krnl.dll
Description:
Authors:
Version:
Architecture: 32-bit
Operating System:
SHA256: fac5e5123471f6a54b79906c60605dd0
File Size: 3.6 MB
Uploaded At: March 27, 2026, 6:06 a.m.
Views: 6
Security Warning
This file has been flagged as potentially dangerous.
Reason: Detected potentially dangerous functions used for process injection: WriteProcessMemory
Exported Functions
No exported functions.
Imported DLLs & Functions
ADVAPI32.dll
- AdjustTokenPrivileges (Address: 0x104fb0cc)
- CryptAcquireContextA (Address: 0x104fb0c4)
- CryptCreateHash (Address: 0x104fb0b4)
- CryptDestroyHash (Address: 0x104fb0b0)
- CryptGenRandom (Address: 0x104fb0b8)
- CryptGetHashParam (Address: 0x104fb0bc)
- CryptHashData (Address: 0x104fb0c8)
- CryptReleaseContext (Address: 0x104fb0c0)
- LookupPrivilegeValueA (Address: 0x104fb0d0)
- OpenProcessToken (Address: 0x104fb0d4)
- RegCloseKey (Address: 0x104fb0d8)
- RegCreateKeyExA (Address: 0x104fb0e0)
- RegGetValueA (Address: 0x104fb0dc)
- RegOpenKeyExA (Address: 0x104fb0e8)
- RegSetValueExA (Address: 0x104fb0e4)
CRYPT32.dll
- CertAddCertificateContextToStore (Address: 0x104fb098)
- CertCloseStore (Address: 0x104fb078)
- CertCreateCertificateChainEngine (Address: 0x104fb08c)
- CertEnumCertificatesInStore (Address: 0x104fb07c)
- CertFindCertificateInStore (Address: 0x104fb0a0)
- CertFreeCertificateChain (Address: 0x104fb0a4)
- CertFreeCertificateChainEngine (Address: 0x104fb088)
- CertFreeCertificateContext (Address: 0x104fb080)
- CertGetCertificateChain (Address: 0x104fb084)
- CertGetNameStringA (Address: 0x104fb094)
- CertOpenStore (Address: 0x104fb0a8)
- CryptQueryObject (Address: 0x104fb090)
- CryptStringToBinaryA (Address: 0x104fb09c)
D3DCOMPILER_47.dll
- D3DCompile (Address: 0x104fb414)
dbghelp.dll
- UnDecorateSymbolName (Address: 0x104fb3fc)
IMM32.dll
- ImmGetContext (Address: 0x104fb40c)
- ImmReleaseContext (Address: 0x104fb404)
- ImmSetCompositionWindow (Address: 0x104fb408)
KERNEL32.dll
- AcquireSRWLockExclusive (Address: 0x104fb2a4)
- AllocConsole (Address: 0x104fb144)
- AreFileApisANSI (Address: 0x104fb36c)
- CloseHandle (Address: 0x104fb4b0)
- CloseHandle (Address: 0x104fb0f0)
- CompareStringW (Address: 0x104fb214)
- ConnectNamedPipe (Address: 0x104fb10c)
- CopyFileW (Address: 0x104fb370)
- CreateDirectoryW (Address: 0x104fb348)
- CreateEventA (Address: 0x104fb484)
- CreateEventW (Address: 0x104fb1d4)
- CreateFileA (Address: 0x104fb564)
- CreateFileA (Address: 0x104fb32c)
- CreateFileW (Address: 0x104fb34c)
- CreateFileW (Address: 0x104fb554)
- CreateMutexA (Address: 0x104fb15c)
- CreateNamedPipeA (Address: 0x104fb104)
- CreateThread (Address: 0x104fb168)
- CreateToolhelp32Snapshot (Address: 0x104fb190)
- CreateToolhelp32Snapshot (Address: 0x104fb498)
- DecodePointer (Address: 0x104fb1f0)
- DeleteCriticalSection (Address: 0x104fb2fc)
- DeleteCriticalSection (Address: 0x104fb514)
- DisableThreadLibraryCalls (Address: 0x104fb164)
- DisconnectNamedPipe (Address: 0x104fb108)
- EncodePointer (Address: 0x104fb1f4)
- EnterCriticalSection (Address: 0x104fb2f0)
- EnterCriticalSection (Address: 0x104fb508)
- EnumResourceLanguagesA (Address: 0x104fb544)
- EnumResourceLanguagesW (Address: 0x104fb548)
- EnumResourceNamesA (Address: 0x104fb53c)
- EnumResourceNamesW (Address: 0x104fb540)
- EnumResourceTypesA (Address: 0x104fb54c)
- EnumResourceTypesW (Address: 0x104fb550)
- EnumSystemLocalesW (Address: 0x104fb200)
- ExitProcess (Address: 0x104fb270)
- ExitProcess (Address: 0x104fb504)
- ExitProcess (Address: 0x104fb658)
- ExitThread (Address: 0x104fb268)
- ExpandEnvironmentStringsA (Address: 0x104fb314)
- FileTimeToSystemTime (Address: 0x104fb258)
- FileTimeToSystemTime (Address: 0x104fb4f0)
- FillConsoleOutputAttribute (Address: 0x104fb138)
- FillConsoleOutputCharacterA (Address: 0x104fb12c)
- FindClose (Address: 0x104fb334)
- FindFirstFileExW (Address: 0x104fb350)
- FindNextFileW (Address: 0x104fb338)
- FindResourceExA (Address: 0x104fb528)
- FindResourceExW (Address: 0x104fb524)
- FlushFileBuffers (Address: 0x104fb560)
- FlushFileBuffers (Address: 0x104fb240)
- FlushInstructionCache (Address: 0x104fb1a4)
- FormatMessageA (Address: 0x104fb170)
- FreeConsole (Address: 0x104fb134)
- FreeEnvironmentStringsA (Address: 0x104fb5dc)
- FreeEnvironmentStringsW (Address: 0x104fb2d4)
- FreeEnvironmentStringsW (Address: 0x104fb5e4)
- FreeLibrary (Address: 0x104fb65c)
- FreeLibrary (Address: 0x104fb30c)
- FreeLibrary (Address: 0x104fb4e4)
- FreeLibraryAndExitThread (Address: 0x104fb264)
- GetACP (Address: 0x104fb2c0)
- GetACP (Address: 0x104fb590)
- GetCommandLineA (Address: 0x104fb574)
- GetCommandLineA (Address: 0x104fb2b8)
- GetCommandLineW (Address: 0x104fb1dc)
- GetComputerNameA (Address: 0x104fb22c)
- GetConsoleCP (Address: 0x104fb614)
- GetConsoleMode (Address: 0x104fb618)
- GetConsoleMode (Address: 0x104fb250)
- GetConsoleOutputCP (Address: 0x104fb244)
- GetConsoleOutputCP (Address: 0x104fb56c)
- GetConsoleScreenBufferInfo (Address: 0x104fb130)
- GetConsoleWindow (Address: 0x104fb120)
- GetCPInfo (Address: 0x104fb1e4)
- GetCPInfo (Address: 0x104fb584)
- GetCurrentDirectoryW (Address: 0x104fb344)
- GetCurrentProcess (Address: 0x104fb224)
- GetCurrentProcess (Address: 0x104fb494)
- GetCurrentProcessId (Address: 0x104fb4a0)
- GetCurrentProcessId (Address: 0x104fb0f8)
- GetCurrentThread (Address: 0x104fb4d8)
- GetCurrentThreadId (Address: 0x104fb4a4)
- GetCurrentThreadId (Address: 0x104fb184)
- GetDateFormatW (Address: 0x104fb21c)
- GetDriveTypeW (Address: 0x104fb260)
- GetEnvironmentStrings (Address: 0x104fb5e0)
- GetEnvironmentStringsW (Address: 0x104fb5e8)
- GetEnvironmentStringsW (Address: 0x104fb1c8)
- GetExitCodeThread (Address: 0x104fb340)
- GetFileAttributesExW (Address: 0x104fb354)
- GetFileInformationByHandle (Address: 0x104fb358)
- GetFileInformationByHandleEx (Address: 0x104fb374)
- GetFileSizeEx (Address: 0x104fb330)
- GetFileType (Address: 0x104fb31c)
- GetFileType (Address: 0x104fb5d0)
- GetFullPathNameW (Address: 0x104fb35c)
- GetLastError (Address: 0x104fb160)
- GetLastError (Address: 0x104fb55c)
- GetLocaleInfoA (Address: 0x104fb604)
- GetLocaleInfoW (Address: 0x104fb20c)
- GetModuleFileNameA (Address: 0x104fb228)
- GetModuleFileNameA (Address: 0x104fb5d8)
- GetModuleFileNameW (Address: 0x104fb488)
- GetModuleFileNameW (Address: 0x104fb254)
- GetModuleFileNameW (Address: 0x104fb644)
- GetModuleHandleA (Address: 0x104fb664)
- GetModuleHandleA (Address: 0x104fb230)
- GetModuleHandleA (Address: 0x104fb480)
- GetModuleHandleExW (Address: 0x104fb26c)
- GetModuleHandleW (Address: 0x104fb518)
- GetModuleHandleW (Address: 0x104fb1a0)
- GetOEMCP (Address: 0x104fb2bc)
- GetOEMCP (Address: 0x104fb594)
- GetProcAddress (Address: 0x104fb500)
- GetProcAddress (Address: 0x104fb0f4)
- GetProcAddress (Address: 0x104fb668)
- GetProcessAffinityMask (Address: 0x104fb648)
- GetProcessAffinityMask (Address: 0x104fb4d0)
- GetProcessHeap (Address: 0x104fb2dc)
- GetStartupInfoA (Address: 0x104fb5d4)
- GetStartupInfoW (Address: 0x104fb1bc)
- GetStdHandle (Address: 0x104fb5cc)
- GetStdHandle (Address: 0x104fb238)
- GetStringTypeA (Address: 0x104fb5fc)
- GetStringTypeW (Address: 0x104fb600)
- GetStringTypeW (Address: 0x104fb1e8)
- GetSystemDefaultLCID (Address: 0x104fb538)
- GetSystemDirectoryA (Address: 0x104fb308)
- GetSystemInfo (Address: 0x104fb4c0)
- GetSystemTimeAsFileTime (Address: 0x104fb47c)
- GetSystemTimeAsFileTime (Address: 0x104fb1f8)
- GetSystemWow64DirectoryA (Address: 0x104fb13c)
- GetThreadContext (Address: 0x104fb23c)
- GetThreadLocale (Address: 0x104fb530)
- GetTickCount (Address: 0x104fb4e8)
- GetTickCount (Address: 0x104fb2ec)
- GetTimeFormatW (Address: 0x104fb218)
- GetTimeZoneInformation (Address: 0x104fb1fc)
- GetUserDefaultLCID (Address: 0x104fb204)
- GetUserDefaultLCID (Address: 0x104fb534)
- GetVolumeInformationA (Address: 0x104fb234)
- GlobalAlloc (Address: 0x104fb118)
- GlobalFree (Address: 0x104fb14c)
- GlobalFree (Address: 0x104fb4f4)
- GlobalLock (Address: 0x104fb11c)
- GlobalUnlock (Address: 0x104fb128)
- HeapAlloc (Address: 0x104fb19c)
- HeapAlloc (Address: 0x104fb5bc)
- HeapCreate (Address: 0x104fb174)
- HeapCreate (Address: 0x104fb5ec)
- HeapDestroy (Address: 0x104fb5f0)
- HeapFree (Address: 0x104fb178)
- HeapFree (Address: 0x104fb580)
- HeapReAlloc (Address: 0x104fb198)
- HeapReAlloc (Address: 0x104fb5f8)
- HeapSize (Address: 0x104fb608)
- HeapSize (Address: 0x104fb2e0)
- InitializeConditionVariable (Address: 0x104fb29c)
- InitializeCriticalSection (Address: 0x104fb510)
- InitializeCriticalSectionAndSpinCount (Address: 0x104fb1e0)
- InitializeCriticalSectionAndSpinCount (Address: 0x104fb61c)
- InitializeCriticalSectionEx (Address: 0x104fb2f8)
- InitializeSListHead (Address: 0x104fb1b8)
- InitializeSRWLock (Address: 0x104fb2ac)
- InitOnceBeginInitialize (Address: 0x104fb2b0)
- InitOnceComplete (Address: 0x104fb2b4)
- InterlockedDecrement (Address: 0x104fb58c)
- InterlockedFlushSList (Address: 0x104fb288)
- InterlockedIncrement (Address: 0x104fb588)
- IsBadReadPtr (Address: 0x104fb124)
- IsDebuggerPresent (Address: 0x104fb1c0)
- IsDebuggerPresent (Address: 0x104fb5b8)
- IsProcessorFeaturePresent (Address: 0x104fb1c4)
- IsValidCodePage (Address: 0x104fb2c4)
- IsValidCodePage (Address: 0x104fb598)
- IsValidLocale (Address: 0x104fb208)
- LCMapStringA (Address: 0x104fb5c0)
- LCMapStringEx (Address: 0x104fb1ec)
- LCMapStringW (Address: 0x104fb5c4)
- LCMapStringW (Address: 0x104fb210)
- LeaveCriticalSection (Address: 0x104fb2f4)
- LeaveCriticalSection (Address: 0x104fb50c)
- LoadLibraryA (Address: 0x104fb48c)
- LoadLibraryA (Address: 0x104fb114)
- LoadLibraryA (Address: 0x104fb660)
- LoadLibraryExW (Address: 0x104fb274)
- LoadLibraryW (Address: 0x104fb558)
- LoadResource (Address: 0x104fb51c)
- LocalAlloc (Address: 0x104fb4f8)
- LocalAlloc (Address: 0x104fb63c)
- LocalFree (Address: 0x104fb640)
- LocalFree (Address: 0x104fb33c)
- LocalFree (Address: 0x104fb4fc)
- MultiByteToWideChar (Address: 0x104fb520)
- MultiByteToWideChar (Address: 0x104fb148)
- OpenThread (Address: 0x104fb1ac)
- OpenThread (Address: 0x104fb4a8)
- PeekNamedPipe (Address: 0x104fb320)
- QueryPerformanceCounter (Address: 0x104fb158)
- QueryPerformanceCounter (Address: 0x104fb5f4)
- QueryPerformanceFrequency (Address: 0x104fb154)
- RaiseException (Address: 0x104fb16c)
- RaiseException (Address: 0x104fb578)
- ReadConsoleW (Address: 0x104fb24c)
- ReadFile (Address: 0x104fb100)
- ReleaseSRWLockExclusive (Address: 0x104fb2a8)
- ResetEvent (Address: 0x104fb1d8)
- ResumeThread (Address: 0x104fb18c)
- ResumeThread (Address: 0x104fb4b8)
- RtlUnwind (Address: 0x104fb57c)
- RtlUnwind (Address: 0x104fb378)
- SetConsoleCursorPosition (Address: 0x104fb140)
- SetConsoleTextAttribute (Address: 0x104fb2cc)
- SetConsoleTitleA (Address: 0x104fb110)
- SetEndOfFile (Address: 0x104fb360)
- SetEnvironmentVariableW (Address: 0x104fb2d8)
- SetEvent (Address: 0x104fb2d0)
- SetFileInformationByHandle (Address: 0x104fb364)
- SetFilePointer (Address: 0x104fb610)
- SetFilePointerEx (Address: 0x104fb368)
- SetHandleCount (Address: 0x104fb5c8)
- SetLastError (Address: 0x104fb5ac)
- SetLastError (Address: 0x104fb328)
- SetProcessAffinityMask (Address: 0x104fb64c)
- SetProcessAffinityMask (Address: 0x104fb4d4)
- SetStdHandle (Address: 0x104fb2c8)
- SetStdHandle (Address: 0x104fb620)
- SetThreadAffinityMask (Address: 0x104fb650)
- SetThreadAffinityMask (Address: 0x104fb4dc)
- SetThreadContext (Address: 0x104fb1a8)
- SetUnhandledExceptionFilter (Address: 0x104fb1cc)
- SetUnhandledExceptionFilter (Address: 0x104fb5b4)
- Sleep (Address: 0x104fb4e0)
- Sleep (Address: 0x104fb194)
- Sleep (Address: 0x104fb654)
- SleepConditionVariableCS (Address: 0x104fb290)
- SleepConditionVariableSRW (Address: 0x104fb28c)
- SleepEx (Address: 0x104fb300)
- SuspendThread (Address: 0x104fb188)
- SuspendThread (Address: 0x104fb4b4)
- SystemTimeToFileTime (Address: 0x104fb4ec)
- SystemTimeToTzSpecificLocalTime (Address: 0x104fb25c)
- TerminateProcess (Address: 0x104fb2e8)
- TerminateProcess (Address: 0x104fb490)
- Thread32First (Address: 0x104fb49c)
- Thread32First (Address: 0x104fb180)
- Thread32Next (Address: 0x104fb17c)
- Thread32Next (Address: 0x104fb4ac)
- TlsAlloc (Address: 0x104fb5a0)
- TlsAlloc (Address: 0x104fb284)
- TlsFree (Address: 0x104fb278)
- TlsFree (Address: 0x104fb5a8)
- TlsGetValue (Address: 0x104fb59c)
- TlsGetValue (Address: 0x104fb280)
- TlsSetValue (Address: 0x104fb27c)
- TlsSetValue (Address: 0x104fb5a4)
- TryEnterCriticalSection (Address: 0x104fb2a0)
- UnhandledExceptionFilter (Address: 0x104fb5b0)
- UnhandledExceptionFilter (Address: 0x104fb1d0)
- VerifyVersionInfoA (Address: 0x104fb310)
- VerSetConditionMask (Address: 0x104fb304)
- VirtualAlloc (Address: 0x104fb1b4)
- VirtualAlloc (Address: 0x104fb4c4)
- VirtualFree (Address: 0x104fb4cc)
- VirtualFree (Address: 0x104fb1b0)
- VirtualProtect (Address: 0x104fb4c8)
- VirtualProtect (Address: 0x104fb220)
- VirtualQuery (Address: 0x104fb478)
- VirtualQuery (Address: 0x104fb0fc)
- WaitForMultipleObjects (Address: 0x104fb324)
- WaitForSingleObjectEx (Address: 0x104fb318)
- WakeAllConditionVariable (Address: 0x104fb294)
- WakeConditionVariable (Address: 0x104fb298)
- WideCharToMultiByte (Address: 0x104fb150)
- WideCharToMultiByte (Address: 0x104fb52c)
- WriteConsoleA (Address: 0x104fb570)
- WriteConsoleW (Address: 0x104fb568)
- WriteConsoleW (Address: 0x104fb2e4)
- WriteFile (Address: 0x104fb248)
- WriteFile (Address: 0x104fb60c)
- WriteProcessMemory (Address: 0x104fb4bc)
USER32.dll
- CharUpperBuffW (Address: 0x104fb630)
- ClientToScreen (Address: 0x104fb3e8)
- CloseClipboard (Address: 0x104fb3a0)
- CreateWindowExA (Address: 0x104fb3d0)
- DefWindowProcA (Address: 0x104fb3cc)
- DestroyWindow (Address: 0x104fb3c8)
- EmptyClipboard (Address: 0x104fb39c)
- EnableMenuItem (Address: 0x104fb3c4)
- GetClientRect (Address: 0x104fb3f4)
- GetClipboardData (Address: 0x104fb3b8)
- GetCursorPos (Address: 0x104fb384)
- GetForegroundWindow (Address: 0x104fb390)
- GetKeyState (Address: 0x104fb3dc)
- GetProcessWindowStation (Address: 0x104fb670)
- GetProcessWindowStation (Address: 0x104fb628)
- GetSystemMenu (Address: 0x104fb3c0)
- GetSystemMetrics (Address: 0x104fb3ac)
- GetUserObjectInformationW (Address: 0x104fb62c)
- GetUserObjectInformationW (Address: 0x104fb674)
- GetWindowTextA (Address: 0x104fb398)
- IsChild (Address: 0x104fb3ec)
- keybd_event (Address: 0x104fb3b0)
- LoadCursorA (Address: 0x104fb3e0)
- MapVirtualKeyA (Address: 0x104fb394)
- MessageBoxA (Address: 0x104fb380)
- MessageBoxW (Address: 0x104fb634)
- mouse_event (Address: 0x104fb38c)
- OpenClipboard (Address: 0x104fb3a4)
- RegisterClassExA (Address: 0x104fb3d8)
- ScreenToClient (Address: 0x104fb3e4)
- SetClipboardData (Address: 0x104fb388)
- SetCursor (Address: 0x104fb3f0)
- SetCursorPos (Address: 0x104fb3bc)
- SetWindowPos (Address: 0x104fb3b4)
- ShowWindow (Address: 0x104fb3a8)
- UnregisterClassA (Address: 0x104fb3d4)
WLDAP32.dll
- (Address: 0x104fb428)
- (Address: 0x104fb42c)
- (Address: 0x104fb430)
- (Address: 0x104fb434)
- (Address: 0x104fb438)
- (Address: 0x104fb43c)
- (Address: 0x104fb440)
- (Address: 0x104fb444)
- (Address: 0x104fb448)
- (Address: 0x104fb44c)
- (Address: 0x104fb450)
- (Address: 0x104fb454)
- (Address: 0x104fb458)
- (Address: 0x104fb45c)
- (Address: 0x104fb460)
- (Address: 0x104fb464)
- (Address: 0x104fb468)
WS2_32.dll
- __WSAFDIsSet (Address: 0x104fb050)
- accept (Address: 0x104fb038)
- bind (Address: 0x104fb030)
- closesocket (Address: 0x104fb048)
- connect (Address: 0x104fb05c)
- freeaddrinfo (Address: 0x104fb06c)
- getaddrinfo (Address: 0x104fb070)
- gethostname (Address: 0x104fb000)
- getpeername (Address: 0x104fb02c)
- getsockname (Address: 0x104fb028)
- getsockopt (Address: 0x104fb024)
- htonl (Address: 0x104fb010)
- htons (Address: 0x104fb020)
- ioctlsocket (Address: 0x104fb060)
- listen (Address: 0x104fb00c)
- ntohl (Address: 0x104fb014)
- ntohs (Address: 0x104fb01c)
- recv (Address: 0x104fb04c)
- recvfrom (Address: 0x104fb008)
- select (Address: 0x104fb03c)
- send (Address: 0x104fb054)
- sendto (Address: 0x104fb004)
- setsockopt (Address: 0x104fb064)
- socket (Address: 0x104fb068)
- WSACleanup (Address: 0x104fb044)
- WSAGetLastError (Address: 0x104fb058)
- WSAIoctl (Address: 0x104fb018)
- WSASetLastError (Address: 0x104fb034)
- WSAStartup (Address: 0x104fb040)
WTSAPI32.dll
- WTSSendMessageW (Address: 0x104fb470)
XINPUT1_4.dll
- (Address: 0x104fb41c)
- (Address: 0x104fb420)