ScreenShot
| Created | 2023.10.08 10:49 | Machine | s1_win7_x6401 |
| Filename | zoeg4a5.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 43 detected (Common, Fabookie, Zusy, Remcos, malicious, confidence, 100%, Attribute, HighConfidence, high confidence, EmnL0dJ0FNC, Swrort, thkkx, DownLoader45, Eldorado, Sabsik, Detected, GenericRXAA, ai score=82, unsafe, Oader, Czlw, QcVdRSRwcdQ, susgen, PossibleThreat) | ||
| md5 | 637dbce64106ecb582f119403822e138 | ||
| sha256 | c82c8f3777d5193351ffc815625ad1e03e2816c88a4a4e0fdaf9c1fce8ba8921 | ||
| ssdeep | 6144:syUa7AQnwciHMc4oiT4MKBz3I8JmGxerEhgVIXFM:sf4wcAQVrKi6FerLIX | ||
| imphash | ff082fef3d15cdd142534440e54d6a28 | ||
| impfuzzy | 384:EKL7xkLfSwXmLvVJcOZvxrL+ich9BSlU2UnYxluk9:p7ofSwXmLvVJ7Zpe8FUnYxEk9 | ||
Network IP location
Signature (4cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 43 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
| info | This executable has a PDB path |
Rules (5cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
PE API
IAT(Import Address Table) Library
ADVAPI32.dll
0x100030000 EventWrite
0x100030008 RegCloseKey
0x100030010 EventRegister
0x100030018 EventUnregister
0x100030020 RegQueryInfoKeyW
0x100030028 RegEnumKeyExW
0x100030030 RegOpenKeyExW
0x100030038 RegSetValueExW
0x100030040 RegCreateKeyExW
0x100030048 RegDeleteValueW
0x100030050 RegQueryValueExW
0x100030058 GetTokenInformation
0x100030060 ConvertSidToStringSidW
0x100030068 CheckTokenMembership
0x100030070 ConvertStringSecurityDescriptorToSecurityDescriptorW
0x100030078 RegDeleteKeyW
0x100030080 OpenThreadToken
0x100030088 OpenProcessToken
KERNEL32.dll
0x100030098 GetModuleHandleW
0x1000300a0 lstrcmpiW
0x1000300a8 RegEnumValueW
0x1000300b0 RegGetValueW
0x1000300b8 CreateFileW
0x1000300c0 FileTimeToSystemTime
0x1000300c8 GetFileAttributesW
0x1000300d0 CompareFileTime
0x1000300d8 SystemTimeToFileTime
0x1000300e0 GetTempFileNameW
0x1000300e8 CreateThread
0x1000300f0 UnregisterApplicationRecoveryCallback
0x1000300f8 ApplicationRecoveryFinished
0x100030100 ApplicationRecoveryInProgress
0x100030108 RegisterApplicationRecoveryCallback
0x100030110 UnregisterApplicationRestart
0x100030118 RegisterApplicationRestart
0x100030120 OpenMutexW
0x100030128 DuplicateHandle
0x100030130 GetVersionExW
0x100030138 GetPrivateProfileStringW
0x100030140 DebugBreak
0x100030148 SetEvent
0x100030150 CreateEventW
0x100030158 OutputDebugStringA
0x100030160 UnhandledExceptionFilter
0x100030168 GetCurrentProcess
0x100030170 TerminateProcess
0x100030178 GetSystemTimeAsFileTime
0x100030180 GetCurrentProcessId
0x100030188 GetCurrentThreadId
0x100030190 GetTickCount
0x100030198 QueryPerformanceCounter
0x1000301a0 MulDiv
0x1000301a8 SizeofResource
0x1000301b0 LockResource
0x1000301b8 LoadResource
0x1000301c0 FindResourceW
0x1000301c8 HeapFree
0x1000301d0 FindResourceExW
0x1000301d8 GetSystemTime
0x1000301e0 FreeLibrary
0x1000301e8 LoadLibraryW
0x1000301f0 GetLastError
0x1000301f8 LocalAlloc
0x100030200 LocalFree
0x100030208 GetProcAddress
0x100030210 GetProcessHeap
0x100030218 SetUnhandledExceptionFilter
0x100030220 GetStartupInfoW
0x100030228 HeapAlloc
0x100030230 WaitForSingleObject
0x100030238 Sleep
0x100030240 CompareStringW
0x100030248 HeapSize
0x100030250 HeapReAlloc
0x100030258 HeapDestroy
0x100030260 GetVersionExA
0x100030268 LeaveCriticalSection
0x100030270 RaiseException
0x100030278 EnterCriticalSection
0x100030280 MultiByteToWideChar
0x100030288 LoadLibraryExW
0x100030290 GetModuleFileNameW
0x100030298 InitializeCriticalSection
0x1000302a0 DeleteCriticalSection
0x1000302a8 CreateMutexW
0x1000302b0 DeleteFileW
0x1000302b8 GetCommandLineW
0x1000302c0 SetThreadPriority
0x1000302c8 GetCurrentThread
0x1000302d0 CreateDirectoryW
0x1000302d8 OutputDebugStringW
0x1000302e0 LoadLibraryExA
0x1000302e8 DelayLoadFailureHook
0x1000302f0 lstrlenW
0x1000302f8 CloseHandle
0x100030300 ReleaseMutex
GDI32.dll
0x100030310 GdiAlphaBlend
0x100030318 CreateFontW
0x100030320 GetTextFaceW
0x100030328 CreateRectRgn
0x100030330 CreateDIBSection
0x100030338 GetObjectW
0x100030340 SetLayout
0x100030348 CreateSolidBrush
0x100030350 GetDeviceCaps
0x100030358 SelectObject
0x100030360 CreateCompatibleBitmap
0x100030368 CreateCompatibleDC
0x100030370 GetClipRgn
0x100030378 BitBlt
0x100030380 GetTextExtentPoint32W
0x100030388 DeleteDC
0x100030390 GdiGradientFill
0x100030398 DeleteObject
USER32.dll
0x1000303a8 GetAncestor
0x1000303b0 CreateWindowExW
0x1000303b8 DestroyAcceleratorTable
0x1000303c0 GetUpdateRect
0x1000303c8 ShowWindow
0x1000303d0 GetScrollInfo
0x1000303d8 SetScrollInfo
0x1000303e0 SetScrollRange
0x1000303e8 ShowScrollBar
0x1000303f0 OffsetRect
0x1000303f8 CopyRect
0x100030400 SetMenuItemInfoW
0x100030408 GetMenuItemInfoW
0x100030410 GetMenuItemCount
0x100030418 ClientToScreen
0x100030420 DefWindowProcW
0x100030428 ReleaseDC
0x100030430 PtInRect
0x100030438 InflateRect
0x100030440 GetDesktopWindow
0x100030448 DestroyMenu
0x100030450 GetSubMenu
0x100030458 SetWindowPos
0x100030460 GetWindowRect
0x100030468 EndDeferWindowPos
0x100030470 BeginDeferWindowPos
0x100030478 PostMessageW
0x100030480 TrackPopupMenu
0x100030488 MapWindowPoints
0x100030490 ReleaseCapture
0x100030498 SystemParametersInfoW
0x1000304a0 LockWindowUpdate
0x1000304a8 GetFocus
0x1000304b0 RegisterClassW
0x1000304b8 LoadIconW
0x1000304c0 LoadCursorW
0x1000304c8 SetGestureConfig
0x1000304d0 GetWindowLongPtrW
0x1000304d8 GetSystemMenu
0x1000304e0 EnableMenuItem
0x1000304e8 DestroyWindow
0x1000304f0 GetDC
0x1000304f8 SetCursor
0x100030500 SendMessageW
0x100030508 GetClientRect
0x100030510 SetWindowLongPtrW
0x100030518 UpdateWindow
0x100030520 GetSystemMetrics
0x100030528 GetSysColor
0x100030530 EnableScrollBar
0x100030538 SetFocus
0x100030540 CreateCaret
0x100030548 SetCaretPos
0x100030550 SetTimer
0x100030558 KillTimer
0x100030560 ScrollWindowEx
0x100030568 SetCapture
0x100030570 ScreenToClient
0x100030578 MessageBoxW
0x100030580 ChangeWindowMessageFilter
0x100030588 RemoveMenu
0x100030590 GetWindowPlacement
0x100030598 SetWindowPlacement
0x1000305a0 PostQuitMessage
0x1000305a8 SetActiveWindow
0x1000305b0 IntersectRect
0x1000305b8 EqualRect
0x1000305c0 MonitorFromWindow
0x1000305c8 GetMonitorInfoW
0x1000305d0 MonitorFromRect
0x1000305d8 CopyAcceleratorTableW
0x1000305e0 GetMessageW
0x1000305e8 TranslateMessage
0x1000305f0 DispatchMessageW
0x1000305f8 CharNextW
0x100030600 FindWindowW
0x100030608 SetForegroundWindow
0x100030610 SetProcessDPIAware
0x100030618 RegisterClassExW
0x100030620 DeferWindowPos
0x100030628 LoadAcceleratorsW
0x100030630 BeginPaint
0x100030638 HideCaret
0x100030640 ShowCaret
0x100030648 EndPaint
0x100030650 GetMessageExtraInfo
0x100030658 GetKeyboardLayout
0x100030660 LoadImageW
0x100030668 UnregisterClassA
0x100030670 TranslateAcceleratorW
0x100030678 LoadMenuW
0x100030680 UnregisterClassW
0x100030688 IsClipboardFormatAvailable
0x100030690 SetRect
0x100030698 GetScrollBarInfo
0x1000306a0 GetParent
0x1000306a8 GetWindowLongW
0x1000306b0 EnableWindow
0x1000306b8 FillRect
0x1000306c0 GetSysColorBrush
0x1000306c8 IsWindowVisible
0x1000306d0 GetKeyState
0x1000306d8 GetAsyncKeyState
0x1000306e0 SetScrollPos
0x1000306e8 GetWindowTextLengthW
0x1000306f0 UpdateLayeredWindow
0x1000306f8 InvalidateRect
0x100030700 GetWindowTextW
msvcrt.dll
0x100030710 ??1type_info@@UEAA@XZ
0x100030718 ?terminate@@YAXXZ
0x100030720 __set_app_type
0x100030728 _fmode
0x100030730 _commode
0x100030738 __setusermatherr
0x100030740 _amsg_exit
0x100030748 _initterm
0x100030750 _acmdln
0x100030758 exit
0x100030760 _cexit
0x100030768 _ismbblead
0x100030770 _unlock
0x100030778 _XcptFilter
0x100030780 __getmainargs
0x100030788 ??0exception@@QEAA@XZ
0x100030790 __CxxFrameHandler3
0x100030798 _callnewh
0x1000307a0 _CxxThrowException
0x1000307a8 ??0exception@@QEAA@AEBQEBDH@Z
0x1000307b0 __C_specific_handler
0x1000307b8 memset
0x1000307c0 ?what@exception@@UEBAPEBDXZ
0x1000307c8 vswprintf_s
0x1000307d0 _vscwprintf
0x1000307d8 _wcsicmp
0x1000307e0 malloc
0x1000307e8 wcsncpy_s
0x1000307f0 ??0exception@@QEAA@AEBV0@@Z
0x1000307f8 __dllonexit
0x100030800 _lock
0x100030808 _onexit
0x100030810 realloc
0x100030818 _errno
0x100030820 cos
0x100030828 _vsnwprintf
0x100030830 wcstoul
0x100030838 memcpy
0x100030840 ??1exception@@UEAA@XZ
0x100030848 memcpy_s
0x100030850 memmove_s
0x100030858 wcscpy_s
0x100030860 _purecall
0x100030868 calloc
0x100030870 _exit
0x100030878 ??0exception@@QEAA@AEBQEBD@Z
0x100030880 free
0x100030888 sin
ntdll.dll
0x100030898 WinSqmAddToStream
0x1000308a0 WinSqmEndSession
0x1000308a8 RtlVirtualUnwind
0x1000308b0 RtlLookupFunctionEntry
0x1000308b8 RtlCaptureContext
0x1000308c0 WinSqmIsOptedIn
0x1000308c8 WinSqmStartSession
0x1000308d0 WinSqmSetIfMaxDWORD
SHELL32.dll
0x1000308e0 SHGetKnownFolderPath
0x1000308e8 SHGetFolderPathW
0x1000308f0 CommandLineToArgvW
0x1000308f8 SetCurrentProcessExplicitAppUserModelID
0x100030900 SHGetSpecialFolderPathW
0x100030908 None
0x100030910 SHCreateDirectoryExW
0x100030918 ShellExecuteW
SHLWAPI.dll
0x100030928 None
0x100030930 None
0x100030938 PathFileExistsW
0x100030940 None
0x100030948 None
0x100030950 SHCreateStreamOnFileW
0x100030958 None
0x100030960 None
0x100030968 SHStrDupW
ole32.dll
0x100030978 CoCreateInstance
0x100030980 CoTaskMemAlloc
0x100030988 PropVariantClear
0x100030990 CoUninitialize
0x100030998 OleUninitialize
0x1000309a0 OleInitialize
0x1000309a8 CoInitializeEx
0x1000309b0 CoTaskMemFree
0x1000309b8 CoSetProxyBlanket
0x1000309c0 StgCreateStorageEx
0x1000309c8 StgOpenStorageEx
0x1000309d0 OleSaveToStream
0x1000309d8 WriteClassStm
0x1000309e0 CoTaskMemRealloc
0x1000309e8 OleLoadFromStream
OLEAUT32.dll
0x1000309f8 VariantChangeType
0x100030a00 SysAllocStringByteLen
0x100030a08 SysAllocString
0x100030a10 VarUI4FromStr
0x100030a18 SystemTimeToVariantTime
0x100030a20 SysFreeString
0x100030a28 SysStringByteLen
0x100030a30 SafeArrayCreateVector
0x100030a38 SafeArrayAccessData
0x100030a40 SafeArrayUnaccessData
0x100030a48 VariantClear
0x100030a50 SafeArrayDestroy
0x100030a58 VariantInit
COMCTL32.dll
0x100030a68 None
0x100030a70 None
0x100030a78 None
0x100030a80 None
0x100030a88 None
0x100030a90 None
0x100030a98 None
slc.dll
0x100030aa8 SLGetWindowsInformationDWORD
dwmapi.dll
0x100030ab8 DwmInvalidateIconicBitmaps
0x100030ac0 DwmSetIconicThumbnail
0x100030ac8 DwmSetIconicLivePreviewBitmap
0x100030ad0 DwmSetWindowAttribute
UxTheme.dll
0x100030ae0 GetThemeFont
0x100030ae8 CloseThemeData
0x100030af0 OpenThemeData
DUI70.dll
0x100030b00 ?GetChildren@ClassInfoBase@DirectUI@@UEBAHXZ
0x100030b08 ?RemoveChild@ClassInfoBase@DirectUI@@UEAAXXZ
0x100030b10 ?AddChild@ClassInfoBase@DirectUI@@UEAAXXZ
0x100030b18 ?IsGlobal@ClassInfoBase@DirectUI@@UEBA_NXZ
0x100030b20 ?GetModule@ClassInfoBase@DirectUI@@UEBAPEAUHINSTANCE__@@XZ
0x100030b28 ?IsSubclassOf@ClassInfoBase@DirectUI@@UEBA_NPEAUIClassInfo@2@@Z
0x100030b30 ?IsValidProperty@ClassInfoBase@DirectUI@@UEBA_NPEBUPropertyInfo@2@@Z
0x100030b38 ?GetName@ClassInfoBase@DirectUI@@UEBAPEBGXZ
0x100030b40 ?GetGlobalIndex@ClassInfoBase@DirectUI@@UEBAIXZ
0x100030b48 ?GetPICount@ClassInfoBase@DirectUI@@UEBAIXZ
0x100030b50 ?GetByClassIndex@ClassInfoBase@DirectUI@@UEAAPEBUPropertyInfo@2@I@Z
0x100030b58 ?EnumPropertyInfo@ClassInfoBase@DirectUI@@UEAAPEBUPropertyInfo@2@I@Z
0x100030b60 ?Release@ClassInfoBase@DirectUI@@UEAAHXZ
0x100030b68 ?AddRef@ClassInfoBase@DirectUI@@UEAAXXZ
0x100030b70 ??1ClassInfoBase@DirectUI@@UEAA@XZ
0x100030b78 ??0ClassInfoBase@DirectUI@@QEAA@XZ
0x100030b80 ?GetClassInfoPtr@HWNDElement@DirectUI@@SAPEAUIClassInfo@2@XZ
0x100030b88 ?GetClassInfoPtr@HWNDHost@DirectUI@@SAPEAUIClassInfo@2@XZ
0x100030b90 ?Initialize@ClassInfoBase@DirectUI@@QEAAJPEAUHINSTANCE__@@PEBG_NPEBQEBUPropertyInfo@2@I@Z
0x100030b98 ?Register@HWNDElement@DirectUI@@SAJXZ
0x100030ba0 ?Register@ClassInfoBase@DirectUI@@QEAAJXZ
0x100030ba8 ?ClassExist@ClassInfoBase@DirectUI@@SA_NPEAPEAUIClassInfo@2@PEBQEBUPropertyInfo@2@IPEAU32@PEAUHINSTANCE__@@PEBG_N@Z
0x100030bb0 ??1CritSecLock@DirectUI@@QEAA@XZ
0x100030bb8 ?GetFactoryLock@Element@DirectUI@@SAPEAU_RTL_CRITICAL_SECTION@@XZ
0x100030bc0 ?Register@HWNDHost@DirectUI@@SAJXZ
0x100030bc8 UnInitProcessPriv
0x100030bd0 UnInitThread
0x100030bd8 InitThread
0x100030be0 InitProcessPriv
0x100030be8 ?Initialize@HWNDHost@DirectUI@@QEAAJIIPEAVElement@2@PEAK@Z
0x100030bf0 ?SetAbsorbsShortcut@Element@DirectUI@@QEAAJ_N@Z
0x100030bf8 ?CreateStyleParser@HWNDElement@DirectUI@@UEAAJPEAPEAVDUIXmlParser@2@@Z
0x100030c00 ?CanSetFocus@HWNDElement@DirectUI@@UEAA_NXZ
0x100030c08 ?OnThemeChanged@HWNDElement@DirectUI@@UEAAXPEAUThemeChangedEvent@2@@Z
0x100030c10 ?GetHWND@HWNDElement@DirectUI@@UEAAPEAUHWND__@@XZ
0x100030c18 ?GetAccessibleImpl@HWNDElement@DirectUI@@UEAAJPEAPEAUIAccessible@@@Z
0x100030c20 ?GetKeyFocused@Element@DirectUI@@UEAA_NXZ
0x100030c28 ?RemoveTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@@Z
0x100030c30 ?ActivateTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@K@Z
0x100030c38 ?UpdateTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@@Z
0x100030c40 ?OnUnHosted@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030c48 ?OnHosted@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030c50 ?MessageCallback@Element@DirectUI@@UEAAIPEAUtagGMSG@@@Z
0x100030c58 ?SetKeyFocus@Element@DirectUI@@UEAAXXZ
0x100030c60 ?Paint@Element@DirectUI@@UEAAXPEAUHDC__@@PEBUtagRECT@@1PEAU4@2@Z
0x100030c68 ??1NativeHWNDHost@DirectUI@@UEAA@XZ
0x100030c70 ??0NativeHWNDHost@DirectUI@@QEAA@XZ
0x100030c78 ?CreateElement@DUIXmlParser@DirectUI@@QEAAJPEBGPEAVElement@2@1PEAKPEAPEAV32@@Z
0x100030c80 ?Host@NativeHWNDHost@DirectUI@@QEAAXPEAVElement@2@@Z
0x100030c88 ?EndDefer@Element@DirectUI@@QEAAXK@Z
0x100030c90 ?SetXMLFromResource@DUIXmlParser@DirectUI@@QEAAJIPEAUHINSTANCE__@@0@Z
0x100030c98 ?Create@DUIXmlParser@DirectUI@@SAJPEAPEAV12@P6APEAVValue@2@PEBGPEAX@Z2P6AX11H2@Z2@Z
0x100030ca0 ?Destroy@NativeHWNDHost@DirectUI@@QEAAXXZ
0x100030ca8 ?AssertPIZeroRef@ClassInfoBase@DirectUI@@UEBAXXZ
0x100030cb0 ?WndProc@HWNDElement@DirectUI@@UEAA_JPEAUHWND__@@I_K_J@Z
0x100030cb8 ?OnCompositionChanged@HWNDElement@DirectUI@@UEAAXXZ
0x100030cc0 ?OnWmThemeChanged@HWNDElement@DirectUI@@UEAAX_K_J@Z
0x100030cc8 ?OnGetDlgCode@HWNDElement@DirectUI@@UEAAXPEAUtagMSG@@PEA_J@Z
0x100030cd0 ?OnNoChildWithShortcutFound@HWNDElement@DirectUI@@UEAAXPEAUKeyboardEvent@2@@Z
0x100030cd8 ?OnDestroy@HWNDElement@DirectUI@@UEAAXXZ
0x100030ce0 ?OnGroupChanged@HWNDElement@DirectUI@@UEAAXH_N@Z
0x100030ce8 ?OnPropertyChanged@HWNDElement@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030cf0 ?OnEvent@HWNDElement@DirectUI@@UEAAXPEAUEvent@2@@Z
0x100030cf8 ?OnInput@HWNDElement@DirectUI@@UEAAXPEAUInputEvent@2@@Z
0x100030d00 ?Initialize@HWNDElement@DirectUI@@QEAAJPEAUHWND__@@_NIPEAVElement@2@PEAK@Z
0x100030d08 ?Destroy@Element@DirectUI@@QEAAJ_N@Z
0x100030d10 ??1HWNDElement@DirectUI@@UEAA@XZ
0x100030d18 ??0HWNDElement@DirectUI@@QEAA@XZ
0x100030d20 ?EraseBkgnd@HWNDHost@DirectUI@@MEAA_NPEAUHDC__@@PEA_J@Z
0x100030d28 ?SetWindowDirection@HWNDHost@DirectUI@@UEAAXPEAUHWND__@@@Z
0x100030d30 ?OnAdjustWindowSize@HWNDHost@DirectUI@@UEAAHHHI@Z
0x100030d38 ?OnWindowStyleChanged@HWNDHost@DirectUI@@UEAAX_KPEBUtagSTYLESTRUCT@@@Z
0x100030d40 ?OnCtrlThemeChanged@HWNDHost@DirectUI@@UEAA_NI_K_JPEA_J@Z
0x100030d48 ?OnSinkThemeChanged@HWNDHost@DirectUI@@UEAA_NI_K_JPEA_J@Z
0x100030d50 ?OnSysChar@HWNDHost@DirectUI@@UEAA_NG@Z
0x100030d58 ?GetHWND@HWNDHost@DirectUI@@UEAAPEAUHWND__@@XZ
0x100030d60 ?HandleUiaEventListener@Element@DirectUI@@UEAAXPEAUEvent@2@@Z
0x100030d68 ?HandleUiaPropertyChangingListener@Element@DirectUI@@UEAAXPEBUPropertyInfo@2@@Z
0x100030d70 ?HandleUiaPropertyListener@Element@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030d78 ?HandleUiaDestroyListener@Element@DirectUI@@UEAAXXZ
0x100030d80 ?GetElementProviderImpl@Element@DirectUI@@UEAAJPEAVInvokeHelper@2@PEAPEAVElementProvider@2@@Z
0x100030d88 ?DefaultAction@Element@DirectUI@@UEAAJXZ
0x100030d90 ?GetAccessibleImpl@HWNDHost@DirectUI@@UEAAJPEAPEAUIAccessible@@@Z
0x100030d98 ?GetKeyFocused@HWNDHost@DirectUI@@UEAA_NXZ
0x100030da0 ?RemoveTooltip@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030da8 ?ActivateTooltip@Element@DirectUI@@MEAAXPEAV12@K@Z
0x100030db0 ?UpdateTooltip@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030db8 ?OnUnHosted@HWNDHost@DirectUI@@MEAAXPEAVElement@2@@Z
0x100030dc0 ?OnHosted@HWNDHost@DirectUI@@MEAAXPEAVElement@2@@Z
0x100030dc8 ?_SelfLayoutUpdateDesiredSize@Element@DirectUI@@MEAA?AUtagSIZE@@HHPEAVSurface@2@@Z
0x100030dd0 ?_SelfLayoutDoLayout@Element@DirectUI@@MEAAXHH@Z
0x100030dd8 ?QueryInterface@Element@DirectUI@@UEAAJAEBU_GUID@@PEAPEAX@Z
0x100030de0 ?MessageCallback@HWNDHost@DirectUI@@UEAAIPEAUtagGMSG@@@Z
0x100030de8 ?SetKeyFocus@HWNDHost@DirectUI@@UEAAXXZ
0x100030df0 ?EnsureVisible@Element@DirectUI@@UEAA_NHHHH@Z
0x100030df8 ?GetAdjacent@Element@DirectUI@@UEAAPEAV12@PEAV12@HPEBUNavReference@2@K@Z
0x100030e00 ?Remove@Element@DirectUI@@UEAAJPEAPEAV12@I@Z
0x100030e08 ?Insert@Element@DirectUI@@UEAAJPEAPEAV12@II@Z
0x100030e10 ?Add@Element@DirectUI@@UEAAJPEAPEAV12@I@Z
0x100030e18 ?GetContentSize@Element@DirectUI@@UEAA?AUtagSIZE@@HHPEAVSurface@2@@Z
0x100030e20 ?Paint@HWNDHost@DirectUI@@UEAAXPEAUHDC__@@PEBUtagRECT@@1PEAU4@2@Z
0x100030e28 ?OnDestroy@HWNDHost@DirectUI@@UEAAXXZ
0x100030e30 ?OnMouseFocusMoved@Element@DirectUI@@UEAAXPEAV12@0@Z
0x100030e38 ?OnKeyFocusMoved@Element@DirectUI@@UEAAXPEAV12@0@Z
0x100030e40 ?OnGroupChanged@Element@DirectUI@@UEAAXH_N@Z
0x100030e48 ?OnPropertyChanged@Element@DirectUI@@UEAAXPEAUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030e50 ?OnPropertyChanging@Element@DirectUI@@UEAA_NPEAUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030e58 ?OnPropertyChanging@Element@DirectUI@@UEAA_NPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030e60 ?GetContentStringAsDisplayed@Element@DirectUI@@UEAAPEBGPEAPEAVValue@2@@Z
0x100030e68 ?IsContentProtected@Element@DirectUI@@UEAA_NXZ
0x100030e70 ?IsRTLReading@Element@DirectUI@@UEAA_NXZ
0x100030e78 ?SetAccValue@Element@DirectUI@@QEAAJPEBG@Z
0x100030e80 ?SetDirection@Element@DirectUI@@QEAAJH@Z
0x100030e88 ?GetLocation@Element@DirectUI@@QEAAPEBUtagPOINT@@PEAPEAVValue@2@@Z
0x100030e90 ?OnEvent@HWNDHost@DirectUI@@UEAAXPEAUEvent@2@@Z
0x100030e98 ?OnInput@HWNDHost@DirectUI@@UEAAXPEAUInputEvent@2@@Z
0x100030ea0 ?OnPropertyChanged@HWNDHost@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030ea8 ?EnabledProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030eb0 ?BackgroundProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030eb8 ?GetValue@Element@DirectUI@@QEAAPEAVValue@2@P6APEBUPropertyInfo@2@XZHPEAUUpdateCache@2@@Z
0x100030ec0 ??1HWNDHost@DirectUI@@UEAA@XZ
0x100030ec8 ??0HWNDHost@DirectUI@@QEAA@XZ
0x100030ed0 ?SheetProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030ed8 ?GetSheet@DUIXmlParser@DirectUI@@QEAAJPEBGPEAPEAVValue@2@@Z
0x100030ee0 ?SetWindowActive@Element@DirectUI@@QEAAJ_N@Z
0x100030ee8 ?SetVisible@Element@DirectUI@@QEAAJ_N@Z
0x100030ef0 ?MouseWithinProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030ef8 ?GetWindowActive@Element@DirectUI@@QEAA_NXZ
0x100030f00 ?WindowActiveProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030f08 ?Click@Button@DirectUI@@SA?AVUID@@XZ
0x100030f10 ?UpdateSheets@DUIXmlParser@DirectUI@@QEAAJPEAVElement@2@@Z
0x100030f18 ?Destroy@DUIXmlParser@DirectUI@@QEAAXXZ
0x100030f20 ?AddListener@Element@DirectUI@@QEAAJPEAUIElementListener@2@@Z
0x100030f28 StrToID
0x100030f30 ?FindDescendent@Element@DirectUI@@QEAAPEAV12@G@Z
0x100030f38 ?SetValue@Element@DirectUI@@QEAAJP6APEBUPropertyInfo@2@XZHPEAVValue@2@@Z
0x100030f40 ?Release@Value@DirectUI@@QEAAXXZ
0x100030f48 ?Initialize@NativeHWNDHost@DirectUI@@QEAAJPEBG0PEAUHWND__@@PEAUHICON__@@HHHHHHPEAUHINSTANCE__@@I@Z
gdiplus.dll
0x100030f58 GdipCreateBitmapFromScan0
0x100030f60 GdipCloneImage
0x100030f68 GdipDisposeImage
0x100030f70 GdipGetImageGraphicsContext
0x100030f78 GdipFree
0x100030f80 GdipCreateTexture
0x100030f88 GdiplusShutdown
0x100030f90 GdiplusStartup
0x100030f98 GdipCreateBitmapFromStream
0x100030fa0 GdipDrawImagePoints
0x100030fa8 GdipSetInterpolationMode
0x100030fb0 GdipSetPixelOffsetMode
0x100030fb8 GdipCreateFromHDC
0x100030fc0 GdipDrawImageRectI
0x100030fc8 GdipSetSmoothingMode
0x100030fd0 GdipDeleteGraphics
0x100030fd8 GdipSetCompositingMode
0x100030fe0 GdipCreateBitmapFromHBITMAP
0x100030fe8 GdipCreateSolidFill
0x100030ff0 GdipDeleteBrush
0x100030ff8 GdipCloneBrush
0x100031000 GdipFillRectangleI
0x100031008 GdipAlloc
RPCRT4.dll
0x100031018 RpcStringFreeW
0x100031020 UuidCreateSequential
0x100031028 UuidToStringW
0x100031030 UuidCreate
WindowsCodecs.dll
0x100031040 WICCreateImagingFactory_Proxy
EAT(Export Address Table) is none
ADVAPI32.dll
0x100030000 EventWrite
0x100030008 RegCloseKey
0x100030010 EventRegister
0x100030018 EventUnregister
0x100030020 RegQueryInfoKeyW
0x100030028 RegEnumKeyExW
0x100030030 RegOpenKeyExW
0x100030038 RegSetValueExW
0x100030040 RegCreateKeyExW
0x100030048 RegDeleteValueW
0x100030050 RegQueryValueExW
0x100030058 GetTokenInformation
0x100030060 ConvertSidToStringSidW
0x100030068 CheckTokenMembership
0x100030070 ConvertStringSecurityDescriptorToSecurityDescriptorW
0x100030078 RegDeleteKeyW
0x100030080 OpenThreadToken
0x100030088 OpenProcessToken
KERNEL32.dll
0x100030098 GetModuleHandleW
0x1000300a0 lstrcmpiW
0x1000300a8 RegEnumValueW
0x1000300b0 RegGetValueW
0x1000300b8 CreateFileW
0x1000300c0 FileTimeToSystemTime
0x1000300c8 GetFileAttributesW
0x1000300d0 CompareFileTime
0x1000300d8 SystemTimeToFileTime
0x1000300e0 GetTempFileNameW
0x1000300e8 CreateThread
0x1000300f0 UnregisterApplicationRecoveryCallback
0x1000300f8 ApplicationRecoveryFinished
0x100030100 ApplicationRecoveryInProgress
0x100030108 RegisterApplicationRecoveryCallback
0x100030110 UnregisterApplicationRestart
0x100030118 RegisterApplicationRestart
0x100030120 OpenMutexW
0x100030128 DuplicateHandle
0x100030130 GetVersionExW
0x100030138 GetPrivateProfileStringW
0x100030140 DebugBreak
0x100030148 SetEvent
0x100030150 CreateEventW
0x100030158 OutputDebugStringA
0x100030160 UnhandledExceptionFilter
0x100030168 GetCurrentProcess
0x100030170 TerminateProcess
0x100030178 GetSystemTimeAsFileTime
0x100030180 GetCurrentProcessId
0x100030188 GetCurrentThreadId
0x100030190 GetTickCount
0x100030198 QueryPerformanceCounter
0x1000301a0 MulDiv
0x1000301a8 SizeofResource
0x1000301b0 LockResource
0x1000301b8 LoadResource
0x1000301c0 FindResourceW
0x1000301c8 HeapFree
0x1000301d0 FindResourceExW
0x1000301d8 GetSystemTime
0x1000301e0 FreeLibrary
0x1000301e8 LoadLibraryW
0x1000301f0 GetLastError
0x1000301f8 LocalAlloc
0x100030200 LocalFree
0x100030208 GetProcAddress
0x100030210 GetProcessHeap
0x100030218 SetUnhandledExceptionFilter
0x100030220 GetStartupInfoW
0x100030228 HeapAlloc
0x100030230 WaitForSingleObject
0x100030238 Sleep
0x100030240 CompareStringW
0x100030248 HeapSize
0x100030250 HeapReAlloc
0x100030258 HeapDestroy
0x100030260 GetVersionExA
0x100030268 LeaveCriticalSection
0x100030270 RaiseException
0x100030278 EnterCriticalSection
0x100030280 MultiByteToWideChar
0x100030288 LoadLibraryExW
0x100030290 GetModuleFileNameW
0x100030298 InitializeCriticalSection
0x1000302a0 DeleteCriticalSection
0x1000302a8 CreateMutexW
0x1000302b0 DeleteFileW
0x1000302b8 GetCommandLineW
0x1000302c0 SetThreadPriority
0x1000302c8 GetCurrentThread
0x1000302d0 CreateDirectoryW
0x1000302d8 OutputDebugStringW
0x1000302e0 LoadLibraryExA
0x1000302e8 DelayLoadFailureHook
0x1000302f0 lstrlenW
0x1000302f8 CloseHandle
0x100030300 ReleaseMutex
GDI32.dll
0x100030310 GdiAlphaBlend
0x100030318 CreateFontW
0x100030320 GetTextFaceW
0x100030328 CreateRectRgn
0x100030330 CreateDIBSection
0x100030338 GetObjectW
0x100030340 SetLayout
0x100030348 CreateSolidBrush
0x100030350 GetDeviceCaps
0x100030358 SelectObject
0x100030360 CreateCompatibleBitmap
0x100030368 CreateCompatibleDC
0x100030370 GetClipRgn
0x100030378 BitBlt
0x100030380 GetTextExtentPoint32W
0x100030388 DeleteDC
0x100030390 GdiGradientFill
0x100030398 DeleteObject
USER32.dll
0x1000303a8 GetAncestor
0x1000303b0 CreateWindowExW
0x1000303b8 DestroyAcceleratorTable
0x1000303c0 GetUpdateRect
0x1000303c8 ShowWindow
0x1000303d0 GetScrollInfo
0x1000303d8 SetScrollInfo
0x1000303e0 SetScrollRange
0x1000303e8 ShowScrollBar
0x1000303f0 OffsetRect
0x1000303f8 CopyRect
0x100030400 SetMenuItemInfoW
0x100030408 GetMenuItemInfoW
0x100030410 GetMenuItemCount
0x100030418 ClientToScreen
0x100030420 DefWindowProcW
0x100030428 ReleaseDC
0x100030430 PtInRect
0x100030438 InflateRect
0x100030440 GetDesktopWindow
0x100030448 DestroyMenu
0x100030450 GetSubMenu
0x100030458 SetWindowPos
0x100030460 GetWindowRect
0x100030468 EndDeferWindowPos
0x100030470 BeginDeferWindowPos
0x100030478 PostMessageW
0x100030480 TrackPopupMenu
0x100030488 MapWindowPoints
0x100030490 ReleaseCapture
0x100030498 SystemParametersInfoW
0x1000304a0 LockWindowUpdate
0x1000304a8 GetFocus
0x1000304b0 RegisterClassW
0x1000304b8 LoadIconW
0x1000304c0 LoadCursorW
0x1000304c8 SetGestureConfig
0x1000304d0 GetWindowLongPtrW
0x1000304d8 GetSystemMenu
0x1000304e0 EnableMenuItem
0x1000304e8 DestroyWindow
0x1000304f0 GetDC
0x1000304f8 SetCursor
0x100030500 SendMessageW
0x100030508 GetClientRect
0x100030510 SetWindowLongPtrW
0x100030518 UpdateWindow
0x100030520 GetSystemMetrics
0x100030528 GetSysColor
0x100030530 EnableScrollBar
0x100030538 SetFocus
0x100030540 CreateCaret
0x100030548 SetCaretPos
0x100030550 SetTimer
0x100030558 KillTimer
0x100030560 ScrollWindowEx
0x100030568 SetCapture
0x100030570 ScreenToClient
0x100030578 MessageBoxW
0x100030580 ChangeWindowMessageFilter
0x100030588 RemoveMenu
0x100030590 GetWindowPlacement
0x100030598 SetWindowPlacement
0x1000305a0 PostQuitMessage
0x1000305a8 SetActiveWindow
0x1000305b0 IntersectRect
0x1000305b8 EqualRect
0x1000305c0 MonitorFromWindow
0x1000305c8 GetMonitorInfoW
0x1000305d0 MonitorFromRect
0x1000305d8 CopyAcceleratorTableW
0x1000305e0 GetMessageW
0x1000305e8 TranslateMessage
0x1000305f0 DispatchMessageW
0x1000305f8 CharNextW
0x100030600 FindWindowW
0x100030608 SetForegroundWindow
0x100030610 SetProcessDPIAware
0x100030618 RegisterClassExW
0x100030620 DeferWindowPos
0x100030628 LoadAcceleratorsW
0x100030630 BeginPaint
0x100030638 HideCaret
0x100030640 ShowCaret
0x100030648 EndPaint
0x100030650 GetMessageExtraInfo
0x100030658 GetKeyboardLayout
0x100030660 LoadImageW
0x100030668 UnregisterClassA
0x100030670 TranslateAcceleratorW
0x100030678 LoadMenuW
0x100030680 UnregisterClassW
0x100030688 IsClipboardFormatAvailable
0x100030690 SetRect
0x100030698 GetScrollBarInfo
0x1000306a0 GetParent
0x1000306a8 GetWindowLongW
0x1000306b0 EnableWindow
0x1000306b8 FillRect
0x1000306c0 GetSysColorBrush
0x1000306c8 IsWindowVisible
0x1000306d0 GetKeyState
0x1000306d8 GetAsyncKeyState
0x1000306e0 SetScrollPos
0x1000306e8 GetWindowTextLengthW
0x1000306f0 UpdateLayeredWindow
0x1000306f8 InvalidateRect
0x100030700 GetWindowTextW
msvcrt.dll
0x100030710 ??1type_info@@UEAA@XZ
0x100030718 ?terminate@@YAXXZ
0x100030720 __set_app_type
0x100030728 _fmode
0x100030730 _commode
0x100030738 __setusermatherr
0x100030740 _amsg_exit
0x100030748 _initterm
0x100030750 _acmdln
0x100030758 exit
0x100030760 _cexit
0x100030768 _ismbblead
0x100030770 _unlock
0x100030778 _XcptFilter
0x100030780 __getmainargs
0x100030788 ??0exception@@QEAA@XZ
0x100030790 __CxxFrameHandler3
0x100030798 _callnewh
0x1000307a0 _CxxThrowException
0x1000307a8 ??0exception@@QEAA@AEBQEBDH@Z
0x1000307b0 __C_specific_handler
0x1000307b8 memset
0x1000307c0 ?what@exception@@UEBAPEBDXZ
0x1000307c8 vswprintf_s
0x1000307d0 _vscwprintf
0x1000307d8 _wcsicmp
0x1000307e0 malloc
0x1000307e8 wcsncpy_s
0x1000307f0 ??0exception@@QEAA@AEBV0@@Z
0x1000307f8 __dllonexit
0x100030800 _lock
0x100030808 _onexit
0x100030810 realloc
0x100030818 _errno
0x100030820 cos
0x100030828 _vsnwprintf
0x100030830 wcstoul
0x100030838 memcpy
0x100030840 ??1exception@@UEAA@XZ
0x100030848 memcpy_s
0x100030850 memmove_s
0x100030858 wcscpy_s
0x100030860 _purecall
0x100030868 calloc
0x100030870 _exit
0x100030878 ??0exception@@QEAA@AEBQEBD@Z
0x100030880 free
0x100030888 sin
ntdll.dll
0x100030898 WinSqmAddToStream
0x1000308a0 WinSqmEndSession
0x1000308a8 RtlVirtualUnwind
0x1000308b0 RtlLookupFunctionEntry
0x1000308b8 RtlCaptureContext
0x1000308c0 WinSqmIsOptedIn
0x1000308c8 WinSqmStartSession
0x1000308d0 WinSqmSetIfMaxDWORD
SHELL32.dll
0x1000308e0 SHGetKnownFolderPath
0x1000308e8 SHGetFolderPathW
0x1000308f0 CommandLineToArgvW
0x1000308f8 SetCurrentProcessExplicitAppUserModelID
0x100030900 SHGetSpecialFolderPathW
0x100030908 None
0x100030910 SHCreateDirectoryExW
0x100030918 ShellExecuteW
SHLWAPI.dll
0x100030928 None
0x100030930 None
0x100030938 PathFileExistsW
0x100030940 None
0x100030948 None
0x100030950 SHCreateStreamOnFileW
0x100030958 None
0x100030960 None
0x100030968 SHStrDupW
ole32.dll
0x100030978 CoCreateInstance
0x100030980 CoTaskMemAlloc
0x100030988 PropVariantClear
0x100030990 CoUninitialize
0x100030998 OleUninitialize
0x1000309a0 OleInitialize
0x1000309a8 CoInitializeEx
0x1000309b0 CoTaskMemFree
0x1000309b8 CoSetProxyBlanket
0x1000309c0 StgCreateStorageEx
0x1000309c8 StgOpenStorageEx
0x1000309d0 OleSaveToStream
0x1000309d8 WriteClassStm
0x1000309e0 CoTaskMemRealloc
0x1000309e8 OleLoadFromStream
OLEAUT32.dll
0x1000309f8 VariantChangeType
0x100030a00 SysAllocStringByteLen
0x100030a08 SysAllocString
0x100030a10 VarUI4FromStr
0x100030a18 SystemTimeToVariantTime
0x100030a20 SysFreeString
0x100030a28 SysStringByteLen
0x100030a30 SafeArrayCreateVector
0x100030a38 SafeArrayAccessData
0x100030a40 SafeArrayUnaccessData
0x100030a48 VariantClear
0x100030a50 SafeArrayDestroy
0x100030a58 VariantInit
COMCTL32.dll
0x100030a68 None
0x100030a70 None
0x100030a78 None
0x100030a80 None
0x100030a88 None
0x100030a90 None
0x100030a98 None
slc.dll
0x100030aa8 SLGetWindowsInformationDWORD
dwmapi.dll
0x100030ab8 DwmInvalidateIconicBitmaps
0x100030ac0 DwmSetIconicThumbnail
0x100030ac8 DwmSetIconicLivePreviewBitmap
0x100030ad0 DwmSetWindowAttribute
UxTheme.dll
0x100030ae0 GetThemeFont
0x100030ae8 CloseThemeData
0x100030af0 OpenThemeData
DUI70.dll
0x100030b00 ?GetChildren@ClassInfoBase@DirectUI@@UEBAHXZ
0x100030b08 ?RemoveChild@ClassInfoBase@DirectUI@@UEAAXXZ
0x100030b10 ?AddChild@ClassInfoBase@DirectUI@@UEAAXXZ
0x100030b18 ?IsGlobal@ClassInfoBase@DirectUI@@UEBA_NXZ
0x100030b20 ?GetModule@ClassInfoBase@DirectUI@@UEBAPEAUHINSTANCE__@@XZ
0x100030b28 ?IsSubclassOf@ClassInfoBase@DirectUI@@UEBA_NPEAUIClassInfo@2@@Z
0x100030b30 ?IsValidProperty@ClassInfoBase@DirectUI@@UEBA_NPEBUPropertyInfo@2@@Z
0x100030b38 ?GetName@ClassInfoBase@DirectUI@@UEBAPEBGXZ
0x100030b40 ?GetGlobalIndex@ClassInfoBase@DirectUI@@UEBAIXZ
0x100030b48 ?GetPICount@ClassInfoBase@DirectUI@@UEBAIXZ
0x100030b50 ?GetByClassIndex@ClassInfoBase@DirectUI@@UEAAPEBUPropertyInfo@2@I@Z
0x100030b58 ?EnumPropertyInfo@ClassInfoBase@DirectUI@@UEAAPEBUPropertyInfo@2@I@Z
0x100030b60 ?Release@ClassInfoBase@DirectUI@@UEAAHXZ
0x100030b68 ?AddRef@ClassInfoBase@DirectUI@@UEAAXXZ
0x100030b70 ??1ClassInfoBase@DirectUI@@UEAA@XZ
0x100030b78 ??0ClassInfoBase@DirectUI@@QEAA@XZ
0x100030b80 ?GetClassInfoPtr@HWNDElement@DirectUI@@SAPEAUIClassInfo@2@XZ
0x100030b88 ?GetClassInfoPtr@HWNDHost@DirectUI@@SAPEAUIClassInfo@2@XZ
0x100030b90 ?Initialize@ClassInfoBase@DirectUI@@QEAAJPEAUHINSTANCE__@@PEBG_NPEBQEBUPropertyInfo@2@I@Z
0x100030b98 ?Register@HWNDElement@DirectUI@@SAJXZ
0x100030ba0 ?Register@ClassInfoBase@DirectUI@@QEAAJXZ
0x100030ba8 ?ClassExist@ClassInfoBase@DirectUI@@SA_NPEAPEAUIClassInfo@2@PEBQEBUPropertyInfo@2@IPEAU32@PEAUHINSTANCE__@@PEBG_N@Z
0x100030bb0 ??1CritSecLock@DirectUI@@QEAA@XZ
0x100030bb8 ?GetFactoryLock@Element@DirectUI@@SAPEAU_RTL_CRITICAL_SECTION@@XZ
0x100030bc0 ?Register@HWNDHost@DirectUI@@SAJXZ
0x100030bc8 UnInitProcessPriv
0x100030bd0 UnInitThread
0x100030bd8 InitThread
0x100030be0 InitProcessPriv
0x100030be8 ?Initialize@HWNDHost@DirectUI@@QEAAJIIPEAVElement@2@PEAK@Z
0x100030bf0 ?SetAbsorbsShortcut@Element@DirectUI@@QEAAJ_N@Z
0x100030bf8 ?CreateStyleParser@HWNDElement@DirectUI@@UEAAJPEAPEAVDUIXmlParser@2@@Z
0x100030c00 ?CanSetFocus@HWNDElement@DirectUI@@UEAA_NXZ
0x100030c08 ?OnThemeChanged@HWNDElement@DirectUI@@UEAAXPEAUThemeChangedEvent@2@@Z
0x100030c10 ?GetHWND@HWNDElement@DirectUI@@UEAAPEAUHWND__@@XZ
0x100030c18 ?GetAccessibleImpl@HWNDElement@DirectUI@@UEAAJPEAPEAUIAccessible@@@Z
0x100030c20 ?GetKeyFocused@Element@DirectUI@@UEAA_NXZ
0x100030c28 ?RemoveTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@@Z
0x100030c30 ?ActivateTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@K@Z
0x100030c38 ?UpdateTooltip@HWNDElement@DirectUI@@UEAAXPEAVElement@2@@Z
0x100030c40 ?OnUnHosted@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030c48 ?OnHosted@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030c50 ?MessageCallback@Element@DirectUI@@UEAAIPEAUtagGMSG@@@Z
0x100030c58 ?SetKeyFocus@Element@DirectUI@@UEAAXXZ
0x100030c60 ?Paint@Element@DirectUI@@UEAAXPEAUHDC__@@PEBUtagRECT@@1PEAU4@2@Z
0x100030c68 ??1NativeHWNDHost@DirectUI@@UEAA@XZ
0x100030c70 ??0NativeHWNDHost@DirectUI@@QEAA@XZ
0x100030c78 ?CreateElement@DUIXmlParser@DirectUI@@QEAAJPEBGPEAVElement@2@1PEAKPEAPEAV32@@Z
0x100030c80 ?Host@NativeHWNDHost@DirectUI@@QEAAXPEAVElement@2@@Z
0x100030c88 ?EndDefer@Element@DirectUI@@QEAAXK@Z
0x100030c90 ?SetXMLFromResource@DUIXmlParser@DirectUI@@QEAAJIPEAUHINSTANCE__@@0@Z
0x100030c98 ?Create@DUIXmlParser@DirectUI@@SAJPEAPEAV12@P6APEAVValue@2@PEBGPEAX@Z2P6AX11H2@Z2@Z
0x100030ca0 ?Destroy@NativeHWNDHost@DirectUI@@QEAAXXZ
0x100030ca8 ?AssertPIZeroRef@ClassInfoBase@DirectUI@@UEBAXXZ
0x100030cb0 ?WndProc@HWNDElement@DirectUI@@UEAA_JPEAUHWND__@@I_K_J@Z
0x100030cb8 ?OnCompositionChanged@HWNDElement@DirectUI@@UEAAXXZ
0x100030cc0 ?OnWmThemeChanged@HWNDElement@DirectUI@@UEAAX_K_J@Z
0x100030cc8 ?OnGetDlgCode@HWNDElement@DirectUI@@UEAAXPEAUtagMSG@@PEA_J@Z
0x100030cd0 ?OnNoChildWithShortcutFound@HWNDElement@DirectUI@@UEAAXPEAUKeyboardEvent@2@@Z
0x100030cd8 ?OnDestroy@HWNDElement@DirectUI@@UEAAXXZ
0x100030ce0 ?OnGroupChanged@HWNDElement@DirectUI@@UEAAXH_N@Z
0x100030ce8 ?OnPropertyChanged@HWNDElement@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030cf0 ?OnEvent@HWNDElement@DirectUI@@UEAAXPEAUEvent@2@@Z
0x100030cf8 ?OnInput@HWNDElement@DirectUI@@UEAAXPEAUInputEvent@2@@Z
0x100030d00 ?Initialize@HWNDElement@DirectUI@@QEAAJPEAUHWND__@@_NIPEAVElement@2@PEAK@Z
0x100030d08 ?Destroy@Element@DirectUI@@QEAAJ_N@Z
0x100030d10 ??1HWNDElement@DirectUI@@UEAA@XZ
0x100030d18 ??0HWNDElement@DirectUI@@QEAA@XZ
0x100030d20 ?EraseBkgnd@HWNDHost@DirectUI@@MEAA_NPEAUHDC__@@PEA_J@Z
0x100030d28 ?SetWindowDirection@HWNDHost@DirectUI@@UEAAXPEAUHWND__@@@Z
0x100030d30 ?OnAdjustWindowSize@HWNDHost@DirectUI@@UEAAHHHI@Z
0x100030d38 ?OnWindowStyleChanged@HWNDHost@DirectUI@@UEAAX_KPEBUtagSTYLESTRUCT@@@Z
0x100030d40 ?OnCtrlThemeChanged@HWNDHost@DirectUI@@UEAA_NI_K_JPEA_J@Z
0x100030d48 ?OnSinkThemeChanged@HWNDHost@DirectUI@@UEAA_NI_K_JPEA_J@Z
0x100030d50 ?OnSysChar@HWNDHost@DirectUI@@UEAA_NG@Z
0x100030d58 ?GetHWND@HWNDHost@DirectUI@@UEAAPEAUHWND__@@XZ
0x100030d60 ?HandleUiaEventListener@Element@DirectUI@@UEAAXPEAUEvent@2@@Z
0x100030d68 ?HandleUiaPropertyChangingListener@Element@DirectUI@@UEAAXPEBUPropertyInfo@2@@Z
0x100030d70 ?HandleUiaPropertyListener@Element@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030d78 ?HandleUiaDestroyListener@Element@DirectUI@@UEAAXXZ
0x100030d80 ?GetElementProviderImpl@Element@DirectUI@@UEAAJPEAVInvokeHelper@2@PEAPEAVElementProvider@2@@Z
0x100030d88 ?DefaultAction@Element@DirectUI@@UEAAJXZ
0x100030d90 ?GetAccessibleImpl@HWNDHost@DirectUI@@UEAAJPEAPEAUIAccessible@@@Z
0x100030d98 ?GetKeyFocused@HWNDHost@DirectUI@@UEAA_NXZ
0x100030da0 ?RemoveTooltip@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030da8 ?ActivateTooltip@Element@DirectUI@@MEAAXPEAV12@K@Z
0x100030db0 ?UpdateTooltip@Element@DirectUI@@MEAAXPEAV12@@Z
0x100030db8 ?OnUnHosted@HWNDHost@DirectUI@@MEAAXPEAVElement@2@@Z
0x100030dc0 ?OnHosted@HWNDHost@DirectUI@@MEAAXPEAVElement@2@@Z
0x100030dc8 ?_SelfLayoutUpdateDesiredSize@Element@DirectUI@@MEAA?AUtagSIZE@@HHPEAVSurface@2@@Z
0x100030dd0 ?_SelfLayoutDoLayout@Element@DirectUI@@MEAAXHH@Z
0x100030dd8 ?QueryInterface@Element@DirectUI@@UEAAJAEBU_GUID@@PEAPEAX@Z
0x100030de0 ?MessageCallback@HWNDHost@DirectUI@@UEAAIPEAUtagGMSG@@@Z
0x100030de8 ?SetKeyFocus@HWNDHost@DirectUI@@UEAAXXZ
0x100030df0 ?EnsureVisible@Element@DirectUI@@UEAA_NHHHH@Z
0x100030df8 ?GetAdjacent@Element@DirectUI@@UEAAPEAV12@PEAV12@HPEBUNavReference@2@K@Z
0x100030e00 ?Remove@Element@DirectUI@@UEAAJPEAPEAV12@I@Z
0x100030e08 ?Insert@Element@DirectUI@@UEAAJPEAPEAV12@II@Z
0x100030e10 ?Add@Element@DirectUI@@UEAAJPEAPEAV12@I@Z
0x100030e18 ?GetContentSize@Element@DirectUI@@UEAA?AUtagSIZE@@HHPEAVSurface@2@@Z
0x100030e20 ?Paint@HWNDHost@DirectUI@@UEAAXPEAUHDC__@@PEBUtagRECT@@1PEAU4@2@Z
0x100030e28 ?OnDestroy@HWNDHost@DirectUI@@UEAAXXZ
0x100030e30 ?OnMouseFocusMoved@Element@DirectUI@@UEAAXPEAV12@0@Z
0x100030e38 ?OnKeyFocusMoved@Element@DirectUI@@UEAAXPEAV12@0@Z
0x100030e40 ?OnGroupChanged@Element@DirectUI@@UEAAXH_N@Z
0x100030e48 ?OnPropertyChanged@Element@DirectUI@@UEAAXPEAUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030e50 ?OnPropertyChanging@Element@DirectUI@@UEAA_NPEAUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030e58 ?OnPropertyChanging@Element@DirectUI@@UEAA_NPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030e60 ?GetContentStringAsDisplayed@Element@DirectUI@@UEAAPEBGPEAPEAVValue@2@@Z
0x100030e68 ?IsContentProtected@Element@DirectUI@@UEAA_NXZ
0x100030e70 ?IsRTLReading@Element@DirectUI@@UEAA_NXZ
0x100030e78 ?SetAccValue@Element@DirectUI@@QEAAJPEBG@Z
0x100030e80 ?SetDirection@Element@DirectUI@@QEAAJH@Z
0x100030e88 ?GetLocation@Element@DirectUI@@QEAAPEBUtagPOINT@@PEAPEAVValue@2@@Z
0x100030e90 ?OnEvent@HWNDHost@DirectUI@@UEAAXPEAUEvent@2@@Z
0x100030e98 ?OnInput@HWNDHost@DirectUI@@UEAAXPEAUInputEvent@2@@Z
0x100030ea0 ?OnPropertyChanged@HWNDHost@DirectUI@@UEAAXPEBUPropertyInfo@2@HPEAVValue@2@1@Z
0x100030ea8 ?EnabledProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030eb0 ?BackgroundProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030eb8 ?GetValue@Element@DirectUI@@QEAAPEAVValue@2@P6APEBUPropertyInfo@2@XZHPEAUUpdateCache@2@@Z
0x100030ec0 ??1HWNDHost@DirectUI@@UEAA@XZ
0x100030ec8 ??0HWNDHost@DirectUI@@QEAA@XZ
0x100030ed0 ?SheetProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030ed8 ?GetSheet@DUIXmlParser@DirectUI@@QEAAJPEBGPEAPEAVValue@2@@Z
0x100030ee0 ?SetWindowActive@Element@DirectUI@@QEAAJ_N@Z
0x100030ee8 ?SetVisible@Element@DirectUI@@QEAAJ_N@Z
0x100030ef0 ?MouseWithinProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030ef8 ?GetWindowActive@Element@DirectUI@@QEAA_NXZ
0x100030f00 ?WindowActiveProp@Element@DirectUI@@SAPEBUPropertyInfo@2@XZ
0x100030f08 ?Click@Button@DirectUI@@SA?AVUID@@XZ
0x100030f10 ?UpdateSheets@DUIXmlParser@DirectUI@@QEAAJPEAVElement@2@@Z
0x100030f18 ?Destroy@DUIXmlParser@DirectUI@@QEAAXXZ
0x100030f20 ?AddListener@Element@DirectUI@@QEAAJPEAUIElementListener@2@@Z
0x100030f28 StrToID
0x100030f30 ?FindDescendent@Element@DirectUI@@QEAAPEAV12@G@Z
0x100030f38 ?SetValue@Element@DirectUI@@QEAAJP6APEBUPropertyInfo@2@XZHPEAVValue@2@@Z
0x100030f40 ?Release@Value@DirectUI@@QEAAXXZ
0x100030f48 ?Initialize@NativeHWNDHost@DirectUI@@QEAAJPEBG0PEAUHWND__@@PEAUHICON__@@HHHHHHPEAUHINSTANCE__@@I@Z
gdiplus.dll
0x100030f58 GdipCreateBitmapFromScan0
0x100030f60 GdipCloneImage
0x100030f68 GdipDisposeImage
0x100030f70 GdipGetImageGraphicsContext
0x100030f78 GdipFree
0x100030f80 GdipCreateTexture
0x100030f88 GdiplusShutdown
0x100030f90 GdiplusStartup
0x100030f98 GdipCreateBitmapFromStream
0x100030fa0 GdipDrawImagePoints
0x100030fa8 GdipSetInterpolationMode
0x100030fb0 GdipSetPixelOffsetMode
0x100030fb8 GdipCreateFromHDC
0x100030fc0 GdipDrawImageRectI
0x100030fc8 GdipSetSmoothingMode
0x100030fd0 GdipDeleteGraphics
0x100030fd8 GdipSetCompositingMode
0x100030fe0 GdipCreateBitmapFromHBITMAP
0x100030fe8 GdipCreateSolidFill
0x100030ff0 GdipDeleteBrush
0x100030ff8 GdipCloneBrush
0x100031000 GdipFillRectangleI
0x100031008 GdipAlloc
RPCRT4.dll
0x100031018 RpcStringFreeW
0x100031020 UuidCreateSequential
0x100031028 UuidToStringW
0x100031030 UuidCreate
WindowsCodecs.dll
0x100031040 WICCreateImagingFactory_Proxy
EAT(Export Address Table) is none