ExplorerFrame[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

ExplorerFrame.dll
Size

2.2MB
MD5

1745759acff3306a30a58da7bcf010ec
SHA1

3f9177c0de287c8c15b4a060c537998ff53cb8f8
SHA256

120d64c57e72c7c84a26c17730263706844d9cd3ba17453fd1c47cc64094e1c9
SHA512

d599894cd7ebe7bf0196343dbd10eb64a45ab13a3461d90b74c36d6a45bda54ac2f8c6541dabc6bcf9796b330cf731cb75172fa6c29518bbfd038d9497c4d1d2
SSDEEP

49152:UJFUNpwCbKrooSBGxVgq2hDZp5J9VCb5M4wwot:VNpF2pHN2hr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ExplorerFrame.dll

Files

ExplorerFrame.dll
.dll windows:10 windows x64 arch:x64

a22abf7ea2e322cfebf4653df1cbd3c2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

ExplorerFrame.pdb

Imports

msvcp_win

?_Xout_of_range@std@@YAXPEBD@Z
_Xtime_get_ticks
?_Xlength_error@std@@YAXPEBD@Z

api-ms-win-crt-string-l1-1-0

wcscmp
wcsncmp
memset

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_initterm

api-ms-win-crt-private-l1-1-0

_o_memcpy_s
_o_rand
_o_realloc
_o_free
memmove
_o_strncpy_s
_o_terminate
_o_toupper
_o_towlower
__CxxFrameHandler3
_o__wcsicmp
_o__ultow_s
_o__set_errno
_o__seh_filter_dll
_o__register_onexit_function
_o__purecall
_o___std_type_info_destroy_list
_o___std_exception_destroy
_o___std_exception_copy
__C_specific_handler
strchr
__std_terminate
__CxxFrameHandler4
_o__invalid_parameter_noinfo_noreturn
_o__invalid_parameter_noinfo
_o__initialize_onexit_table
_o__initialize_narrow_environment
_o__get_errno
_o__execute_onexit_table
_o__errno
_o__crt_atexit
_o__configure_narrow_argv
_o__cexit
_o___stdio_common_vswprintf
_o___stdio_common_vsprintf_s
_o___stdio_common_vsnprintf_s
_CxxThrowException
memcmp
memcpy

shcore

IUnknown_SetSite
ord142
IUnknown_Set
ord170
SHCreateMemStream
IUnknown_QueryService
SHAnsiToUnicode
ord122
ord190
IStream_Read
ord193
ord212
ord145
ord200
SHSetValueW
ord123
ord143
SHRegGetValueW
ord126
ord172
SHTaskPoolQueueTask
ord120
SHQueryValueExW
SHStrDupW
IStream_Reset
SHSetThreadRef
SHCreateThreadRef
GetDpiForMonitor
ord141
IsOS
SHOpenRegStream2W
ord191
ord188
SHGetValueW
IStream_Write
IUnknown_GetSite
SHGetThreadRef
SHStrDupA
ord131
SHDeleteValueW
SHUnicodeToAnsi
ord192
ord213
SHCreateThread
ord140
ord130
GetProcessDpiAwareness
ord175
SHEnumValueW
IStream_Size
ord125
ord187
ord186
ord182
SHDeleteKeyW
ord162
ord102
ord210
ord183

shell32

ord6
SHELL32_AreAllItemsAvailable
ord912
ord862
ord897
ord893
SHCreateShellItemArrayFromShellItem
SHGetFolderLocation
ord945
ord98
SHGetIconOverlayIndexW
ord727
ord787
ord853
ord193
ord27
SHGetPathFromIDListA
ord103
ord88
SHGetNameFromIDList
SHGetTemporaryPropertyForItem
SHSetTemporaryPropertyForItem
StateRepoNewMenuCache_EnsureCacheAsync
SHCreateShellItemArrayFromDataObject
ord90
Shell_GetCachedImageIndexW
ord829
SHGetPropertyStoreForWindow
ord59
ShellAboutW
SHCreateItemInKnownFolder
ord921
SHGetPathFromIDListW
SHGetFolderPathEx
ord153
SHGetSpecialFolderLocation
ord152
SHChangeNotifySuspendResume
ord85
ord162
ord14
SHChangeNotify
SHCreateItemFromParsingName
SHGetKnownFolderItem
SHGetInstanceExplorer
ShellExecuteExW
ord941
ord942
SHChangeNotifyRegisterThread
ord16
SHGetKnownFolderIDList
SHCreateShellItemArray
ord888
ord176
ord100
ord900
ord871
ord870
RegenerateUserEnvironment
ord851
ord824
ord147
ord155
SHGetFileInfoW
ord95
ord881
SHGetItemFromDataObject
ord22
ord137
SHAppBarMessage
ord823
ord777
SHBindToParent
ord77
ord134
ord129
ord136
SHGetItemFromObject
ord173
ord654
SHCreateShellItemArrayFromIDLists
ord652
ord866
ord833
ord882
ord24
ord747
ord884
SHCreateItemFromIDList
SHGetIDListFromObject
SHGetKnownFolderPath
ord850
SHParseDisplayName
ord102
SHBindToFolderIDListParent
SHPathPrepareForWriteW
ord840
ord74
ord132
ord67
DragQueryFileW
ord25
SHBindToFolderIDListParentEx
ord19
ord18
ord17
SHBindToObject
SHGetDesktopFolder
SHCreateItemWithParent
ord21
ord939
ord644
ord645
ord23
ord873
ord4
ord2
ord68
ord71

shlwapi

ord156
StrCmpNW
ord571
ord157
ord545
ord239
StrTrimW
StrCmpIW
PathCompactPathExW
PathFileExistsW
AssocCreate
ord540
ord208
ord209
ord179
ord187
ord384
ord192
GetMenuPosFromID
ord282
ord635
ord288
ord240
PathCreateFromUrlA
UrlUnescapeA
SHCreateShellPalette
ord287
ord210
UrlCanonicalizeW
UrlCreateFromPathW
UrlApplySchemeW
ord516
ord517
ord478
ord190
HashData
ord154
ord581
IntlStrEqWorkerW
StrToIntW
StrPBrkW
StrToIntExW
StrCmpNIW
PathFindExtensionW
ord538
ord487
ord533
ord639
PathRemoveExtensionW
ord317
PathRemoveFileSpecW
PathAppendW
ord1
ord198
SHRegGetBoolUSValueW
ord177
ord202
ord638
PathCreateFromUrlW
ord479
ord283
ord200
ord281
ord268
ord267
ord388
ord204
StrCmpW
StrDupW
PathFindNextComponentW
StrStrIW
PathIsURLW
PathIsRelativeW
ord172
ord164
ord165
ord163
ord286
ord509
ord481
ChrCmpIW
ord225
ord173
ord219
ord2
PathSkipRootW
PathIsUNCW
ord186
PathFindFileNameW
ord182
ord284
PathStripToRootW
PathUnquoteSpacesW
StrStrW
ord178
StrChrW
ord616
ord515
ord167
PathGetDriveNumberW
ord168
ord181
PathParseIconLocationW
AssocQueryStringW
ord484
ord191
SHRegGetUSValueW
ord24
ord197
ord433
ord158
ord201

api-ms-win-core-libraryloader-l1-2-0

GetProcAddress
GetModuleHandleExW
LockResource
LoadResource
FindResourceExW
DisableThreadLibraryCalls
FreeLibrary
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
LoadStringW
LoadLibraryExW

api-ms-win-core-synch-l1-1-0

InitializeCriticalSectionAndSpinCount
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
InitializeCriticalSectionEx
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
CreateMutexExW
AcquireSRWLockShared
OpenSemaphoreW
WaitForSingleObjectEx
InitializeCriticalSection
CreateEventW
SetEvent
ResetEvent
OpenMutexW
WaitForMultipleObjectsEx
ReleaseMutex
ReleaseSRWLockShared
WaitForSingleObject
ReleaseSemaphore
OpenEventW
CreateSemaphoreExW
CreateEventExW

api-ms-win-core-heap-l1-1-0

HeapReAlloc
HeapFree
HeapAlloc
GetProcessHeap
HeapDestroy

api-ms-win-core-errorhandling-l1-1-0

RaiseException
GetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError

api-ms-win-core-com-l1-1-0

CoGetMalloc
CoTaskMemRealloc
PropVariantClear
CoCreateFreeThreadedMarshaler
CoUninitialize
CoInitializeEx
CoMarshalInterThreadInterfaceInStream
CoReleaseMarshalData
CoGetInterfaceAndReleaseStream
CoWaitForMultipleHandles
CoGetApartmentType
CoTaskMemFree
CLSIDFromString
CoFreeUnusedLibraries
CoRevokeClassObject
CoGetClassObject
CoRegisterClassObject
CoUnmarshalInterface
CreateStreamOnHGlobal
CoCreateInstance
CoCreateGuid
CoMarshalInterface
StringFromCLSID
PropVariantCopy
GetHGlobalFromStream
CoTaskMemAlloc
StringFromGUID2
CoIncrementMTAUsage

api-ms-win-core-processthreads-l1-1-0

GetCurrentProcess
GetThreadPriority
TerminateProcess
GetCurrentProcessId
OpenThreadToken
OpenProcessToken
GetCurrentThreadId
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
SetThreadPriority
GetCurrentThread
CreateThread
GetStartupInfoW

api-ms-win-core-localization-l1-2-0

GetThreadUILanguage
GetUserDefaultLCID
GetLocaleInfoW
FindNLSStringEx
FindNLSString
GetThreadLocale
FormatMessageW

api-ms-win-core-debug-l1-1-0

DebugBreak
IsDebuggerPresent
OutputDebugStringW

api-ms-win-core-handle-l1-1-0

CloseHandle
DuplicateHandle

api-ms-win-core-registry-l1-1-0

RegEnumKeyExW
RegSetValueExW
RegOpenKeyExW
RegEnumValueW
RegQueryValueExW
RegCreateKeyExW
RegGetValueW
RegNotifyChangeKeyValue
RegDeleteValueW
RegQueryInfoKeyW
RegCloseKey

api-ms-win-core-sysinfo-l1-1-0

GetTickCount
GetTickCount64
GetWindowsDirectoryW
GetSystemTime
GetSystemTimeAsFileTime
GetLocalTime

api-ms-win-core-threadpool-l1-2-0

CreateThreadpoolTimer
CreateThreadpoolWait
SetThreadpoolWait
WaitForThreadpoolWaitCallbacks
SetThreadpoolTimer
CloseThreadpoolWait
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer

api-ms-win-eventing-provider-l1-1-0

EventRegister
EventSetInformation
EventWriteTransfer
EventProviderEnabled
EventEnabled
EventUnregister
EventWrite
EventActivityIdControl

api-ms-win-core-synch-l1-2-0

InitOnceComplete
InitOnceBeginInitialize
Sleep
InitOnceExecuteOnce

api-ms-win-core-libraryloader-l1-2-1

LoadLibraryA
LoadLibraryW

api-ms-win-core-string-l1-1-0

WideCharToMultiByte
MultiByteToWideChar
CompareStringW
CompareStringOrdinal
GetStringTypeW

api-ms-win-eventing-classicprovider-l1-1-0

TraceMessage
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
RegisterTraceGuidsW
UnregisterTraceGuids

api-ms-win-core-registry-l1-1-1

RegSetKeyValueW

rpcrt4

UuidCreate

api-ms-win-core-path-l1-1-0

PathCchRemoveFileSpec
PathCchRemoveExtension
PathCchCombine

api-ms-win-core-heap-l2-1-0

LocalReAlloc
LocalAlloc
GlobalAlloc
LocalFree
GlobalFree

api-ms-win-core-file-l1-1-0

GetDriveTypeW

api-ms-win-core-com-l1-1-1

RoGetAgileReference

api-ms-win-core-winrt-string-l1-1-0

WindowsCreateString
WindowsPromoteStringBuffer
WindowsCreateStringReference
WindowsGetStringRawBuffer
WindowsPreallocateStringBuffer
WindowsDeleteStringBuffer
WindowsDeleteString

api-ms-win-core-winrt-l1-1-0

RoGetActivationFactory

api-ms-win-core-winrt-error-l1-1-0

RoOriginateError
GetRestrictedErrorInfo
SetRestrictedErrorInfo
RoTransformError

api-ms-win-core-winrt-error-l1-1-1

RoGetMatchingRestrictedErrorInfo
RoOriginateLanguageException

api-ms-win-core-wow64-l1-1-1

IsWow64Process2

api-ms-win-core-processenvironment-l1-1-0

GetCurrentDirectoryW
GetEnvironmentVariableW
ExpandEnvironmentStringsW

api-ms-win-core-sysinfo-l1-2-0

GetProductInfo

api-ms-win-core-string-l2-1-0

CharNextW
CharUpperW

api-ms-win-core-rtlsupport-l1-1-0

RtlCaptureContext
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureStackBackTrace

api-ms-win-core-processthreads-l1-1-1

IsProcessorFeaturePresent

api-ms-win-core-profile-l1-1-0

QueryPerformanceCounter

api-ms-win-core-interlocked-l1-1-0

InitializeSListHead
InterlockedPushEntrySList

api-ms-win-core-version-l1-1-0

GetFileVersionInfoExW
VerQueryValueW
GetFileVersionInfoSizeExW

api-ms-win-security-base-l1-1-0

GetSidSubAuthority
GetTokenInformation

api-ms-win-core-apiquery-l1-1-0

ApiSetQueryApiSetPresence

ntdll

WinSqmAddToStream
RtlQueryResourcePolicy
WinSqmSetDWORD
WinSqmAddToStreamEx
WinSqmIncrementDWORD
RtlQueryWnfStateData
RtlNtStatusToDosError

advapi32

RegOpenKeyW
RegEnumKeyW
RegCreateKeyW

imm32

ImmIsIME
ImmGetDefaultIMEWnd
ImmSetCompositionStringW
ImmGetCompositionStringW
ImmGetContext
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow

kernel32

lstrlenA
AddAtomW
GetComputerNameW
CreateActCtxW
DeactivateActCtx
ActivateActCtx
RegisterWaitForSingleObject
UnregisterWait
GlobalSize
GetUserDefaultUILanguage
GlobalLock
GlobalUnlock
lstrcmpW
MulDiv
lstrcmpiW
lstrlenW
lstrcmpA
ReleaseActCtx

user32

GetWindowPlacement
IsWindowEnabled
IsIconic
GetPhysicalCursorPos
WaitMessage
RegisterPowerSettingNotification
UnregisterPowerSettingNotification
DestroyIcon
EnumDesktopWindows
EnumDisplayMonitors
GetMenuStringW
DrawTextW
GetWindowBand
ord2705
ord2707
GetShellWindow
AnimateWindow
RegisterClassExW
FillRect
GetSysColorBrush
DrawEdge
GetLastActivePopup
NotifyWinEvent
SetForegroundWindow
BeginPaint
EndPaint
GetDlgCtrlID
GetMenuDefaultItem
SetWindowLongW
SetMenuDefaultItem
SetMessageExtraInfo
GetDoubleClickTime
GetMessageExtraInfo
SetClipboardViewer
GetWindowThreadProcessId
AttachThreadInput
MsgWaitForMultipleObjectsEx
ChangeClipboardChain
WindowFromPoint
AppendMenuW
LoadBitmapW
GetIconInfo
PostQuitMessage
IsClipboardFormatAvailable
EqualRect
SendInput
MonitorFromRect
SetRect
MessageBeep
SetWindowRgn
GetClassInfoExW
IsRectEmpty
IntersectRect
SetRectEmpty
DrawTextExW
LoadMenuW
AddClipboardFormatListener
InsertMenuItemW
SetMenuItemInfoW
RemoveClipboardFormatListener
CallMsgFilterW
LoadIconW
EnumWindows
CreateMenu
IsHungAppWindow
SetParent
MoveWindow
CopyIcon
PhysicalToLogicalPointForPerMonitorDPI
RemoveMenu
IsWinEventHookInstalled
SetGestureConfig
GetGestureInfo
CloseGestureInfoHandle
UpdateWindow
EnumChildWindows
UnionRect
AdjustWindowRectEx
GetScrollBarInfo
GetKeyboardLayout
ActivateKeyboardLayout
GetActiveWindow
CreateWindowExW
GetMessagePos
ValidateRect
GetMessageTime
GetMonitorInfoW
MonitorFromPoint
InsertMenuW
GetMenuInfo
SetMenuInfo
GetCurrentInputMessageSource
GetDisplayConfigBufferSizes
QueryDisplayConfig
GetMenuState
GetSubMenu
GetMenuItemInfoW
GetMenuItemID
GetClassWord
CopyRect
CreateCaret
ShowCaret
HideCaret
SetCaretPos
DestroyCaret
GetClassLongW
ClientToScreen
TrackPopupMenuEx
SetClipboardData
DefWindowProcA
IsWindowUnicode
GetWindowLongPtrW
IsWindowVisible
MonitorFromWindow
TrackPopupMenu
DestroyMenu
DeleteMenu
EnableMenuItem
CheckMenuItem
CreatePopupMenu
ReleaseCapture
GetCapture
InflateRect
SetCapture
PostMessageW
GetMenuItemCount
RegisterClipboardFormatW
GetWindow
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
SetWindowPlacement
LockWindowUpdate
RedrawWindow
IsChild
RegisterWindowMessageA
CloseClipboard
GetClipboardData
OpenClipboard
ScreenToClient
GetDesktopWindow
GetForegroundWindow
SendMessageTimeoutW
FindWindowW
GetClassNameW
SendNotifyMessageW
PeekMessageW
PtInRect
MapWindowPoints
GetCursorPos
SetCursor
GetWindowTextLengthW
EnableWindow
TrackMouseEvent
GetAncestor
GetAsyncKeyState
InvalidateRect
OffsetRect
GetClientRect
SetWindowPos
GetParent
GetSystemMenu
CallWindowProcW
RemovePropW
GetPropW
SetWindowTextW
GetWindowLongW
SetPropW
RegisterClassW
LoadAcceleratorsW
DestroyWindow
IsWindow
DestroyAcceleratorTable
GetSystemMetrics
GetSysColor
SetTimer
KillTimer
SystemParametersInfoW
GetWindowTextW
GetFocus
SetFocus
TranslateAcceleratorW
GetKeyState
SendMessageW
ShowWindow
GetSystemMetricsForDpi
GetDpiForWindow
SystemParametersInfoForDpi
GetWindowRect
ReleaseDC
GetDC
TranslateMessage
SetWindowLongPtrW
DefWindowProcW
LoadCursorW
RegisterWindowMessageW
DispatchMessageW

gdi32

DeleteObject
GdiAlphaBlend
SelectObject
CreateFontIndirectW
GetDeviceCaps
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SetTextColor
CreateSolidBrush
GetTextExtentPoint32W
SetTextAlign
StretchBlt
CreateRectRgnIndirect
GetTextExtentPointW
SetRectRgn
CombineRgn
EqualRgn
SetBkColor
GetObjectW
OffsetWindowOrgEx
SetWindowOrgEx
GetClipBox
SetBkMode
BitBlt
CreateDIBSection
GetDIBits
StretchDIBits
GetObjectType
GetLayout
SetLayout
GetViewportOrgEx
LPtoDP
SetViewportOrgEx
GetDCDpiScaleValue
GetPaletteEntries
SetPaletteEntries
GetStockObject
SelectPalette
RealizePalette
CreatePalette
CreateBitmapFromDxSurface
GdiTransparentBlt
SelectClipRgn
GetTextMetricsW
ExtTextOutW
OffsetViewportOrgEx
GetClipRgn
GetRgnBox
GetCharWidth32W
CreateRectRgn

api-ms-win-stateseparation-helpers-l1-1-0

GetPersistedRegistryLocationW

api-ms-win-core-delayload-l1-1-1

ResolveDelayLoadedAPI

api-ms-win-core-delayload-l1-1-0

DelayLoadFailureHook

api-ms-win-crt-math-l1-1-0

ceilf

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllGetVersion

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 415KB - Virtual size: 415KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a22abf7ea2e322cfebf4653df1cbd3c2

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcp_win

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-private-l1-1-0

shcore

shell32

shlwapi

api-ms-win-core-libraryloader-l1-2-0

api-ms-win-core-synch-l1-1-0

api-ms-win-core-heap-l1-1-0

api-ms-win-core-errorhandling-l1-1-0

api-ms-win-core-com-l1-1-0

api-ms-win-core-processthreads-l1-1-0

api-ms-win-core-localization-l1-2-0

api-ms-win-core-debug-l1-1-0

api-ms-win-core-handle-l1-1-0

api-ms-win-core-registry-l1-1-0

api-ms-win-core-sysinfo-l1-1-0

api-ms-win-core-threadpool-l1-2-0

api-ms-win-eventing-provider-l1-1-0

api-ms-win-core-synch-l1-2-0

api-ms-win-core-libraryloader-l1-2-1

api-ms-win-core-string-l1-1-0

api-ms-win-eventing-classicprovider-l1-1-0

api-ms-win-core-registry-l1-1-1

rpcrt4

api-ms-win-core-path-l1-1-0

api-ms-win-core-heap-l2-1-0

api-ms-win-core-file-l1-1-0

api-ms-win-core-com-l1-1-1

api-ms-win-core-winrt-string-l1-1-0

api-ms-win-core-winrt-l1-1-0

api-ms-win-core-winrt-error-l1-1-0

api-ms-win-core-winrt-error-l1-1-1

api-ms-win-core-wow64-l1-1-1

api-ms-win-core-processenvironment-l1-1-0

api-ms-win-core-sysinfo-l1-2-0

api-ms-win-core-string-l2-1-0

api-ms-win-core-rtlsupport-l1-1-0

api-ms-win-core-processthreads-l1-1-1

api-ms-win-core-profile-l1-1-0

api-ms-win-core-interlocked-l1-1-0

api-ms-win-core-version-l1-1-0

api-ms-win-security-base-l1-1-0

api-ms-win-core-apiquery-l1-1-0

ntdll

advapi32

imm32

kernel32

user32

gdi32

api-ms-win-stateseparation-helpers-l1-1-0

api-ms-win-core-delayload-l1-1-1

api-ms-win-core-delayload-l1-1-0

api-ms-win-crt-math-l1-1-0

Exports

Exports

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 415KB - Virtual size: 415KB

.data Size: 5KB - Virtual size: 15KB

.pdata Size: 102KB - Virtual size: 101KB

.didat Size: 6KB - Virtual size: 5KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 25KB - Virtual size: 24KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 415KB - Virtual size: 415KB

.data
Size: 5KB - Virtual size: 15KB

.pdata
Size: 102KB - Virtual size: 101KB

.didat
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 25KB - Virtual size: 24KB