ScreenShot
| Created | 2024.08.20 09:41 | Machine | s1_win7_x6401 |
| Filename | 66c371f08cdcf_unins000.exe#grid | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 5 detected (Wacatac) | ||
| md5 | b698dfc0ab0130a4ba4c82ae0e972d9b | ||
| sha256 | 717d3a1dae582ef957791438aa53984b71f91aaddbf84b81ceb8dd24a2b5bdca | ||
| ssdeep | 49152:UEK9P+bz2cHPcUb6HSb4SOEMkBeH7nQckO6bAGx7jXTVv3338FjQZ6:W92bz2Eb6pd7B6bAGx7x333NZ6 | ||
| imphash | 9825b4c9a35eb9a5c5e347cb9ca988ee | ||
| impfuzzy | 192:8leLe5UDhZdVATbCxXtb0wI7uaNTuEPXBsjvr4BOUPTFqPV/Ft:NCOjb0GaNTNP0vr4BOIpwV3 | ||
Network IP location
Signature (4cnts)
| Level | Description |
|---|---|
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | File has been identified by 5 AntiVirus engines on VirusTotal as malicious |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
mpr.dll
0x6d79e4 WNetEnumResourceW
0x6d79e8 WNetGetUniversalNameW
0x6d79ec WNetGetConnectionW
0x6d79f0 WNetCloseEnum
0x6d79f4 WNetOpenEnumW
comdlg32.dll
0x6d79fc GetSaveFileNameW
0x6d7a00 GetOpenFileNameW
comctl32.dll
0x6d7a08 FlatSB_SetScrollInfo
0x6d7a0c InitCommonControls
0x6d7a10 ImageList_DragMove
0x6d7a14 ImageList_Destroy
0x6d7a18 _TrackMouseEvent
0x6d7a1c ImageList_DragShowNolock
0x6d7a20 ImageList_Add
0x6d7a24 FlatSB_SetScrollProp
0x6d7a28 ImageList_GetDragImage
0x6d7a2c ImageList_Create
0x6d7a30 ImageList_EndDrag
0x6d7a34 ImageList_DrawEx
0x6d7a38 ImageList_SetImageCount
0x6d7a3c FlatSB_GetScrollPos
0x6d7a40 FlatSB_SetScrollPos
0x6d7a44 InitializeFlatSB
0x6d7a48 FlatSB_GetScrollInfo
0x6d7a4c ImageList_Write
0x6d7a50 ImageList_SetBkColor
0x6d7a54 ImageList_GetBkColor
0x6d7a58 ImageList_BeginDrag
0x6d7a5c ImageList_GetIcon
0x6d7a60 ImageList_GetImageCount
0x6d7a64 ImageList_DragEnter
0x6d7a68 ImageList_GetIconSize
0x6d7a6c ImageList_SetIconSize
0x6d7a70 ImageList_Read
0x6d7a74 ImageList_DragLeave
0x6d7a78 ImageList_Draw
0x6d7a7c ImageList_Remove
shell32.dll
0x6d7a84 SHBrowseForFolderW
0x6d7a88 SHGetMalloc
0x6d7a8c SHGetFileInfoW
0x6d7a90 SHChangeNotify
0x6d7a94 Shell_NotifyIconW
0x6d7a98 ShellExecuteW
0x6d7a9c SHGetPathFromIDListW
0x6d7aa0 ShellExecuteExW
user32.dll
0x6d7aa8 CopyImage
0x6d7aac CreateWindowExW
0x6d7ab0 GetMenuItemInfoW
0x6d7ab4 SetMenuItemInfoW
0x6d7ab8 DefFrameProcW
0x6d7abc GetDCEx
0x6d7ac0 GetMessageW
0x6d7ac4 PeekMessageW
0x6d7ac8 MonitorFromWindow
0x6d7acc GetDlgCtrlID
0x6d7ad0 ScrollWindowEx
0x6d7ad4 SetTimer
0x6d7ad8 WindowFromPoint
0x6d7adc BeginPaint
0x6d7ae0 RegisterClipboardFormatW
0x6d7ae4 FrameRect
0x6d7ae8 MapVirtualKeyW
0x6d7aec OffsetRect
0x6d7af0 IsWindowUnicode
0x6d7af4 RegisterWindowMessageW
0x6d7af8 FillRect
0x6d7afc GetMenuStringW
0x6d7b00 DispatchMessageW
0x6d7b04 SendMessageA
0x6d7b08 DefMDIChildProcW
0x6d7b0c EnumWindows
0x6d7b10 GetClassInfoW
0x6d7b14 GetSystemMenu
0x6d7b18 WaitForInputIdle
0x6d7b1c ShowOwnedPopups
0x6d7b20 GetScrollRange
0x6d7b24 GetScrollPos
0x6d7b28 SetScrollPos
0x6d7b2c GetActiveWindow
0x6d7b30 SetActiveWindow
0x6d7b34 DrawEdge
0x6d7b38 InflateRect
0x6d7b3c GetKeyboardLayoutList
0x6d7b40 OemToCharBuffA
0x6d7b44 LoadBitmapW
0x6d7b48 DrawFocusRect
0x6d7b4c EnumChildWindows
0x6d7b50 GetScrollBarInfo
0x6d7b54 SendNotifyMessageW
0x6d7b58 ReleaseCapture
0x6d7b5c UnhookWindowsHookEx
0x6d7b60 LoadCursorW
0x6d7b64 GetCapture
0x6d7b68 SetCapture
0x6d7b6c CreatePopupMenu
0x6d7b70 ScrollWindow
0x6d7b74 ShowCaret
0x6d7b78 GetMenuItemID
0x6d7b7c GetLastActivePopup
0x6d7b80 CharLowerBuffW
0x6d7b84 GetSystemMetrics
0x6d7b88 SetWindowLongW
0x6d7b8c PostMessageW
0x6d7b90 DrawMenuBar
0x6d7b94 SetParent
0x6d7b98 IsZoomed
0x6d7b9c CharUpperBuffW
0x6d7ba0 GetClientRect
0x6d7ba4 IsChild
0x6d7ba8 ClientToScreen
0x6d7bac SetWindowPlacement
0x6d7bb0 IsIconic
0x6d7bb4 CallNextHookEx
0x6d7bb8 GetMonitorInfoW
0x6d7bbc ShowWindow
0x6d7bc0 CheckMenuItem
0x6d7bc4 CharUpperW
0x6d7bc8 DefWindowProcW
0x6d7bcc GetForegroundWindow
0x6d7bd0 SetForegroundWindow
0x6d7bd4 GetWindowTextW
0x6d7bd8 EnableWindow
0x6d7bdc DestroyWindow
0x6d7be0 IsDialogMessageW
0x6d7be4 EndMenu
0x6d7be8 RegisterClassW
0x6d7bec CharNextW
0x6d7bf0 GetWindowThreadProcessId
0x6d7bf4 RedrawWindow
0x6d7bf8 GetDC
0x6d7bfc GetFocus
0x6d7c00 SetFocus
0x6d7c04 EndPaint
0x6d7c08 ExitWindowsEx
0x6d7c0c ReleaseDC
0x6d7c10 MsgWaitForMultipleObjectsEx
0x6d7c14 LoadKeyboardLayoutW
0x6d7c18 GetClassLongW
0x6d7c1c ActivateKeyboardLayout
0x6d7c20 GetParent
0x6d7c24 CharToOemBuffA
0x6d7c28 DrawTextW
0x6d7c2c SetScrollRange
0x6d7c30 InsertMenuItemW
0x6d7c34 PeekMessageA
0x6d7c38 GetPropW
0x6d7c3c SetClassLongW
0x6d7c40 MessageBoxW
0x6d7c44 MessageBeep
0x6d7c48 SetPropW
0x6d7c4c SetRectEmpty
0x6d7c50 UpdateWindow
0x6d7c54 RemovePropW
0x6d7c58 GetSubMenu
0x6d7c5c MsgWaitForMultipleObjects
0x6d7c60 DestroyMenu
0x6d7c64 DestroyIcon
0x6d7c68 SetWindowsHookExW
0x6d7c6c IsWindowVisible
0x6d7c70 DispatchMessageA
0x6d7c74 UnregisterClassW
0x6d7c78 GetTopWindow
0x6d7c7c SendMessageW
0x6d7c80 AdjustWindowRectEx
0x6d7c84 DrawIcon
0x6d7c88 IsWindow
0x6d7c8c EnumThreadWindows
0x6d7c90 InvalidateRect
0x6d7c94 GetKeyboardState
0x6d7c98 DrawFrameControl
0x6d7c9c ScreenToClient
0x6d7ca0 SendMessageTimeoutW
0x6d7ca4 BringWindowToTop
0x6d7ca8 SetCursor
0x6d7cac CreateIcon
0x6d7cb0 CreateMenu
0x6d7cb4 LoadStringW
0x6d7cb8 CharLowerW
0x6d7cbc SetWindowPos
0x6d7cc0 SetWindowRgn
0x6d7cc4 GetMenuItemCount
0x6d7cc8 RemoveMenu
0x6d7ccc AppendMenuW
0x6d7cd0 GetSysColorBrush
0x6d7cd4 GetKeyboardLayoutNameW
0x6d7cd8 GetWindowDC
0x6d7cdc TranslateMessage
0x6d7ce0 DrawTextExW
0x6d7ce4 MapWindowPoints
0x6d7ce8 EnumDisplayMonitors
0x6d7cec CallWindowProcW
0x6d7cf0 DestroyCursor
0x6d7cf4 ReplyMessage
0x6d7cf8 GetScrollInfo
0x6d7cfc SetWindowTextW
0x6d7d00 GetMessageExtraInfo
0x6d7d04 EnableScrollBar
0x6d7d08 GetSysColor
0x6d7d0c TrackPopupMenu
0x6d7d10 DrawIconEx
0x6d7d14 PostQuitMessage
0x6d7d18 GetClassNameW
0x6d7d1c ShowScrollBar
0x6d7d20 EnableMenuItem
0x6d7d24 GetIconInfo
0x6d7d28 GetMessagePos
0x6d7d2c LoadImageW
0x6d7d30 SetScrollInfo
0x6d7d34 GetKeyNameTextW
0x6d7d38 GetDesktopWindow
0x6d7d3c GetCursorPos
0x6d7d40 SetCursorPos
0x6d7d44 HideCaret
0x6d7d48 GetMenu
0x6d7d4c GetMenuState
0x6d7d50 SetMenu
0x6d7d54 SetRect
0x6d7d58 GetKeyState
0x6d7d5c FindWindowExW
0x6d7d60 MonitorFromPoint
0x6d7d64 SystemParametersInfoW
0x6d7d68 LoadIconW
0x6d7d6c GetCursor
0x6d7d70 GetWindow
0x6d7d74 GetWindowLongW
0x6d7d78 GetWindowRect
0x6d7d7c InsertMenuW
0x6d7d80 KillTimer
0x6d7d84 WaitMessage
0x6d7d88 IsWindowEnabled
0x6d7d8c IsDialogMessageA
0x6d7d90 TranslateMDISysAccel
0x6d7d94 GetWindowPlacement
0x6d7d98 FindWindowW
0x6d7d9c DeleteMenu
0x6d7da0 GetKeyboardLayout
version.dll
0x6d7da8 GetFileVersionInfoSizeW
0x6d7dac VerQueryValueW
0x6d7db0 GetFileVersionInfoW
oleaut32.dll
0x6d7db8 SafeArrayPutElement
0x6d7dbc LoadTypeLib
0x6d7dc0 GetErrorInfo
0x6d7dc4 VariantInit
0x6d7dc8 VariantClear
0x6d7dcc SysFreeString
0x6d7dd0 SysReAllocStringLen
0x6d7dd4 SafeArrayCreate
0x6d7dd8 SafeArrayGetElement
0x6d7ddc GetActiveObject
0x6d7de0 SysAllocStringLen
0x6d7de4 SafeArrayPtrOfIndex
0x6d7de8 SafeArrayGetUBound
0x6d7dec SafeArrayGetLBound
0x6d7df0 VariantCopy
0x6d7df4 RegisterTypeLib
0x6d7df8 VariantChangeType
0x6d7dfc VariantCopyInd
advapi32.dll
0x6d7e04 RegSetValueExW
0x6d7e08 RegEnumKeyExW
0x6d7e0c AdjustTokenPrivileges
0x6d7e10 OpenThreadToken
0x6d7e14 GetUserNameW
0x6d7e18 RegDeleteKeyW
0x6d7e1c LookupPrivilegeValueW
0x6d7e20 OpenProcessToken
0x6d7e24 RegOpenKeyExW
0x6d7e28 RegQueryInfoKeyW
0x6d7e2c AllocateAndInitializeSid
0x6d7e30 FreeSid
0x6d7e34 EqualSid
0x6d7e38 RegDeleteValueW
0x6d7e3c RegFlushKey
0x6d7e40 RegQueryValueExW
0x6d7e44 RegEnumValueW
0x6d7e48 GetTokenInformation
0x6d7e4c InitializeSecurityDescriptor
0x6d7e50 RegCloseKey
0x6d7e54 RegCreateKeyExW
0x6d7e58 SetSecurityDescriptorDacl
netapi32.dll
0x6d7e60 NetWkstaGetInfo
0x6d7e64 NetApiBufferFree
msvcrt.dll
0x6d7e6c memcpy
winhttp.dll
0x6d7e74 WinHttpGetIEProxyConfigForCurrentUser
0x6d7e78 WinHttpSetTimeouts
0x6d7e7c WinHttpSetStatusCallback
0x6d7e80 WinHttpConnect
0x6d7e84 WinHttpReceiveResponse
0x6d7e88 WinHttpQueryAuthSchemes
0x6d7e8c WinHttpGetProxyForUrl
0x6d7e90 WinHttpReadData
0x6d7e94 WinHttpCloseHandle
0x6d7e98 WinHttpQueryHeaders
0x6d7e9c WinHttpOpenRequest
0x6d7ea0 WinHttpAddRequestHeaders
0x6d7ea4 WinHttpOpen
0x6d7ea8 WinHttpWriteData
0x6d7eac WinHttpSetCredentials
0x6d7eb0 WinHttpQueryDataAvailable
0x6d7eb4 WinHttpSetOption
0x6d7eb8 WinHttpSendRequest
0x6d7ebc WinHttpQueryOption
kernel32.dll
0x6d7ec4 SetFileAttributesW
0x6d7ec8 SetFileTime
0x6d7ecc GetACP
0x6d7ed0 GetExitCodeProcess
0x6d7ed4 IsBadWritePtr
0x6d7ed8 CloseHandle
0x6d7edc LocalFree
0x6d7ee0 GetCurrentProcessId
0x6d7ee4 SizeofResource
0x6d7ee8 VirtualProtect
0x6d7eec TerminateThread
0x6d7ef0 QueryPerformanceFrequency
0x6d7ef4 IsDebuggerPresent
0x6d7ef8 FindNextFileW
0x6d7efc GetFullPathNameW
0x6d7f00 VirtualFree
0x6d7f04 HeapAlloc
0x6d7f08 ExitProcess
0x6d7f0c WriteProfileStringW
0x6d7f10 GetCPInfoExW
0x6d7f14 RtlUnwind
0x6d7f18 GetCPInfo
0x6d7f1c GetStdHandle
0x6d7f20 GetTimeZoneInformation
0x6d7f24 FileTimeToLocalFileTime
0x6d7f28 GetModuleHandleW
0x6d7f2c FreeLibrary
0x6d7f30 HeapDestroy
0x6d7f34 CompareFileTime
0x6d7f38 ReadFile
0x6d7f3c CreateProcessW
0x6d7f40 TransactNamedPipe
0x6d7f44 GetLastError
0x6d7f48 GetModuleFileNameW
0x6d7f4c SetLastError
0x6d7f50 FindResourceW
0x6d7f54 OpenMutexW
0x6d7f58 CreateThread
0x6d7f5c CompareStringW
0x6d7f60 CopyFileW
0x6d7f64 CreateMutexW
0x6d7f68 LoadLibraryA
0x6d7f6c ResetEvent
0x6d7f70 MulDiv
0x6d7f74 FreeResource
0x6d7f78 GetDriveTypeW
0x6d7f7c GetVersion
0x6d7f80 RaiseException
0x6d7f84 MoveFileW
0x6d7f88 GlobalAddAtomW
0x6d7f8c GetSystemTimeAsFileTime
0x6d7f90 FormatMessageW
0x6d7f94 OpenProcess
0x6d7f98 SwitchToThread
0x6d7f9c GetExitCodeThread
0x6d7fa0 OutputDebugStringW
0x6d7fa4 GetCurrentThread
0x6d7fa8 GetLogicalDrives
0x6d7fac LocalFileTimeToFileTime
0x6d7fb0 SetNamedPipeHandleState
0x6d7fb4 LoadLibraryExW
0x6d7fb8 TerminateProcess
0x6d7fbc LockResource
0x6d7fc0 FileTimeToSystemTime
0x6d7fc4 GetShortPathNameW
0x6d7fc8 GetCurrentThreadId
0x6d7fcc UnhandledExceptionFilter
0x6d7fd0 MoveFileExW
0x6d7fd4 GlobalFindAtomW
0x6d7fd8 VirtualQuery
0x6d7fdc GlobalFree
0x6d7fe0 VirtualQueryEx
0x6d7fe4 Sleep
0x6d7fe8 EnterCriticalSection
0x6d7fec SetFilePointer
0x6d7ff0 ReleaseMutex
0x6d7ff4 FlushFileBuffers
0x6d7ff8 LoadResource
0x6d7ffc SuspendThread
0x6d8000 GetTickCount
0x6d8004 WritePrivateProfileStringW
0x6d8008 GetFileSize
0x6d800c GlobalDeleteAtom
0x6d8010 GetStartupInfoW
0x6d8014 GetFileAttributesW
0x6d8018 GetCurrentDirectoryW
0x6d801c SetCurrentDirectoryW
0x6d8020 InitializeCriticalSection
0x6d8024 GetThreadPriority
0x6d8028 GetCurrentProcess
0x6d802c SetThreadPriority
0x6d8030 VirtualAlloc
0x6d8034 GetSystemInfo
0x6d8038 GetCommandLineW
0x6d803c LeaveCriticalSection
0x6d8040 GetProcAddress
0x6d8044 ResumeThread
0x6d8048 GetVersionExW
0x6d804c VerifyVersionInfoW
0x6d8050 HeapCreate
0x6d8054 GetWindowsDirectoryW
0x6d8058 DeviceIoControl
0x6d805c LCMapStringW
0x6d8060 GetDiskFreeSpaceW
0x6d8064 VerSetConditionMask
0x6d8068 FindFirstFileW
0x6d806c GetUserDefaultUILanguage
0x6d8070 lstrlenW
0x6d8074 QueryPerformanceCounter
0x6d8078 SetEndOfFile
0x6d807c lstrcmpW
0x6d8080 HeapFree
0x6d8084 WideCharToMultiByte
0x6d8088 FindClose
0x6d808c MultiByteToWideChar
0x6d8090 LoadLibraryW
0x6d8094 SetEvent
0x6d8098 CreateFileW
0x6d809c GetLocaleInfoW
0x6d80a0 GetSystemDirectoryW
0x6d80a4 DeleteFileW
0x6d80a8 GetEnvironmentVariableW
0x6d80ac GetLocalTime
0x6d80b0 WaitForSingleObject
0x6d80b4 WriteFile
0x6d80b8 CreateNamedPipeW
0x6d80bc ExitThread
0x6d80c0 DeleteCriticalSection
0x6d80c4 GetDateFormatW
0x6d80c8 TlsGetValue
0x6d80cc SetErrorMode
0x6d80d0 GetComputerNameW
0x6d80d4 IsValidLocale
0x6d80d8 TlsSetValue
0x6d80dc CreateDirectoryW
0x6d80e0 GetOverlappedResult
0x6d80e4 GetSystemDefaultUILanguage
0x6d80e8 EnumCalendarInfoW
0x6d80ec GetProfileStringW
0x6d80f0 LocalAlloc
0x6d80f4 GetUserDefaultLangID
0x6d80f8 RemoveDirectoryW
0x6d80fc IsDBCSLeadByte
0x6d8100 CreateEventW
0x6d8104 GetPrivateProfileStringW
0x6d8108 WaitForMultipleObjectsEx
0x6d810c GetThreadLocale
0x6d8110 SetThreadLocale
ole32.dll
0x6d8118 StgCreateDocfileOnILockBytes
0x6d811c CoCreateInstance
0x6d8120 CLSIDFromString
0x6d8124 CoUninitialize
0x6d8128 IsEqualGUID
0x6d812c OleInitialize
0x6d8130 CoFreeUnusedLibraries
0x6d8134 CreateILockBytesOnHGlobal
0x6d8138 CLSIDFromProgID
0x6d813c OleUninitialize
0x6d8140 CoDisconnectObject
0x6d8144 CoInitialize
0x6d8148 CoTaskMemFree
0x6d814c CoTaskMemAlloc
0x6d8150 StringFromCLSID
gdi32.dll
0x6d8158 Arc
0x6d815c Pie
0x6d8160 SetBkMode
0x6d8164 SelectPalette
0x6d8168 CreateCompatibleBitmap
0x6d816c ExcludeClipRect
0x6d8170 RectVisible
0x6d8174 SetWindowOrgEx
0x6d8178 MaskBlt
0x6d817c AngleArc
0x6d8180 Chord
0x6d8184 SetTextColor
0x6d8188 StretchBlt
0x6d818c SetDIBits
0x6d8190 SetViewportOrgEx
0x6d8194 CreateRectRgn
0x6d8198 RealizePalette
0x6d819c SetDIBColorTable
0x6d81a0 GetDIBColorTable
0x6d81a4 RoundRect
0x6d81a8 RestoreDC
0x6d81ac SetRectRgn
0x6d81b0 GetTextMetricsW
0x6d81b4 RemoveFontResourceW
0x6d81b8 GetWindowOrgEx
0x6d81bc CreatePalette
0x6d81c0 CreateBrushIndirect
0x6d81c4 PatBlt
0x6d81c8 LineDDA
0x6d81cc PolyBezierTo
0x6d81d0 GetStockObject
0x6d81d4 CreateSolidBrush
0x6d81d8 Polygon
0x6d81dc Rectangle
0x6d81e0 MoveToEx
0x6d81e4 DeleteDC
0x6d81e8 SaveDC
0x6d81ec BitBlt
0x6d81f0 Ellipse
0x6d81f4 FrameRgn
0x6d81f8 GetDeviceCaps
0x6d81fc GetBitmapBits
0x6d8200 GetTextExtentPoint32W
0x6d8204 GetClipBox
0x6d8208 Polyline
0x6d820c IntersectClipRect
0x6d8210 GetSystemPaletteEntries
0x6d8214 CreateBitmap
0x6d8218 AddFontResourceW
0x6d821c CreateDIBitmap
0x6d8220 GetStretchBltMode
0x6d8224 CreateDIBSection
0x6d8228 CreatePenIndirect
0x6d822c SetStretchBltMode
0x6d8230 GetDIBits
0x6d8234 CreateFontIndirectW
0x6d8238 PolyBezier
0x6d823c LineTo
0x6d8240 GetRgnBox
0x6d8244 EnumFontsW
0x6d8248 CreateHalftonePalette
0x6d824c DeleteObject
0x6d8250 SelectObject
0x6d8254 ExtFloodFill
0x6d8258 UnrealizeObject
0x6d825c SetBkColor
0x6d8260 CreateCompatibleDC
0x6d8264 GetObjectW
0x6d8268 GetBrushOrgEx
0x6d826c GetCurrentPositionEx
0x6d8270 SetROP2
0x6d8274 GetTextExtentPointW
0x6d8278 ExtTextOutW
0x6d827c SetBrushOrgEx
0x6d8280 GetPixel
0x6d8284 ArcTo
0x6d8288 GdiFlush
0x6d828c SetPixel
0x6d8290 EnumFontFamiliesExW
0x6d8294 GetPaletteEntries
EAT(Export Address Table) Library
0x4b5e60 TMethodImplementationIntercept
0x410a7c __dbk_fcall_wrapper
0x6d2640 dbkFCallWrapperAddr
mpr.dll
0x6d79e4 WNetEnumResourceW
0x6d79e8 WNetGetUniversalNameW
0x6d79ec WNetGetConnectionW
0x6d79f0 WNetCloseEnum
0x6d79f4 WNetOpenEnumW
comdlg32.dll
0x6d79fc GetSaveFileNameW
0x6d7a00 GetOpenFileNameW
comctl32.dll
0x6d7a08 FlatSB_SetScrollInfo
0x6d7a0c InitCommonControls
0x6d7a10 ImageList_DragMove
0x6d7a14 ImageList_Destroy
0x6d7a18 _TrackMouseEvent
0x6d7a1c ImageList_DragShowNolock
0x6d7a20 ImageList_Add
0x6d7a24 FlatSB_SetScrollProp
0x6d7a28 ImageList_GetDragImage
0x6d7a2c ImageList_Create
0x6d7a30 ImageList_EndDrag
0x6d7a34 ImageList_DrawEx
0x6d7a38 ImageList_SetImageCount
0x6d7a3c FlatSB_GetScrollPos
0x6d7a40 FlatSB_SetScrollPos
0x6d7a44 InitializeFlatSB
0x6d7a48 FlatSB_GetScrollInfo
0x6d7a4c ImageList_Write
0x6d7a50 ImageList_SetBkColor
0x6d7a54 ImageList_GetBkColor
0x6d7a58 ImageList_BeginDrag
0x6d7a5c ImageList_GetIcon
0x6d7a60 ImageList_GetImageCount
0x6d7a64 ImageList_DragEnter
0x6d7a68 ImageList_GetIconSize
0x6d7a6c ImageList_SetIconSize
0x6d7a70 ImageList_Read
0x6d7a74 ImageList_DragLeave
0x6d7a78 ImageList_Draw
0x6d7a7c ImageList_Remove
shell32.dll
0x6d7a84 SHBrowseForFolderW
0x6d7a88 SHGetMalloc
0x6d7a8c SHGetFileInfoW
0x6d7a90 SHChangeNotify
0x6d7a94 Shell_NotifyIconW
0x6d7a98 ShellExecuteW
0x6d7a9c SHGetPathFromIDListW
0x6d7aa0 ShellExecuteExW
user32.dll
0x6d7aa8 CopyImage
0x6d7aac CreateWindowExW
0x6d7ab0 GetMenuItemInfoW
0x6d7ab4 SetMenuItemInfoW
0x6d7ab8 DefFrameProcW
0x6d7abc GetDCEx
0x6d7ac0 GetMessageW
0x6d7ac4 PeekMessageW
0x6d7ac8 MonitorFromWindow
0x6d7acc GetDlgCtrlID
0x6d7ad0 ScrollWindowEx
0x6d7ad4 SetTimer
0x6d7ad8 WindowFromPoint
0x6d7adc BeginPaint
0x6d7ae0 RegisterClipboardFormatW
0x6d7ae4 FrameRect
0x6d7ae8 MapVirtualKeyW
0x6d7aec OffsetRect
0x6d7af0 IsWindowUnicode
0x6d7af4 RegisterWindowMessageW
0x6d7af8 FillRect
0x6d7afc GetMenuStringW
0x6d7b00 DispatchMessageW
0x6d7b04 SendMessageA
0x6d7b08 DefMDIChildProcW
0x6d7b0c EnumWindows
0x6d7b10 GetClassInfoW
0x6d7b14 GetSystemMenu
0x6d7b18 WaitForInputIdle
0x6d7b1c ShowOwnedPopups
0x6d7b20 GetScrollRange
0x6d7b24 GetScrollPos
0x6d7b28 SetScrollPos
0x6d7b2c GetActiveWindow
0x6d7b30 SetActiveWindow
0x6d7b34 DrawEdge
0x6d7b38 InflateRect
0x6d7b3c GetKeyboardLayoutList
0x6d7b40 OemToCharBuffA
0x6d7b44 LoadBitmapW
0x6d7b48 DrawFocusRect
0x6d7b4c EnumChildWindows
0x6d7b50 GetScrollBarInfo
0x6d7b54 SendNotifyMessageW
0x6d7b58 ReleaseCapture
0x6d7b5c UnhookWindowsHookEx
0x6d7b60 LoadCursorW
0x6d7b64 GetCapture
0x6d7b68 SetCapture
0x6d7b6c CreatePopupMenu
0x6d7b70 ScrollWindow
0x6d7b74 ShowCaret
0x6d7b78 GetMenuItemID
0x6d7b7c GetLastActivePopup
0x6d7b80 CharLowerBuffW
0x6d7b84 GetSystemMetrics
0x6d7b88 SetWindowLongW
0x6d7b8c PostMessageW
0x6d7b90 DrawMenuBar
0x6d7b94 SetParent
0x6d7b98 IsZoomed
0x6d7b9c CharUpperBuffW
0x6d7ba0 GetClientRect
0x6d7ba4 IsChild
0x6d7ba8 ClientToScreen
0x6d7bac SetWindowPlacement
0x6d7bb0 IsIconic
0x6d7bb4 CallNextHookEx
0x6d7bb8 GetMonitorInfoW
0x6d7bbc ShowWindow
0x6d7bc0 CheckMenuItem
0x6d7bc4 CharUpperW
0x6d7bc8 DefWindowProcW
0x6d7bcc GetForegroundWindow
0x6d7bd0 SetForegroundWindow
0x6d7bd4 GetWindowTextW
0x6d7bd8 EnableWindow
0x6d7bdc DestroyWindow
0x6d7be0 IsDialogMessageW
0x6d7be4 EndMenu
0x6d7be8 RegisterClassW
0x6d7bec CharNextW
0x6d7bf0 GetWindowThreadProcessId
0x6d7bf4 RedrawWindow
0x6d7bf8 GetDC
0x6d7bfc GetFocus
0x6d7c00 SetFocus
0x6d7c04 EndPaint
0x6d7c08 ExitWindowsEx
0x6d7c0c ReleaseDC
0x6d7c10 MsgWaitForMultipleObjectsEx
0x6d7c14 LoadKeyboardLayoutW
0x6d7c18 GetClassLongW
0x6d7c1c ActivateKeyboardLayout
0x6d7c20 GetParent
0x6d7c24 CharToOemBuffA
0x6d7c28 DrawTextW
0x6d7c2c SetScrollRange
0x6d7c30 InsertMenuItemW
0x6d7c34 PeekMessageA
0x6d7c38 GetPropW
0x6d7c3c SetClassLongW
0x6d7c40 MessageBoxW
0x6d7c44 MessageBeep
0x6d7c48 SetPropW
0x6d7c4c SetRectEmpty
0x6d7c50 UpdateWindow
0x6d7c54 RemovePropW
0x6d7c58 GetSubMenu
0x6d7c5c MsgWaitForMultipleObjects
0x6d7c60 DestroyMenu
0x6d7c64 DestroyIcon
0x6d7c68 SetWindowsHookExW
0x6d7c6c IsWindowVisible
0x6d7c70 DispatchMessageA
0x6d7c74 UnregisterClassW
0x6d7c78 GetTopWindow
0x6d7c7c SendMessageW
0x6d7c80 AdjustWindowRectEx
0x6d7c84 DrawIcon
0x6d7c88 IsWindow
0x6d7c8c EnumThreadWindows
0x6d7c90 InvalidateRect
0x6d7c94 GetKeyboardState
0x6d7c98 DrawFrameControl
0x6d7c9c ScreenToClient
0x6d7ca0 SendMessageTimeoutW
0x6d7ca4 BringWindowToTop
0x6d7ca8 SetCursor
0x6d7cac CreateIcon
0x6d7cb0 CreateMenu
0x6d7cb4 LoadStringW
0x6d7cb8 CharLowerW
0x6d7cbc SetWindowPos
0x6d7cc0 SetWindowRgn
0x6d7cc4 GetMenuItemCount
0x6d7cc8 RemoveMenu
0x6d7ccc AppendMenuW
0x6d7cd0 GetSysColorBrush
0x6d7cd4 GetKeyboardLayoutNameW
0x6d7cd8 GetWindowDC
0x6d7cdc TranslateMessage
0x6d7ce0 DrawTextExW
0x6d7ce4 MapWindowPoints
0x6d7ce8 EnumDisplayMonitors
0x6d7cec CallWindowProcW
0x6d7cf0 DestroyCursor
0x6d7cf4 ReplyMessage
0x6d7cf8 GetScrollInfo
0x6d7cfc SetWindowTextW
0x6d7d00 GetMessageExtraInfo
0x6d7d04 EnableScrollBar
0x6d7d08 GetSysColor
0x6d7d0c TrackPopupMenu
0x6d7d10 DrawIconEx
0x6d7d14 PostQuitMessage
0x6d7d18 GetClassNameW
0x6d7d1c ShowScrollBar
0x6d7d20 EnableMenuItem
0x6d7d24 GetIconInfo
0x6d7d28 GetMessagePos
0x6d7d2c LoadImageW
0x6d7d30 SetScrollInfo
0x6d7d34 GetKeyNameTextW
0x6d7d38 GetDesktopWindow
0x6d7d3c GetCursorPos
0x6d7d40 SetCursorPos
0x6d7d44 HideCaret
0x6d7d48 GetMenu
0x6d7d4c GetMenuState
0x6d7d50 SetMenu
0x6d7d54 SetRect
0x6d7d58 GetKeyState
0x6d7d5c FindWindowExW
0x6d7d60 MonitorFromPoint
0x6d7d64 SystemParametersInfoW
0x6d7d68 LoadIconW
0x6d7d6c GetCursor
0x6d7d70 GetWindow
0x6d7d74 GetWindowLongW
0x6d7d78 GetWindowRect
0x6d7d7c InsertMenuW
0x6d7d80 KillTimer
0x6d7d84 WaitMessage
0x6d7d88 IsWindowEnabled
0x6d7d8c IsDialogMessageA
0x6d7d90 TranslateMDISysAccel
0x6d7d94 GetWindowPlacement
0x6d7d98 FindWindowW
0x6d7d9c DeleteMenu
0x6d7da0 GetKeyboardLayout
version.dll
0x6d7da8 GetFileVersionInfoSizeW
0x6d7dac VerQueryValueW
0x6d7db0 GetFileVersionInfoW
oleaut32.dll
0x6d7db8 SafeArrayPutElement
0x6d7dbc LoadTypeLib
0x6d7dc0 GetErrorInfo
0x6d7dc4 VariantInit
0x6d7dc8 VariantClear
0x6d7dcc SysFreeString
0x6d7dd0 SysReAllocStringLen
0x6d7dd4 SafeArrayCreate
0x6d7dd8 SafeArrayGetElement
0x6d7ddc GetActiveObject
0x6d7de0 SysAllocStringLen
0x6d7de4 SafeArrayPtrOfIndex
0x6d7de8 SafeArrayGetUBound
0x6d7dec SafeArrayGetLBound
0x6d7df0 VariantCopy
0x6d7df4 RegisterTypeLib
0x6d7df8 VariantChangeType
0x6d7dfc VariantCopyInd
advapi32.dll
0x6d7e04 RegSetValueExW
0x6d7e08 RegEnumKeyExW
0x6d7e0c AdjustTokenPrivileges
0x6d7e10 OpenThreadToken
0x6d7e14 GetUserNameW
0x6d7e18 RegDeleteKeyW
0x6d7e1c LookupPrivilegeValueW
0x6d7e20 OpenProcessToken
0x6d7e24 RegOpenKeyExW
0x6d7e28 RegQueryInfoKeyW
0x6d7e2c AllocateAndInitializeSid
0x6d7e30 FreeSid
0x6d7e34 EqualSid
0x6d7e38 RegDeleteValueW
0x6d7e3c RegFlushKey
0x6d7e40 RegQueryValueExW
0x6d7e44 RegEnumValueW
0x6d7e48 GetTokenInformation
0x6d7e4c InitializeSecurityDescriptor
0x6d7e50 RegCloseKey
0x6d7e54 RegCreateKeyExW
0x6d7e58 SetSecurityDescriptorDacl
netapi32.dll
0x6d7e60 NetWkstaGetInfo
0x6d7e64 NetApiBufferFree
msvcrt.dll
0x6d7e6c memcpy
winhttp.dll
0x6d7e74 WinHttpGetIEProxyConfigForCurrentUser
0x6d7e78 WinHttpSetTimeouts
0x6d7e7c WinHttpSetStatusCallback
0x6d7e80 WinHttpConnect
0x6d7e84 WinHttpReceiveResponse
0x6d7e88 WinHttpQueryAuthSchemes
0x6d7e8c WinHttpGetProxyForUrl
0x6d7e90 WinHttpReadData
0x6d7e94 WinHttpCloseHandle
0x6d7e98 WinHttpQueryHeaders
0x6d7e9c WinHttpOpenRequest
0x6d7ea0 WinHttpAddRequestHeaders
0x6d7ea4 WinHttpOpen
0x6d7ea8 WinHttpWriteData
0x6d7eac WinHttpSetCredentials
0x6d7eb0 WinHttpQueryDataAvailable
0x6d7eb4 WinHttpSetOption
0x6d7eb8 WinHttpSendRequest
0x6d7ebc WinHttpQueryOption
kernel32.dll
0x6d7ec4 SetFileAttributesW
0x6d7ec8 SetFileTime
0x6d7ecc GetACP
0x6d7ed0 GetExitCodeProcess
0x6d7ed4 IsBadWritePtr
0x6d7ed8 CloseHandle
0x6d7edc LocalFree
0x6d7ee0 GetCurrentProcessId
0x6d7ee4 SizeofResource
0x6d7ee8 VirtualProtect
0x6d7eec TerminateThread
0x6d7ef0 QueryPerformanceFrequency
0x6d7ef4 IsDebuggerPresent
0x6d7ef8 FindNextFileW
0x6d7efc GetFullPathNameW
0x6d7f00 VirtualFree
0x6d7f04 HeapAlloc
0x6d7f08 ExitProcess
0x6d7f0c WriteProfileStringW
0x6d7f10 GetCPInfoExW
0x6d7f14 RtlUnwind
0x6d7f18 GetCPInfo
0x6d7f1c GetStdHandle
0x6d7f20 GetTimeZoneInformation
0x6d7f24 FileTimeToLocalFileTime
0x6d7f28 GetModuleHandleW
0x6d7f2c FreeLibrary
0x6d7f30 HeapDestroy
0x6d7f34 CompareFileTime
0x6d7f38 ReadFile
0x6d7f3c CreateProcessW
0x6d7f40 TransactNamedPipe
0x6d7f44 GetLastError
0x6d7f48 GetModuleFileNameW
0x6d7f4c SetLastError
0x6d7f50 FindResourceW
0x6d7f54 OpenMutexW
0x6d7f58 CreateThread
0x6d7f5c CompareStringW
0x6d7f60 CopyFileW
0x6d7f64 CreateMutexW
0x6d7f68 LoadLibraryA
0x6d7f6c ResetEvent
0x6d7f70 MulDiv
0x6d7f74 FreeResource
0x6d7f78 GetDriveTypeW
0x6d7f7c GetVersion
0x6d7f80 RaiseException
0x6d7f84 MoveFileW
0x6d7f88 GlobalAddAtomW
0x6d7f8c GetSystemTimeAsFileTime
0x6d7f90 FormatMessageW
0x6d7f94 OpenProcess
0x6d7f98 SwitchToThread
0x6d7f9c GetExitCodeThread
0x6d7fa0 OutputDebugStringW
0x6d7fa4 GetCurrentThread
0x6d7fa8 GetLogicalDrives
0x6d7fac LocalFileTimeToFileTime
0x6d7fb0 SetNamedPipeHandleState
0x6d7fb4 LoadLibraryExW
0x6d7fb8 TerminateProcess
0x6d7fbc LockResource
0x6d7fc0 FileTimeToSystemTime
0x6d7fc4 GetShortPathNameW
0x6d7fc8 GetCurrentThreadId
0x6d7fcc UnhandledExceptionFilter
0x6d7fd0 MoveFileExW
0x6d7fd4 GlobalFindAtomW
0x6d7fd8 VirtualQuery
0x6d7fdc GlobalFree
0x6d7fe0 VirtualQueryEx
0x6d7fe4 Sleep
0x6d7fe8 EnterCriticalSection
0x6d7fec SetFilePointer
0x6d7ff0 ReleaseMutex
0x6d7ff4 FlushFileBuffers
0x6d7ff8 LoadResource
0x6d7ffc SuspendThread
0x6d8000 GetTickCount
0x6d8004 WritePrivateProfileStringW
0x6d8008 GetFileSize
0x6d800c GlobalDeleteAtom
0x6d8010 GetStartupInfoW
0x6d8014 GetFileAttributesW
0x6d8018 GetCurrentDirectoryW
0x6d801c SetCurrentDirectoryW
0x6d8020 InitializeCriticalSection
0x6d8024 GetThreadPriority
0x6d8028 GetCurrentProcess
0x6d802c SetThreadPriority
0x6d8030 VirtualAlloc
0x6d8034 GetSystemInfo
0x6d8038 GetCommandLineW
0x6d803c LeaveCriticalSection
0x6d8040 GetProcAddress
0x6d8044 ResumeThread
0x6d8048 GetVersionExW
0x6d804c VerifyVersionInfoW
0x6d8050 HeapCreate
0x6d8054 GetWindowsDirectoryW
0x6d8058 DeviceIoControl
0x6d805c LCMapStringW
0x6d8060 GetDiskFreeSpaceW
0x6d8064 VerSetConditionMask
0x6d8068 FindFirstFileW
0x6d806c GetUserDefaultUILanguage
0x6d8070 lstrlenW
0x6d8074 QueryPerformanceCounter
0x6d8078 SetEndOfFile
0x6d807c lstrcmpW
0x6d8080 HeapFree
0x6d8084 WideCharToMultiByte
0x6d8088 FindClose
0x6d808c MultiByteToWideChar
0x6d8090 LoadLibraryW
0x6d8094 SetEvent
0x6d8098 CreateFileW
0x6d809c GetLocaleInfoW
0x6d80a0 GetSystemDirectoryW
0x6d80a4 DeleteFileW
0x6d80a8 GetEnvironmentVariableW
0x6d80ac GetLocalTime
0x6d80b0 WaitForSingleObject
0x6d80b4 WriteFile
0x6d80b8 CreateNamedPipeW
0x6d80bc ExitThread
0x6d80c0 DeleteCriticalSection
0x6d80c4 GetDateFormatW
0x6d80c8 TlsGetValue
0x6d80cc SetErrorMode
0x6d80d0 GetComputerNameW
0x6d80d4 IsValidLocale
0x6d80d8 TlsSetValue
0x6d80dc CreateDirectoryW
0x6d80e0 GetOverlappedResult
0x6d80e4 GetSystemDefaultUILanguage
0x6d80e8 EnumCalendarInfoW
0x6d80ec GetProfileStringW
0x6d80f0 LocalAlloc
0x6d80f4 GetUserDefaultLangID
0x6d80f8 RemoveDirectoryW
0x6d80fc IsDBCSLeadByte
0x6d8100 CreateEventW
0x6d8104 GetPrivateProfileStringW
0x6d8108 WaitForMultipleObjectsEx
0x6d810c GetThreadLocale
0x6d8110 SetThreadLocale
ole32.dll
0x6d8118 StgCreateDocfileOnILockBytes
0x6d811c CoCreateInstance
0x6d8120 CLSIDFromString
0x6d8124 CoUninitialize
0x6d8128 IsEqualGUID
0x6d812c OleInitialize
0x6d8130 CoFreeUnusedLibraries
0x6d8134 CreateILockBytesOnHGlobal
0x6d8138 CLSIDFromProgID
0x6d813c OleUninitialize
0x6d8140 CoDisconnectObject
0x6d8144 CoInitialize
0x6d8148 CoTaskMemFree
0x6d814c CoTaskMemAlloc
0x6d8150 StringFromCLSID
gdi32.dll
0x6d8158 Arc
0x6d815c Pie
0x6d8160 SetBkMode
0x6d8164 SelectPalette
0x6d8168 CreateCompatibleBitmap
0x6d816c ExcludeClipRect
0x6d8170 RectVisible
0x6d8174 SetWindowOrgEx
0x6d8178 MaskBlt
0x6d817c AngleArc
0x6d8180 Chord
0x6d8184 SetTextColor
0x6d8188 StretchBlt
0x6d818c SetDIBits
0x6d8190 SetViewportOrgEx
0x6d8194 CreateRectRgn
0x6d8198 RealizePalette
0x6d819c SetDIBColorTable
0x6d81a0 GetDIBColorTable
0x6d81a4 RoundRect
0x6d81a8 RestoreDC
0x6d81ac SetRectRgn
0x6d81b0 GetTextMetricsW
0x6d81b4 RemoveFontResourceW
0x6d81b8 GetWindowOrgEx
0x6d81bc CreatePalette
0x6d81c0 CreateBrushIndirect
0x6d81c4 PatBlt
0x6d81c8 LineDDA
0x6d81cc PolyBezierTo
0x6d81d0 GetStockObject
0x6d81d4 CreateSolidBrush
0x6d81d8 Polygon
0x6d81dc Rectangle
0x6d81e0 MoveToEx
0x6d81e4 DeleteDC
0x6d81e8 SaveDC
0x6d81ec BitBlt
0x6d81f0 Ellipse
0x6d81f4 FrameRgn
0x6d81f8 GetDeviceCaps
0x6d81fc GetBitmapBits
0x6d8200 GetTextExtentPoint32W
0x6d8204 GetClipBox
0x6d8208 Polyline
0x6d820c IntersectClipRect
0x6d8210 GetSystemPaletteEntries
0x6d8214 CreateBitmap
0x6d8218 AddFontResourceW
0x6d821c CreateDIBitmap
0x6d8220 GetStretchBltMode
0x6d8224 CreateDIBSection
0x6d8228 CreatePenIndirect
0x6d822c SetStretchBltMode
0x6d8230 GetDIBits
0x6d8234 CreateFontIndirectW
0x6d8238 PolyBezier
0x6d823c LineTo
0x6d8240 GetRgnBox
0x6d8244 EnumFontsW
0x6d8248 CreateHalftonePalette
0x6d824c DeleteObject
0x6d8250 SelectObject
0x6d8254 ExtFloodFill
0x6d8258 UnrealizeObject
0x6d825c SetBkColor
0x6d8260 CreateCompatibleDC
0x6d8264 GetObjectW
0x6d8268 GetBrushOrgEx
0x6d826c GetCurrentPositionEx
0x6d8270 SetROP2
0x6d8274 GetTextExtentPointW
0x6d8278 ExtTextOutW
0x6d827c SetBrushOrgEx
0x6d8280 GetPixel
0x6d8284 ArcTo
0x6d8288 GdiFlush
0x6d828c SetPixel
0x6d8290 EnumFontFamiliesExW
0x6d8294 GetPaletteEntries
EAT(Export Address Table) Library
0x4b5e60 TMethodImplementationIntercept
0x410a7c __dbk_fcall_wrapper
0x6d2640 dbkFCallWrapperAddr