ScreenShot
| Created | 2023.10.20 18:05 | Machine | s1_win7_x6401 |
| Filename | CCleaner.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | 15a712903d393839edde2bd426c16172 | ||
| sha256 | 46615ee15d060fbd0c1874a3a0179dcb5668cdc6d59b489a15d564e358e2c698 | ||
| ssdeep | 49152:iDjA6pGHZAMdkDi4pWzUro5tKqE9JKXLSdCFy8kwLsY1RIfH2cunBoc5YLN:Sd+sYWWcuBoc5m | ||
| imphash | 9f999bea432657b6693946ca0381ad25 | ||
| impfuzzy | 192:QBFYqQjA3GcqldB6UUadCqO+uiaFmGbu3c4c5cm+GHNlUgNdVTx/5R2zQjHu2:UpQjA2GawqzDaNy3XmyGH5Tt58zQjHu2 | ||
Network IP location
Signature (6cnts)
| Level | Description |
|---|---|
| notice | A process attempted to delay the analysis task. |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
| info | This executable has a PDB path |
Rules (9cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_1_Zero | Win32 Trojan Emotet | binaries (upload) |
| danger | Win32_Trojan_Emotet_2_Zero | Win32 Trojan Emotet | binaries (upload) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
VERSION.dll
0x1401da4e0 GetFileVersionInfoW
0x1401da4e8 VerQueryValueW
0x1401da4f0 GetFileVersionInfoSizeW
snmpapi.dll
0x1401da6d0 SnmpSvcGetUptime
0x1401da6d8 SnmpUtilOidNCmp
0x1401da6e0 SnmpUtilOidCpy
NETAPI32.dll
0x1401d9b58 NetApiBufferFree
0x1401d9b60 NetServerGetInfo
0x1401d9b68 NetWkstaGetInfo
0x1401d9b70 NetWkstaUserGetInfo
ODBC32.dll
0x1401d9b80 None
0x1401d9b88 None
0x1401d9b90 None
0x1401d9b98 None
0x1401d9ba0 None
0x1401d9ba8 None
KERNEL32.dll
0x1401d9560 OutputDebugStringW
0x1401d9568 RtlUnwindEx
0x1401d9570 GetConsoleCP
0x1401d9578 VirtualQuery
0x1401d9580 RtlPcToFileHeader
0x1401d9588 HeapQueryInformation
0x1401d9590 CreateThread
0x1401d9598 ExitThread
0x1401d95a0 FreeLibraryAndExitThread
0x1401d95a8 GetCommandLineA
0x1401d95b0 SetStdHandle
0x1401d95b8 GetCPInfo
0x1401d95c0 GetStringTypeW
0x1401d95c8 IsValidCodePage
0x1401d95d0 GetACP
0x1401d95d8 GetOEMCP
0x1401d95e0 IsValidLocale
0x1401d95e8 EnumSystemLocalesW
0x1401d95f0 FlsAlloc
0x1401d95f8 GetStartupInfoW
0x1401d9600 IsDebuggerPresent
0x1401d9608 InitializeSListHead
0x1401d9610 GetSystemTimeAsFileTime
0x1401d9618 WaitForSingleObjectEx
0x1401d9620 ResetEvent
0x1401d9628 IsProcessorFeaturePresent
0x1401d9630 SetUnhandledExceptionFilter
0x1401d9638 UnhandledExceptionFilter
0x1401d9640 RtlVirtualUnwind
0x1401d9648 RtlLookupFunctionEntry
0x1401d9650 RtlCaptureContext
0x1401d9658 GetUserDefaultLCID
0x1401d9660 GetTempFileNameW
0x1401d9668 SearchPathW
0x1401d9670 GetProfileIntW
0x1401d9678 GetTickCount64
0x1401d9680 GetTempPathW
0x1401d9688 VerifyVersionInfoW
0x1401d9690 VerSetConditionMask
0x1401d9698 GetWindowsDirectoryW
0x1401d96a0 GetCurrentDirectoryW
0x1401d96a8 lstrcpyW
0x1401d96b0 VirtualProtect
0x1401d96b8 GetUserDefaultUILanguage
0x1401d96c0 GetLocaleInfoW
0x1401d96c8 GetFileTime
0x1401d96d0 GetFileSizeEx
0x1401d96d8 GetFileAttributesExW
0x1401d96e0 lstrcmpiW
0x1401d96e8 VirtualAlloc
0x1401d96f0 DuplicateHandle
0x1401d96f8 UnlockFile
0x1401d9700 LockFile
0x1401d9708 FlushFileBuffers
0x1401d9710 ResumeThread
0x1401d9718 SetThreadPriority
0x1401d9720 CreateEventW
0x1401d9728 WaitForSingleObject
0x1401d9730 SetEvent
0x1401d9738 GlobalFlags
0x1401d9740 GlobalFindAtomW
0x1401d9748 GlobalAddAtomW
0x1401d9750 lstrcmpW
0x1401d9758 GlobalDeleteAtom
0x1401d9760 GetCurrentThreadId
0x1401d9768 GlobalGetAtomNameW
0x1401d9770 lstrcmpA
0x1401d9778 GetCurrentProcessId
0x1401d9780 LocalReAlloc
0x1401d9788 GlobalHandle
0x1401d9790 GlobalReAlloc
0x1401d9798 TlsFree
0x1401d97a0 TlsSetValue
0x1401d97a8 TlsGetValue
0x1401d97b0 TlsAlloc
0x1401d97b8 InitializeCriticalSection
0x1401d97c0 QueryActCtxW
0x1401d97c8 FindActCtxSectionStringW
0x1401d97d0 DeactivateActCtx
0x1401d97d8 ActivateActCtx
0x1401d97e0 CreateActCtxW
0x1401d97e8 GetModuleHandleExW
0x1401d97f0 InitializeCriticalSectionAndSpinCount
0x1401d97f8 LeaveCriticalSection
0x1401d9800 EnterCriticalSection
0x1401d9808 OutputDebugStringA
0x1401d9810 CompareStringW
0x1401d9818 CopyFileW
0x1401d9820 GlobalSize
0x1401d9828 SystemTimeToTzSpecificLocalTime
0x1401d9830 FreeLibrary
0x1401d9838 DeleteCriticalSection
0x1401d9840 InitializeCriticalSectionEx
0x1401d9848 GetFileType
0x1401d9850 GetStdHandle
0x1401d9858 WideCharToMultiByte
0x1401d9860 FindResourceExW
0x1401d9868 GetProcessHeap
0x1401d9870 HeapSize
0x1401d9878 HeapFree
0x1401d9880 HeapReAlloc
0x1401d9888 HeapAlloc
0x1401d9890 HeapDestroy
0x1401d9898 SetFilePointer
0x1401d98a0 SetLastError
0x1401d98a8 GetSystemInfo
0x1401d98b0 LoadLibraryW
0x1401d98b8 LoadLibraryExW
0x1401d98c0 IsWow64Process
0x1401d98c8 GetVersionExW
0x1401d98d0 DecodePointer
0x1401d98d8 EncodePointer
0x1401d98e0 GetFileAttributesW
0x1401d98e8 DeleteFileW
0x1401d98f0 GetEnvironmentStringsW
0x1401d98f8 GetCommandLineW
0x1401d9900 GetFullPathNameW
0x1401d9908 GetModuleFileNameW
0x1401d9910 OpenProcess
0x1401d9918 GetExitCodeProcess
0x1401d9920 TerminateProcess
0x1401d9928 ExitProcess
0x1401d9930 GetCurrentProcess
0x1401d9938 WaitForMultipleObjects
0x1401d9940 MulDiv
0x1401d9948 GlobalFree
0x1401d9950 GlobalLock
0x1401d9958 GlobalUnlock
0x1401d9960 GlobalAlloc
0x1401d9968 FindResourceW
0x1401d9970 SizeofResource
0x1401d9978 LockResource
0x1401d9980 LoadResource
0x1401d9988 GetProcAddress
0x1401d9990 GetModuleHandleW
0x1401d9998 Sleep
0x1401d99a0 CreateDirectoryW
0x1401d99a8 MultiByteToWideChar
0x1401d99b0 GetTimeFormatW
0x1401d99b8 GetDateFormatW
0x1401d99c0 SystemTimeToFileTime
0x1401d99c8 FileTimeToSystemTime
0x1401d99d0 GetComputerNameW
0x1401d99d8 GetNativeSystemInfo
0x1401d99e0 GetTickCount
0x1401d99e8 GlobalMemoryStatusEx
0x1401d99f0 QueryPerformanceFrequency
0x1401d99f8 QueryPerformanceCounter
0x1401d9a00 SetErrorMode
0x1401d9a08 ReadFile
0x1401d9a10 GetVolumeInformationW
0x1401d9a18 GetLogicalDriveStringsW
0x1401d9a20 GetFileSize
0x1401d9a28 GetDriveTypeW
0x1401d9a30 GetDiskFreeSpaceExW
0x1401d9a38 FindFirstFileW
0x1401d9a40 FindClose
0x1401d9a48 FileTimeToLocalFileTime
0x1401d9a50 ExpandEnvironmentStringsW
0x1401d9a58 GetEnvironmentVariableW
0x1401d9a60 FormatMessageW
0x1401d9a68 LocalFree
0x1401d9a70 LocalAlloc
0x1401d9a78 GetSystemDirectoryW
0x1401d9a80 GetLocalTime
0x1401d9a88 GetLastError
0x1401d9a90 CloseHandle
0x1401d9a98 WriteFile
0x1401d9aa0 SetEndOfFile
0x1401d9aa8 CreateFileW
0x1401d9ab0 FlsGetValue
0x1401d9ab8 FlsSetValue
0x1401d9ac0 FlsFree
0x1401d9ac8 LCMapStringW
0x1401d9ad0 GetTimeZoneInformation
0x1401d9ad8 GetConsoleMode
0x1401d9ae0 SetConsoleMode
0x1401d9ae8 ReadConsoleInputW
0x1401d9af0 ReadConsoleW
0x1401d9af8 GetConsoleOutputCP
0x1401d9b00 SetFilePointerEx
0x1401d9b08 FindFirstFileExW
0x1401d9b10 FindNextFileW
0x1401d9b18 FreeEnvironmentStringsW
0x1401d9b20 SetEnvironmentVariableW
0x1401d9b28 WriteConsoleW
0x1401d9b30 RaiseException
USER32.dll
0x1401d9d10 CallNextHookEx
0x1401d9d18 SetWindowsHookExW
0x1401d9d20 GetWindow
0x1401d9d28 GetTopWindow
0x1401d9d30 GetClassLongPtrW
0x1401d9d38 EqualRect
0x1401d9d40 CopyRect
0x1401d9d48 RemovePropW
0x1401d9d50 ShowScrollBar
0x1401d9d58 GetScrollRange
0x1401d9d60 SetScrollRange
0x1401d9d68 GetScrollPos
0x1401d9d70 SetScrollPos
0x1401d9d78 ScrollWindow
0x1401d9d80 RedrawWindow
0x1401d9d88 ValidateRect
0x1401d9d90 GetForegroundWindow
0x1401d9d98 SetActiveWindow
0x1401d9da0 SetMenu
0x1401d9da8 GetCapture
0x1401d9db0 GetKeyState
0x1401d9db8 GetDlgCtrlID
0x1401d9dc0 IsChild
0x1401d9dc8 IsMenu
0x1401d9dd0 IsWindow
0x1401d9dd8 GetClassInfoExW
0x1401d9de0 GetClassInfoW
0x1401d9de8 RegisterClassW
0x1401d9df0 GetMessageTime
0x1401d9df8 GetMessagePos
0x1401d9e00 PeekMessageW
0x1401d9e08 RegisterWindowMessageW
0x1401d9e10 GetLastActivePopup
0x1401d9e18 GetWindowThreadProcessId
0x1401d9e20 IsWindowEnabled
0x1401d9e28 UnhookWindowsHookEx
0x1401d9e30 LoadBitmapW
0x1401d9e38 GetMenuCheckMarkDimensions
0x1401d9e40 SetMenuItemBitmaps
0x1401d9e48 GetFocus
0x1401d9e50 RemoveMenu
0x1401d9e58 AppendMenuW
0x1401d9e60 InsertMenuW
0x1401d9e68 GetMenuItemCount
0x1401d9e70 GetMenuItemID
0x1401d9e78 GetMenuState
0x1401d9e80 GetMenuStringW
0x1401d9e88 DialogBoxIndirectParamW
0x1401d9e90 DrawIconEx
0x1401d9e98 LoadImageW
0x1401d9ea0 EnableMenuItem
0x1401d9ea8 CheckMenuItem
0x1401d9eb0 SetCapture
0x1401d9eb8 EmptyClipboard
0x1401d9ec0 RegisterClipboardFormatW
0x1401d9ec8 SetClipboardData
0x1401d9ed0 CloseClipboard
0x1401d9ed8 OpenClipboard
0x1401d9ee0 DrawEdge
0x1401d9ee8 MonitorFromWindow
0x1401d9ef0 IsDialogMessageW
0x1401d9ef8 LoadIconW
0x1401d9f00 LoadCursorW
0x1401d9f08 CheckMenuRadioItem
0x1401d9f10 GetClassNameW
0x1401d9f18 EnumChildWindows
0x1401d9f20 GetParent
0x1401d9f28 SetWindowLongPtrW
0x1401d9f30 GetWindowLongPtrW
0x1401d9f38 SetWindowLongW
0x1401d9f40 GetWindowLongW
0x1401d9f48 PtInRect
0x1401d9f50 UnionRect
0x1401d9f58 IntersectRect
0x1401d9f60 RealChildWindowFromPoint
0x1401d9f68 DestroyIcon
0x1401d9f70 SetScrollInfo
0x1401d9f78 FrameRect
0x1401d9f80 DrawTextExW
0x1401d9f88 MapWindowPoints
0x1401d9f90 ScreenToClient
0x1401d9f98 GetCursorPos
0x1401d9fa0 SetCursor
0x1401d9fa8 GrayStringW
0x1401d9fb0 TabbedTextOutW
0x1401d9fb8 GetWindowDC
0x1401d9fc0 DestroyMenu
0x1401d9fc8 CopyImage
0x1401d9fd0 MessageBoxW
0x1401d9fd8 AdjustWindowRectEx
0x1401d9fe0 GetWindowRect
0x1401d9fe8 GetClientRect
0x1401d9ff0 GetWindowTextLengthW
0x1401d9ff8 GetWindowTextW
0x1401da000 GetPropW
0x1401da008 SetPropW
0x1401da010 InvalidateRect
0x1401da018 EndPaint
0x1401da020 BeginPaint
0x1401da028 SetForegroundWindow
0x1401da030 UpdateWindow
0x1401da038 SetMenuDefaultItem
0x1401da040 SetMenuItemInfoW
0x1401da048 GetMenuItemInfoW
0x1401da050 TrackPopupMenu
0x1401da058 GetSubMenu
0x1401da060 GetMenu
0x1401da068 LoadMenuW
0x1401da070 TranslateAcceleratorW
0x1401da078 LoadAcceleratorsW
0x1401da080 EnableWindow
0x1401da088 KillTimer
0x1401da090 SetTimer
0x1401da098 GetActiveWindow
0x1401da0a0 SetFocus
0x1401da0a8 DefDlgProcW
0x1401da0b0 IsDlgButtonChecked
0x1401da0b8 CheckRadioButton
0x1401da0c0 CheckDlgButton
0x1401da0c8 GetDlgItemTextW
0x1401da0d0 SetDlgItemTextW
0x1401da0d8 GetDlgItem
0x1401da0e0 EndDialog
0x1401da0e8 DialogBoxParamW
0x1401da0f0 CreateDialogParamW
0x1401da0f8 IsZoomed
0x1401da100 IsIconic
0x1401da108 IsWindowVisible
0x1401da110 EndDeferWindowPos
0x1401da118 DeferWindowPos
0x1401da120 BeginDeferWindowPos
0x1401da128 SetWindowPlacement
0x1401da130 GetWindowPlacement
0x1401da138 SetWindowPos
0x1401da140 MoveWindow
0x1401da148 ShowWindow
0x1401da150 DestroyWindow
0x1401da158 CreateWindowExW
0x1401da160 SendDlgItemMessageA
0x1401da168 SetRectEmpty
0x1401da170 CreateDialogIndirectParamW
0x1401da178 GetNextDlgTabItem
0x1401da180 GetAsyncKeyState
0x1401da188 MapDialogRect
0x1401da190 TrackMouseEvent
0x1401da198 ShowOwnedPopups
0x1401da1a0 DeleteMenu
0x1401da1a8 CharUpperBuffW
0x1401da1b0 GetNextDlgGroupItem
0x1401da1b8 ReleaseCapture
0x1401da1c0 WindowFromPoint
0x1401da1c8 DrawFocusRect
0x1401da1d0 GetScrollInfo
0x1401da1d8 RegisterClassExW
0x1401da1e0 CallWindowProcW
0x1401da1e8 PostQuitMessage
0x1401da1f0 WinHelpW
0x1401da1f8 ClientToScreen
0x1401da200 CharUpperW
0x1401da208 GetDesktopWindow
0x1401da210 IsRectEmpty
0x1401da218 GetIconInfo
0x1401da220 MessageBeep
0x1401da228 EnableScrollBar
0x1401da230 HideCaret
0x1401da238 InvertRect
0x1401da240 NotifyWinEvent
0x1401da248 CreatePopupMenu
0x1401da250 GetMenuDefaultItem
0x1401da258 MapVirtualKeyW
0x1401da260 GetSystemMetrics
0x1401da268 GetDC
0x1401da270 ReleaseDC
0x1401da278 GetSysColor
0x1401da280 GetSysColorBrush
0x1401da288 SetSysColors
0x1401da290 FillRect
0x1401da298 InflateRect
0x1401da2a0 OffsetRect
0x1401da2a8 SystemParametersInfoW
0x1401da2b0 MonitorFromPoint
0x1401da2b8 GetMonitorInfoW
0x1401da2c0 EnumDisplayMonitors
0x1401da2c8 GetProcessWindowStation
0x1401da2d0 GetUserObjectInformationW
0x1401da2d8 PostThreadMessageW
0x1401da2e0 SendMessageW
0x1401da2e8 SetWindowTextW
0x1401da2f0 DrawTextW
0x1401da2f8 LoadStringW
0x1401da300 DrawFrameControl
0x1401da308 GetMessageW
0x1401da310 TranslateMessage
0x1401da318 DispatchMessageW
0x1401da320 PostMessageW
0x1401da328 DefWindowProcW
0x1401da330 GetKeyNameTextW
0x1401da338 SetLayeredWindowAttributes
0x1401da340 DrawStateW
0x1401da348 SetClassLongPtrW
0x1401da350 SetWindowRgn
0x1401da358 SetParent
0x1401da360 GetSystemMenu
0x1401da368 BringWindowToTop
0x1401da370 SetCursorPos
0x1401da378 CopyIcon
0x1401da380 DrawIcon
0x1401da388 UpdateLayeredWindow
0x1401da390 InsertMenuItemW
0x1401da398 UnpackDDElParam
0x1401da3a0 ReuseDDElParam
0x1401da3a8 GetComboBoxInfo
0x1401da3b0 WaitMessage
0x1401da3b8 GetKeyboardLayout
0x1401da3c0 IsCharLowerW
0x1401da3c8 MapVirtualKeyExW
0x1401da3d0 ToUnicodeEx
0x1401da3d8 GetKeyboardState
0x1401da3e0 CreateAcceleratorTableW
0x1401da3e8 DestroyAcceleratorTable
0x1401da3f0 CopyAcceleratorTableW
0x1401da3f8 SetRect
0x1401da400 LockWindowUpdate
0x1401da408 GetDoubleClickTime
0x1401da410 ModifyMenuW
0x1401da418 DestroyCursor
0x1401da420 GetWindowRgn
0x1401da428 CreateMenu
0x1401da430 SubtractRect
0x1401da438 TranslateMDISysAccel
0x1401da440 DefMDIChildProcW
0x1401da448 DefFrameProcW
0x1401da450 DrawMenuBar
0x1401da458 GetUpdateRect
0x1401da460 IsClipboardFormatAvailable
0x1401da468 ChildWindowFromPoint
GDI32.dll
0x1401d91b8 GetWindowExtEx
0x1401d91c0 IntersectClipRect
0x1401d91c8 PtVisible
0x1401d91d0 RectVisible
0x1401d91d8 RestoreDC
0x1401d91e0 SaveDC
0x1401d91e8 ExtSelectClipRgn
0x1401d91f0 SetLayout
0x1401d91f8 GetLayout
0x1401d9200 SetPolyFillMode
0x1401d9208 SetROP2
0x1401d9210 SetTextAlign
0x1401d9218 TextOutW
0x1401d9220 ExtTextOutW
0x1401d9228 SetViewportExtEx
0x1401d9230 SetViewportOrgEx
0x1401d9238 SetWindowExtEx
0x1401d9240 SetWindowOrgEx
0x1401d9248 OffsetViewportOrgEx
0x1401d9250 OffsetWindowOrgEx
0x1401d9258 ScaleViewportExtEx
0x1401d9260 ScaleWindowExtEx
0x1401d9268 GetTextExtentPoint32W
0x1401d9270 CombineRgn
0x1401d9278 CreateRectRgnIndirect
0x1401d9280 PatBlt
0x1401d9288 GetViewportExtEx
0x1401d9290 DPtoLP
0x1401d9298 GetTextMetricsW
0x1401d92a0 EnumFontFamiliesExW
0x1401d92a8 GetNearestPaletteIndex
0x1401d92b0 GetBkColor
0x1401d92b8 CreateDIBitmap
0x1401d92c0 EnumFontFamiliesW
0x1401d92c8 GetTextCharsetInfo
0x1401d92d0 CreateEllipticRgn
0x1401d92d8 Ellipse
0x1401d92e0 GetTextColor
0x1401d92e8 CreatePolygonRgn
0x1401d92f0 Polygon
0x1401d92f8 Polyline
0x1401d9300 CreateRoundRectRgn
0x1401d9308 LPtoDP
0x1401d9310 Rectangle
0x1401d9318 GetRgnBox
0x1401d9320 OffsetRgn
0x1401d9328 RoundRect
0x1401d9330 FillRgn
0x1401d9338 FrameRgn
0x1401d9340 GetBoundsRect
0x1401d9348 PtInRegion
0x1401d9350 ExtFloodFill
0x1401d9358 SetPaletteEntries
0x1401d9360 SetPixelV
0x1401d9368 GetWindowOrgEx
0x1401d9370 GetViewportOrgEx
0x1401d9378 GetTextFaceW
0x1401d9380 GetStockObject
0x1401d9388 GetPixel
0x1401d9390 GetObjectType
0x1401d9398 GetClipBox
0x1401d93a0 ExcludeClipRect
0x1401d93a8 Escape
0x1401d93b0 CreatePatternBrush
0x1401d93b8 CreateHatchBrush
0x1401d93c0 SetBkColor
0x1401d93c8 CreateBitmap
0x1401d93d0 CreateDCW
0x1401d93d8 CopyMetaFileW
0x1401d93e0 EndPage
0x1401d93e8 StartPage
0x1401d93f0 EndDoc
0x1401d93f8 StartDocW
0x1401d9400 SetWorldTransform
0x1401d9408 SetMapMode
0x1401d9410 SetGraphicsMode
0x1401d9418 CreateFontW
0x1401d9420 UpdateColors
0x1401d9428 SetTextColor
0x1401d9430 EnumFontsW
0x1401d9438 CreateFontIndirectW
0x1401d9440 MoveToEx
0x1401d9448 SetPixel
0x1401d9450 LineTo
0x1401d9458 CreatePen
0x1401d9460 GdiFlush
0x1401d9468 UnrealizeObject
0x1401d9470 SetBrushOrgEx
0x1401d9478 GetObjectW
0x1401d9480 SetDIBColorTable
0x1401d9488 CreateDIBSection
0x1401d9490 SetStretchBltMode
0x1401d9498 StretchBlt
0x1401d94a0 SetBkMode
0x1401d94a8 SelectPalette
0x1401d94b0 SelectObject
0x1401d94b8 SelectClipRgn
0x1401d94c0 RealizePalette
0x1401d94c8 GetSystemPaletteEntries
0x1401d94d0 GetPaletteEntries
0x1401d94d8 GetNearestColor
0x1401d94e0 GetDeviceCaps
0x1401d94e8 DeleteObject
0x1401d94f0 DeleteDC
0x1401d94f8 CreateSolidBrush
0x1401d9500 CreateRectRgn
0x1401d9508 CreatePalette
0x1401d9510 CreateCompatibleDC
0x1401d9518 CreateCompatibleBitmap
0x1401d9520 SetRectRgn
0x1401d9528 GetDIBits
0x1401d9530 BitBlt
MSIMG32.dll
0x1401d9b40 TransparentBlt
0x1401d9b48 AlphaBlend
COMDLG32.dll
0x1401d9188 CommDlgExtendedError
0x1401d9190 ChooseColorW
0x1401d9198 GetSaveFileNameW
0x1401d91a0 GetOpenFileNameW
0x1401d91a8 PrintDlgW
WINSPOOL.DRV
0x1401da510 DocumentPropertiesW
0x1401da518 OpenPrinterW
0x1401da520 ClosePrinter
ADVAPI32.dll
0x1401d9000 RegisterServiceCtrlHandlerW
0x1401d9008 RegOpenKeyExW
0x1401d9010 RegQueryValueExW
0x1401d9018 LsaQueryInformationPolicy
0x1401d9020 LsaOpenPolicy
0x1401d9028 LsaClose
0x1401d9030 LsaFreeMemory
0x1401d9038 SaferComputeTokenFromLevel
0x1401d9040 SaferIdentifyLevel
0x1401d9048 SaferCloseLevel
0x1401d9050 RegCreateKeyW
0x1401d9058 RegEnumKeyW
0x1401d9060 RegGetValueW
0x1401d9068 RegOpenKeyExA
0x1401d9070 RegSetValueExA
0x1401d9078 RegQueryValueExA
0x1401d9080 RegEnumValueW
0x1401d9088 RegDeleteKeyW
0x1401d9090 RegCreateKeyExW
0x1401d9098 StartServiceW
0x1401d90a0 StartServiceCtrlDispatcherW
0x1401d90a8 SetServiceStatus
0x1401d90b0 RegCloseKey
0x1401d90b8 QueryServiceStatus
0x1401d90c0 OpenServiceW
0x1401d90c8 OpenSCManagerW
0x1401d90d0 DeleteService
0x1401d90d8 CreateServiceW
0x1401d90e0 CloseServiceHandle
0x1401d90e8 RegOpenKeyW
0x1401d90f0 RevertToSelf
0x1401d90f8 ImpersonateLoggedOnUser
0x1401d9100 GetTokenInformation
0x1401d9108 FreeSid
0x1401d9110 EqualSid
0x1401d9118 AllocateAndInitializeSid
0x1401d9120 OpenProcessToken
0x1401d9128 CreateProcessAsUserW
0x1401d9130 RegSetValueExW
0x1401d9138 RegDeleteValueW
0x1401d9140 RegEnumKeyExW
0x1401d9148 GetUserNameW
0x1401d9150 ReadEventLogW
0x1401d9158 OpenEventLogW
0x1401d9160 CloseEventLog
SHELL32.dll
0x1401d9c78 SHGetFileInfoW
0x1401d9c80 SHChangeNotify
0x1401d9c88 Shell_NotifyIconW
0x1401d9c90 ShellExecuteW
0x1401d9c98 SHGetPathFromIDListW
0x1401d9ca0 DragFinish
0x1401d9ca8 SHBrowseForFolderW
0x1401d9cb0 SHAppBarMessage
0x1401d9cb8 DragQueryFileW
0x1401d9cc0 SHGetDesktopFolder
0x1401d9cc8 SHGetSpecialFolderLocation
COMCTL32.dll
0x1401d9170 CreateToolbarEx
0x1401d9178 None
SHLWAPI.dll
0x1401d9cd8 PathFindExtensionW
0x1401d9ce0 PathStripToRootW
0x1401d9ce8 PathIsUNCW
0x1401d9cf0 PathFindFileNameW
0x1401d9cf8 PathRemoveFileSpecW
0x1401d9d00 StrFormatKBSizeW
UxTheme.dll
0x1401da478 DrawThemeBackground
0x1401da480 GetThemeColor
0x1401da488 GetThemePartSize
0x1401da490 DrawThemeParentBackground
0x1401da498 DrawThemeText
0x1401da4a0 GetThemeSysColor
0x1401da4a8 IsThemeBackgroundPartiallyTransparent
0x1401da4b0 IsAppThemed
0x1401da4b8 GetWindowTheme
0x1401da4c0 OpenThemeData
0x1401da4c8 CloseThemeData
0x1401da4d0 GetCurrentThemeName
ole32.dll
0x1401da5f8 CoInitializeEx
0x1401da600 DoDragDrop
0x1401da608 OleGetClipboard
0x1401da610 CoLockObjectExternal
0x1401da618 RegisterDragDrop
0x1401da620 RevokeDragDrop
0x1401da628 OleLockRunning
0x1401da630 OleCreateMenuDescriptor
0x1401da638 OleDestroyMenuDescriptor
0x1401da640 OleTranslateAccelerator
0x1401da648 IsAccelerator
0x1401da650 CoDisconnectObject
0x1401da658 ReleaseStgMedium
0x1401da660 OleDuplicateData
0x1401da668 CoTaskMemFree
0x1401da670 CoTaskMemAlloc
0x1401da678 CoSetProxyBlanket
0x1401da680 CoInitializeSecurity
0x1401da688 OleInitialize
0x1401da690 CreateILockBytesOnHGlobal
0x1401da698 StgCreateDocfileOnILockBytes
0x1401da6a0 CreateStreamOnHGlobal
0x1401da6a8 OleRun
0x1401da6b0 CoInitialize
0x1401da6b8 CoCreateInstance
0x1401da6c0 CoUninitialize
OLEAUT32.dll
0x1401d9bd8 VariantTimeToSystemTime
0x1401d9be0 SysAllocStringLen
0x1401d9be8 VarBstrFromDate
0x1401d9bf0 VariantClear
0x1401d9bf8 VariantInit
0x1401d9c00 LoadTypeLib
0x1401d9c08 VariantChangeType
0x1401d9c10 SafeArrayGetElement
0x1401d9c18 SafeArrayGetLBound
0x1401d9c20 SafeArrayGetUBound
0x1401d9c28 SysStringLen
0x1401d9c30 VariantCopy
0x1401d9c38 OleLoadPicture
0x1401d9c40 SystemTimeToVariantTime
0x1401d9c48 SysAllocStringByteLen
0x1401d9c50 GetErrorInfo
0x1401d9c58 SysStringByteLen
0x1401d9c60 SysFreeString
0x1401d9c68 SysAllocString
WS2_32.dll
0x1401da530 WSAStartup
gdiplus.dll
0x1401da540 GdipCreateFromHDC
0x1401da548 GdipCreateBitmapFromHBITMAP
0x1401da550 GdipDrawImageI
0x1401da558 GdipDeleteGraphics
0x1401da560 GdipBitmapUnlockBits
0x1401da568 GdipBitmapLockBits
0x1401da570 GdipCreateBitmapFromScan0
0x1401da578 GdipCreateBitmapFromStream
0x1401da580 GdipGetImagePaletteSize
0x1401da588 GdipGetImagePalette
0x1401da590 GdipGetImagePixelFormat
0x1401da598 GdipGetImageHeight
0x1401da5a0 GdipGetImageWidth
0x1401da5a8 GdipGetImageGraphicsContext
0x1401da5b0 GdipDisposeImage
0x1401da5b8 GdipCloneImage
0x1401da5c0 GdiplusStartup
0x1401da5c8 GdipFree
0x1401da5d0 GdipAlloc
0x1401da5d8 GdiplusShutdown
0x1401da5e0 GdipDrawImageRectI
0x1401da5e8 GdipSetInterpolationMode
OLEACC.dll
0x1401d9bb8 AccessibleObjectFromWindow
0x1401d9bc0 LresultFromObject
0x1401d9bc8 CreateStdAccessibleObject
IMM32.dll
0x1401d9540 ImmReleaseContext
0x1401d9548 ImmGetOpenStatus
0x1401d9550 ImmGetContext
WINMM.dll
0x1401da500 PlaySoundW
EAT(Export Address Table) is none
VERSION.dll
0x1401da4e0 GetFileVersionInfoW
0x1401da4e8 VerQueryValueW
0x1401da4f0 GetFileVersionInfoSizeW
snmpapi.dll
0x1401da6d0 SnmpSvcGetUptime
0x1401da6d8 SnmpUtilOidNCmp
0x1401da6e0 SnmpUtilOidCpy
NETAPI32.dll
0x1401d9b58 NetApiBufferFree
0x1401d9b60 NetServerGetInfo
0x1401d9b68 NetWkstaGetInfo
0x1401d9b70 NetWkstaUserGetInfo
ODBC32.dll
0x1401d9b80 None
0x1401d9b88 None
0x1401d9b90 None
0x1401d9b98 None
0x1401d9ba0 None
0x1401d9ba8 None
KERNEL32.dll
0x1401d9560 OutputDebugStringW
0x1401d9568 RtlUnwindEx
0x1401d9570 GetConsoleCP
0x1401d9578 VirtualQuery
0x1401d9580 RtlPcToFileHeader
0x1401d9588 HeapQueryInformation
0x1401d9590 CreateThread
0x1401d9598 ExitThread
0x1401d95a0 FreeLibraryAndExitThread
0x1401d95a8 GetCommandLineA
0x1401d95b0 SetStdHandle
0x1401d95b8 GetCPInfo
0x1401d95c0 GetStringTypeW
0x1401d95c8 IsValidCodePage
0x1401d95d0 GetACP
0x1401d95d8 GetOEMCP
0x1401d95e0 IsValidLocale
0x1401d95e8 EnumSystemLocalesW
0x1401d95f0 FlsAlloc
0x1401d95f8 GetStartupInfoW
0x1401d9600 IsDebuggerPresent
0x1401d9608 InitializeSListHead
0x1401d9610 GetSystemTimeAsFileTime
0x1401d9618 WaitForSingleObjectEx
0x1401d9620 ResetEvent
0x1401d9628 IsProcessorFeaturePresent
0x1401d9630 SetUnhandledExceptionFilter
0x1401d9638 UnhandledExceptionFilter
0x1401d9640 RtlVirtualUnwind
0x1401d9648 RtlLookupFunctionEntry
0x1401d9650 RtlCaptureContext
0x1401d9658 GetUserDefaultLCID
0x1401d9660 GetTempFileNameW
0x1401d9668 SearchPathW
0x1401d9670 GetProfileIntW
0x1401d9678 GetTickCount64
0x1401d9680 GetTempPathW
0x1401d9688 VerifyVersionInfoW
0x1401d9690 VerSetConditionMask
0x1401d9698 GetWindowsDirectoryW
0x1401d96a0 GetCurrentDirectoryW
0x1401d96a8 lstrcpyW
0x1401d96b0 VirtualProtect
0x1401d96b8 GetUserDefaultUILanguage
0x1401d96c0 GetLocaleInfoW
0x1401d96c8 GetFileTime
0x1401d96d0 GetFileSizeEx
0x1401d96d8 GetFileAttributesExW
0x1401d96e0 lstrcmpiW
0x1401d96e8 VirtualAlloc
0x1401d96f0 DuplicateHandle
0x1401d96f8 UnlockFile
0x1401d9700 LockFile
0x1401d9708 FlushFileBuffers
0x1401d9710 ResumeThread
0x1401d9718 SetThreadPriority
0x1401d9720 CreateEventW
0x1401d9728 WaitForSingleObject
0x1401d9730 SetEvent
0x1401d9738 GlobalFlags
0x1401d9740 GlobalFindAtomW
0x1401d9748 GlobalAddAtomW
0x1401d9750 lstrcmpW
0x1401d9758 GlobalDeleteAtom
0x1401d9760 GetCurrentThreadId
0x1401d9768 GlobalGetAtomNameW
0x1401d9770 lstrcmpA
0x1401d9778 GetCurrentProcessId
0x1401d9780 LocalReAlloc
0x1401d9788 GlobalHandle
0x1401d9790 GlobalReAlloc
0x1401d9798 TlsFree
0x1401d97a0 TlsSetValue
0x1401d97a8 TlsGetValue
0x1401d97b0 TlsAlloc
0x1401d97b8 InitializeCriticalSection
0x1401d97c0 QueryActCtxW
0x1401d97c8 FindActCtxSectionStringW
0x1401d97d0 DeactivateActCtx
0x1401d97d8 ActivateActCtx
0x1401d97e0 CreateActCtxW
0x1401d97e8 GetModuleHandleExW
0x1401d97f0 InitializeCriticalSectionAndSpinCount
0x1401d97f8 LeaveCriticalSection
0x1401d9800 EnterCriticalSection
0x1401d9808 OutputDebugStringA
0x1401d9810 CompareStringW
0x1401d9818 CopyFileW
0x1401d9820 GlobalSize
0x1401d9828 SystemTimeToTzSpecificLocalTime
0x1401d9830 FreeLibrary
0x1401d9838 DeleteCriticalSection
0x1401d9840 InitializeCriticalSectionEx
0x1401d9848 GetFileType
0x1401d9850 GetStdHandle
0x1401d9858 WideCharToMultiByte
0x1401d9860 FindResourceExW
0x1401d9868 GetProcessHeap
0x1401d9870 HeapSize
0x1401d9878 HeapFree
0x1401d9880 HeapReAlloc
0x1401d9888 HeapAlloc
0x1401d9890 HeapDestroy
0x1401d9898 SetFilePointer
0x1401d98a0 SetLastError
0x1401d98a8 GetSystemInfo
0x1401d98b0 LoadLibraryW
0x1401d98b8 LoadLibraryExW
0x1401d98c0 IsWow64Process
0x1401d98c8 GetVersionExW
0x1401d98d0 DecodePointer
0x1401d98d8 EncodePointer
0x1401d98e0 GetFileAttributesW
0x1401d98e8 DeleteFileW
0x1401d98f0 GetEnvironmentStringsW
0x1401d98f8 GetCommandLineW
0x1401d9900 GetFullPathNameW
0x1401d9908 GetModuleFileNameW
0x1401d9910 OpenProcess
0x1401d9918 GetExitCodeProcess
0x1401d9920 TerminateProcess
0x1401d9928 ExitProcess
0x1401d9930 GetCurrentProcess
0x1401d9938 WaitForMultipleObjects
0x1401d9940 MulDiv
0x1401d9948 GlobalFree
0x1401d9950 GlobalLock
0x1401d9958 GlobalUnlock
0x1401d9960 GlobalAlloc
0x1401d9968 FindResourceW
0x1401d9970 SizeofResource
0x1401d9978 LockResource
0x1401d9980 LoadResource
0x1401d9988 GetProcAddress
0x1401d9990 GetModuleHandleW
0x1401d9998 Sleep
0x1401d99a0 CreateDirectoryW
0x1401d99a8 MultiByteToWideChar
0x1401d99b0 GetTimeFormatW
0x1401d99b8 GetDateFormatW
0x1401d99c0 SystemTimeToFileTime
0x1401d99c8 FileTimeToSystemTime
0x1401d99d0 GetComputerNameW
0x1401d99d8 GetNativeSystemInfo
0x1401d99e0 GetTickCount
0x1401d99e8 GlobalMemoryStatusEx
0x1401d99f0 QueryPerformanceFrequency
0x1401d99f8 QueryPerformanceCounter
0x1401d9a00 SetErrorMode
0x1401d9a08 ReadFile
0x1401d9a10 GetVolumeInformationW
0x1401d9a18 GetLogicalDriveStringsW
0x1401d9a20 GetFileSize
0x1401d9a28 GetDriveTypeW
0x1401d9a30 GetDiskFreeSpaceExW
0x1401d9a38 FindFirstFileW
0x1401d9a40 FindClose
0x1401d9a48 FileTimeToLocalFileTime
0x1401d9a50 ExpandEnvironmentStringsW
0x1401d9a58 GetEnvironmentVariableW
0x1401d9a60 FormatMessageW
0x1401d9a68 LocalFree
0x1401d9a70 LocalAlloc
0x1401d9a78 GetSystemDirectoryW
0x1401d9a80 GetLocalTime
0x1401d9a88 GetLastError
0x1401d9a90 CloseHandle
0x1401d9a98 WriteFile
0x1401d9aa0 SetEndOfFile
0x1401d9aa8 CreateFileW
0x1401d9ab0 FlsGetValue
0x1401d9ab8 FlsSetValue
0x1401d9ac0 FlsFree
0x1401d9ac8 LCMapStringW
0x1401d9ad0 GetTimeZoneInformation
0x1401d9ad8 GetConsoleMode
0x1401d9ae0 SetConsoleMode
0x1401d9ae8 ReadConsoleInputW
0x1401d9af0 ReadConsoleW
0x1401d9af8 GetConsoleOutputCP
0x1401d9b00 SetFilePointerEx
0x1401d9b08 FindFirstFileExW
0x1401d9b10 FindNextFileW
0x1401d9b18 FreeEnvironmentStringsW
0x1401d9b20 SetEnvironmentVariableW
0x1401d9b28 WriteConsoleW
0x1401d9b30 RaiseException
USER32.dll
0x1401d9d10 CallNextHookEx
0x1401d9d18 SetWindowsHookExW
0x1401d9d20 GetWindow
0x1401d9d28 GetTopWindow
0x1401d9d30 GetClassLongPtrW
0x1401d9d38 EqualRect
0x1401d9d40 CopyRect
0x1401d9d48 RemovePropW
0x1401d9d50 ShowScrollBar
0x1401d9d58 GetScrollRange
0x1401d9d60 SetScrollRange
0x1401d9d68 GetScrollPos
0x1401d9d70 SetScrollPos
0x1401d9d78 ScrollWindow
0x1401d9d80 RedrawWindow
0x1401d9d88 ValidateRect
0x1401d9d90 GetForegroundWindow
0x1401d9d98 SetActiveWindow
0x1401d9da0 SetMenu
0x1401d9da8 GetCapture
0x1401d9db0 GetKeyState
0x1401d9db8 GetDlgCtrlID
0x1401d9dc0 IsChild
0x1401d9dc8 IsMenu
0x1401d9dd0 IsWindow
0x1401d9dd8 GetClassInfoExW
0x1401d9de0 GetClassInfoW
0x1401d9de8 RegisterClassW
0x1401d9df0 GetMessageTime
0x1401d9df8 GetMessagePos
0x1401d9e00 PeekMessageW
0x1401d9e08 RegisterWindowMessageW
0x1401d9e10 GetLastActivePopup
0x1401d9e18 GetWindowThreadProcessId
0x1401d9e20 IsWindowEnabled
0x1401d9e28 UnhookWindowsHookEx
0x1401d9e30 LoadBitmapW
0x1401d9e38 GetMenuCheckMarkDimensions
0x1401d9e40 SetMenuItemBitmaps
0x1401d9e48 GetFocus
0x1401d9e50 RemoveMenu
0x1401d9e58 AppendMenuW
0x1401d9e60 InsertMenuW
0x1401d9e68 GetMenuItemCount
0x1401d9e70 GetMenuItemID
0x1401d9e78 GetMenuState
0x1401d9e80 GetMenuStringW
0x1401d9e88 DialogBoxIndirectParamW
0x1401d9e90 DrawIconEx
0x1401d9e98 LoadImageW
0x1401d9ea0 EnableMenuItem
0x1401d9ea8 CheckMenuItem
0x1401d9eb0 SetCapture
0x1401d9eb8 EmptyClipboard
0x1401d9ec0 RegisterClipboardFormatW
0x1401d9ec8 SetClipboardData
0x1401d9ed0 CloseClipboard
0x1401d9ed8 OpenClipboard
0x1401d9ee0 DrawEdge
0x1401d9ee8 MonitorFromWindow
0x1401d9ef0 IsDialogMessageW
0x1401d9ef8 LoadIconW
0x1401d9f00 LoadCursorW
0x1401d9f08 CheckMenuRadioItem
0x1401d9f10 GetClassNameW
0x1401d9f18 EnumChildWindows
0x1401d9f20 GetParent
0x1401d9f28 SetWindowLongPtrW
0x1401d9f30 GetWindowLongPtrW
0x1401d9f38 SetWindowLongW
0x1401d9f40 GetWindowLongW
0x1401d9f48 PtInRect
0x1401d9f50 UnionRect
0x1401d9f58 IntersectRect
0x1401d9f60 RealChildWindowFromPoint
0x1401d9f68 DestroyIcon
0x1401d9f70 SetScrollInfo
0x1401d9f78 FrameRect
0x1401d9f80 DrawTextExW
0x1401d9f88 MapWindowPoints
0x1401d9f90 ScreenToClient
0x1401d9f98 GetCursorPos
0x1401d9fa0 SetCursor
0x1401d9fa8 GrayStringW
0x1401d9fb0 TabbedTextOutW
0x1401d9fb8 GetWindowDC
0x1401d9fc0 DestroyMenu
0x1401d9fc8 CopyImage
0x1401d9fd0 MessageBoxW
0x1401d9fd8 AdjustWindowRectEx
0x1401d9fe0 GetWindowRect
0x1401d9fe8 GetClientRect
0x1401d9ff0 GetWindowTextLengthW
0x1401d9ff8 GetWindowTextW
0x1401da000 GetPropW
0x1401da008 SetPropW
0x1401da010 InvalidateRect
0x1401da018 EndPaint
0x1401da020 BeginPaint
0x1401da028 SetForegroundWindow
0x1401da030 UpdateWindow
0x1401da038 SetMenuDefaultItem
0x1401da040 SetMenuItemInfoW
0x1401da048 GetMenuItemInfoW
0x1401da050 TrackPopupMenu
0x1401da058 GetSubMenu
0x1401da060 GetMenu
0x1401da068 LoadMenuW
0x1401da070 TranslateAcceleratorW
0x1401da078 LoadAcceleratorsW
0x1401da080 EnableWindow
0x1401da088 KillTimer
0x1401da090 SetTimer
0x1401da098 GetActiveWindow
0x1401da0a0 SetFocus
0x1401da0a8 DefDlgProcW
0x1401da0b0 IsDlgButtonChecked
0x1401da0b8 CheckRadioButton
0x1401da0c0 CheckDlgButton
0x1401da0c8 GetDlgItemTextW
0x1401da0d0 SetDlgItemTextW
0x1401da0d8 GetDlgItem
0x1401da0e0 EndDialog
0x1401da0e8 DialogBoxParamW
0x1401da0f0 CreateDialogParamW
0x1401da0f8 IsZoomed
0x1401da100 IsIconic
0x1401da108 IsWindowVisible
0x1401da110 EndDeferWindowPos
0x1401da118 DeferWindowPos
0x1401da120 BeginDeferWindowPos
0x1401da128 SetWindowPlacement
0x1401da130 GetWindowPlacement
0x1401da138 SetWindowPos
0x1401da140 MoveWindow
0x1401da148 ShowWindow
0x1401da150 DestroyWindow
0x1401da158 CreateWindowExW
0x1401da160 SendDlgItemMessageA
0x1401da168 SetRectEmpty
0x1401da170 CreateDialogIndirectParamW
0x1401da178 GetNextDlgTabItem
0x1401da180 GetAsyncKeyState
0x1401da188 MapDialogRect
0x1401da190 TrackMouseEvent
0x1401da198 ShowOwnedPopups
0x1401da1a0 DeleteMenu
0x1401da1a8 CharUpperBuffW
0x1401da1b0 GetNextDlgGroupItem
0x1401da1b8 ReleaseCapture
0x1401da1c0 WindowFromPoint
0x1401da1c8 DrawFocusRect
0x1401da1d0 GetScrollInfo
0x1401da1d8 RegisterClassExW
0x1401da1e0 CallWindowProcW
0x1401da1e8 PostQuitMessage
0x1401da1f0 WinHelpW
0x1401da1f8 ClientToScreen
0x1401da200 CharUpperW
0x1401da208 GetDesktopWindow
0x1401da210 IsRectEmpty
0x1401da218 GetIconInfo
0x1401da220 MessageBeep
0x1401da228 EnableScrollBar
0x1401da230 HideCaret
0x1401da238 InvertRect
0x1401da240 NotifyWinEvent
0x1401da248 CreatePopupMenu
0x1401da250 GetMenuDefaultItem
0x1401da258 MapVirtualKeyW
0x1401da260 GetSystemMetrics
0x1401da268 GetDC
0x1401da270 ReleaseDC
0x1401da278 GetSysColor
0x1401da280 GetSysColorBrush
0x1401da288 SetSysColors
0x1401da290 FillRect
0x1401da298 InflateRect
0x1401da2a0 OffsetRect
0x1401da2a8 SystemParametersInfoW
0x1401da2b0 MonitorFromPoint
0x1401da2b8 GetMonitorInfoW
0x1401da2c0 EnumDisplayMonitors
0x1401da2c8 GetProcessWindowStation
0x1401da2d0 GetUserObjectInformationW
0x1401da2d8 PostThreadMessageW
0x1401da2e0 SendMessageW
0x1401da2e8 SetWindowTextW
0x1401da2f0 DrawTextW
0x1401da2f8 LoadStringW
0x1401da300 DrawFrameControl
0x1401da308 GetMessageW
0x1401da310 TranslateMessage
0x1401da318 DispatchMessageW
0x1401da320 PostMessageW
0x1401da328 DefWindowProcW
0x1401da330 GetKeyNameTextW
0x1401da338 SetLayeredWindowAttributes
0x1401da340 DrawStateW
0x1401da348 SetClassLongPtrW
0x1401da350 SetWindowRgn
0x1401da358 SetParent
0x1401da360 GetSystemMenu
0x1401da368 BringWindowToTop
0x1401da370 SetCursorPos
0x1401da378 CopyIcon
0x1401da380 DrawIcon
0x1401da388 UpdateLayeredWindow
0x1401da390 InsertMenuItemW
0x1401da398 UnpackDDElParam
0x1401da3a0 ReuseDDElParam
0x1401da3a8 GetComboBoxInfo
0x1401da3b0 WaitMessage
0x1401da3b8 GetKeyboardLayout
0x1401da3c0 IsCharLowerW
0x1401da3c8 MapVirtualKeyExW
0x1401da3d0 ToUnicodeEx
0x1401da3d8 GetKeyboardState
0x1401da3e0 CreateAcceleratorTableW
0x1401da3e8 DestroyAcceleratorTable
0x1401da3f0 CopyAcceleratorTableW
0x1401da3f8 SetRect
0x1401da400 LockWindowUpdate
0x1401da408 GetDoubleClickTime
0x1401da410 ModifyMenuW
0x1401da418 DestroyCursor
0x1401da420 GetWindowRgn
0x1401da428 CreateMenu
0x1401da430 SubtractRect
0x1401da438 TranslateMDISysAccel
0x1401da440 DefMDIChildProcW
0x1401da448 DefFrameProcW
0x1401da450 DrawMenuBar
0x1401da458 GetUpdateRect
0x1401da460 IsClipboardFormatAvailable
0x1401da468 ChildWindowFromPoint
GDI32.dll
0x1401d91b8 GetWindowExtEx
0x1401d91c0 IntersectClipRect
0x1401d91c8 PtVisible
0x1401d91d0 RectVisible
0x1401d91d8 RestoreDC
0x1401d91e0 SaveDC
0x1401d91e8 ExtSelectClipRgn
0x1401d91f0 SetLayout
0x1401d91f8 GetLayout
0x1401d9200 SetPolyFillMode
0x1401d9208 SetROP2
0x1401d9210 SetTextAlign
0x1401d9218 TextOutW
0x1401d9220 ExtTextOutW
0x1401d9228 SetViewportExtEx
0x1401d9230 SetViewportOrgEx
0x1401d9238 SetWindowExtEx
0x1401d9240 SetWindowOrgEx
0x1401d9248 OffsetViewportOrgEx
0x1401d9250 OffsetWindowOrgEx
0x1401d9258 ScaleViewportExtEx
0x1401d9260 ScaleWindowExtEx
0x1401d9268 GetTextExtentPoint32W
0x1401d9270 CombineRgn
0x1401d9278 CreateRectRgnIndirect
0x1401d9280 PatBlt
0x1401d9288 GetViewportExtEx
0x1401d9290 DPtoLP
0x1401d9298 GetTextMetricsW
0x1401d92a0 EnumFontFamiliesExW
0x1401d92a8 GetNearestPaletteIndex
0x1401d92b0 GetBkColor
0x1401d92b8 CreateDIBitmap
0x1401d92c0 EnumFontFamiliesW
0x1401d92c8 GetTextCharsetInfo
0x1401d92d0 CreateEllipticRgn
0x1401d92d8 Ellipse
0x1401d92e0 GetTextColor
0x1401d92e8 CreatePolygonRgn
0x1401d92f0 Polygon
0x1401d92f8 Polyline
0x1401d9300 CreateRoundRectRgn
0x1401d9308 LPtoDP
0x1401d9310 Rectangle
0x1401d9318 GetRgnBox
0x1401d9320 OffsetRgn
0x1401d9328 RoundRect
0x1401d9330 FillRgn
0x1401d9338 FrameRgn
0x1401d9340 GetBoundsRect
0x1401d9348 PtInRegion
0x1401d9350 ExtFloodFill
0x1401d9358 SetPaletteEntries
0x1401d9360 SetPixelV
0x1401d9368 GetWindowOrgEx
0x1401d9370 GetViewportOrgEx
0x1401d9378 GetTextFaceW
0x1401d9380 GetStockObject
0x1401d9388 GetPixel
0x1401d9390 GetObjectType
0x1401d9398 GetClipBox
0x1401d93a0 ExcludeClipRect
0x1401d93a8 Escape
0x1401d93b0 CreatePatternBrush
0x1401d93b8 CreateHatchBrush
0x1401d93c0 SetBkColor
0x1401d93c8 CreateBitmap
0x1401d93d0 CreateDCW
0x1401d93d8 CopyMetaFileW
0x1401d93e0 EndPage
0x1401d93e8 StartPage
0x1401d93f0 EndDoc
0x1401d93f8 StartDocW
0x1401d9400 SetWorldTransform
0x1401d9408 SetMapMode
0x1401d9410 SetGraphicsMode
0x1401d9418 CreateFontW
0x1401d9420 UpdateColors
0x1401d9428 SetTextColor
0x1401d9430 EnumFontsW
0x1401d9438 CreateFontIndirectW
0x1401d9440 MoveToEx
0x1401d9448 SetPixel
0x1401d9450 LineTo
0x1401d9458 CreatePen
0x1401d9460 GdiFlush
0x1401d9468 UnrealizeObject
0x1401d9470 SetBrushOrgEx
0x1401d9478 GetObjectW
0x1401d9480 SetDIBColorTable
0x1401d9488 CreateDIBSection
0x1401d9490 SetStretchBltMode
0x1401d9498 StretchBlt
0x1401d94a0 SetBkMode
0x1401d94a8 SelectPalette
0x1401d94b0 SelectObject
0x1401d94b8 SelectClipRgn
0x1401d94c0 RealizePalette
0x1401d94c8 GetSystemPaletteEntries
0x1401d94d0 GetPaletteEntries
0x1401d94d8 GetNearestColor
0x1401d94e0 GetDeviceCaps
0x1401d94e8 DeleteObject
0x1401d94f0 DeleteDC
0x1401d94f8 CreateSolidBrush
0x1401d9500 CreateRectRgn
0x1401d9508 CreatePalette
0x1401d9510 CreateCompatibleDC
0x1401d9518 CreateCompatibleBitmap
0x1401d9520 SetRectRgn
0x1401d9528 GetDIBits
0x1401d9530 BitBlt
MSIMG32.dll
0x1401d9b40 TransparentBlt
0x1401d9b48 AlphaBlend
COMDLG32.dll
0x1401d9188 CommDlgExtendedError
0x1401d9190 ChooseColorW
0x1401d9198 GetSaveFileNameW
0x1401d91a0 GetOpenFileNameW
0x1401d91a8 PrintDlgW
WINSPOOL.DRV
0x1401da510 DocumentPropertiesW
0x1401da518 OpenPrinterW
0x1401da520 ClosePrinter
ADVAPI32.dll
0x1401d9000 RegisterServiceCtrlHandlerW
0x1401d9008 RegOpenKeyExW
0x1401d9010 RegQueryValueExW
0x1401d9018 LsaQueryInformationPolicy
0x1401d9020 LsaOpenPolicy
0x1401d9028 LsaClose
0x1401d9030 LsaFreeMemory
0x1401d9038 SaferComputeTokenFromLevel
0x1401d9040 SaferIdentifyLevel
0x1401d9048 SaferCloseLevel
0x1401d9050 RegCreateKeyW
0x1401d9058 RegEnumKeyW
0x1401d9060 RegGetValueW
0x1401d9068 RegOpenKeyExA
0x1401d9070 RegSetValueExA
0x1401d9078 RegQueryValueExA
0x1401d9080 RegEnumValueW
0x1401d9088 RegDeleteKeyW
0x1401d9090 RegCreateKeyExW
0x1401d9098 StartServiceW
0x1401d90a0 StartServiceCtrlDispatcherW
0x1401d90a8 SetServiceStatus
0x1401d90b0 RegCloseKey
0x1401d90b8 QueryServiceStatus
0x1401d90c0 OpenServiceW
0x1401d90c8 OpenSCManagerW
0x1401d90d0 DeleteService
0x1401d90d8 CreateServiceW
0x1401d90e0 CloseServiceHandle
0x1401d90e8 RegOpenKeyW
0x1401d90f0 RevertToSelf
0x1401d90f8 ImpersonateLoggedOnUser
0x1401d9100 GetTokenInformation
0x1401d9108 FreeSid
0x1401d9110 EqualSid
0x1401d9118 AllocateAndInitializeSid
0x1401d9120 OpenProcessToken
0x1401d9128 CreateProcessAsUserW
0x1401d9130 RegSetValueExW
0x1401d9138 RegDeleteValueW
0x1401d9140 RegEnumKeyExW
0x1401d9148 GetUserNameW
0x1401d9150 ReadEventLogW
0x1401d9158 OpenEventLogW
0x1401d9160 CloseEventLog
SHELL32.dll
0x1401d9c78 SHGetFileInfoW
0x1401d9c80 SHChangeNotify
0x1401d9c88 Shell_NotifyIconW
0x1401d9c90 ShellExecuteW
0x1401d9c98 SHGetPathFromIDListW
0x1401d9ca0 DragFinish
0x1401d9ca8 SHBrowseForFolderW
0x1401d9cb0 SHAppBarMessage
0x1401d9cb8 DragQueryFileW
0x1401d9cc0 SHGetDesktopFolder
0x1401d9cc8 SHGetSpecialFolderLocation
COMCTL32.dll
0x1401d9170 CreateToolbarEx
0x1401d9178 None
SHLWAPI.dll
0x1401d9cd8 PathFindExtensionW
0x1401d9ce0 PathStripToRootW
0x1401d9ce8 PathIsUNCW
0x1401d9cf0 PathFindFileNameW
0x1401d9cf8 PathRemoveFileSpecW
0x1401d9d00 StrFormatKBSizeW
UxTheme.dll
0x1401da478 DrawThemeBackground
0x1401da480 GetThemeColor
0x1401da488 GetThemePartSize
0x1401da490 DrawThemeParentBackground
0x1401da498 DrawThemeText
0x1401da4a0 GetThemeSysColor
0x1401da4a8 IsThemeBackgroundPartiallyTransparent
0x1401da4b0 IsAppThemed
0x1401da4b8 GetWindowTheme
0x1401da4c0 OpenThemeData
0x1401da4c8 CloseThemeData
0x1401da4d0 GetCurrentThemeName
ole32.dll
0x1401da5f8 CoInitializeEx
0x1401da600 DoDragDrop
0x1401da608 OleGetClipboard
0x1401da610 CoLockObjectExternal
0x1401da618 RegisterDragDrop
0x1401da620 RevokeDragDrop
0x1401da628 OleLockRunning
0x1401da630 OleCreateMenuDescriptor
0x1401da638 OleDestroyMenuDescriptor
0x1401da640 OleTranslateAccelerator
0x1401da648 IsAccelerator
0x1401da650 CoDisconnectObject
0x1401da658 ReleaseStgMedium
0x1401da660 OleDuplicateData
0x1401da668 CoTaskMemFree
0x1401da670 CoTaskMemAlloc
0x1401da678 CoSetProxyBlanket
0x1401da680 CoInitializeSecurity
0x1401da688 OleInitialize
0x1401da690 CreateILockBytesOnHGlobal
0x1401da698 StgCreateDocfileOnILockBytes
0x1401da6a0 CreateStreamOnHGlobal
0x1401da6a8 OleRun
0x1401da6b0 CoInitialize
0x1401da6b8 CoCreateInstance
0x1401da6c0 CoUninitialize
OLEAUT32.dll
0x1401d9bd8 VariantTimeToSystemTime
0x1401d9be0 SysAllocStringLen
0x1401d9be8 VarBstrFromDate
0x1401d9bf0 VariantClear
0x1401d9bf8 VariantInit
0x1401d9c00 LoadTypeLib
0x1401d9c08 VariantChangeType
0x1401d9c10 SafeArrayGetElement
0x1401d9c18 SafeArrayGetLBound
0x1401d9c20 SafeArrayGetUBound
0x1401d9c28 SysStringLen
0x1401d9c30 VariantCopy
0x1401d9c38 OleLoadPicture
0x1401d9c40 SystemTimeToVariantTime
0x1401d9c48 SysAllocStringByteLen
0x1401d9c50 GetErrorInfo
0x1401d9c58 SysStringByteLen
0x1401d9c60 SysFreeString
0x1401d9c68 SysAllocString
WS2_32.dll
0x1401da530 WSAStartup
gdiplus.dll
0x1401da540 GdipCreateFromHDC
0x1401da548 GdipCreateBitmapFromHBITMAP
0x1401da550 GdipDrawImageI
0x1401da558 GdipDeleteGraphics
0x1401da560 GdipBitmapUnlockBits
0x1401da568 GdipBitmapLockBits
0x1401da570 GdipCreateBitmapFromScan0
0x1401da578 GdipCreateBitmapFromStream
0x1401da580 GdipGetImagePaletteSize
0x1401da588 GdipGetImagePalette
0x1401da590 GdipGetImagePixelFormat
0x1401da598 GdipGetImageHeight
0x1401da5a0 GdipGetImageWidth
0x1401da5a8 GdipGetImageGraphicsContext
0x1401da5b0 GdipDisposeImage
0x1401da5b8 GdipCloneImage
0x1401da5c0 GdiplusStartup
0x1401da5c8 GdipFree
0x1401da5d0 GdipAlloc
0x1401da5d8 GdiplusShutdown
0x1401da5e0 GdipDrawImageRectI
0x1401da5e8 GdipSetInterpolationMode
OLEACC.dll
0x1401d9bb8 AccessibleObjectFromWindow
0x1401d9bc0 LresultFromObject
0x1401d9bc8 CreateStdAccessibleObject
IMM32.dll
0x1401d9540 ImmReleaseContext
0x1401d9548 ImmGetOpenStatus
0x1401d9550 ImmGetContext
WINMM.dll
0x1401da500 PlaySoundW
EAT(Export Address Table) is none