Static task
static1
Behavioral task
behavioral1
Sample
d136e6801e2d8c8a04d3ff7508a0ddd92f93164e.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral2
Sample
d136e6801e2d8c8a04d3ff7508a0ddd92f93164e.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
d136e6801e2d8c8a04d3ff7508a0ddd92f93164e
-
Size
1.9MB
-
MD5
52fc475078b7ce858510fa79c6f352c8
-
SHA1
d136e6801e2d8c8a04d3ff7508a0ddd92f93164e
-
SHA256
d31293540397190e2787d1ea9290318b7a791118d9e248111d55da646bde80bc
-
SHA512
48be2f8bca78e5750489b4d6eb57234ffdfd20bca9d2df9ffdb5bc4a7a88363cd63311d7ffc8c50d7f65b9aeeed53511aa4244cd720e5bf24edba78b8e01af0d
-
SSDEEP
24576:4aZIwFW8OnyL6HeTEMN83+qCi/pGkFMIVmyMl0Hxdh6YTl2zWorrWUuQ0VHtCZbm:VRBm5TTJwyLq7te8A
Malware Config
Signatures
Files
-
d136e6801e2d8c8a04d3ff7508a0ddd92f93164e.exe windows x86
f3d230422369404b9f66d9fe58c58eea
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
imagehlp
ImageDirectoryEntryToData
shfolder
SHGetFolderPathA
wininet
InternetSetOptionA
InternetOpenUrlA
FindFirstUrlCacheEntryExA
FindNextUrlCacheEntryExA
FindCloseUrlCache
InternetGetCookieA
InternetSetCookieA
InternetGetConnectedState
InternetCrackUrlA
InternetCloseHandle
HttpQueryInfoA
HttpSendRequestA
InternetOpenA
InternetConnectA
HttpOpenRequestA
shlwapi
StrToIntA
PathRenameExtensionA
PathAppendA
PathIsDirectoryEmptyA
PathIsDirectoryA
PathMatchSpecA
PathFindFileNameW
PathFileExistsA
SHCopyKeyA
PathCombineA
PathStripPathA
PathFindExtensionA
PathRemoveFileSpecA
StrStrIW
StrStrIA
PathFindFileNameA
PathIsRootA
scnkrnl
?TrustAdware@@YAHKPAVCCoreManip@@@Z
??0CHashChecker@@QAE@XZ
?IsQuarantineForDriveAllowed@CAVQuarantine@@SA_ND@Z
?InitAVEngine@CCoreManip@@QAE_NXZ
?IsRegKeyValuePresent@@YA_NPBDAAK@Z
?setAutoRun@CPostponedTasks@AVPostponedTasks@@SAXPBD_N@Z
?DoSimpleDeletion@CAVQuarantine@@SA_NPBD@Z
?Log@@YAXKIPBDZZ
??0CDevLog@@QAE@H@Z
??RCDevLog@@QBAXKIPBDZZ
?DeleteAdware@@YAJKPAVCCoreManip@@@Z
?FlushLog@@YAXK@Z
?getInstance@CAVKernel@@SAPAV1@_N@Z
??1CAVLog@@QAE@XZ
??1CHashChecker@@QAE@XZ
?Flush@CAVLog@@QAEXK@Z
??0CAVLog@@QAE@PBD0PAUHKEY__@@@Z
mfc71
ord2321
ord762
ord266
ord265
ord1489
ord299
ord2933
ord2882
ord1645
ord5915
ord1402
ord5073
ord5214
ord4261
ord1425
ord4353
ord709
ord501
ord602
ord1966
ord1279
ord347
ord3683
ord5563
ord1185
ord2248
ord4038
ord4014
ord6278
ord3801
ord6276
ord4326
ord2063
ord2018
ord5583
ord3806
ord1010
ord5102
ord6219
ord5382
ord3832
ord1920
ord2931
ord5224
ord5226
ord3948
ord4568
ord5230
ord5213
ord5566
ord2838
ord4481
ord3333
ord757
ord566
ord1654
ord1598
ord6120
ord6275
ord3348
ord758
ord2264
ord2074
ord2075
ord567
ord593
ord334
ord4085
ord5119
ord1024
ord1101
ord1054
ord3830
ord1091
ord1283
ord3881
ord2475
ord3680
ord3587
ord5203
ord4232
ord3287
ord3163
ord4100
ord2094
ord3244
ord1955
ord2987
ord3328
ord572
ord754
ord3883
ord5868
ord760
ord4749
ord589
ord4001
ord4123
ord5641
ord330
ord2867
ord2876
ord3799
ord2370
ord4350
ord5529
ord1930
ord1979
ord3989
ord577
ord2467
ord777
ord293
ord3204
ord5731
ord2368
ord3676
ord3583
ord1594
ord2098
ord1650
ord4243
ord2983
ord3324
ord748
ord3401
ord2451
ord6020
ord3641
ord3441
ord5623
ord3302
ord3651
ord5059
ord2092
ord1641
ord1571
ord4238
ord2958
ord3230
ord658
ord502
ord5634
ord2873
ord2794
ord5746
ord2495
ord2654
ord3891
ord2234
ord4394
ord3684
ord3423
ord2160
ord1545
ord1377
ord2086
ord2991
ord3164
ord587
ord5710
ord6172
ord2020
ord3849
ord3596
ord2719
ord4078
ord6037
ord2877
ord5637
ord2371
ord6017
ord4564
ord2657
ord1262
ord1917
ord785
ord630
ord3088
ord2021
ord385
ord298
ord2914
ord5658
ord1123
ord6182
ord6006
ord5716
ord745
ord326
ord557
ord911
ord5869
ord4109
ord5991
ord629
ord5089
ord384
ord5986
ord3350
ord1931
ord1483
ord4098
ord2089
ord4234
ord2095
ord1591
ord4240
ord3317
ord741
ord4036
ord6173
ord6174
ord5930
ord5715
ord2263
ord3635
ord3595
ord5227
ord4569
ord5567
ord759
ord570
ord1290
ord655
ord5111
ord421
ord1929
ord4320
ord1025
ord5642
ord5640
ord4108
ord1566
ord3850
ord2249
ord1126
ord6283
ord1968
ord631
ord2751
ord2748
ord3931
ord2288
ord2280
ord386
ord272
ord383
ord5871
ord1439
ord5323
ord2903
ord5420
ord4083
ord3337
ord6288
ord280
ord776
ord783
ord300
ord1230
ord2292
ord2942
ord1452
ord6295
ord744
ord5329
ord5097
ord556
ord5346
ord910
ord6167
ord2594
ord4648
ord4692
ord605
ord356
ord354
ord4580
ord3835
ord2948
ord3182
ord3563
ord3304
ord730
ord4761
ord5994
ord774
ord287
ord2130
ord6018
ord3454
ord1554
ord3195
ord620
ord3174
ord747
ord559
ord2233
ord5727
ord3952
ord3473
ord2090
ord1637
ord1558
ord4236
ord3214
ord642
ord1031
ord6236
ord6310
ord6040
ord6041
ord2306
ord3437
ord1550
ord3178
ord599
ord1647
ord1589
ord739
ord3430
ord3488
ord1397
ord6266
ord1933
ord1484
ord4099
ord2091
ord1570
ord4237
ord3229
ord657
ord1547
ord3171
ord591
ord5647
ord1587
ord3307
ord731
ord1576
ord1575
ord3249
ord671
ord1652
ord1596
ord2985
ord3326
ord752
ord2097
ord1649
ord1593
ord4242
ord3319
ord743
ord1638
ord1559
ord3215
ord643
ord3315
ord1646
ord1588
ord3312
ord736
ord1643
ord1581
ord3292
ord715
ord1635
ord1543
ord3157
ord583
ord1644
ord1584
ord3298
ord1636
ord1548
ord3172
ord592
ord1639
ord1568
ord3227
ord656
ord1640
ord1569
ord3228
ord2328
ord1265
ord2327
ord4032
ord282
ord2932
ord1264
ord4037
ord4033
ord4034
ord2319
ord1260
ord259
ord1971
ord2938
ord1092
ord3233
ord423
ord660
ord4063
ord866
ord5466
ord3574
ord3474
ord2802
ord3406
ord3551
ord3139
ord3571
ord4104
ord907
ord4115
ord4118
ord4888
ord1084
ord1247
ord5491
ord1586
ord1249
ord5154
ord908
ord5833
ord1903
ord5613
ord4125
ord6065
ord6067
ord3761
ord1564
ord2372
ord2367
ord1063
ord1280
ord2164
ord3161
ord1934
ord651
ord3210
ord416
ord2866
ord6286
ord5320
ord6297
ord5331
ord4035
ord3875
ord1395
ord1580
ord5873
ord6090
ord2346
ord3879
ord5866
ord3255
ord2168
ord4262
ord4486
ord3949
ord2644
ord3709
ord3719
ord3718
ord2533
ord2646
ord2540
ord2862
ord2714
ord4307
ord2835
ord2731
ord2537
ord5200
ord1599
ord1655
ord1656
ord1964
ord5175
ord1362
ord4967
ord3345
ord6277
ord3802
ord6279
ord1522
ord2172
ord2178
ord2405
ord2387
ord2385
ord2403
ord2415
ord2392
ord2408
ord2413
msvcr71
free
malloc
memchr
_purecall
__RTDynamicCast
_mbctype
_time64
fclose
fgets
fopen
??1exception@@UAE@XZ
??0exception@@QAE@XZ
??0exception@@QAE@ABV0@@Z
sprintf
_resetstkoflw
??0bad_cast@@QAE@ABV0@@Z
??1bad_cast@@UAE@XZ
??0bad_cast@@QAE@PBD@Z
_beginthread
_mbsstr
strchr
_mbscmp
_stricmp
div
_fsopen
fflush
_chsize
rewind
fread
ftell
fwrite
fseek
strftime
time
_strdate
vsprintf
_vscprintf
_mbsrchr
strrchr
strncmp
memmove
_CxxThrowException
strtol
atoi
__CxxFrameHandler
_localtime64
_mktime64
_except_handler3
_mbsicmp
_mbsnbcpy
_strtime
_mbschr
_mbslwr
_ismbclower
ceil
tolower
strtoul
_beginthreadex
strstr
realloc
_strnicmp
_strlwr
isdigit
_mbslen
wcslen
_itoa
_vscwprintf
vswprintf
?what@exception@@UBEPBDXZ
??0exception@@QAE@ABQBD@Z
strlen
??8type_info@@QBEHABV0@@Z
_mbsspn
_mbscspn
wcschr
wcsspn
_fileno
_setmbcp
wcscspn
_wgetenv
_wcsdup
toupper
memset
__security_error_handler
??1type_info@@UAE@XZ
__dllonexit
_onexit
?terminate@@YAXXZ
_c_exit
_exit
_XcptFilter
_ismbblead
_cexit
exit
_acmdln
_amsg_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
kernel32
ReleaseMutex
OpenEventA
OpenFileMappingA
GetVersion
GetCurrentProcess
OpenMutexA
LocalFree
CreateEventA
WaitForMultipleObjects
ResetEvent
CreateThread
GetTickCount
SetEvent
WaitForSingleObject
GetLocalTime
LeaveCriticalSection
EnterCriticalSection
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetPrivateProfileIntA
lstrcmpA
UnmapViewOfFile
GetFileSize
CreateFileMappingA
MapViewOfFileEx
ReadFile
CreateFileA
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
GetLastError
GetDateFormatA
GetTimeFormatA
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
MapViewOfFile
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
lstrcmpiA
lstrlenW
lstrlenA
GetStringTypeExA
CreateWaitableTimerA
SystemTimeToFileTime
SetWaitableTimer
lstrcpyA
lstrcpynA
TerminateThread
OpenProcess
GetModuleHandleA
Sleep
GetCurrentThreadId
FindClose
DeleteFileA
FindNextFileA
FindFirstFileA
GetTempPathA
GetModuleFileNameA
GetCurrentProcessId
GetProcAddress
InterlockedDecrement
TerminateProcess
InterlockedIncrement
GetCommandLineA
SetThreadPriority
GetFileAttributesA
GetDriveTypeA
SetLastError
MulDiv
ResumeThread
SuspendThread
LockResource
FreeResource
SizeofResource
LoadResource
FindResourceA
CompareFileTime
GetTempFileNameA
GetWindowsDirectoryA
GetSystemDirectoryA
GetDiskFreeSpaceExA
lstrcatA
LoadLibraryA
GetLogicalDriveStringsA
QueryDosDeviceW
GetLogicalDriveStringsW
DeviceIoControl
FreeLibrary
SetFilePointer
CreateProcessA
FindResourceExA
SetPriorityClass
GetShortPathNameA
GetLongPathNameA
VirtualFree
VirtualAlloc
GetCurrentThread
LocalAlloc
HeapAlloc
HeapFree
GetProcessHeap
GetProfileStringA
WriteProfileStringA
WritePrivateProfileStringA
GetFullPathNameA
GetSystemTime
CreateDirectoryA
GetVolumeInformationA
OpenFile
SetEndOfFile
FileTimeToSystemTime
WriteProcessMemory
VirtualProtect
FindResourceW
FindResourceExW
GetSystemTimeAsFileTime
GetFileAttributesW
ExitProcess
GetStartupInfoA
QueryPerformanceCounter
CreateMutexA
FlushFileBuffers
HeapDestroy
HeapReAlloc
HeapSize
GetUserDefaultLCID
LCMapStringA
InterlockedCompareExchange
GetACP
WriteFile
user32
LoadStringW
UnhookWindowsHookEx
GetComboBoxInfo
SetWindowsHookExA
GetKeyboardState
SetKeyboardState
CallNextHookEx
GetActiveWindow
SetRectEmpty
GetMenuItemRect
UnionRect
TrackPopupMenuEx
SetMenuItemInfoA
SetMenuItemBitmaps
GetMenuItemInfoA
GetMenuDefaultItem
GetMenuState
IsMenu
InsertMenuItemA
keybd_event
CopyImage
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
DestroyIcon
EnumWindows
IsWindowUnicode
GetMessageW
DispatchMessageW
GetCapture
WindowFromPoint
GetAncestor
SendMessageTimeoutA
GetClassLongA
DestroyCursor
TrackMouseEvent
GetWindowRgn
GetForegroundWindow
VkKeyScanA
GetWindowThreadProcessId
FrameRect
SetCursorPos
ShowWindowAsync
wsprintfA
MsgWaitForMultipleObjects
LoadBitmapW
SetParent
LoadMenuA
SetFocus
MapWindowPoints
GetSubMenu
IsRectEmpty
GetDlgItem
GetWindow
ReleaseCapture
SetCapture
LoadCursorA
SetCursor
SetWindowRgn
OffsetRect
SystemParametersInfoA
GetKeyState
GetFocus
CopyRect
RegisterClassExA
BeginPaint
EndPaint
SetWindowPos
DrawTextA
GetWindowDC
GetDlgCtrlID
FillRect
IsWindowEnabled
ValidateRect
ShowWindow
LoadStringA
GetWindowTextLengthA
GetWindowTextA
GetSystemMenu
TrackPopupMenu
CloseWindow
PtInRect
GetClassNameA
SetForegroundWindow
GetLastActivePopup
SetActiveWindow
ShowOwnedPopups
UpdateWindow
IsIconic
GetMenuItemID
GetMenuItemCount
SetMenuDefaultItem
EnableMenuItem
DeleteMenu
CreatePopupMenu
DrawIcon
FindWindowA
GetWindowModuleFileNameA
InflateRect
GetSysColor
EnableScrollBar
SetScrollPos
SetRect
IsWindowVisible
RedrawWindow
GetMessageA
CreateWindowExA
SetWindowLongA
RegisterWindowMessageA
DefWindowProcA
SetTimer
KillTimer
FindWindowExA
TranslateAcceleratorA
GetCursorPos
LoadAcceleratorsA
InvalidateRect
ScreenToClient
ClientToScreen
GetClientRect
GetSystemMetrics
GetWindowLongA
PostMessageA
ShowScrollBar
ExitWindowsEx
PeekMessageA
DispatchMessageA
TranslateMessage
PostThreadMessageA
LoadIconA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetParent
GetDesktopWindow
ReleaseDC
GetDC
GetWindowRect
LoadBitmapA
IsWindow
SendMessageA
EnableWindow
LoadIconW
LoadCursorW
LoadImageA
LoadImageW
AppendMenuA
IsZoomed
DestroyMenu
CallWindowProcA
GetAsyncKeyState
DrawFocusRect
CharUpperBuffA
DrawStateA
gdi32
PatBlt
GetTextColor
GetBitmapBits
SetBitmapBits
CreateBrushIndirect
CreateDIBitmap
SetTextColor
CreatePen
MoveToEx
LineTo
BitBlt
DeleteObject
CreateCompatibleDC
SetStretchBltMode
DPtoLP
GetMapMode
SetMapMode
GetBkColor
GetBkMode
CreateEllipticRgn
GetDIBits
CreateBitmap
PtInRegion
CreateFontA
FrameRgn
CreateRoundRectRgn
ExtCreatePen
Rectangle
GetTextMetricsA
RoundRect
GetPixel
SetBkColor
TextOutA
CreateRectRgn
CombineRgn
CreateRectRgnIndirect
GetStockObject
SetBkMode
GetDeviceCaps
StretchBlt
SetPixel
CreateFontIndirectA
GetObjectA
CreateSolidBrush
CreateCompatibleBitmap
DeleteDC
GetTextExtentPoint32A
SelectObject
msimg32
AlphaBlend
shell32
ShellExecuteExA
SHAppBarMessage
Shell_NotifyIconA
ShellExecuteA
DragQueryFileA
ord155
ord18
ord25
ord21
SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetFileInfoA
SHGetSpecialFolderPathA
comctl32
ImageList_AddMasked
ImageList_Draw
ord17
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_SetBkColor
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_DrawEx
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Remove
ole32
CLSIDFromProgID
StringFromGUID2
StgOpenStorage
StgCreateDocfile
CoInitializeEx
CoInitializeSecurity
OleRun
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
CoUninitialize
oleaut32
SystemTimeToVariantTime
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SysAllocString
SysAllocStringLen
OleLoadPicture
VariantClear
VariantChangeType
VariantInit
SysFreeString
SafeArrayGetUBound
VarBstrCmp
SafeArrayDestroy
VariantCopy
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
msvcp71
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@V312@D@Z
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z
?open@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXPBDHH@Z
?close@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?unsetf@ios_base@std@@QAEXH@Z
??$?5DU?$char_traits@D@std@@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
?empty@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE_NXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AVconst_iterator@12@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AVconst_iterator@12@XZ
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXViterator@12@PBD1@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXViterator@12@Vconst_iterator@12@1@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@Vconst_iterator@01@0@Z
?length@?$char_traits@D@std@@SAIPBD@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIPBD@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?data@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??1_Lockit@std@@QAE@XZ
?_Register@facet@locale@std@@QAEXXZ
?_Incref@facet@locale@std@@QAEXXZ
?_Getfacet@locale@std@@QBEPBVfacet@12@I@Z
??Bid@locale@std@@QAEIXZ
??0_Lockit@std@@QAE@H@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?good@ios_base@std@@QBE_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
?end@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE?AViterator@12@XZ
?begin@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE?AViterator@12@XZ
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??0locale@std@@QAE@XZ
?narrow@?$ctype@G@std@@QBEDGD@Z
?id@?$ctype@G@std@@2V0locale@2@A
?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@V312@0@Z
?push_back@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXD@Z
??7ios_base@std@@QBE_NXZ
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
??_D?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIABV12@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??_D?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0strstream@std@@QAE@PADHH@Z
??1strstream@std@@UAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1strstreambuf@std@@UAE@XZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?freeze@strstreambuf@std@@QAEX_N@Z
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Init@strstreambuf@std@@IAEXHPAD0H@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?overflow@strstreambuf@std@@MAEHH@Z
?pbackfail@strstreambuf@std@@MAEHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?underflow@strstreambuf@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPADH@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPBDH@Z
?seekoff@strstreambuf@std@@MAE?AV?$fpos@H@2@JHH@Z
?seekpos@strstreambuf@std@@MAE?AV?$fpos@H@2@V32@H@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PADH@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?open@?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXPBDHH@Z
?close@?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBDH@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??Bios_base@std@@QBEPAXXZ
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z
?close@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?at@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@Viterator@12@0ABV12@@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHABV12@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?flags@ios_base@std@@QBEHXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
?to_int_type@?$char_traits@D@std@@SAHABD@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??1locale@std@@QAE@XZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?width@ios_base@std@@QBEHXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?eof@?$char_traits@D@std@@SAHXZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?to_char_type@?$char_traits@D@std@@SADABH@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?width@ios_base@std@@QAEHH@Z
?uncaught_exception@std@@YA_NXZ
ws2_32
gethostbyaddr
sendto
closesocket
WSAStartup
connect
inet_ntoa
gethostname
ntohs
getservbyport
WSAGetLastError
WSCEnumProtocols
WSCDeinstallProvider
WSCGetProviderPath
WSACleanup
socket
iphlpapi
GetTcpTable
GetUdpTable
GetAdaptersInfo
Sections
.text Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 300KB - Virtual size: 297KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Shared Size: 4KB - Virtual size: 4B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 4KB - Virtual size: 541B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 328KB - Virtual size: 325KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ