ScreenShot
| Created | 2024.09.22 15:22 | Machine | s1_win7_x6401 |
| Filename | config.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 11 detected (GenericKD, LabanCRTD, MALICIOUS, susgen) | ||
| md5 | 1734e1fd7e4ca651b03421c5a75441e9 | ||
| sha256 | c57490943138ebd0c8f502924019042a60f84581bf30a3043e978e6879685b0f | ||
| ssdeep | 49152:8aPgOSRlqQWfCAh5xsT/8+yCq/WU+94ewljNTZHE:8MMluqAh5xsTmCirUwljo | ||
| imphash | 8243a8dd74289010636e25acf6c0199c | ||
| impfuzzy | 192:WpfzFNpxpYUbyOI4k6bkABuE0y35THcxbcnczX5ZhQyKPnK/tZNNPWFKtf:ufJjx5yWkjf6L6aG1zOnctZNNPW0tf | ||
Network IP location
Signature (6cnts)
| Level | Description |
|---|---|
| watch | File has been identified by 11 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | Checks amount of memory in system |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
| info | This executable has a PDB path |
Rules (9cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_1_Zero | Win32 Trojan Emotet | binaries (upload) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | ASPack_Zero | ASPack packed file | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
KERNEL32.dll
0x5351e0 WriteConsoleA
0x5351e4 GetConsoleOutputCP
0x5351e8 WriteConsoleW
0x5351ec GetLocaleInfoA
0x5351f0 CreateFileA
0x5351f4 SetEnvironmentVariableA
0x5351f8 LCMapStringW
0x5351fc LCMapStringA
0x535200 InitializeCriticalSectionAndSpinCount
0x535204 GetConsoleMode
0x535208 GetConsoleCP
0x53520c GetTimeZoneInformation
0x535210 IsValidCodePage
0x535214 GetOEMCP
0x535218 GetCPInfo
0x53521c QueryPerformanceCounter
0x535220 VirtualFree
0x535224 HeapCreate
0x535228 GetStartupInfoA
0x53522c SetHandleCount
0x535230 CreateMutexW
0x535234 GetCommandLineW
0x535238 GetEnvironmentStringsW
0x53523c FreeEnvironmentStringsW
0x535240 GetModuleFileNameA
0x535244 GetStdHandle
0x535248 VirtualQuery
0x53524c GetSystemInfo
0x535250 VirtualAlloc
0x535254 HeapSize
0x535258 GetFileType
0x53525c RaiseException
0x535260 HeapReAlloc
0x535264 ExitThread
0x535268 ExitProcess
0x53526c RtlUnwind
0x535270 HeapFree
0x535274 HeapAlloc
0x535278 GetSystemTimeAsFileTime
0x53527c IsDebuggerPresent
0x535280 SetUnhandledExceptionFilter
0x535284 UnhandledExceptionFilter
0x535288 TerminateProcess
0x53528c GetStartupInfoW
0x535290 FindResourceExW
0x535294 VirtualProtect
0x535298 GetProfileIntW
0x53529c GetTickCount
0x5352a0 SearchPathW
0x5352a4 SetErrorMode
0x5352a8 GlobalGetAtomNameW
0x5352ac InterlockedIncrement
0x5352b0 TlsFree
0x5352b4 DeleteCriticalSection
0x5352b8 LocalReAlloc
0x5352bc TlsSetValue
0x5352c0 TlsAlloc
0x5352c4 InitializeCriticalSection
0x5352c8 GlobalHandle
0x5352cc GlobalReAlloc
0x5352d0 EnterCriticalSection
0x5352d4 TlsGetValue
0x5352d8 LeaveCriticalSection
0x5352dc LocalAlloc
0x5352e0 GlobalFlags
0x5352e4 GetCurrentDirectoryW
0x5352e8 GetStringTypeW
0x5352ec SetStdHandle
0x5352f0 GetStringTypeA
0x5352f4 lstrlenA
0x5352f8 GetFileTime
0x5352fc GetFileSizeEx
0x535300 FileTimeToLocalFileTime
0x535304 FileTimeToSystemTime
0x535308 CreateFileW
0x53530c GetFullPathNameW
0x535310 GetVolumeInformationW
0x535314 GetCurrentProcess
0x535318 DuplicateHandle
0x53531c GetFileSize
0x535320 SetEndOfFile
0x535324 UnlockFile
0x535328 LockFile
0x53532c FlushFileBuffers
0x535330 SetFilePointer
0x535334 WriteFile
0x535338 ReadFile
0x53533c GetThreadLocale
0x535340 InterlockedDecrement
0x535344 GetModuleHandleA
0x535348 GlobalFindAtomW
0x53534c GetVersionExW
0x535350 CompareStringW
0x535354 LoadLibraryA
0x535358 GetVersionExA
0x53535c GlobalSize
0x535360 FormatMessageW
0x535364 LocalFree
0x535368 MulDiv
0x53536c GetCurrentProcessId
0x535370 SetLastError
0x535374 GlobalAddAtomW
0x535378 WaitForSingleObject
0x53537c ResumeThread
0x535380 SetThreadPriority
0x535384 FreeResource
0x535388 GlobalDeleteAtom
0x53538c GetCurrentThread
0x535390 GetCurrentThreadId
0x535394 ConvertDefaultLocale
0x535398 EnumResourceLanguagesW
0x53539c lstrcmpA
0x5353a0 LoadLibraryW
0x5353a4 CompareStringA
0x5353a8 InterlockedExchange
0x5353ac lstrcmpW
0x5353b0 FreeLibrary
0x5353b4 GetProcAddress
0x5353b8 GetTempFileNameW
0x5353bc GetTempPathW
0x5353c0 GetPrivateProfileIntW
0x5353c4 GetPrivateProfileStringW
0x5353c8 CopyFileW
0x5353cc WritePrivateProfileStringW
0x5353d0 FindClose
0x5353d4 DeleteFileW
0x5353d8 FindFirstFileW
0x5353dc lstrcpyW
0x5353e0 lstrlenW
0x5353e4 GetFileAttributesW
0x5353e8 GlobalFree
0x5353ec GlobalUnlock
0x5353f0 GlobalLock
0x5353f4 GlobalAlloc
0x5353f8 WideCharToMultiByte
0x5353fc GetACP
0x535400 GetLocaleInfoW
0x535404 MultiByteToWideChar
0x535408 GetModuleFileNameW
0x53540c GetModuleHandleW
0x535410 Sleep
0x535414 TerminateThread
0x535418 CreateThread
0x53541c LockResource
0x535420 SizeofResource
0x535424 LoadResource
0x535428 FindResourceW
0x53542c CloseHandle
0x535430 GetLastError
0x535434 GetProcessHeap
USER32.dll
0x5354b8 MapVirtualKeyExW
0x5354bc GetKeyNameTextW
0x5354c0 IsCharLowerW
0x5354c4 GetMenuDefaultItem
0x5354c8 SetMenuDefaultItem
0x5354cc EnableScrollBar
0x5354d0 UnionRect
0x5354d4 SetCursorPos
0x5354d8 DrawFocusRect
0x5354dc DrawFrameControl
0x5354e0 DrawEdge
0x5354e4 DrawIconEx
0x5354e8 UnpackDDElParam
0x5354ec ReuseDDElParam
0x5354f0 InsertMenuItemW
0x5354f4 TranslateAcceleratorW
0x5354f8 GetMenuItemInfoW
0x5354fc GetNextDlgGroupItem
0x535500 InvalidateRgn
0x535504 SetRect
0x535508 CharNextW
0x53550c LoadImageW
0x535510 DestroyIcon
0x535514 CopyImage
0x535518 DrawStateW
0x53551c RegisterClipboardFormatW
0x535520 EnumChildWindows
0x535524 LockWindowUpdate
0x535528 BringWindowToTop
0x53552c IsRectEmpty
0x535530 KillTimer
0x535534 SetTimer
0x535538 InflateRect
0x53553c IsMenu
0x535540 GetSystemMenu
0x535544 SetClassLongW
0x535548 SetParent
0x53554c CreatePopupMenu
0x535550 NotifyWinEvent
0x535554 SetWindowRgn
0x535558 CreateAcceleratorTableW
0x53555c LoadAcceleratorsW
0x535560 DestroyAcceleratorTable
0x535564 GetAsyncKeyState
0x535568 GetKeyboardState
0x53556c GetKeyboardLayout
0x535570 MapVirtualKeyW
0x535574 ToUnicodeEx
0x535578 CopyAcceleratorTableW
0x53557c DestroyMenu
0x535580 PostThreadMessageW
0x535584 GetSysColorBrush
0x535588 SetRectEmpty
0x53558c DeleteMenu
0x535590 WaitMessage
0x535594 ReleaseCapture
0x535598 WindowFromPoint
0x53559c SetCapture
0x5355a0 CharUpperW
0x5355a4 GetDesktopWindow
0x5355a8 GetNextDlgTabItem
0x5355ac EndDialog
0x5355b0 GetWindowDC
0x5355b4 ReleaseDC
0x5355b8 ClientToScreen
0x5355bc GrayStringW
0x5355c0 DrawTextExW
0x5355c4 DrawTextW
0x5355c8 TabbedTextOutW
0x5355cc LoadMenuW
0x5355d0 MoveWindow
0x5355d4 SetWindowTextW
0x5355d8 IsDialogMessageW
0x5355dc CheckDlgButton
0x5355e0 IsClipboardFormatAvailable
0x5355e4 LoadIconW
0x5355e8 SendDlgItemMessageW
0x5355ec SendDlgItemMessageA
0x5355f0 IsChild
0x5355f4 GetCapture
0x5355f8 GetClassLongW
0x5355fc GetClassNameW
0x535600 SetPropW
0x535604 GetPropW
0x535608 RemovePropW
0x53560c SetFocus
0x535610 GetWindowTextLengthW
0x535614 GetWindowTextW
0x535618 GetForegroundWindow
0x53561c SetActiveWindow
0x535620 BeginDeferWindowPos
0x535624 EndDeferWindowPos
0x535628 GetDlgItem
0x53562c GetTopWindow
0x535630 UnhookWindowsHookEx
0x535634 GetMessageTime
0x535638 GetMessagePos
0x53563c MapWindowPoints
0x535640 ScrollWindow
0x535644 TrackPopupMenu
0x535648 SetMenu
0x53564c SetScrollRange
0x535650 GetScrollRange
0x535654 SetScrollPos
0x535658 GetScrollPos
0x53565c SetForegroundWindow
0x535660 ShowScrollBar
0x535664 GetClassInfoExW
0x535668 GetClassInfoW
0x53566c RegisterClassW
0x535670 GetSysColor
0x535674 AdjustWindowRectEx
0x535678 ScreenToClient
0x53567c EqualRect
0x535680 DeferWindowPos
0x535684 GetScrollInfo
0x535688 SetScrollInfo
0x53568c SetWindowPlacement
0x535690 GetDlgCtrlID
0x535694 CallWindowProcW
0x535698 CopyRect
0x53569c PtInRect
0x5356a0 GetMenu
0x5356a4 IntersectRect
0x5356a8 SystemParametersInfoA
0x5356ac IsIconic
0x5356b0 GetWindowPlacement
0x5356b4 GetMenuStringW
0x5356b8 AppendMenuW
0x5356bc GetMenuItemID
0x5356c0 InsertMenuW
0x5356c4 GetMenuItemCount
0x5356c8 GetSubMenu
0x5356cc RemoveMenu
0x5356d0 GetWindowThreadProcessId
0x5356d4 GetLastActivePopup
0x5356d8 IsWindowEnabled
0x5356dc MessageBoxW
0x5356e0 ShowOwnedPopups
0x5356e4 SetWindowsHookExW
0x5356e8 CallNextHookEx
0x5356ec GetMessageW
0x5356f0 TranslateMessage
0x5356f4 DispatchMessageW
0x5356f8 GetActiveWindow
0x5356fc GetKeyState
0x535700 DefFrameProcW
0x535704 DefMDIChildProcW
0x535708 DrawMenuBar
0x53570c TranslateMDISysAccel
0x535710 FrameRect
0x535714 GetUpdateRect
0x535718 CharUpperBuffW
0x53571c PeekMessageW
0x535720 GetCursorPos
0x535724 ValidateRect
0x535728 SetMenuItemBitmaps
0x53572c GetMenuCheckMarkDimensions
0x535730 LoadBitmapW
0x535734 GetFocus
0x535738 ModifyMenuW
0x53573c GetMenuState
0x535740 EnableMenuItem
0x535744 CheckMenuItem
0x535748 SetWindowContextHelpId
0x53574c DrawIcon
0x535750 DestroyCursor
0x535754 GetWindowRgn
0x535758 CreateMenu
0x53575c GetDoubleClickTime
0x535760 GetIconInfo
0x535764 SubtractRect
0x535768 RegisterWindowMessageW
0x53576c CopyIcon
0x535770 MapDialogRect
0x535774 WinHelpW
0x535778 SystemParametersInfoW
0x53577c OffsetRect
0x535780 MessageBeep
0x535784 RedrawWindow
0x535788 IsZoomed
0x53578c PostMessageW
0x535790 CloseClipboard
0x535794 SetClipboardData
0x535798 EmptyClipboard
0x53579c OpenClipboard
0x5357a0 UpdateLayeredWindow
0x5357a4 GetWindow
0x5357a8 ShowWindow
0x5357ac UnregisterClassW
0x5357b0 DestroyWindow
0x5357b4 CreateWindowExW
0x5357b8 RegisterClassExW
0x5357bc PostQuitMessage
0x5357c0 IsWindow
0x5357c4 GetSystemMetrics
0x5357c8 GetWindowRect
0x5357cc SetLayeredWindowAttributes
0x5357d0 SetWindowLongW
0x5357d4 GetWindowLongW
0x5357d8 EndPaint
0x5357dc BeginPaint
0x5357e0 GetDC
0x5357e4 DefWindowProcW
0x5357e8 UpdateWindow
0x5357ec SetWindowPos
0x5357f0 GetParent
0x5357f4 SendMessageW
0x5357f8 InvalidateRect
0x5357fc FillRect
0x535800 GetClientRect
0x535804 IsWindowVisible
0x535808 EnableWindow
0x53580c LoadCursorW
0x535810 SetCursor
0x535814 CreateDialogIndirectParamW
GDI32.dll
0x535048 CreatePen
0x53504c CreateHatchBrush
0x535050 CreateRectRgnIndirect
0x535054 OffsetRgn
0x535058 GetRgnBox
0x53505c CreateDIBitmap
0x535060 CreateFontIndirectW
0x535064 GetTextMetricsW
0x535068 EnumFontFamiliesW
0x53506c GetTextCharsetInfo
0x535070 GetTextColor
0x535074 GetTextExtentPoint32W
0x535078 SetDIBColorTable
0x53507c PatBlt
0x535080 GetDIBits
0x535084 RealizePalette
0x535088 CombineRgn
0x53508c StretchBlt
0x535090 SetPixel
0x535094 GetBkColor
0x535098 SetRectRgn
0x53509c GetMapMode
0x5350a0 DPtoLP
0x5350a4 CreateEllipticRgn
0x5350a8 CreatePolygonRgn
0x5350ac Polyline
0x5350b0 Ellipse
0x5350b4 Polygon
0x5350b8 Rectangle
0x5350bc RoundRect
0x5350c0 GetObjectType
0x5350c4 GetWindowOrgEx
0x5350c8 PtInRegion
0x5350cc FillRgn
0x5350d0 FrameRgn
0x5350d4 GetBoundsRect
0x5350d8 GetViewportOrgEx
0x5350dc LPtoDP
0x5350e0 ExtFloodFill
0x5350e4 SetPaletteEntries
0x5350e8 GetNearestPaletteIndex
0x5350ec GetSystemPaletteEntries
0x5350f0 EnumFontFamiliesExW
0x5350f4 GetTextFaceW
0x5350f8 SetPixelV
0x5350fc GetViewportExtEx
0x535100 CreatePalette
0x535104 SelectClipRgn
0x535108 GetWindowExtEx
0x53510c SelectPalette
0x535110 GetStockObject
0x535114 CreatePatternBrush
0x535118 ExtSelectClipRgn
0x53511c ScaleWindowExtEx
0x535120 SetWindowExtEx
0x535124 OffsetWindowOrgEx
0x535128 SetWindowOrgEx
0x53512c ScaleViewportExtEx
0x535130 SetViewportExtEx
0x535134 OffsetViewportOrgEx
0x535138 SetViewportOrgEx
0x53513c Escape
0x535140 ExtTextOutW
0x535144 TextOutW
0x535148 RectVisible
0x53514c PtVisible
0x535150 GetPaletteEntries
0x535154 DeleteObject
0x535158 SetTextAlign
0x53515c MoveToEx
0x535160 LineTo
0x535164 IntersectClipRect
0x535168 ExcludeClipRect
0x53516c SetMapMode
0x535170 SetROP2
0x535174 SetPolyFillMode
0x535178 SetBkMode
0x53517c RestoreDC
0x535180 SaveDC
0x535184 GetObjectW
0x535188 SetBkColor
0x53518c SetTextColor
0x535190 GetClipBox
0x535194 GetDCOrgEx
0x535198 CopyMetaFileW
0x53519c GetDeviceCaps
0x5351a0 CreateBitmap
0x5351a4 CreateDIBSection
0x5351a8 DeleteDC
0x5351ac CreateCompatibleBitmap
0x5351b0 BitBlt
0x5351b4 CreateCompatibleDC
0x5351b8 SelectObject
0x5351bc CreateSolidBrush
0x5351c0 CreateRectRgn
0x5351c4 CreateRoundRectRgn
0x5351c8 GetPixel
MSIMG32.dll
0x53543c AlphaBlend
0x535440 TransparentBlt
COMDLG32.dll
0x535040 GetFileTitleW
WINSPOOL.DRV
0x535824 ClosePrinter
0x535828 OpenPrinterW
0x53582c DocumentPropertiesW
ADVAPI32.dll
0x535000 RegQueryValueW
0x535004 RegCloseKey
0x535008 RegQueryValueExW
0x53500c RegCreateKeyExW
0x535010 RegSetValueExW
0x535014 RegDeleteValueW
0x535018 RegDeleteKeyW
0x53501c RegEnumKeyW
0x535020 RegOpenKeyW
0x535024 RegOpenKeyExW
0x535028 RegEnumKeyExW
SHELL32.dll
0x53547c DragFinish
0x535480 SHBrowseForFolderW
0x535484 SHGetPathFromIDListW
0x535488 SHGetFileInfoW
0x53548c SHAppBarMessage
0x535490 DragQueryFileW
0x535494 ShellExecuteW
COMCTL32.dll
0x535030 InitCommonControlsEx
0x535034 _TrackMouseEvent
0x535038 ImageList_GetIconSize
SHLWAPI.dll
0x53549c PathRemoveFileSpecW
0x5354a0 PathFileExistsW
0x5354a4 PathFindExtensionW
0x5354a8 PathFindFileNameW
0x5354ac PathStripToRootW
0x5354b0 PathIsUNCW
oledlg.dll
0x53596c OleUIBusyW
ole32.dll
0x5358ec ReleaseStgMedium
0x5358f0 CoTaskMemAlloc
0x5358f4 CLSIDFromString
0x5358f8 CLSIDFromProgID
0x5358fc CoTaskMemFree
0x535900 CreateStreamOnHGlobal
0x535904 CoUninitialize
0x535908 IsAccelerator
0x53590c OleDuplicateData
0x535910 CoGetClassObject
0x535914 StgOpenStorageOnILockBytes
0x535918 StgCreateDocfileOnILockBytes
0x53591c CreateILockBytesOnHGlobal
0x535920 CoCreateInstance
0x535924 OleLockRunning
0x535928 OleIsCurrentClipboard
0x53592c OleFlushClipboard
0x535930 DoDragDrop
0x535934 OleGetClipboard
0x535938 OleUninitialize
0x53593c CoFreeUnusedLibraries
0x535940 OleInitialize
0x535944 CoInitializeEx
0x535948 CoRegisterMessageFilter
0x53594c CoRevokeClassObject
0x535950 RevokeDragDrop
0x535954 CoLockObjectExternal
0x535958 RegisterDragDrop
0x53595c OleTranslateAccelerator
0x535960 OleDestroyMenuDescriptor
0x535964 OleCreateMenuDescriptor
OLEAUT32.dll
0x535448 SysFreeString
0x53544c VariantCopy
0x535450 SafeArrayDestroy
0x535454 SystemTimeToVariantTime
0x535458 VariantTimeToSystemTime
0x53545c OleCreateFontIndirect
0x535460 SysAllocString
0x535464 VariantInit
0x535468 VariantChangeType
0x53546c VariantClear
0x535470 SysStringLen
0x535474 SysAllocStringLen
gdiplus.dll
0x535834 GdipBitmapUnlockBits
0x535838 GdipBitmapLockBits
0x53583c GdipGetImagePalette
0x535840 GdipGetImagePaletteSize
0x535844 GdipGetImagePixelFormat
0x535848 GdipCreateBitmapFromStreamICM
0x53584c GdipCreateBitmapFromStream
0x535850 GdipReleaseDC
0x535854 GdipSetSmoothingMode
0x535858 GdipDeleteGraphics
0x53585c GdipDrawImageI
0x535860 GdipDrawLineI
0x535864 GdipDrawImageRectI
0x535868 GdipCreateFromHDC
0x53586c GdipCreateHBITMAPFromBitmap
0x535870 GdipCreateBitmapFromScan0
0x535874 GdipCloneImage
0x535878 GdipDisposeImage
0x53587c GdipDrawRectangleI
0x535880 GdipDeletePen
0x535884 GdipCreatePen1
0x535888 GdipFillRectangleI
0x53588c GdipCreateRegionHrgn
0x535890 GdipFillRegion
0x535894 GdipDrawString
0x535898 GdipSetStringFormatAlign
0x53589c GdipDeleteStringFormat
0x5358a0 GdipCreateStringFormat
0x5358a4 GdipGetFontHeight
0x5358a8 GdipDeleteFont
0x5358ac GdipCreateFontFamilyFromName
0x5358b0 GdipDeleteFontFamily
0x5358b4 GdipGetGenericFontFamilySansSerif
0x5358b8 GdipCreateFont
0x5358bc GdipCloneBrush
0x5358c0 GdipDeleteBrush
0x5358c4 GdipCreateSolidFill
0x5358c8 GdipFree
0x5358cc GdipAlloc
0x5358d0 GdipGetImageHeight
0x5358d4 GdipGetImageWidth
0x5358d8 GdipDrawImageRectRect
0x5358dc GdiplusShutdown
0x5358e0 GdiplusStartup
0x5358e4 GdipGetImageGraphicsContext
IMM32.dll
0x5351d0 ImmGetOpenStatus
0x5351d4 ImmReleaseContext
0x5351d8 ImmGetContext
WINMM.dll
0x53581c PlaySoundW
EAT(Export Address Table) is none
KERNEL32.dll
0x5351e0 WriteConsoleA
0x5351e4 GetConsoleOutputCP
0x5351e8 WriteConsoleW
0x5351ec GetLocaleInfoA
0x5351f0 CreateFileA
0x5351f4 SetEnvironmentVariableA
0x5351f8 LCMapStringW
0x5351fc LCMapStringA
0x535200 InitializeCriticalSectionAndSpinCount
0x535204 GetConsoleMode
0x535208 GetConsoleCP
0x53520c GetTimeZoneInformation
0x535210 IsValidCodePage
0x535214 GetOEMCP
0x535218 GetCPInfo
0x53521c QueryPerformanceCounter
0x535220 VirtualFree
0x535224 HeapCreate
0x535228 GetStartupInfoA
0x53522c SetHandleCount
0x535230 CreateMutexW
0x535234 GetCommandLineW
0x535238 GetEnvironmentStringsW
0x53523c FreeEnvironmentStringsW
0x535240 GetModuleFileNameA
0x535244 GetStdHandle
0x535248 VirtualQuery
0x53524c GetSystemInfo
0x535250 VirtualAlloc
0x535254 HeapSize
0x535258 GetFileType
0x53525c RaiseException
0x535260 HeapReAlloc
0x535264 ExitThread
0x535268 ExitProcess
0x53526c RtlUnwind
0x535270 HeapFree
0x535274 HeapAlloc
0x535278 GetSystemTimeAsFileTime
0x53527c IsDebuggerPresent
0x535280 SetUnhandledExceptionFilter
0x535284 UnhandledExceptionFilter
0x535288 TerminateProcess
0x53528c GetStartupInfoW
0x535290 FindResourceExW
0x535294 VirtualProtect
0x535298 GetProfileIntW
0x53529c GetTickCount
0x5352a0 SearchPathW
0x5352a4 SetErrorMode
0x5352a8 GlobalGetAtomNameW
0x5352ac InterlockedIncrement
0x5352b0 TlsFree
0x5352b4 DeleteCriticalSection
0x5352b8 LocalReAlloc
0x5352bc TlsSetValue
0x5352c0 TlsAlloc
0x5352c4 InitializeCriticalSection
0x5352c8 GlobalHandle
0x5352cc GlobalReAlloc
0x5352d0 EnterCriticalSection
0x5352d4 TlsGetValue
0x5352d8 LeaveCriticalSection
0x5352dc LocalAlloc
0x5352e0 GlobalFlags
0x5352e4 GetCurrentDirectoryW
0x5352e8 GetStringTypeW
0x5352ec SetStdHandle
0x5352f0 GetStringTypeA
0x5352f4 lstrlenA
0x5352f8 GetFileTime
0x5352fc GetFileSizeEx
0x535300 FileTimeToLocalFileTime
0x535304 FileTimeToSystemTime
0x535308 CreateFileW
0x53530c GetFullPathNameW
0x535310 GetVolumeInformationW
0x535314 GetCurrentProcess
0x535318 DuplicateHandle
0x53531c GetFileSize
0x535320 SetEndOfFile
0x535324 UnlockFile
0x535328 LockFile
0x53532c FlushFileBuffers
0x535330 SetFilePointer
0x535334 WriteFile
0x535338 ReadFile
0x53533c GetThreadLocale
0x535340 InterlockedDecrement
0x535344 GetModuleHandleA
0x535348 GlobalFindAtomW
0x53534c GetVersionExW
0x535350 CompareStringW
0x535354 LoadLibraryA
0x535358 GetVersionExA
0x53535c GlobalSize
0x535360 FormatMessageW
0x535364 LocalFree
0x535368 MulDiv
0x53536c GetCurrentProcessId
0x535370 SetLastError
0x535374 GlobalAddAtomW
0x535378 WaitForSingleObject
0x53537c ResumeThread
0x535380 SetThreadPriority
0x535384 FreeResource
0x535388 GlobalDeleteAtom
0x53538c GetCurrentThread
0x535390 GetCurrentThreadId
0x535394 ConvertDefaultLocale
0x535398 EnumResourceLanguagesW
0x53539c lstrcmpA
0x5353a0 LoadLibraryW
0x5353a4 CompareStringA
0x5353a8 InterlockedExchange
0x5353ac lstrcmpW
0x5353b0 FreeLibrary
0x5353b4 GetProcAddress
0x5353b8 GetTempFileNameW
0x5353bc GetTempPathW
0x5353c0 GetPrivateProfileIntW
0x5353c4 GetPrivateProfileStringW
0x5353c8 CopyFileW
0x5353cc WritePrivateProfileStringW
0x5353d0 FindClose
0x5353d4 DeleteFileW
0x5353d8 FindFirstFileW
0x5353dc lstrcpyW
0x5353e0 lstrlenW
0x5353e4 GetFileAttributesW
0x5353e8 GlobalFree
0x5353ec GlobalUnlock
0x5353f0 GlobalLock
0x5353f4 GlobalAlloc
0x5353f8 WideCharToMultiByte
0x5353fc GetACP
0x535400 GetLocaleInfoW
0x535404 MultiByteToWideChar
0x535408 GetModuleFileNameW
0x53540c GetModuleHandleW
0x535410 Sleep
0x535414 TerminateThread
0x535418 CreateThread
0x53541c LockResource
0x535420 SizeofResource
0x535424 LoadResource
0x535428 FindResourceW
0x53542c CloseHandle
0x535430 GetLastError
0x535434 GetProcessHeap
USER32.dll
0x5354b8 MapVirtualKeyExW
0x5354bc GetKeyNameTextW
0x5354c0 IsCharLowerW
0x5354c4 GetMenuDefaultItem
0x5354c8 SetMenuDefaultItem
0x5354cc EnableScrollBar
0x5354d0 UnionRect
0x5354d4 SetCursorPos
0x5354d8 DrawFocusRect
0x5354dc DrawFrameControl
0x5354e0 DrawEdge
0x5354e4 DrawIconEx
0x5354e8 UnpackDDElParam
0x5354ec ReuseDDElParam
0x5354f0 InsertMenuItemW
0x5354f4 TranslateAcceleratorW
0x5354f8 GetMenuItemInfoW
0x5354fc GetNextDlgGroupItem
0x535500 InvalidateRgn
0x535504 SetRect
0x535508 CharNextW
0x53550c LoadImageW
0x535510 DestroyIcon
0x535514 CopyImage
0x535518 DrawStateW
0x53551c RegisterClipboardFormatW
0x535520 EnumChildWindows
0x535524 LockWindowUpdate
0x535528 BringWindowToTop
0x53552c IsRectEmpty
0x535530 KillTimer
0x535534 SetTimer
0x535538 InflateRect
0x53553c IsMenu
0x535540 GetSystemMenu
0x535544 SetClassLongW
0x535548 SetParent
0x53554c CreatePopupMenu
0x535550 NotifyWinEvent
0x535554 SetWindowRgn
0x535558 CreateAcceleratorTableW
0x53555c LoadAcceleratorsW
0x535560 DestroyAcceleratorTable
0x535564 GetAsyncKeyState
0x535568 GetKeyboardState
0x53556c GetKeyboardLayout
0x535570 MapVirtualKeyW
0x535574 ToUnicodeEx
0x535578 CopyAcceleratorTableW
0x53557c DestroyMenu
0x535580 PostThreadMessageW
0x535584 GetSysColorBrush
0x535588 SetRectEmpty
0x53558c DeleteMenu
0x535590 WaitMessage
0x535594 ReleaseCapture
0x535598 WindowFromPoint
0x53559c SetCapture
0x5355a0 CharUpperW
0x5355a4 GetDesktopWindow
0x5355a8 GetNextDlgTabItem
0x5355ac EndDialog
0x5355b0 GetWindowDC
0x5355b4 ReleaseDC
0x5355b8 ClientToScreen
0x5355bc GrayStringW
0x5355c0 DrawTextExW
0x5355c4 DrawTextW
0x5355c8 TabbedTextOutW
0x5355cc LoadMenuW
0x5355d0 MoveWindow
0x5355d4 SetWindowTextW
0x5355d8 IsDialogMessageW
0x5355dc CheckDlgButton
0x5355e0 IsClipboardFormatAvailable
0x5355e4 LoadIconW
0x5355e8 SendDlgItemMessageW
0x5355ec SendDlgItemMessageA
0x5355f0 IsChild
0x5355f4 GetCapture
0x5355f8 GetClassLongW
0x5355fc GetClassNameW
0x535600 SetPropW
0x535604 GetPropW
0x535608 RemovePropW
0x53560c SetFocus
0x535610 GetWindowTextLengthW
0x535614 GetWindowTextW
0x535618 GetForegroundWindow
0x53561c SetActiveWindow
0x535620 BeginDeferWindowPos
0x535624 EndDeferWindowPos
0x535628 GetDlgItem
0x53562c GetTopWindow
0x535630 UnhookWindowsHookEx
0x535634 GetMessageTime
0x535638 GetMessagePos
0x53563c MapWindowPoints
0x535640 ScrollWindow
0x535644 TrackPopupMenu
0x535648 SetMenu
0x53564c SetScrollRange
0x535650 GetScrollRange
0x535654 SetScrollPos
0x535658 GetScrollPos
0x53565c SetForegroundWindow
0x535660 ShowScrollBar
0x535664 GetClassInfoExW
0x535668 GetClassInfoW
0x53566c RegisterClassW
0x535670 GetSysColor
0x535674 AdjustWindowRectEx
0x535678 ScreenToClient
0x53567c EqualRect
0x535680 DeferWindowPos
0x535684 GetScrollInfo
0x535688 SetScrollInfo
0x53568c SetWindowPlacement
0x535690 GetDlgCtrlID
0x535694 CallWindowProcW
0x535698 CopyRect
0x53569c PtInRect
0x5356a0 GetMenu
0x5356a4 IntersectRect
0x5356a8 SystemParametersInfoA
0x5356ac IsIconic
0x5356b0 GetWindowPlacement
0x5356b4 GetMenuStringW
0x5356b8 AppendMenuW
0x5356bc GetMenuItemID
0x5356c0 InsertMenuW
0x5356c4 GetMenuItemCount
0x5356c8 GetSubMenu
0x5356cc RemoveMenu
0x5356d0 GetWindowThreadProcessId
0x5356d4 GetLastActivePopup
0x5356d8 IsWindowEnabled
0x5356dc MessageBoxW
0x5356e0 ShowOwnedPopups
0x5356e4 SetWindowsHookExW
0x5356e8 CallNextHookEx
0x5356ec GetMessageW
0x5356f0 TranslateMessage
0x5356f4 DispatchMessageW
0x5356f8 GetActiveWindow
0x5356fc GetKeyState
0x535700 DefFrameProcW
0x535704 DefMDIChildProcW
0x535708 DrawMenuBar
0x53570c TranslateMDISysAccel
0x535710 FrameRect
0x535714 GetUpdateRect
0x535718 CharUpperBuffW
0x53571c PeekMessageW
0x535720 GetCursorPos
0x535724 ValidateRect
0x535728 SetMenuItemBitmaps
0x53572c GetMenuCheckMarkDimensions
0x535730 LoadBitmapW
0x535734 GetFocus
0x535738 ModifyMenuW
0x53573c GetMenuState
0x535740 EnableMenuItem
0x535744 CheckMenuItem
0x535748 SetWindowContextHelpId
0x53574c DrawIcon
0x535750 DestroyCursor
0x535754 GetWindowRgn
0x535758 CreateMenu
0x53575c GetDoubleClickTime
0x535760 GetIconInfo
0x535764 SubtractRect
0x535768 RegisterWindowMessageW
0x53576c CopyIcon
0x535770 MapDialogRect
0x535774 WinHelpW
0x535778 SystemParametersInfoW
0x53577c OffsetRect
0x535780 MessageBeep
0x535784 RedrawWindow
0x535788 IsZoomed
0x53578c PostMessageW
0x535790 CloseClipboard
0x535794 SetClipboardData
0x535798 EmptyClipboard
0x53579c OpenClipboard
0x5357a0 UpdateLayeredWindow
0x5357a4 GetWindow
0x5357a8 ShowWindow
0x5357ac UnregisterClassW
0x5357b0 DestroyWindow
0x5357b4 CreateWindowExW
0x5357b8 RegisterClassExW
0x5357bc PostQuitMessage
0x5357c0 IsWindow
0x5357c4 GetSystemMetrics
0x5357c8 GetWindowRect
0x5357cc SetLayeredWindowAttributes
0x5357d0 SetWindowLongW
0x5357d4 GetWindowLongW
0x5357d8 EndPaint
0x5357dc BeginPaint
0x5357e0 GetDC
0x5357e4 DefWindowProcW
0x5357e8 UpdateWindow
0x5357ec SetWindowPos
0x5357f0 GetParent
0x5357f4 SendMessageW
0x5357f8 InvalidateRect
0x5357fc FillRect
0x535800 GetClientRect
0x535804 IsWindowVisible
0x535808 EnableWindow
0x53580c LoadCursorW
0x535810 SetCursor
0x535814 CreateDialogIndirectParamW
GDI32.dll
0x535048 CreatePen
0x53504c CreateHatchBrush
0x535050 CreateRectRgnIndirect
0x535054 OffsetRgn
0x535058 GetRgnBox
0x53505c CreateDIBitmap
0x535060 CreateFontIndirectW
0x535064 GetTextMetricsW
0x535068 EnumFontFamiliesW
0x53506c GetTextCharsetInfo
0x535070 GetTextColor
0x535074 GetTextExtentPoint32W
0x535078 SetDIBColorTable
0x53507c PatBlt
0x535080 GetDIBits
0x535084 RealizePalette
0x535088 CombineRgn
0x53508c StretchBlt
0x535090 SetPixel
0x535094 GetBkColor
0x535098 SetRectRgn
0x53509c GetMapMode
0x5350a0 DPtoLP
0x5350a4 CreateEllipticRgn
0x5350a8 CreatePolygonRgn
0x5350ac Polyline
0x5350b0 Ellipse
0x5350b4 Polygon
0x5350b8 Rectangle
0x5350bc RoundRect
0x5350c0 GetObjectType
0x5350c4 GetWindowOrgEx
0x5350c8 PtInRegion
0x5350cc FillRgn
0x5350d0 FrameRgn
0x5350d4 GetBoundsRect
0x5350d8 GetViewportOrgEx
0x5350dc LPtoDP
0x5350e0 ExtFloodFill
0x5350e4 SetPaletteEntries
0x5350e8 GetNearestPaletteIndex
0x5350ec GetSystemPaletteEntries
0x5350f0 EnumFontFamiliesExW
0x5350f4 GetTextFaceW
0x5350f8 SetPixelV
0x5350fc GetViewportExtEx
0x535100 CreatePalette
0x535104 SelectClipRgn
0x535108 GetWindowExtEx
0x53510c SelectPalette
0x535110 GetStockObject
0x535114 CreatePatternBrush
0x535118 ExtSelectClipRgn
0x53511c ScaleWindowExtEx
0x535120 SetWindowExtEx
0x535124 OffsetWindowOrgEx
0x535128 SetWindowOrgEx
0x53512c ScaleViewportExtEx
0x535130 SetViewportExtEx
0x535134 OffsetViewportOrgEx
0x535138 SetViewportOrgEx
0x53513c Escape
0x535140 ExtTextOutW
0x535144 TextOutW
0x535148 RectVisible
0x53514c PtVisible
0x535150 GetPaletteEntries
0x535154 DeleteObject
0x535158 SetTextAlign
0x53515c MoveToEx
0x535160 LineTo
0x535164 IntersectClipRect
0x535168 ExcludeClipRect
0x53516c SetMapMode
0x535170 SetROP2
0x535174 SetPolyFillMode
0x535178 SetBkMode
0x53517c RestoreDC
0x535180 SaveDC
0x535184 GetObjectW
0x535188 SetBkColor
0x53518c SetTextColor
0x535190 GetClipBox
0x535194 GetDCOrgEx
0x535198 CopyMetaFileW
0x53519c GetDeviceCaps
0x5351a0 CreateBitmap
0x5351a4 CreateDIBSection
0x5351a8 DeleteDC
0x5351ac CreateCompatibleBitmap
0x5351b0 BitBlt
0x5351b4 CreateCompatibleDC
0x5351b8 SelectObject
0x5351bc CreateSolidBrush
0x5351c0 CreateRectRgn
0x5351c4 CreateRoundRectRgn
0x5351c8 GetPixel
MSIMG32.dll
0x53543c AlphaBlend
0x535440 TransparentBlt
COMDLG32.dll
0x535040 GetFileTitleW
WINSPOOL.DRV
0x535824 ClosePrinter
0x535828 OpenPrinterW
0x53582c DocumentPropertiesW
ADVAPI32.dll
0x535000 RegQueryValueW
0x535004 RegCloseKey
0x535008 RegQueryValueExW
0x53500c RegCreateKeyExW
0x535010 RegSetValueExW
0x535014 RegDeleteValueW
0x535018 RegDeleteKeyW
0x53501c RegEnumKeyW
0x535020 RegOpenKeyW
0x535024 RegOpenKeyExW
0x535028 RegEnumKeyExW
SHELL32.dll
0x53547c DragFinish
0x535480 SHBrowseForFolderW
0x535484 SHGetPathFromIDListW
0x535488 SHGetFileInfoW
0x53548c SHAppBarMessage
0x535490 DragQueryFileW
0x535494 ShellExecuteW
COMCTL32.dll
0x535030 InitCommonControlsEx
0x535034 _TrackMouseEvent
0x535038 ImageList_GetIconSize
SHLWAPI.dll
0x53549c PathRemoveFileSpecW
0x5354a0 PathFileExistsW
0x5354a4 PathFindExtensionW
0x5354a8 PathFindFileNameW
0x5354ac PathStripToRootW
0x5354b0 PathIsUNCW
oledlg.dll
0x53596c OleUIBusyW
ole32.dll
0x5358ec ReleaseStgMedium
0x5358f0 CoTaskMemAlloc
0x5358f4 CLSIDFromString
0x5358f8 CLSIDFromProgID
0x5358fc CoTaskMemFree
0x535900 CreateStreamOnHGlobal
0x535904 CoUninitialize
0x535908 IsAccelerator
0x53590c OleDuplicateData
0x535910 CoGetClassObject
0x535914 StgOpenStorageOnILockBytes
0x535918 StgCreateDocfileOnILockBytes
0x53591c CreateILockBytesOnHGlobal
0x535920 CoCreateInstance
0x535924 OleLockRunning
0x535928 OleIsCurrentClipboard
0x53592c OleFlushClipboard
0x535930 DoDragDrop
0x535934 OleGetClipboard
0x535938 OleUninitialize
0x53593c CoFreeUnusedLibraries
0x535940 OleInitialize
0x535944 CoInitializeEx
0x535948 CoRegisterMessageFilter
0x53594c CoRevokeClassObject
0x535950 RevokeDragDrop
0x535954 CoLockObjectExternal
0x535958 RegisterDragDrop
0x53595c OleTranslateAccelerator
0x535960 OleDestroyMenuDescriptor
0x535964 OleCreateMenuDescriptor
OLEAUT32.dll
0x535448 SysFreeString
0x53544c VariantCopy
0x535450 SafeArrayDestroy
0x535454 SystemTimeToVariantTime
0x535458 VariantTimeToSystemTime
0x53545c OleCreateFontIndirect
0x535460 SysAllocString
0x535464 VariantInit
0x535468 VariantChangeType
0x53546c VariantClear
0x535470 SysStringLen
0x535474 SysAllocStringLen
gdiplus.dll
0x535834 GdipBitmapUnlockBits
0x535838 GdipBitmapLockBits
0x53583c GdipGetImagePalette
0x535840 GdipGetImagePaletteSize
0x535844 GdipGetImagePixelFormat
0x535848 GdipCreateBitmapFromStreamICM
0x53584c GdipCreateBitmapFromStream
0x535850 GdipReleaseDC
0x535854 GdipSetSmoothingMode
0x535858 GdipDeleteGraphics
0x53585c GdipDrawImageI
0x535860 GdipDrawLineI
0x535864 GdipDrawImageRectI
0x535868 GdipCreateFromHDC
0x53586c GdipCreateHBITMAPFromBitmap
0x535870 GdipCreateBitmapFromScan0
0x535874 GdipCloneImage
0x535878 GdipDisposeImage
0x53587c GdipDrawRectangleI
0x535880 GdipDeletePen
0x535884 GdipCreatePen1
0x535888 GdipFillRectangleI
0x53588c GdipCreateRegionHrgn
0x535890 GdipFillRegion
0x535894 GdipDrawString
0x535898 GdipSetStringFormatAlign
0x53589c GdipDeleteStringFormat
0x5358a0 GdipCreateStringFormat
0x5358a4 GdipGetFontHeight
0x5358a8 GdipDeleteFont
0x5358ac GdipCreateFontFamilyFromName
0x5358b0 GdipDeleteFontFamily
0x5358b4 GdipGetGenericFontFamilySansSerif
0x5358b8 GdipCreateFont
0x5358bc GdipCloneBrush
0x5358c0 GdipDeleteBrush
0x5358c4 GdipCreateSolidFill
0x5358c8 GdipFree
0x5358cc GdipAlloc
0x5358d0 GdipGetImageHeight
0x5358d4 GdipGetImageWidth
0x5358d8 GdipDrawImageRectRect
0x5358dc GdiplusShutdown
0x5358e0 GdiplusStartup
0x5358e4 GdipGetImageGraphicsContext
IMM32.dll
0x5351d0 ImmGetOpenStatus
0x5351d4 ImmReleaseContext
0x5351d8 ImmGetContext
WINMM.dll
0x53581c PlaySoundW
EAT(Export Address Table) is none