Architecture |
IMAGE_FILE_MACHINE_I386
|
---|---|
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
Compilation Date | 2020-Apr-29 18:30:25 |
Detected languages |
English - United States
|
CompanyName | PassMark Software |
FileDescription | imageUSB |
FileVersion | 1.4.1000.0 |
InternalName | imageUSB |
LegalCopyright | Copyright (C) 2018 |
OriginalFilename | imageUSB.exe |
ProductName | imageUSB Application |
ProductVersion | 1.4.1000.0 |
Suspicious | The PE is possibly packed. |
Unusual section name found: .didata
Unusual section name found: .MrsEZUN Unusual section name found: .MrsEZUN |
Malicious | The PE contains functions mostly used by malware. |
[!] The program may be hiding some of its imports:
|
Suspicious | The PE header may have been manually modified. |
The resource timestamps differ from the PE header:
|
Malicious | VirusTotal score: 49/69 (Scanned on 2020-05-04 06:55:40) |
Bkav:
HW32.Packed.
MicroWorld-eScan: Application.Bundler.DownloadAssistant.U FireEye: Generic.mg.97d86fbe1f2dba45 McAfee: GenericRXAA-AA!97D86FBE1F2D Cylance: Unsafe K7AntiVirus: Adware ( 0056214d1 ) Alibaba: Trojan:Win32/Ekstak.f1a2774c K7GW: Adware ( 0056214d1 ) CrowdStrike: win/malicious_confidence_60% (W) Arcabit: Application.Bundler.DownloadAssistant.U BitDefenderTheta: Gen:NN.ZexaF.34108.@R0@amJxNYgi F-Prot: W32/S-1433a10e!Eldorado Symantec: ML.Attribute.HighConfidence TrendMicro-HouseCall: TROJ_GEN.R014H07DT20 Paloalto: generic.ml Kaspersky: Trojan.Win32.Ekstak.zqhr BitDefender: Application.Bundler.DownloadAssistant.U ViRobot: Trojan.Win32.Z.Downloadassistant.6098944.A Tencent: Win32.Trojan.Ekstak.Hwcu Ad-Aware: Application.Bundler.DownloadAssistant.U Emsisoft: Application.Bundler.DownloadAssistant.U (B) Comodo: ApplicUnwnt@#h21n5w44qkve F-Secure: Trojan.TR/Crypt.XPACK.Gen3 VIPRE: Trojan.Win32.Generic!BT Invincea: heuristic Fortinet: Riskware/Ekstak Sophos: Download Assistant (PUA) APEX: Malicious Cyren: W32/S-1433a10e!Eldorado Avira: TR/Crypt.XPACK.Gen3 MAX: malware (ai score=79) Antiy-AVL: RiskWare[Downloader]/Win32.DownloadAsist Endgame: malicious (high confidence) Microsoft: Trojan:Win32/Wacatac.D!ml AegisLab: Riskware.Win32.DownloadAsist.1!c ZoneAlarm: Trojan.Win32.Ekstak.zqhr SentinelOne: DFI - Suspicious PE AhnLab-V3: PUP/Win32.DownloadAssistant.R334812 Acronis: suspicious Malwarebytes: Adware.DownloadAssistant ESET-NOD32: a variant of Win32/DownloadAssistant.Y potentially unwanted Rising: Trojan.Generic@ML.100 (RDML:vAAIzxXuPbjsHD+Ixpc7fA) Yandex: Riskware.Agent! MaxSecure: Trojan.Malware.97624397.susgen GData: Application.Bundler.DownloadAssistant.U AVG: Win32:AdwareX-gen [Adw] Cybereason: malicious.91adf6 Panda: Trj/Genetic.gen Qihoo-360: Win32/Virus.Downloader.a98 |
e_magic | MZ |
---|---|
e_cblp | 0x50 |
e_cp | 0x2 |
e_crlc | 0 |
e_cparhdr | 0x4 |
e_minalloc | 0xf |
e_maxalloc | 0xffff |
e_ss | 0 |
e_sp | 0xb8 |
e_csum | 0 |
e_ip | 0 |
e_cs | 0 |
e_ovno | 0x1a |
e_oemid | 0 |
e_oeminfo | 0 |
e_lfanew | 0x80 |
Signature | PE |
---|---|
Machine |
IMAGE_FILE_MACHINE_I386
|
NumberofSections | 10 |
TimeDateStamp | 2020-Apr-29 18:30:25 |
PointerToSymbolTable | 0 |
NumberOfSymbols | 0 |
SizeOfOptionalHeader | 0xe0 |
Characteristics |
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_RELOCS_STRIPPED
|
Magic | PE32 |
---|---|
LinkerVersion | 5.0 |
SizeOfCode | 0x41a000 |
SizeOfInitializedData | 0x117000 |
SizeOfUninitializedData | 0 |
AddressOfEntryPoint | 0x0092EA39 (Section: .MrsEZUN) |
BaseOfCode | 0x1000 |
BaseOfData | 0x41b000 |
ImageBase | 0x400000 |
SectionAlignment | 0x1000 |
FileAlignment | 0x200 |
OperatingSystemVersion | 5.0 |
ImageVersion | 0.0 |
SubsystemVersion | 5.0 |
Win32VersionValue | 0 |
SizeOfImage | 0xc64000 |
SizeOfHeaders | 0x600 |
Checksum | 0x5d12ba |
Subsystem |
IMAGE_SUBSYSTEM_WINDOWS_GUI
|
SizeofStackReserve | 0x100000 |
SizeofStackCommit | 0x2000 |
SizeofHeapReserve | 0x100000 |
SizeofHeapCommit | 0x1000 |
LoaderFlags | 0 |
NumberOfRvaAndSizes | 16 |
ADVAPI32.DLL |
AdjustTokenPrivileges
ConvertSidToStringSidA GetTokenInformation GetUserNameA LookupPrivilegeValueW OpenProcessToken RegCloseKey RegConnectRegistryW RegCreateKeyExW RegDeleteKeyW RegDeleteValueW RegEnumKeyExW RegEnumValueW RegFlushKey RegLoadKeyW RegOpenKeyExA RegOpenKeyExW RegQueryInfoKeyW RegQueryValueExA RegQueryValueExW RegReplaceKeyW RegRestoreKeyW RegSaveKeyW RegSetValueExW RegUnLoadKeyW |
---|---|
KERNEL32.DLL |
CloseHandle
CompareStringW CreateDirectoryA CreateEventW CreateFileA CreateFileW CreateMutexW CreateProcessW CreateThread CreateToolhelp32Snapshot DeleteCriticalSection DeleteFileA EnterCriticalSection EnumCalendarInfoW EnumResourceNamesW EnumSystemLocalesW ExitProcess ExitThread ExpandEnvironmentStringsA FileTimeToSystemTime FindClose FindFirstFileW FindResourceW FormatMessageW FreeLibrary FreeResource GetACP GetCPInfo GetCPInfoExW GetCommandLineW GetComputerNameW GetCurrentProcess GetCurrentProcessId GetCurrentThread GetCurrentThreadId GetDateFormatW GetDiskFreeSpaceW GetEnvironmentStrings GetEnvironmentStringsW GetEnvironmentVariableW GetExitCodeThread GetFileAttributesA GetFileAttributesW GetFileSize GetFileType GetFullPathNameW GetLastError GetLocalTime GetLocaleInfoA GetLocaleInfoW GetLogicalDriveStringsA GetModuleFileNameA GetModuleFileNameW GetModuleHandleA GetModuleHandleW GetOEMCP GetProcAddress GetProcessHeap GetStartupInfoA GetStartupInfoW GetStdHandle GetStringTypeA GetStringTypeW GetSystemDefaultLangID GetSystemDefaultUILanguage GetSystemInfo GetTempPathA GetTempPathW GetThreadLocale GetThreadPriority GetTickCount GetTimeZoneInformation GetUserDefaultLCID GetUserDefaultUILanguage GetVersion GetVersionExA GetVersionExW GetVolumeInformationA GlobalAddAtomW GlobalAlloc GlobalDeleteAtom GlobalFindAtomW GlobalFree GlobalLock GlobalUnlock HeapAlloc HeapCreate HeapDestroy HeapFree HeapSize InitializeCriticalSection InterlockedDecrement InterlockedExchange InterlockedIncrement IsDBCSLeadByteEx IsDebuggerPresent IsValidLocale LCMapStringA LCMapStringW LeaveCriticalSection LoadLibraryA LoadLibraryExW LoadLibraryW LoadResource LocalAlloc LocalFree LockResource MulDiv MultiByteToWideChar OpenProcess OutputDebugStringW Process32FirstW Process32NextW QueryPerformanceCounter QueryPerformanceFrequency RaiseException ReadFile ReleaseMutex ResetEvent ResumeThread RtlUnwind SetConsoleCtrlHandler SetEndOfFile SetErrorMode SetEvent SetFilePointer SetHandleCount SetLastError SetThreadLocale SetThreadPriority SizeofResource Sleep SuspendThread SwitchToThread TerminateProcess TerminateThread TlsAlloc TlsFree TlsGetValue TlsSetValue TryEnterCriticalSection UnhandledExceptionFilter VerSetConditionMask VerifyVersionInfoW VirtualAlloc VirtualFree VirtualProtect VirtualQuery VirtualQueryEx WaitForMultipleObjectsEx WaitForSingleObject WideCharToMultiByte WriteFile lstrcmpW lstrlenW |
NETAPI32.DLL |
NetApiBufferFree
NetWkstaGetInfo |
RPCRT4.DLL |
RpcStringFreeW
UuidToStringW |
VERSION.DLL |
GetFileVersionInfoSizeW
GetFileVersionInfoW VerQueryValueW |
WINSPOOL.DRV |
ClosePrinter
DocumentPropertiesW EnumPrintersW #203 OpenPrinterW |
COMCTL32.DLL |
FlatSB_GetScrollInfo
FlatSB_GetScrollPos FlatSB_SetScrollInfo FlatSB_SetScrollPos FlatSB_SetScrollProp ImageList_Add ImageList_BeginDrag ImageList_Copy ImageList_Create ImageList_Destroy ImageList_DragEnter ImageList_DragLeave ImageList_DragMove ImageList_DragShowNolock ImageList_Draw ImageList_DrawEx ImageList_EndDrag ImageList_GetBkColor ImageList_GetDragImage ImageList_GetIcon ImageList_GetIconSize ImageList_GetImageCount ImageList_GetImageInfo ImageList_LoadImageW ImageList_Read ImageList_Remove ImageList_Replace ImageList_ReplaceIcon ImageList_SetBkColor ImageList_SetIconSize ImageList_SetImageCount ImageList_SetOverlayImage ImageList_Write #17 InitializeFlatSB _TrackMouseEvent |
COMDLG32.DLL |
ChooseColorW
GetSaveFileNameW |
DWMAPI.DLL | (EMPTY) |
GDI32.DLL |
AbortDoc
AngleArc Arc ArcTo BitBlt Chord CombineRgn CopyEnhMetaFileW CreateBitmap CreateBrushIndirect CreateCompatibleBitmap CreateCompatibleDC CreateDCW CreateDIBSection CreateDIBitmap CreateFontIndirectW CreateHalftonePalette CreateICW CreatePalette CreatePenIndirect CreateRectRgn CreateSolidBrush DeleteDC DeleteEnhMetaFile DeleteObject Ellipse EndDoc EndPage EnumFontFamiliesExW EnumFontsW ExcludeClipRect ExtFloodFill ExtTextOutW FrameRgn GdiFlush GetBitmapBits GetBkMode GetBrushOrgEx GetClipBox GetCurrentPositionEx GetDIBColorTable GetDIBits GetDeviceCaps GetEnhMetaFileBits GetEnhMetaFileDescriptionW GetEnhMetaFileHeader GetEnhMetaFilePaletteEntries GetNearestPaletteIndex GetObjectW GetPaletteEntries GetPixel GetRgnBox GetStockObject GetStretchBltMode GetSystemPaletteEntries GetTextExtentPoint32W GetTextExtentPointW GetTextMetricsW GetWinMetaFileBits GetWindowOrgEx IntersectClipRect LineTo MaskBlt MoveToEx PatBlt Pie PlayEnhMetaFile PolyBezier PolyBezierTo Polygon Polyline RealizePalette RectVisible Rectangle ResizePalette RestoreDC RoundRect SaveDC SelectClipRgn SelectObject SelectPalette SetAbortProc SetBkColor SetBkMode SetBrushOrgEx SetDIBColorTable SetDIBits SetEnhMetaFileBits SetMapMode SetPixel SetROP2 SetRectRgn SetStretchBltMode SetTextColor SetViewportOrgEx SetWinMetaFileBits SetWindowOrgEx StartDocW StartPage StretchBlt StretchDIBits UnrealizeObject |
MSIMG32.DLL | (EMPTY) |
SHELL32.DLL |
ShellExecuteW
Shell_NotifyIconW #190 #155 SHOpenFolderAndSelectItems |
SHFOLDER.DLL |
SHGetFolderPathA
SHGetFolderPathW |
USER32.DLL |
ActivateKeyboardLayout
AdjustWindowRectEx BeginPaint CallNextHookEx CallWindowProcW CharLowerBuffW CharLowerW CharNextW CharUpperBuffW CharUpperW CheckMenuItem ChildWindowFromPoint ClientToScreen CloseClipboard CopyIcon CopyImage CreateAcceleratorTableW CreateIcon CreateMenu CreatePopupMenu CreateWindowExW DefFrameProcW DefMDIChildProcW DefWindowProcW DeleteMenu DestroyCursor DestroyIcon DestroyMenu DestroyWindow DispatchMessageA DispatchMessageW DrawEdge DrawFocusRect DrawFrameControl DrawIcon DrawIconEx DrawMenuBar DrawTextExW DrawTextW EmptyClipboard EnableMenuItem EnableScrollBar EnableWindow EndMenu EndPaint EnumChildWindows EnumDisplayDevicesW EnumDisplayMonitors EnumThreadWindows EnumWindows FillRect FindWindowExW FindWindowW FrameRect GetActiveWindow GetCapture GetClassInfoW GetClassLongW GetClassNameW GetClientRect GetClipboardData GetCursor GetCursorPos GetDC GetDCEx GetDesktopWindow GetDlgCtrlID GetFocus GetForegroundWindow GetIconInfo GetKeyNameTextW GetKeyState GetKeyboardLayout GetKeyboardLayoutList GetKeyboardLayoutNameW GetKeyboardState GetLastActivePopup GetMenu GetMenuItemCount GetMenuItemID GetMenuItemInfoW GetMenuState GetMenuStringW GetMessageExtraInfo GetMessagePos GetMonitorInfoW GetParent GetPropW GetScrollBarInfo GetScrollInfo GetScrollPos GetScrollRange GetShellWindow GetSubMenu GetSysColor GetSysColorBrush GetSystemMenu GetSystemMetrics GetTopWindow GetUpdateRect GetWindow GetWindowDC GetWindowLongW GetWindowPlacement GetWindowRect GetWindowTextW GetWindowThreadProcessId HideCaret InsertMenuItemW InsertMenuW InvalidateRect IsChild IsDialogMessageA IsDialogMessageW IsIconic IsWindow IsWindowEnabled IsWindowUnicode IsWindowVisible IsZoomed KillTimer LoadBitmapW LoadCursorW LoadIconW LoadKeyboardLayoutW LoadStringW LockWindowUpdate MapVirtualKeyW MapWindowPoints MessageBeep MessageBoxW MonitorFromPoint MonitorFromRect MonitorFromWindow MoveWindow MsgWaitForMultipleObjects MsgWaitForMultipleObjectsEx OpenClipboard PeekMessageA PeekMessageW PostMessageW PostQuitMessage RedrawWindow RegisterClassW RegisterClipboardFormatW RegisterWindowMessageW ReleaseCapture ReleaseDC RemoveMenu RemovePropW ScreenToClient ScrollWindow SendMessageA SendMessageW SetActiveWindow SetCapture SetClassLongW SetClipboardData SetCursor SetCursorPos SetFocus SetForegroundWindow SetMenu SetMenuItemInfoW SetParent SetPropW SetRect SetScrollInfo SetScrollPos SetScrollRange SetTimer SetWindowLongW SetWindowPlacement SetWindowPos SetWindowRgn SetWindowTextW SetWindowsHookExW ShowCaret ShowOwnedPopups ShowScrollBar ShowWindow SystemParametersInfoW TrackPopupMenu TranslateMDISysAccel TranslateMessage UnhookWindowsHookEx UnregisterClassW UpdateWindow WaitMessage WindowFromPoint wsprintfA |
IMM32.DLL | (EMPTY) |
OLE32.DLL |
CoCreateInstance
CoInitialize CoInitializeEx CoInitializeSecurity CoSetProxyBlanket CoTaskMemAlloc CoTaskMemFree CoUninitialize IsEqualGUID OleInitialize OleUninitialize |
OLEAUT32.DLL |
#200
#15 #20 #19 #148 #2 #4 #6 #5 #12 #9 #10 #8 |
SHLWAPI.DLL |
PathFileExistsA
PathFindFileNameW #156 StrFormatByteSizeW |
IPHLPAPI.DLL |
GetAdaptersInfo
|
CRYPT32.DLL | (EMPTY) |
WINHTTP.DLL |
WinHttpAddRequestHeaders
WinHttpCloseHandle WinHttpConnect WinHttpGetIEProxyConfigForCurrentUser WinHttpGetProxyForUrl WinHttpOpen WinHttpOpenRequest WinHttpQueryAuthSchemes WinHttpQueryDataAvailable WinHttpQueryHeaders WinHttpQueryOption WinHttpReadData WinHttpReceiveResponse WinHttpSendRequest WinHttpSetCredentials WinHttpSetOption WinHttpSetStatusCallback WinHttpSetTimeouts WinHttpWriteData |
WTSAPI32.DLL |
WTSEnumerateProcessesW
WTSFreeMemory |
WINDOWSCODECS.DLL | (EMPTY) |
UXTHEME.DLL | (EMPTY) |
SHCORE.DLL | (EMPTY) |
URLMON.DLL |
URLDownloadToFileW
UrlMkSetSessionOption |
WTSAPI32.DLL (#2) |
WTSEnumerateProcessesW
WTSFreeMemory |
KERNEL32.DLL (#2) |
CloseHandle
CompareStringW CreateDirectoryA CreateEventW CreateFileA CreateFileW CreateMutexW CreateProcessW CreateThread CreateToolhelp32Snapshot DeleteCriticalSection DeleteFileA EnterCriticalSection EnumCalendarInfoW EnumResourceNamesW EnumSystemLocalesW ExitProcess ExitThread ExpandEnvironmentStringsA FileTimeToSystemTime FindClose FindFirstFileW FindResourceW FormatMessageW FreeLibrary FreeResource GetACP GetCPInfo GetCPInfoExW GetCommandLineW GetComputerNameW GetCurrentProcess GetCurrentProcessId GetCurrentThread GetCurrentThreadId GetDateFormatW GetDiskFreeSpaceW GetEnvironmentStrings GetEnvironmentStringsW GetEnvironmentVariableW GetExitCodeThread GetFileAttributesA GetFileAttributesW GetFileSize GetFileType GetFullPathNameW GetLastError GetLocalTime GetLocaleInfoA GetLocaleInfoW GetLogicalDriveStringsA GetModuleFileNameA GetModuleFileNameW GetModuleHandleA GetModuleHandleW GetOEMCP GetProcAddress GetProcessHeap GetStartupInfoA GetStartupInfoW GetStdHandle GetStringTypeA GetStringTypeW GetSystemDefaultLangID GetSystemDefaultUILanguage GetSystemInfo GetTempPathA GetTempPathW GetThreadLocale GetThreadPriority GetTickCount GetTimeZoneInformation GetUserDefaultLCID GetUserDefaultUILanguage GetVersion GetVersionExA GetVersionExW GetVolumeInformationA GlobalAddAtomW GlobalAlloc GlobalDeleteAtom GlobalFindAtomW GlobalFree GlobalLock GlobalUnlock HeapAlloc HeapCreate HeapDestroy HeapFree HeapSize InitializeCriticalSection InterlockedDecrement InterlockedExchange InterlockedIncrement IsDBCSLeadByteEx IsDebuggerPresent IsValidLocale LCMapStringA LCMapStringW LeaveCriticalSection LoadLibraryA LoadLibraryExW LoadLibraryW LoadResource LocalAlloc LocalFree LockResource MulDiv MultiByteToWideChar OpenProcess OutputDebugStringW Process32FirstW Process32NextW QueryPerformanceCounter QueryPerformanceFrequency RaiseException ReadFile ReleaseMutex ResetEvent ResumeThread RtlUnwind SetConsoleCtrlHandler SetEndOfFile SetErrorMode SetEvent SetFilePointer SetHandleCount SetLastError SetThreadLocale SetThreadPriority SizeofResource Sleep SuspendThread SwitchToThread TerminateProcess TerminateThread TlsAlloc TlsFree TlsGetValue TlsSetValue TryEnterCriticalSection UnhandledExceptionFilter VerSetConditionMask VerifyVersionInfoW VirtualAlloc VirtualFree VirtualProtect VirtualQuery VirtualQueryEx WaitForMultipleObjectsEx WaitForSingleObject WideCharToMultiByte WriteFile lstrcmpW lstrlenW |
USER32.DLL (#2) |
ActivateKeyboardLayout
AdjustWindowRectEx BeginPaint CallNextHookEx CallWindowProcW CharLowerBuffW CharLowerW CharNextW CharUpperBuffW CharUpperW CheckMenuItem ChildWindowFromPoint ClientToScreen CloseClipboard CopyIcon CopyImage CreateAcceleratorTableW CreateIcon CreateMenu CreatePopupMenu CreateWindowExW DefFrameProcW DefMDIChildProcW DefWindowProcW DeleteMenu DestroyCursor DestroyIcon DestroyMenu DestroyWindow DispatchMessageA DispatchMessageW DrawEdge DrawFocusRect DrawFrameControl DrawIcon DrawIconEx DrawMenuBar DrawTextExW DrawTextW EmptyClipboard EnableMenuItem EnableScrollBar EnableWindow EndMenu EndPaint EnumChildWindows EnumDisplayDevicesW EnumDisplayMonitors EnumThreadWindows EnumWindows FillRect FindWindowExW FindWindowW FrameRect GetActiveWindow GetCapture GetClassInfoW GetClassLongW GetClassNameW GetClientRect GetClipboardData GetCursor GetCursorPos GetDC GetDCEx GetDesktopWindow GetDlgCtrlID GetFocus GetForegroundWindow GetIconInfo GetKeyNameTextW GetKeyState GetKeyboardLayout GetKeyboardLayoutList GetKeyboardLayoutNameW GetKeyboardState GetLastActivePopup GetMenu GetMenuItemCount GetMenuItemID GetMenuItemInfoW GetMenuState GetMenuStringW GetMessageExtraInfo GetMessagePos GetMonitorInfoW GetParent GetPropW GetScrollBarInfo GetScrollInfo GetScrollPos GetScrollRange GetShellWindow GetSubMenu GetSysColor GetSysColorBrush GetSystemMenu GetSystemMetrics GetTopWindow GetUpdateRect GetWindow GetWindowDC GetWindowLongW GetWindowPlacement GetWindowRect GetWindowTextW GetWindowThreadProcessId HideCaret InsertMenuItemW InsertMenuW InvalidateRect IsChild IsDialogMessageA IsDialogMessageW IsIconic IsWindow IsWindowEnabled IsWindowUnicode IsWindowVisible IsZoomed KillTimer LoadBitmapW LoadCursorW LoadIconW LoadKeyboardLayoutW LoadStringW LockWindowUpdate MapVirtualKeyW MapWindowPoints MessageBeep MessageBoxW MonitorFromPoint MonitorFromRect MonitorFromWindow MoveWindow MsgWaitForMultipleObjects MsgWaitForMultipleObjectsEx OpenClipboard PeekMessageA PeekMessageW PostMessageW PostQuitMessage RedrawWindow RegisterClassW RegisterClipboardFormatW RegisterWindowMessageW ReleaseCapture ReleaseDC RemoveMenu RemovePropW ScreenToClient ScrollWindow SendMessageA SendMessageW SetActiveWindow SetCapture SetClassLongW SetClipboardData SetCursor SetCursorPos SetFocus SetForegroundWindow SetMenu SetMenuItemInfoW SetParent SetPropW SetRect SetScrollInfo SetScrollPos SetScrollRange SetTimer SetWindowLongW SetWindowPlacement SetWindowPos SetWindowRgn SetWindowTextW SetWindowsHookExW ShowCaret ShowOwnedPopups ShowScrollBar ShowWindow SystemParametersInfoW TrackPopupMenu TranslateMDISysAccel TranslateMessage UnhookWindowsHookEx UnregisterClassW UpdateWindow WaitMessage WindowFromPoint wsprintfA |
KERNEL32.DLL (#3) |
CloseHandle
CompareStringW CreateDirectoryA CreateEventW CreateFileA CreateFileW CreateMutexW CreateProcessW CreateThread CreateToolhelp32Snapshot DeleteCriticalSection DeleteFileA EnterCriticalSection EnumCalendarInfoW EnumResourceNamesW EnumSystemLocalesW ExitProcess ExitThread ExpandEnvironmentStringsA FileTimeToSystemTime FindClose FindFirstFileW FindResourceW FormatMessageW FreeLibrary FreeResource GetACP GetCPInfo GetCPInfoExW GetCommandLineW GetComputerNameW GetCurrentProcess GetCurrentProcessId GetCurrentThread GetCurrentThreadId GetDateFormatW GetDiskFreeSpaceW GetEnvironmentStrings GetEnvironmentStringsW GetEnvironmentVariableW GetExitCodeThread GetFileAttributesA GetFileAttributesW GetFileSize GetFileType GetFullPathNameW GetLastError GetLocalTime GetLocaleInfoA GetLocaleInfoW GetLogicalDriveStringsA GetModuleFileNameA GetModuleFileNameW GetModuleHandleA GetModuleHandleW GetOEMCP GetProcAddress GetProcessHeap GetStartupInfoA GetStartupInfoW GetStdHandle GetStringTypeA GetStringTypeW GetSystemDefaultLangID GetSystemDefaultUILanguage GetSystemInfo GetTempPathA GetTempPathW GetThreadLocale GetThreadPriority GetTickCount GetTimeZoneInformation GetUserDefaultLCID GetUserDefaultUILanguage GetVersion GetVersionExA GetVersionExW GetVolumeInformationA GlobalAddAtomW GlobalAlloc GlobalDeleteAtom GlobalFindAtomW GlobalFree GlobalLock GlobalUnlock HeapAlloc HeapCreate HeapDestroy HeapFree HeapSize InitializeCriticalSection InterlockedDecrement InterlockedExchange InterlockedIncrement IsDBCSLeadByteEx IsDebuggerPresent IsValidLocale LCMapStringA LCMapStringW LeaveCriticalSection LoadLibraryA LoadLibraryExW LoadLibraryW LoadResource LocalAlloc LocalFree LockResource MulDiv MultiByteToWideChar OpenProcess OutputDebugStringW Process32FirstW Process32NextW QueryPerformanceCounter QueryPerformanceFrequency RaiseException ReadFile ReleaseMutex ResetEvent ResumeThread RtlUnwind SetConsoleCtrlHandler SetEndOfFile SetErrorMode SetEvent SetFilePointer SetHandleCount SetLastError SetThreadLocale SetThreadPriority SizeofResource Sleep SuspendThread SwitchToThread TerminateProcess TerminateThread TlsAlloc TlsFree TlsGetValue TlsSetValue TryEnterCriticalSection UnhandledExceptionFilter VerSetConditionMask VerifyVersionInfoW VirtualAlloc VirtualFree VirtualProtect VirtualQuery VirtualQueryEx WaitForMultipleObjectsEx WaitForSingleObject WideCharToMultiByte WriteFile lstrcmpW lstrlenW |
USER32.DLL (#3) |
ActivateKeyboardLayout
AdjustWindowRectEx BeginPaint CallNextHookEx CallWindowProcW CharLowerBuffW CharLowerW CharNextW CharUpperBuffW CharUpperW CheckMenuItem ChildWindowFromPoint ClientToScreen CloseClipboard CopyIcon CopyImage CreateAcceleratorTableW CreateIcon CreateMenu CreatePopupMenu CreateWindowExW DefFrameProcW DefMDIChildProcW DefWindowProcW DeleteMenu DestroyCursor DestroyIcon DestroyMenu DestroyWindow DispatchMessageA DispatchMessageW DrawEdge DrawFocusRect DrawFrameControl DrawIcon DrawIconEx DrawMenuBar DrawTextExW DrawTextW EmptyClipboard EnableMenuItem EnableScrollBar EnableWindow EndMenu EndPaint EnumChildWindows EnumDisplayDevicesW EnumDisplayMonitors EnumThreadWindows EnumWindows FillRect FindWindowExW FindWindowW FrameRect GetActiveWindow GetCapture GetClassInfoW GetClassLongW GetClassNameW GetClientRect GetClipboardData GetCursor GetCursorPos GetDC GetDCEx GetDesktopWindow GetDlgCtrlID GetFocus GetForegroundWindow GetIconInfo GetKeyNameTextW GetKeyState GetKeyboardLayout GetKeyboardLayoutList GetKeyboardLayoutNameW GetKeyboardState GetLastActivePopup GetMenu GetMenuItemCount GetMenuItemID GetMenuItemInfoW GetMenuState GetMenuStringW GetMessageExtraInfo GetMessagePos GetMonitorInfoW GetParent GetPropW GetScrollBarInfo GetScrollInfo GetScrollPos GetScrollRange GetShellWindow GetSubMenu GetSysColor GetSysColorBrush GetSystemMenu GetSystemMetrics GetTopWindow GetUpdateRect GetWindow GetWindowDC GetWindowLongW GetWindowPlacement GetWindowRect GetWindowTextW GetWindowThreadProcessId HideCaret InsertMenuItemW InsertMenuW InvalidateRect IsChild IsDialogMessageA IsDialogMessageW IsIconic IsWindow IsWindowEnabled IsWindowUnicode IsWindowVisible IsZoomed KillTimer LoadBitmapW LoadCursorW LoadIconW LoadKeyboardLayoutW LoadStringW LockWindowUpdate MapVirtualKeyW MapWindowPoints MessageBeep MessageBoxW MonitorFromPoint MonitorFromRect MonitorFromWindow MoveWindow MsgWaitForMultipleObjects MsgWaitForMultipleObjectsEx OpenClipboard PeekMessageA PeekMessageW PostMessageW PostQuitMessage RedrawWindow RegisterClassW RegisterClipboardFormatW RegisterWindowMessageW ReleaseCapture ReleaseDC RemoveMenu RemovePropW ScreenToClient ScrollWindow SendMessageA SendMessageW SetActiveWindow SetCapture SetClassLongW SetClipboardData SetCursor SetCursorPos SetFocus SetForegroundWindow SetMenu SetMenuItemInfoW SetParent SetPropW SetRect SetScrollInfo SetScrollPos SetScrollRange SetTimer SetWindowLongW SetWindowPlacement SetWindowPos SetWindowRgn SetWindowTextW SetWindowsHookExW ShowCaret ShowOwnedPopups ShowScrollBar ShowWindow SystemParametersInfoW TrackPopupMenu TranslateMDISysAccel TranslateMessage UnhookWindowsHookEx UnregisterClassW UpdateWindow WaitMessage WindowFromPoint wsprintfA |
ADVAPI32.DLL (delay-loaded) |
AdjustTokenPrivileges
ConvertSidToStringSidA GetTokenInformation GetUserNameA LookupPrivilegeValueW OpenProcessToken RegCloseKey RegConnectRegistryW RegCreateKeyExW RegDeleteKeyW RegDeleteValueW RegEnumKeyExW RegEnumValueW RegFlushKey RegLoadKeyW RegOpenKeyExA RegOpenKeyExW RegQueryInfoKeyW RegQueryValueExA RegQueryValueExW RegReplaceKeyW RegRestoreKeyW RegSaveKeyW RegSetValueExW RegUnLoadKeyW |
Attributes | 0x1 |
---|---|
Name | ADVAPI32.DLL |
ModuleHandle | 0x4611c0 |
DelayImportAddressTable | 0x4611c4 |
DelayImportNameTable | 0x95ec78 |
BoundDelayImportTable | 0x4611d4 |
UnloadDelayImportTable | 0x4611dc |
TimeStamp | 1970-Jan-01 00:00:00 |
Ordinal | 1 |
---|---|
Address | 0x2757 |
Ordinal | 2 |
---|---|
Address | 0x84f10 |
Ordinal | 3 |
---|---|
Address | 0x41b0ac |
Ordinal | 4 |
---|---|
Address | 0x44b550 |
Signature | 0xfeef04bd |
---|---|
StructVersion | 0x10000 |
FileVersion | 1.4.1000.0 |
ProductVersion | 1.4.1000.0 |
FileFlags | (EMPTY) |
FileOs |
VOS_DOS_WINDOWS32
VOS_NT_WINDOWS32
VOS__WINDOWS32
|
FileType |
VFT_APP
|
Language | English - United States |
CompanyName | PassMark Software |
FileDescription | imageUSB |
FileVersion (#2) | 1.4.1000.0 |
InternalName | imageUSB |
LegalCopyright | Copyright (C) 2018 |
OriginalFilename | imageUSB.exe |
ProductName | imageUSB Application |
ProductVersion (#2) | 1.4.1000.0 |
Resource LangID | English - United States |
---|