmGetOpenStatus
ImmReleaseContext
ImmGetContext
PlaySoundA
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
WriteFile
SystemTimeToFileTime
VerifyVersionInfoW
ReadConsoleA
SetConsoleMode
ConvertThreadToFiber
ConvertFiberToThread
CreateFiber
DeleteFiber
SwitchToFiber
GetEnvironmentVariableW
GetSystemTime
RemoveDirectoryW
GetFullPathNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
HeapReAlloc
GetTimeZoneInformation
SetStdHandle
SetConsoleCtrlHandler
SetFilePointerEx
LCMapStringW
CompareStringW
HeapAlloc
HeapFree
HeapValidate
HeapSize
GetStdHandle
GetConsoleOutputCP
ReadConsoleW
GetConsoleMode
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
ExitProcess
InterlockedPushEntrySList
RtlUnwind
GetStartupInfoW
FindResourceA
LocalFree
GlobalLock
GlobalUnlock
GlobalAlloc
SizeofResource
LockResource
LoadResource
GetModuleFileNameW
OpenProcess
GetExitCodeProcess
GetCurrentProcess
SetLastError
GetACP
DeleteFileW
CreateDirectoryW
VerSetConditionMask
MulDiv
FreeLibrary
LoadLibraryA
GetProcAddress
Sleep
GetCurrentThreadId
DeviceIoControl
GetFileAttributesW
FindFirstFileW
FindClose
CreateFileW
MoveFileExW
GetModuleHandleA
GetTickCount
CreateFileA
LeaveCriticalSection
EnterCriticalSection
GetLastError
ProcessIdToSessionId
GetCurrentProcessId
InitializeSListHead
IsProcessorFeaturePresent
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
GetCPInfo
DecodePointer
EncodePointer
OpenEventA
SetEvent
SetErrorMode
CloseHandle
RemoveDirectoryA
GetFileAttributesA
MultiByteToWideChar
OutputDebugStringA
WriteConsoleW
GetCurrentDirectoryA
GetCurrentDirectoryW
FindNextFileW
WideCharToMultiByte
GetModuleHandleW
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
FindFirstFileExW
FlushFileBuffers
GetDiskFreeSpaceA
GetDiskFreeSpaceExW
GetDriveTypeW
GetFileAttributesExW
GetFileInformationByHandle
GetFileSizeEx
GetFileTime
ReadFile
SetEndOfFile
SetFileAttributesW
SetFilePointer
SetFileTime
SleepEx
GetSystemTimeAsFileTime
CopyFileW
GetDateFormatW
GetTimeFormatW
FileTimeToSystemTime
GlobalFree
SetHandleInformation
VirtualProtect
VirtualQuery
GetModuleFileNameA
GetModuleHandleExA
GetModuleHandleExW
LocalAlloc
IsBadWritePtr
CreateIoCompletionPort
PostQueuedCompletionStatus
InitializeCriticalSection
DeleteCriticalSection
ResetEvent
WaitForSingleObject
CreateEventA
QueryPerformanceCounter
QueryPerformanceFrequency
GetCommandLineA
GetProcessHeap
HeapSetInformation
HeapLock
HeapUnlock
HeapWalk
HeapQueryInformation
TerminateProcess
GlobalMemoryStatusEx
VirtualAlloc
IsDebuggerPresent
GetCommandLineW
RaiseException
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
SwitchToThread
CreateThread
GetCurrentThread
OpenThread
SetThreadPriority
TerminateThread
GetExitCodeThread
SuspendThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetThreadAffinityMask
SetEnvironmentVariableW
SetCurrentDirectoryW
OutputDebugStringW
CreateProcessW
GetSystemInfo
GetProcessAffinityMask
SetUnhandledExceptionFilter
DebugBreak
GetProcessHeaps
SetProcessAffinityMask
InitializeSRWLock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
InitOnceBeginInitialize
InitOnceComplete
GetStringTypeW
DispatchMessageW
TranslateMessage
GetMessageW
ReleaseDC
GetDC
PeekMessageW
GetWindowThreadProcessId
EnumWindows
SendMessageW
IsWindowVisible
GetProcessWindowStation
MonitorFromWindow
PostThreadMessageW
LoadIconW
LoadCursorW
EnumChildWindows
SetClassLongW
SetWindowLongW
GetWindowLongW
MapWindowPoints
MessageBoxW
GetWindowRect
SetWindowTextW
RedrawWindow
EndPaint
BeginPaint
UpdateWindow
KillTimer
UnregisterClassW
GetClassInfoExW
wsprintfA
DialogBoxParamA
EndDialog
GetDlgItem
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
OpenClipboard
MonitorFromPoint
SetClipboardData
EmptyClipboard
GetWindowTextLengthA
GetDesktopWindow
SetTimer
MsgWaitForMultipleObjects
SetWindowPos
MoveWindow
GetUserObjectInformationW
GetMonitorInfoW
AllowSetForegroundWindow
MessageBoxA
DestroyWindow
DefWindowProcW
RegisterClassExW
CreateWindowExW
CloseClipboard
ShowWindow
DeleteObject
TextOutW
CreateDIBSection
SetTextColor
SetBkMode
SetBkColor
SelectObject
RemoveFontMemResourceEx
AddFontMemResourceEx
GetTextExtentPoint32W
GetStockObject
GetDeviceCaps
DeleteDC
CreateICW
CreateFontW
CreateCompatibleDC
SwapBuffers
SetPixelFormat
ChoosePixelFormat
RegOpenKeyExA
RegisterEventSourceW
DeregisterEventSource
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegOpenKeyA
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
ReportEventW
RegCreateKeyExA
RegCloseKey
SHGetFileInfoW
CommandLineToArgvW
ord680
SHGetKnownFolderPath
CoTaskMemFree
VariantClear
InitCommonControlsEx
GetModuleFileNameExW
GetProcessMemoryInfo
GetModuleInformation
VerQueryValueW
CertGetCertificateChain
CertOpenStore
CertCloseStore
CertCreateCertificateContext
CertFreeCertificateContext
CertAddCertificateContextToStore
CertFreeCertificateChain
ntohl
ntohs
getaddrinfo
freeaddrinfo
closesocket
shutdown
socket
WSAStartup
WSAGetLastError
WSARecv
WSARecvFrom
WSASend
WSASendTo
htons
__WSAFDIsSet
select
WSASetLastError
WSACleanup
send
recv
connect
WSAIoctl
setsockopt
WSASocketA
htonl
getsockname
ioctlsocket
bind
ord1142
BCryptGenRandom
CanSetClientBeta
ClientUpdateRunFrame
CreateInterface
ForceUpdateNextRestart
GetBootstrapperVersion
GetClientActualLauncherType
GetClientBootstrapMetrics
GetClientLauncherType
GetClientUpdateBytesDownloaded
GetClientUpdateBytesToDownload
GetCurrentClientBeta
IsCheckingForUpdates
IsClientUpdateAvailable
IsClientUpdateOutOfDiskSpace
IsUpdateSuppressed
PermitDownloadClientUpdates
SetClientBeta
StartCheckingForUpdates
SteamBootstrapper_GetBaseUserDir
SteamBootstrapper_GetEUniverse
SteamBootstrapper_GetForwardedCommandLine
SteamBootstrapper_GetInstallDir
SteamBootstrapper_GetLoggingDir
SteamBootstrapper_SetCommandLineToRunOnExit
g_dwDllEntryThreadId
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
CreateFileA
SetErrorMode
WriteFile
Sleep
GetConsoleWindow
MultiByteToWideChar
CreateDirectoryA
RemoveDirectoryA
CloseHandle
GetTempPathA
DeleteFileA
CreateFileW
HeapSize
FlushFileBuffers
IsProcessorFeaturePresent
HeapReAlloc
HeapAlloc
GetStringTypeW
LCMapStringW
WriteConsoleW
SetStdHandle
LoadLibraryW
RtlUnwind
HeapFree
IsValidCodePage
GetOEMCP
GetACP
GetLastError
GetCommandLineA
HeapSetInformation
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DecodePointer
EncodePointer
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetModuleHandleW
ExitProcess
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
wsprintfA
IsWindowVisible
ShowWindow
EnumChildWindows
GetWindowTextA
EnumWindows
SendMessageA
GetParent
GetClassNameA
ShellExecuteA
SHGetSpecialFolderPathA
CoInitialize
CoCreateGuid
CoUninitialize
CoCreateInstance
InternetCloseHandle
InternetOpenA
HttpQueryInfoA
InternetReadFile
InternetOpenUrlA
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ