popup
Static | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

Static Analysis

PE Compile Time

2092-10-03 00:27:49

PDB Path

imapi.pdb

PE Imphash

fbe80419e46c9924d8dcc683c1646838

Sections

Name Virtual Address Virtual Size Size of Raw Data Entropy
.text 0x00001000 0x0001888c 0x00018a00 6.22914316007
.rdata 0x0001a000 0x00006086 0x00006200 4.15443924338
.data 0x00021000 0x00001b88 0x00001600 4.15556128185
.pdata 0x00023000 0x00000d50 0x00000e00 4.86236573083
.rsrc 0x00024000 0x000010f0 0x00001200 4.79367890139
.reloc 0x00026000 0x000003b4 0x00000400 5.15940717959

Resources

Name Offset Size Language Sub-language File type
MUI 0x00025018 0x000000d8 LANG_ENGLISH SUBLANG_ENGLISH_US data
REGISTRY 0x00024ce0 0x00000338 LANG_ENGLISH SUBLANG_ENGLISH_US ASCII text, with CRLF line terminators
REGISTRY 0x00024ce0 0x00000338 LANG_ENGLISH SUBLANG_ENGLISH_US ASCII text, with CRLF line terminators
REGISTRY 0x00024ce0 0x00000338 LANG_ENGLISH SUBLANG_ENGLISH_US ASCII text, with CRLF line terminators
REGISTRY 0x00024ce0 0x00000338 LANG_ENGLISH SUBLANG_ENGLISH_US ASCII text, with CRLF line terminators
RT_VERSION 0x000241a0 0x00000384 LANG_ENGLISH SUBLANG_ENGLISH_US data

Imports

Library msvcrt.dll:
0x18001b028 _CxxThrowException
0x18001b030 __RTDynamicCast
0x18001b038 memcmp
0x18001b040 memcpy
0x18001b048 memset
0x18001b050 _onexit
0x18001b058 __dllonexit
0x18001b060 _unlock
0x18001b068 _lock
0x18001b070 ??1type_info@@UEAA@XZ
0x18001b078 realloc
0x18001b080 _errno
0x18001b088 _initterm
0x18001b090 _amsg_exit
0x18001b098 _XcptFilter
0x18001b0a0 _callnewh
0x18001b0a8 _wremove
0x18001b0b0 _vsnwprintf
0x18001b0b8 wcscat_s
0x18001b0c0 wcscpy_s
0x18001b0c8 wcsstr
0x18001b0d0 wcsncpy_s
0x18001b0d8 malloc
0x18001b0e0 free
0x18001b0e8 _purecall
0x18001b0f0 memcpy_s
0x18001b0f8 __CxxFrameHandler3
0x18001b100 __C_specific_handler
0x18001b108 wcscmp
Library ntdll.dll:
0x18001b118 RtlLookupFunctionEntry
0x18001b120 RtlVirtualUnwind
0x18001b128 RtlCaptureContext
Library USER32.dll:
0x18001b010 UnregisterClassA
0x18001b018 CharNextW
Library ADVAPI32.dll:
0x18001ad50 UnregisterTraceGuids
0x18001ad58 RegisterTraceGuidsW
0x18001ad60 GetTraceEnableFlags
0x18001ad68 GetTraceEnableLevel
0x18001ad70 GetTraceLoggerHandle
0x18001ad78 RegQueryValueExW
0x18001ad80 TraceMessage
0x18001ad88 RegCloseKey
0x18001ad90 RegQueryInfoKeyW
0x18001ad98 RegCreateKeyExW
0x18001ada0 RegEnumKeyExW
0x18001ada8 RegSetValueExW
0x18001adb0 RegOpenKeyExW
0x18001adb8 RegDeleteValueW
Library ole32.dll:
0x18001b138 CoTaskMemFree
0x18001b140 CoTaskMemAlloc
0x18001b148 PropVariantClear
0x18001b150 StringFromGUID2
0x18001b158 CreateStreamOnHGlobal
0x18001b160 CoTaskMemRealloc
0x18001b168 CoCreateInstance
Library OLEAUT32.dll:
0x18001af60 LoadRegTypeLib
0x18001af68 SafeArrayGetElement
0x18001af70 SafeArrayGetUBound
0x18001af78 SafeArrayGetLBound
0x18001af80 VarBstrCat
0x18001af88 SysAllocStringByteLen
0x18001af90 SysStringByteLen
0x18001af98 GetErrorInfo
0x18001afa0 DispCallFunc
0x18001afa8 VariantClear
0x18001afb0 LoadTypeLib
0x18001afb8 SafeArrayDestroy
0x18001afc0 SysAllocStringLen
0x18001afc8 SysStringLen
0x18001afd0 SysAllocString
0x18001afd8 SysFreeString
0x18001afe0 VarUI4FromStr
0x18001afe8 SystemTimeToVariantTime
0x18001aff0 VariantInit
Library SHLWAPI.dll:
0x18001b000 SHCreateStreamOnFileEx
Library KERNEL32.dll:
0x18001adc8 GetTempFileNameW
0x18001add0 GetVolumeInformationW
0x18001add8 CreateMutexW
0x18001ade0 SetEvent
0x18001ade8 LocalFree
0x18001adf0 Sleep
0x18001adf8 UnhandledExceptionFilter
0x18001ae08 GetCurrentProcess
0x18001ae10 TerminateProcess
0x18001ae18 ReleaseSRWLockExclusive
0x18001ae20 AcquireSRWLockExclusive
0x18001ae28 WakeAllConditionVariable
0x18001ae38 QueryPerformanceCounter
0x18001ae40 GetCurrentProcessId
0x18001ae48 GetCurrentThreadId
0x18001ae50 GetSystemTimeAsFileTime
0x18001ae58 GetTickCount
0x18001ae60 OutputDebugStringA
0x18001ae68 ResetEvent
0x18001ae70 ReleaseMutex
0x18001ae78 SizeofResource
0x18001ae80 FileTimeToSystemTime
0x18001ae88 GlobalFree
0x18001ae90 GlobalAlloc
0x18001ae98 GetDateFormatW
0x18001aea8 CreateEventW
0x18001aeb0 CloseHandle
0x18001aec0 WaitForSingleObject
0x18001aec8 LoadLibraryExW
0x18001aed0 lstrcmpiW
0x18001aed8 FreeLibrary
0x18001aee0 GetModuleHandleW
0x18001aee8 DeleteCriticalSection
0x18001aef0 GetProcAddress
0x18001aef8 LoadResource
0x18001af00 FindResourceExW
0x18001af08 RaiseException
0x18001af10 GetLastError
0x18001af18 MultiByteToWideChar
0x18001af28 LeaveCriticalSection
0x18001af30 GetModuleFileNameW
0x18001af38 EnterCriticalSection
0x18001af40 GetTempPathW
0x18001af48 LocalAlloc
0x18001af50 WideCharToMultiByte

Exports

Ordinal Address Name
1 0x180007750 DllCanUnloadNow
2 0x180007770 DllGetClassObject
3 0x1800078a0 DllRegisterServer
4 0x1800079d0 DllUnregisterServer
No antivirus signatures available.
No IRMA results available.