3b1655a60a1329053a926983186967a0N

Sharing

Copy URL

Twitter E-mail

General

Target

3b1655a60a1329053a926983186967a0N
Size

4.5MB
MD5

3b1655a60a1329053a926983186967a0
SHA1

6d242bdcd7d8640956b08f1febb77b8633448f3b
SHA256

4e4b8234d3d3dbae0be13b2877eb20a57de08d86df8549bee9e562732b7ad5a7
SHA512

a42938ab170bcb2be1a98a32af9e67710be8345afa457f28923effa271326754eafb8861fcf82e0d0ed9364374559fa2456e16e9c595f79b11ed7f4b221419f8
SSDEEP

98304:aY7Kg1IEZJ2BFvLx6uMSB/a6ZxiOCzDFUsBIq9PL1GUz22JKuMFgfTuDw:kgbybv98yC4i7Dysv9j1GY2EKFU6Dw

Score

3^/10

Malware Config

Signatures

Unsigned PE 103 IoCs

Checks for missing Authenticode signature.

resource
3b1655a60a1329053a926983186967a0N
unpack001/$PLUGINSDIR/LockedList.dll
unpack001/Uninstall.exe
unpack001/mmcflasher.exe
unpack001/modules/module1.dll
unpack001/modules/module10.dll
unpack001/modules/module100.dll
unpack001/modules/module101.dll
unpack001/modules/module103.dll
unpack001/modules/module104.dll
unpack001/modules/module105.dll
unpack001/modules/module106.dll
unpack001/modules/module11.dll
unpack001/modules/module12.dll
unpack001/modules/module13.dll
unpack001/modules/module14.dll
unpack001/modules/module15.dll
unpack001/modules/module17.dll
unpack001/modules/module18.dll
unpack001/modules/module19.dll
unpack001/modules/module2.dll
unpack001/modules/module20.dll
unpack001/modules/module21.dll
unpack001/modules/module22.dll
unpack001/modules/module23.dll
unpack001/modules/module24.dll
unpack001/modules/module25.dll
unpack001/modules/module27.dll
unpack001/modules/module28.dll
unpack001/modules/module29.dll
unpack001/modules/module3.dll
unpack001/modules/module30.dll
unpack001/modules/module31.dll
unpack001/modules/module32.dll
unpack001/modules/module33.dll
unpack001/modules/module34.dll
unpack001/modules/module35.dll
unpack001/modules/module36.dll
unpack001/modules/module37.dll
unpack001/modules/module38.dll
unpack001/modules/module39.dll
unpack001/modules/module4.dll
unpack001/modules/module40.dll
unpack001/modules/module41.dll
unpack001/modules/module42.dll
unpack001/modules/module43.dll
unpack001/modules/module44.dll
unpack001/modules/module45.dll
unpack001/modules/module46.dll
unpack001/modules/module47.dll
unpack001/modules/module48.dll
unpack001/modules/module49.dll
unpack001/modules/module5.dll
unpack001/modules/module50.dll
unpack001/modules/module51.dll
unpack001/modules/module52.dll
unpack001/modules/module53.dll
unpack001/modules/module54.dll
unpack001/modules/module55.dll
unpack001/modules/module56.dll
unpack001/modules/module57.dll
unpack001/modules/module59.dll
unpack001/modules/module6.dll
unpack001/modules/module60.dll
unpack001/modules/module61.dll
unpack001/modules/module62.dll
unpack001/modules/module63.dll
unpack001/modules/module65.dll
unpack001/modules/module66.dll
unpack001/modules/module67.dll
unpack001/modules/module68.dll
unpack001/modules/module69.dll
unpack001/modules/module7.dll
unpack001/modules/module70.dll
unpack001/modules/module71.dll
unpack001/modules/module72.dll
unpack001/modules/module73.dll
unpack001/modules/module74.dll
unpack001/modules/module75.dll
unpack001/modules/module76.dll
unpack001/modules/module78.dll
unpack001/modules/module79.dll
unpack001/modules/module8.dll
unpack001/modules/module80.dll
unpack001/modules/module81.dll
unpack001/modules/module82.dll
unpack001/modules/module83.dll
unpack001/modules/module85.dll
unpack001/modules/module86.dll
unpack001/modules/module87.dll
unpack001/modules/module88.dll
unpack001/modules/module89.dll
unpack001/modules/module9.dll
unpack001/modules/module91.dll
unpack001/modules/module92.dll
unpack001/modules/module93.dll
unpack001/modules/module94.dll
unpack001/modules/module95.dll
unpack001/modules/module96.dll
unpack001/modules/module97.dll
unpack001/modules/module98.dll
unpack001/modules/module99.dll
unpack001/senselock_fix.exe

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/Uninstall.exe	nsis_installer_1
static1/unpack001/Uninstall.exe	nsis_installer_2

Files

3b1655a60a1329053a926983186967a0N
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/LockedList.dll
.dll windows:6 windows x86 arch:x86

1f24eeb49cd5ab55727208afd8ac7b2f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

ImageList_ReplaceIcon
ImageList_Create

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

shlwapi

PathRemoveFileSpecA
PathFileExistsA
PathAppendA

kernel32

LoadLibraryA
DuplicateHandle
ResetEvent
CreateFileA
lstrcmpA
lstrlenA
GetCurrentProcess
WaitForSingleObject
OpenProcess
GlobalAlloc
WideCharToMultiByte
Sleep
TerminateProcess
lstrcatA
lstrlenW
GetLastError
lstrcmpiA
GlobalFree
LocalAlloc
GetExitCodeThread
WaitForMultipleObjects
GetModuleFileNameA
GetModuleHandleA
CloseHandle
GetCurrentProcessId
LocalFree
CreateThread
lstrcpyA
lstrcpynA
QueryDosDeviceA
SetEvent
TerminateThread
CreateEventA
GetProcAddress
GetVersion

user32

CallWindowProcA
DestroyMenu
EnableWindow
MapWindowPoints
LoadImageA
SetWindowTextA
GetSystemMetrics
OpenClipboard
DispatchMessageA
PostMessageA
IsWindow
AppendMenuA
CreatePopupMenu
ShowWindow
GetCursorPos
SetWindowPos
SendMessageTimeoutA
GetDlgItem
EmptyClipboard
PeekMessageA
CreateWindowExA
CharLowerA
DestroyIcon
MessageBoxA
SetWindowLongA
GetWindowTextA
TranslateMessage
IsDialogMessageA
SendMessageA
GetClientRect
wsprintfA
MsgWaitForMultipleObjects
TrackPopupMenu
CreateDialogParamA
SetActiveWindow
GetWindowRect
ScreenToClient
GetClassNameA
CloseClipboard
GetMessageA
SetCursor
DestroyWindow
GetWindow
GetWindowThreadProcessId
GetWindowLongA
EnumWindows
MoveWindow
SetCursorPos
SetClipboardData

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

shell32

ShellExecuteExA
ExtractIconExA

Exports

Exports

AddApplications
AddCaption
AddClass
AddCustom
AddFile
AddFolder
AddModule
CloseProcess
Dialog
EnumProcesses
FindProcess
InitDialog
IsFileLocked
Show
SilentPercentComplete
SilentSearch
SilentWait

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Uninstall.exe
.exe windows:4 windows x86 arch:x86

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
SetFileTime
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetTempPathA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
mmcflasher.exe
.exe windows:1 windows x86 arch:x86

3ec5b32be348f5c0e29311a1519eed9f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
CloseHandle
CompareStringA
CompareStringW
CreateDirectoryW
CreateFileA
CreateFileW
CreateMutexA
CreateThread
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeviceIoControl
EnterCriticalSection
ExitProcess
FindAtomA
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
FindResourceA
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetACP
GetAtomNameA
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileSize
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDefaultLCID
GetTempPathA
GetTickCount
GetTimeZoneInformation
GetVersion
GetVersionExA
GlobalAlloc
GlobalFree
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalAlloc
LocalFree
MultiByteToWideChar
OpenMutexA
QueryDosDeviceA
ReadFile
ReleaseMutex
RtlUnwind
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrlenA
lstrlenW

user32

CreateIconIndirect
CreateWindowExA
CreateWindowExW
DefWindowProcA
DefWindowProcW
DestroyWindow
DispatchMessageA
DispatchMessageW
DrawIconEx
DrawTextA
DrawTextW
EnableWindow
GetClientRect
GetDC
GetFocus
GetIconInfo
GetMessageA
GetMessageW
GetSystemMetrics
GetWindowLongA
GetWindowLongW
GetWindowRect
GetWindowTextLengthA
IsDialogMessageA
KillTimer
LoadCursorA
LoadCursorW
LoadIconA
LoadIconW
LoadImageA
MapWindowPoints
MessageBoxW
MoveWindow
PostMessageA
PostQuitMessage
RegisterClassA
RegisterClassW
ReleaseDC
SendMessageA
SendMessageW
SetFocus
SetForegroundWindow
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextW
ShowWindow
TranslateMessage
wsprintfA
wsprintfW

gdi32

CreateBitmap
CreateCompatibleDC
CreateFontIndirectA
CreateSolidBrush
DeleteObject
GetDIBits
GetStockObject
RoundRect
SelectObject
SetBkColor
SetBkMode
SetDIBits
SetTextColor

ntdll

memset
memcpy

comctl32

InitCommonControls

advapi32

InitializeSecurityDescriptor
RegCloseKey
RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
SetSecurityDescriptorDacl

ole32

OleInitialize
CoInitializeSecurity
OleCreate
OleSetContainedObject
CoInitialize
CoCreateInstance
CLSIDFromProgID
OleInitialize
CoInitializeSecurity
OleCreate
OleSetContainedObject
CoInitialize
CoCreateInstance
CLSIDFromProgID

oleaut32

VariantInit
VarAdd
VariantClear
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
SysAllocString
SysFreeString
VariantInit
VarAdd
VariantClear
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
SysAllocString
SysFreeString

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInstanceIdA
SetupDiDestroyDeviceInfoList

shell32

DragAcceptFiles
ShellExecuteA
ShellExecuteW
SHGetFolderPathW

shlwapi

PathRemoveFileSpecA
PathStripPathA
PathFindExtensionA
PathFindExtensionW
PathRenameExtensionA

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv

msvcrt

_fdopen
fputc
fclose
fread
fwrite
fprintf
fgetpos
wcslen
wcscpy
_wfopen

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

cfgmgr32

CM_Get_Device_IDW
CM_Get_Parent

hid

HidD_GetHidGuid

crtdll

free
malloc
fopen
fread
fwrite
ftell
fseek
fclose

Sections

.code
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module1.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module10.dll
.dll windows:1 windows x86 arch:x86

b328ad2abb30db2e86a8ec2f19af820f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module100.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module101.dll
.dll windows:1 windows x86 arch:x86

25cc0ecc96e0dd48a35f3e56a3f1c186

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

Sections

.code
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module103.dll
.dll windows:1 windows x86 arch:x86

3930b6df510ee83efeb2861cae9bf8d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
SizeofResource
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module104.dll
.dll windows:1 windows x86 arch:x86

3930b6df510ee83efeb2861cae9bf8d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
SizeofResource
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module105.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module106.dll
.dll windows:1 windows x86 arch:x86

50d4fd68b042bd46953946acea032585

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module11.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module12.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module13.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module14.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module15.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module17.dll
.dll windows:1 windows x86 arch:x86

b328ad2abb30db2e86a8ec2f19af820f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module18.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module19.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module2.dll
.dll windows:1 windows x86 arch:x86

50c51e107b108eac97dcf9a3bbf961ab

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
MessageBoxW
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module20.dll
.dll windows:1 windows x86 arch:x86

d7f577bfac82b0874297ed3f0542bf63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module21.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module22.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module23.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module24.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module25.dll
.dll windows:1 windows x86 arch:x86

f4669702d9699131c3809db629b29782

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpynA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module27.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module28.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module29.dll
.dll windows:1 windows x86 arch:x86

771ad1e4c4ca6bdac605f511f9382b00

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileW
GetFileSize
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameW

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module3.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module30.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module31.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module32.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module33.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module34.dll
.dll windows:1 windows x86 arch:x86

9dc67a00d64b6717df1745be78242809

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module35.dll
.dll windows:1 windows x86 arch:x86

d7f577bfac82b0874297ed3f0542bf63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module36.dll
.dll windows:1 windows x86 arch:x86

463c250de3d3689f02b3dde23e91af09

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

CreateWindowExA
CreateWindowExW
DefWindowProcA
DestroyWindow
DispatchMessageA
EnableWindow
FindWindowA
GetFocus
GetMessageA
GetSystemMetrics
GetWindowLongA
LoadCursorA
LoadIconA
MessageBoxW
PostQuitMessage
RegisterClassA
SendMessageA
SendMessageW
SetWindowLongA
TranslateMessage
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

gdi32

CreateFontIndirectA

ntdll

memcpy
memset
memcmp

Sections

.code
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module37.dll
.dll windows:1 windows x86 arch:x86

961b3fd6b6a29f214972fe7e4d864080

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

CreateWindowExA
CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageW
EnableWindow
FindWindowA
GetClientRect
GetFocus
GetMessageW
GetWindowLongA
GetWindowLongW
GetWindowRect
GetWindowTextW
LoadCursorA
LoadIconA
MoveWindow
PostQuitMessage
RegisterClassW
SendMessageA
SendMessageW
SetFocus
SetForegroundWindow
SetWindowLongA
SetWindowPos
SetWindowTextW
TranslateMessage
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module38.dll
.dll windows:1 windows x86 arch:x86

7160c83d3529fb759ec1df2a7cdce07a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module39.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module4.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module40.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module41.dll
.dll windows:1 windows x86 arch:x86

3e013b4c8b909a808a7134d460b88335

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetTickCount
GlobalAlloc
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpW
lstrcpyA
lstrlenA
lstrlenW

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA
wsprintfW

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
bind
setsockopt
connect
send
sendto
recv
recvfrom
closesocket
WSAGetLastError

ole32

CoInitialize
CoInitializeSecurity
CoCreateInstance

oleaut32

SysAllocString
SysFreeString
SafeArrayCreateVector
SafeArrayPutElement
SafeArrayDestroy

Sections

.code
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module42.dll
.dll windows:1 windows x86 arch:x86

9dc67a00d64b6717df1745be78242809

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module43.dll
.dll windows:1 windows x86 arch:x86

961b3fd6b6a29f214972fe7e4d864080

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

CreateWindowExA
CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageW
EnableWindow
FindWindowA
GetClientRect
GetFocus
GetMessageW
GetWindowLongA
GetWindowLongW
GetWindowRect
GetWindowTextW
LoadCursorA
LoadIconA
MoveWindow
PostQuitMessage
RegisterClassW
SendMessageA
SendMessageW
SetFocus
SetForegroundWindow
SetWindowLongA
SetWindowPos
SetWindowTextW
TranslateMessage
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 628B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module44.dll
.dll windows:1 windows x86 arch:x86

9dc67a00d64b6717df1745be78242809

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module45.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module46.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module47.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module48.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 604B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module49.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module5.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module50.dll
.dll windows:1 windows x86 arch:x86

d7f577bfac82b0874297ed3f0542bf63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module51.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 580B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module52.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 580B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module53.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 580B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module54.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module55.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 576B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module56.dll
.dll windows:1 windows x86 arch:x86

7160c83d3529fb759ec1df2a7cdce07a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module57.dll
.dll windows:1 windows x86 arch:x86

d7f577bfac82b0874297ed3f0542bf63

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module59.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module6.dll
.dll windows:1 windows x86 arch:x86

9273a2d64d4e4b1652172f56edd38bb3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module60.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module61.dll
.dll windows:1 windows x86 arch:x86

f3372812a208e7f1472891f5fdb1c5c7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileW
DeleteFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTempPathW
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrlenA
lstrlenW

user32

EnableWindow
FindWindowA
GetWindowLongA
MessageBoxW
SendMessageA
SendMessageW
wsprintfA
wsprintfW

comdlg32

GetOpenFileNameW

ntdll

memcpy
memset

ole32

CoUninitialize
CoInitialize
CoInitializeSecurity
CoCreateInstance
CLSIDFromProgID

oleaut32

SysAllocString
SysFreeString

shlwapi

PathFindExtensionW
PathStripPathW

Sections

.code
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module62.dll
.dll windows:1 windows x86 arch:x86

50d4fd68b042bd46953946acea032585

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module63.dll
.dll windows:1 windows x86 arch:x86

b93545e6b5848a11362d4f43121b28da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
Sleep
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
LoadImageA
SendMessageW
wsprintfA

ntdll

memcpy
memset

Sections

.code
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module65.dll
.dll windows:1 windows x86 arch:x86

9dc67a00d64b6717df1745be78242809

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module66.dll
.dll windows:1 windows x86 arch:x86

4613920140626c68bebed3d16037c151

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module67.dll
.dll windows:1 windows x86 arch:x86

f75eb581f096d2e54dac43651c1fc2e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
SizeofResource
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 261KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module68.dll
.dll windows:1 windows x86 arch:x86

0ddf0d829eada35abbc8c66fb67fd616

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module69.dll
.dll windows:1 windows x86 arch:x86

3f21aa61377d46d2c523aafb0eb48c96

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrlenA

user32

CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageA
EnableWindow
FindWindowA
GetClientRect
GetFocus
GetMessageA
GetWindowLongA
GetWindowLongW
GetWindowRect
LoadCursorA
LoadIconA
LoadImageA
MessageBoxW
MoveWindow
PostQuitMessage
RegisterClassW
SendMessageA
SendMessageW
SetForegroundWindow
SetWindowLongA
SetWindowPos
SetWindowTextW
TranslateMessage
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv

comctl32

ImageList_Create
ImageList_AddIcon

Sections

.code
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module7.dll
.dll windows:1 windows x86 arch:x86

0be41d83d874d2867d00e06817a8de97

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module70.dll
.dll windows:1 windows x86 arch:x86

0ddf0d829eada35abbc8c66fb67fd616

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module71.dll
.dll windows:1 windows x86 arch:x86

0ddf0d829eada35abbc8c66fb67fd616

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module72.dll
.dll windows:1 windows x86 arch:x86

57c90e04e60d301a9294f390a5fdb649

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
SizeofResource
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
MessageBoxW
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

Sections

.code
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module73.dll
.dll windows:1 windows x86 arch:x86

cf8393a8e63426ded3c280d6cdbc37f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
FreeResource
GetFileSize
GetLocalTime
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module74.dll
.dll windows:1 windows x86 arch:x86

897339af623d01b353a14754f3206b1b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module75.dll
.dll windows:1 windows x86 arch:x86

25cc0ecc96e0dd48a35f3e56a3f1c186

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

Sections

.code
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module76.dll
.dll windows:1 windows x86 arch:x86

48a79c201f805e4c667a0b36b9a8629f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
MessageBoxW
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

Sections

.code
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module78.dll
.dll windows:1 windows x86 arch:x86

897339af623d01b353a14754f3206b1b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module79.dll
.dll windows:1 windows x86 arch:x86

ddc3e1dc548de0841a41ba9bdd1f083f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.code
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module8.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module80.dll
.dll windows:1 windows x86 arch:x86

9ea49559efdd19316b5b7a7e3aa08dc7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW

ntdll

memcpy
memset

Sections

.code
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module81.dll
.dll windows:1 windows x86 arch:x86

897339af623d01b353a14754f3206b1b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module82.dll
.dll windows:1 windows x86 arch:x86

0ddf0d829eada35abbc8c66fb67fd616

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module83.dll
.dll windows:1 windows x86 arch:x86

0ddf0d829eada35abbc8c66fb67fd616

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 632B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module85.dll
.dll windows:1 windows x86 arch:x86

5ae3b788129e203394f0962036556750

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageA
EnableWindow
FindWindowA
GetClientRect
GetFocus
GetMessageA
GetWindowLongA
GetWindowLongW
GetWindowRect
LoadCursorA
LoadIconA
MoveWindow
PostQuitMessage
RegisterClassW
SendMessageA
SendMessageW
SetForegroundWindow
SetWindowLongA
SetWindowPos
SetWindowTextW
TranslateMessage
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

comctl32

ImageList_Create
ImageList_AddIcon

Sections

.code
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 624B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module86.dll
.dll windows:1 windows x86 arch:x86

7160c83d3529fb759ec1df2a7cdce07a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module87.dll
.dll windows:1 windows x86 arch:x86

5890f9e185816c5b1f58e1f0f28751de

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
MultiByteToWideChar
ReadFile
SizeofResource
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

oleaut32

SysAllocString
SysFreeString
VariantInit

ole32

CoInitialize
CoCreateInstance
CLSIDFromProgID

Sections

.code
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module88.dll
.dll windows:1 windows x86 arch:x86

897339af623d01b353a14754f3206b1b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module89.dll
.dll windows:1 windows x86 arch:x86

897339af623d01b353a14754f3206b1b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module9.dll
.dll windows:1 windows x86 arch:x86

53ec04cfbf8fbecf9b5b47117ba98e5c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 620B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module91.dll
.dll windows:1 windows x86 arch:x86

25cc0ecc96e0dd48a35f3e56a3f1c186

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

Sections

.code
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module92.dll
.dll windows:1 windows x86 arch:x86

ddc3e1dc548de0841a41ba9bdd1f083f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module93.dll
.dll windows:1 windows x86 arch:x86

9dc67a00d64b6717df1745be78242809

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module94.dll
.dll windows:1 windows x86 arch:x86

55beecc000c0ea8eda42878eda6caf3f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv

Sections

.code
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module95.dll
.dll windows:1 windows x86 arch:x86

fbfaa1a2fca33911d06b0d0c1cd94402

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
SizeofResource
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

Sections

.code
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module96.dll
.dll windows:1 windows x86 arch:x86

55beecc000c0ea8eda42878eda6caf3f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcmpA
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv

Sections

.code
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module97.dll
.dll windows:1 windows x86 arch:x86

9dc67a00d64b6717df1745be78242809

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module98.dll
.dll windows:1 windows x86 arch:x86

9dc67a00d64b6717df1745be78242809

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
ReadFile
Sleep
WriteFile
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

Sections

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
modules/module99.dll
.dll windows:1 windows x86 arch:x86

83e60716f006741534b8ec7eea5124f7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
CreateFileW
DeleteFileW
FindResourceA
FreeResource
GetFileSize
GetModuleHandleA
GetProcAddress
GetTickCount
GlobalAlloc
GlobalFree
LoadLibraryA
LoadResource
ReadFile
SizeofResource
Sleep
WideCharToMultiByte
WriteFile
lstrcatA
lstrcatW
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrlenA

user32

EnableWindow
FindWindowA
GetWindowLongA
SendMessageA
SendMessageW
wsprintfA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ntdll

memcpy
memset

ws2_32

WSAStartup
WSACleanup
socket
closesocket
gethostbyname
connect
send
recv
WSASocketA
WSAConnect
WSASend
WSACreateEvent
WSAWaitForMultipleEvents

shlwapi

PathStripPathA

Sections

.code
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
op20pt32.dll
.dll windows:5 windows x86 arch:x86

399bf07481eb8e5e6478f4fcb19eff83

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

74:75:83:d7:89:20:7b:a1:80:7a:e1:b0:95:75:28:f0
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

03-03-2013 00:00

Not After

02-06-2015 23:59

Subject

CN=Tactrix Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Tactrix Inc.,L=San Francisco,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:19:93:e4:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

22-02-2011 19:25

Not After

22-02-2021 19:35

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

c4:fc:e0:7e:fd:b8:9c:69:b4:55:ee:b0:3a:28:af:ec:99:97:3f:36
Signer

Actual PE Digest

c4:fc:e0:7e:fd:b8:9c:69:b4:55:ee:b0:3a:28:af:ec:99:97:3f:36

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW

kernel32

FlushFileBuffers
CompareStringW
GetUserDefaultLCID
GetLocalTime
GetSystemTime
WaitForSingleObject
GetThreadPriority
GetCurrentThread
TlsFree
TlsSetValue
GetCurrentThreadId
GetSystemInfo
Sleep
SetThreadPriority
TlsAlloc
TerminateThread
ResumeThread
TlsGetValue
CreateThread
DuplicateHandle
GetCurrentProcess
VerifyVersionInfoW
VerSetConditionMask
GetVersionExW
LocalFree
FormatMessageW
GetStartupInfoW
GetConsoleWindow
OutputDebugStringW
GetCurrentProcessId
GetProcAddress
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFileInformationByHandle
SetErrorMode
FindClose
FindFirstFileW
CreateDirectoryW
RemoveDirectoryW
GetFileAttributesW
CopyFileW
MoveFileW
DeleteFileW
GetFullPathNameW
GetCurrentDirectoryW
LoadLibraryW
DeviceIoControl
GetLogicalDrives
GetFileAttributesExW
GetLocaleInfoW
CreateEventW
GetTimeFormatW
GetCurrencyFormatW
GetUserDefaultUILanguage
CreateMutexW
ReleaseMutex
VirtualFree
MultiByteToWideChar
WideCharToMultiByte
GetGeoInfoW
GetUserGeoID
GetTimeZoneInformation
QueryPerformanceFrequency
GetModuleHandleW
GetTickCount
QueryPerformanceCounter
GetModuleFileNameW
GetSystemDirectoryW
GetFileType
SetFilePointerEx
MoveFileExW
SetEndOfFile
MapViewOfFile
CreateFileMappingW
UnmapViewOfFile
FindFirstFileExW
FreeLibrary
GetDriveTypeW
WriteConsoleW
SetEnvironmentVariableA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
DeleteCriticalSection
SetHandleCount
HeapSize
GetStdHandle
HeapDestroy
HeapCreate
InterlockedDecrement
SetLastError
InterlockedIncrement
IsProcessorFeaturePresent
ResetEvent
CreateFileW
SetEvent
CloseHandle
WriteFile
ReadFile
GetLastError
WaitForMultipleObjects
GetOverlappedResult
CancelIo
OutputDebugStringA
LCMapStringW
GetStringTypeW
GetDateFormatW
FindNextFileW
TerminateProcess
IsDebuggerPresent
RaiseException
RtlUnwind
HeapFree
HeapAlloc
EncodePointer
DecodePointer
GetCommandLineA
HeapReAlloc
ExitThread
SetFilePointer
ExitProcess
EnterCriticalSection
LeaveCriticalSection
GetConsoleCP
GetConsoleMode
SetStdHandle
InitializeCriticalSectionAndSpinCount
SetFileAttributesW
InterlockedExchange
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

SetTimer
KillTimer
CharNextExA
MsgWaitForMultipleObjectsEx
TranslateMessage
DispatchMessageW
SetWindowsHookExW
UnhookWindowsHookEx
RegisterClassW
CreateWindowExW
SetWindowLongW
DestroyWindow
UnregisterClassW
GetQueueStatus
PostMessageW
CallNextHookEx
GetWindowLongW
DefWindowProcW
PeekMessageW

ole32

CoCreateInstance
CoInitialize
CoUninitialize

advapi32

RegQueryInfoKeyW
RegEnumKeyExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
OpenProcessToken
GetTokenInformation
GetLengthSid
CopySid
FreeSid

ws2_32

WSAAsyncSelect

Exports

Exports

PassThruClose
PassThruConnect
PassThruDisconnect
PassThruGetLastError
PassThruIoctl
PassThruOpen
PassThruReadMsgs
PassThruReadVersion
PassThruSetProgrammingVoltage
PassThruStartMsgFilter
PassThruStartPeriodicMsg
PassThruStopMsgFilter
PassThruStopPeriodicMsg
PassThruWriteMsgs
z_adler32
z_adler32_combine
z_adler32_combine64
z_compress
z_compress2
z_compressBound
z_crc32
z_crc32_combine
z_crc32_combine64
z_deflate
z_deflateBound
z_deflateCopy
z_deflateEnd
z_deflateInit2_
z_deflateInit_
z_deflateParams
z_deflatePrime
z_deflateReset
z_deflateSetDictionary
z_deflateSetHeader
z_deflateTune
z_get_crc_table
z_inflate
z_inflateCopy
z_inflateEnd
z_inflateGetHeader
z_inflateInit2_
z_inflateInit_
z_inflateMark
z_inflatePrime
z_inflateReset
z_inflateReset2
z_inflateSetDictionary
z_inflateSync
z_inflateSyncPoint
z_inflateUndermine
z_uncompress
z_zError
z_zlibCompileFlags
z_zlibVersion

Sections

.text
Size: 827KB - Virtual size: 827KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
senselock_fix.exe
.exe windows:1 windows x86 arch:x86

985cfc26aee3276366f112c65b8b5275

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
CompareStringW
CreateFileA
CreateMutexA
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
ExitProcess
FindResourceA
FlushFileBuffers
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
GetVersion
GetVersionExA
GlobalAlloc
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalAlloc
LocalFree
MultiByteToWideChar
QueryDosDeviceA
ReadConsoleA
ReleaseMutex
RtlUnwind
SetEnvironmentVariableA
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteFile
lstrcmpA
lstrlenA

user32

wsprintfA

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInstanceIdA
SetupDiDestroyDeviceInfoList

Sections

.code
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 151KB

.ndata Size: - Virtual size: 60KB

.rsrc Size: 28KB - Virtual size: 27KB

1f24eeb49cd5ab55727208afd8ac7b2f

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

version

shlwapi

kernel32

user32

advapi32

shell32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: - Virtual size: 7KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

7fa974366048f9c551ef45714595665e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 151KB

.ndata Size: - Virtual size: 60KB

.rsrc Size: 28KB - Virtual size: 27KB

3ec5b32be348f5c0e29311a1519eed9f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ntdll

comctl32

advapi32

ole32

oleaut32

setupapi

shell32

shlwapi

ws2_32

msvcrt

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 151KB

.ndata
Size: - Virtual size: 60KB

.rsrc
Size: 28KB - Virtual size: 27KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: - Virtual size: 7KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 151KB

.ndata
Size: - Virtual size: 60KB

.rsrc
Size: 28KB - Virtual size: 27KB

.code
Size: 285KB - Virtual size: 284KB

.data
Size: 80KB - Virtual size: 79KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.code
Size: 17KB - Virtual size: 17KB

.idata
Size: 1024B - Virtual size: 104KB

.rsrc
Size: 1024B - Virtual size: 636B

.code
Size: 13KB - Virtual size: 12KB

.idata
Size: 1024B - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 592B

.code
Size: 11KB - Virtual size: 10KB

.idata
Size: 1024B - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 596B

.code
Size: 27KB - Virtual size: 26KB

.idata
Size: 1KB - Virtual size: 10KB

.rsrc
Size: 10KB - Virtual size: 9KB