ScreenShot
| Created | 2024.09.04 10:19 | Machine | s1_win7_x6403 |
| Filename | 66d5edf357fbf_BitcoinCore.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score | Not founds | Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 23 detected (AIDetectMalware, SleepObf, GenericKD, Attribute, HighConfidence, malicious, high confidence, MalwareX, Kryptik@AI, RDML, FsYOWZDqT+LTdLR9FlO4sg, Detected, ai score=84, Wacatac, Delf) | ||
| md5 | 26dc83cd26d56041c731e497b96a8a73 | ||
| sha256 | b8927abe41a230bb684bcd01fa78d688ccf6c0df1c2177a46510b76df9f6ea6a | ||
| ssdeep | 98304:VMn0GMXcSmy3VNtIspTgHVf3U8WPK1MyvUfhsyUPMuOdQI:Vu0GBSmyesaHVEU8mLMu | ||
| imphash | 7b4ee4fbf146cc8e12b3508ce0a506fa | ||
| impfuzzy | 192:occPu+RuudXEUh994ORoSN5T6sCXF9ASH1Jh/h5PbOQE5E/Wxxw1X6jlmk:SuSdv943VVee1JVPbOQE5iWxK1xk | ||
Network IP location
Signature (5cnts)
| Level | Description |
|---|---|
| warning | File has been identified by 23 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Foreign language identified in PE resource |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (6cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
oleaut32.dll
0xda0500 SysFreeString
0xda0508 SysReAllocStringLen
0xda0510 SysAllocStringLen
advapi32.dll
0xda0520 RegQueryValueExW
0xda0528 RegOpenKeyExW
0xda0530 RegCloseKey
user32.dll
0xda0540 CharNextW
0xda0548 LoadStringW
kernel32.dll
0xda0558 Sleep
0xda0560 VirtualFree
0xda0568 VirtualAlloc
0xda0570 lstrlenW
0xda0578 VirtualQuery
0xda0580 QueryPerformanceCounter
0xda0588 GetTickCount
0xda0590 GetSystemInfo
0xda0598 GetVersion
0xda05a0 CompareStringW
0xda05a8 IsValidLocale
0xda05b0 SetThreadLocale
0xda05b8 GetSystemDefaultUILanguage
0xda05c0 GetUserDefaultUILanguage
0xda05c8 GetLocaleInfoW
0xda05d0 WideCharToMultiByte
0xda05d8 MultiByteToWideChar
0xda05e0 GetACP
0xda05e8 LoadLibraryExW
0xda05f0 GetStartupInfoW
0xda05f8 GetProcAddress
0xda0600 GetModuleHandleW
0xda0608 GetModuleFileNameW
0xda0610 GetCommandLineW
0xda0618 FindResourceW
0xda0620 FreeLibrary
0xda0628 GetLastError
0xda0630 UnhandledExceptionFilter
0xda0638 RtlUnwindEx
0xda0640 RtlUnwind
0xda0648 RaiseException
0xda0650 ExitProcess
0xda0658 ExitThread
0xda0660 SwitchToThread
0xda0668 GetCurrentThreadId
0xda0670 CreateThread
0xda0678 DeleteCriticalSection
0xda0680 LeaveCriticalSection
0xda0688 EnterCriticalSection
0xda0690 InitializeCriticalSection
0xda0698 FindFirstFileW
0xda06a0 FindClose
0xda06a8 WriteFile
0xda06b0 GetStdHandle
0xda06b8 CloseHandle
kernel32.dll
0xda06c8 GetProcAddress
0xda06d0 RaiseException
0xda06d8 LoadLibraryA
0xda06e0 GetLastError
0xda06e8 TlsSetValue
0xda06f0 TlsGetValue
0xda06f8 LocalFree
0xda0700 LocalAlloc
0xda0708 GetModuleHandleW
0xda0710 FreeLibrary
user32.dll
0xda0720 WINNLSEnableIME
0xda0728 SetClassLongPtrW
0xda0730 GetClassLongPtrW
0xda0738 SetWindowLongPtrW
0xda0740 GetWindowLongPtrW
0xda0748 CreateWindowExW
0xda0750 WindowFromPoint
0xda0758 WaitMessage
0xda0760 UpdateLayeredWindow
0xda0768 UpdateWindow
0xda0770 UnregisterClassW
0xda0778 UnhookWindowsHookEx
0xda0780 TranslateMessage
0xda0788 TranslateMDISysAccel
0xda0790 TrackPopupMenu
0xda0798 TrackMouseEvent
0xda07a0 SystemParametersInfoW
0xda07a8 ShowWindow
0xda07b0 ShowScrollBar
0xda07b8 ShowOwnedPopups
0xda07c0 ShowCaret
0xda07c8 SetWindowRgn
0xda07d0 SetWindowsHookExW
0xda07d8 SetWindowTextW
0xda07e0 SetWindowPos
0xda07e8 SetWindowPlacement
0xda07f0 SetTimer
0xda07f8 SetScrollRange
0xda0800 SetScrollPos
0xda0808 SetScrollInfo
0xda0810 SetRect
0xda0818 SetPropW
0xda0820 SetParent
0xda0828 SetMenuItemInfoW
0xda0830 SetMenu
0xda0838 SetForegroundWindow
0xda0840 SetFocus
0xda0848 SetCursorPos
0xda0850 SetCursor
0xda0858 SetClipboardData
0xda0860 SetCapture
0xda0868 SetActiveWindow
0xda0870 SendMessageTimeoutW
0xda0878 SendMessageA
0xda0880 SendMessageW
0xda0888 ScrollWindow
0xda0890 ScreenToClient
0xda0898 RemovePropW
0xda08a0 RemoveMenu
0xda08a8 ReleaseDC
0xda08b0 ReleaseCapture
0xda08b8 RegisterWindowMessageW
0xda08c0 RegisterClipboardFormatW
0xda08c8 RegisterClassW
0xda08d0 RedrawWindow
0xda08d8 PostQuitMessage
0xda08e0 PostMessageW
0xda08e8 PeekMessageA
0xda08f0 PeekMessageW
0xda08f8 OpenClipboard
0xda0900 MsgWaitForMultipleObjectsEx
0xda0908 MsgWaitForMultipleObjects
0xda0910 MessageBoxIndirectW
0xda0918 MessageBoxW
0xda0920 MessageBeep
0xda0928 MapWindowPoints
0xda0930 MapVirtualKeyW
0xda0938 LoadStringW
0xda0940 LoadKeyboardLayoutW
0xda0948 LoadIconW
0xda0950 LoadCursorW
0xda0958 LoadBitmapW
0xda0960 KillTimer
0xda0968 IsZoomed
0xda0970 IsWindowVisible
0xda0978 IsWindowUnicode
0xda0980 IsWindowEnabled
0xda0988 IsWindow
0xda0990 IsIconic
0xda0998 IsDialogMessageA
0xda09a0 IsDialogMessageW
0xda09a8 IsChild
0xda09b0 InvalidateRect
0xda09b8 InsertMenuItemW
0xda09c0 InsertMenuW
0xda09c8 HideCaret
0xda09d0 GetWindowThreadProcessId
0xda09d8 GetWindowTextLengthW
0xda09e0 GetWindowTextW
0xda09e8 GetWindowRect
0xda09f0 GetWindowPlacement
0xda09f8 GetWindowDC
0xda0a00 GetUpdateRgn
0xda0a08 GetUpdateRect
0xda0a10 GetTopWindow
0xda0a18 GetSystemMetrics
0xda0a20 GetSystemMenu
0xda0a28 GetSysColorBrush
0xda0a30 GetSysColor
0xda0a38 GetSubMenu
0xda0a40 GetScrollRange
0xda0a48 GetScrollPos
0xda0a50 GetScrollInfo
0xda0a58 GetScrollBarInfo
0xda0a60 GetPropW
0xda0a68 GetParent
0xda0a70 GetWindow
0xda0a78 GetMessagePos
0xda0a80 GetMessageExtraInfo
0xda0a88 GetMenuStringW
0xda0a90 GetMenuState
0xda0a98 GetMenuItemInfoW
0xda0aa0 GetMenuItemID
0xda0aa8 GetMenuItemCount
0xda0ab0 GetMenu
0xda0ab8 GetLastActivePopup
0xda0ac0 GetKeyboardState
0xda0ac8 GetKeyboardLayoutNameW
0xda0ad0 GetKeyboardLayoutList
0xda0ad8 GetKeyboardLayout
0xda0ae0 GetKeyState
0xda0ae8 GetKeyNameTextW
0xda0af0 GetIconInfo
0xda0af8 GetForegroundWindow
0xda0b00 GetFocus
0xda0b08 GetDlgCtrlID
0xda0b10 GetDesktopWindow
0xda0b18 GetDCEx
0xda0b20 GetDC
0xda0b28 GetCursorPos
0xda0b30 GetCursor
0xda0b38 GetClipboardData
0xda0b40 GetClientRect
0xda0b48 GetClassNameW
0xda0b50 GetClassInfoExW
0xda0b58 GetClassInfoW
0xda0b60 GetCapture
0xda0b68 GetActiveWindow
0xda0b70 FrameRect
0xda0b78 FindWindowExW
0xda0b80 FindWindowW
0xda0b88 FillRect
0xda0b90 EnumWindows
0xda0b98 EnumThreadWindows
0xda0ba0 EnumChildWindows
0xda0ba8 EndPaint
0xda0bb0 EndMenu
0xda0bb8 EnableWindow
0xda0bc0 EnableScrollBar
0xda0bc8 EnableMenuItem
0xda0bd0 EmptyClipboard
0xda0bd8 DrawTextExW
0xda0be0 DrawTextW
0xda0be8 DrawMenuBar
0xda0bf0 DrawIconEx
0xda0bf8 DrawIcon
0xda0c00 DrawFrameControl
0xda0c08 DrawFocusRect
0xda0c10 DrawEdge
0xda0c18 DispatchMessageA
0xda0c20 DispatchMessageW
0xda0c28 DestroyWindow
0xda0c30 DestroyMenu
0xda0c38 DestroyIcon
0xda0c40 DestroyCursor
0xda0c48 DeleteMenu
0xda0c50 DefWindowProcW
0xda0c58 DefMDIChildProcW
0xda0c60 DefFrameProcW
0xda0c68 CreatePopupMenu
0xda0c70 CreateMenu
0xda0c78 CreateIcon
0xda0c80 CreateAcceleratorTableW
0xda0c88 CopyImage
0xda0c90 CopyIcon
0xda0c98 CloseClipboard
0xda0ca0 ClientToScreen
0xda0ca8 CheckMenuItem
0xda0cb0 CharUpperBuffW
0xda0cb8 CharUpperW
0xda0cc0 CharNextW
0xda0cc8 CharLowerBuffW
0xda0cd0 CharLowerW
0xda0cd8 CallWindowProcW
0xda0ce0 CallNextHookEx
0xda0ce8 BeginPaint
0xda0cf0 AppendMenuW
0xda0cf8 AdjustWindowRectEx
0xda0d00 ActivateKeyboardLayout
gdi32.dll
0xda0d10 UnrealizeObject
0xda0d18 TextOutW
0xda0d20 StretchDIBits
0xda0d28 StretchBlt
0xda0d30 StartPage
0xda0d38 StartDocW
0xda0d40 SetWindowOrgEx
0xda0d48 SetWinMetaFileBits
0xda0d50 SetViewportOrgEx
0xda0d58 SetTextColor
0xda0d60 SetTextAlign
0xda0d68 SetStretchBltMode
0xda0d70 SetRectRgn
0xda0d78 SetROP2
0xda0d80 SetPixel
0xda0d88 SetMapMode
0xda0d90 SetEnhMetaFileBits
0xda0d98 SetDIBits
0xda0da0 SetDIBColorTable
0xda0da8 SetBrushOrgEx
0xda0db0 SetBkMode
0xda0db8 SetBkColor
0xda0dc0 SetAbortProc
0xda0dc8 SelectPalette
0xda0dd0 SelectObject
0xda0dd8 SaveDC
0xda0de0 RoundRect
0xda0de8 RestoreDC
0xda0df0 Rectangle
0xda0df8 RectVisible
0xda0e00 RealizePalette
0xda0e08 Polyline
0xda0e10 Polygon
0xda0e18 PolyBezierTo
0xda0e20 PolyBezier
0xda0e28 PlayEnhMetaFile
0xda0e30 Pie
0xda0e38 PatBlt
0xda0e40 MoveToEx
0xda0e48 MaskBlt
0xda0e50 LineTo
0xda0e58 IntersectClipRect
0xda0e60 GetWindowOrgEx
0xda0e68 GetWinMetaFileBits
0xda0e70 GetTextMetricsW
0xda0e78 GetTextExtentPointW
0xda0e80 GetTextExtentPoint32W
0xda0e88 GetTextAlign
0xda0e90 GetSystemPaletteEntries
0xda0e98 GetStockObject
0xda0ea0 GetRgnBox
0xda0ea8 GetRegionData
0xda0eb0 GetPixel
0xda0eb8 GetPaletteEntries
0xda0ec0 GetObjectA
0xda0ec8 GetObjectW
0xda0ed0 GetEnhMetaFilePaletteEntries
0xda0ed8 GetEnhMetaFileHeader
0xda0ee0 GetEnhMetaFileDescriptionW
0xda0ee8 GetEnhMetaFileBits
0xda0ef0 GetDeviceCaps
0xda0ef8 GetDIBits
0xda0f00 GetDIBColorTable
0xda0f08 GetCurrentPositionEx
0xda0f10 GetClipBox
0xda0f18 GetCharABCWidthsFloatW
0xda0f20 GetBrushOrgEx
0xda0f28 GetBitmapBits
0xda0f30 GdiFlush
0xda0f38 FrameRgn
0xda0f40 ExtTextOutW
0xda0f48 ExtFloodFill
0xda0f50 ExtCreateRegion
0xda0f58 ExcludeClipRect
0xda0f60 EnumFontsW
0xda0f68 EnumFontFamiliesExW
0xda0f70 EndPage
0xda0f78 EndDoc
0xda0f80 Ellipse
0xda0f88 DeleteObject
0xda0f90 DeleteEnhMetaFile
0xda0f98 DeleteDC
0xda0fa0 CreateSolidBrush
0xda0fa8 CreateRectRgn
0xda0fb0 CreatePenIndirect
0xda0fb8 CreatePalette
0xda0fc0 CreateICW
0xda0fc8 CreateHalftonePalette
0xda0fd0 CreateFontIndirectW
0xda0fd8 CreateFontW
0xda0fe0 CreateDIBitmap
0xda0fe8 CreateDIBSection
0xda0ff0 CreateDCW
0xda0ff8 CreateCompatibleDC
0xda1000 CreateCompatibleBitmap
0xda1008 CreateBrushIndirect
0xda1010 CreateBitmap
0xda1018 CopyEnhMetaFileW
0xda1020 CombineRgn
0xda1028 Chord
0xda1030 BitBlt
0xda1038 ArcTo
0xda1040 Arc
0xda1048 AngleArc
0xda1050 AbortDoc
version.dll
0xda1060 VerQueryValueW
0xda1068 GetFileVersionInfoSizeW
0xda1070 GetFileVersionInfoW
kernel32.dll
0xda1080 lstrlenW
0xda1088 WriteFile
0xda1090 WideCharToMultiByte
0xda1098 WaitForSingleObject
0xda10a0 WaitForMultipleObjectsEx
0xda10a8 VirtualQueryEx
0xda10b0 VirtualQuery
0xda10b8 VirtualProtect
0xda10c0 VirtualFree
0xda10c8 VirtualAlloc
0xda10d0 VerSetConditionMask
0xda10d8 VerifyVersionInfoW
0xda10e0 TryEnterCriticalSection
0xda10e8 SwitchToThread
0xda10f0 SuspendThread
0xda10f8 Sleep
0xda1100 SizeofResource
0xda1108 SetThreadPriority
0xda1110 SetThreadLocale
0xda1118 SetLastError
0xda1120 SetFilePointer
0xda1128 SetEvent
0xda1130 SetErrorMode
0xda1138 SetEndOfFile
0xda1140 ResumeThread
0xda1148 ResetEvent
0xda1150 RemoveDirectoryW
0xda1158 ReadFile
0xda1160 RaiseException
0xda1168 QueryPerformanceFrequency
0xda1170 QueryPerformanceCounter
0xda1178 IsDebuggerPresent
0xda1180 OutputDebugStringW
0xda1188 MultiByteToWideChar
0xda1190 MulDiv
0xda1198 LockResource
0xda11a0 LocalFree
0xda11a8 LoadResource
0xda11b0 LoadLibraryW
0xda11b8 LeaveCriticalSection
0xda11c0 LCMapStringW
0xda11c8 IsValidLocale
0xda11d0 InitializeCriticalSection
0xda11d8 HeapSize
0xda11e0 HeapFree
0xda11e8 HeapDestroy
0xda11f0 HeapCreate
0xda11f8 HeapAlloc
0xda1200 GlobalUnlock
0xda1208 GlobalSize
0xda1210 GlobalLock
0xda1218 GlobalFree
0xda1220 GlobalFindAtomW
0xda1228 GlobalDeleteAtom
0xda1230 GlobalAlloc
0xda1238 GlobalAddAtomW
0xda1240 GetVersionExW
0xda1248 GetVersion
0xda1250 GetUserDefaultLCID
0xda1258 GetTimeZoneInformation
0xda1260 GetTickCount
0xda1268 GetThreadPriority
0xda1270 GetThreadLocale
0xda1278 GetTempPathW
0xda1280 GetSystemDirectoryW
0xda1288 GetStdHandle
0xda1290 GetLongPathNameW
0xda1298 GetProcAddress
0xda12a0 GetModuleHandleW
0xda12a8 GetModuleFileNameW
0xda12b0 GetLocaleInfoW
0xda12b8 GetLocalTime
0xda12c0 GetLastError
0xda12c8 GetFullPathNameW
0xda12d0 GetFileAttributesW
0xda12d8 GetExitCodeThread
0xda12e0 GetDiskFreeSpaceW
0xda12e8 GetDateFormatW
0xda12f0 GetCurrentThreadId
0xda12f8 GetCurrentThread
0xda1300 GetCurrentProcessId
0xda1308 GetCurrentProcess
0xda1310 GetCPInfoExW
0xda1318 GetCPInfo
0xda1320 GetACP
0xda1328 FreeResource
0xda1330 FreeLibrary
0xda1338 FormatMessageW
0xda1340 FindResourceW
0xda1348 FindFirstFileW
0xda1350 FindClose
0xda1358 ExpandEnvironmentStringsW
0xda1360 EnumSystemLocalesW
0xda1368 EnumResourceNamesW
0xda1370 EnumCalendarInfoW
0xda1378 EnterCriticalSection
0xda1380 DeleteFileW
0xda1388 DeleteCriticalSection
0xda1390 CreateThread
0xda1398 CreateFileW
0xda13a0 CreateEventW
0xda13a8 CompareStringA
0xda13b0 CompareStringW
0xda13b8 CloseHandle
advapi32.dll
0xda13c8 RegUnLoadKeyW
0xda13d0 RegSetValueExW
0xda13d8 RegSaveKeyW
0xda13e0 RegRestoreKeyW
0xda13e8 RegReplaceKeyW
0xda13f0 RegQueryValueExW
0xda13f8 RegQueryInfoKeyW
0xda1400 RegOpenKeyExW
0xda1408 RegLoadKeyW
0xda1410 RegFlushKey
0xda1418 RegEnumValueW
0xda1420 RegEnumKeyW
0xda1428 RegEnumKeyExW
0xda1430 RegDeleteValueW
0xda1438 RegDeleteKeyW
0xda1440 RegCreateKeyExW
0xda1448 RegConnectRegistryW
0xda1450 RegCloseKey
kernel32.dll
0xda1460 Sleep
oleaut32.dll
0xda1470 SafeArrayPtrOfIndex
0xda1478 SafeArrayPutElement
0xda1480 SafeArrayGetElement
0xda1488 SafeArrayUnaccessData
0xda1490 SafeArrayAccessData
0xda1498 SafeArrayGetUBound
0xda14a0 SafeArrayGetLBound
0xda14a8 SafeArrayCreate
0xda14b0 VariantChangeType
0xda14b8 VariantCopyInd
0xda14c0 VariantCopy
0xda14c8 VariantClear
0xda14d0 VariantInit
oleaut32.dll
0xda14e0 GetErrorInfo
0xda14e8 SysFreeString
ole32.dll
0xda14f8 CreateStreamOnHGlobal
0xda1500 ReleaseStgMedium
0xda1508 OleDraw
0xda1510 DoDragDrop
0xda1518 RevokeDragDrop
0xda1520 RegisterDragDrop
0xda1528 OleUninitialize
0xda1530 OleInitialize
0xda1538 CoTaskMemFree
0xda1540 CoTaskMemAlloc
0xda1548 CoCreateInstance
0xda1550 CoGetClassObject
0xda1558 CoUninitialize
0xda1560 CoInitialize
0xda1568 IsEqualGUID
comctl32.dll
0xda1578 InitializeFlatSB
0xda1580 FlatSB_SetScrollProp
0xda1588 FlatSB_SetScrollPos
0xda1590 FlatSB_SetScrollInfo
0xda1598 FlatSB_GetScrollPos
0xda15a0 FlatSB_GetScrollInfo
0xda15a8 _TrackMouseEvent
0xda15b0 ImageList_GetImageInfo
0xda15b8 ImageList_SetIconSize
0xda15c0 ImageList_GetIconSize
0xda15c8 ImageList_Write
0xda15d0 ImageList_Read
0xda15d8 ImageList_GetDragImage
0xda15e0 ImageList_DragShowNolock
0xda15e8 ImageList_DragMove
0xda15f0 ImageList_DragLeave
0xda15f8 ImageList_DragEnter
0xda1600 ImageList_EndDrag
0xda1608 ImageList_BeginDrag
0xda1610 ImageList_Copy
0xda1618 ImageList_LoadImageW
0xda1620 ImageList_GetIcon
0xda1628 ImageList_Remove
0xda1630 ImageList_DrawEx
0xda1638 ImageList_Replace
0xda1640 ImageList_Draw
0xda1648 ImageList_SetOverlayImage
0xda1650 ImageList_GetBkColor
0xda1658 ImageList_SetBkColor
0xda1660 ImageList_ReplaceIcon
0xda1668 ImageList_Add
0xda1670 ImageList_SetImageCount
0xda1678 ImageList_GetImageCount
0xda1680 ImageList_Destroy
0xda1688 ImageList_Create
user32.dll
0xda1698 EnumDisplayMonitors
0xda16a0 GetMonitorInfoW
0xda16a8 MonitorFromPoint
0xda16b0 MonitorFromRect
0xda16b8 MonitorFromWindow
msvcrt.dll
0xda16c8 isxdigit
0xda16d0 isupper
0xda16d8 isspace
0xda16e0 ispunct
0xda16e8 isprint
0xda16f0 islower
0xda16f8 isgraph
0xda1700 isdigit
0xda1708 iscntrl
0xda1710 isalpha
0xda1718 isalnum
0xda1720 toupper
0xda1728 tolower
0xda1730 strchr
0xda1738 strncmp
0xda1740 memset
0xda1748 memcpy
0xda1750 memcmp
shell32.dll
0xda1760 ShellExecuteW
0xda1768 Shell_NotifyIconW
0xda1770 DragQueryFileW
comdlg32.dll
0xda1780 PageSetupDlgW
0xda1788 PrintDlgW
0xda1790 GetSaveFileNameW
0xda1798 GetOpenFileNameW
winspool.drv
0xda17a8 SetPrinterW
0xda17b0 OpenPrinterW
0xda17b8 GetPrinterW
0xda17c0 GetDefaultPrinterW
0xda17c8 EnumPrintersW
0xda17d0 DocumentPropertiesW
0xda17d8 DeviceCapabilitiesW
0xda17e0 ClosePrinter
winspool.drv
0xda17f0 GetDefaultPrinterW
winmm.dll
0xda1800 timeGetTime
d3d9.dll
0xda1810 Direct3DCreate9
EAT(Export Address Table) Library
0x4a3e00 TMethodImplementationIntercept
0x417dd0 __dbk_fcall_wrapper
0xd83f58 dbkFCallWrapperAddr
oleaut32.dll
0xda0500 SysFreeString
0xda0508 SysReAllocStringLen
0xda0510 SysAllocStringLen
advapi32.dll
0xda0520 RegQueryValueExW
0xda0528 RegOpenKeyExW
0xda0530 RegCloseKey
user32.dll
0xda0540 CharNextW
0xda0548 LoadStringW
kernel32.dll
0xda0558 Sleep
0xda0560 VirtualFree
0xda0568 VirtualAlloc
0xda0570 lstrlenW
0xda0578 VirtualQuery
0xda0580 QueryPerformanceCounter
0xda0588 GetTickCount
0xda0590 GetSystemInfo
0xda0598 GetVersion
0xda05a0 CompareStringW
0xda05a8 IsValidLocale
0xda05b0 SetThreadLocale
0xda05b8 GetSystemDefaultUILanguage
0xda05c0 GetUserDefaultUILanguage
0xda05c8 GetLocaleInfoW
0xda05d0 WideCharToMultiByte
0xda05d8 MultiByteToWideChar
0xda05e0 GetACP
0xda05e8 LoadLibraryExW
0xda05f0 GetStartupInfoW
0xda05f8 GetProcAddress
0xda0600 GetModuleHandleW
0xda0608 GetModuleFileNameW
0xda0610 GetCommandLineW
0xda0618 FindResourceW
0xda0620 FreeLibrary
0xda0628 GetLastError
0xda0630 UnhandledExceptionFilter
0xda0638 RtlUnwindEx
0xda0640 RtlUnwind
0xda0648 RaiseException
0xda0650 ExitProcess
0xda0658 ExitThread
0xda0660 SwitchToThread
0xda0668 GetCurrentThreadId
0xda0670 CreateThread
0xda0678 DeleteCriticalSection
0xda0680 LeaveCriticalSection
0xda0688 EnterCriticalSection
0xda0690 InitializeCriticalSection
0xda0698 FindFirstFileW
0xda06a0 FindClose
0xda06a8 WriteFile
0xda06b0 GetStdHandle
0xda06b8 CloseHandle
kernel32.dll
0xda06c8 GetProcAddress
0xda06d0 RaiseException
0xda06d8 LoadLibraryA
0xda06e0 GetLastError
0xda06e8 TlsSetValue
0xda06f0 TlsGetValue
0xda06f8 LocalFree
0xda0700 LocalAlloc
0xda0708 GetModuleHandleW
0xda0710 FreeLibrary
user32.dll
0xda0720 WINNLSEnableIME
0xda0728 SetClassLongPtrW
0xda0730 GetClassLongPtrW
0xda0738 SetWindowLongPtrW
0xda0740 GetWindowLongPtrW
0xda0748 CreateWindowExW
0xda0750 WindowFromPoint
0xda0758 WaitMessage
0xda0760 UpdateLayeredWindow
0xda0768 UpdateWindow
0xda0770 UnregisterClassW
0xda0778 UnhookWindowsHookEx
0xda0780 TranslateMessage
0xda0788 TranslateMDISysAccel
0xda0790 TrackPopupMenu
0xda0798 TrackMouseEvent
0xda07a0 SystemParametersInfoW
0xda07a8 ShowWindow
0xda07b0 ShowScrollBar
0xda07b8 ShowOwnedPopups
0xda07c0 ShowCaret
0xda07c8 SetWindowRgn
0xda07d0 SetWindowsHookExW
0xda07d8 SetWindowTextW
0xda07e0 SetWindowPos
0xda07e8 SetWindowPlacement
0xda07f0 SetTimer
0xda07f8 SetScrollRange
0xda0800 SetScrollPos
0xda0808 SetScrollInfo
0xda0810 SetRect
0xda0818 SetPropW
0xda0820 SetParent
0xda0828 SetMenuItemInfoW
0xda0830 SetMenu
0xda0838 SetForegroundWindow
0xda0840 SetFocus
0xda0848 SetCursorPos
0xda0850 SetCursor
0xda0858 SetClipboardData
0xda0860 SetCapture
0xda0868 SetActiveWindow
0xda0870 SendMessageTimeoutW
0xda0878 SendMessageA
0xda0880 SendMessageW
0xda0888 ScrollWindow
0xda0890 ScreenToClient
0xda0898 RemovePropW
0xda08a0 RemoveMenu
0xda08a8 ReleaseDC
0xda08b0 ReleaseCapture
0xda08b8 RegisterWindowMessageW
0xda08c0 RegisterClipboardFormatW
0xda08c8 RegisterClassW
0xda08d0 RedrawWindow
0xda08d8 PostQuitMessage
0xda08e0 PostMessageW
0xda08e8 PeekMessageA
0xda08f0 PeekMessageW
0xda08f8 OpenClipboard
0xda0900 MsgWaitForMultipleObjectsEx
0xda0908 MsgWaitForMultipleObjects
0xda0910 MessageBoxIndirectW
0xda0918 MessageBoxW
0xda0920 MessageBeep
0xda0928 MapWindowPoints
0xda0930 MapVirtualKeyW
0xda0938 LoadStringW
0xda0940 LoadKeyboardLayoutW
0xda0948 LoadIconW
0xda0950 LoadCursorW
0xda0958 LoadBitmapW
0xda0960 KillTimer
0xda0968 IsZoomed
0xda0970 IsWindowVisible
0xda0978 IsWindowUnicode
0xda0980 IsWindowEnabled
0xda0988 IsWindow
0xda0990 IsIconic
0xda0998 IsDialogMessageA
0xda09a0 IsDialogMessageW
0xda09a8 IsChild
0xda09b0 InvalidateRect
0xda09b8 InsertMenuItemW
0xda09c0 InsertMenuW
0xda09c8 HideCaret
0xda09d0 GetWindowThreadProcessId
0xda09d8 GetWindowTextLengthW
0xda09e0 GetWindowTextW
0xda09e8 GetWindowRect
0xda09f0 GetWindowPlacement
0xda09f8 GetWindowDC
0xda0a00 GetUpdateRgn
0xda0a08 GetUpdateRect
0xda0a10 GetTopWindow
0xda0a18 GetSystemMetrics
0xda0a20 GetSystemMenu
0xda0a28 GetSysColorBrush
0xda0a30 GetSysColor
0xda0a38 GetSubMenu
0xda0a40 GetScrollRange
0xda0a48 GetScrollPos
0xda0a50 GetScrollInfo
0xda0a58 GetScrollBarInfo
0xda0a60 GetPropW
0xda0a68 GetParent
0xda0a70 GetWindow
0xda0a78 GetMessagePos
0xda0a80 GetMessageExtraInfo
0xda0a88 GetMenuStringW
0xda0a90 GetMenuState
0xda0a98 GetMenuItemInfoW
0xda0aa0 GetMenuItemID
0xda0aa8 GetMenuItemCount
0xda0ab0 GetMenu
0xda0ab8 GetLastActivePopup
0xda0ac0 GetKeyboardState
0xda0ac8 GetKeyboardLayoutNameW
0xda0ad0 GetKeyboardLayoutList
0xda0ad8 GetKeyboardLayout
0xda0ae0 GetKeyState
0xda0ae8 GetKeyNameTextW
0xda0af0 GetIconInfo
0xda0af8 GetForegroundWindow
0xda0b00 GetFocus
0xda0b08 GetDlgCtrlID
0xda0b10 GetDesktopWindow
0xda0b18 GetDCEx
0xda0b20 GetDC
0xda0b28 GetCursorPos
0xda0b30 GetCursor
0xda0b38 GetClipboardData
0xda0b40 GetClientRect
0xda0b48 GetClassNameW
0xda0b50 GetClassInfoExW
0xda0b58 GetClassInfoW
0xda0b60 GetCapture
0xda0b68 GetActiveWindow
0xda0b70 FrameRect
0xda0b78 FindWindowExW
0xda0b80 FindWindowW
0xda0b88 FillRect
0xda0b90 EnumWindows
0xda0b98 EnumThreadWindows
0xda0ba0 EnumChildWindows
0xda0ba8 EndPaint
0xda0bb0 EndMenu
0xda0bb8 EnableWindow
0xda0bc0 EnableScrollBar
0xda0bc8 EnableMenuItem
0xda0bd0 EmptyClipboard
0xda0bd8 DrawTextExW
0xda0be0 DrawTextW
0xda0be8 DrawMenuBar
0xda0bf0 DrawIconEx
0xda0bf8 DrawIcon
0xda0c00 DrawFrameControl
0xda0c08 DrawFocusRect
0xda0c10 DrawEdge
0xda0c18 DispatchMessageA
0xda0c20 DispatchMessageW
0xda0c28 DestroyWindow
0xda0c30 DestroyMenu
0xda0c38 DestroyIcon
0xda0c40 DestroyCursor
0xda0c48 DeleteMenu
0xda0c50 DefWindowProcW
0xda0c58 DefMDIChildProcW
0xda0c60 DefFrameProcW
0xda0c68 CreatePopupMenu
0xda0c70 CreateMenu
0xda0c78 CreateIcon
0xda0c80 CreateAcceleratorTableW
0xda0c88 CopyImage
0xda0c90 CopyIcon
0xda0c98 CloseClipboard
0xda0ca0 ClientToScreen
0xda0ca8 CheckMenuItem
0xda0cb0 CharUpperBuffW
0xda0cb8 CharUpperW
0xda0cc0 CharNextW
0xda0cc8 CharLowerBuffW
0xda0cd0 CharLowerW
0xda0cd8 CallWindowProcW
0xda0ce0 CallNextHookEx
0xda0ce8 BeginPaint
0xda0cf0 AppendMenuW
0xda0cf8 AdjustWindowRectEx
0xda0d00 ActivateKeyboardLayout
gdi32.dll
0xda0d10 UnrealizeObject
0xda0d18 TextOutW
0xda0d20 StretchDIBits
0xda0d28 StretchBlt
0xda0d30 StartPage
0xda0d38 StartDocW
0xda0d40 SetWindowOrgEx
0xda0d48 SetWinMetaFileBits
0xda0d50 SetViewportOrgEx
0xda0d58 SetTextColor
0xda0d60 SetTextAlign
0xda0d68 SetStretchBltMode
0xda0d70 SetRectRgn
0xda0d78 SetROP2
0xda0d80 SetPixel
0xda0d88 SetMapMode
0xda0d90 SetEnhMetaFileBits
0xda0d98 SetDIBits
0xda0da0 SetDIBColorTable
0xda0da8 SetBrushOrgEx
0xda0db0 SetBkMode
0xda0db8 SetBkColor
0xda0dc0 SetAbortProc
0xda0dc8 SelectPalette
0xda0dd0 SelectObject
0xda0dd8 SaveDC
0xda0de0 RoundRect
0xda0de8 RestoreDC
0xda0df0 Rectangle
0xda0df8 RectVisible
0xda0e00 RealizePalette
0xda0e08 Polyline
0xda0e10 Polygon
0xda0e18 PolyBezierTo
0xda0e20 PolyBezier
0xda0e28 PlayEnhMetaFile
0xda0e30 Pie
0xda0e38 PatBlt
0xda0e40 MoveToEx
0xda0e48 MaskBlt
0xda0e50 LineTo
0xda0e58 IntersectClipRect
0xda0e60 GetWindowOrgEx
0xda0e68 GetWinMetaFileBits
0xda0e70 GetTextMetricsW
0xda0e78 GetTextExtentPointW
0xda0e80 GetTextExtentPoint32W
0xda0e88 GetTextAlign
0xda0e90 GetSystemPaletteEntries
0xda0e98 GetStockObject
0xda0ea0 GetRgnBox
0xda0ea8 GetRegionData
0xda0eb0 GetPixel
0xda0eb8 GetPaletteEntries
0xda0ec0 GetObjectA
0xda0ec8 GetObjectW
0xda0ed0 GetEnhMetaFilePaletteEntries
0xda0ed8 GetEnhMetaFileHeader
0xda0ee0 GetEnhMetaFileDescriptionW
0xda0ee8 GetEnhMetaFileBits
0xda0ef0 GetDeviceCaps
0xda0ef8 GetDIBits
0xda0f00 GetDIBColorTable
0xda0f08 GetCurrentPositionEx
0xda0f10 GetClipBox
0xda0f18 GetCharABCWidthsFloatW
0xda0f20 GetBrushOrgEx
0xda0f28 GetBitmapBits
0xda0f30 GdiFlush
0xda0f38 FrameRgn
0xda0f40 ExtTextOutW
0xda0f48 ExtFloodFill
0xda0f50 ExtCreateRegion
0xda0f58 ExcludeClipRect
0xda0f60 EnumFontsW
0xda0f68 EnumFontFamiliesExW
0xda0f70 EndPage
0xda0f78 EndDoc
0xda0f80 Ellipse
0xda0f88 DeleteObject
0xda0f90 DeleteEnhMetaFile
0xda0f98 DeleteDC
0xda0fa0 CreateSolidBrush
0xda0fa8 CreateRectRgn
0xda0fb0 CreatePenIndirect
0xda0fb8 CreatePalette
0xda0fc0 CreateICW
0xda0fc8 CreateHalftonePalette
0xda0fd0 CreateFontIndirectW
0xda0fd8 CreateFontW
0xda0fe0 CreateDIBitmap
0xda0fe8 CreateDIBSection
0xda0ff0 CreateDCW
0xda0ff8 CreateCompatibleDC
0xda1000 CreateCompatibleBitmap
0xda1008 CreateBrushIndirect
0xda1010 CreateBitmap
0xda1018 CopyEnhMetaFileW
0xda1020 CombineRgn
0xda1028 Chord
0xda1030 BitBlt
0xda1038 ArcTo
0xda1040 Arc
0xda1048 AngleArc
0xda1050 AbortDoc
version.dll
0xda1060 VerQueryValueW
0xda1068 GetFileVersionInfoSizeW
0xda1070 GetFileVersionInfoW
kernel32.dll
0xda1080 lstrlenW
0xda1088 WriteFile
0xda1090 WideCharToMultiByte
0xda1098 WaitForSingleObject
0xda10a0 WaitForMultipleObjectsEx
0xda10a8 VirtualQueryEx
0xda10b0 VirtualQuery
0xda10b8 VirtualProtect
0xda10c0 VirtualFree
0xda10c8 VirtualAlloc
0xda10d0 VerSetConditionMask
0xda10d8 VerifyVersionInfoW
0xda10e0 TryEnterCriticalSection
0xda10e8 SwitchToThread
0xda10f0 SuspendThread
0xda10f8 Sleep
0xda1100 SizeofResource
0xda1108 SetThreadPriority
0xda1110 SetThreadLocale
0xda1118 SetLastError
0xda1120 SetFilePointer
0xda1128 SetEvent
0xda1130 SetErrorMode
0xda1138 SetEndOfFile
0xda1140 ResumeThread
0xda1148 ResetEvent
0xda1150 RemoveDirectoryW
0xda1158 ReadFile
0xda1160 RaiseException
0xda1168 QueryPerformanceFrequency
0xda1170 QueryPerformanceCounter
0xda1178 IsDebuggerPresent
0xda1180 OutputDebugStringW
0xda1188 MultiByteToWideChar
0xda1190 MulDiv
0xda1198 LockResource
0xda11a0 LocalFree
0xda11a8 LoadResource
0xda11b0 LoadLibraryW
0xda11b8 LeaveCriticalSection
0xda11c0 LCMapStringW
0xda11c8 IsValidLocale
0xda11d0 InitializeCriticalSection
0xda11d8 HeapSize
0xda11e0 HeapFree
0xda11e8 HeapDestroy
0xda11f0 HeapCreate
0xda11f8 HeapAlloc
0xda1200 GlobalUnlock
0xda1208 GlobalSize
0xda1210 GlobalLock
0xda1218 GlobalFree
0xda1220 GlobalFindAtomW
0xda1228 GlobalDeleteAtom
0xda1230 GlobalAlloc
0xda1238 GlobalAddAtomW
0xda1240 GetVersionExW
0xda1248 GetVersion
0xda1250 GetUserDefaultLCID
0xda1258 GetTimeZoneInformation
0xda1260 GetTickCount
0xda1268 GetThreadPriority
0xda1270 GetThreadLocale
0xda1278 GetTempPathW
0xda1280 GetSystemDirectoryW
0xda1288 GetStdHandle
0xda1290 GetLongPathNameW
0xda1298 GetProcAddress
0xda12a0 GetModuleHandleW
0xda12a8 GetModuleFileNameW
0xda12b0 GetLocaleInfoW
0xda12b8 GetLocalTime
0xda12c0 GetLastError
0xda12c8 GetFullPathNameW
0xda12d0 GetFileAttributesW
0xda12d8 GetExitCodeThread
0xda12e0 GetDiskFreeSpaceW
0xda12e8 GetDateFormatW
0xda12f0 GetCurrentThreadId
0xda12f8 GetCurrentThread
0xda1300 GetCurrentProcessId
0xda1308 GetCurrentProcess
0xda1310 GetCPInfoExW
0xda1318 GetCPInfo
0xda1320 GetACP
0xda1328 FreeResource
0xda1330 FreeLibrary
0xda1338 FormatMessageW
0xda1340 FindResourceW
0xda1348 FindFirstFileW
0xda1350 FindClose
0xda1358 ExpandEnvironmentStringsW
0xda1360 EnumSystemLocalesW
0xda1368 EnumResourceNamesW
0xda1370 EnumCalendarInfoW
0xda1378 EnterCriticalSection
0xda1380 DeleteFileW
0xda1388 DeleteCriticalSection
0xda1390 CreateThread
0xda1398 CreateFileW
0xda13a0 CreateEventW
0xda13a8 CompareStringA
0xda13b0 CompareStringW
0xda13b8 CloseHandle
advapi32.dll
0xda13c8 RegUnLoadKeyW
0xda13d0 RegSetValueExW
0xda13d8 RegSaveKeyW
0xda13e0 RegRestoreKeyW
0xda13e8 RegReplaceKeyW
0xda13f0 RegQueryValueExW
0xda13f8 RegQueryInfoKeyW
0xda1400 RegOpenKeyExW
0xda1408 RegLoadKeyW
0xda1410 RegFlushKey
0xda1418 RegEnumValueW
0xda1420 RegEnumKeyW
0xda1428 RegEnumKeyExW
0xda1430 RegDeleteValueW
0xda1438 RegDeleteKeyW
0xda1440 RegCreateKeyExW
0xda1448 RegConnectRegistryW
0xda1450 RegCloseKey
kernel32.dll
0xda1460 Sleep
oleaut32.dll
0xda1470 SafeArrayPtrOfIndex
0xda1478 SafeArrayPutElement
0xda1480 SafeArrayGetElement
0xda1488 SafeArrayUnaccessData
0xda1490 SafeArrayAccessData
0xda1498 SafeArrayGetUBound
0xda14a0 SafeArrayGetLBound
0xda14a8 SafeArrayCreate
0xda14b0 VariantChangeType
0xda14b8 VariantCopyInd
0xda14c0 VariantCopy
0xda14c8 VariantClear
0xda14d0 VariantInit
oleaut32.dll
0xda14e0 GetErrorInfo
0xda14e8 SysFreeString
ole32.dll
0xda14f8 CreateStreamOnHGlobal
0xda1500 ReleaseStgMedium
0xda1508 OleDraw
0xda1510 DoDragDrop
0xda1518 RevokeDragDrop
0xda1520 RegisterDragDrop
0xda1528 OleUninitialize
0xda1530 OleInitialize
0xda1538 CoTaskMemFree
0xda1540 CoTaskMemAlloc
0xda1548 CoCreateInstance
0xda1550 CoGetClassObject
0xda1558 CoUninitialize
0xda1560 CoInitialize
0xda1568 IsEqualGUID
comctl32.dll
0xda1578 InitializeFlatSB
0xda1580 FlatSB_SetScrollProp
0xda1588 FlatSB_SetScrollPos
0xda1590 FlatSB_SetScrollInfo
0xda1598 FlatSB_GetScrollPos
0xda15a0 FlatSB_GetScrollInfo
0xda15a8 _TrackMouseEvent
0xda15b0 ImageList_GetImageInfo
0xda15b8 ImageList_SetIconSize
0xda15c0 ImageList_GetIconSize
0xda15c8 ImageList_Write
0xda15d0 ImageList_Read
0xda15d8 ImageList_GetDragImage
0xda15e0 ImageList_DragShowNolock
0xda15e8 ImageList_DragMove
0xda15f0 ImageList_DragLeave
0xda15f8 ImageList_DragEnter
0xda1600 ImageList_EndDrag
0xda1608 ImageList_BeginDrag
0xda1610 ImageList_Copy
0xda1618 ImageList_LoadImageW
0xda1620 ImageList_GetIcon
0xda1628 ImageList_Remove
0xda1630 ImageList_DrawEx
0xda1638 ImageList_Replace
0xda1640 ImageList_Draw
0xda1648 ImageList_SetOverlayImage
0xda1650 ImageList_GetBkColor
0xda1658 ImageList_SetBkColor
0xda1660 ImageList_ReplaceIcon
0xda1668 ImageList_Add
0xda1670 ImageList_SetImageCount
0xda1678 ImageList_GetImageCount
0xda1680 ImageList_Destroy
0xda1688 ImageList_Create
user32.dll
0xda1698 EnumDisplayMonitors
0xda16a0 GetMonitorInfoW
0xda16a8 MonitorFromPoint
0xda16b0 MonitorFromRect
0xda16b8 MonitorFromWindow
msvcrt.dll
0xda16c8 isxdigit
0xda16d0 isupper
0xda16d8 isspace
0xda16e0 ispunct
0xda16e8 isprint
0xda16f0 islower
0xda16f8 isgraph
0xda1700 isdigit
0xda1708 iscntrl
0xda1710 isalpha
0xda1718 isalnum
0xda1720 toupper
0xda1728 tolower
0xda1730 strchr
0xda1738 strncmp
0xda1740 memset
0xda1748 memcpy
0xda1750 memcmp
shell32.dll
0xda1760 ShellExecuteW
0xda1768 Shell_NotifyIconW
0xda1770 DragQueryFileW
comdlg32.dll
0xda1780 PageSetupDlgW
0xda1788 PrintDlgW
0xda1790 GetSaveFileNameW
0xda1798 GetOpenFileNameW
winspool.drv
0xda17a8 SetPrinterW
0xda17b0 OpenPrinterW
0xda17b8 GetPrinterW
0xda17c0 GetDefaultPrinterW
0xda17c8 EnumPrintersW
0xda17d0 DocumentPropertiesW
0xda17d8 DeviceCapabilitiesW
0xda17e0 ClosePrinter
winspool.drv
0xda17f0 GetDefaultPrinterW
winmm.dll
0xda1800 timeGetTime
d3d9.dll
0xda1810 Direct3DCreate9
EAT(Export Address Table) Library
0x4a3e00 TMethodImplementationIntercept
0x417dd0 __dbk_fcall_wrapper
0xd83f58 dbkFCallWrapperAddr