ScreenShot
| Created | 2023.10.11 13:48 | Machine | s1_win7_x6401 |
| Filename | DS.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 57 detected (AIDetectMalware, malicious, high confidence, MulDrop23, GenericKD, Flyagent, Save, ZexaF, @tW@aW@qdMoH, Graftor, Eldorado, Attribute, HighConfidence, FlyStudio, score, Trojanx, Poison, kjrc, dvixmz, CLASSIC, R002C0PGH23, moderate, Wacatac, OSCF@5rs7jr, QP57SD, Detected, R576437, BScope, ai score=100, unsafe, Gencirc, Static AI, Malicious PE, susgen, CoinMiner, BELF, MalwareX, confidence, 100%) | ||
| md5 | 5dd5dcb6da07a09fa38ceb7257e6d777 | ||
| sha256 | 37308b7b961e0b3d3d6d4d197c6f6f1b6c4adaf4a3eb8e855e770445818d7302 | ||
| ssdeep | 196608:sOyqLNsxsmbWZNvYzhsch7stnbfF4sdJ+k5y8BepqgH:7fLqtbWZizh3hAN4sd8ygH | ||
| imphash | 0c0bf875cff14bd91891adb5675ade14 | ||
| impfuzzy | 192:NAUKdFqbFoMwAA0JTKUqT0MT/2wkkL6w7z3qcSccRcjlZqAbnQeo:LwAA0oTBFk/yEqlYAbnQz | ||
Network IP location
Signature (11cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 57 AntiVirus engines on VirusTotal as malicious |
| danger | Connects to an IP address that is no longer responding to requests (legitimate services will remain up-and-running usually) |
| watch | Communicates with host for which no DNS query was performed |
| watch | Queries information on disks |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Foreign language identified in PE resource |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | Checks amount of memory in system |
| info | Checks if process is being debugged by a debugger |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (8cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | DllRegisterServer_Zero | execute regsvr32.exe | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
PE API
IAT(Import Address Table) Library
WINMM.dll
0x6ad7d0 midiStreamRestart
0x6ad7d4 waveOutRestart
0x6ad7d8 PlaySoundA
0x6ad7dc midiStreamStop
0x6ad7e0 midiOutReset
0x6ad7e4 midiStreamClose
0x6ad7e8 waveOutUnprepareHeader
0x6ad7ec waveOutPrepareHeader
0x6ad7f0 waveOutWrite
0x6ad7f4 waveOutPause
0x6ad7f8 waveOutReset
0x6ad7fc midiStreamOut
0x6ad800 midiOutPrepareHeader
0x6ad804 midiStreamProperty
0x6ad808 midiStreamOpen
0x6ad80c midiOutUnprepareHeader
0x6ad810 waveOutOpen
0x6ad814 waveOutGetNumDevs
0x6ad818 waveOutClose
WS2_32.dll
0x6ad830 inet_ntoa
0x6ad834 inet_addr
0x6ad838 gethostname
0x6ad83c gethostbyname
0x6ad840 WSAStartup
0x6ad844 WSACleanup
0x6ad848 send
0x6ad84c closesocket
0x6ad850 WSAAsyncSelect
0x6ad854 htons
0x6ad858 ind
0x6ad85c htonl
0x6ad860 socket
0x6ad864 setsockopt
0x6ad868 sendto
0x6ad86c recvfrom
0x6ad870 ioctlsocket
0x6ad874 connect
0x6ad878 recv
0x6ad87c listen
0x6ad880 getpeername
0x6ad884 accept
0x6ad888 __WSAFDIsSet
0x6ad88c ntohs
0x6ad890 getsockname
0x6ad894 WSAGetLastError
0x6ad898 ntohl
0x6ad89c select
MSVFW32.dll
0x6ad49c DrawDibDraw
AVIFIL32.dll
0x6ad028 AVIStreamInfoA
0x6ad02c AVIStreamGetFrame
RASAPI32.dll
0x6ad4f4 RasGetConnectStatusA
0x6ad4f8 RasHangUpA
KERNEL32.dll
0x6ad1f4 SetLastError
0x6ad1f8 GetTimeZoneInformation
0x6ad1fc GetLocaleInfoA
0x6ad200 GetVersion
0x6ad204 TerminateThread
0x6ad208 IsDBCSLeadByte
0x6ad20c lstrcmpA
0x6ad210 lstrcmpiA
0x6ad214 lstrcpynA
0x6ad218 FileTimeToSystemTime
0x6ad21c FileTimeToDosDateTime
0x6ad220 FileTimeToLocalFileTime
0x6ad224 GetFileInformationByHandle
0x6ad228 GetFileType
0x6ad22c MapViewOfFile
0x6ad230 CreateFileMappingA
0x6ad234 DuplicateHandle
0x6ad238 UnmapViewOfFile
0x6ad23c SystemTimeToFileTime
0x6ad240 GetLocalTime
0x6ad244 DosDateTimeToFileTime
0x6ad248 SetFileTime
0x6ad24c LocalFree
0x6ad250 FormatMessageA
0x6ad254 CreateMutexA
0x6ad258 ReleaseMutex
0x6ad25c SuspendThread
0x6ad260 InterlockedIncrement
0x6ad264 InterlockedDecrement
0x6ad268 FlushFileBuffers
0x6ad26c LockFile
0x6ad270 UnlockFile
0x6ad274 SetEndOfFile
0x6ad278 GlobalDeleteAtom
0x6ad27c GlobalFindAtomA
0x6ad280 GlobalAddAtomA
0x6ad284 GlobalGetAtomNameA
0x6ad288 LocalAlloc
0x6ad28c TlsAlloc
0x6ad290 GlobalHandle
0x6ad294 TlsFree
0x6ad298 TlsSetValue
0x6ad29c LocalReAlloc
0x6ad2a0 TlsGetValue
0x6ad2a4 GetFileTime
0x6ad2a8 GetCurrentThread
0x6ad2ac GlobalFlags
0x6ad2b0 GetProfileIntA
0x6ad2b4 SetErrorMode
0x6ad2b8 GetProcessVersion
0x6ad2bc GetCPInfo
0x6ad2c0 GetOEMCP
0x6ad2c4 GetStartupInfoA
0x6ad2c8 RtlUnwind
0x6ad2cc GetSystemTime
0x6ad2d0 RaiseException
0x6ad2d4 HeapSize
0x6ad2d8 ExitThread
0x6ad2dc GetACP
0x6ad2e0 SetStdHandle
0x6ad2e4 UnhandledExceptionFilter
0x6ad2e8 FreeEnvironmentStringsA
0x6ad2ec FreeEnvironmentStringsW
0x6ad2f0 GetEnvironmentStrings
0x6ad2f4 GetEnvironmentStringsW
0x6ad2f8 SetHandleCount
0x6ad2fc GetStdHandle
0x6ad300 GetEnvironmentVariableA
0x6ad304 HeapDestroy
0x6ad308 HeapCreate
0x6ad30c VirtualFree
0x6ad310 SetEnvironmentVariableW
0x6ad314 SetEnvironmentVariableA
0x6ad318 LCMapStringA
0x6ad31c LCMapStringW
0x6ad320 VirtualAlloc
0x6ad324 IsBadWritePtr
0x6ad328 SetUnhandledExceptionFilter
0x6ad32c GetStringTypeA
0x6ad330 GetStringTypeW
0x6ad334 CompareStringA
0x6ad338 CompareStringW
0x6ad33c IsBadReadPtr
0x6ad340 IsBadCodePtr
0x6ad344 IsValidLocale
0x6ad348 IsValidCodePage
0x6ad34c EnumSystemLocalesA
0x6ad350 GetLocaleInfoW
0x6ad354 SetNamedPipeHandleState
0x6ad358 WaitNamedPipeA
0x6ad35c OpenFileMappingA
0x6ad360 OpenEventA
0x6ad364 GetWindowsDirectoryA
0x6ad368 TerminateProcess
0x6ad36c GetCurrentProcess
0x6ad370 GetFileSize
0x6ad374 SetFilePointer
0x6ad378 CreateSemaphoreA
0x6ad37c ResumeThread
0x6ad380 ReleaseSemaphore
0x6ad384 EnterCriticalSection
0x6ad388 LeaveCriticalSection
0x6ad38c GetProfileStringA
0x6ad390 WriteFile
0x6ad394 WaitForMultipleObjects
0x6ad398 CreateFileA
0x6ad39c SetEvent
0x6ad3a0 FindResourceA
0x6ad3a4 LoadResource
0x6ad3a8 LockResource
0x6ad3ac ReadFile
0x6ad3b0 lstrlenW
0x6ad3b4 GetModuleFileNameA
0x6ad3b8 WideCharToMultiByte
0x6ad3bc MultiByteToWideChar
0x6ad3c0 GetCurrentThreadId
0x6ad3c4 ExitProcess
0x6ad3c8 GlobalSize
0x6ad3cc GlobalFree
0x6ad3d0 DeleteCriticalSection
0x6ad3d4 InitializeCriticalSection
0x6ad3d8 lstrcatA
0x6ad3dc lstrlenA
0x6ad3e0 WinExec
0x6ad3e4 lstrcpyA
0x6ad3e8 FindNextFileA
0x6ad3ec GetDriveTypeA
0x6ad3f0 GlobalReAlloc
0x6ad3f4 HeapFree
0x6ad3f8 HeapReAlloc
0x6ad3fc GetProcessHeap
0x6ad400 HeapAlloc
0x6ad404 GetUserDefaultLCID
0x6ad408 GetFullPathNameA
0x6ad40c FreeLibrary
0x6ad410 LoadLibraryA
0x6ad414 GetLastError
0x6ad418 GetVersionExA
0x6ad41c WritePrivateProfileStringA
0x6ad420 GetPrivateProfileStringA
0x6ad424 CreateThread
0x6ad428 CreateEventA
0x6ad42c Sleep
0x6ad430 GlobalAlloc
0x6ad434 GlobalLock
0x6ad438 GlobalUnlock
0x6ad43c FindFirstFileA
0x6ad440 FindClose
0x6ad444 SetFileAttributesA
0x6ad448 GetFileAttributesA
0x6ad44c MoveFileA
0x6ad450 DeleteFileA
0x6ad454 CopyFileA
0x6ad458 CreateDirectoryA
0x6ad45c GetCurrentDirectoryA
0x6ad460 SetCurrentDirectoryA
0x6ad464 GetVolumeInformationA
0x6ad468 GetModuleHandleA
0x6ad46c GetProcAddress
0x6ad470 MulDiv
0x6ad474 GetCommandLineA
0x6ad478 GetTickCount
0x6ad47c CreateProcessA
0x6ad480 WaitForSingleObject
0x6ad484 CloseHandle
0x6ad488 InterlockedExchange
0x6ad48c MapViewOfFileEx
USER32.dll
0x6ad50c SetMenuItemBitmaps
0x6ad510 GetMenuCheckMarkDimensions
0x6ad514 LoadStringA
0x6ad518 GetSysColorBrush
0x6ad51c LoadIconA
0x6ad520 TranslateMessage
0x6ad524 DrawFrameControl
0x6ad528 DrawEdge
0x6ad52c DrawFocusRect
0x6ad530 WindowFromPoint
0x6ad534 GetMessageA
0x6ad538 DispatchMessageA
0x6ad53c SetRectEmpty
0x6ad540 RegisterClipboardFormatA
0x6ad544 CreateIconFromResourceEx
0x6ad548 CreateIconFromResource
0x6ad54c DrawIconEx
0x6ad550 CreatePopupMenu
0x6ad554 AppendMenuA
0x6ad558 ModifyMenuA
0x6ad55c CreateMenu
0x6ad560 CreateAcceleratorTableA
0x6ad564 GetDlgCtrlID
0x6ad568 GetSubMenu
0x6ad56c EnableMenuItem
0x6ad570 ClientToScreen
0x6ad574 EnumDisplaySettingsA
0x6ad578 LoadImageA
0x6ad57c SystemParametersInfoA
0x6ad580 ShowWindow
0x6ad584 IsWindowEnabled
0x6ad588 TranslateAcceleratorA
0x6ad58c GetKeyState
0x6ad590 CopyAcceleratorTableA
0x6ad594 PostQuitMessage
0x6ad598 IsZoomed
0x6ad59c GetClassInfoA
0x6ad5a0 DefWindowProcA
0x6ad5a4 GetSystemMenu
0x6ad5a8 DeleteMenu
0x6ad5ac GetMenu
0x6ad5b0 SetMenu
0x6ad5b4 PeekMessageA
0x6ad5b8 IsIconic
0x6ad5bc SetFocus
0x6ad5c0 GetActiveWindow
0x6ad5c4 GetWindow
0x6ad5c8 DestroyAcceleratorTable
0x6ad5cc SetWindowRgn
0x6ad5d0 GetMessagePos
0x6ad5d4 CheckMenuItem
0x6ad5d8 ChildWindowFromPointEx
0x6ad5dc CopyRect
0x6ad5e0 LoadBitmapA
0x6ad5e4 KillTimer
0x6ad5e8 SetTimer
0x6ad5ec ReleaseCapture
0x6ad5f0 GetCapture
0x6ad5f4 SetCapture
0x6ad5f8 GetScrollRange
0x6ad5fc SetScrollRange
0x6ad600 SetScrollPos
0x6ad604 SetRect
0x6ad608 InflateRect
0x6ad60c IntersectRect
0x6ad610 DestroyIcon
0x6ad614 PtInRect
0x6ad618 OffsetRect
0x6ad61c IsWindowVisible
0x6ad620 EnableWindow
0x6ad624 GetWindowLongA
0x6ad628 SetWindowLongA
0x6ad62c GetSysColor
0x6ad630 SetActiveWindow
0x6ad634 SetCursorPos
0x6ad638 LoadCursorA
0x6ad63c SetCursor
0x6ad640 GetDC
0x6ad644 FillRect
0x6ad648 InvertRect
0x6ad64c IsRectEmpty
0x6ad650 ReleaseDC
0x6ad654 IsChild
0x6ad658 TrackPopupMenu
0x6ad65c DestroyMenu
0x6ad660 SetForegroundWindow
0x6ad664 GetWindowRect
0x6ad668 EqualRect
0x6ad66c UpdateWindow
0x6ad670 ValidateRect
0x6ad674 InvalidateRect
0x6ad678 GetClientRect
0x6ad67c GetFocus
0x6ad680 GetParent
0x6ad684 GetTopWindow
0x6ad688 PostMessageA
0x6ad68c IsWindow
0x6ad690 SetParent
0x6ad694 DestroyCursor
0x6ad698 SendMessageA
0x6ad69c SetWindowPos
0x6ad6a0 MessageBeep
0x6ad6a4 MessageBoxA
0x6ad6a8 GetCursorPos
0x6ad6ac GetSystemMetrics
0x6ad6b0 IsClipboardFormatAvailable
0x6ad6b4 EmptyClipboard
0x6ad6b8 SetClipboardData
0x6ad6bc OpenClipboard
0x6ad6c0 GetClipboardData
0x6ad6c4 CloseClipboard
0x6ad6c8 wsprintfA
0x6ad6cc WaitForInputIdle
0x6ad6d0 IsDialogMessageA
0x6ad6d4 ScrollWindowEx
0x6ad6d8 SendDlgItemMessageA
0x6ad6dc MapWindowPoints
0x6ad6e0 AdjustWindowRectEx
0x6ad6e4 ScrollWindow
0x6ad6e8 GetScrollInfo
0x6ad6ec SetScrollInfo
0x6ad6f0 ShowScrollBar
0x6ad6f4 GetScrollPos
0x6ad6f8 RegisterClassA
0x6ad6fc CreateWindowExA
0x6ad700 GetClassLongA
0x6ad704 RemovePropA
0x6ad708 GetMessageTime
0x6ad70c GetLastActivePopup
0x6ad710 RegisterWindowMessageA
0x6ad714 GetWindowPlacement
0x6ad718 EndDialog
0x6ad71c CreateDialogIndirectParamA
0x6ad720 DestroyWindow
0x6ad724 EndPaint
0x6ad728 BeginPaint
0x6ad72c GetWindowTextLengthA
0x6ad730 wvsprintfA
0x6ad734 GetForegroundWindow
0x6ad738 GetNextDlgTabItem
0x6ad73c CharUpperA
0x6ad740 GetDoubleClickTime
0x6ad744 ClipCursor
0x6ad748 SetWindowTextA
0x6ad74c GetMenuItemCount
0x6ad750 GetMenuItemID
0x6ad754 GetMenuStringA
0x6ad758 GetMenuState
0x6ad75c GetTabbedTextExtentA
0x6ad760 DrawStateA
0x6ad764 GrayStringA
0x6ad768 TabbedTextOutA
0x6ad76c WindowFromDC
0x6ad770 EnumChildWindows
0x6ad774 GetWindowDC
0x6ad778 UnhookWindowsHookEx
0x6ad77c CallNextHookEx
0x6ad780 SetWindowsHookExA
0x6ad784 FrameRect
0x6ad788 GetPropA
0x6ad78c MoveWindow
0x6ad790 CallWindowProcA
0x6ad794 SetPropA
0x6ad798 DrawTextA
0x6ad79c UnregisterClassA
0x6ad7a0 GetWindowTextA
0x6ad7a4 FindWindowExA
0x6ad7a8 GetDlgItem
0x6ad7ac GetClassNameA
0x6ad7b0 ScreenToClient
0x6ad7b4 GetDesktopWindow
0x6ad7b8 WinHelpA
0x6ad7bc RedrawWindow
0x6ad7c0 GetCursor
GDI32.dll
0x6ad074 GetViewportExtEx
0x6ad078 ExtSelectClipRgn
0x6ad07c CopyMetaFileA
0x6ad080 GetCurrentObject
0x6ad084 RoundRect
0x6ad088 GetTextExtentPoint32A
0x6ad08c DPtoLP
0x6ad090 LPtoDP
0x6ad094 Rectangle
0x6ad098 Ellipse
0x6ad09c SetPixelV
0x6ad0a0 CreateCompatibleDC
0x6ad0a4 GetPixel
0x6ad0a8 BitBlt
0x6ad0ac StartPage
0x6ad0b0 StartDocA
0x6ad0b4 DeleteDC
0x6ad0b8 EndDoc
0x6ad0bc EndPage
0x6ad0c0 GetObjectA
0x6ad0c4 GetStockObject
0x6ad0c8 CreateFontIndirectA
0x6ad0cc CreateSolidBrush
0x6ad0d0 FillRgn
0x6ad0d4 CreateRectRgn
0x6ad0d8 CombineRgn
0x6ad0dc PatBlt
0x6ad0e0 CreatePen
0x6ad0e4 SelectObject
0x6ad0e8 CreatePatternBrush
0x6ad0ec CreateBitmap
0x6ad0f0 CreateBrushIndirect
0x6ad0f4 CreateDCA
0x6ad0f8 CreateCompatibleBitmap
0x6ad0fc GetPolyFillMode
0x6ad100 GetStretchBltMode
0x6ad104 GetROP2
0x6ad108 GetBkColor
0x6ad10c GetBkMode
0x6ad110 GetTextColor
0x6ad114 CreateRoundRectRgn
0x6ad118 CreateEllipticRgn
0x6ad11c PathToRegion
0x6ad120 EndPath
0x6ad124 BeginPath
0x6ad128 GetWindowOrgEx
0x6ad12c GetViewportOrgEx
0x6ad130 GetWindowExtEx
0x6ad134 GetDIBits
0x6ad138 RealizePalette
0x6ad13c SelectPalette
0x6ad140 StretchBlt
0x6ad144 CreatePalette
0x6ad148 GetSystemPaletteEntries
0x6ad14c CreateDIBitmap
0x6ad150 DeleteObject
0x6ad154 SelectClipRgn
0x6ad158 CreatePolygonRgn
0x6ad15c GetClipRgn
0x6ad160 SetStretchBltMode
0x6ad164 SetPixel
0x6ad168 CreateDIBSection
0x6ad16c CreateRectRgnIndirect
0x6ad170 SetBkColor
0x6ad174 SetBkMode
0x6ad178 SetTextColor
0x6ad17c SetWindowOrgEx
0x6ad180 SaveDC
0x6ad184 RestoreDC
0x6ad188 CreatePenIndirect
0x6ad18c PtVisible
0x6ad190 RectVisible
0x6ad194 TextOutA
0x6ad198 ExtTextOutA
0x6ad19c Escape
0x6ad1a0 GetTextMetricsA
0x6ad1a4 AbortDoc
0x6ad1a8 CreateFontA
0x6ad1ac SetBrushOrgEx
0x6ad1b0 SetDIBitsToDevice
0x6ad1b4 SetPolyFillMode
0x6ad1b8 SetROP2
0x6ad1bc SetMapMode
0x6ad1c0 SetViewportOrgEx
0x6ad1c4 OffsetViewportOrgEx
0x6ad1c8 SetViewportExtEx
0x6ad1cc ScaleViewportExtEx
0x6ad1d0 OffsetWindowOrgEx
0x6ad1d4 SetWindowExtEx
0x6ad1d8 ScaleWindowExtEx
0x6ad1dc GetClipBox
0x6ad1e0 ExcludeClipRect
0x6ad1e4 MoveToEx
0x6ad1e8 LineTo
0x6ad1ec GetDeviceCaps
MSIMG32.dll
0x6ad494 GradientFill
WINSPOOL.DRV
0x6ad820 ClosePrinter
0x6ad824 DocumentPropertiesA
0x6ad828 OpenPrinterA
comdlg32.dll
0x6ad8b0 GetFileTitleA
0x6ad8b4 PrintDlgA
0x6ad8b8 GetOpenFileNameA
0x6ad8bc ChooseFontA
0x6ad8c0 ChooseColorA
0x6ad8c4 GetSaveFileNameA
ADVAPI32.dll
0x6ad000 RegCreateKeyExA
0x6ad004 RegQueryValueA
0x6ad008 RegDeleteKeyA
0x6ad00c RegDeleteValueA
0x6ad010 RegSetValueExA
0x6ad014 RegOpenKeyExA
0x6ad018 RegQueryValueExA
0x6ad01c RegCloseKey
0x6ad020 RegEnumValueA
SHELL32.dll
0x6ad500 Shell_NotifyIconA
0x6ad504 ShellExecuteA
ole32.dll
0x6ad8cc CoTaskMemAlloc
0x6ad8d0 OleDuplicateData
0x6ad8d4 RevokeDragDrop
0x6ad8d8 CoLockObjectExternal
0x6ad8dc OleGetClipboard
0x6ad8e0 OleIsCurrentClipboard
0x6ad8e4 OleFlushClipboard
0x6ad8e8 OleSetClipboard
0x6ad8ec CoTaskMemFree
0x6ad8f0 ReleaseStgMedium
0x6ad8f4 CLSIDFromProgID
0x6ad8f8 OleInitialize
0x6ad8fc OleUninitialize
0x6ad900 CLSIDFromString
0x6ad904 CreateStreamOnHGlobal
0x6ad908 CoCreateInstance
0x6ad90c OleRun
0x6ad910 DoDragDrop
OLEAUT32.dll
0x6ad4a4 VarDateFromStr
0x6ad4a8 RegisterTypeLib
0x6ad4ac SafeArrayPutElement
0x6ad4b0 LHashValOfNameSys
0x6ad4b4 LoadTypeLib
0x6ad4b8 SafeArrayUnaccessData
0x6ad4bc SafeArrayAccessData
0x6ad4c0 SafeArrayGetElement
0x6ad4c4 VariantCopyInd
0x6ad4c8 VariantInit
0x6ad4cc SysAllocString
0x6ad4d0 SafeArrayDestroy
0x6ad4d4 SafeArrayCreate
0x6ad4d8 VariantClear
0x6ad4dc VariantChangeType
0x6ad4e0 SafeArrayGetUBound
0x6ad4e4 SafeArrayGetLBound
0x6ad4e8 SafeArrayGetDim
0x6ad4ec UnRegisterTypeLib
COMCTL32.dll
0x6ad034 ImageList_Duplicate
0x6ad038 ImageList_DrawIndirect
0x6ad03c ImageList_Draw
0x6ad040 ImageList_Read
0x6ad044 ImageList_LoadImageA
0x6ad048 ImageList_Create
0x6ad04c ImageList_Destroy
0x6ad050 None
0x6ad054 ImageList_AddMasked
0x6ad058 _TrackMouseEvent
0x6ad05c ImageList_ReplaceIcon
0x6ad060 ImageList_GetIcon
0x6ad064 ImageList_GetImageInfo
0x6ad068 ImageList_GetImageCount
0x6ad06c ImageList_SetBkColor
WSOCK32.dll
0x6ad8a4 shutdown
0x6ad8a8 getservbyname
WININET.dll
0x6ad7c8 InternetCloseHandle
EAT(Export Address Table) is none
WINMM.dll
0x6ad7d0 midiStreamRestart
0x6ad7d4 waveOutRestart
0x6ad7d8 PlaySoundA
0x6ad7dc midiStreamStop
0x6ad7e0 midiOutReset
0x6ad7e4 midiStreamClose
0x6ad7e8 waveOutUnprepareHeader
0x6ad7ec waveOutPrepareHeader
0x6ad7f0 waveOutWrite
0x6ad7f4 waveOutPause
0x6ad7f8 waveOutReset
0x6ad7fc midiStreamOut
0x6ad800 midiOutPrepareHeader
0x6ad804 midiStreamProperty
0x6ad808 midiStreamOpen
0x6ad80c midiOutUnprepareHeader
0x6ad810 waveOutOpen
0x6ad814 waveOutGetNumDevs
0x6ad818 waveOutClose
WS2_32.dll
0x6ad830 inet_ntoa
0x6ad834 inet_addr
0x6ad838 gethostname
0x6ad83c gethostbyname
0x6ad840 WSAStartup
0x6ad844 WSACleanup
0x6ad848 send
0x6ad84c closesocket
0x6ad850 WSAAsyncSelect
0x6ad854 htons
0x6ad858 ind
0x6ad85c htonl
0x6ad860 socket
0x6ad864 setsockopt
0x6ad868 sendto
0x6ad86c recvfrom
0x6ad870 ioctlsocket
0x6ad874 connect
0x6ad878 recv
0x6ad87c listen
0x6ad880 getpeername
0x6ad884 accept
0x6ad888 __WSAFDIsSet
0x6ad88c ntohs
0x6ad890 getsockname
0x6ad894 WSAGetLastError
0x6ad898 ntohl
0x6ad89c select
MSVFW32.dll
0x6ad49c DrawDibDraw
AVIFIL32.dll
0x6ad028 AVIStreamInfoA
0x6ad02c AVIStreamGetFrame
RASAPI32.dll
0x6ad4f4 RasGetConnectStatusA
0x6ad4f8 RasHangUpA
KERNEL32.dll
0x6ad1f4 SetLastError
0x6ad1f8 GetTimeZoneInformation
0x6ad1fc GetLocaleInfoA
0x6ad200 GetVersion
0x6ad204 TerminateThread
0x6ad208 IsDBCSLeadByte
0x6ad20c lstrcmpA
0x6ad210 lstrcmpiA
0x6ad214 lstrcpynA
0x6ad218 FileTimeToSystemTime
0x6ad21c FileTimeToDosDateTime
0x6ad220 FileTimeToLocalFileTime
0x6ad224 GetFileInformationByHandle
0x6ad228 GetFileType
0x6ad22c MapViewOfFile
0x6ad230 CreateFileMappingA
0x6ad234 DuplicateHandle
0x6ad238 UnmapViewOfFile
0x6ad23c SystemTimeToFileTime
0x6ad240 GetLocalTime
0x6ad244 DosDateTimeToFileTime
0x6ad248 SetFileTime
0x6ad24c LocalFree
0x6ad250 FormatMessageA
0x6ad254 CreateMutexA
0x6ad258 ReleaseMutex
0x6ad25c SuspendThread
0x6ad260 InterlockedIncrement
0x6ad264 InterlockedDecrement
0x6ad268 FlushFileBuffers
0x6ad26c LockFile
0x6ad270 UnlockFile
0x6ad274 SetEndOfFile
0x6ad278 GlobalDeleteAtom
0x6ad27c GlobalFindAtomA
0x6ad280 GlobalAddAtomA
0x6ad284 GlobalGetAtomNameA
0x6ad288 LocalAlloc
0x6ad28c TlsAlloc
0x6ad290 GlobalHandle
0x6ad294 TlsFree
0x6ad298 TlsSetValue
0x6ad29c LocalReAlloc
0x6ad2a0 TlsGetValue
0x6ad2a4 GetFileTime
0x6ad2a8 GetCurrentThread
0x6ad2ac GlobalFlags
0x6ad2b0 GetProfileIntA
0x6ad2b4 SetErrorMode
0x6ad2b8 GetProcessVersion
0x6ad2bc GetCPInfo
0x6ad2c0 GetOEMCP
0x6ad2c4 GetStartupInfoA
0x6ad2c8 RtlUnwind
0x6ad2cc GetSystemTime
0x6ad2d0 RaiseException
0x6ad2d4 HeapSize
0x6ad2d8 ExitThread
0x6ad2dc GetACP
0x6ad2e0 SetStdHandle
0x6ad2e4 UnhandledExceptionFilter
0x6ad2e8 FreeEnvironmentStringsA
0x6ad2ec FreeEnvironmentStringsW
0x6ad2f0 GetEnvironmentStrings
0x6ad2f4 GetEnvironmentStringsW
0x6ad2f8 SetHandleCount
0x6ad2fc GetStdHandle
0x6ad300 GetEnvironmentVariableA
0x6ad304 HeapDestroy
0x6ad308 HeapCreate
0x6ad30c VirtualFree
0x6ad310 SetEnvironmentVariableW
0x6ad314 SetEnvironmentVariableA
0x6ad318 LCMapStringA
0x6ad31c LCMapStringW
0x6ad320 VirtualAlloc
0x6ad324 IsBadWritePtr
0x6ad328 SetUnhandledExceptionFilter
0x6ad32c GetStringTypeA
0x6ad330 GetStringTypeW
0x6ad334 CompareStringA
0x6ad338 CompareStringW
0x6ad33c IsBadReadPtr
0x6ad340 IsBadCodePtr
0x6ad344 IsValidLocale
0x6ad348 IsValidCodePage
0x6ad34c EnumSystemLocalesA
0x6ad350 GetLocaleInfoW
0x6ad354 SetNamedPipeHandleState
0x6ad358 WaitNamedPipeA
0x6ad35c OpenFileMappingA
0x6ad360 OpenEventA
0x6ad364 GetWindowsDirectoryA
0x6ad368 TerminateProcess
0x6ad36c GetCurrentProcess
0x6ad370 GetFileSize
0x6ad374 SetFilePointer
0x6ad378 CreateSemaphoreA
0x6ad37c ResumeThread
0x6ad380 ReleaseSemaphore
0x6ad384 EnterCriticalSection
0x6ad388 LeaveCriticalSection
0x6ad38c GetProfileStringA
0x6ad390 WriteFile
0x6ad394 WaitForMultipleObjects
0x6ad398 CreateFileA
0x6ad39c SetEvent
0x6ad3a0 FindResourceA
0x6ad3a4 LoadResource
0x6ad3a8 LockResource
0x6ad3ac ReadFile
0x6ad3b0 lstrlenW
0x6ad3b4 GetModuleFileNameA
0x6ad3b8 WideCharToMultiByte
0x6ad3bc MultiByteToWideChar
0x6ad3c0 GetCurrentThreadId
0x6ad3c4 ExitProcess
0x6ad3c8 GlobalSize
0x6ad3cc GlobalFree
0x6ad3d0 DeleteCriticalSection
0x6ad3d4 InitializeCriticalSection
0x6ad3d8 lstrcatA
0x6ad3dc lstrlenA
0x6ad3e0 WinExec
0x6ad3e4 lstrcpyA
0x6ad3e8 FindNextFileA
0x6ad3ec GetDriveTypeA
0x6ad3f0 GlobalReAlloc
0x6ad3f4 HeapFree
0x6ad3f8 HeapReAlloc
0x6ad3fc GetProcessHeap
0x6ad400 HeapAlloc
0x6ad404 GetUserDefaultLCID
0x6ad408 GetFullPathNameA
0x6ad40c FreeLibrary
0x6ad410 LoadLibraryA
0x6ad414 GetLastError
0x6ad418 GetVersionExA
0x6ad41c WritePrivateProfileStringA
0x6ad420 GetPrivateProfileStringA
0x6ad424 CreateThread
0x6ad428 CreateEventA
0x6ad42c Sleep
0x6ad430 GlobalAlloc
0x6ad434 GlobalLock
0x6ad438 GlobalUnlock
0x6ad43c FindFirstFileA
0x6ad440 FindClose
0x6ad444 SetFileAttributesA
0x6ad448 GetFileAttributesA
0x6ad44c MoveFileA
0x6ad450 DeleteFileA
0x6ad454 CopyFileA
0x6ad458 CreateDirectoryA
0x6ad45c GetCurrentDirectoryA
0x6ad460 SetCurrentDirectoryA
0x6ad464 GetVolumeInformationA
0x6ad468 GetModuleHandleA
0x6ad46c GetProcAddress
0x6ad470 MulDiv
0x6ad474 GetCommandLineA
0x6ad478 GetTickCount
0x6ad47c CreateProcessA
0x6ad480 WaitForSingleObject
0x6ad484 CloseHandle
0x6ad488 InterlockedExchange
0x6ad48c MapViewOfFileEx
USER32.dll
0x6ad50c SetMenuItemBitmaps
0x6ad510 GetMenuCheckMarkDimensions
0x6ad514 LoadStringA
0x6ad518 GetSysColorBrush
0x6ad51c LoadIconA
0x6ad520 TranslateMessage
0x6ad524 DrawFrameControl
0x6ad528 DrawEdge
0x6ad52c DrawFocusRect
0x6ad530 WindowFromPoint
0x6ad534 GetMessageA
0x6ad538 DispatchMessageA
0x6ad53c SetRectEmpty
0x6ad540 RegisterClipboardFormatA
0x6ad544 CreateIconFromResourceEx
0x6ad548 CreateIconFromResource
0x6ad54c DrawIconEx
0x6ad550 CreatePopupMenu
0x6ad554 AppendMenuA
0x6ad558 ModifyMenuA
0x6ad55c CreateMenu
0x6ad560 CreateAcceleratorTableA
0x6ad564 GetDlgCtrlID
0x6ad568 GetSubMenu
0x6ad56c EnableMenuItem
0x6ad570 ClientToScreen
0x6ad574 EnumDisplaySettingsA
0x6ad578 LoadImageA
0x6ad57c SystemParametersInfoA
0x6ad580 ShowWindow
0x6ad584 IsWindowEnabled
0x6ad588 TranslateAcceleratorA
0x6ad58c GetKeyState
0x6ad590 CopyAcceleratorTableA
0x6ad594 PostQuitMessage
0x6ad598 IsZoomed
0x6ad59c GetClassInfoA
0x6ad5a0 DefWindowProcA
0x6ad5a4 GetSystemMenu
0x6ad5a8 DeleteMenu
0x6ad5ac GetMenu
0x6ad5b0 SetMenu
0x6ad5b4 PeekMessageA
0x6ad5b8 IsIconic
0x6ad5bc SetFocus
0x6ad5c0 GetActiveWindow
0x6ad5c4 GetWindow
0x6ad5c8 DestroyAcceleratorTable
0x6ad5cc SetWindowRgn
0x6ad5d0 GetMessagePos
0x6ad5d4 CheckMenuItem
0x6ad5d8 ChildWindowFromPointEx
0x6ad5dc CopyRect
0x6ad5e0 LoadBitmapA
0x6ad5e4 KillTimer
0x6ad5e8 SetTimer
0x6ad5ec ReleaseCapture
0x6ad5f0 GetCapture
0x6ad5f4 SetCapture
0x6ad5f8 GetScrollRange
0x6ad5fc SetScrollRange
0x6ad600 SetScrollPos
0x6ad604 SetRect
0x6ad608 InflateRect
0x6ad60c IntersectRect
0x6ad610 DestroyIcon
0x6ad614 PtInRect
0x6ad618 OffsetRect
0x6ad61c IsWindowVisible
0x6ad620 EnableWindow
0x6ad624 GetWindowLongA
0x6ad628 SetWindowLongA
0x6ad62c GetSysColor
0x6ad630 SetActiveWindow
0x6ad634 SetCursorPos
0x6ad638 LoadCursorA
0x6ad63c SetCursor
0x6ad640 GetDC
0x6ad644 FillRect
0x6ad648 InvertRect
0x6ad64c IsRectEmpty
0x6ad650 ReleaseDC
0x6ad654 IsChild
0x6ad658 TrackPopupMenu
0x6ad65c DestroyMenu
0x6ad660 SetForegroundWindow
0x6ad664 GetWindowRect
0x6ad668 EqualRect
0x6ad66c UpdateWindow
0x6ad670 ValidateRect
0x6ad674 InvalidateRect
0x6ad678 GetClientRect
0x6ad67c GetFocus
0x6ad680 GetParent
0x6ad684 GetTopWindow
0x6ad688 PostMessageA
0x6ad68c IsWindow
0x6ad690 SetParent
0x6ad694 DestroyCursor
0x6ad698 SendMessageA
0x6ad69c SetWindowPos
0x6ad6a0 MessageBeep
0x6ad6a4 MessageBoxA
0x6ad6a8 GetCursorPos
0x6ad6ac GetSystemMetrics
0x6ad6b0 IsClipboardFormatAvailable
0x6ad6b4 EmptyClipboard
0x6ad6b8 SetClipboardData
0x6ad6bc OpenClipboard
0x6ad6c0 GetClipboardData
0x6ad6c4 CloseClipboard
0x6ad6c8 wsprintfA
0x6ad6cc WaitForInputIdle
0x6ad6d0 IsDialogMessageA
0x6ad6d4 ScrollWindowEx
0x6ad6d8 SendDlgItemMessageA
0x6ad6dc MapWindowPoints
0x6ad6e0 AdjustWindowRectEx
0x6ad6e4 ScrollWindow
0x6ad6e8 GetScrollInfo
0x6ad6ec SetScrollInfo
0x6ad6f0 ShowScrollBar
0x6ad6f4 GetScrollPos
0x6ad6f8 RegisterClassA
0x6ad6fc CreateWindowExA
0x6ad700 GetClassLongA
0x6ad704 RemovePropA
0x6ad708 GetMessageTime
0x6ad70c GetLastActivePopup
0x6ad710 RegisterWindowMessageA
0x6ad714 GetWindowPlacement
0x6ad718 EndDialog
0x6ad71c CreateDialogIndirectParamA
0x6ad720 DestroyWindow
0x6ad724 EndPaint
0x6ad728 BeginPaint
0x6ad72c GetWindowTextLengthA
0x6ad730 wvsprintfA
0x6ad734 GetForegroundWindow
0x6ad738 GetNextDlgTabItem
0x6ad73c CharUpperA
0x6ad740 GetDoubleClickTime
0x6ad744 ClipCursor
0x6ad748 SetWindowTextA
0x6ad74c GetMenuItemCount
0x6ad750 GetMenuItemID
0x6ad754 GetMenuStringA
0x6ad758 GetMenuState
0x6ad75c GetTabbedTextExtentA
0x6ad760 DrawStateA
0x6ad764 GrayStringA
0x6ad768 TabbedTextOutA
0x6ad76c WindowFromDC
0x6ad770 EnumChildWindows
0x6ad774 GetWindowDC
0x6ad778 UnhookWindowsHookEx
0x6ad77c CallNextHookEx
0x6ad780 SetWindowsHookExA
0x6ad784 FrameRect
0x6ad788 GetPropA
0x6ad78c MoveWindow
0x6ad790 CallWindowProcA
0x6ad794 SetPropA
0x6ad798 DrawTextA
0x6ad79c UnregisterClassA
0x6ad7a0 GetWindowTextA
0x6ad7a4 FindWindowExA
0x6ad7a8 GetDlgItem
0x6ad7ac GetClassNameA
0x6ad7b0 ScreenToClient
0x6ad7b4 GetDesktopWindow
0x6ad7b8 WinHelpA
0x6ad7bc RedrawWindow
0x6ad7c0 GetCursor
GDI32.dll
0x6ad074 GetViewportExtEx
0x6ad078 ExtSelectClipRgn
0x6ad07c CopyMetaFileA
0x6ad080 GetCurrentObject
0x6ad084 RoundRect
0x6ad088 GetTextExtentPoint32A
0x6ad08c DPtoLP
0x6ad090 LPtoDP
0x6ad094 Rectangle
0x6ad098 Ellipse
0x6ad09c SetPixelV
0x6ad0a0 CreateCompatibleDC
0x6ad0a4 GetPixel
0x6ad0a8 BitBlt
0x6ad0ac StartPage
0x6ad0b0 StartDocA
0x6ad0b4 DeleteDC
0x6ad0b8 EndDoc
0x6ad0bc EndPage
0x6ad0c0 GetObjectA
0x6ad0c4 GetStockObject
0x6ad0c8 CreateFontIndirectA
0x6ad0cc CreateSolidBrush
0x6ad0d0 FillRgn
0x6ad0d4 CreateRectRgn
0x6ad0d8 CombineRgn
0x6ad0dc PatBlt
0x6ad0e0 CreatePen
0x6ad0e4 SelectObject
0x6ad0e8 CreatePatternBrush
0x6ad0ec CreateBitmap
0x6ad0f0 CreateBrushIndirect
0x6ad0f4 CreateDCA
0x6ad0f8 CreateCompatibleBitmap
0x6ad0fc GetPolyFillMode
0x6ad100 GetStretchBltMode
0x6ad104 GetROP2
0x6ad108 GetBkColor
0x6ad10c GetBkMode
0x6ad110 GetTextColor
0x6ad114 CreateRoundRectRgn
0x6ad118 CreateEllipticRgn
0x6ad11c PathToRegion
0x6ad120 EndPath
0x6ad124 BeginPath
0x6ad128 GetWindowOrgEx
0x6ad12c GetViewportOrgEx
0x6ad130 GetWindowExtEx
0x6ad134 GetDIBits
0x6ad138 RealizePalette
0x6ad13c SelectPalette
0x6ad140 StretchBlt
0x6ad144 CreatePalette
0x6ad148 GetSystemPaletteEntries
0x6ad14c CreateDIBitmap
0x6ad150 DeleteObject
0x6ad154 SelectClipRgn
0x6ad158 CreatePolygonRgn
0x6ad15c GetClipRgn
0x6ad160 SetStretchBltMode
0x6ad164 SetPixel
0x6ad168 CreateDIBSection
0x6ad16c CreateRectRgnIndirect
0x6ad170 SetBkColor
0x6ad174 SetBkMode
0x6ad178 SetTextColor
0x6ad17c SetWindowOrgEx
0x6ad180 SaveDC
0x6ad184 RestoreDC
0x6ad188 CreatePenIndirect
0x6ad18c PtVisible
0x6ad190 RectVisible
0x6ad194 TextOutA
0x6ad198 ExtTextOutA
0x6ad19c Escape
0x6ad1a0 GetTextMetricsA
0x6ad1a4 AbortDoc
0x6ad1a8 CreateFontA
0x6ad1ac SetBrushOrgEx
0x6ad1b0 SetDIBitsToDevice
0x6ad1b4 SetPolyFillMode
0x6ad1b8 SetROP2
0x6ad1bc SetMapMode
0x6ad1c0 SetViewportOrgEx
0x6ad1c4 OffsetViewportOrgEx
0x6ad1c8 SetViewportExtEx
0x6ad1cc ScaleViewportExtEx
0x6ad1d0 OffsetWindowOrgEx
0x6ad1d4 SetWindowExtEx
0x6ad1d8 ScaleWindowExtEx
0x6ad1dc GetClipBox
0x6ad1e0 ExcludeClipRect
0x6ad1e4 MoveToEx
0x6ad1e8 LineTo
0x6ad1ec GetDeviceCaps
MSIMG32.dll
0x6ad494 GradientFill
WINSPOOL.DRV
0x6ad820 ClosePrinter
0x6ad824 DocumentPropertiesA
0x6ad828 OpenPrinterA
comdlg32.dll
0x6ad8b0 GetFileTitleA
0x6ad8b4 PrintDlgA
0x6ad8b8 GetOpenFileNameA
0x6ad8bc ChooseFontA
0x6ad8c0 ChooseColorA
0x6ad8c4 GetSaveFileNameA
ADVAPI32.dll
0x6ad000 RegCreateKeyExA
0x6ad004 RegQueryValueA
0x6ad008 RegDeleteKeyA
0x6ad00c RegDeleteValueA
0x6ad010 RegSetValueExA
0x6ad014 RegOpenKeyExA
0x6ad018 RegQueryValueExA
0x6ad01c RegCloseKey
0x6ad020 RegEnumValueA
SHELL32.dll
0x6ad500 Shell_NotifyIconA
0x6ad504 ShellExecuteA
ole32.dll
0x6ad8cc CoTaskMemAlloc
0x6ad8d0 OleDuplicateData
0x6ad8d4 RevokeDragDrop
0x6ad8d8 CoLockObjectExternal
0x6ad8dc OleGetClipboard
0x6ad8e0 OleIsCurrentClipboard
0x6ad8e4 OleFlushClipboard
0x6ad8e8 OleSetClipboard
0x6ad8ec CoTaskMemFree
0x6ad8f0 ReleaseStgMedium
0x6ad8f4 CLSIDFromProgID
0x6ad8f8 OleInitialize
0x6ad8fc OleUninitialize
0x6ad900 CLSIDFromString
0x6ad904 CreateStreamOnHGlobal
0x6ad908 CoCreateInstance
0x6ad90c OleRun
0x6ad910 DoDragDrop
OLEAUT32.dll
0x6ad4a4 VarDateFromStr
0x6ad4a8 RegisterTypeLib
0x6ad4ac SafeArrayPutElement
0x6ad4b0 LHashValOfNameSys
0x6ad4b4 LoadTypeLib
0x6ad4b8 SafeArrayUnaccessData
0x6ad4bc SafeArrayAccessData
0x6ad4c0 SafeArrayGetElement
0x6ad4c4 VariantCopyInd
0x6ad4c8 VariantInit
0x6ad4cc SysAllocString
0x6ad4d0 SafeArrayDestroy
0x6ad4d4 SafeArrayCreate
0x6ad4d8 VariantClear
0x6ad4dc VariantChangeType
0x6ad4e0 SafeArrayGetUBound
0x6ad4e4 SafeArrayGetLBound
0x6ad4e8 SafeArrayGetDim
0x6ad4ec UnRegisterTypeLib
COMCTL32.dll
0x6ad034 ImageList_Duplicate
0x6ad038 ImageList_DrawIndirect
0x6ad03c ImageList_Draw
0x6ad040 ImageList_Read
0x6ad044 ImageList_LoadImageA
0x6ad048 ImageList_Create
0x6ad04c ImageList_Destroy
0x6ad050 None
0x6ad054 ImageList_AddMasked
0x6ad058 _TrackMouseEvent
0x6ad05c ImageList_ReplaceIcon
0x6ad060 ImageList_GetIcon
0x6ad064 ImageList_GetImageInfo
0x6ad068 ImageList_GetImageCount
0x6ad06c ImageList_SetBkColor
WSOCK32.dll
0x6ad8a4 shutdown
0x6ad8a8 getservbyname
WININET.dll
0x6ad7c8 InternetCloseHandle
EAT(Export Address Table) is none