Static task
static1
Behavioral task
behavioral1
Sample
2023-03-03_d047787f1e27934d55a2e13a04a6e6e2_darkside.exe
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral2
Sample
2023-03-03_d047787f1e27934d55a2e13a04a6e6e2_darkside.exe
Resource
win10v2004-20230221-en
windows10-2004-x64
General
-
Target
2023-03-03_d047787f1e27934d55a2e13a04a6e6e2_darkside.exe
-
Size
1.8MB
-
MD5
d047787f1e27934d55a2e13a04a6e6e2
-
SHA1
3c2118e08aae7e8e48521a1ca10f68186a045de8
-
SHA256
2816ddac6413c6dd3f3e326b8c020cbeeeeb000b98acd36506a7bf9eeb8ea320
-
SHA512
4653a3f16aec2ac71954552b2233502add8ae4b28d845af329b73227d0b6db40f9da0ebc8ba91418ae9e3431872e919a3a6d4d8d25fd6502c30c1114ef555019
-
SSDEEP
12288:FUVmF3DjvgcZQMHP+XXDbIFGmvODXW68IoaZ/u5vZOA3OFIWz7NHJ9Z5neN:53rZ7w3QXOrEaR0vZldy7TleN
Malware Config
Signatures
Files
-
2023-03-03_d047787f1e27934d55a2e13a04a6e6e2_darkside.exe.exe windows x86
e8da966bdbae232652f027952ec9c70f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdiplus
GdiplusStartup
GdipDrawImageRectRect
GdipDrawImagePointRect
GdipDrawImageRect
GdipFillPolygonI
GdipFillRectangle
GdipReleaseDC
GdipGetDC
GdipCreateFromHDC
GdipCreatePen1
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipFillRectangleI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCreateSolidFill
GdipCloneBrush
GdipDeleteBrush
GdipAlloc
GdipFree
GdiplusShutdown
GdipDrawImageI
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
setupapi
SetupDiOpenClassRegKey
hpiscnex
?PutPropEnable@CIMagLevExpress@@QAEXJH@Z
?Final@CIMagLevExpress@@QAEXXZ
?PropertyAvailable@CIMagLevExpress@@QAEHJ@Z
?GetImageID@CIMagLevExpress@@QAEJJ@Z
?ClearError@CIMagLevExpress@@QAEXXZ
?LastError@CIMagLevExpress@@QAEPAVCMLXError@@XZ
?GetPropDefaultDouble@CIMagLevExpress@@QAENJ@Z
?GetPropDefaultLong@CIMagLevExpress@@QAEJJ@Z
?GetPropDefaultEnable@CIMagLevExpress@@QAEHJ@Z
?PutPropDefaultDouble@CIMagLevExpress@@QAEXJN@Z
?PutPropDefaultEnable@CIMagLevExpress@@QAEXJH@Z
?PutPropStructEx@CIMagLevExpress@@QAEXJJPBX@Z
?GetPropStructEx@CIMagLevExpress@@QAEPBXJPAJ@Z
?PutPropDouble@CIMagLevExpress@@QAEXJN@Z
?RunEasterEgg@CIMagLevExpress@@QAEXJJ@Z
?GetPropDouble@CIMagLevExpress@@QAENJ@Z
?AddImage@CIMagLevExpress@@QAEXVsRect@@@Z
?GetCurrentImageID@CIMagLevExpress@@QAEJXZ
?RenderImage@CIMagLevExpress@@QAEXJJJJ@Z
?PutCurrentImageID@CIMagLevExpress@@QAEXJ@Z
?Synchronize@CIMagLevExpress@@QAEXXZ
?NumberOfImages@CIMagLevExpress@@QAEJXZ
?Capture@CIMagLevExpress@@QAEXXZ
?DeleteAllImages@CIMagLevExpress@@QAEXXZ
?DisconnectEvents@CIMagLevExpress@@QAEXJ@Z
?PutPropLong@CIMagLevExpress@@QAEXJJ@Z
?ConnectEvents@CIMagLevExpress@@QAEXPAVCMagLevExpressEvents@@PAJ@Z
?GetPropStrEx@CIMagLevExpress@@QAEPB_WJ@Z
??1CIMagLevExpress@@QAE@XZ
?Shutdown@CIMagLevExpress@@QAEXXZ
??0CIMagLevExpress@@QAE@XZ
?Cancel@CIMagLevExpress@@QAEXXZ
?GetPropLong@CIMagLevExpress@@QAEJJ@Z
?GetPropEnable@CIMagLevExpress@@QAEHJ@Z
?GetPropRect@CIMagLevExpress@@QAE?AVsRect@@J@Z
?PutPropRect@CIMagLevExpress@@QAEXJVsRect@@@Z
?PutPropStrEx@CIMagLevExpress@@QAEXJPB_W@Z
?Startup@CIMagLevExpress@@QAEXXZ
?DoOperation@CIMagLevExpress@@QAEXJ@Z
?PutPropDefaultLong@CIMagLevExpress@@QAEXJJ@Z
hpqtscmn
?WriteDWORDValue@CRegistryHelper@@QAEHPB_WAAK@Z
??1CRegistryHelper@@QAE@XZ
?ReadDWORDValue@CRegistryHelper@@QAEHPB_WAAK@Z
?InvokePage@CScanHelp@@QAEHPAUHWND__@@W4HELPFILE@@HAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V45@@Z
?getInstance@CScanHelp@@SAPAV1@XZ
?WriteBinaryValue@CRegistryHelper@@QAEHPB_WPAEK@Z
??0CDisplaySaveOptions@@QAE@_NW4SAVEOPTIONS_DLGTYPE@@W4SHORTCUT_FILETYPE@@W4SHORTCUT_OUTPUT_TYPE@@W4SHORTCUT_OUTPUT_COLOR_TYPE@@W4SHORTCUT_SCAN_TYPE@@PB_WUDOCUMENTSETTINGS@@USAVEOPTIONSSETTINGS@@@Z
??1CDisplaySaveOptions@@QAE@XZ
?LaunchSaveOptionsDlg@CDisplaySaveOptions@@QAE_NXZ
?GetRedBoxError@CRedBoxException@@QAEJXZ
?GetSaveOptions@CDisplaySaveOptions@@QAE?AUSAVEOPTIONSSETTINGS@@XZ
?GetFileType@CDisplaySaveOptions@@QAE?AW4SHORTCUT_FILETYPE@@XZ
??0CRegistryHelper@@QAE@PAUHKEY__@@PB_WK@Z
hpiscncc
?PreTranslateMessage@CCstmCtrlComboBox@@UAEHPAUtagMSG@@@Z
?ChangeBitmap@CCstmBaseTabCtrl@@QAEXH@Z
?SetCurDpi@CCstmBaseTabCtrl@@QAEXH@Z
?EnableCustomLook@CCstmEnableTabCtrl@@SAXHK@Z
?EnableDraw@CCstmBaseTabCtrl@@QAEHH@Z
?SetTabText@CCstmBaseTabCtrl@@QAEXV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0@Z
?UIGSetToolBackColor@CUIGraphics@@QAEXI@Z
?UIGSetBackColor@CUIGraphics@@QAEXI@Z
??1CCstmEnableTabCtrl@@UAE@XZ
??0CCstmEnableTabCtrl@@QAE@XZ
?OnInitDialog@CCstmCtrlErrDlg@@UAEHXZ
?DoDataExchange@CCstmCtrlErrDlg@@MAEXPAVCDataExchange@@@Z
?GetMessageMap@CCstmCtrlErrDlg@@MBEPBUAFX_MSGMAP@@XZ
?GetRuntimeClass@CCstmCtrlErrDlg@@UBEPAUCRuntimeClass@@XZ
??1CCstmCtrlErrDlg@@UAE@XZ
?SetParams@CCstmCtrlErrDlg@@QAEXPB_WV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@111@Z
??0CCstmCtrlErrDlg@@QAE@PAVCWnd@@@Z
?ReleaseInstance@CUIGraphics@@SAXXZ
?Initialize@CWndShadow@@SA_NPAUHINSTANCE__@@@Z
?DrawItem@CCstmCtrlNavigateBtn@@UAEXPAUtagDRAWITEMSTRUCT@@@Z
?PreTranslateMessage@CCstmCtrlNavigateBtn@@UAEHPAUtagMSG@@@Z
?PreSubclassWindow@CCstmCtrlNavigateBtn@@UAEXXZ
?GetMessageMap@CCstmCtrlNavigateBtn@@MBEPBUAFX_MSGMAP@@XZ
?UpdateLabel@CCstmCtrlLabel@@QAEXH@Z
??1CCstmCtrlNavigateBtn@@UAE@XZ
??0CCstmCtrlNavigateBtn@@QAE@H@Z
?SetBackColor@CCstmCtrlEdit@@QAEXK@Z
??1CCstmCtrlEdit@@UAE@XZ
??0CCstmCtrlEdit@@QAE@XZ
?GetChecked@CCstmTabcontrol@@QAEHH@Z
?SetSkinTab@CstmSkinButton@@QAEXIIIIIIFFF@Z
??1CCstmTabcontrol@@UAE@XZ
??0CCstmTabcontrol@@QAE@XZ
??1CCstmGroupBoxH@@UAE@XZ
??0CCstmGroupBoxH@@QAE@XZ
?ApplyVScrollBarLogic@CCstmCtrlComboBox@@QAEX_N@Z
?SetWordEllipseEnd@CCstmCtrlLabel@@QAEXXZ
?DrawItem@CCstmCtrlRadio@@EAEXPAUtagDRAWITEMSTRUCT@@@Z
?PreTranslateMessage@CCstmCtrlRadio@@EAEHPAUtagMSG@@@Z
?PreSubclassWindow@CCstmCtrlRadio@@EAEXXZ
?GetMessageMap@CCstmCtrlRadio@@MBEPBUAFX_MSGMAP@@XZ
??1CCstmCtrlSpin@@UAE@XZ
??0CCstmCtrlSpin@@QAE@XZ
?UpdateTabLabel@CCstmCtrlLabel@@QAEXH@Z
??1CstmTransparentImage@@UAE@XZ
??0CstmTransparentImage@@QAE@XZ
??1CCstmGroupBoxV@@UAE@XZ
??0CCstmGroupBoxV@@QAE@XZ
?SetRadio@CCstmCtrlRadio@@QAEXXZ
?SetBackColor@CCstmCtrlRadio@@QAEXK@Z
?SetState@CCstmCtrlCheckBox@@QAEXH@Z
?SetText@CCstmCtrlCheckBox@@QAEXABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?SetText@CCstmCtrlRadio@@QAEXABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?SetState@CCstmCtrlRadio@@QAEXH@Z
??1CCstmCtrlRadio@@UAE@XZ
??0CCstmCtrlRadio@@QAE@H@Z
?GetRuntimeClass@CCstmCtrlDialog@@UBEPAUCRuntimeClass@@XZ
?SetTextColor@CstmSkinButton@@QAEKK@Z
?SetbackColor@CCstmHLinkButton@@QAEXK@Z
?SetUnderline@CCstmHLinkButton@@QAEX_N@Z
?SetHoverTextColor@CCstmHLinkButton@@QAEXKH@Z
?SetCursor@CCstmHLinkButton@@QAEXPAUHICON__@@@Z
?SetSkin@CstmSkinButton@@QAEXIIIIIIFFF@Z
?SetupDialog@CCstmCtrlDialog@@QAEX_N@Z
?GetThisMessageMap@CCstmCtrlDialog@@KGPBUAFX_MSGMAP@@XZ
??1CCstmHLinkButton@@UAE@XZ
??0CCstmHLinkButton@@QAE@XZ
??1CstmSkinButton@@UAE@XZ
??0CstmSkinButton@@QAE@XZ
??1CCstmCtrlLabel@@UAE@XZ
??0CCstmCtrlLabel@@QAE@XZ
??1CCstmCtrlDialog@@UAE@XZ
??0CCstmCtrlDialog@@QAE@IPAVCWnd@@@Z
??BCHandCursor@@QBEPAUHICON__@@XZ
??1CHandCursor@@UAE@XZ
??0CHandCursor@@QAE@XZ
??0CCstmCtrlComboBox@@QAE@XZ
??1CCstmCtrlComboBox@@UAE@XZ
?GetThisMessageMap@CCstmCtrlComboBox@@KGPBUAFX_MSGMAP@@XZ
?PreSubclassWindow@CCstmCtrlComboBox@@MAEXXZ
?GetRuntimeClass@CCstmCtrlComboBox@@UBEPAUCRuntimeClass@@XZ
?Create@CCstmCtrlComboBox@@UAEHPB_W0KABUtagRECT@@PAVCWnd@@IPAUCCreateContext@@@Z
?PreCreateWindow@CCstmCtrlComboBox@@MAEHAAUtagCREATESTRUCTW@@@Z
?DrawItem@CCstmCtrlComboBox@@UAEXPAUtagDRAWITEMSTRUCT@@@Z
?getInstance@CUIGraphics@@SAPAV1@XZ
?UIGGetColor@CUIGraphics@@QAEKI@Z
??0CCstmCtrlCheckBox@@QAE@H@Z
??1CCstmCtrlCheckBox@@UAE@XZ
?SetBackColor@CCstmCtrlCheckBox@@QAEXK@Z
?GetMessageMap@CCstmCtrlCheckBox@@MBEPBUAFX_MSGMAP@@XZ
?PreSubclassWindow@CCstmCtrlCheckBox@@EAEXXZ
?PreTranslateMessage@CCstmCtrlCheckBox@@EAEHPAUtagMSG@@@Z
?DrawItem@CCstmCtrlCheckBox@@EAEXPAUtagDRAWITEMSTRUCT@@@Z
hpqss001
?DlgScanPreferencesSettings@CCUEDeviceSettings@@QAEKW4ScanPreferencesUIMode@@PAUHWND__@@PAH@Z
?GetDeviceInfo@_CAppData@@QAEPAVCDeviceInfo@@XZ
?GetSettingsSession@_CAppData@@QAEPAVCSettingsSession@@XZ
??0CAppData@@QAE@XZ
??1CAppData@@QAE@XZ
??CCAppData@@QAEPAV_CAppData@@XZ
?GetAutoStraightenImages@CTwainScanSettingsData@@QAEHXZ
?GetAutoRotateLandscapePages@CTwainScanSettingsData@@QAEHXZ
?GetAutoCropImages@CTwainScanSettingsData@@QAEHXZ
?GetAutoAdjustExposure@CTwainScanSettingsData@@QAEHXZ
?GetAutoAdjustColor@CTwainScanSettingsData@@QAEHXZ
?GetUseEnhancedColor@CTwainScanSettingsData@@QAEHXZ
?GetAutoAdjustBlkandWhite@CTwainScanSettingsData@@QAEHXZ
?GetRestoreFadedColor@CTwainScanSettingsData@@QAEHXZ
?GetApplyAdaptiveLighting@CTwainScanSettingsData@@QAEHXZ
?GetApplySharpen@CTwainScanSettingsData@@QAEHXZ
?GetRemoveDustnScratch@CTwainScanSettingsData@@QAEHXZ
?GetScanHigherBitDepth@CTwainScanSettingsData@@QAEHXZ
?GetUseHWDustnScratchRemoval@CTwainScanSettingsData@@QAEHXZ
?GetOptimizeForKodacrhromeSlides@CTwainScanSettingsData@@QAEHXZ
?GetScanDuplex@CTwainScanSettingsData@@QAEHXZ
?GetAutoRemoveBlankPages@CTwainScanSettingsData@@QAEHXZ
?GetResolution@CTwainScanSettingsData@@QAEHXZ
?GetAutoStraightenImages@CScanPreferencesPicData@@QAEHXZ
?GetAutoAdjustExposure@CScanPreferencesPicData@@QAEHXZ
?GetAutoAdjustColor@CScanPreferencesPicData@@QAEHXZ
?GetUseEnhancedColor@CScanPreferencesPicData@@QAEHXZ
?GetAutoAdjustBlkandWhite@CScanPreferencesPicData@@QAEHXZ
?GetPromptForAdditionalScan@CScanPreferencesPicData@@QAEHXZ
?GetAutoStraightenImages@CScanPreferencesDocData@@QAEHXZ
?GetAutoRotateLandscapePages@CScanPreferencesDocData@@QAEHXZ
??0CCUEDeviceSettings@@QAE@XZ
??1CCUEDeviceSettings@@QAE@XZ
??0CTwainScanSettingsData@@QAE@XZ
??1CTwainScanSettingsData@@QAE@XZ
?GetScanPreferencesTWAINSettings@CCUEDeviceSettings@@QAEKPAVCTwainScanSettingsData@@@Z
??0CDeviceSettingsData@@QAE@XZ
?GetDevicePreferencesSettings@CCUEDeviceSettings@@QAEKPAVCDeviceSettingsData@@@Z
?CheckForInstantLampWarmUp@CDeviceInfo@@QAE_NXZ
??0CHardwareSettingsData@@QAE@XZ
??1CHardwareSettingsData@@QAE@XZ
?GetScannerHWSettings@CCUEDeviceSettings@@QAEKPAVCHardwareSettingsData@@@Z
??0CScanPreferencesPicData@@QAE@XZ
??1CScanPreferencesPicData@@QAE@XZ
?GetScanPreferencesPicSettings@CCUEDeviceSettings@@QAEKPAVCScanPreferencesPicData@@@Z
??0CScanPreferencesDocData@@QAE@XZ
?GetScanPreferencesDocSettings@CCUEDeviceSettings@@QAEKPAVCScanPreferencesDocData@@@Z
??0CScanPreferencesTMAData@@QAE@XZ
??1CScanPreferencesTMAData@@QAE@XZ
?GetScanPreferencesTMASettings@CCUEDeviceSettings@@QAEKPAVCScanPreferencesTMAData@@@Z
?DisableDestcomp@_CAppData@@SAXXZ
?ApplyDeviceString@_CAppData@@SAXV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?SetCurrentDevicePreferencesSettings@CSettingsSession@@QAEHPAVCDeviceSettingsData@@@Z
??1CScanPreferencesDocData@@QAE@XZ
??1CDeviceSettingsData@@QAE@XZ
?SetShowNetworkScanDlg@CDeviceSettingsData@@QAEXH@Z
?GetShowNetworkScanDlg@CDeviceSettingsData@@QAEHXZ
?GetInstantLampWarmUp@CDeviceSettingsData@@QAEHXZ
?GetExtendedLampSupported@CHardwareSettingsData@@QAEHXZ
?GetPromptForAdditionalScan@CScanPreferencesTMAData@@QAEHXZ
?GetAutoAdjustBlkandWhite@CScanPreferencesTMAData@@QAEHXZ
?GetUseEnhancedColor@CScanPreferencesTMAData@@QAEHXZ
?GetAutoAdjustColorForNegatives@CScanPreferencesTMAData@@QAEHXZ
?GetAutoAdjustColorForPositives@CScanPreferencesTMAData@@QAEHXZ
?GetAutoAdjustExposure@CScanPreferencesTMAData@@QAEHXZ
?GetPromptForAdditionalScan@CScanPreferencesDocData@@QAEHXZ
?GetAutoAdjustExposure@CScanPreferencesDocData@@QAEHXZ
?GetAutoAdjustBlkandWhite@CScanPreferencesDocData@@QAEHXZ
mfc90u
ord1188
ord1204
ord4905
ord3993
ord3959
ord3966
ord499
ord736
ord404
ord663
ord3729
ord1119
ord1603
ord3033
ord3333
ord1110
ord3819
ord4007
ord415
ord670
ord2656
ord4720
ord1222
ord5615
ord4670
ord4127
ord6829
ord3421
ord980
ord6575
ord4867
ord5388
ord4685
ord3225
ord6375
ord4697
ord1380
ord2369
ord5655
ord5598
ord4344
ord1681
ord4429
ord2650
ord2651
ord3287
ord5803
ord6381
ord3230
ord6379
ord3229
ord5338
ord3232
ord4553
ord4730
ord5450
ord5447
ord2860
ord2079
ord2445
ord5354
ord4985
ord3953
ord1046
ord2901
ord2593
ord261
ord2694
ord4890
ord4893
ord4043
ord3949
ord3217
ord4211
ord1186
ord1098
ord6482
ord570
ord996
ord341
ord617
ord5567
ord6777
ord5675
ord1114
ord2447
ord5831
ord5674
ord3115
ord6018
ord5663
ord5680
ord4996
ord4347
ord5676
ord2087
ord4213
ord5830
ord6741
ord5548
ord5778
ord4179
ord6035
ord2206
ord2251
ord4747
ord6803
ord4173
ord6801
ord4423
ord4448
ord6013
ord5979
ord6659
ord935
ord3803
ord4004
ord388
ord650
ord5137
ord1383
ord2372
ord1214
ord3035
ord3340
ord4684
ord4906
ord6553
ord6439
ord4641
ord2090
ord5171
ord5285
ord4677
ord5945
ord3009
ord5861
ord1462
ord6044
ord5606
ord2239
ord2204
ord6762
ord2867
ord2859
ord4994
ord5867
ord2695
ord1313
ord1314
ord3818
ord4006
ord413
ord669
ord1779
ord1708
ord3627
ord750
ord1255
ord5624
ord5016
ord3396
ord5973
ord4268
ord4719
ord5371
ord1220
ord5654
ord2431
ord4693
ord1680
ord1440
ord3681
ord2646
ord2645
ord2647
ord2644
ord2643
ord5601
ord6410
ord3354
ord4378
ord5293
ord5296
ord4800
ord4805
ord4802
ord4820
ord4823
ord4807
ord5209
ord4596
ord4589
ord5418
ord5214
ord4622
ord5224
ord4865
ord4866
ord4109
ord589
ord794
ord3670
ord3285
ord6727
ord582
ord784
ord2600
ord1364
ord2154
ord571
ord4527
ord1064
ord3500
ord3841
ord436
ord686
ord587
ord792
ord6515
ord1088
ord3736
ord1063
ord2337
ord6172
ord5897
ord553
ord757
ord1868
ord2263
ord6169
ord4058
ord6822
ord615
ord3496
ord2277
ord1248
ord938
ord5939
ord6699
ord6693
ord3183
ord2458
ord1356
ord2145
ord3191
ord1542
ord1243
ord2523
ord608
ord324
ord702
ord452
ord4530
ord1935
ord1405
ord5011
ord2224
ord1709
ord5662
ord4700
ord1640
ord4692
ord4674
ord2366
ord2653
ord4027
ord1018
ord756
ord547
ord2536
ord2015
ord4494
ord6687
ord293
ord5510
ord5509
ord5511
ord5508
ord5231
ord5047
ord5277
ord4608
ord4632
ord5152
ord5661
ord5168
ord1182
ord814
ord5301
ord1937
ord1918
ord2057
ord692
ord3562
ord4657
ord1695
ord2279
ord4511
ord1602
ord2105
ord6791
ord1488
ord753
ord539
ord3907
ord772
ord3648
ord1715
ord1782
ord1047
ord6635
ord2360
ord586
ord1144
ord3537
ord3515
ord4774
ord2364
ord6604
ord2274
ord611
ord4405
ord1607
ord285
ord3220
ord6630
ord5632
ord4631
ord5167
ord5324
ord2208
ord1810
ord1809
ord1675
ord3353
ord6408
ord1492
ord5653
ord4682
ord1665
ord4652
ord3489
ord6187
ord4741
ord280
ord6760
ord811
ord5008
ord4000
ord1934
ord1938
ord639
ord374
ord3794
ord266
ord265
ord1250
ord1254
ord614
ord338
ord3773
ord287
ord291
ord1276
ord1219
ord1070
ord3868
ord2571
ord2470
ord4398
ord3741
ord2592
ord6476
ord899
ord4324
ord6164
ord2478
ord6807
ord6577
ord1108
ord6311
ord4516
ord1111
ord3807
ord654
ord3528
ord4442
ord3185
ord813
ord286
ord1599
ord2820
ord6579
ord4128
ord4131
ord2103
ord1601
ord4510
ord1667
ord4654
ord6636
ord6101
ord2758
ord6091
ord1353
ord636
ord367
ord6065
ord1486
ord2904
ord4543
ord1137
ord613
ord337
ord3486
ord799
ord778
ord3654
ord3286
ord4660
ord1719
ord2283
ord3355
ord6411
ord1754
ord1751
ord4345
ord1493
ord4664
ord5602
ord2074
ord5512
ord6800
ord4603
ord5664
ord3743
ord5154
ord4702
ord1728
ord6466
ord5685
ord5683
ord960
ord965
ord969
ord967
ord971
ord2615
ord2635
ord2619
ord2625
ord2623
ord2621
ord2638
ord2633
ord5767
ord6811
ord1688
ord1707
ord2617
ord2640
ord2628
ord2610
ord2612
ord2630
ord2375
ord2368
ord1641
ord6802
ord4174
ord6804
ord3682
ord5404
ord6376
ord3226
ord1442
ord5625
ord2139
ord1792
ord1791
ord1727
ord5650
ord2771
ord2983
ord3112
ord4728
ord2966
ord3140
ord2774
ord2893
ord2764
ord4080
ord4081
ord4071
ord2891
ord4348
ord4910
ord4681
ord3674
msvcr90
memcmp
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
memcpy
_invalid_parameter_noinfo
memmove_s
?what@exception@std@@UBEPBDXZ
swscanf_s
free
malloc
wcslen
_wremove
_wtoi
wcstod
pow
sqrt
_purecall
fabs
memset
??0exception@std@@QAE@ABV01@@Z
_wcmdln
_CxxThrowException
_wfopen_s
__CxxFrameHandler3
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_controlfp_s
_invoke_watson
_except_handler4_common
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
abs
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
_amsg_exit
modf
fmod
wcstok_s
wcscmp
wcscat_s
_waccess
_wcsicmp
_localtime64_s
_time64
__wargv
__argc
_wcsdup
tan
cos
sin
_wstrtime_s
_wstrdate_s
wcscpy_s
_wsplitpath_s
_vsnwprintf_s
fclose
fwprintf
kernel32
GetVolumeInformationW
CreateDirectoryW
GetFullPathNameW
lstrcmpiW
lstrcatW
GetModuleFileNameW
lstrlenW
InterlockedDecrement
GetCurrentProcess
GetVersionExW
GetCurrentThreadId
MultiByteToWideChar
GetProcessHeap
GetModuleHandleW
GetVersionExA
ReleaseSemaphore
GetCurrentProcessId
WaitForSingleObject
CreateSemaphoreW
GetTempFileNameW
GetTempPathW
SetLastError
CloseHandle
UnmapViewOfFile
OutputDebugStringW
GetDiskFreeSpaceExW
GetProcAddress
FreeLibrary
LoadLibraryW
GetTickCount
GlobalUnlock
GlobalLock
GetNumberFormatW
GetLocaleInfoW
HeapFree
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetStartupInfoW
InterlockedCompareExchange
InterlockedExchange
MulDiv
ResumeThread
DuplicateHandle
CreateEventW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetEvent
Sleep
GetLastError
DeleteFileW
RemoveDirectoryW
FindClose
FindNextFileW
FindFirstFileW
GetPrivateProfileIntW
CopyFileW
CreateFileW
user32
SystemParametersInfoA
IsRectEmpty
InflateRect
CopyRect
OffsetRect
GetClientRect
SetCapture
InvalidateRect
UpdateWindow
GetCapture
ReleaseCapture
GetSysColor
EnableWindow
LoadImageW
GetParent
GetWindowRect
SetRect
SetCursor
SendMessageW
GetWindow
IsWindow
GetFocus
IsCharAlphaW
IsCharAlphaNumericW
GetKeyState
LoadBitmapW
EqualRect
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
MessageBeep
DrawEdge
GetMessageW
IsWindowUnicode
MsgWaitForMultipleObjects
GetSysColorBrush
FrameRect
DrawFocusRect
AdjustWindowRectEx
GetClassInfoW
UnregisterClassW
GetCursorPos
ScreenToClient
DispatchMessageA
FillRect
SubtractRect
DefWindowProcW
FindWindowW
DispatchMessageW
TranslateMessage
DestroyWindow
TranslateAcceleratorW
LoadAcceleratorsW
SetParent
GetMessageA
IsZoomed
BringWindowToTop
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
GetDC
ReleaseDC
IntersectRect
SetTimer
KillTimer
GetDesktopWindow
SetWindowLongW
GetWindowLongW
PtInRect
IsWindowVisible
RedrawWindow
LoadCursorW
PostMessageW
PeekMessageW
SetRectEmpty
GetSystemMetrics
IsIconic
LoadIconW
SystemParametersInfoW
gdi32
CreateCompatibleBitmap
SelectObject
CreateDIBSection
DeleteObject
GdiFlush
CreateFontW
GetTextExtentPoint32W
CreateEllipticRgnIndirect
CreateFontIndirectW
CreateSolidBrush
DeleteDC
CreateCompatibleDC
GetStockObject
Ellipse
BitBlt
CreatePalette
CreateBitmap
CreatePatternBrush
SetBrushOrgEx
SetBkColor
SetTextColor
UnrealizeObject
ExtTextOutW
GetObjectW
CreatePolygonRgn
GetDeviceCaps
PatBlt
CreatePen
FillRgn
PtInRegion
advapi32
SetSecurityDescriptorDacl
RegCloseKey
RegCreateKeyW
RegOpenKeyExW
RegQueryValueExW
InitializeSecurityDescriptor
RegCreateKeyExW
shell32
ShellExecuteW
SHGetMalloc
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetPathFromIDListW
comctl32
ImageList_Draw
ImageList_Add
ImageList_Remove
ImageList_Replace
InitCommonControlsEx
ole32
CoInitialize
CoTaskMemFree
CoCreateInstance
StringFromCLSID
oleaut32
VariantClear
VariantInit
VarBstrCat
SysAllocString
SysStringLen
SysStringByteLen
SysAllocStringByteLen
SysFreeString
msvcp90
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
Sections
.text Size: 512KB - Virtual size: 512KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 230KB - Virtual size: 229KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 5KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE