??4_Init_locks@std@@QAEAAV01@ABV01@@Z
Static task
static1
Behavioral task
behavioral1
Sample
c26b8bbe92d039a66663983b2a52d4659d686d8c3f975f92602b90070941faff.exe
Resource
win7-20221111-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
c26b8bbe92d039a66663983b2a52d4659d686d8c3f975f92602b90070941faff.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
c26b8bbe92d039a66663983b2a52d4659d686d8c3f975f92602b90070941faff
-
Size
870KB
-
MD5
0a229cca88cbdd76a185f97f1fe45010
-
SHA1
7ccfa7e946b757ba72f1a4b9c0a865cc07c42300
-
SHA256
c26b8bbe92d039a66663983b2a52d4659d686d8c3f975f92602b90070941faff
-
SHA512
0d68b6ae0524d34e9490c7e9e37e3f02591ed0dfdf478e01e2fe4b5a81a5e1dc129dc7619651f56b624bc38c96b062d9040bcf68a6ec37bf879e7ed8a887197a
-
SSDEEP
12288:2CuWr+XnQ4MF7llXCGTO3LZB5NWJYY9PLXsS:20j5TO7ZB5NWJYY9rL
Score
N/A
Malware Config
Signatures
Files
-
c26b8bbe92d039a66663983b2a52d4659d686d8c3f975f92602b90070941faff.exe windows x86
86c44377c69e2cc47fd9c425cfa7c520
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
imm32
ImmDisableIME
bdmskin
?IsMouseEnabled@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetBkColor2@CBDMControlUI@BDMSkin@@UBEKXZ
?SetMinWidth@CBDMControlUI@BDMSkin@@UAEXH@Z
?GetSuperClassName@CBDMBaseWnd@BDMSkin@@MBEPB_WXZ
?SetDragData@CBDMControlUI@BDMSkin@@UAEXW4BDM_CLIPFORMAT@@PB_W@Z
?SubAnimationIndex@CBDMControlUI@BDMSkin@@UAEXXZ
?SetBorderColor@CBDMControlUI@BDMSkin@@UAEXK@Z
?GetRelativePos@CBDMControlUI@BDMSkin@@UBE?AUtagTRelativePosUI@@XZ
?SetMouseEnabled@CBDMControlUI@BDMSkin@@UAEX_N@Z
?ShowModal@CBDMBaseWnd@BDMSkin@@QAE_NPAUtagRECT@@H@Z
?GetDropFile@CBDMControlUI@BDMSkin@@UAEXAAVCStdPtrArray@Utils@2@@Z
?AddAnimationIndex@CBDMControlUI@BDMSkin@@UAEXXZ
?GetName@CBDMControlUI@BDMSkin@@UBE?AVCStdString@Utils@2@XZ
?SetBkColor@CBDMControlUI@BDMSkin@@UAEXK@Z
?IsVisible@CBDMControlUI@BDMSkin@@UBE_NXZ
?SetDropFile@CBDMControlUI@BDMSkin@@UAEXVCStdPtrArray@Utils@2@@Z
?StopAnimation@CBDMControlUI@BDMSkin@@UAEXXZ
?SetName@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?Invalidate@CBDMControlUI@BDMSkin@@UAEXXZ
?GetMaxWidth@CBDMControlUI@BDMSkin@@UBEHXZ
?GetHWND@CBDMBaseWnd@BDMSkin@@QBEPAUHWND__@@XZ
?SetDragImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?StartAnimationLeave@CBDMControlUI@BDMSkin@@UAEXXZ
?SetMaxHeight@CBDMControlUI@BDMSkin@@UAEXH@Z
?SetMinHeight@CBDMControlUI@BDMSkin@@UAEXH@Z
??_DCBDMLabelUI@BDMSkin@@QAEXXZ
?SetAlpha@CBDMLabelUI@BDMSkin@@UAEXE@Z
?GetDragImage@CBDMControlUI@BDMSkin@@UAEPB_WXZ
?StartRoundPlay@CBDMControlUI@BDMSkin@@UAEX_N0EEKK@Z
?GetY@CBDMControlUI@BDMSkin@@UBEHXZ
?DoPaint@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?PaintText@CBDMLabelUI@BDMSkin@@UAEXPAUHDC__@@@Z
?GetEnableBeDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?StartAnimationEnter@CBDMControlUI@BDMSkin@@UAEXXZ
?GetX@CBDMControlUI@BDMSkin@@UBEHXZ
?GetParent@CBDMControlUI@BDMSkin@@UBEPAVIControlUI@ExpandInterface@2@XZ
?GetAttribute@CBDMLabelUI@BDMSkin@@UAE?AVCStdString@Utils@2@PB_W@Z
?SetEnableBeDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?SetChangeAngleImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?SetInternVisible@CBDMControlUI@BDMSkin@@UAEX_N@Z
?SetFixedXY@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@@Z
?GetObjectW@CBDMDelegateBase@ExpandInterface@BDMSkin@@IAEPAXXZ
?GetReDeleteCtrl@CBDMControlUI@BDMSkin@@UAEPAVIControlUI@ExpandInterface@2@XZ
?SetAttribute@CBDMLabelUI@BDMSkin@@UAEXPB_W0@Z
?GetEnableDrop@CBDMControlUI@BDMSkin@@UAE_NXZ
?SetChangeAngle@CBDMControlUI@BDMSkin@@UAEXM@Z
?FindControl@CBDMControlUI@BDMSkin@@UAEPAVIControlUI@ExpandInterface@2@P6GPAV342@PAV342@PAX@Z1I@Z
?SetFixedHeight@CBDMControlUI@BDMSkin@@UAEXH@Z
?IsNeedReDelete@CBDMControlUI@BDMSkin@@UAE_NXZ
?DoEvent@CBDMLabelUI@BDMSkin@@UAEXAAUtagTEventUI@@_N@Z
?GetEnableDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?SetAngle@CBDMControlUI@BDMSkin@@UAEXM@Z
?Event@CBDMControlUI@BDMSkin@@UAEXAAUtagTEventUI@@@Z
?SetPos@CBDMControlUI@BDMSkin@@UAEXUtagRECT@@@Z
?Equals@CBDMDelegateBase@ExpandInterface@BDMSkin@@UBE_NABV123@@Z
?SetNeedReDelete@CBDMControlUI@BDMSkin@@UAEX_N@Z
?ReverseFind@CStdString@Utils@BDMSkin@@QBEH_W@Z
?EstimateSize@CBDMLabelUI@BDMSkin@@UAE?AUtagSIZE@@U3@@Z
?SetEnableDrop@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetAlpha@CBDMControlUI@BDMSkin@@UAEEXZ
?SetRelativePos@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@0@Z
?SetFixedWidth@CBDMControlUI@BDMSkin@@UAEXH@Z
??1CBDMDelegateBase@ExpandInterface@BDMSkin@@UAE@XZ
?IsReadyDelete@CBDMControlUI@BDMSkin@@UAE_NXZ
?Left@CStdString@Utils@BDMSkin@@QBE?AV123@H@Z
?SetFont@CBDMLabelUI@BDMSkin@@QAEXH@Z
?SetEnableDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?PaintFirstBkImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?GetFixedXY@CBDMControlUI@BDMSkin@@UBE?AUtagSIZE@@XZ
?GetShortcut@CBDMControlUI@BDMSkin@@UBE_WXZ
??0CBDMDelegateBase@ExpandInterface@BDMSkin@@QAE@PAX0@Z
?SetReadyDelete@CBDMControlUI@BDMSkin@@UAEX_N@Z
??8CStdString@Utils@BDMSkin@@QBE_NPB_W@Z
?SetTextColor@CBDMLabelUI@BDMSkin@@QAEXK@Z
?SendLeaveDragNotify@CBDMControlUI@BDMSkin@@UAEXXZ
?PaintDragImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?SetEnabled@CBDMControlUI@BDMSkin@@UAEX_N@Z
?SetUserData@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
??0CBDMDelegateBase@ExpandInterface@BDMSkin@@QAE@ABV012@@Z
?GetControlFlags@CBDMLabelUI@BDMSkin@@UBEIXZ
?SendEnterDragNotify@CBDMControlUI@BDMSkin@@UAEXXZ
?DoInit@CBDMControlUI@BDMSkin@@UAEXXZ
?SetFocus@CBDMControlUI@BDMSkin@@UAEXXZ
?SetBkColor3@CBDMControlUI@BDMSkin@@UAEXK@Z
?GetContainer@CBDMLabelUI@BDMSkin@@UAEPAVIContainerUI@ExpandInterface@2@XZ
?GetLeaveDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?SetAnimationIndex@CBDMControlUI@BDMSkin@@UAEXH@Z
?NeedUpdate@CBDMControlUI@BDMSkin@@UAEXXZ
?SetBkColor2@CBDMControlUI@BDMSkin@@UAEXK@Z
??YCBDMEventSource@ExpandInterface@BDMSkin@@QAEXAAVCBDMDelegateBase@12@@Z
??1CBDMBaseWnd@BDMSkin@@UAE@XZ
?GetInterface@CBDMLabelUI@BDMSkin@@UAEPAXPB_W@Z
?GetEnterDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?PaintBkImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?GetPos@CBDMControlUI@BDMSkin@@UBEABUtagRECT@@XZ
?GetBkImage@CBDMControlUI@BDMSkin@@UAEPB_WXZ
??4CStdString@Utils@BDMSkin@@QAEABV012@ABV012@@Z
?SetValue@CBDMProgressUI@BDMSkin@@QAEXH_N@Z
?GetClass@CBDMLabelUI@BDMSkin@@UBEPB_WXZ
?SetLeaveDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?PaintBorder@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?SetRelativeParentSize@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@@Z
?GetMinWidth@CBDMControlUI@BDMSkin@@UBEHXZ
??4CStdString@Utils@BDMSkin@@QAEABV012@PB_W@Z
?GetValue@CBDMProgressUI@BDMSkin@@QBEHXZ
??0CBDMLabelUI@BDMSkin@@QAE@XZ
?SetEnterDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?PaintStatusImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?GetText@CBDMControlUI@BDMSkin@@UBE?AVCStdString@Utils@2@XZ
?SetManager@CBDMControlUI@BDMSkin@@UAEXPAVIControlManger@ExpandInterface@2@PAVIControlUI@42@_N@Z
??BCStdString@Utils@BDMSkin@@QBEPB_WXZ
??1CBDMControlManger@BDMSkin@@QAE@XZ
?SetDrawIcon@CBDMControlUI@BDMSkin@@UAEX_NPAUHICON__@@UtagRECT@@@Z
?SetBeDragDropOver@CBDMControlUI@BDMSkin@@UAEX_NPAUIDataObject@@@Z
?Activate@CBDMControlUI@BDMSkin@@UAE_N_N@Z
?SetFloat@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetMaxHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?GetTipInitTimer@CBDMControlUI@BDMSkin@@UAEHXZ
?SetDragDrop@CBDMControlUI@BDMSkin@@UAEX_N@Z
?NeedParentUpdate@CBDMControlUI@BDMSkin@@UAEXXZ
?GetFixedWidth@CBDMControlUI@BDMSkin@@UBEHXZ
?DoPostPaint@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?SetTipInitTimer@CBDMControlUI@BDMSkin@@UAEXH@Z
?GetGrayImage@CBDMControlUI@BDMSkin@@UAE_NXZ
?ApplyAttributeList@CBDMControlUI@BDMSkin@@UAEPAVIControlUI@ExpandInterface@2@PB_W@Z
?GetManager@CBDMControlUI@BDMSkin@@UAEPAVIControlManger@ExpandInterface@2@XZ
?SetPadding@CBDMControlUI@BDMSkin@@UAEXUtagRECT@@@Z
?GetScrollWheelSize@CBDMControlUI@BDMSkin@@UAEKXZ
?SetGrayImage@CBDMControlUI@BDMSkin@@UAEX_N@Z
?IsFocused@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetBorderColor@CBDMControlUI@BDMSkin@@UBEKXZ
?GetFocusBorderColor@CBDMControlUI@BDMSkin@@UBEKXZ
?SetScrollWheelSize@CBDMControlUI@BDMSkin@@UAEXK@Z
?ClearMenu@CBDMControlUI@BDMSkin@@UAEXXZ
?SetContextMenuUsed@CBDMControlUI@BDMSkin@@UAEX_N@Z
?IsContextMenuUsed@CBDMControlUI@BDMSkin@@UBE_NXZ
?SetTag@CBDMControlUI@BDMSkin@@UAEXI@Z
?SetHoverPlay@CBDMControlUI@BDMSkin@@UAEX_N@Z
?HideMenu@CBDMControlUI@BDMSkin@@UAEHXZ
?IsUpdateNeeded@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetPadding@CBDMControlUI@BDMSkin@@UBE?AUtagRECT@@XZ
?GetBorderSize@CBDMControlUI@BDMSkin@@UBEHXZ
?SetLeavePlay@CBDMControlUI@BDMSkin@@UAEX_N@Z
?ShowMenu@CBDMControlUI@BDMSkin@@UAEHPAUtagPOINT@@H@Z
?IsEnabled@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?SetToolTipMaxWidth@CBDMControlUI@BDMSkin@@UAEXK@Z
??0CStdString@Utils@BDMSkin@@QAE@ABV012@@Z
?SetPlayTimeSpace@CBDMControlUI@BDMSkin@@UAEXK@Z
?ResetMenuItem@CBDMControlUI@BDMSkin@@UAEHPAPAPA_WH@Z
?SetText@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?IsFloat@CBDMControlUI@BDMSkin@@UBE_NXZ
?SetToolTip@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?Close@CBDMBaseWnd@BDMSkin@@QAEXXZ
?PlayAnimationSToE@CBDMControlUI@BDMSkin@@UAEXHH@Z
?SetDragFilePath@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?OnFinalMessage@CBDMBaseWnd@BDMSkin@@MAEXPAUHWND__@@@Z
?SetBorderRound@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@@Z
?GetTag@CBDMControlUI@BDMSkin@@UBEIXZ
?GetBorderRound@CBDMControlUI@BDMSkin@@UBE?AUtagSIZE@@XZ
?StartFadeInFadeOut@CBDMControlUI@BDMSkin@@UAEXEEKK_N0@Z
?GetDragFilePath@CBDMControlUI@BDMSkin@@UAEPB_WXZ
?PostMessageW@CBDMBaseWnd@BDMSkin@@IAEJIIJ@Z
?SetMaxWidth@CBDMControlUI@BDMSkin@@UAEXH@Z
?BDMSkinCheckHasFile@BDMSkin@@YA_NPAVIResourceManager@ExpandInterface@1@PB_W@Z
??YCStdString@Utils@BDMSkin@@QAEABV012@PB_W@Z
?GetData@CStdString@Utils@BDMSkin@@QBEPB_WXZ
??1CStdString@Utils@BDMSkin@@QAE@XZ
??0CStdString@Utils@BDMSkin@@QAE@XZ
?Format@CStdString@Utils@BDMSkin@@QAAHPB_WZZ
?MessageLoop@IControlManger@ExpandInterface@BDMSkin@@SAXXZ
?CenterWindow@CBDMBaseWnd@BDMSkin@@QAEXPAUHWND__@@@Z
?ShowWindow@CBDMBaseWnd@BDMSkin@@QAEX_N0@Z
?GetDragData@CBDMControlUI@BDMSkin@@UAEXAAW4BDM_CLIPFORMAT@@AAPB_W@Z
?GetClassStyle@CBDMBaseWnd@BDMSkin@@MBEIXZ
?IsRelativePos@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetBkColor3@CBDMControlUI@BDMSkin@@UBEKXZ
?PaintBkColor@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?GetBkColor@CBDMControlUI@BDMSkin@@UBEKXZ
??0CBDMBaseWnd@BDMSkin@@QAE@XZ
??0CStdString@Utils@BDMSkin@@QAE@PB_W@Z
?GetPlayTimeSpace@CBDMControlUI@BDMSkin@@UAEKXZ
?ResetMenuItem@CBDMControlUI@BDMSkin@@UAEHVCStdPtrArray@Utils@2@0H@Z
?GetMinHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?SetVisible@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetFixedHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?SetPlayFileLen@CBDMControlUI@BDMSkin@@UAEXK@Z
?CreateMenuWnd@CBDMControlUI@BDMSkin@@UAEHPB_W0@Z
?SetBkImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?GetUserData@CBDMControlUI@BDMSkin@@UAEABVCStdString@Utils@2@XZ
?SetFocusBorderColor@CBDMControlUI@BDMSkin@@UAEXK@Z
?GetPlayFileLen@CBDMControlUI@BDMSkin@@UAEKXZ
?SetAngleRes@CBDMControlUI@BDMSkin@@UAEX_NMPB_W@Z
?Offset@CRect@Utils@BDMSkin@@QAEXHH@Z
??0CRect@Utils@BDMSkin@@QAE@XZ
??1CBDMDialogBuilder@BDMSkin@@QAE@XZ
?AddNotifier@CBDMControlManger@BDMSkin@@QAE_NPAVINotifyUI@ExpandInterface@2@@Z
?AttachDialog@CBDMControlManger@BDMSkin@@QAE_NPAVIControlUI@ExpandInterface@2@@Z
?SetBorderSize@CBDMControlUI@BDMSkin@@UAEXH@Z
?GetToolTipMaxWidth@CBDMControlUI@BDMSkin@@UBEKXZ
?SetShortcut@CBDMControlUI@BDMSkin@@UAEX_W@Z
?SetPlayImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?StartAngleChange@CBDMControlUI@BDMSkin@@UAEXMMKKHVCStdString@Utils@2@@Z
?GetWidth@CBDMControlUI@BDMSkin@@UBEHXZ
?GetToolTip@CBDMControlUI@BDMSkin@@UBE?AVCStdString@Utils@2@XZ
?SetResourceZip@IResourceManager@ExpandInterface@BDMSkin@@SAXPB_W@Z
?BDMLangGetLangMgr@BDMSkin@@YAPAVIBDMLangMgr@1@XZ
?BDMSkinLibInit@BDMSkin@@YAHPB_W00@Z
?BDMSkinLibSetPrivateResDir@BDMSkin@@YAXPAVIResourceManager@ExpandInterface@1@PB_W1@Z
?SendMessageW@CBDMBaseWnd@BDMSkin@@IAEJIIJ@Z
??0CBDMControlManger@BDMSkin@@QAE@XZ
??_7INotifyUI@ExpandInterface@BDMSkin@@6B@
?Create@CBDMBaseWnd@BDMSkin@@QAEPAUHWND__@@PAU3@PB_WKKHHHHPAUHMENU__@@@Z
?HandleMessage@CBDMBaseWnd@BDMSkin@@MAEJIIJ@Z
??BCBDMBaseWnd@BDMSkin@@QBEPAUHWND__@@XZ
?IsEmpty@CStdString@Utils@BDMSkin@@QBE_NXZ
??0CBDMDialogBuilder@BDMSkin@@QAE@XZ
?Create@CBDMDialogBuilder@BDMSkin@@QAEPAVIControlUI@ExpandInterface@2@VSTRINGorID@Utils@2@PB_WPAVIDialogBuilderCallback@2@PAVIControlManger@42@PAV342@@Z
?BDMSkinInsertFileToRes@BDMSkin@@YA_NPB_W0_N@Z
shlwapi
StrFormatKBSizeW
wnsprintfW
StrChrW
StrRChrW
PathIsDirectoryW
StrFromTimeIntervalW
PathAppendW
StrFormatByteSizeW
SHDeleteKeyW
StrRStrIW
PathAddBackslashW
PathRemoveFileSpecW
PathFileExistsW
bdlogicutils
?GetBDCrashCatcher@BDLogicUtils@@YAPAVIBDCrashCatcher@1@XZ
?BDLogicUtilsLibrary_Init@BDLogicUtils@@YAHXZ
?GetBDMReportMgr@BDLogicUtils@@YAPAVIBDMReportMgr@1@XZ
?GetBDLogicTaskMgr@BDLogicUtils@@YAPAVIBDLogicTaskMgr@1@XZ
?BDLogicUtilsLibrary_Unit@BDLogicUtils@@YAHXZ
kernel32
FindFirstFileW
FindClose
GetFileSize
ReadFile
FreeLibrary
GetSystemDirectoryW
DeviceIoControl
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetProcessHeap
HeapFree
WaitNamedPipeW
GetCurrentThreadId
HeapAlloc
GetWindowsDirectoryW
GetSystemDefaultLangID
GetSystemInfo
RemoveDirectoryW
FindNextFileW
GetBinaryTypeW
DebugBreak
IsBadReadPtr
GetSystemWow64DirectoryW
GetSystemWindowsDirectoryW
GetFileSizeEx
GetNumberFormatW
FileTimeToLocalFileTime
GetLocaleInfoW
FileTimeToSystemTime
GetDateFormatW
GetCurrencyFormatW
SystemTimeToTzSpecificLocalTime
GetTimeFormatW
GetCurrentProcessId
lstrcmpiW
LoadResource
LockResource
SizeofResource
FindResourceW
FindResourceExW
ProcessIdToSessionId
RaiseException
HeapSize
HeapReAlloc
HeapDestroy
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStartupInfoW
InterlockedCompareExchange
InterlockedExchange
GetVersionExW
ReleaseMutex
SystemTimeToFileTime
CopyFileW
MoveFileW
TerminateThread
GetCurrentDirectoryW
OutputDebugStringA
WriteFile
CreateFileW
ExpandEnvironmentStringsW
GetTickCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ResetEvent
LoadLibraryW
CreateEventA
ExpandEnvironmentStringsA
GetLocalTime
GetFileAttributesW
SetFileAttributesW
OpenMutexW
GetSystemTimeAsFileTime
GetProcessTimes
CreateMutexW
LocalFree
lstrlenA
lstrlenW
lstrcpynW
CreateProcessW
GetLastError
GetModuleHandleW
Process32NextW
CloseHandle
CreateEventW
Process32FirstW
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
GetCurrentProcess
WaitForSingleObject
CreateToolhelp32Snapshot
InterlockedDecrement
GetModuleFileNameW
Sleep
MoveFileExW
OpenProcess
DeleteFileW
TerminateProcess
InterlockedIncrement
GetVersionExA
FormatMessageA
SetErrorMode
LocalAlloc
SetEvent
user32
DestroyIcon
GetWindowLongW
SetWindowLongW
ScreenToClient
SetWindowRgn
DestroyWindow
SetTimer
GetForegroundWindow
KillTimer
wsprintfW
PostMessageW
SendMessageW
PostQuitMessage
IsZoomed
FindWindowW
EnableWindow
ShowWindow
UnregisterClassA
IsWindowVisible
SetForegroundWindow
InvalidateRect
LoadImageW
GetClientRect
SetWindowPos
GetWindowRect
GetSystemMetrics
AttachThreadInput
GetWindowThreadProcessId
SetFocus
BringWindowToTop
GetWindowTextW
IsWindow
GetClassNameW
IsIconic
GetDesktopWindow
gdi32
CreateRoundRectRgn
DeleteObject
advapi32
RegQueryInfoKeyW
RegEnumKeyExW
RegEnumValueW
AllocateAndInitializeSid
InitializeSecurityDescriptor
FreeSid
SetSecurityDescriptorDacl
RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegOpenKeyExW
CreateProcessAsUserW
RegDeleteValueW
LookupPrivilegeValueW
GetTokenInformation
DuplicateTokenEx
RegSetValueExW
RegCloseKey
OpenProcessToken
RegSetKeySecurity
RegDeleteKeyW
RegFlushKey
RegNotifyChangeKeyValue
RegGetKeySecurity
RegCreateKeyExW
CheckTokenMembership
shell32
SHGetSpecialFolderPathW
SHCreateDirectoryExW
CommandLineToArgvW
Shell_NotifyIconW
SHGetFolderPathW
ole32
StgIsStorageFile
CoUninitialize
CoCreateGuid
CoInitialize
StgOpenStorage
StgCreateDocfile
CoCreateInstance
msvcp80
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?resize@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0ABV12@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?deallocate@?$allocator@D@std@@QAEXPADI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
?construct@?$allocator@D@std@@QAEXPADABD@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0@Z
?allocate@?$allocator@D@std@@QAEPADI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
?destroy@?$allocator@D@std@@QAEXPAD@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0PBD1@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@V32@0@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@PBD1@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V32@@Z
msvcr80
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_amsg_exit
__wgetmainargs
_except_handler3
_cexit
_exit
_XcptFilter
exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_snwprintf
strerror
memset
_controlfp_s
_invoke_watson
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__set_app_type
??0exception@std@@QAE@ABQBD@Z
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
wcsrchr
_time64
realloc
malloc
??_V@YAXPAX@Z
free
_purecall
strtoul
?what@exception@std@@UBEPBDXZ
??3@YAXPAX@Z
wcsncpy_s
??1exception@std@@UAE@XZ
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
towlower
memcpy_s
__RTDynamicCast
wcschr
_wcsicmp
wcsstr
tolower
wcscpy_s
_vsnwprintf_s
_difftime64
sprintf
wcstoul
strcpy_s
??0exception@std@@QAE@ABQBDH@Z
wcsncat_s
_beginthreadex
printf
_stricmp
isdigit
_itoa
_i64toa_s
_itoa_s
_atoi64
isupper
isspace
atoi
rand
_snwprintf_s
_snprintf_s
??8type_info@@QBE_NABV0@@Z
isalnum
strchr
ispunct
memmove_s
strcspn
_wstat64
_wsplitpath_s
_wmkdir
strncmp
wcsncat
isprint
ferror
ftell
fopen_s
fputc
fseek
fread
fclose
_vsnprintf_s
fprintf
isalpha
memmove
_wcsnicmp
_strnicmp
_errno
_wtol
putwchar
wcstol
putchar
_vswprintf_c_l
wcscat_s
_snwscanf_s
_wcsupr
vswprintf_s
_vscwprintf
__CxxFrameHandler3
_snprintf
fflush
__iob_func
_CxxThrowException
memcpy
_unlock
__dllonexit
_encode_pointer
wininet
InternetReadFile
InternetCloseHandle
HttpSendRequestW
InternetConnectW
InternetOpenW
InternetCrackUrlW
HttpOpenRequestW
HttpQueryInfoW
netapi32
Netbios
psapi
EnumProcesses
EnumProcessModules
GetModuleFileNameExW
GetProcessImageFileNameW
GetModuleBaseNameW
wtsapi32
WTSQueryUserToken
userenv
CreateEnvironmentBlock
ws2_32
closesocket
WSAGetLastError
select
getsockopt
recv
sendto
__WSAFDIsSet
send
gethostbyname
htons
connect
htonl
ioctlsocket
recvfrom
WSAStartup
ntohl
socket
imagehlp
UnMapAndLoad
MapAndLoad
version
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
Exports
Exports
Sections
.text Size: 308KB - Virtual size: 304KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 128KB - Virtual size: 127KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 12KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 412KB - Virtual size: 412KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE