??4_Init_locks@std@@QAEAAV01@ABV01@@Z
Static task
static1
Behavioral task
behavioral1
Sample
7717e5453650963fa92f54a25cb2a5dfa8fe8c9fcde49dc5c696356de6853569.exe
Resource
win7-20221111-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
7717e5453650963fa92f54a25cb2a5dfa8fe8c9fcde49dc5c696356de6853569.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
7717e5453650963fa92f54a25cb2a5dfa8fe8c9fcde49dc5c696356de6853569
-
Size
878KB
-
MD5
226850d37e35bfca73d7120cd3626620
-
SHA1
c715a728e86b79bf227067d3a30691eb47b00a46
-
SHA256
7717e5453650963fa92f54a25cb2a5dfa8fe8c9fcde49dc5c696356de6853569
-
SHA512
2f814f63d0f2cae90184d3590c3c26300d34ac2a61190c0a2a6c914963de5485d18ee77a6ff648dfc7478de8a8a830ee17e1a3c6695913321c2c083d4b59f626
-
SSDEEP
12288:EFvI1WBn63i49VwVslkrTOPLZHsRWsgCYe1RmfmDju:gQK9VWkrTODZHsosgCYezmf2i
Score
N/A
Malware Config
Signatures
Files
-
7717e5453650963fa92f54a25cb2a5dfa8fe8c9fcde49dc5c696356de6853569.exe windows x86
9ef6ab55e930847e41ea14deb6067e95
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
imm32
ImmDisableIME
bdmskin
?AddAnimationIndex@CBDMControlUI@BDMSkin@@UAEXXZ
?GetName@CBDMControlUI@BDMSkin@@UBE?AVCStdString@Utils@2@XZ
?SetBkColor@CBDMControlUI@BDMSkin@@UAEXK@Z
?IsVisible@CBDMControlUI@BDMSkin@@UBE_NXZ
?SetDropFile@CBDMControlUI@BDMSkin@@UAEXVCStdPtrArray@Utils@2@@Z
?StopAnimation@CBDMControlUI@BDMSkin@@UAEXXZ
?SetName@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?Invalidate@CBDMControlUI@BDMSkin@@UAEXXZ
?GetMaxWidth@CBDMControlUI@BDMSkin@@UBEHXZ
?GetHWND@CBDMBaseWnd@BDMSkin@@QBEPAUHWND__@@XZ
?SetDragImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?StartAnimationLeave@CBDMControlUI@BDMSkin@@UAEXXZ
?SetMaxHeight@CBDMControlUI@BDMSkin@@UAEXH@Z
?SetMinHeight@CBDMControlUI@BDMSkin@@UAEXH@Z
?SetAlpha@CBDMLabelUI@BDMSkin@@UAEXE@Z
?GetDragImage@CBDMControlUI@BDMSkin@@UAEPB_WXZ
?StartRoundPlay@CBDMControlUI@BDMSkin@@UAEX_N0EEKK@Z
?GetY@CBDMControlUI@BDMSkin@@UBEHXZ
?DoPaint@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?PaintText@CBDMLabelUI@BDMSkin@@UAEXPAUHDC__@@@Z
?GetEnableBeDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?StartAnimationEnter@CBDMControlUI@BDMSkin@@UAEXXZ
?GetX@CBDMControlUI@BDMSkin@@UBEHXZ
?GetParent@CBDMControlUI@BDMSkin@@UBEPAVIControlUI@ExpandInterface@2@XZ
??_DCBDMLabelUI@BDMSkin@@QAEXXZ
?GetAttribute@CBDMLabelUI@BDMSkin@@UAE?AVCStdString@Utils@2@PB_W@Z
?SetEnableBeDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?SetChangeAngleImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?SetInternVisible@CBDMControlUI@BDMSkin@@UAEX_N@Z
?SetFixedXY@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@@Z
?GetObjectW@CBDMDelegateBase@ExpandInterface@BDMSkin@@IAEPAXXZ
?SetAttribute@CBDMLabelUI@BDMSkin@@UAEXPB_W0@Z
?GetEnableDrop@CBDMControlUI@BDMSkin@@UAE_NXZ
?SetChangeAngle@CBDMControlUI@BDMSkin@@UAEXM@Z
?FindControl@CBDMControlUI@BDMSkin@@UAEPAVIControlUI@ExpandInterface@2@P6GPAV342@PAV342@PAX@Z1I@Z
?SetFixedHeight@CBDMControlUI@BDMSkin@@UAEXH@Z
?DoEvent@CBDMLabelUI@BDMSkin@@UAEXAAUtagTEventUI@@_N@Z
?GetEnableDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?SetAngle@CBDMControlUI@BDMSkin@@UAEXM@Z
?Event@CBDMControlUI@BDMSkin@@UAEXAAUtagTEventUI@@@Z
?SetPos@CBDMControlUI@BDMSkin@@UAEXUtagRECT@@@Z
?Equals@CBDMDelegateBase@ExpandInterface@BDMSkin@@UBE_NABV123@@Z
?GetReDeleteCtrl@CBDMControlUI@BDMSkin@@UAEPAVIControlUI@ExpandInterface@2@XZ
?ReverseFind@CStdString@Utils@BDMSkin@@QBEH_W@Z
?EstimateSize@CBDMLabelUI@BDMSkin@@UAE?AUtagSIZE@@U3@@Z
?SetEnableDrop@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetAlpha@CBDMControlUI@BDMSkin@@UAEEXZ
?SetRelativePos@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@0@Z
?SetFixedWidth@CBDMControlUI@BDMSkin@@UAEXH@Z
??1CBDMDelegateBase@ExpandInterface@BDMSkin@@UAE@XZ
?IsNeedReDelete@CBDMControlUI@BDMSkin@@UAE_NXZ
?Left@CStdString@Utils@BDMSkin@@QBE?AV123@H@Z
?SetFont@CBDMLabelUI@BDMSkin@@QAEXH@Z
?SetEnableDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?PaintFirstBkImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?GetFixedXY@CBDMControlUI@BDMSkin@@UBE?AUtagSIZE@@XZ
?GetShortcut@CBDMControlUI@BDMSkin@@UBE_WXZ
??0CBDMDelegateBase@ExpandInterface@BDMSkin@@QAE@PAX0@Z
?SetNeedReDelete@CBDMControlUI@BDMSkin@@UAEX_N@Z
??8CStdString@Utils@BDMSkin@@QBE_NPB_W@Z
?SetTextColor@CBDMLabelUI@BDMSkin@@QAEXK@Z
?SendLeaveDragNotify@CBDMControlUI@BDMSkin@@UAEXXZ
?PaintDragImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?SetEnabled@CBDMControlUI@BDMSkin@@UAEX_N@Z
?SetUserData@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
??0CBDMDelegateBase@ExpandInterface@BDMSkin@@QAE@ABV012@@Z
?IsReadyDelete@CBDMControlUI@BDMSkin@@UAE_NXZ
?GetControlFlags@CBDMLabelUI@BDMSkin@@UBEIXZ
?SendEnterDragNotify@CBDMControlUI@BDMSkin@@UAEXXZ
?DoInit@CBDMControlUI@BDMSkin@@UAEXXZ
?SetFocus@CBDMControlUI@BDMSkin@@UAEXXZ
?SetBkColor3@CBDMControlUI@BDMSkin@@UAEXK@Z
?SetReadyDelete@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetContainer@CBDMLabelUI@BDMSkin@@UAEPAVIContainerUI@ExpandInterface@2@XZ
?GetLeaveDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?PaintBkColor@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?NeedUpdate@CBDMControlUI@BDMSkin@@UAEXXZ
?SetBkColor2@CBDMControlUI@BDMSkin@@UAEXK@Z
??YCBDMEventSource@ExpandInterface@BDMSkin@@QAEXAAVCBDMDelegateBase@12@@Z
?GetInterface@CBDMLabelUI@BDMSkin@@UAEPAXPB_W@Z
?GetEnterDrag@CBDMControlUI@BDMSkin@@UAE_NXZ
?PaintBkImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?GetPos@CBDMControlUI@BDMSkin@@UBEABUtagRECT@@XZ
?GetBkImage@CBDMControlUI@BDMSkin@@UAEPB_WXZ
??4CStdString@Utils@BDMSkin@@QAEABV012@ABV012@@Z
?SetValue@CBDMProgressUI@BDMSkin@@QAEXH_N@Z
?GetDropFile@CBDMControlUI@BDMSkin@@UAEXAAVCStdPtrArray@Utils@2@@Z
?SetLeaveDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?PaintBorder@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?SetRelativeParentSize@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@@Z
?GetMinWidth@CBDMControlUI@BDMSkin@@UBEHXZ
??4CStdString@Utils@BDMSkin@@QAEABV012@PB_W@Z
?GetValue@CBDMProgressUI@BDMSkin@@QBEHXZ
??1CBDMBaseWnd@BDMSkin@@UAE@XZ
??0CBDMLabelUI@BDMSkin@@QAE@XZ
?SetEnterDrag@CBDMControlUI@BDMSkin@@UAEX_N@Z
?PaintStatusImage@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@@Z
?GetText@CBDMControlUI@BDMSkin@@UBE?AVCStdString@Utils@2@XZ
?SetManager@CBDMControlUI@BDMSkin@@UAEXPAVIControlManger@ExpandInterface@2@PAVIControlUI@42@_N@Z
??BCStdString@Utils@BDMSkin@@QBEPB_WXZ
??1CBDMControlManger@BDMSkin@@QAE@XZ
?SetDrawIcon@CBDMControlUI@BDMSkin@@UAEX_NPAUHICON__@@UtagRECT@@@Z
?SetBeDragDropOver@CBDMControlUI@BDMSkin@@UAEX_NPAUIDataObject@@@Z
?Activate@CBDMControlUI@BDMSkin@@UAE_N_N@Z
?SetFloat@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetMaxHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?GetTipInitTimer@CBDMControlUI@BDMSkin@@UAEHXZ
?SetDragDrop@CBDMControlUI@BDMSkin@@UAEX_N@Z
?NeedParentUpdate@CBDMControlUI@BDMSkin@@UAEXXZ
?GetFixedWidth@CBDMControlUI@BDMSkin@@UBEHXZ
?DoPostPaint@CBDMControlUI@BDMSkin@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?SetTipInitTimer@CBDMControlUI@BDMSkin@@UAEXH@Z
?GetGrayImage@CBDMControlUI@BDMSkin@@UAE_NXZ
?ApplyAttributeList@CBDMControlUI@BDMSkin@@UAEPAVIControlUI@ExpandInterface@2@PB_W@Z
?GetManager@CBDMControlUI@BDMSkin@@UAEPAVIControlManger@ExpandInterface@2@XZ
?SetPadding@CBDMControlUI@BDMSkin@@UAEXUtagRECT@@@Z
?GetScrollWheelSize@CBDMControlUI@BDMSkin@@UAEKXZ
?SetGrayImage@CBDMControlUI@BDMSkin@@UAEX_N@Z
?IsFocused@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetBorderColor@CBDMControlUI@BDMSkin@@UBEKXZ
?GetFocusBorderColor@CBDMControlUI@BDMSkin@@UBEKXZ
?SetScrollWheelSize@CBDMControlUI@BDMSkin@@UAEXK@Z
?ClearMenu@CBDMControlUI@BDMSkin@@UAEXXZ
?SetContextMenuUsed@CBDMControlUI@BDMSkin@@UAEX_N@Z
?IsContextMenuUsed@CBDMControlUI@BDMSkin@@UBE_NXZ
?SetTag@CBDMControlUI@BDMSkin@@UAEXI@Z
?SetHoverPlay@CBDMControlUI@BDMSkin@@UAEX_N@Z
?HideMenu@CBDMControlUI@BDMSkin@@UAEHXZ
?IsUpdateNeeded@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetPadding@CBDMControlUI@BDMSkin@@UBE?AUtagRECT@@XZ
?GetBorderSize@CBDMControlUI@BDMSkin@@UBEHXZ
?SetLeavePlay@CBDMControlUI@BDMSkin@@UAEX_N@Z
?ShowMenu@CBDMControlUI@BDMSkin@@UAEHPAUtagPOINT@@H@Z
?IsEnabled@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?SetToolTipMaxWidth@CBDMControlUI@BDMSkin@@UAEXK@Z
??0CStdString@Utils@BDMSkin@@QAE@ABV012@@Z
?SetPlayTimeSpace@CBDMControlUI@BDMSkin@@UAEXK@Z
?ResetMenuItem@CBDMControlUI@BDMSkin@@UAEHPAPAPA_WH@Z
?SetText@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?IsFloat@CBDMControlUI@BDMSkin@@UBE_NXZ
?SetToolTip@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
??0CStdString@Utils@BDMSkin@@QAE@PB_W@Z
?GetPlayTimeSpace@CBDMControlUI@BDMSkin@@UAEKXZ
?ResetMenuItem@CBDMControlUI@BDMSkin@@UAEHVCStdPtrArray@Utils@2@0H@Z
?GetMinHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?SetVisible@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetFixedHeight@CBDMControlUI@BDMSkin@@UBEHXZ
?SetPlayFileLen@CBDMControlUI@BDMSkin@@UAEXK@Z
?CreateMenuWnd@CBDMControlUI@BDMSkin@@UAEHPB_W0@Z
?SetBkImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?GetUserData@CBDMControlUI@BDMSkin@@UAEABVCStdString@Utils@2@XZ
?SetFocusBorderColor@CBDMControlUI@BDMSkin@@UAEXK@Z
?Close@CBDMBaseWnd@BDMSkin@@QAEXXZ
?SetDragData@CBDMControlUI@BDMSkin@@UAEXW4BDM_CLIPFORMAT@@PB_W@Z
?GetSuperClassName@CBDMBaseWnd@BDMSkin@@MBEPB_WXZ
?SetMinWidth@CBDMControlUI@BDMSkin@@UAEXH@Z
?GetBkColor2@CBDMControlUI@BDMSkin@@UBEKXZ
?IsMouseEnabled@CBDMControlUI@BDMSkin@@UBE_NXZ
?SetAnimationIndex@CBDMControlUI@BDMSkin@@UAEXH@Z
?GetDragData@CBDMControlUI@BDMSkin@@UAEXAAW4BDM_CLIPFORMAT@@AAPB_W@Z
?GetClassStyle@CBDMBaseWnd@BDMSkin@@MBEIXZ
?IsRelativePos@CBDMControlUI@BDMSkin@@UBE_NXZ
?GetBkColor3@CBDMControlUI@BDMSkin@@UBEKXZ
?BDMSkinCheckHasFile@BDMSkin@@YA_NPAVIResourceManager@ExpandInterface@1@PB_W@Z
??YCStdString@Utils@BDMSkin@@QAEABV012@PB_W@Z
?GetData@CStdString@Utils@BDMSkin@@QBEPB_WXZ
??1CStdString@Utils@BDMSkin@@QAE@XZ
??0CStdString@Utils@BDMSkin@@QAE@XZ
?Format@CStdString@Utils@BDMSkin@@QAAHPB_WZZ
?MessageLoop@IControlManger@ExpandInterface@BDMSkin@@SAXXZ
?CenterWindow@CBDMBaseWnd@BDMSkin@@QAEXPAUHWND__@@@Z
?ShowWindow@CBDMBaseWnd@BDMSkin@@QAEX_N0@Z
?ShowModal@CBDMBaseWnd@BDMSkin@@QAE_NPAUtagRECT@@H@Z
?SetMouseEnabled@CBDMControlUI@BDMSkin@@UAEX_N@Z
?GetRelativePos@CBDMControlUI@BDMSkin@@UBE?AUtagTRelativePosUI@@XZ
?SetBorderColor@CBDMControlUI@BDMSkin@@UAEXK@Z
?GetClass@CBDMLabelUI@BDMSkin@@UBEPB_WXZ
?SubAnimationIndex@CBDMControlUI@BDMSkin@@UAEXXZ
?AddNotifier@CBDMControlManger@BDMSkin@@QAE_NPAVINotifyUI@ExpandInterface@2@@Z
?GetPlayFileLen@CBDMControlUI@BDMSkin@@UAEKXZ
?SetAngleRes@CBDMControlUI@BDMSkin@@UAEX_NMPB_W@Z
?SetBorderSize@CBDMControlUI@BDMSkin@@UAEXH@Z
?GetToolTipMaxWidth@CBDMControlUI@BDMSkin@@UBEKXZ
?SetShortcut@CBDMControlUI@BDMSkin@@UAEX_W@Z
?SetPlayImage@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?StartAngleChange@CBDMControlUI@BDMSkin@@UAEXMMKKHVCStdString@Utils@2@@Z
?GetWidth@CBDMControlUI@BDMSkin@@UBEHXZ
?GetToolTip@CBDMControlUI@BDMSkin@@UBE?AVCStdString@Utils@2@XZ
?SetMaxWidth@CBDMControlUI@BDMSkin@@UAEXH@Z
?PostMessageW@CBDMBaseWnd@BDMSkin@@IAEJIIJ@Z
?GetDragFilePath@CBDMControlUI@BDMSkin@@UAEPB_WXZ
?StartFadeInFadeOut@CBDMControlUI@BDMSkin@@UAEXEEKK_N0@Z
?AttachDialog@CBDMControlManger@BDMSkin@@QAE_NPAVIControlUI@ExpandInterface@2@@Z
?Create@CBDMDialogBuilder@BDMSkin@@QAEPAVIControlUI@ExpandInterface@2@VSTRINGorID@Utils@2@PB_WPAVIDialogBuilderCallback@2@PAVIControlManger@42@PAV342@@Z
??0CBDMDialogBuilder@BDMSkin@@QAE@XZ
?IsEmpty@CStdString@Utils@BDMSkin@@QBE_NXZ
??BCBDMBaseWnd@BDMSkin@@QBEPAUHWND__@@XZ
?HandleMessage@CBDMBaseWnd@BDMSkin@@MAEJIIJ@Z
?GetBorderRound@CBDMControlUI@BDMSkin@@UBE?AUtagSIZE@@XZ
?GetTag@CBDMControlUI@BDMSkin@@UBEIXZ
?SetBorderRound@CBDMControlUI@BDMSkin@@UAEXUtagSIZE@@@Z
?OnFinalMessage@CBDMBaseWnd@BDMSkin@@MAEXPAUHWND__@@@Z
?SetDragFilePath@CBDMControlUI@BDMSkin@@UAEXPB_W@Z
?PlayAnimationSToE@CBDMControlUI@BDMSkin@@UAEXHH@Z
?GetBkColor@CBDMControlUI@BDMSkin@@UBEKXZ
?SetResourceZip@IResourceManager@ExpandInterface@BDMSkin@@SAXPB_W@Z
?BDMLangGetLangMgr@BDMSkin@@YAPAVIBDMLangMgr@1@XZ
?BDMSkinLibInit@BDMSkin@@YAHPB_W00@Z
?BDMSkinLibSetPrivateResDir@BDMSkin@@YAXPAVIResourceManager@ExpandInterface@1@PB_W1@Z
??1CBDMDialogBuilder@BDMSkin@@QAE@XZ
??0CRect@Utils@BDMSkin@@QAE@XZ
?Offset@CRect@Utils@BDMSkin@@QAEXHH@Z
??0CBDMBaseWnd@BDMSkin@@QAE@XZ
?SendMessageW@CBDMBaseWnd@BDMSkin@@IAEJIIJ@Z
??0CBDMControlManger@BDMSkin@@QAE@XZ
??_7INotifyUI@ExpandInterface@BDMSkin@@6B@
?Create@CBDMBaseWnd@BDMSkin@@QAEPAUHWND__@@PAU3@PB_WKKHHHHPAUHMENU__@@@Z
?BDMSkinInsertFileToRes@BDMSkin@@YA_NPB_W0_N@Z
shlwapi
StrFormatByteSizeW
wnsprintfW
StrChrW
StrRChrW
PathIsDirectoryW
SHDeleteKeyW
PathAppendW
StrFromTimeIntervalW
StrRStrIW
PathAddBackslashW
PathRemoveFileSpecW
PathFileExistsW
StrFormatKBSizeW
bdlogicutils
?GetBDCrashCatcher@BDLogicUtils@@YAPAVIBDCrashCatcher@1@XZ
?BDLogicUtilsLibrary_Init@BDLogicUtils@@YAHXZ
?GetBDMReportMgr@BDLogicUtils@@YAPAVIBDMReportMgr@1@XZ
?GetBDLogicTaskMgr@BDLogicUtils@@YAPAVIBDLogicTaskMgr@1@XZ
?BDLogicUtilsLibrary_Unit@BDLogicUtils@@YAHXZ
kernel32
FindFirstFileW
FindClose
GetFileSize
ReadFile
GetSystemDirectoryW
FreeLibrary
DeviceIoControl
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
HeapAlloc
GetProcessHeap
HeapFree
WaitNamedPipeW
GetCurrentThreadId
GetWindowsDirectoryW
GetSystemInfo
GetSystemDefaultLangID
FindNextFileW
RemoveDirectoryW
GetSystemWindowsDirectoryW
GetFileSizeEx
GetBinaryTypeW
DebugBreak
IsBadReadPtr
GetSystemWow64DirectoryW
GetTimeFormatW
GetNumberFormatW
FileTimeToLocalFileTime
GetLocaleInfoW
FileTimeToSystemTime
GetDateFormatW
GetCurrencyFormatW
SystemTimeToTzSpecificLocalTime
lstrcmpiW
GetCurrentProcessId
LoadResource
LockResource
SizeofResource
FindResourceW
FindResourceExW
ProcessIdToSessionId
RaiseException
HeapSize
HeapReAlloc
HeapDestroy
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStartupInfoW
InterlockedCompareExchange
InterlockedExchange
GetVersionExW
ReleaseMutex
SystemTimeToFileTime
GetTickCount
CopyFileW
MoveFileW
TerminateThread
GetCurrentDirectoryW
OutputDebugStringA
WriteFile
CreateFileW
ExpandEnvironmentStringsW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ResetEvent
LoadLibraryW
CreateEventA
ExpandEnvironmentStringsA
GetLocalTime
GetFileAttributesW
SetFileAttributesW
LocalFree
OpenMutexW
GetSystemTimeAsFileTime
GetProcessTimes
CreateMutexW
lstrlenA
lstrlenW
lstrcpynW
CreateProcessW
GetLastError
GetModuleHandleW
Process32NextW
CloseHandle
CreateEventW
Process32FirstW
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
GetCurrentProcess
WaitForSingleObject
CreateToolhelp32Snapshot
InterlockedDecrement
GetModuleFileNameW
Sleep
MoveFileExW
OpenProcess
DeleteFileW
TerminateProcess
InterlockedIncrement
GetVersionExA
FormatMessageA
SetErrorMode
LocalAlloc
SetEvent
user32
DestroyIcon
GetWindowLongW
SetWindowLongW
ScreenToClient
SetTimer
GetForegroundWindow
KillTimer
wsprintfW
PostMessageW
SendMessageW
PostQuitMessage
IsZoomed
EnableWindow
ShowWindow
IsWindowVisible
UnregisterClassA
SetForegroundWindow
InvalidateRect
LoadImageW
GetWindowRect
SetWindowPos
GetClientRect
FindWindowW
GetClassNameW
IsWindow
DestroyWindow
SetWindowRgn
AttachThreadInput
GetWindowThreadProcessId
SetFocus
BringWindowToTop
IsIconic
GetDesktopWindow
GetSystemMetrics
GetWindowTextW
gdi32
CreateRoundRectRgn
DeleteObject
advapi32
RegQueryInfoKeyW
RegEnumKeyExW
RegEnumValueW
FreeSid
SetSecurityDescriptorDacl
AllocateAndInitializeSid
InitializeSecurityDescriptor
RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegOpenKeyExW
CreateProcessAsUserW
RegDeleteValueW
LookupPrivilegeValueW
GetTokenInformation
DuplicateTokenEx
RegSetValueExW
RegCloseKey
OpenProcessToken
RegCreateKeyExW
RegNotifyChangeKeyValue
RegGetKeySecurity
RegDeleteKeyW
RegFlushKey
RegSetKeySecurity
CheckTokenMembership
shell32
SHGetSpecialFolderPathW
SHCreateDirectoryExW
CommandLineToArgvW
Shell_NotifyIconW
SHGetFolderPathW
ole32
StgIsStorageFile
CoUninitialize
CoCreateGuid
CoInitialize
StgOpenStorage
StgCreateDocfile
CoCreateInstance
msvcp80
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V32@@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_WABV10@@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?resize@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@0@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
?destroy@?$allocator@D@std@@QAEXPAD@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0PBD1@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@V32@0@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@PBD1@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@V?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0ABV12@@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?deallocate@?$allocator@D@std@@QAEXPADI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
?construct@?$allocator@D@std@@QAEXPADABD@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@V?$_String_const_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@0@Z
?allocate@?$allocator@D@std@@QAEPADI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
?find_first_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
msvcr80
_lock
_onexit
_decode_pointer
?terminate@@YAXXZ
_amsg_exit
__wgetmainargs
_except_handler3
_cexit
_exit
_XcptFilter
exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_snwprintf
strerror
memset
_controlfp_s
_invoke_watson
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
__set_app_type
??0exception@std@@QAE@ABQBD@Z
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
wcsrchr
_time64
realloc
malloc
??_V@YAXPAX@Z
free
_purecall
strtoul
?what@exception@std@@UBEPBDXZ
??3@YAXPAX@Z
wcsncpy_s
??1exception@std@@UAE@XZ
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
towlower
__RTDynamicCast
memcpy_s
wcschr
_wcsicmp
wcsstr
tolower
wcscpy_s
_vsnwprintf_s
_difftime64
sprintf
wcstoul
strcpy_s
??0exception@std@@QAE@ABQBDH@Z
wcsncat_s
_beginthreadex
_stricmp
isdigit
_itoa
_i64toa_s
_itoa_s
_atoi64
printf
atoi
isupper
isspace
_snwprintf_s
_snprintf_s
rand
memmove_s
strcspn
??8type_info@@QBE_NABV0@@Z
isalnum
strchr
ispunct
_wstat64
_wsplitpath_s
_wmkdir
wcsncat
strncmp
isprint
fclose
_vsnprintf_s
fprintf
ferror
ftell
fopen_s
fputc
fseek
fread
isalpha
memmove
_wcsnicmp
_strnicmp
_errno
_wtol
putchar
putwchar
wcstol
_vswprintf_c_l
wcscat_s
_snwscanf_s
_wcsupr
_vscwprintf
vswprintf_s
__CxxFrameHandler3
_snprintf
fflush
__iob_func
_CxxThrowException
memcpy
_unlock
__dllonexit
_encode_pointer
wininet
InternetCloseHandle
HttpSendRequestW
InternetCrackUrlW
HttpOpenRequestW
InternetConnectW
InternetOpenW
HttpQueryInfoW
InternetReadFile
netapi32
Netbios
psapi
EnumProcessModules
GetModuleBaseNameW
EnumProcesses
GetProcessImageFileNameW
GetModuleFileNameExW
wtsapi32
WTSQueryUserToken
userenv
CreateEnvironmentBlock
ws2_32
getsockopt
select
recv
closesocket
WSAGetLastError
sendto
__WSAFDIsSet
send
gethostbyname
htons
connect
htonl
ioctlsocket
recvfrom
WSAStartup
socket
ntohl
imagehlp
MapAndLoad
UnMapAndLoad
version
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
Exports
Exports
Sections
.text Size: 308KB - Virtual size: 304KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 128KB - Virtual size: 127KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 12KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 420KB - Virtual size: 420KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE