Tag Archives: API Hash

API Hash List 5

ModuleName= C:\Windows\SysWOW64\ntdll.dll    Export: A_SHAFinal(0xE1261181)    Export: A_SHAInit(0xCF622A55)    Export: A_SHAUpdate(0x9EAB5138)    Export: AlpcAdjustCompletionListConcurrencyCount(0x9A553B02)    Export: AlpcFreeCompletionListMessage(0x4028B60C)    Export: AlpcGetCompletionListLastMessageInformation(0x89E569D6)    Export: AlpcGetCompletionListMessageAttributes(0x1768AE13)    Export: AlpcGetHeaderSize(0xA4114689)    Export: AlpcGetMessageAttribute(0x385ED4DA)    Export: AlpcGetMessageFromCompletionList(0xAB7482D4)    Export: AlpcGetOutstandingCompletionListMessageCount(0x2AFE3F4F)    Export: AlpcInitializeMessageAttribute(0xC473965E)    Export: AlpcMaxAllowedMessageLength(0x068D26E2)    Export: AlpcRegisterCompletionList(0xC94E5B22)    Export: AlpcRegisterCompletionListWorkerThread(0xAAD67568)    Export: AlpcRundownCompletionList(0x6B6BEDAC)    Export: AlpcUnregisterCompletionList(0x9B15568F)    Export: AlpcUnregisterCompletionListWorkerThread(0x35F00885)    Export: CsrAllocateCaptureBuffer(0x9DFC17EC)    … Continue reading

Posted in Malware, Windows | Tagged , , | Leave a comment

API Hash List 4

ModuleName= C:\Windows\SysWOW64\ntdll.dll (0x3E9A174F)    Export: A_SHAFinal(0xB207C0C3)    Export: A_SHAInit(0xFE60D410)    Export: A_SHAUpdate(0x0DA114BF)    Export: AlpcAdjustCompletionListConcurrencyCount(0x624F5337)    Export: AlpcFreeCompletionListMessage(0x417B6050)    Export: AlpcGetCompletionListLastMessageInformation(0xD0EEC59D)    Export: AlpcGetCompletionListMessageAttributes(0x59EE3E7F)    Export: AlpcGetHeaderSize(0x9B342F01)    Export: AlpcGetMessageAttribute(0x8DC7D091)    Export: AlpcGetMessageFromCompletionList(0x1F7AA351)    Export: AlpcGetOutstandingCompletionListMessageCount(0x5835A85C)    Export: AlpcInitializeMessageAttribute(0xA47373D8)    Export: AlpcMaxAllowedMessageLength(0x34EB0021)    Export: AlpcRegisterCompletionList(0xFC284352)    Export: AlpcRegisterCompletionListWorkerThread(0xCBD57BCC)    Export: AlpcRundownCompletionList(0x0200896D)    Export: AlpcUnregisterCompletionList(0xB9A3E9AA)    Export: AlpcUnregisterCompletionListWorkerThread(0xA38FE148)    Export: … Continue reading

Posted in Windows | Tagged , | Leave a comment