aepic.dll

Description: Application Experience Program Cache

Version: 10.0.19041.6280

Architecture: 64-bit

Operating System: Windows NT

SHA256: 5027e704cbcd857d9ef6370be59b6f9b

File Size: 635.5 KB

Uploaded At: Dec. 1, 2025, 7:21 a.m.

Views: 24

Security Warning

This file has been flagged as potentially dangerous.

Reason: Detected potentially dangerous functions used for process injection: OpenProcess

Exported Functions

GetAppInventoryCore (Ordinal: 1, Address: 0x29cb0)
UpdateSoftwareInventoryTC2 (Ordinal: 2, Address: 0x4a3f0)
DllCanUnloadNow (Ordinal: 3, Address: 0x41be0)
DllGetActivationFactory (Ordinal: 4, Address: 0x41c10)
GetPrivacyLevel (Ordinal: 5, Address: 0x19490)
PicAmiClose (Ordinal: 6, Address: 0x193f0)
PicAmiInitialize (Ordinal: 7, Address: 0x40520)
PicFreeFileInfo (Ordinal: 8, Address: 0x18ef0)
PicRetrieveFileInfo (Ordinal: 9, Address: 0x11ef0)
PicRetrieveFileInfoAppx (Ordinal: 10, Address: 0x40530)
PicRetrieveFileLastRunTime (Ordinal: 11, Address: 0x40b20)
PicUpdateFileLastRunTime (Ordinal: 12, Address: 0x41010)

Imported DLLs & Functions

api-ms-win-core-com-l1-1-0.dll

CoCreateFreeThreadedMarshaler (Address: 0x180071d00)
CoCreateInstance (Address: 0x180071d08)
CoGetApartmentType (Address: 0x180071cc0)
CoGetCallContext (Address: 0x180071ce8)
CoGetInterfaceAndReleaseStream (Address: 0x180071ce0)
CoInitializeEx (Address: 0x180071cf8)
CoMarshalInterface (Address: 0x180071cd8)
CoReleaseMarshalData (Address: 0x180071cc8)
CoTaskMemAlloc (Address: 0x180071cb0)
CoTaskMemFree (Address: 0x180071cb8)
CoUninitialize (Address: 0x180071ca8)
CoWaitForMultipleHandles (Address: 0x180071d10)
CreateStreamOnHGlobal (Address: 0x180071cd0)
PropVariantClear (Address: 0x180071cf0)

api-ms-win-core-com-l1-1-1.dll

RoGetAgileReference (Address: 0x180071d20)

api-ms-win-core-debug-l1-1-0.dll

DebugBreak (Address: 0x180071d30)
IsDebuggerPresent (Address: 0x180071d38)
OutputDebugStringA (Address: 0x180071d48)
OutputDebugStringW (Address: 0x180071d40)

api-ms-win-core-delayload-l1-1-0.dll

DelayLoadFailureHook (Address: 0x180071d58)

api-ms-win-core-delayload-l1-1-1.dll

ResolveDelayLoadedAPI (Address: 0x180071d68)

api-ms-win-core-errorhandling-l1-1-0.dll

GetLastError (Address: 0x180071d78)
RaiseException (Address: 0x180071d90)
SetLastError (Address: 0x180071d80)
SetUnhandledExceptionFilter (Address: 0x180071d88)
UnhandledExceptionFilter (Address: 0x180071d98)

api-ms-win-core-featurestaging-l1-1-0.dll

GetFeatureEnabledState (Address: 0x180071db0)
RecordFeatureUsage (Address: 0x180071da8)
SubscribeFeatureStateChangeNotification (Address: 0x180071db8)
UnsubscribeFeatureStateChangeNotification (Address: 0x180071dc0)

api-ms-win-core-file-l1-1-0.dll

CreateFileW (Address: 0x180071e10)
DeleteFileW (Address: 0x180071de8)
FindClose (Address: 0x180071e38)
FindFirstFileW (Address: 0x180071e08)
FindNextFileW (Address: 0x180071e20)
GetDriveTypeW (Address: 0x180071e00)
GetFileAttributesW (Address: 0x180071df8)
GetFileTime (Address: 0x180071de0)
GetLogicalDriveStringsW (Address: 0x180071dd8)
GetLongPathNameW (Address: 0x180071df0)
GetTempFileNameW (Address: 0x180071dd0)
GetVolumeInformationByHandleW (Address: 0x180071e18)
QueryDosDeviceW (Address: 0x180071e30)
WriteFile (Address: 0x180071e28)

api-ms-win-core-file-l1-2-0.dll

GetTempPathW (Address: 0x180071e48)

api-ms-win-core-file-l2-1-0.dll

MoveFileExW (Address: 0x180071e58)

api-ms-win-core-handle-l1-1-0.dll

CloseHandle (Address: 0x180071e68)

api-ms-win-core-heap-l1-1-0.dll

GetProcessHeap (Address: 0x180071e88)
HeapAlloc (Address: 0x180071e78)
HeapFree (Address: 0x180071e90)
HeapReAlloc (Address: 0x180071e80)

api-ms-win-core-heap-l2-1-0.dll

LocalAlloc (Address: 0x180071ea0)
LocalFree (Address: 0x180071ea8)

api-ms-win-core-io-l1-1-0.dll

DeviceIoControl (Address: 0x180071eb8)

api-ms-win-core-kernel32-legacy-l1-1-1.dll

VerifyVersionInfoW (Address: 0x180071ec8)

api-ms-win-core-libraryloader-l1-2-0.dll

FreeLibrary (Address: 0x180071ef0)
FreeLibraryAndExitThread (Address: 0x180071ef8)
GetModuleFileNameA (Address: 0x180071f00)
GetModuleFileNameW (Address: 0x180071f18)
GetModuleHandleExA (Address: 0x180071ed8)
GetModuleHandleExW (Address: 0x180071ee8)
GetModuleHandleW (Address: 0x180071f10)
GetProcAddress (Address: 0x180071f08)
LoadLibraryExW (Address: 0x180071ee0)

api-ms-win-core-libraryloader-l1-2-1.dll

LoadLibraryA (Address: 0x180071f30)
LoadLibraryW (Address: 0x180071f28)

api-ms-win-core-localization-l1-2-0.dll

FormatMessageW (Address: 0x180071f40)
LocaleNameToLCID (Address: 0x180071f48)

api-ms-win-core-namedpipe-l1-1-0.dll

SetNamedPipeHandleState (Address: 0x180071f58)
WaitNamedPipeW (Address: 0x180071f60)

api-ms-win-core-path-l1-1-0.dll

PathAllocCombine (Address: 0x180071f78)
PathCchCanonicalizeEx (Address: 0x180071f80)
PathCchRemoveFileSpec (Address: 0x180071f70)

api-ms-win-core-processenvironment-l1-1-0.dll

GetCommandLineW (Address: 0x180071f98)
GetCurrentDirectoryW (Address: 0x180071f90)

api-ms-win-core-processthreads-l1-1-0.dll

CreateThread (Address: 0x180071fd8)
GetCurrentProcess (Address: 0x180071fb8)
GetCurrentProcessId (Address: 0x180071fc0)
GetCurrentThread (Address: 0x180072000)
GetCurrentThreadId (Address: 0x180071fa8)
GetThreadPriority (Address: 0x180072008)
OpenProcessToken (Address: 0x180071fd0)
ResumeThread (Address: 0x180071fe8)
SetThreadPriority (Address: 0x180071fe0)
TerminateProcess (Address: 0x180071fc8)
TlsAlloc (Address: 0x180071fb0)
TlsGetValue (Address: 0x180071ff8)
TlsSetValue (Address: 0x180071ff0)

api-ms-win-core-processthreads-l1-1-1.dll

OpenProcess (Address: 0x180072018)

api-ms-win-core-profile-l1-1-0.dll

QueryPerformanceCounter (Address: 0x180072028)

api-ms-win-core-realtime-l1-1-0.dll

QueryThreadCycleTime (Address: 0x180072038)

api-ms-win-core-registry-l1-1-0.dll

RegCloseKey (Address: 0x1800720b8)
RegCreateKeyExW (Address: 0x1800720c0)
RegDeleteKeyExW (Address: 0x180072070)
RegDeleteTreeW (Address: 0x180072080)
RegDeleteValueW (Address: 0x180072088)
RegEnumKeyExW (Address: 0x180072048)
RegFlushKey (Address: 0x180072060)
RegGetValueW (Address: 0x180072090)
RegLoadAppKeyW (Address: 0x180072068)
RegLoadKeyW (Address: 0x180072058)
RegOpenKeyExW (Address: 0x1800720b0)
RegQueryInfoKeyW (Address: 0x1800720a8)
RegSaveKeyExW (Address: 0x180072078)
RegSetKeySecurity (Address: 0x180072098)
RegSetValueExW (Address: 0x1800720a0)
RegUnLoadKeyW (Address: 0x180072050)

api-ms-win-core-registry-l1-1-1.dll

RegDeleteKeyValueW (Address: 0x1800720d8)
RegSetKeyValueW (Address: 0x1800720d0)

api-ms-win-core-registry-l2-1-0.dll

RegDeleteKeyW (Address: 0x1800720f0)
RegOpenKeyW (Address: 0x1800720e8)

api-ms-win-core-shlwapi-legacy-l1-1-0.dll

PathFileExistsW (Address: 0x180072100)
PathUnExpandEnvStringsW (Address: 0x180072108)

api-ms-win-core-sidebyside-l1-1-0.dll

CreateActCtxW (Address: 0x180072120)
QueryActCtxW (Address: 0x180072128)
ReleaseActCtx (Address: 0x180072118)

api-ms-win-core-string-l1-1-0.dll

GetStringTypeW (Address: 0x180072148)
MultiByteToWideChar (Address: 0x180072140)
WideCharToMultiByte (Address: 0x180072138)

api-ms-win-core-string-l2-1-1.dll

SHLoadIndirectString (Address: 0x180072158)

api-ms-win-core-synch-l1-1-0.dll

AcquireSRWLockExclusive (Address: 0x180072210)
AcquireSRWLockShared (Address: 0x1800721f0)
CreateEventExW (Address: 0x180072180)
CreateEventW (Address: 0x180072190)
CreateMutexExW (Address: 0x180072188)
CreateMutexW (Address: 0x180072178)
CreateSemaphoreExW (Address: 0x180072198)
DeleteCriticalSection (Address: 0x1800721d8)
EnterCriticalSection (Address: 0x1800721a0)
InitializeCriticalSection (Address: 0x1800721c0)
InitializeCriticalSectionEx (Address: 0x1800721b8)
InitializeSRWLock (Address: 0x180072208)
LeaveCriticalSection (Address: 0x1800721b0)
OpenSemaphoreW (Address: 0x180072170)
OpenWaitableTimerW (Address: 0x180072200)
ReleaseMutex (Address: 0x1800721d0)
ReleaseSemaphore (Address: 0x1800721a8)
ReleaseSRWLockExclusive (Address: 0x1800721f8)
ReleaseSRWLockShared (Address: 0x180072168)
SetEvent (Address: 0x180072218)
SetWaitableTimer (Address: 0x1800721e8)
WaitForSingleObject (Address: 0x1800721c8)
WaitForSingleObjectEx (Address: 0x1800721e0)

api-ms-win-core-synch-l1-2-0.dll

InitOnceBeginInitialize (Address: 0x180072240)
InitOnceComplete (Address: 0x180072250)
InitOnceExecuteOnce (Address: 0x180072238)
Sleep (Address: 0x180072248)
SleepConditionVariableSRW (Address: 0x180072228)
WakeAllConditionVariable (Address: 0x180072230)

api-ms-win-core-synch-l1-2-1.dll

CreateSemaphoreW (Address: 0x180072270)
CreateWaitableTimerW (Address: 0x180072268)
WaitForMultipleObjects (Address: 0x180072260)

api-ms-win-core-sysinfo-l1-1-0.dll

GetSystemDirectoryA (Address: 0x1800722a8)
GetSystemDirectoryW (Address: 0x180072288)
GetSystemInfo (Address: 0x1800722b0)
GetSystemTimeAsFileTime (Address: 0x180072298)
GetSystemWindowsDirectoryW (Address: 0x180072280)
GetTickCount (Address: 0x1800722a0)
GetTickCount64 (Address: 0x180072290)

api-ms-win-core-sysinfo-l1-2-0.dll

GetSystemFirmwareTable (Address: 0x1800722c0)

api-ms-win-core-threadpool-l1-2-0.dll

CallbackMayRunLong (Address: 0x1800722d8)
CloseThreadpoolTimer (Address: 0x1800722d0)
CreateThreadpoolTimer (Address: 0x1800722f8)
FreeLibraryWhenCallbackReturns (Address: 0x180072300)
SetThreadpoolTimer (Address: 0x1800722e0)
TrySubmitThreadpoolCallback (Address: 0x1800722f0)
WaitForThreadpoolTimerCallbacks (Address: 0x1800722e8)

api-ms-win-core-timezone-l1-1-0.dll

FileTimeToSystemTime (Address: 0x180072310)

api-ms-win-core-util-l1-1-0.dll

DecodePointer (Address: 0x180072320)
EncodePointer (Address: 0x180072328)

api-ms-win-core-winrt-error-l1-1-0.dll

GetRestrictedErrorInfo (Address: 0x180072350)
RoOriginateErrorW (Address: 0x180072348)
RoTransformError (Address: 0x180072340)
SetRestrictedErrorInfo (Address: 0x180072338)

api-ms-win-core-winrt-error-l1-1-1.dll

IsErrorPropagationEnabled (Address: 0x180072368)
RoGetMatchingRestrictedErrorInfo (Address: 0x180072360)
RoReportFailedDelegate (Address: 0x180072370)

api-ms-win-core-winrt-l1-1-0.dll

RoActivateInstance (Address: 0x180072398)
RoGetActivationFactory (Address: 0x180072390)
RoInitialize (Address: 0x180072380)
RoUninitialize (Address: 0x180072388)

api-ms-win-core-winrt-string-l1-1-0.dll

WindowsCreateString (Address: 0x1800723c0)
WindowsCreateStringReference (Address: 0x1800723a8)
WindowsDeleteString (Address: 0x1800723c8)
WindowsDuplicateString (Address: 0x1800723d8)
WindowsGetStringRawBuffer (Address: 0x1800723b8)
WindowsIsStringEmpty (Address: 0x1800723d0)
WindowsStringHasEmbeddedNull (Address: 0x1800723b0)

api-ms-win-eventing-classicprovider-l1-1-0.dll

TraceEvent (Address: 0x1800723e8)

api-ms-win-eventing-provider-l1-1-0.dll

EventRegister (Address: 0x180072400)
EventSetInformation (Address: 0x180072408)
EventUnregister (Address: 0x180072410)
EventWriteTransfer (Address: 0x1800723f8)

api-ms-win-security-base-l1-1-0.dll

DuplicateTokenEx (Address: 0x180072438)
GetTokenInformation (Address: 0x180072428)
InitializeSecurityDescriptor (Address: 0x180072430)
SetSecurityDescriptorDacl (Address: 0x180072440)
SetSecurityDescriptorOwner (Address: 0x180072420)

api-ms-win-security-capability-l1-1-0.dll

CapabilityCheck (Address: 0x180072450)

api-ms-win-security-cryptoapi-l1-1-0.dll

CryptAcquireContextW (Address: 0x180072460)
CryptCreateHash (Address: 0x180072468)
CryptDestroyHash (Address: 0x180072480)
CryptGetHashParam (Address: 0x180072488)
CryptHashData (Address: 0x180072478)
CryptReleaseContext (Address: 0x180072470)

api-ms-win-security-provider-l1-1-0.dll

SetEntriesInAclW (Address: 0x180072498)

api-ms-win-security-sddl-l1-1-0.dll

ConvertSidToStringSidW (Address: 0x1800724a8)

api-ms-win-shcore-obsolete-l1-1-0.dll

CommandLineToArgvW (Address: 0x1800724b8)

api-ms-win-shcore-path-l1-1-0.dll

(Address: 0x1800724c8)

api-ms-win-shcore-thread-l1-1-0.dll

GetProcessReference (Address: 0x1800724e8)
SetProcessReference (Address: 0x1800724e0)
SHGetThreadRef (Address: 0x1800724d8)
SHSetThreadRef (Address: 0x1800724f0)

bcrypt.dll

BCryptCloseAlgorithmProvider (Address: 0x180072500)
BCryptCreateHash (Address: 0x180072508)
BCryptDestroyHash (Address: 0x180072530)
BCryptFinishHash (Address: 0x180072528)
BCryptGetProperty (Address: 0x180072518)
BCryptHashData (Address: 0x180072510)
BCryptOpenAlgorithmProvider (Address: 0x180072520)

msvcrt.dll

___lc_codepage_func (Address: 0x180072630)
___lc_collate_cp_func (Address: 0x180072658)
___lc_handle_func (Address: 0x180072628)
___mb_cur_max_func (Address: 0x180072620)
__C_specific_handler (Address: 0x1800726d8)
__crtCompareStringW (Address: 0x180072660)
__crtLCMapStringW (Address: 0x180072650)
__CxxFrameHandler3 (Address: 0x180072678)
__dllonexit (Address: 0x180072698)
__pctype_func (Address: 0x180072638)
_amsg_exit (Address: 0x1800726c0)
_CxxThrowException (Address: 0x1800726d0)
_errno (Address: 0x180072708)
_initterm (Address: 0x1800726b8)
_lock (Address: 0x1800726a8)
_onexit (Address: 0x180072690)
_purecall (Address: 0x180072790)
_set_errno (Address: 0x1800726f0)
_strnicmp (Address: 0x180072758)
_unlock (Address: 0x1800726a0)
_vscwprintf (Address: 0x1800725a8)
_vsnprintf (Address: 0x180072738)
_vsnprintf_s (Address: 0x180072770)
_vsnwprintf (Address: 0x1800727a0)
_vsnwprintf_s (Address: 0x1800726e0)
_wcsicmp (Address: 0x180072750)
_wcslwr (Address: 0x180072560)
_wcsnicmp (Address: 0x180072640)
_wsplitpath_s (Address: 0x1800725e0)
_wtoi (Address: 0x180072570)
_wtoi64 (Address: 0x180072578)
_XcptFilter (Address: 0x1800726c8)
??0bad_cast@@QEAA@AEBV0@@Z (Address: 0x1800725b0)
??0bad_cast@@QEAA@PEBD@Z (Address: 0x1800725c0)
??0exception@@QEAA@AEBQEBD@Z (Address: 0x180072740)
??0exception@@QEAA@AEBQEBDH@Z (Address: 0x180072608)
??0exception@@QEAA@AEBV0@@Z (Address: 0x180072778)
??0exception@@QEAA@XZ (Address: 0x180072780)
??1bad_cast@@UEAA@XZ (Address: 0x1800725b8)
??1exception@@UEAA@XZ (Address: 0x180072788)
??1type_info@@UEAA@XZ (Address: 0x180072688)
?terminate@@YAXXZ (Address: 0x1800726b0)
?what@exception@@UEBAPEBDXZ (Address: 0x180072748)
abort (Address: 0x180072670)
calloc (Address: 0x180072648)
free (Address: 0x180072728)
iscntrl (Address: 0x180072598)
isspace (Address: 0x180072590)
iswcntrl (Address: 0x180072588)
iswspace (Address: 0x180072580)
malloc (Address: 0x180072730)
memcmp (Address: 0x180072668)
memcpy (Address: 0x1800725f8)
memcpy_s (Address: 0x180072798)
memmove (Address: 0x180072618)
memmove_s (Address: 0x180072768)
memset (Address: 0x180072680)
realloc (Address: 0x180072720)
setlocale (Address: 0x1800726f8)
sprintf_s (Address: 0x180072718)
strchr (Address: 0x1800726e8)
strcpy_s (Address: 0x1800725f0)
strerror (Address: 0x180072610)
strncmp (Address: 0x180072558)
strncpy_s (Address: 0x180072710)
strnlen (Address: 0x1800725d0)
strrchr (Address: 0x180072760)
strtol (Address: 0x180072700)
tolower (Address: 0x1800725a0)
towlower (Address: 0x180072568)
wcscat_s (Address: 0x180072540)
wcschr (Address: 0x180072600)
wcscmp (Address: 0x1800727a8)
wcscpy_s (Address: 0x180072548)
wcsrchr (Address: 0x1800725e8)
wcsstr (Address: 0x180072550)
wcstombs (Address: 0x1800725c8)
wcstoul (Address: 0x1800725d8)

ntdll.dll

EtwEventRegister (Address: 0x180072868)
EtwEventUnregister (Address: 0x180072878)
EtwEventWrite (Address: 0x180072870)
EtwTraceMessage (Address: 0x180072978)
LdrResSearchResource (Address: 0x180072818)
NtLoadKeyEx (Address: 0x1800727c0)
NtQueryKey (Address: 0x1800727e0)
NtQueryLicenseValue (Address: 0x180072888)
RtlAdjustPrivilege (Address: 0x180072800)
RtlAllocateAndInitializeSid (Address: 0x1800727f0)
RtlAllocateHeap (Address: 0x180072958)
RtlAnsiStringToUnicodeString (Address: 0x180072850)
RtlAppendUnicodeStringToString (Address: 0x1800728e0)
RtlAppendUnicodeToString (Address: 0x1800728d8)
RtlCaptureContext (Address: 0x180072940)
RtlDeleteCriticalSection (Address: 0x1800728b0)
RtlDosPathNameToNtPathName_U_WithStatus (Address: 0x180072918)
RtlDosPathNameToRelativeNtPathName_U (Address: 0x1800727c8)
RtlEnterCriticalSection (Address: 0x1800728a0)
RtlEqualString (Address: 0x1800728a8)
RtlFreeHeap (Address: 0x180072948)
RtlFreeSid (Address: 0x1800727e8)
RtlFreeUnicodeString (Address: 0x180072908)
RtlGetNativeSystemInformation (Address: 0x180072840)
RtlGetVersion (Address: 0x180072970)
RtlImageDirectoryEntryToData (Address: 0x180072808)
RtlInitAnsiString (Address: 0x180072898)
RtlInitializeCriticalSection (Address: 0x180072928)
RtlInitString (Address: 0x180072860)
RtlInitUnicodeString (Address: 0x180072910)
RtlInitUnicodeStringEx (Address: 0x1800728f0)
RtlLeaveCriticalSection (Address: 0x180072880)
RtlLookupFunctionEntry (Address: 0x180072938)
RtlMultiByteToUnicodeN (Address: 0x180072890)
RtlNtStatusToDosError (Address: 0x1800727f8)
RtlRandomEx (Address: 0x1800727d8)
RtlReAllocateHeap (Address: 0x180072950)
RtlReleaseRelativeName (Address: 0x1800727b8)
RtlSecondsSince1970ToTime (Address: 0x1800728b8)
RtlStringFromGUID (Address: 0x1800727d0)
RtlTimeToTimeFields (Address: 0x180072820)
RtlUpcaseUnicodeChar (Address: 0x180072848)
RtlVerifyVersionInfo (Address: 0x180072810)
RtlVirtualUnwind (Address: 0x180072930)
RtlxAnsiStringToUnicodeSize (Address: 0x180072858)
VerSetConditionMask (Address: 0x180072968)
WinSqmIsOptedInEx (Address: 0x180072960)
ZwClose (Address: 0x180072920)
ZwCreateFile (Address: 0x1800728d0)
ZwCreateSection (Address: 0x1800728c0)
ZwEnumerateKey (Address: 0x1800728f8)
ZwMapViewOfSection (Address: 0x180072828)
ZwOpenKey (Address: 0x180072900)
ZwQueryInformationFile (Address: 0x1800728c8)
ZwQuerySystemInformation (Address: 0x180072838)
ZwQueryValueKey (Address: 0x1800728e8)
ZwUnmapViewOfSection (Address: 0x180072830)

OLEAUT32.dll

SysAllocString (Address: 0x180071c88)
SysFreeString (Address: 0x180071c70)
VariantChangeType (Address: 0x180071c78)
VariantClear (Address: 0x180071c80)
VariantCopy (Address: 0x180071c60)
VariantInit (Address: 0x180071c68)

RPCRT4.dll

UuidCreate (Address: 0x180071c98)