ScreenShot
| Created | 2025.02.20 05:08 | Machine | s1_win7_x6401 |
| Filename | putty.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 2 detected (Metla, susgen) | ||
| md5 | 765bdc0f8bc0d77f7414e7a36ae45fd9 | ||
| sha256 | aa8f8a3e268493157e62d93ab9cafb94573606fe43a80e63e3e4f2e5c9b22a5b | ||
| ssdeep | 49152:rKha/+cyVQ15lPzJkSnQOYnwOiYlBA7KVO3QTmdQQ:rPJNoBUKkemdJ | ||
| imphash | 5f179977b2789a197ac1e0c160228fd4 | ||
| impfuzzy | 96:6q0b11thz/73OxfUvDESo8BX0oNjAxnmF6MpyhiObGyvR8ju55oRQSm2:6q411thz/73OxfUvDESF5/Nj6TmL | ||
Network IP location
Signature (8cnts)
| Level | Description |
|---|---|
| watch | Harvests credentials from local FTP client softwares |
| notice | Allocates read-write-execute memory (usually to unpack itself) |
| notice | File has been identified by 2 AntiVirus engines on VirusTotal as malicious |
| notice | The binary likely contains encrypted or compressed data indicative of a packer |
| info | Checks amount of memory in system |
| info | Checks if process is being debugged by a debugger |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
Rules (6cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
GDI32.dll
0x140126468 BitBlt
0x140126470 CreateBitmap
0x140126478 CreateCompatibleBitmap
0x140126480 CreateCompatibleDC
0x140126488 CreateFontA
0x140126490 CreateFontIndirectA
0x140126498 CreatePalette
0x1401264a0 CreatePen
0x1401264a8 CreateSolidBrush
0x1401264b0 DeleteDC
0x1401264b8 DeleteObject
0x1401264c0 ExcludeClipRect
0x1401264c8 ExtTextOutA
0x1401264d0 ExtTextOutW
0x1401264d8 GetBkMode
0x1401264e0 GetCharABCWidthsFloatA
0x1401264e8 GetCharWidth32A
0x1401264f0 GetCharWidth32W
0x1401264f8 GetCharWidthA
0x140126500 GetCharWidthW
0x140126508 GetCharacterPlacementW
0x140126510 GetCurrentObject
0x140126518 GetDIBits
0x140126520 GetDeviceCaps
0x140126528 GetObjectA
0x140126530 GetOutlineTextMetricsA
0x140126538 GetPixel
0x140126540 GetStockObject
0x140126548 GetTextExtentExPointA
0x140126550 GetTextExtentPoint32A
0x140126558 GetTextMetricsA
0x140126560 IntersectClipRect
0x140126568 LineTo
0x140126570 MoveToEx
0x140126578 Polyline
0x140126580 RealizePalette
0x140126588 Rectangle
0x140126590 SelectObject
0x140126598 SelectPalette
0x1401265a0 SetBkColor
0x1401265a8 SetBkMode
0x1401265b0 SetMapMode
0x1401265b8 SetPaletteEntries
0x1401265c0 SetPixel
0x1401265c8 SetTextAlign
0x1401265d0 SetTextColor
0x1401265d8 TextOutA
0x1401265e0 TranslateCharsetInfo
0x1401265e8 UnrealizeObject
0x1401265f0 UpdateColors
IMM32.dll
0x140126600 ImmGetCompositionStringW
0x140126608 ImmGetContext
0x140126610 ImmReleaseContext
0x140126618 ImmSetCompositionFontA
0x140126620 ImmSetCompositionWindow
ole32.dll
0x140126630 CoCreateInstance
0x140126638 CoInitialize
0x140126640 CoUninitialize
USER32.dll
0x140126650 AppendMenuA
0x140126658 BeginPaint
0x140126660 CheckDlgButton
0x140126668 CheckMenuItem
0x140126670 CheckRadioButton
0x140126678 CloseClipboard
0x140126680 CreateCaret
0x140126688 CreateDialogParamA
0x140126690 CreateMenu
0x140126698 CreatePopupMenu
0x1401266a0 CreateWindowExA
0x1401266a8 CreateWindowExW
0x1401266b0 DefDlgProcA
0x1401266b8 DefWindowProcA
0x1401266c0 DefWindowProcW
0x1401266c8 DeleteMenu
0x1401266d0 DestroyCaret
0x1401266d8 DestroyIcon
0x1401266e0 DestroyWindow
0x1401266e8 DialogBoxParamA
0x1401266f0 DispatchMessageA
0x1401266f8 DispatchMessageW
0x140126700 DrawEdge
0x140126708 DrawIconEx
0x140126710 EmptyClipboard
0x140126718 EnableMenuItem
0x140126720 EnableWindow
0x140126728 EndDialog
0x140126730 EndPaint
0x140126738 FindWindowA
0x140126740 FlashWindow
0x140126748 GetCapture
0x140126750 GetCaretBlinkTime
0x140126758 GetClientRect
0x140126760 GetClipboardData
0x140126768 GetClipboardOwner
0x140126770 GetCursorPos
0x140126778 GetDC
0x140126780 GetDesktopWindow
0x140126788 GetDlgItem
0x140126790 GetDlgItemTextA
0x140126798 GetDlgItemTextW
0x1401267a0 GetDoubleClickTime
0x1401267a8 GetForegroundWindow
0x1401267b0 GetKeyboardLayout
0x1401267b8 GetKeyboardState
0x1401267c0 GetMessageA
0x1401267c8 GetMessageTime
0x1401267d0 GetParent
0x1401267d8 GetQueueStatus
0x1401267e0 GetScrollInfo
0x1401267e8 GetSysColor
0x1401267f0 GetSysColorBrush
0x1401267f8 GetSystemMenu
0x140126800 GetSystemMetrics
0x140126808 GetWindowLongPtrA
0x140126810 GetWindowPlacement
0x140126818 GetWindowRect
0x140126820 GetWindowTextA
0x140126828 GetWindowTextLengthA
0x140126830 HideCaret
0x140126838 InsertMenuA
0x140126840 InvalidateRect
0x140126848 IsDialogMessageA
0x140126850 IsDlgButtonChecked
0x140126858 IsIconic
0x140126860 IsWindow
0x140126868 IsZoomed
0x140126870 KillTimer
0x140126878 LoadCursorA
0x140126880 LoadIconA
0x140126888 LoadImageA
0x140126890 MapDialogRect
0x140126898 MessageBeep
0x1401268a0 MessageBoxA
0x1401268a8 MessageBoxIndirectW
0x1401268b0 MoveWindow
0x1401268b8 MsgWaitForMultipleObjects
0x1401268c0 OffsetRect
0x1401268c8 OpenClipboard
0x1401268d0 PeekMessageA
0x1401268d8 PeekMessageW
0x1401268e0 PostMessageA
0x1401268e8 PostQuitMessage
0x1401268f0 RegisterClassA
0x1401268f8 RegisterClassW
0x140126900 RegisterClipboardFormatA
0x140126908 RegisterWindowMessageA
0x140126910 ReleaseCapture
0x140126918 ReleaseDC
0x140126920 ScreenToClient
0x140126928 SendDlgItemMessageA
0x140126930 SendMessageA
0x140126938 SetActiveWindow
0x140126940 SetCapture
0x140126948 SetCaretPos
0x140126950 SetClassLongPtrA
0x140126958 SetClipboardData
0x140126960 SetCursor
0x140126968 SetDlgItemTextA
0x140126970 SetDlgItemTextW
0x140126978 SetFocus
0x140126980 SetForegroundWindow
0x140126988 SetKeyboardState
0x140126990 SetScrollInfo
0x140126998 SetTimer
0x1401269a0 SetWindowLongPtrA
0x1401269a8 SetWindowPlacement
0x1401269b0 SetWindowPos
0x1401269b8 SetWindowTextA
0x1401269c0 SetWindowTextW
0x1401269c8 ShowCaret
0x1401269d0 ShowCursor
0x1401269d8 ShowWindow
0x1401269e0 SystemParametersInfoA
0x1401269e8 ToAsciiEx
0x1401269f0 TrackPopupMenu
0x1401269f8 TranslateMessage
0x140126a00 UpdateWindow
KERNEL32.dll
0x140126a10 Beep
0x140126a18 ClearCommBreak
0x140126a20 CloseHandle
0x140126a28 CompareStringW
0x140126a30 ConnectNamedPipe
0x140126a38 CreateEventA
0x140126a40 CreateFileA
0x140126a48 CreateFileMappingA
0x140126a50 CreateFileW
0x140126a58 CreateMutexA
0x140126a60 CreateNamedPipeA
0x140126a68 CreatePipe
0x140126a70 CreateProcessA
0x140126a78 CreateThread
0x140126a80 DeleteCriticalSection
0x140126a88 DeleteFileA
0x140126a90 EncodePointer
0x140126a98 EnterCriticalSection
0x140126aa0 EnumSystemLocalesW
0x140126aa8 ExitProcess
0x140126ab0 FindClose
0x140126ab8 FindFirstFileA
0x140126ac0 FindFirstFileExW
0x140126ac8 FindFirstFileW
0x140126ad0 FindNextFileA
0x140126ad8 FindNextFileW
0x140126ae0 FindResourceA
0x140126ae8 FlsAlloc
0x140126af0 FlsFree
0x140126af8 FlsGetValue
0x140126b00 FlsSetValue
0x140126b08 FlushFileBuffers
0x140126b10 FormatMessageA
0x140126b18 FreeEnvironmentStringsW
0x140126b20 FreeLibrary
0x140126b28 GetACP
0x140126b30 GetCPInfo
0x140126b38 GetCommState
0x140126b40 GetCommandLineA
0x140126b48 GetCommandLineW
0x140126b50 GetConsoleMode
0x140126b58 GetConsoleOutputCP
0x140126b60 GetCurrentDirectoryW
0x140126b68 GetCurrentProcess
0x140126b70 GetCurrentProcessId
0x140126b78 GetCurrentThread
0x140126b80 GetCurrentThreadId
0x140126b88 GetDateFormatW
0x140126b90 GetEnvironmentStringsW
0x140126b98 GetEnvironmentVariableA
0x140126ba0 GetFileSizeEx
0x140126ba8 GetFileType
0x140126bb0 GetLastError
0x140126bb8 GetLocalTime
0x140126bc0 GetLocaleInfoA
0x140126bc8 GetLocaleInfoW
0x140126bd0 GetModuleFileNameA
0x140126bd8 GetModuleFileNameW
0x140126be0 GetModuleHandleExW
0x140126be8 GetModuleHandleW
0x140126bf0 GetOEMCP
0x140126bf8 GetOverlappedResult
0x140126c00 GetProcAddress
0x140126c08 GetProcessHeap
0x140126c10 GetProcessTimes
0x140126c18 GetStartupInfoW
0x140126c20 GetStdHandle
0x140126c28 GetStringTypeW
0x140126c30 GetSystemDirectoryA
0x140126c38 GetSystemTimeAsFileTime
0x140126c40 GetTempPathA
0x140126c48 GetThreadTimes
0x140126c50 GetTickCount
0x140126c58 GetTimeFormatW
0x140126c60 GetTimeZoneInformation
0x140126c68 GetUserDefaultLCID
0x140126c70 GetWindowsDirectoryA
0x140126c78 GlobalAlloc
0x140126c80 GlobalFree
0x140126c88 GlobalLock
0x140126c90 GlobalMemoryStatus
0x140126c98 GlobalUnlock
0x140126ca0 HeapAlloc
0x140126ca8 HeapFree
0x140126cb0 HeapReAlloc
0x140126cb8 HeapSize
0x140126cc0 InitializeCriticalSection
0x140126cc8 InitializeCriticalSectionAndSpinCount
0x140126cd0 InitializeSListHead
0x140126cd8 IsDBCSLeadByteEx
0x140126ce0 IsDebuggerPresent
0x140126ce8 IsProcessorFeaturePresent
0x140126cf0 IsValidCodePage
0x140126cf8 IsValidLocale
0x140126d00 LCMapStringW
0x140126d08 LeaveCriticalSection
0x140126d10 LoadLibraryA
0x140126d18 LoadLibraryExA
0x140126d20 LoadLibraryExW
0x140126d28 LoadResource
0x140126d30 LocalAlloc
0x140126d38 LocalFileTimeToFileTime
0x140126d40 LocalFree
0x140126d48 LockResource
0x140126d50 MapViewOfFile
0x140126d58 MulDiv
0x140126d60 MultiByteToWideChar
0x140126d68 OpenProcess
0x140126d70 OutputDebugStringW
0x140126d78 QueryPerformanceCounter
0x140126d80 RaiseException
0x140126d88 ReadConsoleW
0x140126d90 ReadFile
0x140126d98 ReleaseMutex
0x140126da0 RtlCaptureContext
0x140126da8 RtlLookupFunctionEntry
0x140126db0 RtlPcToFileHeader
0x140126db8 RtlUnwind
0x140126dc0 RtlUnwindEx
0x140126dc8 RtlVirtualUnwind
0x140126dd0 SetCommBreak
0x140126dd8 SetCommState
0x140126de0 SetCommTimeouts
0x140126de8 SetCurrentDirectoryW
0x140126df0 SetEndOfFile
0x140126df8 SetEnvironmentVariableW
0x140126e00 SetEvent
0x140126e08 SetFilePointerEx
0x140126e10 SetHandleInformation
0x140126e18 SetLastError
0x140126e20 SetStdHandle
0x140126e28 SetUnhandledExceptionFilter
0x140126e30 SizeofResource
0x140126e38 TerminateProcess
0x140126e40 TlsAlloc
0x140126e48 TlsFree
0x140126e50 TlsGetValue
0x140126e58 TlsSetValue
0x140126e60 UnhandledExceptionFilter
0x140126e68 UnmapViewOfFile
0x140126e70 WaitForSingleObject
0x140126e78 WaitNamedPipeA
0x140126e80 WideCharToMultiByte
0x140126e88 WriteConsoleW
0x140126e90 WriteFile
SHELL32.dll
0x140126ea0 ShellExecuteA
COMDLG32.dll
0x140126eb0 ChooseColorA
0x140126eb8 ChooseFontA
0x140126ec0 GetOpenFileNameW
0x140126ec8 GetSaveFileNameW
ADVAPI32.dll
0x140126ed8 AllocateAndInitializeSid
0x140126ee0 CopySid
0x140126ee8 EqualSid
0x140126ef0 GetLengthSid
0x140126ef8 GetUserNameA
0x140126f00 InitializeSecurityDescriptor
0x140126f08 RegCloseKey
0x140126f10 RegCreateKeyExA
0x140126f18 RegDeleteKeyA
0x140126f20 RegEnumKeyA
0x140126f28 RegOpenKeyExA
0x140126f30 RegQueryValueExA
0x140126f38 RegSetValueExA
0x140126f40 SetSecurityDescriptorDacl
0x140126f48 SetSecurityDescriptorOwner
EAT(Export Address Table) is none
GDI32.dll
0x140126468 BitBlt
0x140126470 CreateBitmap
0x140126478 CreateCompatibleBitmap
0x140126480 CreateCompatibleDC
0x140126488 CreateFontA
0x140126490 CreateFontIndirectA
0x140126498 CreatePalette
0x1401264a0 CreatePen
0x1401264a8 CreateSolidBrush
0x1401264b0 DeleteDC
0x1401264b8 DeleteObject
0x1401264c0 ExcludeClipRect
0x1401264c8 ExtTextOutA
0x1401264d0 ExtTextOutW
0x1401264d8 GetBkMode
0x1401264e0 GetCharABCWidthsFloatA
0x1401264e8 GetCharWidth32A
0x1401264f0 GetCharWidth32W
0x1401264f8 GetCharWidthA
0x140126500 GetCharWidthW
0x140126508 GetCharacterPlacementW
0x140126510 GetCurrentObject
0x140126518 GetDIBits
0x140126520 GetDeviceCaps
0x140126528 GetObjectA
0x140126530 GetOutlineTextMetricsA
0x140126538 GetPixel
0x140126540 GetStockObject
0x140126548 GetTextExtentExPointA
0x140126550 GetTextExtentPoint32A
0x140126558 GetTextMetricsA
0x140126560 IntersectClipRect
0x140126568 LineTo
0x140126570 MoveToEx
0x140126578 Polyline
0x140126580 RealizePalette
0x140126588 Rectangle
0x140126590 SelectObject
0x140126598 SelectPalette
0x1401265a0 SetBkColor
0x1401265a8 SetBkMode
0x1401265b0 SetMapMode
0x1401265b8 SetPaletteEntries
0x1401265c0 SetPixel
0x1401265c8 SetTextAlign
0x1401265d0 SetTextColor
0x1401265d8 TextOutA
0x1401265e0 TranslateCharsetInfo
0x1401265e8 UnrealizeObject
0x1401265f0 UpdateColors
IMM32.dll
0x140126600 ImmGetCompositionStringW
0x140126608 ImmGetContext
0x140126610 ImmReleaseContext
0x140126618 ImmSetCompositionFontA
0x140126620 ImmSetCompositionWindow
ole32.dll
0x140126630 CoCreateInstance
0x140126638 CoInitialize
0x140126640 CoUninitialize
USER32.dll
0x140126650 AppendMenuA
0x140126658 BeginPaint
0x140126660 CheckDlgButton
0x140126668 CheckMenuItem
0x140126670 CheckRadioButton
0x140126678 CloseClipboard
0x140126680 CreateCaret
0x140126688 CreateDialogParamA
0x140126690 CreateMenu
0x140126698 CreatePopupMenu
0x1401266a0 CreateWindowExA
0x1401266a8 CreateWindowExW
0x1401266b0 DefDlgProcA
0x1401266b8 DefWindowProcA
0x1401266c0 DefWindowProcW
0x1401266c8 DeleteMenu
0x1401266d0 DestroyCaret
0x1401266d8 DestroyIcon
0x1401266e0 DestroyWindow
0x1401266e8 DialogBoxParamA
0x1401266f0 DispatchMessageA
0x1401266f8 DispatchMessageW
0x140126700 DrawEdge
0x140126708 DrawIconEx
0x140126710 EmptyClipboard
0x140126718 EnableMenuItem
0x140126720 EnableWindow
0x140126728 EndDialog
0x140126730 EndPaint
0x140126738 FindWindowA
0x140126740 FlashWindow
0x140126748 GetCapture
0x140126750 GetCaretBlinkTime
0x140126758 GetClientRect
0x140126760 GetClipboardData
0x140126768 GetClipboardOwner
0x140126770 GetCursorPos
0x140126778 GetDC
0x140126780 GetDesktopWindow
0x140126788 GetDlgItem
0x140126790 GetDlgItemTextA
0x140126798 GetDlgItemTextW
0x1401267a0 GetDoubleClickTime
0x1401267a8 GetForegroundWindow
0x1401267b0 GetKeyboardLayout
0x1401267b8 GetKeyboardState
0x1401267c0 GetMessageA
0x1401267c8 GetMessageTime
0x1401267d0 GetParent
0x1401267d8 GetQueueStatus
0x1401267e0 GetScrollInfo
0x1401267e8 GetSysColor
0x1401267f0 GetSysColorBrush
0x1401267f8 GetSystemMenu
0x140126800 GetSystemMetrics
0x140126808 GetWindowLongPtrA
0x140126810 GetWindowPlacement
0x140126818 GetWindowRect
0x140126820 GetWindowTextA
0x140126828 GetWindowTextLengthA
0x140126830 HideCaret
0x140126838 InsertMenuA
0x140126840 InvalidateRect
0x140126848 IsDialogMessageA
0x140126850 IsDlgButtonChecked
0x140126858 IsIconic
0x140126860 IsWindow
0x140126868 IsZoomed
0x140126870 KillTimer
0x140126878 LoadCursorA
0x140126880 LoadIconA
0x140126888 LoadImageA
0x140126890 MapDialogRect
0x140126898 MessageBeep
0x1401268a0 MessageBoxA
0x1401268a8 MessageBoxIndirectW
0x1401268b0 MoveWindow
0x1401268b8 MsgWaitForMultipleObjects
0x1401268c0 OffsetRect
0x1401268c8 OpenClipboard
0x1401268d0 PeekMessageA
0x1401268d8 PeekMessageW
0x1401268e0 PostMessageA
0x1401268e8 PostQuitMessage
0x1401268f0 RegisterClassA
0x1401268f8 RegisterClassW
0x140126900 RegisterClipboardFormatA
0x140126908 RegisterWindowMessageA
0x140126910 ReleaseCapture
0x140126918 ReleaseDC
0x140126920 ScreenToClient
0x140126928 SendDlgItemMessageA
0x140126930 SendMessageA
0x140126938 SetActiveWindow
0x140126940 SetCapture
0x140126948 SetCaretPos
0x140126950 SetClassLongPtrA
0x140126958 SetClipboardData
0x140126960 SetCursor
0x140126968 SetDlgItemTextA
0x140126970 SetDlgItemTextW
0x140126978 SetFocus
0x140126980 SetForegroundWindow
0x140126988 SetKeyboardState
0x140126990 SetScrollInfo
0x140126998 SetTimer
0x1401269a0 SetWindowLongPtrA
0x1401269a8 SetWindowPlacement
0x1401269b0 SetWindowPos
0x1401269b8 SetWindowTextA
0x1401269c0 SetWindowTextW
0x1401269c8 ShowCaret
0x1401269d0 ShowCursor
0x1401269d8 ShowWindow
0x1401269e0 SystemParametersInfoA
0x1401269e8 ToAsciiEx
0x1401269f0 TrackPopupMenu
0x1401269f8 TranslateMessage
0x140126a00 UpdateWindow
KERNEL32.dll
0x140126a10 Beep
0x140126a18 ClearCommBreak
0x140126a20 CloseHandle
0x140126a28 CompareStringW
0x140126a30 ConnectNamedPipe
0x140126a38 CreateEventA
0x140126a40 CreateFileA
0x140126a48 CreateFileMappingA
0x140126a50 CreateFileW
0x140126a58 CreateMutexA
0x140126a60 CreateNamedPipeA
0x140126a68 CreatePipe
0x140126a70 CreateProcessA
0x140126a78 CreateThread
0x140126a80 DeleteCriticalSection
0x140126a88 DeleteFileA
0x140126a90 EncodePointer
0x140126a98 EnterCriticalSection
0x140126aa0 EnumSystemLocalesW
0x140126aa8 ExitProcess
0x140126ab0 FindClose
0x140126ab8 FindFirstFileA
0x140126ac0 FindFirstFileExW
0x140126ac8 FindFirstFileW
0x140126ad0 FindNextFileA
0x140126ad8 FindNextFileW
0x140126ae0 FindResourceA
0x140126ae8 FlsAlloc
0x140126af0 FlsFree
0x140126af8 FlsGetValue
0x140126b00 FlsSetValue
0x140126b08 FlushFileBuffers
0x140126b10 FormatMessageA
0x140126b18 FreeEnvironmentStringsW
0x140126b20 FreeLibrary
0x140126b28 GetACP
0x140126b30 GetCPInfo
0x140126b38 GetCommState
0x140126b40 GetCommandLineA
0x140126b48 GetCommandLineW
0x140126b50 GetConsoleMode
0x140126b58 GetConsoleOutputCP
0x140126b60 GetCurrentDirectoryW
0x140126b68 GetCurrentProcess
0x140126b70 GetCurrentProcessId
0x140126b78 GetCurrentThread
0x140126b80 GetCurrentThreadId
0x140126b88 GetDateFormatW
0x140126b90 GetEnvironmentStringsW
0x140126b98 GetEnvironmentVariableA
0x140126ba0 GetFileSizeEx
0x140126ba8 GetFileType
0x140126bb0 GetLastError
0x140126bb8 GetLocalTime
0x140126bc0 GetLocaleInfoA
0x140126bc8 GetLocaleInfoW
0x140126bd0 GetModuleFileNameA
0x140126bd8 GetModuleFileNameW
0x140126be0 GetModuleHandleExW
0x140126be8 GetModuleHandleW
0x140126bf0 GetOEMCP
0x140126bf8 GetOverlappedResult
0x140126c00 GetProcAddress
0x140126c08 GetProcessHeap
0x140126c10 GetProcessTimes
0x140126c18 GetStartupInfoW
0x140126c20 GetStdHandle
0x140126c28 GetStringTypeW
0x140126c30 GetSystemDirectoryA
0x140126c38 GetSystemTimeAsFileTime
0x140126c40 GetTempPathA
0x140126c48 GetThreadTimes
0x140126c50 GetTickCount
0x140126c58 GetTimeFormatW
0x140126c60 GetTimeZoneInformation
0x140126c68 GetUserDefaultLCID
0x140126c70 GetWindowsDirectoryA
0x140126c78 GlobalAlloc
0x140126c80 GlobalFree
0x140126c88 GlobalLock
0x140126c90 GlobalMemoryStatus
0x140126c98 GlobalUnlock
0x140126ca0 HeapAlloc
0x140126ca8 HeapFree
0x140126cb0 HeapReAlloc
0x140126cb8 HeapSize
0x140126cc0 InitializeCriticalSection
0x140126cc8 InitializeCriticalSectionAndSpinCount
0x140126cd0 InitializeSListHead
0x140126cd8 IsDBCSLeadByteEx
0x140126ce0 IsDebuggerPresent
0x140126ce8 IsProcessorFeaturePresent
0x140126cf0 IsValidCodePage
0x140126cf8 IsValidLocale
0x140126d00 LCMapStringW
0x140126d08 LeaveCriticalSection
0x140126d10 LoadLibraryA
0x140126d18 LoadLibraryExA
0x140126d20 LoadLibraryExW
0x140126d28 LoadResource
0x140126d30 LocalAlloc
0x140126d38 LocalFileTimeToFileTime
0x140126d40 LocalFree
0x140126d48 LockResource
0x140126d50 MapViewOfFile
0x140126d58 MulDiv
0x140126d60 MultiByteToWideChar
0x140126d68 OpenProcess
0x140126d70 OutputDebugStringW
0x140126d78 QueryPerformanceCounter
0x140126d80 RaiseException
0x140126d88 ReadConsoleW
0x140126d90 ReadFile
0x140126d98 ReleaseMutex
0x140126da0 RtlCaptureContext
0x140126da8 RtlLookupFunctionEntry
0x140126db0 RtlPcToFileHeader
0x140126db8 RtlUnwind
0x140126dc0 RtlUnwindEx
0x140126dc8 RtlVirtualUnwind
0x140126dd0 SetCommBreak
0x140126dd8 SetCommState
0x140126de0 SetCommTimeouts
0x140126de8 SetCurrentDirectoryW
0x140126df0 SetEndOfFile
0x140126df8 SetEnvironmentVariableW
0x140126e00 SetEvent
0x140126e08 SetFilePointerEx
0x140126e10 SetHandleInformation
0x140126e18 SetLastError
0x140126e20 SetStdHandle
0x140126e28 SetUnhandledExceptionFilter
0x140126e30 SizeofResource
0x140126e38 TerminateProcess
0x140126e40 TlsAlloc
0x140126e48 TlsFree
0x140126e50 TlsGetValue
0x140126e58 TlsSetValue
0x140126e60 UnhandledExceptionFilter
0x140126e68 UnmapViewOfFile
0x140126e70 WaitForSingleObject
0x140126e78 WaitNamedPipeA
0x140126e80 WideCharToMultiByte
0x140126e88 WriteConsoleW
0x140126e90 WriteFile
SHELL32.dll
0x140126ea0 ShellExecuteA
COMDLG32.dll
0x140126eb0 ChooseColorA
0x140126eb8 ChooseFontA
0x140126ec0 GetOpenFileNameW
0x140126ec8 GetSaveFileNameW
ADVAPI32.dll
0x140126ed8 AllocateAndInitializeSid
0x140126ee0 CopySid
0x140126ee8 EqualSid
0x140126ef0 GetLengthSid
0x140126ef8 GetUserNameA
0x140126f00 InitializeSecurityDescriptor
0x140126f08 RegCloseKey
0x140126f10 RegCreateKeyExA
0x140126f18 RegDeleteKeyA
0x140126f20 RegEnumKeyA
0x140126f28 RegOpenKeyExA
0x140126f30 RegQueryValueExA
0x140126f38 RegSetValueExA
0x140126f40 SetSecurityDescriptorDacl
0x140126f48 SetSecurityDescriptorOwner
EAT(Export Address Table) is none