Advertisement
AnonymousWiki

Syrian backdoor info (1 and 2)

Feb 19th, 2012
1,568
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 17.29 KB | None | 0 0
  1. Syrian backdoor (388707_304019782967678_1371539363240931_76888_135985994_...) import table:
  2. Syrian backdoor (388707_304019782967678_1371539363240931_76...) import table:
  3.  
  4. Syrian backdoor 1: http://pastebin.com/6UuLFqq2
  5. Syrian backdoor 2: http://pastebin.com/MRxSxWY6
  6.  
  7. Walking-> COMCTL32
  8. 0041302c: InitCommonControlsEx (ord#0)
  9. Walking-> SHLWAPI
  10. 004131bc: SHAutoComplete (ord#0)
  11. Walking-> KERNEL32
  12. 00413068: DeleteFileW (ord#0)
  13. 0041306c: DeleteFileA (ord#0)
  14. 00413070: CreateDirectoryA (ord#0)
  15. 00413074: CreateDirectoryW (ord#0)
  16. 00413078: FindClose (ord#0)
  17. 0041307c: FindNextFileA (ord#0)
  18. 00413080: FindFirstFileA (ord#0)
  19. 00413084: FindNextFileW (ord#0)
  20. 00413088: FindFirstFileW (ord#0)
  21. 0041308c: GetTickCount (ord#0)
  22. 00413090: WideCharToMultiByte (ord#0)
  23. 00413094: GlobalAlloc (ord#0)
  24. 00413098: GetVersionExW (ord#0)
  25. 0041309c: GetFullPathNameA (ord#0)
  26. 004130a0: GetFullPathNameW (ord#0)
  27. 004130a4: MultiByteToWideChar (ord#0)
  28. 004130a8: GetModuleFileNameW (ord#0)
  29. 004130ac: FindResourceW (ord#0)
  30. 004130b0: GetModuleHandleW (ord#0)
  31. 004130b4: HeapAlloc (ord#0)
  32. 004130b8: GetProcessHeap (ord#0)
  33. 004130bc: HeapFree (ord#0)
  34. 004130c0: HeapReAlloc (ord#0)
  35. 004130c4: CompareStringA (ord#0)
  36. 004130c8: ExitProcess (ord#0)
  37. 004130cc: GetLocaleInfoW (ord#0)
  38. 004130d0: SetFileAttributesW (ord#0)
  39. 004130d4: DosDateTimeToFileTime (ord#0)
  40. 004130d8: GetDateFormatW (ord#0)
  41. 004130dc: GetTimeFormatW (ord#0)
  42. 004130e0: FileTimeToSystemTime (ord#0)
  43. 004130e4: FileTimeToLocalFileTime (ord#0)
  44. 004130e8: ExpandEnvironmentStringsW (ord#0)
  45. 004130ec: WaitForSingleObject (ord#0)
  46. 004130f0: Sleep (ord#0)
  47. 004130f4: GetExitCodeProcess (ord#0)
  48. 004130f8: GetTempPathW (ord#0)
  49. 004130fc: MoveFileExW (ord#0)
  50. 00413100: UnmapViewOfFile (ord#0)
  51. 00413104: MapViewOfFile (ord#0)
  52. 00413108: GetCommandLineW (ord#0)
  53. 0041310c: CreateFileMappingW (ord#0)
  54. 00413110: SetEnvironmentVariableW (ord#0)
  55. 00413114: OpenFileMappingW (ord#0)
  56. 00413118: GetProcAddress (ord#0)
  57. 0041311c: LocalFileTimeToFileTime (ord#0)
  58. 00413120: SystemTimeToFileTime (ord#0)
  59. 00413124: GetSystemTime (ord#0)
  60. 00413128: CompareStringW (ord#0)
  61. 0041312c: IsDBCSLeadByte (ord#0)
  62. 00413130: GetCPInfo (ord#0)
  63. 00413134: SetCurrentDirectoryW (ord#0)
  64. 00413138: LoadLibraryW (ord#0)
  65. 0041313c: FreeLibrary (ord#0)
  66. 00413140: SetFileAttributesA (ord#0)
  67. 00413144: GetFileAttributesW (ord#0)
  68. 00413148: GetFileAttributesA (ord#0)
  69. 0041314c: WriteFile (ord#0)
  70. 00413150: GetStdHandle (ord#0)
  71. 00413154: ReadFile (ord#0)
  72. 00413158: CreateFileW (ord#0)
  73. 0041315c: GetCurrentDirectoryW (ord#0)
  74. 00413160: CreateFileA (ord#0)
  75. 00413164: GetFileType (ord#0)
  76. 00413168: SetEndOfFile (ord#0)
  77. 0041316c: SetFilePointer (ord#0)
  78. 00413170: MoveFileW (ord#0)
  79. 00413174: SetFileTime (ord#0)
  80. 00413178: GetCurrentProcess (ord#0)
  81. 0041317c: CloseHandle (ord#0)
  82. 00413180: SetLastError (ord#0)
  83. 00413184: GetLastError (ord#0)
  84. 00413188: GetNumberFormatW (ord#0)
  85. Walking-> USER32
  86. 004131c4: wvsprintfA (ord#0)
  87. 004131c8: wvsprintfW (ord#0)
  88. 004131cc: ReleaseDC (ord#0)
  89. 004131d0: GetDC (ord#0)
  90. 004131d4: SendMessageW (ord#0)
  91. 004131d8: SetDlgItemTextW (ord#0)
  92. 004131dc: SetFocus (ord#0)
  93. 004131e0: EndDialog (ord#0)
  94. 004131e4: DestroyIcon (ord#0)
  95. 004131e8: SendDlgItemMessageW (ord#0)
  96. 004131ec: GetDlgItemTextW (ord#0)
  97. 004131f0: GetClassNameW (ord#0)
  98. 004131f4: DialogBoxParamW (ord#0)
  99. 004131f8: IsWindowVisible (ord#0)
  100. 004131fc: WaitForInputIdle (ord#0)
  101. 00413200: SetForegroundWindow (ord#0)
  102. 00413204: GetSysColor (ord#0)
  103. 00413208: PostMessageW (ord#0)
  104. 0041320c: LoadBitmapW (ord#0)
  105. 00413210: LoadIconW (ord#0)
  106. 00413214: CharToOemA (ord#0)
  107. 00413218: OemToCharA (ord#0)
  108. 0041321c: GetParent (ord#0)
  109. 00413220: MapWindowPoints (ord#0)
  110. 00413224: CreateWindowExW (ord#0)
  111. 00413228: UpdateWindow (ord#0)
  112. 0041322c: LoadCursorW (ord#0)
  113. 00413230: RegisterClassExW (ord#0)
  114. 00413234: SetWindowLongW (ord#0)
  115. 00413238: GetWindowLongW (ord#0)
  116. 0041323c: DefWindowProcW (ord#0)
  117. 00413240: PeekMessageW (ord#0)
  118. 00413244: GetMessageW (ord#0)
  119. 00413248: TranslateMessage (ord#0)
  120. 0041324c: DispatchMessageW (ord#0)
  121. 00413250: DestroyWindow (ord#0)
  122. 00413254: CopyRect (ord#0)
  123. 00413258: IsWindow (ord#0)
  124. 0041325c: CharToOemBuffW (ord#0)
  125. 00413260: MessageBoxW (ord#0)
  126. 00413264: ShowWindow (ord#0)
  127. 00413268: GetDlgItem (ord#0)
  128. 0041326c: EnableWindow (ord#0)
  129. 00413270: OemToCharBuffA (ord#0)
  130. 00413274: CharUpperA (ord#0)
  131. 00413278: CharToOemBuffA (ord#0)
  132. 0041327c: LoadStringW (ord#0)
  133. 00413280: SetWindowPos (ord#0)
  134. 00413284: GetWindowTextW (ord#0)
  135. 00413288: SetWindowTextW (ord#0)
  136. 0041328c: GetSystemMetrics (ord#0)
  137. 00413290: GetWindow (ord#0)
  138. 00413294: CharUpperW (ord#0)
  139. 00413298: FindWindowExW (ord#0)
  140. 0041329c: GetWindowRect (ord#0)
  141. 004132a0: GetClientRect (ord#0)
  142. Walking-> GDI32
  143. 00413044: GetDeviceCaps (ord#0)
  144. 00413048: GetObjectW (ord#0)
  145. 0041304c: CreateCompatibleBitmap (ord#0)
  146. 00413050: SelectObject (ord#0)
  147. 00413054: StretchBlt (ord#0)
  148. 00413058: CreateCompatibleDC (ord#0)
  149. 0041305c: DeleteObject (ord#0)
  150. 00413060: DeleteDC (ord#0)
  151. Walking-> COMDLG32
  152. 00413034: GetOpenFileNameW (ord#0)
  153. 00413038: CommDlgExtendedError (ord#0)
  154. 0041303c: GetSaveFileNameW (ord#0)
  155. Walking-> ADVAPI32
  156. 00413000: RegOpenKeyExW (ord#0)
  157. 00413004: LookupPrivilegeValueW (ord#0)
  158. 00413008: RegQueryValueExW (ord#0)
  159. 0041300c: RegCreateKeyExW (ord#0)
  160. 00413010: RegSetValueExW (ord#0)
  161. 00413014: RegCloseKey (ord#0)
  162. 00413018: SetFileSecurityW (ord#0)
  163. 0041301c: SetFileSecurityA (ord#0)
  164. 00413020: OpenProcessToken (ord#0)
  165. 00413024: AdjustTokenPrivileges (ord#0)
  166. Walking-> SHELL32
  167. 00413198: SHChangeNotify (ord#0)
  168. 0041319c: ShellExecuteExW (ord#0)
  169. 004131a0: SHFileOperationW (ord#0)
  170. 004131a4: SHGetFileInfoW (ord#0)
  171. 004131a8: SHGetSpecialFolderLocation (ord#0)
  172. 004131ac: SHGetMalloc (ord#0)
  173. 004131b0: SHBrowseForFolderW (ord#0)
  174. 004131b4: SHGetPathFromIDListW (ord#0)
  175. Walking-> ole32
  176. 004132a8: OleUninitialize (ord#0)
  177. 004132ac: OleInitialize (ord#0)
  178. 004132b0: CoCreateInstance (ord#0)
  179. 004132b4: CreateStreamOnHGlobal (ord#0)
  180. 004132b8: CLSIDFromString (ord#0)
  181. Walking-> OLEAUT32
  182. 00413190: ord#8
  183. Walking-> COMCTL32
  184. 0041302c: InitCommonControlsEx (ord#0)
  185. Walking-> SHLWAPI
  186. 004131bc: SHAutoComplete (ord#0)
  187. Walking-> KERNEL32
  188. 00413068: DeleteFileW (ord#0)
  189. 0041306c: DeleteFileA (ord#0)
  190. 00413070: CreateDirectoryA (ord#0)
  191. 00413074: CreateDirectoryW (ord#0)
  192. 00413078: FindClose (ord#0)
  193. 0041307c: FindNextFileA (ord#0)
  194. 00413080: FindFirstFileA (ord#0)
  195. 00413084: FindNextFileW (ord#0)
  196. 00413088: FindFirstFileW (ord#0)
  197. 0041308c: GetTickCount (ord#0)
  198. 00413090: WideCharToMultiByte (ord#0)
  199. 00413094: GlobalAlloc (ord#0)
  200. 00413098: GetVersionExW (ord#0)
  201. 0041309c: GetFullPathNameA (ord#0)
  202. 004130a0: GetFullPathNameW (ord#0)
  203. 004130a4: MultiByteToWideChar (ord#0)
  204. 004130a8: GetModuleFileNameW (ord#0)
  205. 004130ac: FindResourceW (ord#0)
  206. 004130b0: GetModuleHandleW (ord#0)
  207. 004130b4: HeapAlloc (ord#0)
  208. 004130b8: GetProcessHeap (ord#0)
  209. 004130bc: HeapFree (ord#0)
  210. 004130c0: HeapReAlloc (ord#0)
  211. 004130c4: CompareStringA (ord#0)
  212. 004130c8: ExitProcess (ord#0)
  213. 004130cc: GetLocaleInfoW (ord#0)
  214. 004130d0: SetFileAttributesW (ord#0)
  215. 004130d4: DosDateTimeToFileTime (ord#0)
  216. 004130d8: GetDateFormatW (ord#0)
  217. 004130dc: GetTimeFormatW (ord#0)
  218. 004130e0: FileTimeToSystemTime (ord#0)
  219. 004130e4: FileTimeToLocalFileTime (ord#0)
  220. 004130e8: ExpandEnvironmentStringsW (ord#0)
  221. 004130ec: WaitForSingleObject (ord#0)
  222. 004130f0: Sleep (ord#0)
  223. 004130f4: GetExitCodeProcess (ord#0)
  224. 004130f8: GetTempPathW (ord#0)
  225. 004130fc: MoveFileExW (ord#0)
  226. 00413100: UnmapViewOfFile (ord#0)
  227. 00413104: MapViewOfFile (ord#0)
  228. 00413108: GetCommandLineW (ord#0)
  229. 0041310c: CreateFileMappingW (ord#0)
  230. 00413110: SetEnvironmentVariableW (ord#0)
  231. 00413114: OpenFileMappingW (ord#0)
  232. 00413118: GetProcAddress (ord#0)
  233. 0041311c: LocalFileTimeToFileTime (ord#0)
  234. 00413120: SystemTimeToFileTime (ord#0)
  235. 00413124: GetSystemTime (ord#0)
  236. 00413128: CompareStringW (ord#0)
  237. 0041312c: IsDBCSLeadByte (ord#0)
  238. 00413130: GetCPInfo (ord#0)
  239. 00413134: SetCurrentDirectoryW (ord#0)
  240. 00413138: LoadLibraryW (ord#0)
  241. 0041313c: FreeLibrary (ord#0)
  242. 00413140: SetFileAttributesA (ord#0)
  243. 00413144: GetFileAttributesW (ord#0)
  244. 00413148: GetFileAttributesA (ord#0)
  245. 0041314c: WriteFile (ord#0)
  246. 00413150: GetStdHandle (ord#0)
  247. 00413154: ReadFile (ord#0)
  248. 00413158: CreateFileW (ord#0)
  249. 0041315c: GetCurrentDirectoryW (ord#0)
  250. 00413160: CreateFileA (ord#0)
  251. 00413164: GetFileType (ord#0)
  252. 00413168: SetEndOfFile (ord#0)
  253. 0041316c: SetFilePointer (ord#0)
  254. 00413170: MoveFileW (ord#0)
  255. 00413174: SetFileTime (ord#0)
  256. 00413178: GetCurrentProcess (ord#0)
  257. 0041317c: CloseHandle (ord#0)
  258. 00413180: SetLastError (ord#0)
  259. 00413184: GetLastError (ord#0)
  260. 00413188: GetNumberFormatW (ord#0)
  261. Walking-> USER32
  262. 004131c4: wvsprintfA (ord#0)
  263. 004131c8: wvsprintfW (ord#0)
  264. 004131cc: ReleaseDC (ord#0)
  265. 004131d0: GetDC (ord#0)
  266. 004131d4: SendMessageW (ord#0)
  267. 004131d8: SetDlgItemTextW (ord#0)
  268. 004131dc: SetFocus (ord#0)
  269. 004131e0: EndDialog (ord#0)
  270. 004131e4: DestroyIcon (ord#0)
  271. 004131e8: SendDlgItemMessageW (ord#0)
  272. 004131ec: GetDlgItemTextW (ord#0)
  273. 004131f0: GetClassNameW (ord#0)
  274. 004131f4: DialogBoxParamW (ord#0)
  275. 004131f8: IsWindowVisible (ord#0)
  276. 004131fc: WaitForInputIdle (ord#0)
  277. 00413200: SetForegroundWindow (ord#0)
  278. 00413204: GetSysColor (ord#0)
  279. 00413208: PostMessageW (ord#0)
  280. 0041320c: LoadBitmapW (ord#0)
  281. 00413210: LoadIconW (ord#0)
  282. 00413214: CharToOemA (ord#0)
  283. 00413218: OemToCharA (ord#0)
  284. 0041321c: GetParent (ord#0)
  285. 00413220: MapWindowPoints (ord#0)
  286. 00413224: CreateWindowExW (ord#0)
  287. 00413228: UpdateWindow (ord#0)
  288. 0041322c: LoadCursorW (ord#0)
  289. 00413230: RegisterClassExW (ord#0)
  290. 00413234: SetWindowLongW (ord#0)
  291. 00413238: GetWindowLongW (ord#0)
  292. 0041323c: DefWindowProcW (ord#0)
  293. 00413240: PeekMessageW (ord#0)
  294. 00413244: GetMessageW (ord#0)
  295. 00413248: TranslateMessage (ord#0)
  296. 0041324c: DispatchMessageW (ord#0)
  297. 00413250: DestroyWindow (ord#0)
  298. 00413254: CopyRect (ord#0)
  299. 00413258: IsWindow (ord#0)
  300. 0041325c: CharToOemBuffW (ord#0)
  301. 00413260: MessageBoxW (ord#0)
  302. 00413264: ShowWindow (ord#0)
  303. 00413268: GetDlgItem (ord#0)
  304. 0041326c: EnableWindow (ord#0)
  305. 00413270: OemToCharBuffA (ord#0)
  306. 00413274: CharUpperA (ord#0)
  307. 00413278: CharToOemBuffA (ord#0)
  308. 0041327c: LoadStringW (ord#0)
  309. 00413280: SetWindowPos (ord#0)
  310. 00413284: GetWindowTextW (ord#0)
  311. 00413288: SetWindowTextW (ord#0)
  312. 0041328c: GetSystemMetrics (ord#0)
  313. 00413290: GetWindow (ord#0)
  314. 00413294: CharUpperW (ord#0)
  315. 00413298: FindWindowExW (ord#0)
  316. 0041329c: GetWindowRect (ord#0)
  317. 004132a0: GetClientRect (ord#0)
  318. Walking-> GDI32
  319. 00413044: GetDeviceCaps (ord#0)
  320. 00413048: GetObjectW (ord#0)
  321. 0041304c: CreateCompatibleBitmap (ord#0)
  322. 00413050: SelectObject (ord#0)
  323. 00413054: StretchBlt (ord#0)
  324. 00413058: CreateCompatibleDC (ord#0)
  325. 0041305c: DeleteObject (ord#0)
  326. 00413060: DeleteDC (ord#0)
  327. Walking-> COMDLG32
  328. 00413034: GetOpenFileNameW (ord#0)
  329. 00413038: CommDlgExtendedError (ord#0)
  330. 0041303c: GetSaveFileNameW (ord#0)
  331. Walking-> ADVAPI32
  332. 00413000: RegOpenKeyExW (ord#0)
  333. 00413004: LookupPrivilegeValueW (ord#0)
  334. 00413008: RegQueryValueExW (ord#0)
  335. 0041300c: RegCreateKeyExW (ord#0)
  336. 00413010: RegSetValueExW (ord#0)
  337. 00413014: RegCloseKey (ord#0)
  338. 00413018: SetFileSecurityW (ord#0)
  339. 0041301c: SetFileSecurityA (ord#0)
  340. 00413020: OpenProcessToken (ord#0)
  341. 00413024: AdjustTokenPrivileges (ord#0)
  342. Walking-> SHELL32
  343. 00413198: SHChangeNotify (ord#0)
  344. 0041319c: ShellExecuteExW (ord#0)
  345. 004131a0: SHFileOperationW (ord#0)
  346. 004131a4: SHGetFileInfoW (ord#0)
  347. 004131a8: SHGetSpecialFolderLocation (ord#0)
  348. 004131ac: SHGetMalloc (ord#0)
  349. 004131b0: SHBrowseForFolderW (ord#0)
  350. 004131b4: SHGetPathFromIDListW (ord#0)
  351. Walking-> ole32
  352. 004132a8: OleUninitialize (ord#0)
  353. 004132ac: OleInitialize (ord#0)
  354. 004132b0: CoCreateInstance (ord#0)
  355. 004132b4: CreateStreamOnHGlobal (ord#0)
  356. 004132b8: CLSIDFromString (ord#0)
  357. Walking-> OLEAUT32
  358. 00413190: ord#8
  359. Walking-> COMCTL32
  360. 0041302c: InitCommonControlsEx (ord#0)
  361. Walking-> SHLWAPI
  362. 004131bc: SHAutoComplete (ord#0)
  363. Walking-> KERNEL32
  364. 00413068: DeleteFileW (ord#0)
  365. 0041306c: DeleteFileA (ord#0)
  366. 00413070: CreateDirectoryA (ord#0)
  367. 00413074: CreateDirectoryW (ord#0)
  368. 00413078: FindClose (ord#0)
  369. 0041307c: FindNextFileA (ord#0)
  370. 00413080: FindFirstFileA (ord#0)
  371. 00413084: FindNextFileW (ord#0)
  372. 00413088: FindFirstFileW (ord#0)
  373. 0041308c: GetTickCount (ord#0)
  374. 00413090: WideCharToMultiByte (ord#0)
  375. 00413094: GlobalAlloc (ord#0)
  376. 00413098: GetVersionExW (ord#0)
  377. 0041309c: GetFullPathNameA (ord#0)
  378. 004130a0: GetFullPathNameW (ord#0)
  379. 004130a4: MultiByteToWideChar (ord#0)
  380. 004130a8: GetModuleFileNameW (ord#0)
  381. 004130ac: FindResourceW (ord#0)
  382. 004130b0: GetModuleHandleW (ord#0)
  383. 004130b4: HeapAlloc (ord#0)
  384. 004130b8: GetProcessHeap (ord#0)
  385. 004130bc: HeapFree (ord#0)
  386. 004130c0: HeapReAlloc (ord#0)
  387. 004130c4: CompareStringA (ord#0)
  388. 004130c8: ExitProcess (ord#0)
  389. 004130cc: GetLocaleInfoW (ord#0)
  390. 004130d0: SetFileAttributesW (ord#0)
  391. 004130d4: DosDateTimeToFileTime (ord#0)
  392. 004130d8: GetDateFormatW (ord#0)
  393. 004130dc: GetTimeFormatW (ord#0)
  394. 004130e0: FileTimeToSystemTime (ord#0)
  395. 004130e4: FileTimeToLocalFileTime (ord#0)
  396. 004130e8: ExpandEnvironmentStringsW (ord#0)
  397. 004130ec: WaitForSingleObject (ord#0)
  398. 004130f0: Sleep (ord#0)
  399. 004130f4: GetExitCodeProcess (ord#0)
  400. 004130f8: GetTempPathW (ord#0)
  401. 004130fc: MoveFileExW (ord#0)
  402. 00413100: UnmapViewOfFile (ord#0)
  403. 00413104: MapViewOfFile (ord#0)
  404. 00413108: GetCommandLineW (ord#0)
  405. 0041310c: CreateFileMappingW (ord#0)
  406. 00413110: SetEnvironmentVariableW (ord#0)
  407. 00413114: OpenFileMappingW (ord#0)
  408. 00413118: GetProcAddress (ord#0)
  409. 0041311c: LocalFileTimeToFileTime (ord#0)
  410. 00413120: SystemTimeToFileTime (ord#0)
  411. 00413124: GetSystemTime (ord#0)
  412. 00413128: CompareStringW (ord#0)
  413. 0041312c: IsDBCSLeadByte (ord#0)
  414. 00413130: GetCPInfo (ord#0)
  415. 00413134: SetCurrentDirectoryW (ord#0)
  416. 00413138: LoadLibraryW (ord#0)
  417. 0041313c: FreeLibrary (ord#0)
  418. 00413140: SetFileAttributesA (ord#0)
  419. 00413144: GetFileAttributesW (ord#0)
  420. 00413148: GetFileAttributesA (ord#0)
  421. 0041314c: WriteFile (ord#0)
  422. 00413150: GetStdHandle (ord#0)
  423. 00413154: ReadFile (ord#0)
  424. 00413158: CreateFileW (ord#0)
  425. 0041315c: GetCurrentDirectoryW (ord#0)
  426. 00413160: CreateFileA (ord#0)
  427. 00413164: GetFileType (ord#0)
  428. 00413168: SetEndOfFile (ord#0)
  429. 0041316c: SetFilePointer (ord#0)
  430. 00413170: MoveFileW (ord#0)
  431. 00413174: SetFileTime (ord#0)
  432. 00413178: GetCurrentProcess (ord#0)
  433. 0041317c: CloseHandle (ord#0)
  434. 00413180: SetLastError (ord#0)
  435. 00413184: GetLastError (ord#0)
  436. 00413188: GetNumberFormatW (ord#0)
  437. Walking-> USER32
  438. 004131c4: wvsprintfA (ord#0)
  439. 004131c8: wvsprintfW (ord#0)
  440. 004131cc: ReleaseDC (ord#0)
  441. 004131d0: GetDC (ord#0)
  442. 004131d4: SendMessageW (ord#0)
  443. 004131d8: SetDlgItemTextW (ord#0)
  444. 004131dc: SetFocus (ord#0)
  445. 004131e0: EndDialog (ord#0)
  446. 004131e4: DestroyIcon (ord#0)
  447. 004131e8: SendDlgItemMessageW (ord#0)
  448. 004131ec: GetDlgItemTextW (ord#0)
  449. 004131f0: GetClassNameW (ord#0)
  450. 004131f4: DialogBoxParamW (ord#0)
  451. 004131f8: IsWindowVisible (ord#0)
  452. 004131fc: WaitForInputIdle (ord#0)
  453. 00413200: SetForegroundWindow (ord#0)
  454. 00413204: GetSysColor (ord#0)
  455. 00413208: PostMessageW (ord#0)
  456. 0041320c: LoadBitmapW (ord#0)
  457. 00413210: LoadIconW (ord#0)
  458. 00413214: CharToOemA (ord#0)
  459. 00413218: OemToCharA (ord#0)
  460. 0041321c: GetParent (ord#0)
  461. 00413220: MapWindowPoints (ord#0)
  462. 00413224: CreateWindowExW (ord#0)
  463. 00413228: UpdateWindow (ord#0)
  464. 0041322c: LoadCursorW (ord#0)
  465. 00413230: RegisterClassExW (ord#0)
  466. 00413234: SetWindowLongW (ord#0)
  467. 00413238: GetWindowLongW (ord#0)
  468. 0041323c: DefWindowProcW (ord#0)
  469. 00413240: PeekMessageW (ord#0)
  470. 00413244: GetMessageW (ord#0)
  471. 00413248: TranslateMessage (ord#0)
  472. 0041324c: DispatchMessageW (ord#0)
  473. 00413250: DestroyWindow (ord#0)
  474. 00413254: CopyRect (ord#0)
  475. 00413258: IsWindow (ord#0)
  476. 0041325c: CharToOemBuffW (ord#0)
  477. 00413260: MessageBoxW (ord#0)
  478. 00413264: ShowWindow (ord#0)
  479. 00413268: GetDlgItem (ord#0)
  480. 0041326c: EnableWindow (ord#0)
  481. 00413270: OemToCharBuffA (ord#0)
  482. 00413274: CharUpperA (ord#0)
  483. 00413278: CharToOemBuffA (ord#0)
  484. 0041327c: LoadStringW (ord#0)
  485. 00413280: SetWindowPos (ord#0)
  486. 00413284: GetWindowTextW (ord#0)
  487. 00413288: SetWindowTextW (ord#0)
  488. 0041328c: GetSystemMetrics (ord#0)
  489. 00413290: GetWindow (ord#0)
  490. 00413294: CharUpperW (ord#0)
  491. 00413298: FindWindowExW (ord#0)
  492. 0041329c: GetWindowRect (ord#0)
  493. 004132a0: GetClientRect (ord#0)
  494. Walking-> GDI32
  495. 00413044: GetDeviceCaps (ord#0)
  496. 00413048: GetObjectW (ord#0)
  497. 0041304c: CreateCompatibleBitmap (ord#0)
  498. 00413050: SelectObject (ord#0)
  499. 00413054: StretchBlt (ord#0)
  500. 00413058: CreateCompatibleDC (ord#0)
  501. 0041305c: DeleteObject (ord#0)
  502. 00413060: DeleteDC (ord#0)
  503. Walking-> COMDLG32
  504. 00413034: GetOpenFileNameW (ord#0)
  505. 00413038: CommDlgExtendedError (ord#0)
  506. 0041303c: GetSaveFileNameW (ord#0)
  507. Walking-> ADVAPI32
  508. 00413000: RegOpenKeyExW (ord#0)
  509. 00413004: LookupPrivilegeValueW (ord#0)
  510. 00413008: RegQueryValueExW (ord#0)
  511. 0041300c: RegCreateKeyExW (ord#0)
  512. 00413010: RegSetValueExW (ord#0)
  513. 00413014: RegCloseKey (ord#0)
  514. 00413018: SetFileSecurityW (ord#0)
  515. 0041301c: SetFileSecurityA (ord#0)
  516. 00413020: OpenProcessToken (ord#0)
  517. 00413024: AdjustTokenPrivileges (ord#0)
  518. Walking-> SHELL32
  519. 00413198: SHChangeNotify (ord#0)
  520. 0041319c: ShellExecuteExW (ord#0)
  521. 004131a0: SHFileOperationW (ord#0)
  522. 004131a4: SHGetFileInfoW (ord#0)
  523. 004131a8: SHGetSpecialFolderLocation (ord#0)
  524. 004131ac: SHGetMalloc (ord#0)
  525. 004131b0: SHBrowseForFolderW (ord#0)
  526. 004131b4: SHGetPathFromIDListW (ord#0)
  527. Walking-> ole32
  528. 004132a8: OleUninitialize (ord#0)
  529. 004132ac: OleInitialize (ord#0)
  530. 004132b0: CoCreateInstance (ord#0)
  531. 004132b4: CreateStreamOnHGlobal (ord#0)
  532. 004132b8: CLSIDFromString (ord#0)
  533. Walking-> OLEAUT32
  534. 00413190: ord#8
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement