ScreenShot
| Created | 2021.06.25 15:29 | Machine | s1_win7_x6401 |
| Filename | download.aspx | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 13 detected (Malicious, FileRepMalware, Fsysna, Artemis, Generic ML PUA, BScope, Pbyy) | ||
| md5 | 465403a9d41d410ba34e029b0831f5d8 | ||
| sha256 | 8fad94268559bd4b13553e6ebcd81f00e6d86e408613cf62af4272309c374a34 | ||
| ssdeep | 393216:ecXjuwrSNfTedr5fLN3sKMtEMZcIuT1QdVaABLDE/y7ylRsFQH8:ecXyGmEzN3YfZc8a1kycy | ||
| imphash | ccb611d3d4afbe5c827456c6f70e8ec1 | ||
| impfuzzy | 384:IxNAyP6UjqnGmThlXvnarc6ni7aX/qQ/r/f:IxNAKCGmThlXPiP1zf | ||
Network IP location
Signature (18cnts)
| Level | Description |
|---|---|
| watch | Creates a windows hook that monitors keyboard input (keylogger) |
| watch | Creates an executable file in a user folder |
| watch | Detects Virtual Machines through their custom firmware |
| watch | File has been identified by 13 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Creates executable files on the filesystem |
| notice | Drops an executable to the user AppData folder |
| notice | Executes one or more WMI queries |
| notice | Executes one or more WMI queries which can be used to identify virtual machines |
| notice | Foreign language identified in PE resource |
| notice | One or more potentially interesting buffers were extracted |
| notice | Performs some HTTP requests |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | Checks amount of memory in system |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (15cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_2_Zero | Win32 Trojan Emotet | binaries (download) |
| danger | Win32_Trojan_Gen_1_0904B0_Zero | Win32 Trojan Emotet | binaries (download) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (download) |
| watch | ASPack_Zero | ASPack packed file | binaries (download) |
| watch | UPX_Zero | UPX packed file | binaries (download) |
| notice | anti_vm_detect | Possibly employs anti-virtualization techniques | binaries (download) |
| info | IsDLL | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | IsPE64 | (no description) | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (download) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
| info | Win32_Trojan_Gen_2_0904B0_Zero | Win32 Trojan Gen | binaries (download) |
Network (3cnts) ?
Suricata ids
PE API
IAT(Import Address Table) Library
WS2_32.dll
0x70bad0 getservbyname
0x70bad4 gethostbyname
0x70bad8 htonl
0x70badc WSACleanup
0x70bae0 WSAGetLastError
0x70bae4 socket
0x70bae8 __WSAFDIsSet
0x70baec select
0x70baf0 WSASetLastError
0x70baf4 recv
0x70baf8 send
0x70bafc ind
0x70bb00 closesocket
0x70bb04 connect
0x70bb08 getpeername
0x70bb0c getsockname
0x70bb10 getsockopt
0x70bb14 htons
0x70bb18 ntohs
0x70bb1c setsockopt
0x70bb20 WSAIoctl
0x70bb24 getaddrinfo
0x70bb28 freeaddrinfo
0x70bb2c accept
0x70bb30 listen
0x70bb34 recvfrom
0x70bb38 sendto
0x70bb3c ioctlsocket
0x70bb40 gethostname
0x70bb44 WSAStartup
0x70bb48 shutdown
WLDAP32.dll
0x70ba88 None
0x70ba8c None
0x70ba90 None
0x70ba94 None
0x70ba98 None
0x70ba9c None
0x70baa0 None
0x70baa4 None
0x70baa8 None
0x70baac None
0x70bab0 None
0x70bab4 None
0x70bab8 None
0x70babc None
0x70bac0 None
0x70bac4 None
0x70bac8 None
KERNEL32.dll
0x70b254 TlsSetValue
0x70b258 TlsFree
0x70b25c GlobalReAlloc
0x70b260 GlobalHandle
0x70b264 LocalReAlloc
0x70b268 CompareStringW
0x70b26c GetLocaleInfoW
0x70b270 GetSystemDefaultUILanguage
0x70b274 GetUserDefaultUILanguage
0x70b278 GlobalFlags
0x70b27c VirtualProtect
0x70b280 SetErrorMode
0x70b284 FindResourceExW
0x70b288 SearchPathW
0x70b28c GetProfileIntW
0x70b290 GetUserDefaultLCID
0x70b294 UnhandledExceptionFilter
0x70b298 SetUnhandledExceptionFilter
0x70b29c TerminateProcess
0x70b2a0 IsProcessorFeaturePresent
0x70b2a4 ResetEvent
0x70b2a8 WaitForSingleObjectEx
0x70b2ac QueryPerformanceCounter
0x70b2b0 TlsGetValue
0x70b2b4 InitializeSListHead
0x70b2b8 IsDebuggerPresent
0x70b2bc GetStartupInfoW
0x70b2c0 SetStdHandle
0x70b2c4 SetFilePointerEx
0x70b2c8 GetCommandLineW
0x70b2cc GetCommandLineA
0x70b2d0 GetModuleHandleExW
0x70b2d4 FreeLibraryAndExitThread
0x70b2d8 ExitThread
0x70b2dc CreateThread
0x70b2e0 RtlUnwind
0x70b2e4 GetStringTypeW
0x70b2e8 LCMapStringW
0x70b2ec GetCPInfo
0x70b2f0 GetFileTime
0x70b2f4 GetFileSizeEx
0x70b2f8 GetFileAttributesExW
0x70b2fc LocalAlloc
0x70b300 GetPrivateProfileIntW
0x70b304 TlsAlloc
0x70b308 GetSystemTimeAsFileTime
0x70b30c GlobalGetAtomNameW
0x70b310 GetCurrentThread
0x70b314 FileTimeToSystemTime
0x70b318 SystemTimeToTzSpecificLocalTime
0x70b31c FileTimeToLocalFileTime
0x70b320 ResumeThread
0x70b324 SetThreadPriority
0x70b328 CreateEventW
0x70b32c lstrcmpA
0x70b330 GetThreadLocale
0x70b334 lstrcmpiW
0x70b338 DuplicateHandle
0x70b33c UnlockFile
0x70b340 LockFile
0x70b344 GetFullPathNameW
0x70b348 FlushFileBuffers
0x70b34c GlobalSize
0x70b350 GetCurrentProcessId
0x70b354 GlobalFindAtomW
0x70b358 GlobalAddAtomW
0x70b35c LoadLibraryA
0x70b360 lstrcmpW
0x70b364 GlobalDeleteAtom
0x70b368 LoadLibraryExW
0x70b36c GetModuleHandleA
0x70b370 FreeResource
0x70b374 GetCurrentThreadId
0x70b378 EncodePointer
0x70b37c OutputDebugStringA
0x70b380 VerifyVersionInfoW
0x70b384 VerSetConditionMask
0x70b388 FormatMessageA
0x70b38c PeekNamedPipe
0x70b390 GetFileType
0x70b394 WaitForMultipleObjects
0x70b398 ExpandEnvironmentStringsA
0x70b39c GetTickCount
0x70b3a0 SleepEx
0x70b3a4 LeaveCriticalSection
0x70b3a8 EnterCriticalSection
0x70b3ac InitializeCriticalSection
0x70b3b0 SetEndOfFile
0x70b3b4 GetFileSize
0x70b3b8 SystemTimeToFileTime
0x70b3bc LocalFileTimeToFileTime
0x70b3c0 SetFilePointer
0x70b3c4 SetFileTime
0x70b3c8 FreeConsole
0x70b3cc ReadConsoleOutputCharacterW
0x70b3d0 GetStdHandle
0x70b3d4 AttachConsole
0x70b3d8 SetVolumeLabelW
0x70b3dc SetEvent
0x70b3e0 GetProcessHeap
0x70b3e4 DeleteCriticalSection
0x70b3e8 DecodePointer
0x70b3ec HeapAlloc
0x70b3f0 RaiseException
0x70b3f4 HeapReAlloc
0x70b3f8 HeapSize
0x70b3fc InitializeCriticalSectionAndSpinCount
0x70b400 HeapFree
0x70b404 SetLastError
0x70b408 CreatePipe
0x70b40c GetCurrentProcess
0x70b410 GlobalUnlock
0x70b414 GlobalLock
0x70b418 FindClose
0x70b41c FindNextFileW
0x70b420 FindFirstFileW
0x70b424 MoveFileExW
0x70b428 CopyFileW
0x70b42c GetExitCodeProcess
0x70b430 WaitForSingleObject
0x70b434 CreateProcessW
0x70b438 RemoveDirectoryW
0x70b43c GetFileAttributesW
0x70b440 LocalFree
0x70b444 FormatMessageW
0x70b448 SetThreadExecutionState
0x70b44c WriteFile
0x70b450 GetTempPathW
0x70b454 OutputDebugStringW
0x70b458 DeleteFileW
0x70b45c GetTempFileNameW
0x70b460 CreateMutexW
0x70b464 GetWindowsDirectoryW
0x70b468 GetSystemDirectoryW
0x70b46c GetVolumeInformationW
0x70b470 DefineDosDeviceW
0x70b474 DeviceIoControl
0x70b478 GlobalFree
0x70b47c GlobalAlloc
0x70b480 CloseHandle
0x70b484 GetLocalTime
0x70b488 MulDiv
0x70b48c GetLastError
0x70b490 GetPrivateProfileSectionNamesW
0x70b494 WritePrivateProfileStringW
0x70b498 GetPrivateProfileStringA
0x70b49c GetPrivateProfileStringW
0x70b4a0 GetCurrentDirectoryW
0x70b4a4 GetModuleFileNameW
0x70b4a8 WinExec
0x70b4ac lstrlenW
0x70b4b0 lstrcatW
0x70b4b4 GetDiskFreeSpaceExW
0x70b4b8 GetDriveTypeW
0x70b4bc GetLogicalDriveStringsW
0x70b4c0 Sleep
0x70b4c4 GlobalMemoryStatusEx
0x70b4c8 GetModuleHandleW
0x70b4cc GetVersionExW
0x70b4d0 GetSystemInfo
0x70b4d4 FreeLibrary
0x70b4d8 GetProcAddress
0x70b4dc LoadLibraryW
0x70b4e0 ReadFile
0x70b4e4 CreateFileW
0x70b4e8 WideCharToMultiByte
0x70b4ec MultiByteToWideChar
0x70b4f0 CreateDirectoryW
0x70b4f4 CopyFileExW
0x70b4f8 SetFileAttributesW
0x70b4fc lstrcpyW
0x70b500 FindResourceW
0x70b504 SetConsoleMode
0x70b508 LoadResource
0x70b50c LockResource
0x70b510 SizeofResource
0x70b514 HeapQueryInformation
0x70b518 QueryPerformanceFrequency
0x70b51c VirtualAlloc
0x70b520 VirtualQuery
0x70b524 ExitProcess
0x70b528 GetACP
0x70b52c GetConsoleMode
0x70b530 ReadConsoleW
0x70b534 GetConsoleCP
0x70b538 IsValidLocale
0x70b53c EnumSystemLocalesW
0x70b540 GetTimeZoneInformation
0x70b544 FindFirstFileExW
0x70b548 IsValidCodePage
0x70b54c GetOEMCP
0x70b550 GetEnvironmentStringsW
0x70b554 FreeEnvironmentStringsW
0x70b558 SetEnvironmentVariableA
0x70b55c SetConsoleCtrlHandler
0x70b560 WriteConsoleW
0x70b564 GetSystemTime
0x70b568 FlushConsoleInputBuffer
0x70b56c GlobalMemoryStatus
0x70b570 ReadConsoleInputA
USER32.dll
0x70b658 MapVirtualKeyW
0x70b65c GetKeyNameTextW
0x70b660 TranslateMessage
0x70b664 GetMessageW
0x70b668 DestroyMenu
0x70b66c CharUpperW
0x70b670 GetDesktopWindow
0x70b674 GetActiveWindow
0x70b678 GetNextDlgTabItem
0x70b67c EndDialog
0x70b680 CreateDialogIndirectParamW
0x70b684 DrawStateW
0x70b688 RemoveMenu
0x70b68c InsertMenuW
0x70b690 GetMenuState
0x70b694 GetMenuStringW
0x70b698 FillRect
0x70b69c GetWindowDC
0x70b6a0 LoadBitmapW
0x70b6a4 SetMenuItemInfoW
0x70b6a8 GetMenuCheckMarkDimensions
0x70b6ac SetMenuItemBitmaps
0x70b6b0 EnableMenuItem
0x70b6b4 CheckMenuItem
0x70b6b8 IsDialogMessageW
0x70b6bc CheckDlgButton
0x70b6c0 MoveWindow
0x70b6c4 GetMonitorInfoW
0x70b6c8 MonitorFromWindow
0x70b6cc WinHelpW
0x70b6d0 SetScrollInfo
0x70b6d4 CallNextHookEx
0x70b6d8 UnhookWindowsHookEx
0x70b6dc SetWindowsHookExW
0x70b6e0 GetWindow
0x70b6e4 GetLastActivePopup
0x70b6e8 GetTopWindow
0x70b6ec GetClassLongW
0x70b6f0 EqualRect
0x70b6f4 MapWindowPoints
0x70b6f8 MessageBoxW
0x70b6fc AdjustWindowRectEx
0x70b700 GetWindowTextLengthW
0x70b704 RemovePropW
0x70b708 GetPropW
0x70b70c SetPropW
0x70b710 ShowScrollBar
0x70b714 GetScrollRange
0x70b718 SetScrollRange
0x70b71c GetScrollPos
0x70b720 SetScrollPos
0x70b724 ScrollWindow
0x70b728 ValidateRect
0x70b72c EndPaint
0x70b730 BeginPaint
0x70b734 GetForegroundWindow
0x70b738 SetActiveWindow
0x70b73c GetMenuItemID
0x70b740 SetMenu
0x70b744 GetMenu
0x70b748 GetKeyState
0x70b74c GetFocus
0x70b750 SetFocus
0x70b754 GetDlgCtrlID
0x70b758 GetDlgItem
0x70b75c IsWindowVisible
0x70b760 EndDeferWindowPos
0x70b764 DeferWindowPos
0x70b768 BeginDeferWindowPos
0x70b76c SetWindowPlacement
0x70b770 PostQuitMessage
0x70b774 SetWindowPos
0x70b778 DestroyWindow
0x70b77c IsChild
0x70b780 IsMenu
0x70b784 CreateWindowExW
0x70b788 GetClassInfoExW
0x70b78c GetClassInfoW
0x70b790 RegisterClassW
0x70b794 CallWindowProcW
0x70b798 DefWindowProcW
0x70b79c GetMessageTime
0x70b7a0 PeekMessageW
0x70b7a4 DispatchMessageW
0x70b7a8 LoadMenuW
0x70b7ac GetNextDlgGroupItem
0x70b7b0 ReleaseCapture
0x70b7b4 WindowFromPoint
0x70b7b8 GetCapture
0x70b7bc SetWindowTextW
0x70b7c0 ClientToScreen
0x70b7c4 GetWindowLongW
0x70b7c8 GetWindowThreadProcessId
0x70b7cc GetClassNameW
0x70b7d0 IsWindowEnabled
0x70b7d4 GetWindowTextW
0x70b7d8 TrackMouseEvent
0x70b7dc IsZoomed
0x70b7e0 LoadAcceleratorsW
0x70b7e4 CreateAcceleratorTableW
0x70b7e8 DestroyAcceleratorTable
0x70b7ec SetCursorPos
0x70b7f0 SetParent
0x70b7f4 ShowWindow
0x70b7f8 EnumChildWindows
0x70b7fc UnregisterClassW
0x70b800 ExitWindowsEx
0x70b804 TrackPopupMenu
0x70b808 SetForegroundWindow
0x70b80c CreatePopupMenu
0x70b810 GetCursorPos
0x70b814 DrawIcon
0x70b818 IsIconic
0x70b81c RegisterDeviceNotificationW
0x70b820 LoadIconW
0x70b824 SendMessageTimeoutW
0x70b828 EnumWindows
0x70b82c GrayStringW
0x70b830 DrawTextExW
0x70b834 TabbedTextOutW
0x70b838 UpdateWindow
0x70b83c GetScrollInfo
0x70b840 SetRectEmpty
0x70b844 AppendMenuW
0x70b848 GetSubMenu
0x70b84c GetMenuItemInfoW
0x70b850 GetMenuItemCount
0x70b854 OffsetRect
0x70b858 DrawIconEx
0x70b85c DrawEdge
0x70b860 SetCapture
0x70b864 GetSystemMenu
0x70b868 DeleteMenu
0x70b86c SetWindowRgn
0x70b870 MessageBeep
0x70b874 NotifyWinEvent
0x70b878 GetMenuDefaultItem
0x70b87c SetMenuDefaultItem
0x70b880 IsRectEmpty
0x70b884 UpdateLayeredWindow
0x70b888 EnableScrollBar
0x70b88c UnionRect
0x70b890 MonitorFromPoint
0x70b894 CharNextW
0x70b898 CopyAcceleratorTableW
0x70b89c InvalidateRgn
0x70b8a0 SetRect
0x70b8a4 CopyRect
0x70b8a8 SystemParametersInfoW
0x70b8ac DestroyIcon
0x70b8b0 SetWindowContextHelpId
0x70b8b4 MapDialogRect
0x70b8b8 ShowOwnedPopups
0x70b8bc CopyImage
0x70b8c0 SendDlgItemMessageA
0x70b8c4 GetSysColorBrush
0x70b8c8 RealChildWindowFromPoint
0x70b8cc GetAsyncKeyState
0x70b8d0 SetLayeredWindowAttributes
0x70b8d4 GetWindowPlacement
0x70b8d8 EnumDisplayMonitors
0x70b8dc BringWindowToTop
0x70b8e0 LockWindowUpdate
0x70b8e4 SetClassLongW
0x70b8e8 ReleaseDC
0x70b8ec GetKeyboardState
0x70b8f0 GetDC
0x70b8f4 SetCursor
0x70b8f8 OpenClipboard
0x70b8fc CloseClipboard
0x70b900 SetClipboardData
0x70b904 EmptyClipboard
0x70b908 RegisterClipboardFormatW
0x70b90c CharUpperBuffW
0x70b910 ModifyMenuW
0x70b914 TranslateAcceleratorW
0x70b918 InsertMenuItemW
0x70b91c UnpackDDElParam
0x70b920 ReuseDDElParam
0x70b924 CopyIcon
0x70b928 FrameRect
0x70b92c PostThreadMessageW
0x70b930 WaitMessage
0x70b934 GetIconInfo
0x70b938 HideCaret
0x70b93c InvertRect
0x70b940 GetDoubleClickTime
0x70b944 MessageBoxA
0x70b948 GetUserObjectInformationW
0x70b94c GetProcessWindowStation
0x70b950 IsCharLowerW
0x70b954 MapVirtualKeyExW
0x70b958 DrawMenuBar
0x70b95c DefFrameProcW
0x70b960 DefMDIChildProcW
0x70b964 TranslateMDISysAccel
0x70b968 IsClipboardFormatAvailable
0x70b96c GetUpdateRect
0x70b970 SubtractRect
0x70b974 CreateMenu
0x70b978 DestroyCursor
0x70b97c GetComboBoxInfo
0x70b980 GetWindowRgn
0x70b984 GetKeyboardLayout
0x70b988 ToUnicodeEx
0x70b98c DrawFocusRect
0x70b990 LoadImageW
0x70b994 PtInRect
0x70b998 ScreenToClient
0x70b99c GetMessagePos
0x70b9a0 SetWindowLongW
0x70b9a4 LoadCursorW
0x70b9a8 SetTimer
0x70b9ac KillTimer
0x70b9b0 RedrawWindow
0x70b9b4 EnableWindow
0x70b9b8 GetClientRect
0x70b9bc SendMessageW
0x70b9c0 InvalidateRect
0x70b9c4 GetParent
0x70b9c8 IsWindow
0x70b9cc PostMessageW
0x70b9d0 RegisterWindowMessageW
0x70b9d4 GetWindowRect
0x70b9d8 GetSysColor
0x70b9dc DrawFrameControl
0x70b9e0 InflateRect
0x70b9e4 GetSystemMetrics
0x70b9e8 DrawTextW
0x70b9ec IntersectRect
GDI32.dll
0x70b0b4 GetDeviceCaps
0x70b0b8 GetPixel
0x70b0bc GetViewportExtEx
0x70b0c0 GetWindowExtEx
0x70b0c4 IntersectClipRect
0x70b0c8 LineTo
0x70b0cc RestoreDC
0x70b0d0 SaveDC
0x70b0d4 SelectClipRgn
0x70b0d8 ExtSelectClipRgn
0x70b0dc SelectPalette
0x70b0e0 SetMapMode
0x70b0e4 SetLayout
0x70b0e8 GetLayout
0x70b0ec SetPolyFillMode
0x70b0f0 SetROP2
0x70b0f4 SetTextAlign
0x70b0f8 MoveToEx
0x70b0fc SetViewportExtEx
0x70b100 SetViewportOrgEx
0x70b104 SetWindowExtEx
0x70b108 SetWindowOrgEx
0x70b10c OffsetViewportOrgEx
0x70b110 OffsetWindowOrgEx
0x70b114 ScaleViewportExtEx
0x70b118 ScaleWindowExtEx
0x70b11c CreateDCW
0x70b120 CombineRgn
0x70b124 CreateRectRgnIndirect
0x70b128 SetRectRgn
0x70b12c DPtoLP
0x70b130 EnumFontFamiliesW
0x70b134 GetTextCharsetInfo
0x70b138 GetTextMetricsW
0x70b13c CreateRoundRectRgn
0x70b140 CreateDIBSection
0x70b144 GetRgnBox
0x70b148 EnumFontFamiliesExW
0x70b14c CreateEllipticRgn
0x70b150 Ellipse
0x70b154 CreatePolygonRgn
0x70b158 Polygon
0x70b15c Polyline
0x70b160 RealizePalette
0x70b164 SetPixel
0x70b168 StretchBlt
0x70b16c SetDIBColorTable
0x70b170 OffsetRgn
0x70b174 CreatePalette
0x70b178 GetNearestPaletteIndex
0x70b17c GetPaletteEntries
0x70b180 GetSystemPaletteEntries
0x70b184 LPtoDP
0x70b188 ExtFloodFill
0x70b18c SetPaletteEntries
0x70b190 FillRgn
0x70b194 FrameRgn
0x70b198 GetBoundsRect
0x70b19c PtInRegion
0x70b1a0 GetWindowOrgEx
0x70b1a4 GetViewportOrgEx
0x70b1a8 SetPixelV
0x70b1ac GetTextFaceW
0x70b1b0 GetClipBox
0x70b1b4 ExcludeClipRect
0x70b1b8 DeleteDC
0x70b1bc CreateRectRgn
0x70b1c0 CreatePatternBrush
0x70b1c4 CreateHatchBrush
0x70b1c8 SetBkColor
0x70b1cc Rectangle
0x70b1d0 GetBkColor
0x70b1d4 Escape
0x70b1d8 ExtTextOutW
0x70b1dc RectVisible
0x70b1e0 PtVisible
0x70b1e4 TextOutW
0x70b1e8 CreatePen
0x70b1ec GetMapMode
0x70b1f0 CreateDIBitmap
0x70b1f4 PatBlt
0x70b1f8 CreateBitmap
0x70b1fc GetTextColor
0x70b200 CreateFontW
0x70b204 DeleteObject
0x70b208 GetTextExtentPoint32W
0x70b20c GetStockObject
0x70b210 SetBkMode
0x70b214 SetTextColor
0x70b218 SelectObject
0x70b21c BitBlt
0x70b220 RoundRect
0x70b224 CreateCompatibleBitmap
0x70b228 CreateCompatibleDC
0x70b22c GetObjectW
0x70b230 CreateFontIndirectW
0x70b234 CopyMetaFileW
0x70b238 GetObjectType
0x70b23c CreateSolidBrush
MSIMG32.dll
0x70b578 TransparentBlt
0x70b57c AlphaBlend
WINSPOOL.DRV
0x70ba78 OpenPrinterW
0x70ba7c DocumentPropertiesW
0x70ba80 ClosePrinter
ADVAPI32.dll
0x70b000 RegEnumValueW
0x70b004 RegOpenKeyExW
0x70b008 RegQueryValueExW
0x70b00c RegEnumKeyExW
0x70b010 CryptEnumProvidersA
0x70b014 CryptSignHashA
0x70b018 CryptExportKey
0x70b01c CryptGetUserKey
0x70b020 CryptGetProvParam
0x70b024 CryptSetHashParam
0x70b028 CryptAcquireContextA
0x70b02c ReportEventA
0x70b030 RegisterEventSourceA
0x70b034 DeregisterEventSource
0x70b038 RegQueryValueW
0x70b03c CryptAcquireContextW
0x70b040 CryptCreateHash
0x70b044 CryptHashData
0x70b048 CryptDeriveKey
0x70b04c CryptEncrypt
0x70b050 RegCloseKey
0x70b054 RegEnumKeyW
0x70b058 RegSetValueExW
0x70b05c RegDeleteValueW
0x70b060 RegDeleteKeyW
0x70b064 RegCreateKeyExW
0x70b068 AdjustTokenPrivileges
0x70b06c LookupPrivilegeValueW
0x70b070 OpenProcessToken
0x70b074 CryptDecrypt
0x70b078 CryptReleaseContext
0x70b07c CryptDestroyHash
0x70b080 CryptDestroyKey
SHELL32.dll
0x70b5f8 DragQueryFileW
0x70b5fc SHAppBarMessage
0x70b600 SHGetFileInfoW
0x70b604 SHGetPathFromIDListW
0x70b608 DragFinish
0x70b60c Shell_NotifyIconW
0x70b610 ShellExecuteW
0x70b614 SHGetFolderPathW
0x70b618 SHGetSpecialFolderLocation
0x70b61c SHGetDesktopFolder
0x70b620 SHCreateDirectoryExW
0x70b624 SHBrowseForFolderW
COMCTL32.dll
0x70b088 InitCommonControlsEx
0x70b08c _TrackMouseEvent
SHLWAPI.dll
0x70b62c UrlUnescapeW
0x70b630 PathStripToRootW
0x70b634 PathIsUNCW
0x70b638 PathFindExtensionW
0x70b63c PathIsDirectoryW
0x70b640 PathCombineW
0x70b644 PathFindFileNameW
0x70b648 PathRemoveFileSpecW
0x70b64c PathFileExistsW
0x70b650 StrFormatKBSizeW
UxTheme.dll
0x70b9f4 GetThemeSysColor
0x70b9f8 IsAppThemed
0x70b9fc DrawThemeText
0x70ba00 DrawThemeParentBackground
0x70ba04 OpenThemeData
0x70ba08 DrawThemeBackground
0x70ba0c GetThemeColor
0x70ba10 GetCurrentThemeName
0x70ba14 CloseThemeData
0x70ba18 GetWindowTheme
0x70ba1c IsThemeBackgroundPartiallyTransparent
0x70ba20 GetThemePartSize
ole32.dll
0x70bc3c CoInitializeEx
0x70bc40 CoUninitialize
0x70bc44 CoRegisterMessageFilter
0x70bc48 CoRevokeClassObject
0x70bc4c RevokeDragDrop
0x70bc50 RegisterDragDrop
0x70bc54 CoLockObjectExternal
0x70bc58 OleGetClipboard
0x70bc5c IsAccelerator
0x70bc60 OleTranslateAccelerator
0x70bc64 OleDestroyMenuDescriptor
0x70bc68 OleCreateMenuDescriptor
0x70bc6c OleLockRunning
0x70bc70 OleUninitialize
0x70bc74 OleInitialize
0x70bc78 CoFreeUnusedLibraries
0x70bc7c DoDragDrop
0x70bc80 OleIsCurrentClipboard
0x70bc84 OleFlushClipboard
0x70bc88 CreateILockBytesOnHGlobal
0x70bc8c StgOpenStorageOnILockBytes
0x70bc90 StgCreateDocfileOnILockBytes
0x70bc94 CoGetClassObject
0x70bc98 CoDisconnectObject
0x70bc9c CoInitialize
0x70bca0 CLSIDFromProgID
0x70bca4 CLSIDFromString
0x70bca8 CoCreateGuid
0x70bcac ReleaseStgMedium
0x70bcb0 OleDuplicateData
0x70bcb4 CoTaskMemFree
0x70bcb8 CoTaskMemAlloc
0x70bcbc CoSetProxyBlanket
0x70bcc0 CoInitializeSecurity
0x70bcc4 CreateStreamOnHGlobal
0x70bcc8 StringFromGUID2
0x70bccc CoCreateInstance
OLEAUT32.dll
0x70b594 SysFreeString
0x70b598 SysAllocString
0x70b59c OleCreateFontIndirect
0x70b5a0 VarBstrFromDate
0x70b5a4 VariantCopy
0x70b5a8 SafeArrayDestroy
0x70b5ac VariantTimeToSystemTime
0x70b5b0 SystemTimeToVariantTime
0x70b5b4 LoadTypeLib
0x70b5b8 VariantChangeType
0x70b5bc SysAllocStringLen
0x70b5c0 SafeArrayGetUBound
0x70b5c4 SafeArrayGetLBound
0x70b5c8 SafeArrayUnaccessData
0x70b5cc SafeArrayAccessData
0x70b5d0 VariantClear
0x70b5d4 VariantInit
0x70b5d8 SysStringLen
0x70b5dc VarBstrCat
oledlg.dll
0x70bcd4 OleUIBusyW
gdiplus.dll
0x70bb50 GdipSetInterpolationMode
0x70bb54 GdipGetImageWidth
0x70bb58 GdipGetImageHeight
0x70bb5c GdipGetImagePixelFormat
0x70bb60 GdipGetImagePalette
0x70bb64 GdipGetImagePaletteSize
0x70bb68 GdipCreateBitmapFromStream
0x70bb6c GdipBitmapLockBits
0x70bb70 GdipBitmapUnlockBits
0x70bb74 GdipLoadImageFromStream
0x70bb78 GdiplusShutdown
0x70bb7c GdiplusStartup
0x70bb80 GdipDrawString
0x70bb84 GdipSetStringFormatLineAlign
0x70bb88 GdipSetStringFormatAlign
0x70bb8c GdipDeleteFont
0x70bb90 GdipCreateFontFamilyFromName
0x70bb94 GdipDeleteFontFamily
0x70bb98 GdipGetGenericFontFamilySansSerif
0x70bb9c GdipCreateFont
0x70bba0 GdipGetDpiY
0x70bba4 GdipDeleteStringFormat
0x70bba8 GdipCreateStringFormat
0x70bbac GdipGraphicsClear
0x70bbb0 GdipSetSolidFillColor
0x70bbb4 GdipAddPathEllipseI
0x70bbb8 GdipResetPath
0x70bbbc GdipDrawPath
0x70bbc0 GdipClosePathFigure
0x70bbc4 GdipAddPathArcI
0x70bbc8 GdipDeletePen
0x70bbcc GdipCreatePen1
0x70bbd0 GdipDeletePath
0x70bbd4 GdipCreatePath
0x70bbd8 GdipFillPath
0x70bbdc GdipCreateBitmapFromHBITMAP
0x70bbe0 GdipDrawImageI
0x70bbe4 GdipSetSmoothingMode
0x70bbe8 GdipGetImageGraphicsContext
0x70bbec GdipCreateBitmapFromScan0
0x70bbf0 GdipReleaseDC
0x70bbf4 GdipDrawImageRectI
0x70bbf8 GdipImageSelectActiveFrame
0x70bbfc GdipGetPropertyItem
0x70bc00 GdipGetPropertyItemSize
0x70bc04 GdipImageGetFrameCount
0x70bc08 GdipImageGetFrameDimensionsList
0x70bc0c GdipImageGetFrameDimensionsCount
0x70bc10 GdipCloneImage
0x70bc14 GdipDisposeImage
0x70bc18 GdipFillRectangleI
0x70bc1c GdipDeleteGraphics
0x70bc20 GdipCreateFromHDC
0x70bc24 GdipCreateSolidFill
0x70bc28 GdipCloneBrush
0x70bc2c GdipAlloc
0x70bc30 GdipDeleteBrush
0x70bc34 GdipFree
SETUPAPI.dll
0x70b5e4 SetupDiDestroyDeviceInfoList
0x70b5e8 SetupDiEnumDeviceInterfaces
0x70b5ec SetupDiGetDeviceInterfaceDetailW
0x70b5f0 SetupDiGetClassDevsW
VERSION.dll
0x70ba28 GetFileVersionInfoW
0x70ba2c GetFileVersionInfoSizeW
0x70ba30 VerQueryValueW
OLEACC.dll
0x70b584 CreateStdAccessibleObject
0x70b588 LresultFromObject
0x70b58c AccessibleObjectFromWindow
WININET.dll
0x70ba38 HttpQueryInfoW
0x70ba3c InternetCrackUrlW
0x70ba40 InternetCanonicalizeUrlW
0x70ba44 InternetOpenW
0x70ba48 InternetCloseHandle
0x70ba4c InternetOpenUrlW
0x70ba50 InternetReadFile
0x70ba54 InternetSetFilePointer
0x70ba58 InternetWriteFile
0x70ba5c InternetQueryDataAvailable
0x70ba60 InternetQueryOptionW
0x70ba64 InternetGetLastResponseInfoW
0x70ba68 InternetSetStatusCallbackW
IMM32.dll
0x70b244 ImmGetContext
0x70b248 ImmGetOpenStatus
0x70b24c ImmReleaseContext
WINMM.dll
0x70ba70 PlaySoundW
CRYPT32.dll
0x70b094 CertOpenStore
0x70b098 CertCloseStore
0x70b09c CertEnumCertificatesInStore
0x70b0a0 CertFindCertificateInStore
0x70b0a4 CertDuplicateCertificateContext
0x70b0a8 CertFreeCertificateContext
0x70b0ac CertGetCertificateContextProperty
EAT(Export Address Table) is none
WS2_32.dll
0x70bad0 getservbyname
0x70bad4 gethostbyname
0x70bad8 htonl
0x70badc WSACleanup
0x70bae0 WSAGetLastError
0x70bae4 socket
0x70bae8 __WSAFDIsSet
0x70baec select
0x70baf0 WSASetLastError
0x70baf4 recv
0x70baf8 send
0x70bafc ind
0x70bb00 closesocket
0x70bb04 connect
0x70bb08 getpeername
0x70bb0c getsockname
0x70bb10 getsockopt
0x70bb14 htons
0x70bb18 ntohs
0x70bb1c setsockopt
0x70bb20 WSAIoctl
0x70bb24 getaddrinfo
0x70bb28 freeaddrinfo
0x70bb2c accept
0x70bb30 listen
0x70bb34 recvfrom
0x70bb38 sendto
0x70bb3c ioctlsocket
0x70bb40 gethostname
0x70bb44 WSAStartup
0x70bb48 shutdown
WLDAP32.dll
0x70ba88 None
0x70ba8c None
0x70ba90 None
0x70ba94 None
0x70ba98 None
0x70ba9c None
0x70baa0 None
0x70baa4 None
0x70baa8 None
0x70baac None
0x70bab0 None
0x70bab4 None
0x70bab8 None
0x70babc None
0x70bac0 None
0x70bac4 None
0x70bac8 None
KERNEL32.dll
0x70b254 TlsSetValue
0x70b258 TlsFree
0x70b25c GlobalReAlloc
0x70b260 GlobalHandle
0x70b264 LocalReAlloc
0x70b268 CompareStringW
0x70b26c GetLocaleInfoW
0x70b270 GetSystemDefaultUILanguage
0x70b274 GetUserDefaultUILanguage
0x70b278 GlobalFlags
0x70b27c VirtualProtect
0x70b280 SetErrorMode
0x70b284 FindResourceExW
0x70b288 SearchPathW
0x70b28c GetProfileIntW
0x70b290 GetUserDefaultLCID
0x70b294 UnhandledExceptionFilter
0x70b298 SetUnhandledExceptionFilter
0x70b29c TerminateProcess
0x70b2a0 IsProcessorFeaturePresent
0x70b2a4 ResetEvent
0x70b2a8 WaitForSingleObjectEx
0x70b2ac QueryPerformanceCounter
0x70b2b0 TlsGetValue
0x70b2b4 InitializeSListHead
0x70b2b8 IsDebuggerPresent
0x70b2bc GetStartupInfoW
0x70b2c0 SetStdHandle
0x70b2c4 SetFilePointerEx
0x70b2c8 GetCommandLineW
0x70b2cc GetCommandLineA
0x70b2d0 GetModuleHandleExW
0x70b2d4 FreeLibraryAndExitThread
0x70b2d8 ExitThread
0x70b2dc CreateThread
0x70b2e0 RtlUnwind
0x70b2e4 GetStringTypeW
0x70b2e8 LCMapStringW
0x70b2ec GetCPInfo
0x70b2f0 GetFileTime
0x70b2f4 GetFileSizeEx
0x70b2f8 GetFileAttributesExW
0x70b2fc LocalAlloc
0x70b300 GetPrivateProfileIntW
0x70b304 TlsAlloc
0x70b308 GetSystemTimeAsFileTime
0x70b30c GlobalGetAtomNameW
0x70b310 GetCurrentThread
0x70b314 FileTimeToSystemTime
0x70b318 SystemTimeToTzSpecificLocalTime
0x70b31c FileTimeToLocalFileTime
0x70b320 ResumeThread
0x70b324 SetThreadPriority
0x70b328 CreateEventW
0x70b32c lstrcmpA
0x70b330 GetThreadLocale
0x70b334 lstrcmpiW
0x70b338 DuplicateHandle
0x70b33c UnlockFile
0x70b340 LockFile
0x70b344 GetFullPathNameW
0x70b348 FlushFileBuffers
0x70b34c GlobalSize
0x70b350 GetCurrentProcessId
0x70b354 GlobalFindAtomW
0x70b358 GlobalAddAtomW
0x70b35c LoadLibraryA
0x70b360 lstrcmpW
0x70b364 GlobalDeleteAtom
0x70b368 LoadLibraryExW
0x70b36c GetModuleHandleA
0x70b370 FreeResource
0x70b374 GetCurrentThreadId
0x70b378 EncodePointer
0x70b37c OutputDebugStringA
0x70b380 VerifyVersionInfoW
0x70b384 VerSetConditionMask
0x70b388 FormatMessageA
0x70b38c PeekNamedPipe
0x70b390 GetFileType
0x70b394 WaitForMultipleObjects
0x70b398 ExpandEnvironmentStringsA
0x70b39c GetTickCount
0x70b3a0 SleepEx
0x70b3a4 LeaveCriticalSection
0x70b3a8 EnterCriticalSection
0x70b3ac InitializeCriticalSection
0x70b3b0 SetEndOfFile
0x70b3b4 GetFileSize
0x70b3b8 SystemTimeToFileTime
0x70b3bc LocalFileTimeToFileTime
0x70b3c0 SetFilePointer
0x70b3c4 SetFileTime
0x70b3c8 FreeConsole
0x70b3cc ReadConsoleOutputCharacterW
0x70b3d0 GetStdHandle
0x70b3d4 AttachConsole
0x70b3d8 SetVolumeLabelW
0x70b3dc SetEvent
0x70b3e0 GetProcessHeap
0x70b3e4 DeleteCriticalSection
0x70b3e8 DecodePointer
0x70b3ec HeapAlloc
0x70b3f0 RaiseException
0x70b3f4 HeapReAlloc
0x70b3f8 HeapSize
0x70b3fc InitializeCriticalSectionAndSpinCount
0x70b400 HeapFree
0x70b404 SetLastError
0x70b408 CreatePipe
0x70b40c GetCurrentProcess
0x70b410 GlobalUnlock
0x70b414 GlobalLock
0x70b418 FindClose
0x70b41c FindNextFileW
0x70b420 FindFirstFileW
0x70b424 MoveFileExW
0x70b428 CopyFileW
0x70b42c GetExitCodeProcess
0x70b430 WaitForSingleObject
0x70b434 CreateProcessW
0x70b438 RemoveDirectoryW
0x70b43c GetFileAttributesW
0x70b440 LocalFree
0x70b444 FormatMessageW
0x70b448 SetThreadExecutionState
0x70b44c WriteFile
0x70b450 GetTempPathW
0x70b454 OutputDebugStringW
0x70b458 DeleteFileW
0x70b45c GetTempFileNameW
0x70b460 CreateMutexW
0x70b464 GetWindowsDirectoryW
0x70b468 GetSystemDirectoryW
0x70b46c GetVolumeInformationW
0x70b470 DefineDosDeviceW
0x70b474 DeviceIoControl
0x70b478 GlobalFree
0x70b47c GlobalAlloc
0x70b480 CloseHandle
0x70b484 GetLocalTime
0x70b488 MulDiv
0x70b48c GetLastError
0x70b490 GetPrivateProfileSectionNamesW
0x70b494 WritePrivateProfileStringW
0x70b498 GetPrivateProfileStringA
0x70b49c GetPrivateProfileStringW
0x70b4a0 GetCurrentDirectoryW
0x70b4a4 GetModuleFileNameW
0x70b4a8 WinExec
0x70b4ac lstrlenW
0x70b4b0 lstrcatW
0x70b4b4 GetDiskFreeSpaceExW
0x70b4b8 GetDriveTypeW
0x70b4bc GetLogicalDriveStringsW
0x70b4c0 Sleep
0x70b4c4 GlobalMemoryStatusEx
0x70b4c8 GetModuleHandleW
0x70b4cc GetVersionExW
0x70b4d0 GetSystemInfo
0x70b4d4 FreeLibrary
0x70b4d8 GetProcAddress
0x70b4dc LoadLibraryW
0x70b4e0 ReadFile
0x70b4e4 CreateFileW
0x70b4e8 WideCharToMultiByte
0x70b4ec MultiByteToWideChar
0x70b4f0 CreateDirectoryW
0x70b4f4 CopyFileExW
0x70b4f8 SetFileAttributesW
0x70b4fc lstrcpyW
0x70b500 FindResourceW
0x70b504 SetConsoleMode
0x70b508 LoadResource
0x70b50c LockResource
0x70b510 SizeofResource
0x70b514 HeapQueryInformation
0x70b518 QueryPerformanceFrequency
0x70b51c VirtualAlloc
0x70b520 VirtualQuery
0x70b524 ExitProcess
0x70b528 GetACP
0x70b52c GetConsoleMode
0x70b530 ReadConsoleW
0x70b534 GetConsoleCP
0x70b538 IsValidLocale
0x70b53c EnumSystemLocalesW
0x70b540 GetTimeZoneInformation
0x70b544 FindFirstFileExW
0x70b548 IsValidCodePage
0x70b54c GetOEMCP
0x70b550 GetEnvironmentStringsW
0x70b554 FreeEnvironmentStringsW
0x70b558 SetEnvironmentVariableA
0x70b55c SetConsoleCtrlHandler
0x70b560 WriteConsoleW
0x70b564 GetSystemTime
0x70b568 FlushConsoleInputBuffer
0x70b56c GlobalMemoryStatus
0x70b570 ReadConsoleInputA
USER32.dll
0x70b658 MapVirtualKeyW
0x70b65c GetKeyNameTextW
0x70b660 TranslateMessage
0x70b664 GetMessageW
0x70b668 DestroyMenu
0x70b66c CharUpperW
0x70b670 GetDesktopWindow
0x70b674 GetActiveWindow
0x70b678 GetNextDlgTabItem
0x70b67c EndDialog
0x70b680 CreateDialogIndirectParamW
0x70b684 DrawStateW
0x70b688 RemoveMenu
0x70b68c InsertMenuW
0x70b690 GetMenuState
0x70b694 GetMenuStringW
0x70b698 FillRect
0x70b69c GetWindowDC
0x70b6a0 LoadBitmapW
0x70b6a4 SetMenuItemInfoW
0x70b6a8 GetMenuCheckMarkDimensions
0x70b6ac SetMenuItemBitmaps
0x70b6b0 EnableMenuItem
0x70b6b4 CheckMenuItem
0x70b6b8 IsDialogMessageW
0x70b6bc CheckDlgButton
0x70b6c0 MoveWindow
0x70b6c4 GetMonitorInfoW
0x70b6c8 MonitorFromWindow
0x70b6cc WinHelpW
0x70b6d0 SetScrollInfo
0x70b6d4 CallNextHookEx
0x70b6d8 UnhookWindowsHookEx
0x70b6dc SetWindowsHookExW
0x70b6e0 GetWindow
0x70b6e4 GetLastActivePopup
0x70b6e8 GetTopWindow
0x70b6ec GetClassLongW
0x70b6f0 EqualRect
0x70b6f4 MapWindowPoints
0x70b6f8 MessageBoxW
0x70b6fc AdjustWindowRectEx
0x70b700 GetWindowTextLengthW
0x70b704 RemovePropW
0x70b708 GetPropW
0x70b70c SetPropW
0x70b710 ShowScrollBar
0x70b714 GetScrollRange
0x70b718 SetScrollRange
0x70b71c GetScrollPos
0x70b720 SetScrollPos
0x70b724 ScrollWindow
0x70b728 ValidateRect
0x70b72c EndPaint
0x70b730 BeginPaint
0x70b734 GetForegroundWindow
0x70b738 SetActiveWindow
0x70b73c GetMenuItemID
0x70b740 SetMenu
0x70b744 GetMenu
0x70b748 GetKeyState
0x70b74c GetFocus
0x70b750 SetFocus
0x70b754 GetDlgCtrlID
0x70b758 GetDlgItem
0x70b75c IsWindowVisible
0x70b760 EndDeferWindowPos
0x70b764 DeferWindowPos
0x70b768 BeginDeferWindowPos
0x70b76c SetWindowPlacement
0x70b770 PostQuitMessage
0x70b774 SetWindowPos
0x70b778 DestroyWindow
0x70b77c IsChild
0x70b780 IsMenu
0x70b784 CreateWindowExW
0x70b788 GetClassInfoExW
0x70b78c GetClassInfoW
0x70b790 RegisterClassW
0x70b794 CallWindowProcW
0x70b798 DefWindowProcW
0x70b79c GetMessageTime
0x70b7a0 PeekMessageW
0x70b7a4 DispatchMessageW
0x70b7a8 LoadMenuW
0x70b7ac GetNextDlgGroupItem
0x70b7b0 ReleaseCapture
0x70b7b4 WindowFromPoint
0x70b7b8 GetCapture
0x70b7bc SetWindowTextW
0x70b7c0 ClientToScreen
0x70b7c4 GetWindowLongW
0x70b7c8 GetWindowThreadProcessId
0x70b7cc GetClassNameW
0x70b7d0 IsWindowEnabled
0x70b7d4 GetWindowTextW
0x70b7d8 TrackMouseEvent
0x70b7dc IsZoomed
0x70b7e0 LoadAcceleratorsW
0x70b7e4 CreateAcceleratorTableW
0x70b7e8 DestroyAcceleratorTable
0x70b7ec SetCursorPos
0x70b7f0 SetParent
0x70b7f4 ShowWindow
0x70b7f8 EnumChildWindows
0x70b7fc UnregisterClassW
0x70b800 ExitWindowsEx
0x70b804 TrackPopupMenu
0x70b808 SetForegroundWindow
0x70b80c CreatePopupMenu
0x70b810 GetCursorPos
0x70b814 DrawIcon
0x70b818 IsIconic
0x70b81c RegisterDeviceNotificationW
0x70b820 LoadIconW
0x70b824 SendMessageTimeoutW
0x70b828 EnumWindows
0x70b82c GrayStringW
0x70b830 DrawTextExW
0x70b834 TabbedTextOutW
0x70b838 UpdateWindow
0x70b83c GetScrollInfo
0x70b840 SetRectEmpty
0x70b844 AppendMenuW
0x70b848 GetSubMenu
0x70b84c GetMenuItemInfoW
0x70b850 GetMenuItemCount
0x70b854 OffsetRect
0x70b858 DrawIconEx
0x70b85c DrawEdge
0x70b860 SetCapture
0x70b864 GetSystemMenu
0x70b868 DeleteMenu
0x70b86c SetWindowRgn
0x70b870 MessageBeep
0x70b874 NotifyWinEvent
0x70b878 GetMenuDefaultItem
0x70b87c SetMenuDefaultItem
0x70b880 IsRectEmpty
0x70b884 UpdateLayeredWindow
0x70b888 EnableScrollBar
0x70b88c UnionRect
0x70b890 MonitorFromPoint
0x70b894 CharNextW
0x70b898 CopyAcceleratorTableW
0x70b89c InvalidateRgn
0x70b8a0 SetRect
0x70b8a4 CopyRect
0x70b8a8 SystemParametersInfoW
0x70b8ac DestroyIcon
0x70b8b0 SetWindowContextHelpId
0x70b8b4 MapDialogRect
0x70b8b8 ShowOwnedPopups
0x70b8bc CopyImage
0x70b8c0 SendDlgItemMessageA
0x70b8c4 GetSysColorBrush
0x70b8c8 RealChildWindowFromPoint
0x70b8cc GetAsyncKeyState
0x70b8d0 SetLayeredWindowAttributes
0x70b8d4 GetWindowPlacement
0x70b8d8 EnumDisplayMonitors
0x70b8dc BringWindowToTop
0x70b8e0 LockWindowUpdate
0x70b8e4 SetClassLongW
0x70b8e8 ReleaseDC
0x70b8ec GetKeyboardState
0x70b8f0 GetDC
0x70b8f4 SetCursor
0x70b8f8 OpenClipboard
0x70b8fc CloseClipboard
0x70b900 SetClipboardData
0x70b904 EmptyClipboard
0x70b908 RegisterClipboardFormatW
0x70b90c CharUpperBuffW
0x70b910 ModifyMenuW
0x70b914 TranslateAcceleratorW
0x70b918 InsertMenuItemW
0x70b91c UnpackDDElParam
0x70b920 ReuseDDElParam
0x70b924 CopyIcon
0x70b928 FrameRect
0x70b92c PostThreadMessageW
0x70b930 WaitMessage
0x70b934 GetIconInfo
0x70b938 HideCaret
0x70b93c InvertRect
0x70b940 GetDoubleClickTime
0x70b944 MessageBoxA
0x70b948 GetUserObjectInformationW
0x70b94c GetProcessWindowStation
0x70b950 IsCharLowerW
0x70b954 MapVirtualKeyExW
0x70b958 DrawMenuBar
0x70b95c DefFrameProcW
0x70b960 DefMDIChildProcW
0x70b964 TranslateMDISysAccel
0x70b968 IsClipboardFormatAvailable
0x70b96c GetUpdateRect
0x70b970 SubtractRect
0x70b974 CreateMenu
0x70b978 DestroyCursor
0x70b97c GetComboBoxInfo
0x70b980 GetWindowRgn
0x70b984 GetKeyboardLayout
0x70b988 ToUnicodeEx
0x70b98c DrawFocusRect
0x70b990 LoadImageW
0x70b994 PtInRect
0x70b998 ScreenToClient
0x70b99c GetMessagePos
0x70b9a0 SetWindowLongW
0x70b9a4 LoadCursorW
0x70b9a8 SetTimer
0x70b9ac KillTimer
0x70b9b0 RedrawWindow
0x70b9b4 EnableWindow
0x70b9b8 GetClientRect
0x70b9bc SendMessageW
0x70b9c0 InvalidateRect
0x70b9c4 GetParent
0x70b9c8 IsWindow
0x70b9cc PostMessageW
0x70b9d0 RegisterWindowMessageW
0x70b9d4 GetWindowRect
0x70b9d8 GetSysColor
0x70b9dc DrawFrameControl
0x70b9e0 InflateRect
0x70b9e4 GetSystemMetrics
0x70b9e8 DrawTextW
0x70b9ec IntersectRect
GDI32.dll
0x70b0b4 GetDeviceCaps
0x70b0b8 GetPixel
0x70b0bc GetViewportExtEx
0x70b0c0 GetWindowExtEx
0x70b0c4 IntersectClipRect
0x70b0c8 LineTo
0x70b0cc RestoreDC
0x70b0d0 SaveDC
0x70b0d4 SelectClipRgn
0x70b0d8 ExtSelectClipRgn
0x70b0dc SelectPalette
0x70b0e0 SetMapMode
0x70b0e4 SetLayout
0x70b0e8 GetLayout
0x70b0ec SetPolyFillMode
0x70b0f0 SetROP2
0x70b0f4 SetTextAlign
0x70b0f8 MoveToEx
0x70b0fc SetViewportExtEx
0x70b100 SetViewportOrgEx
0x70b104 SetWindowExtEx
0x70b108 SetWindowOrgEx
0x70b10c OffsetViewportOrgEx
0x70b110 OffsetWindowOrgEx
0x70b114 ScaleViewportExtEx
0x70b118 ScaleWindowExtEx
0x70b11c CreateDCW
0x70b120 CombineRgn
0x70b124 CreateRectRgnIndirect
0x70b128 SetRectRgn
0x70b12c DPtoLP
0x70b130 EnumFontFamiliesW
0x70b134 GetTextCharsetInfo
0x70b138 GetTextMetricsW
0x70b13c CreateRoundRectRgn
0x70b140 CreateDIBSection
0x70b144 GetRgnBox
0x70b148 EnumFontFamiliesExW
0x70b14c CreateEllipticRgn
0x70b150 Ellipse
0x70b154 CreatePolygonRgn
0x70b158 Polygon
0x70b15c Polyline
0x70b160 RealizePalette
0x70b164 SetPixel
0x70b168 StretchBlt
0x70b16c SetDIBColorTable
0x70b170 OffsetRgn
0x70b174 CreatePalette
0x70b178 GetNearestPaletteIndex
0x70b17c GetPaletteEntries
0x70b180 GetSystemPaletteEntries
0x70b184 LPtoDP
0x70b188 ExtFloodFill
0x70b18c SetPaletteEntries
0x70b190 FillRgn
0x70b194 FrameRgn
0x70b198 GetBoundsRect
0x70b19c PtInRegion
0x70b1a0 GetWindowOrgEx
0x70b1a4 GetViewportOrgEx
0x70b1a8 SetPixelV
0x70b1ac GetTextFaceW
0x70b1b0 GetClipBox
0x70b1b4 ExcludeClipRect
0x70b1b8 DeleteDC
0x70b1bc CreateRectRgn
0x70b1c0 CreatePatternBrush
0x70b1c4 CreateHatchBrush
0x70b1c8 SetBkColor
0x70b1cc Rectangle
0x70b1d0 GetBkColor
0x70b1d4 Escape
0x70b1d8 ExtTextOutW
0x70b1dc RectVisible
0x70b1e0 PtVisible
0x70b1e4 TextOutW
0x70b1e8 CreatePen
0x70b1ec GetMapMode
0x70b1f0 CreateDIBitmap
0x70b1f4 PatBlt
0x70b1f8 CreateBitmap
0x70b1fc GetTextColor
0x70b200 CreateFontW
0x70b204 DeleteObject
0x70b208 GetTextExtentPoint32W
0x70b20c GetStockObject
0x70b210 SetBkMode
0x70b214 SetTextColor
0x70b218 SelectObject
0x70b21c BitBlt
0x70b220 RoundRect
0x70b224 CreateCompatibleBitmap
0x70b228 CreateCompatibleDC
0x70b22c GetObjectW
0x70b230 CreateFontIndirectW
0x70b234 CopyMetaFileW
0x70b238 GetObjectType
0x70b23c CreateSolidBrush
MSIMG32.dll
0x70b578 TransparentBlt
0x70b57c AlphaBlend
WINSPOOL.DRV
0x70ba78 OpenPrinterW
0x70ba7c DocumentPropertiesW
0x70ba80 ClosePrinter
ADVAPI32.dll
0x70b000 RegEnumValueW
0x70b004 RegOpenKeyExW
0x70b008 RegQueryValueExW
0x70b00c RegEnumKeyExW
0x70b010 CryptEnumProvidersA
0x70b014 CryptSignHashA
0x70b018 CryptExportKey
0x70b01c CryptGetUserKey
0x70b020 CryptGetProvParam
0x70b024 CryptSetHashParam
0x70b028 CryptAcquireContextA
0x70b02c ReportEventA
0x70b030 RegisterEventSourceA
0x70b034 DeregisterEventSource
0x70b038 RegQueryValueW
0x70b03c CryptAcquireContextW
0x70b040 CryptCreateHash
0x70b044 CryptHashData
0x70b048 CryptDeriveKey
0x70b04c CryptEncrypt
0x70b050 RegCloseKey
0x70b054 RegEnumKeyW
0x70b058 RegSetValueExW
0x70b05c RegDeleteValueW
0x70b060 RegDeleteKeyW
0x70b064 RegCreateKeyExW
0x70b068 AdjustTokenPrivileges
0x70b06c LookupPrivilegeValueW
0x70b070 OpenProcessToken
0x70b074 CryptDecrypt
0x70b078 CryptReleaseContext
0x70b07c CryptDestroyHash
0x70b080 CryptDestroyKey
SHELL32.dll
0x70b5f8 DragQueryFileW
0x70b5fc SHAppBarMessage
0x70b600 SHGetFileInfoW
0x70b604 SHGetPathFromIDListW
0x70b608 DragFinish
0x70b60c Shell_NotifyIconW
0x70b610 ShellExecuteW
0x70b614 SHGetFolderPathW
0x70b618 SHGetSpecialFolderLocation
0x70b61c SHGetDesktopFolder
0x70b620 SHCreateDirectoryExW
0x70b624 SHBrowseForFolderW
COMCTL32.dll
0x70b088 InitCommonControlsEx
0x70b08c _TrackMouseEvent
SHLWAPI.dll
0x70b62c UrlUnescapeW
0x70b630 PathStripToRootW
0x70b634 PathIsUNCW
0x70b638 PathFindExtensionW
0x70b63c PathIsDirectoryW
0x70b640 PathCombineW
0x70b644 PathFindFileNameW
0x70b648 PathRemoveFileSpecW
0x70b64c PathFileExistsW
0x70b650 StrFormatKBSizeW
UxTheme.dll
0x70b9f4 GetThemeSysColor
0x70b9f8 IsAppThemed
0x70b9fc DrawThemeText
0x70ba00 DrawThemeParentBackground
0x70ba04 OpenThemeData
0x70ba08 DrawThemeBackground
0x70ba0c GetThemeColor
0x70ba10 GetCurrentThemeName
0x70ba14 CloseThemeData
0x70ba18 GetWindowTheme
0x70ba1c IsThemeBackgroundPartiallyTransparent
0x70ba20 GetThemePartSize
ole32.dll
0x70bc3c CoInitializeEx
0x70bc40 CoUninitialize
0x70bc44 CoRegisterMessageFilter
0x70bc48 CoRevokeClassObject
0x70bc4c RevokeDragDrop
0x70bc50 RegisterDragDrop
0x70bc54 CoLockObjectExternal
0x70bc58 OleGetClipboard
0x70bc5c IsAccelerator
0x70bc60 OleTranslateAccelerator
0x70bc64 OleDestroyMenuDescriptor
0x70bc68 OleCreateMenuDescriptor
0x70bc6c OleLockRunning
0x70bc70 OleUninitialize
0x70bc74 OleInitialize
0x70bc78 CoFreeUnusedLibraries
0x70bc7c DoDragDrop
0x70bc80 OleIsCurrentClipboard
0x70bc84 OleFlushClipboard
0x70bc88 CreateILockBytesOnHGlobal
0x70bc8c StgOpenStorageOnILockBytes
0x70bc90 StgCreateDocfileOnILockBytes
0x70bc94 CoGetClassObject
0x70bc98 CoDisconnectObject
0x70bc9c CoInitialize
0x70bca0 CLSIDFromProgID
0x70bca4 CLSIDFromString
0x70bca8 CoCreateGuid
0x70bcac ReleaseStgMedium
0x70bcb0 OleDuplicateData
0x70bcb4 CoTaskMemFree
0x70bcb8 CoTaskMemAlloc
0x70bcbc CoSetProxyBlanket
0x70bcc0 CoInitializeSecurity
0x70bcc4 CreateStreamOnHGlobal
0x70bcc8 StringFromGUID2
0x70bccc CoCreateInstance
OLEAUT32.dll
0x70b594 SysFreeString
0x70b598 SysAllocString
0x70b59c OleCreateFontIndirect
0x70b5a0 VarBstrFromDate
0x70b5a4 VariantCopy
0x70b5a8 SafeArrayDestroy
0x70b5ac VariantTimeToSystemTime
0x70b5b0 SystemTimeToVariantTime
0x70b5b4 LoadTypeLib
0x70b5b8 VariantChangeType
0x70b5bc SysAllocStringLen
0x70b5c0 SafeArrayGetUBound
0x70b5c4 SafeArrayGetLBound
0x70b5c8 SafeArrayUnaccessData
0x70b5cc SafeArrayAccessData
0x70b5d0 VariantClear
0x70b5d4 VariantInit
0x70b5d8 SysStringLen
0x70b5dc VarBstrCat
oledlg.dll
0x70bcd4 OleUIBusyW
gdiplus.dll
0x70bb50 GdipSetInterpolationMode
0x70bb54 GdipGetImageWidth
0x70bb58 GdipGetImageHeight
0x70bb5c GdipGetImagePixelFormat
0x70bb60 GdipGetImagePalette
0x70bb64 GdipGetImagePaletteSize
0x70bb68 GdipCreateBitmapFromStream
0x70bb6c GdipBitmapLockBits
0x70bb70 GdipBitmapUnlockBits
0x70bb74 GdipLoadImageFromStream
0x70bb78 GdiplusShutdown
0x70bb7c GdiplusStartup
0x70bb80 GdipDrawString
0x70bb84 GdipSetStringFormatLineAlign
0x70bb88 GdipSetStringFormatAlign
0x70bb8c GdipDeleteFont
0x70bb90 GdipCreateFontFamilyFromName
0x70bb94 GdipDeleteFontFamily
0x70bb98 GdipGetGenericFontFamilySansSerif
0x70bb9c GdipCreateFont
0x70bba0 GdipGetDpiY
0x70bba4 GdipDeleteStringFormat
0x70bba8 GdipCreateStringFormat
0x70bbac GdipGraphicsClear
0x70bbb0 GdipSetSolidFillColor
0x70bbb4 GdipAddPathEllipseI
0x70bbb8 GdipResetPath
0x70bbbc GdipDrawPath
0x70bbc0 GdipClosePathFigure
0x70bbc4 GdipAddPathArcI
0x70bbc8 GdipDeletePen
0x70bbcc GdipCreatePen1
0x70bbd0 GdipDeletePath
0x70bbd4 GdipCreatePath
0x70bbd8 GdipFillPath
0x70bbdc GdipCreateBitmapFromHBITMAP
0x70bbe0 GdipDrawImageI
0x70bbe4 GdipSetSmoothingMode
0x70bbe8 GdipGetImageGraphicsContext
0x70bbec GdipCreateBitmapFromScan0
0x70bbf0 GdipReleaseDC
0x70bbf4 GdipDrawImageRectI
0x70bbf8 GdipImageSelectActiveFrame
0x70bbfc GdipGetPropertyItem
0x70bc00 GdipGetPropertyItemSize
0x70bc04 GdipImageGetFrameCount
0x70bc08 GdipImageGetFrameDimensionsList
0x70bc0c GdipImageGetFrameDimensionsCount
0x70bc10 GdipCloneImage
0x70bc14 GdipDisposeImage
0x70bc18 GdipFillRectangleI
0x70bc1c GdipDeleteGraphics
0x70bc20 GdipCreateFromHDC
0x70bc24 GdipCreateSolidFill
0x70bc28 GdipCloneBrush
0x70bc2c GdipAlloc
0x70bc30 GdipDeleteBrush
0x70bc34 GdipFree
SETUPAPI.dll
0x70b5e4 SetupDiDestroyDeviceInfoList
0x70b5e8 SetupDiEnumDeviceInterfaces
0x70b5ec SetupDiGetDeviceInterfaceDetailW
0x70b5f0 SetupDiGetClassDevsW
VERSION.dll
0x70ba28 GetFileVersionInfoW
0x70ba2c GetFileVersionInfoSizeW
0x70ba30 VerQueryValueW
OLEACC.dll
0x70b584 CreateStdAccessibleObject
0x70b588 LresultFromObject
0x70b58c AccessibleObjectFromWindow
WININET.dll
0x70ba38 HttpQueryInfoW
0x70ba3c InternetCrackUrlW
0x70ba40 InternetCanonicalizeUrlW
0x70ba44 InternetOpenW
0x70ba48 InternetCloseHandle
0x70ba4c InternetOpenUrlW
0x70ba50 InternetReadFile
0x70ba54 InternetSetFilePointer
0x70ba58 InternetWriteFile
0x70ba5c InternetQueryDataAvailable
0x70ba60 InternetQueryOptionW
0x70ba64 InternetGetLastResponseInfoW
0x70ba68 InternetSetStatusCallbackW
IMM32.dll
0x70b244 ImmGetContext
0x70b248 ImmGetOpenStatus
0x70b24c ImmReleaseContext
WINMM.dll
0x70ba70 PlaySoundW
CRYPT32.dll
0x70b094 CertOpenStore
0x70b098 CertCloseStore
0x70b09c CertEnumCertificatesInStore
0x70b0a0 CertFindCertificateInStore
0x70b0a4 CertDuplicateCertificateContext
0x70b0a8 CertFreeCertificateContext
0x70b0ac CertGetCertificateContextProperty
EAT(Export Address Table) is none