ScreenShot
| Created | 2024.11.07 13:10 | Machine | s1_win7_x6403 |
| Filename | Xteam30.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | 421700a2d6d8516013d87e04628d2802 | ||
| sha256 | cc00a259ec4ebde015fe0fad59f369ae23def081caa787ad0652f7d6b2fe6de0 | ||
| ssdeep | 49152:XlnKF46Fm2gROSeQ146cDPM2vCVapdoqwicf1/y36sbwAE1JgZIEST+eLAq8Z7p3:Xld7wwgZRt7mUz | ||
| imphash | a9e0c20f9bb5322d8f6dd842e8dc2751 | ||
| impfuzzy | 192:ocvFcURuuN4EUhc9/coIN/MMiSFgwF94de191rPOQMxp1Dl9j:fccNb9LRx2OQ19tPOQMxHj | ||
Network IP location
Signature (15cnts)
| Level | Description |
|---|---|
| danger | Executed a process and injected code into it |
| watch | Allocates execute permission to another process indicative of possible code injection |
| watch | Installs itself for autorun at Windows startup |
| watch | One or more of the buffers contains an embedded PE file |
| watch | Potential code injection by writing to the memory of another process |
| watch | Used NtSetContextThread to modify a thread in a remote process indicative of process injection |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Creates executable files on the filesystem |
| notice | One or more potentially interesting buffers were extracted |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| notice | Uses Windows utilities for basic Windows functionality |
| info | Checks amount of memory in system |
| info | Checks if process is being debugged by a debugger |
| info | Queries for the computername |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
Rules (12cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| watch | Malicious_Library_Zero | Malicious_Library | binaries (download) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (download) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (download) |
| info | mzp_file_format | MZP(Delphi) file format | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (download) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (download) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
oleaut32.dll
0x722a78 SysFreeString
0x722a7c SysReAllocStringLen
0x722a80 SysAllocStringLen
advapi32.dll
0x722a88 RegQueryValueExW
0x722a8c RegOpenKeyExW
0x722a90 RegCloseKey
user32.dll
0x722a98 MessageBoxA
0x722a9c CharNextW
0x722aa0 LoadStringW
kernel32.dll
0x722aa8 Sleep
0x722aac VirtualFree
0x722ab0 VirtualAlloc
0x722ab4 lstrlenW
0x722ab8 lstrcpynW
0x722abc VirtualQuery
0x722ac0 QueryPerformanceCounter
0x722ac4 GetTickCount
0x722ac8 GetSystemInfo
0x722acc GetVersion
0x722ad0 CompareStringW
0x722ad4 IsValidLocale
0x722ad8 SetThreadLocale
0x722adc GetSystemDefaultUILanguage
0x722ae0 GetUserDefaultUILanguage
0x722ae4 GetLocaleInfoW
0x722ae8 WideCharToMultiByte
0x722aec MultiByteToWideChar
0x722af0 GetACP
0x722af4 LoadLibraryExW
0x722af8 GetStartupInfoW
0x722afc GetProcAddress
0x722b00 GetModuleHandleW
0x722b04 GetModuleFileNameW
0x722b08 GetCommandLineW
0x722b0c FreeLibrary
0x722b10 GetLastError
0x722b14 UnhandledExceptionFilter
0x722b18 RtlUnwind
0x722b1c RaiseException
0x722b20 ExitProcess
0x722b24 ExitThread
0x722b28 SwitchToThread
0x722b2c GetCurrentThreadId
0x722b30 CreateThread
0x722b34 DeleteCriticalSection
0x722b38 LeaveCriticalSection
0x722b3c EnterCriticalSection
0x722b40 InitializeCriticalSection
0x722b44 FindFirstFileW
0x722b48 FindClose
0x722b4c CreateDirectoryW
0x722b50 WriteFile
0x722b54 GetStdHandle
0x722b58 CloseHandle
kernel32.dll
0x722b60 GetProcAddress
0x722b64 RaiseException
0x722b68 LoadLibraryA
0x722b6c GetLastError
0x722b70 TlsSetValue
0x722b74 TlsGetValue
0x722b78 LocalFree
0x722b7c LocalAlloc
0x722b80 GetModuleHandleW
0x722b84 FreeLibrary
user32.dll
0x722b8c SetClassLongW
0x722b90 GetClassLongW
0x722b94 SetWindowLongW
0x722b98 GetWindowLongW
0x722b9c CreateWindowExW
0x722ba0 WindowFromPoint
0x722ba4 WaitMessage
0x722ba8 ValidateRect
0x722bac UpdateWindow
0x722bb0 UnregisterClassW
0x722bb4 UnhookWindowsHookEx
0x722bb8 TranslateMessage
0x722bbc TranslateMDISysAccel
0x722bc0 TrackPopupMenu
0x722bc4 SystemParametersInfoW
0x722bc8 ShowWindow
0x722bcc ShowScrollBar
0x722bd0 ShowOwnedPopups
0x722bd4 ShowCaret
0x722bd8 SetWindowRgn
0x722bdc SetWindowsHookExW
0x722be0 SetWindowTextW
0x722be4 SetWindowPos
0x722be8 SetWindowPlacement
0x722bec SetTimer
0x722bf0 SetScrollRange
0x722bf4 SetScrollPos
0x722bf8 SetScrollInfo
0x722bfc SetRect
0x722c00 SetPropW
0x722c04 SetParent
0x722c08 SetMenuItemInfoW
0x722c0c SetMenu
0x722c10 SetForegroundWindow
0x722c14 SetFocus
0x722c18 SetCursorPos
0x722c1c SetCursor
0x722c20 SetClipboardData
0x722c24 SetCapture
0x722c28 SetActiveWindow
0x722c2c SendMessageA
0x722c30 SendMessageW
0x722c34 SendDlgItemMessageW
0x722c38 ScrollWindow
0x722c3c ScreenToClient
0x722c40 RemovePropW
0x722c44 RemoveMenu
0x722c48 ReleaseDC
0x722c4c ReleaseCapture
0x722c50 RegisterWindowMessageW
0x722c54 RegisterClipboardFormatW
0x722c58 RegisterClassW
0x722c5c RedrawWindow
0x722c60 PtInRect
0x722c64 PostQuitMessage
0x722c68 PostMessageW
0x722c6c PeekMessageA
0x722c70 PeekMessageW
0x722c74 OffsetRect
0x722c78 MsgWaitForMultipleObjectsEx
0x722c7c MsgWaitForMultipleObjects
0x722c80 MessageBoxW
0x722c84 MessageBeep
0x722c88 MapWindowPoints
0x722c8c MapVirtualKeyW
0x722c90 LoadStringW
0x722c94 LoadKeyboardLayoutW
0x722c98 LoadIconW
0x722c9c LoadCursorW
0x722ca0 LoadBitmapW
0x722ca4 KillTimer
0x722ca8 IsZoomed
0x722cac IsWindowVisible
0x722cb0 IsWindowUnicode
0x722cb4 IsWindowEnabled
0x722cb8 IsWindow
0x722cbc IsIconic
0x722cc0 IsDialogMessageA
0x722cc4 IsDialogMessageW
0x722cc8 IsClipboardFormatAvailable
0x722ccc IsChild
0x722cd0 InvalidateRect
0x722cd4 IntersectRect
0x722cd8 InsertMenuItemW
0x722cdc InsertMenuW
0x722ce0 InflateRect
0x722ce4 HideCaret
0x722ce8 GetWindowThreadProcessId
0x722cec GetWindowTextW
0x722cf0 GetWindowRect
0x722cf4 GetWindowPlacement
0x722cf8 GetWindowDC
0x722cfc GetTopWindow
0x722d00 GetSystemMetrics
0x722d04 GetSystemMenu
0x722d08 GetSysColorBrush
0x722d0c GetSysColor
0x722d10 GetSubMenu
0x722d14 GetScrollRange
0x722d18 GetScrollPos
0x722d1c GetScrollInfo
0x722d20 GetPropW
0x722d24 GetParent
0x722d28 GetWindow
0x722d2c GetMessagePos
0x722d30 GetMessageExtraInfo
0x722d34 GetMenuStringW
0x722d38 GetMenuState
0x722d3c GetMenuItemInfoW
0x722d40 GetMenuItemID
0x722d44 GetMenuItemCount
0x722d48 GetMenu
0x722d4c GetLastActivePopup
0x722d50 GetKeyboardState
0x722d54 GetKeyboardLayoutNameW
0x722d58 GetKeyboardLayoutList
0x722d5c GetKeyboardLayout
0x722d60 GetKeyState
0x722d64 GetKeyNameTextW
0x722d68 GetIconInfo
0x722d6c GetForegroundWindow
0x722d70 GetFocus
0x722d74 GetDlgItem
0x722d78 GetDlgCtrlID
0x722d7c GetDesktopWindow
0x722d80 GetDCEx
0x722d84 GetDC
0x722d88 GetCursorPos
0x722d8c GetCursorInfo
0x722d90 GetCursor
0x722d94 GetClipboardData
0x722d98 GetClientRect
0x722d9c GetClassNameW
0x722da0 GetClassInfoExW
0x722da4 GetClassInfoW
0x722da8 GetCapture
0x722dac GetActiveWindow
0x722db0 FrameRect
0x722db4 FindWindowExW
0x722db8 FindWindowW
0x722dbc FillRect
0x722dc0 EqualRect
0x722dc4 EnumWindows
0x722dc8 EnumThreadWindows
0x722dcc EnumClipboardFormats
0x722dd0 EnumChildWindows
0x722dd4 EndPaint
0x722dd8 EndMenu
0x722ddc EnableWindow
0x722de0 EnableScrollBar
0x722de4 EnableMenuItem
0x722de8 DrawTextExW
0x722dec DrawTextW
0x722df0 DrawMenuBar
0x722df4 DrawIconEx
0x722df8 DrawIcon
0x722dfc DrawFrameControl
0x722e00 DrawFocusRect
0x722e04 DrawEdge
0x722e08 DispatchMessageA
0x722e0c DispatchMessageW
0x722e10 DestroyWindow
0x722e14 DestroyMenu
0x722e18 DestroyIcon
0x722e1c DestroyCursor
0x722e20 DeleteMenu
0x722e24 DefWindowProcW
0x722e28 DefMDIChildProcW
0x722e2c DefFrameProcW
0x722e30 CreatePopupMenu
0x722e34 CreateMenu
0x722e38 CreateIcon
0x722e3c CopyImage
0x722e40 CopyIcon
0x722e44 ClipCursor
0x722e48 ClientToScreen
0x722e4c CheckMenuItem
0x722e50 CharUpperBuffW
0x722e54 CharUpperW
0x722e58 CharNextW
0x722e5c CharLowerBuffW
0x722e60 CharLowerW
0x722e64 CallWindowProcW
0x722e68 CallNextHookEx
0x722e6c BeginPaint
0x722e70 AdjustWindowRectEx
0x722e74 ActivateKeyboardLayout
msimg32.dll
0x722e7c GradientFill
0x722e80 AlphaBlend
gdi32.dll
0x722e88 UnrealizeObject
0x722e8c StretchDIBits
0x722e90 StretchBlt
0x722e94 SetWindowOrgEx
0x722e98 SetWinMetaFileBits
0x722e9c SetViewportOrgEx
0x722ea0 SetTextColor
0x722ea4 SetStretchBltMode
0x722ea8 SetROP2
0x722eac SetPixel
0x722eb0 SetEnhMetaFileBits
0x722eb4 SetDIBits
0x722eb8 SetDIBColorTable
0x722ebc SetBrushOrgEx
0x722ec0 SetBkMode
0x722ec4 SetBkColor
0x722ec8 SelectPalette
0x722ecc SelectObject
0x722ed0 SelectClipRgn
0x722ed4 SaveDC
0x722ed8 RoundRect
0x722edc RestoreDC
0x722ee0 ResizePalette
0x722ee4 Rectangle
0x722ee8 RectVisible
0x722eec RealizePalette
0x722ef0 Polyline
0x722ef4 Polygon
0x722ef8 PolyBezierTo
0x722efc PolyBezier
0x722f00 PlayEnhMetaFile
0x722f04 Pie
0x722f08 PatBlt
0x722f0c MoveToEx
0x722f10 MaskBlt
0x722f14 LineTo
0x722f18 LineDDA
0x722f1c IntersectClipRect
0x722f20 GetWindowOrgEx
0x722f24 GetWinMetaFileBits
0x722f28 GetTextMetricsW
0x722f2c GetTextExtentPointW
0x722f30 GetTextExtentPoint32W
0x722f34 GetSystemPaletteEntries
0x722f38 GetStockObject
0x722f3c GetRgnBox
0x722f40 GetPixel
0x722f44 GetPaletteEntries
0x722f48 GetObjectType
0x722f4c GetObjectW
0x722f50 GetNearestPaletteIndex
0x722f54 GetEnhMetaFilePaletteEntries
0x722f58 GetEnhMetaFileHeader
0x722f5c GetEnhMetaFileDescriptionW
0x722f60 GetEnhMetaFileBits
0x722f64 GetDeviceCaps
0x722f68 GetDIBits
0x722f6c GetDIBColorTable
0x722f70 GetCurrentPositionEx
0x722f74 GetClipBox
0x722f78 GetBrushOrgEx
0x722f7c GetBitmapBits
0x722f80 GdiFlush
0x722f84 FrameRgn
0x722f88 ExtTextOutW
0x722f8c ExtFloodFill
0x722f90 ExcludeClipRect
0x722f94 EnumFontsW
0x722f98 EnumFontFamiliesExW
0x722f9c EndPage
0x722fa0 EndDoc
0x722fa4 Ellipse
0x722fa8 DeleteObject
0x722fac DeleteEnhMetaFile
0x722fb0 DeleteDC
0x722fb4 CreateSolidBrush
0x722fb8 CreateRectRgn
0x722fbc CreatePenIndirect
0x722fc0 CreatePalette
0x722fc4 CreateICW
0x722fc8 CreateHalftonePalette
0x722fcc CreateFontIndirectW
0x722fd0 CreateDIBitmap
0x722fd4 CreateDIBSection
0x722fd8 CreateDCW
0x722fdc CreateCompatibleDC
0x722fe0 CreateCompatibleBitmap
0x722fe4 CreateBrushIndirect
0x722fe8 CreateBitmap
0x722fec CopyEnhMetaFileW
0x722ff0 Chord
0x722ff4 BitBlt
0x722ff8 ArcTo
0x722ffc Arc
0x723000 AngleArc
version.dll
0x723008 VerQueryValueW
0x72300c GetFileVersionInfoSizeW
0x723010 GetFileVersionInfoW
kernel32.dll
0x723018 WritePrivateProfileStringW
0x72301c WriteFile
0x723020 WideCharToMultiByte
0x723024 WaitForSingleObject
0x723028 WaitForMultipleObjectsEx
0x72302c VirtualQueryEx
0x723030 VirtualQuery
0x723034 VirtualFree
0x723038 VirtualAlloc
0x72303c SwitchToThread
0x723040 SuspendThread
0x723044 Sleep
0x723048 SizeofResource
0x72304c SetThreadPriority
0x723050 SetThreadLocale
0x723054 SetLastError
0x723058 SetFilePointer
0x72305c SetEvent
0x723060 SetErrorMode
0x723064 SetEndOfFile
0x723068 ResumeThread
0x72306c ResetEvent
0x723070 RemoveDirectoryW
0x723074 ReadFile
0x723078 OpenProcess
0x72307c MulDiv
0x723080 LockResource
0x723084 LocalFree
0x723088 LoadResource
0x72308c LoadLibraryW
0x723090 LeaveCriticalSection
0x723094 IsValidLocale
0x723098 InitializeCriticalSection
0x72309c GlobalUnlock
0x7230a0 GlobalSize
0x7230a4 GlobalHandle
0x7230a8 GlobalLock
0x7230ac GlobalFree
0x7230b0 GlobalFindAtomW
0x7230b4 GlobalDeleteAtom
0x7230b8 GlobalAlloc
0x7230bc GlobalAddAtomW
0x7230c0 GetVersionExW
0x7230c4 GetVersion
0x7230c8 GetTickCount
0x7230cc GetThreadPriority
0x7230d0 GetThreadLocale
0x7230d4 GetSystemInfo
0x7230d8 GetStdHandle
0x7230dc GetProcAddress
0x7230e0 GetPrivateProfileStringW
0x7230e4 GetModuleHandleW
0x7230e8 GetModuleFileNameW
0x7230ec GetLocaleInfoW
0x7230f0 GetLocalTime
0x7230f4 GetLastError
0x7230f8 GetFullPathNameW
0x7230fc GetFileAttributesW
0x723100 GetExitCodeThread
0x723104 GetEnvironmentVariableW
0x723108 GetDiskFreeSpaceW
0x72310c GetDateFormatW
0x723110 GetCurrentThreadId
0x723114 GetCurrentThread
0x723118 GetCurrentProcessId
0x72311c GetCurrentProcess
0x723120 GetCPInfoExW
0x723124 GetCPInfo
0x723128 GetACP
0x72312c FreeResource
0x723130 InterlockedExchangeAdd
0x723134 InterlockedExchange
0x723138 InterlockedCompareExchange
0x72313c FreeLibrary
0x723140 FormatMessageW
0x723144 FindResourceW
0x723148 FindFirstFileW
0x72314c FindClose
0x723150 EnumSystemLocalesW
0x723154 EnumCalendarInfoW
0x723158 EnterCriticalSection
0x72315c DeleteFileW
0x723160 DeleteCriticalSection
0x723164 CreateThread
0x723168 CreateFileW
0x72316c CreateEventW
0x723170 CompareStringW
0x723174 CloseHandle
advapi32.dll
0x72317c RegQueryValueExW
0x723180 RegOpenKeyExW
0x723184 RegFlushKey
0x723188 RegCloseKey
kernel32.dll
0x723190 Sleep
oleaut32.dll
0x723198 GetErrorInfo
0x72319c SysFreeString
ole32.dll
0x7231a4 OleUninitialize
0x7231a8 OleInitialize
0x7231ac CoTaskMemFree
0x7231b0 CoTaskMemAlloc
0x7231b4 CoCreateInstance
0x7231b8 CoUninitialize
0x7231bc CoInitialize
0x7231c0 IsEqualGUID
oleaut32.dll
0x7231c8 SafeArrayPtrOfIndex
0x7231cc SafeArrayGetUBound
0x7231d0 SafeArrayGetLBound
0x7231d4 SafeArrayCreate
0x7231d8 VariantChangeType
0x7231dc VariantCopy
0x7231e0 VariantClear
0x7231e4 VariantInit
comctl32.dll
0x7231ec InitializeFlatSB
0x7231f0 FlatSB_SetScrollProp
0x7231f4 FlatSB_SetScrollPos
0x7231f8 FlatSB_SetScrollInfo
0x7231fc FlatSB_GetScrollPos
0x723200 FlatSB_GetScrollInfo
0x723204 _TrackMouseEvent
0x723208 ImageList_SetIconSize
0x72320c ImageList_GetIconSize
0x723210 ImageList_Write
0x723214 ImageList_Read
0x723218 ImageList_GetDragImage
0x72321c ImageList_DragShowNolock
0x723220 ImageList_DragMove
0x723224 ImageList_DragLeave
0x723228 ImageList_DragEnter
0x72322c ImageList_EndDrag
0x723230 ImageList_BeginDrag
0x723234 ImageList_GetIcon
0x723238 ImageList_Remove
0x72323c ImageList_DrawEx
0x723240 ImageList_Draw
0x723244 ImageList_GetBkColor
0x723248 ImageList_SetBkColor
0x72324c ImageList_Add
0x723250 ImageList_SetImageCount
0x723254 ImageList_GetImageCount
0x723258 ImageList_Destroy
0x72325c ImageList_Create
0x723260 InitCommonControls
user32.dll
0x723268 EnumDisplayMonitors
0x72326c GetMonitorInfoW
0x723270 MonitorFromPoint
0x723274 MonitorFromWindow
msvcrt.dll
0x72327c memset
0x723280 memcpy
shell32.dll
0x723288 SHFileOperationW
0x72328c ShellExecuteW
0x723290 Shell_NotifyIconW
comdlg32.dll
0x723298 ChooseFontW
0x72329c GetSaveFileNameW
0x7232a0 GetOpenFileNameW
winspool.drv
0x7232a8 OpenPrinterW
0x7232ac EnumPrintersW
0x7232b0 DocumentPropertiesW
0x7232b4 ClosePrinter
winspool.drv
0x7232bc GetDefaultPrinterW
winmm.dll
0x7232c4 timeGetTime
avifil32.dll
0x7232cc AVISaveVW
0x7232d0 CreateEditableStream
0x7232d4 AVIFileGetStream
0x7232d8 AVIFileRelease
0x7232dc AVIStreamRelease
0x7232e0 AVIStreamWrite
0x7232e4 AVIStreamSetFormat
0x7232e8 AVIFileCreateStreamW
0x7232ec AVIFileOpenW
0x7232f0 AVIFileExit
0x7232f4 AVIFileInit
EAT(Export Address Table) is none
oleaut32.dll
0x722a78 SysFreeString
0x722a7c SysReAllocStringLen
0x722a80 SysAllocStringLen
advapi32.dll
0x722a88 RegQueryValueExW
0x722a8c RegOpenKeyExW
0x722a90 RegCloseKey
user32.dll
0x722a98 MessageBoxA
0x722a9c CharNextW
0x722aa0 LoadStringW
kernel32.dll
0x722aa8 Sleep
0x722aac VirtualFree
0x722ab0 VirtualAlloc
0x722ab4 lstrlenW
0x722ab8 lstrcpynW
0x722abc VirtualQuery
0x722ac0 QueryPerformanceCounter
0x722ac4 GetTickCount
0x722ac8 GetSystemInfo
0x722acc GetVersion
0x722ad0 CompareStringW
0x722ad4 IsValidLocale
0x722ad8 SetThreadLocale
0x722adc GetSystemDefaultUILanguage
0x722ae0 GetUserDefaultUILanguage
0x722ae4 GetLocaleInfoW
0x722ae8 WideCharToMultiByte
0x722aec MultiByteToWideChar
0x722af0 GetACP
0x722af4 LoadLibraryExW
0x722af8 GetStartupInfoW
0x722afc GetProcAddress
0x722b00 GetModuleHandleW
0x722b04 GetModuleFileNameW
0x722b08 GetCommandLineW
0x722b0c FreeLibrary
0x722b10 GetLastError
0x722b14 UnhandledExceptionFilter
0x722b18 RtlUnwind
0x722b1c RaiseException
0x722b20 ExitProcess
0x722b24 ExitThread
0x722b28 SwitchToThread
0x722b2c GetCurrentThreadId
0x722b30 CreateThread
0x722b34 DeleteCriticalSection
0x722b38 LeaveCriticalSection
0x722b3c EnterCriticalSection
0x722b40 InitializeCriticalSection
0x722b44 FindFirstFileW
0x722b48 FindClose
0x722b4c CreateDirectoryW
0x722b50 WriteFile
0x722b54 GetStdHandle
0x722b58 CloseHandle
kernel32.dll
0x722b60 GetProcAddress
0x722b64 RaiseException
0x722b68 LoadLibraryA
0x722b6c GetLastError
0x722b70 TlsSetValue
0x722b74 TlsGetValue
0x722b78 LocalFree
0x722b7c LocalAlloc
0x722b80 GetModuleHandleW
0x722b84 FreeLibrary
user32.dll
0x722b8c SetClassLongW
0x722b90 GetClassLongW
0x722b94 SetWindowLongW
0x722b98 GetWindowLongW
0x722b9c CreateWindowExW
0x722ba0 WindowFromPoint
0x722ba4 WaitMessage
0x722ba8 ValidateRect
0x722bac UpdateWindow
0x722bb0 UnregisterClassW
0x722bb4 UnhookWindowsHookEx
0x722bb8 TranslateMessage
0x722bbc TranslateMDISysAccel
0x722bc0 TrackPopupMenu
0x722bc4 SystemParametersInfoW
0x722bc8 ShowWindow
0x722bcc ShowScrollBar
0x722bd0 ShowOwnedPopups
0x722bd4 ShowCaret
0x722bd8 SetWindowRgn
0x722bdc SetWindowsHookExW
0x722be0 SetWindowTextW
0x722be4 SetWindowPos
0x722be8 SetWindowPlacement
0x722bec SetTimer
0x722bf0 SetScrollRange
0x722bf4 SetScrollPos
0x722bf8 SetScrollInfo
0x722bfc SetRect
0x722c00 SetPropW
0x722c04 SetParent
0x722c08 SetMenuItemInfoW
0x722c0c SetMenu
0x722c10 SetForegroundWindow
0x722c14 SetFocus
0x722c18 SetCursorPos
0x722c1c SetCursor
0x722c20 SetClipboardData
0x722c24 SetCapture
0x722c28 SetActiveWindow
0x722c2c SendMessageA
0x722c30 SendMessageW
0x722c34 SendDlgItemMessageW
0x722c38 ScrollWindow
0x722c3c ScreenToClient
0x722c40 RemovePropW
0x722c44 RemoveMenu
0x722c48 ReleaseDC
0x722c4c ReleaseCapture
0x722c50 RegisterWindowMessageW
0x722c54 RegisterClipboardFormatW
0x722c58 RegisterClassW
0x722c5c RedrawWindow
0x722c60 PtInRect
0x722c64 PostQuitMessage
0x722c68 PostMessageW
0x722c6c PeekMessageA
0x722c70 PeekMessageW
0x722c74 OffsetRect
0x722c78 MsgWaitForMultipleObjectsEx
0x722c7c MsgWaitForMultipleObjects
0x722c80 MessageBoxW
0x722c84 MessageBeep
0x722c88 MapWindowPoints
0x722c8c MapVirtualKeyW
0x722c90 LoadStringW
0x722c94 LoadKeyboardLayoutW
0x722c98 LoadIconW
0x722c9c LoadCursorW
0x722ca0 LoadBitmapW
0x722ca4 KillTimer
0x722ca8 IsZoomed
0x722cac IsWindowVisible
0x722cb0 IsWindowUnicode
0x722cb4 IsWindowEnabled
0x722cb8 IsWindow
0x722cbc IsIconic
0x722cc0 IsDialogMessageA
0x722cc4 IsDialogMessageW
0x722cc8 IsClipboardFormatAvailable
0x722ccc IsChild
0x722cd0 InvalidateRect
0x722cd4 IntersectRect
0x722cd8 InsertMenuItemW
0x722cdc InsertMenuW
0x722ce0 InflateRect
0x722ce4 HideCaret
0x722ce8 GetWindowThreadProcessId
0x722cec GetWindowTextW
0x722cf0 GetWindowRect
0x722cf4 GetWindowPlacement
0x722cf8 GetWindowDC
0x722cfc GetTopWindow
0x722d00 GetSystemMetrics
0x722d04 GetSystemMenu
0x722d08 GetSysColorBrush
0x722d0c GetSysColor
0x722d10 GetSubMenu
0x722d14 GetScrollRange
0x722d18 GetScrollPos
0x722d1c GetScrollInfo
0x722d20 GetPropW
0x722d24 GetParent
0x722d28 GetWindow
0x722d2c GetMessagePos
0x722d30 GetMessageExtraInfo
0x722d34 GetMenuStringW
0x722d38 GetMenuState
0x722d3c GetMenuItemInfoW
0x722d40 GetMenuItemID
0x722d44 GetMenuItemCount
0x722d48 GetMenu
0x722d4c GetLastActivePopup
0x722d50 GetKeyboardState
0x722d54 GetKeyboardLayoutNameW
0x722d58 GetKeyboardLayoutList
0x722d5c GetKeyboardLayout
0x722d60 GetKeyState
0x722d64 GetKeyNameTextW
0x722d68 GetIconInfo
0x722d6c GetForegroundWindow
0x722d70 GetFocus
0x722d74 GetDlgItem
0x722d78 GetDlgCtrlID
0x722d7c GetDesktopWindow
0x722d80 GetDCEx
0x722d84 GetDC
0x722d88 GetCursorPos
0x722d8c GetCursorInfo
0x722d90 GetCursor
0x722d94 GetClipboardData
0x722d98 GetClientRect
0x722d9c GetClassNameW
0x722da0 GetClassInfoExW
0x722da4 GetClassInfoW
0x722da8 GetCapture
0x722dac GetActiveWindow
0x722db0 FrameRect
0x722db4 FindWindowExW
0x722db8 FindWindowW
0x722dbc FillRect
0x722dc0 EqualRect
0x722dc4 EnumWindows
0x722dc8 EnumThreadWindows
0x722dcc EnumClipboardFormats
0x722dd0 EnumChildWindows
0x722dd4 EndPaint
0x722dd8 EndMenu
0x722ddc EnableWindow
0x722de0 EnableScrollBar
0x722de4 EnableMenuItem
0x722de8 DrawTextExW
0x722dec DrawTextW
0x722df0 DrawMenuBar
0x722df4 DrawIconEx
0x722df8 DrawIcon
0x722dfc DrawFrameControl
0x722e00 DrawFocusRect
0x722e04 DrawEdge
0x722e08 DispatchMessageA
0x722e0c DispatchMessageW
0x722e10 DestroyWindow
0x722e14 DestroyMenu
0x722e18 DestroyIcon
0x722e1c DestroyCursor
0x722e20 DeleteMenu
0x722e24 DefWindowProcW
0x722e28 DefMDIChildProcW
0x722e2c DefFrameProcW
0x722e30 CreatePopupMenu
0x722e34 CreateMenu
0x722e38 CreateIcon
0x722e3c CopyImage
0x722e40 CopyIcon
0x722e44 ClipCursor
0x722e48 ClientToScreen
0x722e4c CheckMenuItem
0x722e50 CharUpperBuffW
0x722e54 CharUpperW
0x722e58 CharNextW
0x722e5c CharLowerBuffW
0x722e60 CharLowerW
0x722e64 CallWindowProcW
0x722e68 CallNextHookEx
0x722e6c BeginPaint
0x722e70 AdjustWindowRectEx
0x722e74 ActivateKeyboardLayout
msimg32.dll
0x722e7c GradientFill
0x722e80 AlphaBlend
gdi32.dll
0x722e88 UnrealizeObject
0x722e8c StretchDIBits
0x722e90 StretchBlt
0x722e94 SetWindowOrgEx
0x722e98 SetWinMetaFileBits
0x722e9c SetViewportOrgEx
0x722ea0 SetTextColor
0x722ea4 SetStretchBltMode
0x722ea8 SetROP2
0x722eac SetPixel
0x722eb0 SetEnhMetaFileBits
0x722eb4 SetDIBits
0x722eb8 SetDIBColorTable
0x722ebc SetBrushOrgEx
0x722ec0 SetBkMode
0x722ec4 SetBkColor
0x722ec8 SelectPalette
0x722ecc SelectObject
0x722ed0 SelectClipRgn
0x722ed4 SaveDC
0x722ed8 RoundRect
0x722edc RestoreDC
0x722ee0 ResizePalette
0x722ee4 Rectangle
0x722ee8 RectVisible
0x722eec RealizePalette
0x722ef0 Polyline
0x722ef4 Polygon
0x722ef8 PolyBezierTo
0x722efc PolyBezier
0x722f00 PlayEnhMetaFile
0x722f04 Pie
0x722f08 PatBlt
0x722f0c MoveToEx
0x722f10 MaskBlt
0x722f14 LineTo
0x722f18 LineDDA
0x722f1c IntersectClipRect
0x722f20 GetWindowOrgEx
0x722f24 GetWinMetaFileBits
0x722f28 GetTextMetricsW
0x722f2c GetTextExtentPointW
0x722f30 GetTextExtentPoint32W
0x722f34 GetSystemPaletteEntries
0x722f38 GetStockObject
0x722f3c GetRgnBox
0x722f40 GetPixel
0x722f44 GetPaletteEntries
0x722f48 GetObjectType
0x722f4c GetObjectW
0x722f50 GetNearestPaletteIndex
0x722f54 GetEnhMetaFilePaletteEntries
0x722f58 GetEnhMetaFileHeader
0x722f5c GetEnhMetaFileDescriptionW
0x722f60 GetEnhMetaFileBits
0x722f64 GetDeviceCaps
0x722f68 GetDIBits
0x722f6c GetDIBColorTable
0x722f70 GetCurrentPositionEx
0x722f74 GetClipBox
0x722f78 GetBrushOrgEx
0x722f7c GetBitmapBits
0x722f80 GdiFlush
0x722f84 FrameRgn
0x722f88 ExtTextOutW
0x722f8c ExtFloodFill
0x722f90 ExcludeClipRect
0x722f94 EnumFontsW
0x722f98 EnumFontFamiliesExW
0x722f9c EndPage
0x722fa0 EndDoc
0x722fa4 Ellipse
0x722fa8 DeleteObject
0x722fac DeleteEnhMetaFile
0x722fb0 DeleteDC
0x722fb4 CreateSolidBrush
0x722fb8 CreateRectRgn
0x722fbc CreatePenIndirect
0x722fc0 CreatePalette
0x722fc4 CreateICW
0x722fc8 CreateHalftonePalette
0x722fcc CreateFontIndirectW
0x722fd0 CreateDIBitmap
0x722fd4 CreateDIBSection
0x722fd8 CreateDCW
0x722fdc CreateCompatibleDC
0x722fe0 CreateCompatibleBitmap
0x722fe4 CreateBrushIndirect
0x722fe8 CreateBitmap
0x722fec CopyEnhMetaFileW
0x722ff0 Chord
0x722ff4 BitBlt
0x722ff8 ArcTo
0x722ffc Arc
0x723000 AngleArc
version.dll
0x723008 VerQueryValueW
0x72300c GetFileVersionInfoSizeW
0x723010 GetFileVersionInfoW
kernel32.dll
0x723018 WritePrivateProfileStringW
0x72301c WriteFile
0x723020 WideCharToMultiByte
0x723024 WaitForSingleObject
0x723028 WaitForMultipleObjectsEx
0x72302c VirtualQueryEx
0x723030 VirtualQuery
0x723034 VirtualFree
0x723038 VirtualAlloc
0x72303c SwitchToThread
0x723040 SuspendThread
0x723044 Sleep
0x723048 SizeofResource
0x72304c SetThreadPriority
0x723050 SetThreadLocale
0x723054 SetLastError
0x723058 SetFilePointer
0x72305c SetEvent
0x723060 SetErrorMode
0x723064 SetEndOfFile
0x723068 ResumeThread
0x72306c ResetEvent
0x723070 RemoveDirectoryW
0x723074 ReadFile
0x723078 OpenProcess
0x72307c MulDiv
0x723080 LockResource
0x723084 LocalFree
0x723088 LoadResource
0x72308c LoadLibraryW
0x723090 LeaveCriticalSection
0x723094 IsValidLocale
0x723098 InitializeCriticalSection
0x72309c GlobalUnlock
0x7230a0 GlobalSize
0x7230a4 GlobalHandle
0x7230a8 GlobalLock
0x7230ac GlobalFree
0x7230b0 GlobalFindAtomW
0x7230b4 GlobalDeleteAtom
0x7230b8 GlobalAlloc
0x7230bc GlobalAddAtomW
0x7230c0 GetVersionExW
0x7230c4 GetVersion
0x7230c8 GetTickCount
0x7230cc GetThreadPriority
0x7230d0 GetThreadLocale
0x7230d4 GetSystemInfo
0x7230d8 GetStdHandle
0x7230dc GetProcAddress
0x7230e0 GetPrivateProfileStringW
0x7230e4 GetModuleHandleW
0x7230e8 GetModuleFileNameW
0x7230ec GetLocaleInfoW
0x7230f0 GetLocalTime
0x7230f4 GetLastError
0x7230f8 GetFullPathNameW
0x7230fc GetFileAttributesW
0x723100 GetExitCodeThread
0x723104 GetEnvironmentVariableW
0x723108 GetDiskFreeSpaceW
0x72310c GetDateFormatW
0x723110 GetCurrentThreadId
0x723114 GetCurrentThread
0x723118 GetCurrentProcessId
0x72311c GetCurrentProcess
0x723120 GetCPInfoExW
0x723124 GetCPInfo
0x723128 GetACP
0x72312c FreeResource
0x723130 InterlockedExchangeAdd
0x723134 InterlockedExchange
0x723138 InterlockedCompareExchange
0x72313c FreeLibrary
0x723140 FormatMessageW
0x723144 FindResourceW
0x723148 FindFirstFileW
0x72314c FindClose
0x723150 EnumSystemLocalesW
0x723154 EnumCalendarInfoW
0x723158 EnterCriticalSection
0x72315c DeleteFileW
0x723160 DeleteCriticalSection
0x723164 CreateThread
0x723168 CreateFileW
0x72316c CreateEventW
0x723170 CompareStringW
0x723174 CloseHandle
advapi32.dll
0x72317c RegQueryValueExW
0x723180 RegOpenKeyExW
0x723184 RegFlushKey
0x723188 RegCloseKey
kernel32.dll
0x723190 Sleep
oleaut32.dll
0x723198 GetErrorInfo
0x72319c SysFreeString
ole32.dll
0x7231a4 OleUninitialize
0x7231a8 OleInitialize
0x7231ac CoTaskMemFree
0x7231b0 CoTaskMemAlloc
0x7231b4 CoCreateInstance
0x7231b8 CoUninitialize
0x7231bc CoInitialize
0x7231c0 IsEqualGUID
oleaut32.dll
0x7231c8 SafeArrayPtrOfIndex
0x7231cc SafeArrayGetUBound
0x7231d0 SafeArrayGetLBound
0x7231d4 SafeArrayCreate
0x7231d8 VariantChangeType
0x7231dc VariantCopy
0x7231e0 VariantClear
0x7231e4 VariantInit
comctl32.dll
0x7231ec InitializeFlatSB
0x7231f0 FlatSB_SetScrollProp
0x7231f4 FlatSB_SetScrollPos
0x7231f8 FlatSB_SetScrollInfo
0x7231fc FlatSB_GetScrollPos
0x723200 FlatSB_GetScrollInfo
0x723204 _TrackMouseEvent
0x723208 ImageList_SetIconSize
0x72320c ImageList_GetIconSize
0x723210 ImageList_Write
0x723214 ImageList_Read
0x723218 ImageList_GetDragImage
0x72321c ImageList_DragShowNolock
0x723220 ImageList_DragMove
0x723224 ImageList_DragLeave
0x723228 ImageList_DragEnter
0x72322c ImageList_EndDrag
0x723230 ImageList_BeginDrag
0x723234 ImageList_GetIcon
0x723238 ImageList_Remove
0x72323c ImageList_DrawEx
0x723240 ImageList_Draw
0x723244 ImageList_GetBkColor
0x723248 ImageList_SetBkColor
0x72324c ImageList_Add
0x723250 ImageList_SetImageCount
0x723254 ImageList_GetImageCount
0x723258 ImageList_Destroy
0x72325c ImageList_Create
0x723260 InitCommonControls
user32.dll
0x723268 EnumDisplayMonitors
0x72326c GetMonitorInfoW
0x723270 MonitorFromPoint
0x723274 MonitorFromWindow
msvcrt.dll
0x72327c memset
0x723280 memcpy
shell32.dll
0x723288 SHFileOperationW
0x72328c ShellExecuteW
0x723290 Shell_NotifyIconW
comdlg32.dll
0x723298 ChooseFontW
0x72329c GetSaveFileNameW
0x7232a0 GetOpenFileNameW
winspool.drv
0x7232a8 OpenPrinterW
0x7232ac EnumPrintersW
0x7232b0 DocumentPropertiesW
0x7232b4 ClosePrinter
winspool.drv
0x7232bc GetDefaultPrinterW
winmm.dll
0x7232c4 timeGetTime
avifil32.dll
0x7232cc AVISaveVW
0x7232d0 CreateEditableStream
0x7232d4 AVIFileGetStream
0x7232d8 AVIFileRelease
0x7232dc AVIStreamRelease
0x7232e0 AVIStreamWrite
0x7232e4 AVIStreamSetFormat
0x7232e8 AVIFileCreateStreamW
0x7232ec AVIFileOpenW
0x7232f0 AVIFileExit
0x7232f4 AVIFileInit
EAT(Export Address Table) is none