ScreenShot
| Created | 2024.09.22 18:06 | Machine | s1_win7_x6403 |
| Filename | needmoney.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 56 detected (AIDetectMalware, Stealerc, Malicious, score, Trojanpws, Artemis, GenericKD, Unsafe, Save, confidence, DelphGen, Attribute, HighConfidence, high confidence, Kryptik, HXVV, MalwareX, TrojanPSW, tQDl1E5dURU, Stealc, mwfxv, DownLoader47, YXEIMZ, QBot, Detected, AGeneric, Malware@#fdue7qvkmhqy, ABTrojan, ANSE, Injuke, BScope, Sabsik, Guildma, Chgt, Gencirc, susgen, PossibleThreat) | ||
| md5 | 7fa5c660d124162c405984d14042506f | ||
| sha256 | fd3edfaff77dd969e3e0d086495e4c742d00e111df9f935ed61dfba8392584b2 | ||
| ssdeep | 98304:if7X0ZueTTPs6deIF+iHtcbBt2VSFjUCaZ:8bPeVdeIMiHmbeVS | ||
| imphash | 09461e896df904e3166547e3aded33a2 | ||
| impfuzzy | 192:f309tj18+buuSrSUvK92oqooqE6pXCPbOQPO:f3m1VSA9hkPbOQm | ||
Network IP location
Signature (8cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 56 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Foreign language identified in PE resource |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | One or more processes crashed |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The executable uses a known packer |
Rules (6cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
kernel32.dll
0x491140 DeleteCriticalSection
0x491144 LeaveCriticalSection
0x491148 EnterCriticalSection
0x49114c InitializeCriticalSection
0x491150 VirtualFree
0x491154 VirtualAlloc
0x491158 LocalFree
0x49115c LocalAlloc
0x491160 GetVersion
0x491164 GetCurrentThreadId
0x491168 InterlockedDecrement
0x49116c InterlockedIncrement
0x491170 VirtualQuery
0x491174 WideCharToMultiByte
0x491178 MultiByteToWideChar
0x49117c lstrlenA
0x491180 lstrcpynA
0x491184 LoadLibraryExA
0x491188 GetThreadLocale
0x49118c GetStartupInfoA
0x491190 GetProcAddress
0x491194 GetModuleHandleA
0x491198 GetModuleFileNameA
0x49119c GetLocaleInfoA
0x4911a0 GetCommandLineA
0x4911a4 FreeLibrary
0x4911a8 FindFirstFileA
0x4911ac FindClose
0x4911b0 ExitProcess
0x4911b4 WriteFile
0x4911b8 UnhandledExceptionFilter
0x4911bc RtlUnwind
0x4911c0 RaiseException
0x4911c4 GetStdHandle
user32.dll
0x4911cc GetKeyboardType
0x4911d0 LoadStringA
0x4911d4 MessageBoxA
0x4911d8 CharNextA
advapi32.dll
0x4911e0 RegQueryValueExA
0x4911e4 RegOpenKeyExA
0x4911e8 RegCloseKey
oleaut32.dll
0x4911f0 SysFreeString
0x4911f4 SysReAllocStringLen
0x4911f8 SysAllocStringLen
kernel32.dll
0x491200 TlsSetValue
0x491204 TlsGetValue
0x491208 LocalAlloc
0x49120c GetModuleHandleA
advapi32.dll
0x491214 RegQueryValueExA
0x491218 RegOpenKeyExA
0x49121c RegCloseKey
kernel32.dll
0x491224 lstrcpyA
0x491228 WriteFile
0x49122c WaitForSingleObject
0x491230 VirtualQuery
0x491234 VirtualAlloc
0x491238 Sleep
0x49123c SizeofResource
0x491240 SetThreadLocale
0x491244 SetFilePointer
0x491248 SetEvent
0x49124c SetErrorMode
0x491250 SetEndOfFile
0x491254 SearchPathA
0x491258 ResetEvent
0x49125c ReleaseMutex
0x491260 ReadFile
0x491264 OpenFileMappingA
0x491268 MultiByteToWideChar
0x49126c MulDiv
0x491270 LockResource
0x491274 LoadResource
0x491278 LoadLibraryA
0x49127c LeaveCriticalSection
0x491280 IsDBCSLeadByte
0x491284 InitializeCriticalSection
0x491288 GlobalUnlock
0x49128c GlobalReAlloc
0x491290 GlobalMemoryStatus
0x491294 GlobalHandle
0x491298 GlobalLock
0x49129c GlobalFree
0x4912a0 GlobalFindAtomA
0x4912a4 GlobalDeleteAtom
0x4912a8 GlobalAlloc
0x4912ac GlobalAddAtomA
0x4912b0 GetVersionExA
0x4912b4 GetVersion
0x4912b8 GetTickCount
0x4912bc GetThreadLocale
0x4912c0 GetTempPathA
0x4912c4 GetSystemInfo
0x4912c8 GetStringTypeExA
0x4912cc GetStdHandle
0x4912d0 GetProcAddress
0x4912d4 GetModuleHandleA
0x4912d8 GetModuleFileNameA
0x4912dc GetLocaleInfoA
0x4912e0 GetLocalTime
0x4912e4 GetLastError
0x4912e8 GetFullPathNameA
0x4912ec GetFileSize
0x4912f0 GetDiskFreeSpaceA
0x4912f4 GetDateFormatA
0x4912f8 GetCurrentThreadId
0x4912fc GetCurrentProcessId
0x491300 GetCurrentDirectoryA
0x491304 GetCPInfo
0x491308 GetACP
0x49130c FreeResource
0x491310 InterlockedIncrement
0x491314 InterlockedExchange
0x491318 InterlockedDecrement
0x49131c FreeLibrary
0x491320 FormatMessageA
0x491324 FindResourceA
0x491328 FindFirstFileA
0x49132c FindClose
0x491330 FileTimeToLocalFileTime
0x491334 FileTimeToDosDateTime
0x491338 FatalAppExitA
0x49133c EnumCalendarInfoA
0x491340 EnterCriticalSection
0x491344 DeleteCriticalSection
0x491348 CreateThread
0x49134c CreateMutexA
0x491350 CreateFileA
0x491354 CreateEventA
0x491358 CompareStringA
0x49135c CloseHandle
version.dll
0x491364 VerQueryValueA
0x491368 GetFileVersionInfoSizeA
0x49136c GetFileVersionInfoA
gdi32.dll
0x491374 UnrealizeObject
0x491378 StrokePath
0x49137c StretchBlt
0x491380 SetWindowOrgEx
0x491384 SetViewportOrgEx
0x491388 SetTextColor
0x49138c SetStretchBltMode
0x491390 SetROP2
0x491394 SetPixel
0x491398 SetDIBColorTable
0x49139c SetBrushOrgEx
0x4913a0 SetBkMode
0x4913a4 SetBkColor
0x4913a8 SelectPalette
0x4913ac SelectObject
0x4913b0 SaveDC
0x4913b4 RestoreDC
0x4913b8 RectVisible
0x4913bc RealizePalette
0x4913c0 PatBlt
0x4913c4 MoveToEx
0x4913c8 MaskBlt
0x4913cc LineTo
0x4913d0 IntersectClipRect
0x4913d4 GetWindowOrgEx
0x4913d8 GetTextMetricsA
0x4913dc GetTextExtentPoint32A
0x4913e0 GetTextAlign
0x4913e4 GetSystemPaletteEntries
0x4913e8 GetStockObject
0x4913ec GetPixel
0x4913f0 GetPaletteEntries
0x4913f4 GetObjectType
0x4913f8 GetObjectA
0x4913fc GetDeviceCaps
0x491400 GetDIBits
0x491404 GetDIBColorTable
0x491408 GetDCOrgEx
0x49140c GetCurrentPositionEx
0x491410 GetClipBox
0x491414 GetBrushOrgEx
0x491418 GetBitmapBits
0x49141c ExcludeClipRect
0x491420 DeleteObject
0x491424 DeleteDC
0x491428 CreateSolidBrush
0x49142c CreatePenIndirect
0x491430 CreatePalette
0x491434 CreateHalftonePalette
0x491438 CreateFontIndirectA
0x49143c CreateDIBitmap
0x491440 CreateDIBSection
0x491444 CreateCompatibleDC
0x491448 CreateCompatibleBitmap
0x49144c CreateBrushIndirect
0x491450 CreateBitmap
0x491454 BitBlt
user32.dll
0x49145c CreateWindowExA
0x491460 WindowFromPoint
0x491464 WinHelpA
0x491468 WaitMessage
0x49146c UpdateWindow
0x491470 UnregisterClassA
0x491474 UnhookWindowsHookEx
0x491478 TranslateMessage
0x49147c TranslateMDISysAccel
0x491480 TrackPopupMenu
0x491484 SystemParametersInfoA
0x491488 ShowWindow
0x49148c ShowScrollBar
0x491490 ShowOwnedPopups
0x491494 ShowCursor
0x491498 SetWindowsHookExA
0x49149c SetWindowPos
0x4914a0 SetWindowPlacement
0x4914a4 SetWindowLongA
0x4914a8 SetTimer
0x4914ac SetScrollRange
0x4914b0 SetScrollPos
0x4914b4 SetScrollInfo
0x4914b8 SetRect
0x4914bc SetPropA
0x4914c0 SetParent
0x4914c4 SetMenuItemInfoA
0x4914c8 SetMenu
0x4914cc SetForegroundWindow
0x4914d0 SetFocus
0x4914d4 SetCursor
0x4914d8 SetClassLongA
0x4914dc SetCapture
0x4914e0 SetActiveWindow
0x4914e4 SendMessageA
0x4914e8 ScrollWindow
0x4914ec ScreenToClient
0x4914f0 RemovePropA
0x4914f4 RemoveMenu
0x4914f8 ReleaseDC
0x4914fc ReleaseCapture
0x491500 RegisterWindowMessageA
0x491504 RegisterClipboardFormatA
0x491508 RegisterClassA
0x49150c RedrawWindow
0x491510 PtInRect
0x491514 PostQuitMessage
0x491518 PostMessageA
0x49151c PeekMessageA
0x491520 OffsetRect
0x491524 OemToCharBuffA
0x491528 OemToCharA
0x49152c MessageBoxA
0x491530 MapWindowPoints
0x491534 MapVirtualKeyA
0x491538 LoadStringA
0x49153c LoadKeyboardLayoutA
0x491540 LoadIconA
0x491544 LoadCursorA
0x491548 LoadBitmapA
0x49154c KillTimer
0x491550 IsZoomed
0x491554 IsWindowVisible
0x491558 IsWindowEnabled
0x49155c IsWindow
0x491560 IsRectEmpty
0x491564 IsIconic
0x491568 IsDialogMessageA
0x49156c IsChild
0x491570 InvalidateRect
0x491574 IntersectRect
0x491578 InsertMenuItemA
0x49157c InsertMenuA
0x491580 InflateRect
0x491584 GetWindowThreadProcessId
0x491588 GetWindowTextA
0x49158c GetWindowRect
0x491590 GetWindowPlacement
0x491594 GetWindowLongA
0x491598 GetWindowDC
0x49159c GetTopWindow
0x4915a0 GetSystemMetrics
0x4915a4 GetSystemMenu
0x4915a8 GetSysColorBrush
0x4915ac GetSysColor
0x4915b0 GetSubMenu
0x4915b4 GetScrollRange
0x4915b8 GetScrollPos
0x4915bc GetScrollInfo
0x4915c0 GetPropA
0x4915c4 GetParent
0x4915c8 GetWindow
0x4915cc GetMenuStringA
0x4915d0 GetMenuState
0x4915d4 GetMenuItemInfoA
0x4915d8 GetMenuItemID
0x4915dc GetMenuItemCount
0x4915e0 GetMenu
0x4915e4 GetLastActivePopup
0x4915e8 GetKeyboardState
0x4915ec GetKeyboardLayoutList
0x4915f0 GetKeyboardLayout
0x4915f4 GetKeyState
0x4915f8 GetKeyNameTextA
0x4915fc GetIconInfo
0x491600 GetForegroundWindow
0x491604 GetFocus
0x491608 GetDesktopWindow
0x49160c GetDCEx
0x491610 GetDC
0x491614 GetCursorPos
0x491618 GetCursor
0x49161c GetClientRect
0x491620 GetClassNameA
0x491624 GetClassInfoA
0x491628 GetCapture
0x49162c GetActiveWindow
0x491630 FrameRect
0x491634 FindWindowA
0x491638 FillRect
0x49163c EqualRect
0x491640 EnumWindows
0x491644 EnumThreadWindows
0x491648 EndPaint
0x49164c EnableWindow
0x491650 EnableScrollBar
0x491654 EnableMenuItem
0x491658 DrawTextA
0x49165c DrawMenuBar
0x491660 DrawIconEx
0x491664 DrawIcon
0x491668 DrawFrameControl
0x49166c DrawEdge
0x491670 DispatchMessageA
0x491674 DestroyWindow
0x491678 DestroyMenu
0x49167c DestroyIcon
0x491680 DestroyCursor
0x491684 DeleteMenu
0x491688 DefWindowProcA
0x49168c DefMDIChildProcA
0x491690 DefFrameProcA
0x491694 CreatePopupMenu
0x491698 CreateMenu
0x49169c CreateIcon
0x4916a0 ClientToScreen
0x4916a4 CheckMenuItem
0x4916a8 CallWindowProcA
0x4916ac CallNextHookEx
0x4916b0 BeginPaint
0x4916b4 CharNextA
0x4916b8 CharLowerA
0x4916bc CharUpperBuffA
0x4916c0 CharToOemBuffA
0x4916c4 CharToOemA
0x4916c8 AdjustWindowRectEx
0x4916cc ActivateKeyboardLayout
kernel32.dll
0x4916d4 Sleep
oleaut32.dll
0x4916dc SafeArrayPtrOfIndex
0x4916e0 SafeArrayPutElement
0x4916e4 SafeArrayGetElement
0x4916e8 SafeArrayUnaccessData
0x4916ec SafeArrayAccessData
0x4916f0 SafeArrayGetUBound
0x4916f4 SafeArrayGetLBound
0x4916f8 SafeArrayCreate
0x4916fc VariantChangeType
0x491700 VariantCopyInd
0x491704 VariantCopy
0x491708 VariantClear
0x49170c VariantInit
ole32.dll
0x491714 CLSIDFromProgID
0x491718 CoCreateInstance
0x49171c CoUninitialize
0x491720 CoInitialize
oleaut32.dll
0x491728 GetErrorInfo
0x49172c SysFreeString
comctl32.dll
0x491734 ImageList_SetIconSize
0x491738 ImageList_GetIconSize
0x49173c ImageList_Write
0x491740 ImageList_Read
0x491744 ImageList_GetDragImage
0x491748 ImageList_DragShowNolock
0x49174c ImageList_SetDragCursorImage
0x491750 ImageList_DragMove
0x491754 ImageList_DragLeave
0x491758 ImageList_DragEnter
0x49175c ImageList_EndDrag
0x491760 ImageList_BeginDrag
0x491764 ImageList_Remove
0x491768 ImageList_DrawEx
0x49176c ImageList_Draw
0x491770 ImageList_GetBkColor
0x491774 ImageList_SetBkColor
0x491778 ImageList_ReplaceIcon
0x49177c ImageList_Add
0x491780 ImageList_GetImageCount
0x491784 ImageList_Destroy
0x491788 ImageList_Create
EAT(Export Address Table) is none
kernel32.dll
0x491140 DeleteCriticalSection
0x491144 LeaveCriticalSection
0x491148 EnterCriticalSection
0x49114c InitializeCriticalSection
0x491150 VirtualFree
0x491154 VirtualAlloc
0x491158 LocalFree
0x49115c LocalAlloc
0x491160 GetVersion
0x491164 GetCurrentThreadId
0x491168 InterlockedDecrement
0x49116c InterlockedIncrement
0x491170 VirtualQuery
0x491174 WideCharToMultiByte
0x491178 MultiByteToWideChar
0x49117c lstrlenA
0x491180 lstrcpynA
0x491184 LoadLibraryExA
0x491188 GetThreadLocale
0x49118c GetStartupInfoA
0x491190 GetProcAddress
0x491194 GetModuleHandleA
0x491198 GetModuleFileNameA
0x49119c GetLocaleInfoA
0x4911a0 GetCommandLineA
0x4911a4 FreeLibrary
0x4911a8 FindFirstFileA
0x4911ac FindClose
0x4911b0 ExitProcess
0x4911b4 WriteFile
0x4911b8 UnhandledExceptionFilter
0x4911bc RtlUnwind
0x4911c0 RaiseException
0x4911c4 GetStdHandle
user32.dll
0x4911cc GetKeyboardType
0x4911d0 LoadStringA
0x4911d4 MessageBoxA
0x4911d8 CharNextA
advapi32.dll
0x4911e0 RegQueryValueExA
0x4911e4 RegOpenKeyExA
0x4911e8 RegCloseKey
oleaut32.dll
0x4911f0 SysFreeString
0x4911f4 SysReAllocStringLen
0x4911f8 SysAllocStringLen
kernel32.dll
0x491200 TlsSetValue
0x491204 TlsGetValue
0x491208 LocalAlloc
0x49120c GetModuleHandleA
advapi32.dll
0x491214 RegQueryValueExA
0x491218 RegOpenKeyExA
0x49121c RegCloseKey
kernel32.dll
0x491224 lstrcpyA
0x491228 WriteFile
0x49122c WaitForSingleObject
0x491230 VirtualQuery
0x491234 VirtualAlloc
0x491238 Sleep
0x49123c SizeofResource
0x491240 SetThreadLocale
0x491244 SetFilePointer
0x491248 SetEvent
0x49124c SetErrorMode
0x491250 SetEndOfFile
0x491254 SearchPathA
0x491258 ResetEvent
0x49125c ReleaseMutex
0x491260 ReadFile
0x491264 OpenFileMappingA
0x491268 MultiByteToWideChar
0x49126c MulDiv
0x491270 LockResource
0x491274 LoadResource
0x491278 LoadLibraryA
0x49127c LeaveCriticalSection
0x491280 IsDBCSLeadByte
0x491284 InitializeCriticalSection
0x491288 GlobalUnlock
0x49128c GlobalReAlloc
0x491290 GlobalMemoryStatus
0x491294 GlobalHandle
0x491298 GlobalLock
0x49129c GlobalFree
0x4912a0 GlobalFindAtomA
0x4912a4 GlobalDeleteAtom
0x4912a8 GlobalAlloc
0x4912ac GlobalAddAtomA
0x4912b0 GetVersionExA
0x4912b4 GetVersion
0x4912b8 GetTickCount
0x4912bc GetThreadLocale
0x4912c0 GetTempPathA
0x4912c4 GetSystemInfo
0x4912c8 GetStringTypeExA
0x4912cc GetStdHandle
0x4912d0 GetProcAddress
0x4912d4 GetModuleHandleA
0x4912d8 GetModuleFileNameA
0x4912dc GetLocaleInfoA
0x4912e0 GetLocalTime
0x4912e4 GetLastError
0x4912e8 GetFullPathNameA
0x4912ec GetFileSize
0x4912f0 GetDiskFreeSpaceA
0x4912f4 GetDateFormatA
0x4912f8 GetCurrentThreadId
0x4912fc GetCurrentProcessId
0x491300 GetCurrentDirectoryA
0x491304 GetCPInfo
0x491308 GetACP
0x49130c FreeResource
0x491310 InterlockedIncrement
0x491314 InterlockedExchange
0x491318 InterlockedDecrement
0x49131c FreeLibrary
0x491320 FormatMessageA
0x491324 FindResourceA
0x491328 FindFirstFileA
0x49132c FindClose
0x491330 FileTimeToLocalFileTime
0x491334 FileTimeToDosDateTime
0x491338 FatalAppExitA
0x49133c EnumCalendarInfoA
0x491340 EnterCriticalSection
0x491344 DeleteCriticalSection
0x491348 CreateThread
0x49134c CreateMutexA
0x491350 CreateFileA
0x491354 CreateEventA
0x491358 CompareStringA
0x49135c CloseHandle
version.dll
0x491364 VerQueryValueA
0x491368 GetFileVersionInfoSizeA
0x49136c GetFileVersionInfoA
gdi32.dll
0x491374 UnrealizeObject
0x491378 StrokePath
0x49137c StretchBlt
0x491380 SetWindowOrgEx
0x491384 SetViewportOrgEx
0x491388 SetTextColor
0x49138c SetStretchBltMode
0x491390 SetROP2
0x491394 SetPixel
0x491398 SetDIBColorTable
0x49139c SetBrushOrgEx
0x4913a0 SetBkMode
0x4913a4 SetBkColor
0x4913a8 SelectPalette
0x4913ac SelectObject
0x4913b0 SaveDC
0x4913b4 RestoreDC
0x4913b8 RectVisible
0x4913bc RealizePalette
0x4913c0 PatBlt
0x4913c4 MoveToEx
0x4913c8 MaskBlt
0x4913cc LineTo
0x4913d0 IntersectClipRect
0x4913d4 GetWindowOrgEx
0x4913d8 GetTextMetricsA
0x4913dc GetTextExtentPoint32A
0x4913e0 GetTextAlign
0x4913e4 GetSystemPaletteEntries
0x4913e8 GetStockObject
0x4913ec GetPixel
0x4913f0 GetPaletteEntries
0x4913f4 GetObjectType
0x4913f8 GetObjectA
0x4913fc GetDeviceCaps
0x491400 GetDIBits
0x491404 GetDIBColorTable
0x491408 GetDCOrgEx
0x49140c GetCurrentPositionEx
0x491410 GetClipBox
0x491414 GetBrushOrgEx
0x491418 GetBitmapBits
0x49141c ExcludeClipRect
0x491420 DeleteObject
0x491424 DeleteDC
0x491428 CreateSolidBrush
0x49142c CreatePenIndirect
0x491430 CreatePalette
0x491434 CreateHalftonePalette
0x491438 CreateFontIndirectA
0x49143c CreateDIBitmap
0x491440 CreateDIBSection
0x491444 CreateCompatibleDC
0x491448 CreateCompatibleBitmap
0x49144c CreateBrushIndirect
0x491450 CreateBitmap
0x491454 BitBlt
user32.dll
0x49145c CreateWindowExA
0x491460 WindowFromPoint
0x491464 WinHelpA
0x491468 WaitMessage
0x49146c UpdateWindow
0x491470 UnregisterClassA
0x491474 UnhookWindowsHookEx
0x491478 TranslateMessage
0x49147c TranslateMDISysAccel
0x491480 TrackPopupMenu
0x491484 SystemParametersInfoA
0x491488 ShowWindow
0x49148c ShowScrollBar
0x491490 ShowOwnedPopups
0x491494 ShowCursor
0x491498 SetWindowsHookExA
0x49149c SetWindowPos
0x4914a0 SetWindowPlacement
0x4914a4 SetWindowLongA
0x4914a8 SetTimer
0x4914ac SetScrollRange
0x4914b0 SetScrollPos
0x4914b4 SetScrollInfo
0x4914b8 SetRect
0x4914bc SetPropA
0x4914c0 SetParent
0x4914c4 SetMenuItemInfoA
0x4914c8 SetMenu
0x4914cc SetForegroundWindow
0x4914d0 SetFocus
0x4914d4 SetCursor
0x4914d8 SetClassLongA
0x4914dc SetCapture
0x4914e0 SetActiveWindow
0x4914e4 SendMessageA
0x4914e8 ScrollWindow
0x4914ec ScreenToClient
0x4914f0 RemovePropA
0x4914f4 RemoveMenu
0x4914f8 ReleaseDC
0x4914fc ReleaseCapture
0x491500 RegisterWindowMessageA
0x491504 RegisterClipboardFormatA
0x491508 RegisterClassA
0x49150c RedrawWindow
0x491510 PtInRect
0x491514 PostQuitMessage
0x491518 PostMessageA
0x49151c PeekMessageA
0x491520 OffsetRect
0x491524 OemToCharBuffA
0x491528 OemToCharA
0x49152c MessageBoxA
0x491530 MapWindowPoints
0x491534 MapVirtualKeyA
0x491538 LoadStringA
0x49153c LoadKeyboardLayoutA
0x491540 LoadIconA
0x491544 LoadCursorA
0x491548 LoadBitmapA
0x49154c KillTimer
0x491550 IsZoomed
0x491554 IsWindowVisible
0x491558 IsWindowEnabled
0x49155c IsWindow
0x491560 IsRectEmpty
0x491564 IsIconic
0x491568 IsDialogMessageA
0x49156c IsChild
0x491570 InvalidateRect
0x491574 IntersectRect
0x491578 InsertMenuItemA
0x49157c InsertMenuA
0x491580 InflateRect
0x491584 GetWindowThreadProcessId
0x491588 GetWindowTextA
0x49158c GetWindowRect
0x491590 GetWindowPlacement
0x491594 GetWindowLongA
0x491598 GetWindowDC
0x49159c GetTopWindow
0x4915a0 GetSystemMetrics
0x4915a4 GetSystemMenu
0x4915a8 GetSysColorBrush
0x4915ac GetSysColor
0x4915b0 GetSubMenu
0x4915b4 GetScrollRange
0x4915b8 GetScrollPos
0x4915bc GetScrollInfo
0x4915c0 GetPropA
0x4915c4 GetParent
0x4915c8 GetWindow
0x4915cc GetMenuStringA
0x4915d0 GetMenuState
0x4915d4 GetMenuItemInfoA
0x4915d8 GetMenuItemID
0x4915dc GetMenuItemCount
0x4915e0 GetMenu
0x4915e4 GetLastActivePopup
0x4915e8 GetKeyboardState
0x4915ec GetKeyboardLayoutList
0x4915f0 GetKeyboardLayout
0x4915f4 GetKeyState
0x4915f8 GetKeyNameTextA
0x4915fc GetIconInfo
0x491600 GetForegroundWindow
0x491604 GetFocus
0x491608 GetDesktopWindow
0x49160c GetDCEx
0x491610 GetDC
0x491614 GetCursorPos
0x491618 GetCursor
0x49161c GetClientRect
0x491620 GetClassNameA
0x491624 GetClassInfoA
0x491628 GetCapture
0x49162c GetActiveWindow
0x491630 FrameRect
0x491634 FindWindowA
0x491638 FillRect
0x49163c EqualRect
0x491640 EnumWindows
0x491644 EnumThreadWindows
0x491648 EndPaint
0x49164c EnableWindow
0x491650 EnableScrollBar
0x491654 EnableMenuItem
0x491658 DrawTextA
0x49165c DrawMenuBar
0x491660 DrawIconEx
0x491664 DrawIcon
0x491668 DrawFrameControl
0x49166c DrawEdge
0x491670 DispatchMessageA
0x491674 DestroyWindow
0x491678 DestroyMenu
0x49167c DestroyIcon
0x491680 DestroyCursor
0x491684 DeleteMenu
0x491688 DefWindowProcA
0x49168c DefMDIChildProcA
0x491690 DefFrameProcA
0x491694 CreatePopupMenu
0x491698 CreateMenu
0x49169c CreateIcon
0x4916a0 ClientToScreen
0x4916a4 CheckMenuItem
0x4916a8 CallWindowProcA
0x4916ac CallNextHookEx
0x4916b0 BeginPaint
0x4916b4 CharNextA
0x4916b8 CharLowerA
0x4916bc CharUpperBuffA
0x4916c0 CharToOemBuffA
0x4916c4 CharToOemA
0x4916c8 AdjustWindowRectEx
0x4916cc ActivateKeyboardLayout
kernel32.dll
0x4916d4 Sleep
oleaut32.dll
0x4916dc SafeArrayPtrOfIndex
0x4916e0 SafeArrayPutElement
0x4916e4 SafeArrayGetElement
0x4916e8 SafeArrayUnaccessData
0x4916ec SafeArrayAccessData
0x4916f0 SafeArrayGetUBound
0x4916f4 SafeArrayGetLBound
0x4916f8 SafeArrayCreate
0x4916fc VariantChangeType
0x491700 VariantCopyInd
0x491704 VariantCopy
0x491708 VariantClear
0x49170c VariantInit
ole32.dll
0x491714 CLSIDFromProgID
0x491718 CoCreateInstance
0x49171c CoUninitialize
0x491720 CoInitialize
oleaut32.dll
0x491728 GetErrorInfo
0x49172c SysFreeString
comctl32.dll
0x491734 ImageList_SetIconSize
0x491738 ImageList_GetIconSize
0x49173c ImageList_Write
0x491740 ImageList_Read
0x491744 ImageList_GetDragImage
0x491748 ImageList_DragShowNolock
0x49174c ImageList_SetDragCursorImage
0x491750 ImageList_DragMove
0x491754 ImageList_DragLeave
0x491758 ImageList_DragEnter
0x49175c ImageList_EndDrag
0x491760 ImageList_BeginDrag
0x491764 ImageList_Remove
0x491768 ImageList_DrawEx
0x49176c ImageList_Draw
0x491770 ImageList_GetBkColor
0x491774 ImageList_SetBkColor
0x491778 ImageList_ReplaceIcon
0x49177c ImageList_Add
0x491780 ImageList_GetImageCount
0x491784 ImageList_Destroy
0x491788 ImageList_Create
EAT(Export Address Table) is none