ScreenShot
| Created | 2024.07.25 08:51 | Machine | s1_win7_x6401 |
| Filename | winiti.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 45 detected (AIDetectMalware, lsuS, malicious, high confidence, score, Unsafe, Remcos, Viqv, Zusy, Attribute, HighConfidence, GenKryptik, GZXP, Artemis, BackdoorX, CLOUD, Nekark, nyppw, Siggen29, YXEGXZ, Detected, ai score=86, Sonbokli, RVBT, 2XKDFO, ModiLoader, Eldorado, ZelphiCO, jLW@aeoWJDki, Chgt, Static AI, Suspicious PE, susgen, confidence) | ||
| md5 | a7d6f198863dada7ed361290544efc77 | ||
| sha256 | bfd569a327d9dacfbb01d3db746b42b9ed8beea155e60b2468bebeb18fd4ea92 | ||
| ssdeep | 24576:LjWx3xQdd8fdq8EvCW+RSZhD445cr8VWO5g3EVz:LKVyL8fC+8XD445mY5g3EVz | ||
| imphash | bd69c1febaaefe193b2b5784446034f7 | ||
| impfuzzy | 192:ot3sDbuu0xSUvK9t/o1XEpeyLGF9/M1Q+POQO:E3G0q925+1vPOQO | ||
Network IP location
Signature (8cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 45 AntiVirus engines on VirusTotal as malicious |
| watch | Disables proxy possibly for traffic interception |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | Checks if process is being debugged by a debugger |
| info | One or more processes crashed |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The executable uses a known packer |
Rules (5cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
PE API
IAT(Import Address Table) Library
oleaut32.dll
0x509744 SysFreeString
0x509748 SysReAllocStringLen
0x50974c SysAllocStringLen
advapi32.dll
0x509754 RegQueryValueExA
0x509758 RegOpenKeyExA
0x50975c RegCloseKey
user32.dll
0x509764 GetKeyboardType
0x509768 DestroyWindow
0x50976c LoadStringA
0x509770 MessageBoxA
0x509774 CharNextA
kernel32.dll
0x50977c GetACP
0x509780 Sleep
0x509784 VirtualFree
0x509788 VirtualAlloc
0x50978c GetTickCount
0x509790 QueryPerformanceCounter
0x509794 GetCurrentThreadId
0x509798 InterlockedDecrement
0x50979c InterlockedIncrement
0x5097a0 VirtualQuery
0x5097a4 WideCharToMultiByte
0x5097a8 MultiByteToWideChar
0x5097ac lstrlenA
0x5097b0 lstrcpynA
0x5097b4 LoadLibraryExA
0x5097b8 GetThreadLocale
0x5097bc GetStartupInfoA
0x5097c0 GetProcAddress
0x5097c4 GetModuleHandleA
0x5097c8 GetModuleFileNameA
0x5097cc GetLocaleInfoA
0x5097d0 GetCommandLineA
0x5097d4 FreeLibrary
0x5097d8 FindFirstFileA
0x5097dc FindClose
0x5097e0 ExitProcess
0x5097e4 ExitThread
0x5097e8 CreateThread
0x5097ec CompareStringA
0x5097f0 WriteFile
0x5097f4 UnhandledExceptionFilter
0x5097f8 RtlUnwind
0x5097fc RaiseException
0x509800 GetStdHandle
kernel32.dll
0x509808 TlsSetValue
0x50980c TlsGetValue
0x509810 LocalAlloc
0x509814 GetModuleHandleA
user32.dll
0x50981c CreateWindowExA
0x509820 WindowFromPoint
0x509824 WaitMessage
0x509828 UpdateWindow
0x50982c UnregisterClassA
0x509830 UnhookWindowsHookEx
0x509834 TranslateMessage
0x509838 TranslateMDISysAccel
0x50983c TrackPopupMenu
0x509840 SystemParametersInfoA
0x509844 ShowWindow
0x509848 ShowScrollBar
0x50984c ShowOwnedPopups
0x509850 SetWindowsHookExA
0x509854 SetWindowPos
0x509858 SetWindowPlacement
0x50985c SetWindowLongW
0x509860 SetWindowLongA
0x509864 SetTimer
0x509868 SetScrollRange
0x50986c SetScrollPos
0x509870 SetScrollInfo
0x509874 SetRect
0x509878 SetPropA
0x50987c SetParent
0x509880 SetMenuItemInfoA
0x509884 SetMenu
0x509888 SetForegroundWindow
0x50988c SetFocus
0x509890 SetCursor
0x509894 SetClassLongA
0x509898 SetCapture
0x50989c SetActiveWindow
0x5098a0 SendMessageW
0x5098a4 SendMessageA
0x5098a8 ScrollWindow
0x5098ac ScreenToClient
0x5098b0 RemovePropA
0x5098b4 RemoveMenu
0x5098b8 ReleaseDC
0x5098bc ReleaseCapture
0x5098c0 RegisterWindowMessageA
0x5098c4 RegisterClipboardFormatA
0x5098c8 RegisterClassA
0x5098cc RedrawWindow
0x5098d0 PtInRect
0x5098d4 PostQuitMessage
0x5098d8 PostMessageA
0x5098dc PeekMessageW
0x5098e0 PeekMessageA
0x5098e4 OffsetRect
0x5098e8 OemToCharA
0x5098ec MsgWaitForMultipleObjects
0x5098f0 MessageBoxA
0x5098f4 MapWindowPoints
0x5098f8 MapVirtualKeyA
0x5098fc LoadStringA
0x509900 LoadKeyboardLayoutA
0x509904 LoadIconA
0x509908 LoadCursorA
0x50990c LoadBitmapA
0x509910 KillTimer
0x509914 IsZoomed
0x509918 IsWindowVisible
0x50991c IsWindowUnicode
0x509920 IsWindowEnabled
0x509924 IsWindow
0x509928 IsRectEmpty
0x50992c IsIconic
0x509930 IsDialogMessageW
0x509934 IsDialogMessageA
0x509938 IsChild
0x50993c IsCharAlphaA
0x509940 InvalidateRect
0x509944 IntersectRect
0x509948 InsertMenuItemA
0x50994c InsertMenuA
0x509950 InflateRect
0x509954 GetWindowThreadProcessId
0x509958 GetWindowTextA
0x50995c GetWindowRect
0x509960 GetWindowPlacement
0x509964 GetWindowLongW
0x509968 GetWindowLongA
0x50996c GetWindowInfo
0x509970 GetWindowDC
0x509974 GetTopWindow
0x509978 GetSystemMetrics
0x50997c GetSystemMenu
0x509980 GetSysColorBrush
0x509984 GetSysColor
0x509988 GetSubMenu
0x50998c GetScrollRange
0x509990 GetScrollPos
0x509994 GetScrollInfo
0x509998 GetPropA
0x50999c GetParent
0x5099a0 GetWindow
0x5099a4 GetMessagePos
0x5099a8 GetMenuStringA
0x5099ac GetMenuState
0x5099b0 GetMenuItemInfoA
0x5099b4 GetMenuItemID
0x5099b8 GetMenuItemCount
0x5099bc GetMenu
0x5099c0 GetLastActivePopup
0x5099c4 GetKeyboardState
0x5099c8 GetKeyboardLayoutNameA
0x5099cc GetKeyboardLayoutList
0x5099d0 GetKeyboardLayout
0x5099d4 GetKeyState
0x5099d8 GetKeyNameTextA
0x5099dc GetIconInfo
0x5099e0 GetForegroundWindow
0x5099e4 GetFocus
0x5099e8 GetDesktopWindow
0x5099ec GetDCEx
0x5099f0 GetDC
0x5099f4 GetCursorPos
0x5099f8 GetCursor
0x5099fc GetClipboardData
0x509a00 GetClientRect
0x509a04 GetClassLongA
0x509a08 GetClassInfoA
0x509a0c GetCapture
0x509a10 GetActiveWindow
0x509a14 FrameRect
0x509a18 FindWindowA
0x509a1c FillRect
0x509a20 EqualRect
0x509a24 EnumWindows
0x509a28 EnumThreadWindows
0x509a2c EnumChildWindows
0x509a30 EndPaint
0x509a34 EnableWindow
0x509a38 EnableScrollBar
0x509a3c EnableMenuItem
0x509a40 DrawTextA
0x509a44 DrawMenuBar
0x509a48 DrawIconEx
0x509a4c DrawIcon
0x509a50 DrawFrameControl
0x509a54 DrawEdge
0x509a58 DispatchMessageW
0x509a5c DispatchMessageA
0x509a60 DestroyWindow
0x509a64 DestroyMenu
0x509a68 DestroyIcon
0x509a6c DestroyCursor
0x509a70 DeleteMenu
0x509a74 DefWindowProcA
0x509a78 DefMDIChildProcA
0x509a7c DefFrameProcA
0x509a80 CreatePopupMenu
0x509a84 CreateMenu
0x509a88 CreateIcon
0x509a8c ClientToScreen
0x509a90 CheckMenuItem
0x509a94 CallWindowProcA
0x509a98 CallNextHookEx
0x509a9c BeginPaint
0x509aa0 CharNextA
0x509aa4 CharLowerBuffA
0x509aa8 CharLowerA
0x509aac CharToOemA
0x509ab0 AdjustWindowRectEx
0x509ab4 ActivateKeyboardLayout
gdi32.dll
0x509abc UnrealizeObject
0x509ac0 StretchBlt
0x509ac4 SetWindowOrgEx
0x509ac8 SetWinMetaFileBits
0x509acc SetViewportOrgEx
0x509ad0 SetTextColor
0x509ad4 SetStretchBltMode
0x509ad8 SetROP2
0x509adc SetPixel
0x509ae0 SetEnhMetaFileBits
0x509ae4 SetDIBColorTable
0x509ae8 SetBrushOrgEx
0x509aec SetBkMode
0x509af0 SetBkColor
0x509af4 SelectPalette
0x509af8 SelectObject
0x509afc SelectClipRgn
0x509b00 SaveDC
0x509b04 RestoreDC
0x509b08 Rectangle
0x509b0c RectVisible
0x509b10 RealizePalette
0x509b14 Polyline
0x509b18 PlayEnhMetaFile
0x509b1c PatBlt
0x509b20 MoveToEx
0x509b24 MaskBlt
0x509b28 LineTo
0x509b2c IntersectClipRect
0x509b30 GetWindowOrgEx
0x509b34 GetWinMetaFileBits
0x509b38 GetTextMetricsA
0x509b3c GetTextExtentPoint32A
0x509b40 GetSystemPaletteEntries
0x509b44 GetStockObject
0x509b48 GetRgnBox
0x509b4c GetPixel
0x509b50 GetPaletteEntries
0x509b54 GetObjectA
0x509b58 GetEnhMetaFilePaletteEntries
0x509b5c GetEnhMetaFileHeader
0x509b60 GetEnhMetaFileBits
0x509b64 GetDeviceCaps
0x509b68 GetDIBits
0x509b6c GetDIBColorTable
0x509b70 GetDCOrgEx
0x509b74 GetCurrentPositionEx
0x509b78 GetClipBox
0x509b7c GetBrushOrgEx
0x509b80 GetBitmapBits
0x509b84 GdiFlush
0x509b88 ExcludeClipRect
0x509b8c DeleteObject
0x509b90 DeleteEnhMetaFile
0x509b94 DeleteDC
0x509b98 CreateSolidBrush
0x509b9c CreateRectRgn
0x509ba0 CreatePenIndirect
0x509ba4 CreatePalette
0x509ba8 CreateHalftonePalette
0x509bac CreateFontIndirectA
0x509bb0 CreateDIBitmap
0x509bb4 CreateDIBSection
0x509bb8 CreateCompatibleDC
0x509bbc CreateCompatibleBitmap
0x509bc0 CreateBrushIndirect
0x509bc4 CreateBitmap
0x509bc8 CopyEnhMetaFileA
0x509bcc BitBlt
version.dll
0x509bd4 VerQueryValueA
0x509bd8 GetFileVersionInfoSizeA
0x509bdc GetFileVersionInfoA
kernel32.dll
0x509be4 lstrcpyA
0x509be8 WriteFile
0x509bec WaitForSingleObject
0x509bf0 VirtualQuery
0x509bf4 VirtualAlloc
0x509bf8 SuspendThread
0x509bfc Sleep
0x509c00 SizeofResource
0x509c04 SetThreadPriority
0x509c08 SetThreadLocale
0x509c0c SetFilePointer
0x509c10 SetEvent
0x509c14 SetErrorMode
0x509c18 SetEndOfFile
0x509c1c ResumeThread
0x509c20 ResetEvent
0x509c24 ReadFile
0x509c28 MulDiv
0x509c2c LockResource
0x509c30 LoadResource
0x509c34 LoadLibraryA
0x509c38 LeaveCriticalSection
0x509c3c InitializeCriticalSection
0x509c40 GlobalFindAtomA
0x509c44 GlobalDeleteAtom
0x509c48 GlobalAddAtomA
0x509c4c GetVersionExA
0x509c50 GetVersion
0x509c54 GetTickCount
0x509c58 GetThreadLocale
0x509c5c GetStdHandle
0x509c60 GetProcAddress
0x509c64 GetModuleHandleW
0x509c68 GetModuleHandleA
0x509c6c GetModuleFileNameA
0x509c70 GetLocaleInfoA
0x509c74 GetLocalTime
0x509c78 GetLastError
0x509c7c GetFullPathNameA
0x509c80 GetExitCodeThread
0x509c84 GetDiskFreeSpaceA
0x509c88 GetDateFormatA
0x509c8c GetCurrentThreadId
0x509c90 GetCurrentProcessId
0x509c94 GetCPInfo
0x509c98 FreeResource
0x509c9c InterlockedIncrement
0x509ca0 InterlockedExchange
0x509ca4 InterlockedDecrement
0x509ca8 FreeLibrary
0x509cac FormatMessageA
0x509cb0 FindResourceA
0x509cb4 EnumCalendarInfoA
0x509cb8 EnterCriticalSection
0x509cbc DeleteCriticalSection
0x509cc0 CreateThread
0x509cc4 CreateFileA
0x509cc8 CreateEventA
0x509ccc CompareStringA
0x509cd0 CloseHandle
advapi32.dll
0x509cd8 RegQueryValueExA
0x509cdc RegOpenKeyExA
0x509ce0 RegFlushKey
0x509ce4 RegCloseKey
kernel32.dll
0x509cec Sleep
oleaut32.dll
0x509cf4 SafeArrayPtrOfIndex
0x509cf8 SafeArrayGetUBound
0x509cfc SafeArrayGetLBound
0x509d00 SafeArrayCreate
0x509d04 VariantChangeType
0x509d08 VariantCopy
0x509d0c VariantClear
0x509d10 VariantInit
comctl32.dll
0x509d18 _TrackMouseEvent
0x509d1c ImageList_SetIconSize
0x509d20 ImageList_GetIconSize
0x509d24 ImageList_Write
0x509d28 ImageList_Read
0x509d2c ImageList_DragShowNolock
0x509d30 ImageList_DragMove
0x509d34 ImageList_DragLeave
0x509d38 ImageList_DragEnter
0x509d3c ImageList_EndDrag
0x509d40 ImageList_BeginDrag
0x509d44 ImageList_Remove
0x509d48 ImageList_DrawEx
0x509d4c ImageList_Draw
0x509d50 ImageList_GetBkColor
0x509d54 ImageList_SetBkColor
0x509d58 ImageList_Add
0x509d5c ImageList_GetImageCount
0x509d60 ImageList_Destroy
0x509d64 ImageList_Create
0x509d68 InitCommonControls
EAT(Export Address Table) is none
oleaut32.dll
0x509744 SysFreeString
0x509748 SysReAllocStringLen
0x50974c SysAllocStringLen
advapi32.dll
0x509754 RegQueryValueExA
0x509758 RegOpenKeyExA
0x50975c RegCloseKey
user32.dll
0x509764 GetKeyboardType
0x509768 DestroyWindow
0x50976c LoadStringA
0x509770 MessageBoxA
0x509774 CharNextA
kernel32.dll
0x50977c GetACP
0x509780 Sleep
0x509784 VirtualFree
0x509788 VirtualAlloc
0x50978c GetTickCount
0x509790 QueryPerformanceCounter
0x509794 GetCurrentThreadId
0x509798 InterlockedDecrement
0x50979c InterlockedIncrement
0x5097a0 VirtualQuery
0x5097a4 WideCharToMultiByte
0x5097a8 MultiByteToWideChar
0x5097ac lstrlenA
0x5097b0 lstrcpynA
0x5097b4 LoadLibraryExA
0x5097b8 GetThreadLocale
0x5097bc GetStartupInfoA
0x5097c0 GetProcAddress
0x5097c4 GetModuleHandleA
0x5097c8 GetModuleFileNameA
0x5097cc GetLocaleInfoA
0x5097d0 GetCommandLineA
0x5097d4 FreeLibrary
0x5097d8 FindFirstFileA
0x5097dc FindClose
0x5097e0 ExitProcess
0x5097e4 ExitThread
0x5097e8 CreateThread
0x5097ec CompareStringA
0x5097f0 WriteFile
0x5097f4 UnhandledExceptionFilter
0x5097f8 RtlUnwind
0x5097fc RaiseException
0x509800 GetStdHandle
kernel32.dll
0x509808 TlsSetValue
0x50980c TlsGetValue
0x509810 LocalAlloc
0x509814 GetModuleHandleA
user32.dll
0x50981c CreateWindowExA
0x509820 WindowFromPoint
0x509824 WaitMessage
0x509828 UpdateWindow
0x50982c UnregisterClassA
0x509830 UnhookWindowsHookEx
0x509834 TranslateMessage
0x509838 TranslateMDISysAccel
0x50983c TrackPopupMenu
0x509840 SystemParametersInfoA
0x509844 ShowWindow
0x509848 ShowScrollBar
0x50984c ShowOwnedPopups
0x509850 SetWindowsHookExA
0x509854 SetWindowPos
0x509858 SetWindowPlacement
0x50985c SetWindowLongW
0x509860 SetWindowLongA
0x509864 SetTimer
0x509868 SetScrollRange
0x50986c SetScrollPos
0x509870 SetScrollInfo
0x509874 SetRect
0x509878 SetPropA
0x50987c SetParent
0x509880 SetMenuItemInfoA
0x509884 SetMenu
0x509888 SetForegroundWindow
0x50988c SetFocus
0x509890 SetCursor
0x509894 SetClassLongA
0x509898 SetCapture
0x50989c SetActiveWindow
0x5098a0 SendMessageW
0x5098a4 SendMessageA
0x5098a8 ScrollWindow
0x5098ac ScreenToClient
0x5098b0 RemovePropA
0x5098b4 RemoveMenu
0x5098b8 ReleaseDC
0x5098bc ReleaseCapture
0x5098c0 RegisterWindowMessageA
0x5098c4 RegisterClipboardFormatA
0x5098c8 RegisterClassA
0x5098cc RedrawWindow
0x5098d0 PtInRect
0x5098d4 PostQuitMessage
0x5098d8 PostMessageA
0x5098dc PeekMessageW
0x5098e0 PeekMessageA
0x5098e4 OffsetRect
0x5098e8 OemToCharA
0x5098ec MsgWaitForMultipleObjects
0x5098f0 MessageBoxA
0x5098f4 MapWindowPoints
0x5098f8 MapVirtualKeyA
0x5098fc LoadStringA
0x509900 LoadKeyboardLayoutA
0x509904 LoadIconA
0x509908 LoadCursorA
0x50990c LoadBitmapA
0x509910 KillTimer
0x509914 IsZoomed
0x509918 IsWindowVisible
0x50991c IsWindowUnicode
0x509920 IsWindowEnabled
0x509924 IsWindow
0x509928 IsRectEmpty
0x50992c IsIconic
0x509930 IsDialogMessageW
0x509934 IsDialogMessageA
0x509938 IsChild
0x50993c IsCharAlphaA
0x509940 InvalidateRect
0x509944 IntersectRect
0x509948 InsertMenuItemA
0x50994c InsertMenuA
0x509950 InflateRect
0x509954 GetWindowThreadProcessId
0x509958 GetWindowTextA
0x50995c GetWindowRect
0x509960 GetWindowPlacement
0x509964 GetWindowLongW
0x509968 GetWindowLongA
0x50996c GetWindowInfo
0x509970 GetWindowDC
0x509974 GetTopWindow
0x509978 GetSystemMetrics
0x50997c GetSystemMenu
0x509980 GetSysColorBrush
0x509984 GetSysColor
0x509988 GetSubMenu
0x50998c GetScrollRange
0x509990 GetScrollPos
0x509994 GetScrollInfo
0x509998 GetPropA
0x50999c GetParent
0x5099a0 GetWindow
0x5099a4 GetMessagePos
0x5099a8 GetMenuStringA
0x5099ac GetMenuState
0x5099b0 GetMenuItemInfoA
0x5099b4 GetMenuItemID
0x5099b8 GetMenuItemCount
0x5099bc GetMenu
0x5099c0 GetLastActivePopup
0x5099c4 GetKeyboardState
0x5099c8 GetKeyboardLayoutNameA
0x5099cc GetKeyboardLayoutList
0x5099d0 GetKeyboardLayout
0x5099d4 GetKeyState
0x5099d8 GetKeyNameTextA
0x5099dc GetIconInfo
0x5099e0 GetForegroundWindow
0x5099e4 GetFocus
0x5099e8 GetDesktopWindow
0x5099ec GetDCEx
0x5099f0 GetDC
0x5099f4 GetCursorPos
0x5099f8 GetCursor
0x5099fc GetClipboardData
0x509a00 GetClientRect
0x509a04 GetClassLongA
0x509a08 GetClassInfoA
0x509a0c GetCapture
0x509a10 GetActiveWindow
0x509a14 FrameRect
0x509a18 FindWindowA
0x509a1c FillRect
0x509a20 EqualRect
0x509a24 EnumWindows
0x509a28 EnumThreadWindows
0x509a2c EnumChildWindows
0x509a30 EndPaint
0x509a34 EnableWindow
0x509a38 EnableScrollBar
0x509a3c EnableMenuItem
0x509a40 DrawTextA
0x509a44 DrawMenuBar
0x509a48 DrawIconEx
0x509a4c DrawIcon
0x509a50 DrawFrameControl
0x509a54 DrawEdge
0x509a58 DispatchMessageW
0x509a5c DispatchMessageA
0x509a60 DestroyWindow
0x509a64 DestroyMenu
0x509a68 DestroyIcon
0x509a6c DestroyCursor
0x509a70 DeleteMenu
0x509a74 DefWindowProcA
0x509a78 DefMDIChildProcA
0x509a7c DefFrameProcA
0x509a80 CreatePopupMenu
0x509a84 CreateMenu
0x509a88 CreateIcon
0x509a8c ClientToScreen
0x509a90 CheckMenuItem
0x509a94 CallWindowProcA
0x509a98 CallNextHookEx
0x509a9c BeginPaint
0x509aa0 CharNextA
0x509aa4 CharLowerBuffA
0x509aa8 CharLowerA
0x509aac CharToOemA
0x509ab0 AdjustWindowRectEx
0x509ab4 ActivateKeyboardLayout
gdi32.dll
0x509abc UnrealizeObject
0x509ac0 StretchBlt
0x509ac4 SetWindowOrgEx
0x509ac8 SetWinMetaFileBits
0x509acc SetViewportOrgEx
0x509ad0 SetTextColor
0x509ad4 SetStretchBltMode
0x509ad8 SetROP2
0x509adc SetPixel
0x509ae0 SetEnhMetaFileBits
0x509ae4 SetDIBColorTable
0x509ae8 SetBrushOrgEx
0x509aec SetBkMode
0x509af0 SetBkColor
0x509af4 SelectPalette
0x509af8 SelectObject
0x509afc SelectClipRgn
0x509b00 SaveDC
0x509b04 RestoreDC
0x509b08 Rectangle
0x509b0c RectVisible
0x509b10 RealizePalette
0x509b14 Polyline
0x509b18 PlayEnhMetaFile
0x509b1c PatBlt
0x509b20 MoveToEx
0x509b24 MaskBlt
0x509b28 LineTo
0x509b2c IntersectClipRect
0x509b30 GetWindowOrgEx
0x509b34 GetWinMetaFileBits
0x509b38 GetTextMetricsA
0x509b3c GetTextExtentPoint32A
0x509b40 GetSystemPaletteEntries
0x509b44 GetStockObject
0x509b48 GetRgnBox
0x509b4c GetPixel
0x509b50 GetPaletteEntries
0x509b54 GetObjectA
0x509b58 GetEnhMetaFilePaletteEntries
0x509b5c GetEnhMetaFileHeader
0x509b60 GetEnhMetaFileBits
0x509b64 GetDeviceCaps
0x509b68 GetDIBits
0x509b6c GetDIBColorTable
0x509b70 GetDCOrgEx
0x509b74 GetCurrentPositionEx
0x509b78 GetClipBox
0x509b7c GetBrushOrgEx
0x509b80 GetBitmapBits
0x509b84 GdiFlush
0x509b88 ExcludeClipRect
0x509b8c DeleteObject
0x509b90 DeleteEnhMetaFile
0x509b94 DeleteDC
0x509b98 CreateSolidBrush
0x509b9c CreateRectRgn
0x509ba0 CreatePenIndirect
0x509ba4 CreatePalette
0x509ba8 CreateHalftonePalette
0x509bac CreateFontIndirectA
0x509bb0 CreateDIBitmap
0x509bb4 CreateDIBSection
0x509bb8 CreateCompatibleDC
0x509bbc CreateCompatibleBitmap
0x509bc0 CreateBrushIndirect
0x509bc4 CreateBitmap
0x509bc8 CopyEnhMetaFileA
0x509bcc BitBlt
version.dll
0x509bd4 VerQueryValueA
0x509bd8 GetFileVersionInfoSizeA
0x509bdc GetFileVersionInfoA
kernel32.dll
0x509be4 lstrcpyA
0x509be8 WriteFile
0x509bec WaitForSingleObject
0x509bf0 VirtualQuery
0x509bf4 VirtualAlloc
0x509bf8 SuspendThread
0x509bfc Sleep
0x509c00 SizeofResource
0x509c04 SetThreadPriority
0x509c08 SetThreadLocale
0x509c0c SetFilePointer
0x509c10 SetEvent
0x509c14 SetErrorMode
0x509c18 SetEndOfFile
0x509c1c ResumeThread
0x509c20 ResetEvent
0x509c24 ReadFile
0x509c28 MulDiv
0x509c2c LockResource
0x509c30 LoadResource
0x509c34 LoadLibraryA
0x509c38 LeaveCriticalSection
0x509c3c InitializeCriticalSection
0x509c40 GlobalFindAtomA
0x509c44 GlobalDeleteAtom
0x509c48 GlobalAddAtomA
0x509c4c GetVersionExA
0x509c50 GetVersion
0x509c54 GetTickCount
0x509c58 GetThreadLocale
0x509c5c GetStdHandle
0x509c60 GetProcAddress
0x509c64 GetModuleHandleW
0x509c68 GetModuleHandleA
0x509c6c GetModuleFileNameA
0x509c70 GetLocaleInfoA
0x509c74 GetLocalTime
0x509c78 GetLastError
0x509c7c GetFullPathNameA
0x509c80 GetExitCodeThread
0x509c84 GetDiskFreeSpaceA
0x509c88 GetDateFormatA
0x509c8c GetCurrentThreadId
0x509c90 GetCurrentProcessId
0x509c94 GetCPInfo
0x509c98 FreeResource
0x509c9c InterlockedIncrement
0x509ca0 InterlockedExchange
0x509ca4 InterlockedDecrement
0x509ca8 FreeLibrary
0x509cac FormatMessageA
0x509cb0 FindResourceA
0x509cb4 EnumCalendarInfoA
0x509cb8 EnterCriticalSection
0x509cbc DeleteCriticalSection
0x509cc0 CreateThread
0x509cc4 CreateFileA
0x509cc8 CreateEventA
0x509ccc CompareStringA
0x509cd0 CloseHandle
advapi32.dll
0x509cd8 RegQueryValueExA
0x509cdc RegOpenKeyExA
0x509ce0 RegFlushKey
0x509ce4 RegCloseKey
kernel32.dll
0x509cec Sleep
oleaut32.dll
0x509cf4 SafeArrayPtrOfIndex
0x509cf8 SafeArrayGetUBound
0x509cfc SafeArrayGetLBound
0x509d00 SafeArrayCreate
0x509d04 VariantChangeType
0x509d08 VariantCopy
0x509d0c VariantClear
0x509d10 VariantInit
comctl32.dll
0x509d18 _TrackMouseEvent
0x509d1c ImageList_SetIconSize
0x509d20 ImageList_GetIconSize
0x509d24 ImageList_Write
0x509d28 ImageList_Read
0x509d2c ImageList_DragShowNolock
0x509d30 ImageList_DragMove
0x509d34 ImageList_DragLeave
0x509d38 ImageList_DragEnter
0x509d3c ImageList_EndDrag
0x509d40 ImageList_BeginDrag
0x509d44 ImageList_Remove
0x509d48 ImageList_DrawEx
0x509d4c ImageList_Draw
0x509d50 ImageList_GetBkColor
0x509d54 ImageList_SetBkColor
0x509d58 ImageList_Add
0x509d5c ImageList_GetImageCount
0x509d60 ImageList_Destroy
0x509d64 ImageList_Create
0x509d68 InitCommonControls
EAT(Export Address Table) is none