ScreenShot
| Created | 2025.04.30 13:07 | Machine | s1_win7_x6401 |
| Filename | pussy.html | ||
| Type | PE32 executable (GUI) Intel 80386, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : clean | ||
| VT API (file) | 18 detected (AIDetectMalware, V8k0, malicious, confidence, Attribute, HighConfidence, high confidence, Lumma, CLOUD, DwnLd, Detected, LummaStealer, Artemis) | ||
| md5 | 1c8e5ffccf0b17edd12c67e4bda1a876 | ||
| sha256 | 8ae4be75ecf05d541ff0bebafa27963253e4f554f819754869bd26933c2f8941 | ||
| ssdeep | 6144:/GUskdKGfkGauwVzGUskdKGfkGauwVSGUskdKGfkGauwVvGUskdKGfkGauwVEGUK:/SoJlQSoJl7SoJlySoJlhSoJl | ||
| imphash | d56b65904985aeb9d3287a9b15bda35a | ||
| impfuzzy | 192:F2qhMWUIUEoKI3XT2alrZJQp1RS2EMefCNp2VqV4WbBurCfPcxEa:wneoT3XTLlrZJQ8zG47H | ||
Network IP location
Signature (4cnts)
| Level | Description |
|---|---|
| watch | File has been identified by 18 AntiVirus engines on VirusTotal as malicious |
| info | The executable contains unknown PE section names indicative of a packer (could be a false positive) |
| info | The file contains an unknown PE resource name possibly indicative of a packer |
| info | This executable has a PDB path |
Rules (7cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| danger | Win32_Trojan_Gen_1_0904B0_Zero | Win32 Trojan Emotet | binaries (upload) |
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE32 | (no description) | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
ADVAPI32.dll
0x414000 EventUnregister
0x414004 EventRegister
0x414008 CheckTokenMembership
0x41400c FreeSid
0x414010 AllocateAndInitializeSid
0x414014 TraceMessage
0x414018 RegGetValueW
0x41401c RegEnumValueW
0x414020 RegDeleteTreeW
0x414024 RegLoadMUIStringW
0x414028 ConvertSidToStringSidW
0x41402c GetTokenInformation
0x414030 OpenProcessToken
0x414034 RegCreateKeyExW
0x414038 RegQueryValueExW
0x41403c RegEnumKeyExW
0x414040 RegCloseKey
0x414044 EventWriteTransfer
0x414048 EventSetInformation
0x41404c RegSetValueExW
0x414050 RegOpenKeyExW
KERNEL32.dll
0x4142c4 HeapSize
0x4142c8 HeapReAlloc
0x4142cc VirtualQuery
0x4142d0 GetSystemInfo
0x4142d4 AcquireSRWLockExclusive
0x4142d8 HeapSetInformation
0x4142dc RaiseException
0x4142e0 ReleaseSRWLockExclusive
0x4142e4 LoadLibraryExA
0x4142e8 VirtualProtect
0x4142ec OOBEComplete
0x4142f0 IsProcessInJob
0x4142f4 OpenJobObjectW
0x4142f8 FreeLibrary
0x4142fc HeapAlloc
0x414300 GetProcessHeap
0x414304 GetProductInfo
0x414308 IsDebuggerPresent
0x41430c CreateMutexExW
0x414310 OpenSemaphoreW
0x414314 WaitForSingleObjectEx
0x414318 InitOnceComplete
0x41431c OutputDebugStringW
0x414320 ReleaseMutex
0x414324 WaitForSingleObject
0x414328 ReleaseSemaphore
0x41432c CreateSemaphoreExW
0x414330 InitOnceBeginInitialize
0x414334 K32GetModuleBaseNameW
0x414338 K32EnumProcessModules
0x41433c ProcessIdToSessionId
0x414340 K32EnumProcesses
0x414344 DeleteFileW
0x414348 GetFileAttributesW
0x41434c DeleteProcThreadAttributeList
0x414350 CreateProcessW
0x414354 UpdateProcThreadAttribute
0x414358 InitializeProcThreadAttributeList
0x41435c OpenProcess
0x414360 SetLastError
0x414364 GetProcAddress
0x414368 DebugBreak
0x41436c GetModuleFileNameA
0x414370 GetModuleHandleExW
0x414374 FormatMessageW
0x414378 LocalFree
0x41437c GetThreadUILanguage
0x414380 MulDiv
0x414384 OpenMutexW
0x414388 VirtualFreeEx
0x41438c ReadProcessMemory
0x414390 VirtualAllocEx
0x414394 GetThreadPreferredUILanguages
0x414398 CompareStringOrdinal
0x41439c GetLocaleInfoEx
0x4143a0 ExpandEnvironmentStringsW
0x4143a4 TerminateProcess
0x4143a8 GetCurrentProcess
0x4143ac UnhandledExceptionFilter
0x4143b0 GetTickCount
0x4143b4 GetSystemTimeAsFileTime
0x4143b8 GetCurrentThreadId
0x4143bc GetCurrentProcessId
0x4143c0 QueryPerformanceCounter
0x4143c4 GetModuleHandleW
0x4143c8 SetUnhandledExceptionFilter
0x4143cc GetStartupInfoW
0x4143d0 Sleep
0x4143d4 LeaveCriticalSection
0x4143d8 EnterCriticalSection
0x4143dc DeleteCriticalSection
0x4143e0 SizeofResource
0x4143e4 InitializeCriticalSection
0x4143e8 HeapDestroy
0x4143ec CreateMutexW
0x4143f0 LoadResource
0x4143f4 FindResourceExW
0x4143f8 CloseHandle
0x4143fc LockResource
0x414400 GetLastError
0x414404 MultiByteToWideChar
0x414408 HeapFree
USER32.dll
0x414430 SetWindowTextW
0x414434 MessageBoxW
0x414438 LoadStringW
0x41443c SystemParametersInfoW
0x414440 SetWindowPos
0x414444 LoadIconW
0x414448 SetDesktopColorTransform
0x41444c SendNotifyMessageW
0x414450 GetWindowThreadProcessId
0x414454 GetShellWindow
0x414458 GetKeyState
0x41445c SendInput
0x414460 SendMessageW
0x414464 GetSystemMetrics
0x414468 GetThreadDesktop
0x41446c SetTimer
0x414470 IsProcessDPIAware
0x414474 FindWindowW
0x414478 LoadCursorW
0x41447c SetCursor
0x414480 GetUserObjectInformationW
0x414484 KillTimer
0x414488 GetAncestor
0x41448c UnregisterClassA
msvcrt.dll
0x4144a4 ?terminate@@YAXXZ
0x4144a8 _controlfp
0x4144ac ??1type_info@@UAE@XZ
0x4144b0 _ltow_s
0x4144b4 _wcslwr_s
0x4144b8 wcscspn
0x4144bc wcsspn
0x4144c0 wcsrchr
0x4144c4 _unlock
0x4144c8 _lock
0x4144cc __CxxFrameHandler3
0x4144d0 _wcmdln
0x4144d4 _initterm
0x4144d8 __setusermatherr
0x4144dc __p__fmode
0x4144e0 _cexit
0x4144e4 exit
0x4144e8 __set_app_type
0x4144ec __wgetmainargs
0x4144f0 _amsg_exit
0x4144f4 __p__commode
0x4144f8 _XcptFilter
0x4144fc calloc
0x414500 memmove_s
0x414504 _callnewh
0x414508 malloc
0x41450c free
0x414510 _wtoi
0x414514 wcschr
0x414518 _vsnwprintf
0x41451c wcsstr
0x414520 _wcsicmp
0x414524 _except_handler4_common
0x414528 _onexit
0x41452c _exit
0x414530 __dllonexit
0x414534 memcpy_s
0x414538 _purecall
0x41453c memset
ntdll.dll
0x414544 WinSqmIncrementDWORD
0x414548 NtQueryWnfStateData
0x41454c WinSqmIsOptedIn
0x414550 WinSqmAddToStream
OLEACC.dll
0x414410 GetProcessHandleFromHwnd
0x414414 AccessibleObjectFromWindow
ole32.dll
0x414558 CoUninitialize
0x41455c CoCreateInstance
0x414560 CoInitialize
api-ms-win-core-winrt-error-l1-1-0.dll
0x414494 SetRestrictedErrorInfo
api-ms-win-core-winrt-error-l1-1-1.dll
0x41449c RoGetMatchingRestrictedErrorInfo
COMCTL32.dll
0x414058 None
SHELL32.dll
0x414428 ShellExecuteW
DUser.dll
0x4142bc InvalidateGadget
SHCORE.dll
0x41441c None
0x414420 IsProcessInIsolatedContainer
DUI70.dll
0x414060 ?GetValue@Element@DirectUI@@QAEPAVValue@2@P6GPBUPropertyInfo@2@XZHPAUUpdateCache@2@@Z
0x414064 ?RemoveListener@Element@DirectUI@@QAEXPAUIElementListener@2@@Z
0x414068 ?CustomProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
0x41406c ?GetContentString@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z
0x414070 ?GetOnText@TouchSwitch@DirectUI@@QAEPBGPAPAVValue@2@@Z
0x414074 ?GetOffText@TouchSwitch@DirectUI@@QAEPBGPAPAVValue@2@@Z
0x414078 ?Release@Value@DirectUI@@QAEXXZ
0x41407c ??1CritSecLock@DirectUI@@QAE@XZ
0x414080 ?UpdateTooltip@Element@DirectUI@@MAEXPAV12@@Z
0x414084 ?ActivateTooltip@Element@DirectUI@@MAEXPAV12@K@Z
0x414088 ?RemoveTooltip@Element@DirectUI@@MAEXPAV12@@Z
0x41408c ?GetChildren@Element@DirectUI@@QAEPAV?$DynamicArray@PAVElement@DirectUI@@$0A@@2@PAPAVValue@2@@Z
0x414090 ?SetActive@Element@DirectUI@@QAEJH@Z
0x414094 ?Create@DUIXmlParser@DirectUI@@SGJPAPAV12@P6GPAVValue@2@PBGPAX@Z2P6GX11H2@Z2@Z
0x414098 ?Destroy@DUIXmlParser@DirectUI@@QAEXXZ
0x41409c ?SetXMLFromResource@DUIXmlParser@DirectUI@@QAEJIPAUHINSTANCE__@@0@Z
0x4140a0 ?CreateElement@DUIXmlParser@DirectUI@@QAEJPBGPAVElement@2@1PAKPAPAV32@@Z
0x4140a4 ??0ClassInfoBase@DirectUI@@QAE@XZ
0x4140a8 ??1ClassInfoBase@DirectUI@@UAE@XZ
0x4140ac ?Initialize@ClassInfoBase@DirectUI@@QAEJPAUHINSTANCE__@@PBG_NPBQBUPropertyInfo@2@I@Z
0x4140b0 ?Register@ClassInfoBase@DirectUI@@QAEJXZ
0x4140b4 ?GetUnset@Value@DirectUI@@SGPAV12@XZ
0x4140b8 ?AddRef@ClassInfoBase@DirectUI@@UAEXXZ
0x4140bc ?Release@ClassInfoBase@DirectUI@@UAEHXZ
0x4140c0 ?EnumPropertyInfo@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z
0x4140c4 ?GetByClassIndex@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z
0x4140c8 ?GetPICount@ClassInfoBase@DirectUI@@UBEIXZ
0x4140cc ?GetGlobalIndex@ClassInfoBase@DirectUI@@UBEIXZ
0x4140d0 ?GetName@ClassInfoBase@DirectUI@@UBEPBGXZ
0x4140d4 ?IsValidProperty@ClassInfoBase@DirectUI@@UBE_NPBUPropertyInfo@2@@Z
0x4140d8 ?IsSubclassOf@ClassInfoBase@DirectUI@@UBE_NPAUIClassInfo@2@@Z
0x4140dc ?GetModule@ClassInfoBase@DirectUI@@UBEPAUHINSTANCE__@@XZ
0x4140e0 ?IsGlobal@ClassInfoBase@DirectUI@@UBE_NXZ
0x4140e4 ?AddChild@ClassInfoBase@DirectUI@@UAEXXZ
0x4140e8 ?RemoveChild@ClassInfoBase@DirectUI@@UAEXXZ
0x4140ec ?GetChildren@ClassInfoBase@DirectUI@@UBEHXZ
0x4140f0 ?AssertPIZeroRef@ClassInfoBase@DirectUI@@UBEXXZ
0x4140f4 ??0Element@DirectUI@@QAE@XZ
0x4140f8 ??1Element@DirectUI@@UAE@XZ
0x4140fc ?Initialize@Element@DirectUI@@QAEJIPAV12@PAK@Z
0x414100 ?OnPropertyChanged@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
0x414104 ?OnGroupChanged@Element@DirectUI@@UAEXH_N@Z
0x414108 ?OnInput@Element@DirectUI@@UAEXPAUInputEvent@2@@Z
0x41410c ?OnDestroy@Element@DirectUI@@UAEXXZ
0x414110 ?OnEvent@Element@DirectUI@@UAEXPAUEvent@2@@Z
0x414114 ?IsDescendent@Element@DirectUI@@QAE_NPAV12@@Z
0x414118 ?AddListener@Element@DirectUI@@QAEJPAUIElementListener@2@@Z
0x41411c ?GetRoot@Element@DirectUI@@QAEPAV12@XZ
0x414120 ?GetFactoryLock@Element@DirectUI@@SGPAU_RTL_CRITICAL_SECTION@@XZ
0x414124 ?GetClassInfoPtr@Element@DirectUI@@SGPAUIClassInfo@2@XZ
0x414128 ?Register@Element@DirectUI@@SGJXZ
0x41412c ?GetAccessibleImpl@Element@DirectUI@@UAEJPAPAUIAccessible@@@Z
0x414130 ?GetClassInfoPtr@TouchSwitch@DirectUI@@SGPAUIClassInfo@2@XZ
0x414134 ?SetToggleValue@TouchSwitch@DirectUI@@QAEXH@Z
0x414138 ?GetToggleValue@TouchSwitch@DirectUI@@QAEHXZ
0x41413c ?Click@TouchButton@DirectUI@@SG?AVUID@@XZ
0x414140 ?ThemeChange@HWNDElement@DirectUI@@SG?AVUID@@XZ
0x414144 ?GetClassInfoPtr@HWNDElement@DirectUI@@SGPAUIClassInfo@2@XZ
0x414148 ?SliderUpdated@TouchSlider@DirectUI@@SG?AVUID@@XZ
0x41414c RegisterPVLBehaviorFactory
0x414150 ?SetLayoutPos@Element@DirectUI@@QAEJH@Z
0x414154 ?FindDescendent@Element@DirectUI@@QAEPAV12@G@Z
0x414158 StrToID
0x41415c ?GetClassInfoPtr@CCPushButton@DirectUI@@SGPAUIClassInfo@2@XZ
0x414160 ?Click@Button@DirectUI@@SG?AVUID@@XZ
0x414164 ?GetKeyFocusedElement@HWNDElement@DirectUI@@SGPAVElement@2@XZ
0x414168 ?IsRTLReading@Element@DirectUI@@UAE_NXZ
0x41416c ?ClassExist@ClassInfoBase@DirectUI@@SG_NPAPAUIClassInfo@2@PBQBUPropertyInfo@2@IPAU32@PAUHINSTANCE__@@PBG_N@Z
0x414170 ?IsContentProtected@Element@DirectUI@@UAE_NXZ
0x414174 ?QueryInterface@Element@DirectUI@@UAGJABU_GUID@@PAPAX@Z
0x414178 ?GetKeyFocused@Element@DirectUI@@UAE_NXZ
0x41417c ?SetVisible@Element@DirectUI@@QAEJ_N@Z
0x414180 ?SetAccessible@Element@DirectUI@@QAEJ_N@Z
0x414184 ?SetLayout@Element@DirectUI@@QAEJPAVLayout@2@@Z
0x414188 ?CanSetFocus@HWNDElement@DirectUI@@UAE_NXZ
0x41418c ?IsMSAAEnabled@HWNDElement@DirectUI@@UAE_NXZ
0x414190 ?GetHWND@HWNDElement@DirectUI@@UAEPAUHWND__@@XZ
0x414194 InitProcessPriv
0x414198 InitThread
0x41419c ?Destroy@NativeHWNDHost@DirectUI@@QAEXXZ
0x4141a0 ?Create@NativeHWNDHost@DirectUI@@SGJPBG0PAUHWND__@@PAUHICON__@@HHHHHHPAUHINSTANCE__@@IPAPAV12@@Z
0x4141a4 ?EndDefer@Element@DirectUI@@QAEXK@Z
0x4141a8 UnInitProcessPriv
0x4141ac StartMessagePump
0x4141b0 UnInitThread
0x4141b4 ?ShowWindow@NativeHWNDHost@DirectUI@@QAEXH@Z
0x4141b8 ?_OnUIStateChanged@HWNDElement@DirectUI@@MAEXGG@Z
0x4141bc ?Initialize@HWNDElement@DirectUI@@QAEJPAUHWND__@@_NIPAVElement@2@PAK@Z
0x4141c0 ??1HWNDElement@DirectUI@@UAE@XZ
0x4141c4 ??0HWNDElement@DirectUI@@QAE@XZ
0x4141c8 ?GetAccessibleImpl@HWNDElement@DirectUI@@UAEJPAPAUIAccessible@@@Z
0x4141cc ?Register@HWNDElement@DirectUI@@SGJXZ
0x4141d0 ?GetWindowClassNameAndStyle@HWNDElement@DirectUI@@UAEXPAPBGPAI@Z
0x4141d4 ?WndProc@HWNDElement@DirectUI@@UAEJPAUHWND__@@IIJ@Z
0x4141d8 ?CreateStyleParser@HWNDElement@DirectUI@@UAEJPAPAVDUIXmlParser@2@@Z
0x4141dc ?RemoveTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@@Z
0x4141e0 ?ActivateTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@K@Z
0x4141e4 ?UpdateTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@@Z
0x4141e8 ?OnCompositionChanged@HWNDElement@DirectUI@@UAEXXZ
0x4141ec ?OnWmSettingChanged@HWNDElement@DirectUI@@UAEXIJ@Z
0x4141f0 ?OnWmThemeChanged@HWNDElement@DirectUI@@UAEXIJ@Z
0x4141f4 ?OnGetDlgCode@HWNDElement@DirectUI@@UAEXPAUtagMSG@@PAJ@Z
0x4141f8 ?OnNoChildWithShortcutFound@HWNDElement@DirectUI@@UAEXPAUKeyboardEvent@2@@Z
0x4141fc ?OnInput@HWNDElement@DirectUI@@UAEXPAUInputEvent@2@@Z
0x414200 ?OnImmersiveColorSchemeChanged@HWNDElement@DirectUI@@UAEXXZ
0x414204 ?OnThemeChanged@HWNDElement@DirectUI@@UAEXPAUThemeChangedEvent@2@@Z
0x414208 ?OnEvent@HWNDElement@DirectUI@@UAEXPAUEvent@2@@Z
0x41420c ?OnDestroy@HWNDElement@DirectUI@@UAEXXZ
0x414210 ?OnGroupChanged@HWNDElement@DirectUI@@UAEXH_N@Z
0x414214 ?OnPropertyChanged@HWNDElement@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
0x414218 ?Host@NativeHWNDHost@DirectUI@@QAEXPAVElement@2@@Z
0x41421c ?GetUiaFocusDelegate@Element@DirectUI@@UAEPAV12@XZ
0x414220 ?HandleUiaEventListener@Element@DirectUI@@UAEXPAUEvent@2@@Z
0x414224 ?HandleUiaPropertyChangingListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@@Z
0x414228 ?HandleUiaPropertyListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
0x41422c ?HandleUiaDestroyListener@Element@DirectUI@@UAEXXZ
0x414230 ?GetElementProviderImpl@Element@DirectUI@@UAEJPAVInvokeHelper@2@PAPAVElementProvider@2@@Z
0x414234 ?GetUIAElementProvider@Element@DirectUI@@UAEJABU_GUID@@PAPAX@Z
0x414238 ?DefaultAction@Element@DirectUI@@UAEJXZ
0x41423c ?DoubleBuffered@Element@DirectUI@@QAEX_N@Z
0x414240 ?OnUnHosted@Element@DirectUI@@MAEXPAV12@@Z
0x414244 ?OnHosted@Element@DirectUI@@MAEXPAV12@@Z
0x414248 ?_SelfLayoutUpdateDesiredSize@Element@DirectUI@@MAE?AUtagSIZE@@HHPAVSurface@2@@Z
0x41424c ?_SelfLayoutDoLayout@Element@DirectUI@@MAEXHH@Z
0x414250 ?GetImmersiveFocusRectOffsets@Element@DirectUI@@UAEXPAUtagRECT@@@Z
0x414254 ?MessageCallback@Element@DirectUI@@UAEIPAUtagGMSG@@@Z
0x414258 ?RemoveBehavior@Element@DirectUI@@UAEJPAUIDuiBehavior@@@Z
0x41425c ?AddBehavior@Element@DirectUI@@UAEJPAUIDuiBehavior@@@Z
0x414260 ?SetKeyFocus@Element@DirectUI@@UAEXXZ
0x414264 ?EnsureVisible@Element@DirectUI@@UAE_NHHHH@Z
0x414268 ?GetAdjacent@Element@DirectUI@@UAEPAV12@PAV12@HPBUNavReference@2@K@Z
0x41426c ?Remove@Element@DirectUI@@UAEJPAPAV12@I@Z
0x414270 ?Insert@Element@DirectUI@@UAEJPAPAV12@II@Z
0x414274 ?Add@Element@DirectUI@@QAEJPAV12@@Z
0x414278 ?Add@Element@DirectUI@@UAEJPAPAV12@I@Z
0x41427c ?GetContentSize@Element@DirectUI@@UAE?AUtagSIZE@@HHPAVSurface@2@@Z
0x414280 ?Paint@Element@DirectUI@@UAEXPAUHDC__@@PBUtagRECT@@1PAU4@2@Z
0x414284 ?OnMouseFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z
0x414288 ?OnKeyFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z
0x41428c ?OnPropertyChanged@Element@DirectUI@@UAEXPAUPropertyInfo@2@HPAVValue@2@1@Z
0x414290 ?OnPropertyChanging@Element@DirectUI@@UAE_NPAUPropertyInfo@2@HPAVValue@2@1@Z
0x414294 ?OnPropertyChanging@Element@DirectUI@@UAE_NPBUPropertyInfo@2@HPAVValue@2@1@Z
0x414298 ?GetContentStringAsDisplayed@Element@DirectUI@@UAEPBGPAPAVValue@2@@Z
0x41429c ?Destroy@Element@DirectUI@@QAEJ_N@Z
0x4142a0 ?Destroy@Layout@DirectUI@@QAEXXZ
0x4142a4 ?Create@FillLayout@DirectUI@@SGJPAPAVLayout@2@@Z
0x4142a8 ?LoadFromResource@DUIFactory@DirectUI@@QAEJPAUHINSTANCE__@@PBG1PAVElement@2@PAKPAPAV42@1@Z
0x4142ac ??1DUIFactory@DirectUI@@QAE@XZ
0x4142b0 ?DestroyWindow@NativeHWNDHost@DirectUI@@QAEXXZ
0x4142b4 ?GetClassInfoW@HWNDElement@DirectUI@@UAEPAUIClassInfo@2@XZ
EAT(Export Address Table) is none
ADVAPI32.dll
0x414000 EventUnregister
0x414004 EventRegister
0x414008 CheckTokenMembership
0x41400c FreeSid
0x414010 AllocateAndInitializeSid
0x414014 TraceMessage
0x414018 RegGetValueW
0x41401c RegEnumValueW
0x414020 RegDeleteTreeW
0x414024 RegLoadMUIStringW
0x414028 ConvertSidToStringSidW
0x41402c GetTokenInformation
0x414030 OpenProcessToken
0x414034 RegCreateKeyExW
0x414038 RegQueryValueExW
0x41403c RegEnumKeyExW
0x414040 RegCloseKey
0x414044 EventWriteTransfer
0x414048 EventSetInformation
0x41404c RegSetValueExW
0x414050 RegOpenKeyExW
KERNEL32.dll
0x4142c4 HeapSize
0x4142c8 HeapReAlloc
0x4142cc VirtualQuery
0x4142d0 GetSystemInfo
0x4142d4 AcquireSRWLockExclusive
0x4142d8 HeapSetInformation
0x4142dc RaiseException
0x4142e0 ReleaseSRWLockExclusive
0x4142e4 LoadLibraryExA
0x4142e8 VirtualProtect
0x4142ec OOBEComplete
0x4142f0 IsProcessInJob
0x4142f4 OpenJobObjectW
0x4142f8 FreeLibrary
0x4142fc HeapAlloc
0x414300 GetProcessHeap
0x414304 GetProductInfo
0x414308 IsDebuggerPresent
0x41430c CreateMutexExW
0x414310 OpenSemaphoreW
0x414314 WaitForSingleObjectEx
0x414318 InitOnceComplete
0x41431c OutputDebugStringW
0x414320 ReleaseMutex
0x414324 WaitForSingleObject
0x414328 ReleaseSemaphore
0x41432c CreateSemaphoreExW
0x414330 InitOnceBeginInitialize
0x414334 K32GetModuleBaseNameW
0x414338 K32EnumProcessModules
0x41433c ProcessIdToSessionId
0x414340 K32EnumProcesses
0x414344 DeleteFileW
0x414348 GetFileAttributesW
0x41434c DeleteProcThreadAttributeList
0x414350 CreateProcessW
0x414354 UpdateProcThreadAttribute
0x414358 InitializeProcThreadAttributeList
0x41435c OpenProcess
0x414360 SetLastError
0x414364 GetProcAddress
0x414368 DebugBreak
0x41436c GetModuleFileNameA
0x414370 GetModuleHandleExW
0x414374 FormatMessageW
0x414378 LocalFree
0x41437c GetThreadUILanguage
0x414380 MulDiv
0x414384 OpenMutexW
0x414388 VirtualFreeEx
0x41438c ReadProcessMemory
0x414390 VirtualAllocEx
0x414394 GetThreadPreferredUILanguages
0x414398 CompareStringOrdinal
0x41439c GetLocaleInfoEx
0x4143a0 ExpandEnvironmentStringsW
0x4143a4 TerminateProcess
0x4143a8 GetCurrentProcess
0x4143ac UnhandledExceptionFilter
0x4143b0 GetTickCount
0x4143b4 GetSystemTimeAsFileTime
0x4143b8 GetCurrentThreadId
0x4143bc GetCurrentProcessId
0x4143c0 QueryPerformanceCounter
0x4143c4 GetModuleHandleW
0x4143c8 SetUnhandledExceptionFilter
0x4143cc GetStartupInfoW
0x4143d0 Sleep
0x4143d4 LeaveCriticalSection
0x4143d8 EnterCriticalSection
0x4143dc DeleteCriticalSection
0x4143e0 SizeofResource
0x4143e4 InitializeCriticalSection
0x4143e8 HeapDestroy
0x4143ec CreateMutexW
0x4143f0 LoadResource
0x4143f4 FindResourceExW
0x4143f8 CloseHandle
0x4143fc LockResource
0x414400 GetLastError
0x414404 MultiByteToWideChar
0x414408 HeapFree
USER32.dll
0x414430 SetWindowTextW
0x414434 MessageBoxW
0x414438 LoadStringW
0x41443c SystemParametersInfoW
0x414440 SetWindowPos
0x414444 LoadIconW
0x414448 SetDesktopColorTransform
0x41444c SendNotifyMessageW
0x414450 GetWindowThreadProcessId
0x414454 GetShellWindow
0x414458 GetKeyState
0x41445c SendInput
0x414460 SendMessageW
0x414464 GetSystemMetrics
0x414468 GetThreadDesktop
0x41446c SetTimer
0x414470 IsProcessDPIAware
0x414474 FindWindowW
0x414478 LoadCursorW
0x41447c SetCursor
0x414480 GetUserObjectInformationW
0x414484 KillTimer
0x414488 GetAncestor
0x41448c UnregisterClassA
msvcrt.dll
0x4144a4 ?terminate@@YAXXZ
0x4144a8 _controlfp
0x4144ac ??1type_info@@UAE@XZ
0x4144b0 _ltow_s
0x4144b4 _wcslwr_s
0x4144b8 wcscspn
0x4144bc wcsspn
0x4144c0 wcsrchr
0x4144c4 _unlock
0x4144c8 _lock
0x4144cc __CxxFrameHandler3
0x4144d0 _wcmdln
0x4144d4 _initterm
0x4144d8 __setusermatherr
0x4144dc __p__fmode
0x4144e0 _cexit
0x4144e4 exit
0x4144e8 __set_app_type
0x4144ec __wgetmainargs
0x4144f0 _amsg_exit
0x4144f4 __p__commode
0x4144f8 _XcptFilter
0x4144fc calloc
0x414500 memmove_s
0x414504 _callnewh
0x414508 malloc
0x41450c free
0x414510 _wtoi
0x414514 wcschr
0x414518 _vsnwprintf
0x41451c wcsstr
0x414520 _wcsicmp
0x414524 _except_handler4_common
0x414528 _onexit
0x41452c _exit
0x414530 __dllonexit
0x414534 memcpy_s
0x414538 _purecall
0x41453c memset
ntdll.dll
0x414544 WinSqmIncrementDWORD
0x414548 NtQueryWnfStateData
0x41454c WinSqmIsOptedIn
0x414550 WinSqmAddToStream
OLEACC.dll
0x414410 GetProcessHandleFromHwnd
0x414414 AccessibleObjectFromWindow
ole32.dll
0x414558 CoUninitialize
0x41455c CoCreateInstance
0x414560 CoInitialize
api-ms-win-core-winrt-error-l1-1-0.dll
0x414494 SetRestrictedErrorInfo
api-ms-win-core-winrt-error-l1-1-1.dll
0x41449c RoGetMatchingRestrictedErrorInfo
COMCTL32.dll
0x414058 None
SHELL32.dll
0x414428 ShellExecuteW
DUser.dll
0x4142bc InvalidateGadget
SHCORE.dll
0x41441c None
0x414420 IsProcessInIsolatedContainer
DUI70.dll
0x414060 ?GetValue@Element@DirectUI@@QAEPAVValue@2@P6GPBUPropertyInfo@2@XZHPAUUpdateCache@2@@Z
0x414064 ?RemoveListener@Element@DirectUI@@QAEXPAUIElementListener@2@@Z
0x414068 ?CustomProp@Element@DirectUI@@SGPBUPropertyInfo@2@XZ
0x41406c ?GetContentString@Element@DirectUI@@QAEPBGPAPAVValue@2@@Z
0x414070 ?GetOnText@TouchSwitch@DirectUI@@QAEPBGPAPAVValue@2@@Z
0x414074 ?GetOffText@TouchSwitch@DirectUI@@QAEPBGPAPAVValue@2@@Z
0x414078 ?Release@Value@DirectUI@@QAEXXZ
0x41407c ??1CritSecLock@DirectUI@@QAE@XZ
0x414080 ?UpdateTooltip@Element@DirectUI@@MAEXPAV12@@Z
0x414084 ?ActivateTooltip@Element@DirectUI@@MAEXPAV12@K@Z
0x414088 ?RemoveTooltip@Element@DirectUI@@MAEXPAV12@@Z
0x41408c ?GetChildren@Element@DirectUI@@QAEPAV?$DynamicArray@PAVElement@DirectUI@@$0A@@2@PAPAVValue@2@@Z
0x414090 ?SetActive@Element@DirectUI@@QAEJH@Z
0x414094 ?Create@DUIXmlParser@DirectUI@@SGJPAPAV12@P6GPAVValue@2@PBGPAX@Z2P6GX11H2@Z2@Z
0x414098 ?Destroy@DUIXmlParser@DirectUI@@QAEXXZ
0x41409c ?SetXMLFromResource@DUIXmlParser@DirectUI@@QAEJIPAUHINSTANCE__@@0@Z
0x4140a0 ?CreateElement@DUIXmlParser@DirectUI@@QAEJPBGPAVElement@2@1PAKPAPAV32@@Z
0x4140a4 ??0ClassInfoBase@DirectUI@@QAE@XZ
0x4140a8 ??1ClassInfoBase@DirectUI@@UAE@XZ
0x4140ac ?Initialize@ClassInfoBase@DirectUI@@QAEJPAUHINSTANCE__@@PBG_NPBQBUPropertyInfo@2@I@Z
0x4140b0 ?Register@ClassInfoBase@DirectUI@@QAEJXZ
0x4140b4 ?GetUnset@Value@DirectUI@@SGPAV12@XZ
0x4140b8 ?AddRef@ClassInfoBase@DirectUI@@UAEXXZ
0x4140bc ?Release@ClassInfoBase@DirectUI@@UAEHXZ
0x4140c0 ?EnumPropertyInfo@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z
0x4140c4 ?GetByClassIndex@ClassInfoBase@DirectUI@@UAEPBUPropertyInfo@2@I@Z
0x4140c8 ?GetPICount@ClassInfoBase@DirectUI@@UBEIXZ
0x4140cc ?GetGlobalIndex@ClassInfoBase@DirectUI@@UBEIXZ
0x4140d0 ?GetName@ClassInfoBase@DirectUI@@UBEPBGXZ
0x4140d4 ?IsValidProperty@ClassInfoBase@DirectUI@@UBE_NPBUPropertyInfo@2@@Z
0x4140d8 ?IsSubclassOf@ClassInfoBase@DirectUI@@UBE_NPAUIClassInfo@2@@Z
0x4140dc ?GetModule@ClassInfoBase@DirectUI@@UBEPAUHINSTANCE__@@XZ
0x4140e0 ?IsGlobal@ClassInfoBase@DirectUI@@UBE_NXZ
0x4140e4 ?AddChild@ClassInfoBase@DirectUI@@UAEXXZ
0x4140e8 ?RemoveChild@ClassInfoBase@DirectUI@@UAEXXZ
0x4140ec ?GetChildren@ClassInfoBase@DirectUI@@UBEHXZ
0x4140f0 ?AssertPIZeroRef@ClassInfoBase@DirectUI@@UBEXXZ
0x4140f4 ??0Element@DirectUI@@QAE@XZ
0x4140f8 ??1Element@DirectUI@@UAE@XZ
0x4140fc ?Initialize@Element@DirectUI@@QAEJIPAV12@PAK@Z
0x414100 ?OnPropertyChanged@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
0x414104 ?OnGroupChanged@Element@DirectUI@@UAEXH_N@Z
0x414108 ?OnInput@Element@DirectUI@@UAEXPAUInputEvent@2@@Z
0x41410c ?OnDestroy@Element@DirectUI@@UAEXXZ
0x414110 ?OnEvent@Element@DirectUI@@UAEXPAUEvent@2@@Z
0x414114 ?IsDescendent@Element@DirectUI@@QAE_NPAV12@@Z
0x414118 ?AddListener@Element@DirectUI@@QAEJPAUIElementListener@2@@Z
0x41411c ?GetRoot@Element@DirectUI@@QAEPAV12@XZ
0x414120 ?GetFactoryLock@Element@DirectUI@@SGPAU_RTL_CRITICAL_SECTION@@XZ
0x414124 ?GetClassInfoPtr@Element@DirectUI@@SGPAUIClassInfo@2@XZ
0x414128 ?Register@Element@DirectUI@@SGJXZ
0x41412c ?GetAccessibleImpl@Element@DirectUI@@UAEJPAPAUIAccessible@@@Z
0x414130 ?GetClassInfoPtr@TouchSwitch@DirectUI@@SGPAUIClassInfo@2@XZ
0x414134 ?SetToggleValue@TouchSwitch@DirectUI@@QAEXH@Z
0x414138 ?GetToggleValue@TouchSwitch@DirectUI@@QAEHXZ
0x41413c ?Click@TouchButton@DirectUI@@SG?AVUID@@XZ
0x414140 ?ThemeChange@HWNDElement@DirectUI@@SG?AVUID@@XZ
0x414144 ?GetClassInfoPtr@HWNDElement@DirectUI@@SGPAUIClassInfo@2@XZ
0x414148 ?SliderUpdated@TouchSlider@DirectUI@@SG?AVUID@@XZ
0x41414c RegisterPVLBehaviorFactory
0x414150 ?SetLayoutPos@Element@DirectUI@@QAEJH@Z
0x414154 ?FindDescendent@Element@DirectUI@@QAEPAV12@G@Z
0x414158 StrToID
0x41415c ?GetClassInfoPtr@CCPushButton@DirectUI@@SGPAUIClassInfo@2@XZ
0x414160 ?Click@Button@DirectUI@@SG?AVUID@@XZ
0x414164 ?GetKeyFocusedElement@HWNDElement@DirectUI@@SGPAVElement@2@XZ
0x414168 ?IsRTLReading@Element@DirectUI@@UAE_NXZ
0x41416c ?ClassExist@ClassInfoBase@DirectUI@@SG_NPAPAUIClassInfo@2@PBQBUPropertyInfo@2@IPAU32@PAUHINSTANCE__@@PBG_N@Z
0x414170 ?IsContentProtected@Element@DirectUI@@UAE_NXZ
0x414174 ?QueryInterface@Element@DirectUI@@UAGJABU_GUID@@PAPAX@Z
0x414178 ?GetKeyFocused@Element@DirectUI@@UAE_NXZ
0x41417c ?SetVisible@Element@DirectUI@@QAEJ_N@Z
0x414180 ?SetAccessible@Element@DirectUI@@QAEJ_N@Z
0x414184 ?SetLayout@Element@DirectUI@@QAEJPAVLayout@2@@Z
0x414188 ?CanSetFocus@HWNDElement@DirectUI@@UAE_NXZ
0x41418c ?IsMSAAEnabled@HWNDElement@DirectUI@@UAE_NXZ
0x414190 ?GetHWND@HWNDElement@DirectUI@@UAEPAUHWND__@@XZ
0x414194 InitProcessPriv
0x414198 InitThread
0x41419c ?Destroy@NativeHWNDHost@DirectUI@@QAEXXZ
0x4141a0 ?Create@NativeHWNDHost@DirectUI@@SGJPBG0PAUHWND__@@PAUHICON__@@HHHHHHPAUHINSTANCE__@@IPAPAV12@@Z
0x4141a4 ?EndDefer@Element@DirectUI@@QAEXK@Z
0x4141a8 UnInitProcessPriv
0x4141ac StartMessagePump
0x4141b0 UnInitThread
0x4141b4 ?ShowWindow@NativeHWNDHost@DirectUI@@QAEXH@Z
0x4141b8 ?_OnUIStateChanged@HWNDElement@DirectUI@@MAEXGG@Z
0x4141bc ?Initialize@HWNDElement@DirectUI@@QAEJPAUHWND__@@_NIPAVElement@2@PAK@Z
0x4141c0 ??1HWNDElement@DirectUI@@UAE@XZ
0x4141c4 ??0HWNDElement@DirectUI@@QAE@XZ
0x4141c8 ?GetAccessibleImpl@HWNDElement@DirectUI@@UAEJPAPAUIAccessible@@@Z
0x4141cc ?Register@HWNDElement@DirectUI@@SGJXZ
0x4141d0 ?GetWindowClassNameAndStyle@HWNDElement@DirectUI@@UAEXPAPBGPAI@Z
0x4141d4 ?WndProc@HWNDElement@DirectUI@@UAEJPAUHWND__@@IIJ@Z
0x4141d8 ?CreateStyleParser@HWNDElement@DirectUI@@UAEJPAPAVDUIXmlParser@2@@Z
0x4141dc ?RemoveTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@@Z
0x4141e0 ?ActivateTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@K@Z
0x4141e4 ?UpdateTooltip@HWNDElement@DirectUI@@UAEXPAVElement@2@@Z
0x4141e8 ?OnCompositionChanged@HWNDElement@DirectUI@@UAEXXZ
0x4141ec ?OnWmSettingChanged@HWNDElement@DirectUI@@UAEXIJ@Z
0x4141f0 ?OnWmThemeChanged@HWNDElement@DirectUI@@UAEXIJ@Z
0x4141f4 ?OnGetDlgCode@HWNDElement@DirectUI@@UAEXPAUtagMSG@@PAJ@Z
0x4141f8 ?OnNoChildWithShortcutFound@HWNDElement@DirectUI@@UAEXPAUKeyboardEvent@2@@Z
0x4141fc ?OnInput@HWNDElement@DirectUI@@UAEXPAUInputEvent@2@@Z
0x414200 ?OnImmersiveColorSchemeChanged@HWNDElement@DirectUI@@UAEXXZ
0x414204 ?OnThemeChanged@HWNDElement@DirectUI@@UAEXPAUThemeChangedEvent@2@@Z
0x414208 ?OnEvent@HWNDElement@DirectUI@@UAEXPAUEvent@2@@Z
0x41420c ?OnDestroy@HWNDElement@DirectUI@@UAEXXZ
0x414210 ?OnGroupChanged@HWNDElement@DirectUI@@UAEXH_N@Z
0x414214 ?OnPropertyChanged@HWNDElement@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
0x414218 ?Host@NativeHWNDHost@DirectUI@@QAEXPAVElement@2@@Z
0x41421c ?GetUiaFocusDelegate@Element@DirectUI@@UAEPAV12@XZ
0x414220 ?HandleUiaEventListener@Element@DirectUI@@UAEXPAUEvent@2@@Z
0x414224 ?HandleUiaPropertyChangingListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@@Z
0x414228 ?HandleUiaPropertyListener@Element@DirectUI@@UAEXPBUPropertyInfo@2@HPAVValue@2@1@Z
0x41422c ?HandleUiaDestroyListener@Element@DirectUI@@UAEXXZ
0x414230 ?GetElementProviderImpl@Element@DirectUI@@UAEJPAVInvokeHelper@2@PAPAVElementProvider@2@@Z
0x414234 ?GetUIAElementProvider@Element@DirectUI@@UAEJABU_GUID@@PAPAX@Z
0x414238 ?DefaultAction@Element@DirectUI@@UAEJXZ
0x41423c ?DoubleBuffered@Element@DirectUI@@QAEX_N@Z
0x414240 ?OnUnHosted@Element@DirectUI@@MAEXPAV12@@Z
0x414244 ?OnHosted@Element@DirectUI@@MAEXPAV12@@Z
0x414248 ?_SelfLayoutUpdateDesiredSize@Element@DirectUI@@MAE?AUtagSIZE@@HHPAVSurface@2@@Z
0x41424c ?_SelfLayoutDoLayout@Element@DirectUI@@MAEXHH@Z
0x414250 ?GetImmersiveFocusRectOffsets@Element@DirectUI@@UAEXPAUtagRECT@@@Z
0x414254 ?MessageCallback@Element@DirectUI@@UAEIPAUtagGMSG@@@Z
0x414258 ?RemoveBehavior@Element@DirectUI@@UAEJPAUIDuiBehavior@@@Z
0x41425c ?AddBehavior@Element@DirectUI@@UAEJPAUIDuiBehavior@@@Z
0x414260 ?SetKeyFocus@Element@DirectUI@@UAEXXZ
0x414264 ?EnsureVisible@Element@DirectUI@@UAE_NHHHH@Z
0x414268 ?GetAdjacent@Element@DirectUI@@UAEPAV12@PAV12@HPBUNavReference@2@K@Z
0x41426c ?Remove@Element@DirectUI@@UAEJPAPAV12@I@Z
0x414270 ?Insert@Element@DirectUI@@UAEJPAPAV12@II@Z
0x414274 ?Add@Element@DirectUI@@QAEJPAV12@@Z
0x414278 ?Add@Element@DirectUI@@UAEJPAPAV12@I@Z
0x41427c ?GetContentSize@Element@DirectUI@@UAE?AUtagSIZE@@HHPAVSurface@2@@Z
0x414280 ?Paint@Element@DirectUI@@UAEXPAUHDC__@@PBUtagRECT@@1PAU4@2@Z
0x414284 ?OnMouseFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z
0x414288 ?OnKeyFocusMoved@Element@DirectUI@@UAEXPAV12@0@Z
0x41428c ?OnPropertyChanged@Element@DirectUI@@UAEXPAUPropertyInfo@2@HPAVValue@2@1@Z
0x414290 ?OnPropertyChanging@Element@DirectUI@@UAE_NPAUPropertyInfo@2@HPAVValue@2@1@Z
0x414294 ?OnPropertyChanging@Element@DirectUI@@UAE_NPBUPropertyInfo@2@HPAVValue@2@1@Z
0x414298 ?GetContentStringAsDisplayed@Element@DirectUI@@UAEPBGPAPAVValue@2@@Z
0x41429c ?Destroy@Element@DirectUI@@QAEJ_N@Z
0x4142a0 ?Destroy@Layout@DirectUI@@QAEXXZ
0x4142a4 ?Create@FillLayout@DirectUI@@SGJPAPAVLayout@2@@Z
0x4142a8 ?LoadFromResource@DUIFactory@DirectUI@@QAEJPAUHINSTANCE__@@PBG1PAVElement@2@PAKPAPAV42@1@Z
0x4142ac ??1DUIFactory@DirectUI@@QAE@XZ
0x4142b0 ?DestroyWindow@NativeHWNDHost@DirectUI@@QAEXXZ
0x4142b4 ?GetClassInfoW@HWNDElement@DirectUI@@UAEPAUIClassInfo@2@XZ
EAT(Export Address Table) is none