ScreenShot
| Created | 2024.11.20 09:21 | Machine | s1_win7_x6401 |
| Filename | exe004.exe | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | |||
| md5 | db1ad2ac3c34a120079692c13052a4f0 | ||
| sha256 | 250f05b7b22f886df69550d87c9f0139c0ddfb7dc85b6c6c7e12d1ae3b71d1e7 | ||
| ssdeep | 24576:Me9svvw/1fKPSjAMHHTChtaV4n57CqckW36vy0rPWI3gQ:Me9AfPS5n+htaGFcky0LW3 | ||
| imphash | 0a169711b2c3cb91e4e5ac9790ceba70 | ||
| impfuzzy | 192:h6ApbHvi5xFDLgNQ4MTrR5a1W9+p6LvcpfJUxPcRcOcRmkrP2+Q4OKO9WM:h6AgNvgNQ4Q86LgSPEZupQ4Oz9WM | ||
Network IP location
Signature (10cnts)
| Level | Description |
|---|---|
| watch | Ramnit malware indicators found |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | Creates executable files on the filesystem |
| notice | Drops an executable to the user AppData folder |
| notice | Foreign language identified in PE resource |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | Checks amount of memory in system |
| info | One or more processes crashed |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (download) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (download) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
SETUPAPI.dll
0x4e9514 SetupDiEnumDeviceInfo
0x4e9518 SetupDiGetDeviceRegistryPropertyA
0x4e951c SetupDiSetClassInstallParamsA
0x4e9520 SetupDiCallClassInstaller
0x4e9524 CM_Locate_DevNodeA
0x4e9528 CM_Remove_SubTree
0x4e952c CM_Get_Sibling
0x4e9530 CM_Get_Parent
0x4e9534 CM_Get_DevNode_Registry_PropertyA
0x4e9538 CM_Get_Child
0x4e953c SetupDiGetClassDevsA
0x4e9540 SetupDiEnumDeviceInterfaces
0x4e9544 SetupDiGetDeviceInterfaceDetailA
0x4e9548 SetupDiDestroyDeviceInfoList
KERNEL32.dll
0x4e91d4 TlsGetValue
0x4e91d8 GetProcessVersion
0x4e91dc GetCPInfo
0x4e91e0 GetOEMCP
0x4e91e4 GetFileSize
0x4e91e8 GetFileTime
0x4e91ec LocalFileTimeToFileTime
0x4e91f0 SystemTimeToFileTime
0x4e91f4 SetFileTime
0x4e91f8 SetFileAttributesA
0x4e91fc SetErrorMode
0x4e9200 lstrlenW
0x4e9204 GetCurrentDirectoryA
0x4e9208 GetTickCount
0x4e920c RtlUnwind
0x4e9210 HeapFree
0x4e9214 HeapAlloc
0x4e9218 ExitProcess
0x4e921c GetTimeFormatA
0x4e9220 GetDateFormatA
0x4e9224 GetSystemTimeAsFileTime
0x4e9228 GetCommandLineA
0x4e922c GetProcessHeap
0x4e9230 GetStartupInfoA
0x4e9234 RaiseException
0x4e9238 ExitThread
0x4e923c SetStdHandle
0x4e9240 GetFileType
0x4e9244 GetACP
0x4e9248 HeapReAlloc
0x4e924c HeapSize
0x4e9250 HeapDestroy
0x4e9254 HeapCreate
0x4e9258 VirtualFree
0x4e925c FatalAppExitA
0x4e9260 VirtualAlloc
0x4e9264 IsBadWritePtr
0x4e9268 GetTimeZoneInformation
0x4e926c VirtualProtect
0x4e9270 GetSystemInfo
0x4e9274 VirtualQuery
0x4e9278 GetStdHandle
0x4e927c UnhandledExceptionFilter
0x4e9280 FreeEnvironmentStringsA
0x4e9284 GetEnvironmentStrings
0x4e9288 FreeEnvironmentStringsW
0x4e928c GetEnvironmentStringsW
0x4e9290 SetHandleCount
0x4e9294 SetUnhandledExceptionFilter
0x4e9298 LCMapStringA
0x4e929c LCMapStringW
0x4e92a0 GetStringTypeA
0x4e92a4 GetStringTypeW
0x4e92a8 LocalReAlloc
0x4e92ac IsBadCodePtr
0x4e92b0 InterlockedExchange
0x4e92b4 GetUserDefaultLCID
0x4e92b8 GetLocaleInfoA
0x4e92bc EnumSystemLocalesA
0x4e92c0 IsValidLocale
0x4e92c4 IsValidCodePage
0x4e92c8 SetConsoleCtrlHandler
0x4e92cc GetLocaleInfoW
0x4e92d0 CompareStringA
0x4e92d4 CompareStringW
0x4e92d8 SetEnvironmentVariableA
0x4e92dc TlsSetValue
0x4e92e0 GetProfileStringA
0x4e92e4 CreateDirectoryA
0x4e92e8 lstrcpyA
0x4e92ec Sleep
0x4e92f0 WritePrivateProfileStringA
0x4e92f4 GetSystemDefaultLangID
0x4e92f8 GetLastError
0x4e92fc OutputDebugStringA
0x4e9300 CloseHandle
0x4e9304 SetCommState
0x4e9308 GetCommState
0x4e930c SetCommTimeouts
0x4e9310 GetCommTimeouts
0x4e9314 CreateFileA
0x4e9318 ReadFile
0x4e931c WriteFile
0x4e9320 SetThreadPriority
0x4e9324 CreateThread
0x4e9328 CreateEventA
0x4e932c SetPriorityClass
0x4e9330 GetCurrentProcess
0x4e9334 WaitForSingleObject
0x4e9338 SetEvent
0x4e933c ResetEvent
0x4e9340 FindClose
0x4e9344 FindNextFileA
0x4e9348 FindFirstFileA
0x4e934c SetCurrentDirectoryA
0x4e9350 GetPrivateProfileStringA
0x4e9354 GetPrivateProfileIntA
0x4e9358 CopyFileA
0x4e935c GetLocalTime
0x4e9360 DeleteFileA
0x4e9364 GetFileAttributesA
0x4e9368 GetProcAddress
0x4e936c GlobalUnlock
0x4e9370 GlobalLock
0x4e9374 GlobalAlloc
0x4e9378 GlobalSize
0x4e937c EnterCriticalSection
0x4e9380 GlobalReAlloc
0x4e9384 LeaveCriticalSection
0x4e9388 TlsFree
0x4e938c GlobalHandle
0x4e9390 DeleteCriticalSection
0x4e9394 TlsAlloc
0x4e9398 InitializeCriticalSection
0x4e939c SizeofResource
0x4e93a0 GlobalFlags
0x4e93a4 FileTimeToLocalFileTime
0x4e93a8 FileTimeToSystemTime
0x4e93ac GetCurrentThread
0x4e93b0 lstrcmpA
0x4e93b4 MulDiv
0x4e93b8 SetLastError
0x4e93bc GetShortPathNameA
0x4e93c0 GetThreadLocale
0x4e93c4 GetStringTypeExA
0x4e93c8 GetFullPathNameA
0x4e93cc lstrcpynA
0x4e93d0 GetVolumeInformationA
0x4e93d4 MoveFileA
0x4e93d8 SetEndOfFile
0x4e93dc UnlockFile
0x4e93e0 LockFile
0x4e93e4 FlushFileBuffers
0x4e93e8 SetFilePointer
0x4e93ec DuplicateHandle
0x4e93f0 FormatMessageA
0x4e93f4 SuspendThread
0x4e93f8 ResumeThread
0x4e93fc MultiByteToWideChar
0x4e9400 InterlockedDecrement
0x4e9404 InterlockedIncrement
0x4e9408 GetVersion
0x4e940c lstrcatA
0x4e9410 GetCurrentThreadId
0x4e9414 GlobalGetAtomNameA
0x4e9418 lstrcmpiA
0x4e941c GlobalAddAtomA
0x4e9420 GlobalFindAtomA
0x4e9424 GlobalDeleteAtom
0x4e9428 GetModuleHandleA
0x4e942c LockResource
0x4e9430 FindResourceA
0x4e9434 LoadResource
0x4e9438 LocalFree
0x4e943c LocalAlloc
0x4e9440 lstrlenA
0x4e9444 GlobalFree
0x4e9448 WideCharToMultiByte
0x4e944c GetSystemDirectoryA
0x4e9450 GetDriveTypeA
0x4e9454 GetModuleFileNameA
0x4e9458 GetVersionExA
0x4e945c DeviceIoControl
0x4e9460 GetExitCodeThread
0x4e9464 TerminateThread
0x4e9468 CreateProcessA
0x4e946c FreeLibrary
0x4e9470 LoadLibraryA
0x4e9474 IsBadReadPtr
USER32.dll
0x4e9578 GetNextDlgGroupItem
0x4e957c MessageBeep
0x4e9580 SetRectEmpty
0x4e9584 LoadAcceleratorsA
0x4e9588 TranslateAcceleratorA
0x4e958c LoadMenuA
0x4e9590 SetMenu
0x4e9594 ReuseDDElParam
0x4e9598 UnpackDDElParam
0x4e959c BringWindowToTop
0x4e95a0 PostThreadMessageA
0x4e95a4 DestroyIcon
0x4e95a8 GetDialogBaseUnits
0x4e95ac GetClassNameA
0x4e95b0 MapDialogRect
0x4e95b4 SetWindowContextHelpId
0x4e95b8 ShowOwnedPopups
0x4e95bc DestroyMenu
0x4e95c0 IsClipboardFormatAvailable
0x4e95c4 WaitMessage
0x4e95c8 LoadStringA
0x4e95cc WindowFromPoint
0x4e95d0 InflateRect
0x4e95d4 GrayStringA
0x4e95d8 TabbedTextOutA
0x4e95dc EndPaint
0x4e95e0 BeginPaint
0x4e95e4 GetWindowDC
0x4e95e8 ClientToScreen
0x4e95ec GetMessageA
0x4e95f0 TranslateMessage
0x4e95f4 ValidateRect
0x4e95f8 OemToCharA
0x4e95fc CharToOemA
0x4e9600 wvsprintfA
0x4e9604 GetMenuCheckMarkDimensions
0x4e9608 GetMenuState
0x4e960c ModifyMenuA
0x4e9610 SetMenuItemBitmaps
0x4e9614 CheckMenuItem
0x4e9618 EnableMenuItem
0x4e961c MoveWindow
0x4e9620 IsDialogMessageA
0x4e9624 ScrollWindowEx
0x4e9628 IsDlgButtonChecked
0x4e962c SetDlgItemInt
0x4e9630 GetDlgItemTextA
0x4e9634 GetDlgItemInt
0x4e9638 CheckRadioButton
0x4e963c CheckDlgButton
0x4e9640 SendDlgItemMessageA
0x4e9644 MapWindowPoints
0x4e9648 PeekMessageA
0x4e964c DispatchMessageA
0x4e9650 AdjustWindowRectEx
0x4e9654 EqualRect
0x4e9658 DeferWindowPos
0x4e965c BeginDeferWindowPos
0x4e9660 EndDeferWindowPos
0x4e9664 IsWindowVisible
0x4e9668 ScrollWindow
0x4e966c SetRect
0x4e9670 ShowScrollBar
0x4e9674 GetScrollRange
0x4e9678 SetScrollRange
0x4e967c GetScrollPos
0x4e9680 GetTopWindow
0x4e9684 IsChild
0x4e9688 GetCapture
0x4e968c WinHelpA
0x4e9690 GetClassInfoA
0x4e9694 RegisterClassA
0x4e9698 GetMenu
0x4e969c GetMenuItemCount
0x4e96a0 GetSubMenu
0x4e96a4 GetMenuItemID
0x4e96a8 TrackPopupMenu
0x4e96ac SetWindowPlacement
0x4e96b0 GetWindowTextLengthA
0x4e96b4 GetWindowTextA
0x4e96b8 GetDlgCtrlID
0x4e96bc DefWindowProcA
0x4e96c0 CallNextHookEx
0x4e96c4 GetClassLongA
0x4e96c8 SetPropA
0x4e96cc GetPropA
0x4e96d0 CallWindowProcA
0x4e96d4 RemovePropA
0x4e96d8 GetMessageTime
0x4e96dc GetMessagePos
0x4e96e0 GetLastActivePopup
0x4e96e4 GetForegroundWindow
0x4e96e8 SetForegroundWindow
0x4e96ec GetWindow
0x4e96f0 RegisterWindowMessageA
0x4e96f4 IntersectRect
0x4e96f8 SystemParametersInfoA
0x4e96fc GetWindowPlacement
0x4e9700 GetNextDlgTabItem
0x4e9704 EndDialog
0x4e9708 GetActiveWindow
0x4e970c SetTimer
0x4e9710 UnregisterClassA
0x4e9714 HideCaret
0x4e9718 ExcludeUpdateRgn
0x4e971c DefDlgProcA
0x4e9720 IsWindowUnicode
0x4e9724 KillTimer
0x4e9728 EnableWindow
0x4e972c SetActiveWindow
0x4e9730 CreateDialogIndirectParamA
0x4e9734 DestroyWindow
0x4e9738 IsWindowEnabled
0x4e973c CharUpperA
0x4e9740 GetWindowLongA
0x4e9744 SetWindowLongA
0x4e9748 ReleaseDC
0x4e974c CreateWindowExA
0x4e9750 MessageBoxA
0x4e9754 GetDesktopWindow
0x4e9758 ScreenToClient
0x4e975c GetCursorPos
0x4e9760 PostQuitMessage
0x4e9764 LoadImageA
0x4e9768 CopyAcceleratorTableA
0x4e976c CharNextA
0x4e9770 DeleteMenu
0x4e9774 GetWindowThreadProcessId
0x4e9778 RemoveMenu
0x4e977c GetMenuStringA
0x4e9780 InsertMenuA
0x4e9784 GetSysColorBrush
0x4e9788 GetScrollInfo
0x4e978c LoadCursorA
0x4e9790 GetDlgItem
0x4e9794 ShowWindow
0x4e9798 SetWindowPos
0x4e979c SetFocus
0x4e97a0 GetDC
0x4e97a4 SetWindowTextA
0x4e97a8 SetWindowsHookExA
0x4e97ac SetDlgItemTextA
0x4e97b0 UnhookWindowsHookEx
0x4e97b4 LoadIconA
0x4e97b8 IsIconic
0x4e97bc SendMessageA
0x4e97c0 GetSysColor
0x4e97c4 GetSystemMetrics
0x4e97c8 CopyRect
0x4e97cc FillRect
0x4e97d0 DrawFocusRect
0x4e97d4 RedrawWindow
0x4e97d8 GetWindowRect
0x4e97dc GetClientRect
0x4e97e0 UpdateWindow
0x4e97e4 InvalidateRect
0x4e97e8 GetFocus
0x4e97ec GetParent
0x4e97f0 LoadBitmapA
0x4e97f4 SetCursor
0x4e97f8 IsWindow
0x4e97fc OffsetRect
0x4e9800 wsprintfA
0x4e9804 GetKeyNameTextA
0x4e9808 DestroyCaret
0x4e980c SetScrollPos
0x4e9810 DragDetect
0x4e9814 EnableScrollBar
0x4e9818 SetScrollInfo
0x4e981c ReleaseCapture
0x4e9820 GetKeyState
0x4e9824 RegisterClipboardFormatA
0x4e9828 EmptyClipboard
0x4e982c PtInRect
0x4e9830 DrawTextA
0x4e9834 SetCapture
0x4e9838 CreateCaret
0x4e983c SetCaretPos
0x4e9840 ShowCaret
0x4e9844 DrawIcon
0x4e9848 AppendMenuA
0x4e984c GetSystemMenu
0x4e9850 PostMessageA
GDI32.dll
0x4e9068 RestoreDC
0x4e906c SelectPalette
0x4e9070 SetBkMode
0x4e9074 SetPolyFillMode
0x4e9078 SetROP2
0x4e907c SetStretchBltMode
0x4e9080 SetMapMode
0x4e9084 OffsetViewportOrgEx
0x4e9088 SetViewportExtEx
0x4e908c ScaleViewportExtEx
0x4e9090 SetWindowOrgEx
0x4e9094 OffsetWindowOrgEx
0x4e9098 SetWindowExtEx
0x4e909c ScaleWindowExtEx
0x4e90a0 SelectClipRgn
0x4e90a4 ExcludeClipRect
0x4e90a8 IntersectClipRect
0x4e90ac OffsetClipRgn
0x4e90b0 MoveToEx
0x4e90b4 LineTo
0x4e90b8 SetTextAlign
0x4e90bc SetTextJustification
0x4e90c0 SetTextCharacterExtra
0x4e90c4 SetMapperFlags
0x4e90c8 GetCurrentPositionEx
0x4e90cc ArcTo
0x4e90d0 SetArcDirection
0x4e90d4 PolyDraw
0x4e90d8 PolylineTo
0x4e90dc SetColorAdjustment
0x4e90e0 PolyBezierTo
0x4e90e4 SaveDC
0x4e90e8 CreateRectRgn
0x4e90ec SelectClipPath
0x4e90f0 ExtSelectClipRgn
0x4e90f4 PlayMetaFileRecord
0x4e90f8 GetObjectType
0x4e90fc EnumMetaFile
0x4e9100 PlayMetaFile
0x4e9104 GetDeviceCaps
0x4e9108 GetViewportExtEx
0x4e910c GetWindowExtEx
0x4e9110 ExtCreatePen
0x4e9114 CreateHatchBrush
0x4e9118 CreatePatternBrush
0x4e911c CreateDIBPatternBrushPt
0x4e9120 PtVisible
0x4e9124 RectVisible
0x4e9128 ExtTextOutA
0x4e912c Escape
0x4e9130 PatBlt
0x4e9134 CreateRectRgnIndirect
0x4e9138 GetMapMode
0x4e913c SetRectRgn
0x4e9140 CombineRgn
0x4e9144 DPtoLP
0x4e9148 GetTextMetricsA
0x4e914c CopyMetaFileA
0x4e9150 CreateDCA
0x4e9154 GetTextColor
0x4e9158 GetBkColor
0x4e915c LPtoDP
0x4e9160 StartDocA
0x4e9164 DeleteDC
0x4e9168 CreateBitmap
0x4e916c SetBkColor
0x4e9170 SetTextColor
0x4e9174 GetClipBox
0x4e9178 GetDCOrgEx
0x4e917c SetBoundsRect
0x4e9180 GetCharWidthA
0x4e9184 GetTextExtentPoint32A
0x4e9188 TextOutA
0x4e918c SelectObject
0x4e9190 CreateFontA
0x4e9194 CreateCompatibleBitmap
0x4e9198 GetViewportOrgEx
0x4e919c SetViewportOrgEx
0x4e91a0 DeleteObject
0x4e91a4 CreateSolidBrush
0x4e91a8 BitBlt
0x4e91ac CreateCompatibleDC
0x4e91b0 GetStockObject
0x4e91b4 Rectangle
0x4e91b8 GetObjectA
0x4e91bc CreateFontIndirectA
0x4e91c0 GetClipRgn
0x4e91c4 CreateDIBitmap
0x4e91c8 GetTextExtentPointA
0x4e91cc CreatePen
comdlg32.dll
0x4e98cc GetOpenFileNameA
0x4e98d0 GetFileTitleA
0x4e98d4 GetSaveFileNameA
WINSPOOL.DRV
0x4e9858 OpenPrinterA
0x4e985c ClosePrinter
0x4e9860 DocumentPropertiesA
ADVAPI32.dll
0x4e9000 RegEnumKeyA
0x4e9004 RegQueryValueExA
0x4e9008 RegOpenKeyExA
0x4e900c RegEnumKeyExA
0x4e9010 RegQueryInfoKeyA
0x4e9014 RegOpenKeyA
0x4e9018 RegSetValueA
0x4e901c RegCreateKeyExA
0x4e9020 RegSetValueExA
0x4e9024 RegDeleteValueA
0x4e9028 RegCreateKeyA
0x4e902c RegCloseKey
0x4e9030 RegQueryValueA
0x4e9034 RegDeleteKeyA
SHELL32.dll
0x4e9550 DragQueryFileA
0x4e9554 DragFinish
0x4e9558 SHGetFileInfoA
0x4e955c DragAcceptFiles
0x4e9560 SHBrowseForFolderA
0x4e9564 SHGetPathFromIDListA
0x4e9568 SHGetMalloc
0x4e956c ShellExecuteA
0x4e9570 ExtractIconA
COMCTL32.dll
0x4e903c _TrackMouseEvent
0x4e9040 None
0x4e9044 None
0x4e9048 None
0x4e904c ImageList_Destroy
0x4e9050 ImageList_Create
0x4e9054 ImageList_LoadImageA
0x4e9058 ImageList_Merge
0x4e905c ImageList_Read
0x4e9060 ImageList_Write
oledlg.dll
0x4e9964 None
ole32.dll
0x4e98dc CoTaskMemFree
0x4e98e0 OleSetClipboard
0x4e98e4 OleFlushClipboard
0x4e98e8 OleIsCurrentClipboard
0x4e98ec OleGetClipboard
0x4e98f0 CLSIDFromProgID
0x4e98f4 CLSIDFromString
0x4e98f8 CoDisconnectObject
0x4e98fc OleDuplicateData
0x4e9900 CoTaskMemAlloc
0x4e9904 CreateBindCtx
0x4e9908 SetConvertStg
0x4e990c WriteFmtUserTypeStg
0x4e9910 WriteClassStg
0x4e9914 OleRegGetUserType
0x4e9918 ReadFmtUserTypeStg
0x4e991c ReadClassStg
0x4e9920 StringFromCLSID
0x4e9924 CoTreatAsClass
0x4e9928 CreateStreamOnHGlobal
0x4e992c CoGetClassObject
0x4e9930 StgOpenStorageOnILockBytes
0x4e9934 StgCreateDocfileOnILockBytes
0x4e9938 CreateILockBytesOnHGlobal
0x4e993c CoCreateInstance
0x4e9940 OleRun
0x4e9944 OleInitialize
0x4e9948 OleUninitialize
0x4e994c CoFreeUnusedLibraries
0x4e9950 CoRegisterMessageFilter
0x4e9954 CoRegisterClassObject
0x4e9958 CoRevokeClassObject
0x4e995c ReleaseStgMedium
OLEPRO32.DLL
0x4e950c None
OLEAUT32.dll
0x4e947c SysFreeString
0x4e9480 SysAllocStringLen
0x4e9484 VariantClear
0x4e9488 VariantTimeToSystemTime
0x4e948c SysStringLen
0x4e9490 SysAllocStringByteLen
0x4e9494 VariantCopy
0x4e9498 VariantChangeType
0x4e949c SysReAllocStringLen
0x4e94a0 SysAllocString
0x4e94a4 SafeArrayUnaccessData
0x4e94a8 SafeArrayAccessData
0x4e94ac SafeArrayGetUBound
0x4e94b0 LoadTypeLib
0x4e94b4 SafeArrayGetLBound
0x4e94b8 SafeArrayGetElemsize
0x4e94bc SafeArrayGetDim
0x4e94c0 SafeArrayCreate
0x4e94c4 SafeArrayRedim
0x4e94c8 SysStringByteLen
0x4e94cc VarCyFromStr
0x4e94d0 VarBstrFromCy
0x4e94d4 VarDateFromStr
0x4e94d8 VarBstrFromDate
0x4e94dc SafeArrayCopy
0x4e94e0 SafeArrayAllocData
0x4e94e4 SafeArrayAllocDescriptor
0x4e94e8 SafeArrayGetElement
0x4e94ec SafeArrayPtrOfIndex
0x4e94f0 SafeArrayPutElement
0x4e94f4 SafeArrayLock
0x4e94f8 SafeArrayUnlock
0x4e94fc SafeArrayDestroy
0x4e9500 SafeArrayDestroyData
0x4e9504 SafeArrayDestroyDescriptor
WSOCK32.dll
0x4e9868 htons
0x4e986c connect
0x4e9870 sendto
0x4e9874 recvfrom
0x4e9878 socket
0x4e987c inet_ntoa
0x4e9880 WSAAsyncSelect
0x4e9884 send
0x4e9888 recv
0x4e988c gethostbyname
0x4e9890 shutdown
0x4e9894 htonl
0x4e9898 closesocket
0x4e989c ind
0x4e98a0 ioctlsocket
0x4e98a4 accept
0x4e98a8 getsockname
0x4e98ac getpeername
0x4e98b0 ntohs
0x4e98b4 inet_addr
0x4e98b8 WSAGetLastError
0x4e98bc WSASetLastError
0x4e98c0 WSAStartup
0x4e98c4 WSACleanup
EAT(Export Address Table) is none
SETUPAPI.dll
0x4e9514 SetupDiEnumDeviceInfo
0x4e9518 SetupDiGetDeviceRegistryPropertyA
0x4e951c SetupDiSetClassInstallParamsA
0x4e9520 SetupDiCallClassInstaller
0x4e9524 CM_Locate_DevNodeA
0x4e9528 CM_Remove_SubTree
0x4e952c CM_Get_Sibling
0x4e9530 CM_Get_Parent
0x4e9534 CM_Get_DevNode_Registry_PropertyA
0x4e9538 CM_Get_Child
0x4e953c SetupDiGetClassDevsA
0x4e9540 SetupDiEnumDeviceInterfaces
0x4e9544 SetupDiGetDeviceInterfaceDetailA
0x4e9548 SetupDiDestroyDeviceInfoList
KERNEL32.dll
0x4e91d4 TlsGetValue
0x4e91d8 GetProcessVersion
0x4e91dc GetCPInfo
0x4e91e0 GetOEMCP
0x4e91e4 GetFileSize
0x4e91e8 GetFileTime
0x4e91ec LocalFileTimeToFileTime
0x4e91f0 SystemTimeToFileTime
0x4e91f4 SetFileTime
0x4e91f8 SetFileAttributesA
0x4e91fc SetErrorMode
0x4e9200 lstrlenW
0x4e9204 GetCurrentDirectoryA
0x4e9208 GetTickCount
0x4e920c RtlUnwind
0x4e9210 HeapFree
0x4e9214 HeapAlloc
0x4e9218 ExitProcess
0x4e921c GetTimeFormatA
0x4e9220 GetDateFormatA
0x4e9224 GetSystemTimeAsFileTime
0x4e9228 GetCommandLineA
0x4e922c GetProcessHeap
0x4e9230 GetStartupInfoA
0x4e9234 RaiseException
0x4e9238 ExitThread
0x4e923c SetStdHandle
0x4e9240 GetFileType
0x4e9244 GetACP
0x4e9248 HeapReAlloc
0x4e924c HeapSize
0x4e9250 HeapDestroy
0x4e9254 HeapCreate
0x4e9258 VirtualFree
0x4e925c FatalAppExitA
0x4e9260 VirtualAlloc
0x4e9264 IsBadWritePtr
0x4e9268 GetTimeZoneInformation
0x4e926c VirtualProtect
0x4e9270 GetSystemInfo
0x4e9274 VirtualQuery
0x4e9278 GetStdHandle
0x4e927c UnhandledExceptionFilter
0x4e9280 FreeEnvironmentStringsA
0x4e9284 GetEnvironmentStrings
0x4e9288 FreeEnvironmentStringsW
0x4e928c GetEnvironmentStringsW
0x4e9290 SetHandleCount
0x4e9294 SetUnhandledExceptionFilter
0x4e9298 LCMapStringA
0x4e929c LCMapStringW
0x4e92a0 GetStringTypeA
0x4e92a4 GetStringTypeW
0x4e92a8 LocalReAlloc
0x4e92ac IsBadCodePtr
0x4e92b0 InterlockedExchange
0x4e92b4 GetUserDefaultLCID
0x4e92b8 GetLocaleInfoA
0x4e92bc EnumSystemLocalesA
0x4e92c0 IsValidLocale
0x4e92c4 IsValidCodePage
0x4e92c8 SetConsoleCtrlHandler
0x4e92cc GetLocaleInfoW
0x4e92d0 CompareStringA
0x4e92d4 CompareStringW
0x4e92d8 SetEnvironmentVariableA
0x4e92dc TlsSetValue
0x4e92e0 GetProfileStringA
0x4e92e4 CreateDirectoryA
0x4e92e8 lstrcpyA
0x4e92ec Sleep
0x4e92f0 WritePrivateProfileStringA
0x4e92f4 GetSystemDefaultLangID
0x4e92f8 GetLastError
0x4e92fc OutputDebugStringA
0x4e9300 CloseHandle
0x4e9304 SetCommState
0x4e9308 GetCommState
0x4e930c SetCommTimeouts
0x4e9310 GetCommTimeouts
0x4e9314 CreateFileA
0x4e9318 ReadFile
0x4e931c WriteFile
0x4e9320 SetThreadPriority
0x4e9324 CreateThread
0x4e9328 CreateEventA
0x4e932c SetPriorityClass
0x4e9330 GetCurrentProcess
0x4e9334 WaitForSingleObject
0x4e9338 SetEvent
0x4e933c ResetEvent
0x4e9340 FindClose
0x4e9344 FindNextFileA
0x4e9348 FindFirstFileA
0x4e934c SetCurrentDirectoryA
0x4e9350 GetPrivateProfileStringA
0x4e9354 GetPrivateProfileIntA
0x4e9358 CopyFileA
0x4e935c GetLocalTime
0x4e9360 DeleteFileA
0x4e9364 GetFileAttributesA
0x4e9368 GetProcAddress
0x4e936c GlobalUnlock
0x4e9370 GlobalLock
0x4e9374 GlobalAlloc
0x4e9378 GlobalSize
0x4e937c EnterCriticalSection
0x4e9380 GlobalReAlloc
0x4e9384 LeaveCriticalSection
0x4e9388 TlsFree
0x4e938c GlobalHandle
0x4e9390 DeleteCriticalSection
0x4e9394 TlsAlloc
0x4e9398 InitializeCriticalSection
0x4e939c SizeofResource
0x4e93a0 GlobalFlags
0x4e93a4 FileTimeToLocalFileTime
0x4e93a8 FileTimeToSystemTime
0x4e93ac GetCurrentThread
0x4e93b0 lstrcmpA
0x4e93b4 MulDiv
0x4e93b8 SetLastError
0x4e93bc GetShortPathNameA
0x4e93c0 GetThreadLocale
0x4e93c4 GetStringTypeExA
0x4e93c8 GetFullPathNameA
0x4e93cc lstrcpynA
0x4e93d0 GetVolumeInformationA
0x4e93d4 MoveFileA
0x4e93d8 SetEndOfFile
0x4e93dc UnlockFile
0x4e93e0 LockFile
0x4e93e4 FlushFileBuffers
0x4e93e8 SetFilePointer
0x4e93ec DuplicateHandle
0x4e93f0 FormatMessageA
0x4e93f4 SuspendThread
0x4e93f8 ResumeThread
0x4e93fc MultiByteToWideChar
0x4e9400 InterlockedDecrement
0x4e9404 InterlockedIncrement
0x4e9408 GetVersion
0x4e940c lstrcatA
0x4e9410 GetCurrentThreadId
0x4e9414 GlobalGetAtomNameA
0x4e9418 lstrcmpiA
0x4e941c GlobalAddAtomA
0x4e9420 GlobalFindAtomA
0x4e9424 GlobalDeleteAtom
0x4e9428 GetModuleHandleA
0x4e942c LockResource
0x4e9430 FindResourceA
0x4e9434 LoadResource
0x4e9438 LocalFree
0x4e943c LocalAlloc
0x4e9440 lstrlenA
0x4e9444 GlobalFree
0x4e9448 WideCharToMultiByte
0x4e944c GetSystemDirectoryA
0x4e9450 GetDriveTypeA
0x4e9454 GetModuleFileNameA
0x4e9458 GetVersionExA
0x4e945c DeviceIoControl
0x4e9460 GetExitCodeThread
0x4e9464 TerminateThread
0x4e9468 CreateProcessA
0x4e946c FreeLibrary
0x4e9470 LoadLibraryA
0x4e9474 IsBadReadPtr
USER32.dll
0x4e9578 GetNextDlgGroupItem
0x4e957c MessageBeep
0x4e9580 SetRectEmpty
0x4e9584 LoadAcceleratorsA
0x4e9588 TranslateAcceleratorA
0x4e958c LoadMenuA
0x4e9590 SetMenu
0x4e9594 ReuseDDElParam
0x4e9598 UnpackDDElParam
0x4e959c BringWindowToTop
0x4e95a0 PostThreadMessageA
0x4e95a4 DestroyIcon
0x4e95a8 GetDialogBaseUnits
0x4e95ac GetClassNameA
0x4e95b0 MapDialogRect
0x4e95b4 SetWindowContextHelpId
0x4e95b8 ShowOwnedPopups
0x4e95bc DestroyMenu
0x4e95c0 IsClipboardFormatAvailable
0x4e95c4 WaitMessage
0x4e95c8 LoadStringA
0x4e95cc WindowFromPoint
0x4e95d0 InflateRect
0x4e95d4 GrayStringA
0x4e95d8 TabbedTextOutA
0x4e95dc EndPaint
0x4e95e0 BeginPaint
0x4e95e4 GetWindowDC
0x4e95e8 ClientToScreen
0x4e95ec GetMessageA
0x4e95f0 TranslateMessage
0x4e95f4 ValidateRect
0x4e95f8 OemToCharA
0x4e95fc CharToOemA
0x4e9600 wvsprintfA
0x4e9604 GetMenuCheckMarkDimensions
0x4e9608 GetMenuState
0x4e960c ModifyMenuA
0x4e9610 SetMenuItemBitmaps
0x4e9614 CheckMenuItem
0x4e9618 EnableMenuItem
0x4e961c MoveWindow
0x4e9620 IsDialogMessageA
0x4e9624 ScrollWindowEx
0x4e9628 IsDlgButtonChecked
0x4e962c SetDlgItemInt
0x4e9630 GetDlgItemTextA
0x4e9634 GetDlgItemInt
0x4e9638 CheckRadioButton
0x4e963c CheckDlgButton
0x4e9640 SendDlgItemMessageA
0x4e9644 MapWindowPoints
0x4e9648 PeekMessageA
0x4e964c DispatchMessageA
0x4e9650 AdjustWindowRectEx
0x4e9654 EqualRect
0x4e9658 DeferWindowPos
0x4e965c BeginDeferWindowPos
0x4e9660 EndDeferWindowPos
0x4e9664 IsWindowVisible
0x4e9668 ScrollWindow
0x4e966c SetRect
0x4e9670 ShowScrollBar
0x4e9674 GetScrollRange
0x4e9678 SetScrollRange
0x4e967c GetScrollPos
0x4e9680 GetTopWindow
0x4e9684 IsChild
0x4e9688 GetCapture
0x4e968c WinHelpA
0x4e9690 GetClassInfoA
0x4e9694 RegisterClassA
0x4e9698 GetMenu
0x4e969c GetMenuItemCount
0x4e96a0 GetSubMenu
0x4e96a4 GetMenuItemID
0x4e96a8 TrackPopupMenu
0x4e96ac SetWindowPlacement
0x4e96b0 GetWindowTextLengthA
0x4e96b4 GetWindowTextA
0x4e96b8 GetDlgCtrlID
0x4e96bc DefWindowProcA
0x4e96c0 CallNextHookEx
0x4e96c4 GetClassLongA
0x4e96c8 SetPropA
0x4e96cc GetPropA
0x4e96d0 CallWindowProcA
0x4e96d4 RemovePropA
0x4e96d8 GetMessageTime
0x4e96dc GetMessagePos
0x4e96e0 GetLastActivePopup
0x4e96e4 GetForegroundWindow
0x4e96e8 SetForegroundWindow
0x4e96ec GetWindow
0x4e96f0 RegisterWindowMessageA
0x4e96f4 IntersectRect
0x4e96f8 SystemParametersInfoA
0x4e96fc GetWindowPlacement
0x4e9700 GetNextDlgTabItem
0x4e9704 EndDialog
0x4e9708 GetActiveWindow
0x4e970c SetTimer
0x4e9710 UnregisterClassA
0x4e9714 HideCaret
0x4e9718 ExcludeUpdateRgn
0x4e971c DefDlgProcA
0x4e9720 IsWindowUnicode
0x4e9724 KillTimer
0x4e9728 EnableWindow
0x4e972c SetActiveWindow
0x4e9730 CreateDialogIndirectParamA
0x4e9734 DestroyWindow
0x4e9738 IsWindowEnabled
0x4e973c CharUpperA
0x4e9740 GetWindowLongA
0x4e9744 SetWindowLongA
0x4e9748 ReleaseDC
0x4e974c CreateWindowExA
0x4e9750 MessageBoxA
0x4e9754 GetDesktopWindow
0x4e9758 ScreenToClient
0x4e975c GetCursorPos
0x4e9760 PostQuitMessage
0x4e9764 LoadImageA
0x4e9768 CopyAcceleratorTableA
0x4e976c CharNextA
0x4e9770 DeleteMenu
0x4e9774 GetWindowThreadProcessId
0x4e9778 RemoveMenu
0x4e977c GetMenuStringA
0x4e9780 InsertMenuA
0x4e9784 GetSysColorBrush
0x4e9788 GetScrollInfo
0x4e978c LoadCursorA
0x4e9790 GetDlgItem
0x4e9794 ShowWindow
0x4e9798 SetWindowPos
0x4e979c SetFocus
0x4e97a0 GetDC
0x4e97a4 SetWindowTextA
0x4e97a8 SetWindowsHookExA
0x4e97ac SetDlgItemTextA
0x4e97b0 UnhookWindowsHookEx
0x4e97b4 LoadIconA
0x4e97b8 IsIconic
0x4e97bc SendMessageA
0x4e97c0 GetSysColor
0x4e97c4 GetSystemMetrics
0x4e97c8 CopyRect
0x4e97cc FillRect
0x4e97d0 DrawFocusRect
0x4e97d4 RedrawWindow
0x4e97d8 GetWindowRect
0x4e97dc GetClientRect
0x4e97e0 UpdateWindow
0x4e97e4 InvalidateRect
0x4e97e8 GetFocus
0x4e97ec GetParent
0x4e97f0 LoadBitmapA
0x4e97f4 SetCursor
0x4e97f8 IsWindow
0x4e97fc OffsetRect
0x4e9800 wsprintfA
0x4e9804 GetKeyNameTextA
0x4e9808 DestroyCaret
0x4e980c SetScrollPos
0x4e9810 DragDetect
0x4e9814 EnableScrollBar
0x4e9818 SetScrollInfo
0x4e981c ReleaseCapture
0x4e9820 GetKeyState
0x4e9824 RegisterClipboardFormatA
0x4e9828 EmptyClipboard
0x4e982c PtInRect
0x4e9830 DrawTextA
0x4e9834 SetCapture
0x4e9838 CreateCaret
0x4e983c SetCaretPos
0x4e9840 ShowCaret
0x4e9844 DrawIcon
0x4e9848 AppendMenuA
0x4e984c GetSystemMenu
0x4e9850 PostMessageA
GDI32.dll
0x4e9068 RestoreDC
0x4e906c SelectPalette
0x4e9070 SetBkMode
0x4e9074 SetPolyFillMode
0x4e9078 SetROP2
0x4e907c SetStretchBltMode
0x4e9080 SetMapMode
0x4e9084 OffsetViewportOrgEx
0x4e9088 SetViewportExtEx
0x4e908c ScaleViewportExtEx
0x4e9090 SetWindowOrgEx
0x4e9094 OffsetWindowOrgEx
0x4e9098 SetWindowExtEx
0x4e909c ScaleWindowExtEx
0x4e90a0 SelectClipRgn
0x4e90a4 ExcludeClipRect
0x4e90a8 IntersectClipRect
0x4e90ac OffsetClipRgn
0x4e90b0 MoveToEx
0x4e90b4 LineTo
0x4e90b8 SetTextAlign
0x4e90bc SetTextJustification
0x4e90c0 SetTextCharacterExtra
0x4e90c4 SetMapperFlags
0x4e90c8 GetCurrentPositionEx
0x4e90cc ArcTo
0x4e90d0 SetArcDirection
0x4e90d4 PolyDraw
0x4e90d8 PolylineTo
0x4e90dc SetColorAdjustment
0x4e90e0 PolyBezierTo
0x4e90e4 SaveDC
0x4e90e8 CreateRectRgn
0x4e90ec SelectClipPath
0x4e90f0 ExtSelectClipRgn
0x4e90f4 PlayMetaFileRecord
0x4e90f8 GetObjectType
0x4e90fc EnumMetaFile
0x4e9100 PlayMetaFile
0x4e9104 GetDeviceCaps
0x4e9108 GetViewportExtEx
0x4e910c GetWindowExtEx
0x4e9110 ExtCreatePen
0x4e9114 CreateHatchBrush
0x4e9118 CreatePatternBrush
0x4e911c CreateDIBPatternBrushPt
0x4e9120 PtVisible
0x4e9124 RectVisible
0x4e9128 ExtTextOutA
0x4e912c Escape
0x4e9130 PatBlt
0x4e9134 CreateRectRgnIndirect
0x4e9138 GetMapMode
0x4e913c SetRectRgn
0x4e9140 CombineRgn
0x4e9144 DPtoLP
0x4e9148 GetTextMetricsA
0x4e914c CopyMetaFileA
0x4e9150 CreateDCA
0x4e9154 GetTextColor
0x4e9158 GetBkColor
0x4e915c LPtoDP
0x4e9160 StartDocA
0x4e9164 DeleteDC
0x4e9168 CreateBitmap
0x4e916c SetBkColor
0x4e9170 SetTextColor
0x4e9174 GetClipBox
0x4e9178 GetDCOrgEx
0x4e917c SetBoundsRect
0x4e9180 GetCharWidthA
0x4e9184 GetTextExtentPoint32A
0x4e9188 TextOutA
0x4e918c SelectObject
0x4e9190 CreateFontA
0x4e9194 CreateCompatibleBitmap
0x4e9198 GetViewportOrgEx
0x4e919c SetViewportOrgEx
0x4e91a0 DeleteObject
0x4e91a4 CreateSolidBrush
0x4e91a8 BitBlt
0x4e91ac CreateCompatibleDC
0x4e91b0 GetStockObject
0x4e91b4 Rectangle
0x4e91b8 GetObjectA
0x4e91bc CreateFontIndirectA
0x4e91c0 GetClipRgn
0x4e91c4 CreateDIBitmap
0x4e91c8 GetTextExtentPointA
0x4e91cc CreatePen
comdlg32.dll
0x4e98cc GetOpenFileNameA
0x4e98d0 GetFileTitleA
0x4e98d4 GetSaveFileNameA
WINSPOOL.DRV
0x4e9858 OpenPrinterA
0x4e985c ClosePrinter
0x4e9860 DocumentPropertiesA
ADVAPI32.dll
0x4e9000 RegEnumKeyA
0x4e9004 RegQueryValueExA
0x4e9008 RegOpenKeyExA
0x4e900c RegEnumKeyExA
0x4e9010 RegQueryInfoKeyA
0x4e9014 RegOpenKeyA
0x4e9018 RegSetValueA
0x4e901c RegCreateKeyExA
0x4e9020 RegSetValueExA
0x4e9024 RegDeleteValueA
0x4e9028 RegCreateKeyA
0x4e902c RegCloseKey
0x4e9030 RegQueryValueA
0x4e9034 RegDeleteKeyA
SHELL32.dll
0x4e9550 DragQueryFileA
0x4e9554 DragFinish
0x4e9558 SHGetFileInfoA
0x4e955c DragAcceptFiles
0x4e9560 SHBrowseForFolderA
0x4e9564 SHGetPathFromIDListA
0x4e9568 SHGetMalloc
0x4e956c ShellExecuteA
0x4e9570 ExtractIconA
COMCTL32.dll
0x4e903c _TrackMouseEvent
0x4e9040 None
0x4e9044 None
0x4e9048 None
0x4e904c ImageList_Destroy
0x4e9050 ImageList_Create
0x4e9054 ImageList_LoadImageA
0x4e9058 ImageList_Merge
0x4e905c ImageList_Read
0x4e9060 ImageList_Write
oledlg.dll
0x4e9964 None
ole32.dll
0x4e98dc CoTaskMemFree
0x4e98e0 OleSetClipboard
0x4e98e4 OleFlushClipboard
0x4e98e8 OleIsCurrentClipboard
0x4e98ec OleGetClipboard
0x4e98f0 CLSIDFromProgID
0x4e98f4 CLSIDFromString
0x4e98f8 CoDisconnectObject
0x4e98fc OleDuplicateData
0x4e9900 CoTaskMemAlloc
0x4e9904 CreateBindCtx
0x4e9908 SetConvertStg
0x4e990c WriteFmtUserTypeStg
0x4e9910 WriteClassStg
0x4e9914 OleRegGetUserType
0x4e9918 ReadFmtUserTypeStg
0x4e991c ReadClassStg
0x4e9920 StringFromCLSID
0x4e9924 CoTreatAsClass
0x4e9928 CreateStreamOnHGlobal
0x4e992c CoGetClassObject
0x4e9930 StgOpenStorageOnILockBytes
0x4e9934 StgCreateDocfileOnILockBytes
0x4e9938 CreateILockBytesOnHGlobal
0x4e993c CoCreateInstance
0x4e9940 OleRun
0x4e9944 OleInitialize
0x4e9948 OleUninitialize
0x4e994c CoFreeUnusedLibraries
0x4e9950 CoRegisterMessageFilter
0x4e9954 CoRegisterClassObject
0x4e9958 CoRevokeClassObject
0x4e995c ReleaseStgMedium
OLEPRO32.DLL
0x4e950c None
OLEAUT32.dll
0x4e947c SysFreeString
0x4e9480 SysAllocStringLen
0x4e9484 VariantClear
0x4e9488 VariantTimeToSystemTime
0x4e948c SysStringLen
0x4e9490 SysAllocStringByteLen
0x4e9494 VariantCopy
0x4e9498 VariantChangeType
0x4e949c SysReAllocStringLen
0x4e94a0 SysAllocString
0x4e94a4 SafeArrayUnaccessData
0x4e94a8 SafeArrayAccessData
0x4e94ac SafeArrayGetUBound
0x4e94b0 LoadTypeLib
0x4e94b4 SafeArrayGetLBound
0x4e94b8 SafeArrayGetElemsize
0x4e94bc SafeArrayGetDim
0x4e94c0 SafeArrayCreate
0x4e94c4 SafeArrayRedim
0x4e94c8 SysStringByteLen
0x4e94cc VarCyFromStr
0x4e94d0 VarBstrFromCy
0x4e94d4 VarDateFromStr
0x4e94d8 VarBstrFromDate
0x4e94dc SafeArrayCopy
0x4e94e0 SafeArrayAllocData
0x4e94e4 SafeArrayAllocDescriptor
0x4e94e8 SafeArrayGetElement
0x4e94ec SafeArrayPtrOfIndex
0x4e94f0 SafeArrayPutElement
0x4e94f4 SafeArrayLock
0x4e94f8 SafeArrayUnlock
0x4e94fc SafeArrayDestroy
0x4e9500 SafeArrayDestroyData
0x4e9504 SafeArrayDestroyDescriptor
WSOCK32.dll
0x4e9868 htons
0x4e986c connect
0x4e9870 sendto
0x4e9874 recvfrom
0x4e9878 socket
0x4e987c inet_ntoa
0x4e9880 WSAAsyncSelect
0x4e9884 send
0x4e9888 recv
0x4e988c gethostbyname
0x4e9890 shutdown
0x4e9894 htonl
0x4e9898 closesocket
0x4e989c ind
0x4e98a0 ioctlsocket
0x4e98a4 accept
0x4e98a8 getsockname
0x4e98ac getpeername
0x4e98b0 ntohs
0x4e98b4 inet_addr
0x4e98b8 WSAGetLastError
0x4e98bc WSASetLastError
0x4e98c0 WSAStartup
0x4e98c4 WSACleanup
EAT(Export Address Table) is none