Overview
overview
8Static
static
3_Getintopc...10.rar
windows7-x64
8_Getintopc...10.rar
windows10-2004-x64
7Password 123.txt
windows7-x64
1Password 123.txt
windows10-2004-x64
1VNC_Connec...ws.exe
windows7-x64
6VNC_Connec...ws.exe
windows10-2004-x64
6VNC_Connec...ck.zip
windows7-x64
1VNC_Connec...ck.zip
windows10-2004-x64
1Patch.exe
windows7-x64
1Patch.exe
windows10-2004-x64
1evbda.sys
windows10-2004-x64
1readme.txt
windows7-x64
1readme.txt
windows10-2004-x64
1Static task
static1
Behavioral task
behavioral1
Sample
_Getintopc.com_VNC_Connect_Enterprise_6.10.rar
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
_Getintopc.com_VNC_Connect_Enterprise_6.10.rar
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
Password 123.txt
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral4
Sample
Password 123.txt
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
VNC_Connect_Enterprise_6.10/VNC-Server-6.10.0-Windows.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral6
Sample
VNC_Connect_Enterprise_6.10/VNC-Server-6.10.0-Windows.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
VNC_Connect_Enterprise_6.10/crack.zip
Resource
win7-20240215-en
windows7-x64
Behavioral task
behavioral8
Sample
VNC_Connect_Enterprise_6.10/crack.zip
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral9
Sample
Patch.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral10
Sample
Patch.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral11
Sample
evbda.sys
Resource
win10v2004-20240221-en
windows10-2004-x64
Behavioral task
behavioral12
Sample
readme.txt
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral13
Sample
readme.txt
Resource
win10v2004-20240221-en
windows10-2004-x64
Target
_Getintopc.com_VNC_Connect_Enterprise_6.10.rar
Size
20.1MB
MD5
c725da21d2c286632ed3f39e6ace7579
SHA1
f69081ae5329bc2c3862b7d49c81fe515a791d37
SHA256
75659ba1ac6056944e98005a0cfe3c7769402fd56a6b3f5409e676d2dbc8744d
SHA512
ca163d74da8f3304aa81d4fb65c9e2af2fbf0bac2ae305370235cfc645bbeaf048da86fb56ccf79fcf5dd6f1121eca694760b15b1a5762480c5bddac68b36f7e
SSDEEP
393216:otQVaNQRkeeQQj031B3QFhJ6fwc+wpZeKKSP+Pv8qx/dxe1X1J8S6o2UJi3YfPgT:owwbjMQFhMGwAeG3/d014EnJiIXkpZ
Checks for missing Authenticode signature.
| resource |
|---|
| unpack003/Patch.exe |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
C:\ent-slave-root\workspace\VNCConnect\Builds\Clients\VNC_6.10.x\label\con-windows-64\bld32\RelWithDebInfo\installers\server_bootstrap.pdb
WSAEnumNetworkEvents
WSAEventSelect
WSAIoctl
accept
bind
closesocket
ioctlsocket
getsockopt
setsockopt
socket
htons
WSAStartup
WSASetLastError
getservbyname
getservbyport
gethostbyname
gethostbyaddr
ntohs
ntohl
inet_ntoa
inet_addr
WSAGetLastError
htonl
getsockname
getpeername
WSASocketW
WSADuplicateSocketW
WSAConnect
_TrackMouseEvent
InitCommonControlsEx
ImageList_Destroy
ImageList_Create
ImageList_ReplaceIcon
ImageList_Add
GetProcAddress
LoadLibraryW
WaitForSingleObject
GetExitCodeProcess
ResetEvent
CreateEventW
GetComputerNameW
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep
GetSystemTimeAsFileTime
GetModuleHandleW
ExpandEnvironmentStringsW
RtlCaptureStackBackTrace
GetModuleHandleExW
GetStdHandle
GetFileType
AllocConsole
FreeConsole
GetConsoleMode
ReadConsoleW
WriteConsoleW
WaitForMultipleObjects
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
GetHandleInformation
SetHandleInformation
GetTimeFormatW
GetDateFormatW
GetSystemDirectoryA
GetVersionExW
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
GlobalSize
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
DecodePointer
HeapReAlloc
SetEnvironmentVariableW
GetFileSizeEx
FlushFileBuffers
SetConsoleCtrlHandler
GetConsoleOutputCP
SetFilePointerEx
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
HeapFree
HeapAlloc
GetCurrentThread
DuplicateHandle
WriteFile
ExitProcess
ReadFile
LoadLibraryExW
EncodePointer
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
RaiseException
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetCurrentThreadId
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
SetEvent
InitializeCriticalSectionAndSpinCount
ReOpenFile
LocalAlloc
MultiByteToWideChar
SetErrorMode
FindNextFileW
FindFirstFileW
FindClose
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
QueryFullProcessImageNameW
GetModuleFileNameW
CreateFileW
SearchPathW
OutputDebugStringW
GetThreadTimes
GetCurrentProcess
GetCurrentProcessId
SetStdHandle
FindResourceW
SizeofResource
LockResource
LoadResource
GetUserDefaultLCID
GetLocaleInfoW
CreateProcessW
GetCommandLineW
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetSystemInfo
WideCharToMultiByte
GetTempPathW
MoveFileW
LocalFree
SetLastError
SetFilePointer
SetEndOfFile
RemoveDirectoryW
GetFileAttributesExW
GetFileAttributesW
DeleteFileW
CreateDirectoryW
GetCurrentDirectoryW
SetCurrentDirectoryW
FormatMessageW
FreeLibrary
GetSystemDirectoryW
GetProcessId
GetLastError
CloseHandle
GetStringTypeW
GetProcessHeap
HeapSize
ConnectNamedPipe
CreateNamedPipeW
GetOverlappedResult
CancelIo
OpenProcess
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
CreateThread
TerminateThread
ResumeThread
LoadLibraryA
IsWindowVisible
EnumDisplaySettingsW
GetNextDlgTabItem
DefWindowProcW
ScrollWindowEx
RedrawWindow
KillTimer
SetTimer
DefDlgProcW
IsIconic
DestroyWindow
CreateWindowExW
ScreenToClient
RegisterClipboardFormatW
ChangeDisplaySettingsExW
GetMessagePos
GetDoubleClickTime
CreateMenu
SetMenu
SetMenuDefaultItem
SetMenuItemInfoW
InsertMenuItemW
TrackPopupMenu
DeleteMenu
GetMenuItemCount
CheckMenuItem
DestroyMenu
CreatePopupMenu
GetMenuState
GetKeyboardLayout
GetWindowThreadProcessId
GetOpenClipboardWindow
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
IsDialogMessageW
DestroyIcon
EnumChildWindows
SetWindowTextW
GetDlgItem
EndDialog
DialogBoxParamW
CreateDialogParamW
SetParent
GetClassNameW
IsWindowEnabled
PostMessageW
GetCursor
GetScrollInfo
SetScrollInfo
OffsetRect
AdjustWindowRectEx
GetCursorPos
InvalidateRect
GetWindowTextLengthW
GetWindowTextW
GetKeyState
GetClipboardData
LoadIconW
GetDesktopWindow
SetWindowLongW
MapWindowPoints
ClientToScreen
GetWindowRect
EndPaint
BeginPaint
SetForegroundWindow
EnableMenuItem
GetSystemMenu
EnableWindow
ReleaseCapture
SetCapture
GetDlgCtrlID
GetWindowPlacement
SetWindowPos
ShowWindow
IsChild
GetMessageW
GetComboBoxInfo
GetWindowDC
GetAncestor
SystemParametersInfoW
GetWindowLongW
InflateRect
FrameRect
FillRect
DrawFocusRect
GetSysColorBrush
GetSysColor
SetCursor
GetClientRect
DrawTextW
GetFocus
SendMessageW
DrawFrameControl
SetFocus
LoadCursorW
MsgWaitForMultipleObjects
PeekMessageW
GetSystemMetrics
ReleaseDC
GetDC
DispatchMessageW
TranslateMessage
MonitorFromRect
MonitorFromWindow
GetMonitorInfoW
EnumDisplayMonitors
ToUnicodeEx
GetKeyboardLayoutList
GetAsyncKeyState
ToAsciiEx
VkKeyScanExA
VkKeyScanExW
keybd_event
MapVirtualKeyW
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
WindowFromPoint
CreateIconIndirect
GetParent
CallWindowProcW
UnregisterClassW
RegisterClassExW
ExcludeClipRect
GetDeviceCaps
GetStockObject
SelectObject
SetBkMode
SetTextColor
GetCharWidthW
CreateSolidBrush
DeleteObject
CreatePen
LineTo
SetBkColor
MoveToEx
CreateCompatibleBitmap
DeleteDC
BitBlt
CreateCompatibleDC
CreateDCW
GetClipBox
StretchBlt
SetWindowOrgEx
CreateBitmap
GdiAlphaBlend
CreateDIBSection
SetDIBColorTable
CreateFontIndirectW
GetTextExtentPoint32W
SetMapMode
GetDIBits
GetObjectW
PatBlt
GetTextMetricsW
GetPixel
SHFileOperationW
ShellExecuteW
SHGetKnownFolderPath
SHGetFileInfoW
ord74
CoCreateInstance
CoUninitialize
CoInitializeEx
CoTaskMemFree
OleInitialize
RegisterDragDrop
DoDragDrop
ReleaseStgMedium
CoTaskMemAlloc
CoTaskMemRealloc
CoMarshalInterThreadInterfaceInStream
CoGetInterfaceAndReleaseStream
OleUninitialize
SysAllocString
SysFreeString
GetUserNameW
RegSetValueExW
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegNotifyChangeKeyValue
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
CreateProcessWithLogonW
LogonUserW
SetSecurityInfo
SetNamedSecurityInfoW
GetSecurityInfo
GetNamedSecurityInfoW
SetSecurityDescriptorSacl
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
SetSecurityDescriptorControl
MakeSelfRelativeSD
MakeAbsoluteSD
InitializeSecurityDescriptor
GetSecurityDescriptorLength
GetSecurityDescriptorControl
SetEntriesInAclW
InitializeAcl
GetAclInformation
ConvertStringSidToSidW
ConvertSidToStringSidW
LookupAccountNameW
LookupAccountSidW
IsValidSid
GetTokenInformation
GetSidIdentifierAuthority
CreateProcessAsUserW
OpenProcessToken
AllocateAndInitializeSid
CopySid
EqualSid
FreeSid
GetLengthSid
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
C:\Users\User\Downloads\AppTools\AppActivator\x64\Release\Activator.pdb
InitOnceComplete
InitOnceBeginInitialize
TryEnterCriticalSection
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
RtlUnwind
GetLocaleInfoEx
CompareStringEx
LCMapStringEx
CreateProcessW
SetHandleInformation
CreatePipe
WriteConsoleW
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
GetCommandLineA
ExitProcess
InterlockedPushEntrySList
RtlPcToFileHeader
RtlUnwindEx
OutputDebugStringW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
WaitForSingleObjectEx
ResetEvent
FindResourceExW
GetUserDefaultLCID
GetTempFileNameW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTickCount
Sleep
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
FileTimeToSystemTime
VirtualProtect
GlobalGetAtomNameW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
GetTempPathW
SetFilePointer
GetFileSize
GetFileAttributesW
CreateFileW
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalSize
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
GetCurrentProcessId
GlobalAddAtomW
ResumeThread
SetThreadPriority
CreateEventW
SetEvent
CloseHandle
VerifyVersionInfoW
VerSetConditionMask
GlobalFree
GlobalUnlock
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleHandleW
GetProcAddress
lstrcpyW
WideCharToMultiByte
MultiByteToWideChar
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
GetModuleFileNameA
GlobalAlloc
LoadLibraryW
LoadLibraryExW
GetModuleHandleExW
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
SetLastError
OutputDebugStringA
GetModuleFileNameW
ExpandEnvironmentStringsW
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
ExpandEnvironmentStringsA
WaitForSingleObject
CreateThread
GetLastError
FindResourceW
LoadResource
LockResource
SizeofResource
SetTimer
RealChildWindowFromPoint
DeleteMenu
CopyImage
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
SendDlgItemMessageA
ClientToScreen
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuState
GetMenuStringW
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
UnhookWindowsHookEx
GetWindow
GetTopWindow
GetClassLongPtrW
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
PtInRect
EqualRect
KillTimer
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
InvertRect
DrawIcon
DestroyCursor
MessageBoxA
EnableWindow
GetClientRect
LoadImageW
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
IsZoomed
CharUpperW
GetAsyncKeyState
LoadMenuW
GetWindowRgn
GetSystemMenu
MessageBeep
NotifyWinEvent
SetCursorPos
SetRect
UnionRect
BringWindowToTop
CreatePopupMenu
IntersectRect
GetCapture
SetFocus
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DestroyIcon
SetParent
MonitorFromPoint
ScreenToClient
TrackMouseEvent
SendMessageW
LoadIconW
UnregisterClassW
PostMessageW
PostQuitMessage
RegisterWindowMessageW
DrawEdge
DrawFrameControl
IsWindowVisible
GetFocus
GetSystemMetrics
DrawStateW
SetWindowRgn
RedrawWindow
GetWindowRect
MapWindowPoints
GetSysColor
GetSysColorBrush
DrawFocusRect
FillRect
InflateRect
OffsetRect
IsRectEmpty
GetParent
DrawIconEx
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
SetActiveWindow
LockWindowUpdate
DestroyMenu
EnableScrollBar
GetWindowLongW
GetDesktopWindow
DefWindowProcW
GetClassInfoW
SetLayeredWindowAttributes
SetRectEmpty
CopyRect
LoadCursorW
SystemParametersInfoW
GetMonitorInfoW
EnumDisplayMonitors
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExW
CallNextHookEx
ShowOwnedPopups
SetCursor
MessageBoxW
GetWindowThreadProcessId
GetLastActivePopup
UpdateWindow
InvalidateRect
GetClassNameW
GetKeyNameTextW
MapVirtualKeyW
GetDC
ReleaseDC
GetMessagePos
GetMessageTime
CallWindowProcW
RegisterClassW
GetClassInfoExW
CreateWindowExW
IsMenu
IsChild
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsIconic
GetDoubleClickTime
GetIconInfo
CopyIcon
GetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
ModifyMenuW
DestroyAcceleratorTable
SetClassLongPtrW
GetUpdateRect
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableW
CopyAcceleratorTableW
MapDialogRect
UpdateLayeredWindow
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
SubtractRect
RegisterClipboardFormatW
CharUpperBuffW
FrameRect
IsClipboardFormatAvailable
PostThreadMessageW
GetNextDlgGroupItem
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
GetComboBoxInfo
CreateMenu
GetDlgCtrlID
HideCaret
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBitmap
CreateFontIndirectW
CreatePen
CreatePatternBrush
DeleteObject
EnumFontFamiliesW
GetDeviceCaps
GetStockObject
GetTextCharsetInfo
GetObjectW
CreateBitmap
SetBkColor
SetTextColor
CreateDCW
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
BitBlt
MoveToEx
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetRectRgn
DPtoLP
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
GetTextMetricsW
Polyline
Polygon
CreatePolygonRgn
ExtTextOutW
PatBlt
GetTextExtentPoint32W
GetTextColor
DeleteDC
CombineRgn
CreateEllipticRgn
CreateHatchBrush
CreateRectRgn
CreateRectRgnIndirect
CreateSolidBrush
Ellipse
GetBkColor
CopyMetaFileW
TransparentBlt
AlphaBlend
OpenPrinterW
DocumentPropertiesW
ClosePrinter
RegQueryInfoKeyW
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
SHGetFileInfoW
ShellExecuteW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHAppBarMessage
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
InitCommonControlsEx
StrFormatKBSizeW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW
PathFileExistsA
PathRemoveFileSpecW
GetCurrentThemeName
CloseThemeData
DrawThemeBackground
GetThemeColor
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetWindowTheme
DrawThemeText
IsAppThemed
DrawThemeParentBackground
OpenThemeData
CoInitializeEx
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
CoInitializeSecurity
CoSetProxyBlanket
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
StringFromGUID2
CoDisconnectObject
CreateStreamOnHGlobal
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysStringLen
SysFreeString
SysAllocString
GdipDrawImageRectI
GdiplusShutdown
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipFree
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdiplusStartup
LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
PlaySoundW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
evbda.pdb
RtlAppendUnicodeToString
KeInitializeEvent
KeWaitForSingleObject
ExAllocatePoolWithTag
ExFreePoolWithTag
MmUnmapIoSpace
MmMapIoSpaceEx
IoAllocateIrp
IofCallDriver
IoFreeIrp
IoGetDeviceProperty
IoInvalidateDeviceState
ZwClose
ZwOpenKey
ZwEnumerateKey
ZwQueryValueKey
ZwSetValueKey
strrchr
RtlQueryRegistryValues
MmGetSystemRoutineAddress
RtlWriteRegistryValue
KeLowerIrql
KfRaiseIrql
KeInitializeDpc
KeInsertQueueDpc
KeSetImportanceDpc
KeResetEvent
KeSetPriorityThread
KeEnterCriticalRegion
KeLeaveCriticalRegion
KeInitializeTimer
KeCancelTimer
KeSetTimer
KeInitializeSpinLock
KeAcquireSpinLockAtDpcLevel
KeReleaseSpinLockFromDpcLevel
ExAcquireFastMutexUnsafe
RtlCheckRegistryKey
PsCreateSystemThread
IoBuildDeviceIoControlRequest
IoConnectInterrupt
IoGetDmaAdapter
ObReferenceObjectByHandle
ObfDereferenceObject
ZwCreateKey
_vsnwprintf
PsThreadType
PsTerminateSystemThread
RtlIsNtDdiVersionAvailable
PsGetVersion
IoAllocateErrorLogEntry
IoWriteErrorLogEntry
IoAllocateWorkItem
IoFreeWorkItem
IoRaiseInformationalHardError
IoSetThreadHardErrorMode
KeNumberProcessors
RtlCompareMemory
KeDelayExecutionThread
ExQueryDepthSList
ExpInterlockedPopEntrySList
ExpInterlockedPushEntrySList
ExInitializeNPagedLookasideList
ExDeleteNPagedLookasideList
IoDisconnectInterrupt
IoFreeMdl
MmGetPhysicalMemoryRanges
memcpy_s
DbgPrint
RtlUnicodeStringToInteger
RtlInitUnicodeString
RtlIntegerToUnicodeString
wcsstr
RtlCopyUnicodeString
_vsnprintf
ZwOpenSection
ZwMapViewOfSection
ZwUnmapViewOfSection
ZwQuerySystemInformation
KeSetEvent
KeReleaseSpinLock
KeAcquireSpinLockRaiseToDpc
ExReleaseFastMutexUnsafe
wcsrchr
KeStallExecutionProcessor
KeQueryPerformanceCounter
WdfVersionBind
WdfVersionUnbind
WdfVersionBindClass
WdfVersionUnbindClass
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ