Movie Maker[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

Movie Maker.zip
Size

3.5MB
MD5

dc194d788eaa1bce174f3aa02bdbc3c5
SHA1

ff81d5dcd489b75bc96eea09c433481f285f04fc
SHA256

1f88cee95dcd4614319a249e1fc27c8c105dc6aeb68b89daedfffdb4b66f2643
SHA512

c2611a8217081ae0b3fce39a831bc4c47e14bfeae71ff87a1bd23b12e0659908a9ff4a19e31f614cda8fea0cadd7444e22486b2a9a1e3948f6105c586937155c
SSDEEP

98304:l4jXXqLB9vGsWTgHFMo+YOUH33/0HOQxJNat1:lUnKysWOMo+YOUH33/+rvg

Score

3^/10

Malware Config

Signatures

Unsigned PE 9 IoCs

Checks for missing Authenticode signature.

resource
unpack001/MOVIEMK.exe
unpack001/WMM2AE.dll
unpack001/WMM2ERES.dll
unpack001/WMM2EXT.dll
unpack001/WMM2FILT.dll
unpack001/WMM2FXA.dll
unpack001/WMM2FXB.dll
unpack001/WMM2RES.dll
unpack001/WMM2RES2.dll

Files

Movie Maker.zip
.zip
MOVIEMK.exe
.exe windows:5 windows x86 arch:x86

ea6ad92fff551d1f237a04a1899cacc6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

MOVIEMK.pdb

Imports

msvcrt

_wtol
isdigit
wcsncmp
vswprintf
iswdigit
wcsncat
_wcsnicmp
swprintf
wcscpy
??3@YAXPAX@Z
??2@YAPAXI@Z
_ftol
realloc
malloc
free
wcscmp
_purecall
memmove
wcsstr
_wcsicmp
_snwprintf
wcsrchr
_wfullpath
iswspace
_wtoi
ceil
wcsncpy
wcslen
wcscat
_endthreadex
calloc
_beginthreadex
srand
time
qsort
wcschr
_wcsrev
wcspbrk
rand
_stricmp
ctime
swscanf
_c_exit
_exit
_XcptFilter
_cexit
exit
_controlfp
_onexit
__dllonexit
?terminate@@YAXXZ
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
__CxxFrameHandler

advapi32

RegEnumValueW
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegEnumKeyW

kernel32

GetFileAttributesW
SetErrorMode
GlobalUnlock
GlobalLock
GlobalAlloc
FindFirstFileW
DeleteFileW
CopyFileW
lstrcpynA
lstrcpynW
GetLastError
GetFullPathNameW
GetDiskFreeSpaceExW
GetLocaleInfoW
GetNumberFormatW
CompareStringW
lstrcmpiW
FreeResource
GlobalFree
GlobalHandle
InitializeCriticalSection
DeleteCriticalSection
IsBadReadPtr
lstrcatW
GetModuleFileNameW
SetThreadPriority
CreateThread
CloseHandle
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
GetProfileIntW
GetTempPathW
WaitForSingleObject
GetLongPathNameW
lstrlenA
EnumResourceLanguagesW
GetTickCount
FindClose
CreateFileMappingA
CreateEventW
GetUserDefaultUILanguage
GetUserDefaultLCID
CreateDirectoryW
GetShortPathNameW
ReleaseMutex
CreateMutexW
GetCommandLineW
CreateFileW
MoveFileW
GetTempFileNameW
CompareFileTime
SleepEx
GetDriveTypeW
SizeofResource
WriteFile
VirtualProtect
VirtualQuery
GetModuleHandleW
GetVersion
EnumUILanguagesW
LoadLibraryExW
ExpandEnvironmentStringsW
SetEnvironmentVariableW
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
GetStartupInfoA
FindNextFileW
SetEvent
GetCurrentProcessId
FindResourceW
LoadResource
LockResource
GetVersionExW
LoadLibraryW
GetProcAddress
FreeLibrary
InterlockedIncrement
lstrcmpW
lstrcpyW
MulDiv
SetLastError
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
FlushInstructionCache
FormatMessageW
LocalFree
InterlockedDecrement
lstrlenW
GetFileSizeEx
CreateFileMappingW
MapViewOfFileEx
GetDiskFreeSpaceW
CreateIoCompletionPort
GetQueuedCompletionStatus
GetOverlappedResult
ReadDirectoryChangesW
PostQueuedCompletionStatus
WaitForMultipleObjects
WideCharToMultiByte
GetACP
HeapDestroy
IsBadWritePtr
WinExec
GetTimeFormatW
ResetEvent
GetVolumeInformationW
HeapFree
GetProcessHeap
GetDateFormatW
LocalAlloc
GetExitCodeThread
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GlobalSize
GetFileAttributesExW
SetFileAttributesW
RemoveDirectoryW
ReadFile
SetThreadExecutionState
HeapAlloc
LoadLibraryA
VirtualFree
VirtualAlloc
Sleep
MultiByteToWideChar
GetFileSize

gdi32

SetMapMode
SetWindowOrgEx
SaveDC
LPtoDP
CreateDCW
Rectangle
RestoreDC
ExcludeClipRect
GetDIBits
GetObjectA
TextOutW
Polygon
CombineRgn
SetRectRgn
CreateRectRgnIndirect
GetClipBox
DPtoLP
GetCurrentObject
GetLayout
CreateRectRgn
StretchBlt
SelectClipRgn
ExtTextOutW
SetTextColor
SetViewportOrgEx
SetROP2
GetNearestColor
CreatePen
LineTo
MoveToEx
GetTextMetricsW
GetTextExtentPoint32W
CreateSolidBrush
GetStockObject
GetDeviceCaps
CreateDIBSection
CreateCompatibleBitmap
SetBrushOrgEx
CreateFontIndirectW
SetBkMode
CreateCompatibleDC
BitBlt
CreateBitmap
CreatePatternBrush
SelectObject
PatBlt
DeleteDC
DeleteObject
GetObjectW
SetBkColor

user32

InflateRect
DrawFrameControl
PeekMessageW
ClientToScreen
SetWindowPlacement
SetForegroundWindow
GetWindowTextW
GetWindowTextLengthW
DialogBoxParamW
DestroyIcon
UnregisterClassW
GetDC
LoadAcceleratorsW
InvalidateRgn
GetDesktopWindow
RedrawWindow
CreateAcceleratorTableW
PostQuitMessage
LoadStringA
GetDlgItemInt
LoadIconW
DrawIcon
SetDlgItemInt
GetCursorPos
GetDlgCtrlID
DrawFocusRect
DispatchMessageW
TranslateMessage
GetMessageW
CreateDialogIndirectParamW
GetMenu
SetMenu
BringWindowToTop
GetWindowPlacement
GetTopWindow
TranslateAcceleratorW
GetMenuStringW
AppendMenuW
FindWindowW
EnableMenuItem
InsertMenuW
DeleteMenu
OffsetRect
AdjustWindowRectEx
TrackPopupMenu
SetRect
PostThreadMessageW
IsIconic
SetProcessDefaultLayout
ScrollWindowEx
SetScrollPos
GetScrollInfo
SetScrollInfo
IsRectEmpty
GetAsyncKeyState
GetIconInfo
SetClassLongW
DrawTextExW
UnionRect
IntersectRect
IsDlgButtonChecked
CheckDlgButton
GetProcessDefaultLayout
GetDoubleClickTime
GetMessageTime
TrackMouseEvent
ClipCursor
UpdateLayeredWindow
DestroyCursor
NotifyWinEvent
DragDetect
GetClassLongW
FrameRect
DrawTextW
GetKeyState
CharNextW
CharLowerW
WindowFromPoint
MessageBeep
PostMessageW
GetActiveWindow
GetWindowThreadProcessId
IsMenu
SetWindowsHookExW
UnhookWindowsHookEx
GetClassNameW
CallNextHookEx
GetSubMenu
GetLastActivePopup
MessageBoxW
ModifyMenuW
TrackPopupMenuEx
LoadBitmapW
MoveWindow
CreatePopupMenu
FindWindowExW
LoadMenuW
DrawEdge
SetCapture
RegisterClipboardFormatW
GetMonitorInfoW
MonitorFromWindow
CharUpperW
CopyIcon
GetCapture
SetCursor
ReleaseDC
GetWindowDC
EndPaint
BeginPaint
GetMessagePos
ScreenToClient
PtInRect
ReleaseCapture
GetAncestor
SetMenuDefaultItem
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoW
SetMenuItemInfoW
GetSystemMetrics
CallWindowProcW
DefWindowProcW
SetActiveWindow
IsWindowVisible
SetRectEmpty
IsChild
GetClassInfoExW
LoadCursorW
wsprintfW
RegisterClassExW
InvalidateRect
CreateDialogParamW
CopyRect
IsWindowEnabled
GetFocus
SetFocus
EnableWindow
GetNextDlgTabItem
KillTimer
SetTimer
UpdateWindow
SetWindowTextW
CreateWindowExW
DestroyMenu
RemoveMenu
SendMessageW
DestroyWindow
EndDialog
LoadImageW
SetWindowLongW
IsWindow
IsDialogMessageW
GetDlgItem
ShowWindow
GetSystemMenu
GetSysColor
GetSysColorBrush
FillRect
LoadStringW
GetWindow
GetWindowRect
SystemParametersInfoW
MapWindowPoints
SetWindowPos
GetParent
SetDlgItemTextW
GetClientRect
GetForegroundWindow
EqualRect
GetWindowLongW
GetWindowLongA
MsgWaitForMultipleObjects
DestroyAcceleratorTable
SetWindowRgn
GetClassNameA
SendMessageA
IsWindowUnicode
DrawTextA
MapDialogRect
RegisterWindowMessageW
CopyImage

comdlg32

GetSaveFileNameW
GetOpenFileNameW
ChooseColorW

shell32

ShellAboutW
ShellExecuteExW
SHGetFolderPathW
DragQueryFileW
ShellExecuteW
SHParseDisplayName
SHGetSettings
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHPathPrepareForWriteW
SHGetSpecialFolderPathW
SHGetFileInfoW
SHAddToRecentDocs
SHGetFolderPathAndSubDirW
ord747
SHGetFolderLocation
SHGetDesktopFolder
SHFileOperationW
CommandLineToArgvW

ole32

GetRunningObjectTable
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
CoTaskMemFree
StringFromCLSID
CoTaskMemAlloc
OleLockRunning
CLSIDFromProgID
CLSIDFromString
OleGetClipboard
ReleaseStgMedium
OleFlushClipboard
OleIsCurrentClipboard
CoUninitialize
CoInitialize
CoRevokeClassObject
CoRegisterClassObject
CoResumeClassObjects
StringFromGUID2
StgIsStorageFile
OleSaveToStream
WriteClassStm
OleLoadFromStream
CreateOleAdviseHolder
OleRegGetUserType
OleRegEnumVerbs
PropVariantClear
StgCreatePropStg
StgOpenPropStg
FreePropVariantArray
CoCreateGuid
StgOpenStorage
StgCreateDocfile
OleSetClipboard
DoDragDrop
CoFreeUnusedLibraries
RevokeDragDrop
CoCreateInstance
RegisterDragDrop

oleaut32

OleCreatePropertyFrame
SafeArrayGetLBound
SafeArrayCopy
SafeArrayGetElement
SysFreeString
SysAllocString
SysAllocStringByteLen
VariantClear
VariantChangeTypeEx
VariantChangeType
SysStringByteLen
SafeArrayCreateVector
SafeArrayPutElement
SafeArrayDestroy
SysAllocStringLen
VariantCopy
RevokeActiveObject
RegisterTypeLi
LoadTypeLi
DispCallFunc
OleCreateFontIndirect
LoadRegTypeLi
SysStringLen
VariantInit
SafeArrayCreate

comctl32

ord8
ImageList_Destroy
ImageList_GetImageCount
InitCommonControlsEx
ImageList_Add
ImageList_Create
ImageList_GetIcon
_TrackMouseEvent
ImageList_AddMasked
ImageList_Draw
ImageList_DrawIndirect
DestroyPropertySheetPage
PropertySheetW
ImageList_Remove
ImageList_LoadImageW
ImageList_GetIconSize
CreateStatusWindowW
ImageList_ReplaceIcon
CreatePropertySheetPageW

shlwapi

PathFindNextComponentW
UrlIsW
UrlGetPartW
PathFindFileNameW
PathStripToRootW
PathFindExtensionW
StrCmpLogicalW
PathCompactPathExW
StrRetToStrW
PathRemoveFileSpecW
PathIsRelativeW
SHAutoComplete

winmm

mixerSetControlDetails
mixerGetNumDevs
mixerGetLineControlsW
waveOutClose
waveOutOpen
timeGetTime
mixerGetDevCapsW
mixerOpen
mixerClose
mixerGetLineInfoW
mixerGetID
mixerGetControlDetailsW
waveOutGetNumDevs

rpcrt4

RpcStringFreeW
UuidFromStringW
UuidEqual
UuidCreate
UuidToStringW

wmvcore

WMCreateReader
WMCreateEditor
WMCreateProfileManager

gdiplus

GdiplusShutdown
GdiplusStartup
GdipDeleteGraphics
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectRect
GdipFree
GdipCreateFromHDC
GdipSetInterpolationMode
GdipGetFamily
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipIsStyleAvailable
GdipCreatePen1
GdipDeletePen
GdipDrawRectangleI
GdipSaveImageToFile
GdipSaveImageToStream
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipImageGetFrameCount
GdipSetPropertyItem
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromScan0
GdipCreateBitmapFromGdiDib
GdipCreateHBITMAPFromBitmap
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipGetImageGraphicsContext
GdipGraphicsClear
GdipGetImageThumbnail
GdipGetFamilyName
GdipGetFontCollectionFamilyList
GdipCloneFontFamily
GdipDeleteFont
GdipDeleteFontFamily
GdipNewInstalledFontCollection
GdipGetFontCollectionFamilyCount
GdipCloneImage
GdipAlloc
GdipDrawImageRectRectI
GdipSetSmoothingMode
GdipDrawImageRectI

secur32

GetUserNameExW

msimg32

GradientFill
AlphaBlend

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

uxtheme

GetThemeInt
DrawThemeBackground
OpenThemeData
CloseThemeData
IsAppThemed

avifil32

AVIFileOpenW

crypt32

CryptUnprotectData
CryptProtectData

wininet

InternetCloseHandle
InternetGetConnectedState
InternetCheckConnectionW
InternetAutodial
InternetOpenW
InternetAttemptConnect

urlmon

CoGetClassObjectFromURL
CreateFormatEnumerator
CreateAsyncBindCtx

Exports

Exports

??0CtrlContainerFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0CtrlFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0FrameEqualizer@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@@Z
??0GroupBoxFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0GroupBoxFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0HorizFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAVCompositeFrame@1@@Z
??0IMsoAutoLayoutDialog@DlgAutoLayout@@IAE@XZ
??0ListEditFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0MsoWCtrlContainerFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWCtrlFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWFrameEqualizer@@QAE@AAVIMsoWAutoLayoutDialog@@@Z
??0MsoWGroupBoxFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GGPAVMsoWCompositeFrame@@@Z
??0MsoWGroupBoxFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWHorizFrame@@QAE@AAVIMsoWAutoLayoutDialog@@PAVMsoWCompositeFrame@@@Z
??0MsoWListEditFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GGPAVMsoWCompositeFrame@@@Z
??0MsoWNumInputFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GGPAVMsoWCompositeFrame@@@Z
??0MsoWOverlapFrame@@QAE@AAVIMsoWAutoLayoutDialog@@PAVMsoWCompositeFrame@@@Z
??0MsoWTabCtrlFrame@@QAE@AAVIMsoWAutoLayoutDialog@@GPAVMsoWCompositeFrame@@@Z
??0MsoWTableFrame@@QAE@AAVIMsoWAutoLayoutDialog@@HHPAVMsoWCompositeFrame@@@Z
??0MsoWVertFrame@@QAE@AAVIMsoWAutoLayoutDialog@@PAVMsoWCompositeFrame@@@Z
??0NumInputFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0NumInputFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0OverlapFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAVCompositeFrame@1@@Z
??0TabCtrlFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAX1PAVCompositeFrame@1@@Z
??0TabCtrlFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAXPAVCompositeFrame@1@@Z
??0TableFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@HHPAVCompositeFrame@1@@Z
??0VertFrame@DlgAutoLayout@@QAE@AAVIMsoAutoLayoutDialog@1@PAVCompositeFrame@1@@Z
??1IMsoAutoLayoutDialog@DlgAutoLayout@@MAE@XZ
_MsoDALCheckBoxBMHeight@0
_MsoDALCheckBoxBMWidth@0
_MsoDALCheckBoxBMWidthPlusMargin@4
_MsoDALDestructFrames@4
_MsoDALEditStrHeightPix@4
_MsoDALFDlgIsValid@4
_MsoDALGroupBoxNoLabelTopAdjustPix@4
_MsoDALMarkDlgInvalid@4
_MsoDALSuspendFrameDestruction@4
_MsoDUToPix@12
_MsoDestroyIMsoWAutoLayoutDialog@4
_MsoFCreateIMsoWAutoLayoutDialog@12
_MsoPixToDU@12
_MsoWIsAutoLayoutEnabled@8
_MsoWTabCtrlIndexToHwnd@8

Sections

.text
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

MovieMak
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 593KB - Virtual size: 592KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Shared/Filters.xml
Shared/Sample1.jpg
.jpg
Shared/Sample2.jpg
.jpg
Shared/news.png
.png
Shared/paint.png
.png
WMM2AE.dll
.dll regsvr32 windows:5 windows x86 arch:x86

6fb9ad1caf936436c30e75e029f739f5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2AE.pdb

Imports

msvcrt

_initterm
_adjust_fdiv
__dllonexit
_onexit
malloc
_wcsicmp
??2@YAPAXI@Z
realloc
free
_ftol
_purecall
wcsncpy
__CxxFrameHandler
fclose
wcscat
wcscpy
wcslen
wcsrchr
printf
_wcsnicmp
rand
srand
time
_CIexp
_wsplitpath
_except_handler3
??3@YAXPAX@Z

kernel32

lstrlenW
InterlockedDecrement
CompareFileTime
GetTickCount
GetTempFileNameW
GetTempPathW
lstrcpyW
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
lstrcatW
GetModuleFileNameW
FreeLibrary
GetProcAddress
LoadLibraryW
DisableThreadLibraryCalls
GetShortPathNameW
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrcpynW
lstrcmpW
Sleep
CreateEventA
GetCurrentThread
GetThreadPriority
CreateThread
SetThreadPriority
SetEvent
WaitForSingleObject
GetSystemInfo
IsBadWritePtr
FormatMessageW
LocalFree
GetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
GetLastError
CloseHandle

user32

CharNextW
GetDC
ReleaseDC
PostMessageW
SendMessageW
LoadStringW

ole32

CoFreeUnusedLibraries
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoInitialize

oleaut32

SysStringLen
SysFreeString
SysAllocStringLen
VariantClear
SysAllocString
LoadTypeLi
RegisterTypeLi
LoadRegTypeLi

gdi32

GetStockObject
GetObjectA
DeleteObject

advapi32

RegEnumValueW
RegOpenKeyExW
RegCloseKey
GetUserNameW

gdiplus

GdipDeleteFont
GdipDeleteFontFamily
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipAlloc
GdipFree
GdipBitmapUnlockBits
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetFamilyName
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipBitmapLockBits
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipGetFamily

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WMM2ERES.dll
.dll windows:5 windows x86 arch:x86

e07e00e45407ff0dd6abc9eaa981fa7b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2ERES.pdb

Imports

msvcrt

_initterm
malloc
_adjust_fdiv
free

Sections

.text
Size: 1024B - Virtual size: 661B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WMM2EXT.dll
.dll regsvr32 windows:5 windows x86 arch:x86

16ac861e6c83759b1c0f286188cd3283

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2EXT.pdb

Imports

msvcrt

_adjust_fdiv
malloc
_initterm
free
??2@YAPAXI@Z
_purecall
??3@YAXPAX@Z

kernel32

InitializeCriticalSection
InterlockedIncrement
DisableThreadLibraryCalls
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
DeleteCriticalSection

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 294B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WMM2FILT.dll
.dll regsvr32 windows:5 windows x86 arch:x86

3e85505c4eedf283087838fbfeb29c3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2FILT.pdb

Imports

msvcrt

_adjust_fdiv
??2@YAPAXI@Z
memmove
free
realloc
_ftol
_purecall
malloc
wcscpy
_wtoi
_snwprintf
_except_handler3
__CxxFrameHandler
printf
fprintf
_iob
?terminate@@YAXXZ
_wcsicmp
_onexit
__dllonexit
??3@YAXPAX@Z
_initterm
atof
sprintf
swscanf
swprintf
vswprintf
iswdigit
wcscmp
wcsncpy
_wcslwr
wcslen
wcsstr

kernel32

MulDiv
InterlockedIncrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
ResetEvent
SetEvent
SetThreadPriority
CreateEventW
CloseHandle
WriteFile
ReadFile
WaitForSingleObject
lstrlenW
CreateFileW
GetTempFileNameW
DeleteFileW
SetEndOfFile
SetFilePointerEx
GetLastError
CreateThread
GetCurrentThread
GetCurrentThreadId
GetFileAttributesW
SetErrorMode
VirtualAlloc
Sleep
GetTempPathW
QueryPerformanceCounter
QueryPerformanceFrequency
CreateSemaphoreW
WaitForMultipleObjects
DisableThreadLibraryCalls
SystemTimeToFileTime
WideCharToMultiByte
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
IsBadWritePtr
lstrlenA
LocalFree
FormatMessageW
CompareStringW
TryEnterCriticalSection
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrcpynW
ReleaseSemaphore
GetSystemInfo
VirtualFree
lstrcmpW
GetModuleHandleW
lstrcpyW
InterlockedExchange
GetThreadPriority
MultiByteToWideChar
CreateEventA
IsBadReadPtr
GlobalMemoryStatus
GetModuleFileNameA

oleaut32

SysAllocString
SysAllocStringLen
SysStringLen
LoadRegTypeLi
VariantInit
VariantChangeTypeEx
SysFreeString

user32

ShowWindow
CreateWindowExW
LoadCursorW
LoadIconW
IsRectEmpty
PtInRect
IsWindowVisible
GetWindow
IsIconic
GetParent
GetCursor
AttachThreadInput
GetWindowThreadProcessId
WindowFromPoint
CopyRect
EqualRect
GetSystemMetrics
IsWindow
DrawIconEx
GetIconInfo
GetDesktopWindow
GetCursorPos
SendMessageW
SetWindowPlacement
GetDlgItem
SetWindowLongW
SendDlgItemMessageW
EnableWindow
GetWindowLongW
CreateDialogParamA
MessageBoxW
RedrawWindow
SetCapture
EnumWindows
SetCursor
IsChild
ClientToScreen
GetWindowTextW
DestroyWindow
ReleaseCapture
CallWindowProcW
SetDlgItemInt
GetDlgItemInt
CharNextW
GetDlgItemTextA
SetDlgItemTextW
wsprintfW
PeekMessageW
MsgWaitForMultipleObjects
PostThreadMessageW
RegisterWindowMessageW
GetQueueStatus
MoveWindow
InvalidateRect
DispatchMessageW
GetDC
ReleaseDC
GetWindowRect
DefWindowProcW
CreateDialogParamW
SetRectEmpty
LoadStringW
GetWindowPlacement

ole32

CoUninitialize
CoTaskMemAlloc
CoCreateInstance
CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CLSIDFromString
CoInitialize

gdi32

CreateCompatibleDC
SetROP2
Rectangle
CreatePen
GetDIBits
GetSystemPaletteEntries
CreatePalette
GetDeviceCaps
DeleteObject
DeleteDC
RealizePalette
GetPixel
BitBlt
SelectObject
CreateCompatibleBitmap
SelectPalette

advapi32

RegDeleteKeyW
RegQueryValueExA
RegOpenKeyA
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey

winmm

timeEndPeriod
timeBeginPeriod
timeKillEvent
timeSetEvent
timeGetTime

gdiplus

GdipGraphicsClear
GdipDrawImageRectRect
GdipAlloc
GdipCloneImage
GdipGetImageThumbnail
GdipSaveImageToFile
GdipGetImageWidth
GdipGetImageHeight
GdipSetSmoothingMode
GdipImageRotateFlip
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipCreateHBITMAPFromBitmap
GdipBitmapLockBits
GdipSetInterpolationMode
GdipGetImageGraphicsContext
GdipFree
GdipCreateBitmapFromGdiDib
GdipDeleteGraphics
GdipGetImagePixelFormat
GdipBitmapUnlockBits
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipDrawImageRectI
GdipDisposeImage

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WMM2FXA.dll
.dll regsvr32 windows:5 windows x86 arch:x86

a6c58ca75bb76dfc703a48c44c854e1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2FXA.pdb

Imports

msvcrt

_except_handler3
?terminate@@YAXXZ
??1type_info@@UAE@XZ
wcslen
wcspbrk
_finite
_CxxThrowException
__CxxFrameHandler
??2@YAPAXI@Z
wcscmp
free
realloc
_onexit
__dllonexit
_adjust_fdiv
malloc
_initterm
floor
_HUGE
iswspace
wcschr
time
srand
rand
memmove
wcsstr
_ftol
_wcsicmp
_purecall
??3@YAXPAX@Z

kernel32

WideCharToMultiByte
lstrlenW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
CloseHandle
CreateEventW
GetShortPathNameW
GetModuleFileNameW
GetTickCount
MultiByteToWideChar
InterlockedDecrement
lstrcmpW
lstrcpyW
HeapDestroy
lstrcatW
FreeLibrary
GetProcAddress
LoadLibraryW
DisableThreadLibraryCalls
QueryPerformanceFrequency
QueryPerformanceCounter
lstrcmpiW
GlobalFree
GetLastError
GlobalAlloc
GetFileAttributesW
SetErrorMode
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetWindowsDirectoryA
GetVersionExA
CreateFileA
GetFileSize
CreateFileMappingA
MapViewOfFile
DeleteFileA
UnmapViewOfFile
InterlockedIncrement

oleaut32

SysFreeString
SysAllocStringLen
SysAllocString
VariantClear
VariantCopy
VariantChangeType
VariantChangeTypeEx
LoadTypeLi
SysStringLen
LoadRegTypeLi
RegisterTypeLi

user32

LoadStringW
CharNextW
LoadImageW
SetRect
wsprintfA
ClientToScreen
LoadIconA
LoadCursorA
UnregisterClassA
GetClientRect
DrawTextA
DestroyWindow
RegisterClassA
CreateWindowExA
GetDC
ReleaseDC
DefWindowProcA
GetSysColor

ole32

CoTaskMemAlloc
CoCreateFreeThreadedMarshaler
CoCreateInstance

gdi32

GetObjectW
GetObjectA
CreateCompatibleDC
SelectObject
StretchBlt
DeleteDC
SetBkMode
SetTextColor
DeleteObject
GetPaletteEntries
GetStockObject

winmm

timeGetTime

gdiplus

GdipCreatePath
GdipDeletePath
GdipSetPathGradientCenterColor
GdipGetPathGradientPointCount
GdipSetPathGradientSurroundColorsWithCount
GdipGetPathWorldBounds
GdipCreateFontFamilyFromName
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipDeleteFont
GdipGetImageWidth
GdipGetImageHeight
GdipSetImageAttributesColorMatrix
GdipSetImageAttributesWrapMode
GdipCreateMatrix
GdipTranslateMatrix
GdipSetLineBlend
GdipCreateSolidFill
GdipCreateTextureIA
GdipCreateLineBrush
GdipSetPenLineJoin
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipAddPathRectangle
GdipAddPathEllipse
GdipAddPathPolygonI
GdipDeleteStringFormat
GdipTransformPath
GdipWarpPath
GdipCreatePathGradientFromPath
GdipResetWorldTransform
GdipTranslateWorldTransform
GdipScaleWorldTransform
GdipRotateWorldTransform
GdipSetPageUnit
GdipDeletePen
GdipGraphicsClear
GdipFillRectangle
GdipFillPath
GdipDrawString
GdipMeasureString
GdipDrawImageRect
GdipDrawImageRectI
GdipGetFamilyName
GdipIsStyleAvailable
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCreateFont
GdipGetFamily
GdipGetFontSize
GdipCloneBrush
GdipCreateMatrix2
GdipSetWorldTransform
GdipDrawImageI
GdipCloneStringFormat
GdipAddPathString
GdipCreateStringFormat
GdipSetLineColors
GdipTranslateTextureTransform
GdipDeleteBrush
GdipDeleteMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipCloneImage
GdipFree
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipDisposeImage
GdipAlloc
GdipDrawImageRectRect
GdipSetPixelOffsetMode
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipSetTextRenderingHint
GdipDeleteGraphics
GdipDrawPath
GdipCreatePen2
GdipScaleMatrix
GdipGetImageGraphicsContext

dxtrans

?DXOverArrayMMX@@YGXPAVDXPMSAMPLE@@PBV1@K@Z
?DXDitherArray@@YGXPBUDXDITHERDESC@@@Z

ddraw

DirectDrawCreateEx

msimg32

TransparentBlt
AlphaBlend

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 198KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WMM2FXB.dll
.dll regsvr32 windows:5 windows x86 arch:x86

ca635daebaa882d191a5238a9c31e90e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2FXB.pdb

Imports

msvcrt

_onexit
__dllonexit
_adjust_fdiv
_initterm
calloc
ceil
floor
qsort
malloc
free
rand
wcsncpy
_CIasin
sin
??3@YAXPAX@Z
_purecall
??2@YAPAXI@Z
wcslen
wcscpy
_ftol
srand
swprintf
_except_handler3

kernel32

GlobalFree
CloseHandle
CreateEventW
GetShortPathNameW
IsBadCodePtr
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GlobalHandle
GlobalUnlock
GlobalAlloc
GlobalSize
GlobalLock
CreateMutexW
WaitForSingleObject
ReleaseMutex
lstrcpyW
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
lstrcatW
GetModuleFileNameW
FreeLibrary
GetProcAddress
LoadLibraryW
DisableThreadLibraryCalls
IsBadWritePtr
lstrlenW
MultiByteToWideChar
IsBadReadPtr
WideCharToMultiByte
SetUnhandledExceptionFilter

oleaut32

SysAllocString
LoadTypeLi
RegisterTypeLi
VariantClear
LoadRegTypeLi
SysStringLen
SysAllocStringLen
SysFreeString

user32

CharNextW
GetSysColor
OffsetRect
SetRect

ole32

CoTaskMemAlloc
CoCreateFreeThreadedMarshaler
CoCreateInstance

dxtrans

?DXDitherArray@@YGXPBUDXDITHERDESC@@@Z

urlmon

URLOpenBlockingStreamW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 271KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WMM2RES.dll
.dll windows:5 windows x86 arch:x86

e07e00e45407ff0dd6abc9eaa981fa7b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2RES.pdb

Imports

msvcrt

_initterm
malloc
_adjust_fdiv
free

Sections

.text
Size: 1024B - Virtual size: 660B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.1MB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WMM2RES2.dll
.dll windows:5 windows x86 arch:x86

e07e00e45407ff0dd6abc9eaa981fa7b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

WMM2RES2.pdb

Imports

msvcrt

_initterm
malloc
_adjust_fdiv
free

Sections

.text
Size: 1024B - Virtual size: 661B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea6ad92fff551d1f237a04a1899cacc6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comdlg32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

rpcrt4

wmvcore

gdiplus

secur32

msimg32

version

uxtheme

avifil32

crypt32

wininet

urlmon

Exports

Exports

Sections

.text Size: 2.5MB - Virtual size: 2.5MB

.data Size: 15KB - Virtual size: 24KB

MovieMak Size: 512B - Virtual size: 4B

.rsrc Size: 593KB - Virtual size: 592KB

6fb9ad1caf936436c30e75e029f739f5

Headers

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

user32

ole32

oleaut32

gdi32

advapi32

gdiplus

Exports

Exports

Sections

.text Size: 148KB - Virtual size: 147KB

.data Size: 2KB - Virtual size: 15KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 7KB - Virtual size: 7KB

e07e00e45407ff0dd6abc9eaa981fa7b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

Sections

.text Size: 1024B - Virtual size: 661B

.data Size: - Virtual size: 24B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 88B

16ac861e6c83759b1c0f286188cd3283

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

.text
Size: 2.5MB - Virtual size: 2.5MB

.data
Size: 15KB - Virtual size: 24KB

MovieMak
Size: 512B - Virtual size: 4B

.rsrc
Size: 593KB - Virtual size: 592KB

.text
Size: 148KB - Virtual size: 147KB

.data
Size: 2KB - Virtual size: 15KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 7KB - Virtual size: 7KB

.text
Size: 1024B - Virtual size: 661B

.data
Size: - Virtual size: 24B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 88B

.text
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 272B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 294B

.text
Size: 291KB - Virtual size: 290KB

.data
Size: 81KB - Virtual size: 258KB

.rsrc
Size: 29KB - Virtual size: 29KB

.reloc
Size: 22KB - Virtual size: 22KB

.text
Size: 198KB - Virtual size: 198KB

.data
Size: 6KB - Virtual size: 7KB

.rsrc
Size: 264KB - Virtual size: 263KB

.reloc
Size: 21KB - Virtual size: 20KB

.text
Size: 271KB - Virtual size: 270KB

.data
Size: 2KB - Virtual size: 167KB

.rsrc
Size: 6KB - Virtual size: 5KB