Static task
static1
Behavioral task
behavioral1
Sample
2024-01-25_21d63f7cdc7a9db39a1ae485368f5f3d_magniber.exe
Resource
win7-20231215-en
windows7-x64
General
-
Target
2024-01-25_21d63f7cdc7a9db39a1ae485368f5f3d_magniber
-
Size
30.6MB
-
MD5
21d63f7cdc7a9db39a1ae485368f5f3d
-
SHA1
937c79d2fae3178237b9c8096d93e74b24455455
-
SHA256
3553536309c9866308822a89f31671da33d722e76332857a3e17f8d52d44e428
-
SHA512
5617b3d61c2a8aa953d5734bc4a3de0b22f38e86e87e90bf7e58806c137dd7447981c7659dfb2cd678026bb06d909167df2b2087a944b2a19742dcb4d3cc391d
-
SSDEEP
393216:c8sUj347qUeYSlNhUI5gk2iB/+7wGD71GO2xZ4TCm80OlIM7UJWep:LyPklNhUI5gk2iBWkGlGO2QT1Ziup
Malware Config
Signatures
-
Detects Windows executables referencing non-Windows User-Agents 1 IoCs
resource yara_rule sample INDICATOR_SUSPICIOUS_EXE_NoneWindowsUA -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-01-25_21d63f7cdc7a9db39a1ae485368f5f3d_magniber
Files
-
2024-01-25_21d63f7cdc7a9db39a1ae485368f5f3d_magniber.exe windows:6 windows x86 arch:x86
fb5fd9ae6907221da6172a17e09c6b66
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
GetStringTypeExW
GetThreadLocale
GlobalGetAtomNameW
VerSetConditionMask
VerifyVersionInfoW
GetFileAttributesW
InitializeCriticalSectionAndSpinCount
FileTimeToSystemTime
SystemTimeToFileTime
VirtualProtect
GetShortPathNameW
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
GetFileTime
LocalFileTimeToFileTime
SetFileAttributesW
SetFileTime
SystemTimeToTzSpecificLocalTime
SearchPathW
GetTempPathW
GetTickCount
GetProfileIntW
Sleep
FindResourceExW
GetUserDefaultUILanguage
GetDiskFreeSpaceW
GetTempFileNameW
GetUserDefaultLCID
GetWindowsDirectoryW
CompareStringW
GetModuleHandleExW
LoadLibraryA
SetDllDirectoryW
AddVectoredExceptionHandler
RemoveVectoredExceptionHandler
GlobalMemoryStatusEx
IsDebuggerPresent
CompareFileTime
GetProcessTimes
GetExitCodeProcess
OpenProcess
GetSystemTime
ReleaseMutex
GetUserDefaultLocaleName
CreateDirectoryW
SetFilePointerEx
GetSystemInfo
QueryPerformanceCounter
QueryPerformanceFrequency
GetThreadTimes
OutputDebugStringW
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
IsProcessorFeaturePresent
VirtualAlloc
VirtualFree
LoadLibraryExA
TryEnterCriticalSection
GetStringTypeW
WaitForSingleObjectEx
SwitchToThread
GetExitCodeThread
GetNativeSystemInfo
GetSystemTimeAsFileTime
GetCPInfo
LCMapStringW
GetLocaleInfoW
FormatMessageA
GetEnvironmentVariableW
SetCurrentDirectoryW
FindNextFileW
GetDiskFreeSpaceExW
GetFileInformationByHandle
RemoveDirectoryW
DeviceIoControl
CreateDirectoryExW
MoveFileExW
AreFileApisANSI
ResetEvent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
FreeLibraryAndExitThread
InterlockedFlushSList
QueryDepthSList
CreateTimerQueue
SignalObjectAndWait
CreateThread
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
SetEndOfFile
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
ReleaseSemaphore
UnregisterWaitEx
RtlUnwind
VirtualQuery
ExitThread
GetCommandLineA
GetCommandLineW
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
ExitProcess
GetACP
SetConsoleCtrlHandler
GetDateFormatW
GetTimeFormatW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
DeleteFileA
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
CreateFileW
DeleteFileW
GetLocaleInfoEx
GetThreadPreferredUILanguages
CompareStringEx
ApplicationRecoveryFinished
ApplicationRecoveryInProgress
RegisterApplicationRestart
RegisterApplicationRecoveryCallback
GetCurrentDirectoryW
GlobalFlags
GlobalFindAtomW
FreeResource
GetSystemDirectoryW
EncodePointer
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
lstrcpyW
GetCurrentProcessId
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
WideCharToMultiByte
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GetVersionExW
GetCurrentThread
ResumeThread
SetThreadPriority
GetCurrentThreadId
CreateEventW
WaitForSingleObject
SetEvent
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
LockResource
SetFilePointer
ReadFile
LockFile
ChangeTimerQueueTimer
GetDriveTypeW
IsWow64Process
lstrlenW
CopyFileExW
GetComputerNameExW
FindCloseChangeNotification
FindFirstChangeNotificationW
CreateMutexW
CreateFileA
LockFileEx
UnlockFileEx
InitializeSRWLock
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockExclusive
AcquireSRWLockShared
GetDllDirectoryW
DosDateTimeToFileTime
GetFileAttributesA
GetLocalTime
lstrcatW
PostQueuedCompletionStatus
CreateIoCompletionPort
GetQueuedCompletionStatus
SetWaitableTimer
QueueUserAPC
TerminateThread
WaitForMultipleObjects
QueueUserWorkItem
PeekNamedPipe
GetFullPathNameA
DeleteAtom
OpenMutexW
CreateProcessW
ProcessIdToSessionId
CreateFileMappingA
HeapCompact
FlushViewOfFile
GetDiskFreeSpaceA
GetTempPathA
HeapValidate
HeapCreate
VirtualLock
VirtualUnlock
SleepEx
GetEnvironmentVariableA
CreateNamedPipeW
FindNextChangeNotification
ExpandEnvironmentStringsW
GlobalMemoryStatus
FlushConsoleInputBuffer
GetVolumeInformationW
ReadConsoleInputA
CloseHandle
MultiByteToWideChar
FindResourceW
lstrcmpiW
SizeofResource
LoadResource
LoadLibraryExW
FreeLibrary
LoadLibraryW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
DeleteCriticalSection
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
SetLastError
GetLastError
RaiseException
DecodePointer
OutputDebugStringA
GetModuleFileNameW
LeaveCriticalSection
SetErrorMode
EnterCriticalSection
SetConsoleMode
user32
GetClassNameW
GetClassLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
IsDialogMessageW
GetWindow
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetFocus
GetDlgCtrlID
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
GetDlgItem
SetWindowPos
MoveWindow
ShowWindow
LoadCursorW
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GetSystemMetrics
IsWindow
LoadIconW
SystemParametersInfoW
OffsetRect
MessageBeep
RedrawWindow
IsZoomed
GetLastActivePopup
GetWindowThreadProcessId
GetWindowLongW
IsWindowEnabled
SetCursor
ShowOwnedPopups
PostQuitMessage
PostMessageW
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
LoadBitmapW
GetParent
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
SetScrollInfo
UnregisterClassW
CharNextW
MessageBoxW
EnableWindow
GetFocus
SendMessageW
UnhookWindowsHookEx
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
SetForegroundWindow
GetUserObjectInformationW
GetProcessWindowStation
PrivateExtractIconsW
GetClipboardData
GetScrollInfo
WinHelpW
MonitorFromWindow
GetMonitorInfoW
ClientToScreen
GetDesktopWindow
RealChildWindowFromPoint
CopyImage
MessageBoxExA
MessageBoxA
SendInput
DeleteMenu
ChangeWindowMessageFilter
SetTimer
KillTimer
InvalidateRect
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetWindowDC
FillRect
DestroyIcon
CharUpperW
BringWindowToTop
ReleaseCapture
LoadAcceleratorsW
TranslateAcceleratorW
LoadMenuW
VkKeyScanW
CreatePopupMenu
DestroyMenu
InsertMenuItemW
SetRectEmpty
IntersectRect
LoadImageW
UnpackDDElParam
ReuseDDElParam
SetParent
MonitorFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
DialogBoxParamW
SetClipboardData
LoadStringW
CreateIconIndirect
CharLowerBuffW
wsprintfW
InvertRect
HideCaret
GetWindowRgn
DrawIcon
GetComboBoxInfo
GetNextDlgGroupItem
DestroyCursor
CreateMenu
GetDoubleClickTime
GetDCEx
GetDialogBaseUnits
GetIconInfo
GetUpdateRect
SubtractRect
MapVirtualKeyExW
IsCharLowerW
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
IsClipboardFormatAvailable
FrameRect
CopyIcon
GetTopWindow
AdjustWindowRect
MsgWaitForMultipleObjects
MessageBoxIndirectW
GetCaretPos
GetAncestor
CreateDialogParamW
ChangeClipboardChain
SetClipboardViewer
MessageBoxExW
CreateIconFromResourceEx
DialogBoxIndirectParamW
FindWindowExW
FlashWindow
EnumDisplayDevicesW
InvalidateRgn
SetWindowContextHelpId
SetMenuDefaultItem
GetMenuDefaultItem
EnableScrollBar
UpdateLayeredWindow
CharUpperBuffW
SetCursorPos
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetRect
UnionRect
GetKeyNameTextW
MapDialogRect
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
SendDlgItemMessageA
GetMenuItemInfoW
SetClassLongW
LockWindowUpdate
RegisterClipboardFormatW
EnumChildWindows
CopyAcceleratorTableW
EmptyClipboard
DestroyAcceleratorTable
CreateAcceleratorTableW
MapVirtualKeyW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
WaitMessage
PostThreadMessageW
ModifyMenuW
NotifyWinEvent
InflateRect
WindowFromPoint
SetWindowRgn
GetSystemMenu
SetCapture
GetAsyncKeyState
TrackMouseEvent
IsRectEmpty
DrawStateW
RegisterWindowMessageW
RegisterClassExW
gdi32
SetDCPenColor
CreateHalftonePalette
GetDIBColorTable
GetTextExtentExPointW
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
GetObjectA
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateCompatibleBitmap
CreateDIBitmap
CreateFontIndirectW
EnumFontFamiliesW
GetTextCharsetInfo
GetTextMetricsW
CombineRgn
GetDIBits
PatBlt
RealizePalette
SetPixel
SetViewportOrgEx
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
GetRgnBox
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
GetBitmapBits
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
DeleteDC
RectVisible
PtVisible
OffsetRgn
GetTextColor
GetTextExtentPoint32W
GetMapMode
SetRectRgn
DPtoLP
CreateFontW
StretchBlt
CreateRectRgnIndirect
LineTo
IntersectClipRect
GetBkColor
CreateEllipticRgn
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
Ellipse
CreatePolygonRgn
Polygon
Polyline
GetCurrentObject
Rectangle
EnumFontFamiliesExW
RoundRect
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetNearestPaletteIndex
GetSystemPaletteEntries
GetTextFaceW
SetPixelV
SetBitmapDimensionEx
GetFontData
GetGlyphIndicesW
GetOutlineTextMetricsW
AddFontResourceExW
RemoveFontResourceExW
CloseEnhMetaFile
CreateEnhMetaFileW
DeleteEnhMetaFile
EnumEnhMetaFile
GetGlyphOutlineW
CreateCompatibleDC
BitBlt
DeleteObject
GetObjectW
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
OffsetWindowOrgEx
CopyMetaFileW
CreateDCW
advapi32
FreeSid
CryptDecrypt
CryptEncrypt
CryptExportKey
CryptGetKeyParam
CryptSetKeyParam
CryptDestroyKey
CryptImportKey
CryptGenKey
SetSecurityDescriptorDacl
RegQueryValueExW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
GetFileSecurityW
OpenProcessToken
CopySid
GetLengthSid
GetTokenInformation
IsValidSid
ConvertSidToStringSidW
CryptReleaseContext
CryptGenRandom
CryptAcquireContextW
MapGenericMask
InitializeSecurityDescriptor
DuplicateToken
AccessCheck
ReportEventA
RegisterEventSourceA
DeregisterEventSource
SetEntriesInAclW
OpenThreadToken
GetUserNameW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegDeleteTreeW
CryptGetHashParam
AllocateAndInitializeSid
CryptCreateHash
CryptHashData
CryptDestroyHash
RegNotifyChangeKeyValue
ole32
CoInitializeEx
CLSIDFromString
CoMarshalInterThreadInterfaceInStream
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
OleLockRunning
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CreateStreamOnHGlobal
CoDisconnectObject
CoInitialize
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
StringFromCLSID
CoUnmarshalInterface
ProgIDFromCLSID
RegisterDragDrop
RevokeDragDrop
StgCreateDocfileOnILockBytes
PropVariantClear
BindMoniker
CoSetProxyBlanket
OleRun
CLSIDFromProgID
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoRevokeClassObject
CoRegisterClassObject
CoLockObjectExternal
CoGetClassObject
CoRegisterMessageFilter
oleaut32
SafeArrayRedim
VariantTimeToSystemTime
SystemTimeToVariantTime
VariantChangeType
SysAllocStringLen
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
RegisterTypeLibForUser
SysFreeString
SysStringLen
LoadTypeLi
LoadRegTypeLi
SysAllocString
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
SysStringByteLen
SysAllocStringByteLen
OleCreateFontIndirect
SafeArrayGetLBound
VarBstrFromDate
SafeArrayCreate
SafeArrayDestroy
SafeArrayLock
SafeArrayUnlock
SafeArrayPutElement
SafeArrayCopy
SetErrorInfo
CreateErrorInfo
SafeArrayGetVartype
VariantInit
DispCallFunc
VariantCopyInd
GetErrorInfo
VariantClear
VariantCopy
uxtheme
IsAppThemed
GetThemePartSize
CloseThemeData
GetThemeSysColor
GetCurrentThemeName
GetThemeColor
DrawThemeTextEx
BufferedPaintInit
BufferedPaintUnInit
BeginBufferedPaint
EndBufferedPaint
DrawThemeParentBackground
GetWindowTheme
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
OpenThemeData
GetThemeMargins
winmm
PlaySoundW
waveInGetDevCapsW
waveInMessage
waveInGetNumDevs
fontsub
CreateFontPackage
shlwapi
PathBuildRootW
PathGetDriveNumberW
PathIsDirectoryW
ord12
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW
PathIsNetworkPathW
gdiplus
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipCreatePath
GdipDeletePath
GdipResetPath
GdipClosePathFigure
GdipSetPixelOffsetMode
GdipSetTextRenderingHint
GdipDrawImageRectRectI
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipGetImagePixelFormat
GdipGetImagePalette
GdipAddPathArcI
GdipCreatePen1
GdipDeletePen
GdipGetImagePaletteSize
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCreateFont
GdipDeleteFont
GdipDrawString
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipCreateLineBrushI
GdipCreatePen2
GdipFillRectangleI
GdipFillPath
GdipDrawImageI
GdipDrawImageRectRect
GdipSetPenDashArray
GdipBitmapSetPixel
GdipDrawLineI
GdipDrawRectangleI
GdipAddPathLineI
GdipSetSolidFillColor
GdipSetCompositingMode
GdipCreateLineBrushFromRectI
GdipSetPenColor
GdipSetLinePresetBlend
GdipFillRectangle
GdipCreateHICONFromBitmap
GdipCreateRegion
GdipDeleteRegion
GdipGetRegionBounds
GdipMeasureCharacterRanges
GdipSetStringFormatFlags
GdipSetStringFormatMeasurableCharacterRanges
GdipSetStringFormatTrimming
GdipDrawEllipseI
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipCreateTexture2I
GdipFillEllipse
GdipSetPenMode
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipSetSmoothingMode
GdipSetPageUnit
GdipDrawPath
GdipCreateTexture
GdipGraphicsClear
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipLoadImageFromStream
GdipConvertToEmfPlus
GdipCreateMetafileFromStream
GdipGetMetafileHeaderFromMetafile
GdipDrawRectangle
GdipImageRotateFlip
GdipSaveImageToFile
GdipCreateHBITMAPFromBitmap
GdipBitmapGetPixel
GdipCloneBitmapAreaI
GdipSetCompositingQuality
GdipCreateSolidFill
GdipDeleteBrush
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipGetDC
GdipDrawImageRect
GdipCreateBitmapFromStream
GdipMeasureString
GdipCloneBrush
msimg32
AlphaBlend
TransparentBlt
comctl32
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_Remove
ImageList_Replace
ImageList_LoadImageW
ImageList_Destroy
ImageList_Create
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
ImageList_GetIcon
ImageList_AddMasked
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_Draw
ord345
InitCommonControlsEx
ImageList_Add
_TrackMouseEvent
oleacc
AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject
dwmapi
DwmDefWindowProc
DwmExtendFrameIntoClientArea
DwmIsCompositionEnabled
DwmSetIconicLivePreviewBitmap
DwmSetWindowAttribute
DwmSetIconicThumbnail
DwmInvalidateIconicBitmaps
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
oledlg
OleUIBusyW
userenv
UnloadUserProfile
version
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
usp10
ScriptStringAnalyse
ScriptShape
ScriptStringFree
ScriptStringOut
ScriptFreeCache
ScriptItemize
winspool.drv
DocumentPropertiesW
ClosePrinter
OpenPrinterW
comdlg32
GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW
ChooseColorW
PrintDlgW
shell32
InitNetworkAddressControl
SHCreateItemFromParsingName
SHAddToRecentDocs
SHGetMalloc
SHGetKnownFolderPath
SHGetFolderPathW
SHOpenFolderAndSelectItems
ord190
ord155
SHGetSpecialFolderPathW
ShellExecuteExW
ShellExecuteW
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetFileInfoW
SHGetPathFromIDListW
SHAppBarMessage
DragFinish
DragQueryFileW
dbghelp
MiniDumpWriteDump
dwrite
DWriteCreateFactory
urlmon
URLDownloadToFileW
ws2_32
WSAStartup
WSACleanup
WSASetLastError
WSAGetLastError
WSASend
connect
getsockopt
select
WSARecv
listen
getsockname
bind
FreeAddrInfoW
GetAddrInfoW
htons
ntohs
htonl
setsockopt
ntohl
closesocket
ioctlsocket
recv
send
getpeername
socket
WSAIoctl
accept
__WSAFDIsSet
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
recvfrom
sendto
getaddrinfo
freeaddrinfo
gethostname
WSASocketW
wininet
InternetConnectA
InternetGetConnectedState
HttpEndRequestW
HttpSendRequestExW
InternetWriteFile
InternetOpenW
InternetSetOptionW
InternetQueryOptionW
InternetCloseHandle
InternetCreateUrlW
InternetCheckConnectionW
HttpOpenRequestW
InternetGetLastResponseInfoW
InternetSetFilePointer
InternetConnectW
InternetCrackUrlW
InternetReadFile
HttpOpenRequestA
HttpSendRequestW
HttpQueryInfoA
InternetErrorDlg
HttpQueryInfoW
wtsapi32
WTSUnRegisterSessionNotification
WTSQuerySessionInformationW
WTSFreeMemory
WTSRegisterSessionNotification
mfplat
MFCreateSystemTimeSource
evr
MFCopyImage
bcrypt
BCryptCloseAlgorithmProvider
BCryptGenRandom
BCryptOpenAlgorithmProvider
wldap32
ord73
ord208
ord41
ord301
ord14
ord133
ord117
ord79
ord26
ord216
ord46
ord219
ord145
ord147
ord27
ord127
ord167
ord142
winhttp
WinHttpGetIEProxyConfigForCurrentUser
normaliz
IdnToAscii
crypt32
CertOpenStore
CertCloseStore
CertCreateCertificateChainEngine
CryptQueryObject
CertFreeCertificateChain
CertGetCertificateChain
CertEnumCertificatesInStore
CertFindCertificateInStore
CertFreeCertificateContext
CryptStringToBinaryW
PFXImportCertStore
CryptDecodeObjectEx
CertAddCertificateContextToStore
CertFindExtension
CertGetNameStringW
CertFreeCertificateChainEngine
Sections
.text Size: 16.7MB - Virtual size: 16.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4.0MB - Virtual size: 4.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1.5MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 6.8MB - Virtual size: 6.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE