ScreenShot
| Created | 2021.11.02 11:45 | Machine | s1_win7_x6401 |
| Filename | AAAA.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 17 detected (malicious, high confidence, Unsafe, Save, ZelphiF, IPW@aC7JA@dO, Urelas, Hoax, ArchSMS, XPACK, Gen8, score, TScope, Delf, MachineLearning, Anomalous, 100%, ET#81%, RDMK, cmRtazrNSf5uBJB4GPVqpnKebXtL, susgen) | ||
| md5 | 353bbe59184e2235c71991c24de394d9 | ||
| sha256 | 458b8d841b5edb574a9ebfb6e3ad1d6a92b53dd2b0ecb12e4471328bfce73dda | ||
| ssdeep | 24576:rFT8JX3rtOfzZLZfpXbjBE4OykY4B+SwL2tmoRJo4MXLQ8vx2JaS2Crpc+Wa1It:RnzZjj9UIS3tjAGJ11I | ||
| imphash | ddb743cde50196c31606fdf3f3a1ded3 | ||
| impfuzzy | 192:oc+NeRuufzEUhc9MLoINwJNIoZJ/F9CDm3c1F8hX0xxvPbOQhl91:0Nyf69J1qa94aM1Fg0xpPbOQ91 | ||
Network IP location
Signature (7cnts)
| Level | Description |
|---|---|
| watch | Communicates with host for which no DNS query was performed |
| watch | File has been identified by 17 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Foreign language identified in PE resource |
| info | Checks amount of memory in system |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
PE API
IAT(Import Address Table) Library
oleaut32.dll
0x58eb64 SysFreeString
0x58eb68 SysReAllocStringLen
0x58eb6c SysAllocStringLen
advapi32.dll
0x58eb74 RegQueryValueExW
0x58eb78 RegOpenKeyExW
0x58eb7c RegCloseKey
user32.dll
0x58eb84 LoadStringW
0x58eb88 MessageBoxA
0x58eb8c CharNextW
kernel32.dll
0x58eb94 lstrcmpiA
0x58eb98 LoadLibraryA
0x58eb9c LocalFree
0x58eba0 LocalAlloc
0x58eba4 GetACP
0x58eba8 Sleep
0x58ebac VirtualFree
0x58ebb0 VirtualAlloc
0x58ebb4 GetSystemInfo
0x58ebb8 GetTickCount
0x58ebbc QueryPerformanceCounter
0x58ebc0 GetVersion
0x58ebc4 GetCurrentThreadId
0x58ebc8 VirtualQuery
0x58ebcc WideCharToMultiByte
0x58ebd0 SetCurrentDirectoryW
0x58ebd4 MultiByteToWideChar
0x58ebd8 lstrlenW
0x58ebdc lstrcpynW
0x58ebe0 LoadLibraryExW
0x58ebe4 IsValidLocale
0x58ebe8 GetSystemDefaultUILanguage
0x58ebec GetStartupInfoA
0x58ebf0 GetProcAddress
0x58ebf4 GetModuleHandleW
0x58ebf8 GetModuleFileNameW
0x58ebfc GetUserDefaultUILanguage
0x58ec00 GetLocaleInfoW
0x58ec04 GetLastError
0x58ec08 GetCurrentDirectoryW
0x58ec0c GetCommandLineW
0x58ec10 FreeLibrary
0x58ec14 FindFirstFileW
0x58ec18 FindClose
0x58ec1c ExitProcess
0x58ec20 ExitThread
0x58ec24 CreateThread
0x58ec28 CompareStringW
0x58ec2c WriteFile
0x58ec30 UnhandledExceptionFilter
0x58ec34 RtlUnwind
0x58ec38 RaiseException
0x58ec3c GetStdHandle
0x58ec40 DeleteCriticalSection
0x58ec44 LeaveCriticalSection
0x58ec48 EnterCriticalSection
0x58ec4c InitializeCriticalSection
0x58ec50 CloseHandle
kernel32.dll
0x58ec58 TlsSetValue
0x58ec5c TlsGetValue
0x58ec60 LocalAlloc
0x58ec64 GetModuleHandleW
user32.dll
0x58ec6c CreateWindowExW
0x58ec70 WindowFromPoint
0x58ec74 WaitMessage
0x58ec78 UpdateWindow
0x58ec7c UnregisterClassW
0x58ec80 UnhookWindowsHookEx
0x58ec84 TranslateMessage
0x58ec88 TranslateMDISysAccel
0x58ec8c TrackPopupMenu
0x58ec90 SystemParametersInfoW
0x58ec94 ShowWindow
0x58ec98 ShowScrollBar
0x58ec9c ShowOwnedPopups
0x58eca0 ShowCaret
0x58eca4 SetWindowsHookExW
0x58eca8 SetWindowTextW
0x58ecac SetWindowPos
0x58ecb0 SetWindowPlacement
0x58ecb4 SetWindowLongW
0x58ecb8 SetTimer
0x58ecbc SetScrollRange
0x58ecc0 SetScrollPos
0x58ecc4 SetScrollInfo
0x58ecc8 SetRect
0x58eccc SetPropW
0x58ecd0 SetParent
0x58ecd4 SetMenuItemInfoW
0x58ecd8 SetMenu
0x58ecdc SetForegroundWindow
0x58ece0 SetFocus
0x58ece4 SetCursorPos
0x58ece8 SetCursor
0x58ecec SetClipboardData
0x58ecf0 SetClassLongW
0x58ecf4 SetCapture
0x58ecf8 SetActiveWindow
0x58ecfc SendMessageA
0x58ed00 SendMessageW
0x58ed04 ScrollWindow
0x58ed08 ScreenToClient
0x58ed0c RemovePropW
0x58ed10 RemoveMenu
0x58ed14 ReleaseDC
0x58ed18 ReleaseCapture
0x58ed1c RegisterWindowMessageW
0x58ed20 RegisterClipboardFormatW
0x58ed24 RegisterClassW
0x58ed28 RedrawWindow
0x58ed2c PtInRect
0x58ed30 PostQuitMessage
0x58ed34 PostMessageW
0x58ed38 PeekMessageA
0x58ed3c PeekMessageW
0x58ed40 OpenClipboard
0x58ed44 OffsetRect
0x58ed48 NotifyWinEvent
0x58ed4c MsgWaitForMultipleObjectsEx
0x58ed50 MsgWaitForMultipleObjects
0x58ed54 MessageBoxW
0x58ed58 MessageBeep
0x58ed5c MapWindowPoints
0x58ed60 MapVirtualKeyW
0x58ed64 LoadStringW
0x58ed68 LoadKeyboardLayoutW
0x58ed6c LoadIconW
0x58ed70 LoadCursorW
0x58ed74 LoadBitmapW
0x58ed78 KillTimer
0x58ed7c IsZoomed
0x58ed80 IsWindowVisible
0x58ed84 IsWindowUnicode
0x58ed88 IsWindowEnabled
0x58ed8c IsWindow
0x58ed90 IsIconic
0x58ed94 IsDialogMessageA
0x58ed98 IsDialogMessageW
0x58ed9c IsClipboardFormatAvailable
0x58eda0 IsChild
0x58eda4 InvalidateRect
0x58eda8 IntersectRect
0x58edac InsertMenuItemW
0x58edb0 InsertMenuW
0x58edb4 InflateRect
0x58edb8 HideCaret
0x58edbc GetWindowThreadProcessId
0x58edc0 GetWindowTextW
0x58edc4 GetWindowRect
0x58edc8 GetWindowPlacement
0x58edcc GetWindowLongW
0x58edd0 GetWindowDC
0x58edd4 GetTopWindow
0x58edd8 GetSystemMetrics
0x58eddc GetSystemMenu
0x58ede0 GetSysColorBrush
0x58ede4 GetSysColor
0x58ede8 GetSubMenu
0x58edec GetScrollRange
0x58edf0 GetScrollPos
0x58edf4 GetScrollInfo
0x58edf8 GetPropW
0x58edfc GetParent
0x58ee00 GetWindow
0x58ee04 GetMessagePos
0x58ee08 GetMessageExtraInfo
0x58ee0c GetMenuStringW
0x58ee10 GetMenuState
0x58ee14 GetMenuItemInfoW
0x58ee18 GetMenuItemID
0x58ee1c GetMenuItemCount
0x58ee20 GetMenu
0x58ee24 GetLastActivePopup
0x58ee28 GetKeyboardState
0x58ee2c GetKeyboardLayoutNameW
0x58ee30 GetKeyboardLayoutList
0x58ee34 GetKeyboardLayout
0x58ee38 GetKeyState
0x58ee3c GetKeyNameTextW
0x58ee40 GetIconInfo
0x58ee44 GetForegroundWindow
0x58ee48 GetFocus
0x58ee4c GetDlgItem
0x58ee50 GetDesktopWindow
0x58ee54 GetDCEx
0x58ee58 GetDC
0x58ee5c GetCursorPos
0x58ee60 GetCursor
0x58ee64 GetClipboardData
0x58ee68 GetClientRect
0x58ee6c GetClassLongW
0x58ee70 GetClassInfoW
0x58ee74 GetCapture
0x58ee78 GetActiveWindow
0x58ee7c FrameRect
0x58ee80 FindWindowExW
0x58ee84 FindWindowW
0x58ee88 FillRect
0x58ee8c EnumWindows
0x58ee90 EnumThreadWindows
0x58ee94 EnumClipboardFormats
0x58ee98 EnumChildWindows
0x58ee9c EndPaint
0x58eea0 EnableWindow
0x58eea4 EnableScrollBar
0x58eea8 EnableMenuItem
0x58eeac EmptyClipboard
0x58eeb0 DrawTextExW
0x58eeb4 DrawTextW
0x58eeb8 DrawStateW
0x58eebc DrawMenuBar
0x58eec0 DrawIconEx
0x58eec4 DrawIcon
0x58eec8 DrawFrameControl
0x58eecc DrawFocusRect
0x58eed0 DrawEdge
0x58eed4 DispatchMessageA
0x58eed8 DispatchMessageW
0x58eedc DestroyWindow
0x58eee0 DestroyMenu
0x58eee4 DestroyIcon
0x58eee8 DestroyCursor
0x58eeec DeleteMenu
0x58eef0 DefWindowProcW
0x58eef4 DefMDIChildProcW
0x58eef8 DefFrameProcW
0x58eefc CreatePopupMenu
0x58ef00 CreateMenu
0x58ef04 CreateIcon
0x58ef08 CreateAcceleratorTableW
0x58ef0c CountClipboardFormats
0x58ef10 CopyIcon
0x58ef14 CloseClipboard
0x58ef18 ClientToScreen
0x58ef1c CheckMenuItem
0x58ef20 CharUpperBuffW
0x58ef24 CharNextW
0x58ef28 CharLowerBuffW
0x58ef2c CharLowerW
0x58ef30 CallWindowProcW
0x58ef34 CallNextHookEx
0x58ef38 BeginPaint
0x58ef3c AdjustWindowRectEx
0x58ef40 ActivateKeyboardLayout
msimg32.dll
0x58ef48 AlphaBlend
gdi32.dll
0x58ef50 UnrealizeObject
0x58ef54 StretchDIBits
0x58ef58 StretchBlt
0x58ef5c StartPage
0x58ef60 StartDocW
0x58ef64 SetWindowOrgEx
0x58ef68 SetWinMetaFileBits
0x58ef6c SetViewportOrgEx
0x58ef70 SetTextColor
0x58ef74 SetStretchBltMode
0x58ef78 SetROP2
0x58ef7c SetPixel
0x58ef80 SetEnhMetaFileBits
0x58ef84 SetDIBits
0x58ef88 SetDIBColorTable
0x58ef8c SetBrushOrgEx
0x58ef90 SetBkMode
0x58ef94 SetBkColor
0x58ef98 SetAbortProc
0x58ef9c SelectPalette
0x58efa0 SelectObject
0x58efa4 SaveDC
0x58efa8 RoundRect
0x58efac RestoreDC
0x58efb0 Rectangle
0x58efb4 RectVisible
0x58efb8 RealizePalette
0x58efbc Polyline
0x58efc0 Polygon
0x58efc4 PolyBezierTo
0x58efc8 PolyBezier
0x58efcc PlayEnhMetaFile
0x58efd0 Pie
0x58efd4 PatBlt
0x58efd8 MoveToEx
0x58efdc MaskBlt
0x58efe0 LineTo
0x58efe4 IntersectClipRect
0x58efe8 GetWindowOrgEx
0x58efec GetWinMetaFileBits
0x58eff0 GetTextMetricsW
0x58eff4 GetTextExtentPointW
0x58eff8 GetTextExtentPoint32W
0x58effc GetSystemPaletteEntries
0x58f000 GetStockObject
0x58f004 GetRgnBox
0x58f008 GetPixel
0x58f00c GetPaletteEntries
0x58f010 GetObjectW
0x58f014 GetEnhMetaFilePaletteEntries
0x58f018 GetEnhMetaFileHeader
0x58f01c GetEnhMetaFileDescriptionW
0x58f020 GetEnhMetaFileBits
0x58f024 GetDeviceCaps
0x58f028 GetDIBits
0x58f02c GetDIBColorTable
0x58f030 GetDCOrgEx
0x58f034 GetCurrentPositionEx
0x58f038 GetClipBox
0x58f03c GetBrushOrgEx
0x58f040 GetBitmapBits
0x58f044 GdiFlush
0x58f048 FrameRgn
0x58f04c ExtTextOutW
0x58f050 ExtFloodFill
0x58f054 ExcludeClipRect
0x58f058 EnumFontsW
0x58f05c EnumFontFamiliesExW
0x58f060 EndPage
0x58f064 EndDoc
0x58f068 Ellipse
0x58f06c DeleteObject
0x58f070 DeleteEnhMetaFile
0x58f074 DeleteDC
0x58f078 CreateSolidBrush
0x58f07c CreateRectRgn
0x58f080 CreatePenIndirect
0x58f084 CreatePalette
0x58f088 CreateICW
0x58f08c CreateHalftonePalette
0x58f090 CreateFontIndirectW
0x58f094 CreateDIBitmap
0x58f098 CreateDIBSection
0x58f09c CreateDCW
0x58f0a0 CreateCompatibleDC
0x58f0a4 CreateCompatibleBitmap
0x58f0a8 CreateBrushIndirect
0x58f0ac CreateBitmap
0x58f0b0 CopyEnhMetaFileW
0x58f0b4 Chord
0x58f0b8 BitBlt
0x58f0bc Arc
0x58f0c0 AbortDoc
version.dll
0x58f0c8 VerQueryValueW
0x58f0cc GetFileVersionInfoSizeW
0x58f0d0 GetFileVersionInfoW
mpr.dll
0x58f0d8 WNetGetConnectionW
kernel32.dll
0x58f0e0 lstrcpyW
0x58f0e4 WriteProcessMemory
0x58f0e8 WriteFile
0x58f0ec WinExec
0x58f0f0 WideCharToMultiByte
0x58f0f4 WaitForSingleObject
0x58f0f8 WaitForMultipleObjectsEx
0x58f0fc VirtualQueryEx
0x58f100 VirtualQuery
0x58f104 VirtualFree
0x58f108 VirtualAlloc
0x58f10c TryEnterCriticalSection
0x58f110 SystemTimeToTzSpecificLocalTime
0x58f114 SystemTimeToFileTime
0x58f118 SwitchToThread
0x58f11c SuspendThread
0x58f120 Sleep
0x58f124 SizeofResource
0x58f128 SignalObjectAndWait
0x58f12c SetThreadPriority
0x58f130 SetThreadLocale
0x58f134 SetLastError
0x58f138 SetFilePointer
0x58f13c SetEvent
0x58f140 SetErrorMode
0x58f144 SetEndOfFile
0x58f148 ResumeThread
0x58f14c ResetEvent
0x58f150 ReadProcessMemory
0x58f154 ReadFile
0x58f158 RaiseException
0x58f15c QueryPerformanceFrequency
0x58f160 QueryPerformanceCounter
0x58f164 IsDebuggerPresent
0x58f168 OpenProcess
0x58f16c MultiByteToWideChar
0x58f170 MulDiv
0x58f174 LockResource
0x58f178 LoadResource
0x58f17c LoadLibraryW
0x58f180 LeaveCriticalSection
0x58f184 InitializeCriticalSection
0x58f188 GlobalUnlock
0x58f18c GlobalSize
0x58f190 GlobalLock
0x58f194 GlobalFree
0x58f198 GlobalFindAtomW
0x58f19c GlobalDeleteAtom
0x58f1a0 GlobalAlloc
0x58f1a4 GlobalAddAtomW
0x58f1a8 GetVolumeInformationW
0x58f1ac GetVersionExW
0x58f1b0 GetVersion
0x58f1b4 GetTimeZoneInformation
0x58f1b8 GetTickCount
0x58f1bc GetThreadPriority
0x58f1c0 GetThreadLocale
0x58f1c4 GetStdHandle
0x58f1c8 GetProcAddress
0x58f1cc GetModuleHandleW
0x58f1d0 GetModuleFileNameW
0x58f1d4 GetLogicalDrives
0x58f1d8 GetLocaleInfoW
0x58f1dc GetLocalTime
0x58f1e0 GetLastError
0x58f1e4 GetFullPathNameW
0x58f1e8 GetFileSize
0x58f1ec GetFileAttributesW
0x58f1f0 GetExitCodeThread
0x58f1f4 GetDriveTypeW
0x58f1f8 GetDiskFreeSpaceW
0x58f1fc GetDateFormatW
0x58f200 GetCurrentThreadId
0x58f204 GetCurrentThread
0x58f208 GetCurrentProcessId
0x58f20c GetCurrentProcess
0x58f210 GetComputerNameW
0x58f214 GetCPInfo
0x58f218 FreeResource
0x58f21c InterlockedExchangeAdd
0x58f220 InterlockedExchange
0x58f224 InterlockedCompareExchange
0x58f228 FreeLibrary
0x58f22c FormatMessageW
0x58f230 FindResourceW
0x58f234 FindNextFileW
0x58f238 FindFirstFileW
0x58f23c FindClose
0x58f240 FileTimeToSystemTime
0x58f244 FileTimeToLocalFileTime
0x58f248 FileTimeToDosDateTime
0x58f24c EnumCalendarInfoW
0x58f250 EnterCriticalSection
0x58f254 DeleteFileW
0x58f258 DeleteCriticalSection
0x58f25c CreateThread
0x58f260 CreateProcessW
0x58f264 CreateMutexW
0x58f268 CreateFileW
0x58f26c CreateEventW
0x58f270 CompareStringW
0x58f274 CloseHandle
advapi32.dll
0x58f27c RegUnLoadKeyW
0x58f280 RegSetValueExW
0x58f284 RegSaveKeyW
0x58f288 RegRestoreKeyW
0x58f28c RegReplaceKeyW
0x58f290 RegQueryValueExW
0x58f294 RegQueryInfoKeyW
0x58f298 RegOpenKeyExW
0x58f29c RegLoadKeyW
0x58f2a0 RegFlushKey
0x58f2a4 RegEnumValueW
0x58f2a8 RegEnumKeyExW
0x58f2ac RegDeleteValueW
0x58f2b0 RegDeleteKeyW
0x58f2b4 RegCreateKeyExW
0x58f2b8 RegConnectRegistryW
0x58f2bc RegCloseKey
0x58f2c0 OpenProcessToken
0x58f2c4 LookupPrivilegeValueW
0x58f2c8 AdjustTokenPrivileges
oleaut32.dll
0x58f2d0 GetErrorInfo
0x58f2d4 VariantInit
0x58f2d8 SysFreeString
ole32.dll
0x58f2e0 OleUninitialize
0x58f2e4 OleInitialize
0x58f2e8 CoTaskMemFree
0x58f2ec CoTaskMemAlloc
0x58f2f0 CoCreateInstance
0x58f2f4 CoUninitialize
0x58f2f8 CoInitialize
0x58f2fc IsEqualGUID
comctl32.dll
0x58f304 InitializeFlatSB
0x58f308 FlatSB_SetScrollProp
0x58f30c FlatSB_SetScrollPos
0x58f310 FlatSB_SetScrollInfo
0x58f314 FlatSB_GetScrollPos
0x58f318 FlatSB_GetScrollInfo
0x58f31c _TrackMouseEvent
0x58f320 ImageList_GetImageInfo
0x58f324 ImageList_SetIconSize
0x58f328 ImageList_GetIconSize
0x58f32c ImageList_Write
0x58f330 ImageList_Read
0x58f334 ImageList_GetDragImage
0x58f338 ImageList_DragShowNolock
0x58f33c ImageList_DragMove
0x58f340 ImageList_DragLeave
0x58f344 ImageList_DragEnter
0x58f348 ImageList_EndDrag
0x58f34c ImageList_BeginDrag
0x58f350 ImageList_Copy
0x58f354 ImageList_LoadImageW
0x58f358 ImageList_GetIcon
0x58f35c ImageList_Remove
0x58f360 ImageList_DrawEx
0x58f364 ImageList_Replace
0x58f368 ImageList_Draw
0x58f36c ImageList_SetOverlayImage
0x58f370 ImageList_GetBkColor
0x58f374 ImageList_SetBkColor
0x58f378 ImageList_ReplaceIcon
0x58f37c ImageList_Add
0x58f380 ImageList_SetImageCount
0x58f384 ImageList_GetImageCount
0x58f388 ImageList_Destroy
0x58f38c ImageList_Create
kernel32.dll
0x58f394 Sleep
ole32.dll
0x58f39c CLSIDFromString
oleaut32.dll
0x58f3a4 SafeArrayPtrOfIndex
0x58f3a8 SafeArrayPutElement
0x58f3ac SafeArrayGetElement
0x58f3b0 SafeArrayUnaccessData
0x58f3b4 SafeArrayAccessData
0x58f3b8 SafeArrayGetUBound
0x58f3bc SafeArrayGetLBound
0x58f3c0 SafeArrayCreate
0x58f3c4 VariantChangeType
0x58f3c8 VariantCopyInd
0x58f3cc VariantCopy
0x58f3d0 VariantClear
0x58f3d4 VariantInit
shell32.dll
0x58f3dc ShellExecuteW
comdlg32.dll
0x58f3e4 GetSaveFileNameW
0x58f3e8 GetOpenFileNameW
winspool.drv
0x58f3f0 OpenPrinterW
0x58f3f4 EnumPrintersW
0x58f3f8 DocumentPropertiesW
0x58f3fc ClosePrinter
winspool.drv
0x58f404 GetDefaultPrinterW
user32.dll
0x58f40c DdeCmpStringHandles
0x58f410 DdeFreeStringHandle
0x58f414 DdeQueryStringA
0x58f418 DdeCreateStringHandleA
0x58f41c DdeGetLastError
0x58f420 DdeFreeDataHandle
0x58f424 DdeUnaccessData
0x58f428 DdeAccessData
0x58f42c DdeCreateDataHandle
0x58f430 DdeClientTransaction
0x58f434 DdeNameService
0x58f438 DdePostAdvise
0x58f43c DdeSetUserHandle
0x58f440 DdeQueryConvInfo
0x58f444 DdeDisconnect
0x58f448 DdeConnect
0x58f44c DdeUninitialize
0x58f450 DdeInitializeA
oleacc.dll
0x58f458 LresultFromObject
winmm.dll
0x58f460 sndPlaySoundW
IPHLPAPI.DLL
0x58f468 GetIpForwardTable
kernel32.dll
0x58f470 OpenThread
ntdll.dll
0x58f478 NtQueryInformationThread
0x58f47c NtQueryInformationProcess
EAT(Export Address Table) is none
oleaut32.dll
0x58eb64 SysFreeString
0x58eb68 SysReAllocStringLen
0x58eb6c SysAllocStringLen
advapi32.dll
0x58eb74 RegQueryValueExW
0x58eb78 RegOpenKeyExW
0x58eb7c RegCloseKey
user32.dll
0x58eb84 LoadStringW
0x58eb88 MessageBoxA
0x58eb8c CharNextW
kernel32.dll
0x58eb94 lstrcmpiA
0x58eb98 LoadLibraryA
0x58eb9c LocalFree
0x58eba0 LocalAlloc
0x58eba4 GetACP
0x58eba8 Sleep
0x58ebac VirtualFree
0x58ebb0 VirtualAlloc
0x58ebb4 GetSystemInfo
0x58ebb8 GetTickCount
0x58ebbc QueryPerformanceCounter
0x58ebc0 GetVersion
0x58ebc4 GetCurrentThreadId
0x58ebc8 VirtualQuery
0x58ebcc WideCharToMultiByte
0x58ebd0 SetCurrentDirectoryW
0x58ebd4 MultiByteToWideChar
0x58ebd8 lstrlenW
0x58ebdc lstrcpynW
0x58ebe0 LoadLibraryExW
0x58ebe4 IsValidLocale
0x58ebe8 GetSystemDefaultUILanguage
0x58ebec GetStartupInfoA
0x58ebf0 GetProcAddress
0x58ebf4 GetModuleHandleW
0x58ebf8 GetModuleFileNameW
0x58ebfc GetUserDefaultUILanguage
0x58ec00 GetLocaleInfoW
0x58ec04 GetLastError
0x58ec08 GetCurrentDirectoryW
0x58ec0c GetCommandLineW
0x58ec10 FreeLibrary
0x58ec14 FindFirstFileW
0x58ec18 FindClose
0x58ec1c ExitProcess
0x58ec20 ExitThread
0x58ec24 CreateThread
0x58ec28 CompareStringW
0x58ec2c WriteFile
0x58ec30 UnhandledExceptionFilter
0x58ec34 RtlUnwind
0x58ec38 RaiseException
0x58ec3c GetStdHandle
0x58ec40 DeleteCriticalSection
0x58ec44 LeaveCriticalSection
0x58ec48 EnterCriticalSection
0x58ec4c InitializeCriticalSection
0x58ec50 CloseHandle
kernel32.dll
0x58ec58 TlsSetValue
0x58ec5c TlsGetValue
0x58ec60 LocalAlloc
0x58ec64 GetModuleHandleW
user32.dll
0x58ec6c CreateWindowExW
0x58ec70 WindowFromPoint
0x58ec74 WaitMessage
0x58ec78 UpdateWindow
0x58ec7c UnregisterClassW
0x58ec80 UnhookWindowsHookEx
0x58ec84 TranslateMessage
0x58ec88 TranslateMDISysAccel
0x58ec8c TrackPopupMenu
0x58ec90 SystemParametersInfoW
0x58ec94 ShowWindow
0x58ec98 ShowScrollBar
0x58ec9c ShowOwnedPopups
0x58eca0 ShowCaret
0x58eca4 SetWindowsHookExW
0x58eca8 SetWindowTextW
0x58ecac SetWindowPos
0x58ecb0 SetWindowPlacement
0x58ecb4 SetWindowLongW
0x58ecb8 SetTimer
0x58ecbc SetScrollRange
0x58ecc0 SetScrollPos
0x58ecc4 SetScrollInfo
0x58ecc8 SetRect
0x58eccc SetPropW
0x58ecd0 SetParent
0x58ecd4 SetMenuItemInfoW
0x58ecd8 SetMenu
0x58ecdc SetForegroundWindow
0x58ece0 SetFocus
0x58ece4 SetCursorPos
0x58ece8 SetCursor
0x58ecec SetClipboardData
0x58ecf0 SetClassLongW
0x58ecf4 SetCapture
0x58ecf8 SetActiveWindow
0x58ecfc SendMessageA
0x58ed00 SendMessageW
0x58ed04 ScrollWindow
0x58ed08 ScreenToClient
0x58ed0c RemovePropW
0x58ed10 RemoveMenu
0x58ed14 ReleaseDC
0x58ed18 ReleaseCapture
0x58ed1c RegisterWindowMessageW
0x58ed20 RegisterClipboardFormatW
0x58ed24 RegisterClassW
0x58ed28 RedrawWindow
0x58ed2c PtInRect
0x58ed30 PostQuitMessage
0x58ed34 PostMessageW
0x58ed38 PeekMessageA
0x58ed3c PeekMessageW
0x58ed40 OpenClipboard
0x58ed44 OffsetRect
0x58ed48 NotifyWinEvent
0x58ed4c MsgWaitForMultipleObjectsEx
0x58ed50 MsgWaitForMultipleObjects
0x58ed54 MessageBoxW
0x58ed58 MessageBeep
0x58ed5c MapWindowPoints
0x58ed60 MapVirtualKeyW
0x58ed64 LoadStringW
0x58ed68 LoadKeyboardLayoutW
0x58ed6c LoadIconW
0x58ed70 LoadCursorW
0x58ed74 LoadBitmapW
0x58ed78 KillTimer
0x58ed7c IsZoomed
0x58ed80 IsWindowVisible
0x58ed84 IsWindowUnicode
0x58ed88 IsWindowEnabled
0x58ed8c IsWindow
0x58ed90 IsIconic
0x58ed94 IsDialogMessageA
0x58ed98 IsDialogMessageW
0x58ed9c IsClipboardFormatAvailable
0x58eda0 IsChild
0x58eda4 InvalidateRect
0x58eda8 IntersectRect
0x58edac InsertMenuItemW
0x58edb0 InsertMenuW
0x58edb4 InflateRect
0x58edb8 HideCaret
0x58edbc GetWindowThreadProcessId
0x58edc0 GetWindowTextW
0x58edc4 GetWindowRect
0x58edc8 GetWindowPlacement
0x58edcc GetWindowLongW
0x58edd0 GetWindowDC
0x58edd4 GetTopWindow
0x58edd8 GetSystemMetrics
0x58eddc GetSystemMenu
0x58ede0 GetSysColorBrush
0x58ede4 GetSysColor
0x58ede8 GetSubMenu
0x58edec GetScrollRange
0x58edf0 GetScrollPos
0x58edf4 GetScrollInfo
0x58edf8 GetPropW
0x58edfc GetParent
0x58ee00 GetWindow
0x58ee04 GetMessagePos
0x58ee08 GetMessageExtraInfo
0x58ee0c GetMenuStringW
0x58ee10 GetMenuState
0x58ee14 GetMenuItemInfoW
0x58ee18 GetMenuItemID
0x58ee1c GetMenuItemCount
0x58ee20 GetMenu
0x58ee24 GetLastActivePopup
0x58ee28 GetKeyboardState
0x58ee2c GetKeyboardLayoutNameW
0x58ee30 GetKeyboardLayoutList
0x58ee34 GetKeyboardLayout
0x58ee38 GetKeyState
0x58ee3c GetKeyNameTextW
0x58ee40 GetIconInfo
0x58ee44 GetForegroundWindow
0x58ee48 GetFocus
0x58ee4c GetDlgItem
0x58ee50 GetDesktopWindow
0x58ee54 GetDCEx
0x58ee58 GetDC
0x58ee5c GetCursorPos
0x58ee60 GetCursor
0x58ee64 GetClipboardData
0x58ee68 GetClientRect
0x58ee6c GetClassLongW
0x58ee70 GetClassInfoW
0x58ee74 GetCapture
0x58ee78 GetActiveWindow
0x58ee7c FrameRect
0x58ee80 FindWindowExW
0x58ee84 FindWindowW
0x58ee88 FillRect
0x58ee8c EnumWindows
0x58ee90 EnumThreadWindows
0x58ee94 EnumClipboardFormats
0x58ee98 EnumChildWindows
0x58ee9c EndPaint
0x58eea0 EnableWindow
0x58eea4 EnableScrollBar
0x58eea8 EnableMenuItem
0x58eeac EmptyClipboard
0x58eeb0 DrawTextExW
0x58eeb4 DrawTextW
0x58eeb8 DrawStateW
0x58eebc DrawMenuBar
0x58eec0 DrawIconEx
0x58eec4 DrawIcon
0x58eec8 DrawFrameControl
0x58eecc DrawFocusRect
0x58eed0 DrawEdge
0x58eed4 DispatchMessageA
0x58eed8 DispatchMessageW
0x58eedc DestroyWindow
0x58eee0 DestroyMenu
0x58eee4 DestroyIcon
0x58eee8 DestroyCursor
0x58eeec DeleteMenu
0x58eef0 DefWindowProcW
0x58eef4 DefMDIChildProcW
0x58eef8 DefFrameProcW
0x58eefc CreatePopupMenu
0x58ef00 CreateMenu
0x58ef04 CreateIcon
0x58ef08 CreateAcceleratorTableW
0x58ef0c CountClipboardFormats
0x58ef10 CopyIcon
0x58ef14 CloseClipboard
0x58ef18 ClientToScreen
0x58ef1c CheckMenuItem
0x58ef20 CharUpperBuffW
0x58ef24 CharNextW
0x58ef28 CharLowerBuffW
0x58ef2c CharLowerW
0x58ef30 CallWindowProcW
0x58ef34 CallNextHookEx
0x58ef38 BeginPaint
0x58ef3c AdjustWindowRectEx
0x58ef40 ActivateKeyboardLayout
msimg32.dll
0x58ef48 AlphaBlend
gdi32.dll
0x58ef50 UnrealizeObject
0x58ef54 StretchDIBits
0x58ef58 StretchBlt
0x58ef5c StartPage
0x58ef60 StartDocW
0x58ef64 SetWindowOrgEx
0x58ef68 SetWinMetaFileBits
0x58ef6c SetViewportOrgEx
0x58ef70 SetTextColor
0x58ef74 SetStretchBltMode
0x58ef78 SetROP2
0x58ef7c SetPixel
0x58ef80 SetEnhMetaFileBits
0x58ef84 SetDIBits
0x58ef88 SetDIBColorTable
0x58ef8c SetBrushOrgEx
0x58ef90 SetBkMode
0x58ef94 SetBkColor
0x58ef98 SetAbortProc
0x58ef9c SelectPalette
0x58efa0 SelectObject
0x58efa4 SaveDC
0x58efa8 RoundRect
0x58efac RestoreDC
0x58efb0 Rectangle
0x58efb4 RectVisible
0x58efb8 RealizePalette
0x58efbc Polyline
0x58efc0 Polygon
0x58efc4 PolyBezierTo
0x58efc8 PolyBezier
0x58efcc PlayEnhMetaFile
0x58efd0 Pie
0x58efd4 PatBlt
0x58efd8 MoveToEx
0x58efdc MaskBlt
0x58efe0 LineTo
0x58efe4 IntersectClipRect
0x58efe8 GetWindowOrgEx
0x58efec GetWinMetaFileBits
0x58eff0 GetTextMetricsW
0x58eff4 GetTextExtentPointW
0x58eff8 GetTextExtentPoint32W
0x58effc GetSystemPaletteEntries
0x58f000 GetStockObject
0x58f004 GetRgnBox
0x58f008 GetPixel
0x58f00c GetPaletteEntries
0x58f010 GetObjectW
0x58f014 GetEnhMetaFilePaletteEntries
0x58f018 GetEnhMetaFileHeader
0x58f01c GetEnhMetaFileDescriptionW
0x58f020 GetEnhMetaFileBits
0x58f024 GetDeviceCaps
0x58f028 GetDIBits
0x58f02c GetDIBColorTable
0x58f030 GetDCOrgEx
0x58f034 GetCurrentPositionEx
0x58f038 GetClipBox
0x58f03c GetBrushOrgEx
0x58f040 GetBitmapBits
0x58f044 GdiFlush
0x58f048 FrameRgn
0x58f04c ExtTextOutW
0x58f050 ExtFloodFill
0x58f054 ExcludeClipRect
0x58f058 EnumFontsW
0x58f05c EnumFontFamiliesExW
0x58f060 EndPage
0x58f064 EndDoc
0x58f068 Ellipse
0x58f06c DeleteObject
0x58f070 DeleteEnhMetaFile
0x58f074 DeleteDC
0x58f078 CreateSolidBrush
0x58f07c CreateRectRgn
0x58f080 CreatePenIndirect
0x58f084 CreatePalette
0x58f088 CreateICW
0x58f08c CreateHalftonePalette
0x58f090 CreateFontIndirectW
0x58f094 CreateDIBitmap
0x58f098 CreateDIBSection
0x58f09c CreateDCW
0x58f0a0 CreateCompatibleDC
0x58f0a4 CreateCompatibleBitmap
0x58f0a8 CreateBrushIndirect
0x58f0ac CreateBitmap
0x58f0b0 CopyEnhMetaFileW
0x58f0b4 Chord
0x58f0b8 BitBlt
0x58f0bc Arc
0x58f0c0 AbortDoc
version.dll
0x58f0c8 VerQueryValueW
0x58f0cc GetFileVersionInfoSizeW
0x58f0d0 GetFileVersionInfoW
mpr.dll
0x58f0d8 WNetGetConnectionW
kernel32.dll
0x58f0e0 lstrcpyW
0x58f0e4 WriteProcessMemory
0x58f0e8 WriteFile
0x58f0ec WinExec
0x58f0f0 WideCharToMultiByte
0x58f0f4 WaitForSingleObject
0x58f0f8 WaitForMultipleObjectsEx
0x58f0fc VirtualQueryEx
0x58f100 VirtualQuery
0x58f104 VirtualFree
0x58f108 VirtualAlloc
0x58f10c TryEnterCriticalSection
0x58f110 SystemTimeToTzSpecificLocalTime
0x58f114 SystemTimeToFileTime
0x58f118 SwitchToThread
0x58f11c SuspendThread
0x58f120 Sleep
0x58f124 SizeofResource
0x58f128 SignalObjectAndWait
0x58f12c SetThreadPriority
0x58f130 SetThreadLocale
0x58f134 SetLastError
0x58f138 SetFilePointer
0x58f13c SetEvent
0x58f140 SetErrorMode
0x58f144 SetEndOfFile
0x58f148 ResumeThread
0x58f14c ResetEvent
0x58f150 ReadProcessMemory
0x58f154 ReadFile
0x58f158 RaiseException
0x58f15c QueryPerformanceFrequency
0x58f160 QueryPerformanceCounter
0x58f164 IsDebuggerPresent
0x58f168 OpenProcess
0x58f16c MultiByteToWideChar
0x58f170 MulDiv
0x58f174 LockResource
0x58f178 LoadResource
0x58f17c LoadLibraryW
0x58f180 LeaveCriticalSection
0x58f184 InitializeCriticalSection
0x58f188 GlobalUnlock
0x58f18c GlobalSize
0x58f190 GlobalLock
0x58f194 GlobalFree
0x58f198 GlobalFindAtomW
0x58f19c GlobalDeleteAtom
0x58f1a0 GlobalAlloc
0x58f1a4 GlobalAddAtomW
0x58f1a8 GetVolumeInformationW
0x58f1ac GetVersionExW
0x58f1b0 GetVersion
0x58f1b4 GetTimeZoneInformation
0x58f1b8 GetTickCount
0x58f1bc GetThreadPriority
0x58f1c0 GetThreadLocale
0x58f1c4 GetStdHandle
0x58f1c8 GetProcAddress
0x58f1cc GetModuleHandleW
0x58f1d0 GetModuleFileNameW
0x58f1d4 GetLogicalDrives
0x58f1d8 GetLocaleInfoW
0x58f1dc GetLocalTime
0x58f1e0 GetLastError
0x58f1e4 GetFullPathNameW
0x58f1e8 GetFileSize
0x58f1ec GetFileAttributesW
0x58f1f0 GetExitCodeThread
0x58f1f4 GetDriveTypeW
0x58f1f8 GetDiskFreeSpaceW
0x58f1fc GetDateFormatW
0x58f200 GetCurrentThreadId
0x58f204 GetCurrentThread
0x58f208 GetCurrentProcessId
0x58f20c GetCurrentProcess
0x58f210 GetComputerNameW
0x58f214 GetCPInfo
0x58f218 FreeResource
0x58f21c InterlockedExchangeAdd
0x58f220 InterlockedExchange
0x58f224 InterlockedCompareExchange
0x58f228 FreeLibrary
0x58f22c FormatMessageW
0x58f230 FindResourceW
0x58f234 FindNextFileW
0x58f238 FindFirstFileW
0x58f23c FindClose
0x58f240 FileTimeToSystemTime
0x58f244 FileTimeToLocalFileTime
0x58f248 FileTimeToDosDateTime
0x58f24c EnumCalendarInfoW
0x58f250 EnterCriticalSection
0x58f254 DeleteFileW
0x58f258 DeleteCriticalSection
0x58f25c CreateThread
0x58f260 CreateProcessW
0x58f264 CreateMutexW
0x58f268 CreateFileW
0x58f26c CreateEventW
0x58f270 CompareStringW
0x58f274 CloseHandle
advapi32.dll
0x58f27c RegUnLoadKeyW
0x58f280 RegSetValueExW
0x58f284 RegSaveKeyW
0x58f288 RegRestoreKeyW
0x58f28c RegReplaceKeyW
0x58f290 RegQueryValueExW
0x58f294 RegQueryInfoKeyW
0x58f298 RegOpenKeyExW
0x58f29c RegLoadKeyW
0x58f2a0 RegFlushKey
0x58f2a4 RegEnumValueW
0x58f2a8 RegEnumKeyExW
0x58f2ac RegDeleteValueW
0x58f2b0 RegDeleteKeyW
0x58f2b4 RegCreateKeyExW
0x58f2b8 RegConnectRegistryW
0x58f2bc RegCloseKey
0x58f2c0 OpenProcessToken
0x58f2c4 LookupPrivilegeValueW
0x58f2c8 AdjustTokenPrivileges
oleaut32.dll
0x58f2d0 GetErrorInfo
0x58f2d4 VariantInit
0x58f2d8 SysFreeString
ole32.dll
0x58f2e0 OleUninitialize
0x58f2e4 OleInitialize
0x58f2e8 CoTaskMemFree
0x58f2ec CoTaskMemAlloc
0x58f2f0 CoCreateInstance
0x58f2f4 CoUninitialize
0x58f2f8 CoInitialize
0x58f2fc IsEqualGUID
comctl32.dll
0x58f304 InitializeFlatSB
0x58f308 FlatSB_SetScrollProp
0x58f30c FlatSB_SetScrollPos
0x58f310 FlatSB_SetScrollInfo
0x58f314 FlatSB_GetScrollPos
0x58f318 FlatSB_GetScrollInfo
0x58f31c _TrackMouseEvent
0x58f320 ImageList_GetImageInfo
0x58f324 ImageList_SetIconSize
0x58f328 ImageList_GetIconSize
0x58f32c ImageList_Write
0x58f330 ImageList_Read
0x58f334 ImageList_GetDragImage
0x58f338 ImageList_DragShowNolock
0x58f33c ImageList_DragMove
0x58f340 ImageList_DragLeave
0x58f344 ImageList_DragEnter
0x58f348 ImageList_EndDrag
0x58f34c ImageList_BeginDrag
0x58f350 ImageList_Copy
0x58f354 ImageList_LoadImageW
0x58f358 ImageList_GetIcon
0x58f35c ImageList_Remove
0x58f360 ImageList_DrawEx
0x58f364 ImageList_Replace
0x58f368 ImageList_Draw
0x58f36c ImageList_SetOverlayImage
0x58f370 ImageList_GetBkColor
0x58f374 ImageList_SetBkColor
0x58f378 ImageList_ReplaceIcon
0x58f37c ImageList_Add
0x58f380 ImageList_SetImageCount
0x58f384 ImageList_GetImageCount
0x58f388 ImageList_Destroy
0x58f38c ImageList_Create
kernel32.dll
0x58f394 Sleep
ole32.dll
0x58f39c CLSIDFromString
oleaut32.dll
0x58f3a4 SafeArrayPtrOfIndex
0x58f3a8 SafeArrayPutElement
0x58f3ac SafeArrayGetElement
0x58f3b0 SafeArrayUnaccessData
0x58f3b4 SafeArrayAccessData
0x58f3b8 SafeArrayGetUBound
0x58f3bc SafeArrayGetLBound
0x58f3c0 SafeArrayCreate
0x58f3c4 VariantChangeType
0x58f3c8 VariantCopyInd
0x58f3cc VariantCopy
0x58f3d0 VariantClear
0x58f3d4 VariantInit
shell32.dll
0x58f3dc ShellExecuteW
comdlg32.dll
0x58f3e4 GetSaveFileNameW
0x58f3e8 GetOpenFileNameW
winspool.drv
0x58f3f0 OpenPrinterW
0x58f3f4 EnumPrintersW
0x58f3f8 DocumentPropertiesW
0x58f3fc ClosePrinter
winspool.drv
0x58f404 GetDefaultPrinterW
user32.dll
0x58f40c DdeCmpStringHandles
0x58f410 DdeFreeStringHandle
0x58f414 DdeQueryStringA
0x58f418 DdeCreateStringHandleA
0x58f41c DdeGetLastError
0x58f420 DdeFreeDataHandle
0x58f424 DdeUnaccessData
0x58f428 DdeAccessData
0x58f42c DdeCreateDataHandle
0x58f430 DdeClientTransaction
0x58f434 DdeNameService
0x58f438 DdePostAdvise
0x58f43c DdeSetUserHandle
0x58f440 DdeQueryConvInfo
0x58f444 DdeDisconnect
0x58f448 DdeConnect
0x58f44c DdeUninitialize
0x58f450 DdeInitializeA
oleacc.dll
0x58f458 LresultFromObject
winmm.dll
0x58f460 sndPlaySoundW
IPHLPAPI.DLL
0x58f468 GetIpForwardTable
kernel32.dll
0x58f470 OpenThread
ntdll.dll
0x58f478 NtQueryInformationThread
0x58f47c NtQueryInformationProcess
EAT(Export Address Table) is none