hasherezade/790000.exe.imports.txt Secret

## 790000.exe.imports.txt
---
IAT at: 31cd, size: 4, thunks: 1, is_terminated: 0
---
31cd,74f685f0,shcore.SHCreateStreamOnFileW #45
---
IAT at: 558f, size: 4, thunks: 1, is_terminated: 0
---
558f,74f685f0,shcore.SHCreateStreamOnFileW #45
---
IAT at: c25d, size: 4, thunks: 1, is_terminated: 0
---
c25d,74f685f0,shcore.SHCreateStreamOnFileW #45
---
IAT at: 112e7, size: 4, thunks: 1, is_terminated: 0
---
112e7,74f685f0,shcore.SHCreateStreamOnFileW #45
---
IAT at: 15160, size: 4, thunks: 1, is_terminated: 0
---
15160,76cd32c0,kernel32.GetDiskFreeSpaceExA #557
---
IAT at: 167a0, size: 58, thunks: 16, is_terminated: 0
---
167a0,75c0d430,oleaut32.VariantChangeTypeEx #147
167a4,75c52220,oleaut32.VarNeg #173
167a8,75c534a0,oleaut32.VarNot #174
167ac,75c2a520,oleaut32.VarAdd #141
167b0,75c2b6b0,oleaut32.VarSub #159
167b4,75c2ade0,oleaut32.VarMul #156
167b8,75c52740,oleaut32.VarDiv #143
167bc,75c530e0,oleaut32.VarIdiv #153
167c0,75c53340,oleaut32.VarMod #155
167c4,75c20870,oleaut32.VarAnd #142
167c8,75c53550,oleaut32.VarOr #157
167cc,75c536f0,oleaut32.VarXor #167
167d0,75c04830,oleaut32.VarCmp #176
167d4,75c0a8b0,oleaut32.VarI4FromStr #64
167d8,75c20510,oleaut32.VarR4FromStr #74
167dc,75c07180,oleaut32.VarR8FromStr #84
167e0,75c1dd50,oleaut32.VarDateFromStr #94
167e4,75c54b10,oleaut32.VarCyFromStr #104
167e8,75c0a690,oleaut32.VarBoolFromStr #125
167ec,75c1d000,oleaut32.VarBstrFromCy #113
167f0,75c1db30,oleaut32.VarBstrFromDate #114
167f4,75c20cc0,oleaut32.VarBstrFromBool #116
---
IAT at: 170f0, size: 210, thunks: 79, is_terminated: 1
---
170f0,7700fbe0,kernel32.DeleteCriticalSection #278
170f4,7701e760,kernel32.LeaveCriticalSection #963
170f8,7701fef0,kernel32.EnterCriticalSection #311
170fc,7703c330,kernel32.InitializeCriticalSection #868
17100,76ccf4c0,kernel32.VirtualFree #1487
17104,76ccf3c0,kernel32.VirtualAlloc #1484
17108,76ccf530,kernel32.LocalFree #981
1710c,76cd0460,kernel32.LocalAlloc #976
17110,76cd23a0,kernel32.GetTickCount #782
17114,76ccdf40,kernel32.QueryPerformanceCounter #1105
17118,76cd1970,kernel32.GetVersion #799
1711c,76ccdf10,kernel32.GetCurrentThreadId #546
17120,76cce860,kernel32.InterlockedDecrement #879
17124,76cce7e0,kernel32.InterlockedIncrement #883
17128,76ccf570,kernel32.VirtualQuery #1492
1712c,76ccdff0,kernel32.WideCharToMultiByte #1540
17130,76ccdf80,kernel32.MultiByteToWideChar #1013
17134,76cd0440,kernel32.lstrlen #1600
17138,76cc9300,kernel32.lstrcpyn #1597
1713c,76cd1620,kernel32.LoadLibraryExA #968
17140,76cc89d0,kernel32.GetThreadLocale #773
17144,76cd0c80,kernel32.GetStartupInfoA #725
17148,76ccf550,kernel32.GetProcAddress #692
1714c,76cd0a60,kernel32.GetModuleHandleA #635
17150,76cd0e30,kernel32.GetModuleFileNameA #633
17154,76cc8410,kernel32.GetLocaleInfoA #617
17158,76cce010,kernel32.GetLastError #615
1715c,76cd1ee0,kernel32.GetCommandLineA #476
17160,76cd0ae0,kernel32.FreeLibrary #433
17164,76cd31e0,kernel32.FindFirstFileA #383
17168,76cd31a0,kernel32.FindClose #379
1716c,76cd4e10,kernel32.ExitProcess #356
17170,76cd35b0,kernel32.WriteFile #1560
17174,76ce5c40,kernel32.UnhandledExceptionFilter #1459
17178,76cd3550,kernel32.SetFilePointer #1318
1717c,76cd3510,kernel32.SetEndOfFile #1300
17180,76cd05c0,kernel32.RtlUnwind #1239
17184,76cd34c0,kernel32.ReadFile #1143
17188,76cd05b0,kernel32.RaiseException #1126
1718c,76cd1700,kernel32.GetStdHandle #728
17190,76cd3360,kernel32.GetFileSize #593
17194,76cd3390,kernel32.GetFileType #596
17198,76cd3130,kernel32.CreateFileA #201
1719c,76cd2ee0,kernel32.CloseHandle #140
171a4,75322c80,user32.GetKeyboardType #1872
171a8,752b7380,user32.LoadStringA #2118
171ac,753134d0,user32.MessageBoxA #2149
171b0,752b56e0,user32.CharNextA #1560
171b8,7685e360,advapi32.RegQueryValueExA #1665
171bc,7685e520,advapi32.RegOpenKeyExA #1652
171c0,7685e430,advapi32.RegCloseKey #1604
171c8,75c0e860,oleaut32.SysFreeString #6
171cc,75c13120,oleaut32.SysReAllocStringLen #5
171d0,75c0f610,oleaut32.SysAllocStringLen #4
171d8,76ccdfb0,kernel32.TlsSetValue #1447
171dc,76ccdf20,kernel32.TlsGetValue #1446
171e0,76cd0f70,kernel32.TlsFree #1445
171e4,76cd1140,kernel32.TlsAlloc #1444
171e8,76ccf530,kernel32.LocalFree #981
171ec,76cd0460,kernel32.LocalAlloc #976
171f4,76cce800,kernel32.lstrcmpiA #1592
171f8,76cd35b0,kernel32.WriteFile #1560
171fc,76cd30d0,kernel32.WaitForSingleObject #1501
17200,76ccf570,kernel32.VirtualQuery #1492
17204,76cd04c0,kernel32.VirtualProtect #1490
17208,76ccf3c0,kernel32.VirtualAlloc #1484
1720c,76cd3550,kernel32.SetFilePointer #1318
17210,76cd3080,kernel32.SetEvent #1306
17214,76cd3510,kernel32.SetEndOfFile #1300
17218,76cd3070,kernel32.ResetEvent #1226
1721c,76cd34c0,kernel32.ReadFile #1143
17220,76cd0bd0,kernel32.LoadLibraryA #967
17224,7701e760,kernel32.LeaveCriticalSection #963
17228,7703c330,kernel32.InitializeCriticalSection #868
1722c,76cd1760,kernel32.GetVersionExA #800
17230,76cc89d0,kernel32.GetThreadLocale #773
17234,76cc98d0,kernel32.GetStringTypeA #730
17238,76cd1700,kernel32.GetStdHandle #728
1723c,76ccf550,kernel32.GetProcAddress #692
17240,76cd0a60,kernel32.GetModuleHandleA #635
17244,76cd0e30,kernel32.GetModuleFileNameA #633
17248,76cc8410,kernel32.GetLocaleInfoA #617
1724c,76cd0b60,kernel32.GetLocalTime #616
17250,76cce010,kernel32.GetLastError #615
17254,76cd33c0,kernel32.GetFullPathNameA #604
17258,76cd32b0,kernel32.GetDiskFreeSpaceA #556
1725c,76ce41c0,kernel32.GetDateFormatA #548
17260,76ccdf10,kernel32.GetCurrentThreadId #546
17264,76cd1530,kernel32.GetCPInfo #455
17268,76cd03c0,kernel32.GetACP #440
1726c,76cc8c30,kernel32.FormatMessageA #428
17270,76cc92b0,kernel32.EnumCalendarInfoA #313
17274,7701fef0,kernel32.EnterCriticalSection #311
17278,7700fbe0,kernel32.DeleteCriticalSection #278
1727c,76cd3130,kernel32.CreateFileA #201
17280,76cd2f30,kernel32.CreateEventA #194
17284,76cc7d40,kernel32.CompareStringA #158
17288,76cd2ee0,kernel32.CloseHandle #140
17290,752cc7b0,user32.TranslateMessage #2439
17294,753134d0,user32.MessageBoxA #2149
17298,752b7380,user32.LoadStringA #2118
1729c,752c6f10,user32.GetSystemMetrics #1959
172a0,752b5910,user32.GetMessageA #1895
172a4,752ba070,user32.DispatchMessageA #1697
172a8,752b56e0,user32.CharNextA #1560
172ac,75315a80,user32.CharToOemA #1566
172b4,76cd0f00,kernel32.Sleep #1411
172bc,75c05400,oleaut32.SafeArrayPtrOfIndex #148
172c0,75c03d90,oleaut32.SafeArrayGetUBound #19
172c4,75c04e50,oleaut32.SafeArrayGetLBound #20
172c8,75c084e0,oleaut32.SafeArrayCreate #15
172cc,75c0d400,oleaut32.VariantChangeType #12
172d0,75c0cbf0,oleaut32.VariantCopy #10
172d4,75c0e610,oleaut32.VariantClear #9
172d8,75c03d70,oleaut32.VariantInit #8
172e0,62e438d0,winmm.timeSetEvent #153
172e8,689bbe00,wininet.InternetReadFile #324
172ec,68a6b750,wininet.InternetOpenUrlA #317
172f0,68997060,wininet.InternetOpenA #316
172f4,68a01dc0,wininet.InternetCloseHandle #267
172f8,689b6a60,wininet.HttpQueryInfoA #243
	---
	IAT at: 31cd, size: 4, thunks: 1, is_terminated: 0
	---
	31cd,74f685f0,shcore.SHCreateStreamOnFileW #45
	---
	IAT at: 558f, size: 4, thunks: 1, is_terminated: 0
	---
	558f,74f685f0,shcore.SHCreateStreamOnFileW #45
	---
	IAT at: c25d, size: 4, thunks: 1, is_terminated: 0
	---
	c25d,74f685f0,shcore.SHCreateStreamOnFileW #45
	---
	IAT at: 112e7, size: 4, thunks: 1, is_terminated: 0
	---
	112e7,74f685f0,shcore.SHCreateStreamOnFileW #45
	---
	IAT at: 15160, size: 4, thunks: 1, is_terminated: 0
	---
	15160,76cd32c0,kernel32.GetDiskFreeSpaceExA #557
	---
	IAT at: 167a0, size: 58, thunks: 16, is_terminated: 0
	---
	167a0,75c0d430,oleaut32.VariantChangeTypeEx #147
	167a4,75c52220,oleaut32.VarNeg #173
	167a8,75c534a0,oleaut32.VarNot #174
	167ac,75c2a520,oleaut32.VarAdd #141
	167b0,75c2b6b0,oleaut32.VarSub #159
	167b4,75c2ade0,oleaut32.VarMul #156
	167b8,75c52740,oleaut32.VarDiv #143
	167bc,75c530e0,oleaut32.VarIdiv #153
	167c0,75c53340,oleaut32.VarMod #155
	167c4,75c20870,oleaut32.VarAnd #142
	167c8,75c53550,oleaut32.VarOr #157
	167cc,75c536f0,oleaut32.VarXor #167
	167d0,75c04830,oleaut32.VarCmp #176
	167d4,75c0a8b0,oleaut32.VarI4FromStr #64
	167d8,75c20510,oleaut32.VarR4FromStr #74
	167dc,75c07180,oleaut32.VarR8FromStr #84
	167e0,75c1dd50,oleaut32.VarDateFromStr #94
	167e4,75c54b10,oleaut32.VarCyFromStr #104
	167e8,75c0a690,oleaut32.VarBoolFromStr #125
	167ec,75c1d000,oleaut32.VarBstrFromCy #113
	167f0,75c1db30,oleaut32.VarBstrFromDate #114
	167f4,75c20cc0,oleaut32.VarBstrFromBool #116
	---
	IAT at: 170f0, size: 210, thunks: 79, is_terminated: 1
	---
	170f0,7700fbe0,kernel32.DeleteCriticalSection #278
	170f4,7701e760,kernel32.LeaveCriticalSection #963
	170f8,7701fef0,kernel32.EnterCriticalSection #311
	170fc,7703c330,kernel32.InitializeCriticalSection #868
	17100,76ccf4c0,kernel32.VirtualFree #1487
	17104,76ccf3c0,kernel32.VirtualAlloc #1484
	17108,76ccf530,kernel32.LocalFree #981
	1710c,76cd0460,kernel32.LocalAlloc #976
	17110,76cd23a0,kernel32.GetTickCount #782
	17114,76ccdf40,kernel32.QueryPerformanceCounter #1105
	17118,76cd1970,kernel32.GetVersion #799
	1711c,76ccdf10,kernel32.GetCurrentThreadId #546
	17120,76cce860,kernel32.InterlockedDecrement #879
	17124,76cce7e0,kernel32.InterlockedIncrement #883
	17128,76ccf570,kernel32.VirtualQuery #1492
	1712c,76ccdff0,kernel32.WideCharToMultiByte #1540
	17130,76ccdf80,kernel32.MultiByteToWideChar #1013
	17134,76cd0440,kernel32.lstrlen #1600
	17138,76cc9300,kernel32.lstrcpyn #1597
	1713c,76cd1620,kernel32.LoadLibraryExA #968
	17140,76cc89d0,kernel32.GetThreadLocale #773
	17144,76cd0c80,kernel32.GetStartupInfoA #725
	17148,76ccf550,kernel32.GetProcAddress #692
	1714c,76cd0a60,kernel32.GetModuleHandleA #635
	17150,76cd0e30,kernel32.GetModuleFileNameA #633
	17154,76cc8410,kernel32.GetLocaleInfoA #617
	17158,76cce010,kernel32.GetLastError #615
	1715c,76cd1ee0,kernel32.GetCommandLineA #476
	17160,76cd0ae0,kernel32.FreeLibrary #433
	17164,76cd31e0,kernel32.FindFirstFileA #383
	17168,76cd31a0,kernel32.FindClose #379
	1716c,76cd4e10,kernel32.ExitProcess #356
	17170,76cd35b0,kernel32.WriteFile #1560
	17174,76ce5c40,kernel32.UnhandledExceptionFilter #1459
	17178,76cd3550,kernel32.SetFilePointer #1318
	1717c,76cd3510,kernel32.SetEndOfFile #1300
	17180,76cd05c0,kernel32.RtlUnwind #1239
	17184,76cd34c0,kernel32.ReadFile #1143
	17188,76cd05b0,kernel32.RaiseException #1126
	1718c,76cd1700,kernel32.GetStdHandle #728
	17190,76cd3360,kernel32.GetFileSize #593
	17194,76cd3390,kernel32.GetFileType #596
	17198,76cd3130,kernel32.CreateFileA #201
	1719c,76cd2ee0,kernel32.CloseHandle #140
	171a4,75322c80,user32.GetKeyboardType #1872
	171a8,752b7380,user32.LoadStringA #2118
	171ac,753134d0,user32.MessageBoxA #2149
	171b0,752b56e0,user32.CharNextA #1560
	171b8,7685e360,advapi32.RegQueryValueExA #1665
	171bc,7685e520,advapi32.RegOpenKeyExA #1652
	171c0,7685e430,advapi32.RegCloseKey #1604
	171c8,75c0e860,oleaut32.SysFreeString #6
	171cc,75c13120,oleaut32.SysReAllocStringLen #5
	171d0,75c0f610,oleaut32.SysAllocStringLen #4
	171d8,76ccdfb0,kernel32.TlsSetValue #1447
	171dc,76ccdf20,kernel32.TlsGetValue #1446
	171e0,76cd0f70,kernel32.TlsFree #1445
	171e4,76cd1140,kernel32.TlsAlloc #1444
	171e8,76ccf530,kernel32.LocalFree #981
	171ec,76cd0460,kernel32.LocalAlloc #976
	171f4,76cce800,kernel32.lstrcmpiA #1592
	171f8,76cd35b0,kernel32.WriteFile #1560
	171fc,76cd30d0,kernel32.WaitForSingleObject #1501
	17200,76ccf570,kernel32.VirtualQuery #1492
	17204,76cd04c0,kernel32.VirtualProtect #1490
	17208,76ccf3c0,kernel32.VirtualAlloc #1484
	1720c,76cd3550,kernel32.SetFilePointer #1318
	17210,76cd3080,kernel32.SetEvent #1306
	17214,76cd3510,kernel32.SetEndOfFile #1300
	17218,76cd3070,kernel32.ResetEvent #1226
	1721c,76cd34c0,kernel32.ReadFile #1143
	17220,76cd0bd0,kernel32.LoadLibraryA #967
	17224,7701e760,kernel32.LeaveCriticalSection #963
	17228,7703c330,kernel32.InitializeCriticalSection #868
	1722c,76cd1760,kernel32.GetVersionExA #800
	17230,76cc89d0,kernel32.GetThreadLocale #773
	17234,76cc98d0,kernel32.GetStringTypeA #730
	17238,76cd1700,kernel32.GetStdHandle #728
	1723c,76ccf550,kernel32.GetProcAddress #692
	17240,76cd0a60,kernel32.GetModuleHandleA #635
	17244,76cd0e30,kernel32.GetModuleFileNameA #633
	17248,76cc8410,kernel32.GetLocaleInfoA #617
	1724c,76cd0b60,kernel32.GetLocalTime #616
	17250,76cce010,kernel32.GetLastError #615
	17254,76cd33c0,kernel32.GetFullPathNameA #604
	17258,76cd32b0,kernel32.GetDiskFreeSpaceA #556
	1725c,76ce41c0,kernel32.GetDateFormatA #548
	17260,76ccdf10,kernel32.GetCurrentThreadId #546
	17264,76cd1530,kernel32.GetCPInfo #455
	17268,76cd03c0,kernel32.GetACP #440
	1726c,76cc8c30,kernel32.FormatMessageA #428
	17270,76cc92b0,kernel32.EnumCalendarInfoA #313
	17274,7701fef0,kernel32.EnterCriticalSection #311
	17278,7700fbe0,kernel32.DeleteCriticalSection #278
	1727c,76cd3130,kernel32.CreateFileA #201
	17280,76cd2f30,kernel32.CreateEventA #194
	17284,76cc7d40,kernel32.CompareStringA #158
	17288,76cd2ee0,kernel32.CloseHandle #140
	17290,752cc7b0,user32.TranslateMessage #2439
	17294,753134d0,user32.MessageBoxA #2149
	17298,752b7380,user32.LoadStringA #2118
	1729c,752c6f10,user32.GetSystemMetrics #1959
	172a0,752b5910,user32.GetMessageA #1895
	172a4,752ba070,user32.DispatchMessageA #1697
	172a8,752b56e0,user32.CharNextA #1560
	172ac,75315a80,user32.CharToOemA #1566
	172b4,76cd0f00,kernel32.Sleep #1411
	172bc,75c05400,oleaut32.SafeArrayPtrOfIndex #148
	172c0,75c03d90,oleaut32.SafeArrayGetUBound #19
	172c4,75c04e50,oleaut32.SafeArrayGetLBound #20
	172c8,75c084e0,oleaut32.SafeArrayCreate #15
	172cc,75c0d400,oleaut32.VariantChangeType #12
	172d0,75c0cbf0,oleaut32.VariantCopy #10
	172d4,75c0e610,oleaut32.VariantClear #9
	172d8,75c03d70,oleaut32.VariantInit #8
	172e0,62e438d0,winmm.timeSetEvent #153
	172e8,689bbe00,wininet.InternetReadFile #324
	172ec,68a6b750,wininet.InternetOpenUrlA #317
	172f0,68997060,wininet.InternetOpenA #316
	172f4,68a01dc0,wininet.InternetCloseHandle #267
	172f8,689b6a60,wininet.HttpQueryInfoA #243