ScreenShot
| Created | 2024.08.17 22:37 | Machine | s1_win7_x6403 |
| Filename | Identifications.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 31 detected (SleepObf, Malicious, score, V44f, Delf, Artemis, DropperX, Undefined, xkUWR0DSVtM, Redcap, ggdoe, Detected, Wacatac, IQDP5O, Gencirc) | ||
| md5 | edcf274c5fb6582593f81ecc977264e9 | ||
| sha256 | 0fa8d2dce87fd3e27c2543c9dcf2931fdafd856ca4e14ee21531fb942dc3b36e | ||
| ssdeep | 98304:ShkHWcnoeoJqTpLcGj81koZwPDiRSgpHuOp2vwdrciKLr:WYWQoeo2cG9oC7iRrpOOpIwdcHf | ||
| imphash | 93b0547f5090c9427cc4f187c26f3f73 | ||
| impfuzzy | 192:occFuuRuuNwEUh99K/oSN5mLIILghF9hW3U1Rm/hrPbOQHxxS/:SuiN+9tX0FLDWk1R8PbOQHxM/ | ||
Network IP location
Signature (4cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 31 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (8cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_2_Zero | Win32 Trojan Emotet | binaries (upload) |
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
oleaut32.dll
0x9fd3d8 SysFreeString
0x9fd3e0 SysReAllocStringLen
0x9fd3e8 SysAllocStringLen
advapi32.dll
0x9fd3f8 RegQueryValueExW
0x9fd400 RegOpenKeyExW
0x9fd408 RegCloseKey
user32.dll
0x9fd418 CharNextW
0x9fd420 LoadStringW
kernel32.dll
0x9fd430 Sleep
0x9fd438 VirtualFree
0x9fd440 VirtualAlloc
0x9fd448 lstrlenW
0x9fd450 VirtualQuery
0x9fd458 QueryPerformanceCounter
0x9fd460 GetTickCount
0x9fd468 GetSystemInfo
0x9fd470 GetVersion
0x9fd478 CompareStringW
0x9fd480 IsValidLocale
0x9fd488 SetThreadLocale
0x9fd490 GetSystemDefaultUILanguage
0x9fd498 GetUserDefaultUILanguage
0x9fd4a0 GetLocaleInfoW
0x9fd4a8 WideCharToMultiByte
0x9fd4b0 MultiByteToWideChar
0x9fd4b8 GetACP
0x9fd4c0 LoadLibraryExW
0x9fd4c8 GetStartupInfoW
0x9fd4d0 GetProcAddress
0x9fd4d8 GetModuleHandleW
0x9fd4e0 GetModuleFileNameW
0x9fd4e8 GetCommandLineW
0x9fd4f0 FreeLibrary
0x9fd4f8 GetLastError
0x9fd500 UnhandledExceptionFilter
0x9fd508 RtlUnwindEx
0x9fd510 RtlUnwind
0x9fd518 RaiseException
0x9fd520 ExitProcess
0x9fd528 ExitThread
0x9fd530 SwitchToThread
0x9fd538 GetCurrentThreadId
0x9fd540 CreateThread
0x9fd548 DeleteCriticalSection
0x9fd550 LeaveCriticalSection
0x9fd558 EnterCriticalSection
0x9fd560 InitializeCriticalSection
0x9fd568 FindFirstFileW
0x9fd570 FindClose
0x9fd578 WriteFile
0x9fd580 GetStdHandle
0x9fd588 CloseHandle
kernel32.dll
0x9fd598 GetProcAddress
0x9fd5a0 RaiseException
0x9fd5a8 LoadLibraryA
0x9fd5b0 GetLastError
0x9fd5b8 TlsSetValue
0x9fd5c0 TlsGetValue
0x9fd5c8 LocalFree
0x9fd5d0 LocalAlloc
0x9fd5d8 GetModuleHandleW
0x9fd5e0 FreeLibrary
user32.dll
0x9fd5f0 SetClassLongPtrW
0x9fd5f8 GetClassLongPtrW
0x9fd600 SetWindowLongPtrW
0x9fd608 GetWindowLongPtrW
0x9fd610 CreateWindowExW
0x9fd618 WindowFromPoint
0x9fd620 WaitMessage
0x9fd628 UpdateWindow
0x9fd630 UnregisterClassW
0x9fd638 UnhookWindowsHookEx
0x9fd640 TranslateMessage
0x9fd648 TranslateMDISysAccel
0x9fd650 TrackPopupMenu
0x9fd658 SystemParametersInfoW
0x9fd660 ShowWindow
0x9fd668 ShowScrollBar
0x9fd670 ShowOwnedPopups
0x9fd678 ShowCaret
0x9fd680 SetWindowRgn
0x9fd688 SetWindowsHookExW
0x9fd690 SetWindowTextW
0x9fd698 SetWindowPos
0x9fd6a0 SetWindowPlacement
0x9fd6a8 SetTimer
0x9fd6b0 SetScrollRange
0x9fd6b8 SetScrollPos
0x9fd6c0 SetScrollInfo
0x9fd6c8 SetRect
0x9fd6d0 SetPropW
0x9fd6d8 SetParent
0x9fd6e0 SetMenuItemInfoW
0x9fd6e8 SetMenu
0x9fd6f0 SetForegroundWindow
0x9fd6f8 SetFocus
0x9fd700 SetCursorPos
0x9fd708 SetCursor
0x9fd710 SetClipboardData
0x9fd718 SetCapture
0x9fd720 SetActiveWindow
0x9fd728 SendMessageA
0x9fd730 SendMessageW
0x9fd738 ScrollWindow
0x9fd740 ScreenToClient
0x9fd748 RemovePropW
0x9fd750 RemoveMenu
0x9fd758 ReleaseDC
0x9fd760 ReleaseCapture
0x9fd768 RegisterWindowMessageW
0x9fd770 RegisterClipboardFormatW
0x9fd778 RegisterClassW
0x9fd780 RedrawWindow
0x9fd788 PostQuitMessage
0x9fd790 PostMessageW
0x9fd798 PeekMessageA
0x9fd7a0 PeekMessageW
0x9fd7a8 OpenClipboard
0x9fd7b0 MsgWaitForMultipleObjectsEx
0x9fd7b8 MsgWaitForMultipleObjects
0x9fd7c0 MessageBoxW
0x9fd7c8 MessageBeep
0x9fd7d0 MapWindowPoints
0x9fd7d8 MapVirtualKeyW
0x9fd7e0 LoadStringW
0x9fd7e8 LoadKeyboardLayoutW
0x9fd7f0 LoadIconW
0x9fd7f8 LoadCursorW
0x9fd800 LoadBitmapW
0x9fd808 KillTimer
0x9fd810 IsZoomed
0x9fd818 IsWindowVisible
0x9fd820 IsWindowUnicode
0x9fd828 IsWindowEnabled
0x9fd830 IsWindow
0x9fd838 IsIconic
0x9fd840 IsDialogMessageA
0x9fd848 IsDialogMessageW
0x9fd850 IsClipboardFormatAvailable
0x9fd858 IsChild
0x9fd860 InvalidateRect
0x9fd868 InsertMenuItemW
0x9fd870 InsertMenuW
0x9fd878 InflateRect
0x9fd880 HideCaret
0x9fd888 GetWindowThreadProcessId
0x9fd890 GetWindowTextW
0x9fd898 GetWindowRect
0x9fd8a0 GetWindowPlacement
0x9fd8a8 GetWindowDC
0x9fd8b0 GetTopWindow
0x9fd8b8 GetSystemMetrics
0x9fd8c0 GetSystemMenu
0x9fd8c8 GetSysColorBrush
0x9fd8d0 GetSysColor
0x9fd8d8 GetSubMenu
0x9fd8e0 GetScrollRange
0x9fd8e8 GetScrollPos
0x9fd8f0 GetScrollInfo
0x9fd8f8 GetScrollBarInfo
0x9fd900 GetPropW
0x9fd908 GetParent
0x9fd910 GetWindow
0x9fd918 GetMessagePos
0x9fd920 GetMessageExtraInfo
0x9fd928 GetMenuStringW
0x9fd930 GetMenuState
0x9fd938 GetMenuItemInfoW
0x9fd940 GetMenuItemID
0x9fd948 GetMenuItemCount
0x9fd950 GetMenu
0x9fd958 GetLastActivePopup
0x9fd960 GetKeyboardState
0x9fd968 GetKeyboardLayoutNameW
0x9fd970 GetKeyboardLayoutList
0x9fd978 GetKeyboardLayout
0x9fd980 GetKeyState
0x9fd988 GetKeyNameTextW
0x9fd990 GetIconInfo
0x9fd998 GetForegroundWindow
0x9fd9a0 GetFocus
0x9fd9a8 GetDlgCtrlID
0x9fd9b0 GetDesktopWindow
0x9fd9b8 GetDCEx
0x9fd9c0 GetDC
0x9fd9c8 GetCursorPos
0x9fd9d0 GetCursor
0x9fd9d8 GetClipboardData
0x9fd9e0 GetClientRect
0x9fd9e8 GetClassNameW
0x9fd9f0 GetClassInfoExW
0x9fd9f8 GetClassInfoW
0x9fda00 GetCapture
0x9fda08 GetActiveWindow
0x9fda10 FrameRect
0x9fda18 FindWindowExW
0x9fda20 FindWindowW
0x9fda28 FillRect
0x9fda30 EnumWindows
0x9fda38 EnumThreadWindows
0x9fda40 EnumClipboardFormats
0x9fda48 EnumChildWindows
0x9fda50 EndPaint
0x9fda58 EndMenu
0x9fda60 EnableWindow
0x9fda68 EnableScrollBar
0x9fda70 EnableMenuItem
0x9fda78 EmptyClipboard
0x9fda80 DrawTextExW
0x9fda88 DrawTextW
0x9fda90 DrawMenuBar
0x9fda98 DrawIconEx
0x9fdaa0 DrawIcon
0x9fdaa8 DrawFrameControl
0x9fdab0 DrawFocusRect
0x9fdab8 DrawEdge
0x9fdac0 DispatchMessageA
0x9fdac8 DispatchMessageW
0x9fdad0 DestroyWindow
0x9fdad8 DestroyMenu
0x9fdae0 DestroyIcon
0x9fdae8 DestroyCursor
0x9fdaf0 DeleteMenu
0x9fdaf8 DefWindowProcW
0x9fdb00 DefMDIChildProcW
0x9fdb08 DefFrameProcW
0x9fdb10 CreatePopupMenu
0x9fdb18 CreateMenu
0x9fdb20 CreateIcon
0x9fdb28 CreateAcceleratorTableW
0x9fdb30 CountClipboardFormats
0x9fdb38 CopyImage
0x9fdb40 CopyIcon
0x9fdb48 CloseClipboard
0x9fdb50 ClientToScreen
0x9fdb58 CheckMenuItem
0x9fdb60 CharUpperBuffW
0x9fdb68 CharUpperW
0x9fdb70 CharNextW
0x9fdb78 CharLowerBuffW
0x9fdb80 CharLowerW
0x9fdb88 CallWindowProcW
0x9fdb90 CallNextHookEx
0x9fdb98 BeginPaint
0x9fdba0 AdjustWindowRectEx
0x9fdba8 ActivateKeyboardLayout
gdi32.dll
0x9fdbb8 UnrealizeObject
0x9fdbc0 StretchDIBits
0x9fdbc8 StretchBlt
0x9fdbd0 StartPage
0x9fdbd8 StartDocW
0x9fdbe0 SetWindowOrgEx
0x9fdbe8 SetWinMetaFileBits
0x9fdbf0 SetViewportOrgEx
0x9fdbf8 SetTextColor
0x9fdc00 SetStretchBltMode
0x9fdc08 SetRectRgn
0x9fdc10 SetROP2
0x9fdc18 SetPixel
0x9fdc20 SetEnhMetaFileBits
0x9fdc28 SetDIBits
0x9fdc30 SetDIBColorTable
0x9fdc38 SetBrushOrgEx
0x9fdc40 SetBkMode
0x9fdc48 SetBkColor
0x9fdc50 SetAbortProc
0x9fdc58 SelectPalette
0x9fdc60 SelectObject
0x9fdc68 SaveDC
0x9fdc70 RoundRect
0x9fdc78 RestoreDC
0x9fdc80 ResizePalette
0x9fdc88 Rectangle
0x9fdc90 RectVisible
0x9fdc98 RealizePalette
0x9fdca0 Polyline
0x9fdca8 Polygon
0x9fdcb0 PolyBezierTo
0x9fdcb8 PolyBezier
0x9fdcc0 PlayEnhMetaFile
0x9fdcc8 Pie
0x9fdcd0 PatBlt
0x9fdcd8 MoveToEx
0x9fdce0 MaskBlt
0x9fdce8 LineTo
0x9fdcf0 IntersectClipRect
0x9fdcf8 GetWindowOrgEx
0x9fdd00 GetWinMetaFileBits
0x9fdd08 GetTextMetricsW
0x9fdd10 GetTextExtentPointW
0x9fdd18 GetTextExtentPoint32W
0x9fdd20 GetSystemPaletteEntries
0x9fdd28 GetStockObject
0x9fdd30 GetRgnBox
0x9fdd38 GetPixel
0x9fdd40 GetPaletteEntries
0x9fdd48 GetObjectW
0x9fdd50 GetNearestPaletteIndex
0x9fdd58 GetEnhMetaFilePaletteEntries
0x9fdd60 GetEnhMetaFileHeader
0x9fdd68 GetEnhMetaFileDescriptionW
0x9fdd70 GetEnhMetaFileBits
0x9fdd78 GetDeviceCaps
0x9fdd80 GetDIBits
0x9fdd88 GetDIBColorTable
0x9fdd90 GetCurrentPositionEx
0x9fdd98 GetClipBox
0x9fdda0 GetBrushOrgEx
0x9fdda8 GetBitmapBits
0x9fddb0 GdiFlush
0x9fddb8 FrameRgn
0x9fddc0 ExtTextOutW
0x9fddc8 ExtFloodFill
0x9fddd0 ExcludeClipRect
0x9fddd8 EnumFontsW
0x9fdde0 EnumFontFamiliesExW
0x9fdde8 EndPage
0x9fddf0 EndDoc
0x9fddf8 Ellipse
0x9fde00 DeleteObject
0x9fde08 DeleteEnhMetaFile
0x9fde10 DeleteDC
0x9fde18 CreateSolidBrush
0x9fde20 CreateRectRgn
0x9fde28 CreatePenIndirect
0x9fde30 CreatePalette
0x9fde38 CreateICW
0x9fde40 CreateHalftonePalette
0x9fde48 CreateFontIndirectW
0x9fde50 CreateDIBitmap
0x9fde58 CreateDIBSection
0x9fde60 CreateDCW
0x9fde68 CreateCompatibleDC
0x9fde70 CreateCompatibleBitmap
0x9fde78 CreateBrushIndirect
0x9fde80 CreateBitmap
0x9fde88 CopyEnhMetaFileW
0x9fde90 Chord
0x9fde98 BitBlt
0x9fdea0 ArcTo
0x9fdea8 Arc
0x9fdeb0 AngleArc
0x9fdeb8 AbortDoc
version.dll
0x9fdec8 VerQueryValueW
0x9fded0 GetFileVersionInfoSizeW
0x9fded8 GetFileVersionInfoW
kernel32.dll
0x9fdee8 WritePrivateProfileStringW
0x9fdef0 WriteFile
0x9fdef8 WideCharToMultiByte
0x9fdf00 WaitForSingleObject
0x9fdf08 WaitForMultipleObjectsEx
0x9fdf10 VirtualQueryEx
0x9fdf18 VirtualQuery
0x9fdf20 VirtualProtect
0x9fdf28 VirtualFree
0x9fdf30 VirtualAlloc
0x9fdf38 VerSetConditionMask
0x9fdf40 VerifyVersionInfoW
0x9fdf48 UnmapViewOfFile
0x9fdf50 TryEnterCriticalSection
0x9fdf58 SwitchToThread
0x9fdf60 SuspendThread
0x9fdf68 Sleep
0x9fdf70 SizeofResource
0x9fdf78 SetThreadPriority
0x9fdf80 SetThreadLocale
0x9fdf88 SetLastError
0x9fdf90 SetFilePointer
0x9fdf98 SetEvent
0x9fdfa0 SetErrorMode
0x9fdfa8 SetEndOfFile
0x9fdfb0 ResumeThread
0x9fdfb8 ResetEvent
0x9fdfc0 RemoveDirectoryW
0x9fdfc8 ReadFile
0x9fdfd0 RaiseException
0x9fdfd8 QueryPerformanceFrequency
0x9fdfe0 QueryPerformanceCounter
0x9fdfe8 QueryDosDeviceW
0x9fdff0 IsDebuggerPresent
0x9fdff8 MulDiv
0x9fe000 MapViewOfFile
0x9fe008 LockResource
0x9fe010 LocalFree
0x9fe018 LoadResource
0x9fe020 LoadLibraryW
0x9fe028 LeaveCriticalSection
0x9fe030 IsValidLocale
0x9fe038 InitializeCriticalSection
0x9fe040 HeapSize
0x9fe048 HeapFree
0x9fe050 HeapDestroy
0x9fe058 HeapCreate
0x9fe060 HeapAlloc
0x9fe068 GlobalUnlock
0x9fe070 GlobalSize
0x9fe078 GlobalHandle
0x9fe080 GlobalLock
0x9fe088 GlobalFree
0x9fe090 GlobalFindAtomW
0x9fe098 GlobalDeleteAtom
0x9fe0a0 GlobalAlloc
0x9fe0a8 GlobalAddAtomW
0x9fe0b0 GetVolumeInformationW
0x9fe0b8 GetVersionExW
0x9fe0c0 GetVersion
0x9fe0c8 GetTimeZoneInformation
0x9fe0d0 GetTickCount
0x9fe0d8 GetThreadPriority
0x9fe0e0 GetThreadLocale
0x9fe0e8 GetTempPathW
0x9fe0f0 GetTempFileNameW
0x9fe0f8 GetSystemDirectoryW
0x9fe100 GetStdHandle
0x9fe108 GetProcAddress
0x9fe110 GetPrivateProfileStringW
0x9fe118 GetModuleHandleW
0x9fe120 GetModuleFileNameW
0x9fe128 GetLogicalDriveStringsW
0x9fe130 GetLocaleInfoW
0x9fe138 GetLocalTime
0x9fe140 GetLastError
0x9fe148 GetFullPathNameW
0x9fe150 GetFileSize
0x9fe158 GetFileAttributesExW
0x9fe160 GetFileAttributesW
0x9fe168 GetExitCodeThread
0x9fe170 GetDriveTypeW
0x9fe178 GetDiskFreeSpaceW
0x9fe180 GetDateFormatW
0x9fe188 GetCurrentThreadId
0x9fe190 GetCurrentThread
0x9fe198 GetCurrentProcessId
0x9fe1a0 GetCurrentProcess
0x9fe1a8 GetComputerNameW
0x9fe1b0 GetCPInfoExW
0x9fe1b8 GetCPInfo
0x9fe1c0 GetACP
0x9fe1c8 FreeResource
0x9fe1d0 FreeLibrary
0x9fe1d8 FormatMessageW
0x9fe1e0 FindResourceW
0x9fe1e8 FindNextFileW
0x9fe1f0 FindFirstFileW
0x9fe1f8 FindClose
0x9fe200 FileTimeToSystemTime
0x9fe208 FileTimeToLocalFileTime
0x9fe210 FileTimeToDosDateTime
0x9fe218 EnumSystemLocalesW
0x9fe220 EnumResourceNamesW
0x9fe228 EnumCalendarInfoW
0x9fe230 EnterCriticalSection
0x9fe238 DeleteFileW
0x9fe240 DeleteCriticalSection
0x9fe248 CreateThread
0x9fe250 CreateFileMappingW
0x9fe258 CreateFileW
0x9fe260 CreateEventW
0x9fe268 CreateDirectoryW
0x9fe270 CopyFileW
0x9fe278 CompareStringA
0x9fe280 CompareStringW
0x9fe288 CloseHandle
advapi32.dll
0x9fe298 RegUnLoadKeyW
0x9fe2a0 RegSetValueExW
0x9fe2a8 RegSaveKeyW
0x9fe2b0 RegRestoreKeyW
0x9fe2b8 RegReplaceKeyW
0x9fe2c0 RegQueryValueExW
0x9fe2c8 RegQueryInfoKeyW
0x9fe2d0 RegOpenKeyExW
0x9fe2d8 RegLoadKeyW
0x9fe2e0 RegFlushKey
0x9fe2e8 RegEnumValueW
0x9fe2f0 RegEnumKeyExW
0x9fe2f8 RegDeleteValueW
0x9fe300 RegDeleteKeyW
0x9fe308 RegCreateKeyExW
0x9fe310 RegConnectRegistryW
0x9fe318 RegCloseKey
kernel32.dll
0x9fe328 Sleep
oleaut32.dll
0x9fe338 SafeArrayGetElemsize
0x9fe340 SafeArrayPtrOfIndex
0x9fe348 SafeArrayPutElement
0x9fe350 SafeArrayGetElement
0x9fe358 SafeArrayUnaccessData
0x9fe360 SafeArrayAccessData
0x9fe368 SafeArrayGetUBound
0x9fe370 SafeArrayGetLBound
0x9fe378 SafeArrayCreate
0x9fe380 VariantChangeType
0x9fe388 VariantCopyInd
0x9fe390 VariantCopy
0x9fe398 VariantClear
0x9fe3a0 VariantInit
oleaut32.dll
0x9fe3b0 GetErrorInfo
0x9fe3b8 SysFreeString
ole32.dll
0x9fe3c8 OleUninitialize
0x9fe3d0 OleInitialize
0x9fe3d8 CoTaskMemFree
0x9fe3e0 CoTaskMemAlloc
0x9fe3e8 CoCreateInstance
0x9fe3f0 CoUninitialize
0x9fe3f8 CoInitialize
0x9fe400 IsEqualGUID
comctl32.dll
0x9fe410 InitializeFlatSB
0x9fe418 FlatSB_SetScrollProp
0x9fe420 FlatSB_SetScrollPos
0x9fe428 FlatSB_SetScrollInfo
0x9fe430 FlatSB_GetScrollPos
0x9fe438 FlatSB_GetScrollInfo
0x9fe440 _TrackMouseEvent
0x9fe448 ImageList_GetImageInfo
0x9fe450 ImageList_SetIconSize
0x9fe458 ImageList_GetIconSize
0x9fe460 ImageList_Write
0x9fe468 ImageList_Read
0x9fe470 ImageList_GetDragImage
0x9fe478 ImageList_DragShowNolock
0x9fe480 ImageList_DragMove
0x9fe488 ImageList_DragLeave
0x9fe490 ImageList_DragEnter
0x9fe498 ImageList_EndDrag
0x9fe4a0 ImageList_BeginDrag
0x9fe4a8 ImageList_Copy
0x9fe4b0 ImageList_LoadImageW
0x9fe4b8 ImageList_GetIcon
0x9fe4c0 ImageList_Remove
0x9fe4c8 ImageList_DrawEx
0x9fe4d0 ImageList_Replace
0x9fe4d8 ImageList_Draw
0x9fe4e0 ImageList_SetOverlayImage
0x9fe4e8 ImageList_GetBkColor
0x9fe4f0 ImageList_SetBkColor
0x9fe4f8 ImageList_ReplaceIcon
0x9fe500 ImageList_Add
0x9fe508 ImageList_SetImageCount
0x9fe510 ImageList_GetImageCount
0x9fe518 ImageList_Destroy
0x9fe520 ImageList_Create
user32.dll
0x9fe530 EnumDisplayMonitors
0x9fe538 GetMonitorInfoW
0x9fe540 MonitorFromPoint
0x9fe548 MonitorFromRect
0x9fe550 MonitorFromWindow
msvcrt.dll
0x9fe560 memset
0x9fe568 memcpy
shell32.dll
0x9fe578 Shell_NotifyIconW
shell32.dll
0x9fe588 SHGetSpecialFolderPathW
winspool.drv
0x9fe598 OpenPrinterW
0x9fe5a0 EnumPrintersW
0x9fe5a8 DocumentPropertiesW
0x9fe5b0 ClosePrinter
winspool.drv
0x9fe5c0 GetDefaultPrinterW
winmm.dll
0x9fe5d0 timeGetTime
EAT(Export Address Table) Library
0x49d650 TMethodImplementationIntercept
0x4171f0 __dbk_fcall_wrapper
0x9f4f58 dbkFCallWrapperAddr
oleaut32.dll
0x9fd3d8 SysFreeString
0x9fd3e0 SysReAllocStringLen
0x9fd3e8 SysAllocStringLen
advapi32.dll
0x9fd3f8 RegQueryValueExW
0x9fd400 RegOpenKeyExW
0x9fd408 RegCloseKey
user32.dll
0x9fd418 CharNextW
0x9fd420 LoadStringW
kernel32.dll
0x9fd430 Sleep
0x9fd438 VirtualFree
0x9fd440 VirtualAlloc
0x9fd448 lstrlenW
0x9fd450 VirtualQuery
0x9fd458 QueryPerformanceCounter
0x9fd460 GetTickCount
0x9fd468 GetSystemInfo
0x9fd470 GetVersion
0x9fd478 CompareStringW
0x9fd480 IsValidLocale
0x9fd488 SetThreadLocale
0x9fd490 GetSystemDefaultUILanguage
0x9fd498 GetUserDefaultUILanguage
0x9fd4a0 GetLocaleInfoW
0x9fd4a8 WideCharToMultiByte
0x9fd4b0 MultiByteToWideChar
0x9fd4b8 GetACP
0x9fd4c0 LoadLibraryExW
0x9fd4c8 GetStartupInfoW
0x9fd4d0 GetProcAddress
0x9fd4d8 GetModuleHandleW
0x9fd4e0 GetModuleFileNameW
0x9fd4e8 GetCommandLineW
0x9fd4f0 FreeLibrary
0x9fd4f8 GetLastError
0x9fd500 UnhandledExceptionFilter
0x9fd508 RtlUnwindEx
0x9fd510 RtlUnwind
0x9fd518 RaiseException
0x9fd520 ExitProcess
0x9fd528 ExitThread
0x9fd530 SwitchToThread
0x9fd538 GetCurrentThreadId
0x9fd540 CreateThread
0x9fd548 DeleteCriticalSection
0x9fd550 LeaveCriticalSection
0x9fd558 EnterCriticalSection
0x9fd560 InitializeCriticalSection
0x9fd568 FindFirstFileW
0x9fd570 FindClose
0x9fd578 WriteFile
0x9fd580 GetStdHandle
0x9fd588 CloseHandle
kernel32.dll
0x9fd598 GetProcAddress
0x9fd5a0 RaiseException
0x9fd5a8 LoadLibraryA
0x9fd5b0 GetLastError
0x9fd5b8 TlsSetValue
0x9fd5c0 TlsGetValue
0x9fd5c8 LocalFree
0x9fd5d0 LocalAlloc
0x9fd5d8 GetModuleHandleW
0x9fd5e0 FreeLibrary
user32.dll
0x9fd5f0 SetClassLongPtrW
0x9fd5f8 GetClassLongPtrW
0x9fd600 SetWindowLongPtrW
0x9fd608 GetWindowLongPtrW
0x9fd610 CreateWindowExW
0x9fd618 WindowFromPoint
0x9fd620 WaitMessage
0x9fd628 UpdateWindow
0x9fd630 UnregisterClassW
0x9fd638 UnhookWindowsHookEx
0x9fd640 TranslateMessage
0x9fd648 TranslateMDISysAccel
0x9fd650 TrackPopupMenu
0x9fd658 SystemParametersInfoW
0x9fd660 ShowWindow
0x9fd668 ShowScrollBar
0x9fd670 ShowOwnedPopups
0x9fd678 ShowCaret
0x9fd680 SetWindowRgn
0x9fd688 SetWindowsHookExW
0x9fd690 SetWindowTextW
0x9fd698 SetWindowPos
0x9fd6a0 SetWindowPlacement
0x9fd6a8 SetTimer
0x9fd6b0 SetScrollRange
0x9fd6b8 SetScrollPos
0x9fd6c0 SetScrollInfo
0x9fd6c8 SetRect
0x9fd6d0 SetPropW
0x9fd6d8 SetParent
0x9fd6e0 SetMenuItemInfoW
0x9fd6e8 SetMenu
0x9fd6f0 SetForegroundWindow
0x9fd6f8 SetFocus
0x9fd700 SetCursorPos
0x9fd708 SetCursor
0x9fd710 SetClipboardData
0x9fd718 SetCapture
0x9fd720 SetActiveWindow
0x9fd728 SendMessageA
0x9fd730 SendMessageW
0x9fd738 ScrollWindow
0x9fd740 ScreenToClient
0x9fd748 RemovePropW
0x9fd750 RemoveMenu
0x9fd758 ReleaseDC
0x9fd760 ReleaseCapture
0x9fd768 RegisterWindowMessageW
0x9fd770 RegisterClipboardFormatW
0x9fd778 RegisterClassW
0x9fd780 RedrawWindow
0x9fd788 PostQuitMessage
0x9fd790 PostMessageW
0x9fd798 PeekMessageA
0x9fd7a0 PeekMessageW
0x9fd7a8 OpenClipboard
0x9fd7b0 MsgWaitForMultipleObjectsEx
0x9fd7b8 MsgWaitForMultipleObjects
0x9fd7c0 MessageBoxW
0x9fd7c8 MessageBeep
0x9fd7d0 MapWindowPoints
0x9fd7d8 MapVirtualKeyW
0x9fd7e0 LoadStringW
0x9fd7e8 LoadKeyboardLayoutW
0x9fd7f0 LoadIconW
0x9fd7f8 LoadCursorW
0x9fd800 LoadBitmapW
0x9fd808 KillTimer
0x9fd810 IsZoomed
0x9fd818 IsWindowVisible
0x9fd820 IsWindowUnicode
0x9fd828 IsWindowEnabled
0x9fd830 IsWindow
0x9fd838 IsIconic
0x9fd840 IsDialogMessageA
0x9fd848 IsDialogMessageW
0x9fd850 IsClipboardFormatAvailable
0x9fd858 IsChild
0x9fd860 InvalidateRect
0x9fd868 InsertMenuItemW
0x9fd870 InsertMenuW
0x9fd878 InflateRect
0x9fd880 HideCaret
0x9fd888 GetWindowThreadProcessId
0x9fd890 GetWindowTextW
0x9fd898 GetWindowRect
0x9fd8a0 GetWindowPlacement
0x9fd8a8 GetWindowDC
0x9fd8b0 GetTopWindow
0x9fd8b8 GetSystemMetrics
0x9fd8c0 GetSystemMenu
0x9fd8c8 GetSysColorBrush
0x9fd8d0 GetSysColor
0x9fd8d8 GetSubMenu
0x9fd8e0 GetScrollRange
0x9fd8e8 GetScrollPos
0x9fd8f0 GetScrollInfo
0x9fd8f8 GetScrollBarInfo
0x9fd900 GetPropW
0x9fd908 GetParent
0x9fd910 GetWindow
0x9fd918 GetMessagePos
0x9fd920 GetMessageExtraInfo
0x9fd928 GetMenuStringW
0x9fd930 GetMenuState
0x9fd938 GetMenuItemInfoW
0x9fd940 GetMenuItemID
0x9fd948 GetMenuItemCount
0x9fd950 GetMenu
0x9fd958 GetLastActivePopup
0x9fd960 GetKeyboardState
0x9fd968 GetKeyboardLayoutNameW
0x9fd970 GetKeyboardLayoutList
0x9fd978 GetKeyboardLayout
0x9fd980 GetKeyState
0x9fd988 GetKeyNameTextW
0x9fd990 GetIconInfo
0x9fd998 GetForegroundWindow
0x9fd9a0 GetFocus
0x9fd9a8 GetDlgCtrlID
0x9fd9b0 GetDesktopWindow
0x9fd9b8 GetDCEx
0x9fd9c0 GetDC
0x9fd9c8 GetCursorPos
0x9fd9d0 GetCursor
0x9fd9d8 GetClipboardData
0x9fd9e0 GetClientRect
0x9fd9e8 GetClassNameW
0x9fd9f0 GetClassInfoExW
0x9fd9f8 GetClassInfoW
0x9fda00 GetCapture
0x9fda08 GetActiveWindow
0x9fda10 FrameRect
0x9fda18 FindWindowExW
0x9fda20 FindWindowW
0x9fda28 FillRect
0x9fda30 EnumWindows
0x9fda38 EnumThreadWindows
0x9fda40 EnumClipboardFormats
0x9fda48 EnumChildWindows
0x9fda50 EndPaint
0x9fda58 EndMenu
0x9fda60 EnableWindow
0x9fda68 EnableScrollBar
0x9fda70 EnableMenuItem
0x9fda78 EmptyClipboard
0x9fda80 DrawTextExW
0x9fda88 DrawTextW
0x9fda90 DrawMenuBar
0x9fda98 DrawIconEx
0x9fdaa0 DrawIcon
0x9fdaa8 DrawFrameControl
0x9fdab0 DrawFocusRect
0x9fdab8 DrawEdge
0x9fdac0 DispatchMessageA
0x9fdac8 DispatchMessageW
0x9fdad0 DestroyWindow
0x9fdad8 DestroyMenu
0x9fdae0 DestroyIcon
0x9fdae8 DestroyCursor
0x9fdaf0 DeleteMenu
0x9fdaf8 DefWindowProcW
0x9fdb00 DefMDIChildProcW
0x9fdb08 DefFrameProcW
0x9fdb10 CreatePopupMenu
0x9fdb18 CreateMenu
0x9fdb20 CreateIcon
0x9fdb28 CreateAcceleratorTableW
0x9fdb30 CountClipboardFormats
0x9fdb38 CopyImage
0x9fdb40 CopyIcon
0x9fdb48 CloseClipboard
0x9fdb50 ClientToScreen
0x9fdb58 CheckMenuItem
0x9fdb60 CharUpperBuffW
0x9fdb68 CharUpperW
0x9fdb70 CharNextW
0x9fdb78 CharLowerBuffW
0x9fdb80 CharLowerW
0x9fdb88 CallWindowProcW
0x9fdb90 CallNextHookEx
0x9fdb98 BeginPaint
0x9fdba0 AdjustWindowRectEx
0x9fdba8 ActivateKeyboardLayout
gdi32.dll
0x9fdbb8 UnrealizeObject
0x9fdbc0 StretchDIBits
0x9fdbc8 StretchBlt
0x9fdbd0 StartPage
0x9fdbd8 StartDocW
0x9fdbe0 SetWindowOrgEx
0x9fdbe8 SetWinMetaFileBits
0x9fdbf0 SetViewportOrgEx
0x9fdbf8 SetTextColor
0x9fdc00 SetStretchBltMode
0x9fdc08 SetRectRgn
0x9fdc10 SetROP2
0x9fdc18 SetPixel
0x9fdc20 SetEnhMetaFileBits
0x9fdc28 SetDIBits
0x9fdc30 SetDIBColorTable
0x9fdc38 SetBrushOrgEx
0x9fdc40 SetBkMode
0x9fdc48 SetBkColor
0x9fdc50 SetAbortProc
0x9fdc58 SelectPalette
0x9fdc60 SelectObject
0x9fdc68 SaveDC
0x9fdc70 RoundRect
0x9fdc78 RestoreDC
0x9fdc80 ResizePalette
0x9fdc88 Rectangle
0x9fdc90 RectVisible
0x9fdc98 RealizePalette
0x9fdca0 Polyline
0x9fdca8 Polygon
0x9fdcb0 PolyBezierTo
0x9fdcb8 PolyBezier
0x9fdcc0 PlayEnhMetaFile
0x9fdcc8 Pie
0x9fdcd0 PatBlt
0x9fdcd8 MoveToEx
0x9fdce0 MaskBlt
0x9fdce8 LineTo
0x9fdcf0 IntersectClipRect
0x9fdcf8 GetWindowOrgEx
0x9fdd00 GetWinMetaFileBits
0x9fdd08 GetTextMetricsW
0x9fdd10 GetTextExtentPointW
0x9fdd18 GetTextExtentPoint32W
0x9fdd20 GetSystemPaletteEntries
0x9fdd28 GetStockObject
0x9fdd30 GetRgnBox
0x9fdd38 GetPixel
0x9fdd40 GetPaletteEntries
0x9fdd48 GetObjectW
0x9fdd50 GetNearestPaletteIndex
0x9fdd58 GetEnhMetaFilePaletteEntries
0x9fdd60 GetEnhMetaFileHeader
0x9fdd68 GetEnhMetaFileDescriptionW
0x9fdd70 GetEnhMetaFileBits
0x9fdd78 GetDeviceCaps
0x9fdd80 GetDIBits
0x9fdd88 GetDIBColorTable
0x9fdd90 GetCurrentPositionEx
0x9fdd98 GetClipBox
0x9fdda0 GetBrushOrgEx
0x9fdda8 GetBitmapBits
0x9fddb0 GdiFlush
0x9fddb8 FrameRgn
0x9fddc0 ExtTextOutW
0x9fddc8 ExtFloodFill
0x9fddd0 ExcludeClipRect
0x9fddd8 EnumFontsW
0x9fdde0 EnumFontFamiliesExW
0x9fdde8 EndPage
0x9fddf0 EndDoc
0x9fddf8 Ellipse
0x9fde00 DeleteObject
0x9fde08 DeleteEnhMetaFile
0x9fde10 DeleteDC
0x9fde18 CreateSolidBrush
0x9fde20 CreateRectRgn
0x9fde28 CreatePenIndirect
0x9fde30 CreatePalette
0x9fde38 CreateICW
0x9fde40 CreateHalftonePalette
0x9fde48 CreateFontIndirectW
0x9fde50 CreateDIBitmap
0x9fde58 CreateDIBSection
0x9fde60 CreateDCW
0x9fde68 CreateCompatibleDC
0x9fde70 CreateCompatibleBitmap
0x9fde78 CreateBrushIndirect
0x9fde80 CreateBitmap
0x9fde88 CopyEnhMetaFileW
0x9fde90 Chord
0x9fde98 BitBlt
0x9fdea0 ArcTo
0x9fdea8 Arc
0x9fdeb0 AngleArc
0x9fdeb8 AbortDoc
version.dll
0x9fdec8 VerQueryValueW
0x9fded0 GetFileVersionInfoSizeW
0x9fded8 GetFileVersionInfoW
kernel32.dll
0x9fdee8 WritePrivateProfileStringW
0x9fdef0 WriteFile
0x9fdef8 WideCharToMultiByte
0x9fdf00 WaitForSingleObject
0x9fdf08 WaitForMultipleObjectsEx
0x9fdf10 VirtualQueryEx
0x9fdf18 VirtualQuery
0x9fdf20 VirtualProtect
0x9fdf28 VirtualFree
0x9fdf30 VirtualAlloc
0x9fdf38 VerSetConditionMask
0x9fdf40 VerifyVersionInfoW
0x9fdf48 UnmapViewOfFile
0x9fdf50 TryEnterCriticalSection
0x9fdf58 SwitchToThread
0x9fdf60 SuspendThread
0x9fdf68 Sleep
0x9fdf70 SizeofResource
0x9fdf78 SetThreadPriority
0x9fdf80 SetThreadLocale
0x9fdf88 SetLastError
0x9fdf90 SetFilePointer
0x9fdf98 SetEvent
0x9fdfa0 SetErrorMode
0x9fdfa8 SetEndOfFile
0x9fdfb0 ResumeThread
0x9fdfb8 ResetEvent
0x9fdfc0 RemoveDirectoryW
0x9fdfc8 ReadFile
0x9fdfd0 RaiseException
0x9fdfd8 QueryPerformanceFrequency
0x9fdfe0 QueryPerformanceCounter
0x9fdfe8 QueryDosDeviceW
0x9fdff0 IsDebuggerPresent
0x9fdff8 MulDiv
0x9fe000 MapViewOfFile
0x9fe008 LockResource
0x9fe010 LocalFree
0x9fe018 LoadResource
0x9fe020 LoadLibraryW
0x9fe028 LeaveCriticalSection
0x9fe030 IsValidLocale
0x9fe038 InitializeCriticalSection
0x9fe040 HeapSize
0x9fe048 HeapFree
0x9fe050 HeapDestroy
0x9fe058 HeapCreate
0x9fe060 HeapAlloc
0x9fe068 GlobalUnlock
0x9fe070 GlobalSize
0x9fe078 GlobalHandle
0x9fe080 GlobalLock
0x9fe088 GlobalFree
0x9fe090 GlobalFindAtomW
0x9fe098 GlobalDeleteAtom
0x9fe0a0 GlobalAlloc
0x9fe0a8 GlobalAddAtomW
0x9fe0b0 GetVolumeInformationW
0x9fe0b8 GetVersionExW
0x9fe0c0 GetVersion
0x9fe0c8 GetTimeZoneInformation
0x9fe0d0 GetTickCount
0x9fe0d8 GetThreadPriority
0x9fe0e0 GetThreadLocale
0x9fe0e8 GetTempPathW
0x9fe0f0 GetTempFileNameW
0x9fe0f8 GetSystemDirectoryW
0x9fe100 GetStdHandle
0x9fe108 GetProcAddress
0x9fe110 GetPrivateProfileStringW
0x9fe118 GetModuleHandleW
0x9fe120 GetModuleFileNameW
0x9fe128 GetLogicalDriveStringsW
0x9fe130 GetLocaleInfoW
0x9fe138 GetLocalTime
0x9fe140 GetLastError
0x9fe148 GetFullPathNameW
0x9fe150 GetFileSize
0x9fe158 GetFileAttributesExW
0x9fe160 GetFileAttributesW
0x9fe168 GetExitCodeThread
0x9fe170 GetDriveTypeW
0x9fe178 GetDiskFreeSpaceW
0x9fe180 GetDateFormatW
0x9fe188 GetCurrentThreadId
0x9fe190 GetCurrentThread
0x9fe198 GetCurrentProcessId
0x9fe1a0 GetCurrentProcess
0x9fe1a8 GetComputerNameW
0x9fe1b0 GetCPInfoExW
0x9fe1b8 GetCPInfo
0x9fe1c0 GetACP
0x9fe1c8 FreeResource
0x9fe1d0 FreeLibrary
0x9fe1d8 FormatMessageW
0x9fe1e0 FindResourceW
0x9fe1e8 FindNextFileW
0x9fe1f0 FindFirstFileW
0x9fe1f8 FindClose
0x9fe200 FileTimeToSystemTime
0x9fe208 FileTimeToLocalFileTime
0x9fe210 FileTimeToDosDateTime
0x9fe218 EnumSystemLocalesW
0x9fe220 EnumResourceNamesW
0x9fe228 EnumCalendarInfoW
0x9fe230 EnterCriticalSection
0x9fe238 DeleteFileW
0x9fe240 DeleteCriticalSection
0x9fe248 CreateThread
0x9fe250 CreateFileMappingW
0x9fe258 CreateFileW
0x9fe260 CreateEventW
0x9fe268 CreateDirectoryW
0x9fe270 CopyFileW
0x9fe278 CompareStringA
0x9fe280 CompareStringW
0x9fe288 CloseHandle
advapi32.dll
0x9fe298 RegUnLoadKeyW
0x9fe2a0 RegSetValueExW
0x9fe2a8 RegSaveKeyW
0x9fe2b0 RegRestoreKeyW
0x9fe2b8 RegReplaceKeyW
0x9fe2c0 RegQueryValueExW
0x9fe2c8 RegQueryInfoKeyW
0x9fe2d0 RegOpenKeyExW
0x9fe2d8 RegLoadKeyW
0x9fe2e0 RegFlushKey
0x9fe2e8 RegEnumValueW
0x9fe2f0 RegEnumKeyExW
0x9fe2f8 RegDeleteValueW
0x9fe300 RegDeleteKeyW
0x9fe308 RegCreateKeyExW
0x9fe310 RegConnectRegistryW
0x9fe318 RegCloseKey
kernel32.dll
0x9fe328 Sleep
oleaut32.dll
0x9fe338 SafeArrayGetElemsize
0x9fe340 SafeArrayPtrOfIndex
0x9fe348 SafeArrayPutElement
0x9fe350 SafeArrayGetElement
0x9fe358 SafeArrayUnaccessData
0x9fe360 SafeArrayAccessData
0x9fe368 SafeArrayGetUBound
0x9fe370 SafeArrayGetLBound
0x9fe378 SafeArrayCreate
0x9fe380 VariantChangeType
0x9fe388 VariantCopyInd
0x9fe390 VariantCopy
0x9fe398 VariantClear
0x9fe3a0 VariantInit
oleaut32.dll
0x9fe3b0 GetErrorInfo
0x9fe3b8 SysFreeString
ole32.dll
0x9fe3c8 OleUninitialize
0x9fe3d0 OleInitialize
0x9fe3d8 CoTaskMemFree
0x9fe3e0 CoTaskMemAlloc
0x9fe3e8 CoCreateInstance
0x9fe3f0 CoUninitialize
0x9fe3f8 CoInitialize
0x9fe400 IsEqualGUID
comctl32.dll
0x9fe410 InitializeFlatSB
0x9fe418 FlatSB_SetScrollProp
0x9fe420 FlatSB_SetScrollPos
0x9fe428 FlatSB_SetScrollInfo
0x9fe430 FlatSB_GetScrollPos
0x9fe438 FlatSB_GetScrollInfo
0x9fe440 _TrackMouseEvent
0x9fe448 ImageList_GetImageInfo
0x9fe450 ImageList_SetIconSize
0x9fe458 ImageList_GetIconSize
0x9fe460 ImageList_Write
0x9fe468 ImageList_Read
0x9fe470 ImageList_GetDragImage
0x9fe478 ImageList_DragShowNolock
0x9fe480 ImageList_DragMove
0x9fe488 ImageList_DragLeave
0x9fe490 ImageList_DragEnter
0x9fe498 ImageList_EndDrag
0x9fe4a0 ImageList_BeginDrag
0x9fe4a8 ImageList_Copy
0x9fe4b0 ImageList_LoadImageW
0x9fe4b8 ImageList_GetIcon
0x9fe4c0 ImageList_Remove
0x9fe4c8 ImageList_DrawEx
0x9fe4d0 ImageList_Replace
0x9fe4d8 ImageList_Draw
0x9fe4e0 ImageList_SetOverlayImage
0x9fe4e8 ImageList_GetBkColor
0x9fe4f0 ImageList_SetBkColor
0x9fe4f8 ImageList_ReplaceIcon
0x9fe500 ImageList_Add
0x9fe508 ImageList_SetImageCount
0x9fe510 ImageList_GetImageCount
0x9fe518 ImageList_Destroy
0x9fe520 ImageList_Create
user32.dll
0x9fe530 EnumDisplayMonitors
0x9fe538 GetMonitorInfoW
0x9fe540 MonitorFromPoint
0x9fe548 MonitorFromRect
0x9fe550 MonitorFromWindow
msvcrt.dll
0x9fe560 memset
0x9fe568 memcpy
shell32.dll
0x9fe578 Shell_NotifyIconW
shell32.dll
0x9fe588 SHGetSpecialFolderPathW
winspool.drv
0x9fe598 OpenPrinterW
0x9fe5a0 EnumPrintersW
0x9fe5a8 DocumentPropertiesW
0x9fe5b0 ClosePrinter
winspool.drv
0x9fe5c0 GetDefaultPrinterW
winmm.dll
0x9fe5d0 timeGetTime
EAT(Export Address Table) Library
0x49d650 TMethodImplementationIntercept
0x4171f0 __dbk_fcall_wrapper
0x9f4f58 dbkFCallWrapperAddr