ScreenShot
| Created | 2023.07.21 13:07 | Machine | s1_win7_x6403 |
| Filename | Lightshot.dll | ||
| Type | PE32 executable (DLL) (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | |||
| VT API (file) | 13 detected (AIDetectMalware, Save, malicious, confidence, Attribute, HighConfidence, high confidence, Grandoreiro, Krachulka, XSjT43HhRJC) | ||
| md5 | d335c0fd96458200acaeae1d1b4e136e | ||
| sha256 | aaebf0bf78046d2b05aaafd7687351d0fbf6231f522d7919f4c4a5880be5bd72 | ||
| ssdeep | 49152:4ptbaOdkNVTqUN6SONCXqlbPttWGm9yQat9TBAhkCiWfwVkmCiDPtrS:4psS3l5tWd9KMYVkIBS | ||
| imphash | f4fef01511e59c41a79e6fcc686dc20d | ||
| impfuzzy | 192:ecdqBUubdVYTexaWTOwIDuTQdO7DBjvM9+iDlXTFaRwYyEO:ecE3vTOmTQdO9vM9+iDlpwHO | ||
Network IP location
Signature (5cnts)
| Level | Description |
|---|---|
| watch | File has been identified by 13 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| info | Checks if process is being debugged by a debugger |
| info | One or more processes crashed |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (9cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| notice | Javascript_Blob | use blob(Binary Large Objec) javascript | binaries (upload) |
| info | IsDLL | (no description) | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
wininet.dll
0x6ff998 InternetCloseHandle
0x6ff99c InternetReadFile
0x6ff9a0 InternetOpenW
0x6ff9a4 InternetOpenUrlW
winspool.drv
0x6ff9ac DocumentPropertiesW
0x6ff9b0 ClosePrinter
0x6ff9b4 OpenPrinterW
0x6ff9b8 GetDefaultPrinterW
0x6ff9bc EnumPrintersW
comctl32.dll
0x6ff9c4 ImageList_GetImageInfo
0x6ff9c8 FlatSB_SetScrollInfo
0x6ff9cc ImageList_DragMove
0x6ff9d0 ImageList_Destroy
0x6ff9d4 _TrackMouseEvent
0x6ff9d8 ImageList_DragShowNolock
0x6ff9dc ImageList_Add
0x6ff9e0 FlatSB_SetScrollProp
0x6ff9e4 ImageList_GetDragImage
0x6ff9e8 ImageList_Create
0x6ff9ec ImageList_EndDrag
0x6ff9f0 ImageList_DrawEx
0x6ff9f4 ImageList_SetImageCount
0x6ff9f8 FlatSB_GetScrollPos
0x6ff9fc FlatSB_SetScrollPos
0x6ffa00 InitializeFlatSB
0x6ffa04 ImageList_Copy
0x6ffa08 FlatSB_GetScrollInfo
0x6ffa0c ImageList_Write
0x6ffa10 ImageList_DrawIndirect
0x6ffa14 ImageList_SetBkColor
0x6ffa18 ImageList_GetBkColor
0x6ffa1c ImageList_BeginDrag
0x6ffa20 ImageList_GetIcon
0x6ffa24 ImageList_Replace
0x6ffa28 ImageList_GetImageCount
0x6ffa2c ImageList_DragEnter
0x6ffa30 ImageList_GetIconSize
0x6ffa34 ImageList_SetIconSize
0x6ffa38 ImageList_Read
0x6ffa3c ImageList_DragLeave
0x6ffa40 ImageList_LoadImageW
0x6ffa44 ImageList_Draw
0x6ffa48 ImageList_Remove
0x6ffa4c ImageList_ReplaceIcon
0x6ffa50 ImageList_SetOverlayImage
shell32.dll
0x6ffa58 Shell_NotifyIconW
0x6ffa5c SHAppBarMessage
0x6ffa60 ShellExecuteW
user32.dll
0x6ffa68 CopyImage
0x6ffa6c CreateWindowExW
0x6ffa70 GetMenuItemInfoW
0x6ffa74 SetMenuItemInfoW
0x6ffa78 DefFrameProcW
0x6ffa7c GetDCEx
0x6ffa80 PeekMessageW
0x6ffa84 MonitorFromWindow
0x6ffa88 GetDlgCtrlID
0x6ffa8c GetUpdateRect
0x6ffa90 SetTimer
0x6ffa94 WindowFromPoint
0x6ffa98 BeginPaint
0x6ffa9c RegisterClipboardFormatW
0x6ffaa0 FrameRect
0x6ffaa4 MapVirtualKeyW
0x6ffaa8 IsWindowUnicode
0x6ffaac RegisterWindowMessageW
0x6ffab0 FillRect
0x6ffab4 GetMenuStringW
0x6ffab8 DispatchMessageW
0x6ffabc CreateAcceleratorTableW
0x6ffac0 SendMessageA
0x6ffac4 DefMDIChildProcW
0x6ffac8 EnumWindows
0x6ffacc GetClassInfoW
0x6ffad0 ShowOwnedPopups
0x6ffad4 GetSystemMenu
0x6ffad8 GetScrollRange
0x6ffadc GetScrollPos
0x6ffae0 SetScrollPos
0x6ffae4 GetActiveWindow
0x6ffae8 SetActiveWindow
0x6ffaec DrawEdge
0x6ffaf0 GetKeyboardLayoutList
0x6ffaf4 LoadBitmapW
0x6ffaf8 DrawFocusRect
0x6ffafc EnumChildWindows
0x6ffb00 ReleaseCapture
0x6ffb04 UnhookWindowsHookEx
0x6ffb08 LoadCursorW
0x6ffb0c GetCapture
0x6ffb10 SetCapture
0x6ffb14 CreatePopupMenu
0x6ffb18 ScrollWindow
0x6ffb1c ShowCaret
0x6ffb20 GetMenuItemID
0x6ffb24 GetLastActivePopup
0x6ffb28 CharLowerBuffW
0x6ffb2c GetSystemMetrics
0x6ffb30 SetWindowLongW
0x6ffb34 PostMessageW
0x6ffb38 DrawMenuBar
0x6ffb3c SetParent
0x6ffb40 IsZoomed
0x6ffb44 CharUpperBuffW
0x6ffb48 GetClientRect
0x6ffb4c IsChild
0x6ffb50 ClientToScreen
0x6ffb54 GetClipboardData
0x6ffb58 SetClipboardData
0x6ffb5c SetWindowPlacement
0x6ffb60 IsIconic
0x6ffb64 CallNextHookEx
0x6ffb68 GetMonitorInfoW
0x6ffb6c ShowWindow
0x6ffb70 CheckMenuItem
0x6ffb74 CharUpperW
0x6ffb78 DefWindowProcW
0x6ffb7c GetForegroundWindow
0x6ffb80 SetForegroundWindow
0x6ffb84 GetWindowTextW
0x6ffb88 EnableWindow
0x6ffb8c DestroyWindow
0x6ffb90 IsDialogMessageW
0x6ffb94 EndMenu
0x6ffb98 RegisterClassW
0x6ffb9c CharNextW
0x6ffba0 GetWindowThreadProcessId
0x6ffba4 RedrawWindow
0x6ffba8 GetDC
0x6ffbac GetFocus
0x6ffbb0 SetFocus
0x6ffbb4 EndPaint
0x6ffbb8 ReleaseDC
0x6ffbbc MsgWaitForMultipleObjectsEx
0x6ffbc0 LoadKeyboardLayoutW
0x6ffbc4 GetClassLongW
0x6ffbc8 ActivateKeyboardLayout
0x6ffbcc GetParent
0x6ffbd0 DrawTextW
0x6ffbd4 SetScrollRange
0x6ffbd8 MonitorFromRect
0x6ffbdc InsertMenuItemW
0x6ffbe0 PeekMessageA
0x6ffbe4 GetPropW
0x6ffbe8 SetClassLongW
0x6ffbec MessageBoxW
0x6ffbf0 MessageBeep
0x6ffbf4 SetPropW
0x6ffbf8 RemovePropW
0x6ffbfc UpdateWindow
0x6ffc00 GetSubMenu
0x6ffc04 MsgWaitForMultipleObjects
0x6ffc08 DestroyMenu
0x6ffc0c DestroyIcon
0x6ffc10 SetWindowsHookExW
0x6ffc14 EmptyClipboard
0x6ffc18 IsWindowVisible
0x6ffc1c DispatchMessageA
0x6ffc20 UnregisterClassW
0x6ffc24 GetTopWindow
0x6ffc28 SendMessageW
0x6ffc2c AdjustWindowRectEx
0x6ffc30 DrawIcon
0x6ffc34 IsWindow
0x6ffc38 EnumThreadWindows
0x6ffc3c InvalidateRect
0x6ffc40 GetKeyboardState
0x6ffc44 DrawFrameControl
0x6ffc48 ScreenToClient
0x6ffc4c SetCursor
0x6ffc50 CreateIcon
0x6ffc54 CreateMenu
0x6ffc58 LoadStringW
0x6ffc5c CharLowerW
0x6ffc60 SetWindowPos
0x6ffc64 SetWindowRgn
0x6ffc68 GetMenuItemCount
0x6ffc6c RemoveMenu
0x6ffc70 GetSysColorBrush
0x6ffc74 GetKeyboardLayoutNameW
0x6ffc78 GetWindowDC
0x6ffc7c TranslateMessage
0x6ffc80 OpenClipboard
0x6ffc84 DrawTextExW
0x6ffc88 MapWindowPoints
0x6ffc8c EnumDisplayMonitors
0x6ffc90 CallWindowProcW
0x6ffc94 CloseClipboard
0x6ffc98 DestroyCursor
0x6ffc9c GetScrollInfo
0x6ffca0 SetWindowTextW
0x6ffca4 GetMessageExtraInfo
0x6ffca8 EnableScrollBar
0x6ffcac GetSysColor
0x6ffcb0 TrackPopupMenu
0x6ffcb4 CopyIcon
0x6ffcb8 DrawIconEx
0x6ffcbc PostQuitMessage
0x6ffcc0 GetClassNameW
0x6ffcc4 ShowScrollBar
0x6ffcc8 EnableMenuItem
0x6ffccc GetIconInfo
0x6ffcd0 GetMessagePos
0x6ffcd4 SetScrollInfo
0x6ffcd8 GetKeyNameTextW
0x6ffcdc GetDesktopWindow
0x6ffce0 GetCursorPos
0x6ffce4 SetCursorPos
0x6ffce8 HideCaret
0x6ffcec GetMenu
0x6ffcf0 GetMenuState
0x6ffcf4 SetMenu
0x6ffcf8 SetRect
0x6ffcfc GetKeyState
0x6ffd00 FindWindowExW
0x6ffd04 MonitorFromPoint
0x6ffd08 ValidateRect
0x6ffd0c SystemParametersInfoW
0x6ffd10 LoadIconW
0x6ffd14 GetCursor
0x6ffd18 GetWindow
0x6ffd1c GetWindowLongW
0x6ffd20 GetWindowRect
0x6ffd24 InsertMenuW
0x6ffd28 KillTimer
0x6ffd2c WaitMessage
0x6ffd30 IsWindowEnabled
0x6ffd34 IsDialogMessageA
0x6ffd38 TranslateMDISysAccel
0x6ffd3c GetWindowPlacement
0x6ffd40 CreateIconIndirect
0x6ffd44 FindWindowW
0x6ffd48 DeleteMenu
0x6ffd4c GetKeyboardLayout
version.dll
0x6ffd54 GetFileVersionInfoSizeW
0x6ffd58 VerQueryValueW
0x6ffd5c GetFileVersionInfoW
oleaut32.dll
0x6ffd64 SysFreeString
0x6ffd68 VariantClear
0x6ffd6c VariantInit
0x6ffd70 GetErrorInfo
0x6ffd74 SysReAllocStringLen
0x6ffd78 SafeArrayCreate
0x6ffd7c SysAllocStringLen
0x6ffd80 SafeArrayPtrOfIndex
0x6ffd84 SafeArrayGetUBound
0x6ffd88 SafeArrayGetLBound
0x6ffd8c VariantCopy
0x6ffd90 VariantChangeType
advapi32.dll
0x6ffd98 RegSetValueExW
0x6ffd9c RegConnectRegistryW
0x6ffda0 RegEnumKeyExW
0x6ffda4 RegLoadKeyW
0x6ffda8 GetUserNameW
0x6ffdac RegDeleteKeyW
0x6ffdb0 RegOpenKeyExW
0x6ffdb4 RegQueryInfoKeyW
0x6ffdb8 RegUnLoadKeyW
0x6ffdbc RegSaveKeyW
0x6ffdc0 RegDeleteValueW
0x6ffdc4 RegReplaceKeyW
0x6ffdc8 RegFlushKey
0x6ffdcc RegQueryValueExW
0x6ffdd0 RegEnumValueW
0x6ffdd4 RegCloseKey
0x6ffdd8 RegCreateKeyExW
0x6ffddc RegRestoreKeyW
msvcrt.dll
0x6ffde4 memcpy
0x6ffde8 memset
winhttp.dll
0x6ffdf0 WinHttpGetIEProxyConfigForCurrentUser
0x6ffdf4 WinHttpSetTimeouts
0x6ffdf8 WinHttpSetStatusCallback
0x6ffdfc WinHttpConnect
0x6ffe00 WinHttpReceiveResponse
0x6ffe04 WinHttpQueryAuthSchemes
0x6ffe08 WinHttpGetProxyForUrl
0x6ffe0c WinHttpReadData
0x6ffe10 WinHttpCloseHandle
0x6ffe14 WinHttpQueryHeaders
0x6ffe18 WinHttpOpenRequest
0x6ffe1c WinHttpAddRequestHeaders
0x6ffe20 WinHttpOpen
0x6ffe24 WinHttpWriteData
0x6ffe28 WinHttpSetCredentials
0x6ffe2c WinHttpQueryDataAvailable
0x6ffe30 WinHttpSetOption
0x6ffe34 WinHttpSendRequest
0x6ffe38 WinHttpQueryOption
kernel32.dll
0x6ffe40 SetFileAttributesW
0x6ffe44 GetFileType
0x6ffe48 SetFileTime
0x6ffe4c QueryDosDeviceW
0x6ffe50 GetACP
0x6ffe54 CloseHandle
0x6ffe58 LocalFree
0x6ffe5c GetCurrentProcessId
0x6ffe60 GetSystemDefaultLangID
0x6ffe64 SizeofResource
0x6ffe68 TlsAlloc
0x6ffe6c TerminateThread
0x6ffe70 QueryPerformanceFrequency
0x6ffe74 IsDebuggerPresent
0x6ffe78 FindNextFileW
0x6ffe7c GetFullPathNameW
0x6ffe80 VirtualFree
0x6ffe84 ExitProcess
0x6ffe88 HeapAlloc
0x6ffe8c GetCPInfoExW
0x6ffe90 RtlUnwind
0x6ffe94 GetCPInfo
0x6ffe98 EnumSystemLocalesW
0x6ffe9c GetStdHandle
0x6ffea0 GetTimeZoneInformation
0x6ffea4 FileTimeToLocalFileTime
0x6ffea8 SystemTimeToTzSpecificLocalTime
0x6ffeac GetModuleHandleW
0x6ffeb0 FreeLibrary
0x6ffeb4 TryEnterCriticalSection
0x6ffeb8 HeapDestroy
0x6ffebc FileTimeToDosDateTime
0x6ffec0 ReadFile
0x6ffec4 GetLastError
0x6ffec8 GetModuleFileNameW
0x6ffecc SetLastError
0x6ffed0 GlobalAlloc
0x6ffed4 GlobalUnlock
0x6ffed8 FindResourceW
0x6ffedc CreateThread
0x6ffee0 CompareStringW
0x6ffee4 MapViewOfFile
0x6ffee8 LoadLibraryA
0x6ffeec GetVolumeInformationW
0x6ffef0 ResetEvent
0x6ffef4 MulDiv
0x6ffef8 FreeResource
0x6ffefc GetDriveTypeW
0x6fff00 GetVersion
0x6fff04 RaiseException
0x6fff08 GlobalAddAtomW
0x6fff0c FormatMessageW
0x6fff10 SwitchToThread
0x6fff14 GetExitCodeThread
0x6fff18 GetCurrentThread
0x6fff1c GetLogicalDrives
0x6fff20 GetFileAttributesExW
0x6fff24 LoadLibraryExW
0x6fff28 LockResource
0x6fff2c FileTimeToSystemTime
0x6fff30 GetCurrentThreadId
0x6fff34 UnhandledExceptionFilter
0x6fff38 GlobalFindAtomW
0x6fff3c VirtualQuery
0x6fff40 GlobalFree
0x6fff44 VirtualQueryEx
0x6fff48 Sleep
0x6fff4c EnterCriticalSection
0x6fff50 SetFilePointer
0x6fff54 LoadResource
0x6fff58 SuspendThread
0x6fff5c GetTickCount
0x6fff60 GetFileSize
0x6fff64 GlobalDeleteAtom
0x6fff68 GetStartupInfoW
0x6fff6c GetFileAttributesW
0x6fff70 InitializeCriticalSection
0x6fff74 VerLanguageNameW
0x6fff78 GetThreadPriority
0x6fff7c GetCurrentProcess
0x6fff80 SetThreadPriority
0x6fff84 GlobalLock
0x6fff88 VirtualAlloc
0x6fff8c GetTempPathW
0x6fff90 GetCommandLineW
0x6fff94 GetSystemInfo
0x6fff98 LeaveCriticalSection
0x6fff9c GetProcAddress
0x6fffa0 ResumeThread
0x6fffa4 GetLogicalDriveStringsW
0x6fffa8 GetVersionExW
0x6fffac VerifyVersionInfoW
0x6fffb0 HeapCreate
0x6fffb4 LCMapStringW
0x6fffb8 GetDiskFreeSpaceW
0x6fffbc VerSetConditionMask
0x6fffc0 FindFirstFileW
0x6fffc4 GetUserDefaultUILanguage
0x6fffc8 TlsFree
0x6fffcc GetConsoleOutputCP
0x6fffd0 UnmapViewOfFile
0x6fffd4 GetConsoleCP
0x6fffd8 lstrlenW
0x6fffdc SetEndOfFile
0x6fffe0 QueryPerformanceCounter
0x6fffe4 HeapFree
0x6fffe8 WideCharToMultiByte
0x6fffec FindClose
0x6ffff0 MultiByteToWideChar
0x6ffff4 LoadLibraryW
0x6ffff8 SetEvent
0x6ffffc GetLocaleInfoW
0x700000 CreateFileW
0x700004 SystemTimeToFileTime
0x700008 EnumResourceNamesW
0x70000c DeleteFileW
0x700010 GetEnvironmentVariableW
0x700014 GetLocalTime
0x700018 WaitForSingleObject
0x70001c WriteFile
0x700020 CreateFileMappingW
0x700024 ExitThread
0x700028 DeleteCriticalSection
0x70002c GetDateFormatW
0x700030 TlsGetValue
0x700034 SetErrorMode
0x700038 GetComputerNameW
0x70003c TzSpecificLocalTimeToSystemTime
0x700040 IsValidLocale
0x700044 TlsSetValue
0x700048 CreateDirectoryW
0x70004c GetSystemDefaultUILanguage
0x700050 EnumCalendarInfoW
0x700054 LocalAlloc
0x700058 RemoveDirectoryW
0x70005c CreateEventW
0x700060 WaitForMultipleObjectsEx
0x700064 GetThreadLocale
0x700068 SetThreadLocale
ole32.dll
0x700070 IsEqualGUID
0x700074 OleInitialize
0x700078 OleUninitialize
0x70007c CoInitialize
0x700080 CoCreateInstance
0x700084 CoUninitialize
0x700088 CoTaskMemFree
0x70008c CoTaskMemAlloc
gdi32.dll
0x700094 Pie
0x700098 SetBkMode
0x70009c CreateCompatibleBitmap
0x7000a0 GetEnhMetaFileHeader
0x7000a4 RectVisible
0x7000a8 AngleArc
0x7000ac SetAbortProc
0x7000b0 SetTextColor
0x7000b4 StretchBlt
0x7000b8 RoundRect
0x7000bc RestoreDC
0x7000c0 SetRectRgn
0x7000c4 GetTextMetricsW
0x7000c8 GetWindowOrgEx
0x7000cc CreatePalette
0x7000d0 PolyBezierTo
0x7000d4 CreateICW
0x7000d8 CreateDCW
0x7000dc GetStockObject
0x7000e0 CreateSolidBrush
0x7000e4 Polygon
0x7000e8 MoveToEx
0x7000ec PlayEnhMetaFile
0x7000f0 Ellipse
0x7000f4 StartPage
0x7000f8 GetBitmapBits
0x7000fc StartDocW
0x700100 GetSystemPaletteEntries
0x700104 GetEnhMetaFileBits
0x700108 AbortDoc
0x70010c GetEnhMetaFilePaletteEntries
0x700110 CreatePenIndirect
0x700114 CreateFontIndirectW
0x700118 PolyBezier
0x70011c EndDoc
0x700120 GetObjectW
0x700124 GetWinMetaFileBits
0x700128 SetROP2
0x70012c GetEnhMetaFileDescriptionW
0x700130 ArcTo
0x700134 Arc
0x700138 SelectPalette
0x70013c ExcludeClipRect
0x700140 MaskBlt
0x700144 SetWindowOrgEx
0x700148 EndPage
0x70014c DeleteEnhMetaFile
0x700150 Chord
0x700154 SetDIBits
0x700158 SetViewportOrgEx
0x70015c CreateRectRgn
0x700160 RealizePalette
0x700164 SetDIBColorTable
0x700168 GetDIBColorTable
0x70016c CreateBrushIndirect
0x700170 PatBlt
0x700174 SetEnhMetaFileBits
0x700178 Rectangle
0x70017c SaveDC
0x700180 DeleteDC
0x700184 FrameRgn
0x700188 BitBlt
0x70018c GetDeviceCaps
0x700190 GetTextExtentPoint32W
0x700194 GetClipBox
0x700198 IntersectClipRect
0x70019c Polyline
0x7001a0 CreateBitmap
0x7001a4 SetWinMetaFileBits
0x7001a8 GetStretchBltMode
0x7001ac CreateDIBitmap
0x7001b0 SetStretchBltMode
0x7001b4 GetDIBits
0x7001b8 CreateDIBSection
0x7001bc LineTo
0x7001c0 GetRgnBox
0x7001c4 EnumFontsW
0x7001c8 CreateHalftonePalette
0x7001cc SelectObject
0x7001d0 DeleteObject
0x7001d4 ExtFloodFill
0x7001d8 UnrealizeObject
0x7001dc CopyEnhMetaFileW
0x7001e0 SetBkColor
0x7001e4 CreateCompatibleDC
0x7001e8 GetBrushOrgEx
0x7001ec GetCurrentPositionEx
0x7001f0 GetTextExtentPointW
0x7001f4 ExtTextOutW
0x7001f8 SetBrushOrgEx
0x7001fc GetPixel
0x700200 GdiFlush
0x700204 SetPixel
0x700208 EnumFontFamiliesExW
0x70020c StretchDIBits
0x700210 GetPaletteEntries
EAT(Export Address Table) Library
0x6dbb4c DeinitLightshot
0x6dbb50 InitLightshot
0x6dbb54 MakeScreenshot
0x6dbb58 MakeScreenshotByCommand
0x6dbb5c SetTranslations
0x46fa44 TMethodImplementationIntercept
0x411b38 __dbk_fcall_wrapper
0x6fa640 dbkFCallWrapperAddr
wininet.dll
0x6ff998 InternetCloseHandle
0x6ff99c InternetReadFile
0x6ff9a0 InternetOpenW
0x6ff9a4 InternetOpenUrlW
winspool.drv
0x6ff9ac DocumentPropertiesW
0x6ff9b0 ClosePrinter
0x6ff9b4 OpenPrinterW
0x6ff9b8 GetDefaultPrinterW
0x6ff9bc EnumPrintersW
comctl32.dll
0x6ff9c4 ImageList_GetImageInfo
0x6ff9c8 FlatSB_SetScrollInfo
0x6ff9cc ImageList_DragMove
0x6ff9d0 ImageList_Destroy
0x6ff9d4 _TrackMouseEvent
0x6ff9d8 ImageList_DragShowNolock
0x6ff9dc ImageList_Add
0x6ff9e0 FlatSB_SetScrollProp
0x6ff9e4 ImageList_GetDragImage
0x6ff9e8 ImageList_Create
0x6ff9ec ImageList_EndDrag
0x6ff9f0 ImageList_DrawEx
0x6ff9f4 ImageList_SetImageCount
0x6ff9f8 FlatSB_GetScrollPos
0x6ff9fc FlatSB_SetScrollPos
0x6ffa00 InitializeFlatSB
0x6ffa04 ImageList_Copy
0x6ffa08 FlatSB_GetScrollInfo
0x6ffa0c ImageList_Write
0x6ffa10 ImageList_DrawIndirect
0x6ffa14 ImageList_SetBkColor
0x6ffa18 ImageList_GetBkColor
0x6ffa1c ImageList_BeginDrag
0x6ffa20 ImageList_GetIcon
0x6ffa24 ImageList_Replace
0x6ffa28 ImageList_GetImageCount
0x6ffa2c ImageList_DragEnter
0x6ffa30 ImageList_GetIconSize
0x6ffa34 ImageList_SetIconSize
0x6ffa38 ImageList_Read
0x6ffa3c ImageList_DragLeave
0x6ffa40 ImageList_LoadImageW
0x6ffa44 ImageList_Draw
0x6ffa48 ImageList_Remove
0x6ffa4c ImageList_ReplaceIcon
0x6ffa50 ImageList_SetOverlayImage
shell32.dll
0x6ffa58 Shell_NotifyIconW
0x6ffa5c SHAppBarMessage
0x6ffa60 ShellExecuteW
user32.dll
0x6ffa68 CopyImage
0x6ffa6c CreateWindowExW
0x6ffa70 GetMenuItemInfoW
0x6ffa74 SetMenuItemInfoW
0x6ffa78 DefFrameProcW
0x6ffa7c GetDCEx
0x6ffa80 PeekMessageW
0x6ffa84 MonitorFromWindow
0x6ffa88 GetDlgCtrlID
0x6ffa8c GetUpdateRect
0x6ffa90 SetTimer
0x6ffa94 WindowFromPoint
0x6ffa98 BeginPaint
0x6ffa9c RegisterClipboardFormatW
0x6ffaa0 FrameRect
0x6ffaa4 MapVirtualKeyW
0x6ffaa8 IsWindowUnicode
0x6ffaac RegisterWindowMessageW
0x6ffab0 FillRect
0x6ffab4 GetMenuStringW
0x6ffab8 DispatchMessageW
0x6ffabc CreateAcceleratorTableW
0x6ffac0 SendMessageA
0x6ffac4 DefMDIChildProcW
0x6ffac8 EnumWindows
0x6ffacc GetClassInfoW
0x6ffad0 ShowOwnedPopups
0x6ffad4 GetSystemMenu
0x6ffad8 GetScrollRange
0x6ffadc GetScrollPos
0x6ffae0 SetScrollPos
0x6ffae4 GetActiveWindow
0x6ffae8 SetActiveWindow
0x6ffaec DrawEdge
0x6ffaf0 GetKeyboardLayoutList
0x6ffaf4 LoadBitmapW
0x6ffaf8 DrawFocusRect
0x6ffafc EnumChildWindows
0x6ffb00 ReleaseCapture
0x6ffb04 UnhookWindowsHookEx
0x6ffb08 LoadCursorW
0x6ffb0c GetCapture
0x6ffb10 SetCapture
0x6ffb14 CreatePopupMenu
0x6ffb18 ScrollWindow
0x6ffb1c ShowCaret
0x6ffb20 GetMenuItemID
0x6ffb24 GetLastActivePopup
0x6ffb28 CharLowerBuffW
0x6ffb2c GetSystemMetrics
0x6ffb30 SetWindowLongW
0x6ffb34 PostMessageW
0x6ffb38 DrawMenuBar
0x6ffb3c SetParent
0x6ffb40 IsZoomed
0x6ffb44 CharUpperBuffW
0x6ffb48 GetClientRect
0x6ffb4c IsChild
0x6ffb50 ClientToScreen
0x6ffb54 GetClipboardData
0x6ffb58 SetClipboardData
0x6ffb5c SetWindowPlacement
0x6ffb60 IsIconic
0x6ffb64 CallNextHookEx
0x6ffb68 GetMonitorInfoW
0x6ffb6c ShowWindow
0x6ffb70 CheckMenuItem
0x6ffb74 CharUpperW
0x6ffb78 DefWindowProcW
0x6ffb7c GetForegroundWindow
0x6ffb80 SetForegroundWindow
0x6ffb84 GetWindowTextW
0x6ffb88 EnableWindow
0x6ffb8c DestroyWindow
0x6ffb90 IsDialogMessageW
0x6ffb94 EndMenu
0x6ffb98 RegisterClassW
0x6ffb9c CharNextW
0x6ffba0 GetWindowThreadProcessId
0x6ffba4 RedrawWindow
0x6ffba8 GetDC
0x6ffbac GetFocus
0x6ffbb0 SetFocus
0x6ffbb4 EndPaint
0x6ffbb8 ReleaseDC
0x6ffbbc MsgWaitForMultipleObjectsEx
0x6ffbc0 LoadKeyboardLayoutW
0x6ffbc4 GetClassLongW
0x6ffbc8 ActivateKeyboardLayout
0x6ffbcc GetParent
0x6ffbd0 DrawTextW
0x6ffbd4 SetScrollRange
0x6ffbd8 MonitorFromRect
0x6ffbdc InsertMenuItemW
0x6ffbe0 PeekMessageA
0x6ffbe4 GetPropW
0x6ffbe8 SetClassLongW
0x6ffbec MessageBoxW
0x6ffbf0 MessageBeep
0x6ffbf4 SetPropW
0x6ffbf8 RemovePropW
0x6ffbfc UpdateWindow
0x6ffc00 GetSubMenu
0x6ffc04 MsgWaitForMultipleObjects
0x6ffc08 DestroyMenu
0x6ffc0c DestroyIcon
0x6ffc10 SetWindowsHookExW
0x6ffc14 EmptyClipboard
0x6ffc18 IsWindowVisible
0x6ffc1c DispatchMessageA
0x6ffc20 UnregisterClassW
0x6ffc24 GetTopWindow
0x6ffc28 SendMessageW
0x6ffc2c AdjustWindowRectEx
0x6ffc30 DrawIcon
0x6ffc34 IsWindow
0x6ffc38 EnumThreadWindows
0x6ffc3c InvalidateRect
0x6ffc40 GetKeyboardState
0x6ffc44 DrawFrameControl
0x6ffc48 ScreenToClient
0x6ffc4c SetCursor
0x6ffc50 CreateIcon
0x6ffc54 CreateMenu
0x6ffc58 LoadStringW
0x6ffc5c CharLowerW
0x6ffc60 SetWindowPos
0x6ffc64 SetWindowRgn
0x6ffc68 GetMenuItemCount
0x6ffc6c RemoveMenu
0x6ffc70 GetSysColorBrush
0x6ffc74 GetKeyboardLayoutNameW
0x6ffc78 GetWindowDC
0x6ffc7c TranslateMessage
0x6ffc80 OpenClipboard
0x6ffc84 DrawTextExW
0x6ffc88 MapWindowPoints
0x6ffc8c EnumDisplayMonitors
0x6ffc90 CallWindowProcW
0x6ffc94 CloseClipboard
0x6ffc98 DestroyCursor
0x6ffc9c GetScrollInfo
0x6ffca0 SetWindowTextW
0x6ffca4 GetMessageExtraInfo
0x6ffca8 EnableScrollBar
0x6ffcac GetSysColor
0x6ffcb0 TrackPopupMenu
0x6ffcb4 CopyIcon
0x6ffcb8 DrawIconEx
0x6ffcbc PostQuitMessage
0x6ffcc0 GetClassNameW
0x6ffcc4 ShowScrollBar
0x6ffcc8 EnableMenuItem
0x6ffccc GetIconInfo
0x6ffcd0 GetMessagePos
0x6ffcd4 SetScrollInfo
0x6ffcd8 GetKeyNameTextW
0x6ffcdc GetDesktopWindow
0x6ffce0 GetCursorPos
0x6ffce4 SetCursorPos
0x6ffce8 HideCaret
0x6ffcec GetMenu
0x6ffcf0 GetMenuState
0x6ffcf4 SetMenu
0x6ffcf8 SetRect
0x6ffcfc GetKeyState
0x6ffd00 FindWindowExW
0x6ffd04 MonitorFromPoint
0x6ffd08 ValidateRect
0x6ffd0c SystemParametersInfoW
0x6ffd10 LoadIconW
0x6ffd14 GetCursor
0x6ffd18 GetWindow
0x6ffd1c GetWindowLongW
0x6ffd20 GetWindowRect
0x6ffd24 InsertMenuW
0x6ffd28 KillTimer
0x6ffd2c WaitMessage
0x6ffd30 IsWindowEnabled
0x6ffd34 IsDialogMessageA
0x6ffd38 TranslateMDISysAccel
0x6ffd3c GetWindowPlacement
0x6ffd40 CreateIconIndirect
0x6ffd44 FindWindowW
0x6ffd48 DeleteMenu
0x6ffd4c GetKeyboardLayout
version.dll
0x6ffd54 GetFileVersionInfoSizeW
0x6ffd58 VerQueryValueW
0x6ffd5c GetFileVersionInfoW
oleaut32.dll
0x6ffd64 SysFreeString
0x6ffd68 VariantClear
0x6ffd6c VariantInit
0x6ffd70 GetErrorInfo
0x6ffd74 SysReAllocStringLen
0x6ffd78 SafeArrayCreate
0x6ffd7c SysAllocStringLen
0x6ffd80 SafeArrayPtrOfIndex
0x6ffd84 SafeArrayGetUBound
0x6ffd88 SafeArrayGetLBound
0x6ffd8c VariantCopy
0x6ffd90 VariantChangeType
advapi32.dll
0x6ffd98 RegSetValueExW
0x6ffd9c RegConnectRegistryW
0x6ffda0 RegEnumKeyExW
0x6ffda4 RegLoadKeyW
0x6ffda8 GetUserNameW
0x6ffdac RegDeleteKeyW
0x6ffdb0 RegOpenKeyExW
0x6ffdb4 RegQueryInfoKeyW
0x6ffdb8 RegUnLoadKeyW
0x6ffdbc RegSaveKeyW
0x6ffdc0 RegDeleteValueW
0x6ffdc4 RegReplaceKeyW
0x6ffdc8 RegFlushKey
0x6ffdcc RegQueryValueExW
0x6ffdd0 RegEnumValueW
0x6ffdd4 RegCloseKey
0x6ffdd8 RegCreateKeyExW
0x6ffddc RegRestoreKeyW
msvcrt.dll
0x6ffde4 memcpy
0x6ffde8 memset
winhttp.dll
0x6ffdf0 WinHttpGetIEProxyConfigForCurrentUser
0x6ffdf4 WinHttpSetTimeouts
0x6ffdf8 WinHttpSetStatusCallback
0x6ffdfc WinHttpConnect
0x6ffe00 WinHttpReceiveResponse
0x6ffe04 WinHttpQueryAuthSchemes
0x6ffe08 WinHttpGetProxyForUrl
0x6ffe0c WinHttpReadData
0x6ffe10 WinHttpCloseHandle
0x6ffe14 WinHttpQueryHeaders
0x6ffe18 WinHttpOpenRequest
0x6ffe1c WinHttpAddRequestHeaders
0x6ffe20 WinHttpOpen
0x6ffe24 WinHttpWriteData
0x6ffe28 WinHttpSetCredentials
0x6ffe2c WinHttpQueryDataAvailable
0x6ffe30 WinHttpSetOption
0x6ffe34 WinHttpSendRequest
0x6ffe38 WinHttpQueryOption
kernel32.dll
0x6ffe40 SetFileAttributesW
0x6ffe44 GetFileType
0x6ffe48 SetFileTime
0x6ffe4c QueryDosDeviceW
0x6ffe50 GetACP
0x6ffe54 CloseHandle
0x6ffe58 LocalFree
0x6ffe5c GetCurrentProcessId
0x6ffe60 GetSystemDefaultLangID
0x6ffe64 SizeofResource
0x6ffe68 TlsAlloc
0x6ffe6c TerminateThread
0x6ffe70 QueryPerformanceFrequency
0x6ffe74 IsDebuggerPresent
0x6ffe78 FindNextFileW
0x6ffe7c GetFullPathNameW
0x6ffe80 VirtualFree
0x6ffe84 ExitProcess
0x6ffe88 HeapAlloc
0x6ffe8c GetCPInfoExW
0x6ffe90 RtlUnwind
0x6ffe94 GetCPInfo
0x6ffe98 EnumSystemLocalesW
0x6ffe9c GetStdHandle
0x6ffea0 GetTimeZoneInformation
0x6ffea4 FileTimeToLocalFileTime
0x6ffea8 SystemTimeToTzSpecificLocalTime
0x6ffeac GetModuleHandleW
0x6ffeb0 FreeLibrary
0x6ffeb4 TryEnterCriticalSection
0x6ffeb8 HeapDestroy
0x6ffebc FileTimeToDosDateTime
0x6ffec0 ReadFile
0x6ffec4 GetLastError
0x6ffec8 GetModuleFileNameW
0x6ffecc SetLastError
0x6ffed0 GlobalAlloc
0x6ffed4 GlobalUnlock
0x6ffed8 FindResourceW
0x6ffedc CreateThread
0x6ffee0 CompareStringW
0x6ffee4 MapViewOfFile
0x6ffee8 LoadLibraryA
0x6ffeec GetVolumeInformationW
0x6ffef0 ResetEvent
0x6ffef4 MulDiv
0x6ffef8 FreeResource
0x6ffefc GetDriveTypeW
0x6fff00 GetVersion
0x6fff04 RaiseException
0x6fff08 GlobalAddAtomW
0x6fff0c FormatMessageW
0x6fff10 SwitchToThread
0x6fff14 GetExitCodeThread
0x6fff18 GetCurrentThread
0x6fff1c GetLogicalDrives
0x6fff20 GetFileAttributesExW
0x6fff24 LoadLibraryExW
0x6fff28 LockResource
0x6fff2c FileTimeToSystemTime
0x6fff30 GetCurrentThreadId
0x6fff34 UnhandledExceptionFilter
0x6fff38 GlobalFindAtomW
0x6fff3c VirtualQuery
0x6fff40 GlobalFree
0x6fff44 VirtualQueryEx
0x6fff48 Sleep
0x6fff4c EnterCriticalSection
0x6fff50 SetFilePointer
0x6fff54 LoadResource
0x6fff58 SuspendThread
0x6fff5c GetTickCount
0x6fff60 GetFileSize
0x6fff64 GlobalDeleteAtom
0x6fff68 GetStartupInfoW
0x6fff6c GetFileAttributesW
0x6fff70 InitializeCriticalSection
0x6fff74 VerLanguageNameW
0x6fff78 GetThreadPriority
0x6fff7c GetCurrentProcess
0x6fff80 SetThreadPriority
0x6fff84 GlobalLock
0x6fff88 VirtualAlloc
0x6fff8c GetTempPathW
0x6fff90 GetCommandLineW
0x6fff94 GetSystemInfo
0x6fff98 LeaveCriticalSection
0x6fff9c GetProcAddress
0x6fffa0 ResumeThread
0x6fffa4 GetLogicalDriveStringsW
0x6fffa8 GetVersionExW
0x6fffac VerifyVersionInfoW
0x6fffb0 HeapCreate
0x6fffb4 LCMapStringW
0x6fffb8 GetDiskFreeSpaceW
0x6fffbc VerSetConditionMask
0x6fffc0 FindFirstFileW
0x6fffc4 GetUserDefaultUILanguage
0x6fffc8 TlsFree
0x6fffcc GetConsoleOutputCP
0x6fffd0 UnmapViewOfFile
0x6fffd4 GetConsoleCP
0x6fffd8 lstrlenW
0x6fffdc SetEndOfFile
0x6fffe0 QueryPerformanceCounter
0x6fffe4 HeapFree
0x6fffe8 WideCharToMultiByte
0x6fffec FindClose
0x6ffff0 MultiByteToWideChar
0x6ffff4 LoadLibraryW
0x6ffff8 SetEvent
0x6ffffc GetLocaleInfoW
0x700000 CreateFileW
0x700004 SystemTimeToFileTime
0x700008 EnumResourceNamesW
0x70000c DeleteFileW
0x700010 GetEnvironmentVariableW
0x700014 GetLocalTime
0x700018 WaitForSingleObject
0x70001c WriteFile
0x700020 CreateFileMappingW
0x700024 ExitThread
0x700028 DeleteCriticalSection
0x70002c GetDateFormatW
0x700030 TlsGetValue
0x700034 SetErrorMode
0x700038 GetComputerNameW
0x70003c TzSpecificLocalTimeToSystemTime
0x700040 IsValidLocale
0x700044 TlsSetValue
0x700048 CreateDirectoryW
0x70004c GetSystemDefaultUILanguage
0x700050 EnumCalendarInfoW
0x700054 LocalAlloc
0x700058 RemoveDirectoryW
0x70005c CreateEventW
0x700060 WaitForMultipleObjectsEx
0x700064 GetThreadLocale
0x700068 SetThreadLocale
ole32.dll
0x700070 IsEqualGUID
0x700074 OleInitialize
0x700078 OleUninitialize
0x70007c CoInitialize
0x700080 CoCreateInstance
0x700084 CoUninitialize
0x700088 CoTaskMemFree
0x70008c CoTaskMemAlloc
gdi32.dll
0x700094 Pie
0x700098 SetBkMode
0x70009c CreateCompatibleBitmap
0x7000a0 GetEnhMetaFileHeader
0x7000a4 RectVisible
0x7000a8 AngleArc
0x7000ac SetAbortProc
0x7000b0 SetTextColor
0x7000b4 StretchBlt
0x7000b8 RoundRect
0x7000bc RestoreDC
0x7000c0 SetRectRgn
0x7000c4 GetTextMetricsW
0x7000c8 GetWindowOrgEx
0x7000cc CreatePalette
0x7000d0 PolyBezierTo
0x7000d4 CreateICW
0x7000d8 CreateDCW
0x7000dc GetStockObject
0x7000e0 CreateSolidBrush
0x7000e4 Polygon
0x7000e8 MoveToEx
0x7000ec PlayEnhMetaFile
0x7000f0 Ellipse
0x7000f4 StartPage
0x7000f8 GetBitmapBits
0x7000fc StartDocW
0x700100 GetSystemPaletteEntries
0x700104 GetEnhMetaFileBits
0x700108 AbortDoc
0x70010c GetEnhMetaFilePaletteEntries
0x700110 CreatePenIndirect
0x700114 CreateFontIndirectW
0x700118 PolyBezier
0x70011c EndDoc
0x700120 GetObjectW
0x700124 GetWinMetaFileBits
0x700128 SetROP2
0x70012c GetEnhMetaFileDescriptionW
0x700130 ArcTo
0x700134 Arc
0x700138 SelectPalette
0x70013c ExcludeClipRect
0x700140 MaskBlt
0x700144 SetWindowOrgEx
0x700148 EndPage
0x70014c DeleteEnhMetaFile
0x700150 Chord
0x700154 SetDIBits
0x700158 SetViewportOrgEx
0x70015c CreateRectRgn
0x700160 RealizePalette
0x700164 SetDIBColorTable
0x700168 GetDIBColorTable
0x70016c CreateBrushIndirect
0x700170 PatBlt
0x700174 SetEnhMetaFileBits
0x700178 Rectangle
0x70017c SaveDC
0x700180 DeleteDC
0x700184 FrameRgn
0x700188 BitBlt
0x70018c GetDeviceCaps
0x700190 GetTextExtentPoint32W
0x700194 GetClipBox
0x700198 IntersectClipRect
0x70019c Polyline
0x7001a0 CreateBitmap
0x7001a4 SetWinMetaFileBits
0x7001a8 GetStretchBltMode
0x7001ac CreateDIBitmap
0x7001b0 SetStretchBltMode
0x7001b4 GetDIBits
0x7001b8 CreateDIBSection
0x7001bc LineTo
0x7001c0 GetRgnBox
0x7001c4 EnumFontsW
0x7001c8 CreateHalftonePalette
0x7001cc SelectObject
0x7001d0 DeleteObject
0x7001d4 ExtFloodFill
0x7001d8 UnrealizeObject
0x7001dc CopyEnhMetaFileW
0x7001e0 SetBkColor
0x7001e4 CreateCompatibleDC
0x7001e8 GetBrushOrgEx
0x7001ec GetCurrentPositionEx
0x7001f0 GetTextExtentPointW
0x7001f4 ExtTextOutW
0x7001f8 SetBrushOrgEx
0x7001fc GetPixel
0x700200 GdiFlush
0x700204 SetPixel
0x700208 EnumFontFamiliesExW
0x70020c StretchDIBits
0x700210 GetPaletteEntries
EAT(Export Address Table) Library
0x6dbb4c DeinitLightshot
0x6dbb50 InitLightshot
0x6dbb54 MakeScreenshot
0x6dbb58 MakeScreenshotByCommand
0x6dbb5c SetTranslations
0x46fa44 TMethodImplementationIntercept
0x411b38 __dbk_fcall_wrapper
0x6fa640 dbkFCallWrapperAddr