Behavioral task
behavioral1
Sample
38ba4cda828900dd3b6c9da5429442fc5313de8b895cf082a7f799bdd6b249f7.exe
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral2
Sample
38ba4cda828900dd3b6c9da5429442fc5313de8b895cf082a7f799bdd6b249f7.exe
Resource
win10v2004-20241007-en
windows10-2004-x64
General
-
Target
38ba4cda828900dd3b6c9da5429442fc5313de8b895cf082a7f799bdd6b249f7
-
Size
4.3MB
-
MD5
63e41e5c56a88710a75028e4c353fc68
-
SHA1
e1c31a54afc79f6a6a7e0989519573ba52eacb85
-
SHA256
38ba4cda828900dd3b6c9da5429442fc5313de8b895cf082a7f799bdd6b249f7
-
SHA512
ce9c323c2637cc26c59ba051e80d6162d9d323f62395dcdd8075b70f46932b142b2475e10efedd62153f14d62c1f115896c529a01007b3d8cae7b707491da53d
-
SSDEEP
98304:BtFxnYLkgNwADERlvQC8DvCEqOqPU3mEHdgWjECT7a3Fuz4/Kb+DvnUhN+km:jStN1ERlvQHvCgL5jEwuFuz4SY/UA
Malware Config
Signatures
-
resource yara_rule sample vmprotect -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 38ba4cda828900dd3b6c9da5429442fc5313de8b895cf082a7f799bdd6b249f7
Files
-
38ba4cda828900dd3b6c9da5429442fc5313de8b895cf082a7f799bdd6b249f7.exe windows:5 windows x86 arch:x86
8405283340e1f6a2e1f322c83a284b7a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
tbeauty
DelTdxSkinTitle
TBeauty_CreateTdxTab
NewTdxSkinTitle
TBeauty_DeleteTdxTab
tcalc
?GetTypeNum@CMainCalcInterface@@QAEJXZ
?GetIndexNo@CMainCalcInterface@@QAEJEPAD@Z
?PopupDlg@CMainCalcInterface@@QAEHPAUHWND__@@EJ@Z
?GetCharFromPos@CMainCalcInterface@@QAEHPADJ@Z
?DelOneCalc@CMainCalcInterface@@QAEXAAPAVCCalcBase@@@Z
?NewOneCalc@CMainCalcInterface@@QAEPAVCCalcBase@@HJ@Z
?InitMain@CMainCalcInterface@@QAEHPAD000@Z
?RegisterCallBackFunc@CMainCalcInterface@@QAEXP6GJPADFFPAXFUtag_NTime@@2EK@ZP6GJ0F0JFFK@ZP6GJH1H1AAHJ@Z@Z
?SetSysLimited@CMainCalcInterface@@QAEXHHJJPAD0@Z
??0CMainCalcInterface@@QAE@XZ
??1CMainCalcInterface@@UAE@XZ
?AutoImportExport@CMainCalcInterface@@QAEHHPBD0AAH1@Z
?TCalc_SendAsyCall@@YAHPAXHAAI@Z
?GetIndexDateInfo@CMainCalcInterface@@QAEPAUtagIndexDateInfo@@EPAD@Z
?PopupMainDlg@CMainCalcInterface@@QAEHPAUHWND__@@@Z
?StopAllCalc@CMainCalcInterface@@QAEXXZ
?GetTreeInfo@CMainCalcInterface@@QAEJPAXHH@Z
?CompileGSIndex@CMainCalcInterface@@QAEHPAUtag_INDEXINFO@@PADHHK@Z
?GetTypeName@CMainCalcInterface@@QAEPADJ@Z
?GetIndexInfo@CMainCalcInterface@@QAEPAUtag_INDEXINFO@@EJ@Z
?GetIndexInfo@CMainCalcInterface@@QAEPAUtag_INDEXINFO@@EPAD@Z
??ACMainCalcInterface@@QAEPAUtag_INDEXINFO@@E@Z
?GetIndexNum@CMainCalcInterface@@QAEJE@Z
tcontrol
??1CMarkup@@QAE@XZ
?GetAttrib@CMarkup@@QBE?AV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@UMCD_CSTR@@@Z
?IntoElem@CMarkup@@QAE_NXZ
?FindChildElem@CMarkup@@QAE_NUMCD_CSTR@@@Z
?x_SetPos@CMarkup@@IAEXHHH@Z
?Load@CMarkup@@QAE_NUMCD_CSTR@@@Z
??0CMarkup@@QAE@XZ
??1CFastIni@@UAE@XZ
?WritePrivateProfileStringA@CFastIni@@QAEHPBD000@Z
?LoadIniFile@CFastIni@@QAEHPBD@Z
??0CFastIni@@QAE@H@Z
?GetPrivateProfileIntA@CFastIni@@QAEHPBD0H0@Z
?GetPrivateProfileStringA@CFastIni@@QAEKPBD00PADK0@Z
?FindElem@CMarkup@@QAE_NUMCD_CSTR@@@Z
?UnZipSomeFile_Detect@@YAHPBD0AAH11111111@Z
??1CIniFile@@UAE@XZ
?GetInt@CIniFile@@QAEHPBDH0@Z
?SetAppName@CIniFile@@QAEXV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@@Z
?SetFileName@CIniFile@@QAEXV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@@Z
??0CIniFile@@QAE@XZ
?PutInt@CIniFile@@QAEXHPBD0@Z
?Save@CMarkup@@QAE_NUMCD_CSTR@@@Z
?AddChildElem@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?SetAttrib@CMarkup@@QAE_NUMCD_CSTR@@HH@Z
?SetAttrib@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?InsertChildElem@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?InsertElem@CMarkup@@QAE_NUMCD_CSTR@@0H@Z
?IsFileDigitallySigned@@YAHPBD@Z
?SetUnhandledException@@YAXPBD@Z
?GetString@CIniFile@@QAEXAAV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@PBD11@Z
?OutOfElem@CMarkup@@QAE_NXZ
tdxasiocomm
?DelUserCommModule@@YAXAAPAVVUserComm@@@Z
?MakeUserCommModule@@YAPAVVUserComm@@XZ
viewthem
?INFO_ReqGGCjzx@@YAHFFPADFF@Z
?INFO_GetMineNum@@YAHXZ
?INFO_GetMineTitle@@YAHFPAUext_info_title@@@Z
?INFO_AskMineTitle@@YAHFPADFQAJ1@Z
?INFO_GetMetaItem@@YAHPAUMETA_ITEM_INFO@@H@Z
?INFO_GetGGCjzxTitle@@YAHFFPAUext_info_title@@@Z
?INFO_HasNewMsg@@YAHXZ
?INFO_GetStatus@@YAXPAD0PAG0@Z
?INFO_ShowDlg@@YAHPAUHWND__@@FFFPADFPAUext_info_title@@PAUext_ggbw_title@@FJ@Z
?INFO_GetGGBWTitle@@YAHFPADPAUext_ggbw_title@@F@Z
?INFO_Uninit@@YAHH@Z
?INFO_AskHqMineCount@@YAHHPAUsetcode_and_stockcode@@@Z
?INFO_AskZxgRealinfo@@YAXXZ
?INFO_OnTimer@@YAXH@Z
?INFO_GetRollTitle@@YAHFFPAUext_info_title@@AAH@Z
?INFO_GetTopTitle@@YAHFFPAUext_info_title@@@Z
?INFO_GetHqMineCount@@YAHPAPAUstock_mine_info@@@Z
?INFO_AllRegisterCallBack@@YAXP6GJPADFFPAXFUtag_NTime@@2EK@ZP6GJ0F0JFFK@ZP6GJH1H1AAHJ@Z@Z
?INFO_Init@@YAHPAUHWND__@@JPBD111IJHHH@Z
?INFO_ProcessMsg@@YAHFPAUHWND__@@IIJ@Z
?INFO_ShowFunc@@YAHPAUHWND__@@JFPADFPAUext_info_title@@PAUext_ggbw_title@@FF@Z
?INFO_Scheme@@YAXUtag_OP_Scheme_Color@@Utag_OP_Scheme_Font@@Utag_OP_Scheme_Menu@@H@Z
?INFO_SetLoginName@@YAXQADKD0@Z
?INFO_GetMiniHQStatus@@YAHJ@Z
?INFO_ShowMiniHQFace@@YAHHJ@Z
?INFO_DisConnect@@YAXXZ
?INFO_IsConnect@@YAHXZ
?INFO_Connect@@YAHH@Z
?INFO_ShowSoftManager@@YAHJJ@Z
?INFO_ShowMsgBox@@YAHJ@Z
?INFO_NotifyToMsgBox@@YAHPAD@Z
?INFO_NotifyToMsgBox@@YAHJJ@Z
?INFO_Gen_GetZXGTitle@@YAHPAUHWND__@@IIJJJH@Z
?INFO_Gen_GetCJZXContent@@YAHPAUHWND__@@IIJFFJJF@Z
?INFO_Gen_GetCJZXTitle@@YAHPAUHWND__@@IIJDDPADQAJFFH@Z
?INFO_Gen_GetZXGTitleResult@@YAHPADAAHK@Z
?INFO_Gen_GetCJZXContentResult@@YAHPAD@Z
?INFO_Gen_GetCJZXTitleResult@@YAHPADAAHK@Z
?INFO_Set_TPTQLAnswer@@YAXPBD0@Z
?INFO_SetOpenRqinfo@@YAXJKQAD@Z
?INFO_ShowGN@@YAHJPAXH0AAHJ@Z
?INFO_CarryoutFunc@@YAHHPAXH0AAHJ@Z
invest
?SetPrivateInvestDir@@YAXPAD@Z
?PopupInvestDlg@@YAXXZ
?SetCallBackToInvest@@YAXP6GJPBDFPADPAM2PAFNPAN4@Z@Z
tmarquee
NewMarquee
DelMarquee
tjyaid
GetWtDefInfoFromETradeXML_More
ProcessHostFromETradeXML
tqqcalc
TQQCalc_Yhbdl
TQQCalc_Lsbdl
TQQCalc_Index
mfc100
ord9976
ord8569
ord10159
ord10841
ord10633
ord9737
ord10567
ord9313
ord10613
ord9851
ord7941
ord2211
ord3582
ord7942
ord8513
ord7937
ord7590
ord3548
ord3892
ord3890
ord3489
ord5612
ord8391
ord5035
ord11114
ord6693
ord2119
ord1315
ord7474
ord3363
ord7871
ord12740
ord6699
ord9106
ord475
ord5871
ord8311
ord11044
ord8334
ord11117
ord3392
ord7523
ord4431
ord1524
ord12489
ord12487
ord5273
ord8442
ord10755
ord10749
ord3402
ord2855
ord6959
ord8392
ord8516
ord9741
ord8087
ord8003
ord1230
ord3636
ord12068
ord12806
ord1639
ord822
ord10510
ord7855
ord7513
ord12132
ord9855
ord2068
ord394
ord6510
ord6961
ord12862
ord13304
ord5688
ord12145
ord12148
ord4435
ord3491
ord1855
ord2770
ord12577
ord5580
ord12415
ord8271
ord10729
ord900
ord290
ord8504
ord947
ord384
ord5804
ord12532
ord2289
ord2753
ord9602
ord7458
ord6679
ord2759
ord5809
ord2291
ord10707
ord3641
ord7313
ord2756
ord4796
ord953
ord2031
ord6683
ord10705
ord6047
ord11943
ord12258
ord4738
ord3251
ord909
ord2514
ord325
ord12694
ord6131
ord865
ord6091
ord11057
ord8232
ord2305
ord2309
ord8090
ord2839
ord2937
ord3756
ord1264
ord10547
ord6822
ord2092
ord4265
ord4105
ord307
ord311
ord2020
ord6826
ord877
ord6103
ord10671
ord4397
ord2306
ord2282
ord8091
ord2842
ord2940
ord5167
ord2215
ord10727
ord12152
ord4514
ord5171
ord2902
ord6829
ord7266
ord9172
ord2864
ord3184
ord3183
ord11033
ord11009
ord12988
ord2896
ord2897
ord7302
ord1297
ord1890
ord1295
ord734
ord5782
ord2871
ord2870
ord3467
ord3671
ord7267
ord12630
ord7264
ord5663
ord12627
ord11792
ord6211
ord4888
ord7888
ord7891
ord12867
ord6968
ord4781
ord12280
ord7932
ord12864
ord12960
ord7473
ord3969
ord12342
ord12343
ord3901
ord2223
ord2233
ord11269
ord2877
ord3163
ord3164
ord1184
ord6690
ord6787
ord6786
ord6521
ord11512
ord4149
ord6386
ord826
ord6063
ord1231
ord4347
ord1977
ord1014
ord6379
ord1164
ord6344
ord6382
ord6515
ord2146
ord7192
ord465
ord5861
ord7618
ord11557
ord1711
ord11608
ord1232
ord827
ord6064
ord1426
ord12719
ord12094
ord1438
ord8511
ord3426
ord2185
ord4511
ord2574
ord9917
ord12090
ord301
ord11511
ord6867
ord1859
ord1168
ord715
ord8306
ord7588
ord4952
ord5501
ord1588
ord11534
ord4808
ord7853
ord2997
ord2998
ord7135
ord11805
ord2544
ord10920
ord14073
ord12267
ord9446
ord712
ord5999
ord11051
ord11112
ord7520
ord11362
ord10751
ord2805
ord2927
ord2804
ord713
ord6000
ord433
ord5833
ord11038
ord6144
ord12704
ord2219
ord3988
ord2777
ord12586
ord5598
ord6160
ord6584
ord6369
ord3360
ord8463
ord3242
ord722
ord6009
ord12002
ord1173
ord12718
ord12093
ord1260
ord6088
ord2836
ord2936
ord11916
ord13136
ord6083
ord2828
ord2935
ord3356
ord12664
ord6671
ord11917
ord13048
ord11471
ord5176
ord1878
ord12797
ord6838
ord12657
ord5843
ord2764
ord2917
ord996
ord5032
ord7490
ord6694
ord888
ord6112
ord11787
ord11180
ord13481
ord13484
ord13482
ord13485
ord13480
ord13483
ord7144
ord11413
ord13181
ord10922
ord14075
ord1732
ord7091
ord11806
ord3618
ord3676
ord8486
ord13299
ord7073
ord13301
ord11421
ord11420
ord2163
ord4724
ord13767
ord11726
ord7510
ord7584
ord1288
ord9449
ord10030
ord4078
ord6835
ord9185
ord9188
ord9192
ord921
ord11179
ord10967
ord345
ord1586
ord7576
ord4076
ord1951
ord306
ord11915
ord314
ord2371
ord6111
ord7835
ord1480
ord13125
ord1025
ord3490
ord5212
ord13316
ord11243
ord11240
ord4032
ord11242
ord10936
ord481
ord2528
ord11513
ord6195
ord13047
ord7012
ord8332
ord12479
ord5252
ord11042
ord3483
ord8308
ord5868
ord472
ord8441
ord10508
ord2778
ord10596
ord985
ord6696
ord869
ord1267
ord262
ord259
ord12720
ord11439
ord12716
ord383
ord3488
ord6314
ord11318
ord7322
ord13348
ord5639
ord12453
ord3373
ord3234
ord14120
ord868
ord10915
ord1266
ord2538
ord7211
ord4344
ord3475
ord7863
ord3746
ord5875
ord344
ord3619
ord337
ord796
ord11940
ord11939
ord8136
ord10006
ord5280
ord5786
ord4340
ord5776
ord6054
ord10146
ord2613
ord7861
ord3741
ord2744
ord8224
ord5784
ord4144
ord422
ord5627
ord13312
ord4589
ord11878
ord12857
ord11875
ord12847
ord7994
ord12850
ord12124
ord11949
ord11728
ord11812
ord11455
ord11437
ord12552
ord12099
ord5801
ord12473
ord12861
ord4131
ord4345
ord8554
ord7933
ord1906
ord1973
ord12344
ord13095
ord13306
ord2187
ord6969
ord13137
ord3970
ord3253
msvcr100
fclose
fread
_fsopen
fwrite
atoi
atof
_localtime64_s
_time64
fopen
isdigit
fflush
??0exception@std@@QAE@ABV01@@Z
free
isalnum
rewind
feof
fgets
isalpha
strrchr
strstr
qsort
_purecall
ldiv
_atoi64
memmove_s
memcpy_s
_CxxThrowException
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
memcpy
strncmp
memset
_strnicmp
_stricmp
_unlink
_read
_lseek
_sopen
_close
_write
_chsize
_fileno
_memicmp
_strlwr
_setmbcp
signal
atol
strncpy
sprintf
memmove
_timezone
_mbspbrk
fprintf
_ftol
toupper
wcslen
ceil
_time32
_gmtime32
__CxxFrameHandler3
_localtime32
_findfirst32
_findnext32
_mktime32
_filelength
_access
_strdup
_ismbcdigit
_mbsnbcmp
_mbclen
vsprintf
__CxxFrameHandler
_ismbcspace
_mbschr
_mbsinc
_mbsrev
_mbslwr
_mbsupr
_mbscspn
_mbsspn
realloc
isxdigit
_mbsrchr
fseek
_controlfp_s
_invoke_watson
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
__set_app_type
_fmode
_commode
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
_except_handler4_common
strpbrk
setlocale
wcstombs
floor
_getdrive
_getdiskfree
_beginthreadex
wcsncpy
wcsstr
_mbscmp
strftime
_strupr_s
_mbsstr
srand
sprintf_s
_vsnprintf
_CIexp
_snprintf
printf
_mbsnbicmp
sscanf
fputs
rand
_CIlog
_strupr
_findfirst64i32
_findnext64i32
_findclose
ftell
strchr
isprint
_mktime64
strtok
_CIpow
_CIsin
_CIcos
_CIsqrt
_CIlog10
_CIacos
_localtime64
malloc
kernel32
LoadLibraryA
GetProcAddress
SetLastError
DeactivateActCtx
GetLastError
ActivateActCtx
EnterCriticalSection
LeaveCriticalSection
GetPrivateProfileIntA
GetPrivateProfileStringA
OutputDebugStringA
WritePrivateProfileStringA
InterlockedExchange
CloseHandle
TerminateThread
InterlockedCompareExchange
WaitForSingleObject
GetCurrentThreadId
ReleaseMutex
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
CreateMutexA
Sleep
CreateThread
GlobalUnlock
GlobalLock
GlobalAlloc
CreateDirectoryA
CopyFileA
GetTickCount
lstrcmpiA
InterlockedIncrement
InterlockedDecrement
FindClose
FindNextFileA
FindFirstFileA
LoadLibraryExA
SetCurrentDirectoryA
SetEnvironmentVariableA
GetEnvironmentVariableA
DeleteFileA
IsDBCSLeadByte
InitializeCriticalSection
CreateEventA
SetEvent
MultiByteToWideChar
lstrlenA
FreeResource
LoadResource
SizeofResource
FindResourceA
WideCharToMultiByte
lstrlenW
GetSystemInfo
GetVersion
GetModuleFileNameA
Process32Next
Process32First
CreateToolhelp32Snapshot
GetLocalTime
WinExec
CreateProcessA
GetCurrentProcessId
GetPrivateProfileStructA
WritePrivateProfileStructA
lstrcatA
lstrcpyA
QueryDosDeviceA
GetLogicalDriveStringsA
OpenProcess
TerminateProcess
GetCurrentProcess
GetVersionExA
FreeLibrary
GlobalFree
lstrcpynA
InterlockedExchangeAdd
GetExitCodeThread
WaitForMultipleObjects
RemoveDirectoryA
LockResource
GetCurrentDirectoryA
GlobalSize
MulDiv
LocalFree
FormatMessageA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
ResetEvent
ResumeThread
GlobalReAlloc
GlobalMemoryStatusEx
IsDebuggerPresent
GetSystemTime
GetWindowsDirectoryA
GetFileAttributesA
LocalAlloc
EncodePointer
DecodePointer
HeapSetInformation
GetStartupInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
Module32Next
Module32First
GetPrivateProfileSectionA
CreateFileA
ReadFile
GetFileSize
LCMapStringA
GetThreadContext
SetThreadContext
WriteProcessMemory
SetFileAttributesA
FileTimeToSystemTime
ExitThread
GetModuleHandleA
VirtualProtect
ExitProcess
user32
IsIconic
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
CreatePopupMenu
LoadCursorW
InvalidateRect
SetWindowRgn
LoadBitmapA
SetRectEmpty
SetRect
DrawTextA
DrawTextExA
GrayStringA
SetCursor
KillTimer
GetDC
ReleaseDC
AppendMenuA
GetSubMenu
SetTimer
GetFocus
OffsetRect
GetWindowDC
SetCapture
GetCursorPos
ReleaseCapture
GetSystemMetrics
GetWindowLongA
GetWindow
IsChild
GetSystemMenu
MenuItemFromPoint
SetWindowLongA
GetKeyState
SetForegroundWindow
PtInRect
GetClientRect
GetWindowRect
InflateRect
LoadIconA
GetParent
EnableWindow
SendMessageA
LoadMenuW
TabbedTextOutA
GetKeyNameTextA
MapVirtualKeyExA
SetWindowPos
SetCursorPos
SetClassLongA
EnableMenuItem
MonitorFromWindow
GetKeyboardLayout
DestroyCaret
IsClipboardFormatAvailable
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
CreateCaret
ValidateRect
RegisterClassA
GetNextDlgTabItem
SetWindowsHookExA
CallNextHookEx
SetPropA
CallWindowProcA
GetMessagePos
GetPropA
RemovePropA
UnhookWindowsHookEx
WindowFromDC
GetIconInfo
GetMenuState
DeleteMenu
DrawEdge
DestroyMenu
LoadMenuA
IsMenu
DrawStateA
DestroyIcon
ShowScrollBar
GetWindowRgn
EnumDisplayMonitors
GetMonitorInfoA
UnregisterHotKey
RegisterHotKey
keybd_event
EnumWindows
GetPriorityClipboardFormat
GetClipboardData
GetClassInfoA
AdjustWindowRect
SetClipboardViewer
ChangeClipboardChain
GetActiveWindow
ShowWindow
ClipCursor
GetMenuItemRect
RemoveMenu
InsertMenuA
PostQuitMessage
DrawFocusRect
MessageBeep
WindowFromPoint
GetMenu
UpdateWindow
SetWindowTextW
SystemParametersInfoA
GetDesktopWindow
FindWindowA
IsRectEmpty
GetLastActivePopup
ToAsciiEx
GetForegroundWindow
GetWindowThreadProcessId
PeekMessageA
TranslateMessage
DispatchMessageA
RegisterWindowMessageA
FlashWindow
IsZoomed
GetMenuItemInfoA
SetMenuItemInfoA
GetClassNameA
IntersectRect
MessageBoxA
LoadImageA
SetActiveWindow
BringWindowToTop
LoadBitmapW
DrawIcon
GetAsyncKeyState
EndPaint
BeginPaint
wsprintfA
GetMenuStringA
GetMenuItemID
GetMenuItemCount
FrameRect
SetFocus
IsWindow
ModifyMenuA
EqualRect
ScreenToClient
CheckMenuItem
GetSysColorBrush
DefWindowProcA
LoadCursorA
RedrawWindow
LockWindowUpdate
GetDCEx
IsWindowVisible
ClientToScreen
FillRect
DrawIconEx
CopyRect
GetSysColor
LoadIconW
PostMessageA
gdi32
GetObjectA
DeleteObject
GetStockObject
PatBlt
SelectObject
GetTextExtentPoint32A
CreateFontA
StretchBlt
SetPixel
Arc
CreateSolidBrush
CreateRectRgn
CombineRgn
CreateFontIndirectA
CreatePen
Ellipse
BeginPath
EndPath
StrokeAndFillPath
CreateDIBSection
DeleteDC
CreateDCA
GetDeviceCaps
CreateEllipticRgn
FillRgn
Polyline
Rectangle
MoveToEx
GetTextMetricsA
PtInRegion
CreateBitmapIndirect
GetBitmapBits
OffsetRgn
GetBkMode
CreateBitmap
CreatePalette
ExtCreateRegion
RealizePalette
RoundRect
SetStretchBltMode
CreateDIBitmap
GetPixel
CreateHatchBrush
CreateRectRgnIndirect
GetNearestColor
SelectClipRgn
Pie
CreatePolygonRgn
FrameRgn
FillPath
PolyBezier
SetBitmapBits
ExtTextOutA
TextOutA
RectVisible
PtVisible
LPtoDP
DPtoLP
GetWindowExtEx
GetViewportExtEx
GetMapMode
GetBkColor
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
LineTo
Escape
msimg32
AlphaBlend
advapi32
AdjustTokenPrivileges
RegOpenKeyExA
RegQueryValueA
RegEnumValueA
OpenProcessToken
LookupPrivilegeValueA
RegQueryValueExA
RegCreateKeyExA
RegCreateKeyA
RegSetValueExA
RegCloseKey
shell32
DragAcceptFiles
SHGetFileInfoA
Shell_NotifyIconA
SHGetSpecialFolderPathA
SHChangeNotify
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA
comctl32
_TrackMouseEvent
ImageList_GetIconSize
ole32
CoInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CoCreateGuid
oleaut32
SysReAllocStringLen
OleLoadPicture
VariantInit
SysAllocStringLen
SysFreeString
gdiplus
GdipGetImageWidth
GdipDeletePen
GdipGetImageHeight
GdipDrawLinesI
GdipCreateLineBrushI
GdipSetLineGammaCorrection
GdiplusStartup
GdiplusShutdown
GdipDrawLines
GdipSetPenDashOffset
GdipSetPenDashStyle
GdipDeleteGraphics
GdipCreatePen1
GdipDrawImagePointsI
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipCloneImage
GdipCloneBrush
GdipDrawImageRectI
GdipFillPolygonI
GdipReleaseDC
GdipCreateSolidFill
GdipDisposeImage
GdipLoadImageFromFileICM
GdipLoadImageFromFile
GdipDeleteBrush
GdipAlloc
GdipFree
GdipDrawImageRectRect
GdipCreateFromHDC
wsock32
WSAGetLastError
ioctlsocket
ntohs
WSAStartup
WSACleanup
gethostbyname
select
recv
msvcp100
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?width@ios_base@std@@QBE_JXZ
?flags@ios_base@std@@QBEHXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?width@ios_base@std@@QAE_J_J@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_BADOFF@std@@3_JB
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?good@ios_base@std@@QBE_NXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setf@ios_base@std@@QAEHH@Z
?setf@ios_base@std@@QAEHHH@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
??0_Container_base12@std@@QAE@XZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
??1_Container_base12@std@@QAE@XZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
winmm
PlaySoundA
imm32
ImmIsIME
ImmSimulateHotKey
tgear
TimeToLong
GetSeason1st
GetMonth1st
GetFriday
RejustDateCtrlRange
AllTrim
AddLongTime
GetForwardDate
SubLongTime
IsValidFileName
TrimString
ParseMessageStr
tdx_filelength
MD5_String
LongToTime
AllTrimEx
ListCtrl2Txt
MD5_Buffer
TestFileExist
GetTdxPYStr
GetTDXProfileString
GetTDXProfileInt
CloseTdxIni
OpenTdxIni
TestFileExist_Ex
ClassXP
GetNetCardStr
BufToDouble
SoftKey_Switch
SoftKey_Close
SaveToBMPFile
UrlDecode
MakeBuildNo
DeleteMatchFile
GetFileMD5Str
IsRecentFile
CopyIt
Tdx_OutputDebugString
Base64Encode
RemoveReadOnlyStatus
AddLongTime_ExceptWeekend
TDXBeep
GetWeek
DeleteDirInfo
GetBackDate
GetCmdLine
FormatFloat_XS
GetYear1st
ribbonbar
?ReLoadUserCfg@@YAXJ@Z
?GetDataFromRibbonBarDLL@@YAXHPAK0PAXJ@Z
?RefreshAppFuncID@@YAXJ@Z
?SetKeyGuyFocusToRibbonBarDLL@@YAXPADJ@Z
?SetPathInfoToRibbonBarDLL@@YAXPBD00J@Z
?RegisterCallBackToRibbonBarDLL@@YAXP6GJPADFFPAXFUtag_NTime@@2EK@ZP6GJ0F0JFFK@ZP6GJH1H1AAHJ@Z@Z
?RibbonBarFunction@@YAHPAVVRibbonBar@@HIJ@Z
?OutLookBarFunction@@YAHPAVVOutLookBar@@HPBD@Z
?CreateRibbonBar@@YAPAVVRibbonBar@@PAUHWND__@@IIIIIPBD@Z
?CreateOutLookBar@@YAPAVVOutLookBar@@PAUHWND__@@IIIIIPBD@Z
?ExitRibbonBarDLL@@YAXXZ
?DeleteOutLookBar@@YAXAAPAVVOutLookBar@@@Z
?DeleteRibbonBar@@YAXAAPAVVRibbonBar@@@Z
?DeleteSControlBar@@YAXAAPAVVSControlBar@@@Z
?CreateSControlBar@@YAPAVVSControlBar@@PAUHWND__@@IIIIIPBD@Z
psapi
GetProcessImageFileNameA
EnumProcessModules
GetProcessMemoryInfo
GetModuleFileNameExA
ws2_32
getaddrinfo
htons
Sections
.text Size: - Virtual size: 7.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 1.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 7.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sdata Size: - Virtual size: 696KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 261KB - Virtual size: 3.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.vmp0 Size: - Virtual size: 83KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.vmp1 Size: 4.0MB - Virtual size: 4.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE