IAT | Notion

| srand | x | 0x0000A852 | 0x0000A852 | 692 (0x02B4) | cryptography | T1027 | Obfuscated Files or Information | implicit | - | MSVCRT.dll | |-------------------------------------------------|---|------------|------------|--------------|-----------------|-----------------------------------------|----------|---|--------------| | rand | x | 0x0000A824 | 0x0000A824 | 678 (0x02A6) | cryptography | T1027 | Obfuscated Files or Information | implicit | - | MSVCRT.dll | | StartServiceCtrlDispatcherA | x | 0x0000A6F6 | 0x0000A6F6 | 586 (0x024A) | services | - | implicit | - | ADVAPI32.dll | | QueryPerformanceFrequency | x | 0x0000A43A | 0x0000A43A | 676 (0x02A4) | reconnaissance | - | implicit | - | KERNEL32.dll | | MoveFileExA | x | 0x0000A576 | 0x0000A576 | 623 (0x026F) | file | T1105 | Remote File Copy | implicit | - | KERNEL32.dll | | InternetOpenUrlA | x | 0x0000A7C8 | 0x0000A7C8 | 147 (0x0093) | network | - | implicit | - | WININET.dll | | InternetOpenA | x | 0x0000A7DC | 0x0000A7DC | 146 (0x0092) | network | - | implicit | - | WININET.dll | | InternetCloseHandle | x | 0x0000A7B2 | 0x0000A7B2 | 105 (0x0069) | network | - | implicit | - | WININET.dll | | GetCurrentThreadId | x | 0x0000A524 | 0x0000A524 | 326 (0x0146) | execution | T1057 | Process Discovery | implicit | - | KERNEL32.dll | | GetCurrentThread | x | 0x0000A53A | 0x0000A53A | 325 (0x0145) | execution | - | implicit | - | KERNEL32.dll | | GetAdaptersInfo | x | 0x0000A792 | 0x0000A792 | 28 (0x001C) | network | - | implicit | - | iphlpapi.dll | | CryptGenRandom | x | 0x0000A650 | 0x0000A650 | 150 (0x0096) | cryptography | T1027 | Obfuscated Files or Information | implicit | - | ADVAPI32.dll | | CryptAcquireContextA | x | 0x0000A638 | 0x0000A638 | 133 (0x0085) | cryptography | T1027 | Obfuscated Files or Information | implicit | - | ADVAPI32.dll | | CreateServiceA | x | 0x0000A688 | 0x0000A688 | 100 (0x0064) | services | T1543 | Create or Modify System Process | implicit | - | ADVAPI32.dll | | ChangeServiceConfig2A | x | 0x0000A6C0 | 0x0000A6C0 | 52 (0x0034) | services | T1569 | System Services | implicit | - | ADVAPI32.dll | | 9 (htons) | x | 0x80000009 | 0x80000009 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 8 (htonl) | x | 0x80000008 | 0x80000008 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 4 (connect) | x | 0x80000004 | 0x80000004 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 3 (closesocket) | x | 0x80000003 | 0x80000003 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 23 (socket) | x | 0x80000017 | 0x80000017 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 19 (send) | x | 0x80000013 | 0x80000013 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 18 (select) | x | 0x80000012 | 0x80000012 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 16 (recv) | x | 0x80000010 | 0x80000010 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 14 (ntohl) | x | 0x8000000E | 0x8000000E | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 12 (inet_ntoa) | x | 0x8000000C | 0x8000000C | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 115 (WSAStartup) | x | 0x80000073 | 0x80000073 | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 11 (inet_addr) | x | 0x8000000B | 0x8000000B | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | 10 (ioctlsocket) | x | 0x8000000A | 0x8000000A | 0 (0x0000) | network | - | implicit | x | WS2_32.dll | | void * __cdecl operator new(unsigned int) | - | 0x0000A870 | 0x0000A870 | 15 (0x000F) | - | - | implicit | - | MSVCRT.dll | | time | - | 0x0000A85A | 0x0000A85A | 720 (0x02D0) | - | - | implicit | - | MSVCRT.dll | | strncpy | - | 0x0000A81A | 0x0000A81A | 705 (0x02C1) | - | - | implicit | - | MSVCRT.dll | | sprintf | - | 0x0000A800 | 0x0000A800 | 690 (0x02B2) | - | - | implicit | - | MSVCRT.dll | | public: __thiscall std::_Lockit::~_Lockit(void) | - | 0x0000A73E | 0x0000A73E | 267 (0x010B) | - | - | implicit | - | MSVCP60.dll | | public: __thiscall std::_Lockit::_Lockit(void) | - | 0x0000A758 | 0x0000A758 | 162 (0x00A2) | - | - | implicit | - | MSVCP60.dll | | free | - | 0x0000A880 | 0x0000A880 | 606 (0x025E) | - | - | implicit | - | MSVCRT.dll | | exit | - | 0x0000A8C2 | 0x0000A8C2 | 585 (0x0249) | - | - | implicit | - | MSVCRT.dll | | _stricmp | - | 0x0000A98C | 0x0000A98C | 449 (0x01C1) | - | - | implicit | - | MSVCRT.dll | | _onexit | - | 0x0000A896 | 0x0000A896 | 390 (0x0186) | - | - | implicit | - | MSVCRT.dll | | _initterm | - | 0x0000A8E4 | 0x0000A8E4 | 271 (0x010F) | - | - | implicit | - | MSVCRT.dll | | _ftol | - | 0x0000A7F8 | 0x0000A7F8 | 241 (0x00F1) | - | - | implicit | - | MSVCRT.dll | | _exit | - | 0x0000A8AC | 0x0000A8AC | 211 (0x00D3) | - | - | implicit | - | MSVCRT.dll | | _except_handler3 | - | 0x0000A944 | 0x0000A944 | 202 (0x00CA) | - | - | implicit | - | MSVCRT.dll | | _endthreadex | - | 0x0000A80A | 0x0000A80A | 197 (0x00C5) | execution | - | implicit | - | MSVCRT.dll | | _controlfp | - | 0x0000A958 | 0x0000A958 | 183 (0x00B7) | - | - | implicit | - | MSVCRT.dll | | _beginthreadex | - | 0x0000A82C | 0x0000A82C | 166 (0x00A6) | execution | - | implicit | - | MSVCRT.dll | | _adjust_fdiv | - | 0x0000A904 | 0x0000A904 | 157 (0x009D) | - | - | implicit | - | MSVCRT.dll | | _acmdln | - | 0x0000A8CA | 0x0000A8CA | 143 (0x008F) | - | - | implicit | - | MSVCRT.dll | | __setusermatherr | - | 0x0000A8F0 | 0x0000A8F0 | 131 (0x0083) | - | - | implicit | - | MSVCRT.dll | | __set_app_type | - | 0x0000A932 | 0x0000A932 | 129 (0x0081) | - | - | implicit | - | MSVCRT.dll | | __p__fmode | - | 0x0000A924 | 0x0000A924 | 111 (0x006F) | - | - | implicit | - | MSVCRT.dll | | __p__commode | - | 0x0000A914 | 0x0000A914 | 106 (0x006A) | - | - | implicit | - | MSVCRT.dll | | __p___argc | - | 0x0000A862 | 0x0000A862 | 98 (0x0062) | - | - | implicit | - | MSVCRT.dll | | __getmainargs | - | 0x0000A8D4 | 0x0000A8D4 | 88 (0x0058) | - | - | implicit | - | MSVCRT.dll | | __dllonexit | - | 0x0000A888 | 0x0000A888 | 85 (0x0055) | - | - | implicit | - | MSVCRT.dll | | __CxxFrameHandler | - | 0x0000A83E | 0x0000A83E | 73 (0x0049) | - | - | implicit | - | MSVCRT.dll | | _XcptFilter | - | 0x0000A8B4 | 0x0000A8B4 | 72 (0x0048) | - | - | implicit | - | MSVCRT.dll | | WaitForSingleObject | - | 0x0000A4F6 | 0x0000A4F6 | 912 (0x0390) | synchronization | - | implicit | - | KERNEL32.dll | | TerminateThread | - | 0x0000A4E4 | 0x0000A4E4 | 863 (0x035F) | execution | - | implicit | - | KERNEL32.dll | | StartServiceA | - | 0x0000A662 | 0x0000A662 | 585 (0x0249) | services | T1569 | System Services | implicit | - | ADVAPI32.dll | | Sleep | - | 0x0000A408 | 0x0000A408 | 854 (0x0356) | execution | T1497 | Sandbox Evasion | implicit | - | KERNEL32.dll | | SizeofResource | - | 0x0000A584 | 0x0000A584 | 853 (0x0355) | resource | - | implicit | - | KERNEL32.dll | | SetServiceStatus | - | 0x0000A6AC | 0x0000A6AC | 580 (0x0244) | services | T1543 | Create or Modify System Process | implicit | - | ADVAPI32.dll | | RegisterServiceCtrlHandlerA | - | 0x0000A6D8 | 0x0000A6D8 | 524 (0x020C) | services | T1106 | Execution through API | implicit | - | ADVAPI32.dll | | ReadFile | - | 0x0000A54E | 0x0000A54E | 693 (0x02B5) | file | - | implicit | - | KERNEL32.dll | | QueryPerformanceCounter | - | 0x0000A420 | 0x0000A420 | 675 (0x02A3) | reconnaissance | - | implicit | - | KERNEL32.dll | | OpenServiceA | - | 0x0000A714 | 0x0000A714 | 431 (0x01AF) | services | T1543 | Create or Modify System Process | implicit | - | ADVAPI32.dll | | OpenSCManagerA | - | 0x0000A69A | 0x0000A69A | 429 (0x01AD) | services | T1569 | System Services | implicit | - | ADVAPI32.dll | | LockResource | - | 0x0000A596 | 0x0000A596 | 613 (0x0265) | resource | - | implicit | - | KERNEL32.dll | | LocalFree | - | 0x0000A610 | 0x0000A610 | 604 (0x025C) | memory | - | implicit | - | KERNEL32.dll | | LocalAlloc | - | 0x0000A61C | 0x0000A61C | 600 (0x0258) | memory | - | implicit | - | KERNEL32.dll | | LoadResource | - | 0x0000A5A6 | 0x0000A5A6 | 599 (0x0257) | resource | - | implicit | - | KERNEL32.dll | | LeaveCriticalSection | - | 0x0000A48E | 0x0000A48E | 593 (0x0251) | synchronization | - | implicit | - | KERNEL32.dll | | InterlockedIncrement | - | 0x0000A50C | 0x0000A50C | 556 (0x022C) | synchronization | - | implicit | - | KERNEL32.dll | | InterlockedDecrement | - | 0x0000A4BE | 0x0000A4BE | 552 (0x0228) | synchronization | - | implicit | - | KERNEL32.dll | | InitializeCriticalSection | - | 0x0000A472 | 0x0000A472 | 547 (0x0223) | synchronization | - | implicit | - | KERNEL32.dll | | GlobalFree | - | 0x0000A456 | 0x0000A456 | 511 (0x01FF) | memory | - | implicit | - | KERNEL32.dll | | GlobalAlloc | - | 0x0000A464 | 0x0000A464 | 504 (0x01F8) | memory | - | implicit | - | KERNEL32.dll | | GetTickCount | - | 0x0000A410 | 0x0000A410 | 479 (0x01DF) | reconnaissance | T1124 | System Time Discovery | implicit | - | KERNEL32.dll | | GetStartupInfoA | - | 0x0000A97A | 0x0000A97A | 439 (0x01B7) | reconnaissance | - | implicit | - | KERNEL32.dll | | GetProcAddress | - | 0x0000A5C6 | 0x0000A5C6 | 416 (0x01A0) | dynamic-library | - | implicit | - | KERNEL32.dll | | GetPerAdapterInfo | - | 0x0000A77E | 0x0000A77E | 64 (0x0040) | network | - | implicit | - | iphlpapi.dll | | GetModuleHandleW | - | 0x0000A5D8 | 0x0000A5D8 | 386 (0x0182) | dynamic-library | - | implicit | - | KERNEL32.dll | | GetModuleHandleA | - | 0x0000A966 | 0x0000A966 | 383 (0x017F) | dynamic-library | - | implicit | - | KERNEL32.dll | | GetModuleFileNameA | - | 0x0000A5FA | 0x0000A5FA | 381 (0x017D) | dynamic-library | - | implicit | - | KERNEL32.dll | | GetFileSize | - | 0x0000A55A | 0x0000A55A | 355 (0x0163) | file | - | implicit | - | KERNEL32.dll | | FindResourceA | - | 0x0000A5B6 | 0x0000A5B6 | 227 (0x00E3) | resource | - | implicit | - | KERNEL32.dll | | ExitProcess | - | 0x0000A5EC | 0x0000A5EC | 185 (0x00B9) | execution | - | implicit | - | KERNEL32.dll | | EnterCriticalSection | - | 0x0000A4A6 | 0x0000A4A6 | 152 (0x0098) | synchronization | - | implicit | - | KERNEL32.dll | | CreateFileA | - | 0x0000A568 | 0x0000A568 | 83 (0x0053) | file | - | implicit | - | KERNEL32.dll | | CloseServiceHandle | - | 0x0000A672 | 0x0000A672 | 62 (0x003E) | services | T1569 | System Services | implicit | - | ADVAPI32.dll | | CloseHandle | - | 0x0000A4D6 | 0x0000A4D6 | 52 (0x0034) | - | - | implicit | - | KERNEL32.dll |