Static task
static1
Behavioral task
behavioral1
Sample
b96189db3968989aae45bb80b7c61d699e055b15b7aac1729f58b1fb99ea604d.exe
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral2
Sample
b96189db3968989aae45bb80b7c61d699e055b15b7aac1729f58b1fb99ea604d.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
General
-
Target
f4a54b13328b3387693e29e654641d8b.bin
-
Size
315KB
-
MD5
d75f76eabe75602549113cf024dcf1e8
-
SHA1
4a28aa11c18c0e2b4b6c6d9546c282010c48e587
-
SHA256
2044d6a83501dfad6698cfa08f636af1d84a1f3adccf15d7c080fc2c76ae922c
-
SHA512
39b44a6e070553fbe1c4968ab49294201bfbc1a8f12b5b8df537d492d7292c216ab8b399eeaecf1a69476354162acb574310c786d4d484c75c5b5322c830f69c
-
SSDEEP
6144:CHP8TzjdvQnV1vktxCXt9K8ljtHNHJyUR07Jed+/4RRTqcvX5dO/R:Cv+dvQnrczCXt9KOjPHJ07U8gRASLOp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/b96189db3968989aae45bb80b7c61d699e055b15b7aac1729f58b1fb99ea604d.exe
Files
-
f4a54b13328b3387693e29e654641d8b.bin.zip
Password: infected
-
b96189db3968989aae45bb80b7c61d699e055b15b7aac1729f58b1fb99ea604d.exe.exe windows x86
Password: infected
3f5d6869cec42a1938794bbff17a146b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
AllocConsole
CreateFileW
CloseHandle
GetFullPathNameW
GetFullPathNameA
CreateFileA
GetFileSize
SetFilePointer
MapViewOfFile
UnmapViewOfFile
SetEndOfFile
FreeLibrary
QueryPerformanceCounter
InterlockedCompareExchange
UnlockFile
LockFile
GetTickCount
UnlockFileEx
GetSystemTimeAsFileTime
FormatMessageA
WriteFile
InitializeCriticalSection
WideCharToMultiByte
LoadLibraryW
Sleep
FormatMessageW
ExitProcess
LeaveCriticalSection
GetFileAttributesA
GetFileAttributesW
ReadFile
MultiByteToWideChar
FlushFileBuffers
GetTempPathW
GetProcAddress
LockFileEx
EnterCriticalSection
GetDiskFreeSpaceW
LoadLibraryA
CreateFileMappingW
GetDiskFreeSpaceA
GetSystemInfo
GetFileAttributesExW
DeleteCriticalSection
DeleteFileW
GetCurrentProcessId
GetTempPathA
LocalFree
GetSystemTime
AreFileApisANSI
DeleteFileA
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
GetLastError
GetModuleFileNameW
SetErrorMode
GetVersionExW
GetCommandLineW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
InterlockedExchange
IsProcessorFeaturePresent
user32
GetMessageW
advapi32
RegOpenKeyExW
RegQueryValueExW
GetUserNameW
RegCloseKey
shell32
SHGetFolderPathW
CommandLineToArgvW
pocofoundation
??_DFileOutputStream@Poco@@QAEXXZ
??_DFileInputStream@Poco@@QAEXXZ
?open@Channel@Poco@@UAEXXZ
?close@Channel@Poco@@UAEXXZ
?setProperty@Channel@Poco@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?getProperty@Channel@Poco@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV34@@Z
?toUTF8@UnicodeConverter@Poco@@SAXPB_WAAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?copyToString@StreamCopier@Poco@@SA_JAAV?$basic_istream@DU?$char_traits@D@std@@@std@@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@4@I@Z
??0File@Poco@@QAE@ABV01@@Z
??0File@Poco@@QAE@ABVPath@1@@Z
??0File@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0File@Poco@@QAE@XZ
??1File@Poco@@UAE@XZ
??4File@Poco@@QAEAAV01@ABV01@@Z
?exists@File@Poco@@QBE_NXZ
??0NullChannel@Poco@@QAE@XZ
??1NullChannel@Poco@@UAE@XZ
?log@NullChannel@Poco@@UAEXABVMessage@2@@Z
?setProperty@NullChannel@Poco@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?create@Logger@Poco@@SAAAV12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PAVChannel@2@H@Z
??0FileInputStream@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
??0PatternFormatter@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1PatternFormatter@Poco@@UAE@XZ
?format@PatternFormatter@Poco@@UAEXABVMessage@2@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?setProperty@PatternFormatter@Poco@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?getProperty@PatternFormatter@Poco@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV34@@Z
??0FormattingChannel@Poco@@QAE@PAVFormatter@1@@Z
?setChannel@FormattingChannel@Poco@@QAEXPAVChannel@2@@Z
?log@FormattingChannel@Poco@@UAEXABVMessage@2@@Z
?setProperty@FormattingChannel@Poco@@UAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
??8File@Poco@@QBE_NABV01@@Z
?close@FormattingChannel@Poco@@UAEXXZ
??1FormattingChannel@Poco@@MAE@XZ
??0ConsoleChannel@Poco@@QAE@XZ
?log@ConsoleChannel@Poco@@UAEXABVMessage@2@@Z
??1ConsoleChannel@Poco@@MAE@XZ
??0Path@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1Path@Poco@@QAE@XZ
?toString@Path@Poco@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?makeDirectory@Path@Poco@@QAEAAV12@XZ
?setFileName@Path@Poco@@QAEAAV12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?parent@Path@Poco@@QBE?AV12@XZ
??0Timestamp@Poco@@QAE@XZ
??1Timestamp@Poco@@QAE@XZ
??0FileOutputStream@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?close@FileIOS@Poco@@QAEXXZ
?lock@Mutex@Poco@@QAEXXZ
?unlock@Mutex@Poco@@QAEXXZ
?isRunning@Thread@Poco@@QBE_NXZ
??0Runnable@Poco@@QAE@XZ
??1Runnable@Poco@@UAE@XZ
??0Mutex@Poco@@QAE@XZ
??1Mutex@Poco@@QAE@XZ
?start@Thread@Poco@@QAEXAAVRunnable@2@@Z
?join@Thread@Poco@@QAEXXZ
??_DMemoryInputStream@Poco@@QAEXXZ
??0LogicException@Poco@@QAE@ABV01@@Z
??0Exception@Poco@@QAE@ABV01@@Z
??0MemoryInputStream@Poco@@QAE@PBD_J@Z
??0NullPointerException@Poco@@QAE@ABV01@@Z
?tryParseFloat@NumberParser@Poco@@SA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAN@Z
?fromEpochTime@Timestamp@Poco@@SA?AV12@_J@Z
??0Timestamp@Poco@@QAE@ABV01@@Z
?displayText@Exception@Poco@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?pushDirectory@Path@Poco@@QAEAAV12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?makeFile@Path@Poco@@QAEAAV12@XZ
?information@Logger@Poco@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?get@Logger@Poco@@SAAAV12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?format@DateTimeFormatter@Poco@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABVTimestamp@2@ABV34@H@Z
??1NamedMutex@Poco@@QAE@XZ
??0NamedMutex@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?getSize@File@Poco@@QBE_KXZ
?tryLock@NamedMutex@Poco@@QAE_NXZ
?what@Exception@Poco@@UBEPBDXZ
??1Exception@Poco@@UAE@XZ
??0Exception@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
??0Exception@Poco@@IAE@H@Z
??1Thread@Poco@@QAE@XZ
??0Thread@Poco@@QAE@XZ
?current@Thread@Poco@@SAPAV12@XZ
?unlock@NamedMutex@Poco@@QAEXXZ
??1Event@Poco@@QAE@XZ
??0Event@Poco@@QAE@_N@Z
?dequeue@Condition@Poco@@IAEXAAVEvent@2@@Z
?enqueue@Condition@Poco@@IAEXAAVEvent@2@@Z
?broadcast@Condition@Poco@@QAEXXZ
??1Condition@Poco@@QAE@XZ
??0Condition@Poco@@QAE@XZ
?tryWait@Event@Poco@@QAE_NJ@Z
?unlock@FastMutex@Poco@@QAEXXZ
?lock@FastMutex@Poco@@QAEXXZ
?tryParse64@NumberParser@Poco@@SA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AA_J@Z
?update@Timestamp@Poco@@QAEXXZ
??4Timestamp@Poco@@QAEAAV01@ABV01@@Z
??0Timestamp@Poco@@QAE@_J@Z
?list@File@Poco@@QBEXAAV?$vector@VFile@Poco@@V?$allocator@VFile@Poco@@@std@@@std@@@Z
?isDirectory@File@Poco@@QBE_NXZ
?isFile@File@Poco@@QBE_NXZ
?release@RefCountedObject@Poco@@QBEXXZ
?digestToHex@DigestEngine@Poco@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV?$vector@EV?$allocator@E@std@@@4@@Z
??1NullPointerException@Poco@@UAE@XZ
?tryParse@NumberParser@Poco@@SA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAH@Z
?temp@Path@Poco@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
??0DigestOutputStream@Poco@@QAE@AAVDigestEngine@1@@Z
?digest@MD5Engine@Poco@@UAEABV?$vector@EV?$allocator@E@std@@@std@@XZ
??1MD5Engine@Poco@@UAE@XZ
??0MD5Engine@Poco@@QAE@XZ
?remove@File@Poco@@QAEX_N@Z
?copyTo@File@Poco@@QBEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??4File@Poco@@QAEAAV01@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1LocalDateTime@Poco@@QAE@XZ
??0LocalDateTime@Poco@@QAE@XZ
??1Random@Poco@@QAE@XZ
?next@Random@Poco@@QAEII@Z
?format@DateTimeFormatter@Poco@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABVLocalDateTime@2@ABV34@@Z
??_DDigestOutputStream@Poco@@QAEXXZ
?open@FormattingChannel@Poco@@UAEXXZ
??0Random@Poco@@QAE@H@Z
??0NullPointerException@Poco@@QAE@H@Z
msvcp100
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??Bid@locale@std@@QAEIXZ
?_Incref@facet@locale@std@@QAEXXZ
?_Decref@facet@locale@std@@QAEPAV123@XZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?exceptions@ios_base@std@@QAEXH@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@_JHH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@V32@H@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_BADOFF@std@@3_JB
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
pocoutil
?setRaw@MapConfiguration@Util@Poco@@MAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?removeRaw@MapConfiguration@Util@Poco@@MAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0PropertyFileConfiguration@Util@Poco@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?save@PropertyFileConfiguration@Util@Poco@@QBEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1PropertyFileConfiguration@Util@Poco@@MAE@XZ
?getString@AbstractConfiguration@Util@Poco@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV45@@Z
?setString@AbstractConfiguration@Util@Poco@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?getRaw@MapConfiguration@Util@Poco@@MBE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAV45@@Z
?enumerate@MapConfiguration@Util@Poco@@MBEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@5@@Z
msvcr100
_controlfp_s
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
?terminate@@YAXXZ
_onexit
_lock
__dllonexit
_unlock
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
__set_app_type
_fmode
_commode
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
__CxxFrameHandler3
puts
realloc
_localtime64_s
malloc
free
strncmp
fclose
fwrite
memcpy_s
_lock_file
setvbuf
fsetpos
fgetc
fflush
_fseeki64
fgetpos
ungetc
_unlock_file
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
fputc
??_V@YAXPAX@Z
__RTtypeid
freopen_s
__iob_func
getchar
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
memmove
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
_lseek
_read
_open
_close
memcpy
memset
_CxxThrowException
_CIpow
_invoke_watson
pocoxml
??0InputSource@XML@Poco@@QAE@AAV?$basic_istream@DU?$char_traits@D@std@@@std@@@Z
?release@DOMObject@XML@Poco@@QBEXXZ
?documentElement@Document@XML@Poco@@QBEPAVElement@23@XZ
??0DOMParser@XML@Poco@@QAE@PAVNamePool@12@@Z
??1DOMParser@XML@Poco@@QAE@XZ
?parse@DOMParser@XML@Poco@@QAEPAVDocument@23@PAVInputSource@23@@Z
?getAttribute@Element@XML@Poco@@QBEABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV45@@Z
?getElementsByTagName@Element@XML@Poco@@QBEPAVNodeList@23@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1InputSource@XML@Poco@@QAE@XZ
Sections
.text Size: 496KB - Virtual size: 495KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 71KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 6KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.eh_fram Size: 512B - Virtual size: 280B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 436B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ