D:\obsidian_note\Nurilab-obsidian\LUPE\window_lib\cdr_dll_interface\source\bin\checked\amd64\nrcdrscanner64.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-04-17_397149ee5909d9a854a5044e67bc2d2a_ryuk.exe
Resource
win7-20240215-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-04-17_397149ee5909d9a854a5044e67bc2d2a_ryuk.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
2024-04-17_397149ee5909d9a854a5044e67bc2d2a_ryuk
-
Size
18.9MB
-
MD5
397149ee5909d9a854a5044e67bc2d2a
-
SHA1
dae29f17404d8e72417cb5250c0394d085bef7de
-
SHA256
825c9e37383c83827d899967f29e69e240d9e170f2d1ad8b6dd64869e627544d
-
SHA512
d03a6b724a6015dbe47d7794b7e791a3eb1efea107ff595e5607555d0e1c689506802e7d2786793d31091c71b31f018689f538eacd7f303c8414670724992e1d
-
SSDEEP
196608:dQG44j5LOmT7zBgF4VwY6N7mjgKFLOyomFHKnP:hXKmT7zBgFIwYC7mjgKF
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-04-17_397149ee5909d9a854a5044e67bc2d2a_ryuk
Files
-
2024-04-17_397149ee5909d9a854a5044e67bc2d2a_ryuk.exe windows:5 windows x64 arch:x64
19ce9c01c5156d48accac204187b375c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
kernel32
SwitchToThread
RtlUnwindEx
RtlPcToFileHeader
InterlockedPushEntrySList
InterlockedFlushSList
ExitThread
FreeLibraryAndExitThread
HeapValidate
GetCommandLineA
GetCommandLineW
HeapQueryInformation
QueryPerformanceFrequency
VirtualAlloc
GetStdHandle
GetFileType
WriteConsoleW
SetStdHandle
ExitProcess
GetACP
GetStringTypeW
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
SetConsoleCtrlHandler
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
FindFirstFileExA
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
OutputDebugStringW
VirtualQuery
GetStartupInfoW
InitializeSListHead
QueryPerformanceCounter
WaitForSingleObjectEx
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
LocalUnlock
LocalLock
CreateSemaphoreW
WaitForMultipleObjects
CreateMutexW
ReleaseMutex
ReleaseSemaphore
PulseEvent
ResetEvent
SearchPathW
GetWindowsDirectoryW
GetUserDefaultLCID
ReplaceFileW
GetDiskFreeSpaceW
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FindResourceExW
GetTempPathW
GetTempFileNameW
GetStringTypeExW
MoveFileW
lstrcmpiW
GetHandleInformation
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetFullPathNameW
DeleteFileW
GetCurrentDirectoryW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetThreadLocale
GetProfileIntW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetAtomNameW
GlobalFlags
SetErrorMode
VerifyVersionInfoW
lstrcpyW
VerSetConditionMask
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
GetThreadPriority
GlobalGetAtomNameW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeResource
GetSystemDirectoryW
EncodePointer
FormatMessageW
MulDiv
GlobalSize
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GetModuleHandleExW
LoadLibraryW
SetThreadPriority
GetCurrentThread
FindResourceW
SizeofResource
LoadResource
GetCurrentThreadId
SetUnhandledExceptionFilter
LockResource
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
WideCharToMultiByte
MultiByteToWideChar
WTSGetActiveConsoleSessionId
ProcessIdToSessionId
GetVersionExW
GetVolumeInformationW
GetVolumeInformationA
CopyFileW
FindNextFileW
FindNextFileA
FindFirstFileW
FindFirstFileA
GetFileAttributesW
GetFileAttributesA
SetFileAttributesW
SetFileAttributesA
CreateFileW
CreateFileA
QueryDosDeviceW
QueryDosDeviceA
CreateDirectoryW
CreateDirectoryA
GetDiskFreeSpaceExW
GetDiskFreeSpaceExA
GetDriveTypeW
GetDriveTypeA
OutputDebugStringA
ExpandEnvironmentStringsW
CreateProcessW
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
DecodePointer
FreeLibrary
GetProcAddress
LocalAlloc
LocalFree
VirtualProtect
VirtualQueryEx
GetShortPathNameW
LoadLibraryA
CreateEventW
lstrcmpA
FormatMessageA
GetTickCount
FileTimeToSystemTime
FileTimeToLocalFileTime
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
GetSystemInfo
GetLocalTime
GetSystemTimeAsFileTime
GetSystemTime
CloseHandle
SetFileTime
GetFileTime
FindClose
SetFilePointer
DeviceIoControl
FlushFileBuffers
ReadFile
WriteFile
GetFileSize
GetLogicalDrives
Sleep
WaitForSingleObject
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
ResumeThread
SuspendThread
WriteProcessMemory
SetLastError
GetLastError
OpenThread
CreateThread
RaiseException
GetExitCodeProcess
TerminateProcess
GetCurrentProcessId
GetCurrentProcess
OpenProcess
user32
GetMessageTime
DefWindowProcW
CallWindowProcW
GetMessagePos
DispatchMessageW
RegisterWindowMessageW
IsDialogMessageW
GetParent
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
ScrollWindowEx
IsWindowEnabled
EnableWindow
SetFocus
GetDlgCtrlID
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
SetWindowPos
MoveWindow
ShowWindow
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetFocus
MapDialogRect
TabbedTextOutW
PostMessageW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
IsClipboardFormatAvailable
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
IsMenu
CopyRect
MapVirtualKeyW
GetKeyNameTextW
IsWindow
GetCursorPos
ReleaseDC
GetDC
GetSystemMetrics
GetKeyState
GetDlgItem
SetWindowLongW
GetWindowLongW
EmptyClipboard
SetClipboardData
CloseClipboard
PostQuitMessage
SendMessageW
PeekMessageW
UnregisterClassW
SubtractRect
InSendMessage
GetComboBoxInfo
DestroyCursor
EnumChildWindows
MsgWaitForMultipleObjectsEx
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
UpdateLayeredWindow
CharUpperBuffW
MapVirtualKeyExW
IsCharLowerW
RegisterClipboardFormatW
CopyIcon
GetIconInfo
GetDoubleClickTime
UnionRect
MonitorFromPoint
SetClassLongPtrW
SetCursorPos
TrackMouseEvent
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
MessageBeep
CopyAcceleratorTableW
CharNextW
ReuseDDElParam
GetMenuBarInfo
LoadImageW
TranslateAcceleratorW
CharUpperW
DestroyIcon
GetDialogBaseUnits
LoadAcceleratorsW
WaitMessage
UnpackDDElParam
GetClipboardFormatNameW
GetClipboardFormatNameA
CopyImage
DestroyMenu
GetAsyncKeyState
ReleaseCapture
SetRect
RealChildWindowFromPoint
IntersectRect
SendDlgItemMessageA
DrawIconEx
OffsetRect
InflateRect
EnumDisplayMonitors
SystemParametersInfoW
IsRectEmpty
SetRectEmpty
SetLayeredWindowAttributes
GetWindowThreadProcessId
SetCursor
TranslateMessage
GetMessageW
EndDialog
CreateDialogIndirectParamW
CheckMenuRadioItem
InvertRect
FrameRect
FillRect
DrawFocusRect
GetSysColorBrush
GetMenuContextHelpId
SetMenuContextHelpId
ScrollDC
ExcludeUpdateRgn
WindowFromDC
GetTabbedTextExtentW
DrawStateW
GrayStringW
DrawTextExW
DrawTextW
DrawIcon
SetMenuDefaultItem
GetMenuDefaultItem
SetMenuItemInfoW
GetMenuItemInfoW
InsertMenuItemW
DeleteMenu
ModifyMenuW
EnableMenuItem
CheckMenuItem
CreatePopupMenu
CreateMenu
LoadMenuIndirectW
LoadMenuW
DrawFrameControl
DrawEdge
NotifyWinEvent
ArrangeIconicWindows
DlgDirSelectComboBoxExW
DlgDirListComboBoxW
DlgDirSelectExW
DlgDirListW
LoadCursorW
GetLastActivePopup
FindWindowExW
FindWindowW
SetParent
GetDesktopWindow
ChildWindowFromPointEx
ChildWindowFromPoint
WindowFromPoint
ClientToScreen
GetCaretPos
SetCaretPos
ShowCaret
HideCaret
CreateCaret
GetWindowContextHelpId
SetWindowContextHelpId
EnableScrollBar
ShowScrollBar
LockWindowUpdate
RedrawWindow
ValidateRgn
InvalidateRgn
ValidateRect
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRgn
GetUpdateRect
GetWindowDC
GetDCEx
SetForegroundWindow
GetForegroundWindow
UpdateWindow
DragDetect
GetSystemMenu
DrawMenuBar
HiliteMenuItem
KillTimer
SetTimer
SetCapture
GetActiveWindow
GetOpenClipboardWindow
ChangeClipboardChain
GetClipboardViewer
SetClipboardViewer
GetClipboardOwner
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
CloseWindow
OpenIcon
ShowOwnedPopups
FlashWindow
PostThreadMessageW
SendNotifyMessageW
DrawAnimatedRects
DrawCaption
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetTopWindow
GetClassNameW
GetClassLongPtrW
GetClassLongW
SetWindowLongPtrW
GetWindowLongPtrW
PtInRect
EqualRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropW
GetPropW
SetPropW
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
EndPaint
BeginPaint
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
advapi32
GetFileSecurityW
SetFileSecurityW
SystemFunction036
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegSetValueW
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSidToStringSidW
ConvertSidToStringSidA
StartServiceW
QueryServiceStatusEx
QueryServiceStatus
OpenServiceW
OpenSCManagerW
DeleteService
CreateServiceW
ControlService
CloseServiceHandle
RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyW
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyExA
RegOpenKeyW
RegOpenKeyA
RegEnumKeyW
RegEnumKeyA
RegDeleteValueW
RegDeleteValueA
RegDeleteKeyW
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegCloseKey
CreateProcessAsUserW
ImpersonateLoggedOnUser
LookupPrivilegeValueW
LookupAccountNameW
LookupAccountNameA
LookupAccountSidW
GetSecurityDescriptorSacl
SetSecurityDescriptorSacl
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
AdjustTokenPrivileges
GetTokenInformation
OpenProcessToken
RevertToSelf
ole32
CreateDataAdviseHolder
CreateOleAdviseHolder
GetRunningObjectTable
CoUninitialize
OleQueryCreateFromData
CoCreateInstance
StgOpenStorageOnILockBytes
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
CoTreatAsClass
OleQueryLinkFromData
CoRegisterMessageFilter
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
OleRegEnumVerbs
OleSaveToStream
OleSetContainedObject
OleRegGetMiscStatus
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleIsRunning
OleLockRunning
OleGetIconOfClass
GetHGlobalFromILockBytes
OleSetMenuDescriptor
CoGetMalloc
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
CreateFileMoniker
CoInitializeEx
OleLoad
OleSave
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleCreate
WriteClassStm
GetClassFile
CreateItemMoniker
CreateGenericComposite
StgIsStorageILockBytes
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoRevokeClassObject
CoRegisterClassObject
PropVariantCopy
OleRun
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoGetClassObject
StringFromGUID2
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateGuid
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
shell32
ShellExecuteExW
SHAppBarMessage
DragFinish
DragQueryFileW
SHGetFileInfoW
ExtractIconW
SHAddToRecentDocs
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
ShellExecuteW
SHBrowseForFolderW
DragAcceptFiles
oleaut32
SysFreeString
OleCreateFontIndirect
VarDecFromStr
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
SysReAllocStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SafeArrayGetElemsize
SysStringByteLen
SysStringLen
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SafeArrayGetDim
shlwapi
PathRemoveFileSpecW
PathIsUNCW
PathRemoveExtensionW
PathFindFileNameW
PathStripToRootW
StrFormatKBSizeW
PathCompactPathW
PathFindExtensionW
gdi32
CreateBitmap
SetBkColor
SetTextColor
GetObjectW
AnimatePalette
Arc
BitBlt
Chord
CombineRgn
CreateBitmapIndirect
CreateBrushIndirect
CreateCompatibleBitmap
CreateDiscardableBitmap
CreateCompatibleDC
CreateDIBPatternBrushPt
CreateEllipticRgn
CreateEllipticRgnIndirect
CreateFontIndirectW
CreateFontW
CreateHatchBrush
CreateICW
CreatePalette
CreatePen
CreatePenIndirect
CreatePolyPolygonRgn
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DrawEscape
Ellipse
EnumObjects
EqualRgn
Escape
ExtEscape
ExtCreateRegion
ExtFloodFill
FillRgn
FloodFill
FrameRgn
GetROP2
GetAspectRatioFilterEx
GetBkColor
GetBkMode
GetBitmapBits
GetBitmapDimensionEx
GetBoundsRect
GetBrushOrgEx
GetCharWidthW
GetCharWidthFloatW
GetCharABCWidthsW
GetCharABCWidthsFloatW
GetCurrentObject
GetCurrentPositionEx
GetFontData
GetGlyphOutlineW
GetGraphicsMode
GetMapMode
GetNearestColor
GetNearestPaletteIndex
GetObjectType
GetOutlineTextMetricsW
GetPaletteEntries
GetPixel
GetPolyFillMode
GetRegionData
GetRgnBox
GetStockObject
GetStretchBltMode
GetTextCharacterExtra
GetTextAlign
GetTextColor
GetTextExtentPoint32W
GetFontLanguageInfo
GetCharacterPlacementW
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
InvertRgn
MaskBlt
PlgBlt
OffsetRgn
PatBlt
Pie
ExtTextOutW
PolyPolygon
PtInRegion
PtVisible
RectInRegion
RectVisible
Rectangle
ResetDCW
RealizePalette
RoundRect
ResizePalette
SelectObject
SetBitmapBits
SetBoundsRect
SetPaletteEntries
SetPixel
SetPixelV
StretchBlt
SetRectRgn
UpdateColors
PlayEnhMetaFile
GdiComment
GetTextMetricsW
AngleArc
PolyPolyline
GetWorldTransform
GetColorAdjustment
CreateHalftonePalette
StartDocW
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetPath
PathToRegion
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
ExtCreatePen
GetMiterLimit
GetArcDirection
TextOutW
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
PolyBezier
SetBitmapDimensionEx
SetBrushOrgEx
GetTextFaceW
GetKerningPairsW
UnrealizeObject
CreateDIBitmap
DeleteObject
EnumFontFamiliesW
GetTextCharsetInfo
ExcludeClipRect
GetClipBox
GetClipRgn
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
CreateEnhMetaFileW
CloseEnhMetaFile
CreateMetaFileW
CloseMetaFile
GetDeviceCaps
CreateDCW
CopyMetaFileW
RemoveFontMemResourceEx
AddFontMemResourceEx
PaintRgn
StretchDIBits
SetTextJustification
PlayMetaFileRecord
GetTextExtentPointW
DeleteMetaFile
GetSystemPaletteEntries
EnumFontFamiliesExW
SetDIBColorTable
GetDIBits
CreateDIBSection
DeleteDC
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
PolylineTo
PolyBezierTo
MoveToEx
SetArcDirection
SelectClipPath
PolyDraw
ArcTo
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
userenv
LoadUserProfileW
DestroyEnvironmentBlock
CreateEnvironmentBlock
UnloadUserProfile
psapi
GetModuleFileNameExW
wtsapi32
WTSQuerySessionInformationW
WTSEnumerateSessionsW
WTSFreeMemory
version
GetFileVersionInfoA
GetFileVersionInfoW
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
ws2_32
WSACleanup
WSAStartup
gethostname
wintrust
CryptCATAdminCalcHashFromFileHandle
CryptCATCatalogInfoFromContext
CryptCATAdminReleaseCatalogContext
CryptCATAdminReleaseContext
CryptCATAdminAcquireContext
WinVerifyTrust
CryptCATAdminEnumCatalogFromHash
dbghelp
MiniDumpWriteDump
iphlpapi
GetAdaptersInfo
setupapi
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList
CM_Request_Device_EjectA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
CM_Get_Parent
crypt32
CertFindCertificateInStore
CryptMsgGetParam
CertGetNameStringW
CryptQueryObject
CertFreeCertificateContext
CertCloseStore
CryptDecodeObject
CryptMsgClose
msimg32
TransparentBlt
AlphaBlend
GradientFill
winspool.drv
GetJobW
ClosePrinter
DocumentPropertiesW
OpenPrinterW
comctl32
InitCommonControlsEx
uxtheme
GetWindowTheme
OpenThemeData
GetThemePartSize
GetThemeSysColor
DrawThemeText
IsAppThemed
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
GetCurrentThemeName
GetThemeColor
CloseThemeData
DrawThemeBackground
oledlg
OleUIUpdateLinksW
OleUIConvertW
OleUIChangeIconW
OleUIPasteSpecialW
OleUIInsertObjectW
OleUIBusyW
OleUIEditLinksW
gdiplus
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdipGetImageWidth
GdiplusShutdown
GdipDrawImageI
oleacc
AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject
imm32
ImmGetOpenStatus
ImmGetContext
ImmReleaseContext
winmm
PlaySoundW
Sections
.textbss Size: - Virtual size: 3.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 8.1MB - Virtual size: 8.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 56KB - Virtual size: 129KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 384KB - Virtual size: 384KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 1024B - Virtual size: 777B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 283B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 7.4MB - Virtual size: 7.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 187KB - Virtual size: 186KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ