ScreenShot
| Created | 2024.07.21 10:02 | Machine | s1_win7_x6402 |
| Filename | 263CWoYD.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 34 detected (AIDetectMalware, lwgB, Artemis, Unsafe, FlyStudio, Vife, Attribute, HighConfidence, malicious, high confidence, Upatre, CLASSIC, Tool, VulnDriver, QQWare, Sabsik, OSCF@5rs7jr, Eldorado, DropperX, R654758, BLACKMOON, YXEFTZ, Static AI, Suspicious PE, confidence) | ||
| md5 | e1a6bad0a3a2e1040d730a2d6694fc1c | ||
| sha256 | 331485c01b91a54a2ee03351cb80f04fb271f74344765c9706e5204f87d5d7b1 | ||
| ssdeep | 786432:1ci1BEnvQu7vja8IDKrZMu4GwjSB6QJekq/n5BtRu5:1cCu7v2jKrWuPwjq6ga5g | ||
| imphash | 92720c48e72c00aab6117eccf984dde3 | ||
| impfuzzy | 192:lQ8grJjBqO0JZn6tckk9W73kUhT0kT/G9cRc/cW70iWzK//5DN5PQ7DAZQM:wIOurkdTl8EG8b+5DN5PQYCM | ||
Network IP location
Signature (21cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 34 AntiVirus engines on VirusTotal as malicious |
| watch | Collects information about installed applications |
| watch | Communicates with host for which no DNS query was performed |
| watch | Installs itself for autorun at Windows startup |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Changes read-write memory protection to read-execute (probably to avoid detection when setting all RWX flags at the same time) |
| notice | Creates a shortcut to an executable file |
| notice | Creates executable files on the filesystem |
| notice | Drops a binary and executes it |
| notice | Drops an executable to the user AppData folder |
| notice | Foreign language identified in PE resource |
| notice | Queries for potentially installed applications |
| notice | Repeatedly searches for a not-found process |
| notice | Searches running processes potentially to identify processes for sandbox evasion |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| notice | Uses Windows utilities for basic Windows functionality |
| info | Checks amount of memory in system |
| info | Queries for the computername |
| info | The executable uses a known packer |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
| info | Tries to locate where the browsers are installed |
Rules (29cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_1_Zero | Win32 Trojan Emotet | binaries (download) |
| danger | Win32_Trojan_Emotet_1_Zero | Win32 Trojan Emotet | binaries (upload) |
| danger | Win32_Trojan_Gen_1_0904B0_Zero | Win32 Trojan Emotet | binaries (download) |
| danger | Win32_Trojan_Gen_1_0904B0_Zero | Win32 Trojan Emotet | binaries (upload) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (download) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (download) |
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (upload) |
| watch | Antivirus | Contains references to security software | binaries (download) |
| watch | ASPack_Zero | ASPack packed file | binaries (download) |
| watch | ASPack_Zero | ASPack packed file | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (download) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (download) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (download) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| notice | anti_vm_detect | Possibly employs anti-virtualization techniques | binaries (download) |
| notice | anti_vm_detect | Possibly employs anti-virtualization techniques | binaries (upload) |
| info | DllRegisterServer_Zero | execute regsvr32.exe | binaries (download) |
| info | DllRegisterServer_Zero | execute regsvr32.exe | binaries (upload) |
| info | IsPE32 | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | lnk_file_format | Microsoft Windows Shortcut File Format | binaries (download) |
| info | Lnk_Format_Zero | LNK Format | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (download) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
PE API
IAT(Import Address Table) Library
MSVFW32.dll
0x605500 DrawDibDraw
AVIFIL32.dll
0x605030 AVIStreamGetFrame
0x605034 AVIStreamInfoA
WINMM.dll
0x605954 waveOutPrepareHeader
0x605958 PlaySoundA
0x60595c midiStreamRestart
0x605960 midiStreamClose
0x605964 midiOutReset
0x605968 midiStreamStop
0x60596c midiStreamOut
0x605970 waveOutWrite
0x605974 waveOutPause
0x605978 waveOutReset
0x60597c waveOutClose
0x605980 waveOutRestart
0x605984 waveOutGetNumDevs
0x605988 waveOutOpen
0x60598c midiOutUnprepareHeader
0x605990 midiStreamOpen
0x605994 midiStreamProperty
0x605998 waveOutUnprepareHeader
0x60599c midiOutPrepareHeader
WS2_32.dll
0x6059bc inet_ntoa
0x6059c0 WSACleanup
0x6059c4 closesocket
0x6059c8 WSAAsyncSelect
0x6059cc recvfrom
0x6059d0 ioctlsocket
0x6059d4 recv
0x6059d8 getpeername
0x6059dc accept
0x6059e0 ntohl
KERNEL32.dll
0x605290 TlsFree
0x605294 TlsSetValue
0x605298 LocalReAlloc
0x60529c TlsGetValue
0x6052a0 GetFileTime
0x6052a4 LocalFileTimeToFileTime
0x6052a8 SystemTimeToFileTime
0x6052ac SetFileTime
0x6052b0 GetCurrentThread
0x6052b4 GlobalFlags
0x6052b8 SetErrorMode
0x6052bc GetProcessVersion
0x6052c0 GetCPInfo
0x6052c4 GetOEMCP
0x6052c8 GetPrivateProfileIntA
0x6052cc GetTempFileNameA
0x6052d0 GetStartupInfoA
0x6052d4 RtlUnwind
0x6052d8 GetSystemTime
0x6052dc GetLocalTime
0x6052e0 RaiseException
0x6052e4 HeapSize
0x6052e8 GetACP
0x6052ec UnhandledExceptionFilter
0x6052f0 FreeEnvironmentStringsA
0x6052f4 FreeEnvironmentStringsW
0x6052f8 GetEnvironmentStrings
0x6052fc GetEnvironmentStringsW
0x605300 SetHandleCount
0x605304 GetStdHandle
0x605308 GetFileType
0x60530c GetEnvironmentVariableA
0x605310 HeapDestroy
0x605314 HeapCreate
0x605318 VirtualFree
0x60531c SetEnvironmentVariableA
0x605320 LCMapStringA
0x605324 LCMapStringW
0x605328 VirtualAlloc
0x60532c IsBadWritePtr
0x605330 GetStringTypeA
0x605334 GetStringTypeW
0x605338 SetUnhandledExceptionFilter
0x60533c CompareStringA
0x605340 CompareStringW
0x605344 IsBadReadPtr
0x605348 IsBadCodePtr
0x60534c SetStdHandle
0x605350 IsDBCSLeadByte
0x605354 GlobalDeleteAtom
0x605358 GetShortPathNameA
0x60535c lstrcmpiA
0x605360 GetThreadLocale
0x605364 GetStringTypeExA
0x605368 SetEndOfFile
0x60536c UnlockFile
0x605370 LockFile
0x605374 FlushFileBuffers
0x605378 DuplicateHandle
0x60537c lstrcpynA
0x605380 FileTimeToLocalFileTime
0x605384 FileTimeToSystemTime
0x605388 FormatMessageA
0x60538c LocalFree
0x605390 InterlockedDecrement
0x605394 InterlockedIncrement
0x605398 SuspendThread
0x60539c TerminateThread
0x6053a0 ReleaseMutex
0x6053a4 CreateMutexA
0x6053a8 GetVersion
0x6053ac GetTimeZoneInformation
0x6053b0 SetLastError
0x6053b4 GlobalHandle
0x6053b8 TerminateProcess
0x6053bc GetCurrentProcess
0x6053c0 GetFileSize
0x6053c4 SetFilePointer
0x6053c8 CreateSemaphoreA
0x6053cc ResumeThread
0x6053d0 ReleaseSemaphore
0x6053d4 EnterCriticalSection
0x6053d8 LeaveCriticalSection
0x6053dc GetProfileStringA
0x6053e0 WriteFile
0x6053e4 WaitForMultipleObjects
0x6053e8 CreateFileA
0x6053ec SetEvent
0x6053f0 FindResourceA
0x6053f4 LoadResource
0x6053f8 LockResource
0x6053fc ReadFile
0x605400 lstrlenW
0x605404 GetModuleFileNameA
0x605408 GetCurrentThreadId
0x60540c ExitProcess
0x605410 GlobalSize
0x605414 GlobalFree
0x605418 DeleteCriticalSection
0x60541c InitializeCriticalSection
0x605420 lstrcatA
0x605424 lstrlenA
0x605428 WinExec
0x60542c lstrcpyA
0x605430 TlsAlloc
0x605434 LocalAlloc
0x605438 GlobalFindAtomA
0x60543c FindNextFileA
0x605440 GlobalReAlloc
0x605444 HeapFree
0x605448 HeapReAlloc
0x60544c GetProcessHeap
0x605450 HeapAlloc
0x605454 GetUserDefaultLCID
0x605458 MultiByteToWideChar
0x60545c WideCharToMultiByte
0x605460 GetFullPathNameA
0x605464 FreeLibrary
0x605468 LoadLibraryA
0x60546c GetLastError
0x605470 GetVersionExA
0x605474 WritePrivateProfileStringA
0x605478 GetPrivateProfileStringA
0x60547c CreateThread
0x605480 CreateEventA
0x605484 Sleep
0x605488 GlobalAlloc
0x60548c GlobalLock
0x605490 GlobalUnlock
0x605494 GetTempPathA
0x605498 FindFirstFileA
0x60549c FindClose
0x6054a0 GetFileAttributesA
0x6054a4 MoveFileA
0x6054a8 DeleteFileA
0x6054ac CopyFileA
0x6054b0 CreateDirectoryA
0x6054b4 SetCurrentDirectoryA
0x6054b8 GetVolumeInformationA
0x6054bc GetModuleHandleA
0x6054c0 GetProcAddress
0x6054c4 GetDiskFreeSpaceA
0x6054c8 MulDiv
0x6054cc GetCommandLineA
0x6054d0 GetTickCount
0x6054d4 CreateProcessA
0x6054d8 WaitForSingleObject
0x6054dc CloseHandle
0x6054e0 GlobalGetAtomNameA
0x6054e4 GlobalAddAtomA
0x6054e8 InterlockedExchange
0x6054ec GetProfileIntA
0x6054f0 FindResourceExA
0x6054f4 lstrcpyW
0x6054f8 lstrcmpA
USER32.dll
0x605600 GetTabbedTextExtentA
0x605604 wvsprintfA
0x605608 ShowOwnedPopups
0x60560c GetMenuCheckMarkDimensions
0x605610 GetMenuState
0x605614 SetMenuItemBitmaps
0x605618 CheckMenuItem
0x60561c MoveWindow
0x605620 SetWindowTextA
0x605624 IsDialogMessageA
0x605628 ScrollWindowEx
0x60562c SetDlgItemTextA
0x605630 SetDlgItemInt
0x605634 GetDlgItemInt
0x605638 SendDlgItemMessageA
0x60563c MapWindowPoints
0x605640 AdjustWindowRectEx
0x605644 DeferWindowPos
0x605648 BeginDeferWindowPos
0x60564c EndDeferWindowPos
0x605650 ScrollWindow
0x605654 GetScrollInfo
0x605658 SetScrollInfo
0x60565c ShowScrollBar
0x605660 GetScrollPos
0x605664 RegisterClassA
0x605668 GetMenuItemCount
0x60566c GetMenuItemID
0x605670 CreateWindowExA
0x605674 SetWindowsHookExA
0x605678 CallNextHookEx
0x60567c GetClassLongA
0x605680 SetPropA
0x605684 UnhookWindowsHookEx
0x605688 GetPropA
0x60568c CallWindowProcA
0x605690 RemovePropA
0x605694 GetMessageTime
0x605698 GetLastActivePopup
0x60569c GetForegroundWindow
0x6056a0 RegisterWindowMessageA
0x6056a4 GetWindowPlacement
0x6056a8 EndDialog
0x6056ac CreateDialogIndirectParamA
0x6056b0 DestroyWindow
0x6056b4 GrayStringA
0x6056b8 DrawTextA
0x6056bc TabbedTextOutA
0x6056c0 EndPaint
0x6056c4 BeginPaint
0x6056c8 GetWindowDC
0x6056cc CharUpperA
0x6056d0 GetWindowTextLengthA
0x6056d4 HideCaret
0x6056d8 GetSysColorBrush
0x6056dc GetWindowTextA
0x6056e0 GetDlgItem
0x6056e4 FindWindowA
0x6056e8 keybd_event
0x6056ec GetClassNameA
0x6056f0 GetDesktopWindow
0x6056f4 VkKeyScanExA
0x6056f8 GetKeyboardLayout
0x6056fc GetNextDlgTabItem
0x605700 UnionRect
0x605704 LoadIconA
0x605708 TranslateMessage
0x60570c DrawFrameControl
0x605710 DrawEdge
0x605714 DrawFocusRect
0x605718 WindowFromPoint
0x60571c GetMessageA
0x605720 DispatchMessageA
0x605724 SetRectEmpty
0x605728 RegisterClipboardFormatA
0x60572c CreateIconFromResourceEx
0x605730 CreateIconFromResource
0x605734 DrawIconEx
0x605738 CreatePopupMenu
0x60573c AppendMenuA
0x605740 ModifyMenuA
0x605744 CreateMenu
0x605748 CreateAcceleratorTableA
0x60574c LoadStringA
0x605750 GetSubMenu
0x605754 EnableMenuItem
0x605758 ClientToScreen
0x60575c EnumDisplaySettingsA
0x605760 LoadImageA
0x605764 SystemParametersInfoA
0x605768 ShowWindow
0x60576c IsWindowEnabled
0x605770 TranslateAcceleratorA
0x605774 GetKeyState
0x605778 CopyAcceleratorTableA
0x60577c PostQuitMessage
0x605780 IsZoomed
0x605784 GetClassInfoA
0x605788 DefWindowProcA
0x60578c GetSystemMenu
0x605790 DeleteMenu
0x605794 GetMenu
0x605798 SetMenu
0x60579c PeekMessageA
0x6057a0 IsIconic
0x6057a4 SetFocus
0x6057a8 GetActiveWindow
0x6057ac GetWindow
0x6057b0 DestroyAcceleratorTable
0x6057b4 SetWindowRgn
0x6057b8 GetMessagePos
0x6057bc ScreenToClient
0x6057c0 ChildWindowFromPointEx
0x6057c4 CopyRect
0x6057c8 LoadBitmapA
0x6057cc WinHelpA
0x6057d0 KillTimer
0x6057d4 SetTimer
0x6057d8 ReleaseCapture
0x6057dc GetCapture
0x6057e0 SetCapture
0x6057e4 GetScrollRange
0x6057e8 SetScrollRange
0x6057ec SetScrollPos
0x6057f0 SetRect
0x6057f4 InflateRect
0x6057f8 IntersectRect
0x6057fc DestroyIcon
0x605800 PtInRect
0x605804 OffsetRect
0x605808 IsWindowVisible
0x60580c EnableWindow
0x605810 RedrawWindow
0x605814 GetWindowLongA
0x605818 SetWindowLongA
0x60581c GetSysColor
0x605820 SetActiveWindow
0x605824 SetCursorPos
0x605828 LoadCursorA
0x60582c SetCursor
0x605830 GetDC
0x605834 FillRect
0x605838 InvertRect
0x60583c InsertMenuA
0x605840 GetMenuStringA
0x605844 RemoveMenu
0x605848 LoadAcceleratorsA
0x60584c LoadMenuA
0x605850 ReuseDDElParam
0x605854 UnpackDDElParam
0x605858 BringWindowToTop
0x60585c ClipCursor
0x605860 DestroyCaret
0x605864 ShowCaret
0x605868 IsRectEmpty
0x60586c ReleaseDC
0x605870 IsChild
0x605874 TrackPopupMenu
0x605878 DestroyMenu
0x60587c SetForegroundWindow
0x605880 GetWindowRect
0x605884 EqualRect
0x605888 UpdateWindow
0x60588c ValidateRect
0x605890 InvalidateRect
0x605894 LockWindowUpdate
0x605898 GetClientRect
0x60589c GetFocus
0x6058a0 GetParent
0x6058a4 GetTopWindow
0x6058a8 PostMessageA
0x6058ac IsWindow
0x6058b0 SetParent
0x6058b4 DestroyCursor
0x6058b8 SendMessageA
0x6058bc SetWindowPos
0x6058c0 MessageBeep
0x6058c4 MessageBoxA
0x6058c8 GetCursorPos
0x6058cc GetSystemMetrics
0x6058d0 IsClipboardFormatAvailable
0x6058d4 EmptyClipboard
0x6058d8 SetClipboardData
0x6058dc OpenClipboard
0x6058e0 GetClipboardData
0x6058e4 CloseClipboard
0x6058e8 wsprintfA
0x6058ec WaitForInputIdle
0x6058f0 GetAsyncKeyState
0x6058f4 MapDialogRect
0x6058f8 InSendMessage
0x6058fc UnregisterClassA
0x605900 GetDCEx
0x605904 GetCaretPos
0x605908 SetCaretPos
0x60590c CreateCaret
0x605910 GetDlgCtrlID
GDI32.dll
0x605078 BeginPath
0x60507c GetWindowOrgEx
0x605080 GetViewportOrgEx
0x605084 GetWindowExtEx
0x605088 GetDIBits
0x60508c SetMapMode
0x605090 SetViewportOrgEx
0x605094 OffsetViewportOrgEx
0x605098 SetViewportExtEx
0x60509c ScaleViewportExtEx
0x6050a0 SetWindowOrgEx
0x6050a4 OffsetWindowOrgEx
0x6050a8 SetWindowExtEx
0x6050ac ScaleWindowExtEx
0x6050b0 GetClipBox
0x6050b4 ExcludeClipRect
0x6050b8 IntersectClipRect
0x6050bc MoveToEx
0x6050c0 LineTo
0x6050c4 SetTextAlign
0x6050c8 GetCurrentPositionEx
0x6050cc EndPath
0x6050d0 PolyBezierTo
0x6050d4 ExtSelectClipRgn
0x6050d8 GetViewportExtEx
0x6050dc PtVisible
0x6050e0 RectVisible
0x6050e4 ExtTextOutA
0x6050e8 Escape
0x6050ec GetTextMetricsA
0x6050f0 GetMapMode
0x6050f4 SetRectRgn
0x6050f8 GetCharWidthA
0x6050fc CopyMetaFileA
0x605100 AbortDoc
0x605104 SetAbortProc
0x605108 EnumFontFamiliesA
0x60510c CreateICA
0x605110 PtInRegion
0x605114 RectInRegion
0x605118 CreateEllipticRgnIndirect
0x60511c Polyline
0x605120 DeleteEnhMetaFile
0x605124 SetWinMetaFileBits
0x605128 PlayEnhMetaFile
0x60512c SetEnhMetaFileBits
0x605130 GetEnhMetaFileBits
0x605134 FrameRgn
0x605138 CloseFigure
0x60513c GetPath
0x605140 StrokeAndFillPath
0x605144 OffsetRgn
0x605148 SetPolyFillMode
0x60514c RestoreDC
0x605150 SaveDC
0x605154 PathToRegion
0x605158 CreateEllipticRgn
0x60515c DeleteMetaFile
0x605160 CloseMetaFile
0x605164 GetTextAlign
0x605168 GetNearestColor
0x60516c GetTextFaceA
0x605170 CreateRoundRectRgn
0x605174 GetTextColor
0x605178 GetBkMode
0x60517c GetBkColor
0x605180 GetROP2
0x605184 GetStretchBltMode
0x605188 GetPolyFillMode
0x60518c CreateCompatibleBitmap
0x605190 CreateDCA
0x605194 CreateBrushIndirect
0x605198 CreateHatchBrush
0x60519c CreateBitmap
0x6051a0 GetDeviceCaps
0x6051a4 GetTextExtentPoint32A
0x6051a8 Polygon
0x6051ac Arc
0x6051b0 Chord
0x6051b4 Pie
0x6051b8 RoundRect
0x6051bc GetCurrentObject
0x6051c0 DPtoLP
0x6051c4 LPtoDP
0x6051c8 Rectangle
0x6051cc Ellipse
0x6051d0 SetPixelV
0x6051d4 CreateCompatibleDC
0x6051d8 BitBlt
0x6051dc StartPage
0x6051e0 StartDocA
0x6051e4 DeleteDC
0x6051e8 EndDoc
0x6051ec EndPage
0x6051f0 GetObjectA
0x6051f4 GetStockObject
0x6051f8 CreateFontIndirectA
0x6051fc CreateSolidBrush
0x605200 FillRgn
0x605204 CreateRectRgn
0x605208 CombineRgn
0x60520c PatBlt
0x605210 CreatePen
0x605214 SelectObject
0x605218 CreatePatternBrush
0x60521c EnumFontFamiliesExA
0x605220 CreateFontA
0x605224 SetDIBitsToDevice
0x605228 StretchDIBits
0x60522c SetTextColor
0x605230 SetBkMode
0x605234 TextOutA
0x605238 SetBkColor
0x60523c CreateRectRgnIndirect
0x605240 CreateDIBSection
0x605244 SetStretchBltMode
0x605248 GetClipRgn
0x60524c CreatePolygonRgn
0x605250 SelectClipRgn
0x605254 DeleteObject
0x605258 CreateDIBitmap
0x60525c GetSystemPaletteEntries
0x605260 CreatePalette
0x605264 StretchBlt
0x605268 SelectPalette
0x60526c RealizePalette
0x605270 SetROP2
WINSPOOL.DRV
0x6059a4 ClosePrinter
0x6059a8 DocumentPropertiesA
0x6059ac OpenPrinterA
comdlg32.dll
0x6059e8 GetOpenFileNameA
0x6059ec CommDlgExtendedError
0x6059f0 ChooseFontA
0x6059f4 ChooseColorA
0x6059f8 GetSaveFileNameA
0x6059fc PrintDlgA
0x605a00 GetFileTitleA
ADVAPI32.dll
0x605000 RegQueryValueExA
0x605004 RegOpenKeyExA
0x605008 GetFileSecurityA
0x60500c RegSetValueExA
0x605010 RegCreateKeyA
0x605014 RegQueryValueA
0x605018 SetFileSecurityA
0x60501c RegOpenKeyA
0x605020 RegSetValueA
0x605024 RegCreateKeyExA
0x605028 RegCloseKey
SHELL32.dll
0x6055e4 DragQueryFileA
0x6055e8 Shell_NotifyIconA
0x6055ec ExtractIconA
0x6055f0 DragFinish
0x6055f4 SHGetFileInfoA
0x6055f8 ShellExecuteA
ole32.dll
0x605a08 OleSetMenuDescriptor
0x605a0c StgIsStorageFile
0x605a10 StgOpenStorage
0x605a14 StgCreateDocfile
0x605a18 CoUninitialize
0x605a1c CoInitialize
0x605a20 CoGetClassObject
0x605a24 OleSetClipboard
0x605a28 CreateFileMoniker
0x605a2c CoLockObjectExternal
0x605a30 OleQueryCreateFromData
0x605a34 OleGetClipboard
0x605a38 CreateGenericComposite
0x605a3c CreateItemMoniker
0x605a40 OleSaveToStream
0x605a44 WriteClassStm
0x605a48 GetHGlobalFromILockBytes
0x605a4c StgOpenStorageOnILockBytes
0x605a50 CreateILockBytesOnHGlobal
0x605a54 StgCreateDocfileOnILockBytes
0x605a58 OleSave
0x605a5c OleCreate
0x605a60 OleCreateLinkToFile
0x605a64 OleCreateFromFile
0x605a68 OleCreateStaticFromData
0x605a6c OleCreateFromData
0x605a70 OleSetContainedObject
0x605a74 OleLockRunning
0x605a78 OleRun
0x605a7c CoCreateInstance
0x605a80 CreateStreamOnHGlobal
0x605a84 CLSIDFromString
0x605a88 OleUninitialize
0x605a8c OleInitialize
0x605a90 RegisterDragDrop
0x605a94 RevokeDragDrop
0x605a98 ReleaseStgMedium
0x605a9c CLSIDFromProgID
0x605aa0 OleDuplicateData
0x605aa4 CoTaskMemAlloc
0x605aa8 CreateBindCtx
0x605aac CoTaskMemFree
0x605ab0 SetConvertStg
0x605ab4 WriteFmtUserTypeStg
0x605ab8 WriteClassStg
0x605abc OleRegGetUserType
0x605ac0 ReadFmtUserTypeStg
0x605ac4 ReadClassStg
0x605ac8 StringFromCLSID
0x605acc CoTreatAsClass
0x605ad0 CoDisconnectObject
0x605ad4 OleIsRunning
0x605ad8 OleLoad
0x605adc OleConvertOLESTREAMToIStorage
0x605ae0 OleGetIconOfClass
OLEAUT32.dll
0x605588 SafeArrayCreate
0x60558c SafeArrayDestroy
0x605590 SysAllocString
0x605594 VariantInit
0x605598 VariantCopyInd
0x60559c SafeArrayGetElement
0x6055a0 SafeArrayAccessData
0x6055a4 SafeArrayUnaccessData
0x6055a8 SafeArrayGetDim
0x6055ac SafeArrayGetLBound
0x6055b0 SafeArrayGetUBound
0x6055b4 VariantChangeType
0x6055b8 VariantClear
0x6055bc VariantCopy
0x6055c0 UnRegisterTypeLib
0x6055c4 SysFreeString
0x6055c8 SysAllocStringByteLen
0x6055cc SysAllocStringLen
0x6055d0 RegisterTypeLib
0x6055d4 LHashValOfNameSys
0x6055d8 LoadTypeLib
0x6055dc SafeArrayPutElement
ODBC32.dll
0x605508 None
0x60550c None
0x605510 None
0x605514 None
0x605518 None
0x60551c None
0x605520 None
0x605524 None
0x605528 None
0x60552c None
0x605530 None
0x605534 None
0x605538 None
0x60553c None
0x605540 None
0x605544 None
0x605548 None
0x60554c None
0x605550 None
0x605554 None
0x605558 None
0x60555c None
0x605560 None
0x605564 None
0x605568 None
0x60556c None
0x605570 None
0x605574 None
0x605578 None
0x60557c None
0x605580 None
COMCTL32.dll
0x60503c DestroyPropertySheetPage
0x605040 PropertySheetA
0x605044 CreatePropertySheetPageA
0x605048 ImageList_GetIcon
0x60504c ImageList_GetImageInfo
0x605050 ImageList_AddMasked
0x605054 ImageList_Draw
0x605058 _TrackMouseEvent
0x60505c None
0x605060 ImageList_Destroy
0x605064 ImageList_Create
0x605068 ImageList_LoadImageA
0x60506c ImageList_Read
0x605070 ImageList_Duplicate
WININET.dll
0x605918 InternetConnectA
0x60591c InternetQueryDataAvailable
0x605920 InternetReadFile
0x605924 InternetWriteFile
0x605928 InternetSetFilePointer
0x60592c InternetQueryOptionA
0x605930 InternetCanonicalizeUrlA
0x605934 InternetCrackUrlA
0x605938 FtpGetFileA
0x60593c InternetSetStatusCallback
0x605940 InternetGetLastResponseInfoA
0x605944 InternetOpenA
0x605948 InternetOpenUrlA
0x60594c InternetCloseHandle
IMM32.dll
0x605278 ImmGetContext
0x60527c ImmGetCompositionStringA
0x605280 ImmNotifyIME
0x605284 ImmReleaseContext
0x605288 ImmSetCompositionWindow
WLDAP32.dll
0x6059b4 None
oledlg.dll
0x605ae8 None
0x605aec None
0x605af0 None
EAT(Export Address Table) is none
MSVFW32.dll
0x605500 DrawDibDraw
AVIFIL32.dll
0x605030 AVIStreamGetFrame
0x605034 AVIStreamInfoA
WINMM.dll
0x605954 waveOutPrepareHeader
0x605958 PlaySoundA
0x60595c midiStreamRestart
0x605960 midiStreamClose
0x605964 midiOutReset
0x605968 midiStreamStop
0x60596c midiStreamOut
0x605970 waveOutWrite
0x605974 waveOutPause
0x605978 waveOutReset
0x60597c waveOutClose
0x605980 waveOutRestart
0x605984 waveOutGetNumDevs
0x605988 waveOutOpen
0x60598c midiOutUnprepareHeader
0x605990 midiStreamOpen
0x605994 midiStreamProperty
0x605998 waveOutUnprepareHeader
0x60599c midiOutPrepareHeader
WS2_32.dll
0x6059bc inet_ntoa
0x6059c0 WSACleanup
0x6059c4 closesocket
0x6059c8 WSAAsyncSelect
0x6059cc recvfrom
0x6059d0 ioctlsocket
0x6059d4 recv
0x6059d8 getpeername
0x6059dc accept
0x6059e0 ntohl
KERNEL32.dll
0x605290 TlsFree
0x605294 TlsSetValue
0x605298 LocalReAlloc
0x60529c TlsGetValue
0x6052a0 GetFileTime
0x6052a4 LocalFileTimeToFileTime
0x6052a8 SystemTimeToFileTime
0x6052ac SetFileTime
0x6052b0 GetCurrentThread
0x6052b4 GlobalFlags
0x6052b8 SetErrorMode
0x6052bc GetProcessVersion
0x6052c0 GetCPInfo
0x6052c4 GetOEMCP
0x6052c8 GetPrivateProfileIntA
0x6052cc GetTempFileNameA
0x6052d0 GetStartupInfoA
0x6052d4 RtlUnwind
0x6052d8 GetSystemTime
0x6052dc GetLocalTime
0x6052e0 RaiseException
0x6052e4 HeapSize
0x6052e8 GetACP
0x6052ec UnhandledExceptionFilter
0x6052f0 FreeEnvironmentStringsA
0x6052f4 FreeEnvironmentStringsW
0x6052f8 GetEnvironmentStrings
0x6052fc GetEnvironmentStringsW
0x605300 SetHandleCount
0x605304 GetStdHandle
0x605308 GetFileType
0x60530c GetEnvironmentVariableA
0x605310 HeapDestroy
0x605314 HeapCreate
0x605318 VirtualFree
0x60531c SetEnvironmentVariableA
0x605320 LCMapStringA
0x605324 LCMapStringW
0x605328 VirtualAlloc
0x60532c IsBadWritePtr
0x605330 GetStringTypeA
0x605334 GetStringTypeW
0x605338 SetUnhandledExceptionFilter
0x60533c CompareStringA
0x605340 CompareStringW
0x605344 IsBadReadPtr
0x605348 IsBadCodePtr
0x60534c SetStdHandle
0x605350 IsDBCSLeadByte
0x605354 GlobalDeleteAtom
0x605358 GetShortPathNameA
0x60535c lstrcmpiA
0x605360 GetThreadLocale
0x605364 GetStringTypeExA
0x605368 SetEndOfFile
0x60536c UnlockFile
0x605370 LockFile
0x605374 FlushFileBuffers
0x605378 DuplicateHandle
0x60537c lstrcpynA
0x605380 FileTimeToLocalFileTime
0x605384 FileTimeToSystemTime
0x605388 FormatMessageA
0x60538c LocalFree
0x605390 InterlockedDecrement
0x605394 InterlockedIncrement
0x605398 SuspendThread
0x60539c TerminateThread
0x6053a0 ReleaseMutex
0x6053a4 CreateMutexA
0x6053a8 GetVersion
0x6053ac GetTimeZoneInformation
0x6053b0 SetLastError
0x6053b4 GlobalHandle
0x6053b8 TerminateProcess
0x6053bc GetCurrentProcess
0x6053c0 GetFileSize
0x6053c4 SetFilePointer
0x6053c8 CreateSemaphoreA
0x6053cc ResumeThread
0x6053d0 ReleaseSemaphore
0x6053d4 EnterCriticalSection
0x6053d8 LeaveCriticalSection
0x6053dc GetProfileStringA
0x6053e0 WriteFile
0x6053e4 WaitForMultipleObjects
0x6053e8 CreateFileA
0x6053ec SetEvent
0x6053f0 FindResourceA
0x6053f4 LoadResource
0x6053f8 LockResource
0x6053fc ReadFile
0x605400 lstrlenW
0x605404 GetModuleFileNameA
0x605408 GetCurrentThreadId
0x60540c ExitProcess
0x605410 GlobalSize
0x605414 GlobalFree
0x605418 DeleteCriticalSection
0x60541c InitializeCriticalSection
0x605420 lstrcatA
0x605424 lstrlenA
0x605428 WinExec
0x60542c lstrcpyA
0x605430 TlsAlloc
0x605434 LocalAlloc
0x605438 GlobalFindAtomA
0x60543c FindNextFileA
0x605440 GlobalReAlloc
0x605444 HeapFree
0x605448 HeapReAlloc
0x60544c GetProcessHeap
0x605450 HeapAlloc
0x605454 GetUserDefaultLCID
0x605458 MultiByteToWideChar
0x60545c WideCharToMultiByte
0x605460 GetFullPathNameA
0x605464 FreeLibrary
0x605468 LoadLibraryA
0x60546c GetLastError
0x605470 GetVersionExA
0x605474 WritePrivateProfileStringA
0x605478 GetPrivateProfileStringA
0x60547c CreateThread
0x605480 CreateEventA
0x605484 Sleep
0x605488 GlobalAlloc
0x60548c GlobalLock
0x605490 GlobalUnlock
0x605494 GetTempPathA
0x605498 FindFirstFileA
0x60549c FindClose
0x6054a0 GetFileAttributesA
0x6054a4 MoveFileA
0x6054a8 DeleteFileA
0x6054ac CopyFileA
0x6054b0 CreateDirectoryA
0x6054b4 SetCurrentDirectoryA
0x6054b8 GetVolumeInformationA
0x6054bc GetModuleHandleA
0x6054c0 GetProcAddress
0x6054c4 GetDiskFreeSpaceA
0x6054c8 MulDiv
0x6054cc GetCommandLineA
0x6054d0 GetTickCount
0x6054d4 CreateProcessA
0x6054d8 WaitForSingleObject
0x6054dc CloseHandle
0x6054e0 GlobalGetAtomNameA
0x6054e4 GlobalAddAtomA
0x6054e8 InterlockedExchange
0x6054ec GetProfileIntA
0x6054f0 FindResourceExA
0x6054f4 lstrcpyW
0x6054f8 lstrcmpA
USER32.dll
0x605600 GetTabbedTextExtentA
0x605604 wvsprintfA
0x605608 ShowOwnedPopups
0x60560c GetMenuCheckMarkDimensions
0x605610 GetMenuState
0x605614 SetMenuItemBitmaps
0x605618 CheckMenuItem
0x60561c MoveWindow
0x605620 SetWindowTextA
0x605624 IsDialogMessageA
0x605628 ScrollWindowEx
0x60562c SetDlgItemTextA
0x605630 SetDlgItemInt
0x605634 GetDlgItemInt
0x605638 SendDlgItemMessageA
0x60563c MapWindowPoints
0x605640 AdjustWindowRectEx
0x605644 DeferWindowPos
0x605648 BeginDeferWindowPos
0x60564c EndDeferWindowPos
0x605650 ScrollWindow
0x605654 GetScrollInfo
0x605658 SetScrollInfo
0x60565c ShowScrollBar
0x605660 GetScrollPos
0x605664 RegisterClassA
0x605668 GetMenuItemCount
0x60566c GetMenuItemID
0x605670 CreateWindowExA
0x605674 SetWindowsHookExA
0x605678 CallNextHookEx
0x60567c GetClassLongA
0x605680 SetPropA
0x605684 UnhookWindowsHookEx
0x605688 GetPropA
0x60568c CallWindowProcA
0x605690 RemovePropA
0x605694 GetMessageTime
0x605698 GetLastActivePopup
0x60569c GetForegroundWindow
0x6056a0 RegisterWindowMessageA
0x6056a4 GetWindowPlacement
0x6056a8 EndDialog
0x6056ac CreateDialogIndirectParamA
0x6056b0 DestroyWindow
0x6056b4 GrayStringA
0x6056b8 DrawTextA
0x6056bc TabbedTextOutA
0x6056c0 EndPaint
0x6056c4 BeginPaint
0x6056c8 GetWindowDC
0x6056cc CharUpperA
0x6056d0 GetWindowTextLengthA
0x6056d4 HideCaret
0x6056d8 GetSysColorBrush
0x6056dc GetWindowTextA
0x6056e0 GetDlgItem
0x6056e4 FindWindowA
0x6056e8 keybd_event
0x6056ec GetClassNameA
0x6056f0 GetDesktopWindow
0x6056f4 VkKeyScanExA
0x6056f8 GetKeyboardLayout
0x6056fc GetNextDlgTabItem
0x605700 UnionRect
0x605704 LoadIconA
0x605708 TranslateMessage
0x60570c DrawFrameControl
0x605710 DrawEdge
0x605714 DrawFocusRect
0x605718 WindowFromPoint
0x60571c GetMessageA
0x605720 DispatchMessageA
0x605724 SetRectEmpty
0x605728 RegisterClipboardFormatA
0x60572c CreateIconFromResourceEx
0x605730 CreateIconFromResource
0x605734 DrawIconEx
0x605738 CreatePopupMenu
0x60573c AppendMenuA
0x605740 ModifyMenuA
0x605744 CreateMenu
0x605748 CreateAcceleratorTableA
0x60574c LoadStringA
0x605750 GetSubMenu
0x605754 EnableMenuItem
0x605758 ClientToScreen
0x60575c EnumDisplaySettingsA
0x605760 LoadImageA
0x605764 SystemParametersInfoA
0x605768 ShowWindow
0x60576c IsWindowEnabled
0x605770 TranslateAcceleratorA
0x605774 GetKeyState
0x605778 CopyAcceleratorTableA
0x60577c PostQuitMessage
0x605780 IsZoomed
0x605784 GetClassInfoA
0x605788 DefWindowProcA
0x60578c GetSystemMenu
0x605790 DeleteMenu
0x605794 GetMenu
0x605798 SetMenu
0x60579c PeekMessageA
0x6057a0 IsIconic
0x6057a4 SetFocus
0x6057a8 GetActiveWindow
0x6057ac GetWindow
0x6057b0 DestroyAcceleratorTable
0x6057b4 SetWindowRgn
0x6057b8 GetMessagePos
0x6057bc ScreenToClient
0x6057c0 ChildWindowFromPointEx
0x6057c4 CopyRect
0x6057c8 LoadBitmapA
0x6057cc WinHelpA
0x6057d0 KillTimer
0x6057d4 SetTimer
0x6057d8 ReleaseCapture
0x6057dc GetCapture
0x6057e0 SetCapture
0x6057e4 GetScrollRange
0x6057e8 SetScrollRange
0x6057ec SetScrollPos
0x6057f0 SetRect
0x6057f4 InflateRect
0x6057f8 IntersectRect
0x6057fc DestroyIcon
0x605800 PtInRect
0x605804 OffsetRect
0x605808 IsWindowVisible
0x60580c EnableWindow
0x605810 RedrawWindow
0x605814 GetWindowLongA
0x605818 SetWindowLongA
0x60581c GetSysColor
0x605820 SetActiveWindow
0x605824 SetCursorPos
0x605828 LoadCursorA
0x60582c SetCursor
0x605830 GetDC
0x605834 FillRect
0x605838 InvertRect
0x60583c InsertMenuA
0x605840 GetMenuStringA
0x605844 RemoveMenu
0x605848 LoadAcceleratorsA
0x60584c LoadMenuA
0x605850 ReuseDDElParam
0x605854 UnpackDDElParam
0x605858 BringWindowToTop
0x60585c ClipCursor
0x605860 DestroyCaret
0x605864 ShowCaret
0x605868 IsRectEmpty
0x60586c ReleaseDC
0x605870 IsChild
0x605874 TrackPopupMenu
0x605878 DestroyMenu
0x60587c SetForegroundWindow
0x605880 GetWindowRect
0x605884 EqualRect
0x605888 UpdateWindow
0x60588c ValidateRect
0x605890 InvalidateRect
0x605894 LockWindowUpdate
0x605898 GetClientRect
0x60589c GetFocus
0x6058a0 GetParent
0x6058a4 GetTopWindow
0x6058a8 PostMessageA
0x6058ac IsWindow
0x6058b0 SetParent
0x6058b4 DestroyCursor
0x6058b8 SendMessageA
0x6058bc SetWindowPos
0x6058c0 MessageBeep
0x6058c4 MessageBoxA
0x6058c8 GetCursorPos
0x6058cc GetSystemMetrics
0x6058d0 IsClipboardFormatAvailable
0x6058d4 EmptyClipboard
0x6058d8 SetClipboardData
0x6058dc OpenClipboard
0x6058e0 GetClipboardData
0x6058e4 CloseClipboard
0x6058e8 wsprintfA
0x6058ec WaitForInputIdle
0x6058f0 GetAsyncKeyState
0x6058f4 MapDialogRect
0x6058f8 InSendMessage
0x6058fc UnregisterClassA
0x605900 GetDCEx
0x605904 GetCaretPos
0x605908 SetCaretPos
0x60590c CreateCaret
0x605910 GetDlgCtrlID
GDI32.dll
0x605078 BeginPath
0x60507c GetWindowOrgEx
0x605080 GetViewportOrgEx
0x605084 GetWindowExtEx
0x605088 GetDIBits
0x60508c SetMapMode
0x605090 SetViewportOrgEx
0x605094 OffsetViewportOrgEx
0x605098 SetViewportExtEx
0x60509c ScaleViewportExtEx
0x6050a0 SetWindowOrgEx
0x6050a4 OffsetWindowOrgEx
0x6050a8 SetWindowExtEx
0x6050ac ScaleWindowExtEx
0x6050b0 GetClipBox
0x6050b4 ExcludeClipRect
0x6050b8 IntersectClipRect
0x6050bc MoveToEx
0x6050c0 LineTo
0x6050c4 SetTextAlign
0x6050c8 GetCurrentPositionEx
0x6050cc EndPath
0x6050d0 PolyBezierTo
0x6050d4 ExtSelectClipRgn
0x6050d8 GetViewportExtEx
0x6050dc PtVisible
0x6050e0 RectVisible
0x6050e4 ExtTextOutA
0x6050e8 Escape
0x6050ec GetTextMetricsA
0x6050f0 GetMapMode
0x6050f4 SetRectRgn
0x6050f8 GetCharWidthA
0x6050fc CopyMetaFileA
0x605100 AbortDoc
0x605104 SetAbortProc
0x605108 EnumFontFamiliesA
0x60510c CreateICA
0x605110 PtInRegion
0x605114 RectInRegion
0x605118 CreateEllipticRgnIndirect
0x60511c Polyline
0x605120 DeleteEnhMetaFile
0x605124 SetWinMetaFileBits
0x605128 PlayEnhMetaFile
0x60512c SetEnhMetaFileBits
0x605130 GetEnhMetaFileBits
0x605134 FrameRgn
0x605138 CloseFigure
0x60513c GetPath
0x605140 StrokeAndFillPath
0x605144 OffsetRgn
0x605148 SetPolyFillMode
0x60514c RestoreDC
0x605150 SaveDC
0x605154 PathToRegion
0x605158 CreateEllipticRgn
0x60515c DeleteMetaFile
0x605160 CloseMetaFile
0x605164 GetTextAlign
0x605168 GetNearestColor
0x60516c GetTextFaceA
0x605170 CreateRoundRectRgn
0x605174 GetTextColor
0x605178 GetBkMode
0x60517c GetBkColor
0x605180 GetROP2
0x605184 GetStretchBltMode
0x605188 GetPolyFillMode
0x60518c CreateCompatibleBitmap
0x605190 CreateDCA
0x605194 CreateBrushIndirect
0x605198 CreateHatchBrush
0x60519c CreateBitmap
0x6051a0 GetDeviceCaps
0x6051a4 GetTextExtentPoint32A
0x6051a8 Polygon
0x6051ac Arc
0x6051b0 Chord
0x6051b4 Pie
0x6051b8 RoundRect
0x6051bc GetCurrentObject
0x6051c0 DPtoLP
0x6051c4 LPtoDP
0x6051c8 Rectangle
0x6051cc Ellipse
0x6051d0 SetPixelV
0x6051d4 CreateCompatibleDC
0x6051d8 BitBlt
0x6051dc StartPage
0x6051e0 StartDocA
0x6051e4 DeleteDC
0x6051e8 EndDoc
0x6051ec EndPage
0x6051f0 GetObjectA
0x6051f4 GetStockObject
0x6051f8 CreateFontIndirectA
0x6051fc CreateSolidBrush
0x605200 FillRgn
0x605204 CreateRectRgn
0x605208 CombineRgn
0x60520c PatBlt
0x605210 CreatePen
0x605214 SelectObject
0x605218 CreatePatternBrush
0x60521c EnumFontFamiliesExA
0x605220 CreateFontA
0x605224 SetDIBitsToDevice
0x605228 StretchDIBits
0x60522c SetTextColor
0x605230 SetBkMode
0x605234 TextOutA
0x605238 SetBkColor
0x60523c CreateRectRgnIndirect
0x605240 CreateDIBSection
0x605244 SetStretchBltMode
0x605248 GetClipRgn
0x60524c CreatePolygonRgn
0x605250 SelectClipRgn
0x605254 DeleteObject
0x605258 CreateDIBitmap
0x60525c GetSystemPaletteEntries
0x605260 CreatePalette
0x605264 StretchBlt
0x605268 SelectPalette
0x60526c RealizePalette
0x605270 SetROP2
WINSPOOL.DRV
0x6059a4 ClosePrinter
0x6059a8 DocumentPropertiesA
0x6059ac OpenPrinterA
comdlg32.dll
0x6059e8 GetOpenFileNameA
0x6059ec CommDlgExtendedError
0x6059f0 ChooseFontA
0x6059f4 ChooseColorA
0x6059f8 GetSaveFileNameA
0x6059fc PrintDlgA
0x605a00 GetFileTitleA
ADVAPI32.dll
0x605000 RegQueryValueExA
0x605004 RegOpenKeyExA
0x605008 GetFileSecurityA
0x60500c RegSetValueExA
0x605010 RegCreateKeyA
0x605014 RegQueryValueA
0x605018 SetFileSecurityA
0x60501c RegOpenKeyA
0x605020 RegSetValueA
0x605024 RegCreateKeyExA
0x605028 RegCloseKey
SHELL32.dll
0x6055e4 DragQueryFileA
0x6055e8 Shell_NotifyIconA
0x6055ec ExtractIconA
0x6055f0 DragFinish
0x6055f4 SHGetFileInfoA
0x6055f8 ShellExecuteA
ole32.dll
0x605a08 OleSetMenuDescriptor
0x605a0c StgIsStorageFile
0x605a10 StgOpenStorage
0x605a14 StgCreateDocfile
0x605a18 CoUninitialize
0x605a1c CoInitialize
0x605a20 CoGetClassObject
0x605a24 OleSetClipboard
0x605a28 CreateFileMoniker
0x605a2c CoLockObjectExternal
0x605a30 OleQueryCreateFromData
0x605a34 OleGetClipboard
0x605a38 CreateGenericComposite
0x605a3c CreateItemMoniker
0x605a40 OleSaveToStream
0x605a44 WriteClassStm
0x605a48 GetHGlobalFromILockBytes
0x605a4c StgOpenStorageOnILockBytes
0x605a50 CreateILockBytesOnHGlobal
0x605a54 StgCreateDocfileOnILockBytes
0x605a58 OleSave
0x605a5c OleCreate
0x605a60 OleCreateLinkToFile
0x605a64 OleCreateFromFile
0x605a68 OleCreateStaticFromData
0x605a6c OleCreateFromData
0x605a70 OleSetContainedObject
0x605a74 OleLockRunning
0x605a78 OleRun
0x605a7c CoCreateInstance
0x605a80 CreateStreamOnHGlobal
0x605a84 CLSIDFromString
0x605a88 OleUninitialize
0x605a8c OleInitialize
0x605a90 RegisterDragDrop
0x605a94 RevokeDragDrop
0x605a98 ReleaseStgMedium
0x605a9c CLSIDFromProgID
0x605aa0 OleDuplicateData
0x605aa4 CoTaskMemAlloc
0x605aa8 CreateBindCtx
0x605aac CoTaskMemFree
0x605ab0 SetConvertStg
0x605ab4 WriteFmtUserTypeStg
0x605ab8 WriteClassStg
0x605abc OleRegGetUserType
0x605ac0 ReadFmtUserTypeStg
0x605ac4 ReadClassStg
0x605ac8 StringFromCLSID
0x605acc CoTreatAsClass
0x605ad0 CoDisconnectObject
0x605ad4 OleIsRunning
0x605ad8 OleLoad
0x605adc OleConvertOLESTREAMToIStorage
0x605ae0 OleGetIconOfClass
OLEAUT32.dll
0x605588 SafeArrayCreate
0x60558c SafeArrayDestroy
0x605590 SysAllocString
0x605594 VariantInit
0x605598 VariantCopyInd
0x60559c SafeArrayGetElement
0x6055a0 SafeArrayAccessData
0x6055a4 SafeArrayUnaccessData
0x6055a8 SafeArrayGetDim
0x6055ac SafeArrayGetLBound
0x6055b0 SafeArrayGetUBound
0x6055b4 VariantChangeType
0x6055b8 VariantClear
0x6055bc VariantCopy
0x6055c0 UnRegisterTypeLib
0x6055c4 SysFreeString
0x6055c8 SysAllocStringByteLen
0x6055cc SysAllocStringLen
0x6055d0 RegisterTypeLib
0x6055d4 LHashValOfNameSys
0x6055d8 LoadTypeLib
0x6055dc SafeArrayPutElement
ODBC32.dll
0x605508 None
0x60550c None
0x605510 None
0x605514 None
0x605518 None
0x60551c None
0x605520 None
0x605524 None
0x605528 None
0x60552c None
0x605530 None
0x605534 None
0x605538 None
0x60553c None
0x605540 None
0x605544 None
0x605548 None
0x60554c None
0x605550 None
0x605554 None
0x605558 None
0x60555c None
0x605560 None
0x605564 None
0x605568 None
0x60556c None
0x605570 None
0x605574 None
0x605578 None
0x60557c None
0x605580 None
COMCTL32.dll
0x60503c DestroyPropertySheetPage
0x605040 PropertySheetA
0x605044 CreatePropertySheetPageA
0x605048 ImageList_GetIcon
0x60504c ImageList_GetImageInfo
0x605050 ImageList_AddMasked
0x605054 ImageList_Draw
0x605058 _TrackMouseEvent
0x60505c None
0x605060 ImageList_Destroy
0x605064 ImageList_Create
0x605068 ImageList_LoadImageA
0x60506c ImageList_Read
0x605070 ImageList_Duplicate
WININET.dll
0x605918 InternetConnectA
0x60591c InternetQueryDataAvailable
0x605920 InternetReadFile
0x605924 InternetWriteFile
0x605928 InternetSetFilePointer
0x60592c InternetQueryOptionA
0x605930 InternetCanonicalizeUrlA
0x605934 InternetCrackUrlA
0x605938 FtpGetFileA
0x60593c InternetSetStatusCallback
0x605940 InternetGetLastResponseInfoA
0x605944 InternetOpenA
0x605948 InternetOpenUrlA
0x60594c InternetCloseHandle
IMM32.dll
0x605278 ImmGetContext
0x60527c ImmGetCompositionStringA
0x605280 ImmNotifyIME
0x605284 ImmReleaseContext
0x605288 ImmSetCompositionWindow
WLDAP32.dll
0x6059b4 None
oledlg.dll
0x605ae8 None
0x605aec None
0x605af0 None
EAT(Export Address Table) is none