188966122a7f1ec6a604ac27ade7a3cb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

188966122a7f1ec6a604ac27ade7a3cb_JaffaCakes118
Size

3.1MB
MD5

188966122a7f1ec6a604ac27ade7a3cb
SHA1

30e44fbdfd6c4e51941359ba9734db81ad788719
SHA256

e7ac8619642e8cf7391a3dc0161a9139982503054053d7640ddd864c9eb4e03c
SHA512

a5f0abc890f03f169f26f3791f98e6ce611a13c6440a5575164a2182d0b17e7c3342b8b3f72564e1130332520da0c15d1377a8c5c327301b082af3c5734dd775
SSDEEP

98304:CnsZxcAZPJMdo/Nu1wR0f8rtBAP42cL9EovI/:CsYAZPJMvxErtT2cL+V

Score

7^/10

aspackv2

Malware Config

Signatures

ASPack v2.12-2.42 1 IoCs

Detects executables packed with ASPack v2.12-2.42

aspackv2

resource	yara_rule
static1/unpack001/Longhorn 7Air/Longhorn 7Air/Explorer.exe	aspack_v212_v242

Unsigned PE 7 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Longhorn 7Air/ExplorerFrame.dll
unpack001/Longhorn 7Air/Longhorn 7Air/Explorer.exe
unpack001/Longhorn 7Air/Longhorn 7Air/Longhorn 7Air Backup.msstyles
unpack001/Longhorn 7Air/Longhorn 7Air/Longhorn 7Air.msstyles
unpack001/Longhorn 7Air/Longhorn 7Air/Shell/NormalColor/en-US/shellstyle.dll.mui
unpack001/Longhorn 7Air/Longhorn 7Air/Shell/NormalColor/shellstyle.dll
unpack001/Longhorn 7Air/Longhorn 7Air/en-US/Longhorn 7Air.msstyles.mui

Files

188966122a7f1ec6a604ac27ade7a3cb_JaffaCakes118
.rar
Longhorn 7Air/ExplorerFrame.dll
.dll windows:6 windows x86 arch:x86

7574875ead4504d8574902e6215ed5d3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

ExplorerFrame.pdb

Imports

msvcrt

malloc
_vsnwprintf
memcpy
_ftol2_sse
_ftol2
free
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
_amsg_exit
_initterm
memset
_XcptFilter
realloc
rand
_ultow_s
wcschr
iswalpha
_wcsicmp
memmove

ntdll

WinSqmSetDWORD
RtlCaptureStackBackTrace
WinSqmAddToStream

kernel32

WaitForMultipleObjects
GetCurrentDirectoryW
SizeofResource
LockResource
LoadResource
FindResourceW
CompareStringOrdinal
ResetEvent
OpenEventW
GlobalSize
GetLocaleInfoW
GetThreadUILanguage
lstrcmpA
GetLocalTime
GetDriveTypeW
ExpandEnvironmentStringsW
TlsGetValue
TlsFree
TlsSetValue
TlsAlloc
GetSystemTimeAsFileTime
GetStringTypeW
AddAtomW
GetThreadPriority
HeapReAlloc
RaiseException
OutputDebugStringW
Sleep
QueryPerformanceCounter
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LocalReAlloc
LoadLibraryExA
DelayLoadFailureHook
GetCurrentProcessId
CreateThread
MultiByteToWideChar
ReleaseSRWLockShared
AcquireSRWLockShared
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
FormatMessageW
LoadLibraryA
FindNLSString
GetThreadLocale
CompareStringW
GetUserDefaultLCID
lstrlenA
WideCharToMultiByte
WaitForSingleObject
GetUserDefaultUILanguage
GetModuleHandleExW
CreateEventW
RegisterWaitForSingleObject
UnregisterWait
GetModuleHandleW
GetModuleFileNameW
lstrcmpiW
InterlockedExchange
SetEvent
GetSystemTime
GetCurrentProcess
DuplicateHandle
CloseHandle
MulDiv
GlobalLock
GlobalUnlock
GlobalFree
LocalAlloc
GlobalAlloc
LocalFree
InitializeSRWLock
lstrcmpW
lstrlenW
LoadLibraryW
GetLastError
GetProcAddress
GetTickCount
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
DisableThreadLibraryCalls
DeleteCriticalSection
LoadLibraryExW
FreeLibrary
InterlockedCompareExchange
HeapFree
GetProcessHeap
HeapAlloc
InitializeCriticalSection
FindResourceExW
RegQueryInfoKeyW
ReleaseActCtx
CreateActCtxW
ActivateActCtx
DeactivateActCtx
GetCurrentThreadId
GetCurrentThread
SetThreadPriority
InterlockedDecrement
InterlockedIncrement
GetStartupInfoW

advapi32

RegSetKeyValueW
RegQueryValueExW
RegDeleteValueW
RegEnumKeyExW
RegGetValueW
RegCreateKeyW
RegEnumValueW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyW
EventEnabled
TraceMessage
EventUnregister
EventRegister
UnregisterTraceGuids
RegisterTraceGuidsW
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
EventWrite
RegCloseKey

gdi32

GetTextMetricsW
GdiTransparentBlt
OffsetViewportOrgEx
GetClipRgn
GetRgnBox
SelectClipRgn
ExtTextOutW
CreateDIBSection
GetTextExtentPoint32W
CreateCompatibleDC
CreateCompatibleBitmap
GdiAlphaBlend
DeleteDC
CreateFontIndirectW
SelectObject
GetTextExtentPointW
CreateBitmapFromDxSurface
CreatePalette
GetStockObject
SelectPalette
RealizePalette
GetPaletteEntries
SetPaletteEntries
GetCharWidth32W
GetLayout
SetLayout
GetViewportOrgEx
LPtoDP
SetViewportOrgEx
GetObjectType
SetBkMode
CreateSolidBrush
BitBlt
OffsetWindowOrgEx
SetWindowOrgEx
GetClipBox
GetObjectW
SetBkColor
EqualRgn
CombineRgn
SetRectRgn
CreateRectRgn
CreateRectRgnIndirect
StretchBlt
GetDeviceCaps
SetTextColor
SetTextAlign
DeleteObject

user32

ValidateRect
GetScrollBarInfo
GetGestureInfo
CloseGestureInfoHandle
UpdateWindow
EnumChildWindows
SetGestureConfig
UnionRect
GetMessageTime
IsWinEventHookInstalled
GetMenuInfo
SetMenuInfo
IsProcessDPIAware
ActivateKeyboardLayout
CreateWindowExW
MsgWaitForMultipleObjects
PostQuitMessage
CharNextW
RemoveMenu
SendNotifyMessageW
SendMessageTimeoutW
EnumWindows
IsHungAppWindow
SetMenuDefaultItem
GetMenuDefaultItem
LoadImageW
WindowFromPoint
ChangeClipboardChain
SetClipboardViewer
DrawIconEx
FindWindowW
LoadIconW
GetForegroundWindow
CopyIcon
RegisterWindowMessageW
CharUpperW
GetDoubleClickTime
MsgWaitForMultipleObjectsEx
CallMsgFilterW
SetMenuItemInfoW
GetMenuItemInfoW
InsertMenuItemW
GetWindowThreadProcessId
LoadMenuW
GetClassInfoExW
IsClipboardFormatAvailable
SetCaretPos
ShowCaret
HideCaret
CreateCaret
DestroyCaret
DrawTextExW
GetKeyboardLayout
LoadAcceleratorsW
DestroyAcceleratorTable
TranslateAcceleratorW
AppendMenuW
LoadBitmapW
RegisterClassW
RegisterClassExW
BeginPaint
EndPaint
GetDlgCtrlID
NotifyWinEvent
AnimateWindow
DrawEdge
GetSysColorBrush
FillRect
GetMenuStringW
DrawTextW
WaitMessage
IsWindowEnabled
IsIconic
AttachThreadInput
EnumDesktopWindows
GetClassNameW
EnumDisplayMonitors
GetWindowPlacement
SetWindowPlacement
DestroyIcon
GetLastActivePopup
SetForegroundWindow
AdjustWindowRectEx
GetMessagePos
MessageBeep
GetActiveWindow
EqualRect
SetRect
MonitorFromRect
SetRectEmpty
IntersectRect
IsRectEmpty
SetWindowRgn
MoveWindow
SetParent
GetMonitorInfoW
GetMenuItemID
GetSubMenu
InsertMenuW
GetMenuState
EnableWindow
GetClassWord
CopyRect
TrackPopupMenuEx
SetClipboardData
ClientToScreen
CreatePopupMenu
CheckMenuItem
EnableMenuItem
DeleteMenu
DestroyMenu
TrackPopupMenu
ScreenToClient
SetCapture
InflateRect
GetCapture
ReleaseCapture
IsWindowVisible
MonitorFromWindow
GetMenuItemCount
RegisterClipboardFormatW
PeekMessageW
RedrawWindow
IsChild
GetWindowTextLengthW
RegisterWindowMessageA
SetWindowsHookExW
LockWindowUpdate
SetWindowTextW
GetWindow
CallNextHookEx
UnhookWindowsHookEx
OpenClipboard
GetClipboardData
CloseClipboard
GetCursorPos
MapWindowPoints
PtInRect
SetCursor
LoadCursorW
GetAncestor
GetWindowLongW
SetPropW
GetPropW
DefWindowProcW
RemovePropW
SetWindowLongW
CallWindowProcW
GetWindowTextW
InvalidateRect
GetClientRect
OffsetRect
SetWindowPos
DestroyWindow
GetSysColor
TrackMouseEvent
GetSystemMenu
GetParent
MonitorFromPoint
GetAsyncKeyState
GetWindowRect
SystemParametersInfoW
GetSystemMetrics
GetDC
ReleaseDC
KillTimer
SetTimer
GetFocus
SetFocus
LoadStringW
SendMessageW
GetKeyState
TranslateMessage
DispatchMessageW
ShowWindow
GetShellWindow
PostMessageW
IsWindow

shell32

ord18
SHGetIDListFromObject
ord155
SHParseDisplayName
ord176
ord68
ord100
SHChangeNotifyRegisterThread
ShellExecuteExW
ord19
SHGetInstanceExplorer
ord16
ord681
SHGetFileInfoW
ord884
ord77
SHBindToParent
ord102
SHPathPrepareForWriteW
ord74
ord888
SHCreateShellItemArray
ord824
ord897
ord819
DragQueryFileW
SHBindToFolderIDListParentEx
ord862
ord129
ord136
ord134
ord22
SHGetItemFromObject
ord147
SHGetSpecialFolderLocation
ord654
ord652
ord747
ord873
ord193
ord88
SHGetNameFromIDList
SHGetTemporaryPropertyForItem
SHSetTemporaryPropertyForItem
SHBindToFolderIDListParent
SHBindToObject
SHGetItemFromDataObject
SHCreateShellItemArrayFromDataObject
SHGetIconOverlayIndexW
ord787
SHCreateShellItemArrayFromIDLists
SHGetKnownFolderItem
ord817
ord818
SHGetFolderLocation
ord90
ShellAboutW
SHGetPropertyStoreForWindow
ord103
ord27
ord851
ord823
ExtractIconExW
ExtractAssociatedIconExW
ord152
ord162
ord59
SHGetPathFromIDListA
ord66
ord98
ord893
ord153
ord17
SHChangeNotify
ord14
ord902
ord71
Shell_GetCachedImageIndexW
ord829
SHGetFolderPathEx
SHGetPathFromIDListW
ord85
ord870
ord871
ord900
ord881
ord137
SHAppBarMessage
ord866
ord882
ord833
ord704
ord644
ord645
ord24
SHCreateItemFromIDList
ord23
SHCreateItemWithParent
ord727
ord2
SHGetKnownFolderIDList
ord25
ord4
ord21
ord67
ord132

shlwapi

ord219
ord199
ord2
SHQueryValueExW
ord344
SHSetThreadRef
SHCreateThreadRef
ord437
ord176
ord239
ChrCmpIW
ord225
ord481
ord509
ord163
ord172
ord174
ord173
ord165
ord164
ord237
PathIsRelativeW
ord215
ord204
StrCmpW
StrDupW
ord388
ord177
ord478
ord190
ord191
ord200
ord184
ord479
ord186
ord202
ord618
ord198
ord629
ord182
ord201
ord158
ord433
SHDeleteKeyW
SHSetValueW
SHRegGetUSValueW
ord24
ord197
ord168
SHRegGetValueW
ord484
PathParseIconLocationW
AssocQueryStringW
ord581
IntlStrEqWorkerW
StrToIntExW
ord1
ord611
PathBuildRootW
ord16
ord540
ord639
ord317
PathRemoveFileSpecW
PathAppendW
ord154
ord157
ord524
ord522
ord533
ord523
ord521
ord538
ord567
ord495
ord494
ord616
ord268
ord267
StrRetToStrW
StrPBrkW
PathRemoveExtensionW
ord487
ord462
UrlCreateFromPathW
UrlApplySchemeW
SHEnumValueW
SHOpenRegStream2W
ord534
ord632
PathFindExtensionW
ord214
ord10
ord510
ord9
ord545
ord571
StrRetToBufW
PathIsURLW
ord281
ord283
PathFindFileNameW
UrlCanonicalizeW
HashData
ord517
ord496
ord516
StrStrIW
ord240
ord7
ord286
ord499
ord260
ord166
ord187
ord635
ord206
ord209
StrToIntW
ord212
ord287
PathCreateFromUrlW
PathIsNetworkPathW
ord384
ord476
ord217
PathCreateFromUrlA
UrlUnescapeA
ord288
PathIsUNCW
PathGetDriveNumberW
ord282
ord284
ord383
ord179
ord505
ord506
ord535
ord208
ord210
SHCreateShellPalette
GetMenuPosFromID
ord192
StrCmpIW
StrTrimW
ord514
ord477
ord175
ord638
SHDeleteValueW
StrCmpNW
ord156
ord256
ord278
SHRegGetBoolUSValueW
ord181
ord178
ord508
ord507
SHStrDupW
PathStripToRootW
PathUnquoteSpacesW
ord213
ord532
ord515
ord531
StrChrW
StrStrW
ord167
SHGetValueW
ord439
ord630
ord12

duser

FindGadgetFromPoint
GetGadgetFocus
GetGadgetRect
GetGadget
DeleteHandle
CreateAction
SetGadgetFocus
SetGadgetStyle
SetGadgetOrder
InvalidateGadget

dui70

?EnsureVisible@Element@DirectUI@@QAE_NXZ
?GetXOffset@Viewer@DirectUI@@QAEHXZ
?SetXOffset@Viewer@DirectUI@@QAEJH@Z
?OnMessage@CCBaseScrollBar@DirectUI@@UAE_NIIJPAJ@Z
?GetXScrollable@Viewer@DirectUI@@QAE_NXZ
??1CCBaseScrollBar@DirectUI@@UAE@XZ
?End@BaseScrollBar@DirectUI@@UAEXXZ
?Home@BaseScrollBar@DirectUI@@UAEXXZ
?GetProportional@CCBaseScrollBar@DirectUI@@UAE_NXZ
?SetLine@CCBaseScrollBar@DirectUI@@UAEJH@Z
?SetPage@CCBaseScrollBar@DirectUI@@UAEJH@Z
?SetMinimum@CCBaseScrollBar@DirectUI@@UAEJH@Z
?SetMaximum@CCBaseScrollBar@DirectUI@@UAEJH@Z
?SetPosition@CCBaseScrollBar@DirectUI@@UAEJH@Z
?GetLine@CCBaseScrollBar@DirectUI@@UAEHXZ
?GetPage@CCBaseScrollBar@DirectUI@@UAEHXZ
?GetMinimum@CCBaseScrollBar@DirectUI@@UAEHXZ
?GetMaximum@CCBaseScrollBar@DirectUI@@UAEHXZ
?GetPosition@CCBaseScrollBar@DirectUI@@UAEHXZ
?GetElement@CCBaseScrollBar@DirectUI@@UAEPAVElement@2@XZ
?PostCreate@CCBase@DirectUI@@MAEXPAUHWND__@@@Z
?OnReceivedDialogFocus@CCBase@DirectUI@@UAE_NPAVDialogElement@2@@Z
?OnLostDialogFocus@CCBase@DirectUI@@UAE_NPAVDialogElement@2@@Z
?OnCustomDraw@CCBase@DirectUI@@UAE_NPAUtagNMCUSTOMDRAWINFO@@PAJ@Z
?EraseBkgnd@HWNDHost@DirectUI@@MAE_NPAUHDC__@@PAJ@Z
?CreateHWND@CCBaseScrollBar@DirectUI@@UAEPAUHWND__@@PAU3@@Z
?SetWindowDirection@HWNDHost@DirectUI@@UAEXPAUHWND__@@@Z
?OnAdjustWindowSize@HWNDHost@DirectUI@@UAEHHHI@Z
?OnWindowStyleChanged@HWNDHost@DirectUI@@UAEXIPBUtagSTYLESTRUCT@@@Z
?OnCtrlThemeChanged@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z
?OnSinkThemeChanged@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z
?OnSysChar@HWNDHost@DirectUI@@UAE_NG@Z
?OnNotify@CCBase@DirectUI@@UAE_NIIJPAJ@Z
?GetHWND@HWNDHost@DirectUI@@UAEPAUHWND__@@XZ
?DefaultAction@CCBase@DirectUI@@UAEJXZ
?GetAccessibleImpl@HWNDHost@DirectUI@@UAEJPAPAUIAccessible@@@Z
?GetKeyFocused@HWNDHost@DirectUI@@UAE_NXZ
?OnUnHosted@HWNDHost@DirectUI@@MAEXPAVElement@2@@Z
?OnHosted@HWNDHost@DirectUI@@MAEXPAVElement@2@@Z
?MessageCallback@HWNDHost@DirectUI@@UAEIPAUtagGMSG@@@Z
?SetKeyFocus@HWNDHost@DirectUI@@UAEXXZ
?Paint@HWNDHost@DirectUI@@UAEXPAUHDC__@@PBUtagRECT@@1PAU4@2@Z
?OnInput@CCBase@DirectUI@@UAEXPAUInputEvent@2@@Z
?OnPropertyChanging@CCBaseScrollBar@DirectUI@@UAE_NPBUPropertyInfo@2@HPAVValue@2@1@Z
??0CCBaseScrollBar@DirectUI@@QAE@K@Z
?_FlushLayout@Element@DirectUI@@KGXPAV12@PAVDeferCycle@2@@Z
?GetClassInfoPtr@CCBaseScrollBar@DirectUI@@SGPAUIClassInfo@2@XZ
?GetClassInfoPtr@Viewer@DirectUI@@SGPAUIClassInfo@2@XZ
?OnDestroy@HWNDHost@DirectUI@@UAEXXZ
?IsScrollable@BaseScrollBar@DirectUI@@QAE_NXZ
?LayoutPosProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?EnabledProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?_GetChangesUpdatePass@Element@DirectUI@@QAEHXZ
?Insert@Element@DirectUI@@QAEJPAV12@I@Z
?Remove@Element@DirectUI@@QAEJPAV12@@Z
??0DCSurface@DirectUI@@QAE@PAUHDC__@@@Z
??1DCSurface@DirectUI@@UAE@XZ
?GetUnset@Value@DirectUI@@SGPAV12@XZ
?IsDescendent@Element@DirectUI@@QAE_NPAV12@@Z
?SetExpanded@Expandable@DirectUI@@QAEJ_N@Z
?Register@Button@DirectUI@@SGJXZ
?ClassProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?Initialize@Button@DirectUI@@QAEJIPAVElement@2@PAK@Z
?SetActive@Element@DirectUI@@QAEJH@Z
?SetSelected@Element@DirectUI@@QAEJ_N@Z
?AccessibleProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?SelectedProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetAccessible@Element@DirectUI@@QAE_NXZ
?GetAccState@Element@DirectUI@@QAEHXZ
?SetAccState@Element@DirectUI@@QAEJH@Z
??1Button@DirectUI@@UAE@XZ
?GetClassInfoPtr@Expandable@DirectUI@@SGPAUIClassInfo@2@XZ
?OnReceivedDialogFocus@Button@DirectUI@@UAE_NPAVDialogElement@2@@Z
?OnLostDialogFocus@Button@DirectUI@@UAE_NPAVDialogElement@2@@Z
?DefaultAction@Button@DirectUI@@UAEJXZ
?GetYScrollable@Viewer@DirectUI@@QAE_NXZ
?OnPropertyChanged@Button@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
??0Button@DirectUI@@QAE@XZ
?GetClassInfoPtr@Button@DirectUI@@SGPAUIClassInfo@2@XZ
?Init@Schema@DirectUI@@SGJXZ
?UiaReturnRawElementProvider@Schema@DirectUI@@2P6GJPAUHWND__@@IJPAUIRawElementProviderSimple@@@ZA
?AccRoleProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?Release@Element@DirectUI@@QAGKXZ
?AddRef@Element@DirectUI@@QAGKXZ
?CreateStyleParser@HWNDElement@DirectUI@@UAEJPAPAVDUIXmlParser@2@@Z
?GetTopLevel@Element@DirectUI@@QAEPAV12@XZ
?PostEvent@Element@DirectUI@@QAEXPAUEvent@2@@Z
FlushThemeHandles
?KeyWithinProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetKeyWithin@Element@DirectUI@@QAE_NXZ
?GetImmediateChild@Element@DirectUI@@QAEPAV12@PAV12@@Z
?BroadcastEvent@Element@DirectUI@@QAEXPAUEvent@2@@Z
?AccNameProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?SheetProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?SetID@Element@DirectUI@@QAEJPBG@Z
?SetTooltip@Element@DirectUI@@QAEJ_N@Z
?ContentAlignProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?FontProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?OnEvent@HWNDHost@DirectUI@@UAEXPAUEvent@2@@Z
?SyncScrollBar@CCBaseScrollBar@DirectUI@@QAEXXZ
?OnPositionChanged@BaseScrollBar@DirectUI@@QAEXPAVValue@2@@Z
?PositionProp@CCBaseScrollBar@DirectUI@@SGPBUPropertyInfo@2@XZ
?OnPageChanged@BaseScrollBar@DirectUI@@QAEXPAVValue@2@@Z
?PageProp@CCBaseScrollBar@DirectUI@@SGPBUPropertyInfo@2@XZ
?OnMaximumChanged@BaseScrollBar@DirectUI@@QAEXPAVValue@2@@Z
?MaximumProp@CCBaseScrollBar@DirectUI@@SGPBUPropertyInfo@2@XZ
?OnPropertyChanged@CCBaseScrollBar@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
?SetTracking@CCBaseScrollBar@DirectUI@@QAEJ_N@Z
?GetTracking@CCBaseScrollBar@DirectUI@@QAE_NXZ
?WindowActiveProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?OnPropertyChanged@CCBase@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
?SetPinned@BaseScrollBar@DirectUI@@QAEX_N@Z
?SetYOffset@Viewer@DirectUI@@QAEJH@Z
?Initialize@CCBaseScrollBar@DirectUI@@QAEJIPAVElement@2@PAK@Z
??0Viewer@DirectUI@@QAE@XZ
?OnPropertyChanging@Viewer@DirectUI@@UAE_NPBUPropertyInfo@2@HPAVValue@2@1@Z
?OnPropertyChanged@Viewer@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
?TrackScore@NavScoring@DirectUI@@QAEHPAVElement@2@0@Z
?Init@NavScoring@DirectUI@@QAEXPAVElement@2@HPBUNavReference@2@@Z
?GetLayoutIndexFromChild@Layout@DirectUI@@QAEHPAVElement@2@0@Z
??0FillLayout@DirectUI@@QAE@XZ
?UpdateDesiredSize@FillLayout@DirectUI@@UAE?AUtagSIZE@@PAVElement@2@HHPAVSurface@2@@Z
?GetAdjacent@FillLayout@DirectUI@@UAEPAVElement@2@PAV32@0HPBUNavReference@2@K@Z
??1FillLayout@DirectUI@@UAE@XZ
?Initialize@FillLayout@DirectUI@@QAEXXZ
?GetDPI@Element@DirectUI@@QAEHXZ
?SetX@Element@DirectUI@@QAEJH@Z
ElementFromGadget
GetScreenDPI
?FontStyleProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetAccName@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z
?GetExtent@Element@DirectUI@@QAEPBUtagSIZE@@PAPAVValue@2@@Z
?HasChildren@Element@DirectUI@@QAE_NXZ
?GetDisplayNode@Element@DirectUI@@QAEPAUHGADGET__@@XZ
?GetWidth@Element@DirectUI@@QAEHXZ
?GetType@Value@DirectUI@@QBEHXZ
?ExtentProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?_UpdateDesiredSize@Element@DirectUI@@QAE?AUtagSIZE@@HHPAVSurface@2@@Z
?GetDesiredSize@Element@DirectUI@@QAEPBUtagSIZE@@XZ
?PaintFocusRect@Element@DirectUI@@QAEXPAUHDC__@@PBUtagRECT@@1@Z
?GetSelected@Element@DirectUI@@QAE_NXZ
?GetFontStyle@Element@DirectUI@@QAEHXZ
?AddRef@Value@DirectUI@@QAEXXZ
?GetHDC@DCSurface@DirectUI@@QAEPAUHDC__@@XZ
?IsHosted@Element@DirectUI@@QAE_NXZ
?FontSizeProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetIndex@Element@DirectUI@@QAEHXZ
?GetInt@Value@DirectUI@@QAEHXZ
?GetBool@Value@DirectUI@@QAE_NXZ
?UpdateLayoutRect@Layout@DirectUI@@SGXPAVElement@2@HH0HHHH@Z
?GetStringNull@Value@DirectUI@@SGPAV12@XZ
?GetBoolFalse@Value@DirectUI@@SGPAV12@XZ
?GetIntZero@Value@DirectUI@@SGPAV12@XZ
?GetTooltipMaxWidth@Element@DirectUI@@QAEHXZ
?IsDestroyed@Element@DirectUI@@QAE_NXZ
?GetAccValue@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z
?GetActive@Element@DirectUI@@QAEHXZ
?GetLayoutPos@Element@DirectUI@@QAEHXZ
?HasContent@Element@DirectUI@@QAE_NXZ
?GetAccDesc@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z
GetFontCache
?GetFontQuality@Element@DirectUI@@QAEHXZ
?GetFontWeight@Element@DirectUI@@QAEHXZ
?GetFontSize@Element@DirectUI@@QAEHXZ
?GetFontFace@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z
?IsRTL@Element@DirectUI@@QAE_NXZ
?GetParent@Element@DirectUI@@QAEPAV12@XZ
?GetTooltip@Element@DirectUI@@QAE_NXZ
?SetAnimation@Element@DirectUI@@QAEJH@Z
?GetEnabled@Element@DirectUI@@QAE_NXZ
?SetY@Element@DirectUI@@QAEJH@Z
?SetWindowActive@Element@DirectUI@@QAEJ_N@Z
?ElementFromPoint@HWNDElement@DirectUI@@QAEPAVElement@2@PAUtagPOINT@@@Z
?BackgroundProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?SetBackgroundColor@Element@DirectUI@@QAEJK@Z
?SetForegroundColor@Element@DirectUI@@QAEJK@Z
??0CritSecLock@DirectUI@@QAE@PAU_RTL_CRITICAL_SECTION@@@Z
??1CritSecLock@DirectUI@@QAE@XZ
?Add@Element@DirectUI@@QAEJPAV12@@Z
?GetID@Element@DirectUI@@QAEGXZ
?GetString@Value@DirectUI@@QAEPBGXZ
?SetContentAlign@Element@DirectUI@@QAEJH@Z
?LastDSConstProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?NeedsDSUpdate@Element@DirectUI@@QAE_NXZ
?WidthProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?HeightProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetOverhang@Element@DirectUI@@QAE_NXZ
?HasPadding@Element@DirectUI@@QAE_NXZ
?HasBorder@Element@DirectUI@@QAE_NXZ
?GetLocation@Element@DirectUI@@QAEPBUtagPOINT@@PAPAVValue@2@@Z
?ShowAccel@HWNDElement@DirectUI@@QAE_NXZ
?OnInput@Button@DirectUI@@UAEXPAUInputEvent@2@@Z
?GetShortcut@Element@DirectUI@@QAEHXZ
?DestroyAll@Element@DirectUI@@QAEJ_N@Z
?CreateElement@DUIXmlParser@DirectUI@@QAEJPBGPAVElement@2@1PAKPAPAV32@@Z
?UpdateSheets@DUIXmlParser@DirectUI@@QAEJPAVElement@2@@Z
?GetRoot@Element@DirectUI@@QAEPAV12@XZ
?Create@DUIXmlParser@DirectUI@@SGJPAPAV12@P6GPAVValue@2@PBGPAX@Z2P6GX11H2@Z2@Z
?SetXML@DUIXmlParser@DirectUI@@QAEJPBGPAUHINSTANCE__@@1@Z
?ForegroundProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
ColorFromEnumI
?Init@NavReference@DirectUI@@QAEXPAVElement@2@PAUtagRECT@@@Z
?CreateGraphic@Value@DirectUI@@SGPAV12@PAUHICON__@@_N11@Z
?SetValue@Element@DirectUI@@QAEJP6GPBUPropertyInfo@2@XZHPAVValue@2@@Z
?Destroy@DUIXmlParser@DirectUI@@QAEXXZ
?GetSheet@DUIXmlParser@DirectUI@@QAEJPBGPAPAVValue@2@@Z
?ValuePattern@Schema@DirectUI@@2HA
?TextPattern@Schema@DirectUI@@2HA
?GetPadding@Element@DirectUI@@QAEPBUtagRECT@@PAPAVValue@2@@Z
?GetBorderThickness@Element@DirectUI@@QAEPBUtagRECT@@PAPAVValue@2@@Z
?RemoveLocalValue@Element@DirectUI@@QAEJP6GPBUPropertyInfo@2@XZ@Z
?_ClearNeedsLayout@Element@DirectUI@@QAEXXZ
?DoLayout@BorderLayout@DirectUI@@UAEXPAVElement@2@HH@Z
?Initialize@Layout@DirectUI@@QAEXXZ
?CreateLayout@Value@DirectUI@@SGPAV12@PAVLayout@2@@Z
?GetLayoutChildCount@Layout@DirectUI@@QAEIPAVElement@2@@Z
?GetChildFromLayoutIndex@Layout@DirectUI@@QAEPAVElement@2@PAV32@HPAV?$DynamicArray@PAVElement@DirectUI@@$0A@@2@@Z
?PosInLayoutProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetPoint@Value@DirectUI@@QAEPBUtagPOINT@@XZ
?GetMinSize@Element@DirectUI@@QAEPBUtagSIZE@@PAPAVValue@2@@Z
?GetLayout@Value@DirectUI@@QAEPAVLayout@2@XZ
??1BorderLayout@DirectUI@@UAE@XZ
??1Layout@DirectUI@@UAE@XZ
?GetAdjacent@Layout@DirectUI@@UAEPAVElement@2@PAV32@0HPBUNavReference@2@K@Z
?OnLayoutPosChanged@Layout@DirectUI@@UAEXPAVElement@2@0HH@Z
?OnRemove@Layout@DirectUI@@UAEXPAVElement@2@PAPAV32@I@Z
?OnAdd@Layout@DirectUI@@UAEXPAVElement@2@PAPAV32@I@Z
??0Layout@DirectUI@@QAE@XZ
?GetAdjacent@BorderLayout@DirectUI@@UAEPAVElement@2@PAV32@0HPBUNavReference@2@K@Z
?Detach@Layout@DirectUI@@UAEXPAVElement@2@@Z
?Attach@Layout@DirectUI@@UAEXPAVElement@2@@Z
?OnLayoutPosChanged@BorderLayout@DirectUI@@UAEXPAVElement@2@0HH@Z
?OnRemove@BorderLayout@DirectUI@@UAEXPAVElement@2@PAPAV32@I@Z
?OnAdd@BorderLayout@DirectUI@@UAEXPAVElement@2@PAPAV32@I@Z
?UpdateDesiredSize@BorderLayout@DirectUI@@UAE?AUtagSIZE@@PAVElement@2@HHPAVSurface@2@@Z
??0BorderLayout@DirectUI@@QAE@XZ
?Create@BorderLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@FillLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@FlowLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@GridLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@NineGridLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@RowLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@ShellBorderLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@VerticalFlowLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?Create@TableLayout@DirectUI@@SGJHPAHPAPAVValue@2@@Z
?SetAlpha@Element@DirectUI@@QAEJH@Z
?SetAccDesc@Element@DirectUI@@QAEJPBG@Z
?GetSizeZero@Value@DirectUI@@SGPAV12@XZ
?LayoutProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?SetFontSize@Element@DirectUI@@QAEJH@Z
?Register@Edit@DirectUI@@SGJXZ
??1Edit@DirectUI@@UAE@XZ
?CreateHWND@Edit@DirectUI@@MAEPAUHWND__@@PAU3@_N@Z
?OnMessage@HWNDHost@DirectUI@@UAE_NIIJPAJ@Z
?OnNotify@Edit@DirectUI@@UAE_NIIJPAJ@Z
?MessageCallback@Edit@DirectUI@@UAEIPAUtagGMSG@@@Z
?GetContentSize@Edit@DirectUI@@UAE?AUtagSIZE@@HHPAVSurface@2@@Z
?OnInput@Edit@DirectUI@@UAEXPAUInputEvent@2@@Z
?OnPropertyChanged@Edit@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
?GetContentStringAsDisplayed@Edit@DirectUI@@UAEPBGPAPAVValue@2@@Z
?IsContentProtected@Edit@DirectUI@@UAE_NXZ
??0Edit@DirectUI@@QAE@XZ
?GetClassInfoPtr@Edit@DirectUI@@SGPAUIClassInfo@2@XZ
?GetThemedBorder@Edit@DirectUI@@QAE_NXZ
?Initialize@HWNDHost@DirectUI@@QAEJIIPAVElement@2@PAK@Z
?SetAbsorbsShortcut@Element@DirectUI@@QAEJ_N@Z
?SelectionItemElementAddedToSelectionEvent@Schema@DirectUI@@2HA
?SelectionItemElementRemovedFromSelectionEvent@Schema@DirectUI@@2HA
?SelectionItemElementSelectedEvent@Schema@DirectUI@@2HA
?SelectionInvalidatedEvent@Schema@DirectUI@@2HA
?GetHeight@Element@DirectUI@@QAEHXZ
?GetColorTrans@Value@DirectUI@@SGPAV12@XZ
?PaintBackground@Element@DirectUI@@QAEXPAUHDC__@@PAVValue@2@ABUtagRECT@@222@Z
?GetRect@Value@DirectUI@@QAEPBUtagRECT@@XZ
?GetRectZero@Value@DirectUI@@SGPAV12@XZ
?Drag@Thumb@DirectUI@@SG?AVUID@@XZ
?FireStructureChangedEvent@EventManager@DirectUI@@SGJPAVElement@2@W4StructureChangeType@@@Z
?Register@Thumb@DirectUI@@SGJXZ
?MouseWithinProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetMouseWithin@Element@DirectUI@@QAE_NXZ
?SetClass@Element@DirectUI@@QAEJPBG@Z
?Context@Button@DirectUI@@SG?AVUID@@XZ
?Initialize@Thumb@DirectUI@@QAEJIPAVElement@2@PAK@Z
?GetPressed@Button@DirectUI@@QAE_NXZ
?PressedProp@Button@DirectUI@@SGPBUPropertyInfo@2@XZ
?CapturedProp@Button@DirectUI@@SGPBUPropertyInfo@2@XZ
?OnInput@Thumb@DirectUI@@UAEXPAUInputEvent@2@@Z
?GetLayout@Element@DirectUI@@QAEPAVLayout@2@PAPAVValue@2@@Z
??1Thumb@DirectUI@@UAE@XZ
??0Thumb@DirectUI@@QAE@XZ
?GetClassInfoPtr@Thumb@DirectUI@@SGPAUIClassInfo@2@XZ
?Create@BorderLayout@DirectUI@@SGJPAPAVLayout@2@@Z
?SetLayout@Element@DirectUI@@QAEJPAVLayout@2@@Z
?Destroy@Layout@DirectUI@@QAEXXZ
?SetAccessible@Element@DirectUI@@QAEJ_N@Z
?TableItemPattern@Schema@DirectUI@@2HA
?ExpandCollapsePattern@Schema@DirectUI@@2HA
?GridItemPattern@Schema@DirectUI@@2HA
?InvokePattern@Schema@DirectUI@@2HA
?ScrollItemPattern@Schema@DirectUI@@2HA
?SelectionItemPattern@Schema@DirectUI@@2HA
?TogglePattern@Schema@DirectUI@@2HA
?SelectionPattern@Schema@DirectUI@@2HA
?MultipleViewPattern@Schema@DirectUI@@2HA
?ScrollPattern@Schema@DirectUI@@2HA
?GridPattern@Schema@DirectUI@@2HA
?TablePattern@Schema@DirectUI@@2HA
?ItemContainerPattern@Schema@DirectUI@@2HA
?LocalizedControlTypeProperty@Schema@DirectUI@@2HA
?ControlTypeProperty@Schema@DirectUI@@2HA
?CustomControlType@Schema@DirectUI@@2HA
?IsContentElementProperty@Schema@DirectUI@@2HA
?IsControlElementProperty@Schema@DirectUI@@2HA
?ItemStatusProperty@Schema@DirectUI@@2HA
?SelectionItem_IsSelected_Property@Schema@DirectUI@@2HA
?QueueDefaultAction@Element@DirectUI@@QAEJXZ
?AutomationIdProperty@Schema@DirectUI@@2HA
?Scroll_VerticalScrollPercent_Property@Schema@DirectUI@@2HA
?Scroll_HorizontalScrollPercent_Property@Schema@DirectUI@@2HA
?EventFromEventId@Schema@DirectUI@@SG?AW4Event@12@H@Z
?WantEvent@EventManager@DirectUI@@SG_NW4Event@Schema@2@@Z
?DoMethod@HWNDElementProxy@DirectUI@@UAEJHPAD@Z
?NameProperty@Schema@DirectUI@@2HA
??0HWNDElementProvider@DirectUI@@QAE@XZ
?Init@HWNDElementProxy@DirectUI@@UAEXPAVHWNDElement@2@@Z
?GetFocus@HWNDElementProvider@DirectUI@@UAGJPAPAUIRawElementProviderFragment@@@Z
?ElementProviderFromPoint@HWNDElementProvider@DirectUI@@UAGJNNPAPAUIRawElementProviderFragment@@@Z
?Release@HWNDElementProvider@DirectUI@@UAGKXZ
?AddRef@HWNDElementProvider@DirectUI@@UAGKXZ
?QueryInterface@HWNDElementProvider@DirectUI@@UAGJABU_GUID@@PAPAX@Z
?Init@HWNDElementProvider@DirectUI@@MAEJPAVHWNDElement@2@PAVInvokeHelper@2@@Z
?Scroll@BaseScrollBar@DirectUI@@SG?AVUID@@XZ
?ShowUIState@HWNDElement@DirectUI@@QAEX_N0@Z
?GetVisible@Element@DirectUI@@QAE_NXZ
?GetDeferObject@Element@DirectUI@@QAEPAVDeferCycle@2@XZ
?IsPinned@BaseScrollBar@DirectUI@@QAE_NXZ
?Initialize@Viewer@DirectUI@@QAEJPAVElement@2@PAK@Z
?XOffsetProp@Viewer@DirectUI@@SGPBUPropertyInfo@2@XZ
?VisibleProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetSize@Value@DirectUI@@QAEPBUtagSIZE@@XZ
?GetY@Element@DirectUI@@QAEHXZ
?TrackingProp@CCBaseScrollBar@DirectUI@@SGPBUPropertyInfo@2@XZ
?Register@Viewer@DirectUI@@SGJXZ
?Register@CCBaseScrollBar@DirectUI@@SGJXZ
?GetYOffset@Viewer@DirectUI@@QAEHXZ
?MarkNeedsDSUpdate@Element@DirectUI@@QAEXXZ
?_SetNeedsLayout@Element@DirectUI@@QAEHI@Z
?AnimationChange@Element@DirectUI@@SG?AVUID@@XZ
?PageDown@BaseScrollBar@DirectUI@@UAEXI@Z
?PageUp@BaseScrollBar@DirectUI@@UAEXI@Z
?LineDown@BaseScrollBar@DirectUI@@UAEXI@Z
?LineUp@BaseScrollBar@DirectUI@@UAEXI@Z
??1Viewer@DirectUI@@UAE@XZ
?_SelfLayoutUpdateDesiredSize@Viewer@DirectUI@@UAE?AUtagSIZE@@HHPAVSurface@2@@Z
?OnEvent@Viewer@DirectUI@@UAEXPAUEvent@2@@Z
?SetAccHelp@Element@DirectUI@@QAEJPBG@Z
?SetAccValue@Element@DirectUI@@QAEJPBG@Z
?DoInvokeArgs@ElementProvider@DirectUI@@QAEJHP6GPAVProviderProxy@2@PAVElement@2@@ZPAD@Z
?GetContentString@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z
?Register@Element@DirectUI@@SGJXZ
?AccValueProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
?GetValue@Element@DirectUI@@QAEPAVValue@2@P6GPBUPropertyInfo@2@XZHPAUUpdateCache@2@@Z
?Init@ProviderProxy@DirectUI@@MAEXPAVElement@2@@Z
?Release@RefcountBase@DirectUI@@QAEJXZ
?AddRef@RefcountBase@DirectUI@@QAEJXZ
?GetChildren@Element@DirectUI@@QAEPAV?$DynamicArray@PAVElement@DirectUI@@$0A@@2@PAPAVValue@2@@Z
?_UpdateLayoutPosition@Element@DirectUI@@QAEXHH@Z
?_UpdateLayoutSize@Element@DirectUI@@QAEXHH@Z
??0RefcountBase@DirectUI@@QAE@XZ
?DoInvoke@ElementProvider@DirectUI@@IAAJHZZ
?DoMethod@ElementProxy@DirectUI@@UAEJHPAD@Z
?TossPatternProvider@ElementProvider@DirectUI@@QAEXW4Pattern@Schema@2@@Z
??1RefcountBase@DirectUI@@UAE@XZ
?UiaLookupId@Schema@DirectUI@@2P6GHW4AutomationIdentifierType@@PBU_GUID@@@ZA
?Initialize@Element@DirectUI@@QAEJIPAV12@PAK@Z
?FWantAnyEvent@EventManager@DirectUI@@SG_NPAVElement@2@@Z
?Value_Value_Property@Schema@DirectUI@@2HA
?WantPropertyEvent@EventManager@DirectUI@@SG_NH@Z
?UiaRaiseAutomationPropertyChangedEvent@Schema@DirectUI@@2P6GJPAUIRawElementProviderSimple@@HUtagVARIANT@@1@ZA
?TextTextSelectionChangedEvent@Schema@DirectUI@@2HA
?UiaRaiseAutomationEvent@Schema@DirectUI@@2P6GJPAUIRawElementProviderSimple@@H@ZA
?GetInvokeHelper@InvokeManager@DirectUI@@SGJPAPAVInvokeHelper@2@@Z
?IsPatternSupported@ElementProxy@DirectUI@@IAEJW4Pattern@Schema@2@PA_N@Z
?PatternFromPatternId@Schema@DirectUI@@SG?AW4Pattern@12@H@Z
?CreatePatternProvider@Schema@DirectUI@@SGJW4Pattern@12@PAVElementProvider@2@PAPAUIUnknown@@@Z
?CreateInt@Value@DirectUI@@SGPAV12@H@Z
?Find@ElementProviderManager@DirectUI@@SGPAVElementProvider@2@PAVElement@2@@Z
?Create@HWNDElementProvider@DirectUI@@SGJPAVHWNDElement@2@PAVInvokeHelper@2@PAPAV12@@Z
?Create@ElementProvider@DirectUI@@SGJPAVElement@2@PAVInvokeHelper@2@PAPAV12@@Z
??0ElementProvider@DirectUI@@QAE@XZ
?GetProperty@ElementProxy@DirectUI@@IAEJPAUtagVARIANT@@H@Z
?Init@ElementProxy@DirectUI@@MAEXPAVElement@2@@Z
?GetAccessibleImpl@Element@DirectUI@@UAEJPAPAUIAccessible@@@Z
?RemoveTooltip@Element@DirectUI@@MAEXPAV12@@Z
?ActivateTooltip@Element@DirectUI@@MAEXPAV12@K@Z
?UpdateTooltip@Element@DirectUI@@MAEXPAV12@@Z
?OnEvent@Element@DirectUI@@UAEXPAUEvent@2@@Z
?OnDestroy@Element@DirectUI@@UAEXXZ
?OnInput@Element@DirectUI@@UAEXPAUInputEvent@2@@Z
?OnGroupChanged@Element@DirectUI@@UAEXH_N@Z
?OnPropertyChanged@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
??0Element@DirectUI@@QAE@XZ
?GetClassInfoPtr@Element@DirectUI@@SGPAUIClassInfo@2@XZ
?Init@ElementProvider@DirectUI@@MAEJPAVElement@2@PAVInvokeHelper@2@@Z
?AdviseEventRemoved@ElementProvider@DirectUI@@UAGJHPAUtagSAFEARRAY@@@Z
?AdviseEventAdded@ElementProvider@DirectUI@@UAGJHPAUtagSAFEARRAY@@@Z
?get_FragmentRoot@ElementProvider@DirectUI@@UAGJPAPAUIRawElementProviderFragmentRoot@@@Z
?SetFocus@ElementProvider@DirectUI@@UAGJXZ
?GetEmbeddedFragmentRoots@ElementProvider@DirectUI@@UAGJPAPAUtagSAFEARRAY@@@Z
?get_BoundingRectangle@ElementProvider@DirectUI@@UAGJPAUUiaRect@@@Z
?GetRuntimeId@ElementProvider@DirectUI@@UAGJPAPAUtagSAFEARRAY@@@Z
?Navigate@ElementProvider@DirectUI@@UAGJW4NavigateDirection@@PAPAUIRawElementProviderFragment@@@Z
?get_HostRawElementProvider@ElementProvider@DirectUI@@UAGJPAPAUIRawElementProviderSimple@@@Z
?GetPropertyValue@ElementProvider@DirectUI@@UAGJHPAUtagVARIANT@@@Z
?get_ProviderOptions@ElementProvider@DirectUI@@UAGJPAW4ProviderOptions@@@Z
?Release@ElementProvider@DirectUI@@UAGKXZ
?AddRef@ElementProvider@DirectUI@@UAGKXZ
?QueryInterface@ElementProvider@DirectUI@@UAGJABU_GUID@@PAPAX@Z
?GetElement@ElementProvider@DirectUI@@UAEPDVElement@2@XZ
??1ElementProvider@DirectUI@@UAE@XZ
?GetMargin@Element@DirectUI@@QAEPBUtagRECT@@PAPAVValue@2@@Z
?SetCursorHandle@Element@DirectUI@@QAEJPAUHICON__@@@Z
?GetContentAlign@Element@DirectUI@@QAEHXZ
??1Element@DirectUI@@UAE@XZ
?GetBoolTrue@Value@DirectUI@@SGPAV12@XZ
?Register@HWNDElement@DirectUI@@SGJXZ
?GetFactoryLock@Element@DirectUI@@SGPAU_RTL_CRITICAL_SECTION@@XZ
?ClassExist@ClassInfoBase@DirectUI@@SG_NPAPAUIClassInfo@2@PBQBUPropertyInfo@2@IPAU32@PAUHINSTANCE__@@PBG_N@Z
?Register@ClassInfoBase@DirectUI@@QAEJXZ
?SetAccName@Element@DirectUI@@QAEJPBG@Z
?AddListener@Element@DirectUI@@QAEJPAUIElementListener@2@@Z
?Initialize@ClassInfoBase@DirectUI@@QAEJPAUHINSTANCE__@@PBG_NPBQBUPropertyInfo@2@I@Z
?GetKeyFocusedElement@HWNDElement@DirectUI@@SGPAVElement@2@XZ
?KeyboardNavigate@Element@DirectUI@@SG?AVUID@@XZ
?FireEvent@Element@DirectUI@@QAEXPAUEvent@2@_N1@Z
?Initialize@HWNDElement@DirectUI@@QAEJPAUHWND__@@_NIPAVElement@2@PAK@Z
?SetWrapKeyboardNavigate@HWNDElement@DirectUI@@QAEJ_N@Z
?SetVisible@Element@DirectUI@@QAEJ_N@Z
?SetEnabled@Element@DirectUI@@QAEJ_N@Z
?RemoveListener@Element@DirectUI@@QAEXPAUIElementListener@2@@Z
?Destroy@Element@DirectUI@@QAEJ_N@Z
??1ClassInfoBase@DirectUI@@UAE@XZ
??1HWNDElement@DirectUI@@UAE@XZ
?AssertPIZeroRef@ClassInfoBase@DirectUI@@UBEXXZ
?GetChildren@ClassInfoBase@DirectUI@@UBEHXZ
?RemoveChild@ClassInfoBase@DirectUI@@UAEXXZ
?AddChild@ClassInfoBase@DirectUI@@UAEXXZ
?IsGlobal@ClassInfoBase@DirectUI@@UBE_NXZ
?GetModule@ClassInfoBase@DirectUI@@UBEPAUHINSTANCE__@@XZ
?IsSubclassOf@ClassInfoBase@DirectUI@@UBE_NPAUIClassInfo@2@@Z
?IsValidProperty@ClassInfoBase@DirectUI@@UBE_NPBUPropertyInfo@2@@Z
?GetName@ClassInfoBase@DirectUI@@UBEPBGXZ
?GetGlobalIndex@ClassInfoBase@DirectUI@@UBEIXZ
?GetPICount@ClassInfoBase@DirectUI@@UBEIXZ
?GetByClassIndex@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z
?EnumPropertyInfo@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z
?Release@ClassInfoBase@DirectUI@@UAEHXZ
?AddRef@ClassInfoBase@DirectUI@@UAEXXZ
??0ClassInfoBase@DirectUI@@QAE@XZ
?OnThemeChanged@HWNDElement@DirectUI@@UAEXPAUThemeChangedEvent@2@@Z
?Paint@Element@DirectUI@@UAEXPAUHDC__@@PBUtagRECT@@1PAU4@2@Z
?CanSetFocus@HWNDElement@DirectUI@@UAE_NXZ
?OnCompositionChanged@HWNDElement@DirectUI@@UAEXXZ
?OnWmThemeChanged@HWNDElement@DirectUI@@UAEXIJ@Z
?OnGetDlgCode@HWNDElement@DirectUI@@UAEXPAUtagMSG@@PAJ@Z
?OnNoChildWithShortcutFound@HWNDElement@DirectUI@@UAEXPAUKeyboardEvent@2@@Z
?GetHWND@HWNDElement@DirectUI@@UAEPAUHWND__@@XZ
?HandleUiaEventListener@Element@DirectUI@@UAEXPAUEvent@2@@Z
?HandleUiaPropertyChangingListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@@Z
?HandleUiaPropertyListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
?HandleUiaDestroyListener@Element@DirectUI@@UAEXXZ
?GetElementProviderImpl@Element@DirectUI@@UAEJPAVInvokeHelper@2@PAPAVElementProvider@2@@Z
?DefaultAction@Element@DirectUI@@UAEJXZ
?GetAccessibleImpl@HWNDElement@DirectUI@@UAEJPAPAUIAccessible@@@Z
?GetKeyFocused@Element@DirectUI@@UAE_NXZ
?RemoveTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@@Z
?ActivateTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@K@Z
?UpdateTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@@Z
?OnUnHosted@Element@DirectUI@@MAEXPAV12@@Z
?OnHosted@Element@DirectUI@@MAEXPAV12@@Z
?_SelfLayoutUpdateDesiredSize@Element@DirectUI@@MAE?AUtagSIZE@@HHPAVSurface@2@@Z
?_SelfLayoutDoLayout@Element@DirectUI@@MAEXHH@Z
?QueryInterface@Element@DirectUI@@UAGJABU_GUID@@PAPAX@Z
?MessageCallback@Element@DirectUI@@UAEIPAUtagGMSG@@@Z
?SetKeyFocus@Element@DirectUI@@UAEXXZ
?EnsureVisible@Element@DirectUI@@UAE_NHHHH@Z
?GetAdjacent@Element@DirectUI@@UAEPAV12@PAV12@HPBUNavReference@2@K@Z
?Remove@Element@DirectUI@@UAEJPAPAV12@I@Z
?Insert@Element@DirectUI@@UAEJPAPAV12@II@Z
?Add@Element@DirectUI@@UAEJPAPAV12@I@Z
?GetContentSize@Element@DirectUI@@UAE?AUtagSIZE@@HHPAVSurface@2@@Z
?OnEvent@HWNDElement@DirectUI@@UAEXPAUEvent@2@@Z
?OnDestroy@HWNDElement@DirectUI@@UAEXXZ
?OnMouseFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z
?OnKeyFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z
?OnInput@HWNDElement@DirectUI@@UAEXPAUInputEvent@2@@Z
?OnGroupChanged@HWNDElement@DirectUI@@UAEXH_N@Z
?OnPropertyChanged@Element@DirectUI@@UAEXPAUPropertyInfo@2@HPAVValue@2@1@Z
?OnPropertyChanged@HWNDElement@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
?OnPropertyChanging@Element@DirectUI@@UAE_NPAUPropertyInfo@2@HPAVValue@2@1@Z

imm32

ImmSetCompositionStringW
ImmGetCompositionStringW
ImmNotifyIME
ImmSetCandidateWindow
ImmGetDefaultIMEWnd
ImmReleaseContext
ImmGetContext
ImmIsIME

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllGetVersion

Sections

.text
Size: 1007KB - Virtual size: 1007KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 384KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Longhorn 7Air/Longhorn 7Air/Explorer.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 343KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 345KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aspack
Size: 350KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Longhorn 7Air/Longhorn 7Air/Longhorn 7Air Backup.msstyles
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Longhorn 7Air/Longhorn 7Air/Longhorn 7Air.msstyles
.dll windows:4 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 110B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Longhorn 7Air/Longhorn 7Air/Shell/NormalColor/en-US/shellstyle.dll.mui
.dll windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Longhorn 7Air/Longhorn 7Air/Shell/NormalColor/shellstyle.dll
.dll windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 342KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Longhorn 7Air/Longhorn 7Air/en-US/Longhorn 7Air.msstyles.mui
.dll windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Longhorn 7Air/Start menu.psd

Sharing

General

Malware Config

Signatures

Files

7574875ead4504d8574902e6215ed5d3

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

ntdll

kernel32

advapi32

gdi32

user32

shell32

shlwapi

duser

dui70

imm32

Exports

Exports

Sections

.text Size: 1007KB - Virtual size: 1007KB

.data Size: 6KB - Virtual size: 6KB

.rsrc Size: 384KB - Virtual size: 384KB

.reloc Size: 54KB - Virtual size: 53KB

Headers

File Characteristics

Sections

.text Size: 343KB - Virtual size: 1.2MB

.data Size: 512B - Virtual size: 16KB

.rsrc Size: 345KB - Virtual size: 345KB

.aspack Size: 350KB - Virtual size: 352KB

.adata Size: - Virtual size: 4KB

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 512B - Virtual size: 8B

.data Size: - Virtual size: 808B

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 512B - Virtual size: 110B

Headers

DLL Characteristics

File Characteristics

Sections

.rdata Size: 512B - Virtual size: 8B

.data Size: - Virtual size: 808B

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 512B - Virtual size: 110B

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 120KB - Virtual size: 120KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 342KB - Virtual size: 341KB

Headers

DLL Characteristics

File Characteristics

Sections

.rsrc Size: 3KB - Virtual size: 4KB

.text
Size: 1007KB - Virtual size: 1007KB

.data
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 384KB - Virtual size: 384KB

.reloc
Size: 54KB - Virtual size: 53KB

.text
Size: 343KB - Virtual size: 1.2MB

.data
Size: 512B - Virtual size: 16KB

.rsrc
Size: 345KB - Virtual size: 345KB

.aspack
Size: 350KB - Virtual size: 352KB

.adata
Size: - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 8B

.data
Size: - Virtual size: 808B

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 512B - Virtual size: 110B

.rdata
Size: 512B - Virtual size: 8B

.data
Size: - Virtual size: 808B

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 512B - Virtual size: 110B

.rsrc
Size: 120KB - Virtual size: 120KB

.rsrc
Size: 342KB - Virtual size: 341KB

.rsrc
Size: 3KB - Virtual size: 4KB