ScreenShot
| Created | 2021.10.20 17:39 | Machine | s1_win7_x6401 |
| Filename | eresizebar.png | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | a10f6a8bf27612bc7f83054b99ebbed3 | ||
| sha256 | 60c1ebf27acdacc9f28977e0ee6c0c44e49d2ff4d67679de397e49b08b292b56 | ||
| ssdeep | 12288:7eoWdAMLC3CPidoZrhgzpvIikJZYjtNtO:2dAM+UieZGzRIxZYY | ||
| imphash | 134edaa617261993b5538622d17c79f0 | ||
| impfuzzy | 192:2/XowJbwQFoCzIEZgQPloAb90vUcRcUc75M:FWwWrHr9sUERp | ||
Network IP location
Signature (15cnts)
| Level | Description |
|---|---|
| danger | Connects to IP addresses that are no longer responding to requests (legitimate services will remain up-and-running usually) |
| watch | Communicates with host for which no DNS query was performed |
| notice | A process attempted to delay the analysis task. |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Checks adapter addresses which can be used to detect virtual network interfaces |
| notice | Checks for the Locally Unique Identifier on the system for a suspicious privilege |
| notice | Creates a suspicious process |
| notice | HTTP traffic contains suspicious features which may be indicative of malware related traffic |
| notice | One or more potentially interesting buffers were extracted |
| notice | Performs some HTTP requests |
| notice | Terminates another process |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | One or more processes crashed |
| info | Queries for the computername |
| info | The executable uses a known packer |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_1_Zero | Win32 Trojan Emotet | binaries (upload) |
| danger | Win32_Trojan_Gen_1_0904B0_Zero | Win32 Trojan Emotet | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (6cnts) ?
Suricata ids
ET CNC Feodo Tracker Reported CnC Server group 9
ET JA3 Hash - Possible Malware - Various Trickbot/Kovter/Dridex
ET CNC Feodo Tracker Reported CnC Server group 18
ET POLICY OpenSSL Demo CA - Internet Widgits Pty (O)
ET JA3 Hash - Possible Malware - Various Trickbot/Kovter/Dridex
ET CNC Feodo Tracker Reported CnC Server group 18
ET POLICY OpenSSL Demo CA - Internet Widgits Pty (O)
PE API
IAT(Import Address Table) Library
KERNEL32.dll
0x493b6c SystemTimeToFileTime
0x493b70 SetFileTime
0x493b74 SetFileAttributesA
0x493b78 FileTimeToSystemTime
0x493b7c FileTimeToLocalFileTime
0x493b80 RtlUnwind
0x493b84 HeapAlloc
0x493b88 GetStartupInfoA
0x493b8c GetCommandLineA
0x493b90 TerminateProcess
0x493b94 HeapFree
0x493b98 CreateThread
0x493b9c ExitThread
0x493ba0 RaiseException
0x493ba4 HeapReAlloc
0x493ba8 HeapSize
0x493bac GetACP
0x493bb0 GetTimeZoneInformation
0x493bb4 GetSystemTime
0x493bb8 GetLocalTime
0x493bbc HeapDestroy
0x493bc0 HeapCreate
0x493bc4 VirtualFree
0x493bc8 FatalAppExitA
0x493bcc VirtualAlloc
0x493bd0 IsBadWritePtr
0x493bd4 UnhandledExceptionFilter
0x493bd8 FreeEnvironmentStringsA
0x493bdc LocalFileTimeToFileTime
0x493be0 GetEnvironmentStrings
0x493be4 GetEnvironmentStringsW
0x493be8 SetHandleCount
0x493bec GetStdHandle
0x493bf0 GetFileType
0x493bf4 SetUnhandledExceptionFilter
0x493bf8 LCMapStringA
0x493bfc LCMapStringW
0x493c00 GetStringTypeA
0x493c04 GetStringTypeW
0x493c08 Sleep
0x493c0c IsBadReadPtr
0x493c10 IsBadCodePtr
0x493c14 IsValidLocale
0x493c18 IsValidCodePage
0x493c1c GetLocaleInfoA
0x493c20 EnumSystemLocalesA
0x493c24 GetUserDefaultLCID
0x493c28 GetVersionExA
0x493c2c SetConsoleCtrlHandler
0x493c30 SetStdHandle
0x493c34 CompareStringA
0x493c38 CompareStringW
0x493c3c SetEnvironmentVariableA
0x493c40 GetLocaleInfoW
0x493c44 GetFileTime
0x493c48 GetFileSize
0x493c4c GetFileAttributesA
0x493c50 GetShortPathNameA
0x493c54 GetProfileStringA
0x493c58 GetThreadLocale
0x493c5c GetStringTypeExA
0x493c60 GetFullPathNameA
0x493c64 GetVolumeInformationA
0x493c68 FindFirstFileA
0x493c6c FindClose
0x493c70 DeleteFileA
0x493c74 MoveFileA
0x493c78 SetEndOfFile
0x493c7c UnlockFile
0x493c80 LockFile
0x493c84 FlushFileBuffers
0x493c88 SetFilePointer
0x493c8c WriteFile
0x493c90 ReadFile
0x493c94 CreateFileA
0x493c98 GetCurrentProcess
0x493c9c DuplicateHandle
0x493ca0 SetErrorMode
0x493ca4 GetOEMCP
0x493ca8 GetCPInfo
0x493cac SizeofResource
0x493cb0 GetProcessVersion
0x493cb4 GetLastError
0x493cb8 GetCurrentDirectoryA
0x493cbc WritePrivateProfileStringA
0x493cc0 GetPrivateProfileStringA
0x493cc4 GetPrivateProfileIntA
0x493cc8 GlobalFlags
0x493ccc lstrcpynA
0x493cd0 TlsGetValue
0x493cd4 LocalReAlloc
0x493cd8 TlsSetValue
0x493cdc EnterCriticalSection
0x493ce0 GlobalReAlloc
0x493ce4 LeaveCriticalSection
0x493ce8 TlsFree
0x493cec GlobalHandle
0x493cf0 DeleteCriticalSection
0x493cf4 TlsAlloc
0x493cf8 InitializeCriticalSection
0x493cfc LocalFree
0x493d00 LocalAlloc
0x493d04 MulDiv
0x493d08 SetLastError
0x493d0c MultiByteToWideChar
0x493d10 WideCharToMultiByte
0x493d14 lstrlenA
0x493d18 InterlockedIncrement
0x493d1c InterlockedDecrement
0x493d20 FreeLibrary
0x493d24 GetVersion
0x493d28 lstrcatA
0x493d2c GlobalGetAtomNameA
0x493d30 ExitProcess
0x493d34 GlobalAddAtomA
0x493d38 GlobalFindAtomA
0x493d3c lstrcpyA
0x493d40 GetModuleHandleA
0x493d44 GetProcAddress
0x493d48 GlobalUnlock
0x493d4c GlobalFree
0x493d50 LockResource
0x493d54 FindResourceA
0x493d58 LoadResource
0x493d5c CreateEventA
0x493d60 SuspendThread
0x493d64 SetThreadPriority
0x493d68 ResumeThread
0x493d6c SetEvent
0x493d70 WaitForSingleObject
0x493d74 CloseHandle
0x493d78 GetModuleFileNameA
0x493d7c GlobalLock
0x493d80 GlobalAlloc
0x493d84 GlobalDeleteAtom
0x493d88 lstrcmpA
0x493d8c lstrcmpiA
0x493d90 GetCurrentThread
0x493d94 GetCurrentThreadId
0x493d98 LoadLibraryA
0x493d9c FreeEnvironmentStringsW
USER32.dll
0x493e78 DeferWindowPos
0x493e7c EqualRect
0x493e80 ScreenToClient
0x493e84 AdjustWindowRectEx
0x493e88 SetFocus
0x493e8c GetSysColor
0x493e90 MapWindowPoints
0x493e94 SendDlgItemMessageA
0x493e98 UpdateWindow
0x493e9c CheckDlgButton
0x493ea0 CheckRadioButton
0x493ea4 GetDlgItemInt
0x493ea8 GetDlgItemTextA
0x493eac SetDlgItemInt
0x493eb0 SetDlgItemTextA
0x493eb4 IsDlgButtonChecked
0x493eb8 ScrollWindowEx
0x493ebc IsDialogMessageA
0x493ec0 SetWindowTextA
0x493ec4 MoveWindow
0x493ec8 ShowWindow
0x493ecc wvsprintfA
0x493ed0 CharToOemA
0x493ed4 OemToCharA
0x493ed8 LoadStringA
0x493edc DestroyMenu
0x493ee0 ClientToScreen
0x493ee4 GetDC
0x493ee8 ReleaseDC
0x493eec GetWindowDC
0x493ef0 BeginPaint
0x493ef4 EndPaint
0x493ef8 TabbedTextOutA
0x493efc DrawTextA
0x493f00 GrayStringA
0x493f04 LoadCursorA
0x493f08 SetCapture
0x493f0c ReleaseCapture
0x493f10 WaitMessage
0x493f14 GetDesktopWindow
0x493f18 GetWindowThreadProcessId
0x493f1c WindowFromPoint
0x493f20 GetClassNameA
0x493f24 PtInRect
0x493f28 InsertMenuA
0x493f2c DeleteMenu
0x493f30 GetMenuStringA
0x493f34 GetSysColorBrush
0x493f38 GetDialogBaseUnits
0x493f3c SetRectEmpty
0x493f40 LoadAcceleratorsA
0x493f44 TranslateAcceleratorA
0x493f48 LoadMenuA
0x493f4c SetMenu
0x493f50 ReuseDDElParam
0x493f54 UnpackDDElParam
0x493f58 InvalidateRect
0x493f5c BringWindowToTop
0x493f60 CharUpperA
0x493f64 SetScrollInfo
0x493f68 ShowScrollBar
0x493f6c GetScrollRange
0x493f70 SetScrollRange
0x493f74 GetScrollPos
0x493f78 SetScrollPos
0x493f7c GetTopWindow
0x493f80 IsChild
0x493f84 GetCapture
0x493f88 WinHelpA
0x493f8c wsprintfA
0x493f90 GetClassInfoA
0x493f94 BeginDeferWindowPos
0x493f98 GetMenu
0x493f9c GetMenuItemCount
0x493fa0 GetSubMenu
0x493fa4 GetMenuItemID
0x493fa8 TrackPopupMenu
0x493fac SetWindowPlacement
0x493fb0 GetWindowTextLengthA
0x493fb4 GetWindowTextA
0x493fb8 GetDlgCtrlID
0x493fbc DefWindowProcA
0x493fc0 CreateWindowExA
0x493fc4 GetClassLongA
0x493fc8 SetPropA
0x493fcc UnhookWindowsHookEx
0x493fd0 CallWindowProcA
0x493fd4 RemovePropA
0x493fd8 GetMessageTime
0x493fdc GetMessagePos
0x493fe0 GetForegroundWindow
0x493fe4 SetForegroundWindow
0x493fe8 GetWindow
0x493fec SetWindowLongA
0x493ff0 SetWindowPos
0x493ff4 RegisterWindowMessageA
0x493ff8 OffsetRect
0x493ffc IntersectRect
0x494000 SystemParametersInfoA
0x494004 GetWindowPlacement
0x494008 GetWindowRect
0x49400c EndDialog
0x494010 SetActiveWindow
0x494014 IsWindow
0x494018 CreateDialogIndirectParamA
0x49401c DestroyWindow
0x494020 GetDlgItem
0x494024 GetMenuCheckMarkDimensions
0x494028 LoadBitmapA
0x49402c GetMenuState
0x494030 ModifyMenuA
0x494034 SetMenuItemBitmaps
0x494038 CheckMenuItem
0x49403c EnableMenuItem
0x494040 GetFocus
0x494044 GetNextDlgTabItem
0x494048 GetMessageA
0x49404c TranslateMessage
0x494050 DispatchMessageA
0x494054 GetActiveWindow
0x494058 GetKeyState
0x49405c CallNextHookEx
0x494060 ValidateRect
0x494064 IsWindowVisible
0x494068 PeekMessageA
0x49406c GetCursorPos
0x494070 SetWindowsHookExA
0x494074 GetParent
0x494078 GetLastActivePopup
0x49407c EnableWindow
0x494080 LoadIconA
0x494084 SendMessageA
0x494088 AppendMenuA
0x49408c UnregisterClassA
0x494090 HideCaret
0x494094 IsWindowEnabled
0x494098 GetWindowLongA
0x49409c MessageBoxA
0x4940a0 SetCursor
0x4940a4 ShowOwnedPopups
0x4940a8 PostQuitMessage
0x4940ac PostMessageA
0x4940b0 IsIconic
0x4940b4 GetSystemMetrics
0x4940b8 CopyRect
0x4940bc EndDeferWindowPos
0x4940c0 ScrollWindow
0x4940c4 RegisterClassA
0x4940c8 GetScrollInfo
0x4940cc GetClientRect
0x4940d0 DrawIcon
0x4940d4 GetSystemMenu
0x4940d8 IsWindowUnicode
0x4940dc CharNextA
0x4940e0 InflateRect
0x4940e4 DefDlgProcA
0x4940e8 DrawFocusRect
0x4940ec ExcludeUpdateRgn
0x4940f0 ShowCaret
0x4940f4 GetPropA
GDI32.dll
0x4939e0 GetStockObject
0x4939e4 SelectPalette
0x4939e8 SetBkMode
0x4939ec SetPolyFillMode
0x4939f0 SetROP2
0x4939f4 SetStretchBltMode
0x4939f8 SetMapMode
0x4939fc SetViewportOrgEx
0x493a00 OffsetViewportOrgEx
0x493a04 SetViewportExtEx
0x493a08 ScaleViewportExtEx
0x493a0c SetWindowOrgEx
0x493a10 OffsetWindowOrgEx
0x493a14 SetWindowExtEx
0x493a18 ScaleWindowExtEx
0x493a1c SelectClipRgn
0x493a20 ExcludeClipRect
0x493a24 IntersectClipRect
0x493a28 OffsetClipRgn
0x493a2c MoveToEx
0x493a30 LineTo
0x493a34 SetTextAlign
0x493a38 SetTextJustification
0x493a3c SetTextCharacterExtra
0x493a40 SetMapperFlags
0x493a44 GetCurrentPositionEx
0x493a48 ArcTo
0x493a4c SetArcDirection
0x493a50 PolyDraw
0x493a54 SelectObject
0x493a58 SetColorAdjustment
0x493a5c PolyBezierTo
0x493a60 DeleteObject
0x493a64 GetClipRgn
0x493a68 CreateRectRgn
0x493a6c SelectClipPath
0x493a70 ExtSelectClipRgn
0x493a74 PlayMetaFileRecord
0x493a78 GetObjectType
0x493a7c EnumMetaFile
0x493a80 PlayMetaFile
0x493a84 GetDeviceCaps
0x493a88 GetViewportExtEx
0x493a8c GetWindowExtEx
0x493a90 CreatePen
0x493a94 ExtCreatePen
0x493a98 CreateSolidBrush
0x493a9c CreateHatchBrush
0x493aa0 CreatePatternBrush
0x493aa4 CreateDIBPatternBrushPt
0x493aa8 PtVisible
0x493aac RectVisible
0x493ab0 TextOutA
0x493ab4 ExtTextOutA
0x493ab8 Escape
0x493abc GetTextExtentPoint32A
0x493ac0 GetTextMetricsA
0x493ac4 CreateFontIndirectA
0x493ac8 RestoreDC
0x493acc SaveDC
0x493ad0 StartDocA
0x493ad4 DeleteDC
0x493ad8 GetObjectA
0x493adc SetBkColor
0x493ae0 SetTextColor
0x493ae4 GetClipBox
0x493ae8 GetDCOrgEx
0x493aec PolylineTo
0x493af0 CreateDIBitmap
0x493af4 PatBlt
0x493af8 GetTextExtentPointA
0x493afc BitBlt
0x493b00 CreateCompatibleDC
0x493b04 CreateBitmap
comdlg32.dll
0x4941dc GetFileTitleA
WINSPOOL.DRV
0x4941a4 DocumentPropertiesA
0x4941a8 ClosePrinter
0x4941ac OpenPrinterA
ADVAPI32.dll
0x493960 RegSetValueExA
0x493964 RegOpenKeyA
0x493968 RegDeleteKeyA
0x49396c RegDeleteValueA
0x493970 RegCloseKey
0x493974 RegQueryValueExA
0x493978 RegOpenKeyExA
0x49397c RegCreateKeyExA
SHELL32.dll
0x493e3c DragQueryFileA
0x493e40 DragFinish
0x493e44 DragAcceptFiles
0x493e48 SHGetFileInfoA
COMCTL32.dll
0x4939b0 None
EAT(Export Address Table) is none
KERNEL32.dll
0x493b6c SystemTimeToFileTime
0x493b70 SetFileTime
0x493b74 SetFileAttributesA
0x493b78 FileTimeToSystemTime
0x493b7c FileTimeToLocalFileTime
0x493b80 RtlUnwind
0x493b84 HeapAlloc
0x493b88 GetStartupInfoA
0x493b8c GetCommandLineA
0x493b90 TerminateProcess
0x493b94 HeapFree
0x493b98 CreateThread
0x493b9c ExitThread
0x493ba0 RaiseException
0x493ba4 HeapReAlloc
0x493ba8 HeapSize
0x493bac GetACP
0x493bb0 GetTimeZoneInformation
0x493bb4 GetSystemTime
0x493bb8 GetLocalTime
0x493bbc HeapDestroy
0x493bc0 HeapCreate
0x493bc4 VirtualFree
0x493bc8 FatalAppExitA
0x493bcc VirtualAlloc
0x493bd0 IsBadWritePtr
0x493bd4 UnhandledExceptionFilter
0x493bd8 FreeEnvironmentStringsA
0x493bdc LocalFileTimeToFileTime
0x493be0 GetEnvironmentStrings
0x493be4 GetEnvironmentStringsW
0x493be8 SetHandleCount
0x493bec GetStdHandle
0x493bf0 GetFileType
0x493bf4 SetUnhandledExceptionFilter
0x493bf8 LCMapStringA
0x493bfc LCMapStringW
0x493c00 GetStringTypeA
0x493c04 GetStringTypeW
0x493c08 Sleep
0x493c0c IsBadReadPtr
0x493c10 IsBadCodePtr
0x493c14 IsValidLocale
0x493c18 IsValidCodePage
0x493c1c GetLocaleInfoA
0x493c20 EnumSystemLocalesA
0x493c24 GetUserDefaultLCID
0x493c28 GetVersionExA
0x493c2c SetConsoleCtrlHandler
0x493c30 SetStdHandle
0x493c34 CompareStringA
0x493c38 CompareStringW
0x493c3c SetEnvironmentVariableA
0x493c40 GetLocaleInfoW
0x493c44 GetFileTime
0x493c48 GetFileSize
0x493c4c GetFileAttributesA
0x493c50 GetShortPathNameA
0x493c54 GetProfileStringA
0x493c58 GetThreadLocale
0x493c5c GetStringTypeExA
0x493c60 GetFullPathNameA
0x493c64 GetVolumeInformationA
0x493c68 FindFirstFileA
0x493c6c FindClose
0x493c70 DeleteFileA
0x493c74 MoveFileA
0x493c78 SetEndOfFile
0x493c7c UnlockFile
0x493c80 LockFile
0x493c84 FlushFileBuffers
0x493c88 SetFilePointer
0x493c8c WriteFile
0x493c90 ReadFile
0x493c94 CreateFileA
0x493c98 GetCurrentProcess
0x493c9c DuplicateHandle
0x493ca0 SetErrorMode
0x493ca4 GetOEMCP
0x493ca8 GetCPInfo
0x493cac SizeofResource
0x493cb0 GetProcessVersion
0x493cb4 GetLastError
0x493cb8 GetCurrentDirectoryA
0x493cbc WritePrivateProfileStringA
0x493cc0 GetPrivateProfileStringA
0x493cc4 GetPrivateProfileIntA
0x493cc8 GlobalFlags
0x493ccc lstrcpynA
0x493cd0 TlsGetValue
0x493cd4 LocalReAlloc
0x493cd8 TlsSetValue
0x493cdc EnterCriticalSection
0x493ce0 GlobalReAlloc
0x493ce4 LeaveCriticalSection
0x493ce8 TlsFree
0x493cec GlobalHandle
0x493cf0 DeleteCriticalSection
0x493cf4 TlsAlloc
0x493cf8 InitializeCriticalSection
0x493cfc LocalFree
0x493d00 LocalAlloc
0x493d04 MulDiv
0x493d08 SetLastError
0x493d0c MultiByteToWideChar
0x493d10 WideCharToMultiByte
0x493d14 lstrlenA
0x493d18 InterlockedIncrement
0x493d1c InterlockedDecrement
0x493d20 FreeLibrary
0x493d24 GetVersion
0x493d28 lstrcatA
0x493d2c GlobalGetAtomNameA
0x493d30 ExitProcess
0x493d34 GlobalAddAtomA
0x493d38 GlobalFindAtomA
0x493d3c lstrcpyA
0x493d40 GetModuleHandleA
0x493d44 GetProcAddress
0x493d48 GlobalUnlock
0x493d4c GlobalFree
0x493d50 LockResource
0x493d54 FindResourceA
0x493d58 LoadResource
0x493d5c CreateEventA
0x493d60 SuspendThread
0x493d64 SetThreadPriority
0x493d68 ResumeThread
0x493d6c SetEvent
0x493d70 WaitForSingleObject
0x493d74 CloseHandle
0x493d78 GetModuleFileNameA
0x493d7c GlobalLock
0x493d80 GlobalAlloc
0x493d84 GlobalDeleteAtom
0x493d88 lstrcmpA
0x493d8c lstrcmpiA
0x493d90 GetCurrentThread
0x493d94 GetCurrentThreadId
0x493d98 LoadLibraryA
0x493d9c FreeEnvironmentStringsW
USER32.dll
0x493e78 DeferWindowPos
0x493e7c EqualRect
0x493e80 ScreenToClient
0x493e84 AdjustWindowRectEx
0x493e88 SetFocus
0x493e8c GetSysColor
0x493e90 MapWindowPoints
0x493e94 SendDlgItemMessageA
0x493e98 UpdateWindow
0x493e9c CheckDlgButton
0x493ea0 CheckRadioButton
0x493ea4 GetDlgItemInt
0x493ea8 GetDlgItemTextA
0x493eac SetDlgItemInt
0x493eb0 SetDlgItemTextA
0x493eb4 IsDlgButtonChecked
0x493eb8 ScrollWindowEx
0x493ebc IsDialogMessageA
0x493ec0 SetWindowTextA
0x493ec4 MoveWindow
0x493ec8 ShowWindow
0x493ecc wvsprintfA
0x493ed0 CharToOemA
0x493ed4 OemToCharA
0x493ed8 LoadStringA
0x493edc DestroyMenu
0x493ee0 ClientToScreen
0x493ee4 GetDC
0x493ee8 ReleaseDC
0x493eec GetWindowDC
0x493ef0 BeginPaint
0x493ef4 EndPaint
0x493ef8 TabbedTextOutA
0x493efc DrawTextA
0x493f00 GrayStringA
0x493f04 LoadCursorA
0x493f08 SetCapture
0x493f0c ReleaseCapture
0x493f10 WaitMessage
0x493f14 GetDesktopWindow
0x493f18 GetWindowThreadProcessId
0x493f1c WindowFromPoint
0x493f20 GetClassNameA
0x493f24 PtInRect
0x493f28 InsertMenuA
0x493f2c DeleteMenu
0x493f30 GetMenuStringA
0x493f34 GetSysColorBrush
0x493f38 GetDialogBaseUnits
0x493f3c SetRectEmpty
0x493f40 LoadAcceleratorsA
0x493f44 TranslateAcceleratorA
0x493f48 LoadMenuA
0x493f4c SetMenu
0x493f50 ReuseDDElParam
0x493f54 UnpackDDElParam
0x493f58 InvalidateRect
0x493f5c BringWindowToTop
0x493f60 CharUpperA
0x493f64 SetScrollInfo
0x493f68 ShowScrollBar
0x493f6c GetScrollRange
0x493f70 SetScrollRange
0x493f74 GetScrollPos
0x493f78 SetScrollPos
0x493f7c GetTopWindow
0x493f80 IsChild
0x493f84 GetCapture
0x493f88 WinHelpA
0x493f8c wsprintfA
0x493f90 GetClassInfoA
0x493f94 BeginDeferWindowPos
0x493f98 GetMenu
0x493f9c GetMenuItemCount
0x493fa0 GetSubMenu
0x493fa4 GetMenuItemID
0x493fa8 TrackPopupMenu
0x493fac SetWindowPlacement
0x493fb0 GetWindowTextLengthA
0x493fb4 GetWindowTextA
0x493fb8 GetDlgCtrlID
0x493fbc DefWindowProcA
0x493fc0 CreateWindowExA
0x493fc4 GetClassLongA
0x493fc8 SetPropA
0x493fcc UnhookWindowsHookEx
0x493fd0 CallWindowProcA
0x493fd4 RemovePropA
0x493fd8 GetMessageTime
0x493fdc GetMessagePos
0x493fe0 GetForegroundWindow
0x493fe4 SetForegroundWindow
0x493fe8 GetWindow
0x493fec SetWindowLongA
0x493ff0 SetWindowPos
0x493ff4 RegisterWindowMessageA
0x493ff8 OffsetRect
0x493ffc IntersectRect
0x494000 SystemParametersInfoA
0x494004 GetWindowPlacement
0x494008 GetWindowRect
0x49400c EndDialog
0x494010 SetActiveWindow
0x494014 IsWindow
0x494018 CreateDialogIndirectParamA
0x49401c DestroyWindow
0x494020 GetDlgItem
0x494024 GetMenuCheckMarkDimensions
0x494028 LoadBitmapA
0x49402c GetMenuState
0x494030 ModifyMenuA
0x494034 SetMenuItemBitmaps
0x494038 CheckMenuItem
0x49403c EnableMenuItem
0x494040 GetFocus
0x494044 GetNextDlgTabItem
0x494048 GetMessageA
0x49404c TranslateMessage
0x494050 DispatchMessageA
0x494054 GetActiveWindow
0x494058 GetKeyState
0x49405c CallNextHookEx
0x494060 ValidateRect
0x494064 IsWindowVisible
0x494068 PeekMessageA
0x49406c GetCursorPos
0x494070 SetWindowsHookExA
0x494074 GetParent
0x494078 GetLastActivePopup
0x49407c EnableWindow
0x494080 LoadIconA
0x494084 SendMessageA
0x494088 AppendMenuA
0x49408c UnregisterClassA
0x494090 HideCaret
0x494094 IsWindowEnabled
0x494098 GetWindowLongA
0x49409c MessageBoxA
0x4940a0 SetCursor
0x4940a4 ShowOwnedPopups
0x4940a8 PostQuitMessage
0x4940ac PostMessageA
0x4940b0 IsIconic
0x4940b4 GetSystemMetrics
0x4940b8 CopyRect
0x4940bc EndDeferWindowPos
0x4940c0 ScrollWindow
0x4940c4 RegisterClassA
0x4940c8 GetScrollInfo
0x4940cc GetClientRect
0x4940d0 DrawIcon
0x4940d4 GetSystemMenu
0x4940d8 IsWindowUnicode
0x4940dc CharNextA
0x4940e0 InflateRect
0x4940e4 DefDlgProcA
0x4940e8 DrawFocusRect
0x4940ec ExcludeUpdateRgn
0x4940f0 ShowCaret
0x4940f4 GetPropA
GDI32.dll
0x4939e0 GetStockObject
0x4939e4 SelectPalette
0x4939e8 SetBkMode
0x4939ec SetPolyFillMode
0x4939f0 SetROP2
0x4939f4 SetStretchBltMode
0x4939f8 SetMapMode
0x4939fc SetViewportOrgEx
0x493a00 OffsetViewportOrgEx
0x493a04 SetViewportExtEx
0x493a08 ScaleViewportExtEx
0x493a0c SetWindowOrgEx
0x493a10 OffsetWindowOrgEx
0x493a14 SetWindowExtEx
0x493a18 ScaleWindowExtEx
0x493a1c SelectClipRgn
0x493a20 ExcludeClipRect
0x493a24 IntersectClipRect
0x493a28 OffsetClipRgn
0x493a2c MoveToEx
0x493a30 LineTo
0x493a34 SetTextAlign
0x493a38 SetTextJustification
0x493a3c SetTextCharacterExtra
0x493a40 SetMapperFlags
0x493a44 GetCurrentPositionEx
0x493a48 ArcTo
0x493a4c SetArcDirection
0x493a50 PolyDraw
0x493a54 SelectObject
0x493a58 SetColorAdjustment
0x493a5c PolyBezierTo
0x493a60 DeleteObject
0x493a64 GetClipRgn
0x493a68 CreateRectRgn
0x493a6c SelectClipPath
0x493a70 ExtSelectClipRgn
0x493a74 PlayMetaFileRecord
0x493a78 GetObjectType
0x493a7c EnumMetaFile
0x493a80 PlayMetaFile
0x493a84 GetDeviceCaps
0x493a88 GetViewportExtEx
0x493a8c GetWindowExtEx
0x493a90 CreatePen
0x493a94 ExtCreatePen
0x493a98 CreateSolidBrush
0x493a9c CreateHatchBrush
0x493aa0 CreatePatternBrush
0x493aa4 CreateDIBPatternBrushPt
0x493aa8 PtVisible
0x493aac RectVisible
0x493ab0 TextOutA
0x493ab4 ExtTextOutA
0x493ab8 Escape
0x493abc GetTextExtentPoint32A
0x493ac0 GetTextMetricsA
0x493ac4 CreateFontIndirectA
0x493ac8 RestoreDC
0x493acc SaveDC
0x493ad0 StartDocA
0x493ad4 DeleteDC
0x493ad8 GetObjectA
0x493adc SetBkColor
0x493ae0 SetTextColor
0x493ae4 GetClipBox
0x493ae8 GetDCOrgEx
0x493aec PolylineTo
0x493af0 CreateDIBitmap
0x493af4 PatBlt
0x493af8 GetTextExtentPointA
0x493afc BitBlt
0x493b00 CreateCompatibleDC
0x493b04 CreateBitmap
comdlg32.dll
0x4941dc GetFileTitleA
WINSPOOL.DRV
0x4941a4 DocumentPropertiesA
0x4941a8 ClosePrinter
0x4941ac OpenPrinterA
ADVAPI32.dll
0x493960 RegSetValueExA
0x493964 RegOpenKeyA
0x493968 RegDeleteKeyA
0x49396c RegDeleteValueA
0x493970 RegCloseKey
0x493974 RegQueryValueExA
0x493978 RegOpenKeyExA
0x49397c RegCreateKeyExA
SHELL32.dll
0x493e3c DragQueryFileA
0x493e40 DragFinish
0x493e44 DragAcceptFiles
0x493e48 SHGetFileInfoA
COMCTL32.dll
0x4939b0 None
EAT(Export Address Table) is none