dfa48167f66586b1bb588b1617a41938_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dfa48167f66586b1bb588b1617a41938_JaffaCakes118
Size

1.6MB
MD5

dfa48167f66586b1bb588b1617a41938
SHA1

c7c60a5fba8ffe5b104004f7acf67395c664cd08
SHA256

8c081c225152b8bf0766c73f4159feb37e512428a0cfd0e7f514fb258bfa83de
SHA512

0cfeeaf3745a66558a3df9dc90c315fe79d99209dc89477e60540d088e276f20204ea218fd7390a17ff309308fec048e555567193229f1909d617c56adf4a5bb
SSDEEP

49152:Y8lKG/c11YpvfoZOBUfxK/hRS4YxOnKVqXpuU8K:YYKG01YpvQf+S4YxOnKO4s

Score

3^/10

Malware Config

Signatures

Unsigned PE 47 IoCs

Checks for missing Authenticode signature.

resource
unpack001/actsaver.scr
unpack001/baseball.scr
unpack001/bezier.scr
unpack001/danger~1.scr
unpack001/dxapi.sys
unpack001/inside~1.scr
unpack001/jungle.scr
unpack001/leonar~1.scr
unpack001/msiav.ocx
unpack001/msicdrom.ocx
unpack001/msiolerg.ocx
unpack001/msiprint.ocx
unpack001/msisys.ocx
unpack001/mystery.scr
unpack001/nature.scr
unpack001/parclass.sys
unpack001/parport.sys
unpack001/parscan.sys
unpack001/picclp32.ocx
unpack001/plugin.ocx
unpack001/remotesp.tsp
unpack001/science.scr
unpack001/scrnsave.scr
unpack001/space.scr
unpack001/sports.scr
unpack001/ss3dfo.scr
unpack001/ssctl.ocx
unpack001/ssflwbox.scr
unpack001/ssflywin.scr
unpack001/ssmarque.scr
unpack001/ssmaze.scr
unpack001/ssmyst.scr
unpack001/sspipes.scr
unpack001/ssstars.scr
unpack001/sstext3d.scr
unpack001/stdole2.tlb
unpack001/stdole32.tlb
unpack001/tdc.ocx
unpack001/the60'~1.scr
unpack001/thegol~1.scr
unpack001/travel.scr
unpack001/tsp3216l.tsp
unpack001/txtview.ocx
unpack001/underw~1.scr
unpack001/update.sys
unpack001/vid.ocx
unpack001/window~1.scr

Files

dfa48167f66586b1bb588b1617a41938_JaffaCakes118
.cab
abalc.ttf
actsaver.scr
.exe windows:5 windows x86 arch:x86

1a21b243b77960a2d042f4b7d50cbfe1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InitializeCriticalSection
GetLastError
CreateMutexA
FreeLibrary
GetProcAddress
LoadLibraryA
InterlockedIncrement
DeleteCriticalSection
MultiByteToWideChar
lstrlenA
LeaveCriticalSection
EnterCriticalSection
lstrcpyA
GetModuleFileNameA
WideCharToMultiByte
lstrlenW
lstrcatA
HeapAlloc
HeapCreate
HeapReAlloc
GetCurrentThreadId
CloseHandle
LockResource
LoadResource
SizeofResource
FindResourceA
LocalFree
LocalUnlock
LocalLock
LocalAlloc
lstrcmpiA
SetEvent
OpenEventA
InterlockedExchange
lstrcpynA
LoadLibraryExA
Sleep
GetCommandLineA
HeapDestroy
GetVersionExA
ExitProcess
GetStartupInfoA
GetModuleHandleA
HeapFree
FreeResource
RaiseException
InterlockedDecrement

gdi32

GetStockObject
GetClipBox
SelectPalette
RealizePalette
CreatePalette
SetDIBitsToDevice
DeleteObject
SetStretchBltMode

user32

GetCursorPos
GetDlgItem
WinHelpA
GetParent
ScreenToClient
CheckDlgButton
SetDlgItemInt
DefWindowProcA
GetDlgItemInt
IsDlgButtonChecked
DialogBoxParamA
SetCursor
LoadCursorA
LoadImageA
EndDialog
ShowWindow
PostQuitMessage
GetClientRect
ReleaseDC
GetDC
DispatchMessageA
TranslateMessage
GetMessageA
GetWindowRect
GetDesktopWindow
SetTimer
WindowFromPoint
GetForegroundWindow
SendMessageA
SetWindowPos
OffsetRect
GetSystemMetrics
IsWindowVisible
KillTimer
FindWindowA
GetAsyncKeyState
MessageBeep
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
GetWindow
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
EnableWindow
DestroyWindow
CreateWindowExA
DrawEdge
UpdateWindow
RegisterClassA
EnumChildWindows
RedrawWindow
EndPaint
BeginPaint
SetWindowLongA
GetWindowLongA
CharNextA
LoadStringA
SystemParametersInfoA
IsWindow
MessageBoxA
PostThreadMessageA
SetFocus
PostMessageA
SendNotifyMessageA

shlwapi

PathFindFileNameA
StrCmpNIA
ord1
PathCreateFromUrlA
StrCmpIW
PathIsURLA
UrlEscapeA

Sections

.text
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
amipro.sam
ansi.sys
arial.ttf
arialbd.ttf
arialbi.ttf
ariali.ttf
ariblk.ttf
aspi2hlp.sys
baseball.scr
.exe windows:4 windows x86 arch:x86

cc304bc6759fded9d1319da92b5558b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt40

_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
__setusermatherr
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atoi
strcpy
atol
sprintf
strrchr
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler
sscanf
strlen

comctl32

ord17
PropertySheetA

kernel32

GlobalAlloc
CreateFileA
FreeResource
LockResource
GetCommandLineA
ExitProcess
UnhandledExceptionFilter
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
_lread
GetStartupInfoA
Sleep
LoadResource
SizeofResource
FindResourceA
_lclose
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc

user32

PostQuitMessage
EndPaint
BeginPaint
CheckMenuItem
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
GetWindowLongA
DispatchMessageA
TranslateMessage
GetMessageA
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
CreateWindowExA
SetWindowPos
DestroyMenu
DestroyWindow
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
InvalidateRect
LoadStringA
GetParent
SetRect

gdi32

CreatePalette
GetObjectA
GetDeviceCaps
GetDIBits
GetSystemPaletteEntries
RealizePalette
GetStockObject
SetStretchBltMode
SetDIBitsToDevice
SelectPalette

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
baseba~1.the
bezier.scr
.exe windows:4 windows x86 arch:x86

11f8dc2825f89479b9a7c21a7da39c50

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItem
EndDialog
EnableWindow
CheckDlgButton
CheckRadioButton
GetSystemMetrics
GetForegroundWindow
SystemParametersInfoA
DefWindowProcA
GetDC
KillTimer
SendMessageA
SendDlgItemMessageA
GetParent
PostQuitMessage
GetMessageA
DispatchMessageA
TranslateMessage
SetForegroundWindow
CreateWindowExA
RegisterClassA
RegisterWindowMessageA
FindWindowA
GetClientRect
LoadIconA
DialogBoxParamA
PeekMessageA
CharNextA
MessageBeep
WinHelpA
LoadStringA
SetCursor
IsWindow
PostMessageA
GetCursorPos
SetTimer
ReleaseDC
BeginPaint
EndPaint
InvalidateRect

kernel32

RtlUnwind
ExitProcess
GetTickCount
WritePrivateProfileStructA
GetPrivateProfileStructA
FreeLibrary
GetModuleHandleA
GetProcAddress
Sleep
GetStartupInfoA
LoadLibraryA
UnhandledExceptionFilter
GetCommandLineA

gdi32

GetClipBox
SelectPalette
SetBkColor
ExtTextOutA
CreateHalftonePalette
DeleteObject
RealizePalette
GetStockObject
CreatePen
PolyBezier
SelectObject

comctl32

ord17

comdlg32

ChooseColorA

advapi32

RegCloseKey
RegOpenKeyA
RegQueryValueExA

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bkant.ttf
calist.ttf
channels.scf
cis.scp
cmd640x.sys
cmd640x2.sys
comic.ttf
comicbd.ttf
coprgtb.ttf
coprgtl.ttf
country.sys
cour.ttf
courbd.ttf
courbi.ttf
couri.ttf
cvt.pif
danger~1.pal
danger~1.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
danger~1.the
dblbuff.sys
desktop.scf
display.sys
dosmode.pif
dosprmpt.pif
dxapi.sys
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

_DxApi@20
_DxApiGetVersion@0

Sections

_LTEXT
Size: 48B - Virtual size: 46B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 64B - Virtual size: 62B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16B - Virtual size: 1B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 16B - Virtual size: 5B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 112B - Virtual size: 99B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 928B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 32B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ems_xms.pif
esdi_506.pdr
explorer.scf
extract.pif
gothic.ttf
gothicb.ttf
gothicbi.ttf
hsflop.pdr
ifshlp.sys
inside~1.pal
inside~1.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
inside~1.the
jungle.scr
.exe windows:4 windows x86 arch:x86

cc304bc6759fded9d1319da92b5558b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt40

_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
__setusermatherr
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atoi
strcpy
atol
sprintf
strrchr
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler
sscanf
strlen

comctl32

ord17
PropertySheetA

kernel32

GlobalAlloc
CreateFileA
FreeResource
LockResource
GetCommandLineA
ExitProcess
UnhandledExceptionFilter
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
_lread
GetStartupInfoA
Sleep
LoadResource
SizeofResource
FindResourceA
_lclose
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc

user32

PostQuitMessage
EndPaint
BeginPaint
CheckMenuItem
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
GetWindowLongA
DispatchMessageA
TranslateMessage
GetMessageA
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
CreateWindowExA
SetWindowPos
DestroyMenu
DestroyWindow
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
InvalidateRect
LoadStringA
GetParent
SetRect

gdi32

CreatePalette
GetObjectA
GetDeviceCaps
GetDIBits
GetSystemPaletteEntries
RealizePalette
GetStockObject
SetStretchBltMode
SetDIBitsToDevice
SelectPalette

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
jungle~1.the
keyboard.sys
keybrd2.sys
keybrd3.sys
keybrd4.sys
leonar~1.pal
leonar~1.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
leonar~1.the
mmtask.tsk
morewi~1.pal
morewi~1.the
msdatsrc.tlb
msiav.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

0626c7ce53332c04dbee503f6192d3e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

mfc42

ord2554
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2724
ord4079
ord4698
ord5307
ord5289
ord5714
ord3952
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3401
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3670
ord815
ord561
ord599
ord6354
ord1216
ord1168
ord1243
ord1227
ord1877
ord4249
ord2486
ord2687
ord6364
ord3326
ord6365
ord4472
ord5498
ord3278
ord4486
ord2512
ord743
ord446
ord1177
ord1210
ord1226
ord2439
ord1693
ord5618
ord994
ord4342
ord4687
ord4639
ord5674
ord2156
ord4856
ord4920
ord6002
ord2137
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord2998
ord5649
ord4113
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord4659
ord4909
ord4908
ord4668
ord4667
ord4666
ord4648
ord4689
ord5023
ord4654
ord4643
ord4354
ord3353
ord3681
ord535
ord6375
ord5060
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4738
ord4409
ord4603
ord5008
ord4415
ord4992
ord4979
ord2488
ord3404
ord4539
ord2954
ord4407
ord2384
ord800
ord2983
ord3148
ord3260
ord4466
ord3269
ord2986
ord3080
ord4081
ord4624
ord2582
ord6055
ord4078
ord1776
ord4402
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord3370
ord4627
ord3640
ord723
ord693
ord818
ord772
ord3946
ord500
ord567
ord423
ord2541
ord4949
ord2100
ord4459
ord4160
ord4025
ord3301
ord6007
ord2817
ord2825
ord4299
ord5033
ord6383
ord2801
ord5440
ord2740
ord939
ord2614
ord5981
ord4996
ord1892
ord4252
ord1212
ord4570
ord4672
ord4843
ord5011
ord5265
ord4376
ord4853
ord4998
ord4713
ord2514
ord6052
ord1775
ord6371
ord5286
ord4438
ord3279
ord4625
ord4425
ord746
ord449
ord2278
ord802
ord5683
ord922
ord2818
ord540
ord823
ord860
ord4129
ord858
ord5860
ord825
ord542
ord537
ord1085
ord4637
ord4636
ord4780
ord4649
ord6370
ord6412
ord1575
ord600
ord269
ord826
ord1578
ord1255
ord1131
ord1570
ord1253
ord1577
ord1132
ord1116
ord342
ord1197
ord1182
ord1176

msvcrt

localtime
_mbsicmp
__dllonexit
_stat
_EH_prolog
_onexit
free
_initterm
malloc
_adjust_fdiv
??1type_info@@UAE@XZ
__CxxFrameHandler

kernel32

GetWindowsDirectoryA
GetVersionExA
lstrcpynA
GetPrivateProfileStringA
GetTimeFormatA
GetDateFormatA
FileTimeToSystemTime
GlobalUnlock
GlobalLock
GlobalAlloc
LocalFree
LocalAlloc
Sleep
GetVersion
GlobalFree
GetSystemDirectoryA
SystemTimeToFileTime

user32

OpenClipboard
SetClipboardData
EmptyClipboard
EnableWindow
SendMessageA
RedrawWindow
CloseClipboard
EqualRect
GetClientRect

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA

oleaut32

LoadRegTypeLi

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msicdrom.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

7947c7eb7e9e5c5d2ff35b8324865bed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

winmm

timeGetTime

mfc42

ord4472
ord5498
ord2982
ord3147
ord3259
ord4465
ord6365
ord3136
ord3278
ord2985
ord3081
ord2976
ord3353
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3681
ord743
ord446
ord599
ord6364
ord3326
ord1210
ord1168
ord1226
ord2439
ord1693
ord1243
ord994
ord4342
ord4687
ord4639
ord5674
ord2156
ord4856
ord4920
ord6002
ord2137
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord2998
ord1177
ord5618
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord5649
ord4909
ord4908
ord4668
ord4667
ord4666
ord4648
ord4689
ord5023
ord4654
ord4643
ord4354
ord4780
ord4649
ord4637
ord4636
ord5060
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4738
ord4409
ord4603
ord5008
ord4415
ord4992
ord4979
ord2488
ord3404
ord4539
ord2954
ord4407
ord2384
ord6370
ord2983
ord3148
ord3260
ord4113
ord3269
ord4659
ord2687
ord4081
ord4624
ord2582
ord6055
ord4078
ord1776
ord4402
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2486
ord5277
ord3262
ord3370
ord4627
ord3640
ord723
ord693
ord818
ord772
ord3946
ord500
ord567
ord423
ord2541
ord4949
ord2100
ord4459
ord5860
ord2817
ord2614
ord4025
ord3301
ord6007
ord5683
ord4299
ord5033
ord6383
ord2801
ord5440
ord2740
ord2825
ord5981
ord4996
ord1892
ord4252
ord1212
ord4570
ord4672
ord4843
ord5011
ord5265
ord4376
ord4853
ord4998
ord4713
ord2514
ord6052
ord1775
ord6371
ord5286
ord4438
ord3279
ord4625
ord4425
ord746
ord449
ord2278
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2724
ord4079
ord4698
ord5307
ord5289
ord5714
ord3952
ord3401
ord3670
ord815
ord561
ord6354
ord1216
ord1227
ord4249
ord1877
ord6143
ord5861
ord541
ord801
ord2915
ord5572
ord860
ord825
ord354
ord823
ord665
ord3663
ord1871
ord4129
ord5710
ord537
ord922
ord939
ord542
ord535
ord1085
ord5622
ord5601
ord858
ord802
ord4160
ord540
ord2818
ord800
ord2986
ord3080
ord4466
ord2124
ord1176
ord1577
ord342
ord600
ord1182
ord1131
ord6412
ord1116
ord1575
ord269
ord826
ord1132
ord1255
ord1570
ord1197
ord1253
ord1578

msvcrt

isspace
toupper
_ftol
_splitpath
_mbscmp
??1type_info@@UAE@XZ
malloc
localtime
strftime
setlocale
__dllonexit
_stat
_EH_prolog
_initterm
_onexit
free
__CxxFrameHandler
_adjust_fdiv

kernel32

lstrlenA
SetFileAttributesA
DeleteFileA
GetCurrentThread
GetThreadPriority
SetThreadPriority
CreateFileA
GetFileSize
CloseHandle
FindFirstFileA
FindNextFileA
GetVersionExA
GetDiskFreeSpaceA
GetDriveTypeA
GetVersion
OpenFile
SetErrorMode
GetTempPathA
GetVolumeInformationA
QueryDosDeviceA
lstrcpynA
lstrcpyA
GetTimeFormatA
GetDateFormatA
GetWindowsDirectoryA
GetSystemDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
LocalFree
LocalAlloc
Sleep
GlobalFree
CopyFileA

user32

EnableWindow
OpenClipboard
SetClipboardData
CloseClipboard
SendMessageA
RedrawWindow
GetClientRect
EqualRect
EmptyClipboard

advapi32

RegEnumKeyA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA

oleaut32

LoadRegTypeLi

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msiolerg.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

5c03a5b41e359dfa46d716ea508bfe93

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

mfc42

ord2976
ord3353
ord3830
ord3831
ord3081
ord3825
ord3079
ord4080
ord4622
ord4424
ord3681
ord743
ord446
ord825
ord599
ord1177
ord1243
ord1210
ord1168
ord1226
ord2439
ord1693
ord5618
ord994
ord4342
ord4687
ord4639
ord5674
ord2156
ord4856
ord4920
ord6002
ord2137
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord2998
ord5649
ord4113
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord4659
ord4909
ord4908
ord4668
ord4667
ord4666
ord4648
ord4689
ord5023
ord4654
ord4643
ord4354
ord4780
ord4649
ord4637
ord4636
ord5060
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4738
ord4409
ord4603
ord5008
ord4415
ord4992
ord4979
ord2488
ord3404
ord4539
ord2954
ord4407
ord2384
ord6370
ord2983
ord3148
ord3260
ord4466
ord3269
ord2986
ord3080
ord4081
ord4624
ord2582
ord6055
ord4078
ord1776
ord4402
ord3136
ord2385
ord3278
ord2985
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord3262
ord3370
ord4627
ord3640
ord723
ord693
ord1877
ord772
ord3946
ord500
ord567
ord423
ord2541
ord4949
ord2100
ord4459
ord800
ord4160
ord540
ord5860
ord2614
ord860
ord2818
ord922
ord537
ord858
ord5710
ord4129
ord2763
ord4025
ord3301
ord6007
ord5683
ord4299
ord5033
ord6383
ord2801
ord5440
ord2740
ord939
ord2825
ord5981
ord4996
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2724
ord4079
ord4698
ord5307
ord5289
ord5714
ord3952
ord3401
ord3670
ord815
ord561
ord6354
ord1216
ord1227
ord1892
ord4252
ord1212
ord4570
ord4672
ord4843
ord5011
ord5265
ord4376
ord4853
ord4998
ord4713
ord2514
ord6052
ord1775
ord6371
ord5286
ord4438
ord3279
ord4625
ord4425
ord746
ord449
ord2278
ord823
ord4465
ord3259
ord3147
ord2982
ord5498
ord4472
ord6365
ord3326
ord6364
ord2687
ord2486
ord4249
ord5163
ord6374
ord5241
ord818
ord1182
ord342
ord1575
ord1253
ord1197
ord600
ord269
ord826
ord6412
ord1116
ord1132
ord1131
ord1578
ord1570
ord1176
ord1577
ord1255

msvcrt

strftime
setlocale
strncpy
localtime
??1type_info@@UAE@XZ
malloc
_stat
__CxxFrameHandler
strncmp
_EH_prolog
__dllonexit
_onexit
free
_initterm
_adjust_fdiv

kernel32

lstrlenA
SystemTimeToFileTime
GetTimeFormatA
GetDateFormatA
GetWindowsDirectoryA
GetSystemDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
LocalFree
LocalAlloc
Sleep
GetVersion
GlobalFree
GetProfileStringA

user32

SetClipboardData
EnableWindow
CloseClipboard
EqualRect
GetClientRect
SendMessageA
RedrawWindow
EmptyClipboard
OpenClipboard

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExA

oleaut32

LoadRegTypeLi

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msiprint.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

e3c35e8340843c3687acbf44589e1764

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

mfc42

ord5289
ord5714
ord3952
ord5307
ord4698
ord2982
ord3259
ord4465
ord3136
ord3262
ord2985
ord3147
ord3081
ord3401
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3670
ord815
ord561
ord825
ord2976
ord599
ord1216
ord1168
ord1243
ord1227
ord823
ord1877
ord4249
ord2486
ord2687
ord6364
ord3326
ord6365
ord4472
ord5498
ord3278
ord3353
ord3681
ord743
ord446
ord1177
ord1210
ord1226
ord2439
ord1693
ord5618
ord994
ord6354
ord4342
ord4639
ord5674
ord2156
ord4856
ord4920
ord6002
ord2137
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord2998
ord5649
ord4113
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord4659
ord4909
ord4908
ord4668
ord4667
ord4666
ord4648
ord4689
ord5023
ord4654
ord4643
ord4354
ord4780
ord4649
ord4637
ord4636
ord5060
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4687
ord5302
ord4079
ord5008
ord4415
ord4992
ord4979
ord2488
ord3404
ord4539
ord2954
ord4407
ord2384
ord6370
ord2983
ord3148
ord3260
ord4466
ord3269
ord2986
ord3080
ord4081
ord4624
ord2582
ord6055
ord4078
ord6375
ord4402
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord3370
ord4627
ord3640
ord723
ord693
ord818
ord772
ord3946
ord500
ord567
ord423
ord2541
ord4949
ord2100
ord4459
ord800
ord4160
ord540
ord5860
ord939
ord922
ord537
ord5710
ord5683
ord858
ord4129
ord2763
ord860
ord2818
ord4025
ord3301
ord6007
ord2825
ord4299
ord5033
ord6383
ord2801
ord5440
ord2740
ord2614
ord5981
ord4996
ord1892
ord4252
ord1212
ord4570
ord4672
ord4843
ord5011
ord5265
ord4376
ord4853
ord4998
ord4713
ord2514
ord6052
ord1775
ord6371
ord5286
ord4438
ord3279
ord4625
ord4425
ord746
ord449
ord2278
ord2724
ord2396
ord5300
ord3346
ord3922
ord5199
ord1089
ord2554
ord5731
ord2512
ord4409
ord4486
ord4603
ord4738
ord1776
ord1575
ord1182
ord1577
ord600
ord1253
ord6412
ord1116
ord269
ord1131
ord826
ord1132
ord1176
ord1578
ord1570
ord1197
ord342
ord1255

msvcrt

localtime
strftime
__CxxFrameHandler
_mbsicmp
setlocale
_mbscmp
_adjust_fdiv
_stat
_onexit
_EH_prolog
__dllonexit
malloc
free
_initterm
??1type_info@@UAE@XZ

kernel32

lstrcpynA
GetDateFormatA
GetWindowsDirectoryA
GetTimeFormatA
GlobalUnlock
GlobalLock
GetSystemDirectoryA
LocalFree
LocalAlloc
GlobalAlloc
GetVersion
GlobalFree
Sleep
GetProfileStringA

user32

OpenClipboard
CloseClipboard
InvalidateRect
EqualRect
GetClientRect
SendMessageA
RedrawWindow
EmptyClipboard
SetClipboardData
EnableWindow

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

oleaut32

LoadRegTypeLi

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msisys.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

f9549cfb3ec417d6b1b5884a03565076

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Process32Next
lstrcpynA
LocalFree
OpenProcess
GetProcessFlags
InitializeCriticalSection
GetProcessVersion
Process32First
CreateToolhelp32Snapshot
GetTickCount
GetTempPathA
GetPrivateProfileIntA
GetVersionExA
lstrcatA
VirtualQueryEx
lstrlenA
SearchPathA
ReadProcessMemory
RaiseException
Module32Next
Module32First
MapSLFix
_lread
_llseek
_lopen
UnMapSLFixArray
ord24
lstrcmpA
IsBadReadPtr
ord32
ord98
ord31
ord97
MapSL
GetPrivateProfileSectionA
FindClose
FindNextFileA
FindFirstFileA
MultiByteToWideChar
GetProfileStringA
DebugBreak
CreateFileA
ExitProcess
GetTimeFormatA
GetDateFormatA
FileTimeToSystemTime
RtlUnwind
UnMapLS
ord561
MapLS
ord93
GetLastError
ord45
MapHInstLS
TlsGetValue
TlsSetValue
GlobalFree
GetDiskFreeSpaceA
GetProcAddress
LoadLibraryA
SetErrorMode
GetVolumeInformationA
GetDriveTypeA
GlobalAlloc
GetComputerNameA
SetEnvironmentVariableA
GetFileAttributesA
FindResourceA
LeaveCriticalSection
SizeofResource
LoadResource
_lcreat
_lwrite
_lclose
DeleteFileA
GetEnvironmentVariableA
CloseHandle
ord35
ord37
ord36
GetCommandLineA
UnhandledExceptionFilter
DeviceIoControl
GetModuleHandleA
lstrcmpiA
IsBadWritePtr
FreeLibrary
GetPrivateProfileStringA
lstrcpyA
GetWindowsDirectoryA
LocalAlloc
FormatMessageA
LocalReAlloc
IsDBCSLeadByte
GetVersion
Sleep
EnterCriticalSection
GetSystemDirectoryA

advapi32

RegEnumKeyA
GetUserNameA
RegEnumValueA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

user32

ReleaseDC
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
FillRect
MoveWindow
RedrawWindow
SetFocus
BeginDeferWindowPos
EndDeferWindowPos
InvalidateRect
DeferWindowPos
CharUpperA
CharUpperBuffA
CharLowerA
MessageBoxA
MapWindowPoints
CharNextA
wvsprintfA
GetScrollPos
GetSystemMetrics
GetDlgCtrlID
SetCursor
GetWindowTextLengthA
GetWindowTextA
GetParent
SetDlgItemTextA
SendDlgItemMessageA
GetScrollInfo
GetDC
ShowScrollBar
EnableWindow
GetDlgItem
DestroyWindow
CreateWindowExA
SetWindowLongA
ShowWindow
CallWindowProcA
GetWindowRect
SendMessageA
GetWindowLongA
SetWindowTextA
LoadAcceleratorsA
wsprintfA
GetClassLongA
LoadStringA

gdi32

GetBkColor
CreateSolidBrush
CreateFontIndirectA
StartPage
TextOutA
EndDoc
DeleteDC
EndPage
SelectObject
GetTextMetricsA
GetStockObject
ExtTextOutA

shell32

ord195
ord25
ord102
ord15
ord96
ord55
ord31
ord34
ord37
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetDesktopFolder
ord163
ord155

mfc42

ord3262
ord269
ord826
ord1578
ord1255
ord1570
ord1197
ord1253
ord1577
ord1176
ord342
ord1182
ord2278
ord449
ord746
ord4425
ord4625
ord3279
ord4438
ord5286
ord6371
ord2385
ord1775
ord6052
ord4713
ord4998
ord4853
ord4376
ord5265
ord5011
ord4843
ord4672
ord4570
ord1212
ord4252
ord1892
ord1227
ord1216
ord6354
ord561
ord815
ord3670
ord3401
ord600
ord3952
ord5714
ord5289
ord5307
ord4698
ord4079
ord2724
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord3663
ord4486
ord6375
ord2414
ord4996
ord354
ord3318
ord5442
ord6383
ord5186
ord5440
ord6385
ord1979
ord665
ord5033
ord3057
ord1641
ord6170
ord5875
ord5574
ord3626
ord3573
ord1575
ord6412
ord1116
ord1132
ord1131
ord2554
ord2998
ord5649
ord6002
ord2137
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4459
ord324
ord2514
ord641
ord4949
ord2541
ord825
ord423
ord3946
ord723
ord4624
ord4081
ord3080
ord2986
ord3269
ord4466
ord3260
ord3148
ord2983
ord5277
ord2124
ord823
ord1877
ord4249
ord2486
ord2687
ord6364
ord3326
ord6365
ord4472
ord5498
ord2982
ord3147
ord3259
ord4465
ord3136
ord3278
ord2985
ord3081
ord2976
ord3353
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3681
ord743
ord446
ord599
ord1177
ord1243
ord1210
ord1168
ord1226
ord2439
ord1693
ord5618
ord994
ord4342
ord4687
ord4639
ord5674
ord2156
ord4856
ord4920
ord4441
ord4354
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord4636
ord5060
ord4113
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord4659
ord4909
ord4908
ord4668
ord4667
ord4666
ord4648
ord4689
ord5023
ord4654
ord4643
ord4992
ord4780
ord4649
ord4637
ord2488
ord3404
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4738
ord4409
ord4603
ord5008
ord4415
ord4407
ord4979
ord5241
ord3798
ord4539
ord2954
ord6055
ord4078
ord1776
ord5290
ord4837
ord2384
ord5163
ord6370
ord4353

msvcrt40

__CxxFrameHandler
strncpy
??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
_EH_prolog
sprintf

oleaut32

LoadRegTypeLi

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mystery.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
myster~1.pal
myster~1.the
nature.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
nature~1.pal
nature~1.the
parclass.sys
.dll windows:4 windows x86 arch:x86

f267f3b843f58df4391159803a3ca222

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntoskrnl.exe

PsTerminateSystemThread
KeWaitForSingleObject
PsCreateSystemThread
KeInitializeSemaphore
KeReleaseSemaphore
InterlockedExchange
IoDeleteDevice
ObfDereferenceObject
RtlDeleteRegistryValue
IoDeleteSymbolicLink
ExFreePool
IoAttachDeviceToDeviceStack
IofCompleteRequest
IoAcquireCancelSpinLock
IoCreateUnprotectedSymbolicLink
IofCallDriver
KeInitializeEvent
RtlAppendUnicodeStringToString
ExAllocatePoolWithTag
RtlIntegerToUnicodeString
RtlInitUnicodeString
KeSetEvent
_alldiv
KeDelayExecutionThread
IoBuildDeviceIoControlRequest
IoCancelIrp
IoReleaseCancelSpinLock
IoAllocateErrorLogEntry
_allmul
KeQueryTimeIncrement
IoCreateDevice
IoWriteErrorLogEntry
RtlWriteRegistryValue

hal

KeQueryPerformanceCounter
READ_PORT_UCHAR
KfRaiseIrql
KeStallExecutionProcessor
WRITE_PORT_UCHAR
KfLowerIrql

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 352B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 64B - Virtual size: 53B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 944B - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 704B - Virtual size: 698B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
parport.sys
.dll windows:4 windows x86 arch:x86

5b7fc8bb5c3da4022ca5304b1313ae5f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntoskrnl.exe

RtlIntegerToUnicodeString
IoGetConfigurationInformation
RtlInitUnicodeString
ExAllocatePoolWithTag
RtlAppendUnicodeStringToString
KeInitializeDpc
KeWaitForSingleObject
IofCallDriver
KeInitializeEvent
KeSetEvent
IoWriteErrorLogEntry
IofCompleteRequest
IoAttachDeviceToDeviceStack
IoReportResourceUsage
IoConnectInterrupt
IoDisconnectInterrupt
IoReleaseCancelSpinLock
KeSynchronizeExecution
KeInsertQueueDpc
IoAcquireCancelSpinLock
InterlockedExchange
MmUnmapIoSpace
RtlCompareUnicodeString
RtlQueryRegistryValues
IoCreateDevice
ExFreePool
IoAllocateErrorLogEntry
IoDeleteDevice
MmMapIoSpace

hal

HalGetInterruptVector
READ_PORT_UCHAR
HalTranslateBusAddress
WRITE_PORT_UCHAR

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80B - Virtual size: 69B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 368B - Virtual size: 356B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 64B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 944B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 432B - Virtual size: 418B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
parscan.sys
.dll windows:4 windows x86 arch:x86

499563147a2fcb465adc9408c9d1b047

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntoskrnl.exe

RtlInitUnicodeString
IoAttachDeviceToDeviceStack
ExFreePool
IoCreateDevice
RtlWriteRegistryValue
IoCreateUnprotectedSymbolicLink
IofCompleteRequest
RtlAppendUnicodeStringToString
ExAllocatePoolWithTag
RtlIntegerToUnicodeString
IoDeleteDevice
IoWriteErrorLogEntry
IoAllocateErrorLogEntry
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
KeSetEvent
RtlDeleteRegistryValue
IoDeleteSymbolicLink

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80B - Virtual size: 79B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 704B - Virtual size: 698B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 64B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 944B - Virtual size: 932B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 208B - Virtual size: 194B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
picclp32.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

7df3d2ef7ac8f2ad9a0f31c8539def90

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

FindResourceA
lstrcmpA
LoadResource
LockResource
GetLastError
HeapReAlloc
InterlockedDecrement
InterlockedIncrement
GetLocaleInfoA
LoadLibraryA
GetWindowsDirectoryA
lstrcpyA
MultiByteToWideChar
GetModuleFileNameA
lstrcatA
lstrlenA
lstrcpynA
OpenFile
GetVersion
DisableThreadLibraryCalls
lstrcmpiA
GlobalAlloc
GlobalLock
GlobalUnlock
WideCharToMultiByte
lstrlenW
DeleteCriticalSection
FreeLibrary
HeapFree
HeapAlloc
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
GlobalFree

user32

GetWindowRect
SetWindowLongA
SetWindowPos
GetSystemMetrics
ClientToScreen
GetClientRect
EndPaint
SetParent
IsWindowVisible
IntersectRect
CreateWindowExA
GetWindowLongA
ShowWindow
InvalidateRect
CreateDialogIndirectParamA
GetKeyState
GetDlgItem
IsWindowEnabled
GetParent
GetNextDlgTabItem
IsChild
SetWindowRgn
PtInRect
SetFocus
GetWindow
BeginPaint
OffsetRect
EqualRect
CharNextA
DestroyWindow
UnregisterClassA
CharUpperA
wsprintfA
RegisterClipboardFormatA
GetDlgItemInt
SetDlgItemInt
GetDC
GetDesktopWindow
ReleaseDC
GetActiveWindow
SendMessageA
EndDialog
DialogBoxParamA
DefWindowProcA
LoadCursorA
RegisterClassA
LoadStringA
IsDialogMessageA
MoveWindow
WinHelpA

ole32

CreateOleAdviseHolder
CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
ReleaseStgMedium

advapi32

RegDeleteKeyA
RegQueryValueA
RegOpenKeyA
RegEnumKeyExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA

oleaut32

LoadRegTypeLi
OleCreatePropertyFrame
SetErrorInfo
LoadTypeLibEx
UnRegisterTypeLi
SysAllocStringLen
RegisterTypeLi
VariantInit
LoadTypeLi
VariantClear
OleTranslateColor
VariantChangeType
SysStringLen
SysFreeString
OleCreatePictureIndirect
CreateErrorInfo
OleLoadPicture
SysAllocString

gdi32

SetViewportOrgEx
SetMapMode
CreateRectRgnIndirect
SetWindowExtEx
SetViewportExtEx
CreateDCA
LPtoDP
GetWindowExtEx
GetViewportExtEx
SetWindowOrgEx
SelectObject
Rectangle
CreateSolidBrush
CreatePen
SelectPalette
RealizePalette
DeleteObject
DeleteDC
StretchBlt
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetObjectA
GetDeviceCaps
CreatePalette
CreateICA
GetPaletteEntries

Exports

Exports

DLLGetDocumentation
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 668B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
plugin.ocx
.dll regsvr32 windows:5 windows x86 arch:x86

420296e73db5b6dfd80396296ca5f0a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

oleaut32

LoadRegTypeLi
VariantClear
SysFreeString
LHashValOfNameSys
VariantInit
SafeArrayDestroy
SysAllocString
SafeArrayPutElement
SafeArrayCreate
RegisterTypeLi
LoadTypeLi
SetErrorInfo
VariantChangeType
VariantCopy
OleCreatePropertyFrame
SysAllocStringLen

ole32

CreateOleAdviseHolder
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree

user32

SetFocus
BeginPaint
SetParent
IsWindowVisible
ShowWindow
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
GetWindowRect
GetActiveWindow
CharNextA
GetDC
ReleaseDC
UnregisterClassA
GetClipboardFormatNameA
UnhookWindowsHookEx
SetWindowPos
EnumChildWindows
SetPropA
RemovePropA
GetPropA
GetSystemMetrics
EndPaint
SetDlgItemTextA
EndDialog
LoadStringA
MessageBoxA
CreateWindowExA
wsprintfA
DrawEdge
GetWindowLongA
LoadImageA
DrawIconEx
GetClientRect
DefWindowProcA
MapWindowPoints
SendMessageA
GetFocus
GetParent
IsWindow
PostMessageA
SetWindowLongA
DestroyWindow
GetKeyState
TranslateMessage
DispatchMessageA
LoadCursorA
RegisterClassA
RegisterWindowMessageA
PtInRect
CallNextHookEx
SetWindowsHookExA
DialogBoxParamA

gdi32

SetWindowOrgEx
GetDeviceCaps
OffsetWindowOrgEx
CreateRectRgnIndirect
DeleteDC
SetMapMode
SetViewportOrgEx
LPtoDP
DeleteObject
CreateDCA

advapi32

RegOpenKeyA
RegSetValueExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegQueryInfoKeyA
RegEnumValueA
RegCreateKeyA

kernel32

GetFileSize
GetShortPathNameA
GetCurrentThreadId
DisableThreadLibraryCalls
TlsGetValue
GlobalAddAtomA
TlsSetValue
TlsFree
TlsAlloc
GetVersion
GetProcessHeap
GetLastError
lstrcpynA
FindClose
GlobalLock
GlobalUnlock
CreateFileA
SetFilePointer
ReadFile
CloseHandle
FindNextFileA
FindFirstFileA
GetModuleFileNameA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetModuleHandleA
LoadLibraryExA
GetEnvironmentVariableA
SetEnvironmentVariableA
GlobalFree
HeapAlloc
lstrlenW
WideCharToMultiByte
lstrlenA
HeapFree
LocalAlloc
lstrcpyA
lstrcmpiA
LocalFree
lstrcatA
CreateDirectoryA
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
GetLocaleInfoA
HeapReAlloc
InterlockedIncrement
InterlockedDecrement
RtlUnwind
GlobalAlloc
lstrcmpA
MultiByteToWideChar

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

comctl32

ord17

shlwapi

SHDeleteKeyA

wininet

InternetCloseHandle
InternetOpenA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetOpenUrlA
HttpQueryInfoA

urlmon

URLDownloadA
HlinkSimpleNavigateToString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
FindPluginA
FindPluginByExtA

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
powerpnt.ppt
pppmenu.scp
.vbs
presenta.shw
remotesp.tsp
.dll windows:4 windows x86 arch:x86

17c4ff2d5233f79ac69779d6d941b044

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
TlsAlloc
LoadLibraryA
GetProcessHeap
HeapCreate
TlsSetValue
TlsGetValue
LeaveCriticalSection
RtlMoveMemory
ResetEvent
EnterCriticalSection
ExitThread
WaitForSingleObject
Sleep
lstrlenW
IsBadWritePtr
lstrcmpiW
TlsFree
GetProcAddress
CloseHandle
CreateThread
CreateEventA
MultiByteToWideChar
GetACP
GetComputerNameA
GetTickCount
SetEvent
LocalFree
LocalAlloc
WideCharToMultiByte
HeapAlloc
HeapDestroy
InterlockedDecrement
lstrlenA
InterlockedIncrement
DeleteCriticalSection
FreeLibrary
lstrcmpiA
lstrcpyA
HeapFree

user32

wsprintfA

advapi32

RegCloseKey
RegQueryValueExA
RevertToSelf
RegOpenKeyExA

msvcrt

_except_handler3
wcscat
wcscpy

rpcrt4

RpcServerRegisterIf
RpcServerUnregisterIf
RpcRevertToSelf
RpcStringFreeA
RpcBindingFree
RpcBindingSetAuthInfoA
RpcBindingFromStringBindingA
RpcStringBindingComposeA
RpcServerRegisterAuthInfoA
NDRSContextUnmarshall
RpcServerUseProtseqEpA
RpcRaiseException
NdrClientCall
NdrServerContextMarshall
I_RpcGetBuffer
NdrConvert
NdrServerInitializeNew
NdrConformantVaryingArrayUnmarshall
NdrServerContextUnmarshall

Exports

Exports

TSPI_lineAccept
TSPI_lineAddToConference
TSPI_lineAgentSpecific
TSPI_lineAnswer
TSPI_lineBlindTransfer
TSPI_lineClose
TSPI_lineCloseCall
TSPI_lineCompleteCall
TSPI_lineCompleteTransfer
TSPI_lineConditionalMediaDetection
TSPI_lineDevSpecific
TSPI_lineDevSpecificFeature
TSPI_lineDial
TSPI_lineDrop
TSPI_lineForward
TSPI_lineGatherDigits
TSPI_lineGenerateDigits
TSPI_lineGenerateTone
TSPI_lineGetAddressCaps
TSPI_lineGetAddressID
TSPI_lineGetAddressStatus
TSPI_lineGetAgentActivityList
TSPI_lineGetAgentCaps
TSPI_lineGetAgentGroupList
TSPI_lineGetAgentStatus
TSPI_lineGetCallAddressID
TSPI_lineGetCallInfo
TSPI_lineGetCallStatus
TSPI_lineGetDevCaps
TSPI_lineGetDevConfig
TSPI_lineGetExtensionID
TSPI_lineGetID
TSPI_lineGetIcon
TSPI_lineGetLineDevStatus
TSPI_lineGetNumAddressIDs
TSPI_lineHold
TSPI_lineMakeCall
TSPI_lineMonitorDigits
TSPI_lineMonitorMedia
TSPI_lineMonitorTones
TSPI_lineNegotiateExtVersion
TSPI_lineNegotiateTSPIVersion
TSPI_lineOpen
TSPI_linePark
TSPI_linePickup
TSPI_linePrepareAddToConference
TSPI_lineRedirect
TSPI_lineReleaseUserUserInfo
TSPI_lineRemoveFromConference
TSPI_lineSecureCall
TSPI_lineSelectExtVersion
TSPI_lineSendUserUserInfo
TSPI_lineSetAgentActivity
TSPI_lineSetAgentGroup
TSPI_lineSetAgentState
TSPI_lineSetAppSpecific
TSPI_lineSetCallData
TSPI_lineSetCallParams
TSPI_lineSetCallQualityOfService
TSPI_lineSetCallTreatment
TSPI_lineSetCurrentLocation
TSPI_lineSetDefaultMediaDetection
TSPI_lineSetDevConfig
TSPI_lineSetLineDevStatus
TSPI_lineSetMediaControl
TSPI_lineSetMediaMode
TSPI_lineSetStatusMessages
TSPI_lineSetTerminal
TSPI_lineSetupConference
TSPI_lineSetupTransfer
TSPI_lineSwapHold
TSPI_lineUncompleteCall
TSPI_lineUnhold
TSPI_lineUnpark
TSPI_phoneClose
TSPI_phoneDevSpecific
TSPI_phoneGetButtonInfo
TSPI_phoneGetData
TSPI_phoneGetDevCaps
TSPI_phoneGetDisplay
TSPI_phoneGetExtensionID
TSPI_phoneGetGain
TSPI_phoneGetHookSwitch
TSPI_phoneGetID
TSPI_phoneGetIcon
TSPI_phoneGetLamp
TSPI_phoneGetRing
TSPI_phoneGetStatus
TSPI_phoneGetVolume
TSPI_phoneNegotiateExtVersion
TSPI_phoneNegotiateTSPIVersion
TSPI_phoneOpen
TSPI_phoneSelectExtVersion
TSPI_phoneSetButtonInfo
TSPI_phoneSetData
TSPI_phoneSetDisplay
TSPI_phoneSetGain
TSPI_phoneSetHookSwitch
TSPI_phoneSetLamp
TSPI_phoneSetRing
TSPI_phoneSetStatusMessages
TSPI_phoneSetVolume
TSPI_providerCreateLineDevice
TSPI_providerCreatePhoneDevice
TSPI_providerEnumDevices
TSPI_providerFreeDialogInstance
TSPI_providerGenericDialogData
TSPI_providerInit
TSPI_providerShutdown
TSPI_providerUIIdentify
TUISPI_lineConfigDialog
TUISPI_lineConfigDialogEdit
TUISPI_phoneConfigDialog

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
rmm.pdr
rsaci.rat
science.scr
.exe windows:1 windows x86 arch:x86

2c57396fbae506b8ff866090f2d1bd3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
DeleteCriticalSection
GetCommandLineA
GetModuleHandleA
lstrcmpA
GetTickCount
lstrlenA
GetModuleFileNameA
GetStartupInfoA
ExitProcess
UnhandledExceptionFilter
GlobalReAlloc
GetLastError
WriteFile
_lopen
_lread
_lclose
FindResourceA
SizeofResource
LoadResource
LockResource
GlobalLock
FreeResource
LoadLibraryA
GetProcAddress
FreeLibrary
Sleep
GlobalAlloc
GlobalUnlock
GlobalHandle
GlobalFree
InitializeCriticalSection
CloseHandle
SetThreadPriority
EnterCriticalSection
LeaveCriticalSection
lstrcatA
RaiseException
SetStdHandle
ReadFile
SetFilePointer
WideCharToMultiByte
VirtualAlloc
MultiByteToWideChar
GetFileType
GetStdHandle
FlushFileBuffers
VirtualFree
GetCPInfo
GetOEMCP
GetACP
TlsGetValue
TlsAlloc
GetVersion
GetEnvironmentStrings
ExitThread
TlsSetValue
GetCurrentThreadId
RtlUnwind

user32

FindWindowA
GetSystemMetrics
DialogBoxParamA
GetMessageA
CharNextA
PostQuitMessage
PostMessageA
GetCursorPos
GetSysColor
DrawTextA
GetDesktopWindow
SetTimer
GetClientRect
FillRect
KillTimer
DefWindowProcA
WinHelpA
SendMessageA
ScreenToClient
GetSystemMenu
TranslateMessage
SetCursor
GetForegroundWindow
CreateWindowExA
GetDlgItem
IsWindow
EnableWindow
GetDlgItemInt
GetDlgItemTextA
IsDlgButtonChecked
CheckRadioButton
SetDlgItemInt
SendDlgItemMessageA
SetDlgItemTextA
CheckDlgButton
wsprintfA
GetWindowRect
SetWindowPos
GetDC
CreateDialogParamA
ShowWindow
UpdateWindow
GetParent
SystemParametersInfoA
DestroyWindow
ReleaseDC
LoadStringA
MessageBoxA
CheckMenuItem
ClientToScreen
TrackPopupMenu
BeginPaint
EndPaint
PtInRect
CreatePopupMenu
DestroyMenu
SetRect
CallWindowProcA
SendNotifyMessageA
RegisterClassA
GetWindowLongA
InvalidateRect
SetWindowTextA
LoadIconA
SetWindowLongA
AppendMenuA
PeekMessageA
MessageBeep
DispatchMessageA
SetForegroundWindow
MsgWaitForMultipleObjects
EndDialog
GetWindowTextA

gdi32

GetStockObject
SetBkColor
SetTextColor
DeleteDC
DeleteObject
SelectPalette
StretchDIBits
Rectangle
CreateSolidBrush
CreatePatternBrush
CreateBitmap
GdiFlush
BitBlt
SetStretchBltMode
SelectObject
RealizePalette
CreateCompatibleBitmap
CreateCompatibleDC
StretchBlt
SetDIBColorTable
CreateDIBSection
GetPaletteEntries
SetPixel
CreatePalette
GetSystemPaletteEntries
SetDIBitsToDevice
GetDIBits
GetObjectA
GetDeviceCaps

advapi32

RegQueryValueExA
RegOpenKeyA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

ShellAboutA

comctl32

PropertySheetA

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scienc~1.pal
scienc~1.the
scrnsave.scr
.exe windows:4 windows x86 arch:x86

c2270ace7541388bf805bc7b53b8c40d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDC
GetSystemMetrics
ReleaseDC
RegisterWindowMessageA
FindWindowA
DialogBoxParamA
SendMessageA
PeekMessageA
CharNextA
RegisterClassA
CreateWindowExA
SetForegroundWindow
TranslateMessage
DispatchMessageA
GetMessageA
PostQuitMessage
GetParent
IsWindow
SetCursor
GetCursorPos
PostMessageA
DefWindowProcA
SystemParametersInfoA
GetForegroundWindow
GetClientRect
EndDialog
LoadIconA

kernel32

RtlUnwind
GetCommandLineA
GetStartupInfoA
ExitProcess
GetTickCount
LoadLibraryA
FreeLibrary
GetModuleHandleA
GetProcAddress
Sleep
UnhandledExceptionFilter

gdi32

GetStockObject
GetClipBox

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scsiport.pdr
slip.scp
.vbs
slipmenu.scp
.vbs
space(~1.the
space.scr
.exe windows:4 windows x86 arch:x86

cc304bc6759fded9d1319da92b5558b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt40

_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
__setusermatherr
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atoi
strcpy
atol
sprintf
strrchr
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler
sscanf
strlen

comctl32

ord17
PropertySheetA

kernel32

GlobalAlloc
CreateFileA
FreeResource
LockResource
GetCommandLineA
ExitProcess
UnhandledExceptionFilter
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
_lread
GetStartupInfoA
Sleep
LoadResource
SizeofResource
FindResourceA
_lclose
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc

user32

PostQuitMessage
EndPaint
BeginPaint
CheckMenuItem
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
GetWindowLongA
DispatchMessageA
TranslateMessage
GetMessageA
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
CreateWindowExA
SetWindowPos
DestroyMenu
DestroyWindow
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
InvalidateRect
LoadStringA
GetParent
SetRect

gdi32

CreatePalette
GetObjectA
GetDeviceCaps
GetDIBits
GetSystemPaletteEntries
RealizePalette
GetStockObject
SetStretchBltMode
SetDIBitsToDevice
SelectPalette

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sports.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sports~1.pal
sports~1.the
ss3dfo.scr
.exe windows:5 windows x86 arch:x86

03b7f2c8aa0b427656097fc617d34288

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryValueExA
RegOpenKeyA
RegOpenKeyExA
RegCloseKey

kernel32

GetLocalTime
TerminateProcess
GetModuleFileNameA
RtlUnwind
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
VirtualAlloc
RaiseException
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLastError
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetFilePointer
HeapReAlloc
SetStdHandle
FlushFileBuffers
HeapFree
GetVersion
GetCurrentProcess
GetPriorityClass
SetPriorityClass
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CreateFileA
ReadFile
CloseHandle
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcatA
GetWindowsDirectoryA
lstrcmpiA
lstrcpyA
SearchPathA
LocalAlloc
LocalFree
FindResourceA
LoadResource
LockResource
FreeResource
lstrlenA
GetCommandLineA
GetStartupInfoA
ExitProcess
GetTickCount
Sleep
LoadLibraryA
FreeLibrary
CreateFileW
GetProcAddress
GetVersionExA
GetModuleHandleA
WriteFile
UnhandledExceptionFilter

gdi32

SelectPalette
BitBlt
GetSystemPaletteUse
CreatePalette
GetSystemPaletteEntries
CreateCompatibleBitmap
GetDIBits
GetCurrentObject
GetObjectA
GetPaletteEntries
SetDIBColorTable
GetObjectType
SwapBuffers
DescribePixelFormat
StretchBlt
CreateCompatibleDC
CreateDIBSection
SelectObject
SetDIBits
GdiFlush
DeleteDC
DeleteObject
UnrealizeObject
RealizePalette
SetSystemPaletteUse
GetStockObject
GetDeviceCaps
ChoosePixelFormat
SetPixelFormat

user32

GetForegroundWindow
GetSysColor
SetSysColors
FillRect
SetWindowPos
GetUpdateRect
CreateWindowExA
ShowWindow
ReleaseDC
GetDC
GetFocus
BeginPaint
EndPaint
KillTimer
SetTimer
DestroyWindow
LoadIconA
RegisterClassA
LoadCursorA
GetClientRect
FindWindowA
SetForegroundWindow
DialogBoxParamA
GetMessageA
TranslateMessage
DispatchMessageA
GetSystemMetrics
ChangeDisplaySettingsA
wsprintfA
MessageBoxA
CharNextA
PeekMessageA
PostQuitMessage
GetParent
SetCursor
GetCursorPos
PostMessageA
SendMessageA
DefWindowProcA
SystemParametersInfoA
IsWindow
CheckDlgButton
GetDlgItem
EnableWindow
IsDlgButtonChecked
LoadStringA
EndDialog
SendDlgItemMessageA

opengl32

glLoadIdentity
glLightModeli
glLightModelfv
glFinish
glViewport
glScissor
wglCreateContext
wglMakeCurrent
wglDeleteContext
glGetString
wglGetProcAddress
glDeleteTextures
glGenTextures
glBindTexture
glTexImage2D
glGetIntegerv
glNewList
glEndList
glTexCoord2f
glPixelStorei
glTexParameteri
glTexEnvi
glFrontFace
glBegin
glNormal3fv
glVertex3fv
glDrawArrays
glEnd
glInterleavedArrays
glMaterialf
glFrustum
glPushMatrix
glRotatef
glPopMatrix
glScalef
glCallList
glOrtho
glTranslatef
glDisable
glClear
glMaterialfv
glLightfv
glEnable
glClearColor
glMatrixMode
glShadeModel

glu32

gluScaleImage

comdlg32

GetOpenFileNameA

comctl32

ord17

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ssctl.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

dcb899962ea19ad4e81252db0679cf44

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvbvm50

EVENT_SINK_GetIDsOfNames
__vbaVarTstGt
__vbaVarSub
_CIcos
_adj_fptan
__vbaVarMove
__vbaVarVargNofree
__vbaFreeVar
__vbaStrVarMove
__vbaLenBstr
__vbaFreeVarList
_adj_fdiv_m64
EVENT_SINK_Invoke
__vbaRaiseEvent
__vbaFreeObjList
_adj_fprem1
__vbaRecAnsiToUni
__vbaStrCat
__vbaLsetFixstr
ord660
__vbaSetSystemError
__vbaRecDestruct
__vbaHresultCheckObj
__vbaLenVar
__vbaVargVarCopy
_adj_fdiv_m32
Zombie_GetTypeInfo
__vbaAryDestruct
__vbaOnError
__vbaObjSet
_adj_fdiv_m16i
_adj_fdivr_m16i
ord598
ord522
__vbaVarTstLt
_CIsin
ord631
__vbaVargVarMove
ord632
__vbaChkstk
EVENT_SINK_AddRef
__vbaGenerateBoundsError
ord529
__vbaStrCmp
__vbaVarTstEq
__vbaI2I4
DllFunctionCall
__vbaAryConstruct
_adj_fpatan
__vbaFixstrConstruct
Zombie_GetTypeInfoCount
__vbaRecUniToAnsi
EVENT_SINK_Release
__vbaNew
ord600
_CIsqrt
EVENT_SINK_QueryInterface
__vbaExceptHandler
__vbaStrToUnicode
ord606
_adj_fprem
_adj_fdivr_m64
ord607
__vbaFPException
__vbaInStrVar
ord532
ord319
__vbaStrVarVal
ord535
ord537
_CIlog
__vbaErrorOverflow
__vbaInStr
__vbaNew2
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
ord573
__vbaFreeStrList
_adj_fdivr_m32
_adj_fdiv_r
__vbaVarTstNe
ord101
ord102
__vbaI4Var
ord103
ord104
ord105
__vbaVarAdd
ord320
__vbaStrToAnsi
__vbaVarDup
ord321
ord613
__vbaFpI2
__vbaVarMod
ord616
__vbaFpI4
ord617
__vbaRecDestructAnsi
_CIatan
__vbaStrMove
_allmul
_CItan
_CIexp
__vbaFreeObj
__vbaFreeStr
ord581

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ssflwbox.scr
.exe windows:5 windows x86 arch:x86

0f68e94848f87cbedde5bf08a193110f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryValueExA
RegOpenKeyA
RegOpenKeyExA
RegCloseKey

kernel32

GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
TerminateProcess
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GetVersionExA
VirtualAlloc
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLastError
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetFilePointer
HeapReAlloc
SetStdHandle
FlushFileBuffers
HeapAlloc
GetLocalTime
GetVersion
ReadFile
CloseHandle
GetCurrentProcess
GetPriorityClass
SetPriorityClass
LocalFree
lstrlenA
GetCommandLineA
GetStartupInfoA
ExitProcess
GetTickCount
LoadLibraryA
HeapFree
FreeLibrary
GetProcAddress
Sleep
UnhandledExceptionFilter
GetPrivateProfileIntA
RtlUnwind
WriteFile
WritePrivateProfileStringA
GetModuleHandleA
LocalAlloc

gdi32

CreatePalette
BitBlt
GetSystemPaletteUse
SelectPalette
GetSystemPaletteEntries
CreateCompatibleBitmap
GetDIBits
GetCurrentObject
GetObjectA
GetPaletteEntries
SetDIBColorTable
GetObjectType
CreateDIBSection
SwapBuffers
DescribePixelFormat
StretchBlt
GdiFlush
CreateCompatibleDC
SelectObject
DeleteObject
DeleteDC
UnrealizeObject
RealizePalette
SetSystemPaletteUse
GetStockObject
GetDeviceCaps
ChoosePixelFormat
SetPixelFormat

user32

SetSysColors
SendDlgItemMessageA
IsWindow
GetSysColor
FillRect
SetWindowPos
GetUpdateRect
CreateWindowExA
ShowWindow
ReleaseDC
GetDC
BeginPaint
EndPaint
KillTimer
SetTimer
DestroyWindow
LoadIconA
RegisterClassA
LoadCursorA
GetClientRect
FindWindowA
SetForegroundWindow
DialogBoxParamA
GetMessageA
TranslateMessage
DispatchMessageA
GetSystemMetrics
ChangeDisplaySettingsA
CharNextA
PeekMessageA
PostQuitMessage
GetParent
SetCursor
GetCursorPos
PostMessageA
DefWindowProcA
SystemParametersInfoA
SendMessageA
GetForegroundWindow
EndDialog
wsprintfA
GetDlgItem
CheckRadioButton
CheckDlgButton
LoadStringA
SetFocus

opengl32

glRotated
glClear
glMaterialf
glFlush
glFinish
glViewport
glScissor
wglCreateContext
wglMakeCurrent
wglDeleteContext
wglGetProcAddress
glGetString
glShadeModel
glDrawElements
glBegin
glNormal3fv
glVertex3fv
glEnd
glNormalPointer
glVertexPointer
glEnableClientState
glDisableClientState
glMatrixMode
glClearDepth
glCullFace
glLightfv
glLightModeli
glDisable
glEnable
glMaterialfv
glLoadIdentity

comctl32

ord17

glu32

gluLookAt
gluPerspective

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ssflywin.scr
.exe windows:4 windows x86 arch:x86

240622b16e31c4952e624b4f9b1885fd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItemInt
SystemParametersInfoA
EnableWindow
EndDialog
DefWindowProcA
GetCursorPos
SetCursor
IsWindow
GetParent
PostQuitMessage
PostMessageA
SendMessageA
TranslateMessage
SetForegroundWindow
CreateWindowExA
RegisterClassA
RegisterWindowMessageA
FindWindowA
GetSystemMetrics
GetClientRect
LoadIconA
DialogBoxParamA
PeekMessageA
CharNextA
wsprintfA
SendDlgItemMessageA
LoadStringA
WinHelpA
GetMessageA
DispatchMessageA
ReleaseDC
GetDlgItem
GetForegroundWindow
SetTimer
KillTimer
GetDC
FillRect

kernel32

GetTickCount
LocalFree
WritePrivateProfileStringA
lstrcpyA
GetPrivateProfileIntA
LocalAlloc
lstrcmpiA
RtlUnwind
ExitProcess
LoadLibraryA
GetStartupInfoA
GetModuleHandleA
GetProcAddress
FreeLibrary
GetCommandLineA
UnhandledExceptionFilter
Sleep

gdi32

CreateSolidBrush
GetClipBox
GetRasterizerCaps
CreateICA
CreateFontA
GetTextFaceA
DeleteDC
SetBkColor
SetBkMode
SetTextColor
TextOutA
DeleteObject
PatBlt
SetTextAlign
CreateFontIndirectA
GetStockObject
SelectObject

comctl32

ord17

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ssmarque.scr
.exe windows:4 windows x86 arch:x86

56f07c27505633f20b6fa40c5f398244

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
GetDlgItemTextA
CheckRadioButton
GetWindowTextA
EndDialog
SendDlgItemMessageA
GetSystemMetrics
GetForegroundWindow
SystemParametersInfoA
DefWindowProcA
PostMessageA
GetCursorPos
SetWindowTextA
GetDlgItem
GetParent
PostQuitMessage
GetMessageA
DispatchMessageA
TranslateMessage
SetForegroundWindow
CreateWindowExA
RegisterClassA
FindWindowA
LoadIconA
DialogBoxParamA
SendMessageA
PeekMessageA
CharNextA
RegisterWindowMessageA
WinHelpA
InflateRect
ShowWindow
SetCursor
IsWindow
LoadStringA
GetDC
ReleaseDC
SetTimer
KillTimer
GetClientRect

kernel32

GetTickCount
lstrlenA
lstrcpyA
GetPrivateProfileStringA
lstrcatA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCommandLineA
ExitProcess
LoadLibraryA
FreeLibrary
GetModuleHandleA
GetProcAddress
Sleep
RtlUnwind
GetStartupInfoA
UnhandledExceptionFilter

gdi32

GetDeviceCaps
SetTextColor
GetClipBox
GetObjectA
GetNearestPaletteIndex
GetStockObject
GetPaletteEntries
CreateCompatibleDC
CreateFontA
GetTextExtentPointA
GetTextMetricsA
GetCharABCWidthsA
CreateBitmap
SelectObject
DeleteObject
DeleteDC
SetBkColor
BitBlt
ExtTextOutA

comctl32

ord17

comdlg32

ChooseFontA

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ssmaze.scr
.exe windows:5 windows x86 arch:x86

820d10f2ab05dd0a1cca50b2ef701abf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

opengl32

glVertex3f
glTexEnvi
glTexCoord2f
glEnd
glTexCoord2d
glBegin
glEnable
glRotatef
glTranslatef
glHint
glColor3fv
glColor3f
glVertex2f
glMatrixMode
glLoadIdentity
glPushMatrix
glTranslated
glScaled
glRotated
glPopMatrix
glNormal3f
glCallList
glGetTexEnviv
glFinish
glScissor
glViewport
glLightModelfv
glLightModeli
glCullFace
glFrontFace
glGetString
wglGetProcAddress
glDeleteTextures
glGetIntegerv
glGenTextures
glBindTexture
glTexImage2D
glShadeModel
glPolygonMode
glClearDepth
glPixelStorei
glTexParameteri
glLightfv
glBlendFunc
glClear
glFlush
wglDeleteContext
wglCreateContext
wglMakeCurrent
glGenLists
glNormal3dv
glVertex3dv
glNewList
glEndList
glDisable
glColor4fv

glu32

gluLookAt
gluOrtho2D
gluPerspective
gluScaleImage

advapi32

RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegCloseKey

kernel32

FindResourceA
lstrcpyA
lstrcmpiA
LoadResource
SearchPathA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
UnhandledExceptionFilter
GetWindowsDirectoryA
LoadLibraryA
GetProcAddress
GetStartupInfoA
GetCommandLineA
FreeResource
GetPriorityClass
GetCurrentProcess
CloseHandle
ReadFile
CreateFileA
UnmapViewOfFile
FreeLibrary
GetTickCount
GetVersion
HeapFree
HeapAlloc
TerminateProcess
FreeEnvironmentStringsW
RtlUnwind
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
LockResource
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLastError
SetFilePointer
FlushFileBuffers
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapReAlloc
lstrlenA
LocalAlloc
LocalFree
Sleep
ExitProcess
GetModuleHandleA
GetVersionExA
MapViewOfFile
CreateFileMappingA
SetPriorityClass
GetLocalTime
CreateFileW

gdi32

ChoosePixelFormat
GetDeviceCaps
DeleteDC
DescribePixelFormat
GetSystemPaletteEntries
CreateCompatibleBitmap
GetDIBits
GetCurrentObject
GetObjectA
SetDIBColorTable
GetObjectType
GetSystemPaletteUse
CreateDIBSection
SetDIBits
BitBlt
StretchBlt
CreatePalette
SetSystemPaletteUse
SelectObject
SetPixelFormat
GetStockObject
GetPaletteEntries
GdiFlush
CreateCompatibleDC
SwapBuffers
RealizePalette
UnrealizeObject
SelectPalette
DeleteObject

user32

CheckDlgButton
GetDlgCtrlID
EnableWindow
KillTimer
wsprintfA
ChangeDisplaySettingsA
GetForegroundWindow
IsWindow
DialogBoxParamA
SendDlgItemMessageA
SetCursor
DispatchMessageA
CharNextA
MapWindowPoints
SetForegroundWindow
FindWindowA
GetUpdateRect
SetWindowPos
FillRect
EndDialog
GetDlgItem
SetTimer
LoadStringA
ReleaseDC
GetSysColor
SetSysColors
PostMessageA
DefWindowProcA
PostQuitMessage
BeginPaint
EndPaint
DestroyWindow
GetCursorPos
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
GetDC
ShowWindow
GetSystemMetrics
GetClientRect
PeekMessageA
TranslateMessage
GetMessageA
SendMessageA
SystemParametersInfoA
GetParent
GetFocus
MessageBoxA

comdlg32

GetOpenFileNameA

comctl32

ord17

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 351KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ssmyst.scr
.exe windows:4 windows x86 arch:x86

9617000ed2603cc384a017b27f1a8d32

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseDC
InvalidateRect
CheckRadioButton
EndDialog
SendDlgItemMessageA
SetDlgItemInt
GetForegroundWindow
SystemParametersInfoA
DefWindowProcA
PostMessageA
GetCursorPos
SetCursor
SendMessageA
wsprintfA
PostQuitMessage
GetMessageA
DispatchMessageA
TranslateMessage
SetForegroundWindow
CreateWindowExA
RegisterClassA
RegisterWindowMessageA
FindWindowA
GetClientRect
LoadIconA
DialogBoxParamA
PeekMessageA
CharNextA
LoadStringA
GetWindowRect
WinHelpA
InflateRect
IsWindow
GetParent
CheckDlgButton
GetDlgItem
EnableWindow
GetDlgItemInt
GetSystemMetrics
SetTimer
KillTimer
GetDC

kernel32

WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetTickCount
GetCommandLineA
ExitProcess
LoadLibraryA
FreeLibrary
GetModuleHandleA
GetProcAddress
Sleep
RtlUnwind
GetStartupInfoA
UnhandledExceptionFilter

gdi32

GetClipBox
GetPaletteEntries
SetBkColor
ExtTextOutA
MoveToEx
LineTo
SelectObject
GetObjectA
GetNearestPaletteIndex
GetStockObject
CreatePalette
SelectPalette
AnimatePalette
CreatePen
DeleteObject
RealizePalette

comctl32

ord17

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sspipes.scr
.exe windows:5 windows x86 arch:x86

93307568352ec6b197ae92166644138f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA

kernel32

CreateFileMappingA
TerminateProcess
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetLocalTime
HeapAlloc
RtlUnwind
VirtualFree
WriteFile
GetTimeZoneInformation
VirtualAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLastError
SetFilePointer
SetStdHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetVersion
HeapReAlloc
MapViewOfFile
UnmapViewOfFile
CreateFileA
ReadFile
CloseHandle
GetCurrentProcess
GetPriorityClass
SetPriorityClass
GetCommandLineA
GetStartupInfoA
ExitProcess
GetTickCount
LoadLibraryA
FreeLibrary
GetProcAddress
Sleep
GetVersionExA
UnhandledExceptionFilter
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetWindowsDirectoryA
lstrcmpiA
lstrcpyA
SearchPathA
GetModuleHandleA
FindResourceA
LoadResource
LockResource
FreeResource
lstrlenA
LocalFree
HeapFree
HeapDestroy
LocalAlloc
HeapCreate
GetFileType
CreateFileW

gdi32

CreateCompatibleBitmap
GetDIBits
GetCurrentObject
GetSystemPaletteEntries
GetObjectA
GetObjectType
GetPaletteEntries
GetSystemPaletteUse
CreatePalette
SelectPalette
UnrealizeObject
RealizePalette
SetDIBColorTable
SetSystemPaletteUse
GetDeviceCaps
ChoosePixelFormat
SetPixelFormat
DescribePixelFormat
CreateDIBSection
SetDIBits
SwapBuffers
BitBlt
StretchBlt
CreateCompatibleDC
SelectObject
DeleteObject
DeleteDC
GetStockObject
GdiFlush

user32

GetForegroundWindow
GetSysColor
EndPaint
SetSysColors
BeginPaint
KillTimer
SetTimer
SetWindowPos
GetFocus
ShowWindow
GetUpdateRect
CreateWindowExA
ChangeDisplaySettingsA
ReleaseDC
GetDC
RegisterClassA
DestroyWindow
LoadIconA
FindWindowA
LoadCursorA
GetClientRect
GetMessageA
SetForegroundWindow
DialogBoxParamA
GetSystemMetrics
TranslateMessage
DispatchMessageA
PeekMessageA
FillRect
CharNextA
SetCursor
PostQuitMessage
GetParent
SendMessageA
GetCursorPos
PostMessageA
IsWindow
DefWindowProcA
SystemParametersInfoA
MessageBoxA
CheckDlgButton
GetDlgItem
EnableWindow
LoadStringA
SendDlgItemMessageA
EndDialog
wsprintfA

opengl32

glDepthFunc
glLightModelfv
glScalef
glEnable
glGetString
glIsList
glScissor
glMaterialfv
glFinish
glMaterialf
glDeleteTextures
glGetIntegerv
wglGetProcAddress
glBindTexture
glTexImage2D
glGenTextures
glMapGrid2f
glEvalMesh2
glMap2f
glNormal3f
glBegin
glVertex3f
glNormal3fv
glTexCoord2f
glVertex3fv
glNewList
glEndList
glEnd
glDeleteLists
glGenLists
glCallList
glPopMatrix
glDisable
glPushMatrix
glOrtho
glViewport
glMatrixMode
glFlush
glClear
wglMakeCurrent
glPolygonMode
wglGetCurrentDC
wglGetCurrentContext
wglDeleteContext
glPixelStorei
glTexEnvi
glCullFace
glLightfv
glTexParameteri
glRotatef
glFrontFace
glClearColor
wglShareLists
glLoadIdentity
glTranslatef
wglCreateContext

comdlg32

GetOpenFileNameA

comctl32

ord17

glu32

gluPerspective
gluScaleImage

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ssstars.scr
.exe windows:4 windows x86 arch:x86

d69f084482cdf61c827a35c25da60477

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SystemParametersInfoA
SendMessageA
GetDlgItem
GetCursorPos
SetCursor
GetForegroundWindow
GetDlgItemInt
DefWindowProcA
PostMessageA
GetMessageA
TranslateMessage
SetForegroundWindow
CreateWindowExA
RegisterClassA
RegisterWindowMessageA
FindWindowA
GetSystemMetrics
GetClientRect
LoadIconA
DialogBoxParamA
PeekMessageA
CharNextA
SetDlgItemInt
DispatchMessageA
WinHelpA
LoadStringA
wsprintfA
SendDlgItemMessageA
PostQuitMessage
EndDialog
EnableWindow
SetTimer
KillTimer
GetDC
ReleaseDC
IsWindow
GetParent

kernel32

RtlUnwind
ExitProcess
LoadLibraryA
GetStartupInfoA
GetModuleHandleA
GetProcAddress
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileIntA
UnhandledExceptionFilter
FreeLibrary
Sleep
GetCommandLineA

gdi32

GetStockObject
GetClipBox
PatBlt

comctl32

ord17

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sstext3d.scr
.exe windows:5 windows x86 arch:x86

960b92a2ad30599ac6d008722446aff2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegCloseKey

kernel32

GetLastError
GetFileType
HeapAlloc
RtlUnwind
TerminateProcess
GetModuleFileNameA
FreeEnvironmentStringsA
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
WriteFile
GetTimeZoneInformation
VirtualAlloc
LCMapStringA
LCMapStringW
SetStdHandle
SetFilePointer
SetEndOfFile
GetStringTypeA
GetStringTypeW
FlushFileBuffers
RaiseException
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapReAlloc
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CreateFileA
ReadFile
CloseHandle
GetCurrentProcess
GetPriorityClass
SetPriorityClass
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCommandLineA
GetStartupInfoA
ExitProcess
GetTickCount
LoadLibraryA
FreeLibrary
GetProcAddress
UnhandledExceptionFilter
GetVersionExA
Sleep
lstrcatA
GetWindowsDirectoryA
lstrcmpiA
SearchPathA
FreeResource
lstrlenA
IsDBCSLeadByte
LocalFree
LocalAlloc
LockResource
GetTimeFormatA
GetPrivateProfileStringA
GetModuleHandleA
FindResourceA
GetSystemDefaultLCID
GetLocalTime
lstrcpyA
LoadResource
lstrcmpA
CreateFileW
GetVersion
HeapFree

gdi32

CreateCompatibleBitmap
GetDIBits
SetDIBits
GetSystemPaletteEntries
GetCurrentObject
GetObjectA
SetDIBColorTable
GetObjectType
GetPaletteEntries
GetSystemPaletteUse
CreatePalette
SelectPalette
UnrealizeObject
RealizePalette
SetSystemPaletteUse
CreateDIBSection
SelectObject
SwapBuffers
BitBlt
StretchBlt
GdiFlush
CreateCompatibleDC
DeleteDC
GetStockObject
GetDeviceCaps
ChoosePixelFormat
SetPixelFormat
DescribePixelFormat
CreateFontIndirectA
GetOutlineTextMetricsA
DeleteObject
CreateFontA

user32

EndDialog
GetFocus
FillRect
GetSysColor
GetDlgItem
SetTimer
SetWindowPos
GetUpdateRect
CreateWindowExA
ShowWindow
ReleaseDC
DestroyWindow
LoadIconA
RegisterClassA
LoadCursorA
GetClientRect
FindWindowA
SetForegroundWindow
DialogBoxParamA
GetMessageA
TranslateMessage
DispatchMessageA
GetSystemMetrics
CharNextA
PeekMessageA
PostQuitMessage
GetParent
SetCursor
GetCursorPos
PostMessageA
SendMessageA
DefWindowProcA
SystemParametersInfoA
IsWindow
GetForegroundWindow
GetWindowTextA
EnableWindow
MessageBoxA
GetDC
CheckDlgButton
SendDlgItemMessageA
SetSysColors
KillTimer
EndPaint
SetFocus
SetWindowTextA
BeginPaint
wsprintfA
ChangeDisplaySettingsA
LoadStringA

opengl32

glDisable
glFinish
glViewport
glScissor
wglCreateContext
wglMakeCurrent
wglDeleteContext
glMaterialfv
glMaterialf
glGetString
glTexGeni
glTexGenfv
wglGetProcAddress
glGetIntegerv
glPixelStorei
glGenTextures
glBindTexture
glTexImage2D
glCallLists
glGenLists
wglUseFontOutlinesA
glDeleteLists
glClear
glRotatef
glFlush
glMatrixMode
glLoadIdentity
glTranslatef
glTexParameteri
glTexEnvi
wglGetCurrentDC
glLightfv
glLightModelfv
glLightModeli
glCullFace
glClearColor
glDepthFunc
glEnable

comdlg32

ChooseFontA
GetOpenFileNameA

comctl32

ord17

glu32

gluScaleImage
gluPerspective

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
stdole.tlb
stdole2.tlb
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
stdole32.tlb
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
sulogo.sys
tdc.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

f693e8aa0f48b1d1d303cf7ba8bb9243

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapAlloc
GetProcessHeap
HeapFree
HeapReAlloc
GetCurrentThreadId
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameA
WaitForSingleObject
lstrcpyA
MultiByteToWideChar
LoadLibraryExA
FindResourceA
LoadResource
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
DebugBreak
lstrcmpiA
lstrlenW
GetLastError
lstrcatA
DisableThreadLibraryCalls
GetUserDefaultLCID
LeaveCriticalSection
WideCharToMultiByte
SizeofResource
FreeLibrary
lstrcpynA
lstrlenA

user32

wsprintfA
RegisterClassExA
LoadCursorA
CallWindowProcA
PtInRect
UnionRect
GetClassInfoExA
SetWindowLongA
GetDC
ReleaseDC
BeginPaint
GetClientRect
EndPaint
InvalidateRect
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
SetWindowPos
IsWindow
DestroyWindow
ShowWindow
GetParent
SetFocus
PeekMessageA
MsgWaitForMultipleObjects
TranslateMessage
DispatchMessageA
CharNextA
CreateWindowExA
DefWindowProcA

ole32

CreateBindCtx
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CreateOleAdviseHolder
CoCreateInstance
OleLoadFromStream
OleSaveToStream
WriteClassStm
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc

oleaut32

SystemTimeToVariantTime
SysStringByteLen
VarI4FromStr
VarBstrFromBool
VariantChangeTypeEx
UnRegisterTypeLi
OleCreatePropertyFrame
LoadTypeLi
RegisterTypeLi
SetErrorInfo
VariantCopy
SysAllocStringLen
SysStringLen
SysFreeString
SysAllocString
SysAllocStringByteLen
LoadRegTypeLi
VariantInit
VariantClear
VariantChangeType

advapi32

RegQueryInfoKeyA
RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyExA

gdi32

LPtoDP
SetMapMode
CreateDCA
DeleteDC
SetViewportOrgEx
RestoreDC
GetDeviceCaps
SaveDC
SetWindowOrgEx
CreateRectRgnIndirect

urlmon

CreateURLMoniker
RegisterBindStatusCallback
CoInternetParseUrl
CoInternetCreateSecurityManager

wininet

InternetGetConnectedState

shlwapi

StrCmpIW
StrCmpNIW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
the60'~1.pal
the60'~1.scr
.exe windows:1 windows x86 arch:x86

2c57396fbae506b8ff866090f2d1bd3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
DeleteCriticalSection
GetCommandLineA
GetModuleHandleA
lstrcmpA
GetTickCount
lstrlenA
GetModuleFileNameA
GetStartupInfoA
ExitProcess
UnhandledExceptionFilter
GlobalReAlloc
GetLastError
WriteFile
_lopen
_lread
_lclose
FindResourceA
SizeofResource
LoadResource
LockResource
GlobalLock
FreeResource
LoadLibraryA
GetProcAddress
FreeLibrary
Sleep
GlobalAlloc
GlobalUnlock
GlobalHandle
GlobalFree
InitializeCriticalSection
CloseHandle
SetThreadPriority
EnterCriticalSection
LeaveCriticalSection
lstrcatA
RaiseException
SetStdHandle
ReadFile
SetFilePointer
WideCharToMultiByte
VirtualAlloc
MultiByteToWideChar
GetFileType
GetStdHandle
FlushFileBuffers
VirtualFree
GetCPInfo
GetOEMCP
GetACP
TlsGetValue
TlsAlloc
GetVersion
GetEnvironmentStrings
ExitThread
TlsSetValue
GetCurrentThreadId
RtlUnwind

user32

FindWindowA
GetSystemMetrics
DialogBoxParamA
GetMessageA
CharNextA
PostQuitMessage
PostMessageA
GetCursorPos
GetSysColor
DrawTextA
GetDesktopWindow
SetTimer
GetClientRect
FillRect
KillTimer
DefWindowProcA
WinHelpA
SendMessageA
ScreenToClient
GetSystemMenu
TranslateMessage
SetCursor
GetForegroundWindow
CreateWindowExA
GetDlgItem
IsWindow
EnableWindow
GetDlgItemInt
GetDlgItemTextA
IsDlgButtonChecked
CheckRadioButton
SetDlgItemInt
SendDlgItemMessageA
SetDlgItemTextA
CheckDlgButton
wsprintfA
GetWindowRect
SetWindowPos
GetDC
CreateDialogParamA
ShowWindow
UpdateWindow
GetParent
SystemParametersInfoA
DestroyWindow
ReleaseDC
LoadStringA
MessageBoxA
CheckMenuItem
ClientToScreen
TrackPopupMenu
BeginPaint
EndPaint
PtInRect
CreatePopupMenu
DestroyMenu
SetRect
CallWindowProcA
SendNotifyMessageA
RegisterClassA
GetWindowLongA
InvalidateRect
SetWindowTextA
LoadIconA
SetWindowLongA
AppendMenuA
PeekMessageA
MessageBeep
DispatchMessageA
SetForegroundWindow
MsgWaitForMultipleObjects
EndDialog
GetWindowTextA

gdi32

GetStockObject
SetBkColor
SetTextColor
DeleteDC
DeleteObject
SelectPalette
StretchDIBits
Rectangle
CreateSolidBrush
CreatePatternBrush
CreateBitmap
GdiFlush
BitBlt
SetStretchBltMode
SelectObject
RealizePalette
CreateCompatibleBitmap
CreateCompatibleDC
StretchBlt
SetDIBColorTable
CreateDIBSection
GetPaletteEntries
SetPixel
CreatePalette
GetSystemPaletteEntries
SetDIBitsToDevice
GetDIBits
GetObjectA
GetDeviceCaps

advapi32

RegQueryValueExA
RegOpenKeyA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

ShellAboutA

comctl32

PropertySheetA

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
the60'~1.the
thegol~1.pal
thegol~1.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
thegol~1.the
travel.scr
.exe windows:1 windows x86 arch:x86

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt20

_except_handler3
_controlfp
__p__fmode
__p__commode
_adjust_fdiv
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atol
sprintf
strrchr
atoi
??3@YAXPAX@Z
??2@YAPAXI@Z
sscanf
strlen
strcpy

kernel32

LoadResource
GetStartupInfoA
Sleep
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
GlobalAlloc
FreeResource
LockResource
CreateFileA
SizeofResource
FindResourceA
_lclose
_lread
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc
ExitProcess
UnhandledExceptionFilter
GetCommandLineA

user32

TranslateMessage
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
PostQuitMessage
BeginPaint
CheckMenuItem
EndPaint
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
GetWindowLongA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
SetWindowPos
DestroyMenu
DestroyWindow
SetRect
GetParent
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
DispatchMessageA
GetMessageA
InvalidateRect
LoadStringA
CreateWindowExA

gdi32

GetDIBits
GetObjectA
CreatePalette
SelectPalette
RealizePalette
GetStockObject
SetStretchBltMode
GetSystemPaletteEntries
SetDIBitsToDevice
GetDeviceCaps

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

comctl32

ord17
PropertySheetA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 88B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
travel~1.pal
travel~1.the
tsp3216l.tsp
.dll windows:4 windows x86 arch:x86

ffdf4efb3aab983b787568777ef2f8cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Callback28
SUnMapLS_IP_EBP_16
SMapLS_IP_EBP_20
SUnMapLS_IP_EBP_20
SMapLS_IP_EBP_24
SUnMapLS_IP_EBP_24
SMapLS_IP_EBP_28
SUnMapLS_IP_EBP_28
SMapLS_IP_EBP_32
SUnMapLS_IP_EBP_32
SMapLS_IP_EBP_36
SUnMapLS_IP_EBP_36
SMapLS_IP_EBP_40
SUnMapLS_IP_EBP_40
SMapLS
SUnMapLS
SMapLS_IP_EBP_8
ThunkConnect32
SMapLS_IP_EBP_16
SUnMapLS_IP_EBP_12
LocalAlloc
LocalFree
WideCharToMultiByte
GetACP
lstrcpyA
K32Thk1632Prolog
DeleteCriticalSection
ord36
Sleep
CreateThread
DuplicateHandle
GetCurrentProcess
RtlMoveMemory
MultiByteToWideChar
lstrlenA
K32Thk1632Epilog
SMapLS_IP_EBP_12
SUnMapLS_IP_EBP_8
InitializeCriticalSection

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

wow32

WOWGetVDMPointer

user32

SendMessageA
RegisterClassA
DispatchMessageA
TranslateMessage
GetMessageA
CreateWindowExA
PostQuitMessage
wsprintfA
PostMessageA
DefWindowProcA
DestroyWindow

Exports

Exports

TSPI_lineAccept
TSPI_lineAddToConference
TSPI_lineAnswer
TSPI_lineBlindTransfer
TSPI_lineClose
TSPI_lineCloseCall
TSPI_lineCompleteCall
TSPI_lineCompleteTransfer
TSPI_lineConditionalMediaDetection
TSPI_lineConfigDialog
TSPI_lineConfigDialogEdit
TSPI_lineDevSpecific
TSPI_lineDevSpecificFeature
TSPI_lineDial
TSPI_lineDrop
TSPI_lineDropNoOwner
TSPI_lineDropOnClose
TSPI_lineForward
TSPI_lineGatherDigits
TSPI_lineGenerateDigits
TSPI_lineGenerateTone
TSPI_lineGetAddressCaps
TSPI_lineGetAddressID
TSPI_lineGetAddressStatus
TSPI_lineGetCallAddressID
TSPI_lineGetCallInfo
TSPI_lineGetCallStatus
TSPI_lineGetDevCaps
TSPI_lineGetDevConfig
TSPI_lineGetExtensionID
TSPI_lineGetID
TSPI_lineGetIcon
TSPI_lineGetLineDevStatus
TSPI_lineGetNumAddressIDs
TSPI_lineHold
TSPI_lineMakeCall
TSPI_lineMonitorDigits
TSPI_lineMonitorMedia
TSPI_lineMonitorTones
TSPI_lineNegotiateExtVersion
TSPI_lineNegotiateTSPIVersion
TSPI_lineOpen
TSPI_linePark
TSPI_linePickup
TSPI_linePrepareAddToConference
TSPI_lineRedirect
TSPI_lineReleaseUserUserInfo
TSPI_lineRemoveFromConference
TSPI_lineSecureCall
TSPI_lineSelectExtVersion
TSPI_lineSendUserUserInfo
TSPI_lineSetAppSpecific
TSPI_lineSetCallParams
TSPI_lineSetCurrentLocation
TSPI_lineSetDefaultMediaDetection
TSPI_lineSetDevConfig
TSPI_lineSetMediaControl
TSPI_lineSetMediaMode
TSPI_lineSetStatusMessages
TSPI_lineSetTerminal
TSPI_lineSetupConference
TSPI_lineSetupTransfer
TSPI_lineSwapHold
TSPI_lineUncompleteCall
TSPI_lineUnhold
TSPI_lineUnpark
TSPI_phoneClose
TSPI_phoneConfigDialog
TSPI_phoneDevSpecific
TSPI_phoneGetButtonInfo
TSPI_phoneGetData
TSPI_phoneGetDevCaps
TSPI_phoneGetDisplay
TSPI_phoneGetExtensionID
TSPI_phoneGetGain
TSPI_phoneGetHookSwitch
TSPI_phoneGetID
TSPI_phoneGetIcon
TSPI_phoneGetLamp
TSPI_phoneGetRing
TSPI_phoneGetStatus
TSPI_phoneGetVolume
TSPI_phoneNegotiateExtVersion
TSPI_phoneNegotiateTSPIVersion
TSPI_phoneOpen
TSPI_phoneSelectExtVersion
TSPI_phoneSetButtonInfo
TSPI_phoneSetData
TSPI_phoneSetDisplay
TSPI_phoneSetGain
TSPI_phoneSetHookSwitch
TSPI_phoneSetLamp
TSPI_phoneSetRing
TSPI_phoneSetStatusMessages
TSPI_phoneSetVolume
TSPI_providerCreateLineDevice
TSPI_providerCreatePhoneDevice
TSPI_providerEnumDevices
TSPI_providerGenericDialogData
TSPI_providerInit
TSPI_providerInstall
TSPI_providerShutdown
TSPI_providerUIIdentify
TUISPI_lineConfigDialog
TUISPI_lineConfigDialogEdit
TUISPI_phoneConfigDialog
TUISPI_providerConfig
TUISPI_providerInstall
TUISPI_providerRemove
Tapi32_ThunkData32
TapiFThk_ThunkData32
TapiThk_ThunkData32
Xxx16BitProvider

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 433B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
txtview.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

ddb53cea361e355bf7436dbc43cea317

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord6364
ord4472
ord5498
ord2982
ord3147
ord3259
ord4465
ord3136
ord3278
ord2985
ord3081
ord2976
ord3353
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3681
ord743
ord446
ord599
ord1177
ord1243
ord1210
ord1168
ord1226
ord2439
ord1693
ord5618
ord994
ord4342
ord4687
ord4639
ord5674
ord2156
ord4856
ord4920
ord6002
ord2137
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord2998
ord5649
ord4113
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord4659
ord4909
ord4908
ord4668
ord4667
ord4666
ord4648
ord4689
ord5023
ord4654
ord4643
ord4354
ord4780
ord4649
ord4637
ord4636
ord5060
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4738
ord4409
ord4603
ord5008
ord4415
ord4992
ord4979
ord2488
ord3404
ord4539
ord2954
ord2384
ord6370
ord2983
ord3148
ord3260
ord4466
ord3269
ord2986
ord3080
ord4081
ord4624
ord5825
ord3396
ord3731
ord6055
ord4078
ord1776
ord4407
ord5241
ord3326
ord6365
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord823
ord3402
ord4627
ord3708
ord723
ord781
ord818
ord808
ord800
ord3946
ord540
ord567
ord423
ord2753
ord2541
ord4949
ord3873
ord3876
ord798
ord5448
ord531
ord3127
ord3616
ord1997
ord858
ord5710
ord2763
ord3176
ord5651
ord5194
ord533
ord860
ord350
ord3126
ord3613
ord3663
ord6134
ord5937
ord2111
ord981
ord2121
ord4459
ord4299
ord5033
ord6392
ord3499
ord2515
ord355
ord5981
ord4996
ord641
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2724
ord4079
ord4698
ord5307
ord5289
ord5714
ord3952
ord3401
ord3670
ord815
ord561
ord6354
ord1216
ord1227
ord1892
ord4252
ord1212
ord4570
ord4672
ord4843
ord5011
ord5265
ord4376
ord4853
ord4998
ord4713
ord2514
ord6052
ord1775
ord6371
ord5286
ord4438
ord3279
ord4625
ord4425
ord746
ord449
ord2278
ord2687
ord2486
ord4249
ord1877
ord825
ord5163
ord2385
ord3262
ord1575
ord342
ord1182
ord1577
ord1253
ord1197
ord1570
ord1255
ord1578
ord826
ord1131
ord1132
ord1116
ord6412
ord269
ord1176
ord600

msvcrt

_adjust_fdiv
__CxxFrameHandler
_EH_prolog
__dllonexit
_onexit
??1type_info@@UAE@XZ
free
_initterm
malloc

kernel32

lstrcpynA
LocalFree
LocalAlloc
Sleep
GetVersion
GlobalFree
GlobalAlloc

user32

EnableWindow
SendMessageA
GetWindowRect
GetSysColor
RedrawWindow

oleaut32

LoadRegTypeLi

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
underw~1.scr
.exe windows:4 windows x86 arch:x86

cc304bc6759fded9d1319da92b5558b7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt40

_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_except_handler3
__setusermatherr
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
memcpy
atoi
strcpy
atol
sprintf
strrchr
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler
sscanf
strlen

comctl32

ord17
PropertySheetA

kernel32

GlobalAlloc
CreateFileA
FreeResource
LockResource
GetCommandLineA
ExitProcess
UnhandledExceptionFilter
GetTickCount
GetProcAddress
LoadLibraryA
SetLastError
GetModuleHandleA
GlobalFree
GlobalHandle
GlobalUnlock
FreeLibrary
GlobalLock
_lread
GetStartupInfoA
Sleep
LoadResource
SizeofResource
FindResourceA
_lclose
_lopen
CloseHandle
WriteFile
GetLastError
GlobalReAlloc

user32

PostQuitMessage
EndPaint
BeginPaint
CheckMenuItem
TrackPopupMenu
ClientToScreen
DefWindowProcA
MessageBoxA
SendMessageA
ReleaseDC
GetDC
ShowWindow
LoadIconA
GetDlgItem
CheckDlgButton
SetWindowTextA
ScreenToClient
GetWindowRect
GetSystemMenu
GetWindowTextA
SendNotifyMessageA
IsDlgButtonChecked
WinHelpA
CallWindowProcA
RegisterClassA
SystemParametersInfoA
GetForegroundWindow
SetCursor
GetWindowLongA
DispatchMessageA
TranslateMessage
GetMessageA
FindWindowA
GetSystemMetrics
GetClientRect
DialogBoxParamA
PeekMessageA
CharNextA
SetWindowLongA
PtInRect
UpdateWindow
CreatePopupMenu
AppendMenuA
GetSysColor
CreateWindowExA
SetWindowPos
DestroyMenu
DestroyWindow
SetForegroundWindow
EndDialog
IsWindow
PostMessageA
GetCursorPos
GetDesktopWindow
InvalidateRect
LoadStringA
GetParent
SetRect

gdi32

CreatePalette
GetObjectA
GetDeviceCaps
GetDIBits
GetSystemPaletteEntries
RealizePalette
GetStockObject
SetStretchBltMode
SetDIBitsToDevice
SelectPalette

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

ShellAboutA

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
underw~1.the
update.sys
.sys windows:4 windows x86 arch:x86

4cb40e800d9c5e8aa0c7922132fc0b15

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ZwSetValueKey
ZwOpenKey
RtlAppendUnicodeStringToString
RtlCopyUnicodeString
RtlInitUnicodeString
RtlIntegerToUnicodeString
ZwClose

Sections

.text
Size: 944B - Virtual size: 943B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 272B - Virtual size: 266B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 896B - Virtual size: 884B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 112B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
vid.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

5d5a868911a8ef5d4bcd05e377d33f9e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord858
ord5572
ord2915
ord4083
ord1835
ord5296
ord800
ord540
ord1194
ord535
ord941
ord537
ord435
ord823
ord1200
ord926
ord939
ord539
ord860
ord861
ord825
ord1265
ord815
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord4079
ord4698
ord5307
ord5289
ord5714
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3401
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3670
ord561
ord4160
ord3952
ord2724
ord6354
ord599
ord1216
ord1168
ord1227
ord1243
ord1877
ord4249
ord2486
ord4006
ord2687
ord6364
ord3326
ord6365
ord4472
ord5498
ord3278
ord3353
ord3681
ord446
ord743
ord1177
ord1226
ord1210
ord2439
ord1693
ord5618
ord994
ord4342
ord4687
ord4639
ord5674
ord2156
ord4856
ord4920
ord6002
ord2137
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord2998
ord5649
ord4113
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord4659
ord4909
ord4908
ord4668
ord4667
ord4666
ord1807
ord1881
ord6159
ord4654
ord4643
ord4354
ord4780
ord4649
ord4637
ord4636
ord5060
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4738
ord4409
ord4603
ord5008
ord4992
ord4979
ord2488
ord3404
ord4539
ord3663
ord6055
ord4078
ord1776
ord4407
ord5241
ord2384
ord5163
ord6370
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord2983
ord3148
ord3260
ord4466
ord2986
ord3080
ord4081
ord4624
ord5825
ord723
ord2652
ord3237
ord1608
ord1269
ord2393
ord3811
ord2636
ord3946
ord2640
ord2623
ord1669
ord423
ord4415
ord2379
ord4502
ord1574
ord2860
ord3003
ord4791
ord5033
ord5917
ord2541
ord4949
ord2795
ord2794
ord536
ord641
ord2514
ord324
ord5492
ord6030
ord4025
ord2614
ord5026
ord3203
ord5984
ord2727
ord2730
ord2729
ord3829
ord3258
ord1799
ord614
ord290
ord4003
ord4570
ord4672
ord4843
ord5011
ord5265
ord4376
ord4853
ord4998
ord4713
ord6052
ord1775
ord2385
ord6371
ord5286
ord4438
ord3279
ord4625
ord4425
ord449
ord1892
ord4252
ord1212
ord746
ord2278
ord3130
ord3676
ord5651
ord1601
ord1884
ord5297
ord350
ord4689
ord5023
ord4648
ord2954
ord342
ord6412
ord1575
ord269
ord826
ord600
ord1578
ord1255
ord1570
ord1176
ord1253
ord1131
ord1132
ord1116
ord1197
ord1577
ord1182

msvcrt

wcslen
_CxxThrowException
wcsncpy
_adjust_fdiv
_EH_prolog
__CxxFrameHandler
??1type_info@@UAE@XZ
__dllonexit
malloc
_onexit
free
_initterm
sprintf

kernel32

FormatMessageA
GetUserDefaultLCID
Sleep
lstrlenW
LocalFree
LocalAlloc
GetSystemDefaultLCID

user32

InvalidateRect
FillRect
EnableWindow
CopyRect
PostMessageA
IsWindow
GetWindowRect
RegisterWindowMessageA

gdi32

GetTextExtentPointA
CreateSolidBrush

ole32

CoCreateInstance

oleaut32

DispInvoke
LoadRegTypeLi
SysReAllocString
GetErrorInfo
CreateErrorInfo
SysFreeString
DispGetIDsOfNames
SetErrorInfo

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
window~1.pal
window~1.scr
.exe windows:1 windows x86 arch:x86

3ba1e3b876055acbcd62c11fbb81c935

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetModuleHandleA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetLocalTime
CreateThread
lstrcmpiA
lstrcmpA
lstrlenA
GetModuleFileNameA
lstrcatA
GlobalReAlloc
GetLastError
CreateFileA
WriteFile
_lopen
_lread
_lclose
FindResourceA
SizeofResource
LoadResource
LockResource
FreeResource
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalHandle
GlobalFree
LoadLibraryA
DeleteCriticalSection
SetThreadPriority
Sleep
CloseHandle
FlushFileBuffers
ReadFile
SetStdHandle
MultiByteToWideChar
WideCharToMultiByte
SetFilePointer
VirtualAlloc
VirtualFree
GetFileType
GetStdHandle
GetCPInfo
GetOEMCP
GetTickCount
GetACP
TlsGetValue
TlsAlloc
GetVersion
GetEnvironmentStrings
RtlUnwind
ExitThread
TlsSetValue
GetCurrentThreadId
GetCommandLineA
GetStartupInfoA
ExitProcess
UnhandledExceptionFilter

user32

GetSystemMenu
GetWindowRect
ScreenToClient
SetWindowPos
GetParent
InvalidateRect
SetWindowTextA
CheckDlgButton
GetDlgItem
ShowWindow
SendMessageA
GetWindowLongA
GetWindowTextA
DefWindowProcA
SendNotifyMessageA
MessageBeep
MsgWaitForMultipleObjects
PeekMessageA
DispatchMessageA
GetDesktopWindow
SetTimer
PostMessageA
GetCursorPos
GetDC
GetClientRect
FillRect
ReleaseDC
SetWindowLongA
IsDlgButtonChecked
KillTimer
PostQuitMessage
LoadStringA
WinHelpA
CallWindowProcA
RegisterClassA
SetRect
DrawTextA
SendDlgItemMessageA
SetForegroundWindow
EndDialog
EnableWindow
GetDlgItemInt
CheckRadioButton
SetDlgItemInt
DestroyWindow
ClientToScreen
TrackPopupMenu
CheckMenuItem
BeginPaint
PtInRect
UpdateWindow
CreatePopupMenu
GetSysColor
CreateWindowExA
DestroyMenu
IsWindow
AppendMenuA
LoadIconA
EndPaint
MessageBoxA
SystemParametersInfoA
GetForegroundWindow
SetCursor
TranslateMessage
GetMessageA
FindWindowA
GetSystemMetrics
DialogBoxParamA
CharNextA
wsprintfA

gdi32

GetDeviceCaps
GetStockObject
SetStretchBltMode
RealizePalette
SelectPalette
GetDIBits
GetObjectA
CreatePalette
GetSystemPaletteEntries
SetBkColor
SetTextColor
DeleteDC
DeleteObject
StretchDIBits
SelectObject
Rectangle
CreateSolidBrush
CreatePatternBrush
CreateBitmap
GdiFlush
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
StretchBlt
CreatePolygonRgn
SelectClipRgn
OffsetRgn
SetDIBitsToDevice

advapi32

RegQueryValueExA
RegOpenKeyA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shell32

ShellAboutA

comctl32

PropertySheetA
ord17

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 273B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 51B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
window~1.the
window~2.the

Sharing

General

Malware Config

Signatures

Files

1a21b243b77960a2d042f4b7d50cbfe1

Headers

File Characteristics

Imports

kernel32

gdi32

user32

shlwapi

Sections

.text Size: 41KB - Virtual size: 40KB

.data Size: 1024B - Virtual size: 668B

.rsrc Size: 30KB - Virtual size: 29KB

cc304bc6759fded9d1319da92b5558b7

Headers

File Characteristics

Imports

msvcrt40

comctl32

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 512B - Virtual size: 104B

.data Size: 1024B - Virtual size: 720B

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 11KB - Virtual size: 11KB

.reloc Size: 2KB - Virtual size: 1KB

11f8dc2825f89479b9a7c21a7da39c50

Headers

File Characteristics

Imports

user32

kernel32

gdi32

comctl32

comdlg32

advapi32

Sections

.text Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 41KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

3d0f5316748dc286dca7f5474033cb1b

Headers

File Characteristics

Imports

msvcrt20

kernel32

user32

gdi32

advapi32

shell32

comctl32

Sections

.text Size: 18KB - Virtual size: 17KB

.bss Size: - Virtual size: 88B

.rdata Size: 512B - Virtual size: 64B

.data Size: 1024B - Virtual size: 612B

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 11KB - Virtual size: 11KB

.reloc Size: 2KB - Virtual size: 1KB

Headers

File Characteristics

Exports

Exports

Sections

_LTEXT Size: 48B - Virtual size: 46B

.text Size: 64B - Virtual size: 62B

.rdata Size: 48B - Virtual size: 48B

.data Size: 16B - Virtual size: 1B

PAGE Size: 16B - Virtual size: 5B

.text
Size: 41KB - Virtual size: 40KB

.data
Size: 1024B - Virtual size: 668B

.rsrc
Size: 30KB - Virtual size: 29KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 512B - Virtual size: 104B

.data
Size: 1024B - Virtual size: 720B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 11KB - Virtual size: 11KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 41KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 18KB - Virtual size: 17KB

.bss
Size: - Virtual size: 88B

.rdata
Size: 512B - Virtual size: 64B

.data
Size: 1024B - Virtual size: 612B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 11KB - Virtual size: 11KB

.reloc
Size: 2KB - Virtual size: 1KB

_LTEXT
Size: 48B - Virtual size: 46B

.text
Size: 64B - Virtual size: 62B

.rdata
Size: 48B - Virtual size: 48B

.data
Size: 16B - Virtual size: 1B

PAGE
Size: 16B - Virtual size: 5B

.edata
Size: 112B - Virtual size: 99B

.rsrc
Size: 928B - Virtual size: 928B

.reloc
Size: 32B - Virtual size: 24B

.text
Size: 18KB - Virtual size: 17KB

.bss
Size: - Virtual size: 88B

.rdata
Size: 512B - Virtual size: 64B

.data
Size: 1024B - Virtual size: 612B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 11KB - Virtual size: 11KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 512B - Virtual size: 104B

.data
Size: 1024B - Virtual size: 720B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 11KB - Virtual size: 11KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 18KB - Virtual size: 17KB

.bss
Size: - Virtual size: 88B

.rdata
Size: 512B - Virtual size: 64B

.data
Size: 1024B - Virtual size: 612B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 11KB - Virtual size: 11KB

.reloc
Size: 2KB - Virtual size: 1KB