ScreenShot
| Created | 2024.09.30 09:37 | Machine | s1_win7_x6403 |
| Filename | tstory.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 6 detected (AIDetectMalware, Crysan, Diztakun, Detected, Outbreak) | ||
| md5 | 2e440604cac15e233d3832e00251592e | ||
| sha256 | 7e57e8caddb50f98bd8b3f17fb9fd21372cc32b0147d5e3853f043745e204a41 | ||
| ssdeep | 24576:hUNxvqF6FGYJf6yjNQpNONZNlTX5PlGPgquLEIWxUc7N11QaSYx7GqOsWH6UbAh:hUNxvC6FGYJf6yjNQpNONZnTX5PlGPgG | ||
| imphash | a649e6750bcf2911044dec744c57f40f | ||
| impfuzzy | 192:Qn6Uc0NowFBaKThYWWF5+LQf1rz4e5EV9Pq:dB0No2bTs+LG4bPq | ||
Network IP location
Signature (8cnts)
| Level | Description |
|---|---|
| watch | Installs an hook procedure to monitor for mouse events |
| watch | Looks for the Windows Idle Time to determine the uptime |
| notice | Executes one or more WMI queries |
| notice | File has been identified by 6 AntiVirus engines on VirusTotal as malicious |
| notice | Queries the disk size which could be used to detect virtual machine with small fixed size or dynamic allocation |
| info | Checks amount of memory in system |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (6cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
PE API
IAT(Import Address Table) Library
WSOCK32.dll
0x1400e0e30 gethostbyname
0x1400e0e38 inet_addr
0x1400e0e40 WSACleanup
0x1400e0e48 gethostname
0x1400e0e50 WSAStartup
WINMM.dll
0x1400e0dc8 mixerGetLineInfoW
0x1400e0dd0 mixerGetDevCapsW
0x1400e0dd8 mixerOpen
0x1400e0de0 mciSendStringW
0x1400e0de8 joyGetPosEx
0x1400e0df0 mixerGetLineControlsW
0x1400e0df8 mixerGetControlDetailsW
0x1400e0e00 mixerSetControlDetails
0x1400e0e08 waveOutGetVolume
0x1400e0e10 mixerClose
0x1400e0e18 waveOutSetVolume
0x1400e0e20 joyGetDevCapsW
VERSION.dll
0x1400e0d78 GetFileVersionInfoW
0x1400e0d80 VerQueryValueW
0x1400e0d88 GetFileVersionInfoSizeW
COMCTL32.dll
0x1400e00a0 ImageList_Create
0x1400e00a8 CreateStatusWindowW
0x1400e00b0 ImageList_ReplaceIcon
0x1400e00b8 ImageList_GetIconSize
0x1400e00c0 ImageList_Destroy
0x1400e00c8 ImageList_AddMasked
PSAPI.DLL
0x1400e0780 GetProcessImageFileNameW
0x1400e0788 GetModuleBaseNameW
0x1400e0790 GetModuleFileNameExW
WININET.dll
0x1400e0d98 InternetOpenW
0x1400e0da0 InternetOpenUrlW
0x1400e0da8 InternetCloseHandle
0x1400e0db0 InternetReadFileExA
0x1400e0db8 InternetReadFile
KERNEL32.dll
0x1400e0210 GetModuleFileNameW
0x1400e0218 GetSystemTimeAsFileTime
0x1400e0220 FindResourceW
0x1400e0228 SizeofResource
0x1400e0230 LoadResource
0x1400e0238 LockResource
0x1400e0240 GetFullPathNameW
0x1400e0248 GetShortPathNameW
0x1400e0250 FindFirstFileW
0x1400e0258 FindNextFileW
0x1400e0260 FindClose
0x1400e0268 FileTimeToLocalFileTime
0x1400e0270 SetEnvironmentVariableW
0x1400e0278 Beep
0x1400e0280 MoveFileW
0x1400e0288 OutputDebugStringW
0x1400e0290 CreateProcessW
0x1400e0298 GetFileAttributesW
0x1400e02a0 WideCharToMultiByte
0x1400e02a8 MultiByteToWideChar
0x1400e02b0 GetExitCodeProcess
0x1400e02b8 WriteProcessMemory
0x1400e02c0 ReadProcessMemory
0x1400e02c8 GetCurrentProcessId
0x1400e02d0 OpenProcess
0x1400e02d8 TerminateProcess
0x1400e02e0 SetPriorityClass
0x1400e02e8 SetLastError
0x1400e02f0 GetEnvironmentVariableW
0x1400e02f8 GetLocalTime
0x1400e0300 GetDateFormatW
0x1400e0308 GetTimeFormatW
0x1400e0310 GetDiskFreeSpaceExW
0x1400e0318 SetVolumeLabelW
0x1400e0320 CreateFileW
0x1400e0328 DeviceIoControl
0x1400e0330 GetDriveTypeW
0x1400e0338 GetVolumeInformationW
0x1400e0340 GetDiskFreeSpaceW
0x1400e0348 GetCurrentDirectoryW
0x1400e0350 CreateDirectoryW
0x1400e0358 ReadFile
0x1400e0360 WriteFile
0x1400e0368 DeleteFileW
0x1400e0370 SetFileAttributesW
0x1400e0378 LocalFileTimeToFileTime
0x1400e0380 SetFileTime
0x1400e0388 DeleteCriticalSection
0x1400e0390 GetSystemTime
0x1400e0398 GetSystemDefaultUILanguage
0x1400e03a0 GetComputerNameW
0x1400e03a8 GetSystemWindowsDirectoryW
0x1400e03b0 GetTempPathW
0x1400e03b8 EnterCriticalSection
0x1400e03c0 LeaveCriticalSection
0x1400e03c8 VirtualProtect
0x1400e03d0 QueryDosDeviceW
0x1400e03d8 CompareStringW
0x1400e03e0 RemoveDirectoryW
0x1400e03e8 CopyFileW
0x1400e03f0 GetCurrentProcess
0x1400e03f8 CreateToolhelp32Snapshot
0x1400e0400 Process32FirstW
0x1400e0408 Process32NextW
0x1400e0410 FormatMessageW
0x1400e0418 GetPrivateProfileStringW
0x1400e0420 GetPrivateProfileSectionW
0x1400e0428 GetPrivateProfileSectionNamesW
0x1400e0430 WritePrivateProfileStringW
0x1400e0438 WritePrivateProfileSectionW
0x1400e0440 SetEndOfFile
0x1400e0448 GetACP
0x1400e0450 GetFileType
0x1400e0458 GetStdHandle
0x1400e0460 SetFilePointerEx
0x1400e0468 SystemTimeToFileTime
0x1400e0470 FileTimeToSystemTime
0x1400e0478 GetFileSize
0x1400e0480 IsWow64Process
0x1400e0488 VirtualAllocEx
0x1400e0490 VirtualFreeEx
0x1400e0498 EnumResourceNamesW
0x1400e04a0 LoadLibraryExW
0x1400e04a8 GlobalSize
0x1400e04b0 HeapReAlloc
0x1400e04b8 EncodePointer
0x1400e04c0 HeapFree
0x1400e04c8 DecodePointer
0x1400e04d0 ExitProcess
0x1400e04d8 HeapAlloc
0x1400e04e0 IsValidCodePage
0x1400e04e8 FlsGetValue
0x1400e04f0 FlsSetValue
0x1400e04f8 FlsFree
0x1400e0500 FlsAlloc
0x1400e0508 UnhandledExceptionFilter
0x1400e0510 SetUnhandledExceptionFilter
0x1400e0518 IsDebuggerPresent
0x1400e0520 RtlVirtualUnwind
0x1400e0528 RtlLookupFunctionEntry
0x1400e0530 InitializeCriticalSection
0x1400e0538 GetCPInfo
0x1400e0540 GetVersionExW
0x1400e0548 GetModuleHandleW
0x1400e0550 FreeLibrary
0x1400e0558 GetProcAddress
0x1400e0560 LoadLibraryW
0x1400e0568 GetLastError
0x1400e0570 CreateMutexW
0x1400e0578 CloseHandle
0x1400e0580 GetExitCodeThread
0x1400e0588 SetThreadPriority
0x1400e0590 CreateThread
0x1400e0598 GetStringTypeExW
0x1400e05a0 lstrcmpiW
0x1400e05a8 GetCurrentThreadId
0x1400e05b0 GlobalUnlock
0x1400e05b8 GlobalFree
0x1400e05c0 GlobalAlloc
0x1400e05c8 GlobalLock
0x1400e05d0 SetErrorMode
0x1400e05d8 SetCurrentDirectoryW
0x1400e05e0 Sleep
0x1400e05e8 GetTickCount
0x1400e05f0 MulDiv
0x1400e05f8 RtlCaptureContext
0x1400e0600 HeapSetInformation
0x1400e0608 GetVersion
0x1400e0610 HeapCreate
0x1400e0618 InitializeCriticalSectionAndSpinCount
0x1400e0620 HeapSize
0x1400e0628 HeapQueryInformation
0x1400e0630 GetCommandLineW
0x1400e0638 GetStartupInfoW
0x1400e0640 RtlUnwindEx
0x1400e0648 GetStringTypeW
0x1400e0650 RaiseException
0x1400e0658 RtlPcToFileHeader
0x1400e0660 LCMapStringW
0x1400e0668 GetConsoleCP
0x1400e0670 GetConsoleMode
0x1400e0678 FreeEnvironmentStringsW
0x1400e0680 GetEnvironmentStringsW
0x1400e0688 SetHandleCount
0x1400e0690 QueryPerformanceCounter
0x1400e0698 GetOEMCP
0x1400e06a0 SetFilePointer
0x1400e06a8 WriteConsoleW
0x1400e06b0 SetStdHandle
0x1400e06b8 FlushFileBuffers
0x1400e06c0 GetFileSizeEx
0x1400e06c8 GetProcessHeap
USER32.dll
0x1400e0810 GetDlgItem
0x1400e0818 SetDlgItemTextW
0x1400e0820 MessageBeep
0x1400e0828 GetCursorInfo
0x1400e0830 GetLastInputInfo
0x1400e0838 GetSystemMenu
0x1400e0840 GetMenuItemCount
0x1400e0848 GetMenuItemID
0x1400e0850 GetSubMenu
0x1400e0858 GetMenuStringW
0x1400e0860 ExitWindowsEx
0x1400e0868 SetMenu
0x1400e0870 FlashWindow
0x1400e0878 GetPropW
0x1400e0880 SetPropW
0x1400e0888 RemovePropW
0x1400e0890 MapWindowPoints
0x1400e0898 RedrawWindow
0x1400e08a0 SetWindowLongPtrW
0x1400e08a8 SetParent
0x1400e08b0 GetClassInfoExW
0x1400e08b8 DefDlgProcW
0x1400e08c0 GetAncestor
0x1400e08c8 UpdateWindow
0x1400e08d0 GetMessagePos
0x1400e08d8 GetClassLongPtrW
0x1400e08e0 CallWindowProcW
0x1400e08e8 CheckRadioButton
0x1400e08f0 IntersectRect
0x1400e08f8 GetUpdateRect
0x1400e0900 PtInRect
0x1400e0908 CreateDialogIndirectParamW
0x1400e0910 GetWindowLongPtrW
0x1400e0918 CreateAcceleratorTableW
0x1400e0920 DestroyAcceleratorTable
0x1400e0928 InsertMenuItemW
0x1400e0930 SetMenuDefaultItem
0x1400e0938 RemoveMenu
0x1400e0940 SetMenuItemInfoW
0x1400e0948 IsMenu
0x1400e0950 GetMenuItemInfoW
0x1400e0958 CreateMenu
0x1400e0960 CreatePopupMenu
0x1400e0968 SetMenuInfo
0x1400e0970 AppendMenuW
0x1400e0978 DestroyMenu
0x1400e0980 TrackPopupMenuEx
0x1400e0988 CopyImage
0x1400e0990 CreateIconIndirect
0x1400e0998 CreateIconFromResourceEx
0x1400e09a0 EnumClipboardFormats
0x1400e09a8 GetWindow
0x1400e09b0 BringWindowToTop
0x1400e09b8 MessageBoxW
0x1400e09c0 GetTopWindow
0x1400e09c8 GetQueueStatus
0x1400e09d0 SendDlgItemMessageW
0x1400e09d8 SetClipboardViewer
0x1400e09e0 LoadAcceleratorsW
0x1400e09e8 EnableMenuItem
0x1400e09f0 GetMenu
0x1400e09f8 CreateWindowExW
0x1400e0a00 RegisterClassExW
0x1400e0a08 LoadCursorW
0x1400e0a10 DestroyWindow
0x1400e0a18 EnableWindow
0x1400e0a20 MapVirtualKeyW
0x1400e0a28 VkKeyScanExW
0x1400e0a30 MapVirtualKeyExW
0x1400e0a38 GetKeyboardLayoutNameW
0x1400e0a40 ActivateKeyboardLayout
0x1400e0a48 GetGUIThreadInfo
0x1400e0a50 GetWindowTextW
0x1400e0a58 mouse_event
0x1400e0a60 WindowFromPoint
0x1400e0a68 GetSystemMetrics
0x1400e0a70 keybd_event
0x1400e0a78 SetKeyboardState
0x1400e0a80 GetKeyboardState
0x1400e0a88 GetCursorPos
0x1400e0a90 GetAsyncKeyState
0x1400e0a98 AttachThreadInput
0x1400e0aa0 SendInput
0x1400e0aa8 UnregisterHotKey
0x1400e0ab0 RegisterHotKey
0x1400e0ab8 SendMessageTimeoutW
0x1400e0ac0 UnhookWindowsHookEx
0x1400e0ac8 SetWindowsHookExW
0x1400e0ad0 PostThreadMessageW
0x1400e0ad8 IsCharAlphaNumericW
0x1400e0ae0 IsCharUpperW
0x1400e0ae8 IsCharLowerW
0x1400e0af0 ToUnicodeEx
0x1400e0af8 GetKeyboardLayout
0x1400e0b00 CallNextHookEx
0x1400e0b08 CharLowerW
0x1400e0b10 ReleaseDC
0x1400e0b18 GetDC
0x1400e0b20 OpenClipboard
0x1400e0b28 GetClipboardData
0x1400e0b30 GetClipboardFormatNameW
0x1400e0b38 CloseClipboard
0x1400e0b40 SetClipboardData
0x1400e0b48 EmptyClipboard
0x1400e0b50 PostMessageW
0x1400e0b58 FindWindowW
0x1400e0b60 EndDialog
0x1400e0b68 IsWindow
0x1400e0b70 DispatchMessageW
0x1400e0b78 TranslateMessage
0x1400e0b80 ShowWindow
0x1400e0b88 CountClipboardFormats
0x1400e0b90 SetWindowLongW
0x1400e0b98 ScreenToClient
0x1400e0ba0 IsDialogMessageW
0x1400e0ba8 DialogBoxParamW
0x1400e0bb0 SetForegroundWindow
0x1400e0bb8 DefWindowProcW
0x1400e0bc0 FillRect
0x1400e0bc8 DrawIconEx
0x1400e0bd0 GetSysColorBrush
0x1400e0bd8 GetSysColor
0x1400e0be0 RegisterWindowMessageW
0x1400e0be8 EnumDisplayMonitors
0x1400e0bf0 IsIconic
0x1400e0bf8 IsZoomed
0x1400e0c00 EnumWindows
0x1400e0c08 ChangeClipboardChain
0x1400e0c10 GetWindowTextLengthW
0x1400e0c18 SendMessageW
0x1400e0c20 IsWindowEnabled
0x1400e0c28 GetWindowLongW
0x1400e0c30 GetKeyState
0x1400e0c38 TranslateAcceleratorW
0x1400e0c40 KillTimer
0x1400e0c48 PeekMessageW
0x1400e0c50 GetFocus
0x1400e0c58 GetClassNameW
0x1400e0c60 GetWindowThreadProcessId
0x1400e0c68 GetForegroundWindow
0x1400e0c70 InvalidateRect
0x1400e0c78 SetLayeredWindowAttributes
0x1400e0c80 SetWindowPos
0x1400e0c88 SetWindowRgn
0x1400e0c90 SetFocus
0x1400e0c98 SetActiveWindow
0x1400e0ca0 ClientToScreen
0x1400e0ca8 EnumChildWindows
0x1400e0cb0 MoveWindow
0x1400e0cb8 GetWindowRect
0x1400e0cc0 GetMonitorInfoW
0x1400e0cc8 MonitorFromPoint
0x1400e0cd0 GetClientRect
0x1400e0cd8 SystemParametersInfoW
0x1400e0ce0 AdjustWindowRectEx
0x1400e0ce8 DrawTextW
0x1400e0cf0 SetRect
0x1400e0cf8 GetIconInfo
0x1400e0d00 SetWindowTextW
0x1400e0d08 IsWindowVisible
0x1400e0d10 BlockInput
0x1400e0d18 GetMessageW
0x1400e0d20 SetTimer
0x1400e0d28 GetParent
0x1400e0d30 GetDlgCtrlID
0x1400e0d38 CharUpperW
0x1400e0d40 IsClipboardFormatAvailable
0x1400e0d48 CheckMenuItem
0x1400e0d50 PostQuitMessage
0x1400e0d58 IsCharAlphaW
0x1400e0d60 LoadImageW
0x1400e0d68 DestroyIcon
GDI32.dll
0x1400e00f8 GetPixel
0x1400e0100 GetClipRgn
0x1400e0108 GetCharABCWidthsW
0x1400e0110 SetBkMode
0x1400e0118 CreatePatternBrush
0x1400e0120 SetBrushOrgEx
0x1400e0128 EnumFontFamiliesExW
0x1400e0130 CreateDIBSection
0x1400e0138 GdiFlush
0x1400e0140 SetBkColor
0x1400e0148 ExcludeClipRect
0x1400e0150 SetTextColor
0x1400e0158 GetClipBox
0x1400e0160 BitBlt
0x1400e0168 CreateCompatibleBitmap
0x1400e0170 GetSystemPaletteEntries
0x1400e0178 GetDIBits
0x1400e0180 CreateCompatibleDC
0x1400e0188 CreatePolygonRgn
0x1400e0190 CreateRectRgn
0x1400e0198 CreateRoundRectRgn
0x1400e01a0 CreateEllipticRgn
0x1400e01a8 DeleteDC
0x1400e01b0 GetObjectW
0x1400e01b8 GetTextMetricsW
0x1400e01c0 GetTextFaceW
0x1400e01c8 SelectObject
0x1400e01d0 GetStockObject
0x1400e01d8 CreateDCW
0x1400e01e0 CreateSolidBrush
0x1400e01e8 CreateFontW
0x1400e01f0 FillRgn
0x1400e01f8 GetDeviceCaps
0x1400e0200 DeleteObject
COMDLG32.dll
0x1400e00d8 CommDlgExtendedError
0x1400e00e0 GetSaveFileNameW
0x1400e00e8 GetOpenFileNameW
ADVAPI32.dll
0x1400e0000 RegDeleteKeyW
0x1400e0008 RegSetValueExW
0x1400e0010 RegCreateKeyExW
0x1400e0018 RegQueryValueExW
0x1400e0020 AdjustTokenPrivileges
0x1400e0028 LookupPrivilegeValueW
0x1400e0030 OpenProcessToken
0x1400e0038 CloseServiceHandle
0x1400e0040 UnlockServiceDatabase
0x1400e0048 LockServiceDatabase
0x1400e0050 OpenSCManagerW
0x1400e0058 GetUserNameW
0x1400e0060 RegEnumKeyExW
0x1400e0068 RegEnumValueW
0x1400e0070 RegQueryInfoKeyW
0x1400e0078 RegOpenKeyExW
0x1400e0080 RegCloseKey
0x1400e0088 RegConnectRegistryW
0x1400e0090 RegDeleteValueW
SHELL32.dll
0x1400e07a0 DragQueryPoint
0x1400e07a8 SHEmptyRecycleBinW
0x1400e07b0 SHFileOperationW
0x1400e07b8 SHGetPathFromIDListW
0x1400e07c0 SHBrowseForFolderW
0x1400e07c8 SHGetDesktopFolder
0x1400e07d0 SHGetMalloc
0x1400e07d8 SHGetFolderPathW
0x1400e07e0 ShellExecuteExW
0x1400e07e8 Shell_NotifyIconW
0x1400e07f0 DragFinish
0x1400e07f8 DragQueryFileW
0x1400e0800 ExtractIconW
ole32.dll
0x1400e0e60 OleInitialize
0x1400e0e68 OleUninitialize
0x1400e0e70 CoCreateInstance
0x1400e0e78 CoInitialize
0x1400e0e80 CoUninitialize
0x1400e0e88 CLSIDFromString
0x1400e0e90 CLSIDFromProgID
0x1400e0e98 CoGetObject
0x1400e0ea0 StringFromGUID2
0x1400e0ea8 CreateStreamOnHGlobal
OLEAUT32.dll
0x1400e06d8 SafeArrayGetLBound
0x1400e06e0 GetActiveObject
0x1400e06e8 SysStringLen
0x1400e06f0 OleLoadPicture
0x1400e06f8 SafeArrayUnaccessData
0x1400e0700 SafeArrayGetElemsize
0x1400e0708 SafeArrayAccessData
0x1400e0710 SafeArrayUnlock
0x1400e0718 SafeArrayPtrOfIndex
0x1400e0720 SafeArrayLock
0x1400e0728 SafeArrayGetDim
0x1400e0730 SafeArrayDestroy
0x1400e0738 SafeArrayGetUBound
0x1400e0740 VariantCopyInd
0x1400e0748 SafeArrayCopy
0x1400e0750 SysAllocString
0x1400e0758 VariantChangeType
0x1400e0760 VariantClear
0x1400e0768 SafeArrayCreate
0x1400e0770 SysFreeString
EAT(Export Address Table) is none
WSOCK32.dll
0x1400e0e30 gethostbyname
0x1400e0e38 inet_addr
0x1400e0e40 WSACleanup
0x1400e0e48 gethostname
0x1400e0e50 WSAStartup
WINMM.dll
0x1400e0dc8 mixerGetLineInfoW
0x1400e0dd0 mixerGetDevCapsW
0x1400e0dd8 mixerOpen
0x1400e0de0 mciSendStringW
0x1400e0de8 joyGetPosEx
0x1400e0df0 mixerGetLineControlsW
0x1400e0df8 mixerGetControlDetailsW
0x1400e0e00 mixerSetControlDetails
0x1400e0e08 waveOutGetVolume
0x1400e0e10 mixerClose
0x1400e0e18 waveOutSetVolume
0x1400e0e20 joyGetDevCapsW
VERSION.dll
0x1400e0d78 GetFileVersionInfoW
0x1400e0d80 VerQueryValueW
0x1400e0d88 GetFileVersionInfoSizeW
COMCTL32.dll
0x1400e00a0 ImageList_Create
0x1400e00a8 CreateStatusWindowW
0x1400e00b0 ImageList_ReplaceIcon
0x1400e00b8 ImageList_GetIconSize
0x1400e00c0 ImageList_Destroy
0x1400e00c8 ImageList_AddMasked
PSAPI.DLL
0x1400e0780 GetProcessImageFileNameW
0x1400e0788 GetModuleBaseNameW
0x1400e0790 GetModuleFileNameExW
WININET.dll
0x1400e0d98 InternetOpenW
0x1400e0da0 InternetOpenUrlW
0x1400e0da8 InternetCloseHandle
0x1400e0db0 InternetReadFileExA
0x1400e0db8 InternetReadFile
KERNEL32.dll
0x1400e0210 GetModuleFileNameW
0x1400e0218 GetSystemTimeAsFileTime
0x1400e0220 FindResourceW
0x1400e0228 SizeofResource
0x1400e0230 LoadResource
0x1400e0238 LockResource
0x1400e0240 GetFullPathNameW
0x1400e0248 GetShortPathNameW
0x1400e0250 FindFirstFileW
0x1400e0258 FindNextFileW
0x1400e0260 FindClose
0x1400e0268 FileTimeToLocalFileTime
0x1400e0270 SetEnvironmentVariableW
0x1400e0278 Beep
0x1400e0280 MoveFileW
0x1400e0288 OutputDebugStringW
0x1400e0290 CreateProcessW
0x1400e0298 GetFileAttributesW
0x1400e02a0 WideCharToMultiByte
0x1400e02a8 MultiByteToWideChar
0x1400e02b0 GetExitCodeProcess
0x1400e02b8 WriteProcessMemory
0x1400e02c0 ReadProcessMemory
0x1400e02c8 GetCurrentProcessId
0x1400e02d0 OpenProcess
0x1400e02d8 TerminateProcess
0x1400e02e0 SetPriorityClass
0x1400e02e8 SetLastError
0x1400e02f0 GetEnvironmentVariableW
0x1400e02f8 GetLocalTime
0x1400e0300 GetDateFormatW
0x1400e0308 GetTimeFormatW
0x1400e0310 GetDiskFreeSpaceExW
0x1400e0318 SetVolumeLabelW
0x1400e0320 CreateFileW
0x1400e0328 DeviceIoControl
0x1400e0330 GetDriveTypeW
0x1400e0338 GetVolumeInformationW
0x1400e0340 GetDiskFreeSpaceW
0x1400e0348 GetCurrentDirectoryW
0x1400e0350 CreateDirectoryW
0x1400e0358 ReadFile
0x1400e0360 WriteFile
0x1400e0368 DeleteFileW
0x1400e0370 SetFileAttributesW
0x1400e0378 LocalFileTimeToFileTime
0x1400e0380 SetFileTime
0x1400e0388 DeleteCriticalSection
0x1400e0390 GetSystemTime
0x1400e0398 GetSystemDefaultUILanguage
0x1400e03a0 GetComputerNameW
0x1400e03a8 GetSystemWindowsDirectoryW
0x1400e03b0 GetTempPathW
0x1400e03b8 EnterCriticalSection
0x1400e03c0 LeaveCriticalSection
0x1400e03c8 VirtualProtect
0x1400e03d0 QueryDosDeviceW
0x1400e03d8 CompareStringW
0x1400e03e0 RemoveDirectoryW
0x1400e03e8 CopyFileW
0x1400e03f0 GetCurrentProcess
0x1400e03f8 CreateToolhelp32Snapshot
0x1400e0400 Process32FirstW
0x1400e0408 Process32NextW
0x1400e0410 FormatMessageW
0x1400e0418 GetPrivateProfileStringW
0x1400e0420 GetPrivateProfileSectionW
0x1400e0428 GetPrivateProfileSectionNamesW
0x1400e0430 WritePrivateProfileStringW
0x1400e0438 WritePrivateProfileSectionW
0x1400e0440 SetEndOfFile
0x1400e0448 GetACP
0x1400e0450 GetFileType
0x1400e0458 GetStdHandle
0x1400e0460 SetFilePointerEx
0x1400e0468 SystemTimeToFileTime
0x1400e0470 FileTimeToSystemTime
0x1400e0478 GetFileSize
0x1400e0480 IsWow64Process
0x1400e0488 VirtualAllocEx
0x1400e0490 VirtualFreeEx
0x1400e0498 EnumResourceNamesW
0x1400e04a0 LoadLibraryExW
0x1400e04a8 GlobalSize
0x1400e04b0 HeapReAlloc
0x1400e04b8 EncodePointer
0x1400e04c0 HeapFree
0x1400e04c8 DecodePointer
0x1400e04d0 ExitProcess
0x1400e04d8 HeapAlloc
0x1400e04e0 IsValidCodePage
0x1400e04e8 FlsGetValue
0x1400e04f0 FlsSetValue
0x1400e04f8 FlsFree
0x1400e0500 FlsAlloc
0x1400e0508 UnhandledExceptionFilter
0x1400e0510 SetUnhandledExceptionFilter
0x1400e0518 IsDebuggerPresent
0x1400e0520 RtlVirtualUnwind
0x1400e0528 RtlLookupFunctionEntry
0x1400e0530 InitializeCriticalSection
0x1400e0538 GetCPInfo
0x1400e0540 GetVersionExW
0x1400e0548 GetModuleHandleW
0x1400e0550 FreeLibrary
0x1400e0558 GetProcAddress
0x1400e0560 LoadLibraryW
0x1400e0568 GetLastError
0x1400e0570 CreateMutexW
0x1400e0578 CloseHandle
0x1400e0580 GetExitCodeThread
0x1400e0588 SetThreadPriority
0x1400e0590 CreateThread
0x1400e0598 GetStringTypeExW
0x1400e05a0 lstrcmpiW
0x1400e05a8 GetCurrentThreadId
0x1400e05b0 GlobalUnlock
0x1400e05b8 GlobalFree
0x1400e05c0 GlobalAlloc
0x1400e05c8 GlobalLock
0x1400e05d0 SetErrorMode
0x1400e05d8 SetCurrentDirectoryW
0x1400e05e0 Sleep
0x1400e05e8 GetTickCount
0x1400e05f0 MulDiv
0x1400e05f8 RtlCaptureContext
0x1400e0600 HeapSetInformation
0x1400e0608 GetVersion
0x1400e0610 HeapCreate
0x1400e0618 InitializeCriticalSectionAndSpinCount
0x1400e0620 HeapSize
0x1400e0628 HeapQueryInformation
0x1400e0630 GetCommandLineW
0x1400e0638 GetStartupInfoW
0x1400e0640 RtlUnwindEx
0x1400e0648 GetStringTypeW
0x1400e0650 RaiseException
0x1400e0658 RtlPcToFileHeader
0x1400e0660 LCMapStringW
0x1400e0668 GetConsoleCP
0x1400e0670 GetConsoleMode
0x1400e0678 FreeEnvironmentStringsW
0x1400e0680 GetEnvironmentStringsW
0x1400e0688 SetHandleCount
0x1400e0690 QueryPerformanceCounter
0x1400e0698 GetOEMCP
0x1400e06a0 SetFilePointer
0x1400e06a8 WriteConsoleW
0x1400e06b0 SetStdHandle
0x1400e06b8 FlushFileBuffers
0x1400e06c0 GetFileSizeEx
0x1400e06c8 GetProcessHeap
USER32.dll
0x1400e0810 GetDlgItem
0x1400e0818 SetDlgItemTextW
0x1400e0820 MessageBeep
0x1400e0828 GetCursorInfo
0x1400e0830 GetLastInputInfo
0x1400e0838 GetSystemMenu
0x1400e0840 GetMenuItemCount
0x1400e0848 GetMenuItemID
0x1400e0850 GetSubMenu
0x1400e0858 GetMenuStringW
0x1400e0860 ExitWindowsEx
0x1400e0868 SetMenu
0x1400e0870 FlashWindow
0x1400e0878 GetPropW
0x1400e0880 SetPropW
0x1400e0888 RemovePropW
0x1400e0890 MapWindowPoints
0x1400e0898 RedrawWindow
0x1400e08a0 SetWindowLongPtrW
0x1400e08a8 SetParent
0x1400e08b0 GetClassInfoExW
0x1400e08b8 DefDlgProcW
0x1400e08c0 GetAncestor
0x1400e08c8 UpdateWindow
0x1400e08d0 GetMessagePos
0x1400e08d8 GetClassLongPtrW
0x1400e08e0 CallWindowProcW
0x1400e08e8 CheckRadioButton
0x1400e08f0 IntersectRect
0x1400e08f8 GetUpdateRect
0x1400e0900 PtInRect
0x1400e0908 CreateDialogIndirectParamW
0x1400e0910 GetWindowLongPtrW
0x1400e0918 CreateAcceleratorTableW
0x1400e0920 DestroyAcceleratorTable
0x1400e0928 InsertMenuItemW
0x1400e0930 SetMenuDefaultItem
0x1400e0938 RemoveMenu
0x1400e0940 SetMenuItemInfoW
0x1400e0948 IsMenu
0x1400e0950 GetMenuItemInfoW
0x1400e0958 CreateMenu
0x1400e0960 CreatePopupMenu
0x1400e0968 SetMenuInfo
0x1400e0970 AppendMenuW
0x1400e0978 DestroyMenu
0x1400e0980 TrackPopupMenuEx
0x1400e0988 CopyImage
0x1400e0990 CreateIconIndirect
0x1400e0998 CreateIconFromResourceEx
0x1400e09a0 EnumClipboardFormats
0x1400e09a8 GetWindow
0x1400e09b0 BringWindowToTop
0x1400e09b8 MessageBoxW
0x1400e09c0 GetTopWindow
0x1400e09c8 GetQueueStatus
0x1400e09d0 SendDlgItemMessageW
0x1400e09d8 SetClipboardViewer
0x1400e09e0 LoadAcceleratorsW
0x1400e09e8 EnableMenuItem
0x1400e09f0 GetMenu
0x1400e09f8 CreateWindowExW
0x1400e0a00 RegisterClassExW
0x1400e0a08 LoadCursorW
0x1400e0a10 DestroyWindow
0x1400e0a18 EnableWindow
0x1400e0a20 MapVirtualKeyW
0x1400e0a28 VkKeyScanExW
0x1400e0a30 MapVirtualKeyExW
0x1400e0a38 GetKeyboardLayoutNameW
0x1400e0a40 ActivateKeyboardLayout
0x1400e0a48 GetGUIThreadInfo
0x1400e0a50 GetWindowTextW
0x1400e0a58 mouse_event
0x1400e0a60 WindowFromPoint
0x1400e0a68 GetSystemMetrics
0x1400e0a70 keybd_event
0x1400e0a78 SetKeyboardState
0x1400e0a80 GetKeyboardState
0x1400e0a88 GetCursorPos
0x1400e0a90 GetAsyncKeyState
0x1400e0a98 AttachThreadInput
0x1400e0aa0 SendInput
0x1400e0aa8 UnregisterHotKey
0x1400e0ab0 RegisterHotKey
0x1400e0ab8 SendMessageTimeoutW
0x1400e0ac0 UnhookWindowsHookEx
0x1400e0ac8 SetWindowsHookExW
0x1400e0ad0 PostThreadMessageW
0x1400e0ad8 IsCharAlphaNumericW
0x1400e0ae0 IsCharUpperW
0x1400e0ae8 IsCharLowerW
0x1400e0af0 ToUnicodeEx
0x1400e0af8 GetKeyboardLayout
0x1400e0b00 CallNextHookEx
0x1400e0b08 CharLowerW
0x1400e0b10 ReleaseDC
0x1400e0b18 GetDC
0x1400e0b20 OpenClipboard
0x1400e0b28 GetClipboardData
0x1400e0b30 GetClipboardFormatNameW
0x1400e0b38 CloseClipboard
0x1400e0b40 SetClipboardData
0x1400e0b48 EmptyClipboard
0x1400e0b50 PostMessageW
0x1400e0b58 FindWindowW
0x1400e0b60 EndDialog
0x1400e0b68 IsWindow
0x1400e0b70 DispatchMessageW
0x1400e0b78 TranslateMessage
0x1400e0b80 ShowWindow
0x1400e0b88 CountClipboardFormats
0x1400e0b90 SetWindowLongW
0x1400e0b98 ScreenToClient
0x1400e0ba0 IsDialogMessageW
0x1400e0ba8 DialogBoxParamW
0x1400e0bb0 SetForegroundWindow
0x1400e0bb8 DefWindowProcW
0x1400e0bc0 FillRect
0x1400e0bc8 DrawIconEx
0x1400e0bd0 GetSysColorBrush
0x1400e0bd8 GetSysColor
0x1400e0be0 RegisterWindowMessageW
0x1400e0be8 EnumDisplayMonitors
0x1400e0bf0 IsIconic
0x1400e0bf8 IsZoomed
0x1400e0c00 EnumWindows
0x1400e0c08 ChangeClipboardChain
0x1400e0c10 GetWindowTextLengthW
0x1400e0c18 SendMessageW
0x1400e0c20 IsWindowEnabled
0x1400e0c28 GetWindowLongW
0x1400e0c30 GetKeyState
0x1400e0c38 TranslateAcceleratorW
0x1400e0c40 KillTimer
0x1400e0c48 PeekMessageW
0x1400e0c50 GetFocus
0x1400e0c58 GetClassNameW
0x1400e0c60 GetWindowThreadProcessId
0x1400e0c68 GetForegroundWindow
0x1400e0c70 InvalidateRect
0x1400e0c78 SetLayeredWindowAttributes
0x1400e0c80 SetWindowPos
0x1400e0c88 SetWindowRgn
0x1400e0c90 SetFocus
0x1400e0c98 SetActiveWindow
0x1400e0ca0 ClientToScreen
0x1400e0ca8 EnumChildWindows
0x1400e0cb0 MoveWindow
0x1400e0cb8 GetWindowRect
0x1400e0cc0 GetMonitorInfoW
0x1400e0cc8 MonitorFromPoint
0x1400e0cd0 GetClientRect
0x1400e0cd8 SystemParametersInfoW
0x1400e0ce0 AdjustWindowRectEx
0x1400e0ce8 DrawTextW
0x1400e0cf0 SetRect
0x1400e0cf8 GetIconInfo
0x1400e0d00 SetWindowTextW
0x1400e0d08 IsWindowVisible
0x1400e0d10 BlockInput
0x1400e0d18 GetMessageW
0x1400e0d20 SetTimer
0x1400e0d28 GetParent
0x1400e0d30 GetDlgCtrlID
0x1400e0d38 CharUpperW
0x1400e0d40 IsClipboardFormatAvailable
0x1400e0d48 CheckMenuItem
0x1400e0d50 PostQuitMessage
0x1400e0d58 IsCharAlphaW
0x1400e0d60 LoadImageW
0x1400e0d68 DestroyIcon
GDI32.dll
0x1400e00f8 GetPixel
0x1400e0100 GetClipRgn
0x1400e0108 GetCharABCWidthsW
0x1400e0110 SetBkMode
0x1400e0118 CreatePatternBrush
0x1400e0120 SetBrushOrgEx
0x1400e0128 EnumFontFamiliesExW
0x1400e0130 CreateDIBSection
0x1400e0138 GdiFlush
0x1400e0140 SetBkColor
0x1400e0148 ExcludeClipRect
0x1400e0150 SetTextColor
0x1400e0158 GetClipBox
0x1400e0160 BitBlt
0x1400e0168 CreateCompatibleBitmap
0x1400e0170 GetSystemPaletteEntries
0x1400e0178 GetDIBits
0x1400e0180 CreateCompatibleDC
0x1400e0188 CreatePolygonRgn
0x1400e0190 CreateRectRgn
0x1400e0198 CreateRoundRectRgn
0x1400e01a0 CreateEllipticRgn
0x1400e01a8 DeleteDC
0x1400e01b0 GetObjectW
0x1400e01b8 GetTextMetricsW
0x1400e01c0 GetTextFaceW
0x1400e01c8 SelectObject
0x1400e01d0 GetStockObject
0x1400e01d8 CreateDCW
0x1400e01e0 CreateSolidBrush
0x1400e01e8 CreateFontW
0x1400e01f0 FillRgn
0x1400e01f8 GetDeviceCaps
0x1400e0200 DeleteObject
COMDLG32.dll
0x1400e00d8 CommDlgExtendedError
0x1400e00e0 GetSaveFileNameW
0x1400e00e8 GetOpenFileNameW
ADVAPI32.dll
0x1400e0000 RegDeleteKeyW
0x1400e0008 RegSetValueExW
0x1400e0010 RegCreateKeyExW
0x1400e0018 RegQueryValueExW
0x1400e0020 AdjustTokenPrivileges
0x1400e0028 LookupPrivilegeValueW
0x1400e0030 OpenProcessToken
0x1400e0038 CloseServiceHandle
0x1400e0040 UnlockServiceDatabase
0x1400e0048 LockServiceDatabase
0x1400e0050 OpenSCManagerW
0x1400e0058 GetUserNameW
0x1400e0060 RegEnumKeyExW
0x1400e0068 RegEnumValueW
0x1400e0070 RegQueryInfoKeyW
0x1400e0078 RegOpenKeyExW
0x1400e0080 RegCloseKey
0x1400e0088 RegConnectRegistryW
0x1400e0090 RegDeleteValueW
SHELL32.dll
0x1400e07a0 DragQueryPoint
0x1400e07a8 SHEmptyRecycleBinW
0x1400e07b0 SHFileOperationW
0x1400e07b8 SHGetPathFromIDListW
0x1400e07c0 SHBrowseForFolderW
0x1400e07c8 SHGetDesktopFolder
0x1400e07d0 SHGetMalloc
0x1400e07d8 SHGetFolderPathW
0x1400e07e0 ShellExecuteExW
0x1400e07e8 Shell_NotifyIconW
0x1400e07f0 DragFinish
0x1400e07f8 DragQueryFileW
0x1400e0800 ExtractIconW
ole32.dll
0x1400e0e60 OleInitialize
0x1400e0e68 OleUninitialize
0x1400e0e70 CoCreateInstance
0x1400e0e78 CoInitialize
0x1400e0e80 CoUninitialize
0x1400e0e88 CLSIDFromString
0x1400e0e90 CLSIDFromProgID
0x1400e0e98 CoGetObject
0x1400e0ea0 StringFromGUID2
0x1400e0ea8 CreateStreamOnHGlobal
OLEAUT32.dll
0x1400e06d8 SafeArrayGetLBound
0x1400e06e0 GetActiveObject
0x1400e06e8 SysStringLen
0x1400e06f0 OleLoadPicture
0x1400e06f8 SafeArrayUnaccessData
0x1400e0700 SafeArrayGetElemsize
0x1400e0708 SafeArrayAccessData
0x1400e0710 SafeArrayUnlock
0x1400e0718 SafeArrayPtrOfIndex
0x1400e0720 SafeArrayLock
0x1400e0728 SafeArrayGetDim
0x1400e0730 SafeArrayDestroy
0x1400e0738 SafeArrayGetUBound
0x1400e0740 VariantCopyInd
0x1400e0748 SafeArrayCopy
0x1400e0750 SysAllocString
0x1400e0758 VariantChangeType
0x1400e0760 VariantClear
0x1400e0768 SafeArrayCreate
0x1400e0770 SysFreeString
EAT(Export Address Table) is none