ScreenShot
| Created | 2024.10.20 10:14 | Machine | s1_win7_x6403 |
| Filename | system64.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : mailcious | ||
| VT API (file) | |||
| md5 | 91b01b252f1497b77fb58b020088c0ef | ||
| sha256 | 52e4d755afe7a8798e9d71bb37da4c0e5aba6e38a9ac2f113930223340df4a3b | ||
| ssdeep | 12288:DXEIAQDh746ssawGiU/CN0QTi7frZ9vcMdGU/qrWG3zuj:Dv739aPiU6N7TWrZ9kMdGU/q6G34 | ||
| imphash | 1bff0fa37f674a0609fbd81e835c6045 | ||
| impfuzzy | 192:UwAZfFRnM0vMUqT0mTYui9W7tn4cRctcC4r6Q/:4MTTdCEid4P | ||
Network IP location
Signature (7cnts)
| Level | Description |
|---|---|
| watch | Creates a windows hook that monitors keyboard input (keylogger) |
| watch | Installs itself for autorun at Windows startup |
| notice | Foreign language identified in PE resource |
| notice | Repeatedly searches for a not-found process |
| notice | Searches running processes potentially to identify processes for sandbox evasion |
| info | The executable uses a known packer |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (9cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Antivirus | Contains references to security software | binaries (upload) |
| watch | ASPack_Zero | ASPack packed file | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | DllRegisterServer_Zero | execute regsvr32.exe | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
MSVFW32.dll
0x4953b8 DrawDibDraw
AVIFIL32.dll
0x495024 AVIStreamGetFrame
0x495028 AVIStreamInfoA
WINMM.dll
0x49565c midiStreamOut
0x495660 midiStreamProperty
0x495664 midiStreamOpen
0x495668 midiOutUnprepareHeader
0x49566c waveOutOpen
0x495670 waveOutGetNumDevs
0x495674 waveOutClose
0x495678 waveOutReset
0x49567c waveOutPause
0x495680 midiOutPrepareHeader
0x495684 waveOutPrepareHeader
0x495688 waveOutUnprepareHeader
0x49568c PlaySoundA
0x495690 midiStreamRestart
0x495694 midiStreamClose
0x495698 midiOutReset
0x49569c midiStreamStop
0x4956a0 waveOutWrite
WS2_32.dll
0x4956b8 accept
0x4956bc getpeername
0x4956c0 recv
0x4956c4 ioctlsocket
0x4956c8 recvfrom
0x4956cc WSAAsyncSelect
0x4956d0 closesocket
0x4956d4 WSACleanup
0x4956d8 inet_ntoa
KERNEL32.dll
0x49519c InterlockedIncrement
0x4951a0 InterlockedDecrement
0x4951a4 WideCharToMultiByte
0x4951a8 LocalFree
0x4951ac FileTimeToSystemTime
0x4951b0 FileTimeToLocalFileTime
0x4951b4 lstrcpynA
0x4951b8 DuplicateHandle
0x4951bc FlushFileBuffers
0x4951c0 LockFile
0x4951c4 GetVersion
0x4951c8 SetEndOfFile
0x4951cc lstrcmpiA
0x4951d0 GlobalDeleteAtom
0x4951d4 GlobalFindAtomA
0x4951d8 GlobalAddAtomA
0x4951dc GlobalGetAtomNameA
0x4951e0 lstrcmpA
0x4951e4 LocalAlloc
0x4951e8 TlsAlloc
0x4951ec GlobalHandle
0x4951f0 TlsFree
0x4951f4 TlsSetValue
0x4951f8 LocalReAlloc
0x4951fc TlsGetValue
0x495200 GetFileTime
0x495204 GetCurrentThread
0x495208 GlobalFlags
0x49520c SetErrorMode
0x495210 GetProcessVersion
0x495214 GetCPInfo
0x495218 GetOEMCP
0x49521c GetStartupInfoA
0x495220 RtlUnwind
0x495224 GetSystemTime
0x495228 GetLocalTime
0x49522c RaiseException
0x495230 HeapSize
0x495234 GetACP
0x495238 UnhandledExceptionFilter
0x49523c FreeEnvironmentStringsA
0x495240 FreeEnvironmentStringsW
0x495244 GetEnvironmentStrings
0x495248 GetEnvironmentStringsW
0x49524c SetHandleCount
0x495250 GetStdHandle
0x495254 GetFileType
0x495258 GetEnvironmentVariableA
0x49525c HeapDestroy
0x495260 HeapCreate
0x495264 VirtualFree
0x495268 SetEnvironmentVariableA
0x49526c LCMapStringA
0x495270 LCMapStringW
0x495274 VirtualAlloc
0x495278 IsBadWritePtr
0x49527c SetUnhandledExceptionFilter
0x495280 GetStringTypeA
0x495284 GetStringTypeW
0x495288 CompareStringA
0x49528c CompareStringW
0x495290 IsBadReadPtr
0x495294 IsBadCodePtr
0x495298 SetStdHandle
0x49529c GetTimeZoneInformation
0x4952a0 SetLastError
0x4952a4 MultiByteToWideChar
0x4952a8 OpenProcess
0x4952ac TerminateProcess
0x4952b0 GetCurrentProcess
0x4952b4 GetFileSize
0x4952b8 SetFilePointer
0x4952bc CreateToolhelp32Snapshot
0x4952c0 Process32First
0x4952c4 Process32Next
0x4952c8 CreateSemaphoreA
0x4952cc ResumeThread
0x4952d0 ReleaseSemaphore
0x4952d4 EnterCriticalSection
0x4952d8 LeaveCriticalSection
0x4952dc GetProfileStringA
0x4952e0 WriteFile
0x4952e4 WaitForMultipleObjects
0x4952e8 CreateFileA
0x4952ec SetEvent
0x4952f0 FindResourceA
0x4952f4 LoadResource
0x4952f8 LockResource
0x4952fc ReadFile
0x495300 GetModuleFileNameA
0x495304 GetCurrentThreadId
0x495308 ExitProcess
0x49530c GlobalSize
0x495310 GlobalFree
0x495314 DeleteCriticalSection
0x495318 InitializeCriticalSection
0x49531c lstrcatA
0x495320 lstrlenA
0x495324 WinExec
0x495328 lstrcpyA
0x49532c FindNextFileA
0x495330 GlobalReAlloc
0x495334 HeapFree
0x495338 HeapReAlloc
0x49533c GetProcessHeap
0x495340 HeapAlloc
0x495344 GetFullPathNameA
0x495348 FreeLibrary
0x49534c LoadLibraryA
0x495350 GetLastError
0x495354 GetVersionExA
0x495358 WritePrivateProfileStringA
0x49535c CreateThread
0x495360 CreateEventA
0x495364 Sleep
0x495368 GlobalAlloc
0x49536c GlobalLock
0x495370 GlobalUnlock
0x495374 FindFirstFileA
0x495378 FindClose
0x49537c GetFileAttributesA
0x495380 SetCurrentDirectoryA
0x495384 GetVolumeInformationA
0x495388 GetModuleHandleA
0x49538c GetProcAddress
0x495390 MulDiv
0x495394 SetLocalTime
0x495398 GetCommandLineA
0x49539c GetTickCount
0x4953a0 CreateProcessA
0x4953a4 WaitForSingleObject
0x4953a8 CloseHandle
0x4953ac InterlockedExchange
0x4953b0 UnlockFile
USER32.dll
0x4953dc LoadStringA
0x4953e0 GetSysColorBrush
0x4953e4 GetWindowTextA
0x4953e8 GetDlgItem
0x4953ec FindWindowA
0x4953f0 GetWindowThreadProcessId
0x4953f4 GetClassNameA
0x4953f8 GetDesktopWindow
0x4953fc DrawStateA
0x495400 FrameRect
0x495404 GetNextDlgTabItem
0x495408 LoadIconA
0x49540c TranslateMessage
0x495410 DrawFrameControl
0x495414 DrawEdge
0x495418 DrawFocusRect
0x49541c WindowFromPoint
0x495420 GetMessageA
0x495424 DispatchMessageA
0x495428 SetRectEmpty
0x49542c RegisterClipboardFormatA
0x495430 CreateIconFromResourceEx
0x495434 CreateIconFromResource
0x495438 DrawIconEx
0x49543c CreatePopupMenu
0x495440 AppendMenuA
0x495444 ModifyMenuA
0x495448 CreateMenu
0x49544c CreateAcceleratorTableA
0x495450 GetDlgCtrlID
0x495454 GetSubMenu
0x495458 EnableMenuItem
0x49545c ClientToScreen
0x495460 EnumDisplaySettingsA
0x495464 LoadImageA
0x495468 SystemParametersInfoA
0x49546c ShowWindow
0x495470 IsWindowEnabled
0x495474 TranslateAcceleratorA
0x495478 GetKeyState
0x49547c CopyAcceleratorTableA
0x495480 PostQuitMessage
0x495484 IsZoomed
0x495488 GetClassInfoA
0x49548c DefWindowProcA
0x495490 GetSystemMenu
0x495494 DeleteMenu
0x495498 GetMenu
0x49549c SetMenu
0x4954a0 PeekMessageA
0x4954a4 SetFocus
0x4954a8 GetActiveWindow
0x4954ac GetWindow
0x4954b0 DestroyAcceleratorTable
0x4954b4 SetWindowRgn
0x4954b8 GetMessagePos
0x4954bc ScreenToClient
0x4954c0 ChildWindowFromPointEx
0x4954c4 CopyRect
0x4954c8 LoadBitmapA
0x4954cc WinHelpA
0x4954d0 KillTimer
0x4954d4 SetTimer
0x4954d8 ReleaseCapture
0x4954dc GetCapture
0x4954e0 SetCapture
0x4954e4 GetScrollRange
0x4954e8 SetScrollPos
0x4954ec SetRect
0x4954f0 InflateRect
0x4954f4 IntersectRect
0x4954f8 DestroyIcon
0x4954fc PtInRect
0x495500 OffsetRect
0x495504 IsWindowVisible
0x495508 EnableWindow
0x49550c RedrawWindow
0x495510 GetWindowLongA
0x495514 SetWindowLongA
0x495518 GetSysColor
0x49551c SetActiveWindow
0x495520 SetCursorPos
0x495524 LoadCursorA
0x495528 SetCursor
0x49552c GetDC
0x495530 FillRect
0x495534 IsRectEmpty
0x495538 ReleaseDC
0x49553c IsChild
0x495540 DestroyMenu
0x495544 SetForegroundWindow
0x495548 GetWindowRect
0x49554c EqualRect
0x495550 UpdateWindow
0x495554 ValidateRect
0x495558 InvalidateRect
0x49555c GetClientRect
0x495560 GetFocus
0x495564 GetParent
0x495568 GetTopWindow
0x49556c PostMessageA
0x495570 IsWindow
0x495574 SetParent
0x495578 DestroyCursor
0x49557c SendMessageA
0x495580 SetWindowPos
0x495584 MessageBoxA
0x495588 GetCursorPos
0x49558c GetSystemMetrics
0x495590 EmptyClipboard
0x495594 SetClipboardData
0x495598 OpenClipboard
0x49559c GetClipboardData
0x4955a0 CloseClipboard
0x4955a4 wsprintfA
0x4955a8 WaitForInputIdle
0x4955ac GetMenuCheckMarkDimensions
0x4955b0 GetMenuState
0x4955b4 SetMenuItemBitmaps
0x4955b8 CheckMenuItem
0x4955bc MoveWindow
0x4955c0 SetWindowTextA
0x4955c4 IsDialogMessageA
0x4955c8 ScrollWindowEx
0x4955cc SendDlgItemMessageA
0x4955d0 MapWindowPoints
0x4955d4 AdjustWindowRectEx
0x4955d8 GetScrollPos
0x4955dc RegisterClassA
0x4955e0 GetMenuItemCount
0x4955e4 GetMenuItemID
0x4955e8 CreateWindowExA
0x4955ec SetWindowsHookExA
0x4955f0 CallNextHookEx
0x4955f4 GetClassLongA
0x4955f8 SetPropA
0x4955fc UnhookWindowsHookEx
0x495600 GetPropA
0x495604 CallWindowProcA
0x495608 RemovePropA
0x49560c GetMessageTime
0x495610 GetLastActivePopup
0x495614 GetForegroundWindow
0x495618 RegisterWindowMessageA
0x49561c GetWindowPlacement
0x495620 EndDialog
0x495624 CreateDialogIndirectParamA
0x495628 DestroyWindow
0x49562c GrayStringA
0x495630 DrawTextA
0x495634 TabbedTextOutA
0x495638 EndPaint
0x49563c BeginPaint
0x495640 GetWindowDC
0x495644 CharUpperA
0x495648 GetWindowTextLengthA
0x49564c IsIconic
0x495650 SetScrollRange
0x495654 UnregisterClassA
GDI32.dll
0x495040 RoundRect
0x495044 GetCurrentObject
0x495048 DPtoLP
0x49504c LPtoDP
0x495050 Rectangle
0x495054 CreateCompatibleDC
0x495058 GetPixel
0x49505c GetTextExtentPoint32A
0x495060 StartPage
0x495064 Ellipse
0x495068 BitBlt
0x49506c StartDocA
0x495070 DeleteDC
0x495074 EndDoc
0x495078 EndPage
0x49507c CreateFontIndirectA
0x495080 GetStockObject
0x495084 CreateSolidBrush
0x495088 FillRgn
0x49508c CreateRectRgn
0x495090 CombineRgn
0x495094 PatBlt
0x495098 CreatePen
0x49509c GetObjectA
0x4950a0 SelectObject
0x4950a4 CreatePatternBrush
0x4950a8 CreateBitmap
0x4950ac CreateDCA
0x4950b0 CreateCompatibleBitmap
0x4950b4 GetPolyFillMode
0x4950b8 GetStretchBltMode
0x4950bc GetROP2
0x4950c0 GetBkColor
0x4950c4 GetBkMode
0x4950c8 GetTextColor
0x4950cc CreateRoundRectRgn
0x4950d0 CreateEllipticRgn
0x4950d4 PathToRegion
0x4950d8 EndPath
0x4950dc BeginPath
0x4950e0 GetWindowOrgEx
0x4950e4 GetViewportOrgEx
0x4950e8 GetWindowExtEx
0x4950ec GetDIBits
0x4950f0 RealizePalette
0x4950f4 SelectPalette
0x4950f8 StretchBlt
0x4950fc CreatePalette
0x495100 GetSystemPaletteEntries
0x495104 CreateDIBitmap
0x495108 DeleteObject
0x49510c SelectClipRgn
0x495110 CreatePolygonRgn
0x495114 GetClipRgn
0x495118 SetStretchBltMode
0x49511c CreateDIBSection
0x495120 CreateRectRgnIndirect
0x495124 SetBkColor
0x495128 TextOutA
0x49512c SetBkMode
0x495130 SetTextColor
0x495134 SetDIBitsToDevice
0x495138 SaveDC
0x49513c RestoreDC
0x495140 SetPolyFillMode
0x495144 SetROP2
0x495148 SetMapMode
0x49514c SetViewportOrgEx
0x495150 OffsetViewportOrgEx
0x495154 SetViewportExtEx
0x495158 ScaleViewportExtEx
0x49515c SetWindowOrgEx
0x495160 SetWindowExtEx
0x495164 ScaleWindowExtEx
0x495168 GetClipBox
0x49516c ExcludeClipRect
0x495170 MoveToEx
0x495174 LineTo
0x495178 ExtSelectClipRgn
0x49517c GetViewportExtEx
0x495180 PtVisible
0x495184 RectVisible
0x495188 ExtTextOutA
0x49518c Escape
0x495190 GetTextMetricsA
0x495194 GetDeviceCaps
WINSPOOL.DRV
0x4956a8 OpenPrinterA
0x4956ac DocumentPropertiesA
0x4956b0 ClosePrinter
comdlg32.dll
0x4956e0 ChooseColorA
0x4956e4 GetOpenFileNameA
0x4956e8 GetSaveFileNameA
0x4956ec GetFileTitleA
ADVAPI32.dll
0x495000 RegOpenKeyExA
0x495004 RegSetValueExA
0x495008 RegCreateKeyA
0x49500c RegDeleteValueA
0x495010 RegDeleteKeyA
0x495014 RegQueryValueA
0x495018 RegCreateKeyExA
0x49501c RegCloseKey
SHELL32.dll
0x4953d0 Shell_NotifyIconA
0x4953d4 ShellExecuteA
ole32.dll
0x4956f4 OleInitialize
0x4956f8 OleUninitialize
0x4956fc CLSIDFromString
OLEAUT32.dll
0x4953c0 LoadTypeLib
0x4953c4 UnRegisterTypeLib
0x4953c8 RegisterTypeLib
COMCTL32.dll
0x495030 None
0x495034 _TrackMouseEvent
0x495038 ImageList_Destroy
EAT(Export Address Table) is none
MSVFW32.dll
0x4953b8 DrawDibDraw
AVIFIL32.dll
0x495024 AVIStreamGetFrame
0x495028 AVIStreamInfoA
WINMM.dll
0x49565c midiStreamOut
0x495660 midiStreamProperty
0x495664 midiStreamOpen
0x495668 midiOutUnprepareHeader
0x49566c waveOutOpen
0x495670 waveOutGetNumDevs
0x495674 waveOutClose
0x495678 waveOutReset
0x49567c waveOutPause
0x495680 midiOutPrepareHeader
0x495684 waveOutPrepareHeader
0x495688 waveOutUnprepareHeader
0x49568c PlaySoundA
0x495690 midiStreamRestart
0x495694 midiStreamClose
0x495698 midiOutReset
0x49569c midiStreamStop
0x4956a0 waveOutWrite
WS2_32.dll
0x4956b8 accept
0x4956bc getpeername
0x4956c0 recv
0x4956c4 ioctlsocket
0x4956c8 recvfrom
0x4956cc WSAAsyncSelect
0x4956d0 closesocket
0x4956d4 WSACleanup
0x4956d8 inet_ntoa
KERNEL32.dll
0x49519c InterlockedIncrement
0x4951a0 InterlockedDecrement
0x4951a4 WideCharToMultiByte
0x4951a8 LocalFree
0x4951ac FileTimeToSystemTime
0x4951b0 FileTimeToLocalFileTime
0x4951b4 lstrcpynA
0x4951b8 DuplicateHandle
0x4951bc FlushFileBuffers
0x4951c0 LockFile
0x4951c4 GetVersion
0x4951c8 SetEndOfFile
0x4951cc lstrcmpiA
0x4951d0 GlobalDeleteAtom
0x4951d4 GlobalFindAtomA
0x4951d8 GlobalAddAtomA
0x4951dc GlobalGetAtomNameA
0x4951e0 lstrcmpA
0x4951e4 LocalAlloc
0x4951e8 TlsAlloc
0x4951ec GlobalHandle
0x4951f0 TlsFree
0x4951f4 TlsSetValue
0x4951f8 LocalReAlloc
0x4951fc TlsGetValue
0x495200 GetFileTime
0x495204 GetCurrentThread
0x495208 GlobalFlags
0x49520c SetErrorMode
0x495210 GetProcessVersion
0x495214 GetCPInfo
0x495218 GetOEMCP
0x49521c GetStartupInfoA
0x495220 RtlUnwind
0x495224 GetSystemTime
0x495228 GetLocalTime
0x49522c RaiseException
0x495230 HeapSize
0x495234 GetACP
0x495238 UnhandledExceptionFilter
0x49523c FreeEnvironmentStringsA
0x495240 FreeEnvironmentStringsW
0x495244 GetEnvironmentStrings
0x495248 GetEnvironmentStringsW
0x49524c SetHandleCount
0x495250 GetStdHandle
0x495254 GetFileType
0x495258 GetEnvironmentVariableA
0x49525c HeapDestroy
0x495260 HeapCreate
0x495264 VirtualFree
0x495268 SetEnvironmentVariableA
0x49526c LCMapStringA
0x495270 LCMapStringW
0x495274 VirtualAlloc
0x495278 IsBadWritePtr
0x49527c SetUnhandledExceptionFilter
0x495280 GetStringTypeA
0x495284 GetStringTypeW
0x495288 CompareStringA
0x49528c CompareStringW
0x495290 IsBadReadPtr
0x495294 IsBadCodePtr
0x495298 SetStdHandle
0x49529c GetTimeZoneInformation
0x4952a0 SetLastError
0x4952a4 MultiByteToWideChar
0x4952a8 OpenProcess
0x4952ac TerminateProcess
0x4952b0 GetCurrentProcess
0x4952b4 GetFileSize
0x4952b8 SetFilePointer
0x4952bc CreateToolhelp32Snapshot
0x4952c0 Process32First
0x4952c4 Process32Next
0x4952c8 CreateSemaphoreA
0x4952cc ResumeThread
0x4952d0 ReleaseSemaphore
0x4952d4 EnterCriticalSection
0x4952d8 LeaveCriticalSection
0x4952dc GetProfileStringA
0x4952e0 WriteFile
0x4952e4 WaitForMultipleObjects
0x4952e8 CreateFileA
0x4952ec SetEvent
0x4952f0 FindResourceA
0x4952f4 LoadResource
0x4952f8 LockResource
0x4952fc ReadFile
0x495300 GetModuleFileNameA
0x495304 GetCurrentThreadId
0x495308 ExitProcess
0x49530c GlobalSize
0x495310 GlobalFree
0x495314 DeleteCriticalSection
0x495318 InitializeCriticalSection
0x49531c lstrcatA
0x495320 lstrlenA
0x495324 WinExec
0x495328 lstrcpyA
0x49532c FindNextFileA
0x495330 GlobalReAlloc
0x495334 HeapFree
0x495338 HeapReAlloc
0x49533c GetProcessHeap
0x495340 HeapAlloc
0x495344 GetFullPathNameA
0x495348 FreeLibrary
0x49534c LoadLibraryA
0x495350 GetLastError
0x495354 GetVersionExA
0x495358 WritePrivateProfileStringA
0x49535c CreateThread
0x495360 CreateEventA
0x495364 Sleep
0x495368 GlobalAlloc
0x49536c GlobalLock
0x495370 GlobalUnlock
0x495374 FindFirstFileA
0x495378 FindClose
0x49537c GetFileAttributesA
0x495380 SetCurrentDirectoryA
0x495384 GetVolumeInformationA
0x495388 GetModuleHandleA
0x49538c GetProcAddress
0x495390 MulDiv
0x495394 SetLocalTime
0x495398 GetCommandLineA
0x49539c GetTickCount
0x4953a0 CreateProcessA
0x4953a4 WaitForSingleObject
0x4953a8 CloseHandle
0x4953ac InterlockedExchange
0x4953b0 UnlockFile
USER32.dll
0x4953dc LoadStringA
0x4953e0 GetSysColorBrush
0x4953e4 GetWindowTextA
0x4953e8 GetDlgItem
0x4953ec FindWindowA
0x4953f0 GetWindowThreadProcessId
0x4953f4 GetClassNameA
0x4953f8 GetDesktopWindow
0x4953fc DrawStateA
0x495400 FrameRect
0x495404 GetNextDlgTabItem
0x495408 LoadIconA
0x49540c TranslateMessage
0x495410 DrawFrameControl
0x495414 DrawEdge
0x495418 DrawFocusRect
0x49541c WindowFromPoint
0x495420 GetMessageA
0x495424 DispatchMessageA
0x495428 SetRectEmpty
0x49542c RegisterClipboardFormatA
0x495430 CreateIconFromResourceEx
0x495434 CreateIconFromResource
0x495438 DrawIconEx
0x49543c CreatePopupMenu
0x495440 AppendMenuA
0x495444 ModifyMenuA
0x495448 CreateMenu
0x49544c CreateAcceleratorTableA
0x495450 GetDlgCtrlID
0x495454 GetSubMenu
0x495458 EnableMenuItem
0x49545c ClientToScreen
0x495460 EnumDisplaySettingsA
0x495464 LoadImageA
0x495468 SystemParametersInfoA
0x49546c ShowWindow
0x495470 IsWindowEnabled
0x495474 TranslateAcceleratorA
0x495478 GetKeyState
0x49547c CopyAcceleratorTableA
0x495480 PostQuitMessage
0x495484 IsZoomed
0x495488 GetClassInfoA
0x49548c DefWindowProcA
0x495490 GetSystemMenu
0x495494 DeleteMenu
0x495498 GetMenu
0x49549c SetMenu
0x4954a0 PeekMessageA
0x4954a4 SetFocus
0x4954a8 GetActiveWindow
0x4954ac GetWindow
0x4954b0 DestroyAcceleratorTable
0x4954b4 SetWindowRgn
0x4954b8 GetMessagePos
0x4954bc ScreenToClient
0x4954c0 ChildWindowFromPointEx
0x4954c4 CopyRect
0x4954c8 LoadBitmapA
0x4954cc WinHelpA
0x4954d0 KillTimer
0x4954d4 SetTimer
0x4954d8 ReleaseCapture
0x4954dc GetCapture
0x4954e0 SetCapture
0x4954e4 GetScrollRange
0x4954e8 SetScrollPos
0x4954ec SetRect
0x4954f0 InflateRect
0x4954f4 IntersectRect
0x4954f8 DestroyIcon
0x4954fc PtInRect
0x495500 OffsetRect
0x495504 IsWindowVisible
0x495508 EnableWindow
0x49550c RedrawWindow
0x495510 GetWindowLongA
0x495514 SetWindowLongA
0x495518 GetSysColor
0x49551c SetActiveWindow
0x495520 SetCursorPos
0x495524 LoadCursorA
0x495528 SetCursor
0x49552c GetDC
0x495530 FillRect
0x495534 IsRectEmpty
0x495538 ReleaseDC
0x49553c IsChild
0x495540 DestroyMenu
0x495544 SetForegroundWindow
0x495548 GetWindowRect
0x49554c EqualRect
0x495550 UpdateWindow
0x495554 ValidateRect
0x495558 InvalidateRect
0x49555c GetClientRect
0x495560 GetFocus
0x495564 GetParent
0x495568 GetTopWindow
0x49556c PostMessageA
0x495570 IsWindow
0x495574 SetParent
0x495578 DestroyCursor
0x49557c SendMessageA
0x495580 SetWindowPos
0x495584 MessageBoxA
0x495588 GetCursorPos
0x49558c GetSystemMetrics
0x495590 EmptyClipboard
0x495594 SetClipboardData
0x495598 OpenClipboard
0x49559c GetClipboardData
0x4955a0 CloseClipboard
0x4955a4 wsprintfA
0x4955a8 WaitForInputIdle
0x4955ac GetMenuCheckMarkDimensions
0x4955b0 GetMenuState
0x4955b4 SetMenuItemBitmaps
0x4955b8 CheckMenuItem
0x4955bc MoveWindow
0x4955c0 SetWindowTextA
0x4955c4 IsDialogMessageA
0x4955c8 ScrollWindowEx
0x4955cc SendDlgItemMessageA
0x4955d0 MapWindowPoints
0x4955d4 AdjustWindowRectEx
0x4955d8 GetScrollPos
0x4955dc RegisterClassA
0x4955e0 GetMenuItemCount
0x4955e4 GetMenuItemID
0x4955e8 CreateWindowExA
0x4955ec SetWindowsHookExA
0x4955f0 CallNextHookEx
0x4955f4 GetClassLongA
0x4955f8 SetPropA
0x4955fc UnhookWindowsHookEx
0x495600 GetPropA
0x495604 CallWindowProcA
0x495608 RemovePropA
0x49560c GetMessageTime
0x495610 GetLastActivePopup
0x495614 GetForegroundWindow
0x495618 RegisterWindowMessageA
0x49561c GetWindowPlacement
0x495620 EndDialog
0x495624 CreateDialogIndirectParamA
0x495628 DestroyWindow
0x49562c GrayStringA
0x495630 DrawTextA
0x495634 TabbedTextOutA
0x495638 EndPaint
0x49563c BeginPaint
0x495640 GetWindowDC
0x495644 CharUpperA
0x495648 GetWindowTextLengthA
0x49564c IsIconic
0x495650 SetScrollRange
0x495654 UnregisterClassA
GDI32.dll
0x495040 RoundRect
0x495044 GetCurrentObject
0x495048 DPtoLP
0x49504c LPtoDP
0x495050 Rectangle
0x495054 CreateCompatibleDC
0x495058 GetPixel
0x49505c GetTextExtentPoint32A
0x495060 StartPage
0x495064 Ellipse
0x495068 BitBlt
0x49506c StartDocA
0x495070 DeleteDC
0x495074 EndDoc
0x495078 EndPage
0x49507c CreateFontIndirectA
0x495080 GetStockObject
0x495084 CreateSolidBrush
0x495088 FillRgn
0x49508c CreateRectRgn
0x495090 CombineRgn
0x495094 PatBlt
0x495098 CreatePen
0x49509c GetObjectA
0x4950a0 SelectObject
0x4950a4 CreatePatternBrush
0x4950a8 CreateBitmap
0x4950ac CreateDCA
0x4950b0 CreateCompatibleBitmap
0x4950b4 GetPolyFillMode
0x4950b8 GetStretchBltMode
0x4950bc GetROP2
0x4950c0 GetBkColor
0x4950c4 GetBkMode
0x4950c8 GetTextColor
0x4950cc CreateRoundRectRgn
0x4950d0 CreateEllipticRgn
0x4950d4 PathToRegion
0x4950d8 EndPath
0x4950dc BeginPath
0x4950e0 GetWindowOrgEx
0x4950e4 GetViewportOrgEx
0x4950e8 GetWindowExtEx
0x4950ec GetDIBits
0x4950f0 RealizePalette
0x4950f4 SelectPalette
0x4950f8 StretchBlt
0x4950fc CreatePalette
0x495100 GetSystemPaletteEntries
0x495104 CreateDIBitmap
0x495108 DeleteObject
0x49510c SelectClipRgn
0x495110 CreatePolygonRgn
0x495114 GetClipRgn
0x495118 SetStretchBltMode
0x49511c CreateDIBSection
0x495120 CreateRectRgnIndirect
0x495124 SetBkColor
0x495128 TextOutA
0x49512c SetBkMode
0x495130 SetTextColor
0x495134 SetDIBitsToDevice
0x495138 SaveDC
0x49513c RestoreDC
0x495140 SetPolyFillMode
0x495144 SetROP2
0x495148 SetMapMode
0x49514c SetViewportOrgEx
0x495150 OffsetViewportOrgEx
0x495154 SetViewportExtEx
0x495158 ScaleViewportExtEx
0x49515c SetWindowOrgEx
0x495160 SetWindowExtEx
0x495164 ScaleWindowExtEx
0x495168 GetClipBox
0x49516c ExcludeClipRect
0x495170 MoveToEx
0x495174 LineTo
0x495178 ExtSelectClipRgn
0x49517c GetViewportExtEx
0x495180 PtVisible
0x495184 RectVisible
0x495188 ExtTextOutA
0x49518c Escape
0x495190 GetTextMetricsA
0x495194 GetDeviceCaps
WINSPOOL.DRV
0x4956a8 OpenPrinterA
0x4956ac DocumentPropertiesA
0x4956b0 ClosePrinter
comdlg32.dll
0x4956e0 ChooseColorA
0x4956e4 GetOpenFileNameA
0x4956e8 GetSaveFileNameA
0x4956ec GetFileTitleA
ADVAPI32.dll
0x495000 RegOpenKeyExA
0x495004 RegSetValueExA
0x495008 RegCreateKeyA
0x49500c RegDeleteValueA
0x495010 RegDeleteKeyA
0x495014 RegQueryValueA
0x495018 RegCreateKeyExA
0x49501c RegCloseKey
SHELL32.dll
0x4953d0 Shell_NotifyIconA
0x4953d4 ShellExecuteA
ole32.dll
0x4956f4 OleInitialize
0x4956f8 OleUninitialize
0x4956fc CLSIDFromString
OLEAUT32.dll
0x4953c0 LoadTypeLib
0x4953c4 UnRegisterTypeLib
0x4953c8 RegisterTypeLib
COMCTL32.dll
0x495030 None
0x495034 _TrackMouseEvent
0x495038 ImageList_Destroy
EAT(Export Address Table) is none