Static task
static1
Behavioral task
behavioral1
Sample
ab6f8516257044e68b861090104581f1fc157cd8de60b03e77372aec920da100.exe
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral2
Sample
ab6f8516257044e68b861090104581f1fc157cd8de60b03e77372aec920da100.exe
Resource
win10v2004-20231222-en
windows10-2004-x64
General
-
Target
ab6f8516257044e68b861090104581f1fc157cd8de60b03e77372aec920da100
-
Size
8.3MB
-
MD5
d598fbb51618b14a5b02ade5a0426cd7
-
SHA1
42a5a835fda13da3026255b1ba8a4a9899c7e77d
-
SHA256
ab6f8516257044e68b861090104581f1fc157cd8de60b03e77372aec920da100
-
SHA512
1edd1d837e72673e69e25e449fc27a2cce72863c7ec342981ebab6148bda83d2d9cffffd9fb4627ed08803eb498a9a53792b5eb64d54df671804c322dbb48259
-
SSDEEP
196608:ajeEa7sLrIQtKM3emUBZTxcgSzydd5lSAu:Z7XxcgSzcd5lS1
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ab6f8516257044e68b861090104581f1fc157cd8de60b03e77372aec920da100
Files
-
ab6f8516257044e68b861090104581f1fc157cd8de60b03e77372aec920da100.exe windows:6 windows x86 arch:x86
44431b3c8e02060b5e68ec67ce920008
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
dragpie
DRAGEnd
DRAGUnload
DRAGBegin
DRAGLoad
DRAGSetStatisticsImageInfo
DRAGInit
DRAGDelete
DRAGGetDuration
DRAGComplete
DRAGProcess
DRAGVersion
DRAGNew
opencv_core460_x86
??Gcv@@YA?AVMatExpr@0@ABV10@ABVMat@0@@Z
??Kcv@@YA?AVMatExpr@0@ABVMat@0@ABV10@@Z
??Kcv@@YA?AVMatExpr@0@ABVMat@0@N@Z
??Kcv@@YA?AVMatExpr@0@ABVMat@0@0@Z
?log@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@@Z
??4Mat@cv@@QAEAAV01@ABV01@@Z
?minMaxLoc@cv@@YAXABV_InputArray@1@PAN1PAV?$Point_@H@1@20@Z
??0_InputArray@cv@@QAE@ABVMatExpr@1@@Z
?divide@cv@@YAXABV_InputArray@1@0ABV_OutputArray@1@NH@Z
?split@cv@@YAXABVMat@1@PAV21@@Z
?create@Mat@cv@@QAEXHHH@Z
??1Mat@cv@@QAE@XZ
??0Mat@cv@@QAE@XZ
?zeros@Mat@cv@@SA?AVMatExpr@2@V?$Size_@H@2@H@Z
?mul@Mat@cv@@QBE?AVMatExpr@2@ABV_InputArray@2@N@Z
?convertTo@Mat@cv@@QBEXABV_OutputArray@2@HNN@Z
?copyTo@Mat@cv@@QBEXABV_OutputArray@2@@Z
?clone@Mat@cv@@QBE?AV12@XZ
??Gcv@@YA?AVMatExpr@0@ABVMat@0@ABV10@@Z
?merge@cv@@YAXPBVMat@1@IABV_OutputArray@1@@Z
?sum@cv@@YA?AV?$Scalar_@N@1@ABV_InputArray@1@@Z
?multiply@cv@@YAXABV_InputArray@1@0ABV_OutputArray@1@NH@Z
??Dcv@@YA?AVMatExpr@0@ABV10@N@Z
??Dcv@@YA?AVMatExpr@0@ABVMat@0@N@Z
??Hcv@@YA?AVMatExpr@0@ABV?$Scalar_@N@0@ABV10@@Z
??Hcv@@YA?AVMatExpr@0@ABV10@ABV?$Scalar_@N@0@@Z
??Hcv@@YA?AVMatExpr@0@ABV10@ABVMat@0@@Z
??Hcv@@YA?AVMatExpr@0@ABVMat@0@ABV?$Scalar_@N@0@@Z
??Hcv@@YA?AVMatExpr@0@ABVMat@0@0@Z
?noArray@cv@@YAABV_InputOutputArray@1@XZ
??0Mat@cv@@QAE@ABV01@ABV?$Rect_@H@1@@Z
??0Mat@cv@@QAE@ABV01@@Z
??0Mat@cv@@QAE@HHH@Z
??4Mat@cv@@QAEAAV01@$$QAV01@@Z
opencv_imgproc460_x86
?getStructuringElement@cv@@YA?AVMat@1@HV?$Size_@H@1@V?$Point_@H@1@@Z
?cvtColor@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@HH@Z
?dilate@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@0V?$Point_@H@1@HHABV?$Scalar_@N@1@@Z
?resize@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@V?$Size_@H@1@NNH@Z
?boxFilter@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@HV?$Size_@H@1@V?$Point_@H@1@_NH@Z
opencv_imgcodecs460_x86
?imwrite@cv@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV_InputArray@1@ABV?$vector@HV?$allocator@H@std@@@3@@Z
kernel32
GetModuleFileNameW
SetPriorityClass
SetThreadPriority
CloseHandle
SuspendThread
ReleaseMutex
WaitForSingleObject
ResumeThread
CreateMutexW
GetTickCount
Sleep
GetCurrentThread
CreateThread
GetTimeZoneInformation
TzSpecificLocalTimeToSystemTime
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TlsSetValue
OutputDebugStringW
EnterCriticalSection
ReleaseSemaphore
LeaveCriticalSection
InitializeCriticalSection
GetCurrentThreadId
GetLastError
TlsAlloc
DeleteCriticalSection
CreateSemaphoreW
TlsGetValue
GetSystemTimeAsFileTime
TlsFree
K32GetProcessMemoryInfo
GetCurrentProcess
GetACP
MultiByteToWideChar
WideCharToMultiByte
QueryPerformanceFrequency
QueryPerformanceCounter
IsDebuggerPresent
GetVersionExW
GetCurrentDirectoryW
SetThreadExecutionState
SetEvent
CreateEventW
CreateFileW
DeleteFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
GetFileSizeEx
GetFileTime
GlobalSize
ReadConsoleOutputCharacterA
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
FillConsoleOutputCharacterW
WriteConsoleW
WriteConsoleA
AttachConsole
FreeConsole
GetStdHandle
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
SetLastError
MulDiv
LocalAlloc
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
SetFilePointer
CreateFileA
LoadLibraryA
GetSystemDirectoryA
SetThreadLocale
IsBadStringPtrA
IsBadReadPtr
ExpandEnvironmentStringsW
WaitForMultipleObjects
ReadFile
SetEndOfFile
SetFilePointerEx
WriteFile
MoveFileW
FileTimeToSystemTime
FreeLibrary
FreeResource
GetProcAddress
LoadLibraryExW
LoadResource
LockResource
SizeofResource
FindResourceA
GlobalHandle
GetDriveTypeW
GetLogicalDriveStringsW
InitializeCriticalSectionAndSpinCount
ResetEvent
WaitForSingleObjectEx
GetModuleHandleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineW
GetTempPathW
GetTempFileNameW
GetLongPathNameW
FormatMessageW
LocalFree
LoadLibraryW
CopyFileW
GetFileType
SetCurrentDirectoryW
GetLocaleInfoW
GetCPInfo
IsValidCodePage
GetComputerNameW
GlobalMemoryStatus
FindResourceW
GetNativeSystemInfo
GetDiskFreeSpaceExW
GetEnvironmentVariableW
SetErrorMode
ExitProcess
InitializeSListHead
GetCurrentProcessId
GetStartupInfoW
IsProcessorFeaturePresent
TerminateProcess
GlobalMemoryStatusEx
shell32
DragQueryFileW
ExtractIconExW
ExtractIconW
SHGetSpecialFolderPathW
DragFinish
ShellExecuteW
ord6
SHGetFileInfoW
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
DragAcceptFiles
SHFileOperationW
CommandLineToArgvW
SHGetFolderPathW
DragQueryPoint
msvcp140
_Mtx_unlock
_Mtx_lock
_Mtx_destroy_in_situ
?_Throw_C_error@std@@YAXH@Z
?_Xout_of_range@std@@YAXPBD@Z
_Mtx_init_in_situ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrSwap@@YAXPAX0@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?_Xlength_error@std@@YAXPBD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Xbad_alloc@std@@YAXXZ
?uncaught_exception@std@@YA_NXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
ws2_32
WSACleanup
htons
WSAStartup
ioctlsocket
socket
shutdown
inet_addr
inet_ntoa
ntohl
setsockopt
ntohs
sendto
send
gethostbyaddr
select
recvfrom
gethostbyname
WSAAsyncSelect
getservbyport
getservbyname
WSASetLastError
WSAGetLastError
__WSAFDIsSet
recv
htonl
listen
accept
getsockopt
bind
getsockname
connect
closesocket
comctl32
ImageList_GetImageCount
ImageList_Add
ImageList_SetBkColor
ImageList_Create
ImageList_Replace
ImageList_Remove
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_Copy
ImageList_ReplaceIcon
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_SetDragCursorImage
ord17
ImageList_Destroy
ImageList_Draw
ord16
rpcrt4
UuidToStringW
RpcStringFreeW
oleacc
LresultFromObject
uxtheme
OpenThemeData
IsThemeBackgroundPartiallyTransparent
GetThemeColor
DrawThemeParentBackground
CloseThemeData
GetThemeBackgroundContentRect
GetThemeMargins
GetThemeFont
GetThemeBackgroundExtent
SetWindowTheme
GetCurrentThemeName
GetThemePartSize
GetThemeInt
GetThemeSysColor
GetThemeSysFont
IsThemeActive
IsAppThemed
IsThemePartDefined
DrawThemeBackground
vcruntime140
wcschr
_purecall
__CxxFrameHandler3
_setjmp3
longjmp
_set_se_translator
wcsstr
_except_handler4_common
memset
memchr
memmove
memcpy
memcmp
__RTDynamicCast
_CxxThrowException
strchr
__std_exception_copy
__std_exception_destroy
strstr
__std_terminate
__RTtypeid
__std_type_info_compare
__CxxLongjmpUnwind
api-ms-win-crt-runtime-l1-1-0
_errno
_invalid_parameter_noinfo_noreturn
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_cexit
_seh_filter_exe
_set_app_type
_get_narrow_winmain_command_line
_initterm
_initterm_e
exit
_exit
_c_exit
_register_thread_local_exe_atexit_callback
_controlfp_s
system
abort
terminate
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vswprintf
_open_osfhandle
_wsopen_dispatch
__stdio_common_vfwprintf
_fseeki64
__stdio_common_vsscanf
__stdio_common_vsprintf
fopen
fclose
__stdio_common_vfprintf
_get_osfhandle
_fileno
ferror
__stdio_common_vsnprintf_s
__stdio_common_vswscanf
fopen_s
__stdio_common_vsprintf_s
ftell
__acrt_iob_func
fseek
fread
fwrite
_close
__p__commode
_set_fmode
_read
_write
_lseeki64
_telli64
clearerr
feof
_ftelli64
__stdio_common_vsprintf_p
_wfopen
__stdio_common_vswprintf_p
fflush
fgets
fputc
api-ms-win-crt-heap-l1-1-0
realloc
calloc
malloc
_callnewh
_set_new_mode
free
api-ms-win-crt-filesystem-l1-1-0
_wmkdir
_wrename
_wremove
_wrmdir
api-ms-win-crt-convert-l1-1-0
atoi
_wcstod_l
wcstod
_wcstoui64
strtol
wcstol
strtoll
_wtol
strtoul
_wtoi
atof
wcstoul
_wcstoi64
api-ms-win-crt-string-l1-1-0
strnlen
_stricmp
iswdigit
iswspace
towupper
towlower
wcspbrk
strncmp
strcmp
strlen
isspace
isalnum
isalpha
tolower
_wcsicmp
strncpy
wcsncpy
toupper
isdigit
iswalnum
strcpy_s
strcat_s
strncpy_s
iswxdigit
iswprint
_strdup
iswalpha
api-ms-win-crt-time-l1-1-0
_localtime64
_time64
_gmtime64
_difftime64
_gmtime64_s
_localtime64_s
_mktime64
wcsftime
_tzset
_get_timezone
api-ms-win-crt-math-l1-1-0
modf
floor
_libm_sse2_pow_precise
_libm_sse2_exp_precise
_libm_sse2_log_precise
_CIatan2
lround
_libm_sse2_atan_precise
lroundf
_libm_sse2_cos_precise
_libm_sse2_sin_precise
ceil
_CIfmod
_libm_sse2_acos_precise
_libm_sse2_tan_precise
__setusermatherr
_libm_sse2_sqrt_precise
_fdtest
_except1
hypot
_fdopen
api-ms-win-crt-utility-l1-1-0
rand
bsearch
qsort
srand
labs
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
__initialize_lconv_for_unsigned_char
_free_locale
_create_locale
setlocale
api-ms-win-crt-environment-l1-1-0
_wgetenv
_wgetcwd
getenv
shlwapi
SHAutoComplete
AssocQueryStringW
msimg32
AlphaBlend
GradientFill
user32
DeferWindowPos
AnimateWindow
IsWindow
EndDeferWindowPos
RedrawWindow
InvalidateRect
IsWindowVisible
SetFocus
GetActiveWindow
GetUpdateRgn
EnableScrollBar
GetClientRect
GetWindowRect
CallWindowProcW
PostQuitMessage
GetMessageTime
GetMessagePos
SetCursorPos
GetCursorPos
ClientToScreen
ScreenToClient
UnregisterHotKey
MapWindowPoints
WindowFromPoint
ChildWindowFromPointEx
GetSysColor
FillRect
InflateRect
PtInRect
GetParent
SetParent
GetWindow
GetAsyncKeyState
RegisterHotKey
SetWindowsHookExW
UnhookWindowsHookEx
TranslateMessage
SetWindowTextW
SetForegroundWindow
EnableMenuItem
GetSystemMenu
DrawMenuBar
GetDialogBaseUnits
CreateDialogIndirectParamW
IsZoomed
IsIconic
GetWindowPlacement
SetWindowPos
MoveWindow
SetCapture
SetLayeredWindowAttributes
VkKeyScanW
CallNextHookEx
ShowWindow
GetIconInfo
LoadImageW
LoadIconW
ReleaseDC
GetDC
LoadBitmapW
SetWindowLongW
GetWindowLongW
GetKeyState
ShowCursor
AdjustWindowRectEx
IsClipboardFormatAvailable
MessageBoxA
GetFocus
UpdateWindow
GetMenuItemInfoW
BeginDeferWindowPos
DdeFreeStringHandle
DdeQueryStringW
DdeCreateStringHandleW
DdeGetLastError
MapVirtualKeyW
IsDialogMessageW
SetScrollInfo
GetScrollInfo
SystemParametersInfoW
ChildWindowFromPoint
FindWindowExW
GetComboBoxInfo
CreateDialogParamW
GetDlgItem
DrawTextW
DrawFocusRect
CreateIconIndirect
DrawStateW
SetRect
SetRectEmpty
CopyRect
OffsetRect
SetWindowRgn
DrawIconEx
DestroyCursor
IsMenu
keybd_event
GetWindowTextLengthW
HideCaret
UnionRect
GetClassInfoW
IsRectEmpty
RegisterWindowMessageW
SetMenu
DrawEdge
DrawFrameControl
GetMenuState
CheckMenuItem
GetSubMenu
GetMenuItemID
SetMenuItemInfoW
GetSysColorBrush
CheckMenuRadioItem
GetProcessDefaultLayout
CreateMenu
CreatePopupMenu
DestroyMenu
InsertMenuW
AppendMenuW
ModifyMenuW
ReleaseCapture
EnableWindow
GetCapture
IsWindowEnabled
GetSystemMetrics
GetMenuItemCount
FlashWindowEx
RemoveMenu
SetMenuInfo
InsertMenuItemW
DestroyIcon
GetWindowTextW
MessageBeep
GetClassNameW
CreateAcceleratorTableW
DestroyAcceleratorTable
TranslateAcceleratorW
GetDoubleClickTime
GetCaretBlinkTime
ValidateRgn
GetMessageW
ValidateRect
GetWindowDC
BeginPaint
EndPaint
GetDesktopWindow
RegisterClipboardFormatW
GetClipboardFormatNameW
wsprintfW
ChangeDisplaySettingsExW
EnumDisplaySettingsW
MonitorFromPoint
MonitorFromWindow
GetMonitorInfoW
EnumDisplayMonitors
TrackPopupMenu
ScrollWindow
PostThreadMessageW
MessageBoxW
PostMessageW
RegisterClassW
CreateWindowExW
BringWindowToTop
PeekMessageW
SendMessageW
DefWindowProcW
UnregisterClassW
DestroyWindow
SetCursor
LoadCursorW
DispatchMessageW
MsgWaitForMultipleObjects
SetTimer
KillTimer
DdeInitializeW
DdeUninitialize
DdeConnect
DdeDisconnect
DdePostAdvise
DdeNameService
DdeClientTransaction
DdeCreateDataHandle
DdeGetData
DdeFreeDataHandle
gdi32
PolyPolygon
Pie
MaskBlt
GetStockObject
GetPixel
GetObjectType
RoundRect
SelectClipRgn
ExtSelectClipRgn
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPixel
SetPolyFillMode
StretchBlt
StretchDIBits
SetROP2
SetStretchBltMode
GetWorldTransform
SetWorldTransform
ModifyWorldTransform
ExtTextOutW
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
GetClipBox
PolyBezier
SetViewportExtEx
SetWindowExtEx
SetWindowOrgEx
CombineRgn
CreateRectRgnIndirect
RectInRegion
CreateHatchBrush
CreatePatternBrush
CreatePen
ExtCreatePen
GetTextExtentPoint32W
GetBkColor
LineTo
MoveToEx
CreateDIBitmap
CreatePalette
GetDIBits
CreateDIBSection
GetDIBColorTable
SetDIBColorTable
EqualRgn
GetRgnBox
PtInRegion
GetNearestPaletteIndex
GetPaletteEntries
GetCharABCWidthsW
GetTextExtentExPointW
CreateICW
GetSystemPaletteEntries
CreateDCW
SetViewportOrgEx
CloseEnhMetaFile
CreateEnhMetaFileW
DeleteEnhMetaFile
GetEnhMetaFileW
GetEnhMetaFileHeader
PlayEnhMetaFile
SetAbortProc
StartDocW
EndDoc
StartPage
EndPage
EnumFontFamiliesExW
ExtFloodFill
Ellipse
Arc
OffsetRgn
GetRegionData
ExtCreateRegion
GetWindowExtEx
GetViewportExtEx
GetGraphicsMode
CreateSolidBrush
GetOutlineTextMetricsW
CreateFontIndirectW
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmapIndirect
CreateBitmap
BitBlt
SetTextColor
SetBkMode
SetBkColor
GdiFlush
SetBrushOrgEx
GetTextMetricsW
SelectPalette
SelectObject
RealizePalette
GetDeviceCaps
ExcludeClipRect
CreateRectRgn
GetObjectW
DeleteObject
Rectangle
Polyline
winspool.drv
OpenPrinterW
ClosePrinter
DocumentPropertiesW
GetPrinterW
comdlg32
GetSaveFileNameW
PageSetupDlgW
PrintDlgW
ChooseFontW
CommDlgExtendedError
GetOpenFileNameW
advapi32
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
GetUserNameW
ole32
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
OleGetClipboard
CoCreateInstance
ReleaseStgMedium
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoTaskMemAlloc
CoTaskMemFree
OleUninitialize
OleInitialize
Sections
.text Size: 5.6MB - Virtual size: 5.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 145KB - Virtual size: 2.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 495KB - Virtual size: 495KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ