ScreenShot
| Created | 2024.02.06 08:15 | Machine | s1_win7_x6401 |
| Filename | autoit.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | 8fa52f316c393496f272357191db6deb | ||
| sha256 | 92c6531a09180fae8b2aae7384b4cea9986762f0c271b35da09b4d0e733f9f45 | ||
| ssdeep | 24576:5TC6Rb6qu1PyC+NRLtpScpzbtT7pyOolKL8Sq/jrc5xaNIBB:5+6AqSPyC+NltpScpzbtvpJoMQSq/jre | ||
| imphash | f8a00c72f2d667d2edbb234d0c0ae000 | ||
| impfuzzy | 192:SQtZJ57pYjI3OJZB4hy1oi8EPboIrwMSBUUhbbNQv:SGZJ5pYjIKoQP7rwMObbNQv | ||
Network IP location
Signature (6cnts)
| Level | Description |
|---|---|
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Creates a shortcut to an executable file |
| info | Checks amount of memory in system |
| info | Checks if process is being debugged by a debugger |
| info | Collects information to fingerprint the system (MachineGuid |
| info | Queries for the computername |
Rules (5cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
WSOCK32.dll
0x1400b6fc0 gethostbyname
0x1400b6fc8 recv
0x1400b6fd0 send
0x1400b6fd8 socket
0x1400b6fe0 inet_ntoa
0x1400b6fe8 setsockopt
0x1400b6ff0 ntohs
0x1400b6ff8 WSACleanup
0x1400b7000 WSAStartup
0x1400b7008 sendto
0x1400b7010 htons
0x1400b7018 __WSAFDIsSet
0x1400b7020 select
0x1400b7028 accept
0x1400b7030 listen
0x1400b7038 ind
0x1400b7040 inet_addr
0x1400b7048 ioctlsocket
0x1400b7050 recvfrom
0x1400b7058 WSAGetLastError
0x1400b7060 closesocket
0x1400b7068 gethostname
0x1400b7070 connect
VERSION.dll
0x1400b6f08 GetFileVersionInfoW
0x1400b6f10 VerQueryValueW
0x1400b6f18 GetFileVersionInfoSizeW
WINMM.dll
0x1400b6fa0 timeGetTime
0x1400b6fa8 waveOutSetVolume
0x1400b6fb0 mciSendStringW
COMCTL32.dll
0x1400b6110 ImageList_ReplaceIcon
0x1400b6118 ImageList_Destroy
0x1400b6120 ImageList_Remove
0x1400b6128 ImageList_SetDragCursorImage
0x1400b6130 ImageList_BeginDrag
0x1400b6138 ImageList_DragEnter
0x1400b6140 ImageList_DragLeave
0x1400b6148 ImageList_EndDrag
0x1400b6150 ImageList_DragMove
0x1400b6158 InitCommonControlsEx
0x1400b6160 ImageList_Create
MPR.dll
0x1400b6810 WNetGetConnectionW
0x1400b6818 WNetCancelConnection2W
0x1400b6820 WNetUseConnectionW
0x1400b6828 WNetAddConnection2W
WININET.dll
0x1400b6f28 HttpOpenRequestW
0x1400b6f30 InternetCloseHandle
0x1400b6f38 InternetOpenW
0x1400b6f40 InternetSetOptionW
0x1400b6f48 InternetCrackUrlW
0x1400b6f50 HttpQueryInfoW
0x1400b6f58 InternetQueryOptionW
0x1400b6f60 InternetConnectW
0x1400b6f68 HttpSendRequestW
0x1400b6f70 FtpOpenFileW
0x1400b6f78 FtpGetFileSize
0x1400b6f80 InternetOpenUrlW
0x1400b6f88 InternetReadFile
0x1400b6f90 InternetQueryDataAvailable
PSAPI.DLL
0x1400b6928 GetProcessMemoryInfo
IPHLPAPI.DLL
0x1400b62a8 IcmpSendEcho
0x1400b62b0 IcmpCloseHandle
0x1400b62b8 IcmpCreateFile
USERENV.dll
0x1400b6ed0 DestroyEnvironmentBlock
0x1400b6ed8 LoadUserProfileW
0x1400b6ee0 CreateEnvironmentBlock
0x1400b6ee8 UnloadUserProfile
UxTheme.dll
0x1400b6ef8 IsThemeActive
KERNEL32.dll
0x1400b62c8 WaitForSingleObject
0x1400b62d0 HeapAlloc
0x1400b62d8 GetProcessHeap
0x1400b62e0 HeapFree
0x1400b62e8 Sleep
0x1400b62f0 GetCurrentThreadId
0x1400b62f8 MultiByteToWideChar
0x1400b6300 MulDiv
0x1400b6308 GetVersionExW
0x1400b6310 IsWow64Process
0x1400b6318 GetSystemInfo
0x1400b6320 FreeLibrary
0x1400b6328 LoadLibraryA
0x1400b6330 GetProcAddress
0x1400b6338 SetErrorMode
0x1400b6340 GetModuleFileNameW
0x1400b6348 WideCharToMultiByte
0x1400b6350 lstrcpyW
0x1400b6358 lstrlenW
0x1400b6360 GetModuleHandleW
0x1400b6368 QueryPerformanceCounter
0x1400b6370 VirtualFreeEx
0x1400b6378 OpenProcess
0x1400b6380 VirtualAllocEx
0x1400b6388 WriteProcessMemory
0x1400b6390 ReadProcessMemory
0x1400b6398 CreateFileW
0x1400b63a0 SetFilePointerEx
0x1400b63a8 SetEndOfFile
0x1400b63b0 ReadFile
0x1400b63b8 WriteFile
0x1400b63c0 FlushFileBuffers
0x1400b63c8 TerminateProcess
0x1400b63d0 CreateToolhelp32Snapshot
0x1400b63d8 Process32FirstW
0x1400b63e0 Process32NextW
0x1400b63e8 SetFileTime
0x1400b63f0 GetFileAttributesW
0x1400b63f8 FindFirstFileW
0x1400b6400 FindClose
0x1400b6408 GetLongPathNameW
0x1400b6410 GetShortPathNameW
0x1400b6418 DeleteFileW
0x1400b6420 FindNextFileW
0x1400b6428 CopyFileExW
0x1400b6430 GetFullPathNameW
0x1400b6438 CreateDirectoryW
0x1400b6440 RemoveDirectoryW
0x1400b6448 SetSystemPowerState
0x1400b6450 QueryPerformanceFrequency
0x1400b6458 LoadResource
0x1400b6460 LockResource
0x1400b6468 SizeofResource
0x1400b6470 OutputDebugStringW
0x1400b6478 GetTempPathW
0x1400b6480 GetTempFileNameW
0x1400b6488 DeviceIoControl
0x1400b6490 LoadLibraryW
0x1400b6498 GetLocalTime
0x1400b64a0 CompareStringW
0x1400b64a8 EnterCriticalSection
0x1400b64b0 DuplicateHandle
0x1400b64b8 GetStdHandle
0x1400b64c0 CreatePipe
0x1400b64c8 TerminateThread
0x1400b64d0 LoadLibraryExW
0x1400b64d8 FindResourceExW
0x1400b64e0 CopyFileW
0x1400b64e8 VirtualFree
0x1400b64f0 FormatMessageW
0x1400b64f8 GetExitCodeProcess
0x1400b6500 GetPrivateProfileStringW
0x1400b6508 WritePrivateProfileStringW
0x1400b6510 GetPrivateProfileSectionW
0x1400b6518 WritePrivateProfileSectionW
0x1400b6520 GetPrivateProfileSectionNamesW
0x1400b6528 FileTimeToLocalFileTime
0x1400b6530 FileTimeToSystemTime
0x1400b6538 SystemTimeToFileTime
0x1400b6540 LocalFileTimeToFileTime
0x1400b6548 GetDriveTypeW
0x1400b6550 GetDiskFreeSpaceExW
0x1400b6558 GetDiskFreeSpaceW
0x1400b6560 GetVolumeInformationW
0x1400b6568 SetVolumeLabelW
0x1400b6570 CreateHardLinkW
0x1400b6578 SetFileAttributesW
0x1400b6580 CreateEventW
0x1400b6588 SetEvent
0x1400b6590 GetEnvironmentVariableW
0x1400b6598 SetEnvironmentVariableW
0x1400b65a0 GlobalLock
0x1400b65a8 GlobalUnlock
0x1400b65b0 GlobalAlloc
0x1400b65b8 GetFileSize
0x1400b65c0 GlobalFree
0x1400b65c8 GlobalMemoryStatusEx
0x1400b65d0 Beep
0x1400b65d8 GetSystemDirectoryW
0x1400b65e0 HeapReAlloc
0x1400b65e8 HeapSize
0x1400b65f0 GetComputerNameW
0x1400b65f8 GetWindowsDirectoryW
0x1400b6600 GetCurrentProcessId
0x1400b6608 GetProcessIoCounters
0x1400b6610 CreateProcessW
0x1400b6618 GetProcessId
0x1400b6620 SetPriorityClass
0x1400b6628 VirtualAlloc
0x1400b6630 SetCurrentDirectoryW
0x1400b6638 IsDebuggerPresent
0x1400b6640 GetCurrentDirectoryW
0x1400b6648 lstrcmpiW
0x1400b6650 GetLastError
0x1400b6658 RaiseException
0x1400b6660 InitializeCriticalSectionAndSpinCount
0x1400b6668 DeleteCriticalSection
0x1400b6670 RtlLookupFunctionEntry
0x1400b6678 RtlVirtualUnwind
0x1400b6680 UnhandledExceptionFilter
0x1400b6688 SetUnhandledExceptionFilter
0x1400b6690 GetStartupInfoW
0x1400b6698 IsProcessorFeaturePresent
0x1400b66a0 GetSystemTimeAsFileTime
0x1400b66a8 CreateThread
0x1400b66b0 GetCurrentProcess
0x1400b66b8 GetCurrentThread
0x1400b66c0 LeaveCriticalSection
0x1400b66c8 InitializeSListHead
0x1400b66d0 RtlUnwindEx
0x1400b66d8 RtlPcToFileHeader
0x1400b66e0 SetLastError
0x1400b66e8 TlsAlloc
0x1400b66f0 ResetEvent
0x1400b66f8 WaitForSingleObjectEx
0x1400b6700 TlsGetValue
0x1400b6708 TlsSetValue
0x1400b6710 TlsFree
0x1400b6718 EncodePointer
0x1400b6720 ExitProcess
0x1400b6728 GetModuleHandleExW
0x1400b6730 ExitThread
0x1400b6738 ResumeThread
0x1400b6740 FreeLibraryAndExitThread
0x1400b6748 GetACP
0x1400b6750 GetDateFormatW
0x1400b6758 GetTimeFormatW
0x1400b6760 LCMapStringW
0x1400b6768 GetStringTypeW
0x1400b6770 GetFileType
0x1400b6778 SetStdHandle
0x1400b6780 GetConsoleCP
0x1400b6788 GetConsoleMode
0x1400b6790 ReadConsoleW
0x1400b6798 GetTimeZoneInformation
0x1400b67a0 FindFirstFileExW
0x1400b67a8 IsValidCodePage
0x1400b67b0 GetOEMCP
0x1400b67b8 GetCPInfo
0x1400b67c0 GetCommandLineA
0x1400b67c8 GetCommandLineW
0x1400b67d0 GetEnvironmentStringsW
0x1400b67d8 FreeEnvironmentStringsW
0x1400b67e0 SetEnvironmentVariableA
0x1400b67e8 CloseHandle
0x1400b67f0 WriteConsoleW
0x1400b67f8 MoveFileW
0x1400b6800 RtlCaptureContext
USER32.dll
0x1400b69b8 IsCharUpperW
0x1400b69c0 GetMenuStringW
0x1400b69c8 GetSubMenu
0x1400b69d0 GetCaretPos
0x1400b69d8 IsZoomed
0x1400b69e0 GetWindowLongW
0x1400b69e8 GetMonitorInfoW
0x1400b69f0 SetWindowLongW
0x1400b69f8 SetLayeredWindowAttributes
0x1400b6a00 FlashWindow
0x1400b6a08 GetClassLongPtrW
0x1400b6a10 TranslateAcceleratorW
0x1400b6a18 IsDialogMessageW
0x1400b6a20 GetSysColor
0x1400b6a28 InflateRect
0x1400b6a30 DrawFocusRect
0x1400b6a38 DrawTextW
0x1400b6a40 FrameRect
0x1400b6a48 DrawFrameControl
0x1400b6a50 FillRect
0x1400b6a58 PtInRect
0x1400b6a60 DestroyAcceleratorTable
0x1400b6a68 CreateAcceleratorTableW
0x1400b6a70 SetCursor
0x1400b6a78 GetWindowDC
0x1400b6a80 GetSystemMetrics
0x1400b6a88 GetActiveWindow
0x1400b6a90 CharNextW
0x1400b6a98 wsprintfW
0x1400b6aa0 RedrawWindow
0x1400b6aa8 DrawMenuBar
0x1400b6ab0 DestroyMenu
0x1400b6ab8 SetMenu
0x1400b6ac0 GetWindowTextLengthW
0x1400b6ac8 CreateMenu
0x1400b6ad0 IsDlgButtonChecked
0x1400b6ad8 DefDlgProcW
0x1400b6ae0 CallWindowProcW
0x1400b6ae8 ReleaseCapture
0x1400b6af0 SetCapture
0x1400b6af8 GetMessageW
0x1400b6b00 LockWindowUpdate
0x1400b6b08 DispatchMessageW
0x1400b6b10 TranslateMessage
0x1400b6b18 PeekMessageW
0x1400b6b20 GetInputState
0x1400b6b28 UnregisterHotKey
0x1400b6b30 CharLowerBuffW
0x1400b6b38 MonitorFromPoint
0x1400b6b40 MonitorFromRect
0x1400b6b48 LoadImageW
0x1400b6b50 mouse_event
0x1400b6b58 ExitWindowsEx
0x1400b6b60 SetActiveWindow
0x1400b6b68 FindWindowExW
0x1400b6b70 EnumThreadWindows
0x1400b6b78 SetMenuDefaultItem
0x1400b6b80 IsCharLowerW
0x1400b6b88 IsMenu
0x1400b6b90 TrackPopupMenuEx
0x1400b6b98 GetCursorPos
0x1400b6ba0 DeleteMenu
0x1400b6ba8 CheckMenuRadioItem
0x1400b6bb0 GetMenuItemID
0x1400b6bb8 GetMenuItemCount
0x1400b6bc0 SetMenuItemInfoW
0x1400b6bc8 GetMenuItemInfoW
0x1400b6bd0 SetForegroundWindow
0x1400b6bd8 IsIconic
0x1400b6be0 FindWindowW
0x1400b6be8 SystemParametersInfoW
0x1400b6bf0 IsClipboardFormatAvailable
0x1400b6bf8 SendInput
0x1400b6c00 GetAsyncKeyState
0x1400b6c08 SetKeyboardState
0x1400b6c10 GetKeyboardState
0x1400b6c18 GetKeyState
0x1400b6c20 VkKeyScanW
0x1400b6c28 LoadStringW
0x1400b6c30 DialogBoxParamW
0x1400b6c38 MessageBeep
0x1400b6c40 EndDialog
0x1400b6c48 SendDlgItemMessageW
0x1400b6c50 GetDlgItem
0x1400b6c58 SetWindowTextW
0x1400b6c60 CopyRect
0x1400b6c68 ReleaseDC
0x1400b6c70 GetDC
0x1400b6c78 EndPaint
0x1400b6c80 BeginPaint
0x1400b6c88 GetClientRect
0x1400b6c90 GetMenu
0x1400b6c98 DestroyWindow
0x1400b6ca0 EnumWindows
0x1400b6ca8 GetDesktopWindow
0x1400b6cb0 IsWindow
0x1400b6cb8 IsWindowEnabled
0x1400b6cc0 IsWindowVisible
0x1400b6cc8 EnableWindow
0x1400b6cd0 InvalidateRect
0x1400b6cd8 GetWindowLongPtrW
0x1400b6ce0 AttachThreadInput
0x1400b6ce8 GetFocus
0x1400b6cf0 GetWindowTextW
0x1400b6cf8 ScreenToClient
0x1400b6d00 SendMessageTimeoutW
0x1400b6d08 EnumChildWindows
0x1400b6d10 CharUpperBuffW
0x1400b6d18 GetClassNameW
0x1400b6d20 GetParent
0x1400b6d28 GetDlgCtrlID
0x1400b6d30 MapVirtualKeyW
0x1400b6d38 PostMessageW
0x1400b6d40 GetWindowRect
0x1400b6d48 SetUserObjectSecurity
0x1400b6d50 IsCharAlphaNumericW
0x1400b6d58 IsCharAlphaW
0x1400b6d60 GetKeyboardLayoutNameW
0x1400b6d68 ClientToScreen
0x1400b6d70 RegisterHotKey
0x1400b6d78 GetCursorInfo
0x1400b6d80 SetWindowPos
0x1400b6d88 CopyImage
0x1400b6d90 AdjustWindowRectEx
0x1400b6d98 SetRect
0x1400b6da0 SetClipboardData
0x1400b6da8 EmptyClipboard
0x1400b6db0 CountClipboardFormats
0x1400b6db8 CloseClipboard
0x1400b6dc0 InsertMenuItemW
0x1400b6dc8 GetClipboardData
0x1400b6dd0 CloseDesktop
0x1400b6dd8 CloseWindowStation
0x1400b6de0 OpenClipboard
0x1400b6de8 OpenDesktopW
0x1400b6df0 SetProcessWindowStation
0x1400b6df8 GetProcessWindowStation
0x1400b6e00 OpenWindowStationW
0x1400b6e08 GetUserObjectSecurity
0x1400b6e10 MessageBoxW
0x1400b6e18 DefWindowProcW
0x1400b6e20 MoveWindow
0x1400b6e28 SetFocus
0x1400b6e30 PostQuitMessage
0x1400b6e38 KillTimer
0x1400b6e40 CreatePopupMenu
0x1400b6e48 RegisterWindowMessageW
0x1400b6e50 SetTimer
0x1400b6e58 ShowWindow
0x1400b6e60 RegisterClassExW
0x1400b6e68 LoadIconW
0x1400b6e70 LoadCursorW
0x1400b6e78 GetSysColorBrush
0x1400b6e80 GetForegroundWindow
0x1400b6e88 MessageBoxA
0x1400b6e90 DestroyIcon
0x1400b6e98 SetWindowLongPtrW
0x1400b6ea0 CreateWindowExW
0x1400b6ea8 SendMessageW
0x1400b6eb0 keybd_event
0x1400b6eb8 BlockInput
0x1400b6ec0 GetWindowThreadProcessId
GDI32.dll
0x1400b6188 EndPath
0x1400b6190 DeleteObject
0x1400b6198 GetDeviceCaps
0x1400b61a0 ExtCreatePen
0x1400b61a8 StrokePath
0x1400b61b0 SetPixel
0x1400b61b8 CloseFigure
0x1400b61c0 LineTo
0x1400b61c8 AngleArc
0x1400b61d0 MoveToEx
0x1400b61d8 Ellipse
0x1400b61e0 PolyDraw
0x1400b61e8 GetTextExtentPoint32W
0x1400b61f0 CreateCompatibleBitmap
0x1400b61f8 BeginPath
0x1400b6200 Rectangle
0x1400b6208 SetViewportOrgEx
0x1400b6210 GetObjectW
0x1400b6218 SetBkMode
0x1400b6220 RoundRect
0x1400b6228 SetBkColor
0x1400b6230 CreatePen
0x1400b6238 CreateSolidBrush
0x1400b6240 SetTextColor
0x1400b6248 CreateFontW
0x1400b6250 GetTextFaceW
0x1400b6258 GetStockObject
0x1400b6260 CreateDCW
0x1400b6268 GetPixel
0x1400b6270 DeleteDC
0x1400b6278 GetDIBits
0x1400b6280 StretchBlt
0x1400b6288 SelectObject
0x1400b6290 CreateCompatibleDC
0x1400b6298 StrokeAndFillPath
COMDLG32.dll
0x1400b6170 GetSaveFileNameW
0x1400b6178 GetOpenFileNameW
ADVAPI32.dll
0x1400b6000 GetAce
0x1400b6008 RegEnumValueW
0x1400b6010 RegDeleteValueW
0x1400b6018 RegDeleteKeyW
0x1400b6020 RegEnumKeyExW
0x1400b6028 RegOpenKeyExW
0x1400b6030 RegCloseKey
0x1400b6038 RegQueryValueExW
0x1400b6040 RegConnectRegistryW
0x1400b6048 InitializeSecurityDescriptor
0x1400b6050 InitializeAcl
0x1400b6058 AdjustTokenPrivileges
0x1400b6060 OpenThreadToken
0x1400b6068 OpenProcessToken
0x1400b6070 LookupPrivilegeValueW
0x1400b6078 DuplicateTokenEx
0x1400b6080 CreateProcessAsUserW
0x1400b6088 CreateProcessWithLogonW
0x1400b6090 GetLengthSid
0x1400b6098 CopySid
0x1400b60a0 LogonUserW
0x1400b60a8 AllocateAndInitializeSid
0x1400b60b0 CheckTokenMembership
0x1400b60b8 FreeSid
0x1400b60c0 GetTokenInformation
0x1400b60c8 RegSetValueExW
0x1400b60d0 GetSecurityDescriptorDacl
0x1400b60d8 GetAclInformation
0x1400b60e0 RegCreateKeyExW
0x1400b60e8 AddAce
0x1400b60f0 SetSecurityDescriptorDacl
0x1400b60f8 InitiateSystemShutdownExW
0x1400b6100 GetUserNameW
SHELL32.dll
0x1400b6938 DragFinish
0x1400b6940 DragQueryPoint
0x1400b6948 ShellExecuteExW
0x1400b6950 DragQueryFileW
0x1400b6958 SHEmptyRecycleBinW
0x1400b6960 SHGetPathFromIDListW
0x1400b6968 SHBrowseForFolderW
0x1400b6970 SHCreateShellItem
0x1400b6978 SHGetDesktopFolder
0x1400b6980 SHGetSpecialFolderLocation
0x1400b6988 SHGetFolderPathW
0x1400b6990 SHFileOperationW
0x1400b6998 ExtractIconExW
0x1400b69a0 Shell_NotifyIconW
0x1400b69a8 ShellExecuteW
ole32.dll
0x1400b7080 CoTaskMemAlloc
0x1400b7088 CoTaskMemFree
0x1400b7090 CLSIDFromString
0x1400b7098 ProgIDFromCLSID
0x1400b70a0 CLSIDFromProgID
0x1400b70a8 OleSetMenuDescriptor
0x1400b70b0 MkParseDisplayName
0x1400b70b8 OleSetContainedObject
0x1400b70c0 CoCreateInstance
0x1400b70c8 IIDFromString
0x1400b70d0 StringFromGUID2
0x1400b70d8 CreateStreamOnHGlobal
0x1400b70e0 OleInitialize
0x1400b70e8 OleUninitialize
0x1400b70f0 CoInitialize
0x1400b70f8 CoUninitialize
0x1400b7100 GetRunningObjectTable
0x1400b7108 CoGetInstanceFromFile
0x1400b7110 CoGetObject
0x1400b7118 CoInitializeSecurity
0x1400b7120 CoCreateInstanceEx
0x1400b7128 CoSetProxyBlanket
OLEAUT32.dll
0x1400b6838 VariantChangeType
0x1400b6840 DispCallFunc
0x1400b6848 CreateStdDispatch
0x1400b6850 CreateDispTypeInfo
0x1400b6858 UnRegisterTypeLib
0x1400b6860 UnRegisterTypeLibForUser
0x1400b6868 RegisterTypeLibForUser
0x1400b6870 RegisterTypeLib
0x1400b6878 LoadTypeLibEx
0x1400b6880 VariantCopyInd
0x1400b6888 VariantTimeToSystemTime
0x1400b6890 SysFreeString
0x1400b6898 SafeArrayDestroyDescriptor
0x1400b68a0 SafeArrayDestroyData
0x1400b68a8 SafeArrayUnaccessData
0x1400b68b0 VariantInit
0x1400b68b8 VariantClear
0x1400b68c0 VariantCopy
0x1400b68c8 SysAllocString
0x1400b68d0 SafeArrayCreateVector
0x1400b68d8 VarR8FromDec
0x1400b68e0 SafeArrayAllocDescriptorEx
0x1400b68e8 SafeArrayAllocData
0x1400b68f0 SysStringLen
0x1400b68f8 SafeArrayGetVartype
0x1400b6900 OleLoadPicture
0x1400b6908 QueryPathOfRegTypeLib
0x1400b6910 SysReAllocString
0x1400b6918 SafeArrayAccessData
EAT(Export Address Table) is none
WSOCK32.dll
0x1400b6fc0 gethostbyname
0x1400b6fc8 recv
0x1400b6fd0 send
0x1400b6fd8 socket
0x1400b6fe0 inet_ntoa
0x1400b6fe8 setsockopt
0x1400b6ff0 ntohs
0x1400b6ff8 WSACleanup
0x1400b7000 WSAStartup
0x1400b7008 sendto
0x1400b7010 htons
0x1400b7018 __WSAFDIsSet
0x1400b7020 select
0x1400b7028 accept
0x1400b7030 listen
0x1400b7038 ind
0x1400b7040 inet_addr
0x1400b7048 ioctlsocket
0x1400b7050 recvfrom
0x1400b7058 WSAGetLastError
0x1400b7060 closesocket
0x1400b7068 gethostname
0x1400b7070 connect
VERSION.dll
0x1400b6f08 GetFileVersionInfoW
0x1400b6f10 VerQueryValueW
0x1400b6f18 GetFileVersionInfoSizeW
WINMM.dll
0x1400b6fa0 timeGetTime
0x1400b6fa8 waveOutSetVolume
0x1400b6fb0 mciSendStringW
COMCTL32.dll
0x1400b6110 ImageList_ReplaceIcon
0x1400b6118 ImageList_Destroy
0x1400b6120 ImageList_Remove
0x1400b6128 ImageList_SetDragCursorImage
0x1400b6130 ImageList_BeginDrag
0x1400b6138 ImageList_DragEnter
0x1400b6140 ImageList_DragLeave
0x1400b6148 ImageList_EndDrag
0x1400b6150 ImageList_DragMove
0x1400b6158 InitCommonControlsEx
0x1400b6160 ImageList_Create
MPR.dll
0x1400b6810 WNetGetConnectionW
0x1400b6818 WNetCancelConnection2W
0x1400b6820 WNetUseConnectionW
0x1400b6828 WNetAddConnection2W
WININET.dll
0x1400b6f28 HttpOpenRequestW
0x1400b6f30 InternetCloseHandle
0x1400b6f38 InternetOpenW
0x1400b6f40 InternetSetOptionW
0x1400b6f48 InternetCrackUrlW
0x1400b6f50 HttpQueryInfoW
0x1400b6f58 InternetQueryOptionW
0x1400b6f60 InternetConnectW
0x1400b6f68 HttpSendRequestW
0x1400b6f70 FtpOpenFileW
0x1400b6f78 FtpGetFileSize
0x1400b6f80 InternetOpenUrlW
0x1400b6f88 InternetReadFile
0x1400b6f90 InternetQueryDataAvailable
PSAPI.DLL
0x1400b6928 GetProcessMemoryInfo
IPHLPAPI.DLL
0x1400b62a8 IcmpSendEcho
0x1400b62b0 IcmpCloseHandle
0x1400b62b8 IcmpCreateFile
USERENV.dll
0x1400b6ed0 DestroyEnvironmentBlock
0x1400b6ed8 LoadUserProfileW
0x1400b6ee0 CreateEnvironmentBlock
0x1400b6ee8 UnloadUserProfile
UxTheme.dll
0x1400b6ef8 IsThemeActive
KERNEL32.dll
0x1400b62c8 WaitForSingleObject
0x1400b62d0 HeapAlloc
0x1400b62d8 GetProcessHeap
0x1400b62e0 HeapFree
0x1400b62e8 Sleep
0x1400b62f0 GetCurrentThreadId
0x1400b62f8 MultiByteToWideChar
0x1400b6300 MulDiv
0x1400b6308 GetVersionExW
0x1400b6310 IsWow64Process
0x1400b6318 GetSystemInfo
0x1400b6320 FreeLibrary
0x1400b6328 LoadLibraryA
0x1400b6330 GetProcAddress
0x1400b6338 SetErrorMode
0x1400b6340 GetModuleFileNameW
0x1400b6348 WideCharToMultiByte
0x1400b6350 lstrcpyW
0x1400b6358 lstrlenW
0x1400b6360 GetModuleHandleW
0x1400b6368 QueryPerformanceCounter
0x1400b6370 VirtualFreeEx
0x1400b6378 OpenProcess
0x1400b6380 VirtualAllocEx
0x1400b6388 WriteProcessMemory
0x1400b6390 ReadProcessMemory
0x1400b6398 CreateFileW
0x1400b63a0 SetFilePointerEx
0x1400b63a8 SetEndOfFile
0x1400b63b0 ReadFile
0x1400b63b8 WriteFile
0x1400b63c0 FlushFileBuffers
0x1400b63c8 TerminateProcess
0x1400b63d0 CreateToolhelp32Snapshot
0x1400b63d8 Process32FirstW
0x1400b63e0 Process32NextW
0x1400b63e8 SetFileTime
0x1400b63f0 GetFileAttributesW
0x1400b63f8 FindFirstFileW
0x1400b6400 FindClose
0x1400b6408 GetLongPathNameW
0x1400b6410 GetShortPathNameW
0x1400b6418 DeleteFileW
0x1400b6420 FindNextFileW
0x1400b6428 CopyFileExW
0x1400b6430 GetFullPathNameW
0x1400b6438 CreateDirectoryW
0x1400b6440 RemoveDirectoryW
0x1400b6448 SetSystemPowerState
0x1400b6450 QueryPerformanceFrequency
0x1400b6458 LoadResource
0x1400b6460 LockResource
0x1400b6468 SizeofResource
0x1400b6470 OutputDebugStringW
0x1400b6478 GetTempPathW
0x1400b6480 GetTempFileNameW
0x1400b6488 DeviceIoControl
0x1400b6490 LoadLibraryW
0x1400b6498 GetLocalTime
0x1400b64a0 CompareStringW
0x1400b64a8 EnterCriticalSection
0x1400b64b0 DuplicateHandle
0x1400b64b8 GetStdHandle
0x1400b64c0 CreatePipe
0x1400b64c8 TerminateThread
0x1400b64d0 LoadLibraryExW
0x1400b64d8 FindResourceExW
0x1400b64e0 CopyFileW
0x1400b64e8 VirtualFree
0x1400b64f0 FormatMessageW
0x1400b64f8 GetExitCodeProcess
0x1400b6500 GetPrivateProfileStringW
0x1400b6508 WritePrivateProfileStringW
0x1400b6510 GetPrivateProfileSectionW
0x1400b6518 WritePrivateProfileSectionW
0x1400b6520 GetPrivateProfileSectionNamesW
0x1400b6528 FileTimeToLocalFileTime
0x1400b6530 FileTimeToSystemTime
0x1400b6538 SystemTimeToFileTime
0x1400b6540 LocalFileTimeToFileTime
0x1400b6548 GetDriveTypeW
0x1400b6550 GetDiskFreeSpaceExW
0x1400b6558 GetDiskFreeSpaceW
0x1400b6560 GetVolumeInformationW
0x1400b6568 SetVolumeLabelW
0x1400b6570 CreateHardLinkW
0x1400b6578 SetFileAttributesW
0x1400b6580 CreateEventW
0x1400b6588 SetEvent
0x1400b6590 GetEnvironmentVariableW
0x1400b6598 SetEnvironmentVariableW
0x1400b65a0 GlobalLock
0x1400b65a8 GlobalUnlock
0x1400b65b0 GlobalAlloc
0x1400b65b8 GetFileSize
0x1400b65c0 GlobalFree
0x1400b65c8 GlobalMemoryStatusEx
0x1400b65d0 Beep
0x1400b65d8 GetSystemDirectoryW
0x1400b65e0 HeapReAlloc
0x1400b65e8 HeapSize
0x1400b65f0 GetComputerNameW
0x1400b65f8 GetWindowsDirectoryW
0x1400b6600 GetCurrentProcessId
0x1400b6608 GetProcessIoCounters
0x1400b6610 CreateProcessW
0x1400b6618 GetProcessId
0x1400b6620 SetPriorityClass
0x1400b6628 VirtualAlloc
0x1400b6630 SetCurrentDirectoryW
0x1400b6638 IsDebuggerPresent
0x1400b6640 GetCurrentDirectoryW
0x1400b6648 lstrcmpiW
0x1400b6650 GetLastError
0x1400b6658 RaiseException
0x1400b6660 InitializeCriticalSectionAndSpinCount
0x1400b6668 DeleteCriticalSection
0x1400b6670 RtlLookupFunctionEntry
0x1400b6678 RtlVirtualUnwind
0x1400b6680 UnhandledExceptionFilter
0x1400b6688 SetUnhandledExceptionFilter
0x1400b6690 GetStartupInfoW
0x1400b6698 IsProcessorFeaturePresent
0x1400b66a0 GetSystemTimeAsFileTime
0x1400b66a8 CreateThread
0x1400b66b0 GetCurrentProcess
0x1400b66b8 GetCurrentThread
0x1400b66c0 LeaveCriticalSection
0x1400b66c8 InitializeSListHead
0x1400b66d0 RtlUnwindEx
0x1400b66d8 RtlPcToFileHeader
0x1400b66e0 SetLastError
0x1400b66e8 TlsAlloc
0x1400b66f0 ResetEvent
0x1400b66f8 WaitForSingleObjectEx
0x1400b6700 TlsGetValue
0x1400b6708 TlsSetValue
0x1400b6710 TlsFree
0x1400b6718 EncodePointer
0x1400b6720 ExitProcess
0x1400b6728 GetModuleHandleExW
0x1400b6730 ExitThread
0x1400b6738 ResumeThread
0x1400b6740 FreeLibraryAndExitThread
0x1400b6748 GetACP
0x1400b6750 GetDateFormatW
0x1400b6758 GetTimeFormatW
0x1400b6760 LCMapStringW
0x1400b6768 GetStringTypeW
0x1400b6770 GetFileType
0x1400b6778 SetStdHandle
0x1400b6780 GetConsoleCP
0x1400b6788 GetConsoleMode
0x1400b6790 ReadConsoleW
0x1400b6798 GetTimeZoneInformation
0x1400b67a0 FindFirstFileExW
0x1400b67a8 IsValidCodePage
0x1400b67b0 GetOEMCP
0x1400b67b8 GetCPInfo
0x1400b67c0 GetCommandLineA
0x1400b67c8 GetCommandLineW
0x1400b67d0 GetEnvironmentStringsW
0x1400b67d8 FreeEnvironmentStringsW
0x1400b67e0 SetEnvironmentVariableA
0x1400b67e8 CloseHandle
0x1400b67f0 WriteConsoleW
0x1400b67f8 MoveFileW
0x1400b6800 RtlCaptureContext
USER32.dll
0x1400b69b8 IsCharUpperW
0x1400b69c0 GetMenuStringW
0x1400b69c8 GetSubMenu
0x1400b69d0 GetCaretPos
0x1400b69d8 IsZoomed
0x1400b69e0 GetWindowLongW
0x1400b69e8 GetMonitorInfoW
0x1400b69f0 SetWindowLongW
0x1400b69f8 SetLayeredWindowAttributes
0x1400b6a00 FlashWindow
0x1400b6a08 GetClassLongPtrW
0x1400b6a10 TranslateAcceleratorW
0x1400b6a18 IsDialogMessageW
0x1400b6a20 GetSysColor
0x1400b6a28 InflateRect
0x1400b6a30 DrawFocusRect
0x1400b6a38 DrawTextW
0x1400b6a40 FrameRect
0x1400b6a48 DrawFrameControl
0x1400b6a50 FillRect
0x1400b6a58 PtInRect
0x1400b6a60 DestroyAcceleratorTable
0x1400b6a68 CreateAcceleratorTableW
0x1400b6a70 SetCursor
0x1400b6a78 GetWindowDC
0x1400b6a80 GetSystemMetrics
0x1400b6a88 GetActiveWindow
0x1400b6a90 CharNextW
0x1400b6a98 wsprintfW
0x1400b6aa0 RedrawWindow
0x1400b6aa8 DrawMenuBar
0x1400b6ab0 DestroyMenu
0x1400b6ab8 SetMenu
0x1400b6ac0 GetWindowTextLengthW
0x1400b6ac8 CreateMenu
0x1400b6ad0 IsDlgButtonChecked
0x1400b6ad8 DefDlgProcW
0x1400b6ae0 CallWindowProcW
0x1400b6ae8 ReleaseCapture
0x1400b6af0 SetCapture
0x1400b6af8 GetMessageW
0x1400b6b00 LockWindowUpdate
0x1400b6b08 DispatchMessageW
0x1400b6b10 TranslateMessage
0x1400b6b18 PeekMessageW
0x1400b6b20 GetInputState
0x1400b6b28 UnregisterHotKey
0x1400b6b30 CharLowerBuffW
0x1400b6b38 MonitorFromPoint
0x1400b6b40 MonitorFromRect
0x1400b6b48 LoadImageW
0x1400b6b50 mouse_event
0x1400b6b58 ExitWindowsEx
0x1400b6b60 SetActiveWindow
0x1400b6b68 FindWindowExW
0x1400b6b70 EnumThreadWindows
0x1400b6b78 SetMenuDefaultItem
0x1400b6b80 IsCharLowerW
0x1400b6b88 IsMenu
0x1400b6b90 TrackPopupMenuEx
0x1400b6b98 GetCursorPos
0x1400b6ba0 DeleteMenu
0x1400b6ba8 CheckMenuRadioItem
0x1400b6bb0 GetMenuItemID
0x1400b6bb8 GetMenuItemCount
0x1400b6bc0 SetMenuItemInfoW
0x1400b6bc8 GetMenuItemInfoW
0x1400b6bd0 SetForegroundWindow
0x1400b6bd8 IsIconic
0x1400b6be0 FindWindowW
0x1400b6be8 SystemParametersInfoW
0x1400b6bf0 IsClipboardFormatAvailable
0x1400b6bf8 SendInput
0x1400b6c00 GetAsyncKeyState
0x1400b6c08 SetKeyboardState
0x1400b6c10 GetKeyboardState
0x1400b6c18 GetKeyState
0x1400b6c20 VkKeyScanW
0x1400b6c28 LoadStringW
0x1400b6c30 DialogBoxParamW
0x1400b6c38 MessageBeep
0x1400b6c40 EndDialog
0x1400b6c48 SendDlgItemMessageW
0x1400b6c50 GetDlgItem
0x1400b6c58 SetWindowTextW
0x1400b6c60 CopyRect
0x1400b6c68 ReleaseDC
0x1400b6c70 GetDC
0x1400b6c78 EndPaint
0x1400b6c80 BeginPaint
0x1400b6c88 GetClientRect
0x1400b6c90 GetMenu
0x1400b6c98 DestroyWindow
0x1400b6ca0 EnumWindows
0x1400b6ca8 GetDesktopWindow
0x1400b6cb0 IsWindow
0x1400b6cb8 IsWindowEnabled
0x1400b6cc0 IsWindowVisible
0x1400b6cc8 EnableWindow
0x1400b6cd0 InvalidateRect
0x1400b6cd8 GetWindowLongPtrW
0x1400b6ce0 AttachThreadInput
0x1400b6ce8 GetFocus
0x1400b6cf0 GetWindowTextW
0x1400b6cf8 ScreenToClient
0x1400b6d00 SendMessageTimeoutW
0x1400b6d08 EnumChildWindows
0x1400b6d10 CharUpperBuffW
0x1400b6d18 GetClassNameW
0x1400b6d20 GetParent
0x1400b6d28 GetDlgCtrlID
0x1400b6d30 MapVirtualKeyW
0x1400b6d38 PostMessageW
0x1400b6d40 GetWindowRect
0x1400b6d48 SetUserObjectSecurity
0x1400b6d50 IsCharAlphaNumericW
0x1400b6d58 IsCharAlphaW
0x1400b6d60 GetKeyboardLayoutNameW
0x1400b6d68 ClientToScreen
0x1400b6d70 RegisterHotKey
0x1400b6d78 GetCursorInfo
0x1400b6d80 SetWindowPos
0x1400b6d88 CopyImage
0x1400b6d90 AdjustWindowRectEx
0x1400b6d98 SetRect
0x1400b6da0 SetClipboardData
0x1400b6da8 EmptyClipboard
0x1400b6db0 CountClipboardFormats
0x1400b6db8 CloseClipboard
0x1400b6dc0 InsertMenuItemW
0x1400b6dc8 GetClipboardData
0x1400b6dd0 CloseDesktop
0x1400b6dd8 CloseWindowStation
0x1400b6de0 OpenClipboard
0x1400b6de8 OpenDesktopW
0x1400b6df0 SetProcessWindowStation
0x1400b6df8 GetProcessWindowStation
0x1400b6e00 OpenWindowStationW
0x1400b6e08 GetUserObjectSecurity
0x1400b6e10 MessageBoxW
0x1400b6e18 DefWindowProcW
0x1400b6e20 MoveWindow
0x1400b6e28 SetFocus
0x1400b6e30 PostQuitMessage
0x1400b6e38 KillTimer
0x1400b6e40 CreatePopupMenu
0x1400b6e48 RegisterWindowMessageW
0x1400b6e50 SetTimer
0x1400b6e58 ShowWindow
0x1400b6e60 RegisterClassExW
0x1400b6e68 LoadIconW
0x1400b6e70 LoadCursorW
0x1400b6e78 GetSysColorBrush
0x1400b6e80 GetForegroundWindow
0x1400b6e88 MessageBoxA
0x1400b6e90 DestroyIcon
0x1400b6e98 SetWindowLongPtrW
0x1400b6ea0 CreateWindowExW
0x1400b6ea8 SendMessageW
0x1400b6eb0 keybd_event
0x1400b6eb8 BlockInput
0x1400b6ec0 GetWindowThreadProcessId
GDI32.dll
0x1400b6188 EndPath
0x1400b6190 DeleteObject
0x1400b6198 GetDeviceCaps
0x1400b61a0 ExtCreatePen
0x1400b61a8 StrokePath
0x1400b61b0 SetPixel
0x1400b61b8 CloseFigure
0x1400b61c0 LineTo
0x1400b61c8 AngleArc
0x1400b61d0 MoveToEx
0x1400b61d8 Ellipse
0x1400b61e0 PolyDraw
0x1400b61e8 GetTextExtentPoint32W
0x1400b61f0 CreateCompatibleBitmap
0x1400b61f8 BeginPath
0x1400b6200 Rectangle
0x1400b6208 SetViewportOrgEx
0x1400b6210 GetObjectW
0x1400b6218 SetBkMode
0x1400b6220 RoundRect
0x1400b6228 SetBkColor
0x1400b6230 CreatePen
0x1400b6238 CreateSolidBrush
0x1400b6240 SetTextColor
0x1400b6248 CreateFontW
0x1400b6250 GetTextFaceW
0x1400b6258 GetStockObject
0x1400b6260 CreateDCW
0x1400b6268 GetPixel
0x1400b6270 DeleteDC
0x1400b6278 GetDIBits
0x1400b6280 StretchBlt
0x1400b6288 SelectObject
0x1400b6290 CreateCompatibleDC
0x1400b6298 StrokeAndFillPath
COMDLG32.dll
0x1400b6170 GetSaveFileNameW
0x1400b6178 GetOpenFileNameW
ADVAPI32.dll
0x1400b6000 GetAce
0x1400b6008 RegEnumValueW
0x1400b6010 RegDeleteValueW
0x1400b6018 RegDeleteKeyW
0x1400b6020 RegEnumKeyExW
0x1400b6028 RegOpenKeyExW
0x1400b6030 RegCloseKey
0x1400b6038 RegQueryValueExW
0x1400b6040 RegConnectRegistryW
0x1400b6048 InitializeSecurityDescriptor
0x1400b6050 InitializeAcl
0x1400b6058 AdjustTokenPrivileges
0x1400b6060 OpenThreadToken
0x1400b6068 OpenProcessToken
0x1400b6070 LookupPrivilegeValueW
0x1400b6078 DuplicateTokenEx
0x1400b6080 CreateProcessAsUserW
0x1400b6088 CreateProcessWithLogonW
0x1400b6090 GetLengthSid
0x1400b6098 CopySid
0x1400b60a0 LogonUserW
0x1400b60a8 AllocateAndInitializeSid
0x1400b60b0 CheckTokenMembership
0x1400b60b8 FreeSid
0x1400b60c0 GetTokenInformation
0x1400b60c8 RegSetValueExW
0x1400b60d0 GetSecurityDescriptorDacl
0x1400b60d8 GetAclInformation
0x1400b60e0 RegCreateKeyExW
0x1400b60e8 AddAce
0x1400b60f0 SetSecurityDescriptorDacl
0x1400b60f8 InitiateSystemShutdownExW
0x1400b6100 GetUserNameW
SHELL32.dll
0x1400b6938 DragFinish
0x1400b6940 DragQueryPoint
0x1400b6948 ShellExecuteExW
0x1400b6950 DragQueryFileW
0x1400b6958 SHEmptyRecycleBinW
0x1400b6960 SHGetPathFromIDListW
0x1400b6968 SHBrowseForFolderW
0x1400b6970 SHCreateShellItem
0x1400b6978 SHGetDesktopFolder
0x1400b6980 SHGetSpecialFolderLocation
0x1400b6988 SHGetFolderPathW
0x1400b6990 SHFileOperationW
0x1400b6998 ExtractIconExW
0x1400b69a0 Shell_NotifyIconW
0x1400b69a8 ShellExecuteW
ole32.dll
0x1400b7080 CoTaskMemAlloc
0x1400b7088 CoTaskMemFree
0x1400b7090 CLSIDFromString
0x1400b7098 ProgIDFromCLSID
0x1400b70a0 CLSIDFromProgID
0x1400b70a8 OleSetMenuDescriptor
0x1400b70b0 MkParseDisplayName
0x1400b70b8 OleSetContainedObject
0x1400b70c0 CoCreateInstance
0x1400b70c8 IIDFromString
0x1400b70d0 StringFromGUID2
0x1400b70d8 CreateStreamOnHGlobal
0x1400b70e0 OleInitialize
0x1400b70e8 OleUninitialize
0x1400b70f0 CoInitialize
0x1400b70f8 CoUninitialize
0x1400b7100 GetRunningObjectTable
0x1400b7108 CoGetInstanceFromFile
0x1400b7110 CoGetObject
0x1400b7118 CoInitializeSecurity
0x1400b7120 CoCreateInstanceEx
0x1400b7128 CoSetProxyBlanket
OLEAUT32.dll
0x1400b6838 VariantChangeType
0x1400b6840 DispCallFunc
0x1400b6848 CreateStdDispatch
0x1400b6850 CreateDispTypeInfo
0x1400b6858 UnRegisterTypeLib
0x1400b6860 UnRegisterTypeLibForUser
0x1400b6868 RegisterTypeLibForUser
0x1400b6870 RegisterTypeLib
0x1400b6878 LoadTypeLibEx
0x1400b6880 VariantCopyInd
0x1400b6888 VariantTimeToSystemTime
0x1400b6890 SysFreeString
0x1400b6898 SafeArrayDestroyDescriptor
0x1400b68a0 SafeArrayDestroyData
0x1400b68a8 SafeArrayUnaccessData
0x1400b68b0 VariantInit
0x1400b68b8 VariantClear
0x1400b68c0 VariantCopy
0x1400b68c8 SysAllocString
0x1400b68d0 SafeArrayCreateVector
0x1400b68d8 VarR8FromDec
0x1400b68e0 SafeArrayAllocDescriptorEx
0x1400b68e8 SafeArrayAllocData
0x1400b68f0 SysStringLen
0x1400b68f8 SafeArrayGetVartype
0x1400b6900 OleLoadPicture
0x1400b6908 QueryPathOfRegTypeLib
0x1400b6910 SysReAllocString
0x1400b6918 SafeArrayAccessData
EAT(Export Address Table) is none