ScreenShot
| Created | 2023.09.08 16:32 | Machine | s1_win7_x6401 |
| Filename | LuckyClickerStary.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 27 detected (AIDetectMalware, unsafe, V815, malicious, high confidence, score, Badur, GameHack, high, Artemis, Khalesi, Generic@AI, RDML, Kvm4LEtqf, 56iV3V5QVYBQ, Static AI, Malicious PE, susgen, PossibleThreat, confidence) | ||
| md5 | fd2d9f92c0745f6eb925938507dbd9ad | ||
| sha256 | 92b213f2f4f529ec4261e076085c1c00c6668c4baca22216c885bf09809c7b2a | ||
| ssdeep | 49152:WnqBvumZZH+Rb8s3gt9LoHwjvTyXdC8fZOV:vZAlOvLMCzV | ||
| imphash | 8640163fc2b92ed7911366198a2d1927 | ||
| impfuzzy | 192:opF0UYYJE4IOP9FxdKLunSWVvv2hVFd/gnV9P0:ErhW8PvXKGdX2hMbP0 | ||
Network IP location
Signature (3cnts)
| Level | Description |
|---|---|
| warning | File has been identified by 27 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| info | Checks amount of memory in system |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| notice | anti_vm_detect | Possibly employs anti-virtualization techniques | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
WSOCK32.dll
0x499718 gethostbyname
0x49971c inet_addr
0x499720 WSACleanup
0x499724 gethostname
0x499728 WSAStartup
WINMM.dll
0x4996e4 mixerGetLineInfoA
0x4996e8 mixerGetDevCapsA
0x4996ec mixerOpen
0x4996f0 mciSendStringA
0x4996f4 joyGetPosEx
0x4996f8 mixerGetLineControlsA
0x4996fc mixerGetControlDetailsA
0x499700 mixerSetControlDetails
0x499704 waveOutGetVolume
0x499708 mixerClose
0x49970c waveOutSetVolume
0x499710 joyGetDevCapsA
VERSION.dll
0x4996bc GetFileVersionInfoA
0x4996c0 VerQueryValueA
0x4996c4 GetFileVersionInfoSizeA
COMCTL32.dll
0x499050 ImageList_Create
0x499054 None
0x499058 ImageList_ReplaceIcon
0x49905c InitCommonControlsEx
0x499060 ImageList_GetIconSize
0x499064 ImageList_Destroy
0x499068 ImageList_AddMasked
PSAPI.DLL
0x4993c8 GetModuleBaseNameA
0x4993cc GetModuleFileNameExA
WININET.dll
0x4996cc InternetOpenA
0x4996d0 InternetOpenUrlA
0x4996d4 InternetCloseHandle
0x4996d8 InternetReadFileExA
0x4996dc InternetReadFile
KERNEL32.dll
0x49910c DeleteCriticalSection
0x499110 GetModuleFileNameA
0x499114 GetSystemTimeAsFileTime
0x499118 FindResourceA
0x49911c SizeofResource
0x499120 LoadResource
0x499124 LockResource
0x499128 GetFullPathNameA
0x49912c GetShortPathNameA
0x499130 FindFirstFileA
0x499134 FindNextFileA
0x499138 FindClose
0x49913c FileTimeToLocalFileTime
0x499140 SetEnvironmentVariableA
0x499144 Beep
0x499148 MoveFileA
0x49914c OutputDebugStringA
0x499150 CreateProcessA
0x499154 GetFileAttributesA
0x499158 GetExitCodeProcess
0x49915c WriteProcessMemory
0x499160 ReadProcessMemory
0x499164 GetCurrentProcessId
0x499168 OpenProcess
0x49916c TerminateProcess
0x499170 SetPriorityClass
0x499174 SetLastError
0x499178 GetEnvironmentVariableA
0x49917c GetLocalTime
0x499180 GetDateFormatA
0x499184 GetTimeFormatA
0x499188 GetDiskFreeSpaceExA
0x49918c SetVolumeLabelA
0x499190 CreateFileA
0x499194 DeviceIoControl
0x499198 GetDriveTypeA
0x49919c GetVolumeInformationA
0x4991a0 GetDiskFreeSpaceA
0x4991a4 GetCurrentDirectoryA
0x4991a8 CreateDirectoryA
0x4991ac ReadFile
0x4991b0 GetACP
0x4991b4 WriteFile
0x4991b8 DeleteFileA
0x4991bc SetFileAttributesA
0x4991c0 LocalFileTimeToFileTime
0x4991c4 SetFileTime
0x4991c8 GetFileSizeEx
0x4991cc GetCPInfo
0x4991d0 GetSystemDefaultUILanguage
0x4991d4 GetComputerNameA
0x4991d8 GetSystemWindowsDirectoryA
0x4991dc GetTempPathA
0x4991e0 EnterCriticalSection
0x4991e4 LeaveCriticalSection
0x4991e8 VirtualProtect
0x4991ec QueryDosDeviceA
0x4991f0 CompareStringA
0x4991f4 GetFullPathNameW
0x4991f8 RemoveDirectoryA
0x4991fc CopyFileA
0x499200 GetCurrentProcess
0x499204 CreateToolhelp32Snapshot
0x499208 Process32First
0x49920c Process32Next
0x499210 FormatMessageA
0x499214 GetPrivateProfileStringA
0x499218 GetPrivateProfileSectionA
0x49921c GetPrivateProfileSectionNamesA
0x499220 WritePrivateProfileStringA
0x499224 WritePrivateProfileSectionA
0x499228 SetEndOfFile
0x49922c GetFileType
0x499230 GetStdHandle
0x499234 SetFilePointerEx
0x499238 SystemTimeToFileTime
0x49923c FileTimeToSystemTime
0x499240 GetFileSize
0x499244 VirtualAllocEx
0x499248 VirtualFreeEx
0x49924c EnumResourceNamesA
0x499250 LoadLibraryExA
0x499254 GlobalSize
0x499258 HeapSetInformation
0x49925c GetCommandLineA
0x499260 HeapQueryInformation
0x499264 HeapSize
0x499268 HeapReAlloc
0x49926c ExitProcess
0x499270 GetModuleHandleW
0x499274 HeapAlloc
0x499278 HeapFree
0x49927c IsValidCodePage
0x499280 TlsAlloc
0x499284 TlsGetValue
0x499288 TlsSetValue
0x49928c TlsFree
0x499290 LCMapStringW
0x499294 UnhandledExceptionFilter
0x499298 SetUnhandledExceptionFilter
0x49929c IsDebuggerPresent
0x4992a0 HeapCreate
0x4992a4 GetVersionExW
0x4992a8 GetModuleHandleA
0x4992ac FreeLibrary
0x4992b0 GetProcAddress
0x4992b4 LoadLibraryA
0x4992b8 MultiByteToWideChar
0x4992bc GetLastError
0x4992c0 CreateMutexA
0x4992c4 CloseHandle
0x4992c8 GetExitCodeThread
0x4992cc SetThreadPriority
0x4992d0 CreateThread
0x4992d4 GetStringTypeExA
0x4992d8 lstrcmpiA
0x4992dc WideCharToMultiByte
0x4992e0 GetCurrentThreadId
0x4992e4 GlobalUnlock
0x4992e8 GlobalFree
0x4992ec GlobalAlloc
0x4992f0 GlobalLock
0x4992f4 SetErrorMode
0x4992f8 InitializeCriticalSection
0x4992fc SetCurrentDirectoryA
0x499300 Sleep
0x499304 GetTickCount
0x499308 MulDiv
0x49930c GetModuleFileNameW
0x499310 InitializeCriticalSectionAndSpinCount
0x499314 GetStartupInfoW
0x499318 InterlockedIncrement
0x49931c InterlockedDecrement
0x499320 LoadLibraryW
0x499324 SetHandleCount
0x499328 IsProcessorFeaturePresent
0x49932c GetStringTypeW
0x499330 RaiseException
0x499334 RtlUnwind
0x499338 GetConsoleCP
0x49933c GetConsoleMode
0x499340 FreeEnvironmentStringsW
0x499344 GetEnvironmentStringsW
0x499348 QueryPerformanceCounter
0x49934c FlushFileBuffers
0x499350 SetFilePointer
0x499354 GetOEMCP
0x499358 WriteConsoleW
0x49935c SetStdHandle
0x499360 GetProcessHeap
0x499364 CreateFileW
0x499368 GetSystemTime
0x49936c VirtualQuery
USER32.dll
0x49940c SetWindowTextW
0x499410 SetDlgItemTextA
0x499414 MessageBeep
0x499418 GetCursorInfo
0x49941c GetLastInputInfo
0x499420 GetSystemMenu
0x499424 GetMenuItemCount
0x499428 GetMenuItemID
0x49942c GetSubMenu
0x499430 GetMenuStringA
0x499434 ExitWindowsEx
0x499438 SetMenu
0x49943c FlashWindow
0x499440 GetPropA
0x499444 SetPropA
0x499448 RemovePropA
0x49944c MapWindowPoints
0x499450 RedrawWindow
0x499454 SetParent
0x499458 SendMessageW
0x49945c GetClassInfoExA
0x499460 DefDlgProcA
0x499464 GetAncestor
0x499468 UpdateWindow
0x49946c GetMessagePos
0x499470 GetClassLongA
0x499474 CallWindowProcA
0x499478 CheckRadioButton
0x49947c IntersectRect
0x499480 GetUpdateRect
0x499484 PtInRect
0x499488 CreateDialogIndirectParamA
0x49948c CreateAcceleratorTableA
0x499490 DestroyAcceleratorTable
0x499494 InsertMenuItemA
0x499498 SetMenuDefaultItem
0x49949c RemoveMenu
0x4994a0 SetMenuItemInfoA
0x4994a4 IsMenu
0x4994a8 GetMenuItemInfoA
0x4994ac CreateMenu
0x4994b0 CreatePopupMenu
0x4994b4 SetMenuInfo
0x4994b8 AppendMenuA
0x4994bc DestroyMenu
0x4994c0 TrackPopupMenuEx
0x4994c4 CopyImage
0x4994c8 CreateIconIndirect
0x4994cc CreateIconFromResourceEx
0x4994d0 EnumClipboardFormats
0x4994d4 GetWindow
0x4994d8 BringWindowToTop
0x4994dc MessageBoxA
0x4994e0 GetTopWindow
0x4994e4 GetQueueStatus
0x4994e8 LoadImageA
0x4994ec GetDlgItem
0x4994f0 SetClipboardViewer
0x4994f4 LoadAcceleratorsA
0x4994f8 EnableMenuItem
0x4994fc GetMenu
0x499500 CreateWindowExA
0x499504 RegisterClassExA
0x499508 LoadCursorA
0x49950c DestroyWindow
0x499510 IsCharAlphaA
0x499514 GetWindowTextLengthA
0x499518 MapVirtualKeyExA
0x49951c VkKeyScanExA
0x499520 GetGUIThreadInfo
0x499524 GetWindowTextA
0x499528 mouse_event
0x49952c WindowFromPoint
0x499530 GetSystemMetrics
0x499534 keybd_event
0x499538 SetKeyboardState
0x49953c GetKeyboardState
0x499540 GetCursorPos
0x499544 PostMessageW
0x499548 GetAsyncKeyState
0x49954c AttachThreadInput
0x499550 SendInput
0x499554 UnregisterHotKey
0x499558 RegisterHotKey
0x49955c PostQuitMessage
0x499560 SendMessageTimeoutA
0x499564 UnhookWindowsHookEx
0x499568 SetWindowsHookExA
0x49956c PostThreadMessageA
0x499570 IsCharAlphaNumericA
0x499574 IsCharUpperA
0x499578 IsCharLowerA
0x49957c ToAsciiEx
0x499580 GetKeyboardLayout
0x499584 CallNextHookEx
0x499588 CharLowerA
0x49958c ReleaseDC
0x499590 GetDC
0x499594 OpenClipboard
0x499598 GetClipboardData
0x49959c GetClipboardFormatNameA
0x4995a0 CloseClipboard
0x4995a4 SetClipboardData
0x4995a8 EmptyClipboard
0x4995ac PostMessageA
0x4995b0 FindWindowA
0x4995b4 EndDialog
0x4995b8 IsWindow
0x4995bc DispatchMessageA
0x4995c0 TranslateMessage
0x4995c4 ShowWindow
0x4995c8 CountClipboardFormats
0x4995cc SendDlgItemMessageA
0x4995d0 DialogBoxParamA
0x4995d4 SetForegroundWindow
0x4995d8 DefWindowProcA
0x4995dc FillRect
0x4995e0 DrawIconEx
0x4995e4 GetSysColorBrush
0x4995e8 GetSysColor
0x4995ec RegisterWindowMessageA
0x4995f0 EnumDisplayMonitors
0x4995f4 IsIconic
0x4995f8 IsZoomed
0x4995fc ChangeClipboardChain
0x499600 EnumWindows
0x499604 SetWindowLongA
0x499608 ScreenToClient
0x49960c IsDialogMessageA
0x499610 SendMessageA
0x499614 IsWindowEnabled
0x499618 GetWindowLongA
0x49961c GetKeyState
0x499620 TranslateAcceleratorA
0x499624 KillTimer
0x499628 PeekMessageA
0x49962c GetFocus
0x499630 EnableWindow
0x499634 InvalidateRect
0x499638 SetLayeredWindowAttributes
0x49963c SetWindowPos
0x499640 SetWindowRgn
0x499644 SetFocus
0x499648 SetActiveWindow
0x49964c ClientToScreen
0x499650 EnumChildWindows
0x499654 MoveWindow
0x499658 GetWindowRect
0x49965c GetMonitorInfoA
0x499660 MonitorFromPoint
0x499664 GetClientRect
0x499668 SystemParametersInfoA
0x49966c AdjustWindowRectEx
0x499670 DrawTextA
0x499674 SetRect
0x499678 GetIconInfo
0x49967c SetWindowTextA
0x499680 IsWindowVisible
0x499684 GetClassNameA
0x499688 GetWindowThreadProcessId
0x49968c GetForegroundWindow
0x499690 GetMessageA
0x499694 SetTimer
0x499698 GetParent
0x49969c GetDlgCtrlID
0x4996a0 CharUpperA
0x4996a4 IsClipboardFormatAvailable
0x4996a8 BlockInput
0x4996ac MapVirtualKeyA
0x4996b0 CheckMenuItem
0x4996b4 DestroyIcon
GDI32.dll
0x499080 GetPixel
0x499084 GetClipRgn
0x499088 GetCharABCWidthsA
0x49908c SetBkMode
0x499090 CreatePatternBrush
0x499094 SetBrushOrgEx
0x499098 EnumFontFamiliesExA
0x49909c CreateDIBSection
0x4990a0 GdiFlush
0x4990a4 SetBkColor
0x4990a8 ExcludeClipRect
0x4990ac SetTextColor
0x4990b0 GetClipBox
0x4990b4 BitBlt
0x4990b8 CreateCompatibleBitmap
0x4990bc GetSystemPaletteEntries
0x4990c0 GetDIBits
0x4990c4 CreateCompatibleDC
0x4990c8 CreatePolygonRgn
0x4990cc CreateRectRgn
0x4990d0 CreateRoundRectRgn
0x4990d4 CreateEllipticRgn
0x4990d8 DeleteDC
0x4990dc GetObjectA
0x4990e0 GetTextMetricsA
0x4990e4 GetTextFaceA
0x4990e8 SelectObject
0x4990ec GetStockObject
0x4990f0 CreateDCA
0x4990f4 CreateSolidBrush
0x4990f8 CreateFontA
0x4990fc FillRgn
0x499100 GetDeviceCaps
0x499104 DeleteObject
COMDLG32.dll
0x499070 CommDlgExtendedError
0x499074 GetSaveFileNameA
0x499078 GetOpenFileNameA
ADVAPI32.dll
0x499000 RegDeleteKeyA
0x499004 RegSetValueExA
0x499008 RegCreateKeyExA
0x49900c RegQueryValueExA
0x499010 AdjustTokenPrivileges
0x499014 LookupPrivilegeValueA
0x499018 OpenProcessToken
0x49901c CloseServiceHandle
0x499020 UnlockServiceDatabase
0x499024 LockServiceDatabase
0x499028 OpenSCManagerA
0x49902c GetUserNameA
0x499030 RegEnumKeyExA
0x499034 RegEnumValueA
0x499038 RegQueryInfoKeyA
0x49903c RegOpenKeyExA
0x499040 RegCloseKey
0x499044 RegConnectRegistryA
0x499048 RegDeleteValueA
SHELL32.dll
0x4993d4 DragQueryPoint
0x4993d8 SHEmptyRecycleBinA
0x4993dc SHFileOperationA
0x4993e0 SHGetPathFromIDListA
0x4993e4 SHBrowseForFolderA
0x4993e8 SHGetDesktopFolder
0x4993ec SHGetMalloc
0x4993f0 SHGetFolderPathA
0x4993f4 ShellExecuteExA
0x4993f8 Shell_NotifyIconA
0x4993fc DragFinish
0x499400 DragQueryFileA
0x499404 ExtractIconA
ole32.dll
0x499730 OleInitialize
0x499734 OleUninitialize
0x499738 CoCreateInstance
0x49973c CoInitialize
0x499740 CoUninitialize
0x499744 CLSIDFromString
0x499748 CLSIDFromProgID
0x49974c CoGetObject
0x499750 StringFromGUID2
0x499754 CreateStreamOnHGlobal
OLEAUT32.dll
0x499374 SafeArrayGetLBound
0x499378 GetActiveObject
0x49937c OleLoadPicture
0x499380 SafeArrayUnaccessData
0x499384 SafeArrayGetElemsize
0x499388 SafeArrayAccessData
0x49938c SafeArrayUnlock
0x499390 SafeArrayPtrOfIndex
0x499394 SafeArrayLock
0x499398 SafeArrayGetDim
0x49939c SafeArrayDestroy
0x4993a0 SafeArrayGetUBound
0x4993a4 VariantCopyInd
0x4993a8 SafeArrayCopy
0x4993ac SysAllocString
0x4993b0 VariantChangeType
0x4993b4 VariantClear
0x4993b8 SafeArrayCreate
0x4993bc SysFreeString
0x4993c0 SysStringLen
EAT(Export Address Table) is none
WSOCK32.dll
0x499718 gethostbyname
0x49971c inet_addr
0x499720 WSACleanup
0x499724 gethostname
0x499728 WSAStartup
WINMM.dll
0x4996e4 mixerGetLineInfoA
0x4996e8 mixerGetDevCapsA
0x4996ec mixerOpen
0x4996f0 mciSendStringA
0x4996f4 joyGetPosEx
0x4996f8 mixerGetLineControlsA
0x4996fc mixerGetControlDetailsA
0x499700 mixerSetControlDetails
0x499704 waveOutGetVolume
0x499708 mixerClose
0x49970c waveOutSetVolume
0x499710 joyGetDevCapsA
VERSION.dll
0x4996bc GetFileVersionInfoA
0x4996c0 VerQueryValueA
0x4996c4 GetFileVersionInfoSizeA
COMCTL32.dll
0x499050 ImageList_Create
0x499054 None
0x499058 ImageList_ReplaceIcon
0x49905c InitCommonControlsEx
0x499060 ImageList_GetIconSize
0x499064 ImageList_Destroy
0x499068 ImageList_AddMasked
PSAPI.DLL
0x4993c8 GetModuleBaseNameA
0x4993cc GetModuleFileNameExA
WININET.dll
0x4996cc InternetOpenA
0x4996d0 InternetOpenUrlA
0x4996d4 InternetCloseHandle
0x4996d8 InternetReadFileExA
0x4996dc InternetReadFile
KERNEL32.dll
0x49910c DeleteCriticalSection
0x499110 GetModuleFileNameA
0x499114 GetSystemTimeAsFileTime
0x499118 FindResourceA
0x49911c SizeofResource
0x499120 LoadResource
0x499124 LockResource
0x499128 GetFullPathNameA
0x49912c GetShortPathNameA
0x499130 FindFirstFileA
0x499134 FindNextFileA
0x499138 FindClose
0x49913c FileTimeToLocalFileTime
0x499140 SetEnvironmentVariableA
0x499144 Beep
0x499148 MoveFileA
0x49914c OutputDebugStringA
0x499150 CreateProcessA
0x499154 GetFileAttributesA
0x499158 GetExitCodeProcess
0x49915c WriteProcessMemory
0x499160 ReadProcessMemory
0x499164 GetCurrentProcessId
0x499168 OpenProcess
0x49916c TerminateProcess
0x499170 SetPriorityClass
0x499174 SetLastError
0x499178 GetEnvironmentVariableA
0x49917c GetLocalTime
0x499180 GetDateFormatA
0x499184 GetTimeFormatA
0x499188 GetDiskFreeSpaceExA
0x49918c SetVolumeLabelA
0x499190 CreateFileA
0x499194 DeviceIoControl
0x499198 GetDriveTypeA
0x49919c GetVolumeInformationA
0x4991a0 GetDiskFreeSpaceA
0x4991a4 GetCurrentDirectoryA
0x4991a8 CreateDirectoryA
0x4991ac ReadFile
0x4991b0 GetACP
0x4991b4 WriteFile
0x4991b8 DeleteFileA
0x4991bc SetFileAttributesA
0x4991c0 LocalFileTimeToFileTime
0x4991c4 SetFileTime
0x4991c8 GetFileSizeEx
0x4991cc GetCPInfo
0x4991d0 GetSystemDefaultUILanguage
0x4991d4 GetComputerNameA
0x4991d8 GetSystemWindowsDirectoryA
0x4991dc GetTempPathA
0x4991e0 EnterCriticalSection
0x4991e4 LeaveCriticalSection
0x4991e8 VirtualProtect
0x4991ec QueryDosDeviceA
0x4991f0 CompareStringA
0x4991f4 GetFullPathNameW
0x4991f8 RemoveDirectoryA
0x4991fc CopyFileA
0x499200 GetCurrentProcess
0x499204 CreateToolhelp32Snapshot
0x499208 Process32First
0x49920c Process32Next
0x499210 FormatMessageA
0x499214 GetPrivateProfileStringA
0x499218 GetPrivateProfileSectionA
0x49921c GetPrivateProfileSectionNamesA
0x499220 WritePrivateProfileStringA
0x499224 WritePrivateProfileSectionA
0x499228 SetEndOfFile
0x49922c GetFileType
0x499230 GetStdHandle
0x499234 SetFilePointerEx
0x499238 SystemTimeToFileTime
0x49923c FileTimeToSystemTime
0x499240 GetFileSize
0x499244 VirtualAllocEx
0x499248 VirtualFreeEx
0x49924c EnumResourceNamesA
0x499250 LoadLibraryExA
0x499254 GlobalSize
0x499258 HeapSetInformation
0x49925c GetCommandLineA
0x499260 HeapQueryInformation
0x499264 HeapSize
0x499268 HeapReAlloc
0x49926c ExitProcess
0x499270 GetModuleHandleW
0x499274 HeapAlloc
0x499278 HeapFree
0x49927c IsValidCodePage
0x499280 TlsAlloc
0x499284 TlsGetValue
0x499288 TlsSetValue
0x49928c TlsFree
0x499290 LCMapStringW
0x499294 UnhandledExceptionFilter
0x499298 SetUnhandledExceptionFilter
0x49929c IsDebuggerPresent
0x4992a0 HeapCreate
0x4992a4 GetVersionExW
0x4992a8 GetModuleHandleA
0x4992ac FreeLibrary
0x4992b0 GetProcAddress
0x4992b4 LoadLibraryA
0x4992b8 MultiByteToWideChar
0x4992bc GetLastError
0x4992c0 CreateMutexA
0x4992c4 CloseHandle
0x4992c8 GetExitCodeThread
0x4992cc SetThreadPriority
0x4992d0 CreateThread
0x4992d4 GetStringTypeExA
0x4992d8 lstrcmpiA
0x4992dc WideCharToMultiByte
0x4992e0 GetCurrentThreadId
0x4992e4 GlobalUnlock
0x4992e8 GlobalFree
0x4992ec GlobalAlloc
0x4992f0 GlobalLock
0x4992f4 SetErrorMode
0x4992f8 InitializeCriticalSection
0x4992fc SetCurrentDirectoryA
0x499300 Sleep
0x499304 GetTickCount
0x499308 MulDiv
0x49930c GetModuleFileNameW
0x499310 InitializeCriticalSectionAndSpinCount
0x499314 GetStartupInfoW
0x499318 InterlockedIncrement
0x49931c InterlockedDecrement
0x499320 LoadLibraryW
0x499324 SetHandleCount
0x499328 IsProcessorFeaturePresent
0x49932c GetStringTypeW
0x499330 RaiseException
0x499334 RtlUnwind
0x499338 GetConsoleCP
0x49933c GetConsoleMode
0x499340 FreeEnvironmentStringsW
0x499344 GetEnvironmentStringsW
0x499348 QueryPerformanceCounter
0x49934c FlushFileBuffers
0x499350 SetFilePointer
0x499354 GetOEMCP
0x499358 WriteConsoleW
0x49935c SetStdHandle
0x499360 GetProcessHeap
0x499364 CreateFileW
0x499368 GetSystemTime
0x49936c VirtualQuery
USER32.dll
0x49940c SetWindowTextW
0x499410 SetDlgItemTextA
0x499414 MessageBeep
0x499418 GetCursorInfo
0x49941c GetLastInputInfo
0x499420 GetSystemMenu
0x499424 GetMenuItemCount
0x499428 GetMenuItemID
0x49942c GetSubMenu
0x499430 GetMenuStringA
0x499434 ExitWindowsEx
0x499438 SetMenu
0x49943c FlashWindow
0x499440 GetPropA
0x499444 SetPropA
0x499448 RemovePropA
0x49944c MapWindowPoints
0x499450 RedrawWindow
0x499454 SetParent
0x499458 SendMessageW
0x49945c GetClassInfoExA
0x499460 DefDlgProcA
0x499464 GetAncestor
0x499468 UpdateWindow
0x49946c GetMessagePos
0x499470 GetClassLongA
0x499474 CallWindowProcA
0x499478 CheckRadioButton
0x49947c IntersectRect
0x499480 GetUpdateRect
0x499484 PtInRect
0x499488 CreateDialogIndirectParamA
0x49948c CreateAcceleratorTableA
0x499490 DestroyAcceleratorTable
0x499494 InsertMenuItemA
0x499498 SetMenuDefaultItem
0x49949c RemoveMenu
0x4994a0 SetMenuItemInfoA
0x4994a4 IsMenu
0x4994a8 GetMenuItemInfoA
0x4994ac CreateMenu
0x4994b0 CreatePopupMenu
0x4994b4 SetMenuInfo
0x4994b8 AppendMenuA
0x4994bc DestroyMenu
0x4994c0 TrackPopupMenuEx
0x4994c4 CopyImage
0x4994c8 CreateIconIndirect
0x4994cc CreateIconFromResourceEx
0x4994d0 EnumClipboardFormats
0x4994d4 GetWindow
0x4994d8 BringWindowToTop
0x4994dc MessageBoxA
0x4994e0 GetTopWindow
0x4994e4 GetQueueStatus
0x4994e8 LoadImageA
0x4994ec GetDlgItem
0x4994f0 SetClipboardViewer
0x4994f4 LoadAcceleratorsA
0x4994f8 EnableMenuItem
0x4994fc GetMenu
0x499500 CreateWindowExA
0x499504 RegisterClassExA
0x499508 LoadCursorA
0x49950c DestroyWindow
0x499510 IsCharAlphaA
0x499514 GetWindowTextLengthA
0x499518 MapVirtualKeyExA
0x49951c VkKeyScanExA
0x499520 GetGUIThreadInfo
0x499524 GetWindowTextA
0x499528 mouse_event
0x49952c WindowFromPoint
0x499530 GetSystemMetrics
0x499534 keybd_event
0x499538 SetKeyboardState
0x49953c GetKeyboardState
0x499540 GetCursorPos
0x499544 PostMessageW
0x499548 GetAsyncKeyState
0x49954c AttachThreadInput
0x499550 SendInput
0x499554 UnregisterHotKey
0x499558 RegisterHotKey
0x49955c PostQuitMessage
0x499560 SendMessageTimeoutA
0x499564 UnhookWindowsHookEx
0x499568 SetWindowsHookExA
0x49956c PostThreadMessageA
0x499570 IsCharAlphaNumericA
0x499574 IsCharUpperA
0x499578 IsCharLowerA
0x49957c ToAsciiEx
0x499580 GetKeyboardLayout
0x499584 CallNextHookEx
0x499588 CharLowerA
0x49958c ReleaseDC
0x499590 GetDC
0x499594 OpenClipboard
0x499598 GetClipboardData
0x49959c GetClipboardFormatNameA
0x4995a0 CloseClipboard
0x4995a4 SetClipboardData
0x4995a8 EmptyClipboard
0x4995ac PostMessageA
0x4995b0 FindWindowA
0x4995b4 EndDialog
0x4995b8 IsWindow
0x4995bc DispatchMessageA
0x4995c0 TranslateMessage
0x4995c4 ShowWindow
0x4995c8 CountClipboardFormats
0x4995cc SendDlgItemMessageA
0x4995d0 DialogBoxParamA
0x4995d4 SetForegroundWindow
0x4995d8 DefWindowProcA
0x4995dc FillRect
0x4995e0 DrawIconEx
0x4995e4 GetSysColorBrush
0x4995e8 GetSysColor
0x4995ec RegisterWindowMessageA
0x4995f0 EnumDisplayMonitors
0x4995f4 IsIconic
0x4995f8 IsZoomed
0x4995fc ChangeClipboardChain
0x499600 EnumWindows
0x499604 SetWindowLongA
0x499608 ScreenToClient
0x49960c IsDialogMessageA
0x499610 SendMessageA
0x499614 IsWindowEnabled
0x499618 GetWindowLongA
0x49961c GetKeyState
0x499620 TranslateAcceleratorA
0x499624 KillTimer
0x499628 PeekMessageA
0x49962c GetFocus
0x499630 EnableWindow
0x499634 InvalidateRect
0x499638 SetLayeredWindowAttributes
0x49963c SetWindowPos
0x499640 SetWindowRgn
0x499644 SetFocus
0x499648 SetActiveWindow
0x49964c ClientToScreen
0x499650 EnumChildWindows
0x499654 MoveWindow
0x499658 GetWindowRect
0x49965c GetMonitorInfoA
0x499660 MonitorFromPoint
0x499664 GetClientRect
0x499668 SystemParametersInfoA
0x49966c AdjustWindowRectEx
0x499670 DrawTextA
0x499674 SetRect
0x499678 GetIconInfo
0x49967c SetWindowTextA
0x499680 IsWindowVisible
0x499684 GetClassNameA
0x499688 GetWindowThreadProcessId
0x49968c GetForegroundWindow
0x499690 GetMessageA
0x499694 SetTimer
0x499698 GetParent
0x49969c GetDlgCtrlID
0x4996a0 CharUpperA
0x4996a4 IsClipboardFormatAvailable
0x4996a8 BlockInput
0x4996ac MapVirtualKeyA
0x4996b0 CheckMenuItem
0x4996b4 DestroyIcon
GDI32.dll
0x499080 GetPixel
0x499084 GetClipRgn
0x499088 GetCharABCWidthsA
0x49908c SetBkMode
0x499090 CreatePatternBrush
0x499094 SetBrushOrgEx
0x499098 EnumFontFamiliesExA
0x49909c CreateDIBSection
0x4990a0 GdiFlush
0x4990a4 SetBkColor
0x4990a8 ExcludeClipRect
0x4990ac SetTextColor
0x4990b0 GetClipBox
0x4990b4 BitBlt
0x4990b8 CreateCompatibleBitmap
0x4990bc GetSystemPaletteEntries
0x4990c0 GetDIBits
0x4990c4 CreateCompatibleDC
0x4990c8 CreatePolygonRgn
0x4990cc CreateRectRgn
0x4990d0 CreateRoundRectRgn
0x4990d4 CreateEllipticRgn
0x4990d8 DeleteDC
0x4990dc GetObjectA
0x4990e0 GetTextMetricsA
0x4990e4 GetTextFaceA
0x4990e8 SelectObject
0x4990ec GetStockObject
0x4990f0 CreateDCA
0x4990f4 CreateSolidBrush
0x4990f8 CreateFontA
0x4990fc FillRgn
0x499100 GetDeviceCaps
0x499104 DeleteObject
COMDLG32.dll
0x499070 CommDlgExtendedError
0x499074 GetSaveFileNameA
0x499078 GetOpenFileNameA
ADVAPI32.dll
0x499000 RegDeleteKeyA
0x499004 RegSetValueExA
0x499008 RegCreateKeyExA
0x49900c RegQueryValueExA
0x499010 AdjustTokenPrivileges
0x499014 LookupPrivilegeValueA
0x499018 OpenProcessToken
0x49901c CloseServiceHandle
0x499020 UnlockServiceDatabase
0x499024 LockServiceDatabase
0x499028 OpenSCManagerA
0x49902c GetUserNameA
0x499030 RegEnumKeyExA
0x499034 RegEnumValueA
0x499038 RegQueryInfoKeyA
0x49903c RegOpenKeyExA
0x499040 RegCloseKey
0x499044 RegConnectRegistryA
0x499048 RegDeleteValueA
SHELL32.dll
0x4993d4 DragQueryPoint
0x4993d8 SHEmptyRecycleBinA
0x4993dc SHFileOperationA
0x4993e0 SHGetPathFromIDListA
0x4993e4 SHBrowseForFolderA
0x4993e8 SHGetDesktopFolder
0x4993ec SHGetMalloc
0x4993f0 SHGetFolderPathA
0x4993f4 ShellExecuteExA
0x4993f8 Shell_NotifyIconA
0x4993fc DragFinish
0x499400 DragQueryFileA
0x499404 ExtractIconA
ole32.dll
0x499730 OleInitialize
0x499734 OleUninitialize
0x499738 CoCreateInstance
0x49973c CoInitialize
0x499740 CoUninitialize
0x499744 CLSIDFromString
0x499748 CLSIDFromProgID
0x49974c CoGetObject
0x499750 StringFromGUID2
0x499754 CreateStreamOnHGlobal
OLEAUT32.dll
0x499374 SafeArrayGetLBound
0x499378 GetActiveObject
0x49937c OleLoadPicture
0x499380 SafeArrayUnaccessData
0x499384 SafeArrayGetElemsize
0x499388 SafeArrayAccessData
0x49938c SafeArrayUnlock
0x499390 SafeArrayPtrOfIndex
0x499394 SafeArrayLock
0x499398 SafeArrayGetDim
0x49939c SafeArrayDestroy
0x4993a0 SafeArrayGetUBound
0x4993a4 VariantCopyInd
0x4993a8 SafeArrayCopy
0x4993ac SysAllocString
0x4993b0 VariantChangeType
0x4993b4 VariantClear
0x4993b8 SafeArrayCreate
0x4993bc SysFreeString
0x4993c0 SysStringLen
EAT(Export Address Table) is none