ScreenShot
| Created | 2024.10.29 00:58 | Machine | s1_win7_x6401 |
| Filename | 16Channels_Commander_v1.1_17.10.2024.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | a989562104c1a021035d5f51352d05dd | ||
| sha256 | bd52bc1e668176f30305e28daad18f776debf3a87a3e03fc0ce1939379fdf96f | ||
| ssdeep | 196608:9IoEgRyPPhhoN/F3X7V2ZCZSduH2oHS46BHsH2T0Nabb+R0aAxM7W0E:9mgRyPPhh+54ZCwuWo8MX7HAxM7 | ||
| imphash | 54503e65a2ab89abcf3ab5255fda0eac | ||
| impfuzzy | 192:oN3sSbuuaNSUvK9cpo1XykGo7GkYKT1Ll+PbOQHk:O3hae993N1LAPbOQE | ||
Network IP location
Signature (10cnts)
| Level | Description |
|---|---|
| watch | Network activity contains more than one unique useragent |
| watch | Resumed a suspended thread in a remote process potentially indicative of process injection |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Checks for the Locally Unique Identifier on the system for a suspicious privilege |
| notice | Searches running processes potentially to identify processes for sandbox evasion |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| notice | Uses Windows utilities for basic Windows functionality |
| notice | Yara rule detected in process memory |
| info | Checks amount of memory in system |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (17cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Admin_Tool_IN_Zero | Admin Tool Sysinternals | binaries (upload) |
| watch | Antivirus | Contains references to security software | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | anti_dbg | Checks if being debugged | memory |
| info | DebuggerCheck__GlobalFlags | (no description) | memory |
| info | DebuggerCheck__QueryInfo | (no description) | memory |
| info | DebuggerHiding__Active | (no description) | memory |
| info | DebuggerHiding__Thread | (no description) | memory |
| info | disable_dep | Bypass DEP | memory |
| info | IsPE32 | (no description) | binaries (upload) |
| info | Microsoft_Office_File_Zero | Microsoft Office File | binaries (download) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
| info | SEH__vectored | (no description) | memory |
| info | ThreadControl__Context | (no description) | memory |
PE API
IAT(Import Address Table) Library
oleaut32.dll
0x8f1000 SysFreeString
0x8f1004 SysReAllocStringLen
0x8f1008 SysAllocStringLen
advapi32.dll
0x8f1010 RegQueryValueExA
0x8f1014 RegOpenKeyExA
0x8f1018 RegCloseKey
user32.dll
0x8f1020 GetKeyboardType
0x8f1024 DestroyWindow
0x8f1028 LoadStringA
0x8f102c MessageBoxA
0x8f1030 CharNextA
kernel32.dll
0x8f1038 GetACP
0x8f103c Sleep
0x8f1040 VirtualFree
0x8f1044 VirtualAlloc
0x8f1048 GetCurrentThreadId
0x8f104c InterlockedDecrement
0x8f1050 InterlockedIncrement
0x8f1054 VirtualQuery
0x8f1058 WideCharToMultiByte
0x8f105c MultiByteToWideChar
0x8f1060 lstrlenA
0x8f1064 lstrcpynA
0x8f1068 LoadLibraryExA
0x8f106c GetThreadLocale
0x8f1070 GetStartupInfoA
0x8f1074 GetProcAddress
0x8f1078 GetModuleHandleA
0x8f107c GetModuleFileNameA
0x8f1080 GetLocaleInfoA
0x8f1084 GetLastError
0x8f1088 GetCommandLineA
0x8f108c FreeLibrary
0x8f1090 FindFirstFileA
0x8f1094 FindClose
0x8f1098 ExitProcess
0x8f109c ExitThread
0x8f10a0 CreateThread
0x8f10a4 CompareStringA
0x8f10a8 WriteFile
0x8f10ac UnhandledExceptionFilter
0x8f10b0 SetFilePointer
0x8f10b4 SetEndOfFile
0x8f10b8 RtlUnwind
0x8f10bc ReadFile
0x8f10c0 RaiseException
0x8f10c4 GetStdHandle
0x8f10c8 GetFileSize
0x8f10cc GetFileType
0x8f10d0 CreateFileA
0x8f10d4 CloseHandle
kernel32.dll
0x8f10dc TlsSetValue
0x8f10e0 TlsGetValue
0x8f10e4 LocalAlloc
0x8f10e8 GetModuleHandleA
user32.dll
0x8f10f0 CreateWindowExA
0x8f10f4 WindowFromPoint
0x8f10f8 WaitMessage
0x8f10fc UpdateWindow
0x8f1100 UnregisterClassA
0x8f1104 UnhookWindowsHookEx
0x8f1108 TranslateMessage
0x8f110c TranslateMDISysAccel
0x8f1110 TrackPopupMenu
0x8f1114 SystemParametersInfoA
0x8f1118 ShowWindow
0x8f111c ShowScrollBar
0x8f1120 ShowOwnedPopups
0x8f1124 SetWindowsHookExA
0x8f1128 SetWindowTextA
0x8f112c SetWindowPos
0x8f1130 SetWindowPlacement
0x8f1134 SetWindowLongW
0x8f1138 SetWindowLongA
0x8f113c SetTimer
0x8f1140 SetScrollRange
0x8f1144 SetScrollPos
0x8f1148 SetScrollInfo
0x8f114c SetRect
0x8f1150 SetPropA
0x8f1154 SetParent
0x8f1158 SetMenuItemInfoA
0x8f115c SetMenu
0x8f1160 SetKeyboardState
0x8f1164 SetForegroundWindow
0x8f1168 SetFocus
0x8f116c SetCursor
0x8f1170 SetClipboardData
0x8f1174 SetClassLongA
0x8f1178 SetCapture
0x8f117c SetActiveWindow
0x8f1180 SendMessageW
0x8f1184 SendMessageA
0x8f1188 ScrollWindow
0x8f118c ScreenToClient
0x8f1190 RemovePropA
0x8f1194 RemoveMenu
0x8f1198 ReleaseDC
0x8f119c ReleaseCapture
0x8f11a0 RegisterWindowMessageA
0x8f11a4 RegisterClipboardFormatA
0x8f11a8 RegisterClassA
0x8f11ac RedrawWindow
0x8f11b0 PtInRect
0x8f11b4 PostQuitMessage
0x8f11b8 PostMessageA
0x8f11bc PeekMessageW
0x8f11c0 PeekMessageA
0x8f11c4 OpenClipboard
0x8f11c8 OffsetRect
0x8f11cc OemToCharA
0x8f11d0 MsgWaitForMultipleObjects
0x8f11d4 MessageBoxA
0x8f11d8 MessageBeep
0x8f11dc MapWindowPoints
0x8f11e0 MapVirtualKeyA
0x8f11e4 LoadStringA
0x8f11e8 LoadKeyboardLayoutA
0x8f11ec LoadIconA
0x8f11f0 LoadCursorA
0x8f11f4 LoadBitmapA
0x8f11f8 KillTimer
0x8f11fc IsZoomed
0x8f1200 IsWindowVisible
0x8f1204 IsWindowUnicode
0x8f1208 IsWindowEnabled
0x8f120c IsWindow
0x8f1210 IsRectEmpty
0x8f1214 IsIconic
0x8f1218 IsDialogMessageW
0x8f121c IsDialogMessageA
0x8f1220 IsChild
0x8f1224 IsCharAlphaNumericA
0x8f1228 IsCharAlphaA
0x8f122c InvalidateRect
0x8f1230 IntersectRect
0x8f1234 InsertMenuItemA
0x8f1238 InsertMenuA
0x8f123c InflateRect
0x8f1240 GetWindowThreadProcessId
0x8f1244 GetWindowTextA
0x8f1248 GetWindowRect
0x8f124c GetWindowPlacement
0x8f1250 GetWindowLongW
0x8f1254 GetWindowLongA
0x8f1258 GetWindowDC
0x8f125c GetTopWindow
0x8f1260 GetSystemMetrics
0x8f1264 GetSystemMenu
0x8f1268 GetSysColorBrush
0x8f126c GetSysColor
0x8f1270 GetSubMenu
0x8f1274 GetScrollRange
0x8f1278 GetScrollPos
0x8f127c GetScrollInfo
0x8f1280 GetPropA
0x8f1284 GetParent
0x8f1288 GetWindow
0x8f128c GetMessagePos
0x8f1290 GetMenuStringA
0x8f1294 GetMenuState
0x8f1298 GetMenuItemInfoA
0x8f129c GetMenuItemID
0x8f12a0 GetMenuItemCount
0x8f12a4 GetMenu
0x8f12a8 GetLastActivePopup
0x8f12ac GetKeyboardState
0x8f12b0 GetKeyboardLayoutNameA
0x8f12b4 GetKeyboardLayoutList
0x8f12b8 GetKeyboardLayout
0x8f12bc GetKeyState
0x8f12c0 GetKeyNameTextA
0x8f12c4 GetIconInfo
0x8f12c8 GetForegroundWindow
0x8f12cc GetFocus
0x8f12d0 GetDlgItem
0x8f12d4 GetDesktopWindow
0x8f12d8 GetDCEx
0x8f12dc GetDC
0x8f12e0 GetCursorPos
0x8f12e4 GetCursor
0x8f12e8 GetClipboardData
0x8f12ec GetClientRect
0x8f12f0 GetClassLongA
0x8f12f4 GetClassInfoA
0x8f12f8 GetCapture
0x8f12fc GetActiveWindow
0x8f1300 FrameRect
0x8f1304 FindWindowA
0x8f1308 FillRect
0x8f130c EqualRect
0x8f1310 EnumWindows
0x8f1314 EnumThreadWindows
0x8f1318 EnumClipboardFormats
0x8f131c EnumChildWindows
0x8f1320 EndPaint
0x8f1324 EnableWindow
0x8f1328 EnableScrollBar
0x8f132c EnableMenuItem
0x8f1330 EmptyClipboard
0x8f1334 DrawTextA
0x8f1338 DrawMenuBar
0x8f133c DrawIconEx
0x8f1340 DrawIcon
0x8f1344 DrawFrameControl
0x8f1348 DrawFocusRect
0x8f134c DrawEdge
0x8f1350 DispatchMessageW
0x8f1354 DispatchMessageA
0x8f1358 DestroyWindow
0x8f135c DestroyMenu
0x8f1360 DestroyIcon
0x8f1364 DestroyCursor
0x8f1368 DeleteMenu
0x8f136c DefWindowProcA
0x8f1370 DefMDIChildProcA
0x8f1374 DefFrameProcA
0x8f1378 CreatePopupMenu
0x8f137c CreateMenu
0x8f1380 CreateIcon
0x8f1384 CloseClipboard
0x8f1388 ClientToScreen
0x8f138c CheckMenuItem
0x8f1390 CharNextW
0x8f1394 CallWindowProcA
0x8f1398 CallNextHookEx
0x8f139c BeginPaint
0x8f13a0 CharNextA
0x8f13a4 CharLowerBuffA
0x8f13a8 CharLowerA
0x8f13ac CharUpperBuffA
0x8f13b0 CharToOemA
0x8f13b4 AdjustWindowRectEx
0x8f13b8 ActivateKeyboardLayout
gdi32.dll
0x8f13c0 UnrealizeObject
0x8f13c4 StretchBlt
0x8f13c8 SetWindowOrgEx
0x8f13cc SetWinMetaFileBits
0x8f13d0 SetViewportOrgEx
0x8f13d4 SetTextColor
0x8f13d8 SetStretchBltMode
0x8f13dc SetROP2
0x8f13e0 SetPixel
0x8f13e4 SetEnhMetaFileBits
0x8f13e8 SetDIBColorTable
0x8f13ec SetBrushOrgEx
0x8f13f0 SetBkMode
0x8f13f4 SetBkColor
0x8f13f8 SelectPalette
0x8f13fc SelectObject
0x8f1400 SelectClipRgn
0x8f1404 SaveDC
0x8f1408 RestoreDC
0x8f140c Rectangle
0x8f1410 RectVisible
0x8f1414 RealizePalette
0x8f1418 Polyline
0x8f141c PlayEnhMetaFile
0x8f1420 Pie
0x8f1424 PatBlt
0x8f1428 MoveToEx
0x8f142c MaskBlt
0x8f1430 LineTo
0x8f1434 IntersectClipRect
0x8f1438 GetWindowOrgEx
0x8f143c GetWinMetaFileBits
0x8f1440 GetTextMetricsA
0x8f1444 GetTextExtentPoint32A
0x8f1448 GetSystemPaletteEntries
0x8f144c GetStockObject
0x8f1450 GetRgnBox
0x8f1454 GetPixel
0x8f1458 GetPaletteEntries
0x8f145c GetObjectA
0x8f1460 GetEnhMetaFilePaletteEntries
0x8f1464 GetEnhMetaFileHeader
0x8f1468 GetEnhMetaFileBits
0x8f146c GetDeviceCaps
0x8f1470 GetDIBits
0x8f1474 GetDIBColorTable
0x8f1478 GetDCOrgEx
0x8f147c GetCurrentPositionEx
0x8f1480 GetClipBox
0x8f1484 GetBrushOrgEx
0x8f1488 GetBitmapBits
0x8f148c GdiFlush
0x8f1490 ExtTextOutA
0x8f1494 ExcludeClipRect
0x8f1498 Ellipse
0x8f149c DeleteObject
0x8f14a0 DeleteEnhMetaFile
0x8f14a4 DeleteDC
0x8f14a8 CreateSolidBrush
0x8f14ac CreatePenIndirect
0x8f14b0 CreatePalette
0x8f14b4 CreateHalftonePalette
0x8f14b8 CreateFontIndirectA
0x8f14bc CreateDIBitmap
0x8f14c0 CreateDIBSection
0x8f14c4 CreateCompatibleDC
0x8f14c8 CreateCompatibleBitmap
0x8f14cc CreateBrushIndirect
0x8f14d0 CreateBitmap
0x8f14d4 CopyEnhMetaFileA
0x8f14d8 BitBlt
version.dll
0x8f14e0 VerQueryValueA
0x8f14e4 GetFileVersionInfoSizeA
0x8f14e8 GetFileVersionInfoA
kernel32.dll
0x8f14f0 lstrcpyA
0x8f14f4 lstrcmpiA
0x8f14f8 WriteFile
0x8f14fc WaitForSingleObject
0x8f1500 VirtualQuery
0x8f1504 VirtualFree
0x8f1508 VirtualAlloc
0x8f150c SleepEx
0x8f1510 Sleep
0x8f1514 SizeofResource
0x8f1518 SetupComm
0x8f151c SetThreadLocale
0x8f1520 SetLastError
0x8f1524 SetFilePointer
0x8f1528 SetEvent
0x8f152c SetErrorMode
0x8f1530 SetEndOfFile
0x8f1534 SetCommTimeouts
0x8f1538 SetCommState
0x8f153c SetCommMask
0x8f1540 ResumeThread
0x8f1544 ResetEvent
0x8f1548 ReadFile
0x8f154c RaiseException
0x8f1550 QueryPerformanceFrequency
0x8f1554 QueryPerformanceCounter
0x8f1558 PurgeComm
0x8f155c OpenProcess
0x8f1560 MultiByteToWideChar
0x8f1564 MulDiv
0x8f1568 LockResource
0x8f156c LoadResource
0x8f1570 LoadLibraryA
0x8f1574 LeaveCriticalSection
0x8f1578 InitializeCriticalSection
0x8f157c GlobalUnlock
0x8f1580 GlobalMemoryStatus
0x8f1584 GlobalLock
0x8f1588 GlobalFindAtomA
0x8f158c GlobalDeleteAtom
0x8f1590 GlobalAddAtomA
0x8f1594 GetVersionExA
0x8f1598 GetVersion
0x8f159c GetTimeZoneInformation
0x8f15a0 GetTickCount
0x8f15a4 GetThreadLocale
0x8f15a8 GetTempPathA
0x8f15ac GetStdHandle
0x8f15b0 GetProcAddress
0x8f15b4 GetModuleHandleA
0x8f15b8 GetModuleFileNameA
0x8f15bc GetLocaleInfoA
0x8f15c0 GetLocalTime
0x8f15c4 GetLastError
0x8f15c8 GetFullPathNameA
0x8f15cc GetFileSize
0x8f15d0 GetFileAttributesA
0x8f15d4 GetExitCodeThread
0x8f15d8 GetDiskFreeSpaceA
0x8f15dc GetDateFormatA
0x8f15e0 GetCurrentThreadId
0x8f15e4 GetCurrentProcessId
0x8f15e8 GetCommTimeouts
0x8f15ec GetCommState
0x8f15f0 GetCPInfo
0x8f15f4 FreeResource
0x8f15f8 InterlockedIncrement
0x8f15fc InterlockedExchange
0x8f1600 InterlockedDecrement
0x8f1604 FreeLibrary
0x8f1608 FormatMessageA
0x8f160c FlushFileBuffers
0x8f1610 FindResourceA
0x8f1614 FindNextFileA
0x8f1618 FindFirstFileA
0x8f161c FindClose
0x8f1620 FileTimeToLocalFileTime
0x8f1624 FileTimeToDosDateTime
0x8f1628 ExitProcess
0x8f162c EscapeCommFunction
0x8f1630 EnumCalendarInfoA
0x8f1634 EnterCriticalSection
0x8f1638 DuplicateHandle
0x8f163c DeleteCriticalSection
0x8f1640 CreateThread
0x8f1644 CreateMutexA
0x8f1648 CreateFileA
0x8f164c CreateEventA
0x8f1650 CompareStringA
0x8f1654 CloseHandle
0x8f1658 ClearCommBreak
advapi32.dll
0x8f1660 RegQueryValueExA
0x8f1664 RegOpenKeyExA
0x8f1668 RegFlushKey
0x8f166c RegCloseKey
0x8f1670 OpenProcessToken
0x8f1674 LookupPrivilegeValueA
0x8f1678 AdjustTokenPrivileges
oleaut32.dll
0x8f1680 GetErrorInfo
0x8f1684 SysFreeString
ole32.dll
0x8f168c CoTaskMemFree
0x8f1690 CoTaskMemAlloc
0x8f1694 CoCreateInstance
0x8f1698 CoUninitialize
0x8f169c CoInitialize
kernel32.dll
0x8f16a4 Sleep
ole32.dll
0x8f16ac CLSIDFromString
oleaut32.dll
0x8f16b4 SafeArrayPtrOfIndex
0x8f16b8 SafeArrayPutElement
0x8f16bc SafeArrayGetElement
0x8f16c0 SafeArrayUnaccessData
0x8f16c4 SafeArrayAccessData
0x8f16c8 SafeArrayGetUBound
0x8f16cc SafeArrayGetLBound
0x8f16d0 SafeArrayCreate
0x8f16d4 VariantChangeType
0x8f16d8 VariantCopyInd
0x8f16dc VariantCopy
0x8f16e0 VariantClear
0x8f16e4 VariantInit
comctl32.dll
0x8f16ec _TrackMouseEvent
0x8f16f0 ImageList_SetIconSize
0x8f16f4 ImageList_GetIconSize
0x8f16f8 ImageList_Write
0x8f16fc ImageList_Read
0x8f1700 ImageList_GetDragImage
0x8f1704 ImageList_DragShowNolock
0x8f1708 ImageList_DragMove
0x8f170c ImageList_DragLeave
0x8f1710 ImageList_DragEnter
0x8f1714 ImageList_EndDrag
0x8f1718 ImageList_BeginDrag
0x8f171c ImageList_Remove
0x8f1720 ImageList_DrawEx
0x8f1724 ImageList_Replace
0x8f1728 ImageList_Draw
0x8f172c ImageList_GetBkColor
0x8f1730 ImageList_SetBkColor
0x8f1734 ImageList_Add
0x8f1738 ImageList_SetImageCount
0x8f173c ImageList_GetImageCount
0x8f1740 ImageList_Destroy
0x8f1744 ImageList_Create
0x8f1748 InitCommonControls
wininet.dll
0x8f1750 InternetReadFile
0x8f1754 InternetOpenUrlA
0x8f1758 InternetOpenA
0x8f175c InternetCloseHandle
shell32.dll
0x8f1764 ShellExecuteA
comdlg32.dll
0x8f176c GetSaveFileNameA
0x8f1770 GetOpenFileNameA
ntdll.dll
0x8f1778 DbgUiConnectToDbg
0x8f177c DbgUiDebugActiveProcess
0x8f1780 ZwQuerySystemInformation
0x8f1784 ZwQueryInformationProcess
kernel32.dll
0x8f178c Process32Next
0x8f1790 Process32First
0x8f1794 CreateToolhelp32Snapshot
EAT(Export Address Table) is none
oleaut32.dll
0x8f1000 SysFreeString
0x8f1004 SysReAllocStringLen
0x8f1008 SysAllocStringLen
advapi32.dll
0x8f1010 RegQueryValueExA
0x8f1014 RegOpenKeyExA
0x8f1018 RegCloseKey
user32.dll
0x8f1020 GetKeyboardType
0x8f1024 DestroyWindow
0x8f1028 LoadStringA
0x8f102c MessageBoxA
0x8f1030 CharNextA
kernel32.dll
0x8f1038 GetACP
0x8f103c Sleep
0x8f1040 VirtualFree
0x8f1044 VirtualAlloc
0x8f1048 GetCurrentThreadId
0x8f104c InterlockedDecrement
0x8f1050 InterlockedIncrement
0x8f1054 VirtualQuery
0x8f1058 WideCharToMultiByte
0x8f105c MultiByteToWideChar
0x8f1060 lstrlenA
0x8f1064 lstrcpynA
0x8f1068 LoadLibraryExA
0x8f106c GetThreadLocale
0x8f1070 GetStartupInfoA
0x8f1074 GetProcAddress
0x8f1078 GetModuleHandleA
0x8f107c GetModuleFileNameA
0x8f1080 GetLocaleInfoA
0x8f1084 GetLastError
0x8f1088 GetCommandLineA
0x8f108c FreeLibrary
0x8f1090 FindFirstFileA
0x8f1094 FindClose
0x8f1098 ExitProcess
0x8f109c ExitThread
0x8f10a0 CreateThread
0x8f10a4 CompareStringA
0x8f10a8 WriteFile
0x8f10ac UnhandledExceptionFilter
0x8f10b0 SetFilePointer
0x8f10b4 SetEndOfFile
0x8f10b8 RtlUnwind
0x8f10bc ReadFile
0x8f10c0 RaiseException
0x8f10c4 GetStdHandle
0x8f10c8 GetFileSize
0x8f10cc GetFileType
0x8f10d0 CreateFileA
0x8f10d4 CloseHandle
kernel32.dll
0x8f10dc TlsSetValue
0x8f10e0 TlsGetValue
0x8f10e4 LocalAlloc
0x8f10e8 GetModuleHandleA
user32.dll
0x8f10f0 CreateWindowExA
0x8f10f4 WindowFromPoint
0x8f10f8 WaitMessage
0x8f10fc UpdateWindow
0x8f1100 UnregisterClassA
0x8f1104 UnhookWindowsHookEx
0x8f1108 TranslateMessage
0x8f110c TranslateMDISysAccel
0x8f1110 TrackPopupMenu
0x8f1114 SystemParametersInfoA
0x8f1118 ShowWindow
0x8f111c ShowScrollBar
0x8f1120 ShowOwnedPopups
0x8f1124 SetWindowsHookExA
0x8f1128 SetWindowTextA
0x8f112c SetWindowPos
0x8f1130 SetWindowPlacement
0x8f1134 SetWindowLongW
0x8f1138 SetWindowLongA
0x8f113c SetTimer
0x8f1140 SetScrollRange
0x8f1144 SetScrollPos
0x8f1148 SetScrollInfo
0x8f114c SetRect
0x8f1150 SetPropA
0x8f1154 SetParent
0x8f1158 SetMenuItemInfoA
0x8f115c SetMenu
0x8f1160 SetKeyboardState
0x8f1164 SetForegroundWindow
0x8f1168 SetFocus
0x8f116c SetCursor
0x8f1170 SetClipboardData
0x8f1174 SetClassLongA
0x8f1178 SetCapture
0x8f117c SetActiveWindow
0x8f1180 SendMessageW
0x8f1184 SendMessageA
0x8f1188 ScrollWindow
0x8f118c ScreenToClient
0x8f1190 RemovePropA
0x8f1194 RemoveMenu
0x8f1198 ReleaseDC
0x8f119c ReleaseCapture
0x8f11a0 RegisterWindowMessageA
0x8f11a4 RegisterClipboardFormatA
0x8f11a8 RegisterClassA
0x8f11ac RedrawWindow
0x8f11b0 PtInRect
0x8f11b4 PostQuitMessage
0x8f11b8 PostMessageA
0x8f11bc PeekMessageW
0x8f11c0 PeekMessageA
0x8f11c4 OpenClipboard
0x8f11c8 OffsetRect
0x8f11cc OemToCharA
0x8f11d0 MsgWaitForMultipleObjects
0x8f11d4 MessageBoxA
0x8f11d8 MessageBeep
0x8f11dc MapWindowPoints
0x8f11e0 MapVirtualKeyA
0x8f11e4 LoadStringA
0x8f11e8 LoadKeyboardLayoutA
0x8f11ec LoadIconA
0x8f11f0 LoadCursorA
0x8f11f4 LoadBitmapA
0x8f11f8 KillTimer
0x8f11fc IsZoomed
0x8f1200 IsWindowVisible
0x8f1204 IsWindowUnicode
0x8f1208 IsWindowEnabled
0x8f120c IsWindow
0x8f1210 IsRectEmpty
0x8f1214 IsIconic
0x8f1218 IsDialogMessageW
0x8f121c IsDialogMessageA
0x8f1220 IsChild
0x8f1224 IsCharAlphaNumericA
0x8f1228 IsCharAlphaA
0x8f122c InvalidateRect
0x8f1230 IntersectRect
0x8f1234 InsertMenuItemA
0x8f1238 InsertMenuA
0x8f123c InflateRect
0x8f1240 GetWindowThreadProcessId
0x8f1244 GetWindowTextA
0x8f1248 GetWindowRect
0x8f124c GetWindowPlacement
0x8f1250 GetWindowLongW
0x8f1254 GetWindowLongA
0x8f1258 GetWindowDC
0x8f125c GetTopWindow
0x8f1260 GetSystemMetrics
0x8f1264 GetSystemMenu
0x8f1268 GetSysColorBrush
0x8f126c GetSysColor
0x8f1270 GetSubMenu
0x8f1274 GetScrollRange
0x8f1278 GetScrollPos
0x8f127c GetScrollInfo
0x8f1280 GetPropA
0x8f1284 GetParent
0x8f1288 GetWindow
0x8f128c GetMessagePos
0x8f1290 GetMenuStringA
0x8f1294 GetMenuState
0x8f1298 GetMenuItemInfoA
0x8f129c GetMenuItemID
0x8f12a0 GetMenuItemCount
0x8f12a4 GetMenu
0x8f12a8 GetLastActivePopup
0x8f12ac GetKeyboardState
0x8f12b0 GetKeyboardLayoutNameA
0x8f12b4 GetKeyboardLayoutList
0x8f12b8 GetKeyboardLayout
0x8f12bc GetKeyState
0x8f12c0 GetKeyNameTextA
0x8f12c4 GetIconInfo
0x8f12c8 GetForegroundWindow
0x8f12cc GetFocus
0x8f12d0 GetDlgItem
0x8f12d4 GetDesktopWindow
0x8f12d8 GetDCEx
0x8f12dc GetDC
0x8f12e0 GetCursorPos
0x8f12e4 GetCursor
0x8f12e8 GetClipboardData
0x8f12ec GetClientRect
0x8f12f0 GetClassLongA
0x8f12f4 GetClassInfoA
0x8f12f8 GetCapture
0x8f12fc GetActiveWindow
0x8f1300 FrameRect
0x8f1304 FindWindowA
0x8f1308 FillRect
0x8f130c EqualRect
0x8f1310 EnumWindows
0x8f1314 EnumThreadWindows
0x8f1318 EnumClipboardFormats
0x8f131c EnumChildWindows
0x8f1320 EndPaint
0x8f1324 EnableWindow
0x8f1328 EnableScrollBar
0x8f132c EnableMenuItem
0x8f1330 EmptyClipboard
0x8f1334 DrawTextA
0x8f1338 DrawMenuBar
0x8f133c DrawIconEx
0x8f1340 DrawIcon
0x8f1344 DrawFrameControl
0x8f1348 DrawFocusRect
0x8f134c DrawEdge
0x8f1350 DispatchMessageW
0x8f1354 DispatchMessageA
0x8f1358 DestroyWindow
0x8f135c DestroyMenu
0x8f1360 DestroyIcon
0x8f1364 DestroyCursor
0x8f1368 DeleteMenu
0x8f136c DefWindowProcA
0x8f1370 DefMDIChildProcA
0x8f1374 DefFrameProcA
0x8f1378 CreatePopupMenu
0x8f137c CreateMenu
0x8f1380 CreateIcon
0x8f1384 CloseClipboard
0x8f1388 ClientToScreen
0x8f138c CheckMenuItem
0x8f1390 CharNextW
0x8f1394 CallWindowProcA
0x8f1398 CallNextHookEx
0x8f139c BeginPaint
0x8f13a0 CharNextA
0x8f13a4 CharLowerBuffA
0x8f13a8 CharLowerA
0x8f13ac CharUpperBuffA
0x8f13b0 CharToOemA
0x8f13b4 AdjustWindowRectEx
0x8f13b8 ActivateKeyboardLayout
gdi32.dll
0x8f13c0 UnrealizeObject
0x8f13c4 StretchBlt
0x8f13c8 SetWindowOrgEx
0x8f13cc SetWinMetaFileBits
0x8f13d0 SetViewportOrgEx
0x8f13d4 SetTextColor
0x8f13d8 SetStretchBltMode
0x8f13dc SetROP2
0x8f13e0 SetPixel
0x8f13e4 SetEnhMetaFileBits
0x8f13e8 SetDIBColorTable
0x8f13ec SetBrushOrgEx
0x8f13f0 SetBkMode
0x8f13f4 SetBkColor
0x8f13f8 SelectPalette
0x8f13fc SelectObject
0x8f1400 SelectClipRgn
0x8f1404 SaveDC
0x8f1408 RestoreDC
0x8f140c Rectangle
0x8f1410 RectVisible
0x8f1414 RealizePalette
0x8f1418 Polyline
0x8f141c PlayEnhMetaFile
0x8f1420 Pie
0x8f1424 PatBlt
0x8f1428 MoveToEx
0x8f142c MaskBlt
0x8f1430 LineTo
0x8f1434 IntersectClipRect
0x8f1438 GetWindowOrgEx
0x8f143c GetWinMetaFileBits
0x8f1440 GetTextMetricsA
0x8f1444 GetTextExtentPoint32A
0x8f1448 GetSystemPaletteEntries
0x8f144c GetStockObject
0x8f1450 GetRgnBox
0x8f1454 GetPixel
0x8f1458 GetPaletteEntries
0x8f145c GetObjectA
0x8f1460 GetEnhMetaFilePaletteEntries
0x8f1464 GetEnhMetaFileHeader
0x8f1468 GetEnhMetaFileBits
0x8f146c GetDeviceCaps
0x8f1470 GetDIBits
0x8f1474 GetDIBColorTable
0x8f1478 GetDCOrgEx
0x8f147c GetCurrentPositionEx
0x8f1480 GetClipBox
0x8f1484 GetBrushOrgEx
0x8f1488 GetBitmapBits
0x8f148c GdiFlush
0x8f1490 ExtTextOutA
0x8f1494 ExcludeClipRect
0x8f1498 Ellipse
0x8f149c DeleteObject
0x8f14a0 DeleteEnhMetaFile
0x8f14a4 DeleteDC
0x8f14a8 CreateSolidBrush
0x8f14ac CreatePenIndirect
0x8f14b0 CreatePalette
0x8f14b4 CreateHalftonePalette
0x8f14b8 CreateFontIndirectA
0x8f14bc CreateDIBitmap
0x8f14c0 CreateDIBSection
0x8f14c4 CreateCompatibleDC
0x8f14c8 CreateCompatibleBitmap
0x8f14cc CreateBrushIndirect
0x8f14d0 CreateBitmap
0x8f14d4 CopyEnhMetaFileA
0x8f14d8 BitBlt
version.dll
0x8f14e0 VerQueryValueA
0x8f14e4 GetFileVersionInfoSizeA
0x8f14e8 GetFileVersionInfoA
kernel32.dll
0x8f14f0 lstrcpyA
0x8f14f4 lstrcmpiA
0x8f14f8 WriteFile
0x8f14fc WaitForSingleObject
0x8f1500 VirtualQuery
0x8f1504 VirtualFree
0x8f1508 VirtualAlloc
0x8f150c SleepEx
0x8f1510 Sleep
0x8f1514 SizeofResource
0x8f1518 SetupComm
0x8f151c SetThreadLocale
0x8f1520 SetLastError
0x8f1524 SetFilePointer
0x8f1528 SetEvent
0x8f152c SetErrorMode
0x8f1530 SetEndOfFile
0x8f1534 SetCommTimeouts
0x8f1538 SetCommState
0x8f153c SetCommMask
0x8f1540 ResumeThread
0x8f1544 ResetEvent
0x8f1548 ReadFile
0x8f154c RaiseException
0x8f1550 QueryPerformanceFrequency
0x8f1554 QueryPerformanceCounter
0x8f1558 PurgeComm
0x8f155c OpenProcess
0x8f1560 MultiByteToWideChar
0x8f1564 MulDiv
0x8f1568 LockResource
0x8f156c LoadResource
0x8f1570 LoadLibraryA
0x8f1574 LeaveCriticalSection
0x8f1578 InitializeCriticalSection
0x8f157c GlobalUnlock
0x8f1580 GlobalMemoryStatus
0x8f1584 GlobalLock
0x8f1588 GlobalFindAtomA
0x8f158c GlobalDeleteAtom
0x8f1590 GlobalAddAtomA
0x8f1594 GetVersionExA
0x8f1598 GetVersion
0x8f159c GetTimeZoneInformation
0x8f15a0 GetTickCount
0x8f15a4 GetThreadLocale
0x8f15a8 GetTempPathA
0x8f15ac GetStdHandle
0x8f15b0 GetProcAddress
0x8f15b4 GetModuleHandleA
0x8f15b8 GetModuleFileNameA
0x8f15bc GetLocaleInfoA
0x8f15c0 GetLocalTime
0x8f15c4 GetLastError
0x8f15c8 GetFullPathNameA
0x8f15cc GetFileSize
0x8f15d0 GetFileAttributesA
0x8f15d4 GetExitCodeThread
0x8f15d8 GetDiskFreeSpaceA
0x8f15dc GetDateFormatA
0x8f15e0 GetCurrentThreadId
0x8f15e4 GetCurrentProcessId
0x8f15e8 GetCommTimeouts
0x8f15ec GetCommState
0x8f15f0 GetCPInfo
0x8f15f4 FreeResource
0x8f15f8 InterlockedIncrement
0x8f15fc InterlockedExchange
0x8f1600 InterlockedDecrement
0x8f1604 FreeLibrary
0x8f1608 FormatMessageA
0x8f160c FlushFileBuffers
0x8f1610 FindResourceA
0x8f1614 FindNextFileA
0x8f1618 FindFirstFileA
0x8f161c FindClose
0x8f1620 FileTimeToLocalFileTime
0x8f1624 FileTimeToDosDateTime
0x8f1628 ExitProcess
0x8f162c EscapeCommFunction
0x8f1630 EnumCalendarInfoA
0x8f1634 EnterCriticalSection
0x8f1638 DuplicateHandle
0x8f163c DeleteCriticalSection
0x8f1640 CreateThread
0x8f1644 CreateMutexA
0x8f1648 CreateFileA
0x8f164c CreateEventA
0x8f1650 CompareStringA
0x8f1654 CloseHandle
0x8f1658 ClearCommBreak
advapi32.dll
0x8f1660 RegQueryValueExA
0x8f1664 RegOpenKeyExA
0x8f1668 RegFlushKey
0x8f166c RegCloseKey
0x8f1670 OpenProcessToken
0x8f1674 LookupPrivilegeValueA
0x8f1678 AdjustTokenPrivileges
oleaut32.dll
0x8f1680 GetErrorInfo
0x8f1684 SysFreeString
ole32.dll
0x8f168c CoTaskMemFree
0x8f1690 CoTaskMemAlloc
0x8f1694 CoCreateInstance
0x8f1698 CoUninitialize
0x8f169c CoInitialize
kernel32.dll
0x8f16a4 Sleep
ole32.dll
0x8f16ac CLSIDFromString
oleaut32.dll
0x8f16b4 SafeArrayPtrOfIndex
0x8f16b8 SafeArrayPutElement
0x8f16bc SafeArrayGetElement
0x8f16c0 SafeArrayUnaccessData
0x8f16c4 SafeArrayAccessData
0x8f16c8 SafeArrayGetUBound
0x8f16cc SafeArrayGetLBound
0x8f16d0 SafeArrayCreate
0x8f16d4 VariantChangeType
0x8f16d8 VariantCopyInd
0x8f16dc VariantCopy
0x8f16e0 VariantClear
0x8f16e4 VariantInit
comctl32.dll
0x8f16ec _TrackMouseEvent
0x8f16f0 ImageList_SetIconSize
0x8f16f4 ImageList_GetIconSize
0x8f16f8 ImageList_Write
0x8f16fc ImageList_Read
0x8f1700 ImageList_GetDragImage
0x8f1704 ImageList_DragShowNolock
0x8f1708 ImageList_DragMove
0x8f170c ImageList_DragLeave
0x8f1710 ImageList_DragEnter
0x8f1714 ImageList_EndDrag
0x8f1718 ImageList_BeginDrag
0x8f171c ImageList_Remove
0x8f1720 ImageList_DrawEx
0x8f1724 ImageList_Replace
0x8f1728 ImageList_Draw
0x8f172c ImageList_GetBkColor
0x8f1730 ImageList_SetBkColor
0x8f1734 ImageList_Add
0x8f1738 ImageList_SetImageCount
0x8f173c ImageList_GetImageCount
0x8f1740 ImageList_Destroy
0x8f1744 ImageList_Create
0x8f1748 InitCommonControls
wininet.dll
0x8f1750 InternetReadFile
0x8f1754 InternetOpenUrlA
0x8f1758 InternetOpenA
0x8f175c InternetCloseHandle
shell32.dll
0x8f1764 ShellExecuteA
comdlg32.dll
0x8f176c GetSaveFileNameA
0x8f1770 GetOpenFileNameA
ntdll.dll
0x8f1778 DbgUiConnectToDbg
0x8f177c DbgUiDebugActiveProcess
0x8f1780 ZwQuerySystemInformation
0x8f1784 ZwQueryInformationProcess
kernel32.dll
0x8f178c Process32Next
0x8f1790 Process32First
0x8f1794 CreateToolhelp32Snapshot
EAT(Export Address Table) is none