-
C:\Users\user\AppData\Local\Temp\apfHQ
-
C:\Windows\System32\ntdll.dll
-
kernel32.dll.FlsAlloc
-
kernel32.dll.FlsGetValue
-
kernel32.dll.FlsSetValue
-
kernel32.dll.FlsFree
-
kernel32.dll.IsProcessorFeaturePresent
-
-
kernel32.dll.GlobalAlloc
-
kernel32.dll.GetLastError
-
kernel32.dll.Sleep
-
kernel32.dll.VirtualAlloc
-
kernel32.dll.CreateToolhelp32Snapshot
-
kernel32.dll.Module32First
-
kernel32.dll.CloseHandle
-
user32.dll.MessageBoxA
-
user32.dll.GetMessageExtraInfo
-
kernel32.dll.WinExec
-
kernel32.dll.CreateFileA
-
kernel32.dll.WriteFile
-
kernel32.dll.CreateProcessA
-
kernel32.dll.GetThreadContext
-
kernel32.dll.VirtualAllocEx
-
kernel32.dll.VirtualFree
-
kernel32.dll.ReadProcessMemory
-
kernel32.dll.WriteProcessMemory
-
kernel32.dll.SetThreadContext
-
kernel32.dll.ResumeThread
-
kernel32.dll.WaitForSingleObject
-
kernel32.dll.GetModuleFileNameA
-
kernel32.dll.GetCommandLineA
-
ntdll.dll.NtUnmapViewOfSection
-
ntdll.dll.NtWriteVirtualMemory
-
user32.dll.RegisterClassExA
-
user32.dll.CreateWindowExA
-
user32.dll.PostMessageA
-
user32.dll.GetMessageA
-
user32.dll.DefWindowProcA
-
kernel32.dll.GetFileAttributesA
-
kernel32.dll.GetStartupInfoA
-
kernel32.dll.VirtualProtectEx
-
kernel32.dll.ExitProcess
-
uxtheme.dll.ThemeInitApiHook
-
user32.dll.IsProcessDPIAware
-
dwmapi.dll.DwmIsCompositionEnabled
-
Show More 37
-
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\GRE_Initialize
-
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\GRE_Initialize\DisableMetaFiles
1c8fa769548b32928a92c0a5adb487fb045f21e1
