3.0
中危
5 个模型检测该样本为恶意!
重新分析
更多

24fab6e26c0017f7cb18cfbb9d1017ca4922cc1d3edd6b811af4a924796efc46

4588e45bbea7c63610d69c439ee95de3.exe

分析耗时

137s

最近分析

文件大小

14.5MB
静态报毒 动态报毒 AI SCORE=95 BANCOS FRAUD GEN8
鹰眼引擎
未检测 暂无鹰眼引擎检测结果
静态判定
反病毒引擎
查杀引擎 查杀结果 查杀时间 查杀版本
Alibaba 20190527 0.3.0.5
Avast 20200902 18.4.3895.0
Tencent 20200902 1.0.0.1
Baidu 20190318 1.0.0.2
Kingsoft 20200902 2013.8.14.323
McAfee 20200902 6.0.6.653
CrowdStrike 20190702 1.0
行为判定
动态指标
Allocates read-write-execute memory (usually to unpack itself) (1 个事件)
Time & API Arguments Status Return Repeated
1620951142.599876
NtAllocateVirtualMemory
process_identifier: 2340
region_size: 4096
stack_dep_bypass: 0
stack_pivoted: 0
heap_dep_bypass: 0
protection: 64 (PAGE_EXECUTE_READWRITE)
process_handle: 0xffffffff
allocation_type: 4096 (MEM_COMMIT)
base_address: 0x02dd0000
success 0 0
File has been identified by 5 AntiVirus engines on VirusTotal as malicious (5 个事件)
F-Secure Trojan.TR/Fraud.Gen8
Ikarus Trojan.Fraud
Avira TR/Fraud.Gen8
MAX malware (ai score=95)
Qihoo-360 Generic/Trojan.09c
The binary likely contains encrypted or compressed data indicative of a packer (2 个事件)
entropy 7.0488250384612785 section {'size_of_data': '0x00317800', 'virtual_address': '0x00bf4000', 'entropy': 7.0488250384612785, 'name': '.rsrc', 'virtual_size': '0x00317800'} description A section with a high entropy has been found
entropy 0.21348617666891437 description Overall entropy of this PE file is high
可视化分析
二进制图像
暂无二进制图像 该样本未生成二进制可视化图像
运行截图
暂无运行截图 该样本运行过程中未生成截图

👋 欢迎使用 ChatHawk

我是您的恶意软件分析助手,可以帮您分析和解读恶意软件报告。请随时向我提问!

🔍 主要威胁分析
⚡ 行为特征
🛡️ 防护建议
🔧 技术手段
🎯 检测方法
🤖

PE Compile Time

2016-09-22 01:04:36

Imports

Library oleaut32.dll:
0xf1a484 SysFreeString
0xf1a488 SysReAllocStringLen
0xf1a48c SysAllocStringLen
Library advapi32.dll:
0xf1a494 RegQueryValueExW
0xf1a498 RegOpenKeyExW
0xf1a49c RegCloseKey
Library user32.dll:
0xf1a4a4 MessageBoxA
0xf1a4a8 CharNextW
0xf1a4ac LoadStringW
Library kernel32.dll:
0xf1a4b4 Sleep
0xf1a4b8 VirtualFree
0xf1a4bc VirtualAlloc
0xf1a4c0 lstrlenW
0xf1a4c4 lstrcpynW
0xf1a4c8 VirtualQuery
0xf1a4d0 GetTickCount
0xf1a4d4 GetSystemInfo
0xf1a4d8 GetVersion
0xf1a4dc CompareStringW
0xf1a4e0 IsValidLocale
0xf1a4e4 SetThreadLocale
0xf1a4f0 GetLocaleInfoW
0xf1a4f4 WideCharToMultiByte
0xf1a4f8 MultiByteToWideChar
0xf1a4fc GetACP
0xf1a500 LoadLibraryExW
0xf1a504 GetStartupInfoW
0xf1a508 GetProcAddress
0xf1a50c GetModuleHandleW
0xf1a510 GetModuleFileNameW
0xf1a514 GetCommandLineW
0xf1a518 FreeLibrary
0xf1a51c GetLastError
0xf1a524 RtlUnwind
0xf1a528 RaiseException
0xf1a52c ExitProcess
0xf1a530 ExitThread
0xf1a534 SwitchToThread
0xf1a538 GetCurrentThreadId
0xf1a53c CreateThread
0xf1a550 FindFirstFileW
0xf1a554 FindClose
0xf1a560 CreateDirectoryW
0xf1a564 WriteFile
0xf1a568 GetStdHandle
0xf1a56c CloseHandle
Library kernel32.dll:
0xf1a574 GetProcAddress
0xf1a578 RaiseException
0xf1a57c LoadLibraryA
0xf1a580 GetLastError
0xf1a584 TlsSetValue
0xf1a588 TlsGetValue
0xf1a58c LocalFree
0xf1a590 LocalAlloc
0xf1a594 GetModuleHandleW
0xf1a598 FreeLibrary
Library user32.dll:
0xf1a5a0 SetClassLongW
0xf1a5a4 GetClassLongW
0xf1a5a8 SetWindowLongW
0xf1a5ac GetWindowLongW
0xf1a5b0 CreateWindowExW
0xf1a5b4 keybd_event
0xf1a5b8 WindowFromPoint
0xf1a5bc WindowFromDC
0xf1a5c0 WaitMessage
0xf1a5c4 ValidateRect
0xf1a5c8 UpdateWindow
0xf1a5cc UnregisterClassW
0xf1a5d0 UnhookWindowsHookEx
0xf1a5d4 TranslateMessage
0xf1a5dc TrackPopupMenu
0xf1a5e0 ToAscii
0xf1a5e4 TabbedTextOutW
0xf1a5ec ShowWindow
0xf1a5f0 ShowScrollBar
0xf1a5f4 ShowOwnedPopups
0xf1a5f8 ShowCaret
0xf1a5fc SetWindowRgn
0xf1a600 SetWindowsHookExW
0xf1a604 SetWindowTextW
0xf1a608 SetWindowPos
0xf1a60c SetWindowPlacement
0xf1a610 SetTimer
0xf1a614 SetScrollRange
0xf1a618 SetScrollPos
0xf1a61c SetScrollInfo
0xf1a620 SetRectEmpty
0xf1a624 SetRect
0xf1a628 SetPropW
0xf1a62c SetParent
0xf1a630 SetMenuItemInfoW
0xf1a634 SetMenu
0xf1a638 SetKeyboardState
0xf1a63c SetForegroundWindow
0xf1a640 SetFocus
0xf1a644 SetCursorPos
0xf1a648 SetCursor
0xf1a64c SetClipboardData
0xf1a650 SetCaretPos
0xf1a654 SetCapture
0xf1a658 SetActiveWindow
0xf1a65c SendNotifyMessageW
0xf1a660 SendMessageA
0xf1a664 SendMessageW
0xf1a668 ScrollWindowEx
0xf1a66c ScrollWindow
0xf1a670 ScreenToClient
0xf1a674 RemovePropW
0xf1a678 RemoveMenu
0xf1a67c ReleaseDC
0xf1a680 ReleaseCapture
0xf1a68c RegisterClassW
0xf1a690 RedrawWindow
0xf1a694 PtInRect
0xf1a698 PostQuitMessage
0xf1a69c PostMessageW
0xf1a6a0 PeekMessageA
0xf1a6a4 PeekMessageW
0xf1a6a8 OpenClipboard
0xf1a6ac OffsetRect
0xf1a6b0 OemToCharBuffA
0xf1a6b4 OemToCharA
0xf1a6b8 NotifyWinEvent
0xf1a6c4 MoveWindow
0xf1a6c8 MessageBoxW
0xf1a6cc MessageBeep
0xf1a6d0 MapWindowPoints
0xf1a6d4 MapVirtualKeyW
0xf1a6d8 LockWindowUpdate
0xf1a6dc LoadStringA
0xf1a6e0 LoadStringW
0xf1a6e4 LoadKeyboardLayoutW
0xf1a6e8 LoadIconW
0xf1a6ec LoadCursorW
0xf1a6f0 LoadBitmapW
0xf1a6f4 KillTimer
0xf1a6f8 IsZoomed
0xf1a6fc IsWindowVisible
0xf1a700 IsWindowUnicode
0xf1a704 IsWindowEnabled
0xf1a708 IsWindow
0xf1a70c IsRectEmpty
0xf1a710 IsIconic
0xf1a714 IsDialogMessageA
0xf1a718 IsDialogMessageW
0xf1a720 IsChild
0xf1a724 IsCharAlphaNumericW
0xf1a728 IsCharAlphaW
0xf1a72c InvalidateRgn
0xf1a730 InvalidateRect
0xf1a734 IntersectRect
0xf1a738 InsertMenuItemW
0xf1a73c InsertMenuW
0xf1a740 InflateRect
0xf1a744 HideCaret
0xf1a750 GetWindowTextW
0xf1a754 GetWindowRect
0xf1a758 GetWindowPlacement
0xf1a75c GetWindowDC
0xf1a760 GetUpdateRect
0xf1a764 GetTopWindow
0xf1a76c GetSystemMetrics
0xf1a770 GetSystemMenu
0xf1a774 GetSysColorBrush
0xf1a778 GetSysColor
0xf1a77c GetSubMenu
0xf1a780 GetScrollRange
0xf1a784 GetScrollPos
0xf1a788 GetScrollInfo
0xf1a78c GetScrollBarInfo
0xf1a790 GetPropW
0xf1a794 GetParent
0xf1a798 GetWindow
0xf1a79c GetMessageTime
0xf1a7a0 GetMessagePos
0xf1a7a4 GetMessageExtraInfo
0xf1a7a8 GetMessageW
0xf1a7ac GetMenuStringW
0xf1a7b0 GetMenuState
0xf1a7b4 GetMenuItemInfoW
0xf1a7b8 GetMenuItemID
0xf1a7bc GetMenuItemCount
0xf1a7c0 GetMenu
0xf1a7c4 GetLastActivePopup
0xf1a7c8 GetKeyboardState
0xf1a7d4 GetKeyboardLayout
0xf1a7d8 GetKeyState
0xf1a7dc GetKeyNameTextW
0xf1a7e0 GetIconInfo
0xf1a7e4 GetForegroundWindow
0xf1a7e8 GetFocus
0xf1a7ec GetDoubleClickTime
0xf1a7f0 GetDlgItem
0xf1a7f4 GetDlgCtrlID
0xf1a7f8 GetDesktopWindow
0xf1a7fc GetDCEx
0xf1a800 GetDC
0xf1a804 GetCursorPos
0xf1a808 GetCursor
0xf1a80c GetClipboardData
0xf1a810 GetClientRect
0xf1a814 GetClassNameW
0xf1a818 GetClassInfoExW
0xf1a81c GetClassInfoW
0xf1a820 GetCaretPos
0xf1a824 GetCapture
0xf1a828 GetAsyncKeyState
0xf1a82c GetActiveWindow
0xf1a830 FrameRect
0xf1a834 FindWindowExW
0xf1a838 FindWindowW
0xf1a83c FillRect
0xf1a840 EqualRect
0xf1a844 EnumWindows
0xf1a848 EnumThreadWindows
0xf1a850 EnumChildWindows
0xf1a854 EndPaint
0xf1a858 EndMenu
0xf1a85c EndDeferWindowPos
0xf1a860 EnableWindow
0xf1a864 EnableScrollBar
0xf1a868 EnableMenuItem
0xf1a86c EmptyClipboard
0xf1a870 DrawTextExW
0xf1a874 DrawTextA
0xf1a878 DrawTextW
0xf1a87c DrawStateW
0xf1a880 DrawMenuBar
0xf1a884 DrawIconEx
0xf1a888 DrawIcon
0xf1a88c DrawFrameControl
0xf1a890 DrawFocusRect
0xf1a894 DrawEdge
0xf1a898 DrawCaption
0xf1a89c DispatchMessageA
0xf1a8a0 DispatchMessageW
0xf1a8a4 DestroyWindow
0xf1a8a8 DestroyMenu
0xf1a8ac DestroyIcon
0xf1a8b0 DestroyCursor
0xf1a8b4 DestroyCaret
0xf1a8b8 DeleteMenu
0xf1a8bc DeferWindowPos
0xf1a8c0 DefWindowProcW
0xf1a8c4 DefMDIChildProcW
0xf1a8c8 DefFrameProcW
0xf1a8cc CreatePopupMenu
0xf1a8d0 CreateMenu
0xf1a8d4 CreateIcon
0xf1a8d8 CreateCaret
0xf1a8e4 CopyImage
0xf1a8e8 CopyIcon
0xf1a8ec CloseClipboard
0xf1a8f0 ClipCursor
0xf1a8f4 ClientToScreen
0xf1a900 CheckMenuItem
0xf1a904 CharUpperBuffW
0xf1a908 CharUpperW
0xf1a90c CharNextW
0xf1a910 CharLowerBuffW
0xf1a914 CharLowerW
0xf1a918 CallWindowProcW
0xf1a91c CallNextHookEx
0xf1a920 BringWindowToTop
0xf1a924 BeginPaint
0xf1a928 BeginDeferWindowPos
0xf1a92c CharNextA
0xf1a930 CharLowerBuffA
0xf1a934 CharLowerA
0xf1a938 CharUpperBuffA
0xf1a93c CharUpperA
0xf1a940 CharToOemBuffA
0xf1a944 CharToOemA
0xf1a948 AdjustWindowRectEx
Library gdi32.dll:
0xf1a954 WidenPath
0xf1a958 UnrealizeObject
0xf1a95c TextOutW
0xf1a960 StrokePath
0xf1a964 StrokeAndFillPath
0xf1a968 StretchDIBits
0xf1a96c StretchBlt
0xf1a970 StartPage
0xf1a974 StartDocW
0xf1a978 SetWorldTransform
0xf1a97c SetWindowOrgEx
0xf1a980 SetWindowExtEx
0xf1a984 SetWinMetaFileBits
0xf1a988 SetViewportOrgEx
0xf1a98c SetViewportExtEx
0xf1a998 SetTextColor
0xf1a99c SetTextAlign
0xf1a9a0 SetStretchBltMode
0xf1a9a4 SetRectRgn
0xf1a9a8 SetROP2
0xf1a9ac SetPolyFillMode
0xf1a9b0 SetPixelV
0xf1a9b4 SetPixel
0xf1a9b8 SetMetaRgn
0xf1a9bc SetMapperFlags
0xf1a9c0 SetMapMode
0xf1a9c4 SetGraphicsMode
0xf1a9c8 SetEnhMetaFileBits
0xf1a9cc SetDIBits
0xf1a9d0 SetDIBColorTable
0xf1a9d4 SetDCPenColor
0xf1a9d8 SetBrushOrgEx
0xf1a9dc SetBkMode
0xf1a9e0 SetBkColor
0xf1a9e4 SetArcDirection
0xf1a9e8 SetAbortProc
0xf1a9ec SelectPalette
0xf1a9f0 SelectObject
0xf1a9f4 SelectClipRgn
0xf1a9f8 SelectClipPath
0xf1a9fc ScaleWindowExtEx
0xf1aa00 SaveDC
0xf1aa04 RoundRect
0xf1aa08 RestoreDC
0xf1aa0c ResizePalette
0xf1aa10 ResetDCW
0xf1aa14 Rectangle
0xf1aa18 RectVisible
0xf1aa1c RealizePalette
0xf1aa20 PtVisible
0xf1aa24 PolylineTo
0xf1aa28 Polyline
0xf1aa2c Polygon
0xf1aa30 PolyPolyline
0xf1aa34 PolyPolygon
0xf1aa38 PolyBezierTo
0xf1aa3c PolyBezier
0xf1aa44 PlayEnhMetaFile
0xf1aa48 Pie
0xf1aa4c PathToRegion
0xf1aa50 PatBlt
0xf1aa54 OffsetClipRgn
0xf1aa58 MoveToEx
0xf1aa60 MaskBlt
0xf1aa64 LineTo
0xf1aa68 LPtoDP
0xf1aa6c IntersectClipRect
0xf1aa70 GetWorldTransform
0xf1aa74 GetWindowOrgEx
0xf1aa78 GetWindowExtEx
0xf1aa7c GetWinMetaFileBits
0xf1aa80 GetViewportOrgEx
0xf1aa84 GetViewportExtEx
0xf1aa88 GetTextMetricsA
0xf1aa8c GetTextMetricsW
0xf1aa90 GetTextExtentPointW
0xf1aa98 GetTextColor
0xf1aaa0 GetTextAlign
0xf1aaa8 GetStretchBltMode
0xf1aaac GetStockObject
0xf1aab0 GetRgnBox
0xf1aab4 GetPolyFillMode
0xf1aab8 GetPixel
0xf1aabc GetPaletteEntries
0xf1aac4 GetObjectType
0xf1aac8 GetObjectW
0xf1aad0 GetNearestColor
0xf1aad4 GetMapMode
0xf1aad8 GetGlyphIndicesW
0xf1aae0 GetFontData
0xf1aaf0 GetEnhMetaFileBits
0xf1aaf4 GetDeviceCaps
0xf1aaf8 GetDIBits
0xf1aafc GetDIBColorTable
0xf1ab04 GetCurrentObject
0xf1ab08 GetClipRgn
0xf1ab0c GetClipBox
0xf1ab10 GetCharWidthI
0xf1ab14 GetCharWidthA
0xf1ab18 GetBrushOrgEx
0xf1ab1c GetBkMode
0xf1ab20 GetBkColor
0xf1ab24 GetBitmapBits
0xf1ab2c GetArcDirection
0xf1ab30 GdiFlush
0xf1ab34 FrameRgn
0xf1ab38 FillRgn
0xf1ab3c FillPath
0xf1ab40 ExtTextOutW
0xf1ab44 ExtSelectClipRgn
0xf1ab48 ExtFloodFill
0xf1ab4c ExtCreateRegion
0xf1ab50 ExtCreatePen
0xf1ab54 ExcludeClipRect
0xf1ab58 Escape
0xf1ab5c EnumFontsW
0xf1ab60 EnumFontFamiliesExW
0xf1ab64 EnumEnhMetaFile
0xf1ab68 EndPath
0xf1ab6c EndPage
0xf1ab70 EndDoc
0xf1ab74 Ellipse
0xf1ab78 DeleteObject
0xf1ab7c DeleteEnhMetaFile
0xf1ab80 DeleteDC
0xf1ab84 CreateSolidBrush
0xf1ab88 CreateRoundRectRgn
0xf1ab90 CreateRectRgn
0xf1ab94 CreatePolygonRgn
0xf1ab98 CreatePenIndirect
0xf1ab9c CreatePen
0xf1aba0 CreatePatternBrush
0xf1aba4 CreatePalette
0xf1aba8 CreateICW
0xf1abb0 CreateFontIndirectW
0xf1abb4 CreateEnhMetaFileW
0xf1abbc CreateDIBitmap
0xf1abc0 CreateDIBSection
0xf1abc4 CreateDCW
0xf1abc8 CreateCompatibleDC
0xf1abd0 CreateBrushIndirect
0xf1abd4 CreateBitmap
0xf1abd8 CopyEnhMetaFileW
0xf1abdc CombineRgn
0xf1abe0 CloseFigure
0xf1abe4 CloseEnhMetaFile
0xf1abe8 Chord
0xf1abec BitBlt
0xf1abf0 BeginPath
0xf1abf4 ArcTo
0xf1abf8 Arc
0xf1abfc AngleArc
0xf1ac00 AbortDoc
Library version.dll:
0xf1ac08 VerQueryValueW
0xf1ac10 GetFileVersionInfoW
Library mpr.dll:
0xf1ac18 WNetGetConnectionW
Library kernel32.dll:
0xf1ac20 lstrlenA
0xf1ac24 lstrlenW
0xf1ac28 lstrcpynA
0xf1ac2c lstrcpyA
0xf1ac30 lstrcmpiA
0xf1ac34 lstrcmpA
0xf1ac38 lstrcmpW
0xf1ac3c lstrcatA
0xf1ac44 WriteFile
0xf1ac48 WinExec
0xf1ac4c WideCharToMultiByte
0xf1ac54 WaitForSingleObject
0xf1ac5c VirtualQueryEx
0xf1ac60 VirtualQuery
0xf1ac64 VirtualProtect
0xf1ac68 VirtualFree
0xf1ac6c VirtualAlloc
0xf1ac70 VerLanguageNameW
0xf1ac74 UnmapViewOfFile
0xf1ac78 UnlockFile
0xf1ac80 TerminateThread
0xf1ac84 SwitchToThread
0xf1ac88 SuspendThread
0xf1ac8c Sleep
0xf1ac90 SizeofResource
0xf1ac94 SignalObjectAndWait
0xf1ac98 SetThreadPriority
0xf1ac9c SetThreadLocale
0xf1aca0 SetLastError
0xf1aca4 SetFileTime
0xf1aca8 SetFilePointer
0xf1acac SetFileAttributesW
0xf1acb0 SetEvent
0xf1acb4 SetErrorMode
0xf1acb8 SetEndOfFile
0xf1acc0 SearchPathA
0xf1acc4 ResumeThread
0xf1acc8 ResetEvent
0xf1accc RemoveDirectoryW
0xf1acd0 ReleaseMutex
0xf1acd4 ReadFile
0xf1acd8 RaiseException
0xf1ace4 QueryDosDeviceW
0xf1ace8 IsDebuggerPresent
0xf1acec OutputDebugStringA
0xf1acf0 OpenProcess
0xf1acf4 OpenMutexW
0xf1acf8 OpenFileMappingW
0xf1acfc MultiByteToWideChar
0xf1ad00 MulDiv
0xf1ad04 MoveFileA
0xf1ad08 MoveFileW
0xf1ad0c MapViewOfFile
0xf1ad10 LockResource
0xf1ad14 LockFile
0xf1ad18 LocalFree
0xf1ad1c LoadResource
0xf1ad20 LoadLibraryExA
0xf1ad24 LoadLibraryExW
0xf1ad28 LoadLibraryA
0xf1ad2c LoadLibraryW
0xf1ad34 LCMapStringA
0xf1ad38 LCMapStringW
0xf1ad3c IsValidLocale
0xf1ad40 IsDBCSLeadByte
0xf1ad44 IsBadReadPtr
0xf1ad4c HeapSize
0xf1ad50 HeapFree
0xf1ad54 HeapDestroy
0xf1ad58 HeapCreate
0xf1ad5c HeapAlloc
0xf1ad60 GlobalUnlock
0xf1ad64 GlobalSize
0xf1ad68 GlobalHandle
0xf1ad6c GlobalLock
0xf1ad70 GlobalFree
0xf1ad74 GlobalFindAtomW
0xf1ad78 GlobalDeleteAtom
0xf1ad7c GlobalAlloc
0xf1ad80 GlobalAddAtomW
0xf1ad8c GetVersionExA
0xf1ad90 GetVersionExW
0xf1ad94 GetVersion
0xf1ad9c GetTickCount
0xf1ada0 GetThreadPriority
0xf1ada4 GetThreadLocale
0xf1ada8 GetTempPathA
0xf1adac GetTempPathW
0xf1adb0 GetTempFileNameW
0xf1adb4 GetSystemTime
0xf1adb8 GetSystemInfo
0xf1adbc GetSystemTimes
0xf1adc0 GetSystemDirectoryW
0xf1adc8 GetStringTypeExA
0xf1adcc GetStringTypeExW
0xf1add0 GetStdHandle
0xf1add4 GetShortPathNameW
0xf1add8 GetProfileStringW
0xf1addc GetProfileIntW
0xf1ade0 GetProcAddress
0xf1ade8 GetModuleHandleA
0xf1adec GetModuleHandleW
0xf1adf0 GetModuleFileNameA
0xf1adf4 GetModuleFileNameW
0xf1adf8 GetLogicalDrives
0xf1ae00 GetLocaleInfoA
0xf1ae04 GetLocaleInfoW
0xf1ae08 GetLocalTime
0xf1ae0c GetLastError
0xf1ae10 GetFullPathNameA
0xf1ae14 GetFullPathNameW
0xf1ae18 GetFileTime
0xf1ae1c GetFileSize
0xf1ae24 GetFileAttributesA
0xf1ae28 GetFileAttributesW
0xf1ae2c GetExitCodeThread
0xf1ae30 GetDriveTypeW
0xf1ae34 GetDiskFreeSpaceW
0xf1ae38 GetDateFormatW
0xf1ae3c GetCurrentThreadId
0xf1ae40 GetCurrentThread
0xf1ae44 GetCurrentProcessId
0xf1ae48 GetCurrentProcess
0xf1ae50 GetComputerNameA
0xf1ae54 GetComputerNameW
0xf1ae58 GetCPInfoExW
0xf1ae5c GetCPInfo
0xf1ae60 GetACP
0xf1ae64 FreeResource
0xf1ae6c InterlockedExchange
0xf1ae78 FreeLibrary
0xf1ae7c FormatMessageW
0xf1ae80 FlushFileBuffers
0xf1ae84 FindResourceW
0xf1ae88 FindNextFileW
0xf1ae8c FindFirstFileA
0xf1ae90 FindFirstFileW
0xf1ae94 FindClose
0xf1aea4 FatalAppExitA
0xf1aea8 EnumSystemLocalesA
0xf1aeac EnumSystemLocalesW
0xf1aeb0 EnumResourceNamesW
0xf1aeb4 EnumCalendarInfoW
0xf1aec0 DeleteFileA
0xf1aec4 DeleteFileW
0xf1aecc CreateThread
0xf1aed0 CreateSemaphoreW
0xf1aed4 CreateProcessW
0xf1aed8 CreateMutexA
0xf1aedc CreateFileMappingW
0xf1aee0 CreateFileA
0xf1aee4 CreateFileW
0xf1aee8 CreateEventW
0xf1aeec CreateDirectoryW
0xf1aef0 CopyFileW
0xf1aef4 CompareStringA
0xf1aef8 CompareStringW
0xf1aefc CloseHandle
Library advapi32.dll:
0xf1af04 RegUnLoadKeyW
0xf1af08 RegSetValueExA
0xf1af0c RegSetValueExW
0xf1af10 RegSaveKeyW
0xf1af14 RegRestoreKeyW
0xf1af18 RegReplaceKeyW
0xf1af1c RegQueryValueExA
0xf1af20 RegQueryValueExW
0xf1af24 RegQueryValueW
0xf1af28 RegQueryInfoKeyW
0xf1af2c RegOpenKeyExA
0xf1af30 RegOpenKeyExW
0xf1af34 RegOpenKeyW
0xf1af38 RegLoadKeyW
0xf1af3c RegFlushKey
0xf1af40 RegEnumValueW
0xf1af44 RegEnumKeyExW
0xf1af48 RegDeleteValueW
0xf1af4c RegDeleteKeyA
0xf1af50 RegDeleteKeyW
0xf1af54 RegCreateKeyExA
0xf1af58 RegCreateKeyExW
0xf1af5c RegConnectRegistryW
0xf1af60 RegCloseKey
Library SHFolder.dll:
0xf1af68 SHGetFolderPathW
Library kernel32.dll:
0xf1af70 Sleep
Library ole32.dll:
0xf1af78 CoCreateGuid
Library oleaut32.dll:
0xf1af80 SafeArrayPtrOfIndex
0xf1af84 SafeArrayPutElement
0xf1af88 SafeArrayGetElement
0xf1af90 SafeArrayAccessData
0xf1af94 SafeArrayGetUBound
0xf1af98 SafeArrayGetLBound
0xf1af9c SafeArrayCopy
0xf1afa0 SafeArrayDestroy
0xf1afa4 SafeArrayCreate
0xf1afa8 VariantChangeType
0xf1afac VariantCopyInd
0xf1afb0 VariantCopy
0xf1afb4 VariantClear
0xf1afb8 VariantInit
Library oleaut32.dll:
0xf1afc0 CreateErrorInfo
0xf1afc4 GetErrorInfo
0xf1afc8 SetErrorInfo
0xf1afcc UnRegisterTypeLib
0xf1afd0 RegisterTypeLib
0xf1afd4 LoadTypeLib
0xf1afd8 VariantInit
0xf1afe0 SafeArrayAccessData
0xf1afe4 SafeArrayRedim
0xf1afe8 SafeArrayDestroy
0xf1aff0 SafeArrayAllocData
0xf1aff8 SysFreeString
Library ole32.dll:
0xf1b004 OleUninitialize
0xf1b008 OleInitialize
0xf1b00c WriteClassStg
0xf1b010 StgIsStorageFile
0xf1b014 StgOpenStorage
0xf1b018 StgCreateDocfile
0xf1b01c CoTaskMemFree
0xf1b020 CoTaskMemAlloc
0xf1b024 CoCreateGuid
0xf1b028 StringFromGUID2
0xf1b02c CLSIDFromProgID
0xf1b030 StringFromCLSID
0xf1b034 CoCreateInstance
0xf1b038 CoDisconnectObject
0xf1b03c CoUninitialize
0xf1b040 CoInitialize
0xf1b044 IsEqualGUID
Library comctl32.dll:
0xf1b04c InitializeFlatSB
0xf1b054 FlatSB_SetScrollPos
0xf1b05c FlatSB_GetScrollPos
0xf1b064 _TrackMouseEvent
0xf1b074 ImageList_Write
0xf1b078 ImageList_Read
0xf1b084 ImageList_DragMove
0xf1b088 ImageList_DragLeave
0xf1b08c ImageList_DragEnter
0xf1b090 ImageList_EndDrag
0xf1b094 ImageList_BeginDrag
0xf1b098 ImageList_Copy
0xf1b0a0 ImageList_GetIcon
0xf1b0a4 ImageList_Remove
0xf1b0a8 ImageList_DrawEx
0xf1b0ac ImageList_Replace
0xf1b0b0 ImageList_Draw
0xf1b0c4 ImageList_Add
0xf1b0d0 ImageList_Destroy
0xf1b0d4 ImageList_Create
0xf1b0d8 InitCommonControls
Library user32.dll:
0xf1b0e0 EnumDisplayMonitors
0xf1b0e4 GetMonitorInfoW
0xf1b0e8 MonitorFromPoint
0xf1b0ec MonitorFromRect
0xf1b0f0 MonitorFromWindow
Library msvcrt.dll:
0xf1b0f8 _mbctype
0xf1b0fc _gcvt
0xf1b100 atol
0xf1b104 atof
0xf1b108 _atoi64
0xf1b10c _itoa
0xf1b110 sprintf
0xf1b114 isxdigit
0xf1b118 isupper
0xf1b11c isspace
0xf1b120 ispunct
0xf1b124 isprint
0xf1b128 islower
0xf1b12c isgraph
0xf1b130 isdigit
0xf1b134 iscntrl
0xf1b138 isalpha
0xf1b13c isalnum
0xf1b140 towupper
0xf1b144 towlower
0xf1b148 toupper
0xf1b14c tolower
0xf1b150 strstr
0xf1b154 wcstombs
0xf1b158 wcslen
0xf1b15c _mbscspn
0xf1b160 _stricmp
0xf1b164 strcspn
0xf1b168 strchr
0xf1b16c strlen
0xf1b170 strncmp
0xf1b174 strcmp
0xf1b178 strncpy
0xf1b17c strcpy
0xf1b180 strcat
0xf1b184 memset
0xf1b188 memmove
0xf1b18c memcpy
0xf1b190 memcmp
0xf1b194 memchr

Hosts

No hosts contacted.

TCP

No TCP connections recorded.

UDP

Source Source Port Destination Destination Port
192.168.56.101 51378 114.114.114.114 53
192.168.56.101 53657 114.114.114.114 53
192.168.56.101 57874 114.114.114.114 53
192.168.56.101 60384 114.114.114.114 53
192.168.56.101 62318 114.114.114.114 53
192.168.56.101 137 192.168.56.255 137
192.168.56.101 138 192.168.56.255 138
192.168.56.101 123 20.189.79.72 time.windows.com 123
192.168.56.101 49235 224.0.0.252 5355
192.168.56.101 49713 224.0.0.252 5355
192.168.56.101 50534 224.0.0.252 5355
192.168.56.101 51808 224.0.0.252 5355
192.168.56.101 51963 224.0.0.252 5355
192.168.56.101 56804 224.0.0.252 5355
192.168.56.101 57756 224.0.0.252 5355
192.168.56.101 62191 224.0.0.252 5355
192.168.56.101 63429 224.0.0.252 5355
192.168.56.101 1900 239.255.255.250 1900
192.168.56.101 49238 239.255.255.250 1900
192.168.56.101 50535 239.255.255.250 3702

HTTP & HTTPS Requests

No HTTP requests performed.

ICMP traffic

No ICMP traffic performed.

IRC traffic

No IRC requests performed.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Snort Alerts

No Snort Alerts

Sorry! No dropped files.
Sorry! No dropped buffers.