ScreenShot
| Created | 2024.08.25 18:53 | Machine | s1_win7_x6403 |
| Filename | 66c866840e631_Indentif.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 27 detected (AIDetectMalware, SleepObf, Malicious, score, Vyy5, GenericKD, a variant of Generik, IWXIQMW, MalwareX, Undefined, CLOUD, mxfov, Detected, Casdet, HSNWLP, Chgt, Dkjl) | ||
| md5 | 4dff7e34dcd2f430bf816ec4b25a9dbc | ||
| sha256 | 6ce52f1764a1ea1e39d4484e39e3d4f494c6b29faf8f676b684f7428cf9fa33a | ||
| ssdeep | 98304:ok8Moeo9VZ4odf8an8U/J1vD3NSPUv3KWQSy+Bk:d8Moeo9VZLf80vRlfKkhBk | ||
| imphash | 566b19b5ac294f4a1afe5e76da03206c | ||
| impfuzzy | 192:occFuuRuuNwEUh99KcoSN5mLIPcjRZmaF9hW3U1Rm/h6POQHxxS/:SuiN+9UX0Pim0DWk1RNPOQHxM/ | ||
Network IP location
Signature (5cnts)
| Level | Description |
|---|---|
| warning | File has been identified by 27 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Foreign language identified in PE resource |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_2_Zero | Win32 Trojan Emotet | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
oleaut32.dll
0xa684c8 SysFreeString
0xa684d0 SysReAllocStringLen
0xa684d8 SysAllocStringLen
advapi32.dll
0xa684e8 RegQueryValueExW
0xa684f0 RegOpenKeyExW
0xa684f8 RegCloseKey
user32.dll
0xa68508 CharNextW
0xa68510 LoadStringW
kernel32.dll
0xa68520 Sleep
0xa68528 VirtualFree
0xa68530 VirtualAlloc
0xa68538 lstrlenW
0xa68540 VirtualQuery
0xa68548 QueryPerformanceCounter
0xa68550 GetTickCount
0xa68558 GetSystemInfo
0xa68560 GetVersion
0xa68568 CompareStringW
0xa68570 IsValidLocale
0xa68578 SetThreadLocale
0xa68580 GetSystemDefaultUILanguage
0xa68588 GetUserDefaultUILanguage
0xa68590 GetLocaleInfoW
0xa68598 WideCharToMultiByte
0xa685a0 MultiByteToWideChar
0xa685a8 GetACP
0xa685b0 LoadLibraryExW
0xa685b8 GetStartupInfoW
0xa685c0 GetProcAddress
0xa685c8 GetModuleHandleW
0xa685d0 GetModuleFileNameW
0xa685d8 GetCommandLineW
0xa685e0 FreeLibrary
0xa685e8 GetLastError
0xa685f0 UnhandledExceptionFilter
0xa685f8 RtlUnwindEx
0xa68600 RtlUnwind
0xa68608 RaiseException
0xa68610 ExitProcess
0xa68618 ExitThread
0xa68620 SwitchToThread
0xa68628 GetCurrentThreadId
0xa68630 CreateThread
0xa68638 DeleteCriticalSection
0xa68640 LeaveCriticalSection
0xa68648 EnterCriticalSection
0xa68650 InitializeCriticalSection
0xa68658 FindFirstFileW
0xa68660 FindClose
0xa68668 WriteFile
0xa68670 GetStdHandle
0xa68678 CloseHandle
kernel32.dll
0xa68688 GetProcAddress
0xa68690 RaiseException
0xa68698 LoadLibraryA
0xa686a0 GetLastError
0xa686a8 TlsSetValue
0xa686b0 TlsGetValue
0xa686b8 LocalFree
0xa686c0 LocalAlloc
0xa686c8 GetModuleHandleW
0xa686d0 FreeLibrary
user32.dll
0xa686e0 SetClassLongPtrW
0xa686e8 GetClassLongPtrW
0xa686f0 SetWindowLongPtrW
0xa686f8 GetWindowLongPtrW
0xa68700 CreateWindowExW
0xa68708 WindowFromPoint
0xa68710 WaitMessage
0xa68718 UpdateWindow
0xa68720 UnregisterClassW
0xa68728 UnhookWindowsHookEx
0xa68730 TranslateMessage
0xa68738 TranslateMDISysAccel
0xa68740 TrackPopupMenu
0xa68748 SystemParametersInfoW
0xa68750 ShowWindow
0xa68758 ShowScrollBar
0xa68760 ShowOwnedPopups
0xa68768 ShowCaret
0xa68770 SetWindowRgn
0xa68778 SetWindowsHookExW
0xa68780 SetWindowTextW
0xa68788 SetWindowPos
0xa68790 SetWindowPlacement
0xa68798 SetTimer
0xa687a0 SetScrollRange
0xa687a8 SetScrollPos
0xa687b0 SetScrollInfo
0xa687b8 SetRect
0xa687c0 SetPropW
0xa687c8 SetParent
0xa687d0 SetMenuItemInfoW
0xa687d8 SetMenu
0xa687e0 SetForegroundWindow
0xa687e8 SetFocus
0xa687f0 SetCursorPos
0xa687f8 SetCursor
0xa68800 SetClipboardData
0xa68808 SetCapture
0xa68810 SetActiveWindow
0xa68818 SendMessageA
0xa68820 SendMessageW
0xa68828 ScrollWindow
0xa68830 ScreenToClient
0xa68838 RemovePropW
0xa68840 RemoveMenu
0xa68848 ReleaseDC
0xa68850 ReleaseCapture
0xa68858 RegisterWindowMessageW
0xa68860 RegisterClipboardFormatW
0xa68868 RegisterClassW
0xa68870 RedrawWindow
0xa68878 PostQuitMessage
0xa68880 PostMessageW
0xa68888 PeekMessageA
0xa68890 PeekMessageW
0xa68898 OpenClipboard
0xa688a0 MsgWaitForMultipleObjectsEx
0xa688a8 MsgWaitForMultipleObjects
0xa688b0 MessageBoxW
0xa688b8 MessageBeep
0xa688c0 MapWindowPoints
0xa688c8 MapVirtualKeyW
0xa688d0 LoadStringW
0xa688d8 LoadKeyboardLayoutW
0xa688e0 LoadIconW
0xa688e8 LoadCursorW
0xa688f0 LoadBitmapW
0xa688f8 KillTimer
0xa68900 IsZoomed
0xa68908 IsWindowVisible
0xa68910 IsWindowUnicode
0xa68918 IsWindowEnabled
0xa68920 IsWindow
0xa68928 IsIconic
0xa68930 IsDialogMessageA
0xa68938 IsDialogMessageW
0xa68940 IsClipboardFormatAvailable
0xa68948 IsChild
0xa68950 InvalidateRect
0xa68958 IntersectRect
0xa68960 InsertMenuItemW
0xa68968 InsertMenuW
0xa68970 InflateRect
0xa68978 HideCaret
0xa68980 GetWindowThreadProcessId
0xa68988 GetWindowTextW
0xa68990 GetWindowRect
0xa68998 GetWindowPlacement
0xa689a0 GetWindowDC
0xa689a8 GetTopWindow
0xa689b0 GetSystemMetrics
0xa689b8 GetSystemMenu
0xa689c0 GetSysColorBrush
0xa689c8 GetSysColor
0xa689d0 GetSubMenu
0xa689d8 GetScrollRange
0xa689e0 GetScrollPos
0xa689e8 GetScrollInfo
0xa689f0 GetScrollBarInfo
0xa689f8 GetPropW
0xa68a00 GetParent
0xa68a08 GetWindow
0xa68a10 GetMessagePos
0xa68a18 GetMessageExtraInfo
0xa68a20 GetMenuStringW
0xa68a28 GetMenuState
0xa68a30 GetMenuItemInfoW
0xa68a38 GetMenuItemID
0xa68a40 GetMenuItemCount
0xa68a48 GetMenu
0xa68a50 GetLastActivePopup
0xa68a58 GetKeyboardState
0xa68a60 GetKeyboardLayoutNameW
0xa68a68 GetKeyboardLayoutList
0xa68a70 GetKeyboardLayout
0xa68a78 GetKeyState
0xa68a80 GetKeyNameTextW
0xa68a88 GetIconInfo
0xa68a90 GetForegroundWindow
0xa68a98 GetFocus
0xa68aa0 GetDlgCtrlID
0xa68aa8 GetDesktopWindow
0xa68ab0 GetDCEx
0xa68ab8 GetDC
0xa68ac0 GetCursorPos
0xa68ac8 GetCursor
0xa68ad0 GetClipboardData
0xa68ad8 GetClientRect
0xa68ae0 GetClassNameW
0xa68ae8 GetClassInfoExW
0xa68af0 GetClassInfoW
0xa68af8 GetCapture
0xa68b00 GetActiveWindow
0xa68b08 FrameRect
0xa68b10 FindWindowExW
0xa68b18 FindWindowW
0xa68b20 FillRect
0xa68b28 EnumWindows
0xa68b30 EnumThreadWindows
0xa68b38 EnumClipboardFormats
0xa68b40 EnumChildWindows
0xa68b48 EndPaint
0xa68b50 EndMenu
0xa68b58 EnableWindow
0xa68b60 EnableScrollBar
0xa68b68 EnableMenuItem
0xa68b70 EmptyClipboard
0xa68b78 DrawTextExW
0xa68b80 DrawTextW
0xa68b88 DrawMenuBar
0xa68b90 DrawIconEx
0xa68b98 DrawIcon
0xa68ba0 DrawFrameControl
0xa68ba8 DrawFocusRect
0xa68bb0 DrawEdge
0xa68bb8 DispatchMessageA
0xa68bc0 DispatchMessageW
0xa68bc8 DestroyWindow
0xa68bd0 DestroyMenu
0xa68bd8 DestroyIcon
0xa68be0 DestroyCursor
0xa68be8 DeleteMenu
0xa68bf0 DefWindowProcW
0xa68bf8 DefMDIChildProcW
0xa68c00 DefFrameProcW
0xa68c08 CreatePopupMenu
0xa68c10 CreateMenu
0xa68c18 CreateIcon
0xa68c20 CreateAcceleratorTableW
0xa68c28 CountClipboardFormats
0xa68c30 CopyImage
0xa68c38 CopyIcon
0xa68c40 CloseClipboard
0xa68c48 ClientToScreen
0xa68c50 CheckMenuItem
0xa68c58 CharUpperBuffW
0xa68c60 CharUpperW
0xa68c68 CharNextW
0xa68c70 CharLowerBuffW
0xa68c78 CharLowerW
0xa68c80 CallWindowProcW
0xa68c88 CallNextHookEx
0xa68c90 BeginPaint
0xa68c98 AdjustWindowRectEx
0xa68ca0 ActivateKeyboardLayout
gdi32.dll
0xa68cb0 WidenPath
0xa68cb8 UnrealizeObject
0xa68cc0 TextOutW
0xa68cc8 StrokePath
0xa68cd0 StrokeAndFillPath
0xa68cd8 StretchDIBits
0xa68ce0 StretchBlt
0xa68ce8 StartPage
0xa68cf0 StartDocW
0xa68cf8 SetWindowOrgEx
0xa68d00 SetWindowExtEx
0xa68d08 SetWinMetaFileBits
0xa68d10 SetViewportOrgEx
0xa68d18 SetViewportExtEx
0xa68d20 SetTextCharacterExtra
0xa68d28 SetTextColor
0xa68d30 SetTextAlign
0xa68d38 SetStretchBltMode
0xa68d40 SetRectRgn
0xa68d48 SetROP2
0xa68d50 SetPixel
0xa68d58 SetMapMode
0xa68d60 SetGraphicsMode
0xa68d68 SetEnhMetaFileBits
0xa68d70 SetDIBits
0xa68d78 SetDIBColorTable
0xa68d80 SetBrushOrgEx
0xa68d88 SetBkMode
0xa68d90 SetBkColor
0xa68d98 SetArcDirection
0xa68da0 SetAbortProc
0xa68da8 SelectPalette
0xa68db0 SelectObject
0xa68db8 SelectClipRgn
0xa68dc0 SelectClipPath
0xa68dc8 SaveDC
0xa68dd0 RoundRect
0xa68dd8 RestoreDC
0xa68de0 ResizePalette
0xa68de8 Rectangle
0xa68df0 RectVisible
0xa68df8 RealizePalette
0xa68e00 PtVisible
0xa68e08 PolylineTo
0xa68e10 Polyline
0xa68e18 Polygon
0xa68e20 PolyBezierTo
0xa68e28 PolyBezier
0xa68e30 PlayEnhMetaFile
0xa68e38 Pie
0xa68e40 PathToRegion
0xa68e48 PatBlt
0xa68e50 MoveToEx
0xa68e58 MaskBlt
0xa68e60 LineTo
0xa68e68 LPtoDP
0xa68e70 IntersectClipRect
0xa68e78 GetWindowOrgEx
0xa68e80 GetWinMetaFileBits
0xa68e88 GetTextMetricsW
0xa68e90 GetTextExtentPointW
0xa68e98 GetTextExtentPoint32W
0xa68ea0 GetTextCharacterExtra
0xa68ea8 GetTextAlign
0xa68eb0 GetSystemPaletteEntries
0xa68eb8 GetStockObject
0xa68ec0 GetRgnBox
0xa68ec8 GetPixel
0xa68ed0 GetPaletteEntries
0xa68ed8 GetObjectA
0xa68ee0 GetObjectW
0xa68ee8 GetNearestPaletteIndex
0xa68ef0 GetMapMode
0xa68ef8 GetEnhMetaFilePaletteEntries
0xa68f00 GetEnhMetaFileHeader
0xa68f08 GetEnhMetaFileDescriptionW
0xa68f10 GetEnhMetaFileBits
0xa68f18 GetDeviceCaps
0xa68f20 GetDIBits
0xa68f28 GetDIBColorTable
0xa68f30 GetCurrentPositionEx
0xa68f38 GetClipRgn
0xa68f40 GetClipBox
0xa68f48 GetBrushOrgEx
0xa68f50 GetBkMode
0xa68f58 GetBkColor
0xa68f60 GetBitmapBits
0xa68f68 GdiFlush
0xa68f70 FrameRgn
0xa68f78 FillPath
0xa68f80 ExtTextOutW
0xa68f88 ExtSelectClipRgn
0xa68f90 ExtFloodFill
0xa68f98 ExtCreatePen
0xa68fa0 ExcludeClipRect
0xa68fa8 EnumFontsW
0xa68fb0 EnumFontFamiliesExW
0xa68fb8 EndPath
0xa68fc0 EndPage
0xa68fc8 EndDoc
0xa68fd0 Ellipse
0xa68fd8 DeleteObject
0xa68fe0 DeleteEnhMetaFile
0xa68fe8 DeleteDC
0xa68ff0 CreateSolidBrush
0xa68ff8 CreateRoundRectRgn
0xa69000 CreateRectRgn
0xa69008 CreatePolygonRgn
0xa69010 CreatePenIndirect
0xa69018 CreatePalette
0xa69020 CreateICW
0xa69028 CreateHalftonePalette
0xa69030 CreateFontIndirectW
0xa69038 CreateEnhMetaFileW
0xa69040 CreateEllipticRgnIndirect
0xa69048 CreateDIBitmap
0xa69050 CreateDIBSection
0xa69058 CreateDCW
0xa69060 CreateCompatibleDC
0xa69068 CreateCompatibleBitmap
0xa69070 CreateBrushIndirect
0xa69078 CreateBitmap
0xa69080 CopyEnhMetaFileW
0xa69088 CloseFigure
0xa69090 CloseEnhMetaFile
0xa69098 Chord
0xa690a0 BitBlt
0xa690a8 BeginPath
0xa690b0 ArcTo
0xa690b8 Arc
0xa690c0 AngleArc
0xa690c8 AbortDoc
version.dll
0xa690d8 VerQueryValueW
0xa690e0 GetFileVersionInfoSizeW
0xa690e8 GetFileVersionInfoW
kernel32.dll
0xa690f8 WritePrivateProfileStringW
0xa69100 WriteFile
0xa69108 WideCharToMultiByte
0xa69110 WaitForSingleObject
0xa69118 WaitForMultipleObjectsEx
0xa69120 VirtualQueryEx
0xa69128 VirtualQuery
0xa69130 VirtualProtect
0xa69138 VirtualFree
0xa69140 VirtualAlloc
0xa69148 VerSetConditionMask
0xa69150 VerifyVersionInfoW
0xa69158 UnmapViewOfFile
0xa69160 TryEnterCriticalSection
0xa69168 SwitchToThread
0xa69170 SuspendThread
0xa69178 Sleep
0xa69180 SizeofResource
0xa69188 SetThreadPriority
0xa69190 SetThreadLocale
0xa69198 SetLastError
0xa691a0 SetFilePointer
0xa691a8 SetEvent
0xa691b0 SetErrorMode
0xa691b8 SetEndOfFile
0xa691c0 ResumeThread
0xa691c8 ResetEvent
0xa691d0 RemoveDirectoryW
0xa691d8 ReadFile
0xa691e0 RaiseException
0xa691e8 QueryPerformanceFrequency
0xa691f0 QueryPerformanceCounter
0xa691f8 QueryDosDeviceW
0xa69200 IsDebuggerPresent
0xa69208 MulDiv
0xa69210 MapViewOfFile
0xa69218 LockResource
0xa69220 LocalFree
0xa69228 LoadResource
0xa69230 LoadLibraryW
0xa69238 LeaveCriticalSection
0xa69240 IsValidLocale
0xa69248 InitializeCriticalSection
0xa69250 HeapSize
0xa69258 HeapFree
0xa69260 HeapDestroy
0xa69268 HeapCreate
0xa69270 HeapAlloc
0xa69278 GlobalUnlock
0xa69280 GlobalSize
0xa69288 GlobalHandle
0xa69290 GlobalLock
0xa69298 GlobalFree
0xa692a0 GlobalFindAtomW
0xa692a8 GlobalDeleteAtom
0xa692b0 GlobalAlloc
0xa692b8 GlobalAddAtomW
0xa692c0 GetVolumeInformationW
0xa692c8 GetVersionExW
0xa692d0 GetVersion
0xa692d8 GetTimeZoneInformation
0xa692e0 GetTickCount
0xa692e8 GetThreadPriority
0xa692f0 GetThreadLocale
0xa692f8 GetTempPathW
0xa69300 GetTempFileNameW
0xa69308 GetSystemDirectoryW
0xa69310 GetStdHandle
0xa69318 GetProcAddress
0xa69320 GetPrivateProfileStringW
0xa69328 GetModuleHandleW
0xa69330 GetModuleFileNameW
0xa69338 GetLogicalDriveStringsW
0xa69340 GetLocaleInfoW
0xa69348 GetLocalTime
0xa69350 GetLastError
0xa69358 GetFullPathNameW
0xa69360 GetFileSize
0xa69368 GetFileAttributesExW
0xa69370 GetFileAttributesW
0xa69378 GetExitCodeThread
0xa69380 GetDriveTypeW
0xa69388 GetDiskFreeSpaceW
0xa69390 GetDateFormatW
0xa69398 GetCurrentThreadId
0xa693a0 GetCurrentThread
0xa693a8 GetCurrentProcessId
0xa693b0 GetCurrentProcess
0xa693b8 GetComputerNameW
0xa693c0 GetCPInfoExW
0xa693c8 GetCPInfo
0xa693d0 GetACP
0xa693d8 FreeResource
0xa693e0 FreeLibrary
0xa693e8 FormatMessageW
0xa693f0 FindResourceW
0xa693f8 FindNextFileW
0xa69400 FindFirstFileW
0xa69408 FindClose
0xa69410 FileTimeToSystemTime
0xa69418 FileTimeToLocalFileTime
0xa69420 FileTimeToDosDateTime
0xa69428 EnumSystemLocalesW
0xa69430 EnumResourceNamesW
0xa69438 EnumCalendarInfoW
0xa69440 EnterCriticalSection
0xa69448 DeleteFileW
0xa69450 DeleteCriticalSection
0xa69458 CreateThread
0xa69460 CreateFileMappingW
0xa69468 CreateFileW
0xa69470 CreateEventW
0xa69478 CreateDirectoryW
0xa69480 CopyFileW
0xa69488 CompareStringA
0xa69490 CompareStringW
0xa69498 CloseHandle
advapi32.dll
0xa694a8 RegUnLoadKeyW
0xa694b0 RegSetValueExW
0xa694b8 RegSaveKeyW
0xa694c0 RegRestoreKeyW
0xa694c8 RegReplaceKeyW
0xa694d0 RegQueryValueExW
0xa694d8 RegQueryInfoKeyW
0xa694e0 RegOpenKeyExW
0xa694e8 RegLoadKeyW
0xa694f0 RegFlushKey
0xa694f8 RegEnumValueW
0xa69500 RegEnumKeyExW
0xa69508 RegDeleteValueW
0xa69510 RegDeleteKeyW
0xa69518 RegCreateKeyExW
0xa69520 RegConnectRegistryW
0xa69528 RegCloseKey
kernel32.dll
0xa69538 Sleep
oleaut32.dll
0xa69548 SafeArrayPtrOfIndex
0xa69550 SafeArrayGetUBound
0xa69558 SafeArrayGetLBound
0xa69560 SafeArrayCreate
0xa69568 VariantChangeType
0xa69570 VariantCopy
0xa69578 VariantClear
0xa69580 VariantInit
oleaut32.dll
0xa69590 GetErrorInfo
0xa69598 SysFreeString
ole32.dll
0xa695a8 OleUninitialize
0xa695b0 OleInitialize
0xa695b8 CoTaskMemFree
0xa695c0 CoTaskMemAlloc
0xa695c8 CoCreateInstance
0xa695d0 CoUninitialize
0xa695d8 CoInitialize
0xa695e0 IsEqualGUID
comctl32.dll
0xa695f0 InitializeFlatSB
0xa695f8 FlatSB_SetScrollProp
0xa69600 FlatSB_SetScrollPos
0xa69608 FlatSB_SetScrollInfo
0xa69610 FlatSB_GetScrollPos
0xa69618 FlatSB_GetScrollInfo
0xa69620 _TrackMouseEvent
0xa69628 ImageList_GetImageInfo
0xa69630 ImageList_SetIconSize
0xa69638 ImageList_GetIconSize
0xa69640 ImageList_Write
0xa69648 ImageList_Read
0xa69650 ImageList_GetDragImage
0xa69658 ImageList_DragShowNolock
0xa69660 ImageList_DragMove
0xa69668 ImageList_DragLeave
0xa69670 ImageList_DragEnter
0xa69678 ImageList_EndDrag
0xa69680 ImageList_BeginDrag
0xa69688 ImageList_Copy
0xa69690 ImageList_LoadImageW
0xa69698 ImageList_GetIcon
0xa696a0 ImageList_Remove
0xa696a8 ImageList_DrawEx
0xa696b0 ImageList_Replace
0xa696b8 ImageList_Draw
0xa696c0 ImageList_SetOverlayImage
0xa696c8 ImageList_GetBkColor
0xa696d0 ImageList_SetBkColor
0xa696d8 ImageList_ReplaceIcon
0xa696e0 ImageList_Add
0xa696e8 ImageList_SetImageCount
0xa696f0 ImageList_GetImageCount
0xa696f8 ImageList_Destroy
0xa69700 ImageList_Create
user32.dll
0xa69710 EnumDisplayMonitors
0xa69718 GetMonitorInfoW
0xa69720 MonitorFromPoint
0xa69728 MonitorFromRect
0xa69730 MonitorFromWindow
msvcrt.dll
0xa69740 memset
0xa69748 memcpy
shell32.dll
0xa69758 Shell_NotifyIconW
shell32.dll
0xa69768 SHGetSpecialFolderPathW
winspool.drv
0xa69778 OpenPrinterW
0xa69780 EnumPrintersW
0xa69788 DocumentPropertiesW
0xa69790 ClosePrinter
winspool.drv
0xa697a0 GetDefaultPrinterW
winmm.dll
0xa697b0 timeGetTime
EAT(Export Address Table) Library
0x49b1e0 TMethodImplementationIntercept
0x417a30 __dbk_fcall_wrapper
0xa5ef58 dbkFCallWrapperAddr
oleaut32.dll
0xa684c8 SysFreeString
0xa684d0 SysReAllocStringLen
0xa684d8 SysAllocStringLen
advapi32.dll
0xa684e8 RegQueryValueExW
0xa684f0 RegOpenKeyExW
0xa684f8 RegCloseKey
user32.dll
0xa68508 CharNextW
0xa68510 LoadStringW
kernel32.dll
0xa68520 Sleep
0xa68528 VirtualFree
0xa68530 VirtualAlloc
0xa68538 lstrlenW
0xa68540 VirtualQuery
0xa68548 QueryPerformanceCounter
0xa68550 GetTickCount
0xa68558 GetSystemInfo
0xa68560 GetVersion
0xa68568 CompareStringW
0xa68570 IsValidLocale
0xa68578 SetThreadLocale
0xa68580 GetSystemDefaultUILanguage
0xa68588 GetUserDefaultUILanguage
0xa68590 GetLocaleInfoW
0xa68598 WideCharToMultiByte
0xa685a0 MultiByteToWideChar
0xa685a8 GetACP
0xa685b0 LoadLibraryExW
0xa685b8 GetStartupInfoW
0xa685c0 GetProcAddress
0xa685c8 GetModuleHandleW
0xa685d0 GetModuleFileNameW
0xa685d8 GetCommandLineW
0xa685e0 FreeLibrary
0xa685e8 GetLastError
0xa685f0 UnhandledExceptionFilter
0xa685f8 RtlUnwindEx
0xa68600 RtlUnwind
0xa68608 RaiseException
0xa68610 ExitProcess
0xa68618 ExitThread
0xa68620 SwitchToThread
0xa68628 GetCurrentThreadId
0xa68630 CreateThread
0xa68638 DeleteCriticalSection
0xa68640 LeaveCriticalSection
0xa68648 EnterCriticalSection
0xa68650 InitializeCriticalSection
0xa68658 FindFirstFileW
0xa68660 FindClose
0xa68668 WriteFile
0xa68670 GetStdHandle
0xa68678 CloseHandle
kernel32.dll
0xa68688 GetProcAddress
0xa68690 RaiseException
0xa68698 LoadLibraryA
0xa686a0 GetLastError
0xa686a8 TlsSetValue
0xa686b0 TlsGetValue
0xa686b8 LocalFree
0xa686c0 LocalAlloc
0xa686c8 GetModuleHandleW
0xa686d0 FreeLibrary
user32.dll
0xa686e0 SetClassLongPtrW
0xa686e8 GetClassLongPtrW
0xa686f0 SetWindowLongPtrW
0xa686f8 GetWindowLongPtrW
0xa68700 CreateWindowExW
0xa68708 WindowFromPoint
0xa68710 WaitMessage
0xa68718 UpdateWindow
0xa68720 UnregisterClassW
0xa68728 UnhookWindowsHookEx
0xa68730 TranslateMessage
0xa68738 TranslateMDISysAccel
0xa68740 TrackPopupMenu
0xa68748 SystemParametersInfoW
0xa68750 ShowWindow
0xa68758 ShowScrollBar
0xa68760 ShowOwnedPopups
0xa68768 ShowCaret
0xa68770 SetWindowRgn
0xa68778 SetWindowsHookExW
0xa68780 SetWindowTextW
0xa68788 SetWindowPos
0xa68790 SetWindowPlacement
0xa68798 SetTimer
0xa687a0 SetScrollRange
0xa687a8 SetScrollPos
0xa687b0 SetScrollInfo
0xa687b8 SetRect
0xa687c0 SetPropW
0xa687c8 SetParent
0xa687d0 SetMenuItemInfoW
0xa687d8 SetMenu
0xa687e0 SetForegroundWindow
0xa687e8 SetFocus
0xa687f0 SetCursorPos
0xa687f8 SetCursor
0xa68800 SetClipboardData
0xa68808 SetCapture
0xa68810 SetActiveWindow
0xa68818 SendMessageA
0xa68820 SendMessageW
0xa68828 ScrollWindow
0xa68830 ScreenToClient
0xa68838 RemovePropW
0xa68840 RemoveMenu
0xa68848 ReleaseDC
0xa68850 ReleaseCapture
0xa68858 RegisterWindowMessageW
0xa68860 RegisterClipboardFormatW
0xa68868 RegisterClassW
0xa68870 RedrawWindow
0xa68878 PostQuitMessage
0xa68880 PostMessageW
0xa68888 PeekMessageA
0xa68890 PeekMessageW
0xa68898 OpenClipboard
0xa688a0 MsgWaitForMultipleObjectsEx
0xa688a8 MsgWaitForMultipleObjects
0xa688b0 MessageBoxW
0xa688b8 MessageBeep
0xa688c0 MapWindowPoints
0xa688c8 MapVirtualKeyW
0xa688d0 LoadStringW
0xa688d8 LoadKeyboardLayoutW
0xa688e0 LoadIconW
0xa688e8 LoadCursorW
0xa688f0 LoadBitmapW
0xa688f8 KillTimer
0xa68900 IsZoomed
0xa68908 IsWindowVisible
0xa68910 IsWindowUnicode
0xa68918 IsWindowEnabled
0xa68920 IsWindow
0xa68928 IsIconic
0xa68930 IsDialogMessageA
0xa68938 IsDialogMessageW
0xa68940 IsClipboardFormatAvailable
0xa68948 IsChild
0xa68950 InvalidateRect
0xa68958 IntersectRect
0xa68960 InsertMenuItemW
0xa68968 InsertMenuW
0xa68970 InflateRect
0xa68978 HideCaret
0xa68980 GetWindowThreadProcessId
0xa68988 GetWindowTextW
0xa68990 GetWindowRect
0xa68998 GetWindowPlacement
0xa689a0 GetWindowDC
0xa689a8 GetTopWindow
0xa689b0 GetSystemMetrics
0xa689b8 GetSystemMenu
0xa689c0 GetSysColorBrush
0xa689c8 GetSysColor
0xa689d0 GetSubMenu
0xa689d8 GetScrollRange
0xa689e0 GetScrollPos
0xa689e8 GetScrollInfo
0xa689f0 GetScrollBarInfo
0xa689f8 GetPropW
0xa68a00 GetParent
0xa68a08 GetWindow
0xa68a10 GetMessagePos
0xa68a18 GetMessageExtraInfo
0xa68a20 GetMenuStringW
0xa68a28 GetMenuState
0xa68a30 GetMenuItemInfoW
0xa68a38 GetMenuItemID
0xa68a40 GetMenuItemCount
0xa68a48 GetMenu
0xa68a50 GetLastActivePopup
0xa68a58 GetKeyboardState
0xa68a60 GetKeyboardLayoutNameW
0xa68a68 GetKeyboardLayoutList
0xa68a70 GetKeyboardLayout
0xa68a78 GetKeyState
0xa68a80 GetKeyNameTextW
0xa68a88 GetIconInfo
0xa68a90 GetForegroundWindow
0xa68a98 GetFocus
0xa68aa0 GetDlgCtrlID
0xa68aa8 GetDesktopWindow
0xa68ab0 GetDCEx
0xa68ab8 GetDC
0xa68ac0 GetCursorPos
0xa68ac8 GetCursor
0xa68ad0 GetClipboardData
0xa68ad8 GetClientRect
0xa68ae0 GetClassNameW
0xa68ae8 GetClassInfoExW
0xa68af0 GetClassInfoW
0xa68af8 GetCapture
0xa68b00 GetActiveWindow
0xa68b08 FrameRect
0xa68b10 FindWindowExW
0xa68b18 FindWindowW
0xa68b20 FillRect
0xa68b28 EnumWindows
0xa68b30 EnumThreadWindows
0xa68b38 EnumClipboardFormats
0xa68b40 EnumChildWindows
0xa68b48 EndPaint
0xa68b50 EndMenu
0xa68b58 EnableWindow
0xa68b60 EnableScrollBar
0xa68b68 EnableMenuItem
0xa68b70 EmptyClipboard
0xa68b78 DrawTextExW
0xa68b80 DrawTextW
0xa68b88 DrawMenuBar
0xa68b90 DrawIconEx
0xa68b98 DrawIcon
0xa68ba0 DrawFrameControl
0xa68ba8 DrawFocusRect
0xa68bb0 DrawEdge
0xa68bb8 DispatchMessageA
0xa68bc0 DispatchMessageW
0xa68bc8 DestroyWindow
0xa68bd0 DestroyMenu
0xa68bd8 DestroyIcon
0xa68be0 DestroyCursor
0xa68be8 DeleteMenu
0xa68bf0 DefWindowProcW
0xa68bf8 DefMDIChildProcW
0xa68c00 DefFrameProcW
0xa68c08 CreatePopupMenu
0xa68c10 CreateMenu
0xa68c18 CreateIcon
0xa68c20 CreateAcceleratorTableW
0xa68c28 CountClipboardFormats
0xa68c30 CopyImage
0xa68c38 CopyIcon
0xa68c40 CloseClipboard
0xa68c48 ClientToScreen
0xa68c50 CheckMenuItem
0xa68c58 CharUpperBuffW
0xa68c60 CharUpperW
0xa68c68 CharNextW
0xa68c70 CharLowerBuffW
0xa68c78 CharLowerW
0xa68c80 CallWindowProcW
0xa68c88 CallNextHookEx
0xa68c90 BeginPaint
0xa68c98 AdjustWindowRectEx
0xa68ca0 ActivateKeyboardLayout
gdi32.dll
0xa68cb0 WidenPath
0xa68cb8 UnrealizeObject
0xa68cc0 TextOutW
0xa68cc8 StrokePath
0xa68cd0 StrokeAndFillPath
0xa68cd8 StretchDIBits
0xa68ce0 StretchBlt
0xa68ce8 StartPage
0xa68cf0 StartDocW
0xa68cf8 SetWindowOrgEx
0xa68d00 SetWindowExtEx
0xa68d08 SetWinMetaFileBits
0xa68d10 SetViewportOrgEx
0xa68d18 SetViewportExtEx
0xa68d20 SetTextCharacterExtra
0xa68d28 SetTextColor
0xa68d30 SetTextAlign
0xa68d38 SetStretchBltMode
0xa68d40 SetRectRgn
0xa68d48 SetROP2
0xa68d50 SetPixel
0xa68d58 SetMapMode
0xa68d60 SetGraphicsMode
0xa68d68 SetEnhMetaFileBits
0xa68d70 SetDIBits
0xa68d78 SetDIBColorTable
0xa68d80 SetBrushOrgEx
0xa68d88 SetBkMode
0xa68d90 SetBkColor
0xa68d98 SetArcDirection
0xa68da0 SetAbortProc
0xa68da8 SelectPalette
0xa68db0 SelectObject
0xa68db8 SelectClipRgn
0xa68dc0 SelectClipPath
0xa68dc8 SaveDC
0xa68dd0 RoundRect
0xa68dd8 RestoreDC
0xa68de0 ResizePalette
0xa68de8 Rectangle
0xa68df0 RectVisible
0xa68df8 RealizePalette
0xa68e00 PtVisible
0xa68e08 PolylineTo
0xa68e10 Polyline
0xa68e18 Polygon
0xa68e20 PolyBezierTo
0xa68e28 PolyBezier
0xa68e30 PlayEnhMetaFile
0xa68e38 Pie
0xa68e40 PathToRegion
0xa68e48 PatBlt
0xa68e50 MoveToEx
0xa68e58 MaskBlt
0xa68e60 LineTo
0xa68e68 LPtoDP
0xa68e70 IntersectClipRect
0xa68e78 GetWindowOrgEx
0xa68e80 GetWinMetaFileBits
0xa68e88 GetTextMetricsW
0xa68e90 GetTextExtentPointW
0xa68e98 GetTextExtentPoint32W
0xa68ea0 GetTextCharacterExtra
0xa68ea8 GetTextAlign
0xa68eb0 GetSystemPaletteEntries
0xa68eb8 GetStockObject
0xa68ec0 GetRgnBox
0xa68ec8 GetPixel
0xa68ed0 GetPaletteEntries
0xa68ed8 GetObjectA
0xa68ee0 GetObjectW
0xa68ee8 GetNearestPaletteIndex
0xa68ef0 GetMapMode
0xa68ef8 GetEnhMetaFilePaletteEntries
0xa68f00 GetEnhMetaFileHeader
0xa68f08 GetEnhMetaFileDescriptionW
0xa68f10 GetEnhMetaFileBits
0xa68f18 GetDeviceCaps
0xa68f20 GetDIBits
0xa68f28 GetDIBColorTable
0xa68f30 GetCurrentPositionEx
0xa68f38 GetClipRgn
0xa68f40 GetClipBox
0xa68f48 GetBrushOrgEx
0xa68f50 GetBkMode
0xa68f58 GetBkColor
0xa68f60 GetBitmapBits
0xa68f68 GdiFlush
0xa68f70 FrameRgn
0xa68f78 FillPath
0xa68f80 ExtTextOutW
0xa68f88 ExtSelectClipRgn
0xa68f90 ExtFloodFill
0xa68f98 ExtCreatePen
0xa68fa0 ExcludeClipRect
0xa68fa8 EnumFontsW
0xa68fb0 EnumFontFamiliesExW
0xa68fb8 EndPath
0xa68fc0 EndPage
0xa68fc8 EndDoc
0xa68fd0 Ellipse
0xa68fd8 DeleteObject
0xa68fe0 DeleteEnhMetaFile
0xa68fe8 DeleteDC
0xa68ff0 CreateSolidBrush
0xa68ff8 CreateRoundRectRgn
0xa69000 CreateRectRgn
0xa69008 CreatePolygonRgn
0xa69010 CreatePenIndirect
0xa69018 CreatePalette
0xa69020 CreateICW
0xa69028 CreateHalftonePalette
0xa69030 CreateFontIndirectW
0xa69038 CreateEnhMetaFileW
0xa69040 CreateEllipticRgnIndirect
0xa69048 CreateDIBitmap
0xa69050 CreateDIBSection
0xa69058 CreateDCW
0xa69060 CreateCompatibleDC
0xa69068 CreateCompatibleBitmap
0xa69070 CreateBrushIndirect
0xa69078 CreateBitmap
0xa69080 CopyEnhMetaFileW
0xa69088 CloseFigure
0xa69090 CloseEnhMetaFile
0xa69098 Chord
0xa690a0 BitBlt
0xa690a8 BeginPath
0xa690b0 ArcTo
0xa690b8 Arc
0xa690c0 AngleArc
0xa690c8 AbortDoc
version.dll
0xa690d8 VerQueryValueW
0xa690e0 GetFileVersionInfoSizeW
0xa690e8 GetFileVersionInfoW
kernel32.dll
0xa690f8 WritePrivateProfileStringW
0xa69100 WriteFile
0xa69108 WideCharToMultiByte
0xa69110 WaitForSingleObject
0xa69118 WaitForMultipleObjectsEx
0xa69120 VirtualQueryEx
0xa69128 VirtualQuery
0xa69130 VirtualProtect
0xa69138 VirtualFree
0xa69140 VirtualAlloc
0xa69148 VerSetConditionMask
0xa69150 VerifyVersionInfoW
0xa69158 UnmapViewOfFile
0xa69160 TryEnterCriticalSection
0xa69168 SwitchToThread
0xa69170 SuspendThread
0xa69178 Sleep
0xa69180 SizeofResource
0xa69188 SetThreadPriority
0xa69190 SetThreadLocale
0xa69198 SetLastError
0xa691a0 SetFilePointer
0xa691a8 SetEvent
0xa691b0 SetErrorMode
0xa691b8 SetEndOfFile
0xa691c0 ResumeThread
0xa691c8 ResetEvent
0xa691d0 RemoveDirectoryW
0xa691d8 ReadFile
0xa691e0 RaiseException
0xa691e8 QueryPerformanceFrequency
0xa691f0 QueryPerformanceCounter
0xa691f8 QueryDosDeviceW
0xa69200 IsDebuggerPresent
0xa69208 MulDiv
0xa69210 MapViewOfFile
0xa69218 LockResource
0xa69220 LocalFree
0xa69228 LoadResource
0xa69230 LoadLibraryW
0xa69238 LeaveCriticalSection
0xa69240 IsValidLocale
0xa69248 InitializeCriticalSection
0xa69250 HeapSize
0xa69258 HeapFree
0xa69260 HeapDestroy
0xa69268 HeapCreate
0xa69270 HeapAlloc
0xa69278 GlobalUnlock
0xa69280 GlobalSize
0xa69288 GlobalHandle
0xa69290 GlobalLock
0xa69298 GlobalFree
0xa692a0 GlobalFindAtomW
0xa692a8 GlobalDeleteAtom
0xa692b0 GlobalAlloc
0xa692b8 GlobalAddAtomW
0xa692c0 GetVolumeInformationW
0xa692c8 GetVersionExW
0xa692d0 GetVersion
0xa692d8 GetTimeZoneInformation
0xa692e0 GetTickCount
0xa692e8 GetThreadPriority
0xa692f0 GetThreadLocale
0xa692f8 GetTempPathW
0xa69300 GetTempFileNameW
0xa69308 GetSystemDirectoryW
0xa69310 GetStdHandle
0xa69318 GetProcAddress
0xa69320 GetPrivateProfileStringW
0xa69328 GetModuleHandleW
0xa69330 GetModuleFileNameW
0xa69338 GetLogicalDriveStringsW
0xa69340 GetLocaleInfoW
0xa69348 GetLocalTime
0xa69350 GetLastError
0xa69358 GetFullPathNameW
0xa69360 GetFileSize
0xa69368 GetFileAttributesExW
0xa69370 GetFileAttributesW
0xa69378 GetExitCodeThread
0xa69380 GetDriveTypeW
0xa69388 GetDiskFreeSpaceW
0xa69390 GetDateFormatW
0xa69398 GetCurrentThreadId
0xa693a0 GetCurrentThread
0xa693a8 GetCurrentProcessId
0xa693b0 GetCurrentProcess
0xa693b8 GetComputerNameW
0xa693c0 GetCPInfoExW
0xa693c8 GetCPInfo
0xa693d0 GetACP
0xa693d8 FreeResource
0xa693e0 FreeLibrary
0xa693e8 FormatMessageW
0xa693f0 FindResourceW
0xa693f8 FindNextFileW
0xa69400 FindFirstFileW
0xa69408 FindClose
0xa69410 FileTimeToSystemTime
0xa69418 FileTimeToLocalFileTime
0xa69420 FileTimeToDosDateTime
0xa69428 EnumSystemLocalesW
0xa69430 EnumResourceNamesW
0xa69438 EnumCalendarInfoW
0xa69440 EnterCriticalSection
0xa69448 DeleteFileW
0xa69450 DeleteCriticalSection
0xa69458 CreateThread
0xa69460 CreateFileMappingW
0xa69468 CreateFileW
0xa69470 CreateEventW
0xa69478 CreateDirectoryW
0xa69480 CopyFileW
0xa69488 CompareStringA
0xa69490 CompareStringW
0xa69498 CloseHandle
advapi32.dll
0xa694a8 RegUnLoadKeyW
0xa694b0 RegSetValueExW
0xa694b8 RegSaveKeyW
0xa694c0 RegRestoreKeyW
0xa694c8 RegReplaceKeyW
0xa694d0 RegQueryValueExW
0xa694d8 RegQueryInfoKeyW
0xa694e0 RegOpenKeyExW
0xa694e8 RegLoadKeyW
0xa694f0 RegFlushKey
0xa694f8 RegEnumValueW
0xa69500 RegEnumKeyExW
0xa69508 RegDeleteValueW
0xa69510 RegDeleteKeyW
0xa69518 RegCreateKeyExW
0xa69520 RegConnectRegistryW
0xa69528 RegCloseKey
kernel32.dll
0xa69538 Sleep
oleaut32.dll
0xa69548 SafeArrayPtrOfIndex
0xa69550 SafeArrayGetUBound
0xa69558 SafeArrayGetLBound
0xa69560 SafeArrayCreate
0xa69568 VariantChangeType
0xa69570 VariantCopy
0xa69578 VariantClear
0xa69580 VariantInit
oleaut32.dll
0xa69590 GetErrorInfo
0xa69598 SysFreeString
ole32.dll
0xa695a8 OleUninitialize
0xa695b0 OleInitialize
0xa695b8 CoTaskMemFree
0xa695c0 CoTaskMemAlloc
0xa695c8 CoCreateInstance
0xa695d0 CoUninitialize
0xa695d8 CoInitialize
0xa695e0 IsEqualGUID
comctl32.dll
0xa695f0 InitializeFlatSB
0xa695f8 FlatSB_SetScrollProp
0xa69600 FlatSB_SetScrollPos
0xa69608 FlatSB_SetScrollInfo
0xa69610 FlatSB_GetScrollPos
0xa69618 FlatSB_GetScrollInfo
0xa69620 _TrackMouseEvent
0xa69628 ImageList_GetImageInfo
0xa69630 ImageList_SetIconSize
0xa69638 ImageList_GetIconSize
0xa69640 ImageList_Write
0xa69648 ImageList_Read
0xa69650 ImageList_GetDragImage
0xa69658 ImageList_DragShowNolock
0xa69660 ImageList_DragMove
0xa69668 ImageList_DragLeave
0xa69670 ImageList_DragEnter
0xa69678 ImageList_EndDrag
0xa69680 ImageList_BeginDrag
0xa69688 ImageList_Copy
0xa69690 ImageList_LoadImageW
0xa69698 ImageList_GetIcon
0xa696a0 ImageList_Remove
0xa696a8 ImageList_DrawEx
0xa696b0 ImageList_Replace
0xa696b8 ImageList_Draw
0xa696c0 ImageList_SetOverlayImage
0xa696c8 ImageList_GetBkColor
0xa696d0 ImageList_SetBkColor
0xa696d8 ImageList_ReplaceIcon
0xa696e0 ImageList_Add
0xa696e8 ImageList_SetImageCount
0xa696f0 ImageList_GetImageCount
0xa696f8 ImageList_Destroy
0xa69700 ImageList_Create
user32.dll
0xa69710 EnumDisplayMonitors
0xa69718 GetMonitorInfoW
0xa69720 MonitorFromPoint
0xa69728 MonitorFromRect
0xa69730 MonitorFromWindow
msvcrt.dll
0xa69740 memset
0xa69748 memcpy
shell32.dll
0xa69758 Shell_NotifyIconW
shell32.dll
0xa69768 SHGetSpecialFolderPathW
winspool.drv
0xa69778 OpenPrinterW
0xa69780 EnumPrintersW
0xa69788 DocumentPropertiesW
0xa69790 ClosePrinter
winspool.drv
0xa697a0 GetDefaultPrinterW
winmm.dll
0xa697b0 timeGetTime
EAT(Export Address Table) Library
0x49b1e0 TMethodImplementationIntercept
0x417a30 __dbk_fcall_wrapper
0xa5ef58 dbkFCallWrapperAddr