ScreenShot
| Created | 2024.07.30 13:40 | Machine | s1_win7_x6401 |
| Filename | Authenticator.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 35 detected (Unsafe, Vymx, GenericKD, Attribute, HighConfidence, a variant of Generik, CKBEAOT, MalwareX, qwlmhp, Undefined, YzY0OjeX0RZXxN3W, wbbmy, Siggen29, AMADEY, YXEG3Z, Detected, ai score=87, Malware@#20wnes82zj2cv, Casdet, ABTrojan, HQFW, MALICIOUS, Chgt, PossibleThreat) | ||
| md5 | dae181fa127103fdc4ee4bf67117ecfb | ||
| sha256 | f18afd984df441d642187620e435e8b227c0e31d407f82a67c6c8b36f94bd980 | ||
| ssdeep | 49152:wdzUsKA6g3+fvby11dPgTdDdCSsYc30ZRiCXohOnCP+N8yG09rR/57WWTBtNUQ8d:cDGG09r957WWTv14E1pH3Xgb3kQ3 | ||
| imphash | e5d00afba90fecbc1c6936fa6ea35d71 | ||
| impfuzzy | 192:occFuuRuuNwEUh99KzoSN5mLIPcRQZmuF9meH1YhrPbOQHxxJn:SuiN+9ZX0PnmAQK1yPbOQHx7n | ||
Network IP location
Signature (3cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 35 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (8cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_2_Zero | Win32 Trojan Emotet | binaries (upload) |
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
oleaut32.dll
0x9bd398 SysFreeString
0x9bd3a0 SysReAllocStringLen
0x9bd3a8 SysAllocStringLen
advapi32.dll
0x9bd3b8 RegQueryValueExW
0x9bd3c0 RegOpenKeyExW
0x9bd3c8 RegCloseKey
user32.dll
0x9bd3d8 CharNextW
0x9bd3e0 LoadStringW
kernel32.dll
0x9bd3f0 Sleep
0x9bd3f8 VirtualFree
0x9bd400 VirtualAlloc
0x9bd408 lstrlenW
0x9bd410 VirtualQuery
0x9bd418 QueryPerformanceCounter
0x9bd420 GetTickCount
0x9bd428 GetSystemInfo
0x9bd430 GetVersion
0x9bd438 CompareStringW
0x9bd440 IsValidLocale
0x9bd448 SetThreadLocale
0x9bd450 GetSystemDefaultUILanguage
0x9bd458 GetUserDefaultUILanguage
0x9bd460 GetLocaleInfoW
0x9bd468 WideCharToMultiByte
0x9bd470 MultiByteToWideChar
0x9bd478 GetACP
0x9bd480 LoadLibraryExW
0x9bd488 GetStartupInfoW
0x9bd490 GetProcAddress
0x9bd498 GetModuleHandleW
0x9bd4a0 GetModuleFileNameW
0x9bd4a8 GetCommandLineW
0x9bd4b0 FreeLibrary
0x9bd4b8 GetLastError
0x9bd4c0 UnhandledExceptionFilter
0x9bd4c8 RtlUnwindEx
0x9bd4d0 RtlUnwind
0x9bd4d8 RaiseException
0x9bd4e0 ExitProcess
0x9bd4e8 ExitThread
0x9bd4f0 SwitchToThread
0x9bd4f8 GetCurrentThreadId
0x9bd500 CreateThread
0x9bd508 DeleteCriticalSection
0x9bd510 LeaveCriticalSection
0x9bd518 EnterCriticalSection
0x9bd520 InitializeCriticalSection
0x9bd528 FindFirstFileW
0x9bd530 FindClose
0x9bd538 WriteFile
0x9bd540 GetStdHandle
0x9bd548 CloseHandle
kernel32.dll
0x9bd558 GetProcAddress
0x9bd560 RaiseException
0x9bd568 LoadLibraryA
0x9bd570 GetLastError
0x9bd578 TlsSetValue
0x9bd580 TlsGetValue
0x9bd588 LocalFree
0x9bd590 LocalAlloc
0x9bd598 GetModuleHandleW
0x9bd5a0 FreeLibrary
user32.dll
0x9bd5b0 SetClassLongPtrW
0x9bd5b8 GetClassLongPtrW
0x9bd5c0 SetWindowLongPtrW
0x9bd5c8 GetWindowLongPtrW
0x9bd5d0 CreateWindowExW
0x9bd5d8 WindowFromPoint
0x9bd5e0 WaitMessage
0x9bd5e8 UpdateWindow
0x9bd5f0 UnregisterClassW
0x9bd5f8 UnhookWindowsHookEx
0x9bd600 TranslateMessage
0x9bd608 TranslateMDISysAccel
0x9bd610 TrackPopupMenu
0x9bd618 SystemParametersInfoW
0x9bd620 ShowWindow
0x9bd628 ShowScrollBar
0x9bd630 ShowOwnedPopups
0x9bd638 ShowCaret
0x9bd640 SetWindowRgn
0x9bd648 SetWindowsHookExW
0x9bd650 SetWindowTextW
0x9bd658 SetWindowPos
0x9bd660 SetWindowPlacement
0x9bd668 SetTimer
0x9bd670 SetScrollRange
0x9bd678 SetScrollPos
0x9bd680 SetScrollInfo
0x9bd688 SetRect
0x9bd690 SetPropW
0x9bd698 SetParent
0x9bd6a0 SetMenuItemInfoW
0x9bd6a8 SetMenu
0x9bd6b0 SetForegroundWindow
0x9bd6b8 SetFocus
0x9bd6c0 SetCursorPos
0x9bd6c8 SetCursor
0x9bd6d0 SetClipboardData
0x9bd6d8 SetCapture
0x9bd6e0 SetActiveWindow
0x9bd6e8 SendMessageA
0x9bd6f0 SendMessageW
0x9bd6f8 ScrollWindow
0x9bd700 ScreenToClient
0x9bd708 RemovePropW
0x9bd710 RemoveMenu
0x9bd718 ReleaseDC
0x9bd720 ReleaseCapture
0x9bd728 RegisterWindowMessageW
0x9bd730 RegisterClipboardFormatW
0x9bd738 RegisterClassW
0x9bd740 RedrawWindow
0x9bd748 PostQuitMessage
0x9bd750 PostMessageW
0x9bd758 PeekMessageA
0x9bd760 PeekMessageW
0x9bd768 OpenClipboard
0x9bd770 MsgWaitForMultipleObjectsEx
0x9bd778 MsgWaitForMultipleObjects
0x9bd780 MessageBoxW
0x9bd788 MessageBeep
0x9bd790 MapWindowPoints
0x9bd798 MapVirtualKeyW
0x9bd7a0 LoadStringW
0x9bd7a8 LoadKeyboardLayoutW
0x9bd7b0 LoadIconW
0x9bd7b8 LoadCursorW
0x9bd7c0 LoadBitmapW
0x9bd7c8 KillTimer
0x9bd7d0 IsZoomed
0x9bd7d8 IsWindowVisible
0x9bd7e0 IsWindowUnicode
0x9bd7e8 IsWindowEnabled
0x9bd7f0 IsWindow
0x9bd7f8 IsIconic
0x9bd800 IsDialogMessageA
0x9bd808 IsDialogMessageW
0x9bd810 IsClipboardFormatAvailable
0x9bd818 IsChild
0x9bd820 InvalidateRect
0x9bd828 IntersectRect
0x9bd830 InsertMenuItemW
0x9bd838 InsertMenuW
0x9bd840 HideCaret
0x9bd848 GetWindowThreadProcessId
0x9bd850 GetWindowTextW
0x9bd858 GetWindowRect
0x9bd860 GetWindowPlacement
0x9bd868 GetWindowDC
0x9bd870 GetTopWindow
0x9bd878 GetSystemMetrics
0x9bd880 GetSystemMenu
0x9bd888 GetSysColorBrush
0x9bd890 GetSysColor
0x9bd898 GetSubMenu
0x9bd8a0 GetScrollRange
0x9bd8a8 GetScrollPos
0x9bd8b0 GetScrollInfo
0x9bd8b8 GetScrollBarInfo
0x9bd8c0 GetPropW
0x9bd8c8 GetParent
0x9bd8d0 GetWindow
0x9bd8d8 GetMessagePos
0x9bd8e0 GetMessageExtraInfo
0x9bd8e8 GetMenuStringW
0x9bd8f0 GetMenuState
0x9bd8f8 GetMenuItemInfoW
0x9bd900 GetMenuItemID
0x9bd908 GetMenuItemCount
0x9bd910 GetMenu
0x9bd918 GetLastActivePopup
0x9bd920 GetKeyboardState
0x9bd928 GetKeyboardLayoutNameW
0x9bd930 GetKeyboardLayoutList
0x9bd938 GetKeyboardLayout
0x9bd940 GetKeyState
0x9bd948 GetKeyNameTextW
0x9bd950 GetIconInfo
0x9bd958 GetForegroundWindow
0x9bd960 GetFocus
0x9bd968 GetDlgCtrlID
0x9bd970 GetDesktopWindow
0x9bd978 GetDCEx
0x9bd980 GetDC
0x9bd988 GetCursorPos
0x9bd990 GetCursor
0x9bd998 GetClipboardData
0x9bd9a0 GetClientRect
0x9bd9a8 GetClassNameW
0x9bd9b0 GetClassInfoExW
0x9bd9b8 GetClassInfoW
0x9bd9c0 GetCapture
0x9bd9c8 GetActiveWindow
0x9bd9d0 FrameRect
0x9bd9d8 FindWindowExW
0x9bd9e0 FindWindowW
0x9bd9e8 FillRect
0x9bd9f0 EnumWindows
0x9bd9f8 EnumThreadWindows
0x9bda00 EnumClipboardFormats
0x9bda08 EnumChildWindows
0x9bda10 EndPaint
0x9bda18 EndMenu
0x9bda20 EnableWindow
0x9bda28 EnableScrollBar
0x9bda30 EnableMenuItem
0x9bda38 EmptyClipboard
0x9bda40 DrawTextExW
0x9bda48 DrawTextW
0x9bda50 DrawMenuBar
0x9bda58 DrawIconEx
0x9bda60 DrawIcon
0x9bda68 DrawFrameControl
0x9bda70 DrawFocusRect
0x9bda78 DrawEdge
0x9bda80 DispatchMessageA
0x9bda88 DispatchMessageW
0x9bda90 DestroyWindow
0x9bda98 DestroyMenu
0x9bdaa0 DestroyIcon
0x9bdaa8 DestroyCursor
0x9bdab0 DeleteMenu
0x9bdab8 DefWindowProcW
0x9bdac0 DefMDIChildProcW
0x9bdac8 DefFrameProcW
0x9bdad0 CreatePopupMenu
0x9bdad8 CreateMenu
0x9bdae0 CreateIcon
0x9bdae8 CreateAcceleratorTableW
0x9bdaf0 CountClipboardFormats
0x9bdaf8 CopyImage
0x9bdb00 CopyIcon
0x9bdb08 CloseClipboard
0x9bdb10 ClientToScreen
0x9bdb18 CheckMenuItem
0x9bdb20 CharUpperBuffW
0x9bdb28 CharUpperW
0x9bdb30 CharNextW
0x9bdb38 CharLowerBuffW
0x9bdb40 CharLowerW
0x9bdb48 CallWindowProcW
0x9bdb50 CallNextHookEx
0x9bdb58 BeginPaint
0x9bdb60 AdjustWindowRectEx
0x9bdb68 ActivateKeyboardLayout
gdi32.dll
0x9bdb78 WidenPath
0x9bdb80 UnrealizeObject
0x9bdb88 TextOutW
0x9bdb90 StrokePath
0x9bdb98 StrokeAndFillPath
0x9bdba0 StretchDIBits
0x9bdba8 StretchBlt
0x9bdbb0 StartPage
0x9bdbb8 StartDocW
0x9bdbc0 SetWindowOrgEx
0x9bdbc8 SetWindowExtEx
0x9bdbd0 SetWinMetaFileBits
0x9bdbd8 SetViewportOrgEx
0x9bdbe0 SetViewportExtEx
0x9bdbe8 SetTextCharacterExtra
0x9bdbf0 SetTextColor
0x9bdbf8 SetTextAlign
0x9bdc00 SetStretchBltMode
0x9bdc08 SetRectRgn
0x9bdc10 SetROP2
0x9bdc18 SetPixel
0x9bdc20 SetMapMode
0x9bdc28 SetGraphicsMode
0x9bdc30 SetEnhMetaFileBits
0x9bdc38 SetDIBits
0x9bdc40 SetDIBColorTable
0x9bdc48 SetBrushOrgEx
0x9bdc50 SetBkMode
0x9bdc58 SetBkColor
0x9bdc60 SetArcDirection
0x9bdc68 SetAbortProc
0x9bdc70 SelectPalette
0x9bdc78 SelectObject
0x9bdc80 SelectClipRgn
0x9bdc88 SelectClipPath
0x9bdc90 SaveDC
0x9bdc98 RoundRect
0x9bdca0 RestoreDC
0x9bdca8 Rectangle
0x9bdcb0 RectVisible
0x9bdcb8 RealizePalette
0x9bdcc0 PtVisible
0x9bdcc8 PolylineTo
0x9bdcd0 Polyline
0x9bdcd8 Polygon
0x9bdce0 PolyBezierTo
0x9bdce8 PolyBezier
0x9bdcf0 PlayEnhMetaFile
0x9bdcf8 Pie
0x9bdd00 PathToRegion
0x9bdd08 PatBlt
0x9bdd10 MoveToEx
0x9bdd18 MaskBlt
0x9bdd20 LineTo
0x9bdd28 LPtoDP
0x9bdd30 IntersectClipRect
0x9bdd38 GetWindowOrgEx
0x9bdd40 GetWinMetaFileBits
0x9bdd48 GetTextMetricsW
0x9bdd50 GetTextExtentPointW
0x9bdd58 GetTextExtentPoint32W
0x9bdd60 GetTextCharacterExtra
0x9bdd68 GetTextAlign
0x9bdd70 GetSystemPaletteEntries
0x9bdd78 GetStockObject
0x9bdd80 GetRgnBox
0x9bdd88 GetPixel
0x9bdd90 GetPaletteEntries
0x9bdd98 GetObjectW
0x9bdda0 GetMapMode
0x9bdda8 GetEnhMetaFilePaletteEntries
0x9bddb0 GetEnhMetaFileHeader
0x9bddb8 GetEnhMetaFileDescriptionW
0x9bddc0 GetEnhMetaFileBits
0x9bddc8 GetDeviceCaps
0x9bddd0 GetDIBits
0x9bddd8 GetDIBColorTable
0x9bdde0 GetCurrentPositionEx
0x9bdde8 GetClipRgn
0x9bddf0 GetClipBox
0x9bddf8 GetBrushOrgEx
0x9bde00 GetBkMode
0x9bde08 GetBkColor
0x9bde10 GetBitmapBits
0x9bde18 GdiFlush
0x9bde20 FrameRgn
0x9bde28 FillPath
0x9bde30 ExtTextOutW
0x9bde38 ExtSelectClipRgn
0x9bde40 ExtFloodFill
0x9bde48 ExtCreatePen
0x9bde50 ExcludeClipRect
0x9bde58 EnumFontsW
0x9bde60 EnumFontFamiliesExW
0x9bde68 EndPath
0x9bde70 EndPage
0x9bde78 EndDoc
0x9bde80 Ellipse
0x9bde88 DeleteObject
0x9bde90 DeleteEnhMetaFile
0x9bde98 DeleteDC
0x9bdea0 CreateSolidBrush
0x9bdea8 CreateRoundRectRgn
0x9bdeb0 CreateRectRgn
0x9bdeb8 CreatePolygonRgn
0x9bdec0 CreatePenIndirect
0x9bdec8 CreatePalette
0x9bded0 CreateICW
0x9bded8 CreateHalftonePalette
0x9bdee0 CreateFontIndirectW
0x9bdee8 CreateEnhMetaFileW
0x9bdef0 CreateEllipticRgnIndirect
0x9bdef8 CreateDIBitmap
0x9bdf00 CreateDIBSection
0x9bdf08 CreateDCW
0x9bdf10 CreateCompatibleDC
0x9bdf18 CreateCompatibleBitmap
0x9bdf20 CreateBrushIndirect
0x9bdf28 CreateBitmap
0x9bdf30 CopyEnhMetaFileW
0x9bdf38 CloseFigure
0x9bdf40 CloseEnhMetaFile
0x9bdf48 Chord
0x9bdf50 BitBlt
0x9bdf58 BeginPath
0x9bdf60 ArcTo
0x9bdf68 Arc
0x9bdf70 AngleArc
0x9bdf78 AbortDoc
version.dll
0x9bdf88 VerQueryValueW
0x9bdf90 GetFileVersionInfoSizeW
0x9bdf98 GetFileVersionInfoW
kernel32.dll
0x9bdfa8 WriteFile
0x9bdfb0 WideCharToMultiByte
0x9bdfb8 WaitForSingleObject
0x9bdfc0 WaitForMultipleObjectsEx
0x9bdfc8 VirtualQueryEx
0x9bdfd0 VirtualQuery
0x9bdfd8 VirtualProtect
0x9bdfe0 VirtualFree
0x9bdfe8 VirtualAlloc
0x9bdff0 VerSetConditionMask
0x9bdff8 VerifyVersionInfoW
0x9be000 TryEnterCriticalSection
0x9be008 SwitchToThread
0x9be010 SuspendThread
0x9be018 Sleep
0x9be020 SizeofResource
0x9be028 SetThreadPriority
0x9be030 SetThreadLocale
0x9be038 SetLastError
0x9be040 SetFilePointer
0x9be048 SetEvent
0x9be050 SetErrorMode
0x9be058 SetEndOfFile
0x9be060 ResumeThread
0x9be068 ResetEvent
0x9be070 ReadFile
0x9be078 RaiseException
0x9be080 QueryPerformanceFrequency
0x9be088 QueryPerformanceCounter
0x9be090 IsDebuggerPresent
0x9be098 MulDiv
0x9be0a0 LockResource
0x9be0a8 LocalFree
0x9be0b0 LoadResource
0x9be0b8 LoadLibraryW
0x9be0c0 LeaveCriticalSection
0x9be0c8 IsValidLocale
0x9be0d0 InitializeCriticalSection
0x9be0d8 HeapSize
0x9be0e0 HeapFree
0x9be0e8 HeapDestroy
0x9be0f0 HeapCreate
0x9be0f8 HeapAlloc
0x9be100 GlobalUnlock
0x9be108 GlobalSize
0x9be110 GlobalLock
0x9be118 GlobalFree
0x9be120 GlobalFindAtomW
0x9be128 GlobalDeleteAtom
0x9be130 GlobalAlloc
0x9be138 GlobalAddAtomW
0x9be140 GetVersionExW
0x9be148 GetVersion
0x9be150 GetTimeZoneInformation
0x9be158 GetTickCount
0x9be160 GetThreadPriority
0x9be168 GetThreadLocale
0x9be170 GetStdHandle
0x9be178 GetProcAddress
0x9be180 GetModuleHandleW
0x9be188 GetModuleFileNameW
0x9be190 GetLocaleInfoW
0x9be198 GetLocalTime
0x9be1a0 GetLastError
0x9be1a8 GetFullPathNameW
0x9be1b0 GetFileAttributesW
0x9be1b8 GetExitCodeThread
0x9be1c0 GetDiskFreeSpaceW
0x9be1c8 GetDateFormatW
0x9be1d0 GetCurrentThreadId
0x9be1d8 GetCurrentThread
0x9be1e0 GetCurrentProcessId
0x9be1e8 GetCurrentProcess
0x9be1f0 GetCPInfoExW
0x9be1f8 GetCPInfo
0x9be200 GetACP
0x9be208 FreeResource
0x9be210 FreeLibrary
0x9be218 FormatMessageW
0x9be220 FindResourceW
0x9be228 FindFirstFileW
0x9be230 FindClose
0x9be238 EnumSystemLocalesW
0x9be240 EnumResourceNamesW
0x9be248 EnumCalendarInfoW
0x9be250 EnterCriticalSection
0x9be258 DeleteCriticalSection
0x9be260 CreateThread
0x9be268 CreateFileW
0x9be270 CreateEventW
0x9be278 CompareStringW
0x9be280 CloseHandle
advapi32.dll
0x9be290 RegUnLoadKeyW
0x9be298 RegSetValueExW
0x9be2a0 RegSaveKeyW
0x9be2a8 RegRestoreKeyW
0x9be2b0 RegReplaceKeyW
0x9be2b8 RegQueryValueExW
0x9be2c0 RegQueryInfoKeyW
0x9be2c8 RegOpenKeyExW
0x9be2d0 RegLoadKeyW
0x9be2d8 RegFlushKey
0x9be2e0 RegEnumValueW
0x9be2e8 RegEnumKeyExW
0x9be2f0 RegDeleteValueW
0x9be2f8 RegDeleteKeyW
0x9be300 RegCreateKeyExW
0x9be308 RegConnectRegistryW
0x9be310 RegCloseKey
kernel32.dll
0x9be320 Sleep
oleaut32.dll
0x9be330 SafeArrayGetElemsize
0x9be338 SafeArrayPtrOfIndex
0x9be340 SafeArrayPutElement
0x9be348 SafeArrayGetElement
0x9be350 SafeArrayUnaccessData
0x9be358 SafeArrayAccessData
0x9be360 SafeArrayGetUBound
0x9be368 SafeArrayGetLBound
0x9be370 SafeArrayCreate
0x9be378 VariantChangeType
0x9be380 VariantCopyInd
0x9be388 VariantCopy
0x9be390 VariantClear
0x9be398 VariantInit
oleaut32.dll
0x9be3a8 GetErrorInfo
0x9be3b0 SysFreeString
ole32.dll
0x9be3c0 OleUninitialize
0x9be3c8 OleInitialize
0x9be3d0 CoTaskMemFree
0x9be3d8 CoTaskMemAlloc
0x9be3e0 CoCreateInstance
0x9be3e8 CoUninitialize
0x9be3f0 CoInitialize
0x9be3f8 IsEqualGUID
comctl32.dll
0x9be408 InitializeFlatSB
0x9be410 FlatSB_SetScrollProp
0x9be418 FlatSB_SetScrollPos
0x9be420 FlatSB_SetScrollInfo
0x9be428 FlatSB_GetScrollPos
0x9be430 FlatSB_GetScrollInfo
0x9be438 _TrackMouseEvent
0x9be440 ImageList_GetImageInfo
0x9be448 ImageList_SetIconSize
0x9be450 ImageList_GetIconSize
0x9be458 ImageList_Write
0x9be460 ImageList_Read
0x9be468 ImageList_GetDragImage
0x9be470 ImageList_DragShowNolock
0x9be478 ImageList_DragMove
0x9be480 ImageList_DragLeave
0x9be488 ImageList_DragEnter
0x9be490 ImageList_EndDrag
0x9be498 ImageList_BeginDrag
0x9be4a0 ImageList_Copy
0x9be4a8 ImageList_LoadImageW
0x9be4b0 ImageList_GetIcon
0x9be4b8 ImageList_Remove
0x9be4c0 ImageList_DrawEx
0x9be4c8 ImageList_Replace
0x9be4d0 ImageList_Draw
0x9be4d8 ImageList_SetOverlayImage
0x9be4e0 ImageList_GetBkColor
0x9be4e8 ImageList_SetBkColor
0x9be4f0 ImageList_ReplaceIcon
0x9be4f8 ImageList_Add
0x9be500 ImageList_SetImageCount
0x9be508 ImageList_GetImageCount
0x9be510 ImageList_Destroy
0x9be518 ImageList_Create
user32.dll
0x9be528 EnumDisplayMonitors
0x9be530 GetMonitorInfoW
0x9be538 MonitorFromPoint
0x9be540 MonitorFromRect
0x9be548 MonitorFromWindow
shell32.dll
0x9be558 Shell_NotifyIconW
winspool.drv
0x9be568 OpenPrinterW
0x9be570 EnumPrintersW
0x9be578 DocumentPropertiesW
0x9be580 ClosePrinter
winspool.drv
0x9be590 GetDefaultPrinterW
EAT(Export Address Table) Library
0x49d430 TMethodImplementationIntercept
0x417800 __dbk_fcall_wrapper
0x9b4f58 dbkFCallWrapperAddr
oleaut32.dll
0x9bd398 SysFreeString
0x9bd3a0 SysReAllocStringLen
0x9bd3a8 SysAllocStringLen
advapi32.dll
0x9bd3b8 RegQueryValueExW
0x9bd3c0 RegOpenKeyExW
0x9bd3c8 RegCloseKey
user32.dll
0x9bd3d8 CharNextW
0x9bd3e0 LoadStringW
kernel32.dll
0x9bd3f0 Sleep
0x9bd3f8 VirtualFree
0x9bd400 VirtualAlloc
0x9bd408 lstrlenW
0x9bd410 VirtualQuery
0x9bd418 QueryPerformanceCounter
0x9bd420 GetTickCount
0x9bd428 GetSystemInfo
0x9bd430 GetVersion
0x9bd438 CompareStringW
0x9bd440 IsValidLocale
0x9bd448 SetThreadLocale
0x9bd450 GetSystemDefaultUILanguage
0x9bd458 GetUserDefaultUILanguage
0x9bd460 GetLocaleInfoW
0x9bd468 WideCharToMultiByte
0x9bd470 MultiByteToWideChar
0x9bd478 GetACP
0x9bd480 LoadLibraryExW
0x9bd488 GetStartupInfoW
0x9bd490 GetProcAddress
0x9bd498 GetModuleHandleW
0x9bd4a0 GetModuleFileNameW
0x9bd4a8 GetCommandLineW
0x9bd4b0 FreeLibrary
0x9bd4b8 GetLastError
0x9bd4c0 UnhandledExceptionFilter
0x9bd4c8 RtlUnwindEx
0x9bd4d0 RtlUnwind
0x9bd4d8 RaiseException
0x9bd4e0 ExitProcess
0x9bd4e8 ExitThread
0x9bd4f0 SwitchToThread
0x9bd4f8 GetCurrentThreadId
0x9bd500 CreateThread
0x9bd508 DeleteCriticalSection
0x9bd510 LeaveCriticalSection
0x9bd518 EnterCriticalSection
0x9bd520 InitializeCriticalSection
0x9bd528 FindFirstFileW
0x9bd530 FindClose
0x9bd538 WriteFile
0x9bd540 GetStdHandle
0x9bd548 CloseHandle
kernel32.dll
0x9bd558 GetProcAddress
0x9bd560 RaiseException
0x9bd568 LoadLibraryA
0x9bd570 GetLastError
0x9bd578 TlsSetValue
0x9bd580 TlsGetValue
0x9bd588 LocalFree
0x9bd590 LocalAlloc
0x9bd598 GetModuleHandleW
0x9bd5a0 FreeLibrary
user32.dll
0x9bd5b0 SetClassLongPtrW
0x9bd5b8 GetClassLongPtrW
0x9bd5c0 SetWindowLongPtrW
0x9bd5c8 GetWindowLongPtrW
0x9bd5d0 CreateWindowExW
0x9bd5d8 WindowFromPoint
0x9bd5e0 WaitMessage
0x9bd5e8 UpdateWindow
0x9bd5f0 UnregisterClassW
0x9bd5f8 UnhookWindowsHookEx
0x9bd600 TranslateMessage
0x9bd608 TranslateMDISysAccel
0x9bd610 TrackPopupMenu
0x9bd618 SystemParametersInfoW
0x9bd620 ShowWindow
0x9bd628 ShowScrollBar
0x9bd630 ShowOwnedPopups
0x9bd638 ShowCaret
0x9bd640 SetWindowRgn
0x9bd648 SetWindowsHookExW
0x9bd650 SetWindowTextW
0x9bd658 SetWindowPos
0x9bd660 SetWindowPlacement
0x9bd668 SetTimer
0x9bd670 SetScrollRange
0x9bd678 SetScrollPos
0x9bd680 SetScrollInfo
0x9bd688 SetRect
0x9bd690 SetPropW
0x9bd698 SetParent
0x9bd6a0 SetMenuItemInfoW
0x9bd6a8 SetMenu
0x9bd6b0 SetForegroundWindow
0x9bd6b8 SetFocus
0x9bd6c0 SetCursorPos
0x9bd6c8 SetCursor
0x9bd6d0 SetClipboardData
0x9bd6d8 SetCapture
0x9bd6e0 SetActiveWindow
0x9bd6e8 SendMessageA
0x9bd6f0 SendMessageW
0x9bd6f8 ScrollWindow
0x9bd700 ScreenToClient
0x9bd708 RemovePropW
0x9bd710 RemoveMenu
0x9bd718 ReleaseDC
0x9bd720 ReleaseCapture
0x9bd728 RegisterWindowMessageW
0x9bd730 RegisterClipboardFormatW
0x9bd738 RegisterClassW
0x9bd740 RedrawWindow
0x9bd748 PostQuitMessage
0x9bd750 PostMessageW
0x9bd758 PeekMessageA
0x9bd760 PeekMessageW
0x9bd768 OpenClipboard
0x9bd770 MsgWaitForMultipleObjectsEx
0x9bd778 MsgWaitForMultipleObjects
0x9bd780 MessageBoxW
0x9bd788 MessageBeep
0x9bd790 MapWindowPoints
0x9bd798 MapVirtualKeyW
0x9bd7a0 LoadStringW
0x9bd7a8 LoadKeyboardLayoutW
0x9bd7b0 LoadIconW
0x9bd7b8 LoadCursorW
0x9bd7c0 LoadBitmapW
0x9bd7c8 KillTimer
0x9bd7d0 IsZoomed
0x9bd7d8 IsWindowVisible
0x9bd7e0 IsWindowUnicode
0x9bd7e8 IsWindowEnabled
0x9bd7f0 IsWindow
0x9bd7f8 IsIconic
0x9bd800 IsDialogMessageA
0x9bd808 IsDialogMessageW
0x9bd810 IsClipboardFormatAvailable
0x9bd818 IsChild
0x9bd820 InvalidateRect
0x9bd828 IntersectRect
0x9bd830 InsertMenuItemW
0x9bd838 InsertMenuW
0x9bd840 HideCaret
0x9bd848 GetWindowThreadProcessId
0x9bd850 GetWindowTextW
0x9bd858 GetWindowRect
0x9bd860 GetWindowPlacement
0x9bd868 GetWindowDC
0x9bd870 GetTopWindow
0x9bd878 GetSystemMetrics
0x9bd880 GetSystemMenu
0x9bd888 GetSysColorBrush
0x9bd890 GetSysColor
0x9bd898 GetSubMenu
0x9bd8a0 GetScrollRange
0x9bd8a8 GetScrollPos
0x9bd8b0 GetScrollInfo
0x9bd8b8 GetScrollBarInfo
0x9bd8c0 GetPropW
0x9bd8c8 GetParent
0x9bd8d0 GetWindow
0x9bd8d8 GetMessagePos
0x9bd8e0 GetMessageExtraInfo
0x9bd8e8 GetMenuStringW
0x9bd8f0 GetMenuState
0x9bd8f8 GetMenuItemInfoW
0x9bd900 GetMenuItemID
0x9bd908 GetMenuItemCount
0x9bd910 GetMenu
0x9bd918 GetLastActivePopup
0x9bd920 GetKeyboardState
0x9bd928 GetKeyboardLayoutNameW
0x9bd930 GetKeyboardLayoutList
0x9bd938 GetKeyboardLayout
0x9bd940 GetKeyState
0x9bd948 GetKeyNameTextW
0x9bd950 GetIconInfo
0x9bd958 GetForegroundWindow
0x9bd960 GetFocus
0x9bd968 GetDlgCtrlID
0x9bd970 GetDesktopWindow
0x9bd978 GetDCEx
0x9bd980 GetDC
0x9bd988 GetCursorPos
0x9bd990 GetCursor
0x9bd998 GetClipboardData
0x9bd9a0 GetClientRect
0x9bd9a8 GetClassNameW
0x9bd9b0 GetClassInfoExW
0x9bd9b8 GetClassInfoW
0x9bd9c0 GetCapture
0x9bd9c8 GetActiveWindow
0x9bd9d0 FrameRect
0x9bd9d8 FindWindowExW
0x9bd9e0 FindWindowW
0x9bd9e8 FillRect
0x9bd9f0 EnumWindows
0x9bd9f8 EnumThreadWindows
0x9bda00 EnumClipboardFormats
0x9bda08 EnumChildWindows
0x9bda10 EndPaint
0x9bda18 EndMenu
0x9bda20 EnableWindow
0x9bda28 EnableScrollBar
0x9bda30 EnableMenuItem
0x9bda38 EmptyClipboard
0x9bda40 DrawTextExW
0x9bda48 DrawTextW
0x9bda50 DrawMenuBar
0x9bda58 DrawIconEx
0x9bda60 DrawIcon
0x9bda68 DrawFrameControl
0x9bda70 DrawFocusRect
0x9bda78 DrawEdge
0x9bda80 DispatchMessageA
0x9bda88 DispatchMessageW
0x9bda90 DestroyWindow
0x9bda98 DestroyMenu
0x9bdaa0 DestroyIcon
0x9bdaa8 DestroyCursor
0x9bdab0 DeleteMenu
0x9bdab8 DefWindowProcW
0x9bdac0 DefMDIChildProcW
0x9bdac8 DefFrameProcW
0x9bdad0 CreatePopupMenu
0x9bdad8 CreateMenu
0x9bdae0 CreateIcon
0x9bdae8 CreateAcceleratorTableW
0x9bdaf0 CountClipboardFormats
0x9bdaf8 CopyImage
0x9bdb00 CopyIcon
0x9bdb08 CloseClipboard
0x9bdb10 ClientToScreen
0x9bdb18 CheckMenuItem
0x9bdb20 CharUpperBuffW
0x9bdb28 CharUpperW
0x9bdb30 CharNextW
0x9bdb38 CharLowerBuffW
0x9bdb40 CharLowerW
0x9bdb48 CallWindowProcW
0x9bdb50 CallNextHookEx
0x9bdb58 BeginPaint
0x9bdb60 AdjustWindowRectEx
0x9bdb68 ActivateKeyboardLayout
gdi32.dll
0x9bdb78 WidenPath
0x9bdb80 UnrealizeObject
0x9bdb88 TextOutW
0x9bdb90 StrokePath
0x9bdb98 StrokeAndFillPath
0x9bdba0 StretchDIBits
0x9bdba8 StretchBlt
0x9bdbb0 StartPage
0x9bdbb8 StartDocW
0x9bdbc0 SetWindowOrgEx
0x9bdbc8 SetWindowExtEx
0x9bdbd0 SetWinMetaFileBits
0x9bdbd8 SetViewportOrgEx
0x9bdbe0 SetViewportExtEx
0x9bdbe8 SetTextCharacterExtra
0x9bdbf0 SetTextColor
0x9bdbf8 SetTextAlign
0x9bdc00 SetStretchBltMode
0x9bdc08 SetRectRgn
0x9bdc10 SetROP2
0x9bdc18 SetPixel
0x9bdc20 SetMapMode
0x9bdc28 SetGraphicsMode
0x9bdc30 SetEnhMetaFileBits
0x9bdc38 SetDIBits
0x9bdc40 SetDIBColorTable
0x9bdc48 SetBrushOrgEx
0x9bdc50 SetBkMode
0x9bdc58 SetBkColor
0x9bdc60 SetArcDirection
0x9bdc68 SetAbortProc
0x9bdc70 SelectPalette
0x9bdc78 SelectObject
0x9bdc80 SelectClipRgn
0x9bdc88 SelectClipPath
0x9bdc90 SaveDC
0x9bdc98 RoundRect
0x9bdca0 RestoreDC
0x9bdca8 Rectangle
0x9bdcb0 RectVisible
0x9bdcb8 RealizePalette
0x9bdcc0 PtVisible
0x9bdcc8 PolylineTo
0x9bdcd0 Polyline
0x9bdcd8 Polygon
0x9bdce0 PolyBezierTo
0x9bdce8 PolyBezier
0x9bdcf0 PlayEnhMetaFile
0x9bdcf8 Pie
0x9bdd00 PathToRegion
0x9bdd08 PatBlt
0x9bdd10 MoveToEx
0x9bdd18 MaskBlt
0x9bdd20 LineTo
0x9bdd28 LPtoDP
0x9bdd30 IntersectClipRect
0x9bdd38 GetWindowOrgEx
0x9bdd40 GetWinMetaFileBits
0x9bdd48 GetTextMetricsW
0x9bdd50 GetTextExtentPointW
0x9bdd58 GetTextExtentPoint32W
0x9bdd60 GetTextCharacterExtra
0x9bdd68 GetTextAlign
0x9bdd70 GetSystemPaletteEntries
0x9bdd78 GetStockObject
0x9bdd80 GetRgnBox
0x9bdd88 GetPixel
0x9bdd90 GetPaletteEntries
0x9bdd98 GetObjectW
0x9bdda0 GetMapMode
0x9bdda8 GetEnhMetaFilePaletteEntries
0x9bddb0 GetEnhMetaFileHeader
0x9bddb8 GetEnhMetaFileDescriptionW
0x9bddc0 GetEnhMetaFileBits
0x9bddc8 GetDeviceCaps
0x9bddd0 GetDIBits
0x9bddd8 GetDIBColorTable
0x9bdde0 GetCurrentPositionEx
0x9bdde8 GetClipRgn
0x9bddf0 GetClipBox
0x9bddf8 GetBrushOrgEx
0x9bde00 GetBkMode
0x9bde08 GetBkColor
0x9bde10 GetBitmapBits
0x9bde18 GdiFlush
0x9bde20 FrameRgn
0x9bde28 FillPath
0x9bde30 ExtTextOutW
0x9bde38 ExtSelectClipRgn
0x9bde40 ExtFloodFill
0x9bde48 ExtCreatePen
0x9bde50 ExcludeClipRect
0x9bde58 EnumFontsW
0x9bde60 EnumFontFamiliesExW
0x9bde68 EndPath
0x9bde70 EndPage
0x9bde78 EndDoc
0x9bde80 Ellipse
0x9bde88 DeleteObject
0x9bde90 DeleteEnhMetaFile
0x9bde98 DeleteDC
0x9bdea0 CreateSolidBrush
0x9bdea8 CreateRoundRectRgn
0x9bdeb0 CreateRectRgn
0x9bdeb8 CreatePolygonRgn
0x9bdec0 CreatePenIndirect
0x9bdec8 CreatePalette
0x9bded0 CreateICW
0x9bded8 CreateHalftonePalette
0x9bdee0 CreateFontIndirectW
0x9bdee8 CreateEnhMetaFileW
0x9bdef0 CreateEllipticRgnIndirect
0x9bdef8 CreateDIBitmap
0x9bdf00 CreateDIBSection
0x9bdf08 CreateDCW
0x9bdf10 CreateCompatibleDC
0x9bdf18 CreateCompatibleBitmap
0x9bdf20 CreateBrushIndirect
0x9bdf28 CreateBitmap
0x9bdf30 CopyEnhMetaFileW
0x9bdf38 CloseFigure
0x9bdf40 CloseEnhMetaFile
0x9bdf48 Chord
0x9bdf50 BitBlt
0x9bdf58 BeginPath
0x9bdf60 ArcTo
0x9bdf68 Arc
0x9bdf70 AngleArc
0x9bdf78 AbortDoc
version.dll
0x9bdf88 VerQueryValueW
0x9bdf90 GetFileVersionInfoSizeW
0x9bdf98 GetFileVersionInfoW
kernel32.dll
0x9bdfa8 WriteFile
0x9bdfb0 WideCharToMultiByte
0x9bdfb8 WaitForSingleObject
0x9bdfc0 WaitForMultipleObjectsEx
0x9bdfc8 VirtualQueryEx
0x9bdfd0 VirtualQuery
0x9bdfd8 VirtualProtect
0x9bdfe0 VirtualFree
0x9bdfe8 VirtualAlloc
0x9bdff0 VerSetConditionMask
0x9bdff8 VerifyVersionInfoW
0x9be000 TryEnterCriticalSection
0x9be008 SwitchToThread
0x9be010 SuspendThread
0x9be018 Sleep
0x9be020 SizeofResource
0x9be028 SetThreadPriority
0x9be030 SetThreadLocale
0x9be038 SetLastError
0x9be040 SetFilePointer
0x9be048 SetEvent
0x9be050 SetErrorMode
0x9be058 SetEndOfFile
0x9be060 ResumeThread
0x9be068 ResetEvent
0x9be070 ReadFile
0x9be078 RaiseException
0x9be080 QueryPerformanceFrequency
0x9be088 QueryPerformanceCounter
0x9be090 IsDebuggerPresent
0x9be098 MulDiv
0x9be0a0 LockResource
0x9be0a8 LocalFree
0x9be0b0 LoadResource
0x9be0b8 LoadLibraryW
0x9be0c0 LeaveCriticalSection
0x9be0c8 IsValidLocale
0x9be0d0 InitializeCriticalSection
0x9be0d8 HeapSize
0x9be0e0 HeapFree
0x9be0e8 HeapDestroy
0x9be0f0 HeapCreate
0x9be0f8 HeapAlloc
0x9be100 GlobalUnlock
0x9be108 GlobalSize
0x9be110 GlobalLock
0x9be118 GlobalFree
0x9be120 GlobalFindAtomW
0x9be128 GlobalDeleteAtom
0x9be130 GlobalAlloc
0x9be138 GlobalAddAtomW
0x9be140 GetVersionExW
0x9be148 GetVersion
0x9be150 GetTimeZoneInformation
0x9be158 GetTickCount
0x9be160 GetThreadPriority
0x9be168 GetThreadLocale
0x9be170 GetStdHandle
0x9be178 GetProcAddress
0x9be180 GetModuleHandleW
0x9be188 GetModuleFileNameW
0x9be190 GetLocaleInfoW
0x9be198 GetLocalTime
0x9be1a0 GetLastError
0x9be1a8 GetFullPathNameW
0x9be1b0 GetFileAttributesW
0x9be1b8 GetExitCodeThread
0x9be1c0 GetDiskFreeSpaceW
0x9be1c8 GetDateFormatW
0x9be1d0 GetCurrentThreadId
0x9be1d8 GetCurrentThread
0x9be1e0 GetCurrentProcessId
0x9be1e8 GetCurrentProcess
0x9be1f0 GetCPInfoExW
0x9be1f8 GetCPInfo
0x9be200 GetACP
0x9be208 FreeResource
0x9be210 FreeLibrary
0x9be218 FormatMessageW
0x9be220 FindResourceW
0x9be228 FindFirstFileW
0x9be230 FindClose
0x9be238 EnumSystemLocalesW
0x9be240 EnumResourceNamesW
0x9be248 EnumCalendarInfoW
0x9be250 EnterCriticalSection
0x9be258 DeleteCriticalSection
0x9be260 CreateThread
0x9be268 CreateFileW
0x9be270 CreateEventW
0x9be278 CompareStringW
0x9be280 CloseHandle
advapi32.dll
0x9be290 RegUnLoadKeyW
0x9be298 RegSetValueExW
0x9be2a0 RegSaveKeyW
0x9be2a8 RegRestoreKeyW
0x9be2b0 RegReplaceKeyW
0x9be2b8 RegQueryValueExW
0x9be2c0 RegQueryInfoKeyW
0x9be2c8 RegOpenKeyExW
0x9be2d0 RegLoadKeyW
0x9be2d8 RegFlushKey
0x9be2e0 RegEnumValueW
0x9be2e8 RegEnumKeyExW
0x9be2f0 RegDeleteValueW
0x9be2f8 RegDeleteKeyW
0x9be300 RegCreateKeyExW
0x9be308 RegConnectRegistryW
0x9be310 RegCloseKey
kernel32.dll
0x9be320 Sleep
oleaut32.dll
0x9be330 SafeArrayGetElemsize
0x9be338 SafeArrayPtrOfIndex
0x9be340 SafeArrayPutElement
0x9be348 SafeArrayGetElement
0x9be350 SafeArrayUnaccessData
0x9be358 SafeArrayAccessData
0x9be360 SafeArrayGetUBound
0x9be368 SafeArrayGetLBound
0x9be370 SafeArrayCreate
0x9be378 VariantChangeType
0x9be380 VariantCopyInd
0x9be388 VariantCopy
0x9be390 VariantClear
0x9be398 VariantInit
oleaut32.dll
0x9be3a8 GetErrorInfo
0x9be3b0 SysFreeString
ole32.dll
0x9be3c0 OleUninitialize
0x9be3c8 OleInitialize
0x9be3d0 CoTaskMemFree
0x9be3d8 CoTaskMemAlloc
0x9be3e0 CoCreateInstance
0x9be3e8 CoUninitialize
0x9be3f0 CoInitialize
0x9be3f8 IsEqualGUID
comctl32.dll
0x9be408 InitializeFlatSB
0x9be410 FlatSB_SetScrollProp
0x9be418 FlatSB_SetScrollPos
0x9be420 FlatSB_SetScrollInfo
0x9be428 FlatSB_GetScrollPos
0x9be430 FlatSB_GetScrollInfo
0x9be438 _TrackMouseEvent
0x9be440 ImageList_GetImageInfo
0x9be448 ImageList_SetIconSize
0x9be450 ImageList_GetIconSize
0x9be458 ImageList_Write
0x9be460 ImageList_Read
0x9be468 ImageList_GetDragImage
0x9be470 ImageList_DragShowNolock
0x9be478 ImageList_DragMove
0x9be480 ImageList_DragLeave
0x9be488 ImageList_DragEnter
0x9be490 ImageList_EndDrag
0x9be498 ImageList_BeginDrag
0x9be4a0 ImageList_Copy
0x9be4a8 ImageList_LoadImageW
0x9be4b0 ImageList_GetIcon
0x9be4b8 ImageList_Remove
0x9be4c0 ImageList_DrawEx
0x9be4c8 ImageList_Replace
0x9be4d0 ImageList_Draw
0x9be4d8 ImageList_SetOverlayImage
0x9be4e0 ImageList_GetBkColor
0x9be4e8 ImageList_SetBkColor
0x9be4f0 ImageList_ReplaceIcon
0x9be4f8 ImageList_Add
0x9be500 ImageList_SetImageCount
0x9be508 ImageList_GetImageCount
0x9be510 ImageList_Destroy
0x9be518 ImageList_Create
user32.dll
0x9be528 EnumDisplayMonitors
0x9be530 GetMonitorInfoW
0x9be538 MonitorFromPoint
0x9be540 MonitorFromRect
0x9be548 MonitorFromWindow
shell32.dll
0x9be558 Shell_NotifyIconW
winspool.drv
0x9be568 OpenPrinterW
0x9be570 EnumPrintersW
0x9be578 DocumentPropertiesW
0x9be580 ClosePrinter
winspool.drv
0x9be590 GetDefaultPrinterW
EAT(Export Address Table) Library
0x49d430 TMethodImplementationIntercept
0x417800 __dbk_fcall_wrapper
0x9b4f58 dbkFCallWrapperAddr