ScreenShot
| Created | 2024.09.11 10:11 | Machine | s1_win7_x6401 |
| Filename | 2b4pI1hCJx7p.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 49 detected (AIDetectMalware, lIa2, Windows, Threat, Malicious, score, Zusy, Unsafe, Save, Attribute, HighConfidence, FlyStudio, MalwareX, Trojanx, Siggen19, Real Protect, Generic Reputation PUA, HackTool, Detected, ai score=82, Sabsik, OSCF@5rs7jr, 18B7I2K, Eldorado, R601455, GenericRXSH, BScope, Occamy, R002H0CIA24, susgen, CoinMiner, confidence) | ||
| md5 | 2d7e2eb114ceca66531637b4988a586c | ||
| sha256 | 5b32f7eb0193b9ad2f230aec085709e0a34f816e25509a532f5409694c94d16c | ||
| ssdeep | 98304:hzO5ap7YQ0ndYemy7FvLA1y5qm/BPttzYP4I3lJgsUDqBM/oNAEkYzDLraY:hy5ap7YQGYemy7FvLA1y5qm/BPttzYPH | ||
| imphash | 14ac16b6ab41482a6dec812b524ddab4 | ||
| impfuzzy | 192:CsABKcARHNAA0Jh1iT6SxWq/T0JTYnUkj7cRcecxkE/kVE:CQAAiiTOiEj+ki/ | ||
Network IP location
Signature (7cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 49 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Drops an executable to the user AppData folder |
| notice | Foreign language identified in PE resource |
| info | Checks amount of memory in system |
| info | The executable uses a known packer |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (20cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_1_Zero | Win32 Trojan Emotet | binaries (upload) |
| danger | Win32_Trojan_Gen_1_0904B0_Zero | Win32 Trojan Emotet | binaries (download) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (download) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | ASPack_Zero | ASPack packed file | binaries (download) |
| watch | ASPack_Zero | ASPack packed file | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (download) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (download) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (download) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | DllRegisterServer_Zero | execute regsvr32.exe | binaries (upload) |
| info | IsDLL | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (download) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
MSVFW32.dll
0x781470 DrawDibDraw
AVIFIL32.dll
0x781024 AVIStreamGetFrame
0x781028 AVIStreamInfoA
iphlpapi.dll
0x781850 GetAdaptersInfo
WINMM.dll
0x781774 waveOutRestart
0x781778 midiStreamRestart
0x78177c midiStreamClose
0x781780 midiOutReset
0x781784 midiStreamStop
0x781788 PlaySoundA
0x78178c waveOutUnprepareHeader
0x781790 waveOutPrepareHeader
0x781794 waveOutWrite
0x781798 waveOutPause
0x78179c waveOutReset
0x7817a0 waveOutClose
0x7817a4 midiStreamOut
0x7817a8 midiOutPrepareHeader
0x7817ac midiStreamProperty
0x7817b0 midiStreamOpen
0x7817b4 midiOutUnprepareHeader
0x7817b8 waveOutOpen
0x7817bc waveOutGetNumDevs
WS2_32.dll
0x7817dc inet_addr
0x7817e0 inet_ntoa
0x7817e4 gethostbyname
0x7817e8 WSAStartup
0x7817ec WSACleanup
0x7817f0 select
0x7817f4 send
0x7817f8 closesocket
0x7817fc htons
0x781800 socket
0x781804 setsockopt
0x781808 recvfrom
0x78180c ioctlsocket
0x781810 WSAAsyncSelect
0x781814 connect
0x781818 recv
0x78181c getpeername
0x781820 ntohl
0x781824 WSAGetLastError
0x781828 ntohs
0x78182c getservbyname
0x781830 shutdown
0x781834 accept
RASAPI32.dll
0x781488 RasGetConnectStatusA
0x78148c RasHangUpA
KERNEL32.dll
0x7811f8 GetTimeZoneInformation
0x7811fc GetLocaleInfoA
0x781200 GetVersion
0x781204 TerminateThread
0x781208 CreateMutexA
0x78120c ReleaseMutex
0x781210 SuspendThread
0x781214 InterlockedIncrement
0x781218 InterlockedDecrement
0x78121c MapViewOfFile
0x781220 UnmapViewOfFile
0x781224 GetSystemInfo
0x781228 IsProcessorFeaturePresent
0x78122c lstrcmpiA
0x781230 SetNamedPipeHandleState
0x781234 WaitNamedPipeA
0x781238 OpenFileMappingA
0x78123c OpenEventA
0x781240 TlsAlloc
0x781244 TlsFree
0x781248 TlsSetValue
0x78124c TlsGetValue
0x781250 LocalFree
0x781254 FileTimeToLocalFileTime
0x781258 lstrcpynA
0x78125c DuplicateHandle
0x781260 FlushFileBuffers
0x781264 LockFile
0x781268 UnlockFile
0x78126c SetEndOfFile
0x781270 GlobalDeleteAtom
0x781274 GlobalFindAtomA
0x781278 GlobalAddAtomA
0x78127c GlobalGetAtomNameA
0x781280 lstrcmpA
0x781284 LocalAlloc
0x781288 GlobalHandle
0x78128c LocalReAlloc
0x781290 GetFileTime
0x781294 GetCurrentThread
0x781298 GlobalFlags
0x78129c SetErrorMode
0x7812a0 GetProcessVersion
0x7812a4 GetCPInfo
0x7812a8 GetOEMCP
0x7812ac GetStartupInfoA
0x7812b0 RtlUnwind
0x7812b4 GetSystemTime
0x7812b8 GetLocalTime
0x7812bc RaiseException
0x7812c0 HeapSize
0x7812c4 GetACP
0x7812c8 SetStdHandle
0x7812cc GetFileType
0x7812d0 UnhandledExceptionFilter
0x7812d4 FreeEnvironmentStringsA
0x7812d8 FreeEnvironmentStringsW
0x7812dc GetEnvironmentStrings
0x7812e0 GetEnvironmentStringsW
0x7812e4 SetHandleCount
0x7812e8 GetStdHandle
0x7812ec GetEnvironmentVariableA
0x7812f0 HeapDestroy
0x7812f4 HeapCreate
0x7812f8 VirtualFree
0x7812fc SetEnvironmentVariableW
0x781300 SetEnvironmentVariableA
0x781304 LCMapStringA
0x781308 LCMapStringW
0x78130c VirtualAlloc
0x781310 IsBadWritePtr
0x781314 SetUnhandledExceptionFilter
0x781318 GetStringTypeA
0x78131c GetStringTypeW
0x781320 IsValidLocale
0x781324 IsValidCodePage
0x781328 EnumSystemLocalesA
0x78132c CompareStringA
0x781330 CompareStringW
0x781334 IsBadReadPtr
0x781338 IsBadCodePtr
0x78133c GetLocaleInfoW
0x781340 SetLastError
0x781344 TerminateProcess
0x781348 GetFileSize
0x78134c SetFilePointer
0x781350 GetCurrentProcess
0x781354 GetWindowsDirectoryA
0x781358 GetSystemDirectoryA
0x78135c CreateSemaphoreA
0x781360 ResumeThread
0x781364 ReleaseSemaphore
0x781368 EnterCriticalSection
0x78136c LeaveCriticalSection
0x781370 GetProfileStringA
0x781374 WriteFile
0x781378 WaitForMultipleObjects
0x78137c CreateFileA
0x781380 SetEvent
0x781384 FindResourceA
0x781388 LoadResource
0x78138c LockResource
0x781390 ReadFile
0x781394 GetModuleFileNameA
0x781398 WideCharToMultiByte
0x78139c MultiByteToWideChar
0x7813a0 GetCurrentThreadId
0x7813a4 ExitProcess
0x7813a8 GlobalSize
0x7813ac GlobalFree
0x7813b0 DeleteCriticalSection
0x7813b4 InitializeCriticalSection
0x7813b8 lstrcatA
0x7813bc lstrlenA
0x7813c0 WinExec
0x7813c4 lstrcpyA
0x7813c8 FindNextFileA
0x7813cc GetDriveTypeA
0x7813d0 GlobalReAlloc
0x7813d4 HeapFree
0x7813d8 HeapReAlloc
0x7813dc GetProcessHeap
0x7813e0 HeapAlloc
0x7813e4 GetUserDefaultLCID
0x7813e8 GetFullPathNameA
0x7813ec FreeLibrary
0x7813f0 LoadLibraryA
0x7813f4 GetLastError
0x7813f8 GetVersionExA
0x7813fc WritePrivateProfileStringA
0x781400 GetPrivateProfileStringA
0x781404 CreateThread
0x781408 CreateEventA
0x78140c Sleep
0x781410 ExpandEnvironmentStringsA
0x781414 GlobalAlloc
0x781418 GlobalLock
0x78141c GlobalUnlock
0x781420 FindFirstFileA
0x781424 FindClose
0x781428 GetFileAttributesA
0x78142c DeleteFileA
0x781430 GetCurrentDirectoryA
0x781434 SetCurrentDirectoryA
0x781438 GetVolumeInformationA
0x78143c GetModuleHandleA
0x781440 GetProcAddress
0x781444 MulDiv
0x781448 GetCommandLineA
0x78144c GetTickCount
0x781450 CreateProcessA
0x781454 WaitForSingleObject
0x781458 CloseHandle
0x78145c InterlockedExchange
0x781460 FileTimeToSystemTime
USER32.dll
0x7814b0 GetSysColorBrush
0x7814b4 GetMenuCheckMarkDimensions
0x7814b8 SetMenuItemBitmaps
0x7814bc CheckMenuItem
0x7814c0 IsDialogMessageA
0x7814c4 ScrollWindowEx
0x7814c8 SendDlgItemMessageA
0x7814cc MapWindowPoints
0x7814d0 AdjustWindowRectEx
0x7814d4 GetScrollPos
0x7814d8 RegisterClassA
0x7814dc GetClassLongA
0x7814e0 RemovePropA
0x7814e4 GetMessageTime
0x7814e8 GetLastActivePopup
0x7814ec RegisterWindowMessageA
0x7814f0 GetWindowPlacement
0x7814f4 EndDialog
0x7814f8 CreateDialogIndirectParamA
0x7814fc DestroyWindow
0x781500 EndPaint
0x781504 BeginPaint
0x781508 CharUpperA
0x78150c GetWindowTextLengthA
0x781510 GetDlgItem
0x781514 GetClassNameA
0x781518 GetDesktopWindow
0x78151c UnregisterHotKey
0x781520 RegisterHotKey
0x781524 CreateWindowExA
0x781528 GetWindowTextA
0x78152c SetWindowTextA
0x781530 GetMenuItemCount
0x781534 GetMenuItemID
0x781538 GetMenuStringA
0x78153c GetMenuState
0x781540 GetTabbedTextExtentA
0x781544 GrayStringA
0x781548 TabbedTextOutA
0x78154c WindowFromDC
0x781550 EnumChildWindows
0x781554 GetWindowDC
0x781558 UnhookWindowsHookEx
0x78155c CallNextHookEx
0x781560 SetWindowsHookExA
0x781564 GetPropA
0x781568 MoveWindow
0x78156c CallWindowProcA
0x781570 SetPropA
0x781574 DrawTextA
0x781578 GetCursor
0x78157c DrawStateA
0x781580 FrameRect
0x781584 GetNextDlgTabItem
0x781588 GetForegroundWindow
0x78158c LoadIconA
0x781590 TranslateMessage
0x781594 DrawFrameControl
0x781598 DrawEdge
0x78159c DrawFocusRect
0x7815a0 WindowFromPoint
0x7815a4 GetMessageA
0x7815a8 DispatchMessageA
0x7815ac SetRectEmpty
0x7815b0 CreateIconFromResourceEx
0x7815b4 CreateIconFromResource
0x7815b8 DrawIconEx
0x7815bc CreatePopupMenu
0x7815c0 AppendMenuA
0x7815c4 ModifyMenuA
0x7815c8 CreateMenu
0x7815cc CreateAcceleratorTableA
0x7815d0 GetDlgCtrlID
0x7815d4 GetSubMenu
0x7815d8 EnableMenuItem
0x7815dc ClientToScreen
0x7815e0 EnumDisplaySettingsA
0x7815e4 LoadImageA
0x7815e8 SystemParametersInfoA
0x7815ec ShowWindow
0x7815f0 IsWindowEnabled
0x7815f4 TranslateAcceleratorA
0x7815f8 GetKeyState
0x7815fc CopyAcceleratorTableA
0x781600 PostQuitMessage
0x781604 IsZoomed
0x781608 GetClassInfoA
0x78160c DefWindowProcA
0x781610 GetSystemMenu
0x781614 DeleteMenu
0x781618 GetMenu
0x78161c SetMenu
0x781620 PeekMessageA
0x781624 IsIconic
0x781628 SetFocus
0x78162c GetActiveWindow
0x781630 GetWindow
0x781634 DestroyAcceleratorTable
0x781638 SetWindowRgn
0x78163c GetMessagePos
0x781640 ScreenToClient
0x781644 ChildWindowFromPointEx
0x781648 CopyRect
0x78164c LoadBitmapA
0x781650 WinHelpA
0x781654 KillTimer
0x781658 SetTimer
0x78165c ReleaseCapture
0x781660 GetCapture
0x781664 SetCapture
0x781668 GetScrollRange
0x78166c SetScrollRange
0x781670 SetScrollPos
0x781674 SetRect
0x781678 InflateRect
0x78167c IntersectRect
0x781680 DestroyIcon
0x781684 PtInRect
0x781688 OffsetRect
0x78168c EnableWindow
0x781690 RedrawWindow
0x781694 GetWindowLongA
0x781698 SetWindowLongA
0x78169c GetSysColor
0x7816a0 SetActiveWindow
0x7816a4 SetCursorPos
0x7816a8 LoadCursorA
0x7816ac SetCursor
0x7816b0 GetDC
0x7816b4 FillRect
0x7816b8 IsRectEmpty
0x7816bc ReleaseDC
0x7816c0 IsChild
0x7816c4 TrackPopupMenu
0x7816c8 DestroyMenu
0x7816cc SetForegroundWindow
0x7816d0 GetWindowRect
0x7816d4 EqualRect
0x7816d8 UpdateWindow
0x7816dc ValidateRect
0x7816e0 InvalidateRect
0x7816e4 GetClientRect
0x7816e8 GetFocus
0x7816ec GetParent
0x7816f0 GetTopWindow
0x7816f4 PostMessageA
0x7816f8 IsWindow
0x7816fc SetParent
0x781700 DestroyCursor
0x781704 SendMessageA
0x781708 SetWindowPos
0x78170c MessageBoxA
0x781710 GetCursorPos
0x781714 GetSystemMetrics
0x781718 EmptyClipboard
0x78171c SetClipboardData
0x781720 OpenClipboard
0x781724 GetClipboardData
0x781728 CloseClipboard
0x78172c wsprintfA
0x781730 WaitForInputIdle
0x781734 LoadStringA
0x781738 RegisterClipboardFormatA
0x78173c IsWindowVisible
0x781740 UnregisterClassA
GDI32.dll
0x781084 FillRgn
0x781088 CreateRectRgn
0x78108c CombineRgn
0x781090 PatBlt
0x781094 CreatePen
0x781098 SelectObject
0x78109c CreatePatternBrush
0x7810a0 CreateBitmap
0x7810a4 CreateBrushIndirect
0x7810a8 CreateDCA
0x7810ac CreateCompatibleBitmap
0x7810b0 GetPolyFillMode
0x7810b4 GetStretchBltMode
0x7810b8 GetROP2
0x7810bc GetBkColor
0x7810c0 GetBkMode
0x7810c4 GetTextColor
0x7810c8 CreateRoundRectRgn
0x7810cc CreateEllipticRgn
0x7810d0 PathToRegion
0x7810d4 EndPath
0x7810d8 BeginPath
0x7810dc GetWindowOrgEx
0x7810e0 GetViewportOrgEx
0x7810e4 GetWindowExtEx
0x7810e8 ExtTextOutA
0x7810ec Escape
0x7810f0 TranslateCharsetInfo
0x7810f4 CreateSolidBrush
0x7810f8 SetPolyFillMode
0x7810fc SetROP2
0x781100 SetMapMode
0x781104 SetViewportOrgEx
0x781108 OffsetViewportOrgEx
0x78110c SetViewportExtEx
0x781110 ScaleViewportExtEx
0x781114 SetWindowExtEx
0x781118 ScaleWindowExtEx
0x78111c GetClipBox
0x781120 ExcludeClipRect
0x781124 CreateFontIndirectA
0x781128 MoveToEx
0x78112c LineTo
0x781130 ExtSelectClipRgn
0x781134 GetViewportExtEx
0x781138 GetTextMetricsA
0x78113c CreateFontA
0x781140 SetDIBitsToDevice
0x781144 SetTextColor
0x781148 SetBkMode
0x78114c TextOutA
0x781150 SetBkColor
0x781154 CreateRectRgnIndirect
0x781158 CreateDIBSection
0x78115c SetPixel
0x781160 SetStretchBltMode
0x781164 GetClipRgn
0x781168 CreatePolygonRgn
0x78116c SelectClipRgn
0x781170 DeleteObject
0x781174 CreateDIBitmap
0x781178 GetSystemPaletteEntries
0x78117c CreatePalette
0x781180 StretchBlt
0x781184 SelectPalette
0x781188 RealizePalette
0x78118c GetDIBits
0x781190 RectVisible
0x781194 PtVisible
0x781198 CreatePenIndirect
0x78119c RestoreDC
0x7811a0 Ellipse
0x7811a4 Rectangle
0x7811a8 LPtoDP
0x7811ac DPtoLP
0x7811b0 GetCurrentObject
0x7811b4 RoundRect
0x7811b8 SaveDC
0x7811bc SetWindowOrgEx
0x7811c0 GetStockObject
0x7811c4 GetObjectA
0x7811c8 EndPage
0x7811cc EndDoc
0x7811d0 DeleteDC
0x7811d4 StartDocA
0x7811d8 StartPage
0x7811dc BitBlt
0x7811e0 GetPixel
0x7811e4 CreateCompatibleDC
0x7811e8 GetTextExtentPoint32A
0x7811ec SetPixelV
0x7811f0 GetDeviceCaps
MSIMG32.dll
0x781468 GradientFill
WINSPOOL.DRV
0x7817c4 OpenPrinterA
0x7817c8 DocumentPropertiesA
0x7817cc ClosePrinter
comdlg32.dll
0x78183c ChooseColorA
0x781840 GetOpenFileNameA
0x781844 GetSaveFileNameA
0x781848 GetFileTitleA
ADVAPI32.dll
0x781000 RegCreateKeyExA
0x781004 RegOpenKeyA
0x781008 RegQueryValueA
0x78100c RegSetValueExA
0x781010 RegOpenKeyExA
0x781014 RegQueryValueExA
0x781018 RegCloseKey
0x78101c RegEnumValueA
SHELL32.dll
0x781494 SHGetFileInfoA
0x781498 DragAcceptFiles
0x78149c DragFinish
0x7814a0 ShellExecuteA
0x7814a4 Shell_NotifyIconA
0x7814a8 DragQueryFileA
ole32.dll
0x781858 ReleaseStgMedium
0x78185c RevokeDragDrop
0x781860 RegisterDragDrop
0x781864 OleUninitialize
0x781868 CLSIDFromString
0x78186c CoCreateInstance
0x781870 OleInitialize
OLEAUT32.dll
0x781478 RegisterTypeLib
0x78147c LoadTypeLib
0x781480 UnRegisterTypeLib
COMCTL32.dll
0x781030 ImageList_DragLeave
0x781034 ImageList_DragEnter
0x781038 ImageList_Destroy
0x78103c ImageList_Create
0x781040 ImageList_BeginDrag
0x781044 ImageList_Add
0x781048 ImageList_DragMove
0x78104c ImageList_Draw
0x781050 _TrackMouseEvent
0x781054 ImageList_SetBkColor
0x781058 ImageList_GetImageCount
0x78105c ImageList_GetImageInfo
0x781060 ImageList_GetIcon
0x781064 ImageList_DragShowNolock
0x781068 ImageList_EndDrag
0x78106c None
0x781070 ImageList_Read
0x781074 ImageList_DrawIndirect
0x781078 ImageList_AddMasked
0x78107c ImageList_Duplicate
WLDAP32.dll
0x7817d4 None
WININET.dll
0x781748 InternetSetOptionA
0x78174c InternetCrackUrlA
0x781750 HttpOpenRequestA
0x781754 HttpSendRequestA
0x781758 HttpQueryInfoA
0x78175c InternetReadFile
0x781760 InternetOpenA
0x781764 InternetCloseHandle
0x781768 InternetConnectA
0x78176c InternetCanonicalizeUrlA
EAT(Export Address Table) is none
MSVFW32.dll
0x781470 DrawDibDraw
AVIFIL32.dll
0x781024 AVIStreamGetFrame
0x781028 AVIStreamInfoA
iphlpapi.dll
0x781850 GetAdaptersInfo
WINMM.dll
0x781774 waveOutRestart
0x781778 midiStreamRestart
0x78177c midiStreamClose
0x781780 midiOutReset
0x781784 midiStreamStop
0x781788 PlaySoundA
0x78178c waveOutUnprepareHeader
0x781790 waveOutPrepareHeader
0x781794 waveOutWrite
0x781798 waveOutPause
0x78179c waveOutReset
0x7817a0 waveOutClose
0x7817a4 midiStreamOut
0x7817a8 midiOutPrepareHeader
0x7817ac midiStreamProperty
0x7817b0 midiStreamOpen
0x7817b4 midiOutUnprepareHeader
0x7817b8 waveOutOpen
0x7817bc waveOutGetNumDevs
WS2_32.dll
0x7817dc inet_addr
0x7817e0 inet_ntoa
0x7817e4 gethostbyname
0x7817e8 WSAStartup
0x7817ec WSACleanup
0x7817f0 select
0x7817f4 send
0x7817f8 closesocket
0x7817fc htons
0x781800 socket
0x781804 setsockopt
0x781808 recvfrom
0x78180c ioctlsocket
0x781810 WSAAsyncSelect
0x781814 connect
0x781818 recv
0x78181c getpeername
0x781820 ntohl
0x781824 WSAGetLastError
0x781828 ntohs
0x78182c getservbyname
0x781830 shutdown
0x781834 accept
RASAPI32.dll
0x781488 RasGetConnectStatusA
0x78148c RasHangUpA
KERNEL32.dll
0x7811f8 GetTimeZoneInformation
0x7811fc GetLocaleInfoA
0x781200 GetVersion
0x781204 TerminateThread
0x781208 CreateMutexA
0x78120c ReleaseMutex
0x781210 SuspendThread
0x781214 InterlockedIncrement
0x781218 InterlockedDecrement
0x78121c MapViewOfFile
0x781220 UnmapViewOfFile
0x781224 GetSystemInfo
0x781228 IsProcessorFeaturePresent
0x78122c lstrcmpiA
0x781230 SetNamedPipeHandleState
0x781234 WaitNamedPipeA
0x781238 OpenFileMappingA
0x78123c OpenEventA
0x781240 TlsAlloc
0x781244 TlsFree
0x781248 TlsSetValue
0x78124c TlsGetValue
0x781250 LocalFree
0x781254 FileTimeToLocalFileTime
0x781258 lstrcpynA
0x78125c DuplicateHandle
0x781260 FlushFileBuffers
0x781264 LockFile
0x781268 UnlockFile
0x78126c SetEndOfFile
0x781270 GlobalDeleteAtom
0x781274 GlobalFindAtomA
0x781278 GlobalAddAtomA
0x78127c GlobalGetAtomNameA
0x781280 lstrcmpA
0x781284 LocalAlloc
0x781288 GlobalHandle
0x78128c LocalReAlloc
0x781290 GetFileTime
0x781294 GetCurrentThread
0x781298 GlobalFlags
0x78129c SetErrorMode
0x7812a0 GetProcessVersion
0x7812a4 GetCPInfo
0x7812a8 GetOEMCP
0x7812ac GetStartupInfoA
0x7812b0 RtlUnwind
0x7812b4 GetSystemTime
0x7812b8 GetLocalTime
0x7812bc RaiseException
0x7812c0 HeapSize
0x7812c4 GetACP
0x7812c8 SetStdHandle
0x7812cc GetFileType
0x7812d0 UnhandledExceptionFilter
0x7812d4 FreeEnvironmentStringsA
0x7812d8 FreeEnvironmentStringsW
0x7812dc GetEnvironmentStrings
0x7812e0 GetEnvironmentStringsW
0x7812e4 SetHandleCount
0x7812e8 GetStdHandle
0x7812ec GetEnvironmentVariableA
0x7812f0 HeapDestroy
0x7812f4 HeapCreate
0x7812f8 VirtualFree
0x7812fc SetEnvironmentVariableW
0x781300 SetEnvironmentVariableA
0x781304 LCMapStringA
0x781308 LCMapStringW
0x78130c VirtualAlloc
0x781310 IsBadWritePtr
0x781314 SetUnhandledExceptionFilter
0x781318 GetStringTypeA
0x78131c GetStringTypeW
0x781320 IsValidLocale
0x781324 IsValidCodePage
0x781328 EnumSystemLocalesA
0x78132c CompareStringA
0x781330 CompareStringW
0x781334 IsBadReadPtr
0x781338 IsBadCodePtr
0x78133c GetLocaleInfoW
0x781340 SetLastError
0x781344 TerminateProcess
0x781348 GetFileSize
0x78134c SetFilePointer
0x781350 GetCurrentProcess
0x781354 GetWindowsDirectoryA
0x781358 GetSystemDirectoryA
0x78135c CreateSemaphoreA
0x781360 ResumeThread
0x781364 ReleaseSemaphore
0x781368 EnterCriticalSection
0x78136c LeaveCriticalSection
0x781370 GetProfileStringA
0x781374 WriteFile
0x781378 WaitForMultipleObjects
0x78137c CreateFileA
0x781380 SetEvent
0x781384 FindResourceA
0x781388 LoadResource
0x78138c LockResource
0x781390 ReadFile
0x781394 GetModuleFileNameA
0x781398 WideCharToMultiByte
0x78139c MultiByteToWideChar
0x7813a0 GetCurrentThreadId
0x7813a4 ExitProcess
0x7813a8 GlobalSize
0x7813ac GlobalFree
0x7813b0 DeleteCriticalSection
0x7813b4 InitializeCriticalSection
0x7813b8 lstrcatA
0x7813bc lstrlenA
0x7813c0 WinExec
0x7813c4 lstrcpyA
0x7813c8 FindNextFileA
0x7813cc GetDriveTypeA
0x7813d0 GlobalReAlloc
0x7813d4 HeapFree
0x7813d8 HeapReAlloc
0x7813dc GetProcessHeap
0x7813e0 HeapAlloc
0x7813e4 GetUserDefaultLCID
0x7813e8 GetFullPathNameA
0x7813ec FreeLibrary
0x7813f0 LoadLibraryA
0x7813f4 GetLastError
0x7813f8 GetVersionExA
0x7813fc WritePrivateProfileStringA
0x781400 GetPrivateProfileStringA
0x781404 CreateThread
0x781408 CreateEventA
0x78140c Sleep
0x781410 ExpandEnvironmentStringsA
0x781414 GlobalAlloc
0x781418 GlobalLock
0x78141c GlobalUnlock
0x781420 FindFirstFileA
0x781424 FindClose
0x781428 GetFileAttributesA
0x78142c DeleteFileA
0x781430 GetCurrentDirectoryA
0x781434 SetCurrentDirectoryA
0x781438 GetVolumeInformationA
0x78143c GetModuleHandleA
0x781440 GetProcAddress
0x781444 MulDiv
0x781448 GetCommandLineA
0x78144c GetTickCount
0x781450 CreateProcessA
0x781454 WaitForSingleObject
0x781458 CloseHandle
0x78145c InterlockedExchange
0x781460 FileTimeToSystemTime
USER32.dll
0x7814b0 GetSysColorBrush
0x7814b4 GetMenuCheckMarkDimensions
0x7814b8 SetMenuItemBitmaps
0x7814bc CheckMenuItem
0x7814c0 IsDialogMessageA
0x7814c4 ScrollWindowEx
0x7814c8 SendDlgItemMessageA
0x7814cc MapWindowPoints
0x7814d0 AdjustWindowRectEx
0x7814d4 GetScrollPos
0x7814d8 RegisterClassA
0x7814dc GetClassLongA
0x7814e0 RemovePropA
0x7814e4 GetMessageTime
0x7814e8 GetLastActivePopup
0x7814ec RegisterWindowMessageA
0x7814f0 GetWindowPlacement
0x7814f4 EndDialog
0x7814f8 CreateDialogIndirectParamA
0x7814fc DestroyWindow
0x781500 EndPaint
0x781504 BeginPaint
0x781508 CharUpperA
0x78150c GetWindowTextLengthA
0x781510 GetDlgItem
0x781514 GetClassNameA
0x781518 GetDesktopWindow
0x78151c UnregisterHotKey
0x781520 RegisterHotKey
0x781524 CreateWindowExA
0x781528 GetWindowTextA
0x78152c SetWindowTextA
0x781530 GetMenuItemCount
0x781534 GetMenuItemID
0x781538 GetMenuStringA
0x78153c GetMenuState
0x781540 GetTabbedTextExtentA
0x781544 GrayStringA
0x781548 TabbedTextOutA
0x78154c WindowFromDC
0x781550 EnumChildWindows
0x781554 GetWindowDC
0x781558 UnhookWindowsHookEx
0x78155c CallNextHookEx
0x781560 SetWindowsHookExA
0x781564 GetPropA
0x781568 MoveWindow
0x78156c CallWindowProcA
0x781570 SetPropA
0x781574 DrawTextA
0x781578 GetCursor
0x78157c DrawStateA
0x781580 FrameRect
0x781584 GetNextDlgTabItem
0x781588 GetForegroundWindow
0x78158c LoadIconA
0x781590 TranslateMessage
0x781594 DrawFrameControl
0x781598 DrawEdge
0x78159c DrawFocusRect
0x7815a0 WindowFromPoint
0x7815a4 GetMessageA
0x7815a8 DispatchMessageA
0x7815ac SetRectEmpty
0x7815b0 CreateIconFromResourceEx
0x7815b4 CreateIconFromResource
0x7815b8 DrawIconEx
0x7815bc CreatePopupMenu
0x7815c0 AppendMenuA
0x7815c4 ModifyMenuA
0x7815c8 CreateMenu
0x7815cc CreateAcceleratorTableA
0x7815d0 GetDlgCtrlID
0x7815d4 GetSubMenu
0x7815d8 EnableMenuItem
0x7815dc ClientToScreen
0x7815e0 EnumDisplaySettingsA
0x7815e4 LoadImageA
0x7815e8 SystemParametersInfoA
0x7815ec ShowWindow
0x7815f0 IsWindowEnabled
0x7815f4 TranslateAcceleratorA
0x7815f8 GetKeyState
0x7815fc CopyAcceleratorTableA
0x781600 PostQuitMessage
0x781604 IsZoomed
0x781608 GetClassInfoA
0x78160c DefWindowProcA
0x781610 GetSystemMenu
0x781614 DeleteMenu
0x781618 GetMenu
0x78161c SetMenu
0x781620 PeekMessageA
0x781624 IsIconic
0x781628 SetFocus
0x78162c GetActiveWindow
0x781630 GetWindow
0x781634 DestroyAcceleratorTable
0x781638 SetWindowRgn
0x78163c GetMessagePos
0x781640 ScreenToClient
0x781644 ChildWindowFromPointEx
0x781648 CopyRect
0x78164c LoadBitmapA
0x781650 WinHelpA
0x781654 KillTimer
0x781658 SetTimer
0x78165c ReleaseCapture
0x781660 GetCapture
0x781664 SetCapture
0x781668 GetScrollRange
0x78166c SetScrollRange
0x781670 SetScrollPos
0x781674 SetRect
0x781678 InflateRect
0x78167c IntersectRect
0x781680 DestroyIcon
0x781684 PtInRect
0x781688 OffsetRect
0x78168c EnableWindow
0x781690 RedrawWindow
0x781694 GetWindowLongA
0x781698 SetWindowLongA
0x78169c GetSysColor
0x7816a0 SetActiveWindow
0x7816a4 SetCursorPos
0x7816a8 LoadCursorA
0x7816ac SetCursor
0x7816b0 GetDC
0x7816b4 FillRect
0x7816b8 IsRectEmpty
0x7816bc ReleaseDC
0x7816c0 IsChild
0x7816c4 TrackPopupMenu
0x7816c8 DestroyMenu
0x7816cc SetForegroundWindow
0x7816d0 GetWindowRect
0x7816d4 EqualRect
0x7816d8 UpdateWindow
0x7816dc ValidateRect
0x7816e0 InvalidateRect
0x7816e4 GetClientRect
0x7816e8 GetFocus
0x7816ec GetParent
0x7816f0 GetTopWindow
0x7816f4 PostMessageA
0x7816f8 IsWindow
0x7816fc SetParent
0x781700 DestroyCursor
0x781704 SendMessageA
0x781708 SetWindowPos
0x78170c MessageBoxA
0x781710 GetCursorPos
0x781714 GetSystemMetrics
0x781718 EmptyClipboard
0x78171c SetClipboardData
0x781720 OpenClipboard
0x781724 GetClipboardData
0x781728 CloseClipboard
0x78172c wsprintfA
0x781730 WaitForInputIdle
0x781734 LoadStringA
0x781738 RegisterClipboardFormatA
0x78173c IsWindowVisible
0x781740 UnregisterClassA
GDI32.dll
0x781084 FillRgn
0x781088 CreateRectRgn
0x78108c CombineRgn
0x781090 PatBlt
0x781094 CreatePen
0x781098 SelectObject
0x78109c CreatePatternBrush
0x7810a0 CreateBitmap
0x7810a4 CreateBrushIndirect
0x7810a8 CreateDCA
0x7810ac CreateCompatibleBitmap
0x7810b0 GetPolyFillMode
0x7810b4 GetStretchBltMode
0x7810b8 GetROP2
0x7810bc GetBkColor
0x7810c0 GetBkMode
0x7810c4 GetTextColor
0x7810c8 CreateRoundRectRgn
0x7810cc CreateEllipticRgn
0x7810d0 PathToRegion
0x7810d4 EndPath
0x7810d8 BeginPath
0x7810dc GetWindowOrgEx
0x7810e0 GetViewportOrgEx
0x7810e4 GetWindowExtEx
0x7810e8 ExtTextOutA
0x7810ec Escape
0x7810f0 TranslateCharsetInfo
0x7810f4 CreateSolidBrush
0x7810f8 SetPolyFillMode
0x7810fc SetROP2
0x781100 SetMapMode
0x781104 SetViewportOrgEx
0x781108 OffsetViewportOrgEx
0x78110c SetViewportExtEx
0x781110 ScaleViewportExtEx
0x781114 SetWindowExtEx
0x781118 ScaleWindowExtEx
0x78111c GetClipBox
0x781120 ExcludeClipRect
0x781124 CreateFontIndirectA
0x781128 MoveToEx
0x78112c LineTo
0x781130 ExtSelectClipRgn
0x781134 GetViewportExtEx
0x781138 GetTextMetricsA
0x78113c CreateFontA
0x781140 SetDIBitsToDevice
0x781144 SetTextColor
0x781148 SetBkMode
0x78114c TextOutA
0x781150 SetBkColor
0x781154 CreateRectRgnIndirect
0x781158 CreateDIBSection
0x78115c SetPixel
0x781160 SetStretchBltMode
0x781164 GetClipRgn
0x781168 CreatePolygonRgn
0x78116c SelectClipRgn
0x781170 DeleteObject
0x781174 CreateDIBitmap
0x781178 GetSystemPaletteEntries
0x78117c CreatePalette
0x781180 StretchBlt
0x781184 SelectPalette
0x781188 RealizePalette
0x78118c GetDIBits
0x781190 RectVisible
0x781194 PtVisible
0x781198 CreatePenIndirect
0x78119c RestoreDC
0x7811a0 Ellipse
0x7811a4 Rectangle
0x7811a8 LPtoDP
0x7811ac DPtoLP
0x7811b0 GetCurrentObject
0x7811b4 RoundRect
0x7811b8 SaveDC
0x7811bc SetWindowOrgEx
0x7811c0 GetStockObject
0x7811c4 GetObjectA
0x7811c8 EndPage
0x7811cc EndDoc
0x7811d0 DeleteDC
0x7811d4 StartDocA
0x7811d8 StartPage
0x7811dc BitBlt
0x7811e0 GetPixel
0x7811e4 CreateCompatibleDC
0x7811e8 GetTextExtentPoint32A
0x7811ec SetPixelV
0x7811f0 GetDeviceCaps
MSIMG32.dll
0x781468 GradientFill
WINSPOOL.DRV
0x7817c4 OpenPrinterA
0x7817c8 DocumentPropertiesA
0x7817cc ClosePrinter
comdlg32.dll
0x78183c ChooseColorA
0x781840 GetOpenFileNameA
0x781844 GetSaveFileNameA
0x781848 GetFileTitleA
ADVAPI32.dll
0x781000 RegCreateKeyExA
0x781004 RegOpenKeyA
0x781008 RegQueryValueA
0x78100c RegSetValueExA
0x781010 RegOpenKeyExA
0x781014 RegQueryValueExA
0x781018 RegCloseKey
0x78101c RegEnumValueA
SHELL32.dll
0x781494 SHGetFileInfoA
0x781498 DragAcceptFiles
0x78149c DragFinish
0x7814a0 ShellExecuteA
0x7814a4 Shell_NotifyIconA
0x7814a8 DragQueryFileA
ole32.dll
0x781858 ReleaseStgMedium
0x78185c RevokeDragDrop
0x781860 RegisterDragDrop
0x781864 OleUninitialize
0x781868 CLSIDFromString
0x78186c CoCreateInstance
0x781870 OleInitialize
OLEAUT32.dll
0x781478 RegisterTypeLib
0x78147c LoadTypeLib
0x781480 UnRegisterTypeLib
COMCTL32.dll
0x781030 ImageList_DragLeave
0x781034 ImageList_DragEnter
0x781038 ImageList_Destroy
0x78103c ImageList_Create
0x781040 ImageList_BeginDrag
0x781044 ImageList_Add
0x781048 ImageList_DragMove
0x78104c ImageList_Draw
0x781050 _TrackMouseEvent
0x781054 ImageList_SetBkColor
0x781058 ImageList_GetImageCount
0x78105c ImageList_GetImageInfo
0x781060 ImageList_GetIcon
0x781064 ImageList_DragShowNolock
0x781068 ImageList_EndDrag
0x78106c None
0x781070 ImageList_Read
0x781074 ImageList_DrawIndirect
0x781078 ImageList_AddMasked
0x78107c ImageList_Duplicate
WLDAP32.dll
0x7817d4 None
WININET.dll
0x781748 InternetSetOptionA
0x78174c InternetCrackUrlA
0x781750 HttpOpenRequestA
0x781754 HttpSendRequestA
0x781758 HttpQueryInfoA
0x78175c InternetReadFile
0x781760 InternetOpenA
0x781764 InternetCloseHandle
0x781768 InternetConnectA
0x78176c InternetCanonicalizeUrlA
EAT(Export Address Table) is none