H:\source\NetMon\NetMonitor\Bin\server\spromgr.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
1a3567a240227ce200ef2ca816d9909ade3e65f6b4d974f570068acafc0b092f.exe
Resource
win7-20240215-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
1a3567a240227ce200ef2ca816d9909ade3e65f6b4d974f570068acafc0b092f.exe
Resource
win10v2004-20240221-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
1a3567a240227ce200ef2ca816d9909ade3e65f6b4d974f570068acafc0b092f
-
Size
6.7MB
-
MD5
a4dbdf2bc46f7790432088a341084b85
-
SHA1
d863288339f302d7e0d798851ee4451bc1b7c74b
-
SHA256
1a3567a240227ce200ef2ca816d9909ade3e65f6b4d974f570068acafc0b092f
-
SHA512
c95fded47f82f7e6aafe1ec03767cb08123aea0d93aa830836f753e4bb90ac70760ef0341d0564d1419961f31d5cfed08c09007f98d15af4d6fca91565a451b4
-
SSDEEP
196608:j2StB/IIk/PL9khh5y3/wg6ogeIPzpdjQ/ffhSlnxPordumdQbGD6bER1/AETy/j:7/hLNPorX2bGlU/vb
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1a3567a240227ce200ef2ca816d9909ade3e65f6b4d974f570068acafc0b092f
Files
-
1a3567a240227ce200ef2ca816d9909ade3e65f6b4d974f570068acafc0b092f.exe windows:5 windows x86 arch:x86
75b424ccf9386fd7705b7497552233ae
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
nfapi
?nf_udpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z
?nf_udpSetConnectionState@nfapi@@YA?AW4_NF_STATUS@@_KH@Z
?nf_setTCPTimeout@nfapi@@YAKK@Z
?nf_tcpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z
?nf_tcpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z
?nf_tcpSetConnectionState@nfapi@@YA?AW4_NF_STATUS@@_KH@Z
?nf_free@nfapi@@YAXXZ
?nf_udpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z
?nf_addRule@nfapi@@YA?AW4_NF_STATUS@@PAU_NF_RULE@1@H@Z
?nf_adjustProcessPriviledges@nfapi@@YAXXZ
?nf_init@nfapi@@YA?AW4_NF_STATUS@@PBDPAVNF_EventHandler@1@@Z
protocolfilters
?pf_addFilter@ProtocolFilters@@YAH_KW4_PF_FilterType@1@KW4_PF_OpTarget@1@1@Z
?PFObject_create@ProtocolFilters@@YAPAVPFObject@1@HH@Z
?pf_init@ProtocolFilters@@YAHPAVPFEvents@1@PB_W@Z
?pf_free@ProtocolFilters@@YAXXZ
?pf_getNFEventHandler@ProtocolFilters@@YAPAVNF_EventHandler@nfapi@@XZ
?pf_postObject@ProtocolFilters@@YAH_KPAVPFObject@1@@Z
shlwapi
PathFileExistsA
PathIsDirectoryA
SHDeleteKeyA
PathFindFileNameA
PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathRemoveFileSpecW
StrFormatKBSizeA
PathRemoveExtensionA
kernel32
GetCPInfo
InterlockedIncrement
InterlockedDecrement
CompareFileTime
GlobalAddAtomA
FindFirstFileW
FindNextFileW
GetProcessTimes
LockResource
LoadResource
SizeofResource
FindResourceW
ExitThread
GetCommandLineW
LocalSize
lstrcmpiA
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetFileTime
Module32First
Module32Next
GetAtomNameA
GlobalGetAtomNameA
CompareStringA
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetModuleHandleW
lstrcmpA
MulDiv
ExpandEnvironmentStringsA
GetFileType
SleepEx
GetOEMCP
GetACP
SetFilePointerEx
GetFileSizeEx
QueryPerformanceFrequency
ResetEvent
GetWindowsDirectoryA
VerSetConditionMask
VerifyVersionInfoA
GetProfileIntA
SearchPathA
VirtualProtect
ReplaceFileA
GetUserDefaultLCID
FindResourceExW
LocalLock
LocalUnlock
PostQueuedCompletionStatus
GetQueuedCompletionStatus
CreateIoCompletionPort
GetCurrentThread
GetTempFileNameA
DuplicateHandle
WaitNamedPipeA
CreateNamedPipeA
SetHandleInformation
WinExec
GetSystemDirectoryA
GetStartupInfoA
PeekNamedPipe
FindFirstFileA
lstrcpyA
FindClose
SetLastError
WaitForMultipleObjects
RemoveDirectoryA
GetDiskFreeSpaceExA
lstrcatA
LocalReAlloc
CancelIo
LocalAlloc
InterlockedExchange
VirtualFree
VirtualAlloc
GetDriveTypeW
OpenFileMappingA
GetLocalTime
IsDebuggerPresent
SetUnhandledExceptionFilter
WaitNamedPipeW
CreateNamedPipeW
DisconnectNamedPipe
ConnectNamedPipe
ReleaseMutex
GlobalUnlock
GlobalLock
GlobalSize
GetComputerNameW
GetModuleFileNameW
SetErrorMode
TryEnterCriticalSection
GetCurrentThreadId
LoadLibraryW
FormatMessageW
GetVersionExW
HeapCreate
HeapValidate
CreateFileW
FlushFileBuffers
GetTempPathW
LockFileEx
GetDiskFreeSpaceW
CreateFileMappingA
CreateFileMappingW
GetDiskFreeSpaceA
MoveFileExW
GetSystemInfo
GetFileAttributesExW
RtlUnwind
SetEnvironmentVariableW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
RemoveDirectoryW
FindFirstFileExW
SystemTimeToTzSpecificLocalTime
GetTempPathA
LocalFree
SetEnvironmentVariableA
SetCurrentDirectoryA
IsProcessorFeaturePresent
ExitProcess
GetSystemTime
AreFileApisANSI
GetFullPathNameW
GetFullPathNameA
GetFileSize
CreateMutexW
CancelWaitableTimer
MapViewOfFile
GetModuleHandleExW
CreateTimerQueue
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
RtlCaptureStackBackTrace
SignalObjectAndWait
UnmapViewOfFile
SetEndOfFile
SystemTimeToFileTime
QueryPerformanceCounter
InterlockedCompareExchange
UnlockFile
FlushViewOfFile
LockFile
WaitForSingleObjectEx
OutputDebugStringW
UnlockFileEx
CreateFileA
GetDriveTypeA
lstrlenA
DeviceIoControl
CreatePipe
ReadFile
WriteFile
GetExitCodeProcess
SetConsoleTextAttribute
GetConsoleScreenBufferInfo
CreateSemaphoreA
GetSystemTimeAsFileTime
GetStdHandle
Sleep
ReleaseSemaphore
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
Process32NextW
Process32FirstW
QueryDosDeviceW
CreateProcessW
GetLogicalDriveStringsW
Process32Next
Process32First
CreateToolhelp32Snapshot
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetVolumeInformationA
QueryDosDeviceA
CreateDirectoryA
GetCurrentDirectoryA
OutputDebugStringA
CreateProcessA
GetModuleHandleA
GetModuleFileNameA
LoadLibraryA
GetLogicalDriveStringsA
OpenMutexA
CreateMutexA
FormatMessageA
GetTickCount
SetFilePointer
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetLastError
RaiseException
TerminateProcess
GetCurrentProcessId
GetCurrentProcess
OpenProcess
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GlobalFree
GlobalAlloc
lstrlenW
CreateHardLinkW
GetDiskFreeSpaceExW
GetExitCodeThread
WaitForMultipleObjectsEx
WriteConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetProcessAffinityMask
UnregisterWaitEx
GetProcAddress
FreeLibrary
DecodePointer
MoveFileW
MoveFileA
CopyFileW
CopyFileA
DeleteFileW
DeleteFileA
GetFileAttributesW
GetFileAttributesA
SetFileAttributesW
SetFileAttributesA
CreateEventA
CloseHandle
WaitForSingleObject
SetEvent
ResumeThread
TerminateThread
CreateThread
FileTimeToSystemTime
GetThreadLocale
SetThreadPriority
SuspendThread
LoadLibraryExA
GetShortPathNameA
GetStringTypeExA
GlobalFlags
EncodePointer
GetSystemDirectoryW
FreeResource
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
FindResourceA
GlobalFindAtomA
FileTimeToLocalFileTime
GetFileAttributesExA
LocalFileTimeToFileTime
SetFileTime
CompareStringW
SwitchToThread
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
SetWaitableTimer
HeapCompact
GetLocaleInfoW
GetSystemDefaultUILanguage
CreateWaitableTimerA
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
InitializeSListHead
FreeLibraryAndExitThread
GetThreadTimes
SetConsoleCtrlHandler
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
GetTimeZoneInformation
CreateSemaphoreW
CreateEventW
UnhandledExceptionFilter
GetStringTypeW
IsValidCodePage
ReadConsoleW
FatalAppExitA
GetConsoleMode
GetConsoleCP
GetStartupInfoW
SetStdHandle
HeapQueryInformation
VirtualQuery
GetFileInformationByHandle
GetCommandLineA
GetUserDefaultUILanguage
user32
CreateMenu
PostMessageA
GetForegroundWindow
CreateWindowExW
RegisterClassExW
LoadImageA
LoadIconA
LoadCursorA
PostQuitMessage
FindWindowW
OpenClipboard
CloseClipboard
SetClipboardViewer
ChangeClipboardChain
GetClipboardData
GetPriorityClipboardFormat
KillTimer
wsprintfA
CharNextA
MessageBoxA
SetClipboardData
EmptyClipboard
keybd_event
mouse_event
MapVirtualKeyA
DestroyCursor
BlockInput
PrintWindow
GetAsyncKeyState
SetCapture
GetDC
ReleaseDC
GetWindowRect
SetCursorPos
GetCursorPos
WindowFromPoint
SetRect
GetDesktopWindow
GetMonitorInfoA
EnumDisplayMonitors
GetCursorInfo
FindWindowExW
GetClientRect
ClientToScreen
SetTimer
IsWindowEnabled
GetWindowDC
FindWindowExA
RegisterHotKey
ShowWindow
FindWindowA
ExitWindowsEx
IsWindowVisible
EnumWindows
OpenDesktopA
OpenInputDesktop
SetThreadDesktop
CloseDesktop
GetThreadDesktop
GetUserObjectInformationA
IsWindow
CloseWindow
SendMessageTimeoutW
GetParent
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextA
GetSystemMetrics
GetLastInputInfo
DestroyWindow
CreateWindowExA
RegisterClassExA
GetMessageA
TranslateMessage
DispatchMessageA
wsprintfW
SendMessageA
SendMessageTimeoutA
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
UnhookWindowsHookEx
EnableWindow
GetWindowLongA
GetLastActivePopup
GetSysColor
GetSysColorBrush
GetWindowTextLengthA
PeekMessageA
GetActiveWindow
GetKeyState
ValidateRect
SetWindowsHookExA
CallNextHookEx
DestroyIcon
CharUpperA
GetDlgCtrlID
GetFocus
SetWindowTextA
PtInRect
GetClassNameA
GetWindow
RealChildWindowFromPoint
SetFocus
SetScrollPos
GetScrollPos
MoveWindow
SetWindowPos
GetDlgItem
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
GetDlgItemTextA
CheckDlgButton
CheckRadioButton
IsDlgButtonChecked
SendDlgItemMessageA
ScrollWindowEx
SetWindowLongA
IsDialogMessageA
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoA
LoadBitmapW
RegisterWindowMessageA
GetMessagePos
GetMessageTime
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
IsChild
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetCapture
GetMenu
SetMenu
TrackPopupMenu
TrackPopupMenuEx
UpdateWindow
SetActiveWindow
SetForegroundWindow
RedrawWindow
ScrollWindow
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropA
GetPropA
RemovePropA
AdjustWindowRectEx
ScreenToClient
MapWindowPoints
CopyRect
EqualRect
GetClassLongA
GetTopWindow
LoadIconW
SetScrollInfo
GetScrollInfo
WinHelpA
MonitorFromWindow
IsIconic
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
BeginPaint
EndPaint
FillRect
DestroyMenu
GetMenuItemInfoA
InflateRect
SystemParametersInfoA
CopyImage
ShowOwnedPopups
SetCursor
DeleteMenu
InvalidateRect
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
IntersectRect
GetDialogBaseUnits
GetNextDlgGroupItem
ReleaseCapture
DrawFocusRect
SetRectEmpty
OffsetRect
IsRectEmpty
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
LoadCursorW
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetLayeredWindowAttributes
DrawStateA
LoadImageW
DrawEdge
DrawFrameControl
SetWindowRgn
UnionRect
IsMenu
UpdateLayeredWindow
MonitorFromPoint
BringWindowToTop
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
GetKeyNameTextA
TrackMouseEvent
LoadMenuW
GetComboBoxInfo
IsZoomed
GetSystemMenu
PostThreadMessageA
WaitMessage
GetKeyboardLayout
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetParent
LockWindowUpdate
SetClassLongA
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
FrameRect
EnumChildWindows
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
SendNotifyMessageA
InSendMessage
UnregisterClassA
MapDialogRect
GetDCEx
GetWindowRgn
DrawIcon
WindowFromDC
GetTabbedTextExtentA
GetTabbedTextExtentW
DefWindowProcA
gdi32
CreateBitmap
SetBkColor
SetTextColor
GetObjectA
CreateDIBPatternBrushPt
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetStockObject
CreateDCA
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocA
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutA
ExtTextOutA
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectA
GetTextExtentPoint32A
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
GetTextMetricsA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CopyMetaFileA
GetViewportExtEx
SaveDC
StretchBlt
GetDeviceCaps
CreateDIBSection
SelectObject
GetDIBits
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreateRoundRectRgn
GetCurrentObject
CreateFontA
GetCharWidthA
StretchDIBits
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextExtentPointA
GetTextExtentPoint32W
GetTextFaceA
CloseMetaFile
CreateMetaFileA
DeleteMetaFile
RestoreDC
shell32
SHAddToRecentDocs
CommandLineToArgvW
SHFileOperationA
ShellExecuteA
SHGetSpecialFolderPathA
ShellExecuteExA
SHAppBarMessage
SHGetMalloc
DragFinish
DragQueryFileA
SHGetFileInfoA
ShellExecuteW
SHGetFolderPathW
ShellExecuteExW
SHBrowseForFolderW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHBrowseForFolderA
ExtractIconA
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetFolderPathA
ole32
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleSetMenuDescriptor
OleLockRunning
StgCreateDocfile
StgOpenStorage
StgOpenStorageOnILockBytes
StgIsStorageFile
CreateFileMoniker
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
StgCreateDocfileOnILockBytes
CreateGenericComposite
CreateItemMoniker
WriteClassStm
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
CreateStreamOnHGlobal
OleRun
PropVariantCopy
OleRegGetMiscStatus
OleRegEnumVerbs
OleQueryLinkFromData
OleQueryCreateFromData
OleIsRunning
CoGetMalloc
GetRunningObjectTable
CreateDataAdviseHolder
CreateOleAdviseHolder
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CoGetClassObject
CoRegisterClassObject
CoRevokeClassObject
CoRegisterMessageFilter
CLSIDFromProgID
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemAlloc
StringFromCLSID
CoInitialize
CoUninitialize
CoCreateInstance
CoTaskMemFree
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateGuid
CLSIDFromString
CoDisconnectObject
StringFromGUID2
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
GetHGlobalFromILockBytes
OleDuplicateData
oleaut32
SysAllocString
SysFreeString
CreateErrorInfo
SetErrorInfo
GetErrorInfo
VariantInit
VarDecFromStr
VariantClear
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroyDescriptor
VarBstrFromDec
SafeArrayDestroyData
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantChangeType
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SysStringByteLen
SysAllocStringByteLen
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SysReAllocStringLen
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
SysStringLen
SysAllocStringLen
SafeArrayCreate
netapi32
NetUserEnum
NetUserGetInfo
NetApiBufferFree
ws2_32
WSACleanup
WSAStartup
gethostname
gethostbyname
inet_ntoa
closesocket
connect
ioctlsocket
recv
select
send
setsockopt
socket
WSAGetLastError
freeaddrinfo
inet_addr
__WSAFDIsSet
htons
bind
WSASocketA
getpeername
ntohs
htonl
listen
shutdown
WSAIoctl
WSARecv
WSASend
recvfrom
sendto
WSASetLastError
getsockopt
accept
getaddrinfo
getsockname
winmm
waveInUnprepareHeader
waveInPrepareHeader
waveInClose
waveInOpen
waveInAddBuffer
waveOutReset
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutGetNumDevs
PlaySoundA
waveInStart
waveInStop
waveInReset
timeSetEvent
timeKillEvent
timeGetTime
waveInGetNumDevs
wldap32
ord30
ord32
ord33
ord35
ord79
ord200
ord46
ord50
ord41
ord27
ord26
ord60
ord143
ord211
ord22
ord301
ofetapi
SetManualEncryptFile
SetCustomDataResident
SetOneFileOneKeyMode
SetDriverCryptConfig
GetStartFiltering
SetStartFiltering
CancelPolicy
SendPolicy
dbghelp
MiniDumpWriteDump
advapi32
EnumServicesStatusExW
OpenProcessToken
AdjustTokenPrivileges
GetFileSecurityA
SetFileSecurityA
RegEnumValueA
RegOpenKeyExW
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegSetValueA
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
CryptHashData
CryptAcquireContextA
CryptCreateHash
RegQueryInfoKeyA
RegEnumKeyExA
QueryServiceConfigW
QueryServiceConfigA
SetSecurityDescriptorDacl
UnlockServiceDatabase
OpenServiceW
OpenSCManagerA
LockServiceDatabase
CreateServiceW
CloseServiceHandle
ChangeServiceConfigA
RegGetValueA
RegSetKeyValueA
GetUserNameW
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
LookupPrivilegeValueA
InitializeSecurityDescriptor
psapi
EnumProcessModules
GetModuleFileNameExA
GetProcessImageFileNameA
GetProcessImageFileNameW
EnumProcesses
iphlpapi
GetAdaptersInfo
cfgmgr32
CM_Get_Parent
CM_Get_Device_IDA
setupapi
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
gdiplus
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipGetImageThumbnail
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipCreateBitmapFromHBITMAP
GdipSaveImageToFile
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc
GdiplusStartup
GdiplusShutdown
msimg32
TransparentBlt
AlphaBlend
uxtheme
DrawThemeText
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetThemeSysColor
GetWindowTheme
GetThemePartSize
DrawThemeParentBackground
wininet
InternetReadFile
InternetCloseHandle
InternetOpenA
InternetOpenUrlA
avicap32
capGetDriverDescriptionA
msvfw32
ICSeqCompressFrameEnd
ICSeqCompressFrameStart
ICSendMessage
ICClose
ICCompressorFree
ICSeqCompressFrame
ICOpen
version
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
pgdlltunnel
ord19
ord16
ord13
ord12
ord2
ord3
ord1
ord6
wtsapi32
WTSFreeMemory
WTSQuerySessionInformationA
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
imm32
ImmGetOpenStatus
ImmReleaseContext
ImmGetContext
oledlg
ord8
winspool.drv
OpenPrinterA
GetJobA
ClosePrinter
DocumentPropertiesA
Exports
Exports
curl_easy_cleanup
curl_easy_duphandle
curl_easy_escape
curl_easy_getinfo
curl_easy_init
curl_easy_pause
curl_easy_perform
curl_easy_recv
curl_easy_reset
curl_easy_send
curl_easy_setopt
curl_easy_strerror
curl_easy_unescape
curl_escape
curl_formadd
curl_formfree
curl_formget
curl_free
curl_getdate
curl_getenv
curl_global_cleanup
curl_global_init
curl_global_init_mem
curl_maprintf
curl_mfprintf
curl_mprintf
curl_msnprintf
curl_msprintf
curl_multi_add_handle
curl_multi_assign
curl_multi_cleanup
curl_multi_fdset
curl_multi_info_read
curl_multi_init
curl_multi_perform
curl_multi_remove_handle
curl_multi_setopt
curl_multi_socket
curl_multi_socket_action
curl_multi_socket_all
curl_multi_strerror
curl_multi_timeout
curl_multi_wait
curl_mvaprintf
curl_mvfprintf
curl_mvprintf
curl_mvsnprintf
curl_mvsprintf
curl_share_cleanup
curl_share_init
curl_share_setopt
curl_share_strerror
curl_slist_append
curl_slist_free_all
curl_strequal
curl_strnequal
curl_unescape
Sections
.text Size: 5.3MB - Virtual size: 5.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 942KB - Virtual size: 941KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 112KB - Virtual size: 191KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 496B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 326KB - Virtual size: 325KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ