ScreenShot
| Created | 2024.08.11 15:04 | Machine | s1_win7_x6403 |
| Filename | 66af9bdbf0f60_Team.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 43 detected (Common, malicious, moderate confidence, Sabsik, Tedy, Unsafe, Attribute, HighConfidence, a variant of Generik, CTGSZCQ, Artemis, MalwareX, SleepObf, Undefined, YzY0OrvjlDybVevM, Redcap, ozssa, PRIVATELOADER, YXEHEZ, Detected, ai score=80, Wacapew, Chgt, Anhl, susgen, PossibleThreat) | ||
| md5 | 2f208b17f8bda673f6b4f0dacf43d1bf | ||
| sha256 | 1fc3e92f7f30f4f68861d3ceb8284853ae30c11cbd0ed3e46ea9eb698b3ec348 | ||
| ssdeep | 98304:IdEOTQvv8toqK+tO985QWRDXpFviNkYDdQI:GEOFtoqK+898jRDZ8kY | ||
| imphash | c346eaddb975f381aa1bae852c6a8010 | ||
| impfuzzy | 192:occPu+RuudXEUh994ORoSN5T6lCXF9FYH1Ph/hfPbOQE5E/Wxxw1q6jlmk:SuSdv943oVfA1P7PbOQE5iWxK1ek | ||
Network IP location
Signature (4cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 43 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (6cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
oleaut32.dll
0xea2558 SysFreeString
0xea2560 SysReAllocStringLen
0xea2568 SysAllocStringLen
advapi32.dll
0xea2578 RegQueryValueExW
0xea2580 RegOpenKeyExW
0xea2588 RegCloseKey
user32.dll
0xea2598 CharNextW
0xea25a0 LoadStringW
kernel32.dll
0xea25b0 Sleep
0xea25b8 VirtualFree
0xea25c0 VirtualAlloc
0xea25c8 lstrlenW
0xea25d0 VirtualQuery
0xea25d8 QueryPerformanceCounter
0xea25e0 GetTickCount
0xea25e8 GetSystemInfo
0xea25f0 GetVersion
0xea25f8 CompareStringW
0xea2600 IsValidLocale
0xea2608 SetThreadLocale
0xea2610 GetSystemDefaultUILanguage
0xea2618 GetUserDefaultUILanguage
0xea2620 GetLocaleInfoW
0xea2628 WideCharToMultiByte
0xea2630 MultiByteToWideChar
0xea2638 GetACP
0xea2640 LoadLibraryExW
0xea2648 GetStartupInfoW
0xea2650 GetProcAddress
0xea2658 GetModuleHandleW
0xea2660 GetModuleFileNameW
0xea2668 GetCommandLineW
0xea2670 FindResourceW
0xea2678 FreeLibrary
0xea2680 GetLastError
0xea2688 UnhandledExceptionFilter
0xea2690 RtlUnwindEx
0xea2698 RtlUnwind
0xea26a0 RaiseException
0xea26a8 ExitProcess
0xea26b0 ExitThread
0xea26b8 SwitchToThread
0xea26c0 GetCurrentThreadId
0xea26c8 CreateThread
0xea26d0 DeleteCriticalSection
0xea26d8 LeaveCriticalSection
0xea26e0 EnterCriticalSection
0xea26e8 InitializeCriticalSection
0xea26f0 FindFirstFileW
0xea26f8 FindClose
0xea2700 WriteFile
0xea2708 GetStdHandle
0xea2710 CloseHandle
kernel32.dll
0xea2720 GetProcAddress
0xea2728 RaiseException
0xea2730 LoadLibraryA
0xea2738 GetLastError
0xea2740 TlsSetValue
0xea2748 TlsGetValue
0xea2750 LocalFree
0xea2758 LocalAlloc
0xea2760 GetModuleHandleW
0xea2768 FreeLibrary
user32.dll
0xea2778 WINNLSEnableIME
0xea2780 SetClassLongPtrW
0xea2788 GetClassLongPtrW
0xea2790 SetWindowLongPtrW
0xea2798 GetWindowLongPtrW
0xea27a0 CreateWindowExW
0xea27a8 WindowFromPoint
0xea27b0 WaitMessage
0xea27b8 UpdateLayeredWindow
0xea27c0 UpdateWindow
0xea27c8 UnregisterClassW
0xea27d0 UnhookWindowsHookEx
0xea27d8 TranslateMessage
0xea27e0 TranslateMDISysAccel
0xea27e8 TrackPopupMenu
0xea27f0 TrackMouseEvent
0xea27f8 SystemParametersInfoW
0xea2800 ShowWindow
0xea2808 ShowScrollBar
0xea2810 ShowOwnedPopups
0xea2818 ShowCaret
0xea2820 SetWindowRgn
0xea2828 SetWindowsHookExW
0xea2830 SetWindowTextW
0xea2838 SetWindowPos
0xea2840 SetWindowPlacement
0xea2848 SetTimer
0xea2850 SetScrollRange
0xea2858 SetScrollPos
0xea2860 SetScrollInfo
0xea2868 SetRect
0xea2870 SetPropW
0xea2878 SetParent
0xea2880 SetMenuItemInfoW
0xea2888 SetMenu
0xea2890 SetForegroundWindow
0xea2898 SetFocus
0xea28a0 SetCursorPos
0xea28a8 SetCursor
0xea28b0 SetClipboardData
0xea28b8 SetCapture
0xea28c0 SetActiveWindow
0xea28c8 SendMessageTimeoutW
0xea28d0 SendMessageA
0xea28d8 SendMessageW
0xea28e0 ScrollWindow
0xea28e8 ScreenToClient
0xea28f0 RemovePropW
0xea28f8 RemoveMenu
0xea2900 ReleaseDC
0xea2908 ReleaseCapture
0xea2910 RegisterWindowMessageW
0xea2918 RegisterClipboardFormatW
0xea2920 RegisterClassW
0xea2928 RedrawWindow
0xea2930 PostQuitMessage
0xea2938 PostMessageW
0xea2940 PeekMessageA
0xea2948 PeekMessageW
0xea2950 OpenClipboard
0xea2958 MsgWaitForMultipleObjectsEx
0xea2960 MsgWaitForMultipleObjects
0xea2968 MessageBoxIndirectW
0xea2970 MessageBoxW
0xea2978 MessageBeep
0xea2980 MapWindowPoints
0xea2988 MapVirtualKeyW
0xea2990 LoadStringW
0xea2998 LoadKeyboardLayoutW
0xea29a0 LoadIconW
0xea29a8 LoadCursorW
0xea29b0 LoadBitmapW
0xea29b8 KillTimer
0xea29c0 IsZoomed
0xea29c8 IsWindowVisible
0xea29d0 IsWindowUnicode
0xea29d8 IsWindowEnabled
0xea29e0 IsWindow
0xea29e8 IsIconic
0xea29f0 IsDialogMessageA
0xea29f8 IsDialogMessageW
0xea2a00 IsChild
0xea2a08 InvalidateRect
0xea2a10 InsertMenuItemW
0xea2a18 InsertMenuW
0xea2a20 HideCaret
0xea2a28 GetWindowThreadProcessId
0xea2a30 GetWindowTextLengthW
0xea2a38 GetWindowTextW
0xea2a40 GetWindowRect
0xea2a48 GetWindowPlacement
0xea2a50 GetWindowDC
0xea2a58 GetUpdateRgn
0xea2a60 GetUpdateRect
0xea2a68 GetTopWindow
0xea2a70 GetSystemMetrics
0xea2a78 GetSystemMenu
0xea2a80 GetSysColorBrush
0xea2a88 GetSysColor
0xea2a90 GetSubMenu
0xea2a98 GetScrollRange
0xea2aa0 GetScrollPos
0xea2aa8 GetScrollInfo
0xea2ab0 GetScrollBarInfo
0xea2ab8 GetPropW
0xea2ac0 GetParent
0xea2ac8 GetWindow
0xea2ad0 GetMessagePos
0xea2ad8 GetMessageExtraInfo
0xea2ae0 GetMenuStringW
0xea2ae8 GetMenuState
0xea2af0 GetMenuItemInfoW
0xea2af8 GetMenuItemID
0xea2b00 GetMenuItemCount
0xea2b08 GetMenu
0xea2b10 GetLastActivePopup
0xea2b18 GetKeyboardState
0xea2b20 GetKeyboardLayoutNameW
0xea2b28 GetKeyboardLayoutList
0xea2b30 GetKeyboardLayout
0xea2b38 GetKeyState
0xea2b40 GetKeyNameTextW
0xea2b48 GetIconInfo
0xea2b50 GetForegroundWindow
0xea2b58 GetFocus
0xea2b60 GetDlgCtrlID
0xea2b68 GetDesktopWindow
0xea2b70 GetDCEx
0xea2b78 GetDC
0xea2b80 GetCursorPos
0xea2b88 GetCursor
0xea2b90 GetClipboardData
0xea2b98 GetClientRect
0xea2ba0 GetClassNameW
0xea2ba8 GetClassInfoExW
0xea2bb0 GetClassInfoW
0xea2bb8 GetCapture
0xea2bc0 GetActiveWindow
0xea2bc8 FrameRect
0xea2bd0 FindWindowExW
0xea2bd8 FindWindowW
0xea2be0 FillRect
0xea2be8 EnumWindows
0xea2bf0 EnumThreadWindows
0xea2bf8 EnumChildWindows
0xea2c00 EndPaint
0xea2c08 EndMenu
0xea2c10 EnableWindow
0xea2c18 EnableScrollBar
0xea2c20 EnableMenuItem
0xea2c28 EmptyClipboard
0xea2c30 DrawTextExW
0xea2c38 DrawTextW
0xea2c40 DrawMenuBar
0xea2c48 DrawIconEx
0xea2c50 DrawIcon
0xea2c58 DrawFrameControl
0xea2c60 DrawFocusRect
0xea2c68 DrawEdge
0xea2c70 DispatchMessageA
0xea2c78 DispatchMessageW
0xea2c80 DestroyWindow
0xea2c88 DestroyMenu
0xea2c90 DestroyIcon
0xea2c98 DestroyCursor
0xea2ca0 DeleteMenu
0xea2ca8 DefWindowProcW
0xea2cb0 DefMDIChildProcW
0xea2cb8 DefFrameProcW
0xea2cc0 CreatePopupMenu
0xea2cc8 CreateMenu
0xea2cd0 CreateIcon
0xea2cd8 CreateAcceleratorTableW
0xea2ce0 CopyImage
0xea2ce8 CopyIcon
0xea2cf0 CloseClipboard
0xea2cf8 ClientToScreen
0xea2d00 CheckMenuItem
0xea2d08 CharUpperBuffW
0xea2d10 CharUpperW
0xea2d18 CharNextW
0xea2d20 CharLowerBuffW
0xea2d28 CharLowerW
0xea2d30 CallWindowProcW
0xea2d38 CallNextHookEx
0xea2d40 BeginPaint
0xea2d48 AppendMenuW
0xea2d50 AdjustWindowRectEx
0xea2d58 ActivateKeyboardLayout
gdi32.dll
0xea2d68 UnrealizeObject
0xea2d70 TextOutW
0xea2d78 StretchDIBits
0xea2d80 StretchBlt
0xea2d88 StartPage
0xea2d90 StartDocW
0xea2d98 SetWindowOrgEx
0xea2da0 SetWinMetaFileBits
0xea2da8 SetViewportOrgEx
0xea2db0 SetTextColor
0xea2db8 SetTextAlign
0xea2dc0 SetStretchBltMode
0xea2dc8 SetRectRgn
0xea2dd0 SetROP2
0xea2dd8 SetPixel
0xea2de0 SetMapMode
0xea2de8 SetEnhMetaFileBits
0xea2df0 SetDIBits
0xea2df8 SetDIBColorTable
0xea2e00 SetBrushOrgEx
0xea2e08 SetBkMode
0xea2e10 SetBkColor
0xea2e18 SetAbortProc
0xea2e20 SelectPalette
0xea2e28 SelectObject
0xea2e30 SaveDC
0xea2e38 RoundRect
0xea2e40 RestoreDC
0xea2e48 Rectangle
0xea2e50 RectVisible
0xea2e58 RealizePalette
0xea2e60 Polyline
0xea2e68 Polygon
0xea2e70 PolyBezierTo
0xea2e78 PolyBezier
0xea2e80 PlayEnhMetaFile
0xea2e88 Pie
0xea2e90 PatBlt
0xea2e98 MoveToEx
0xea2ea0 MaskBlt
0xea2ea8 LineTo
0xea2eb0 IntersectClipRect
0xea2eb8 GetWindowOrgEx
0xea2ec0 GetWinMetaFileBits
0xea2ec8 GetTextMetricsW
0xea2ed0 GetTextExtentPointW
0xea2ed8 GetTextExtentPoint32W
0xea2ee0 GetSystemPaletteEntries
0xea2ee8 GetStockObject
0xea2ef0 GetRgnBox
0xea2ef8 GetRegionData
0xea2f00 GetPixel
0xea2f08 GetPaletteEntries
0xea2f10 GetObjectA
0xea2f18 GetObjectW
0xea2f20 GetEnhMetaFilePaletteEntries
0xea2f28 GetEnhMetaFileHeader
0xea2f30 GetEnhMetaFileDescriptionW
0xea2f38 GetEnhMetaFileBits
0xea2f40 GetDeviceCaps
0xea2f48 GetDIBits
0xea2f50 GetDIBColorTable
0xea2f58 GetCurrentPositionEx
0xea2f60 GetClipBox
0xea2f68 GetCharABCWidthsFloatW
0xea2f70 GetBrushOrgEx
0xea2f78 GetBitmapBits
0xea2f80 GdiFlush
0xea2f88 FrameRgn
0xea2f90 ExtTextOutW
0xea2f98 ExtFloodFill
0xea2fa0 ExtCreateRegion
0xea2fa8 ExcludeClipRect
0xea2fb0 EnumFontsW
0xea2fb8 EnumFontFamiliesExW
0xea2fc0 EndPage
0xea2fc8 EndDoc
0xea2fd0 Ellipse
0xea2fd8 DeleteObject
0xea2fe0 DeleteEnhMetaFile
0xea2fe8 DeleteDC
0xea2ff0 CreateSolidBrush
0xea2ff8 CreateRectRgn
0xea3000 CreatePenIndirect
0xea3008 CreatePalette
0xea3010 CreateICW
0xea3018 CreateHalftonePalette
0xea3020 CreateFontIndirectW
0xea3028 CreateFontW
0xea3030 CreateDIBitmap
0xea3038 CreateDIBSection
0xea3040 CreateDCW
0xea3048 CreateCompatibleDC
0xea3050 CreateCompatibleBitmap
0xea3058 CreateBrushIndirect
0xea3060 CreateBitmap
0xea3068 CopyEnhMetaFileW
0xea3070 CombineRgn
0xea3078 Chord
0xea3080 BitBlt
0xea3088 ArcTo
0xea3090 Arc
0xea3098 AngleArc
0xea30a0 AbortDoc
version.dll
0xea30b0 VerQueryValueW
0xea30b8 GetFileVersionInfoSizeW
0xea30c0 GetFileVersionInfoW
kernel32.dll
0xea30d0 lstrlenW
0xea30d8 WriteFile
0xea30e0 WideCharToMultiByte
0xea30e8 WaitForSingleObject
0xea30f0 WaitForMultipleObjectsEx
0xea30f8 VirtualQueryEx
0xea3100 VirtualQuery
0xea3108 VirtualProtect
0xea3110 VirtualFree
0xea3118 VirtualAlloc
0xea3120 VerSetConditionMask
0xea3128 VerifyVersionInfoW
0xea3130 TryEnterCriticalSection
0xea3138 SwitchToThread
0xea3140 SuspendThread
0xea3148 Sleep
0xea3150 SizeofResource
0xea3158 SetThreadPriority
0xea3160 SetThreadLocale
0xea3168 SetLastError
0xea3170 SetFilePointer
0xea3178 SetEvent
0xea3180 SetErrorMode
0xea3188 SetEndOfFile
0xea3190 ResumeThread
0xea3198 ResetEvent
0xea31a0 RemoveDirectoryW
0xea31a8 ReadFile
0xea31b0 RaiseException
0xea31b8 QueryPerformanceFrequency
0xea31c0 QueryPerformanceCounter
0xea31c8 IsDebuggerPresent
0xea31d0 OutputDebugStringW
0xea31d8 MultiByteToWideChar
0xea31e0 MulDiv
0xea31e8 LockResource
0xea31f0 LocalFree
0xea31f8 LoadResource
0xea3200 LoadLibraryW
0xea3208 LeaveCriticalSection
0xea3210 LCMapStringW
0xea3218 IsValidLocale
0xea3220 InitializeCriticalSection
0xea3228 HeapSize
0xea3230 HeapFree
0xea3238 HeapDestroy
0xea3240 HeapCreate
0xea3248 HeapAlloc
0xea3250 GlobalUnlock
0xea3258 GlobalSize
0xea3260 GlobalLock
0xea3268 GlobalFree
0xea3270 GlobalFindAtomW
0xea3278 GlobalDeleteAtom
0xea3280 GlobalAlloc
0xea3288 GlobalAddAtomW
0xea3290 GetWindowsDirectoryW
0xea3298 GetVersionExW
0xea32a0 GetVersion
0xea32a8 GetUserDefaultLCID
0xea32b0 GetTimeZoneInformation
0xea32b8 GetTickCount
0xea32c0 GetThreadPriority
0xea32c8 GetThreadLocale
0xea32d0 GetTempPathW
0xea32d8 GetSystemDirectoryW
0xea32e0 GetStdHandle
0xea32e8 GetLongPathNameW
0xea32f0 GetProcAddress
0xea32f8 GetModuleHandleW
0xea3300 GetModuleFileNameW
0xea3308 GetLocaleInfoW
0xea3310 GetLocalTime
0xea3318 GetLastError
0xea3320 GetFullPathNameW
0xea3328 GetFileAttributesW
0xea3330 GetExitCodeThread
0xea3338 GetEnvironmentVariableW
0xea3340 GetDiskFreeSpaceW
0xea3348 GetDateFormatW
0xea3350 GetCurrentThreadId
0xea3358 GetCurrentThread
0xea3360 GetCurrentProcessId
0xea3368 GetCurrentProcess
0xea3370 GetCPInfoExW
0xea3378 GetCPInfo
0xea3380 GetACP
0xea3388 FreeResource
0xea3390 FreeLibrary
0xea3398 FormatMessageW
0xea33a0 FindResourceW
0xea33a8 FindNextFileW
0xea33b0 FindFirstFileW
0xea33b8 FindClose
0xea33c0 FileTimeToLocalFileTime
0xea33c8 FileTimeToDosDateTime
0xea33d0 ExpandEnvironmentStringsW
0xea33d8 EnumSystemLocalesW
0xea33e0 EnumResourceNamesW
0xea33e8 EnumCalendarInfoW
0xea33f0 EnterCriticalSection
0xea33f8 DeleteFileW
0xea3400 DeleteCriticalSection
0xea3408 CreateThread
0xea3410 CreateFileW
0xea3418 CreateEventW
0xea3420 CompareStringA
0xea3428 CompareStringW
0xea3430 CloseHandle
advapi32.dll
0xea3440 RegUnLoadKeyW
0xea3448 RegSetValueExW
0xea3450 RegSaveKeyW
0xea3458 RegRestoreKeyW
0xea3460 RegReplaceKeyW
0xea3468 RegQueryValueExW
0xea3470 RegQueryInfoKeyW
0xea3478 RegOpenKeyExW
0xea3480 RegLoadKeyW
0xea3488 RegFlushKey
0xea3490 RegEnumValueW
0xea3498 RegEnumKeyW
0xea34a0 RegEnumKeyExW
0xea34a8 RegDeleteValueW
0xea34b0 RegDeleteKeyW
0xea34b8 RegCreateKeyExW
0xea34c0 RegConnectRegistryW
0xea34c8 RegCloseKey
kernel32.dll
0xea34d8 Sleep
oleaut32.dll
0xea34e8 SafeArrayPtrOfIndex
0xea34f0 SafeArrayPutElement
0xea34f8 SafeArrayGetElement
0xea3500 SafeArrayUnaccessData
0xea3508 SafeArrayAccessData
0xea3510 SafeArrayGetUBound
0xea3518 SafeArrayGetLBound
0xea3520 SafeArrayRedim
0xea3528 SafeArrayCreate
0xea3530 VariantChangeType
0xea3538 VariantCopyInd
0xea3540 VariantCopy
0xea3548 VariantClear
0xea3550 VariantInit
oleaut32.dll
0xea3560 GetErrorInfo
0xea3568 SysFreeString
ole32.dll
0xea3578 CreateStreamOnHGlobal
0xea3580 ReleaseStgMedium
0xea3588 OleDraw
0xea3590 DoDragDrop
0xea3598 RevokeDragDrop
0xea35a0 RegisterDragDrop
0xea35a8 OleUninitialize
0xea35b0 OleInitialize
0xea35b8 CoTaskMemFree
0xea35c0 CoTaskMemAlloc
0xea35c8 CoCreateInstance
0xea35d0 CoGetClassObject
0xea35d8 CoUninitialize
0xea35e0 CoInitialize
0xea35e8 IsEqualGUID
comctl32.dll
0xea35f8 InitializeFlatSB
0xea3600 FlatSB_SetScrollProp
0xea3608 FlatSB_SetScrollPos
0xea3610 FlatSB_SetScrollInfo
0xea3618 FlatSB_GetScrollPos
0xea3620 FlatSB_GetScrollInfo
0xea3628 _TrackMouseEvent
0xea3630 ImageList_GetImageInfo
0xea3638 ImageList_SetIconSize
0xea3640 ImageList_GetIconSize
0xea3648 ImageList_Write
0xea3650 ImageList_Read
0xea3658 ImageList_GetDragImage
0xea3660 ImageList_DragShowNolock
0xea3668 ImageList_DragMove
0xea3670 ImageList_DragLeave
0xea3678 ImageList_DragEnter
0xea3680 ImageList_EndDrag
0xea3688 ImageList_BeginDrag
0xea3690 ImageList_Copy
0xea3698 ImageList_LoadImageW
0xea36a0 ImageList_GetIcon
0xea36a8 ImageList_Remove
0xea36b0 ImageList_DrawEx
0xea36b8 ImageList_Replace
0xea36c0 ImageList_Draw
0xea36c8 ImageList_SetOverlayImage
0xea36d0 ImageList_GetBkColor
0xea36d8 ImageList_SetBkColor
0xea36e0 ImageList_ReplaceIcon
0xea36e8 ImageList_Add
0xea36f0 ImageList_SetImageCount
0xea36f8 ImageList_GetImageCount
0xea3700 ImageList_Destroy
0xea3708 ImageList_Create
user32.dll
0xea3718 EnumDisplayMonitors
0xea3720 GetMonitorInfoW
0xea3728 MonitorFromPoint
0xea3730 MonitorFromRect
0xea3738 MonitorFromWindow
msvcrt.dll
0xea3748 isxdigit
0xea3750 isupper
0xea3758 isspace
0xea3760 ispunct
0xea3768 isprint
0xea3770 islower
0xea3778 isgraph
0xea3780 isdigit
0xea3788 iscntrl
0xea3790 isalpha
0xea3798 isalnum
0xea37a0 toupper
0xea37a8 tolower
0xea37b0 strchr
0xea37b8 strncmp
0xea37c0 memset
0xea37c8 memcpy
0xea37d0 memcmp
shell32.dll
0xea37e0 ShellExecuteW
0xea37e8 Shell_NotifyIconW
0xea37f0 DragQueryFileW
shell32.dll
0xea3800 SHGetSpecialFolderLocation
0xea3808 SHGetPathFromIDListW
comdlg32.dll
0xea3818 PageSetupDlgW
0xea3820 PrintDlgW
0xea3828 GetSaveFileNameW
0xea3830 GetOpenFileNameW
winspool.drv
0xea3840 SetPrinterW
0xea3848 OpenPrinterW
0xea3850 GetPrinterW
0xea3858 GetDefaultPrinterW
0xea3860 EnumPrintersW
0xea3868 DocumentPropertiesW
0xea3870 DeviceCapabilitiesW
0xea3878 ClosePrinter
winspool.drv
0xea3888 GetDefaultPrinterW
winmm.dll
0xea3898 timeGetTime
d3d9.dll
0xea38a8 Direct3DCreate9
EAT(Export Address Table) Library
0x4a7420 TMethodImplementationIntercept
0x4180f0 __dbk_fcall_wrapper
0xe85f58 dbkFCallWrapperAddr
oleaut32.dll
0xea2558 SysFreeString
0xea2560 SysReAllocStringLen
0xea2568 SysAllocStringLen
advapi32.dll
0xea2578 RegQueryValueExW
0xea2580 RegOpenKeyExW
0xea2588 RegCloseKey
user32.dll
0xea2598 CharNextW
0xea25a0 LoadStringW
kernel32.dll
0xea25b0 Sleep
0xea25b8 VirtualFree
0xea25c0 VirtualAlloc
0xea25c8 lstrlenW
0xea25d0 VirtualQuery
0xea25d8 QueryPerformanceCounter
0xea25e0 GetTickCount
0xea25e8 GetSystemInfo
0xea25f0 GetVersion
0xea25f8 CompareStringW
0xea2600 IsValidLocale
0xea2608 SetThreadLocale
0xea2610 GetSystemDefaultUILanguage
0xea2618 GetUserDefaultUILanguage
0xea2620 GetLocaleInfoW
0xea2628 WideCharToMultiByte
0xea2630 MultiByteToWideChar
0xea2638 GetACP
0xea2640 LoadLibraryExW
0xea2648 GetStartupInfoW
0xea2650 GetProcAddress
0xea2658 GetModuleHandleW
0xea2660 GetModuleFileNameW
0xea2668 GetCommandLineW
0xea2670 FindResourceW
0xea2678 FreeLibrary
0xea2680 GetLastError
0xea2688 UnhandledExceptionFilter
0xea2690 RtlUnwindEx
0xea2698 RtlUnwind
0xea26a0 RaiseException
0xea26a8 ExitProcess
0xea26b0 ExitThread
0xea26b8 SwitchToThread
0xea26c0 GetCurrentThreadId
0xea26c8 CreateThread
0xea26d0 DeleteCriticalSection
0xea26d8 LeaveCriticalSection
0xea26e0 EnterCriticalSection
0xea26e8 InitializeCriticalSection
0xea26f0 FindFirstFileW
0xea26f8 FindClose
0xea2700 WriteFile
0xea2708 GetStdHandle
0xea2710 CloseHandle
kernel32.dll
0xea2720 GetProcAddress
0xea2728 RaiseException
0xea2730 LoadLibraryA
0xea2738 GetLastError
0xea2740 TlsSetValue
0xea2748 TlsGetValue
0xea2750 LocalFree
0xea2758 LocalAlloc
0xea2760 GetModuleHandleW
0xea2768 FreeLibrary
user32.dll
0xea2778 WINNLSEnableIME
0xea2780 SetClassLongPtrW
0xea2788 GetClassLongPtrW
0xea2790 SetWindowLongPtrW
0xea2798 GetWindowLongPtrW
0xea27a0 CreateWindowExW
0xea27a8 WindowFromPoint
0xea27b0 WaitMessage
0xea27b8 UpdateLayeredWindow
0xea27c0 UpdateWindow
0xea27c8 UnregisterClassW
0xea27d0 UnhookWindowsHookEx
0xea27d8 TranslateMessage
0xea27e0 TranslateMDISysAccel
0xea27e8 TrackPopupMenu
0xea27f0 TrackMouseEvent
0xea27f8 SystemParametersInfoW
0xea2800 ShowWindow
0xea2808 ShowScrollBar
0xea2810 ShowOwnedPopups
0xea2818 ShowCaret
0xea2820 SetWindowRgn
0xea2828 SetWindowsHookExW
0xea2830 SetWindowTextW
0xea2838 SetWindowPos
0xea2840 SetWindowPlacement
0xea2848 SetTimer
0xea2850 SetScrollRange
0xea2858 SetScrollPos
0xea2860 SetScrollInfo
0xea2868 SetRect
0xea2870 SetPropW
0xea2878 SetParent
0xea2880 SetMenuItemInfoW
0xea2888 SetMenu
0xea2890 SetForegroundWindow
0xea2898 SetFocus
0xea28a0 SetCursorPos
0xea28a8 SetCursor
0xea28b0 SetClipboardData
0xea28b8 SetCapture
0xea28c0 SetActiveWindow
0xea28c8 SendMessageTimeoutW
0xea28d0 SendMessageA
0xea28d8 SendMessageW
0xea28e0 ScrollWindow
0xea28e8 ScreenToClient
0xea28f0 RemovePropW
0xea28f8 RemoveMenu
0xea2900 ReleaseDC
0xea2908 ReleaseCapture
0xea2910 RegisterWindowMessageW
0xea2918 RegisterClipboardFormatW
0xea2920 RegisterClassW
0xea2928 RedrawWindow
0xea2930 PostQuitMessage
0xea2938 PostMessageW
0xea2940 PeekMessageA
0xea2948 PeekMessageW
0xea2950 OpenClipboard
0xea2958 MsgWaitForMultipleObjectsEx
0xea2960 MsgWaitForMultipleObjects
0xea2968 MessageBoxIndirectW
0xea2970 MessageBoxW
0xea2978 MessageBeep
0xea2980 MapWindowPoints
0xea2988 MapVirtualKeyW
0xea2990 LoadStringW
0xea2998 LoadKeyboardLayoutW
0xea29a0 LoadIconW
0xea29a8 LoadCursorW
0xea29b0 LoadBitmapW
0xea29b8 KillTimer
0xea29c0 IsZoomed
0xea29c8 IsWindowVisible
0xea29d0 IsWindowUnicode
0xea29d8 IsWindowEnabled
0xea29e0 IsWindow
0xea29e8 IsIconic
0xea29f0 IsDialogMessageA
0xea29f8 IsDialogMessageW
0xea2a00 IsChild
0xea2a08 InvalidateRect
0xea2a10 InsertMenuItemW
0xea2a18 InsertMenuW
0xea2a20 HideCaret
0xea2a28 GetWindowThreadProcessId
0xea2a30 GetWindowTextLengthW
0xea2a38 GetWindowTextW
0xea2a40 GetWindowRect
0xea2a48 GetWindowPlacement
0xea2a50 GetWindowDC
0xea2a58 GetUpdateRgn
0xea2a60 GetUpdateRect
0xea2a68 GetTopWindow
0xea2a70 GetSystemMetrics
0xea2a78 GetSystemMenu
0xea2a80 GetSysColorBrush
0xea2a88 GetSysColor
0xea2a90 GetSubMenu
0xea2a98 GetScrollRange
0xea2aa0 GetScrollPos
0xea2aa8 GetScrollInfo
0xea2ab0 GetScrollBarInfo
0xea2ab8 GetPropW
0xea2ac0 GetParent
0xea2ac8 GetWindow
0xea2ad0 GetMessagePos
0xea2ad8 GetMessageExtraInfo
0xea2ae0 GetMenuStringW
0xea2ae8 GetMenuState
0xea2af0 GetMenuItemInfoW
0xea2af8 GetMenuItemID
0xea2b00 GetMenuItemCount
0xea2b08 GetMenu
0xea2b10 GetLastActivePopup
0xea2b18 GetKeyboardState
0xea2b20 GetKeyboardLayoutNameW
0xea2b28 GetKeyboardLayoutList
0xea2b30 GetKeyboardLayout
0xea2b38 GetKeyState
0xea2b40 GetKeyNameTextW
0xea2b48 GetIconInfo
0xea2b50 GetForegroundWindow
0xea2b58 GetFocus
0xea2b60 GetDlgCtrlID
0xea2b68 GetDesktopWindow
0xea2b70 GetDCEx
0xea2b78 GetDC
0xea2b80 GetCursorPos
0xea2b88 GetCursor
0xea2b90 GetClipboardData
0xea2b98 GetClientRect
0xea2ba0 GetClassNameW
0xea2ba8 GetClassInfoExW
0xea2bb0 GetClassInfoW
0xea2bb8 GetCapture
0xea2bc0 GetActiveWindow
0xea2bc8 FrameRect
0xea2bd0 FindWindowExW
0xea2bd8 FindWindowW
0xea2be0 FillRect
0xea2be8 EnumWindows
0xea2bf0 EnumThreadWindows
0xea2bf8 EnumChildWindows
0xea2c00 EndPaint
0xea2c08 EndMenu
0xea2c10 EnableWindow
0xea2c18 EnableScrollBar
0xea2c20 EnableMenuItem
0xea2c28 EmptyClipboard
0xea2c30 DrawTextExW
0xea2c38 DrawTextW
0xea2c40 DrawMenuBar
0xea2c48 DrawIconEx
0xea2c50 DrawIcon
0xea2c58 DrawFrameControl
0xea2c60 DrawFocusRect
0xea2c68 DrawEdge
0xea2c70 DispatchMessageA
0xea2c78 DispatchMessageW
0xea2c80 DestroyWindow
0xea2c88 DestroyMenu
0xea2c90 DestroyIcon
0xea2c98 DestroyCursor
0xea2ca0 DeleteMenu
0xea2ca8 DefWindowProcW
0xea2cb0 DefMDIChildProcW
0xea2cb8 DefFrameProcW
0xea2cc0 CreatePopupMenu
0xea2cc8 CreateMenu
0xea2cd0 CreateIcon
0xea2cd8 CreateAcceleratorTableW
0xea2ce0 CopyImage
0xea2ce8 CopyIcon
0xea2cf0 CloseClipboard
0xea2cf8 ClientToScreen
0xea2d00 CheckMenuItem
0xea2d08 CharUpperBuffW
0xea2d10 CharUpperW
0xea2d18 CharNextW
0xea2d20 CharLowerBuffW
0xea2d28 CharLowerW
0xea2d30 CallWindowProcW
0xea2d38 CallNextHookEx
0xea2d40 BeginPaint
0xea2d48 AppendMenuW
0xea2d50 AdjustWindowRectEx
0xea2d58 ActivateKeyboardLayout
gdi32.dll
0xea2d68 UnrealizeObject
0xea2d70 TextOutW
0xea2d78 StretchDIBits
0xea2d80 StretchBlt
0xea2d88 StartPage
0xea2d90 StartDocW
0xea2d98 SetWindowOrgEx
0xea2da0 SetWinMetaFileBits
0xea2da8 SetViewportOrgEx
0xea2db0 SetTextColor
0xea2db8 SetTextAlign
0xea2dc0 SetStretchBltMode
0xea2dc8 SetRectRgn
0xea2dd0 SetROP2
0xea2dd8 SetPixel
0xea2de0 SetMapMode
0xea2de8 SetEnhMetaFileBits
0xea2df0 SetDIBits
0xea2df8 SetDIBColorTable
0xea2e00 SetBrushOrgEx
0xea2e08 SetBkMode
0xea2e10 SetBkColor
0xea2e18 SetAbortProc
0xea2e20 SelectPalette
0xea2e28 SelectObject
0xea2e30 SaveDC
0xea2e38 RoundRect
0xea2e40 RestoreDC
0xea2e48 Rectangle
0xea2e50 RectVisible
0xea2e58 RealizePalette
0xea2e60 Polyline
0xea2e68 Polygon
0xea2e70 PolyBezierTo
0xea2e78 PolyBezier
0xea2e80 PlayEnhMetaFile
0xea2e88 Pie
0xea2e90 PatBlt
0xea2e98 MoveToEx
0xea2ea0 MaskBlt
0xea2ea8 LineTo
0xea2eb0 IntersectClipRect
0xea2eb8 GetWindowOrgEx
0xea2ec0 GetWinMetaFileBits
0xea2ec8 GetTextMetricsW
0xea2ed0 GetTextExtentPointW
0xea2ed8 GetTextExtentPoint32W
0xea2ee0 GetSystemPaletteEntries
0xea2ee8 GetStockObject
0xea2ef0 GetRgnBox
0xea2ef8 GetRegionData
0xea2f00 GetPixel
0xea2f08 GetPaletteEntries
0xea2f10 GetObjectA
0xea2f18 GetObjectW
0xea2f20 GetEnhMetaFilePaletteEntries
0xea2f28 GetEnhMetaFileHeader
0xea2f30 GetEnhMetaFileDescriptionW
0xea2f38 GetEnhMetaFileBits
0xea2f40 GetDeviceCaps
0xea2f48 GetDIBits
0xea2f50 GetDIBColorTable
0xea2f58 GetCurrentPositionEx
0xea2f60 GetClipBox
0xea2f68 GetCharABCWidthsFloatW
0xea2f70 GetBrushOrgEx
0xea2f78 GetBitmapBits
0xea2f80 GdiFlush
0xea2f88 FrameRgn
0xea2f90 ExtTextOutW
0xea2f98 ExtFloodFill
0xea2fa0 ExtCreateRegion
0xea2fa8 ExcludeClipRect
0xea2fb0 EnumFontsW
0xea2fb8 EnumFontFamiliesExW
0xea2fc0 EndPage
0xea2fc8 EndDoc
0xea2fd0 Ellipse
0xea2fd8 DeleteObject
0xea2fe0 DeleteEnhMetaFile
0xea2fe8 DeleteDC
0xea2ff0 CreateSolidBrush
0xea2ff8 CreateRectRgn
0xea3000 CreatePenIndirect
0xea3008 CreatePalette
0xea3010 CreateICW
0xea3018 CreateHalftonePalette
0xea3020 CreateFontIndirectW
0xea3028 CreateFontW
0xea3030 CreateDIBitmap
0xea3038 CreateDIBSection
0xea3040 CreateDCW
0xea3048 CreateCompatibleDC
0xea3050 CreateCompatibleBitmap
0xea3058 CreateBrushIndirect
0xea3060 CreateBitmap
0xea3068 CopyEnhMetaFileW
0xea3070 CombineRgn
0xea3078 Chord
0xea3080 BitBlt
0xea3088 ArcTo
0xea3090 Arc
0xea3098 AngleArc
0xea30a0 AbortDoc
version.dll
0xea30b0 VerQueryValueW
0xea30b8 GetFileVersionInfoSizeW
0xea30c0 GetFileVersionInfoW
kernel32.dll
0xea30d0 lstrlenW
0xea30d8 WriteFile
0xea30e0 WideCharToMultiByte
0xea30e8 WaitForSingleObject
0xea30f0 WaitForMultipleObjectsEx
0xea30f8 VirtualQueryEx
0xea3100 VirtualQuery
0xea3108 VirtualProtect
0xea3110 VirtualFree
0xea3118 VirtualAlloc
0xea3120 VerSetConditionMask
0xea3128 VerifyVersionInfoW
0xea3130 TryEnterCriticalSection
0xea3138 SwitchToThread
0xea3140 SuspendThread
0xea3148 Sleep
0xea3150 SizeofResource
0xea3158 SetThreadPriority
0xea3160 SetThreadLocale
0xea3168 SetLastError
0xea3170 SetFilePointer
0xea3178 SetEvent
0xea3180 SetErrorMode
0xea3188 SetEndOfFile
0xea3190 ResumeThread
0xea3198 ResetEvent
0xea31a0 RemoveDirectoryW
0xea31a8 ReadFile
0xea31b0 RaiseException
0xea31b8 QueryPerformanceFrequency
0xea31c0 QueryPerformanceCounter
0xea31c8 IsDebuggerPresent
0xea31d0 OutputDebugStringW
0xea31d8 MultiByteToWideChar
0xea31e0 MulDiv
0xea31e8 LockResource
0xea31f0 LocalFree
0xea31f8 LoadResource
0xea3200 LoadLibraryW
0xea3208 LeaveCriticalSection
0xea3210 LCMapStringW
0xea3218 IsValidLocale
0xea3220 InitializeCriticalSection
0xea3228 HeapSize
0xea3230 HeapFree
0xea3238 HeapDestroy
0xea3240 HeapCreate
0xea3248 HeapAlloc
0xea3250 GlobalUnlock
0xea3258 GlobalSize
0xea3260 GlobalLock
0xea3268 GlobalFree
0xea3270 GlobalFindAtomW
0xea3278 GlobalDeleteAtom
0xea3280 GlobalAlloc
0xea3288 GlobalAddAtomW
0xea3290 GetWindowsDirectoryW
0xea3298 GetVersionExW
0xea32a0 GetVersion
0xea32a8 GetUserDefaultLCID
0xea32b0 GetTimeZoneInformation
0xea32b8 GetTickCount
0xea32c0 GetThreadPriority
0xea32c8 GetThreadLocale
0xea32d0 GetTempPathW
0xea32d8 GetSystemDirectoryW
0xea32e0 GetStdHandle
0xea32e8 GetLongPathNameW
0xea32f0 GetProcAddress
0xea32f8 GetModuleHandleW
0xea3300 GetModuleFileNameW
0xea3308 GetLocaleInfoW
0xea3310 GetLocalTime
0xea3318 GetLastError
0xea3320 GetFullPathNameW
0xea3328 GetFileAttributesW
0xea3330 GetExitCodeThread
0xea3338 GetEnvironmentVariableW
0xea3340 GetDiskFreeSpaceW
0xea3348 GetDateFormatW
0xea3350 GetCurrentThreadId
0xea3358 GetCurrentThread
0xea3360 GetCurrentProcessId
0xea3368 GetCurrentProcess
0xea3370 GetCPInfoExW
0xea3378 GetCPInfo
0xea3380 GetACP
0xea3388 FreeResource
0xea3390 FreeLibrary
0xea3398 FormatMessageW
0xea33a0 FindResourceW
0xea33a8 FindNextFileW
0xea33b0 FindFirstFileW
0xea33b8 FindClose
0xea33c0 FileTimeToLocalFileTime
0xea33c8 FileTimeToDosDateTime
0xea33d0 ExpandEnvironmentStringsW
0xea33d8 EnumSystemLocalesW
0xea33e0 EnumResourceNamesW
0xea33e8 EnumCalendarInfoW
0xea33f0 EnterCriticalSection
0xea33f8 DeleteFileW
0xea3400 DeleteCriticalSection
0xea3408 CreateThread
0xea3410 CreateFileW
0xea3418 CreateEventW
0xea3420 CompareStringA
0xea3428 CompareStringW
0xea3430 CloseHandle
advapi32.dll
0xea3440 RegUnLoadKeyW
0xea3448 RegSetValueExW
0xea3450 RegSaveKeyW
0xea3458 RegRestoreKeyW
0xea3460 RegReplaceKeyW
0xea3468 RegQueryValueExW
0xea3470 RegQueryInfoKeyW
0xea3478 RegOpenKeyExW
0xea3480 RegLoadKeyW
0xea3488 RegFlushKey
0xea3490 RegEnumValueW
0xea3498 RegEnumKeyW
0xea34a0 RegEnumKeyExW
0xea34a8 RegDeleteValueW
0xea34b0 RegDeleteKeyW
0xea34b8 RegCreateKeyExW
0xea34c0 RegConnectRegistryW
0xea34c8 RegCloseKey
kernel32.dll
0xea34d8 Sleep
oleaut32.dll
0xea34e8 SafeArrayPtrOfIndex
0xea34f0 SafeArrayPutElement
0xea34f8 SafeArrayGetElement
0xea3500 SafeArrayUnaccessData
0xea3508 SafeArrayAccessData
0xea3510 SafeArrayGetUBound
0xea3518 SafeArrayGetLBound
0xea3520 SafeArrayRedim
0xea3528 SafeArrayCreate
0xea3530 VariantChangeType
0xea3538 VariantCopyInd
0xea3540 VariantCopy
0xea3548 VariantClear
0xea3550 VariantInit
oleaut32.dll
0xea3560 GetErrorInfo
0xea3568 SysFreeString
ole32.dll
0xea3578 CreateStreamOnHGlobal
0xea3580 ReleaseStgMedium
0xea3588 OleDraw
0xea3590 DoDragDrop
0xea3598 RevokeDragDrop
0xea35a0 RegisterDragDrop
0xea35a8 OleUninitialize
0xea35b0 OleInitialize
0xea35b8 CoTaskMemFree
0xea35c0 CoTaskMemAlloc
0xea35c8 CoCreateInstance
0xea35d0 CoGetClassObject
0xea35d8 CoUninitialize
0xea35e0 CoInitialize
0xea35e8 IsEqualGUID
comctl32.dll
0xea35f8 InitializeFlatSB
0xea3600 FlatSB_SetScrollProp
0xea3608 FlatSB_SetScrollPos
0xea3610 FlatSB_SetScrollInfo
0xea3618 FlatSB_GetScrollPos
0xea3620 FlatSB_GetScrollInfo
0xea3628 _TrackMouseEvent
0xea3630 ImageList_GetImageInfo
0xea3638 ImageList_SetIconSize
0xea3640 ImageList_GetIconSize
0xea3648 ImageList_Write
0xea3650 ImageList_Read
0xea3658 ImageList_GetDragImage
0xea3660 ImageList_DragShowNolock
0xea3668 ImageList_DragMove
0xea3670 ImageList_DragLeave
0xea3678 ImageList_DragEnter
0xea3680 ImageList_EndDrag
0xea3688 ImageList_BeginDrag
0xea3690 ImageList_Copy
0xea3698 ImageList_LoadImageW
0xea36a0 ImageList_GetIcon
0xea36a8 ImageList_Remove
0xea36b0 ImageList_DrawEx
0xea36b8 ImageList_Replace
0xea36c0 ImageList_Draw
0xea36c8 ImageList_SetOverlayImage
0xea36d0 ImageList_GetBkColor
0xea36d8 ImageList_SetBkColor
0xea36e0 ImageList_ReplaceIcon
0xea36e8 ImageList_Add
0xea36f0 ImageList_SetImageCount
0xea36f8 ImageList_GetImageCount
0xea3700 ImageList_Destroy
0xea3708 ImageList_Create
user32.dll
0xea3718 EnumDisplayMonitors
0xea3720 GetMonitorInfoW
0xea3728 MonitorFromPoint
0xea3730 MonitorFromRect
0xea3738 MonitorFromWindow
msvcrt.dll
0xea3748 isxdigit
0xea3750 isupper
0xea3758 isspace
0xea3760 ispunct
0xea3768 isprint
0xea3770 islower
0xea3778 isgraph
0xea3780 isdigit
0xea3788 iscntrl
0xea3790 isalpha
0xea3798 isalnum
0xea37a0 toupper
0xea37a8 tolower
0xea37b0 strchr
0xea37b8 strncmp
0xea37c0 memset
0xea37c8 memcpy
0xea37d0 memcmp
shell32.dll
0xea37e0 ShellExecuteW
0xea37e8 Shell_NotifyIconW
0xea37f0 DragQueryFileW
shell32.dll
0xea3800 SHGetSpecialFolderLocation
0xea3808 SHGetPathFromIDListW
comdlg32.dll
0xea3818 PageSetupDlgW
0xea3820 PrintDlgW
0xea3828 GetSaveFileNameW
0xea3830 GetOpenFileNameW
winspool.drv
0xea3840 SetPrinterW
0xea3848 OpenPrinterW
0xea3850 GetPrinterW
0xea3858 GetDefaultPrinterW
0xea3860 EnumPrintersW
0xea3868 DocumentPropertiesW
0xea3870 DeviceCapabilitiesW
0xea3878 ClosePrinter
winspool.drv
0xea3888 GetDefaultPrinterW
winmm.dll
0xea3898 timeGetTime
d3d9.dll
0xea38a8 Direct3DCreate9
EAT(Export Address Table) Library
0x4a7420 TMethodImplementationIntercept
0x4180f0 __dbk_fcall_wrapper
0xe85f58 dbkFCallWrapperAddr