Static task
static1
General
-
Target
Natro_Macro_v1.0.0.1.zip
-
Size
6.9MB
-
MD5
932e1091e704e21ba69dc437b05bd7da
-
SHA1
74ab123d1f6fed8014af3af74466ba841fa7fd54
-
SHA256
57d5aa0d0a318d80b6df188e5ed67318e397de9de901cbedc469ae0be12e5958
-
SHA512
2d05c5219cd0ec92a721eaa43ed9558fc6bfa5521db9c252af12b075d4d68d9be2d7cfa215d435fdc88ca3ffe6d5fc38f8dfb112fdcf6dc7a04a5c93ef569e0b
-
SSDEEP
196608:vFnUR3R26Ghs3T3cN5q8DSt4aZQyPWnzkDQMxkBE1AydMPJ3o:943RohsbJOQPozkliwAyixo
Malware Config
Signatures
-
Unsigned PE 5 IoCs
Checks for missing Authenticode signature.
resource unpack001/Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/VS7.msstyles unpack001/Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/WhiteGray.msstyles unpack001/Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Woodwork.msstyles unpack001/Natro_Macro_v1.0.0.1a/submacros/AutoHotkey32.exe unpack001/Natro_Macro_v1.0.0.1a/submacros/AutoHotkey64.exe
Files
-
Natro_Macro_v1.0.0.1.zip.zip
-
Natro_Macro_v1.0.0.1a/LICENSE.md
-
Natro_Macro_v1.0.0.1a/README.md
-
Natro_Macro_v1.0.0.1a/START.bat.wsf .vbs polyglot
-
Natro_Macro_v1.0.0.1a/lib/DurationFromSeconds.ahk
-
Natro_Macro_v1.0.0.1a/lib/Gdip_All.ahk
-
Natro_Macro_v1.0.0.1a/lib/Gdip_ImageSearch.ahk
-
Natro_Macro_v1.0.0.1a/lib/HyperSleep.ahk
-
Natro_Macro_v1.0.0.1a/lib/JSON.ahk
-
Natro_Macro_v1.0.0.1a/lib/Roblox.ahk
-
Natro_Macro_v1.0.0.1a/lib/Walk.ahk
-
Natro_Macro_v1.0.0.1a/lib/data/memorymatch.ahk
-
Natro_Macro_v1.0.0.1a/lib/enum/EnumInt.ahk
-
Natro_Macro_v1.0.0.1a/lib/enum/EnumStr.ahk
-
Natro_Macro_v1.0.0.1a/lib/nm_InventorySearch.ahk
-
Natro_Macro_v1.0.0.1a/lib/nm_OpenMenu.ahk
-
Natro_Macro_v1.0.0.1a/lib/nowUnix.ahk
-
Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/VS7.msstyles.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.rsrc Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/WhiteGray.msstyles.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.rsrc Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Natro_Macro_v1.0.0.1a/nm_image_assets/Styles/Woodwork.msstyles.dll windows:4 windows x86 arch:x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Sections
.rsrc Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
Natro_Macro_v1.0.0.1a/nm_image_assets/Tunnel.PNG.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/VBdeadSymbol2.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/VBfoundSymbol2.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/WSblue_extract.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/WSblueberry.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/WSdonate.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/WSplus.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/WSright_arrow.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/WSwindspinetree.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/tango.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/teriyaki jerky.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/the whole lot.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/thick smoothie.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/tour.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/trail mix.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/triple trek.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/tunnel2.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/tunnelbear.png.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/tunnelbeardead.PNG.png
-
Natro_Macro_v1.0.0.1a/nm_image_assets/webhook_gui/bitmaps.ahk
-
Natro_Macro_v1.0.0.1a/nm_image_assets/werewolf.png.png
-
Natro_Macro_v1.0.0.1a/paths/gtb-blue.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtb-mountain.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtb-red.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-WindShrine.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-antpass.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-blender.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-blueberrydis.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-candles.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-clock.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-coconutdis.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-extrememm.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-feast.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-gingerbread.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-gluedis.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-gummybeacon.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-honeydis.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-honeylb.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-honeystorm.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-lidart.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-megamm.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-nightmm.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-normalmm.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-rbpdelevel.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-robopass.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-royaljellydis.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-samovar.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-snowmachine.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-stickerPrinter.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-stickerstack.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-stockings.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-strawberrydis.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-treatdis.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-wintermm.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtc-wreath.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-bamboo.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-blueflower.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-cactus.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-clover.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-coconut.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-dandelion.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-mountaintop.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-mushroom.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-pepper.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-pineapple.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-pinetree.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-pumpkin.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-rose.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-spider.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-strawberry.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-stump.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtf-sunflower.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-bamboo.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-blueflower.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-cactus.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-clover.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-coconut.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-dandelion.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-mountaintop.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-mushroom.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-pepper.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-pineapple.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-pinetree.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-pumpkin.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-rose.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-spider.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-strawberry.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-stump.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtp-sunflower.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtq-black.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtq-brown.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtq-bucko.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtq-honey.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtq-polar.ahk
-
Natro_Macro_v1.0.0.1a/paths/gtq-riley.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-bamboo.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-blueflower.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-cactus.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-clover.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-coconut.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-dandelion.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-mountaintop.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-mushroom.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-pepper.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-pineapple.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-pinetree.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-pumpkin.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-rose.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-spider.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-strawberry.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-stump.ahk
-
Natro_Macro_v1.0.0.1a/paths/wf-sunflower.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Auryn.ahk
-
Natro_Macro_v1.0.0.1a/patterns/CornerXSnake.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Diamonds.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Fork.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Lines.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Slimline.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Snake.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Squares.ahk
-
Natro_Macro_v1.0.0.1a/patterns/Stationary.ahk
-
Natro_Macro_v1.0.0.1a/patterns/SuperCat.ahk
-
Natro_Macro_v1.0.0.1a/patterns/XSnake.ahk
-
Natro_Macro_v1.0.0.1a/patterns/e_lol.ahk
-
Natro_Macro_v1.0.0.1a/submacros/AutoHotkey32.exe.exe windows:6 windows x86 arch:x86
07cf90eb46aaf6a294723af987f55fbb
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
wsock32
htons
getservbyname
htonl
recv
WSAAsyncSelect
inet_addr
inet_ntoa
gethostbyname
ioctlsocket
WSASetLastError
WSAGetLastError
gethostbyaddr
getservbyport
ntohs
send
gethostname
shutdown
WSACleanup
closesocket
connect
socket
WSAStartup
winmm
joyGetPosEx
mciSendStringW
joyGetDevCapsW
version
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
comctl32
ImageList_GetIconSize
ImageList_Create
ImageList_Destroy
ImageList_AddMasked
ImageList_ReplaceIcon
CreateStatusWindowW
psapi
GetProcessImageFileNameW
wininet
InternetCloseHandle
InternetReadFileExA
InternetReadFile
InternetOpenW
InternetOpenUrlW
shlwapi
StrCmpLogicalW
uxtheme
EnableThemeDialogTexture
SetWindowTheme
IsAppThemed
dwmapi
DwmGetWindowAttribute
kernel32
GlobalFree
GlobalUnlock
WideCharToMultiByte
GetCPInfo
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
GetCurrentThreadId
GetEnvironmentVariableW
IsValidCodePage
LoadLibraryW
GetLastError
OutputDebugStringW
lstrcmpiW
GetStringTypeExW
CreateThread
SetThreadPriority
GetExitCodeThread
CloseHandle
CreateMutexW
VirtualProtect
SetLastError
GetModuleHandleW
GetDiskFreeSpaceExW
GetDriveTypeW
CreateFileW
DeviceIoControl
SetVolumeLabelW
GetVolumeInformationW
GetDiskFreeSpaceW
SetEnvironmentVariableW
MultiByteToWideChar
GetFullPathNameW
GetFileAttributesW
CreateDirectoryW
ReadFile
DeleteFileW
LoadResource
LockResource
WriteFile
SizeofResource
SetCurrentDirectoryW
CompareStringOrdinal
CopyFileW
SetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
FileTimeToLocalFileTime
LocalFileTimeToFileTime
GlobalLock
SetFileTime
GetFileSizeEx
MoveFileW
GetCurrentProcessId
OpenProcess
TerminateProcess
SetPriorityClass
GetProcessId
QueryDosDeviceW
EnterCriticalSection
LeaveCriticalSection
Beep
GetLocalTime
GetDateFormatW
GetTimeFormatW
GetDateFormatEx
GetTickCount64
GetSystemTime
GetSystemDefaultUILanguage
GetComputerNameW
GetCurrentDirectoryW
GetSystemWindowsDirectoryW
GetTempPathW
WaitForSingleObject
GetExitCodeProcess
WriteProcessMemory
ReadProcessMemory
GetVersionExW
InitializeCriticalSection
DeleteCriticalSection
GetModuleFileNameW
SetDllDirectoryW
GetModuleHandleExW
GetShortPathNameW
CreateProcessW
FormatMessageW
CompareStringW
RemoveDirectoryW
GetCurrentProcess
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetPrivateProfileStringW
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
WritePrivateProfileStringW
WritePrivateProfileSectionW
SetEndOfFile
GetACP
GetFileType
GetStdHandle
SetFilePointerEx
SystemTimeToFileTime
FileTimeToSystemTime
GetFileSize
IsWow64Process
VirtualAllocEx
VirtualFreeEx
EnumResourceNamesW
LoadLibraryExW
GlobalSize
FindResourceW
SetErrorMode
Sleep
GetTickCount
MulDiv
SetUnhandledExceptionFilter
GetStartupInfoW
QueryPerformanceCounter
InitializeSListHead
RtlUnwind
RaiseException
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
IsProcessorFeaturePresent
IsDebuggerPresent
TlsSetValue
TlsFree
GetCommandLineA
GetCommandLineW
ExitProcess
HeapSize
HeapReAlloc
HeapQueryInformation
HeapFree
HeapAlloc
GetProcessHeap
FindFirstFileExW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
LCMapStringW
GlobalAlloc
SetStdHandle
GetStringTypeW
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
DecodePointer
WriteConsoleW
GetSystemTimeAsFileTime
VirtualQuery
UnhandledExceptionFilter
user32
EnumChildWindows
SetActiveWindow
IsWindowVisible
IsChild
SetWindowRgn
SetWindowPos
EnumWindows
IsZoomed
IsIconic
GetLayeredWindowAttributes
SetLayeredWindowAttributes
DestroyWindow
RegisterClassExW
SystemParametersInfoW
CreateWindowExW
GetMenu
EnableMenuItem
LoadAcceleratorsW
AddClipboardFormatListener
RemoveClipboardFormatListener
LoadImageW
PostQuitMessage
CheckMenuItem
RegisterWindowMessageW
DefWindowProcW
SetForegroundWindow
MonitorFromPoint
GetSystemMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuStringW
ExitWindowsEx
GetPropW
GetClassLongW
SetMenu
SetPropW
RemovePropW
GetSysColor
RedrawWindow
DrawTextW
SetParent
GetClassInfoExW
AdjustWindowRectEx
GetAncestor
UpdateWindow
FlashWindow
GetMessagePos
GetSysColorBrush
FillRect
CallWindowProcW
CheckRadioButton
IntersectRect
GetUpdateRect
PtInRect
CreateDialogIndirectParamW
CreateAcceleratorTableW
DestroyAcceleratorTable
InsertMenuItemW
RemoveMenu
SetMenuItemInfoW
GetMenuItemInfoW
SetMenuDefaultItem
CreateMenu
CreatePopupMenu
SetMenuInfo
DestroyMenu
TrackPopupMenuEx
CopyImage
CreateIconIndirect
CreateIconFromResourceEx
DrawIconEx
EnumClipboardFormats
GetWindow
BringWindowToTop
MapVirtualKeyExW
GetLastInputInfo
GetLastActivePopup
GetShellWindow
GetGUIThreadInfo
GetWindowTextW
mouse_event
WindowFromPoint
keybd_event
SetKeyboardState
GetKeyboardState
GetCursorPos
GetAsyncKeyState
AttachThreadInput
SendInput
UnregisterHotKey
RegisterHotKey
SendMessageTimeoutW
CharUpperW
UnhookWindowsHookEx
SetWindowsHookExW
PostThreadMessageW
IsCharAlphaNumericW
IsCharUpperW
IsCharLowerW
ToUnicodeEx
GetKeyboardLayout
CallNextHookEx
CharLowerW
ReleaseDC
DialogBoxParamW
ScrollWindow
GetSystemMetrics
GetWindowRect
SetFocus
DefDlgProcW
MoveWindow
MapWindowPoints
GetClientRect
EnableWindow
MapDialogRect
GetDlgItem
SetWindowTextW
MessageBoxW
OpenClipboard
GetClipboardData
GetClipboardFormatNameW
CloseClipboard
SetClipboardData
EmptyClipboard
PostMessageW
FindWindowW
EndDialog
IsWindow
DispatchMessageW
TranslateMessage
ShowWindow
IsClipboardFormatAvailable
CountClipboardFormats
LoadCursorW
GetCursorInfo
ClientToScreen
MessageBeep
GetIconInfo
GetWindowTextLengthW
InvalidateRect
AdjustWindowRect
SetDlgItemTextW
SendDlgItemMessageW
IsCharAlphaW
DestroyIcon
EnumDisplayMonitors
GetMonitorInfoW
BlockInput
MapVirtualKeyW
SetWindowLongW
ScreenToClient
GetKeyboardLayoutNameW
IsDialogMessageW
SendMessageW
IsWindowEnabled
GetWindowLongW
GetKeyState
TranslateAcceleratorW
KillTimer
PeekMessageW
GetFocus
GetClassNameW
GetWindowThreadProcessId
GetForegroundWindow
GetMessageW
SetTimer
GetParent
GetDlgCtrlID
GetQueueStatus
VkKeyScanExW
ActivateKeyboardLayout
GetDC
gdi32
GdiFlush
CreateDIBSection
EnumFontFamiliesExW
SetBrushOrgEx
CreatePatternBrush
GetClipBox
GetObjectW
SetBkMode
SetBkColor
GetDeviceCaps
CreateCompatibleDC
CreateFontIndirectW
GetStockObject
CreateSolidBrush
GetCharABCWidthsW
GetTextMetricsW
GetPixel
GetDIBits
SelectObject
CreateDCW
CreateFontW
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateEllipticRgn
DeleteObject
BitBlt
CreateCompatibleBitmap
DeleteDC
GetSystemPaletteEntries
SetTextColor
advapi32
UnlockServiceDatabase
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegDeleteValueW
GetUserNameW
RegConnectRegistryW
RegCloseKey
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
CreateProcessWithLogonW
OpenSCManagerW
LockServiceDatabase
CloseServiceHandle
RegDeleteKeyExW
shell32
SHBrowseForFolderW
DragFinish
SHGetKnownFolderPath
ExtractIconW
DragQueryPoint
SHEmptyRecycleBinW
SHFileOperationW
SHGetPathFromIDListW
DragQueryFileW
SHGetDesktopFolder
SHGetMalloc
SHCreateItemFromParsingName
ShellExecuteExW
SHGetFolderPathW
Shell_NotifyIconW
ole32
CoCreateInstance
CoTaskMemFree
CLSIDFromString
OleInitialize
OleUninitialize
CoInitialize
CoUninitialize
CLSIDFromProgID
CoGetObject
StringFromGUID2
CreateStreamOnHGlobal
oleaut32
SafeArrayUnaccessData
SafeArrayGetElemsize
SafeArrayAccessData
SafeArrayUnlock
SafeArrayPtrOfIndex
SafeArrayLock
SafeArrayGetDim
OleLoadPicture
SafeArrayDestroy
SysFreeString
GetActiveObject
SysStringLen
SafeArrayCreate
VariantClear
VariantChangeType
SafeArrayGetLBound
SysAllocString
SafeArrayCopy
SysAllocStringLen
VariantCopyInd
SafeArrayGetUBound
Sections
.text Size: 730KB - Virtual size: 729KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 168KB - Virtual size: 167KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 33KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Natro_Macro_v1.0.0.1a/submacros/AutoHotkey64.exe.exe windows:6 windows x64 arch:x64
ce1444d915054b4e2ded192c44720156
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
wsock32
htons
getservbyname
htonl
recv
WSAAsyncSelect
inet_addr
inet_ntoa
gethostbyname
ioctlsocket
WSASetLastError
WSAGetLastError
gethostbyaddr
getservbyport
ntohs
send
gethostname
shutdown
WSACleanup
closesocket
connect
socket
WSAStartup
winmm
joyGetPosEx
mciSendStringW
joyGetDevCapsW
version
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
comctl32
ImageList_GetIconSize
ImageList_Create
ImageList_Destroy
ImageList_AddMasked
ImageList_ReplaceIcon
CreateStatusWindowW
psapi
GetProcessImageFileNameW
wininet
InternetCloseHandle
InternetReadFileExA
InternetReadFile
InternetOpenW
InternetOpenUrlW
shlwapi
StrCmpLogicalW
uxtheme
EnableThemeDialogTexture
SetWindowTheme
IsAppThemed
dwmapi
DwmGetWindowAttribute
kernel32
GlobalFree
GlobalUnlock
WideCharToMultiByte
GetCPInfo
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
GetCurrentThreadId
GetEnvironmentVariableW
IsValidCodePage
LoadLibraryW
GetLastError
OutputDebugStringW
lstrcmpiW
GetStringTypeExW
CreateThread
SetThreadPriority
GetExitCodeThread
CloseHandle
CreateMutexW
VirtualProtect
SetLastError
GetModuleHandleW
GetDiskFreeSpaceExW
GetDriveTypeW
CreateFileW
DeviceIoControl
SetVolumeLabelW
GetVolumeInformationW
GetDiskFreeSpaceW
SetEnvironmentVariableW
MultiByteToWideChar
GetFullPathNameW
GetFileAttributesW
CreateDirectoryW
ReadFile
DeleteFileW
LoadResource
LockResource
WriteFile
SizeofResource
SetCurrentDirectoryW
CompareStringOrdinal
CopyFileW
SetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
FileTimeToLocalFileTime
LocalFileTimeToFileTime
GetSystemTimeAsFileTime
SetFileTime
GetFileSizeEx
MoveFileW
GlobalLock
OpenProcess
TerminateProcess
SetPriorityClass
GetProcessId
QueryDosDeviceW
EnterCriticalSection
LeaveCriticalSection
Beep
GetLocalTime
GetDateFormatW
GetTimeFormatW
GetDateFormatEx
GetTickCount64
GetSystemTime
GetSystemDefaultUILanguage
GetComputerNameW
GetCurrentDirectoryW
GetSystemWindowsDirectoryW
GetTempPathW
WaitForSingleObject
GetExitCodeProcess
WriteProcessMemory
ReadProcessMemory
GetVersionExW
InitializeCriticalSection
DeleteCriticalSection
GetModuleFileNameW
SetDllDirectoryW
GetModuleHandleExW
GetShortPathNameW
CreateProcessW
FormatMessageW
CompareStringW
RemoveDirectoryW
GetCurrentProcess
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetPrivateProfileStringW
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
WritePrivateProfileStringW
WritePrivateProfileSectionW
SetEndOfFile
GetACP
GetFileType
GetStdHandle
SetFilePointerEx
SystemTimeToFileTime
FileTimeToSystemTime
GetFileSize
IsWow64Process
VirtualAllocEx
VirtualFreeEx
EnumResourceNamesW
LoadLibraryExW
GlobalSize
FindResourceW
SetErrorMode
Sleep
GetTickCount
MulDiv
RtlUnwindEx
RtlPcToFileHeader
RaiseException
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetCommandLineA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCommandLineW
ExitProcess
HeapSize
HeapReAlloc
HeapQueryInformation
HeapFree
HeapAlloc
GetProcessHeap
FindFirstFileExW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
LCMapStringW
GlobalAlloc
SetStdHandle
GetStringTypeW
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
WriteConsoleW
GetCurrentProcessId
InitializeSListHead
user32
SetWindowPos
EnumWindows
IsZoomed
IsIconic
GetLayeredWindowAttributes
SetLayeredWindowAttributes
DestroyWindow
RegisterClassExW
SystemParametersInfoW
CreateWindowExW
GetMenu
EnableMenuItem
LoadAcceleratorsW
AddClipboardFormatListener
RemoveClipboardFormatListener
LoadImageW
PostQuitMessage
CheckMenuItem
RegisterWindowMessageW
DefWindowProcW
SetForegroundWindow
MonitorFromPoint
GetSystemMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuStringW
ExitWindowsEx
GetPropW
GetClassLongW
SetMenu
SetPropW
RemovePropW
GetSysColor
RedrawWindow
DrawTextW
SetParent
GetClassInfoExW
AdjustWindowRectEx
GetAncestor
UpdateWindow
FlashWindow
GetMessagePos
GetSysColorBrush
FillRect
GetClassLongPtrW
CallWindowProcW
CheckRadioButton
IntersectRect
GetUpdateRect
PtInRect
CreateDialogIndirectParamW
CreateAcceleratorTableW
DestroyAcceleratorTable
InsertMenuItemW
RemoveMenu
SetMenuItemInfoW
GetMenuItemInfoW
SetMenuDefaultItem
CreateMenu
CreatePopupMenu
SetMenuInfo
DestroyMenu
TrackPopupMenuEx
CopyImage
CreateIconIndirect
CreateIconFromResourceEx
DrawIconEx
EnumClipboardFormats
GetWindow
BringWindowToTop
GetQueueStatus
GetLastActivePopup
GetShellWindow
MapVirtualKeyW
VkKeyScanExW
SetWindowRgn
GetKeyboardLayoutNameW
ActivateKeyboardLayout
GetGUIThreadInfo
GetWindowTextW
mouse_event
WindowFromPoint
keybd_event
SetKeyboardState
GetKeyboardState
GetCursorPos
GetAsyncKeyState
AttachThreadInput
SendInput
UnregisterHotKey
RegisterHotKey
SendMessageTimeoutW
CharUpperW
UnhookWindowsHookEx
SetWindowsHookExW
PostThreadMessageW
IsCharAlphaNumericW
IsCharUpperW
IsCharLowerW
ToUnicodeEx
GetKeyboardLayout
CharLowerW
ReleaseDC
GetDC
DialogBoxParamW
ScrollWindow
GetSystemMetrics
GetWindowRect
GetWindowLongPtrW
SetFocus
DefDlgProcW
MoveWindow
MapWindowPoints
GetClientRect
EnableWindow
MapDialogRect
GetDlgItem
SetWindowLongPtrW
SetWindowTextW
MessageBoxW
OpenClipboard
GetClipboardData
GetClipboardFormatNameW
CloseClipboard
SetClipboardData
EmptyClipboard
PostMessageW
FindWindowW
IsChild
IsWindowVisible
SetActiveWindow
EnumChildWindows
GetLastInputInfo
LoadCursorW
GetCursorInfo
ClientToScreen
MessageBeep
GetIconInfo
GetWindowTextLengthW
InvalidateRect
AdjustWindowRect
SetDlgItemTextW
SendDlgItemMessageW
IsCharAlphaW
EndDialog
IsWindow
DispatchMessageW
TranslateMessage
ShowWindow
IsClipboardFormatAvailable
CountClipboardFormats
SetWindowLongW
ScreenToClient
GetMonitorInfoW
IsDialogMessageW
SendMessageW
IsWindowEnabled
GetWindowLongW
GetKeyState
TranslateAcceleratorW
KillTimer
PeekMessageW
GetFocus
GetClassNameW
GetWindowThreadProcessId
GetForegroundWindow
GetMessageW
SetTimer
GetParent
GetDlgCtrlID
EnumDisplayMonitors
DestroyIcon
MapVirtualKeyExW
BlockInput
CallNextHookEx
gdi32
GdiFlush
CreateDIBSection
EnumFontFamiliesExW
SetBrushOrgEx
GetObjectW
CreatePatternBrush
GetClipBox
SetBkMode
SetBkColor
GetDeviceCaps
CreateCompatibleDC
CreateFontIndirectW
GetStockObject
CreateSolidBrush
GetCharABCWidthsW
GetTextMetricsW
GetPixel
GetDIBits
SelectObject
CreateDCW
CreateFontW
CreatePolygonRgn
CreateRectRgn
CreateRoundRectRgn
CreateEllipticRgn
DeleteObject
BitBlt
CreateCompatibleBitmap
DeleteDC
GetSystemPaletteEntries
SetTextColor
advapi32
UnlockServiceDatabase
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegDeleteValueW
GetUserNameW
RegConnectRegistryW
RegCloseKey
RegOpenKeyExW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
CreateProcessWithLogonW
OpenSCManagerW
LockServiceDatabase
CloseServiceHandle
RegDeleteKeyExW
shell32
SHBrowseForFolderW
DragFinish
SHGetKnownFolderPath
ExtractIconW
DragQueryPoint
SHEmptyRecycleBinW
SHFileOperationW
SHGetPathFromIDListW
DragQueryFileW
SHGetDesktopFolder
SHGetMalloc
SHCreateItemFromParsingName
ShellExecuteExW
SHGetFolderPathW
Shell_NotifyIconW
ole32
CoCreateInstance
CoTaskMemFree
CLSIDFromString
OleInitialize
OleUninitialize
CoInitialize
CoUninitialize
CLSIDFromProgID
CoGetObject
StringFromGUID2
CreateStreamOnHGlobal
oleaut32
SafeArrayUnaccessData
SafeArrayDestroy
SysFreeString
GetActiveObject
SysStringLen
SafeArrayCreate
VariantClear
OleLoadPicture
SysAllocString
SafeArrayCopy
SysAllocStringLen
VariantCopyInd
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetDim
VariantChangeType
SafeArrayLock
SafeArrayPtrOfIndex
SafeArrayUnlock
SafeArrayAccessData
SafeArrayGetElemsize
Sections
.text Size: 885KB - Virtual size: 884KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 240KB - Virtual size: 240KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 34KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 33KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
Natro_Macro_v1.0.0.1a/submacros/Heartbeat.ahk
-
Natro_Macro_v1.0.0.1a/submacros/PlanterTimers.ahk
-
Natro_Macro_v1.0.0.1a/submacros/StatMonitor.ahk.vbs
-
Natro_Macro_v1.0.0.1a/submacros/Status.ahk.ps1
-
Natro_Macro_v1.0.0.1a/submacros/background.ahk.js
-
Natro_Macro_v1.0.0.1a/submacros/natro_macro.ahk.vbs
-
Natro_Macro_v1.0.0.1a/submacros/update.bat.wsf .vbs polyglot