ScreenShot
| Created | 2024.08.19 15:47 | Machine | s1_win7_x6403 |
| Filename | 66bdd24d2ac1b_uninstaller.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : malware | ||
| VT API (file) | 19 detected (AIDetectMalware, GenericKD, Unsafe, SMOKELOADER, YXEHPZ, ai score=80, Wacatac, susgen) | ||
| md5 | fdf999d19df6b5c6a03bdbe1990347b3 | ||
| sha256 | 7a15dd944f05b7280ae9d297f7707f5ee712821fbae770930bae1539cf9e0b4e | ||
| ssdeep | 49152:rqmTkde4P2b+2vj3DydOPF+ins3aliOhu+WB+QlpNjeykwUZFuGlilvPm4upzD6L:rqmQde4n2b3lwJKliN8svuQWu | ||
| imphash | cb5291f039ebd4cb4306cf29baddc8cb | ||
| impfuzzy | 96:LM/9ToZp0UoYOW5WOfSIyT8XGG+uttvNgMebgfB+HC7kiygqiR9uONnz6fTSfo:olk43nW5W2FgafB+HNg7nuUnzgOA | ||
Network IP location
Signature (2cnts)
| Level | Description |
|---|---|
| watch | File has been identified by 19 AntiVirus engines on VirusTotal as malicious |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | ftp_command | ftp command | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
KERNEL32.dll
0x70c0cc QueueUserAPC
0x70c0d0 SetEvent
0x70c0d4 GlobalAlloc
0x70c0d8 CloseHandle
0x70c0dc LocalFree
0x70c0e0 DeleteCriticalSection
0x70c0e4 WideCharToMultiByte
0x70c0e8 lstrcpyW
0x70c0ec SleepEx
0x70c0f0 GetTempFileNameW
0x70c0f4 FormatMessageA
0x70c0f8 TerminateThread
0x70c0fc CreateIoCompletionPort
0x70c100 WriteConsoleW
0x70c104 DeleteFileW
0x70c108 GetProcessHeap
0x70c10c SetEnvironmentVariableW
0x70c110 FreeEnvironmentStringsW
0x70c114 GetEnvironmentStringsW
0x70c118 GetCommandLineW
0x70c11c GetCommandLineA
0x70c120 GetTimeZoneInformation
0x70c124 SetEndOfFile
0x70c128 EnumSystemLocalesW
0x70c12c GetUserDefaultLCID
0x70c130 IsValidLocale
0x70c134 GetLocaleInfoW
0x70c138 LCMapStringW
0x70c13c CompareStringW
0x70c140 GetTimeFormatW
0x70c144 GetDateFormatW
0x70c148 HeapFree
0x70c14c FlushFileBuffers
0x70c150 GetLastError
0x70c154 FormatMessageW
0x70c158 Sleep
0x70c15c CreateEventW
0x70c160 PostQueuedCompletionStatus
0x70c164 WaitForSingleObject
0x70c168 FindClose
0x70c16c GetTempPathW
0x70c170 GetEnvironmentVariableW
0x70c174 GetQueuedCompletionStatus
0x70c178 LeaveCriticalSection
0x70c17c InitializeCriticalSectionAndSpinCount
0x70c180 WaitForMultipleObjects
0x70c184 CreateWaitableTimerW
0x70c188 lstrlenW
0x70c18c EnterCriticalSection
0x70c190 SetLastError
0x70c194 SetWaitableTimer
0x70c198 FindFirstFileW
0x70c19c CreateDirectoryW
0x70c1a0 HeapAlloc
0x70c1a4 GetFileAttributesW
0x70c1a8 CreateFile2
0x70c1ac MultiByteToWideChar
0x70c1b0 IsValidCodePage
0x70c1b4 GetACP
0x70c1b8 GetOEMCP
0x70c1bc CreateFileA
0x70c1c0 CreateFileW
0x70c1c4 GetFileAttributesA
0x70c1c8 GetFileInformationByHandle
0x70c1cc GetFileType
0x70c1d0 GetFullPathNameW
0x70c1d4 ReadFile
0x70c1d8 WriteFile
0x70c1dc PeekNamedPipe
0x70c1e0 GetExitCodeProcess
0x70c1e4 GetStdHandle
0x70c1e8 SearchPathA
0x70c1ec DuplicateHandle
0x70c1f0 SetHandleInformation
0x70c1f4 CreatePipe
0x70c1f8 GetCurrentProcess
0x70c1fc CreateProcessA
0x70c200 OpenProcess
0x70c204 GetProcAddress
0x70c208 LoadLibraryA
0x70c20c InitializeSRWLock
0x70c210 ReleaseSRWLockExclusive
0x70c214 ReleaseSRWLockShared
0x70c218 AcquireSRWLockExclusive
0x70c21c AcquireSRWLockShared
0x70c220 GetCurrentThreadId
0x70c224 TlsAlloc
0x70c228 TlsGetValue
0x70c22c TlsSetValue
0x70c230 TlsFree
0x70c234 GetModuleHandleExW
0x70c238 GetModuleHandleW
0x70c23c InitializeCriticalSection
0x70c240 ReleaseSemaphore
0x70c244 GetExitCodeThread
0x70c248 CreateSemaphoreA
0x70c24c VirtualFree
0x70c250 GetCurrentProcessId
0x70c254 GetSystemTimeAsFileTime
0x70c258 GetSystemTime
0x70c25c SystemTimeToFileTime
0x70c260 GetSystemDirectoryA
0x70c264 FreeLibrary
0x70c268 LoadLibraryW
0x70c26c FindNextFileW
0x70c270 GetConsoleMode
0x70c274 SetConsoleMode
0x70c278 ReadConsoleA
0x70c27c ReadConsoleW
0x70c280 QueryPerformanceCounter
0x70c284 GetTickCount
0x70c288 InitializeCriticalSectionEx
0x70c28c QueryPerformanceFrequency
0x70c290 GetSystemDirectoryW
0x70c294 GetModuleHandleA
0x70c298 MoveFileExW
0x70c29c WaitForSingleObjectEx
0x70c2a0 GetEnvironmentVariableA
0x70c2a4 VerSetConditionMask
0x70c2a8 VerifyVersionInfoW
0x70c2ac GetFileSizeEx
0x70c2b0 RaiseException
0x70c2b4 GetLocaleInfoEx
0x70c2b8 GetStringTypeW
0x70c2bc GetCurrentDirectoryW
0x70c2c0 FindFirstFileExW
0x70c2c4 GetFileAttributesExW
0x70c2c8 AreFileApisANSI
0x70c2cc GetFileInformationByHandleEx
0x70c2d0 EncodePointer
0x70c2d4 DecodePointer
0x70c2d8 LCMapStringEx
0x70c2dc TryAcquireSRWLockExclusive
0x70c2e0 WakeAllConditionVariable
0x70c2e4 SleepConditionVariableSRW
0x70c2e8 CompareStringEx
0x70c2ec GetCPInfo
0x70c2f0 IsProcessorFeaturePresent
0x70c2f4 UnhandledExceptionFilter
0x70c2f8 SetUnhandledExceptionFilter
0x70c2fc TerminateProcess
0x70c300 IsDebuggerPresent
0x70c304 GetStartupInfoW
0x70c308 InitializeSListHead
0x70c30c RtlUnwind
0x70c310 LoadLibraryExW
0x70c314 ExitProcess
0x70c318 CreateThread
0x70c31c ExitThread
0x70c320 FreeLibraryAndExitThread
0x70c324 SetConsoleCtrlHandler
0x70c328 SetStdHandle
0x70c32c SetFilePointerEx
0x70c330 GetDriveTypeW
0x70c334 SystemTimeToTzSpecificLocalTime
0x70c338 FileTimeToSystemTime
0x70c33c GetModuleFileNameW
0x70c340 GetConsoleOutputCP
0x70c344 HeapReAlloc
0x70c348 HeapSize
0x70c34c GetVersion
USER32.dll
0x70c37c GetSystemMetrics
0x70c380 MessageBoxA
0x70c384 GetCursorPos
0x70c388 ChangeDisplaySettingsW
0x70c38c DestroyIcon
0x70c390 CreateIcon
0x70c394 LoadCursorW
0x70c398 GetWindowThreadProcessId
0x70c39c SetWindowLongW
0x70c3a0 GetWindowLongW
0x70c3a4 GetProcessWindowStation
0x70c3a8 GetUserObjectInformationW
0x70c3ac MessageBoxW
0x70c3b0 EnumDisplaySettingsW
0x70c3b4 CreateWindowExA
0x70c3b8 DestroyWindow
0x70c3bc ShowWindow
0x70c3c0 GetDC
0x70c3c4 ReleaseDC
0x70c3c8 TrackMouseEvent
0x70c3cc TranslateMessage
0x70c3d0 DispatchMessageW
0x70c3d4 PeekMessageW
0x70c3d8 SendMessageW
0x70c3dc RegisterDeviceNotificationW
0x70c3e0 DefWindowProcW
0x70c3e4 CallWindowProcW
0x70c3e8 RegisterClassW
0x70c3ec UnregisterClassW
0x70c3f0 CreateWindowExW
0x70c3f4 FlashWindowEx
0x70c3f8 SetWindowPos
0x70c3fc GetKeyState
0x70c400 MapVirtualKeyW
0x70c404 GetCapture
0x70c408 SetCapture
0x70c40c ReleaseCapture
0x70c410 GetForegroundWindow
0x70c414 SetForegroundWindow
0x70c418 SetWindowTextW
0x70c41c GetClientRect
0x70c420 GetWindowRect
0x70c424 AdjustWindowRect
0x70c428 SetCursor
0x70c42c ScreenToClient
0x70c430 MapWindowPoints
0x70c434 ClipCursor
SHELL32.dll
0x70c36c ShellExecuteW
WS2_32.dll
0x70c454 WSAWaitForMultipleEvents
0x70c458 getpeername
0x70c45c shutdown
0x70c460 socket
0x70c464 setsockopt
0x70c468 listen
0x70c46c connect
0x70c470 closesocket
0x70c474 ind
0x70c478 accept
0x70c47c send
0x70c480 recv
0x70c484 WSASetLastError
0x70c488 getservbyname
0x70c48c getservbyport
0x70c490 gethostbyaddr
0x70c494 inet_ntoa
0x70c498 WSAResetEvent
0x70c49c htons
0x70c4a0 htonl
0x70c4a4 WSAGetLastError
0x70c4a8 gethostbyname
0x70c4ac select
0x70c4b0 ntohs
0x70c4b4 getsockopt
0x70c4b8 getsockname
0x70c4bc ioctlsocket
0x70c4c0 WSACleanup
0x70c4c4 WSAStartup
0x70c4c8 inet_pton
0x70c4cc inet_ntop
0x70c4d0 WSAEventSelect
0x70c4d4 WSAIoctl
0x70c4d8 __WSAFDIsSet
0x70c4dc getaddrinfo
0x70c4e0 freeaddrinfo
0x70c4e4 gethostname
0x70c4e8 WSAEnumNetworkEvents
0x70c4ec WSACreateEvent
0x70c4f0 WSACloseEvent
0x70c4f4 sendto
0x70c4f8 inet_addr
0x70c4fc recvfrom
crypt.dll
0x70c504 BCryptGenRandom
SHLWAPI.dll
0x70c374 PathFileExistsW
CRYPT32.dll
0x70c060 CertCloseStore
0x70c064 CertEnumCertificatesInStore
0x70c068 CertFindCertificateInStore
0x70c06c CertOpenStore
0x70c070 CertFreeCertificateContext
0x70c074 CertGetCertificateContextProperty
0x70c078 CertOpenSystemStoreW
0x70c07c CryptStringToBinaryW
0x70c080 CertDuplicateCertificateContext
0x70c084 PFXImportCertStore
0x70c088 CryptDecodeObjectEx
0x70c08c CertAddCertificateContextToStore
0x70c090 CertFindExtension
0x70c094 CertGetNameStringW
0x70c098 CryptQueryObject
0x70c09c CertCreateCertificateChainEngine
0x70c0a0 CertFreeCertificateChainEngine
0x70c0a4 CertGetCertificateChain
0x70c0a8 CertFreeCertificateChain
WINMM.dll
0x70c43c timeGetDevCaps
0x70c440 timeBeginPeriod
0x70c444 timeEndPeriod
0x70c448 joyGetPosEx
0x70c44c joyGetDevCapsW
GDI32.dll
0x70c0b0 ChoosePixelFormat
0x70c0b4 GetPixelFormat
0x70c0b8 SetPixelFormat
0x70c0bc SwapBuffers
0x70c0c0 GetDeviceCaps
0x70c0c4 DescribePixelFormat
ADVAPI32.dll
0x70c000 DeregisterEventSource
0x70c004 CryptDestroyHash
0x70c008 CryptSignHashW
0x70c00c CryptEnumProvidersW
0x70c010 CryptGetHashParam
0x70c014 CryptHashData
0x70c018 CryptImportKey
0x70c01c CryptEncrypt
0x70c020 RegCloseKey
0x70c024 RegOpenKeyExW
0x70c028 RegQueryValueExW
0x70c02c CryptDecrypt
0x70c030 CryptExportKey
0x70c034 CryptGetUserKey
0x70c038 CryptGetProvParam
0x70c03c CryptSetHashParam
0x70c040 CryptDestroyKey
0x70c044 CryptAcquireContextW
0x70c048 ReportEventW
0x70c04c RegisterEventSourceW
0x70c050 CryptReleaseContext
0x70c054 CryptGenRandom
0x70c058 CryptCreateHash
OPENGL32.dll
0x70c354 wglShareLists
0x70c358 wglCreateContext
0x70c35c wglDeleteContext
0x70c360 wglMakeCurrent
0x70c364 wglGetProcAddress
EAT(Export Address Table) is none
KERNEL32.dll
0x70c0cc QueueUserAPC
0x70c0d0 SetEvent
0x70c0d4 GlobalAlloc
0x70c0d8 CloseHandle
0x70c0dc LocalFree
0x70c0e0 DeleteCriticalSection
0x70c0e4 WideCharToMultiByte
0x70c0e8 lstrcpyW
0x70c0ec SleepEx
0x70c0f0 GetTempFileNameW
0x70c0f4 FormatMessageA
0x70c0f8 TerminateThread
0x70c0fc CreateIoCompletionPort
0x70c100 WriteConsoleW
0x70c104 DeleteFileW
0x70c108 GetProcessHeap
0x70c10c SetEnvironmentVariableW
0x70c110 FreeEnvironmentStringsW
0x70c114 GetEnvironmentStringsW
0x70c118 GetCommandLineW
0x70c11c GetCommandLineA
0x70c120 GetTimeZoneInformation
0x70c124 SetEndOfFile
0x70c128 EnumSystemLocalesW
0x70c12c GetUserDefaultLCID
0x70c130 IsValidLocale
0x70c134 GetLocaleInfoW
0x70c138 LCMapStringW
0x70c13c CompareStringW
0x70c140 GetTimeFormatW
0x70c144 GetDateFormatW
0x70c148 HeapFree
0x70c14c FlushFileBuffers
0x70c150 GetLastError
0x70c154 FormatMessageW
0x70c158 Sleep
0x70c15c CreateEventW
0x70c160 PostQueuedCompletionStatus
0x70c164 WaitForSingleObject
0x70c168 FindClose
0x70c16c GetTempPathW
0x70c170 GetEnvironmentVariableW
0x70c174 GetQueuedCompletionStatus
0x70c178 LeaveCriticalSection
0x70c17c InitializeCriticalSectionAndSpinCount
0x70c180 WaitForMultipleObjects
0x70c184 CreateWaitableTimerW
0x70c188 lstrlenW
0x70c18c EnterCriticalSection
0x70c190 SetLastError
0x70c194 SetWaitableTimer
0x70c198 FindFirstFileW
0x70c19c CreateDirectoryW
0x70c1a0 HeapAlloc
0x70c1a4 GetFileAttributesW
0x70c1a8 CreateFile2
0x70c1ac MultiByteToWideChar
0x70c1b0 IsValidCodePage
0x70c1b4 GetACP
0x70c1b8 GetOEMCP
0x70c1bc CreateFileA
0x70c1c0 CreateFileW
0x70c1c4 GetFileAttributesA
0x70c1c8 GetFileInformationByHandle
0x70c1cc GetFileType
0x70c1d0 GetFullPathNameW
0x70c1d4 ReadFile
0x70c1d8 WriteFile
0x70c1dc PeekNamedPipe
0x70c1e0 GetExitCodeProcess
0x70c1e4 GetStdHandle
0x70c1e8 SearchPathA
0x70c1ec DuplicateHandle
0x70c1f0 SetHandleInformation
0x70c1f4 CreatePipe
0x70c1f8 GetCurrentProcess
0x70c1fc CreateProcessA
0x70c200 OpenProcess
0x70c204 GetProcAddress
0x70c208 LoadLibraryA
0x70c20c InitializeSRWLock
0x70c210 ReleaseSRWLockExclusive
0x70c214 ReleaseSRWLockShared
0x70c218 AcquireSRWLockExclusive
0x70c21c AcquireSRWLockShared
0x70c220 GetCurrentThreadId
0x70c224 TlsAlloc
0x70c228 TlsGetValue
0x70c22c TlsSetValue
0x70c230 TlsFree
0x70c234 GetModuleHandleExW
0x70c238 GetModuleHandleW
0x70c23c InitializeCriticalSection
0x70c240 ReleaseSemaphore
0x70c244 GetExitCodeThread
0x70c248 CreateSemaphoreA
0x70c24c VirtualFree
0x70c250 GetCurrentProcessId
0x70c254 GetSystemTimeAsFileTime
0x70c258 GetSystemTime
0x70c25c SystemTimeToFileTime
0x70c260 GetSystemDirectoryA
0x70c264 FreeLibrary
0x70c268 LoadLibraryW
0x70c26c FindNextFileW
0x70c270 GetConsoleMode
0x70c274 SetConsoleMode
0x70c278 ReadConsoleA
0x70c27c ReadConsoleW
0x70c280 QueryPerformanceCounter
0x70c284 GetTickCount
0x70c288 InitializeCriticalSectionEx
0x70c28c QueryPerformanceFrequency
0x70c290 GetSystemDirectoryW
0x70c294 GetModuleHandleA
0x70c298 MoveFileExW
0x70c29c WaitForSingleObjectEx
0x70c2a0 GetEnvironmentVariableA
0x70c2a4 VerSetConditionMask
0x70c2a8 VerifyVersionInfoW
0x70c2ac GetFileSizeEx
0x70c2b0 RaiseException
0x70c2b4 GetLocaleInfoEx
0x70c2b8 GetStringTypeW
0x70c2bc GetCurrentDirectoryW
0x70c2c0 FindFirstFileExW
0x70c2c4 GetFileAttributesExW
0x70c2c8 AreFileApisANSI
0x70c2cc GetFileInformationByHandleEx
0x70c2d0 EncodePointer
0x70c2d4 DecodePointer
0x70c2d8 LCMapStringEx
0x70c2dc TryAcquireSRWLockExclusive
0x70c2e0 WakeAllConditionVariable
0x70c2e4 SleepConditionVariableSRW
0x70c2e8 CompareStringEx
0x70c2ec GetCPInfo
0x70c2f0 IsProcessorFeaturePresent
0x70c2f4 UnhandledExceptionFilter
0x70c2f8 SetUnhandledExceptionFilter
0x70c2fc TerminateProcess
0x70c300 IsDebuggerPresent
0x70c304 GetStartupInfoW
0x70c308 InitializeSListHead
0x70c30c RtlUnwind
0x70c310 LoadLibraryExW
0x70c314 ExitProcess
0x70c318 CreateThread
0x70c31c ExitThread
0x70c320 FreeLibraryAndExitThread
0x70c324 SetConsoleCtrlHandler
0x70c328 SetStdHandle
0x70c32c SetFilePointerEx
0x70c330 GetDriveTypeW
0x70c334 SystemTimeToTzSpecificLocalTime
0x70c338 FileTimeToSystemTime
0x70c33c GetModuleFileNameW
0x70c340 GetConsoleOutputCP
0x70c344 HeapReAlloc
0x70c348 HeapSize
0x70c34c GetVersion
USER32.dll
0x70c37c GetSystemMetrics
0x70c380 MessageBoxA
0x70c384 GetCursorPos
0x70c388 ChangeDisplaySettingsW
0x70c38c DestroyIcon
0x70c390 CreateIcon
0x70c394 LoadCursorW
0x70c398 GetWindowThreadProcessId
0x70c39c SetWindowLongW
0x70c3a0 GetWindowLongW
0x70c3a4 GetProcessWindowStation
0x70c3a8 GetUserObjectInformationW
0x70c3ac MessageBoxW
0x70c3b0 EnumDisplaySettingsW
0x70c3b4 CreateWindowExA
0x70c3b8 DestroyWindow
0x70c3bc ShowWindow
0x70c3c0 GetDC
0x70c3c4 ReleaseDC
0x70c3c8 TrackMouseEvent
0x70c3cc TranslateMessage
0x70c3d0 DispatchMessageW
0x70c3d4 PeekMessageW
0x70c3d8 SendMessageW
0x70c3dc RegisterDeviceNotificationW
0x70c3e0 DefWindowProcW
0x70c3e4 CallWindowProcW
0x70c3e8 RegisterClassW
0x70c3ec UnregisterClassW
0x70c3f0 CreateWindowExW
0x70c3f4 FlashWindowEx
0x70c3f8 SetWindowPos
0x70c3fc GetKeyState
0x70c400 MapVirtualKeyW
0x70c404 GetCapture
0x70c408 SetCapture
0x70c40c ReleaseCapture
0x70c410 GetForegroundWindow
0x70c414 SetForegroundWindow
0x70c418 SetWindowTextW
0x70c41c GetClientRect
0x70c420 GetWindowRect
0x70c424 AdjustWindowRect
0x70c428 SetCursor
0x70c42c ScreenToClient
0x70c430 MapWindowPoints
0x70c434 ClipCursor
SHELL32.dll
0x70c36c ShellExecuteW
WS2_32.dll
0x70c454 WSAWaitForMultipleEvents
0x70c458 getpeername
0x70c45c shutdown
0x70c460 socket
0x70c464 setsockopt
0x70c468 listen
0x70c46c connect
0x70c470 closesocket
0x70c474 ind
0x70c478 accept
0x70c47c send
0x70c480 recv
0x70c484 WSASetLastError
0x70c488 getservbyname
0x70c48c getservbyport
0x70c490 gethostbyaddr
0x70c494 inet_ntoa
0x70c498 WSAResetEvent
0x70c49c htons
0x70c4a0 htonl
0x70c4a4 WSAGetLastError
0x70c4a8 gethostbyname
0x70c4ac select
0x70c4b0 ntohs
0x70c4b4 getsockopt
0x70c4b8 getsockname
0x70c4bc ioctlsocket
0x70c4c0 WSACleanup
0x70c4c4 WSAStartup
0x70c4c8 inet_pton
0x70c4cc inet_ntop
0x70c4d0 WSAEventSelect
0x70c4d4 WSAIoctl
0x70c4d8 __WSAFDIsSet
0x70c4dc getaddrinfo
0x70c4e0 freeaddrinfo
0x70c4e4 gethostname
0x70c4e8 WSAEnumNetworkEvents
0x70c4ec WSACreateEvent
0x70c4f0 WSACloseEvent
0x70c4f4 sendto
0x70c4f8 inet_addr
0x70c4fc recvfrom
crypt.dll
0x70c504 BCryptGenRandom
SHLWAPI.dll
0x70c374 PathFileExistsW
CRYPT32.dll
0x70c060 CertCloseStore
0x70c064 CertEnumCertificatesInStore
0x70c068 CertFindCertificateInStore
0x70c06c CertOpenStore
0x70c070 CertFreeCertificateContext
0x70c074 CertGetCertificateContextProperty
0x70c078 CertOpenSystemStoreW
0x70c07c CryptStringToBinaryW
0x70c080 CertDuplicateCertificateContext
0x70c084 PFXImportCertStore
0x70c088 CryptDecodeObjectEx
0x70c08c CertAddCertificateContextToStore
0x70c090 CertFindExtension
0x70c094 CertGetNameStringW
0x70c098 CryptQueryObject
0x70c09c CertCreateCertificateChainEngine
0x70c0a0 CertFreeCertificateChainEngine
0x70c0a4 CertGetCertificateChain
0x70c0a8 CertFreeCertificateChain
WINMM.dll
0x70c43c timeGetDevCaps
0x70c440 timeBeginPeriod
0x70c444 timeEndPeriod
0x70c448 joyGetPosEx
0x70c44c joyGetDevCapsW
GDI32.dll
0x70c0b0 ChoosePixelFormat
0x70c0b4 GetPixelFormat
0x70c0b8 SetPixelFormat
0x70c0bc SwapBuffers
0x70c0c0 GetDeviceCaps
0x70c0c4 DescribePixelFormat
ADVAPI32.dll
0x70c000 DeregisterEventSource
0x70c004 CryptDestroyHash
0x70c008 CryptSignHashW
0x70c00c CryptEnumProvidersW
0x70c010 CryptGetHashParam
0x70c014 CryptHashData
0x70c018 CryptImportKey
0x70c01c CryptEncrypt
0x70c020 RegCloseKey
0x70c024 RegOpenKeyExW
0x70c028 RegQueryValueExW
0x70c02c CryptDecrypt
0x70c030 CryptExportKey
0x70c034 CryptGetUserKey
0x70c038 CryptGetProvParam
0x70c03c CryptSetHashParam
0x70c040 CryptDestroyKey
0x70c044 CryptAcquireContextW
0x70c048 ReportEventW
0x70c04c RegisterEventSourceW
0x70c050 CryptReleaseContext
0x70c054 CryptGenRandom
0x70c058 CryptCreateHash
OPENGL32.dll
0x70c354 wglShareLists
0x70c358 wglCreateContext
0x70c35c wglDeleteContext
0x70c360 wglMakeCurrent
0x70c364 wglGetProcAddress
EAT(Export Address Table) is none