ieframe.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
12332b233a186e5d0c7c97949b3562f031ccd2b4a8984fad27de9b13d232a2fdN.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
0 signatures
120 seconds
General
-
Target
12332b233a186e5d0c7c97949b3562f031ccd2b4a8984fad27de9b13d232a2fdN
-
Size
7.4MB
-
MD5
f4940cc67b256a8388ff8955fd26e960
-
SHA1
a80d79e50a79255a16e5d96ce0ea517263633ecc
-
SHA256
12332b233a186e5d0c7c97949b3562f031ccd2b4a8984fad27de9b13d232a2fd
-
SHA512
d49163b5fc6f3fad78856924e1dbd3d3da55559914078862aead78c589ea1fc2df78321e1e06b94267c6d6d9fa272c12065a95567319c356f4abef493502282e
-
SSDEEP
98304:MKMqgwk68sbLmzABPCAn9kS5CmVdAAHJRTYY/bJBuM1g:M5qy6HmzAB6Wzv3AAHHfuM1
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 12332b233a186e5d0c7c97949b3562f031ccd2b4a8984fad27de9b13d232a2fdN
Files
-
12332b233a186e5d0c7c97949b3562f031ccd2b4a8984fad27de9b13d232a2fdN.dll regsvr32 windows:10 windows x64 arch:x64
4f265693e6b5446ec0664362b4d74d3e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
PDB Paths
Imports
shlwapi
ord158
StrRetToStrW
StrCmpNA
PathGetArgsW
StrStrA
ord596
SHRegCreateUSKeyW
SHRegWriteUSValueW
PathMakeSystemFolderW
UrlIsNoHistoryW
ord433
ColorHLSToRGB
ColorRGBToHLS
ord225
PathMakePrettyW
PathIsContentTypeW
GetMenuPosFromID
PathCompactPathExW
PathCompactPathW
StrFromTimeIntervalW
StrFormatKBSizeW
StrRetToBSTR
StrRetToBufW
AssocQueryStringByKeyW
StrFormatByteSizeW
AssocGetPerceivedType
UrlCanonicalizeA
AssocCreate
AssocIsDangerous
ord168
ord172
PathIsDirectoryW
PathIsNetworkPathW
AssocQueryKeyW
AssocQueryStringW
ord354
PathUndecorateW
ord388
ord157
SHCreateShellPalette
msvcrt
sprintf_s
rand_s
wcsncpy_s
_vsnwprintf_s
strnlen
fgets
_wfopen
fclose
isalpha
??1type_info@@UEAA@XZ
?terminate@@YAXXZ
_onexit
__dllonexit
_unlock
_vsnprintf
_wcsnicmp
__C_specific_handler
memcpy_s
bsearch_s
strtol
_vsnwprintf
acosf
ceil
ceilf
cosf
expf
floor
floorf
memcmp
memset
powf
sin
sinf
sqrt
sqrtf
strcmp
_ui64tow_s
iswalnum
_snwscanf_s
_lock
_initterm
_amsg_exit
_XcptFilter
memmove
memcpy
_CxxThrowException
?what@exception@@UEBAPEBDXZ
??0exception@@QEAA@AEBQEBDH@Z
??0exception@@QEAA@AEBQEBD@Z
bsearch
_vsnprintf_s
??0exception@@QEAA@AEBV0@@Z
??0exception@@QEAA@XZ
??1exception@@UEAA@XZ
wcstol
_wcslwr
strrchr
wcscspn
__CxxFrameHandler3
_stricmp
atoi
isxdigit
towlower
qsort
_wtol
_wtof
_wmakepath_s
_wsplitpath_s
_ultow_s
swscanf_s
iswxdigit
_difftime64
_time64
_i64tow_s
wcstoul
isalnum
isdigit
srand
rand
_wcstoui64
strchr
strncpy_s
realloc
iswdigit
iswascii
iswalpha
wcspbrk
wcscat_s
wcscpy_s
wcsrchr
malloc
strstr
_wcsicmp
wcstok_s
_isnan
_wcsdup
wcscmp
toupper
wcsncmp
iswspace
_itow_s
_wtoi
wcschr
wcsstr
wcsnlen
free
memmove_s
_errno
kernel32
QueueUserWorkItem
GetModuleHandleExA
LoadLibraryA
GetThreadPriority
IsDBCSLeadByte
CompareFileTime
GetCurrentProcess
DuplicateHandle
SetEvent
MoveFileExW
CreateFileW
OpenProcess
OpenThread
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
Thread32First
Thread32Next
Sleep
CreateProcessW
UnmapViewOfFile
OpenEventW
DeleteFileW
RemoveDirectoryW
CreateDirectoryW
GetFileAttributesExW
FindFirstFileW
GlobalAlloc
GlobalFree
GetShortPathNameW
GetLongPathNameW
GlobalLock
GlobalUnlock
GetSystemDirectoryA
lstrcmpiA
AcquireSRWLockShared
ReleaseSRWLockShared
SetThreadpoolTimer
WaitForThreadpoolTimerCallbacks
CloseThreadpoolTimer
CreateThreadpoolTimer
GetFullPathNameW
GlobalSize
GetSystemDirectoryW
CreateMutexW
WideCharToMultiByte
MultiByteToWideChar
CopyFileW
GetTempPathW
GetTempFileNameW
GetFileSize
ReadFile
GetPackagesByPackageFamily
SystemTimeToFileTime
GetSystemDefaultLCID
GetVersionExW
GetProductInfo
LocalReAlloc
GetSystemTimeAsFileTime
InitializeCriticalSection
CompareStringOrdinal
GetWindowsDirectoryW
ExpandEnvironmentStringsW
FindFirstStreamW
FindNextStreamW
FindClose
OpenMutexW
CreateEventW
ResetEvent
WriteFile
CreateThread
CompareStringW
GetSystemInfo
GetSystemDefaultLocaleName
GetUserDefaultLocaleName
MulDiv
GlobalReAlloc
GetUserDefaultLCID
SetCurrentDirectoryW
RegisterApplicationRestart
RaiseException
InitializeSRWLock
GetTickCount64
TryEnterCriticalSection
WaitForMultipleObjectsEx
InitializeCriticalSectionAndSpinCount
QueryFullProcessImageNameW
GetExitCodeThread
FindFirstFileExW
FindNextFileW
GetProcessIdOfThread
SetThreadPriority
SetFileTime
GetFinalPathNameByHandleW
ReOpenFile
GetFileAttributesW
GetPrivateProfileIntW
CreateEventExW
GetSystemTime
HeapDestroy
VirtualProtect
VirtualAlloc
VirtualQuery
GetLocalTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDateFormatW
IsWow64Process
GetSystemWow64DirectoryA
LocalSize
CreateMutexA
SetThreadExecutionState
GetFileSizeEx
TerminateThread
TlsGetValue
GetComputerNameW
GetProcessId
WaitForMultipleObjects
CreateFileMappingW
MapViewOfFile
GetTimeFormatW
HeapReAlloc
MoveFileW
SetFileAttributesW
GetThreadUILanguage
EncodePointer
WerRegisterCustomMetadata
SetUnhandledExceptionFilter
SetProcessShutdownParameters
GetExitCodeProcess
TlsSetValue
HeapSetInformation
CreateThreadpoolWork
SubmitThreadpoolWork
CloseThreadpoolWork
lstrcmpiW
lstrcmpW
QueryPerformanceFrequency
QueryPerformanceCounter
FindResourceW
LoadResource
LockResource
SizeofResource
CreateSemaphoreW
VerSetConditionMask
VerifyVersionInfoW
GetStringScripts
CreateWaitableTimerW
SetWaitableTimerEx
CancelWaitableTimer
LocaleNameToLCID
GetSystemPreferredUILanguages
ResolveLocaleName
GetUserDefaultLangID
GetSystemDefaultLangID
SetEnvironmentVariableW
ResumeThread
TerminateProcess
CheckRemoteDebuggerPresent
GetGeoInfoW
GetUserGeoID
lstrlenW
lstrlenA
GetFileInformationByHandle
SetWaitableTimer
WaitForThreadpoolWorkCallbacks
GetAtomNameW
InitOnceBeginInitialize
InitOnceComplete
RtlCaptureStackBackTrace
GetThreadLocale
GetDriveTypeW
EnumUILanguagesW
SystemTimeToTzSpecificLocalTime
GetDateFormatEx
GetTimeFormatEx
SetFilePointer
FindNLSStringEx
GetNumberFormatEx
CreateEventA
RtlCaptureContext
GetNativeSystemInfo
GetVersionExA
OpenFileMappingW
GetCommandLineW
WritePrivateProfileStringW
GetSystemWow64DirectoryW
GetLocaleInfoW
CreateTimerQueueTimer
DeleteTimerQueueTimer
GetPrivateProfileStringW
LoadLibraryW
LoadLibraryExA
VirtualFree
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
WakeAllConditionVariable
SleepConditionVariableSRW
GetCurrentThread
FlushViewOfFile
FlushFileBuffers
SetEndOfFile
LCMapStringW
GetDiskFreeSpaceExW
CompareStringEx
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
RegisterWaitForSingleObject
InitializeSListHead
UnlockFile
LockFile
SetFileInformationByHandle
GetUserPreferredUILanguages
K32EnumProcessModules
CreateProcessA
WinExec
K32EnumProcesses
Wow64RevertWow64FsRedirection
K32GetModuleFileNameExW
Wow64DisableWow64FsRedirection
GetLogicalDriveStringsW
QueryDosDeviceW
GetLocaleInfoEx
GetCurrentDirectoryW
FreeResource
GetTimeZoneInformationForYear
TzSpecificLocalTimeToSystemTime
VirtualQueryEx
SetThreadPreferredUILanguages
GetThreadPreferredUILanguages
FreeLibraryAndExitThread
GetVersion
FindAtomW
DeleteAtom
AddAtomW
SetProcessWorkingSetSizeEx
FindResourceExW
SearchPathW
CopyFile2
WritePrivateProfileSectionW
CreateFile2
GetUserDefaultUILanguage
GlobalDeleteAtom
GlobalAddAtomW
GetTickCount
ReleaseActCtx
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GetModuleFileNameW
LocalAlloc
LocalFree
DecodePointer
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitOnceExecuteOnce
IsDebuggerPresent
DebugBreak
TlsFree
FreeLibrary
GetModuleHandleW
GetProcessHeap
GetCurrentProcessId
DeleteCriticalSection
CreateMutexExW
HeapAlloc
CloseHandle
OpenSemaphoreW
TlsAlloc
WaitForSingleObjectEx
DisableThreadLibraryCalls
OutputDebugStringW
GetLastError
FormatMessageW
GetACP
ReleaseMutex
GetCurrentThreadId
WaitForSingleObject
InitializeCriticalSectionEx
LeaveCriticalSection
GetModuleHandleExW
ReleaseSemaphore
EnterCriticalSection
SetLastError
HeapFree
CreateSemaphoreExW
GetModuleFileNameA
LoadLibraryExW
GetProcAddress
LocalFileTimeToFileTime
GetStringTypeW
SetErrorMode
GetEnvironmentVariableW
PackageNameAndPublisherIdFromFamilyName
GetFileTime
api-ms-win-downlevel-advapi32-l1-1-0
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
GetSecurityDescriptorDacl
RegDeleteTreeW
TraceEvent
EventProviderEnabled
EventRegister
EventWriteEx
RegCloseKey
MakeAbsoluteSD
RegCreateKeyExW
RegOpenKeyExW
OpenThreadToken
RegOpenCurrentUser
RegSetValueExW
RegDeleteValueW
GetAclInformation
RegQueryValueExW
InitializeAcl
RegGetValueW
AddAce
DeleteAce
RegEnumValueA
RegEnumValueW
OpenProcessToken
EventWriteTransfer
EventUnregister
RegEnumKeyExW
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegQueryInfoKeyW
RegOpenKeyExA
GetTokenInformation
IsValidSid
EventWrite
CheckTokenMembership
CreateProcessAsUserW
GetLengthSid
GetSecurityDescriptorSacl
GetAce
CopySid
GetKernelObjectSecurity
AddAccessAllowedAceEx
api-ms-win-downlevel-user32-l1-1-0
CharLowerW
CharUpperW
CharNextW
CharPrevW
LoadStringA
LoadStringW
CharUpperA
CharLowerBuffW
IsCharAlphaNumericW
api-ms-win-downlevel-shlwapi-l1-1-0
UrlCombineA
StrCmpNIA
PathFindFileNameA
StrCmpNIW
PathIsRootW
PathIsUNCServerShareW
PathIsUNCServerW
PathIsFileSpecW
PathIsRelativeW
UrlApplySchemeW
StrPBrkW
PathFindNextComponentW
SHRegEnumUSKeyW
SHLoadIndirectString
SHRegQueryUSValueW
StrCmpW
StrStrIW
PathUnquoteSpacesW
StrCmpIW
PathRemoveFileSpecA
PathRemoveFileSpecW
StrChrNW
PathFindExtensionW
StrStrIA
StrSpnW
ParseURLW
UrlCreateFromPathW
PathSearchAndQualifyW
PathParseIconLocationW
PathFileExistsW
UrlGetPartW
PathIsPrefixW
PathRemoveBackslashW
UrlIsW
UrlCombineW
StrTrimA
StrCmpCW
PathRemoveBlanksW
PathStripPathW
StrChrW
HashData
PathQuoteSpacesW
StrCmpNICA
PathFindExtensionA
IsInternetESCEnabled
PathStripToRootW
StrDupW
StrCmpLogicalW
PathRemoveExtensionW
StrTrimW
StrCmpNW
StrRStrIW
StrStrW
StrChrIW
StrToIntW
PathIsURLW
UrlGetLocationW
UrlEscapeW
PathCreateFromUrlAlloc
SHRegGetBoolUSValueW
SHRegOpenUSKeyW
SHRegDeleteUSValueW
SHRegCloseUSKey
UrlCanonicalizeW
PathFindFileNameW
StrDupA
QISearch
PathCreateFromUrlW
UrlUnescapeW
PathGetDriveNumberW
GetAcceptLanguagesW
StrRChrW
StrCmpNCW
StrToIntExW
StrToInt64ExW
StrCmpNICW
SHRegSetUSValueW
StrCmpCA
UrlUnescapeA
SHRegGetUSValueW
PathIsUNCW
SHRegOpenUSKeyA
api-ms-win-downlevel-shell32-l1-1-0
GetCurrentProcessExplicitAppUserModelID
CommandLineToArgvW
SetCurrentProcessExplicitAppUserModelID
api-ms-win-downlevel-version-l1-1-0
GetFileVersionInfoExW
VerQueryValueW
GetFileVersionInfoSizeExW
api-ms-win-downlevel-normaliz-l1-1-0
IdnToAscii
ntdll
RtlUnicodeStringToAnsiString
RtlFreeAnsiString
NtQuerySystemInformation
RtlPublishWnfStateData
NtClose
NtQueryLicenseValue
RtlIpv4AddressToStringExW
RtlIpv4StringToAddressExW
RtlIpv6StringToAddressExW
RtlIpv6AddressToStringExW
advapi32
EventSetInformation
IsTextUnicode
SetNamedSecurityInfoW
GetNamedSecurityInfoW
RegQueryValueW
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
RegSetKeyValueW
RegOpenKeyW
CryptGenRandom
RegCreateKeyA
RegDeleteKeyW
CryptAcquireContextW
CryptReleaseContext
RegEnumKeyW
RegDeleteKeyA
CryptSetHashParam
CryptVerifySignatureW
CryptDestroyKey
CryptEncrypt
CryptGetKeyParam
CryptDeriveKey
CryptSetKeyParam
GetSecurityInfo
SetSecurityInfo
gdi32
CreateSolidBrush
CreatePen
CreateDIBSection
CreateRectRgn
CreateFontW
LineTo
MoveToEx
Rectangle
CreatePalette
CreateFontIndirectA
GetObjectA
GetRgnBox
OffsetRgn
ExtCreateRegion
GetRegionData
RectVisible
GetDCBrushColor
GetDIBits
GetBrushOrgEx
DeleteEnhMetaFile
GetPixel
SetPixel
GdiTransparentBlt
GdiGradientFill
PlayEnhMetaFile
SetStretchBltMode
GdiAlphaBlend
GetCurrentObject
GetClipRgn
CreateHalftonePalette
CreatePolygonRgn
ExcludeClipRect
GetTextAlign
SetTextAlign
GetTextExtentPointW
SetViewportExtEx
CombineRgn
SetRectRgn
EqualRgn
PtInRegion
CreateRoundRectRgn
StretchBlt
GdiFlush
SetLayout
GetClipBox
SetDCPenColor
SetDCBrushColor
GetTextColor
GetBkMode
GetTextExtentExPointW
ExtTextOutW
CreateBitmap
OffsetWindowOrgEx
SelectClipRgn
GetLayout
CreatePatternBrush
CreateDIBPatternBrushPt
StretchDIBits
GetBkColor
SetBrushOrgEx
PatBlt
DeleteObject
SelectObject
GetTextExtentPoint32W
GetObjectW
GetDeviceCaps
SetBkColor
CreateFontIndirectW
GetTextMetricsW
SetTextColor
SetBkMode
TextOutW
DeleteDC
RestoreDC
SetViewportOrgEx
SetWindowOrgEx
SetMapMode
SaveDC
LPtoDP
CreateDCW
IntersectClipRect
CreateDCA
CreateEnhMetaFileA
CloseEnhMetaFile
CreateMetaFileW
SetWindowExtEx
CloseMetaFile
CreateRectRgnIndirect
GetStockObject
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetPaletteEntries
SetPaletteEntries
SelectPalette
RealizePalette
user32
CallNextHookEx
GetFocus
SetWindowsHookExW
InsertMenuW
SetMenuDefaultItem
GetClassNameW
GetPropW
SetDlgItemTextW
ShowWindow
SetFocus
GetWindowRect
SetWindowTextW
GetClientRect
GetWindowInfo
AdjustWindowRect
SetWindowPos
GetComboBoxInfo
MonitorFromWindow
GetMonitorInfoW
GetDlgItemTextW
SetPropW
RemovePropW
SetThreadDpiAwarenessContext
GetDesktopWindow
RegisterWindowMessageA
RegisterClassExW
ClientToScreen
MoveWindow
GetKeyState
TranslateMessage
DispatchMessageW
WaitMessage
GetAsyncKeyState
IsDialogMessageW
MapWindowPoints
DestroyIcon
CheckDlgButton
CopyIcon
InvalidateRect
LoadMenuW
SetMenuItemInfoW
TrackPopupMenu
GetDlgCtrlID
SetTimer
SetWindowLongW
GetShellWindow
SetForegroundWindow
GetLastActivePopup
MonitorFromRect
OffsetRect
IntersectRect
InsertMenuItemW
GetMessagePos
TrackPopupMenuEx
AppendMenuW
SetRectEmpty
IsRectEmpty
CheckRadioButton
GetSysColor
DrawIconEx
DeleteMenu
GetMenuItemID
WinHelpW
PeekMessageW
MsgWaitForMultipleObjectsEx
PostQuitMessage
GetMessageTime
AttachThreadInput
GetWindow
EndPaint
BeginPaint
DestroyAcceleratorTable
GetMessageW
TranslateAcceleratorW
CopyAcceleratorTableW
GetWindowTextW
MessageBeep
KillTimer
LoadAcceleratorsW
GetCursorPos
CreateMenu
CheckMenuRadioItem
UnionRect
PtInRect
CallWindowProcW
EqualRect
SetWindowRgn
ScreenToClient
GetDoubleClickTime
GetCapture
DrawTextW
SetClipboardViewer
ChangeClipboardChain
WindowFromPoint
GetClassInfoExW
wsprintfW
FillRect
GetWindowTextLengthW
GetSystemMenu
IsIconic
FlashWindowEx
GetClipboardFormatNameW
LockSetForegroundWindow
DdeCreateDataHandle
DdeQueryStringW
DdeGetData
GetForegroundWindow
DdeConnect
DdeClientTransaction
DdeDisconnect
DdeCreateStringHandleW
DdeFreeStringHandle
DdeFreeDataHandle
DdeInitializeW
DdeUninitialize
DdeNameService
SetCursorPos
SetCapture
ReleaseCapture
EnumWindows
GetActiveWindow
IsHungAppWindow
GetWindowLongPtrA
GetWindowDC
GetSysColorBrush
InflateRect
DrawFocusRect
TrackMouseEvent
SendInput
SetRect
UnhookWindowsHookEx
SetProcessDpiAwarenessContext
CopyImage
ShowOwnedPopups
PostThreadMessageW
GetWindowPlacement
MonitorFromPoint
CopyRect
GetTitleBarInfo
IsZoomed
EnumThreadWindows
GetKeyboardState
SetKeyboardState
PrintWindow
InSendMessage
GetMenuState
GetQueueStatus
RedrawWindow
WaitForInputIdle
ChildWindowFromPointEx
NotifyWinEvent
GetMessageExtraInfo
LoadBitmapW
SystemParametersInfoA
GetDialogBaseUnits
GetScrollInfo
SetScrollInfo
ShowScrollBar
SetScrollPos
GetLastInputInfo
SetWindowPlacement
ReplyMessage
AnimateWindow
SetActiveWindow
ChangeWindowMessageFilterEx
GetClassWord
EnumDesktopWindows
EnumDisplayMonitors
OpenClipboard
GetClipboardData
CloseClipboard
GetKeyboardLayout
GetDpiForWindow
GetDpiForSystem
SystemParametersInfoForDpi
GetSystemMetricsForDpi
FindWindowW
wvsprintfW
VkKeyScanExW
DrawEdge
GetClipCursor
GetNextDlgTabItem
GetMenuStringW
AdjustWindowRectEx
GetUpdateRect
ValidateRect
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
UpdateLayeredWindow
SetClipboardData
DrawTextExW
ShowCaret
HideCaret
GetCaretBlinkTime
EndMenu
ScrollWindowEx
UpdateWindow
SetLayeredWindowAttributes
GetRawInputData
DrawFrameControl
RegisterRawInputDevices
GetCursor
SendNotifyMessageW
SetMenu
ChildWindowFromPoint
VkKeyScanW
GetMenuItemRect
GetTopWindow
GetDlgItemInt
SetDlgItemInt
EnumDisplaySettingsW
EmptyClipboard
CharPrevA
CharNextA
GetSubMenu
GetMenuItemCount
GetMenuItemInfoW
EnumChildWindows
PostMessageW
GetParent
DestroyMenu
SendMessageW
ReleaseDC
GetDC
GetSystemMetrics
UnregisterClassW
SendDlgItemMessageW
LoadIconW
RegisterWindowMessageW
LoadImageW
GetWindowLongW
IsWindow
FindWindowExW
SendMessageTimeoutW
IsWindowEnabled
GetWindowThreadProcessId
RegisterClipboardFormatW
IsWindowVisible
AllowSetForegroundWindow
EnableWindow
GetAncestor
SetWindowLongA
GetWindowLongA
SendMessageA
SetParent
SystemParametersInfoW
FindWindowA
CreateWindowExW
DefWindowProcW
GetMenuDefaultItem
CreatePopupMenu
LoadCursorW
SetCursor
IsChild
MsgWaitForMultipleObjects
DialogBoxParamW
MessageBoxW
IsDlgButtonChecked
GetWindowLongPtrW
SetWindowLongPtrW
EndDialog
GetDlgItem
RegisterClassW
GetClassInfoW
CheckMenuItem
CreateDialogParamW
MessageBoxIndirectW
MapVirtualKeyW
GetKeyNameTextW
FrameRect
GetIconInfo
LoadCursorFromFileW
CreateIconIndirect
IsProcessDPIAware
UnregisterPowerSettingNotification
RegisterPowerSettingNotification
GetClassLongW
GetWindowRgnBox
SubtractRect
CreateCaret
DestroyCaret
SetCaretPos
GetPropA
SetPropA
RemovePropA
DestroyWindow
EnableMenuItem
GetGUIThreadInfo
RemoveMenu
ole32
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleSave
StgCreateDocfileOnILockBytes
CoInitialize
CreateBindCtx
ReleaseStgMedium
CoAllowSetForegroundWindow
OleRegGetUserType
MkParseDisplayName
OleGetClipboard
OleInitialize
DoDragDrop
OleUninitialize
OleDraw
StgCreateDocfile
OleCreateFromData
OleRun
OleRegGetMiscStatus
CreateOleAdviseHolder
OleRegEnumVerbs
WriteClassStm
OleSaveToStream
OleLoadFromStream
CreateDataAdviseHolder
RevokeDragDrop
RegisterDragDrop
GetRunningObjectTable
OleSetClipboard
CoFileTimeNow
OleFlushClipboard
ReadClassStm
HBITMAP_UserSize
HBITMAP_UserMarshal
HBITMAP_UserUnmarshal
OleSetContainedObject
RoGetAgileReference
CoGetObject
PropVariantCopy
CoTaskMemRealloc
oleaut32
VarBstrCmp
VariantTimeToSystemTime
SysAllocString
LoadTypeLi
SystemTimeToVariantTime
VariantInit
SafeArrayRedim
SafeArrayCopy
OleCreatePropertyFrame
SafeArrayCreate
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetDim
OleCreatePropertyFrameIndirect
SafeArrayPutElement
SafeArrayGetVartype
SysAllocStringByteLen
VariantChangeType
LoadRegTypeLi
SafeArrayCreateVector
SafeArrayUnaccessData
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayAccessData
VariantCopyInd
VariantCopy
SysReAllocStringLen
SysStringByteLen
SysStringLen
SafeArrayDestroy
SysAllocStringLen
VariantClear
SysReAllocString
SysFreeString
shell32
DuplicateIcon
SHSetLocalizedName
SHGetFolderPathAndSubDirW
SHPathPrepareForWriteW
SHCreateItemFromParsingName
ord43
ExtractIconExW
ord17
ord18
SHBindToObject
SHOpenFolderAndSelectItems
ord19
ord190
ord98
SHGetPathFromIDListW
SHGetDesktopFolder
SHParseDisplayName
ord75
ord6
ord162
ord74
ord171
SHChangeNotify
SHGetSpecialFolderPathW
ShellExecuteExW
SHCreateItemInKnownFolder
ord85
SHAppBarMessage
ord2
ord4
ShellAboutW
SHGetKnownFolderIDList
ord644
SHGetKnownFolderItem
ord129
SHCreateItemWithParent
ord727
ord71
SHGetSpecialFolderLocation
SHCreateItemFromIDList
ord23
ord22
ord24
ord153
ord67
ord68
ord193
SHCreateShellItemArrayFromDataObject
ShellExecuteW
ord73
ord174
ord196
ord195
ExtractIconW
ord62
DragQueryFileW
SHCreateDirectoryExW
ord59
ord152
SHGetInstanceExplorer
SHCreateShellItemArrayFromIDLists
ord155
SHGetKnownFolderPath
SHBindToParent
ord88
SHGetFolderPathW
ord680
ord846
ord165
SHCreateDefaultExtractIcon
ord83
ord747
SHGetFolderLocation
ord27
ord134
ord16
ord136
Shell_GetCachedImageIndexW
SHGetFileInfoW
ord77
SHBrowseForFolderW
ord645
ShellExecuteA
ord25
SHFileOperationW
Shell_NotifyIconA
Shell_NotifyIconW
SHGetFolderPathA
ord100
ord176
ord21
ord132
ord147
ord102
ord164
SHOpenWithDialog
SHBindToFolderIDListParent
iertutil
ord683
ord36
ord174
ord72
ord62
ord231
ord157
ord50
ord311
ord312
ord314
ord175
ord230
ord201
ord205
ord97
ord88
ord86
ord700
ord73
ord137
ord93
ord209
ord87
ord685
ord39
ord608
ord609
ord466
ord82
ord660
ord202
ord66
ord60
ord203
ord204
ord206
IntlPercentEncodeNormalize
ord163
ord16
ord57
ord99
ord37
ord686
ord55
ResetIDNLanguageData
ord764
ord775
ord124
ord80
ord77
ord682
ord71
ord170
ord681
ord78
ord90
ord56
ord54
ord820
ord98
ord65
ord601
ord45
ord35
ord397
ord134
ord34
ord301
ord687
ord795
GetIUriPriv
ord794
CreateUriWithFragment
ord139
ord40
ord96
ord76
CreateIUriBuilder
ord679
ord91
ord89
ord302
ord28
ord17
ord24
ord100
ord49
ord59
ord155
ord67
ord916
ord150
ord701
ord95
ord70
ord61
ord64
ord68
ord63
ord140
ord153
ord20
ord151
ord793
ord398
ord166
ord792
ord790
ord58
ord138
ord32
ord172
ord594
ord597
ord654
ord282
ord663
ord84
ord690
ord656
ord281
ord675
ord661
ord665
ord651
ord655
ord657
ord30
ord44
ord304
ord303
ord42
CreateUri
ord81
ord74
ord79
ord85
ord796
ord688
ord232
ord791
ord652
ord662
ord668
ord300
ord799
ord46
ord41
ord33
ord684
ord658
ord672
ord677
ord653
ord669
ord678
ord670
ord650
rpcrt4
RpcServerInqBindingHandle
I_RpcBindingInqLocalClientPID
UuidCreateSequential
UuidEqual
netapi32
NetApiBufferFree
NetGetJoinInformation
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
api-ms-win-stateseparation-helpers-l1-1-0
GetPersistedRegistryLocationW
kernelbase
GetEffectivePackageStatusForUser
ChrCmpIW
GetSystemDefaultUILanguage
OpenGlobalizationUserSettingsKey
lstrcmpA
LCIDToLocaleName
GetStagedPackageOrigin
userenv
GetProfileType
winhttp
WinHttpGetIEProxyConfigForCurrentUser
Exports
Exports
AddUrlToFavorites
CORLockDownProvider
CreateExtensionGuidEnumerator
DllCanUnloadNow
DllGetClassObject
DllGetVersion
DllInstall
DllRegisterServer
DllUnregisterServer
DoAddToFavDlg
DoAddToFavDlgW
DoBlobDownload
DoFileDownload
DoFileDownloadEx
DoOrganizeFavDlg
DoOrganizeFavDlgW
DoPrivacyDlg
ExportCookieFileByProcessW
HlinkFindFrame
HlinkFrameNavigate
HlinkFrameNavigateNHL
IEAssociateThreadWithTab
IECancelSaveFile
IECreateDirectory
IECreateFile
IEDeleteFile
IEDisassociateThreadWithTab
IEFindFirstFile
IEGetFileAttributesEx
IEGetProtectedModeCookie
IEGetWriteableFolderPath
IEGetWriteableHKCU
IEInPrivateFilteringEnabled
IEIsInPrivateBrowsing
IEIsProtectedModeProcess
IEIsProtectedModeURL
IELaunchManageAddOnsUI
IELaunchURL
IEMoveFileEx
IERefreshElevationPolicy
IERegCreateKeyEx
IERegSetValueEx
IERegisterWritableRegistryKey
IERegisterWritableRegistryValue
IERemoveDirectory
IESaveFile
IESetProtectedModeCookie
IESetProtectedModeCookieEx
IEShowOpenFileDialog
IEShowSaveFileDialog
IETrackingProtectionEnabled
IEUnregisterWritableRegistry
ImportCookieFileByProcessW
ImportPrivacySettings
OpenURL
SHAddSubscribeFavorite
SetQueryNetSessionCount
SoftwareUpdateMessageBox
TriggerFileDownload
URLQualifyA
URLQualifyW
Sections
.text Size: 5.8MB - Virtual size: 5.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 19KB - Virtual size: 51KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 311KB - Virtual size: 311KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.didat Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
ExtTel Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 52KB - Virtual size: 51KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 80KB - Virtual size: 79KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ