ScreenShot
| Created | 2023.10.07 16:19 | Machine | s1_win7_x6403 |
| Filename | Compiled.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 34 detected (AIDetectMalware, DownLoader46, GenericKD, Artemis, Vh5j, ZelphiF, eV0@auNQcxhi, Attribute, HighConfidence, Delf, Malicious, score, AdwareX, Nekark, dbxkd, Generic Reputation PUA, Wacatac, Detected, ai score=81, unsafe, Generic@AI, RDML, RMroeE47vw9SVcWcNjNwUw, confidence) | ||
| md5 | 19b2d98085a534439812011db7186839 | ||
| sha256 | 1c38cbd5eeae097261fa990e266f228073aae1731691d29ff69526f376f4f811 | ||
| ssdeep | 49152:g8Y1DL0EY2iMG9FTdjSW0IUg1AicUQ0YkCF7qRbFC:gr5L0EBaQ0YvIDC | ||
| imphash | 5345775138b617e19c1c23a7eb9d6b48 | ||
| impfuzzy | 192:NcdqBUuJdVYTexaWTOwIDueQKOPXu/DjlxTFQsCzqanyEO:NcEZvTOmeQKOPUDjTp36qadO | ||
Network IP location
Signature (12cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 34 AntiVirus engines on VirusTotal as malicious |
| watch | Detects the presence of Wine emulator |
| watch | Installs itself for autorun at Windows startup |
| watch | Uses Sysinternals tools in order to add additional command line functionality |
| notice | A process created a hidden window |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Creates a suspicious process |
| notice | Performs some HTTP requests |
| notice | Uses Windows utilities for basic Windows functionality |
| info | Command line console output was observed |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (8cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (5cnts) ?
Suricata ids
ET POLICY IP Check (myip .com)
ET HUNTING Suspicious Mozilla User-Agent - Likely Fake (Mozilla/4.0)
ET INFO Observed DNS Query to .world TLD
ET HUNTING Suspicious Mozilla User-Agent - Likely Fake (Mozilla/4.0)
ET INFO Observed DNS Query to .world TLD
PE API
IAT(Import Address Table) Library
winspool.drv
0x6ac924 DocumentPropertiesW
0x6ac928 ClosePrinter
0x6ac92c OpenPrinterW
0x6ac930 GetDefaultPrinterW
0x6ac934 EnumPrintersW
comctl32.dll
0x6ac93c ImageList_GetImageInfo
0x6ac940 FlatSB_SetScrollInfo
0x6ac944 ImageList_DragMove
0x6ac948 ImageList_Destroy
0x6ac94c _TrackMouseEvent
0x6ac950 ImageList_DragShowNolock
0x6ac954 ImageList_Add
0x6ac958 FlatSB_SetScrollProp
0x6ac95c ImageList_GetDragImage
0x6ac960 ImageList_Create
0x6ac964 ImageList_EndDrag
0x6ac968 ImageList_DrawEx
0x6ac96c ImageList_SetImageCount
0x6ac970 FlatSB_GetScrollPos
0x6ac974 FlatSB_SetScrollPos
0x6ac978 InitializeFlatSB
0x6ac97c ImageList_Copy
0x6ac980 FlatSB_GetScrollInfo
0x6ac984 ImageList_Write
0x6ac988 ImageList_DrawIndirect
0x6ac98c ImageList_SetBkColor
0x6ac990 ImageList_GetBkColor
0x6ac994 ImageList_BeginDrag
0x6ac998 ImageList_GetIcon
0x6ac99c ImageList_Replace
0x6ac9a0 ImageList_GetImageCount
0x6ac9a4 ImageList_DragEnter
0x6ac9a8 ImageList_GetIconSize
0x6ac9ac ImageList_SetIconSize
0x6ac9b0 ImageList_Read
0x6ac9b4 ImageList_DragLeave
0x6ac9b8 ImageList_LoadImageW
0x6ac9bc ImageList_Draw
0x6ac9c0 ImageList_Remove
0x6ac9c4 ImageList_ReplaceIcon
0x6ac9c8 ImageList_SetOverlayImage
ws2_32.dll
0x6ac9d0 WSAIoctl
shell32.dll
0x6ac9d8 Shell_NotifyIconW
0x6ac9dc SHAppBarMessage
0x6ac9e0 ShellExecuteW
user32.dll
0x6ac9e8 CopyImage
0x6ac9ec CreateWindowExW
0x6ac9f0 GetMenuItemInfoW
0x6ac9f4 SetMenuItemInfoW
0x6ac9f8 DefFrameProcW
0x6ac9fc GetDCEx
0x6aca00 PeekMessageW
0x6aca04 MonitorFromWindow
0x6aca08 GetDlgCtrlID
0x6aca0c GetUpdateRect
0x6aca10 SetTimer
0x6aca14 WindowFromPoint
0x6aca18 BeginPaint
0x6aca1c RegisterClipboardFormatW
0x6aca20 FrameRect
0x6aca24 MapVirtualKeyW
0x6aca28 IsWindowUnicode
0x6aca2c RegisterWindowMessageW
0x6aca30 FillRect
0x6aca34 GetMenuStringW
0x6aca38 DispatchMessageW
0x6aca3c CreateAcceleratorTableW
0x6aca40 SendMessageA
0x6aca44 DefMDIChildProcW
0x6aca48 EnumWindows
0x6aca4c GetClassInfoW
0x6aca50 ShowOwnedPopups
0x6aca54 GetSystemMenu
0x6aca58 GetScrollRange
0x6aca5c GetScrollPos
0x6aca60 SetScrollPos
0x6aca64 GetActiveWindow
0x6aca68 SetActiveWindow
0x6aca6c DrawEdge
0x6aca70 GetKeyboardLayoutList
0x6aca74 LoadBitmapW
0x6aca78 DrawFocusRect
0x6aca7c EnumChildWindows
0x6aca80 GetScrollBarInfo
0x6aca84 ReleaseCapture
0x6aca88 UnhookWindowsHookEx
0x6aca8c LoadCursorW
0x6aca90 GetCapture
0x6aca94 SetCapture
0x6aca98 CreatePopupMenu
0x6aca9c ScrollWindow
0x6acaa0 ShowCaret
0x6acaa4 GetMenuItemID
0x6acaa8 GetLastActivePopup
0x6acaac CharLowerBuffW
0x6acab0 GetSystemMetrics
0x6acab4 SetWindowLongW
0x6acab8 PostMessageW
0x6acabc DrawMenuBar
0x6acac0 SetParent
0x6acac4 IsZoomed
0x6acac8 CharUpperBuffW
0x6acacc GetClientRect
0x6acad0 IsChild
0x6acad4 ClientToScreen
0x6acad8 GetClipboardData
0x6acadc SetClipboardData
0x6acae0 SetWindowPlacement
0x6acae4 IsIconic
0x6acae8 CallNextHookEx
0x6acaec GetMonitorInfoW
0x6acaf0 ShowWindow
0x6acaf4 CheckMenuItem
0x6acaf8 CharUpperW
0x6acafc DefWindowProcW
0x6acb00 GetForegroundWindow
0x6acb04 SetForegroundWindow
0x6acb08 GetWindowTextW
0x6acb0c EnableWindow
0x6acb10 DestroyWindow
0x6acb14 IsDialogMessageW
0x6acb18 EndMenu
0x6acb1c RegisterClassW
0x6acb20 CharNextW
0x6acb24 GetWindowThreadProcessId
0x6acb28 RedrawWindow
0x6acb2c GetDC
0x6acb30 GetFocus
0x6acb34 SetFocus
0x6acb38 EndPaint
0x6acb3c ReleaseDC
0x6acb40 MsgWaitForMultipleObjectsEx
0x6acb44 LoadKeyboardLayoutW
0x6acb48 GetClassLongW
0x6acb4c ActivateKeyboardLayout
0x6acb50 GetParent
0x6acb54 DrawTextW
0x6acb58 SetScrollRange
0x6acb5c MonitorFromRect
0x6acb60 InsertMenuItemW
0x6acb64 PeekMessageA
0x6acb68 GetPropW
0x6acb6c SetClassLongW
0x6acb70 MessageBoxW
0x6acb74 MessageBeep
0x6acb78 SetPropW
0x6acb7c RemovePropW
0x6acb80 UpdateWindow
0x6acb84 GetSubMenu
0x6acb88 MsgWaitForMultipleObjects
0x6acb8c DestroyMenu
0x6acb90 DestroyIcon
0x6acb94 SetWindowsHookExW
0x6acb98 EmptyClipboard
0x6acb9c IsWindowVisible
0x6acba0 DispatchMessageA
0x6acba4 UnregisterClassW
0x6acba8 GetTopWindow
0x6acbac SendMessageW
0x6acbb0 AdjustWindowRectEx
0x6acbb4 DrawIcon
0x6acbb8 IsWindow
0x6acbbc EnumThreadWindows
0x6acbc0 InvalidateRect
0x6acbc4 GetKeyboardState
0x6acbc8 DrawFrameControl
0x6acbcc ScreenToClient
0x6acbd0 SetCursor
0x6acbd4 CreateIcon
0x6acbd8 CreateMenu
0x6acbdc LoadStringW
0x6acbe0 CharLowerW
0x6acbe4 SetWindowPos
0x6acbe8 SetWindowRgn
0x6acbec GetMenuItemCount
0x6acbf0 RemoveMenu
0x6acbf4 GetSysColorBrush
0x6acbf8 GetKeyboardLayoutNameW
0x6acbfc GetWindowDC
0x6acc00 TranslateMessage
0x6acc04 OpenClipboard
0x6acc08 DrawTextExW
0x6acc0c MapWindowPoints
0x6acc10 EnumDisplayMonitors
0x6acc14 CallWindowProcW
0x6acc18 CloseClipboard
0x6acc1c DestroyCursor
0x6acc20 GetScrollInfo
0x6acc24 SetWindowTextW
0x6acc28 GetMessageExtraInfo
0x6acc2c EnableScrollBar
0x6acc30 GetSysColor
0x6acc34 TrackPopupMenu
0x6acc38 CopyIcon
0x6acc3c DrawIconEx
0x6acc40 PostQuitMessage
0x6acc44 GetClassNameW
0x6acc48 ShowScrollBar
0x6acc4c EnableMenuItem
0x6acc50 GetIconInfo
0x6acc54 GetMessagePos
0x6acc58 SetScrollInfo
0x6acc5c GetKeyNameTextW
0x6acc60 GetDesktopWindow
0x6acc64 GetCursorPos
0x6acc68 SetCursorPos
0x6acc6c HideCaret
0x6acc70 GetMenu
0x6acc74 GetMenuState
0x6acc78 SetMenu
0x6acc7c SetRect
0x6acc80 GetKeyState
0x6acc84 FindWindowExW
0x6acc88 MonitorFromPoint
0x6acc8c ValidateRect
0x6acc90 SystemParametersInfoW
0x6acc94 LoadIconW
0x6acc98 GetCursor
0x6acc9c GetWindow
0x6acca0 GetWindowLongW
0x6acca4 GetWindowRect
0x6acca8 InsertMenuW
0x6accac KillTimer
0x6accb0 WaitMessage
0x6accb4 IsWindowEnabled
0x6accb8 IsDialogMessageA
0x6accbc TranslateMDISysAccel
0x6accc0 GetWindowPlacement
0x6accc4 CreateIconIndirect
0x6accc8 FindWindowW
0x6acccc DeleteMenu
0x6accd0 GetKeyboardLayout
version.dll
0x6accd8 GetFileVersionInfoSizeW
0x6accdc VerQueryValueW
0x6acce0 GetFileVersionInfoW
oleaut32.dll
0x6acce8 GetErrorInfo
0x6accec SysFreeString
0x6accf0 VariantClear
0x6accf4 VariantInit
0x6accf8 SysReAllocStringLen
0x6accfc SafeArrayCreate
0x6acd00 SysAllocStringLen
0x6acd04 SafeArrayPtrOfIndex
0x6acd08 SafeArrayGetUBound
0x6acd0c SafeArrayGetLBound
0x6acd10 VariantCopy
0x6acd14 VariantChangeType
0x6acd18 VariantCopyInd
advapi32.dll
0x6acd20 RegSetValueExW
0x6acd24 RegConnectRegistryW
0x6acd28 RegEnumKeyExW
0x6acd2c RegLoadKeyW
0x6acd30 RegDeleteKeyW
0x6acd34 RegOpenKeyExW
0x6acd38 RegQueryInfoKeyW
0x6acd3c RegUnLoadKeyW
0x6acd40 RegSaveKeyW
0x6acd44 RegDeleteValueW
0x6acd48 RegReplaceKeyW
0x6acd4c RegFlushKey
0x6acd50 RegQueryValueExW
0x6acd54 RegEnumValueW
0x6acd58 RegCloseKey
0x6acd5c RegCreateKeyExW
0x6acd60 RegRestoreKeyW
kernel32.dll
0x6acd68 GetACP
0x6acd6c LocalFree
0x6acd70 CloseHandle
0x6acd74 GetCurrentProcessId
0x6acd78 SizeofResource
0x6acd7c QueryPerformanceFrequency
0x6acd80 IsDebuggerPresent
0x6acd84 VirtualFree
0x6acd88 GetFullPathNameW
0x6acd8c ExitProcess
0x6acd90 HeapAlloc
0x6acd94 GetCPInfoExW
0x6acd98 RtlUnwind
0x6acd9c GetCPInfo
0x6acda0 EnumSystemLocalesW
0x6acda4 GetStdHandle
0x6acda8 GetTimeZoneInformation
0x6acdac GetModuleHandleW
0x6acdb0 FreeLibrary
0x6acdb4 TryEnterCriticalSection
0x6acdb8 HeapDestroy
0x6acdbc ReadFile
0x6acdc0 GetLastError
0x6acdc4 GetModuleFileNameW
0x6acdc8 SetLastError
0x6acdcc GlobalAlloc
0x6acdd0 GlobalUnlock
0x6acdd4 FindResourceW
0x6acdd8 CreateThread
0x6acddc CompareStringW
0x6acde0 LoadLibraryA
0x6acde4 ResetEvent
0x6acde8 MulDiv
0x6acdec FreeResource
0x6acdf0 GetVersion
0x6acdf4 RaiseException
0x6acdf8 GlobalAddAtomW
0x6acdfc FormatMessageW
0x6ace00 SwitchToThread
0x6ace04 GetExitCodeThread
0x6ace08 GetCurrentThread
0x6ace0c GetLogicalDrives
0x6ace10 LoadLibraryExW
0x6ace14 LockResource
0x6ace18 GetCurrentThreadId
0x6ace1c UnhandledExceptionFilter
0x6ace20 VirtualQuery
0x6ace24 GlobalFindAtomW
0x6ace28 VirtualQueryEx
0x6ace2c GlobalFree
0x6ace30 Sleep
0x6ace34 EnterCriticalSection
0x6ace38 SetFilePointer
0x6ace3c LoadResource
0x6ace40 SuspendThread
0x6ace44 GetTickCount
0x6ace48 GetFileSize
0x6ace4c GetStartupInfoW
0x6ace50 GlobalDeleteAtom
0x6ace54 GetFileAttributesW
0x6ace58 InitializeCriticalSection
0x6ace5c GetThreadPriority
0x6ace60 GetCurrentProcess
0x6ace64 SetThreadPriority
0x6ace68 GlobalLock
0x6ace6c VirtualAlloc
0x6ace70 GetSystemInfo
0x6ace74 GetCommandLineW
0x6ace78 GetTempPathW
0x6ace7c LeaveCriticalSection
0x6ace80 GetProcAddress
0x6ace84 ResumeThread
0x6ace88 GetVersionExW
0x6ace8c VerifyVersionInfoW
0x6ace90 HeapCreate
0x6ace94 LCMapStringW
0x6ace98 GetDiskFreeSpaceW
0x6ace9c VerSetConditionMask
0x6acea0 FindFirstFileW
0x6acea4 GetUserDefaultUILanguage
0x6acea8 lstrlenW
0x6aceac QueryPerformanceCounter
0x6aceb0 SetEndOfFile
0x6aceb4 HeapFree
0x6aceb8 WideCharToMultiByte
0x6acebc FindClose
0x6acec0 MultiByteToWideChar
0x6acec4 LoadLibraryW
0x6acec8 SetEvent
0x6acecc CreateFileW
0x6aced0 GetLocaleInfoW
0x6aced4 EnumResourceNamesW
0x6aced8 DeleteFileW
0x6acedc GetLocalTime
0x6acee0 GetEnvironmentVariableW
0x6acee4 WaitForSingleObject
0x6acee8 WriteFile
0x6aceec ExitThread
0x6acef0 DeleteCriticalSection
0x6acef4 GetDateFormatW
0x6acef8 TlsGetValue
0x6acefc SetErrorMode
0x6acf00 GetComputerNameW
0x6acf04 IsValidLocale
0x6acf08 TlsSetValue
0x6acf0c CreateDirectoryW
0x6acf10 GetSystemDefaultUILanguage
0x6acf14 EnumCalendarInfoW
0x6acf18 LocalAlloc
0x6acf1c RemoveDirectoryW
0x6acf20 CreateEventW
0x6acf24 WaitForMultipleObjectsEx
0x6acf28 SetThreadLocale
0x6acf2c GetThreadLocale
wsock32.dll
0x6acf34 gethostbyaddr
0x6acf38 WSACleanup
0x6acf3c gethostbyname
0x6acf40 ind
0x6acf44 gethostname
0x6acf48 closesocket
0x6acf4c WSAGetLastError
0x6acf50 connect
0x6acf54 inet_addr
0x6acf58 getpeername
0x6acf5c WSAAsyncSelect
0x6acf60 WSAAsyncGetServByName
0x6acf64 WSACancelAsyncRequest
0x6acf68 send
0x6acf6c ntohs
0x6acf70 htons
0x6acf74 WSAStartup
0x6acf78 getservbyname
0x6acf7c getsockname
0x6acf80 listen
0x6acf84 socket
0x6acf88 recv
0x6acf8c inet_ntoa
0x6acf90 ioctlsocket
0x6acf94 WSAAsyncGetHostByName
ole32.dll
0x6acf9c IsEqualGUID
0x6acfa0 OleInitialize
0x6acfa4 OleUninitialize
0x6acfa8 CoInitialize
0x6acfac CoCreateInstance
0x6acfb0 CoUninitialize
0x6acfb4 CoTaskMemFree
0x6acfb8 CoTaskMemAlloc
gdi32.dll
0x6acfc0 Pie
0x6acfc4 SetBkMode
0x6acfc8 CreateCompatibleBitmap
0x6acfcc GetEnhMetaFileHeader
0x6acfd0 RectVisible
0x6acfd4 AngleArc
0x6acfd8 SetAbortProc
0x6acfdc SetTextColor
0x6acfe0 StretchBlt
0x6acfe4 RoundRect
0x6acfe8 RestoreDC
0x6acfec SetRectRgn
0x6acff0 GetTextMetricsW
0x6acff4 GetWindowOrgEx
0x6acff8 CreatePalette
0x6acffc PolyBezierTo
0x6ad000 CreateICW
0x6ad004 CreateDCW
0x6ad008 GetStockObject
0x6ad00c CreateSolidBrush
0x6ad010 Polygon
0x6ad014 MoveToEx
0x6ad018 PlayEnhMetaFile
0x6ad01c Ellipse
0x6ad020 StartPage
0x6ad024 GetBitmapBits
0x6ad028 StartDocW
0x6ad02c GetSystemPaletteEntries
0x6ad030 GetEnhMetaFileBits
0x6ad034 AbortDoc
0x6ad038 GetEnhMetaFilePaletteEntries
0x6ad03c CreatePenIndirect
0x6ad040 CreateFontIndirectW
0x6ad044 PolyBezier
0x6ad048 EndDoc
0x6ad04c GetObjectW
0x6ad050 GetWinMetaFileBits
0x6ad054 SetROP2
0x6ad058 GetEnhMetaFileDescriptionW
0x6ad05c ArcTo
0x6ad060 Arc
0x6ad064 SelectPalette
0x6ad068 ExcludeClipRect
0x6ad06c MaskBlt
0x6ad070 SetWindowOrgEx
0x6ad074 EndPage
0x6ad078 DeleteEnhMetaFile
0x6ad07c Chord
0x6ad080 SetDIBits
0x6ad084 SetViewportOrgEx
0x6ad088 CreateRectRgn
0x6ad08c RealizePalette
0x6ad090 SetDIBColorTable
0x6ad094 GetDIBColorTable
0x6ad098 CreateBrushIndirect
0x6ad09c PatBlt
0x6ad0a0 SetEnhMetaFileBits
0x6ad0a4 Rectangle
0x6ad0a8 SaveDC
0x6ad0ac DeleteDC
0x6ad0b0 FrameRgn
0x6ad0b4 BitBlt
0x6ad0b8 GetDeviceCaps
0x6ad0bc GetTextExtentPoint32W
0x6ad0c0 GetClipBox
0x6ad0c4 IntersectClipRect
0x6ad0c8 Polyline
0x6ad0cc CreateBitmap
0x6ad0d0 SetWinMetaFileBits
0x6ad0d4 GetStretchBltMode
0x6ad0d8 CreateDIBitmap
0x6ad0dc SetStretchBltMode
0x6ad0e0 GetDIBits
0x6ad0e4 CreateDIBSection
0x6ad0e8 LineTo
0x6ad0ec GetRgnBox
0x6ad0f0 EnumFontsW
0x6ad0f4 CreateHalftonePalette
0x6ad0f8 SelectObject
0x6ad0fc DeleteObject
0x6ad100 ExtFloodFill
0x6ad104 UnrealizeObject
0x6ad108 CopyEnhMetaFileW
0x6ad10c SetBkColor
0x6ad110 CreateCompatibleDC
0x6ad114 GetBrushOrgEx
0x6ad118 GetCurrentPositionEx
0x6ad11c GetTextExtentPointW
0x6ad120 ExtTextOutW
0x6ad124 SetBrushOrgEx
0x6ad128 GetPixel
0x6ad12c GdiFlush
0x6ad130 SetPixel
0x6ad134 EnumFontFamiliesExW
0x6ad138 StretchDIBits
0x6ad13c GetPaletteEntries
EAT(Export Address Table) Library
0x46ea94 TMethodImplementationIntercept
0x4113e4 __dbk_fcall_wrapper
0x6a763c dbkFCallWrapperAddr
winspool.drv
0x6ac924 DocumentPropertiesW
0x6ac928 ClosePrinter
0x6ac92c OpenPrinterW
0x6ac930 GetDefaultPrinterW
0x6ac934 EnumPrintersW
comctl32.dll
0x6ac93c ImageList_GetImageInfo
0x6ac940 FlatSB_SetScrollInfo
0x6ac944 ImageList_DragMove
0x6ac948 ImageList_Destroy
0x6ac94c _TrackMouseEvent
0x6ac950 ImageList_DragShowNolock
0x6ac954 ImageList_Add
0x6ac958 FlatSB_SetScrollProp
0x6ac95c ImageList_GetDragImage
0x6ac960 ImageList_Create
0x6ac964 ImageList_EndDrag
0x6ac968 ImageList_DrawEx
0x6ac96c ImageList_SetImageCount
0x6ac970 FlatSB_GetScrollPos
0x6ac974 FlatSB_SetScrollPos
0x6ac978 InitializeFlatSB
0x6ac97c ImageList_Copy
0x6ac980 FlatSB_GetScrollInfo
0x6ac984 ImageList_Write
0x6ac988 ImageList_DrawIndirect
0x6ac98c ImageList_SetBkColor
0x6ac990 ImageList_GetBkColor
0x6ac994 ImageList_BeginDrag
0x6ac998 ImageList_GetIcon
0x6ac99c ImageList_Replace
0x6ac9a0 ImageList_GetImageCount
0x6ac9a4 ImageList_DragEnter
0x6ac9a8 ImageList_GetIconSize
0x6ac9ac ImageList_SetIconSize
0x6ac9b0 ImageList_Read
0x6ac9b4 ImageList_DragLeave
0x6ac9b8 ImageList_LoadImageW
0x6ac9bc ImageList_Draw
0x6ac9c0 ImageList_Remove
0x6ac9c4 ImageList_ReplaceIcon
0x6ac9c8 ImageList_SetOverlayImage
ws2_32.dll
0x6ac9d0 WSAIoctl
shell32.dll
0x6ac9d8 Shell_NotifyIconW
0x6ac9dc SHAppBarMessage
0x6ac9e0 ShellExecuteW
user32.dll
0x6ac9e8 CopyImage
0x6ac9ec CreateWindowExW
0x6ac9f0 GetMenuItemInfoW
0x6ac9f4 SetMenuItemInfoW
0x6ac9f8 DefFrameProcW
0x6ac9fc GetDCEx
0x6aca00 PeekMessageW
0x6aca04 MonitorFromWindow
0x6aca08 GetDlgCtrlID
0x6aca0c GetUpdateRect
0x6aca10 SetTimer
0x6aca14 WindowFromPoint
0x6aca18 BeginPaint
0x6aca1c RegisterClipboardFormatW
0x6aca20 FrameRect
0x6aca24 MapVirtualKeyW
0x6aca28 IsWindowUnicode
0x6aca2c RegisterWindowMessageW
0x6aca30 FillRect
0x6aca34 GetMenuStringW
0x6aca38 DispatchMessageW
0x6aca3c CreateAcceleratorTableW
0x6aca40 SendMessageA
0x6aca44 DefMDIChildProcW
0x6aca48 EnumWindows
0x6aca4c GetClassInfoW
0x6aca50 ShowOwnedPopups
0x6aca54 GetSystemMenu
0x6aca58 GetScrollRange
0x6aca5c GetScrollPos
0x6aca60 SetScrollPos
0x6aca64 GetActiveWindow
0x6aca68 SetActiveWindow
0x6aca6c DrawEdge
0x6aca70 GetKeyboardLayoutList
0x6aca74 LoadBitmapW
0x6aca78 DrawFocusRect
0x6aca7c EnumChildWindows
0x6aca80 GetScrollBarInfo
0x6aca84 ReleaseCapture
0x6aca88 UnhookWindowsHookEx
0x6aca8c LoadCursorW
0x6aca90 GetCapture
0x6aca94 SetCapture
0x6aca98 CreatePopupMenu
0x6aca9c ScrollWindow
0x6acaa0 ShowCaret
0x6acaa4 GetMenuItemID
0x6acaa8 GetLastActivePopup
0x6acaac CharLowerBuffW
0x6acab0 GetSystemMetrics
0x6acab4 SetWindowLongW
0x6acab8 PostMessageW
0x6acabc DrawMenuBar
0x6acac0 SetParent
0x6acac4 IsZoomed
0x6acac8 CharUpperBuffW
0x6acacc GetClientRect
0x6acad0 IsChild
0x6acad4 ClientToScreen
0x6acad8 GetClipboardData
0x6acadc SetClipboardData
0x6acae0 SetWindowPlacement
0x6acae4 IsIconic
0x6acae8 CallNextHookEx
0x6acaec GetMonitorInfoW
0x6acaf0 ShowWindow
0x6acaf4 CheckMenuItem
0x6acaf8 CharUpperW
0x6acafc DefWindowProcW
0x6acb00 GetForegroundWindow
0x6acb04 SetForegroundWindow
0x6acb08 GetWindowTextW
0x6acb0c EnableWindow
0x6acb10 DestroyWindow
0x6acb14 IsDialogMessageW
0x6acb18 EndMenu
0x6acb1c RegisterClassW
0x6acb20 CharNextW
0x6acb24 GetWindowThreadProcessId
0x6acb28 RedrawWindow
0x6acb2c GetDC
0x6acb30 GetFocus
0x6acb34 SetFocus
0x6acb38 EndPaint
0x6acb3c ReleaseDC
0x6acb40 MsgWaitForMultipleObjectsEx
0x6acb44 LoadKeyboardLayoutW
0x6acb48 GetClassLongW
0x6acb4c ActivateKeyboardLayout
0x6acb50 GetParent
0x6acb54 DrawTextW
0x6acb58 SetScrollRange
0x6acb5c MonitorFromRect
0x6acb60 InsertMenuItemW
0x6acb64 PeekMessageA
0x6acb68 GetPropW
0x6acb6c SetClassLongW
0x6acb70 MessageBoxW
0x6acb74 MessageBeep
0x6acb78 SetPropW
0x6acb7c RemovePropW
0x6acb80 UpdateWindow
0x6acb84 GetSubMenu
0x6acb88 MsgWaitForMultipleObjects
0x6acb8c DestroyMenu
0x6acb90 DestroyIcon
0x6acb94 SetWindowsHookExW
0x6acb98 EmptyClipboard
0x6acb9c IsWindowVisible
0x6acba0 DispatchMessageA
0x6acba4 UnregisterClassW
0x6acba8 GetTopWindow
0x6acbac SendMessageW
0x6acbb0 AdjustWindowRectEx
0x6acbb4 DrawIcon
0x6acbb8 IsWindow
0x6acbbc EnumThreadWindows
0x6acbc0 InvalidateRect
0x6acbc4 GetKeyboardState
0x6acbc8 DrawFrameControl
0x6acbcc ScreenToClient
0x6acbd0 SetCursor
0x6acbd4 CreateIcon
0x6acbd8 CreateMenu
0x6acbdc LoadStringW
0x6acbe0 CharLowerW
0x6acbe4 SetWindowPos
0x6acbe8 SetWindowRgn
0x6acbec GetMenuItemCount
0x6acbf0 RemoveMenu
0x6acbf4 GetSysColorBrush
0x6acbf8 GetKeyboardLayoutNameW
0x6acbfc GetWindowDC
0x6acc00 TranslateMessage
0x6acc04 OpenClipboard
0x6acc08 DrawTextExW
0x6acc0c MapWindowPoints
0x6acc10 EnumDisplayMonitors
0x6acc14 CallWindowProcW
0x6acc18 CloseClipboard
0x6acc1c DestroyCursor
0x6acc20 GetScrollInfo
0x6acc24 SetWindowTextW
0x6acc28 GetMessageExtraInfo
0x6acc2c EnableScrollBar
0x6acc30 GetSysColor
0x6acc34 TrackPopupMenu
0x6acc38 CopyIcon
0x6acc3c DrawIconEx
0x6acc40 PostQuitMessage
0x6acc44 GetClassNameW
0x6acc48 ShowScrollBar
0x6acc4c EnableMenuItem
0x6acc50 GetIconInfo
0x6acc54 GetMessagePos
0x6acc58 SetScrollInfo
0x6acc5c GetKeyNameTextW
0x6acc60 GetDesktopWindow
0x6acc64 GetCursorPos
0x6acc68 SetCursorPos
0x6acc6c HideCaret
0x6acc70 GetMenu
0x6acc74 GetMenuState
0x6acc78 SetMenu
0x6acc7c SetRect
0x6acc80 GetKeyState
0x6acc84 FindWindowExW
0x6acc88 MonitorFromPoint
0x6acc8c ValidateRect
0x6acc90 SystemParametersInfoW
0x6acc94 LoadIconW
0x6acc98 GetCursor
0x6acc9c GetWindow
0x6acca0 GetWindowLongW
0x6acca4 GetWindowRect
0x6acca8 InsertMenuW
0x6accac KillTimer
0x6accb0 WaitMessage
0x6accb4 IsWindowEnabled
0x6accb8 IsDialogMessageA
0x6accbc TranslateMDISysAccel
0x6accc0 GetWindowPlacement
0x6accc4 CreateIconIndirect
0x6accc8 FindWindowW
0x6acccc DeleteMenu
0x6accd0 GetKeyboardLayout
version.dll
0x6accd8 GetFileVersionInfoSizeW
0x6accdc VerQueryValueW
0x6acce0 GetFileVersionInfoW
oleaut32.dll
0x6acce8 GetErrorInfo
0x6accec SysFreeString
0x6accf0 VariantClear
0x6accf4 VariantInit
0x6accf8 SysReAllocStringLen
0x6accfc SafeArrayCreate
0x6acd00 SysAllocStringLen
0x6acd04 SafeArrayPtrOfIndex
0x6acd08 SafeArrayGetUBound
0x6acd0c SafeArrayGetLBound
0x6acd10 VariantCopy
0x6acd14 VariantChangeType
0x6acd18 VariantCopyInd
advapi32.dll
0x6acd20 RegSetValueExW
0x6acd24 RegConnectRegistryW
0x6acd28 RegEnumKeyExW
0x6acd2c RegLoadKeyW
0x6acd30 RegDeleteKeyW
0x6acd34 RegOpenKeyExW
0x6acd38 RegQueryInfoKeyW
0x6acd3c RegUnLoadKeyW
0x6acd40 RegSaveKeyW
0x6acd44 RegDeleteValueW
0x6acd48 RegReplaceKeyW
0x6acd4c RegFlushKey
0x6acd50 RegQueryValueExW
0x6acd54 RegEnumValueW
0x6acd58 RegCloseKey
0x6acd5c RegCreateKeyExW
0x6acd60 RegRestoreKeyW
kernel32.dll
0x6acd68 GetACP
0x6acd6c LocalFree
0x6acd70 CloseHandle
0x6acd74 GetCurrentProcessId
0x6acd78 SizeofResource
0x6acd7c QueryPerformanceFrequency
0x6acd80 IsDebuggerPresent
0x6acd84 VirtualFree
0x6acd88 GetFullPathNameW
0x6acd8c ExitProcess
0x6acd90 HeapAlloc
0x6acd94 GetCPInfoExW
0x6acd98 RtlUnwind
0x6acd9c GetCPInfo
0x6acda0 EnumSystemLocalesW
0x6acda4 GetStdHandle
0x6acda8 GetTimeZoneInformation
0x6acdac GetModuleHandleW
0x6acdb0 FreeLibrary
0x6acdb4 TryEnterCriticalSection
0x6acdb8 HeapDestroy
0x6acdbc ReadFile
0x6acdc0 GetLastError
0x6acdc4 GetModuleFileNameW
0x6acdc8 SetLastError
0x6acdcc GlobalAlloc
0x6acdd0 GlobalUnlock
0x6acdd4 FindResourceW
0x6acdd8 CreateThread
0x6acddc CompareStringW
0x6acde0 LoadLibraryA
0x6acde4 ResetEvent
0x6acde8 MulDiv
0x6acdec FreeResource
0x6acdf0 GetVersion
0x6acdf4 RaiseException
0x6acdf8 GlobalAddAtomW
0x6acdfc FormatMessageW
0x6ace00 SwitchToThread
0x6ace04 GetExitCodeThread
0x6ace08 GetCurrentThread
0x6ace0c GetLogicalDrives
0x6ace10 LoadLibraryExW
0x6ace14 LockResource
0x6ace18 GetCurrentThreadId
0x6ace1c UnhandledExceptionFilter
0x6ace20 VirtualQuery
0x6ace24 GlobalFindAtomW
0x6ace28 VirtualQueryEx
0x6ace2c GlobalFree
0x6ace30 Sleep
0x6ace34 EnterCriticalSection
0x6ace38 SetFilePointer
0x6ace3c LoadResource
0x6ace40 SuspendThread
0x6ace44 GetTickCount
0x6ace48 GetFileSize
0x6ace4c GetStartupInfoW
0x6ace50 GlobalDeleteAtom
0x6ace54 GetFileAttributesW
0x6ace58 InitializeCriticalSection
0x6ace5c GetThreadPriority
0x6ace60 GetCurrentProcess
0x6ace64 SetThreadPriority
0x6ace68 GlobalLock
0x6ace6c VirtualAlloc
0x6ace70 GetSystemInfo
0x6ace74 GetCommandLineW
0x6ace78 GetTempPathW
0x6ace7c LeaveCriticalSection
0x6ace80 GetProcAddress
0x6ace84 ResumeThread
0x6ace88 GetVersionExW
0x6ace8c VerifyVersionInfoW
0x6ace90 HeapCreate
0x6ace94 LCMapStringW
0x6ace98 GetDiskFreeSpaceW
0x6ace9c VerSetConditionMask
0x6acea0 FindFirstFileW
0x6acea4 GetUserDefaultUILanguage
0x6acea8 lstrlenW
0x6aceac QueryPerformanceCounter
0x6aceb0 SetEndOfFile
0x6aceb4 HeapFree
0x6aceb8 WideCharToMultiByte
0x6acebc FindClose
0x6acec0 MultiByteToWideChar
0x6acec4 LoadLibraryW
0x6acec8 SetEvent
0x6acecc CreateFileW
0x6aced0 GetLocaleInfoW
0x6aced4 EnumResourceNamesW
0x6aced8 DeleteFileW
0x6acedc GetLocalTime
0x6acee0 GetEnvironmentVariableW
0x6acee4 WaitForSingleObject
0x6acee8 WriteFile
0x6aceec ExitThread
0x6acef0 DeleteCriticalSection
0x6acef4 GetDateFormatW
0x6acef8 TlsGetValue
0x6acefc SetErrorMode
0x6acf00 GetComputerNameW
0x6acf04 IsValidLocale
0x6acf08 TlsSetValue
0x6acf0c CreateDirectoryW
0x6acf10 GetSystemDefaultUILanguage
0x6acf14 EnumCalendarInfoW
0x6acf18 LocalAlloc
0x6acf1c RemoveDirectoryW
0x6acf20 CreateEventW
0x6acf24 WaitForMultipleObjectsEx
0x6acf28 SetThreadLocale
0x6acf2c GetThreadLocale
wsock32.dll
0x6acf34 gethostbyaddr
0x6acf38 WSACleanup
0x6acf3c gethostbyname
0x6acf40 ind
0x6acf44 gethostname
0x6acf48 closesocket
0x6acf4c WSAGetLastError
0x6acf50 connect
0x6acf54 inet_addr
0x6acf58 getpeername
0x6acf5c WSAAsyncSelect
0x6acf60 WSAAsyncGetServByName
0x6acf64 WSACancelAsyncRequest
0x6acf68 send
0x6acf6c ntohs
0x6acf70 htons
0x6acf74 WSAStartup
0x6acf78 getservbyname
0x6acf7c getsockname
0x6acf80 listen
0x6acf84 socket
0x6acf88 recv
0x6acf8c inet_ntoa
0x6acf90 ioctlsocket
0x6acf94 WSAAsyncGetHostByName
ole32.dll
0x6acf9c IsEqualGUID
0x6acfa0 OleInitialize
0x6acfa4 OleUninitialize
0x6acfa8 CoInitialize
0x6acfac CoCreateInstance
0x6acfb0 CoUninitialize
0x6acfb4 CoTaskMemFree
0x6acfb8 CoTaskMemAlloc
gdi32.dll
0x6acfc0 Pie
0x6acfc4 SetBkMode
0x6acfc8 CreateCompatibleBitmap
0x6acfcc GetEnhMetaFileHeader
0x6acfd0 RectVisible
0x6acfd4 AngleArc
0x6acfd8 SetAbortProc
0x6acfdc SetTextColor
0x6acfe0 StretchBlt
0x6acfe4 RoundRect
0x6acfe8 RestoreDC
0x6acfec SetRectRgn
0x6acff0 GetTextMetricsW
0x6acff4 GetWindowOrgEx
0x6acff8 CreatePalette
0x6acffc PolyBezierTo
0x6ad000 CreateICW
0x6ad004 CreateDCW
0x6ad008 GetStockObject
0x6ad00c CreateSolidBrush
0x6ad010 Polygon
0x6ad014 MoveToEx
0x6ad018 PlayEnhMetaFile
0x6ad01c Ellipse
0x6ad020 StartPage
0x6ad024 GetBitmapBits
0x6ad028 StartDocW
0x6ad02c GetSystemPaletteEntries
0x6ad030 GetEnhMetaFileBits
0x6ad034 AbortDoc
0x6ad038 GetEnhMetaFilePaletteEntries
0x6ad03c CreatePenIndirect
0x6ad040 CreateFontIndirectW
0x6ad044 PolyBezier
0x6ad048 EndDoc
0x6ad04c GetObjectW
0x6ad050 GetWinMetaFileBits
0x6ad054 SetROP2
0x6ad058 GetEnhMetaFileDescriptionW
0x6ad05c ArcTo
0x6ad060 Arc
0x6ad064 SelectPalette
0x6ad068 ExcludeClipRect
0x6ad06c MaskBlt
0x6ad070 SetWindowOrgEx
0x6ad074 EndPage
0x6ad078 DeleteEnhMetaFile
0x6ad07c Chord
0x6ad080 SetDIBits
0x6ad084 SetViewportOrgEx
0x6ad088 CreateRectRgn
0x6ad08c RealizePalette
0x6ad090 SetDIBColorTable
0x6ad094 GetDIBColorTable
0x6ad098 CreateBrushIndirect
0x6ad09c PatBlt
0x6ad0a0 SetEnhMetaFileBits
0x6ad0a4 Rectangle
0x6ad0a8 SaveDC
0x6ad0ac DeleteDC
0x6ad0b0 FrameRgn
0x6ad0b4 BitBlt
0x6ad0b8 GetDeviceCaps
0x6ad0bc GetTextExtentPoint32W
0x6ad0c0 GetClipBox
0x6ad0c4 IntersectClipRect
0x6ad0c8 Polyline
0x6ad0cc CreateBitmap
0x6ad0d0 SetWinMetaFileBits
0x6ad0d4 GetStretchBltMode
0x6ad0d8 CreateDIBitmap
0x6ad0dc SetStretchBltMode
0x6ad0e0 GetDIBits
0x6ad0e4 CreateDIBSection
0x6ad0e8 LineTo
0x6ad0ec GetRgnBox
0x6ad0f0 EnumFontsW
0x6ad0f4 CreateHalftonePalette
0x6ad0f8 SelectObject
0x6ad0fc DeleteObject
0x6ad100 ExtFloodFill
0x6ad104 UnrealizeObject
0x6ad108 CopyEnhMetaFileW
0x6ad10c SetBkColor
0x6ad110 CreateCompatibleDC
0x6ad114 GetBrushOrgEx
0x6ad118 GetCurrentPositionEx
0x6ad11c GetTextExtentPointW
0x6ad120 ExtTextOutW
0x6ad124 SetBrushOrgEx
0x6ad128 GetPixel
0x6ad12c GdiFlush
0x6ad130 SetPixel
0x6ad134 EnumFontFamiliesExW
0x6ad138 StretchDIBits
0x6ad13c GetPaletteEntries
EAT(Export Address Table) Library
0x46ea94 TMethodImplementationIntercept
0x4113e4 __dbk_fcall_wrapper
0x6a763c dbkFCallWrapperAddr