ScreenShot
| Created | 2024.09.30 12:04 | Machine | s1_win7_x6403 |
| Filename | wechat-multiple.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | 41 detected (AIDetectMalware, Flystudio, Malicious, score, Hacktool, GenericRXAA, Unsafe, Save, confidence, 100%, Attribute, HighConfidence, Windows, Threat, FileRepMalware, Misc, GenericKD, erkpbm, CLOUD, PotentialRisk, izgki, Nimnul, Real Protect, Generic Reputation PUA, Static AI, Malicious PE, Antavmu, Detected, OSCF@5rs7jr, 1OS0HCF, Ulise, Eldorado, Sdum, Graftor) | ||
| md5 | d62f5a093f1490f7f2b9019cb2b4d5cd | ||
| sha256 | 920b0c508114cf1a1fff3644bce742f9d468a2fa9d0ee510a33b1fc79166905b | ||
| ssdeep | 12288:eR6gYdcOUGtYa0cDyXkoCxaNHlofMmhR5nWFpPoSmWlnXqOY:eR6ldqGtv0Uy0oOaJlofZ0bDla | ||
| imphash | 77e413028d4bf04e52d59e9daa270728 | ||
| impfuzzy | 192:AjKHMApC9uUqTE4zSfEsFVcRcAcaKSZtYNYPQu8E:FMoxTsEJmNYPQXE | ||
Network IP location
Signature (5cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 41 AntiVirus engines on VirusTotal as malicious |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Foreign language identified in PE resource |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (9cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Emotet_1_Zero | Win32 Trojan Emotet | binaries (upload) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | DllRegisterServer_Zero | execute regsvr32.exe | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
KERNEL32.dll
0x48c170 lstrcmpiA
0x48c174 SetEndOfFile
0x48c178 UnlockFile
0x48c17c LockFile
0x48c180 FlushFileBuffers
0x48c184 SetFilePointer
0x48c188 GetCurrentProcess
0x48c18c DuplicateHandle
0x48c190 lstrcpynA
0x48c194 SetLastError
0x48c198 FileTimeToLocalFileTime
0x48c19c FileTimeToSystemTime
0x48c1a0 LocalFree
0x48c1a4 MultiByteToWideChar
0x48c1a8 WideCharToMultiByte
0x48c1ac InterlockedDecrement
0x48c1b0 SetStdHandle
0x48c1b4 GetCurrentProcessId
0x48c1b8 QueryPerformanceCounter
0x48c1bc GetLocaleInfoA
0x48c1c0 IsBadCodePtr
0x48c1c4 IsBadReadPtr
0x48c1c8 CompareStringW
0x48c1cc CompareStringA
0x48c1d0 InterlockedExchange
0x48c1d4 GetTimeZoneInformation
0x48c1d8 SetUnhandledExceptionFilter
0x48c1dc GetStringTypeW
0x48c1e0 GetStringTypeA
0x48c1e4 IsBadWritePtr
0x48c1e8 VirtualQuery
0x48c1ec GetSystemInfo
0x48c1f0 VirtualAlloc
0x48c1f4 VirtualProtect
0x48c1f8 LCMapStringW
0x48c1fc LCMapStringA
0x48c200 SetEnvironmentVariableA
0x48c204 VirtualFree
0x48c208 HeapCreate
0x48c20c HeapDestroy
0x48c210 GetFileType
0x48c214 SetHandleCount
0x48c218 GetEnvironmentStringsW
0x48c21c FreeEnvironmentStringsW
0x48c220 CreateSemaphoreA
0x48c224 ResumeThread
0x48c228 ReleaseSemaphore
0x48c22c EnterCriticalSection
0x48c230 LeaveCriticalSection
0x48c234 GetProfileStringA
0x48c238 WriteFile
0x48c23c ReadFile
0x48c240 GetLastError
0x48c244 WaitForMultipleObjects
0x48c248 CreateFileA
0x48c24c SetEvent
0x48c250 FindResourceA
0x48c254 LoadResource
0x48c258 LockResource
0x48c25c GetModuleFileNameA
0x48c260 GetCurrentThreadId
0x48c264 ExitProcess
0x48c268 GlobalSize
0x48c26c GlobalFree
0x48c270 DeleteCriticalSection
0x48c274 InitializeCriticalSection
0x48c278 lstrcatA
0x48c27c lstrlenA
0x48c280 WinExec
0x48c284 lstrcpyA
0x48c288 FindNextFileA
0x48c28c GlobalReAlloc
0x48c290 HeapFree
0x48c294 HeapReAlloc
0x48c298 GetProcessHeap
0x48c29c HeapAlloc
0x48c2a0 GetFullPathNameA
0x48c2a4 FreeLibrary
0x48c2a8 LoadLibraryA
0x48c2ac GetVersionExA
0x48c2b0 WritePrivateProfileStringA
0x48c2b4 CreateThread
0x48c2b8 CreateEventA
0x48c2bc Sleep
0x48c2c0 GlobalAlloc
0x48c2c4 GlobalLock
0x48c2c8 GlobalUnlock
0x48c2cc FindFirstFileA
0x48c2d0 GetEnvironmentStrings
0x48c2d4 FreeEnvironmentStringsA
0x48c2d8 UnhandledExceptionFilter
0x48c2dc GetStdHandle
0x48c2e0 GetACP
0x48c2e4 HeapSize
0x48c2e8 TerminateProcess
0x48c2ec GetSystemTimeAsFileTime
0x48c2f0 RaiseException
0x48c2f4 RtlUnwind
0x48c2f8 GetStartupInfoA
0x48c2fc GetOEMCP
0x48c300 GetCPInfo
0x48c304 GetProcessVersion
0x48c308 SetErrorMode
0x48c30c GlobalFlags
0x48c310 GetCurrentThread
0x48c314 GetFileTime
0x48c318 FindClose
0x48c31c GetFileAttributesA
0x48c320 SetCurrentDirectoryA
0x48c324 GetFileSize
0x48c328 TlsGetValue
0x48c32c LocalReAlloc
0x48c330 TlsSetValue
0x48c334 TlsFree
0x48c338 GlobalHandle
0x48c33c TlsAlloc
0x48c340 LocalAlloc
0x48c344 lstrcmpA
0x48c348 GetVersion
0x48c34c GlobalDeleteAtom
0x48c350 GlobalFindAtomA
0x48c354 GlobalAddAtomA
0x48c358 GlobalGetAtomNameA
0x48c35c GetVolumeInformationA
0x48c360 GetModuleHandleA
0x48c364 GetProcAddress
0x48c368 MulDiv
0x48c36c GetCommandLineA
0x48c370 GetTickCount
0x48c374 CreateProcessA
0x48c378 WaitForSingleObject
0x48c37c CloseHandle
0x48c380 InterlockedIncrement
USER32.dll
0x48c3dc OpenClipboard
0x48c3e0 SetClipboardData
0x48c3e4 EmptyClipboard
0x48c3e8 GetSystemMetrics
0x48c3ec GetCursorPos
0x48c3f0 MessageBoxA
0x48c3f4 SetWindowPos
0x48c3f8 SendMessageA
0x48c3fc DestroyCursor
0x48c400 SetParent
0x48c404 GetClipboardData
0x48c408 PostMessageA
0x48c40c GetTopWindow
0x48c410 GetParent
0x48c414 GetFocus
0x48c418 GetClientRect
0x48c41c InvalidateRect
0x48c420 ValidateRect
0x48c424 UpdateWindow
0x48c428 CloseClipboard
0x48c42c wsprintfA
0x48c430 EqualRect
0x48c434 GetWindowRect
0x48c438 SetForegroundWindow
0x48c43c WaitForInputIdle
0x48c440 IsWindow
0x48c444 DestroyMenu
0x48c448 IsChild
0x48c44c ReleaseDC
0x48c450 IsRectEmpty
0x48c454 FillRect
0x48c458 GetDC
0x48c45c SetCursor
0x48c460 LoadCursorA
0x48c464 SetCursorPos
0x48c468 SetActiveWindow
0x48c46c GetSysColor
0x48c470 SetWindowLongA
0x48c474 GetWindowLongA
0x48c478 RedrawWindow
0x48c47c EnableWindow
0x48c480 IsWindowVisible
0x48c484 OffsetRect
0x48c488 PtInRect
0x48c48c DestroyIcon
0x48c490 IntersectRect
0x48c494 InflateRect
0x48c498 SetRect
0x48c49c SetScrollPos
0x48c4a0 SetScrollRange
0x48c4a4 GetScrollRange
0x48c4a8 SetCapture
0x48c4ac LoadIconA
0x48c4b0 TranslateMessage
0x48c4b4 DrawFrameControl
0x48c4b8 DrawEdge
0x48c4bc DrawFocusRect
0x48c4c0 WindowFromPoint
0x48c4c4 GetMessageA
0x48c4c8 DispatchMessageA
0x48c4cc SetRectEmpty
0x48c4d0 RegisterClipboardFormatA
0x48c4d4 CreateIconFromResourceEx
0x48c4d8 CreateIconFromResource
0x48c4dc DrawIconEx
0x48c4e0 CreatePopupMenu
0x48c4e4 AppendMenuA
0x48c4e8 ModifyMenuA
0x48c4ec CreateMenu
0x48c4f0 CreateAcceleratorTableA
0x48c4f4 GetDlgCtrlID
0x48c4f8 GetSubMenu
0x48c4fc EnableMenuItem
0x48c500 ClientToScreen
0x48c504 EnumDisplaySettingsA
0x48c508 LoadImageA
0x48c50c SystemParametersInfoA
0x48c510 ShowWindow
0x48c514 IsWindowEnabled
0x48c518 TranslateAcceleratorA
0x48c51c GetKeyState
0x48c520 CopyAcceleratorTableA
0x48c524 PostQuitMessage
0x48c528 IsZoomed
0x48c52c GetClassInfoA
0x48c530 GetWindowTextA
0x48c534 GetWindowTextLengthA
0x48c538 CharUpperA
0x48c53c GetWindowDC
0x48c540 BeginPaint
0x48c544 EndPaint
0x48c548 TabbedTextOutA
0x48c54c DrawTextA
0x48c550 GrayStringA
0x48c554 GetDlgItem
0x48c558 DestroyWindow
0x48c55c CreateDialogIndirectParamA
0x48c560 EndDialog
0x48c564 GetNextDlgTabItem
0x48c568 GetWindowPlacement
0x48c56c RegisterWindowMessageA
0x48c570 GetForegroundWindow
0x48c574 GetLastActivePopup
0x48c578 GetMessageTime
0x48c57c RemovePropA
0x48c580 CallWindowProcA
0x48c584 GetPropA
0x48c588 UnhookWindowsHookEx
0x48c58c SetPropA
0x48c590 GetClassLongA
0x48c594 CallNextHookEx
0x48c598 SetWindowsHookExA
0x48c59c CreateWindowExA
0x48c5a0 GetMenuItemID
0x48c5a4 GetMenuItemCount
0x48c5a8 RegisterClassA
0x48c5ac GetScrollPos
0x48c5b0 UnregisterClassA
0x48c5b4 AdjustWindowRectEx
0x48c5b8 MapWindowPoints
0x48c5bc SendDlgItemMessageA
0x48c5c0 ScrollWindowEx
0x48c5c4 IsDialogMessageA
0x48c5c8 SetWindowTextA
0x48c5cc MoveWindow
0x48c5d0 CheckMenuItem
0x48c5d4 SetMenuItemBitmaps
0x48c5d8 GetMenuState
0x48c5dc GetMenuCheckMarkDimensions
0x48c5e0 GetClassNameA
0x48c5e4 GetDesktopWindow
0x48c5e8 LoadStringA
0x48c5ec GetSysColorBrush
0x48c5f0 DefWindowProcA
0x48c5f4 GetSystemMenu
0x48c5f8 DeleteMenu
0x48c5fc GetMenu
0x48c600 SetMenu
0x48c604 PeekMessageA
0x48c608 IsIconic
0x48c60c SetFocus
0x48c610 GetActiveWindow
0x48c614 GetWindow
0x48c618 DestroyAcceleratorTable
0x48c61c SetWindowRgn
0x48c620 GetMessagePos
0x48c624 ScreenToClient
0x48c628 ChildWindowFromPointEx
0x48c62c CopyRect
0x48c630 LoadBitmapA
0x48c634 WinHelpA
0x48c638 KillTimer
0x48c63c SetTimer
0x48c640 ReleaseCapture
0x48c644 GetCapture
GDI32.dll
0x48c024 SetStretchBltMode
0x48c028 GetClipRgn
0x48c02c CreatePolygonRgn
0x48c030 SelectClipRgn
0x48c034 DeleteObject
0x48c038 CreateDIBitmap
0x48c03c GetSystemPaletteEntries
0x48c040 CreatePalette
0x48c044 StretchBlt
0x48c048 SelectPalette
0x48c04c RealizePalette
0x48c050 GetDIBits
0x48c054 GetWindowExtEx
0x48c058 GetViewportOrgEx
0x48c05c GetWindowOrgEx
0x48c060 BeginPath
0x48c064 EndPath
0x48c068 PathToRegion
0x48c06c CreateEllipticRgn
0x48c070 CreateRoundRectRgn
0x48c074 GetTextColor
0x48c078 GetBkMode
0x48c07c GetBkColor
0x48c080 GetROP2
0x48c084 GetStretchBltMode
0x48c088 GetPolyFillMode
0x48c08c CreateCompatibleBitmap
0x48c090 CreateDCA
0x48c094 CreateBitmap
0x48c098 CreateRectRgnIndirect
0x48c09c GetObjectA
0x48c0a0 CreatePen
0x48c0a4 PatBlt
0x48c0a8 CombineRgn
0x48c0ac CreateRectRgn
0x48c0b0 FillRgn
0x48c0b4 CreateSolidBrush
0x48c0b8 GetStockObject
0x48c0bc CreateFontIndirectA
0x48c0c0 EndPage
0x48c0c4 EndDoc
0x48c0c8 DeleteDC
0x48c0cc StartDocA
0x48c0d0 StartPage
0x48c0d4 BitBlt
0x48c0d8 CreateCompatibleDC
0x48c0dc Ellipse
0x48c0e0 Rectangle
0x48c0e4 LPtoDP
0x48c0e8 DPtoLP
0x48c0ec GetCurrentObject
0x48c0f0 RoundRect
0x48c0f4 GetTextExtentPoint32A
0x48c0f8 GetDeviceCaps
0x48c0fc SaveDC
0x48c100 RestoreDC
0x48c104 SetBkMode
0x48c108 SetPolyFillMode
0x48c10c SetROP2
0x48c110 SetTextColor
0x48c114 SetMapMode
0x48c118 SetViewportOrgEx
0x48c11c OffsetViewportOrgEx
0x48c120 SetViewportExtEx
0x48c124 ScaleViewportExtEx
0x48c128 SetWindowOrgEx
0x48c12c SetWindowExtEx
0x48c130 ScaleWindowExtEx
0x48c134 GetClipBox
0x48c138 ExcludeClipRect
0x48c13c MoveToEx
0x48c140 LineTo
0x48c144 SetBkColor
0x48c148 SelectObject
0x48c14c GetTextMetricsA
0x48c150 Escape
0x48c154 ExtTextOutA
0x48c158 TextOutA
0x48c15c RectVisible
0x48c160 PtVisible
0x48c164 GetViewportExtEx
0x48c168 ExtSelectClipRgn
WINMM.dll
0x48c64c midiStreamRestart
0x48c650 midiStreamClose
0x48c654 midiOutReset
0x48c658 midiStreamStop
0x48c65c midiStreamOut
0x48c660 midiOutPrepareHeader
0x48c664 midiStreamProperty
0x48c668 midiStreamOpen
0x48c66c midiOutUnprepareHeader
0x48c670 waveOutOpen
0x48c674 waveOutGetNumDevs
0x48c678 waveOutClose
0x48c67c waveOutReset
0x48c680 waveOutPause
0x48c684 waveOutWrite
0x48c688 waveOutPrepareHeader
0x48c68c waveOutUnprepareHeader
WINSPOOL.DRV
0x48c694 ClosePrinter
0x48c698 DocumentPropertiesA
0x48c69c OpenPrinterA
ADVAPI32.dll
0x48c000 RegCloseKey
0x48c004 RegOpenKeyExA
0x48c008 RegSetValueExA
0x48c00c RegQueryValueA
0x48c010 RegCreateKeyExA
SHELL32.dll
0x48c3d0 ShellExecuteA
0x48c3d4 Shell_NotifyIconA
ole32.dll
0x48c6e0 OleUninitialize
0x48c6e4 CLSIDFromString
0x48c6e8 OleInitialize
OLEAUT32.dll
0x48c388 LoadTypeLib
0x48c38c UnRegisterTypeLib
0x48c390 SafeArrayPutElement
0x48c394 SafeArrayCreate
0x48c398 SafeArrayDestroy
0x48c39c SysAllocString
0x48c3a0 VariantInit
0x48c3a4 VariantCopyInd
0x48c3a8 SafeArrayAccessData
0x48c3ac SafeArrayUnaccessData
0x48c3b0 SafeArrayGetDim
0x48c3b4 SafeArrayGetLBound
0x48c3b8 SafeArrayGetUBound
0x48c3bc VariantChangeType
0x48c3c0 VariantClear
0x48c3c4 VariantCopy
0x48c3c8 RegisterTypeLib
COMCTL32.dll
0x48c018 ImageList_Destroy
0x48c01c None
WS2_32.dll
0x48c6a4 accept
0x48c6a8 getpeername
0x48c6ac recv
0x48c6b0 ioctlsocket
0x48c6b4 recvfrom
0x48c6b8 WSAAsyncSelect
0x48c6bc closesocket
0x48c6c0 WSACleanup
0x48c6c4 inet_ntoa
comdlg32.dll
0x48c6cc GetFileTitleA
0x48c6d0 GetSaveFileNameA
0x48c6d4 GetOpenFileNameA
0x48c6d8 ChooseColorA
EAT(Export Address Table) is none
KERNEL32.dll
0x48c170 lstrcmpiA
0x48c174 SetEndOfFile
0x48c178 UnlockFile
0x48c17c LockFile
0x48c180 FlushFileBuffers
0x48c184 SetFilePointer
0x48c188 GetCurrentProcess
0x48c18c DuplicateHandle
0x48c190 lstrcpynA
0x48c194 SetLastError
0x48c198 FileTimeToLocalFileTime
0x48c19c FileTimeToSystemTime
0x48c1a0 LocalFree
0x48c1a4 MultiByteToWideChar
0x48c1a8 WideCharToMultiByte
0x48c1ac InterlockedDecrement
0x48c1b0 SetStdHandle
0x48c1b4 GetCurrentProcessId
0x48c1b8 QueryPerformanceCounter
0x48c1bc GetLocaleInfoA
0x48c1c0 IsBadCodePtr
0x48c1c4 IsBadReadPtr
0x48c1c8 CompareStringW
0x48c1cc CompareStringA
0x48c1d0 InterlockedExchange
0x48c1d4 GetTimeZoneInformation
0x48c1d8 SetUnhandledExceptionFilter
0x48c1dc GetStringTypeW
0x48c1e0 GetStringTypeA
0x48c1e4 IsBadWritePtr
0x48c1e8 VirtualQuery
0x48c1ec GetSystemInfo
0x48c1f0 VirtualAlloc
0x48c1f4 VirtualProtect
0x48c1f8 LCMapStringW
0x48c1fc LCMapStringA
0x48c200 SetEnvironmentVariableA
0x48c204 VirtualFree
0x48c208 HeapCreate
0x48c20c HeapDestroy
0x48c210 GetFileType
0x48c214 SetHandleCount
0x48c218 GetEnvironmentStringsW
0x48c21c FreeEnvironmentStringsW
0x48c220 CreateSemaphoreA
0x48c224 ResumeThread
0x48c228 ReleaseSemaphore
0x48c22c EnterCriticalSection
0x48c230 LeaveCriticalSection
0x48c234 GetProfileStringA
0x48c238 WriteFile
0x48c23c ReadFile
0x48c240 GetLastError
0x48c244 WaitForMultipleObjects
0x48c248 CreateFileA
0x48c24c SetEvent
0x48c250 FindResourceA
0x48c254 LoadResource
0x48c258 LockResource
0x48c25c GetModuleFileNameA
0x48c260 GetCurrentThreadId
0x48c264 ExitProcess
0x48c268 GlobalSize
0x48c26c GlobalFree
0x48c270 DeleteCriticalSection
0x48c274 InitializeCriticalSection
0x48c278 lstrcatA
0x48c27c lstrlenA
0x48c280 WinExec
0x48c284 lstrcpyA
0x48c288 FindNextFileA
0x48c28c GlobalReAlloc
0x48c290 HeapFree
0x48c294 HeapReAlloc
0x48c298 GetProcessHeap
0x48c29c HeapAlloc
0x48c2a0 GetFullPathNameA
0x48c2a4 FreeLibrary
0x48c2a8 LoadLibraryA
0x48c2ac GetVersionExA
0x48c2b0 WritePrivateProfileStringA
0x48c2b4 CreateThread
0x48c2b8 CreateEventA
0x48c2bc Sleep
0x48c2c0 GlobalAlloc
0x48c2c4 GlobalLock
0x48c2c8 GlobalUnlock
0x48c2cc FindFirstFileA
0x48c2d0 GetEnvironmentStrings
0x48c2d4 FreeEnvironmentStringsA
0x48c2d8 UnhandledExceptionFilter
0x48c2dc GetStdHandle
0x48c2e0 GetACP
0x48c2e4 HeapSize
0x48c2e8 TerminateProcess
0x48c2ec GetSystemTimeAsFileTime
0x48c2f0 RaiseException
0x48c2f4 RtlUnwind
0x48c2f8 GetStartupInfoA
0x48c2fc GetOEMCP
0x48c300 GetCPInfo
0x48c304 GetProcessVersion
0x48c308 SetErrorMode
0x48c30c GlobalFlags
0x48c310 GetCurrentThread
0x48c314 GetFileTime
0x48c318 FindClose
0x48c31c GetFileAttributesA
0x48c320 SetCurrentDirectoryA
0x48c324 GetFileSize
0x48c328 TlsGetValue
0x48c32c LocalReAlloc
0x48c330 TlsSetValue
0x48c334 TlsFree
0x48c338 GlobalHandle
0x48c33c TlsAlloc
0x48c340 LocalAlloc
0x48c344 lstrcmpA
0x48c348 GetVersion
0x48c34c GlobalDeleteAtom
0x48c350 GlobalFindAtomA
0x48c354 GlobalAddAtomA
0x48c358 GlobalGetAtomNameA
0x48c35c GetVolumeInformationA
0x48c360 GetModuleHandleA
0x48c364 GetProcAddress
0x48c368 MulDiv
0x48c36c GetCommandLineA
0x48c370 GetTickCount
0x48c374 CreateProcessA
0x48c378 WaitForSingleObject
0x48c37c CloseHandle
0x48c380 InterlockedIncrement
USER32.dll
0x48c3dc OpenClipboard
0x48c3e0 SetClipboardData
0x48c3e4 EmptyClipboard
0x48c3e8 GetSystemMetrics
0x48c3ec GetCursorPos
0x48c3f0 MessageBoxA
0x48c3f4 SetWindowPos
0x48c3f8 SendMessageA
0x48c3fc DestroyCursor
0x48c400 SetParent
0x48c404 GetClipboardData
0x48c408 PostMessageA
0x48c40c GetTopWindow
0x48c410 GetParent
0x48c414 GetFocus
0x48c418 GetClientRect
0x48c41c InvalidateRect
0x48c420 ValidateRect
0x48c424 UpdateWindow
0x48c428 CloseClipboard
0x48c42c wsprintfA
0x48c430 EqualRect
0x48c434 GetWindowRect
0x48c438 SetForegroundWindow
0x48c43c WaitForInputIdle
0x48c440 IsWindow
0x48c444 DestroyMenu
0x48c448 IsChild
0x48c44c ReleaseDC
0x48c450 IsRectEmpty
0x48c454 FillRect
0x48c458 GetDC
0x48c45c SetCursor
0x48c460 LoadCursorA
0x48c464 SetCursorPos
0x48c468 SetActiveWindow
0x48c46c GetSysColor
0x48c470 SetWindowLongA
0x48c474 GetWindowLongA
0x48c478 RedrawWindow
0x48c47c EnableWindow
0x48c480 IsWindowVisible
0x48c484 OffsetRect
0x48c488 PtInRect
0x48c48c DestroyIcon
0x48c490 IntersectRect
0x48c494 InflateRect
0x48c498 SetRect
0x48c49c SetScrollPos
0x48c4a0 SetScrollRange
0x48c4a4 GetScrollRange
0x48c4a8 SetCapture
0x48c4ac LoadIconA
0x48c4b0 TranslateMessage
0x48c4b4 DrawFrameControl
0x48c4b8 DrawEdge
0x48c4bc DrawFocusRect
0x48c4c0 WindowFromPoint
0x48c4c4 GetMessageA
0x48c4c8 DispatchMessageA
0x48c4cc SetRectEmpty
0x48c4d0 RegisterClipboardFormatA
0x48c4d4 CreateIconFromResourceEx
0x48c4d8 CreateIconFromResource
0x48c4dc DrawIconEx
0x48c4e0 CreatePopupMenu
0x48c4e4 AppendMenuA
0x48c4e8 ModifyMenuA
0x48c4ec CreateMenu
0x48c4f0 CreateAcceleratorTableA
0x48c4f4 GetDlgCtrlID
0x48c4f8 GetSubMenu
0x48c4fc EnableMenuItem
0x48c500 ClientToScreen
0x48c504 EnumDisplaySettingsA
0x48c508 LoadImageA
0x48c50c SystemParametersInfoA
0x48c510 ShowWindow
0x48c514 IsWindowEnabled
0x48c518 TranslateAcceleratorA
0x48c51c GetKeyState
0x48c520 CopyAcceleratorTableA
0x48c524 PostQuitMessage
0x48c528 IsZoomed
0x48c52c GetClassInfoA
0x48c530 GetWindowTextA
0x48c534 GetWindowTextLengthA
0x48c538 CharUpperA
0x48c53c GetWindowDC
0x48c540 BeginPaint
0x48c544 EndPaint
0x48c548 TabbedTextOutA
0x48c54c DrawTextA
0x48c550 GrayStringA
0x48c554 GetDlgItem
0x48c558 DestroyWindow
0x48c55c CreateDialogIndirectParamA
0x48c560 EndDialog
0x48c564 GetNextDlgTabItem
0x48c568 GetWindowPlacement
0x48c56c RegisterWindowMessageA
0x48c570 GetForegroundWindow
0x48c574 GetLastActivePopup
0x48c578 GetMessageTime
0x48c57c RemovePropA
0x48c580 CallWindowProcA
0x48c584 GetPropA
0x48c588 UnhookWindowsHookEx
0x48c58c SetPropA
0x48c590 GetClassLongA
0x48c594 CallNextHookEx
0x48c598 SetWindowsHookExA
0x48c59c CreateWindowExA
0x48c5a0 GetMenuItemID
0x48c5a4 GetMenuItemCount
0x48c5a8 RegisterClassA
0x48c5ac GetScrollPos
0x48c5b0 UnregisterClassA
0x48c5b4 AdjustWindowRectEx
0x48c5b8 MapWindowPoints
0x48c5bc SendDlgItemMessageA
0x48c5c0 ScrollWindowEx
0x48c5c4 IsDialogMessageA
0x48c5c8 SetWindowTextA
0x48c5cc MoveWindow
0x48c5d0 CheckMenuItem
0x48c5d4 SetMenuItemBitmaps
0x48c5d8 GetMenuState
0x48c5dc GetMenuCheckMarkDimensions
0x48c5e0 GetClassNameA
0x48c5e4 GetDesktopWindow
0x48c5e8 LoadStringA
0x48c5ec GetSysColorBrush
0x48c5f0 DefWindowProcA
0x48c5f4 GetSystemMenu
0x48c5f8 DeleteMenu
0x48c5fc GetMenu
0x48c600 SetMenu
0x48c604 PeekMessageA
0x48c608 IsIconic
0x48c60c SetFocus
0x48c610 GetActiveWindow
0x48c614 GetWindow
0x48c618 DestroyAcceleratorTable
0x48c61c SetWindowRgn
0x48c620 GetMessagePos
0x48c624 ScreenToClient
0x48c628 ChildWindowFromPointEx
0x48c62c CopyRect
0x48c630 LoadBitmapA
0x48c634 WinHelpA
0x48c638 KillTimer
0x48c63c SetTimer
0x48c640 ReleaseCapture
0x48c644 GetCapture
GDI32.dll
0x48c024 SetStretchBltMode
0x48c028 GetClipRgn
0x48c02c CreatePolygonRgn
0x48c030 SelectClipRgn
0x48c034 DeleteObject
0x48c038 CreateDIBitmap
0x48c03c GetSystemPaletteEntries
0x48c040 CreatePalette
0x48c044 StretchBlt
0x48c048 SelectPalette
0x48c04c RealizePalette
0x48c050 GetDIBits
0x48c054 GetWindowExtEx
0x48c058 GetViewportOrgEx
0x48c05c GetWindowOrgEx
0x48c060 BeginPath
0x48c064 EndPath
0x48c068 PathToRegion
0x48c06c CreateEllipticRgn
0x48c070 CreateRoundRectRgn
0x48c074 GetTextColor
0x48c078 GetBkMode
0x48c07c GetBkColor
0x48c080 GetROP2
0x48c084 GetStretchBltMode
0x48c088 GetPolyFillMode
0x48c08c CreateCompatibleBitmap
0x48c090 CreateDCA
0x48c094 CreateBitmap
0x48c098 CreateRectRgnIndirect
0x48c09c GetObjectA
0x48c0a0 CreatePen
0x48c0a4 PatBlt
0x48c0a8 CombineRgn
0x48c0ac CreateRectRgn
0x48c0b0 FillRgn
0x48c0b4 CreateSolidBrush
0x48c0b8 GetStockObject
0x48c0bc CreateFontIndirectA
0x48c0c0 EndPage
0x48c0c4 EndDoc
0x48c0c8 DeleteDC
0x48c0cc StartDocA
0x48c0d0 StartPage
0x48c0d4 BitBlt
0x48c0d8 CreateCompatibleDC
0x48c0dc Ellipse
0x48c0e0 Rectangle
0x48c0e4 LPtoDP
0x48c0e8 DPtoLP
0x48c0ec GetCurrentObject
0x48c0f0 RoundRect
0x48c0f4 GetTextExtentPoint32A
0x48c0f8 GetDeviceCaps
0x48c0fc SaveDC
0x48c100 RestoreDC
0x48c104 SetBkMode
0x48c108 SetPolyFillMode
0x48c10c SetROP2
0x48c110 SetTextColor
0x48c114 SetMapMode
0x48c118 SetViewportOrgEx
0x48c11c OffsetViewportOrgEx
0x48c120 SetViewportExtEx
0x48c124 ScaleViewportExtEx
0x48c128 SetWindowOrgEx
0x48c12c SetWindowExtEx
0x48c130 ScaleWindowExtEx
0x48c134 GetClipBox
0x48c138 ExcludeClipRect
0x48c13c MoveToEx
0x48c140 LineTo
0x48c144 SetBkColor
0x48c148 SelectObject
0x48c14c GetTextMetricsA
0x48c150 Escape
0x48c154 ExtTextOutA
0x48c158 TextOutA
0x48c15c RectVisible
0x48c160 PtVisible
0x48c164 GetViewportExtEx
0x48c168 ExtSelectClipRgn
WINMM.dll
0x48c64c midiStreamRestart
0x48c650 midiStreamClose
0x48c654 midiOutReset
0x48c658 midiStreamStop
0x48c65c midiStreamOut
0x48c660 midiOutPrepareHeader
0x48c664 midiStreamProperty
0x48c668 midiStreamOpen
0x48c66c midiOutUnprepareHeader
0x48c670 waveOutOpen
0x48c674 waveOutGetNumDevs
0x48c678 waveOutClose
0x48c67c waveOutReset
0x48c680 waveOutPause
0x48c684 waveOutWrite
0x48c688 waveOutPrepareHeader
0x48c68c waveOutUnprepareHeader
WINSPOOL.DRV
0x48c694 ClosePrinter
0x48c698 DocumentPropertiesA
0x48c69c OpenPrinterA
ADVAPI32.dll
0x48c000 RegCloseKey
0x48c004 RegOpenKeyExA
0x48c008 RegSetValueExA
0x48c00c RegQueryValueA
0x48c010 RegCreateKeyExA
SHELL32.dll
0x48c3d0 ShellExecuteA
0x48c3d4 Shell_NotifyIconA
ole32.dll
0x48c6e0 OleUninitialize
0x48c6e4 CLSIDFromString
0x48c6e8 OleInitialize
OLEAUT32.dll
0x48c388 LoadTypeLib
0x48c38c UnRegisterTypeLib
0x48c390 SafeArrayPutElement
0x48c394 SafeArrayCreate
0x48c398 SafeArrayDestroy
0x48c39c SysAllocString
0x48c3a0 VariantInit
0x48c3a4 VariantCopyInd
0x48c3a8 SafeArrayAccessData
0x48c3ac SafeArrayUnaccessData
0x48c3b0 SafeArrayGetDim
0x48c3b4 SafeArrayGetLBound
0x48c3b8 SafeArrayGetUBound
0x48c3bc VariantChangeType
0x48c3c0 VariantClear
0x48c3c4 VariantCopy
0x48c3c8 RegisterTypeLib
COMCTL32.dll
0x48c018 ImageList_Destroy
0x48c01c None
WS2_32.dll
0x48c6a4 accept
0x48c6a8 getpeername
0x48c6ac recv
0x48c6b0 ioctlsocket
0x48c6b4 recvfrom
0x48c6b8 WSAAsyncSelect
0x48c6bc closesocket
0x48c6c0 WSACleanup
0x48c6c4 inet_ntoa
comdlg32.dll
0x48c6cc GetFileTitleA
0x48c6d0 GetSaveFileNameA
0x48c6d4 GetOpenFileNameA
0x48c6d8 ChooseColorA
EAT(Export Address Table) is none