ScreenShot
| Created | 2024.06.14 18:48 | Machine | s1_win7_x6403 |
| Filename | help.scr | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 63 detected (AIDetectMalware, Wofith, malicious, high confidence, score, GenericPMF, S32268900, GenericRXSQ, Unsafe, Mikey, Vn0h, EmailWorm, Coinminer, gen1, CoinminerX, TrjGen, hlwdvf, SatanDDoS, CLASSIC, ATRAPS, Siggen9, R002C0DFB24, Outbreak, Detected, ai score=84, Rbot, ~gen@1xtqdu, Vindor, J9YTCV, Eldorado, ShadowBrokers, R340277, ZexaF, @JW@aetOS6nj, Genetic, Gencirc, OnhsJJM, Static AI, Malicious PE, susgen, confidence, Miner, Equation) | ||
| md5 | 2d927fdb462570728a981443bf36d19f | ||
| sha256 | d4d451457c40bf4dacb36cbbedc89c6dede6dba47493b472aa1450d8c9f87239 | ||
| ssdeep | 196608:rhHMBGC3PtXtT+Was8/wq1wo9JoYx5JAMdJOnZTG1IvQSaKe6NZOn:r2G02wuwasMdJOnZKVSaaNZOn | ||
| imphash | 59bd1de5370a3a1763ca4ab2cd4ba57f | ||
| impfuzzy | 384:Y3R9jTYkQpqsTk+snIcnqX5ps/3MD7AsFN2lSlfLAg:Yh9jTYysJsnIcqX5Gb4kg | ||
Network IP location
Signature (29cnts)
| Level | Description |
|---|---|
| danger | Connects to IP addresses that are no longer responding to requests (legitimate services will remain up-and-running usually) |
| danger | File has been identified by 63 AntiVirus engines on VirusTotal as malicious |
| watch | A stratum cryptocurrency mining command was executed |
| watch | Collects information on the system (ipconfig |
| watch | Created a service where a service was also not started |
| watch | Detects VirtualBox through the presence of a device |
| watch | Expresses interest in specific running processes |
| watch | Installs itself for autorun at Windows startup |
| watch | Looks for the Windows Idle Time to determine the uptime |
| notice | A process attempted to delay the analysis task. |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Checks for the Locally Unique Identifier on the system for a suspicious privilege |
| notice | Checks whether any human activity is being performed by constantly checking whether the foreground window changed |
| notice | Creates a suspicious process |
| notice | Creates executable files on the filesystem |
| notice | Creates hidden or system file |
| notice | Drops a binary and executes it |
| notice | Executes one or more WMI queries |
| notice | Foreign language identified in PE resource |
| notice | One or more potentially interesting buffers were extracted |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| notice | Searches running processes potentially to identify processes for sandbox evasion |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| notice | Uses Windows utilities for basic Windows functionality |
| info | Checks amount of memory in system |
| info | Command line console output was observed |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (19cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_RL_Gen_Zero | Win32 Trojan Emotet | binaries (download) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (download) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Antivirus | Contains references to security software | binaries (download) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (download) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (download) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (download) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | ftp_command | ftp command | binaries (download) |
| info | IsDLL | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | IsPE64 | (no description) | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (download) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Suricata ids
ET POLICY Cryptocurrency Miner Checkin
ET MALWARE Lucifer CnC Checkin
ET EXPLOIT Possible ETERNALBLUE MS17-010 Heap Spray
ET EXPLOIT Possible ETERNALBLUE MS17-010 Echo Response
ET EXPLOIT ETERNALBLUE Exploit M2 MS17-010
ET MALWARE Lucifer CnC Checkin
ET EXPLOIT Possible ETERNALBLUE MS17-010 Heap Spray
ET EXPLOIT Possible ETERNALBLUE MS17-010 Echo Response
ET EXPLOIT ETERNALBLUE Exploit M2 MS17-010
PE API
IAT(Import Address Table) Library
KERNEL32.dll
0x6ba2b8 GetStartupInfoW
0x6ba2bc QueryPerformanceCounter
0x6ba2c0 InitializeSListHead
0x6ba2c4 WaitForMultipleObjectsEx
0x6ba2c8 UnregisterWaitEx
0x6ba2cc QueryDepthSList
0x6ba2d0 InterlockedPopEntrySList
0x6ba2d4 ReleaseSemaphore
0x6ba2d8 SetProcessAffinityMask
0x6ba2dc GetVersionExW
0x6ba2e0 GetThreadTimes
0x6ba2e4 UnregisterWait
0x6ba2e8 RegisterWaitForSingleObject
0x6ba2ec SetThreadAffinityMask
0x6ba2f0 GetProcessAffinityMask
0x6ba2f4 GetNumaHighestNodeNumber
0x6ba2f8 DeleteTimerQueueTimer
0x6ba2fc ChangeTimerQueueTimer
0x6ba300 CreateTimerQueueTimer
0x6ba304 GetLogicalProcessorInformation
0x6ba308 GetThreadPriority
0x6ba30c SwitchToThread
0x6ba310 SignalObjectAndWait
0x6ba314 CreateTimerQueue
0x6ba318 WriteConsoleW
0x6ba31c GetCurrentDirectoryW
0x6ba320 SetCurrentDirectoryW
0x6ba324 CreateFileW
0x6ba328 SetConsoleCtrlHandler
0x6ba32c SetEnvironmentVariableW
0x6ba330 SetEnvironmentVariableA
0x6ba334 FreeEnvironmentStringsW
0x6ba338 GetEnvironmentStringsW
0x6ba33c IsValidCodePage
0x6ba340 IsDebuggerPresent
0x6ba344 FindFirstFileExW
0x6ba348 FindFirstFileExA
0x6ba34c GetConsoleCP
0x6ba350 GetDriveTypeW
0x6ba354 GetTimeZoneInformation
0x6ba358 DeleteFileW
0x6ba35c ReadConsoleW
0x6ba360 GetConsoleMode
0x6ba364 SetFilePointerEx
0x6ba368 EnumSystemLocalesW
0x6ba36c IsValidLocale
0x6ba370 GetTimeFormatW
0x6ba374 GetDateFormatW
0x6ba378 GetStdHandle
0x6ba37c GetCommandLineW
0x6ba380 GetCommandLineA
0x6ba384 HeapQueryInformation
0x6ba388 GetFileType
0x6ba38c SetStdHandle
0x6ba390 GetFullPathNameW
0x6ba394 VirtualQuery
0x6ba398 GetModuleHandleExW
0x6ba39c FreeLibraryAndExitThread
0x6ba3a0 ExitThread
0x6ba3a4 InterlockedFlushSList
0x6ba3a8 InterlockedPushEntrySList
0x6ba3ac RtlUnwind
0x6ba3b0 GetStringTypeW
0x6ba3b4 LCMapStringW
0x6ba3b8 TryEnterCriticalSection
0x6ba3bc GetNativeSystemInfo
0x6ba3c0 GetExitCodeThread
0x6ba3c4 QueryPerformanceFrequency
0x6ba3c8 FormatMessageW
0x6ba3cc OutputDebugStringW
0x6ba3d0 IsProcessorFeaturePresent
0x6ba3d4 SetUnhandledExceptionFilter
0x6ba3d8 UnhandledExceptionFilter
0x6ba3dc CreateEventW
0x6ba3e0 WaitForSingleObjectEx
0x6ba3e4 LocalLock
0x6ba3e8 LocalUnlock
0x6ba3ec GetUserDefaultLCID
0x6ba3f0 ReplaceFileA
0x6ba3f4 GetDiskFreeSpaceA
0x6ba3f8 SearchPathA
0x6ba3fc GetProfileIntA
0x6ba400 GetTempFileNameA
0x6ba404 VerifyVersionInfoA
0x6ba408 VerSetConditionMask
0x6ba40c GetWindowsDirectoryA
0x6ba410 FindResourceExW
0x6ba414 lstrcpyA
0x6ba418 GetACP
0x6ba41c GetCurrentDirectoryA
0x6ba420 WritePrivateProfileStringA
0x6ba424 GetPrivateProfileStringA
0x6ba428 GetPrivateProfileIntA
0x6ba42c GetCPInfo
0x6ba430 GetOEMCP
0x6ba434 VirtualProtect
0x6ba438 GetUserDefaultUILanguage
0x6ba43c GetSystemDefaultUILanguage
0x6ba440 GetLocaleInfoW
0x6ba444 CompareStringW
0x6ba448 GetCurrentThread
0x6ba44c GlobalFindAtomA
0x6ba450 lstrcmpW
0x6ba454 GlobalDeleteAtom
0x6ba458 FreeResource
0x6ba45c GetSystemDirectoryW
0x6ba460 EncodePointer
0x6ba464 ResumeThread
0x6ba468 SuspendThread
0x6ba46c SetThreadPriority
0x6ba470 GlobalAddAtomA
0x6ba474 GlobalFlags
0x6ba478 SetErrorMode
0x6ba47c LocalReAlloc
0x6ba480 GlobalHandle
0x6ba484 GlobalReAlloc
0x6ba488 TlsFree
0x6ba48c TlsSetValue
0x6ba490 TlsGetValue
0x6ba494 TlsAlloc
0x6ba498 CompareStringA
0x6ba49c GetAtomNameA
0x6ba4a0 GlobalGetAtomNameA
0x6ba4a4 lstrcmpA
0x6ba4a8 SystemTimeToFileTime
0x6ba4ac SetFileTime
0x6ba4b0 LocalFileTimeToFileTime
0x6ba4b4 GetFileTime
0x6ba4b8 GetFileSizeEx
0x6ba4bc GetFileAttributesExA
0x6ba4c0 GetStringTypeExA
0x6ba4c4 GetThreadLocale
0x6ba4c8 GetVolumeInformationA
0x6ba4cc MoveFileA
0x6ba4d0 GetShortPathNameA
0x6ba4d4 LoadLibraryExA
0x6ba4d8 GetModuleHandleW
0x6ba4dc GetModuleFileNameW
0x6ba4e0 DuplicateHandle
0x6ba4e4 UnlockFile
0x6ba4e8 SetEndOfFile
0x6ba4ec LockFile
0x6ba4f0 GetFullPathNameA
0x6ba4f4 FlushFileBuffers
0x6ba4f8 FileTimeToLocalFileTime
0x6ba4fc MulDiv
0x6ba500 GlobalFree
0x6ba504 GlobalUnlock
0x6ba508 GlobalLock
0x6ba50c GlobalSize
0x6ba510 GlobalAlloc
0x6ba514 FileTimeToSystemTime
0x6ba518 SystemTimeToTzSpecificLocalTime
0x6ba51c FormatMessageA
0x6ba520 LocalAlloc
0x6ba524 LoadLibraryExW
0x6ba528 SetLastError
0x6ba52c GetSystemDefaultLangID
0x6ba530 CreateMutexA
0x6ba534 ExitProcess
0x6ba538 GetCurrentProcess
0x6ba53c OutputDebugStringA
0x6ba540 TerminateProcess
0x6ba544 GlobalMemoryStatusEx
0x6ba548 GetVersionExA
0x6ba54c LoadLibraryW
0x6ba550 Process32Next
0x6ba554 Process32First
0x6ba558 CreateProcessA
0x6ba55c GetStartupInfoA
0x6ba560 CreatePipe
0x6ba564 FreeLibrary
0x6ba568 FindResourceW
0x6ba56c OpenProcess
0x6ba570 LoadLibraryA
0x6ba574 GetProcAddress
0x6ba578 GetProcessHeap
0x6ba57c HeapDestroy
0x6ba580 DecodePointer
0x6ba584 HeapAlloc
0x6ba588 RaiseException
0x6ba58c HeapReAlloc
0x6ba590 HeapSize
0x6ba594 InitializeCriticalSectionAndSpinCount
0x6ba598 HeapFree
0x6ba59c LocalFree
0x6ba5a0 InterlockedDecrement
0x6ba5a4 GetComputerNameA
0x6ba5a8 Module32Next
0x6ba5ac Module32First
0x6ba5b0 MultiByteToWideChar
0x6ba5b4 GetCurrentProcessId
0x6ba5b8 CreateToolhelp32Snapshot
0x6ba5bc WaitNamedPipeA
0x6ba5c0 GetCurrentThreadId
0x6ba5c4 DeleteCriticalSection
0x6ba5c8 GetLastError
0x6ba5cc TerminateThread
0x6ba5d0 WaitForMultipleObjects
0x6ba5d4 SetEvent
0x6ba5d8 WaitForSingleObject
0x6ba5dc ResetEvent
0x6ba5e0 CreateEventA
0x6ba5e4 InitializeCriticalSection
0x6ba5e8 InterlockedIncrement
0x6ba5ec LeaveCriticalSection
0x6ba5f0 EnterCriticalSection
0x6ba5f4 GetTickCount
0x6ba5f8 GetTempPathA
0x6ba5fc GetModuleHandleA
0x6ba600 FindResourceA
0x6ba604 LoadResource
0x6ba608 LockResource
0x6ba60c SizeofResource
0x6ba610 VirtualAlloc
0x6ba614 VirtualFree
0x6ba618 MoveFileExA
0x6ba61c CreateThread
0x6ba620 GetDriveTypeA
0x6ba624 GetLogicalDriveStringsA
0x6ba628 GetDiskFreeSpaceExA
0x6ba62c GetSystemInfo
0x6ba630 GetProcessTimes
0x6ba634 GetExitCodeProcess
0x6ba638 GetSystemTimeAsFileTime
0x6ba63c WinExec
0x6ba640 FindClose
0x6ba644 FindNextFileA
0x6ba648 Sleep
0x6ba64c FindFirstFileA
0x6ba650 CopyFileA
0x6ba654 GetModuleFileNameA
0x6ba658 GetFileAttributesA
0x6ba65c DeleteFileA
0x6ba660 SetFileAttributesA
0x6ba664 lstrcmpiA
0x6ba668 WriteFile
0x6ba66c SetFilePointer
0x6ba670 ReadFile
0x6ba674 CloseHandle
0x6ba678 GetFileSize
0x6ba67c CreateFileA
0x6ba680 WideCharToMultiByte
0x6ba684 FindNextFileW
0x6ba688 RtlCaptureStackBackTrace
USER32.dll
0x6ba7ec LoadImageW
0x6ba7f0 TrackMouseEvent
0x6ba7f4 InvalidateRect
0x6ba7f8 KillTimer
0x6ba7fc SetTimer
0x6ba800 DeleteMenu
0x6ba804 SetCursor
0x6ba808 ShowOwnedPopups
0x6ba80c MapDialogRect
0x6ba810 GetAsyncKeyState
0x6ba814 GetNextDlgTabItem
0x6ba818 EndDialog
0x6ba81c CreateDialogIndirectParamA
0x6ba820 OffsetRect
0x6ba824 SetRectEmpty
0x6ba828 CopyImage
0x6ba82c SystemParametersInfoA
0x6ba830 GetMenuItemInfoA
0x6ba834 DestroyMenu
0x6ba838 IntersectRect
0x6ba83c InflateRect
0x6ba840 LoadBitmapW
0x6ba844 SetMenuItemInfoA
0x6ba848 GetMenuCheckMarkDimensions
0x6ba84c SetMenuItemBitmaps
0x6ba850 EnableMenuItem
0x6ba854 CheckMenuItem
0x6ba858 PostQuitMessage
0x6ba85c GetMonitorInfoA
0x6ba860 MonitorFromWindow
0x6ba864 WinHelpA
0x6ba868 GetScrollInfo
0x6ba86c SetScrollInfo
0x6ba870 LoadIconW
0x6ba874 LoadIconA
0x6ba878 GetTopWindow
0x6ba87c GetClassLongA
0x6ba880 EqualRect
0x6ba884 CopyRect
0x6ba888 MapWindowPoints
0x6ba88c AdjustWindowRectEx
0x6ba890 GetClientRect
0x6ba894 RemovePropA
0x6ba898 GetPropA
0x6ba89c SetPropA
0x6ba8a0 ShowScrollBar
0x6ba8a4 GetScrollRange
0x6ba8a8 SetScrollRange
0x6ba8ac ScrollWindow
0x6ba8b0 RedrawWindow
0x6ba8b4 SetForegroundWindow
0x6ba8b8 SetActiveWindow
0x6ba8bc UpdateWindow
0x6ba8c0 TrackPopupMenuEx
0x6ba8c4 TrackPopupMenu
0x6ba8c8 SetMenu
0x6ba8cc GetMenu
0x6ba8d0 GetCapture
0x6ba8d4 IsIconic
0x6ba8d8 EndDeferWindowPos
0x6ba8dc DeferWindowPos
0x6ba8e0 DrawStateA
0x6ba8e4 DrawEdge
0x6ba8e8 DrawFrameControl
0x6ba8ec IsZoomed
0x6ba8f0 LoadMenuW
0x6ba8f4 GetSystemMenu
0x6ba8f8 wsprintfW
0x6ba8fc wsprintfA
0x6ba900 BeginDeferWindowPos
0x6ba904 SetWindowPlacement
0x6ba908 GetWindowPlacement
0x6ba90c DestroyWindow
0x6ba910 IsChild
0x6ba914 IsMenu
0x6ba918 CreateWindowExA
0x6ba91c GetClassInfoExA
0x6ba920 GetClassInfoA
0x6ba924 RegisterClassA
0x6ba928 BringWindowToTop
0x6ba92c DefWindowProcA
0x6ba930 GetMessageTime
0x6ba934 GetMessagePos
0x6ba938 GetDialogBaseUnits
0x6ba93c FillRect
0x6ba940 ScreenToClient
0x6ba944 EndPaint
0x6ba948 BeginPaint
0x6ba94c GetWindowDC
0x6ba950 TabbedTextOutA
0x6ba954 GrayStringA
0x6ba958 DrawTextExA
0x6ba95c DrawTextA
0x6ba960 GetNextDlgGroupItem
0x6ba964 SetCapture
0x6ba968 ReleaseCapture
0x6ba96c WindowFromPoint
0x6ba970 DrawFocusRect
0x6ba974 IsRectEmpty
0x6ba978 LoadImageA
0x6ba97c DrawIconEx
0x6ba980 GetIconInfo
0x6ba984 MessageBeep
0x6ba988 EnableScrollBar
0x6ba98c HideCaret
0x6ba990 InvertRect
0x6ba994 LoadCursorW
0x6ba998 NotifyWinEvent
0x6ba99c CreatePopupMenu
0x6ba9a0 EmptyClipboard
0x6ba9a4 GetMenuDefaultItem
0x6ba9a8 MapVirtualKeyA
0x6ba9ac GetKeyNameTextA
0x6ba9b0 SetLayeredWindowAttributes
0x6ba9b4 EnumDisplayMonitors
0x6ba9b8 SetClassLongA
0x6ba9bc SetWindowRgn
0x6ba9c0 SetParent
0x6ba9c4 UnregisterClassA
0x6ba9c8 FindWindowA
0x6ba9cc GetWindowThreadProcessId
0x6ba9d0 GetLastInputInfo
0x6ba9d4 GetForegroundWindow
0x6ba9d8 SendMessageA
0x6ba9dc PostMessageA
0x6ba9e0 GetDesktopWindow
0x6ba9e4 GetMenuStringA
0x6ba9e8 GetMenuState
0x6ba9ec GetSubMenu
0x6ba9f0 GetMenuItemID
0x6ba9f4 GetMenuItemCount
0x6ba9f8 InsertMenuA
0x6ba9fc AppendMenuA
0x6baa00 RemoveMenu
0x6baa04 CharUpperA
0x6baa08 GetSystemMetrics
0x6baa0c UnhookWindowsHookEx
0x6baa10 GetWindowTextA
0x6baa14 GetWindowTextLengthA
0x6baa18 GetDC
0x6baa1c ReleaseDC
0x6baa20 GetSysColor
0x6baa24 GetSysColorBrush
0x6baa28 LoadCursorA
0x6baa2c EnableWindow
0x6baa30 IsWindowEnabled
0x6baa34 MessageBoxA
0x6baa38 GetWindowLongA
0x6baa3c GetParent
0x6baa40 GetLastActivePopup
0x6baa44 SetFocus
0x6baa48 SetScrollPos
0x6baa4c GetScrollPos
0x6baa50 GetWindow
0x6baa54 IsWindow
0x6baa58 ShowWindow
0x6baa5c MoveWindow
0x6baa60 SetWindowPos
0x6baa64 GetDlgItem
0x6baa68 SetDlgItemInt
0x6baa6c GetDlgItemInt
0x6baa70 SetDlgItemTextA
0x6baa74 GetDlgItemTextA
0x6baa78 CheckDlgButton
0x6baa7c CheckRadioButton
0x6baa80 IsDlgButtonChecked
0x6baa84 SendDlgItemMessageA
0x6baa88 GetDlgCtrlID
0x6baa8c GetFocus
0x6baa90 ScrollWindowEx
0x6baa94 SetWindowTextA
0x6baa98 SetWindowLongA
0x6baa9c IsDialogMessageA
0x6baaa0 GetWindowRect
0x6baaa4 ClientToScreen
0x6baaa8 PtInRect
0x6baaac GetClassNameA
0x6baab0 RealChildWindowFromPoint
0x6baab4 DestroyIcon
0x6baab8 GetMessageA
0x6baabc GetWindowRgn
0x6baac0 TranslateMessage
0x6baac4 DispatchMessageA
0x6baac8 PeekMessageA
0x6baacc IsWindowVisible
0x6baad0 GetActiveWindow
0x6baad4 GetKeyState
0x6baad8 ValidateRect
0x6baadc SetCursorPos
0x6baae0 CopyIcon
0x6baae4 FrameRect
0x6baae8 DrawIcon
0x6baaec OpenClipboard
0x6baaf0 CloseClipboard
0x6baaf4 SetClipboardData
0x6baaf8 RegisterWindowMessageA
0x6baafc GetCursorPos
0x6bab00 SetWindowsHookExA
0x6bab04 CallNextHookEx
0x6bab08 UnionRect
0x6bab0c UpdateLayeredWindow
0x6bab10 MonitorFromPoint
0x6bab14 LoadAcceleratorsA
0x6bab18 TranslateAcceleratorA
0x6bab1c LoadMenuA
0x6bab20 InsertMenuItemA
0x6bab24 GetMenuBarInfo
0x6bab28 UnpackDDElParam
0x6bab2c ReuseDDElParam
0x6bab30 GetComboBoxInfo
0x6bab34 PostThreadMessageA
0x6bab38 WaitMessage
0x6bab3c GetKeyboardLayout
0x6bab40 IsCharLowerA
0x6bab44 MapVirtualKeyExA
0x6bab48 GetKeyboardState
0x6bab4c ToAsciiEx
0x6bab50 LoadAcceleratorsW
0x6bab54 CreateAcceleratorTableA
0x6bab58 DestroyAcceleratorTable
0x6bab5c CopyAcceleratorTableA
0x6bab60 SetRect
0x6bab64 LockWindowUpdate
0x6bab68 SetMenuDefaultItem
0x6bab6c GetDoubleClickTime
0x6bab70 ModifyMenuA
0x6bab74 RegisterClipboardFormatA
0x6bab78 CharUpperBuffA
0x6bab7c IsClipboardFormatAvailable
0x6bab80 GetUpdateRect
0x6bab84 EnumChildWindows
0x6bab88 DrawMenuBar
0x6bab8c DefFrameProcA
0x6bab90 DefMDIChildProcA
0x6bab94 TranslateMDISysAccel
0x6bab98 SubtractRect
0x6bab9c SendNotifyMessageA
0x6baba0 MonitorFromRect
0x6baba4 InSendMessage
0x6baba8 CreateMenu
0x6babac WindowFromDC
0x6babb0 GetTabbedTextExtentW
0x6babb4 GetTabbedTextExtentA
0x6babb8 GetDCEx
0x6babbc DestroyCursor
0x6babc0 CallWindowProcA
GDI32.dll
0x6ba060 IntersectClipRect
0x6ba064 LineTo
0x6ba068 OffsetClipRgn
0x6ba06c PlayMetaFile
0x6ba070 PtVisible
0x6ba074 RectVisible
0x6ba078 RestoreDC
0x6ba07c SaveDC
0x6ba080 SelectClipRgn
0x6ba084 ExtSelectClipRgn
0x6ba088 SelectObject
0x6ba08c SelectPalette
0x6ba090 SetBkColor
0x6ba094 SetBkMode
0x6ba098 SetMapperFlags
0x6ba09c SetGraphicsMode
0x6ba0a0 SetMapMode
0x6ba0a4 SetLayout
0x6ba0a8 GetLayout
0x6ba0ac SetPolyFillMode
0x6ba0b0 SetROP2
0x6ba0b4 SetStretchBltMode
0x6ba0b8 SetTextCharacterExtra
0x6ba0bc SetTextColor
0x6ba0c0 SetTextAlign
0x6ba0c4 SetTextJustification
0x6ba0c8 PlayMetaFileRecord
0x6ba0cc EnumMetaFile
0x6ba0d0 SetWorldTransform
0x6ba0d4 SetColorAdjustment
0x6ba0d8 StartDocA
0x6ba0dc ArcTo
0x6ba0e0 PolyDraw
0x6ba0e4 SelectClipPath
0x6ba0e8 SetArcDirection
0x6ba0ec ExtCreatePen
0x6ba0f0 GetObjectA
0x6ba0f4 MoveToEx
0x6ba0f8 TextOutA
0x6ba0fc ExtTextOutA
0x6ba100 PolyBezierTo
0x6ba104 PolylineTo
0x6ba108 SetViewportExtEx
0x6ba10c SetViewportOrgEx
0x6ba110 SetWindowExtEx
0x6ba114 SetWindowOrgEx
0x6ba118 OffsetViewportOrgEx
0x6ba11c OffsetWindowOrgEx
0x6ba120 ScaleViewportExtEx
0x6ba124 ScaleWindowExtEx
0x6ba128 CombineRgn
0x6ba12c CreateFontIndirectA
0x6ba130 CreateRectRgnIndirect
0x6ba134 GetMapMode
0x6ba138 PatBlt
0x6ba13c SetRectRgn
0x6ba140 DPtoLP
0x6ba144 GetTextExtentPoint32A
0x6ba148 GetWindowExtEx
0x6ba14c EnumFontFamiliesExA
0x6ba150 CreatePalette
0x6ba154 GetNearestPaletteIndex
0x6ba158 GetPaletteEntries
0x6ba15c GetSystemPaletteEntries
0x6ba160 RealizePalette
0x6ba164 GetBkColor
0x6ba168 CreateCompatibleBitmap
0x6ba16c CreateDIBitmap
0x6ba170 EnumFontFamiliesA
0x6ba174 GetTextCharsetInfo
0x6ba178 GetDIBits
0x6ba17c SetPixel
0x6ba180 StretchBlt
0x6ba184 CreateDIBSection
0x6ba188 SetDIBColorTable
0x6ba18c CreateEllipticRgn
0x6ba190 Ellipse
0x6ba194 GetTextColor
0x6ba198 CreatePolygonRgn
0x6ba19c Polygon
0x6ba1a0 Polyline
0x6ba1a4 CreateRoundRectRgn
0x6ba1a8 LPtoDP
0x6ba1ac Rectangle
0x6ba1b0 GetRgnBox
0x6ba1b4 OffsetRgn
0x6ba1b8 GetCurrentObject
0x6ba1bc CreateFontA
0x6ba1c0 GetCharWidthA
0x6ba1c4 StretchDIBits
0x6ba1c8 RoundRect
0x6ba1cc FillRgn
0x6ba1d0 FrameRgn
0x6ba1d4 GetBoundsRect
0x6ba1d8 PtInRegion
0x6ba1dc ExtFloodFill
0x6ba1e0 SetPaletteEntries
0x6ba1e4 SetPixelV
0x6ba1e8 GetWindowOrgEx
0x6ba1ec GetViewportOrgEx
0x6ba1f0 CloseMetaFile
0x6ba1f4 CreateMetaFileA
0x6ba1f8 DeleteMetaFile
0x6ba1fc EndDoc
0x6ba200 StartPage
0x6ba204 EndPage
0x6ba208 AbortDoc
0x6ba20c SetAbortProc
0x6ba210 GetROP2
0x6ba214 GetBkMode
0x6ba218 GetNearestColor
0x6ba21c GetPolyFillMode
0x6ba220 GetStretchBltMode
0x6ba224 GetTextAlign
0x6ba228 GetTextExtentPointA
0x6ba22c GetTextExtentPoint32W
0x6ba230 GetTextFaceA
0x6ba234 GetViewportExtEx
0x6ba238 GetStockObject
0x6ba23c GetPixel
0x6ba240 GetObjectType
0x6ba244 GetCurrentPositionEx
0x6ba248 GetClipRgn
0x6ba24c GetClipBox
0x6ba250 ExcludeClipRect
0x6ba254 Escape
0x6ba258 DeleteDC
0x6ba25c CreateSolidBrush
0x6ba260 CreateRectRgn
0x6ba264 CreatePatternBrush
0x6ba268 CreatePen
0x6ba26c CreateHatchBrush
0x6ba270 CreateDIBPatternBrushPt
0x6ba274 CreateCompatibleDC
0x6ba278 CreateBitmap
0x6ba27c BitBlt
0x6ba280 DeleteObject
0x6ba284 GetDeviceCaps
0x6ba288 CreateDCA
0x6ba28c GetTextMetricsA
0x6ba290 ModifyWorldTransform
0x6ba294 CopyMetaFileA
MSIMG32.dll
0x6ba69c TransparentBlt
0x6ba6a0 AlphaBlend
WINSPOOL.DRV
0x6baca4 ClosePrinter
0x6baca8 OpenPrinterA
0x6bacac DocumentPropertiesA
0x6bacb0 GetJobA
ADVAPI32.dll
0x6ba000 SetFileSecurityA
0x6ba004 RegEnumValueA
0x6ba008 RegEnumKeyExA
0x6ba00c RegDeleteValueA
0x6ba010 RegQueryValueA
0x6ba014 RegEnumKeyA
0x6ba018 RegCreateKeyExA
0x6ba01c RegOpenKeyExW
0x6ba020 RegSetValueA
0x6ba024 RegDeleteKeyA
0x6ba028 CloseEventLog
0x6ba02c ClearEventLogA
0x6ba030 OpenEventLogA
0x6ba034 AdjustTokenPrivileges
0x6ba038 LookupPrivilegeValueA
0x6ba03c OpenProcessToken
0x6ba040 RegSetValueExA
0x6ba044 RegOpenKeyExA
0x6ba048 RegCloseKey
0x6ba04c RegQueryValueExA
0x6ba050 RegOpenKeyA
0x6ba054 GetUserNameA
0x6ba058 GetFileSecurityA
SHELL32.dll
0x6ba788 SHGetFileInfoA
0x6ba78c ExtractIconA
0x6ba790 SHAddToRecentDocs
0x6ba794 SHGetPathFromIDListA
0x6ba798 SHGetSpecialFolderLocation
0x6ba79c SHGetDesktopFolder
0x6ba7a0 DragQueryFileA
0x6ba7a4 DragFinish
0x6ba7a8 SHGetMalloc
0x6ba7ac SHBrowseForFolderA
0x6ba7b0 ShellExecuteExA
0x6ba7b4 SHAppBarMessage
0x6ba7b8 ShellExecuteA
SHLWAPI.dll
0x6ba7c0 StrStrA
0x6ba7c4 PathIsUNCA
0x6ba7c8 PathStripToRootA
0x6ba7cc PathFindExtensionA
0x6ba7d0 PathFindFileNameA
0x6ba7d4 PathRemoveExtensionA
0x6ba7d8 PathRemoveFileSpecW
0x6ba7dc StrFormatKBSizeA
0x6ba7e0 StrStrIA
0x6ba7e4 UrlUnescapeA
UxTheme.dll
0x6babc8 GetThemePartSize
0x6babcc IsThemeBackgroundPartiallyTransparent
0x6babd0 DrawThemeText
0x6babd4 DrawThemeParentBackground
0x6babd8 OpenThemeData
0x6babdc IsAppThemed
0x6babe0 GetWindowTheme
0x6babe4 GetCurrentThemeName
0x6babe8 GetThemeColor
0x6babec DrawThemeBackground
0x6babf0 CloseThemeData
0x6babf4 GetThemeSysColor
ole32.dll
0x6bada8 OleLoad
0x6badac OleSave
0x6badb0 OleSaveToStream
0x6badb4 OleCreateStaticFromData
0x6badb8 OleCreateLinkFromData
0x6badbc OleCreateFromData
0x6badc0 OleCreate
0x6badc4 OleSetContainedObject
0x6badc8 OleGetIconOfClass
0x6badcc GetHGlobalFromILockBytes
0x6badd0 OleCreateFromFile
0x6badd4 WriteClassStm
0x6badd8 CreateItemMoniker
0x6baddc CreateGenericComposite
0x6bade0 OleRegEnumVerbs
0x6bade4 OleRegGetMiscStatus
0x6bade8 IsAccelerator
0x6badec OleTranslateAccelerator
0x6badf0 OleDestroyMenuDescriptor
0x6badf4 OleCreateMenuDescriptor
0x6badf8 CreateILockBytesOnHGlobal
0x6badfc CreateFileMoniker
0x6bae00 StgIsStorageFile
0x6bae04 StgOpenStorageOnILockBytes
0x6bae08 StgOpenStorage
0x6bae0c StgCreateDocfile
0x6bae10 OleLockRunning
0x6bae14 OleSetMenuDescriptor
0x6bae18 PropVariantCopy
0x6bae1c RevokeDragDrop
0x6bae20 OleCreateLinkToFile
0x6bae24 CoLockObjectExternal
0x6bae28 OleGetClipboard
0x6bae2c DoDragDrop
0x6bae30 OleIsCurrentClipboard
0x6bae34 OleFlushClipboard
0x6bae38 OleSetClipboard
0x6bae3c CreateStreamOnHGlobal
0x6bae40 CoInitializeEx
0x6bae44 CoCreateGuid
0x6bae48 CoDisconnectObject
0x6bae4c StringFromGUID2
0x6bae50 SetConvertStg
0x6bae54 OleRegGetUserType
0x6bae58 ReleaseStgMedium
0x6bae5c OleDuplicateData
0x6bae60 ReadFmtUserTypeStg
0x6bae64 WriteFmtUserTypeStg
0x6bae68 WriteClassStg
0x6bae6c ReadClassStg
0x6bae70 CreateBindCtx
0x6bae74 CoTreatAsClass
0x6bae78 CoTaskMemFree
0x6bae7c CoTaskMemAlloc
0x6bae80 StringFromCLSID
0x6bae84 CoInitializeSecurity
0x6bae88 CoUninitialize
0x6bae8c CoInitialize
0x6bae90 OleRun
0x6bae94 CLSIDFromProgID
0x6bae98 CLSIDFromString
0x6bae9c CoCreateInstance
0x6baea0 CoSetProxyBlanket
0x6baea4 RegisterDragDrop
0x6baea8 CreateDataAdviseHolder
0x6baeac CreateOleAdviseHolder
0x6baeb0 GetRunningObjectTable
0x6baeb4 OleIsRunning
0x6baeb8 CoGetMalloc
0x6baebc OleQueryLinkFromData
0x6baec0 OleQueryCreateFromData
0x6baec4 CoFreeUnusedLibraries
0x6baec8 OleInitialize
0x6baecc OleUninitialize
0x6baed0 CoGetClassObject
0x6baed4 CoRegisterClassObject
0x6baed8 CoRevokeClassObject
0x6baedc CoRegisterMessageFilter
0x6baee0 StgCreateDocfileOnILockBytes
OLEAUT32.dll
0x6ba6c4 SafeArrayLock
0x6ba6c8 SafeArrayGetLBound
0x6ba6cc SafeArrayGetUBound
0x6ba6d0 SafeArrayGetElemsize
0x6ba6d4 SafeArrayGetDim
0x6ba6d8 SafeArrayRedim
0x6ba6dc SafeArrayDestroy
0x6ba6e0 SafeArrayDestroyData
0x6ba6e4 SafeArrayDestroyDescriptor
0x6ba6e8 SafeArrayCreate
0x6ba6ec SafeArrayAllocData
0x6ba6f0 SafeArrayAllocDescriptor
0x6ba6f4 VariantTimeToSystemTime
0x6ba6f8 SystemTimeToVariantTime
0x6ba6fc SysStringLen
0x6ba700 SafeArrayUnlock
0x6ba704 SysAllocStringLen
0x6ba708 VariantInit
0x6ba70c VariantClear
0x6ba710 SysAllocStringByteLen
0x6ba714 SysStringByteLen
0x6ba718 SysFreeString
0x6ba71c VarDecFromStr
0x6ba720 LoadTypeLib
0x6ba724 LoadRegTypeLib
0x6ba728 RegisterTypeLib
0x6ba72c SysAllocString
0x6ba730 SafeArrayAccessData
0x6ba734 SafeArrayUnaccessData
0x6ba738 SafeArrayGetElement
0x6ba73c VariantChangeType
0x6ba740 VarDateFromStr
0x6ba744 VarCyFromStr
0x6ba748 SafeArrayPutElement
0x6ba74c SafeArrayCopy
0x6ba750 VariantCopy
0x6ba754 SafeArrayPtrOfIndex
0x6ba758 VarBstrFromDec
0x6ba75c GetErrorInfo
0x6ba760 SetErrorInfo
0x6ba764 CreateErrorInfo
0x6ba768 VarBstrFromCy
0x6ba76c VarBstrFromDate
0x6ba770 SysReAllocStringLen
WS2_32.dll
0x6bacb8 gethostname
0x6bacbc sendto
0x6bacc0 gethostbyname
0x6bacc4 WSAIoctl
0x6bacc8 WSASend
0x6baccc WSARecv
0x6bacd0 WSAAccept
0x6bacd4 WSAEnumNetworkEvents
0x6bacd8 WSAWaitForMultipleEvents
0x6bacdc WSAEventSelect
0x6bace0 WSACreateEvent
0x6bace4 listen
0x6bace8 ind
0x6bacec inet_ntoa
0x6bacf0 WSASocketA
0x6bacf4 WSAStartup
0x6bacf8 WSACleanup
0x6bacfc WSACloseEvent
0x6bad00 closesocket
0x6bad04 send
0x6bad08 inet_addr
0x6bad0c socket
0x6bad10 setsockopt
0x6bad14 ioctlsocket
0x6bad18 htons
0x6bad1c connect
0x6bad20 select
0x6bad24 recv
0x6bad28 ntohs
0x6bad2c __WSAFDIsSet
0x6bad30 WSAGetLastError
NETAPI32.dll
0x6ba6a8 NetApiBufferFree
0x6ba6ac NetShareEnum
MPR.dll
0x6ba690 WNetCancelConnection2A
0x6ba694 WNetAddConnection2A
IPHLPAPI.DLL
0x6ba2ac GetAdaptersInfo
0x6ba2b0 GetIfTable
WININET.dll
0x6babfc HttpSendRequestA
0x6bac00 HttpAddRequestHeadersA
0x6bac04 HttpOpenRequestA
0x6bac08 GopherGetAttributeA
0x6bac0c GopherOpenFileA
0x6bac10 GopherFindFirstFileA
0x6bac14 GopherCreateLocatorA
0x6bac18 FtpCommandA
0x6bac1c FtpGetCurrentDirectoryA
0x6bac20 FtpSetCurrentDirectoryA
0x6bac24 HttpSendRequestExA
0x6bac28 FtpCreateDirectoryA
0x6bac2c FtpOpenFileA
0x6bac30 FtpRenameFileA
0x6bac34 FtpDeleteFileA
0x6bac38 FtpPutFileA
0x6bac3c FtpGetFileA
0x6bac40 FtpFindFirstFileA
0x6bac44 InternetSetStatusCallback
0x6bac48 InternetGetLastResponseInfoA
0x6bac4c InternetSetOptionA
0x6bac50 InternetQueryOptionA
0x6bac54 InternetFindNextFileA
0x6bac58 InternetQueryDataAvailable
0x6bac5c InternetWriteFile
0x6bac60 HttpEndRequestA
0x6bac64 HttpQueryInfoA
0x6bac68 InternetSetCookieA
0x6bac6c InternetGetCookieA
0x6bac70 InternetErrorDlg
0x6bac74 InternetReadFile
0x6bac78 FtpRemoveDirectoryA
0x6bac7c InternetOpenUrlA
0x6bac80 InternetCrackUrlA
0x6bac84 InternetCanonicalizeUrlA
0x6bac88 InternetOpenA
0x6bac8c InternetCloseHandle
0x6bac90 InternetConnectA
0x6bac94 InternetSetFilePointer
imagehlp.dll
0x6bada0 MakeSureDirectoryPathExists
PSAPI.DLL
0x6ba778 GetDeviceDriverBaseNameA
0x6ba77c GetModuleFileNameExA
0x6ba780 EnumDeviceDrivers
OLEACC.dll
0x6ba6b4 LresultFromObject
0x6ba6b8 AccessibleObjectFromWindow
0x6ba6bc CreateStdAccessibleObject
gdiplus.dll
0x6bad38 GdipDrawImageRectI
0x6bad3c GdipSetInterpolationMode
0x6bad40 GdipCreateFromHDC
0x6bad44 GdipCreateBitmapFromHBITMAP
0x6bad48 GdiplusShutdown
0x6bad4c GdipAlloc
0x6bad50 GdipFree
0x6bad54 GdiplusStartup
0x6bad58 GdipDrawImageI
0x6bad5c GdipDisposeImage
0x6bad60 GdipGetImageGraphicsContext
0x6bad64 GdipGetImageWidth
0x6bad68 GdipGetImageHeight
0x6bad6c GdipGetImagePixelFormat
0x6bad70 GdipGetImagePalette
0x6bad74 GdipGetImagePaletteSize
0x6bad78 GdipCreateBitmapFromStream
0x6bad7c GdipCreateBitmapFromFile
0x6bad80 GdipCreateBitmapFromStreamICM
0x6bad84 GdipCreateBitmapFromFileICM
0x6bad88 GdipCreateBitmapFromScan0
0x6bad8c GdipBitmapLockBits
0x6bad90 GdipBitmapUnlockBits
0x6bad94 GdipDeleteGraphics
0x6bad98 GdipCloneImage
IMM32.dll
0x6ba29c ImmGetOpenStatus
0x6ba2a0 ImmGetContext
0x6ba2a4 ImmReleaseContext
WINMM.dll
0x6bac9c PlaySoundA
oledlg.dll
0x6baee8 None
EAT(Export Address Table) is none
KERNEL32.dll
0x6ba2b8 GetStartupInfoW
0x6ba2bc QueryPerformanceCounter
0x6ba2c0 InitializeSListHead
0x6ba2c4 WaitForMultipleObjectsEx
0x6ba2c8 UnregisterWaitEx
0x6ba2cc QueryDepthSList
0x6ba2d0 InterlockedPopEntrySList
0x6ba2d4 ReleaseSemaphore
0x6ba2d8 SetProcessAffinityMask
0x6ba2dc GetVersionExW
0x6ba2e0 GetThreadTimes
0x6ba2e4 UnregisterWait
0x6ba2e8 RegisterWaitForSingleObject
0x6ba2ec SetThreadAffinityMask
0x6ba2f0 GetProcessAffinityMask
0x6ba2f4 GetNumaHighestNodeNumber
0x6ba2f8 DeleteTimerQueueTimer
0x6ba2fc ChangeTimerQueueTimer
0x6ba300 CreateTimerQueueTimer
0x6ba304 GetLogicalProcessorInformation
0x6ba308 GetThreadPriority
0x6ba30c SwitchToThread
0x6ba310 SignalObjectAndWait
0x6ba314 CreateTimerQueue
0x6ba318 WriteConsoleW
0x6ba31c GetCurrentDirectoryW
0x6ba320 SetCurrentDirectoryW
0x6ba324 CreateFileW
0x6ba328 SetConsoleCtrlHandler
0x6ba32c SetEnvironmentVariableW
0x6ba330 SetEnvironmentVariableA
0x6ba334 FreeEnvironmentStringsW
0x6ba338 GetEnvironmentStringsW
0x6ba33c IsValidCodePage
0x6ba340 IsDebuggerPresent
0x6ba344 FindFirstFileExW
0x6ba348 FindFirstFileExA
0x6ba34c GetConsoleCP
0x6ba350 GetDriveTypeW
0x6ba354 GetTimeZoneInformation
0x6ba358 DeleteFileW
0x6ba35c ReadConsoleW
0x6ba360 GetConsoleMode
0x6ba364 SetFilePointerEx
0x6ba368 EnumSystemLocalesW
0x6ba36c IsValidLocale
0x6ba370 GetTimeFormatW
0x6ba374 GetDateFormatW
0x6ba378 GetStdHandle
0x6ba37c GetCommandLineW
0x6ba380 GetCommandLineA
0x6ba384 HeapQueryInformation
0x6ba388 GetFileType
0x6ba38c SetStdHandle
0x6ba390 GetFullPathNameW
0x6ba394 VirtualQuery
0x6ba398 GetModuleHandleExW
0x6ba39c FreeLibraryAndExitThread
0x6ba3a0 ExitThread
0x6ba3a4 InterlockedFlushSList
0x6ba3a8 InterlockedPushEntrySList
0x6ba3ac RtlUnwind
0x6ba3b0 GetStringTypeW
0x6ba3b4 LCMapStringW
0x6ba3b8 TryEnterCriticalSection
0x6ba3bc GetNativeSystemInfo
0x6ba3c0 GetExitCodeThread
0x6ba3c4 QueryPerformanceFrequency
0x6ba3c8 FormatMessageW
0x6ba3cc OutputDebugStringW
0x6ba3d0 IsProcessorFeaturePresent
0x6ba3d4 SetUnhandledExceptionFilter
0x6ba3d8 UnhandledExceptionFilter
0x6ba3dc CreateEventW
0x6ba3e0 WaitForSingleObjectEx
0x6ba3e4 LocalLock
0x6ba3e8 LocalUnlock
0x6ba3ec GetUserDefaultLCID
0x6ba3f0 ReplaceFileA
0x6ba3f4 GetDiskFreeSpaceA
0x6ba3f8 SearchPathA
0x6ba3fc GetProfileIntA
0x6ba400 GetTempFileNameA
0x6ba404 VerifyVersionInfoA
0x6ba408 VerSetConditionMask
0x6ba40c GetWindowsDirectoryA
0x6ba410 FindResourceExW
0x6ba414 lstrcpyA
0x6ba418 GetACP
0x6ba41c GetCurrentDirectoryA
0x6ba420 WritePrivateProfileStringA
0x6ba424 GetPrivateProfileStringA
0x6ba428 GetPrivateProfileIntA
0x6ba42c GetCPInfo
0x6ba430 GetOEMCP
0x6ba434 VirtualProtect
0x6ba438 GetUserDefaultUILanguage
0x6ba43c GetSystemDefaultUILanguage
0x6ba440 GetLocaleInfoW
0x6ba444 CompareStringW
0x6ba448 GetCurrentThread
0x6ba44c GlobalFindAtomA
0x6ba450 lstrcmpW
0x6ba454 GlobalDeleteAtom
0x6ba458 FreeResource
0x6ba45c GetSystemDirectoryW
0x6ba460 EncodePointer
0x6ba464 ResumeThread
0x6ba468 SuspendThread
0x6ba46c SetThreadPriority
0x6ba470 GlobalAddAtomA
0x6ba474 GlobalFlags
0x6ba478 SetErrorMode
0x6ba47c LocalReAlloc
0x6ba480 GlobalHandle
0x6ba484 GlobalReAlloc
0x6ba488 TlsFree
0x6ba48c TlsSetValue
0x6ba490 TlsGetValue
0x6ba494 TlsAlloc
0x6ba498 CompareStringA
0x6ba49c GetAtomNameA
0x6ba4a0 GlobalGetAtomNameA
0x6ba4a4 lstrcmpA
0x6ba4a8 SystemTimeToFileTime
0x6ba4ac SetFileTime
0x6ba4b0 LocalFileTimeToFileTime
0x6ba4b4 GetFileTime
0x6ba4b8 GetFileSizeEx
0x6ba4bc GetFileAttributesExA
0x6ba4c0 GetStringTypeExA
0x6ba4c4 GetThreadLocale
0x6ba4c8 GetVolumeInformationA
0x6ba4cc MoveFileA
0x6ba4d0 GetShortPathNameA
0x6ba4d4 LoadLibraryExA
0x6ba4d8 GetModuleHandleW
0x6ba4dc GetModuleFileNameW
0x6ba4e0 DuplicateHandle
0x6ba4e4 UnlockFile
0x6ba4e8 SetEndOfFile
0x6ba4ec LockFile
0x6ba4f0 GetFullPathNameA
0x6ba4f4 FlushFileBuffers
0x6ba4f8 FileTimeToLocalFileTime
0x6ba4fc MulDiv
0x6ba500 GlobalFree
0x6ba504 GlobalUnlock
0x6ba508 GlobalLock
0x6ba50c GlobalSize
0x6ba510 GlobalAlloc
0x6ba514 FileTimeToSystemTime
0x6ba518 SystemTimeToTzSpecificLocalTime
0x6ba51c FormatMessageA
0x6ba520 LocalAlloc
0x6ba524 LoadLibraryExW
0x6ba528 SetLastError
0x6ba52c GetSystemDefaultLangID
0x6ba530 CreateMutexA
0x6ba534 ExitProcess
0x6ba538 GetCurrentProcess
0x6ba53c OutputDebugStringA
0x6ba540 TerminateProcess
0x6ba544 GlobalMemoryStatusEx
0x6ba548 GetVersionExA
0x6ba54c LoadLibraryW
0x6ba550 Process32Next
0x6ba554 Process32First
0x6ba558 CreateProcessA
0x6ba55c GetStartupInfoA
0x6ba560 CreatePipe
0x6ba564 FreeLibrary
0x6ba568 FindResourceW
0x6ba56c OpenProcess
0x6ba570 LoadLibraryA
0x6ba574 GetProcAddress
0x6ba578 GetProcessHeap
0x6ba57c HeapDestroy
0x6ba580 DecodePointer
0x6ba584 HeapAlloc
0x6ba588 RaiseException
0x6ba58c HeapReAlloc
0x6ba590 HeapSize
0x6ba594 InitializeCriticalSectionAndSpinCount
0x6ba598 HeapFree
0x6ba59c LocalFree
0x6ba5a0 InterlockedDecrement
0x6ba5a4 GetComputerNameA
0x6ba5a8 Module32Next
0x6ba5ac Module32First
0x6ba5b0 MultiByteToWideChar
0x6ba5b4 GetCurrentProcessId
0x6ba5b8 CreateToolhelp32Snapshot
0x6ba5bc WaitNamedPipeA
0x6ba5c0 GetCurrentThreadId
0x6ba5c4 DeleteCriticalSection
0x6ba5c8 GetLastError
0x6ba5cc TerminateThread
0x6ba5d0 WaitForMultipleObjects
0x6ba5d4 SetEvent
0x6ba5d8 WaitForSingleObject
0x6ba5dc ResetEvent
0x6ba5e0 CreateEventA
0x6ba5e4 InitializeCriticalSection
0x6ba5e8 InterlockedIncrement
0x6ba5ec LeaveCriticalSection
0x6ba5f0 EnterCriticalSection
0x6ba5f4 GetTickCount
0x6ba5f8 GetTempPathA
0x6ba5fc GetModuleHandleA
0x6ba600 FindResourceA
0x6ba604 LoadResource
0x6ba608 LockResource
0x6ba60c SizeofResource
0x6ba610 VirtualAlloc
0x6ba614 VirtualFree
0x6ba618 MoveFileExA
0x6ba61c CreateThread
0x6ba620 GetDriveTypeA
0x6ba624 GetLogicalDriveStringsA
0x6ba628 GetDiskFreeSpaceExA
0x6ba62c GetSystemInfo
0x6ba630 GetProcessTimes
0x6ba634 GetExitCodeProcess
0x6ba638 GetSystemTimeAsFileTime
0x6ba63c WinExec
0x6ba640 FindClose
0x6ba644 FindNextFileA
0x6ba648 Sleep
0x6ba64c FindFirstFileA
0x6ba650 CopyFileA
0x6ba654 GetModuleFileNameA
0x6ba658 GetFileAttributesA
0x6ba65c DeleteFileA
0x6ba660 SetFileAttributesA
0x6ba664 lstrcmpiA
0x6ba668 WriteFile
0x6ba66c SetFilePointer
0x6ba670 ReadFile
0x6ba674 CloseHandle
0x6ba678 GetFileSize
0x6ba67c CreateFileA
0x6ba680 WideCharToMultiByte
0x6ba684 FindNextFileW
0x6ba688 RtlCaptureStackBackTrace
USER32.dll
0x6ba7ec LoadImageW
0x6ba7f0 TrackMouseEvent
0x6ba7f4 InvalidateRect
0x6ba7f8 KillTimer
0x6ba7fc SetTimer
0x6ba800 DeleteMenu
0x6ba804 SetCursor
0x6ba808 ShowOwnedPopups
0x6ba80c MapDialogRect
0x6ba810 GetAsyncKeyState
0x6ba814 GetNextDlgTabItem
0x6ba818 EndDialog
0x6ba81c CreateDialogIndirectParamA
0x6ba820 OffsetRect
0x6ba824 SetRectEmpty
0x6ba828 CopyImage
0x6ba82c SystemParametersInfoA
0x6ba830 GetMenuItemInfoA
0x6ba834 DestroyMenu
0x6ba838 IntersectRect
0x6ba83c InflateRect
0x6ba840 LoadBitmapW
0x6ba844 SetMenuItemInfoA
0x6ba848 GetMenuCheckMarkDimensions
0x6ba84c SetMenuItemBitmaps
0x6ba850 EnableMenuItem
0x6ba854 CheckMenuItem
0x6ba858 PostQuitMessage
0x6ba85c GetMonitorInfoA
0x6ba860 MonitorFromWindow
0x6ba864 WinHelpA
0x6ba868 GetScrollInfo
0x6ba86c SetScrollInfo
0x6ba870 LoadIconW
0x6ba874 LoadIconA
0x6ba878 GetTopWindow
0x6ba87c GetClassLongA
0x6ba880 EqualRect
0x6ba884 CopyRect
0x6ba888 MapWindowPoints
0x6ba88c AdjustWindowRectEx
0x6ba890 GetClientRect
0x6ba894 RemovePropA
0x6ba898 GetPropA
0x6ba89c SetPropA
0x6ba8a0 ShowScrollBar
0x6ba8a4 GetScrollRange
0x6ba8a8 SetScrollRange
0x6ba8ac ScrollWindow
0x6ba8b0 RedrawWindow
0x6ba8b4 SetForegroundWindow
0x6ba8b8 SetActiveWindow
0x6ba8bc UpdateWindow
0x6ba8c0 TrackPopupMenuEx
0x6ba8c4 TrackPopupMenu
0x6ba8c8 SetMenu
0x6ba8cc GetMenu
0x6ba8d0 GetCapture
0x6ba8d4 IsIconic
0x6ba8d8 EndDeferWindowPos
0x6ba8dc DeferWindowPos
0x6ba8e0 DrawStateA
0x6ba8e4 DrawEdge
0x6ba8e8 DrawFrameControl
0x6ba8ec IsZoomed
0x6ba8f0 LoadMenuW
0x6ba8f4 GetSystemMenu
0x6ba8f8 wsprintfW
0x6ba8fc wsprintfA
0x6ba900 BeginDeferWindowPos
0x6ba904 SetWindowPlacement
0x6ba908 GetWindowPlacement
0x6ba90c DestroyWindow
0x6ba910 IsChild
0x6ba914 IsMenu
0x6ba918 CreateWindowExA
0x6ba91c GetClassInfoExA
0x6ba920 GetClassInfoA
0x6ba924 RegisterClassA
0x6ba928 BringWindowToTop
0x6ba92c DefWindowProcA
0x6ba930 GetMessageTime
0x6ba934 GetMessagePos
0x6ba938 GetDialogBaseUnits
0x6ba93c FillRect
0x6ba940 ScreenToClient
0x6ba944 EndPaint
0x6ba948 BeginPaint
0x6ba94c GetWindowDC
0x6ba950 TabbedTextOutA
0x6ba954 GrayStringA
0x6ba958 DrawTextExA
0x6ba95c DrawTextA
0x6ba960 GetNextDlgGroupItem
0x6ba964 SetCapture
0x6ba968 ReleaseCapture
0x6ba96c WindowFromPoint
0x6ba970 DrawFocusRect
0x6ba974 IsRectEmpty
0x6ba978 LoadImageA
0x6ba97c DrawIconEx
0x6ba980 GetIconInfo
0x6ba984 MessageBeep
0x6ba988 EnableScrollBar
0x6ba98c HideCaret
0x6ba990 InvertRect
0x6ba994 LoadCursorW
0x6ba998 NotifyWinEvent
0x6ba99c CreatePopupMenu
0x6ba9a0 EmptyClipboard
0x6ba9a4 GetMenuDefaultItem
0x6ba9a8 MapVirtualKeyA
0x6ba9ac GetKeyNameTextA
0x6ba9b0 SetLayeredWindowAttributes
0x6ba9b4 EnumDisplayMonitors
0x6ba9b8 SetClassLongA
0x6ba9bc SetWindowRgn
0x6ba9c0 SetParent
0x6ba9c4 UnregisterClassA
0x6ba9c8 FindWindowA
0x6ba9cc GetWindowThreadProcessId
0x6ba9d0 GetLastInputInfo
0x6ba9d4 GetForegroundWindow
0x6ba9d8 SendMessageA
0x6ba9dc PostMessageA
0x6ba9e0 GetDesktopWindow
0x6ba9e4 GetMenuStringA
0x6ba9e8 GetMenuState
0x6ba9ec GetSubMenu
0x6ba9f0 GetMenuItemID
0x6ba9f4 GetMenuItemCount
0x6ba9f8 InsertMenuA
0x6ba9fc AppendMenuA
0x6baa00 RemoveMenu
0x6baa04 CharUpperA
0x6baa08 GetSystemMetrics
0x6baa0c UnhookWindowsHookEx
0x6baa10 GetWindowTextA
0x6baa14 GetWindowTextLengthA
0x6baa18 GetDC
0x6baa1c ReleaseDC
0x6baa20 GetSysColor
0x6baa24 GetSysColorBrush
0x6baa28 LoadCursorA
0x6baa2c EnableWindow
0x6baa30 IsWindowEnabled
0x6baa34 MessageBoxA
0x6baa38 GetWindowLongA
0x6baa3c GetParent
0x6baa40 GetLastActivePopup
0x6baa44 SetFocus
0x6baa48 SetScrollPos
0x6baa4c GetScrollPos
0x6baa50 GetWindow
0x6baa54 IsWindow
0x6baa58 ShowWindow
0x6baa5c MoveWindow
0x6baa60 SetWindowPos
0x6baa64 GetDlgItem
0x6baa68 SetDlgItemInt
0x6baa6c GetDlgItemInt
0x6baa70 SetDlgItemTextA
0x6baa74 GetDlgItemTextA
0x6baa78 CheckDlgButton
0x6baa7c CheckRadioButton
0x6baa80 IsDlgButtonChecked
0x6baa84 SendDlgItemMessageA
0x6baa88 GetDlgCtrlID
0x6baa8c GetFocus
0x6baa90 ScrollWindowEx
0x6baa94 SetWindowTextA
0x6baa98 SetWindowLongA
0x6baa9c IsDialogMessageA
0x6baaa0 GetWindowRect
0x6baaa4 ClientToScreen
0x6baaa8 PtInRect
0x6baaac GetClassNameA
0x6baab0 RealChildWindowFromPoint
0x6baab4 DestroyIcon
0x6baab8 GetMessageA
0x6baabc GetWindowRgn
0x6baac0 TranslateMessage
0x6baac4 DispatchMessageA
0x6baac8 PeekMessageA
0x6baacc IsWindowVisible
0x6baad0 GetActiveWindow
0x6baad4 GetKeyState
0x6baad8 ValidateRect
0x6baadc SetCursorPos
0x6baae0 CopyIcon
0x6baae4 FrameRect
0x6baae8 DrawIcon
0x6baaec OpenClipboard
0x6baaf0 CloseClipboard
0x6baaf4 SetClipboardData
0x6baaf8 RegisterWindowMessageA
0x6baafc GetCursorPos
0x6bab00 SetWindowsHookExA
0x6bab04 CallNextHookEx
0x6bab08 UnionRect
0x6bab0c UpdateLayeredWindow
0x6bab10 MonitorFromPoint
0x6bab14 LoadAcceleratorsA
0x6bab18 TranslateAcceleratorA
0x6bab1c LoadMenuA
0x6bab20 InsertMenuItemA
0x6bab24 GetMenuBarInfo
0x6bab28 UnpackDDElParam
0x6bab2c ReuseDDElParam
0x6bab30 GetComboBoxInfo
0x6bab34 PostThreadMessageA
0x6bab38 WaitMessage
0x6bab3c GetKeyboardLayout
0x6bab40 IsCharLowerA
0x6bab44 MapVirtualKeyExA
0x6bab48 GetKeyboardState
0x6bab4c ToAsciiEx
0x6bab50 LoadAcceleratorsW
0x6bab54 CreateAcceleratorTableA
0x6bab58 DestroyAcceleratorTable
0x6bab5c CopyAcceleratorTableA
0x6bab60 SetRect
0x6bab64 LockWindowUpdate
0x6bab68 SetMenuDefaultItem
0x6bab6c GetDoubleClickTime
0x6bab70 ModifyMenuA
0x6bab74 RegisterClipboardFormatA
0x6bab78 CharUpperBuffA
0x6bab7c IsClipboardFormatAvailable
0x6bab80 GetUpdateRect
0x6bab84 EnumChildWindows
0x6bab88 DrawMenuBar
0x6bab8c DefFrameProcA
0x6bab90 DefMDIChildProcA
0x6bab94 TranslateMDISysAccel
0x6bab98 SubtractRect
0x6bab9c SendNotifyMessageA
0x6baba0 MonitorFromRect
0x6baba4 InSendMessage
0x6baba8 CreateMenu
0x6babac WindowFromDC
0x6babb0 GetTabbedTextExtentW
0x6babb4 GetTabbedTextExtentA
0x6babb8 GetDCEx
0x6babbc DestroyCursor
0x6babc0 CallWindowProcA
GDI32.dll
0x6ba060 IntersectClipRect
0x6ba064 LineTo
0x6ba068 OffsetClipRgn
0x6ba06c PlayMetaFile
0x6ba070 PtVisible
0x6ba074 RectVisible
0x6ba078 RestoreDC
0x6ba07c SaveDC
0x6ba080 SelectClipRgn
0x6ba084 ExtSelectClipRgn
0x6ba088 SelectObject
0x6ba08c SelectPalette
0x6ba090 SetBkColor
0x6ba094 SetBkMode
0x6ba098 SetMapperFlags
0x6ba09c SetGraphicsMode
0x6ba0a0 SetMapMode
0x6ba0a4 SetLayout
0x6ba0a8 GetLayout
0x6ba0ac SetPolyFillMode
0x6ba0b0 SetROP2
0x6ba0b4 SetStretchBltMode
0x6ba0b8 SetTextCharacterExtra
0x6ba0bc SetTextColor
0x6ba0c0 SetTextAlign
0x6ba0c4 SetTextJustification
0x6ba0c8 PlayMetaFileRecord
0x6ba0cc EnumMetaFile
0x6ba0d0 SetWorldTransform
0x6ba0d4 SetColorAdjustment
0x6ba0d8 StartDocA
0x6ba0dc ArcTo
0x6ba0e0 PolyDraw
0x6ba0e4 SelectClipPath
0x6ba0e8 SetArcDirection
0x6ba0ec ExtCreatePen
0x6ba0f0 GetObjectA
0x6ba0f4 MoveToEx
0x6ba0f8 TextOutA
0x6ba0fc ExtTextOutA
0x6ba100 PolyBezierTo
0x6ba104 PolylineTo
0x6ba108 SetViewportExtEx
0x6ba10c SetViewportOrgEx
0x6ba110 SetWindowExtEx
0x6ba114 SetWindowOrgEx
0x6ba118 OffsetViewportOrgEx
0x6ba11c OffsetWindowOrgEx
0x6ba120 ScaleViewportExtEx
0x6ba124 ScaleWindowExtEx
0x6ba128 CombineRgn
0x6ba12c CreateFontIndirectA
0x6ba130 CreateRectRgnIndirect
0x6ba134 GetMapMode
0x6ba138 PatBlt
0x6ba13c SetRectRgn
0x6ba140 DPtoLP
0x6ba144 GetTextExtentPoint32A
0x6ba148 GetWindowExtEx
0x6ba14c EnumFontFamiliesExA
0x6ba150 CreatePalette
0x6ba154 GetNearestPaletteIndex
0x6ba158 GetPaletteEntries
0x6ba15c GetSystemPaletteEntries
0x6ba160 RealizePalette
0x6ba164 GetBkColor
0x6ba168 CreateCompatibleBitmap
0x6ba16c CreateDIBitmap
0x6ba170 EnumFontFamiliesA
0x6ba174 GetTextCharsetInfo
0x6ba178 GetDIBits
0x6ba17c SetPixel
0x6ba180 StretchBlt
0x6ba184 CreateDIBSection
0x6ba188 SetDIBColorTable
0x6ba18c CreateEllipticRgn
0x6ba190 Ellipse
0x6ba194 GetTextColor
0x6ba198 CreatePolygonRgn
0x6ba19c Polygon
0x6ba1a0 Polyline
0x6ba1a4 CreateRoundRectRgn
0x6ba1a8 LPtoDP
0x6ba1ac Rectangle
0x6ba1b0 GetRgnBox
0x6ba1b4 OffsetRgn
0x6ba1b8 GetCurrentObject
0x6ba1bc CreateFontA
0x6ba1c0 GetCharWidthA
0x6ba1c4 StretchDIBits
0x6ba1c8 RoundRect
0x6ba1cc FillRgn
0x6ba1d0 FrameRgn
0x6ba1d4 GetBoundsRect
0x6ba1d8 PtInRegion
0x6ba1dc ExtFloodFill
0x6ba1e0 SetPaletteEntries
0x6ba1e4 SetPixelV
0x6ba1e8 GetWindowOrgEx
0x6ba1ec GetViewportOrgEx
0x6ba1f0 CloseMetaFile
0x6ba1f4 CreateMetaFileA
0x6ba1f8 DeleteMetaFile
0x6ba1fc EndDoc
0x6ba200 StartPage
0x6ba204 EndPage
0x6ba208 AbortDoc
0x6ba20c SetAbortProc
0x6ba210 GetROP2
0x6ba214 GetBkMode
0x6ba218 GetNearestColor
0x6ba21c GetPolyFillMode
0x6ba220 GetStretchBltMode
0x6ba224 GetTextAlign
0x6ba228 GetTextExtentPointA
0x6ba22c GetTextExtentPoint32W
0x6ba230 GetTextFaceA
0x6ba234 GetViewportExtEx
0x6ba238 GetStockObject
0x6ba23c GetPixel
0x6ba240 GetObjectType
0x6ba244 GetCurrentPositionEx
0x6ba248 GetClipRgn
0x6ba24c GetClipBox
0x6ba250 ExcludeClipRect
0x6ba254 Escape
0x6ba258 DeleteDC
0x6ba25c CreateSolidBrush
0x6ba260 CreateRectRgn
0x6ba264 CreatePatternBrush
0x6ba268 CreatePen
0x6ba26c CreateHatchBrush
0x6ba270 CreateDIBPatternBrushPt
0x6ba274 CreateCompatibleDC
0x6ba278 CreateBitmap
0x6ba27c BitBlt
0x6ba280 DeleteObject
0x6ba284 GetDeviceCaps
0x6ba288 CreateDCA
0x6ba28c GetTextMetricsA
0x6ba290 ModifyWorldTransform
0x6ba294 CopyMetaFileA
MSIMG32.dll
0x6ba69c TransparentBlt
0x6ba6a0 AlphaBlend
WINSPOOL.DRV
0x6baca4 ClosePrinter
0x6baca8 OpenPrinterA
0x6bacac DocumentPropertiesA
0x6bacb0 GetJobA
ADVAPI32.dll
0x6ba000 SetFileSecurityA
0x6ba004 RegEnumValueA
0x6ba008 RegEnumKeyExA
0x6ba00c RegDeleteValueA
0x6ba010 RegQueryValueA
0x6ba014 RegEnumKeyA
0x6ba018 RegCreateKeyExA
0x6ba01c RegOpenKeyExW
0x6ba020 RegSetValueA
0x6ba024 RegDeleteKeyA
0x6ba028 CloseEventLog
0x6ba02c ClearEventLogA
0x6ba030 OpenEventLogA
0x6ba034 AdjustTokenPrivileges
0x6ba038 LookupPrivilegeValueA
0x6ba03c OpenProcessToken
0x6ba040 RegSetValueExA
0x6ba044 RegOpenKeyExA
0x6ba048 RegCloseKey
0x6ba04c RegQueryValueExA
0x6ba050 RegOpenKeyA
0x6ba054 GetUserNameA
0x6ba058 GetFileSecurityA
SHELL32.dll
0x6ba788 SHGetFileInfoA
0x6ba78c ExtractIconA
0x6ba790 SHAddToRecentDocs
0x6ba794 SHGetPathFromIDListA
0x6ba798 SHGetSpecialFolderLocation
0x6ba79c SHGetDesktopFolder
0x6ba7a0 DragQueryFileA
0x6ba7a4 DragFinish
0x6ba7a8 SHGetMalloc
0x6ba7ac SHBrowseForFolderA
0x6ba7b0 ShellExecuteExA
0x6ba7b4 SHAppBarMessage
0x6ba7b8 ShellExecuteA
SHLWAPI.dll
0x6ba7c0 StrStrA
0x6ba7c4 PathIsUNCA
0x6ba7c8 PathStripToRootA
0x6ba7cc PathFindExtensionA
0x6ba7d0 PathFindFileNameA
0x6ba7d4 PathRemoveExtensionA
0x6ba7d8 PathRemoveFileSpecW
0x6ba7dc StrFormatKBSizeA
0x6ba7e0 StrStrIA
0x6ba7e4 UrlUnescapeA
UxTheme.dll
0x6babc8 GetThemePartSize
0x6babcc IsThemeBackgroundPartiallyTransparent
0x6babd0 DrawThemeText
0x6babd4 DrawThemeParentBackground
0x6babd8 OpenThemeData
0x6babdc IsAppThemed
0x6babe0 GetWindowTheme
0x6babe4 GetCurrentThemeName
0x6babe8 GetThemeColor
0x6babec DrawThemeBackground
0x6babf0 CloseThemeData
0x6babf4 GetThemeSysColor
ole32.dll
0x6bada8 OleLoad
0x6badac OleSave
0x6badb0 OleSaveToStream
0x6badb4 OleCreateStaticFromData
0x6badb8 OleCreateLinkFromData
0x6badbc OleCreateFromData
0x6badc0 OleCreate
0x6badc4 OleSetContainedObject
0x6badc8 OleGetIconOfClass
0x6badcc GetHGlobalFromILockBytes
0x6badd0 OleCreateFromFile
0x6badd4 WriteClassStm
0x6badd8 CreateItemMoniker
0x6baddc CreateGenericComposite
0x6bade0 OleRegEnumVerbs
0x6bade4 OleRegGetMiscStatus
0x6bade8 IsAccelerator
0x6badec OleTranslateAccelerator
0x6badf0 OleDestroyMenuDescriptor
0x6badf4 OleCreateMenuDescriptor
0x6badf8 CreateILockBytesOnHGlobal
0x6badfc CreateFileMoniker
0x6bae00 StgIsStorageFile
0x6bae04 StgOpenStorageOnILockBytes
0x6bae08 StgOpenStorage
0x6bae0c StgCreateDocfile
0x6bae10 OleLockRunning
0x6bae14 OleSetMenuDescriptor
0x6bae18 PropVariantCopy
0x6bae1c RevokeDragDrop
0x6bae20 OleCreateLinkToFile
0x6bae24 CoLockObjectExternal
0x6bae28 OleGetClipboard
0x6bae2c DoDragDrop
0x6bae30 OleIsCurrentClipboard
0x6bae34 OleFlushClipboard
0x6bae38 OleSetClipboard
0x6bae3c CreateStreamOnHGlobal
0x6bae40 CoInitializeEx
0x6bae44 CoCreateGuid
0x6bae48 CoDisconnectObject
0x6bae4c StringFromGUID2
0x6bae50 SetConvertStg
0x6bae54 OleRegGetUserType
0x6bae58 ReleaseStgMedium
0x6bae5c OleDuplicateData
0x6bae60 ReadFmtUserTypeStg
0x6bae64 WriteFmtUserTypeStg
0x6bae68 WriteClassStg
0x6bae6c ReadClassStg
0x6bae70 CreateBindCtx
0x6bae74 CoTreatAsClass
0x6bae78 CoTaskMemFree
0x6bae7c CoTaskMemAlloc
0x6bae80 StringFromCLSID
0x6bae84 CoInitializeSecurity
0x6bae88 CoUninitialize
0x6bae8c CoInitialize
0x6bae90 OleRun
0x6bae94 CLSIDFromProgID
0x6bae98 CLSIDFromString
0x6bae9c CoCreateInstance
0x6baea0 CoSetProxyBlanket
0x6baea4 RegisterDragDrop
0x6baea8 CreateDataAdviseHolder
0x6baeac CreateOleAdviseHolder
0x6baeb0 GetRunningObjectTable
0x6baeb4 OleIsRunning
0x6baeb8 CoGetMalloc
0x6baebc OleQueryLinkFromData
0x6baec0 OleQueryCreateFromData
0x6baec4 CoFreeUnusedLibraries
0x6baec8 OleInitialize
0x6baecc OleUninitialize
0x6baed0 CoGetClassObject
0x6baed4 CoRegisterClassObject
0x6baed8 CoRevokeClassObject
0x6baedc CoRegisterMessageFilter
0x6baee0 StgCreateDocfileOnILockBytes
OLEAUT32.dll
0x6ba6c4 SafeArrayLock
0x6ba6c8 SafeArrayGetLBound
0x6ba6cc SafeArrayGetUBound
0x6ba6d0 SafeArrayGetElemsize
0x6ba6d4 SafeArrayGetDim
0x6ba6d8 SafeArrayRedim
0x6ba6dc SafeArrayDestroy
0x6ba6e0 SafeArrayDestroyData
0x6ba6e4 SafeArrayDestroyDescriptor
0x6ba6e8 SafeArrayCreate
0x6ba6ec SafeArrayAllocData
0x6ba6f0 SafeArrayAllocDescriptor
0x6ba6f4 VariantTimeToSystemTime
0x6ba6f8 SystemTimeToVariantTime
0x6ba6fc SysStringLen
0x6ba700 SafeArrayUnlock
0x6ba704 SysAllocStringLen
0x6ba708 VariantInit
0x6ba70c VariantClear
0x6ba710 SysAllocStringByteLen
0x6ba714 SysStringByteLen
0x6ba718 SysFreeString
0x6ba71c VarDecFromStr
0x6ba720 LoadTypeLib
0x6ba724 LoadRegTypeLib
0x6ba728 RegisterTypeLib
0x6ba72c SysAllocString
0x6ba730 SafeArrayAccessData
0x6ba734 SafeArrayUnaccessData
0x6ba738 SafeArrayGetElement
0x6ba73c VariantChangeType
0x6ba740 VarDateFromStr
0x6ba744 VarCyFromStr
0x6ba748 SafeArrayPutElement
0x6ba74c SafeArrayCopy
0x6ba750 VariantCopy
0x6ba754 SafeArrayPtrOfIndex
0x6ba758 VarBstrFromDec
0x6ba75c GetErrorInfo
0x6ba760 SetErrorInfo
0x6ba764 CreateErrorInfo
0x6ba768 VarBstrFromCy
0x6ba76c VarBstrFromDate
0x6ba770 SysReAllocStringLen
WS2_32.dll
0x6bacb8 gethostname
0x6bacbc sendto
0x6bacc0 gethostbyname
0x6bacc4 WSAIoctl
0x6bacc8 WSASend
0x6baccc WSARecv
0x6bacd0 WSAAccept
0x6bacd4 WSAEnumNetworkEvents
0x6bacd8 WSAWaitForMultipleEvents
0x6bacdc WSAEventSelect
0x6bace0 WSACreateEvent
0x6bace4 listen
0x6bace8 ind
0x6bacec inet_ntoa
0x6bacf0 WSASocketA
0x6bacf4 WSAStartup
0x6bacf8 WSACleanup
0x6bacfc WSACloseEvent
0x6bad00 closesocket
0x6bad04 send
0x6bad08 inet_addr
0x6bad0c socket
0x6bad10 setsockopt
0x6bad14 ioctlsocket
0x6bad18 htons
0x6bad1c connect
0x6bad20 select
0x6bad24 recv
0x6bad28 ntohs
0x6bad2c __WSAFDIsSet
0x6bad30 WSAGetLastError
NETAPI32.dll
0x6ba6a8 NetApiBufferFree
0x6ba6ac NetShareEnum
MPR.dll
0x6ba690 WNetCancelConnection2A
0x6ba694 WNetAddConnection2A
IPHLPAPI.DLL
0x6ba2ac GetAdaptersInfo
0x6ba2b0 GetIfTable
WININET.dll
0x6babfc HttpSendRequestA
0x6bac00 HttpAddRequestHeadersA
0x6bac04 HttpOpenRequestA
0x6bac08 GopherGetAttributeA
0x6bac0c GopherOpenFileA
0x6bac10 GopherFindFirstFileA
0x6bac14 GopherCreateLocatorA
0x6bac18 FtpCommandA
0x6bac1c FtpGetCurrentDirectoryA
0x6bac20 FtpSetCurrentDirectoryA
0x6bac24 HttpSendRequestExA
0x6bac28 FtpCreateDirectoryA
0x6bac2c FtpOpenFileA
0x6bac30 FtpRenameFileA
0x6bac34 FtpDeleteFileA
0x6bac38 FtpPutFileA
0x6bac3c FtpGetFileA
0x6bac40 FtpFindFirstFileA
0x6bac44 InternetSetStatusCallback
0x6bac48 InternetGetLastResponseInfoA
0x6bac4c InternetSetOptionA
0x6bac50 InternetQueryOptionA
0x6bac54 InternetFindNextFileA
0x6bac58 InternetQueryDataAvailable
0x6bac5c InternetWriteFile
0x6bac60 HttpEndRequestA
0x6bac64 HttpQueryInfoA
0x6bac68 InternetSetCookieA
0x6bac6c InternetGetCookieA
0x6bac70 InternetErrorDlg
0x6bac74 InternetReadFile
0x6bac78 FtpRemoveDirectoryA
0x6bac7c InternetOpenUrlA
0x6bac80 InternetCrackUrlA
0x6bac84 InternetCanonicalizeUrlA
0x6bac88 InternetOpenA
0x6bac8c InternetCloseHandle
0x6bac90 InternetConnectA
0x6bac94 InternetSetFilePointer
imagehlp.dll
0x6bada0 MakeSureDirectoryPathExists
PSAPI.DLL
0x6ba778 GetDeviceDriverBaseNameA
0x6ba77c GetModuleFileNameExA
0x6ba780 EnumDeviceDrivers
OLEACC.dll
0x6ba6b4 LresultFromObject
0x6ba6b8 AccessibleObjectFromWindow
0x6ba6bc CreateStdAccessibleObject
gdiplus.dll
0x6bad38 GdipDrawImageRectI
0x6bad3c GdipSetInterpolationMode
0x6bad40 GdipCreateFromHDC
0x6bad44 GdipCreateBitmapFromHBITMAP
0x6bad48 GdiplusShutdown
0x6bad4c GdipAlloc
0x6bad50 GdipFree
0x6bad54 GdiplusStartup
0x6bad58 GdipDrawImageI
0x6bad5c GdipDisposeImage
0x6bad60 GdipGetImageGraphicsContext
0x6bad64 GdipGetImageWidth
0x6bad68 GdipGetImageHeight
0x6bad6c GdipGetImagePixelFormat
0x6bad70 GdipGetImagePalette
0x6bad74 GdipGetImagePaletteSize
0x6bad78 GdipCreateBitmapFromStream
0x6bad7c GdipCreateBitmapFromFile
0x6bad80 GdipCreateBitmapFromStreamICM
0x6bad84 GdipCreateBitmapFromFileICM
0x6bad88 GdipCreateBitmapFromScan0
0x6bad8c GdipBitmapLockBits
0x6bad90 GdipBitmapUnlockBits
0x6bad94 GdipDeleteGraphics
0x6bad98 GdipCloneImage
IMM32.dll
0x6ba29c ImmGetOpenStatus
0x6ba2a0 ImmGetContext
0x6ba2a4 ImmReleaseContext
WINMM.dll
0x6bac9c PlaySoundA
oledlg.dll
0x6baee8 None
EAT(Export Address Table) is none