Static task
static1
Behavioral task
behavioral1
Sample
vmsgateway-bak.exe
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral2
Sample
vmsgateway-bak.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
General
-
Target
vmsgateway-bak.exe
-
Size
237KB
-
MD5
b855a7ec4bab7b8ae3c7335aec2f861c
-
SHA1
f57020d747340422b39ba5a677eca3f044f964f6
-
SHA256
9eae56b0592e811beb839b855cac8dc5c73b14d0fee06dfc35fbb043b673b01c
-
SHA512
d6ba1e488fb35932934b57c319299e1e59e1b18b9851a5dea137cf53339a599bd8a30089b8221c64f932b8697f0d29afa104561ebb55907b9f9c79c8d1deedc8
-
SSDEEP
6144:bhm1/hTO2ZXS5bLYVK9yTD6o5yHolrFx2NykOoqORslO6+SL:bhmjTO2ZXS5bLCWyf6o5+8rFx2NcuRsP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource vmsgateway-bak.exe
Files
-
vmsgateway-bak.exe.exe windows x86
9228288a07cf73e3e9a9dd67c42a0754
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
nrcapc7
C7_SendFrame
C7_StartTalk
C7_OA_SetDecoder
C7_ForkPUList
C7_GetResourceName
C7_GetResourceType
C7_Terminate
C7_GetResourceIndex
C7_OpenByGateway
C7_Close
C7_ForkPUResource
C7_Initialize
C7_GetResourcePUID
C7_IV_SetEncoder
C7_StopStream
C7_IA_SetEncoder
C7_ReceiveFrame
C7_StartStream
ws2_32
ioctlsocket
inet_ntoa
WSAStartup
ntohl
htonl
select
htons
ntohs
shutdown
setsockopt
recv
bind
socket
__WSAFDIsSet
closesocket
send
listen
accept
ice35
??0Object@Ice@@IAE@XZ
?__usesGC@Object@Ice@@UAE_NXZ
?__addObject@Object@Ice@@UAEXAAV?$map@PAVGCShared@IceInternal@@HU?$less@PAVGCShared@IceInternal@@@std@@V?$allocator@U?$pair@QAVGCShared@IceInternal@@H@std@@@4@@std@@@Z
??1Object@Ice@@MAE@XZ
??_7Object@Ice@@6BShared@IceUtil@@@
??_7Object@Ice@@6B01@@
?handleInterrupt@Service@Ice@@UAEXH@Z
??MObject@Ice@@UBE_NABV01@@Z
?ice_getHash@Object@Ice@@UBEHXZ
?ice_ping@Object@Ice@@UBEXABUCurrent@2@@Z
?ice_operationAttributes@Object@Ice@@UBEHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?ice_clone@Object@Ice@@UBE?AV?$Handle@VObject@Ice@@@IceInternal@@XZ
?ice_preMarshal@Object@Ice@@UAEXXZ
?ice_postUnmarshal@Object@Ice@@UAEXXZ
?ice_dispatch@Object@Ice@@UAE?AW4DispatchStatus@2@AAVRequest@2@ABV?$Handle@VDispatchInterceptorAsyncCallback@Ice@@@IceUtil@@@Z
?__collocDispatch@Object@Ice@@UAE?AW4DispatchStatus@2@AAVDirect@IceInternal@@@Z
?__write@Object@Ice@@UBEXABV?$Handle@VOutputStream@Ice@@@IceInternal@@@Z
?__write@Object@Ice@@UBEXPAVBasicStream@IceInternal@@@Z
?__read@Object@Ice@@UAEXABV?$Handle@VInputStream@Ice@@@IceInternal@@@Z
?__read@Object@Ice@@UAEXPAVBasicStream@IceInternal@@@Z
?__writeImpl@Object@Ice@@MBEXABV?$Handle@VOutputStream@Ice@@@IceInternal@@@Z
?__readImpl@Object@Ice@@MAEXABV?$Handle@VInputStream@Ice@@@IceInternal@@@Z
??0Service@Ice@@QAE@XZ
??1Service@Ice@@UAE@XZ
?shutdown@Service@Ice@@UAE_NXZ
?upCast@Ice@@YAPAVShared@IceUtil@@PAVLocalObject@1@@Z
?upCast@Ice@@YAPAVLocalObject@1@PAVObjectAdapter@1@@Z
?upCast@Ice@@YAPAVShared@IceUtil@@PAVAsyncResult@1@@Z
?upCast@Ice@@YAPAVLocalObject@1@PAVConnection@1@@Z
??1OperationNotExistException@Ice@@UAE@XZ
??0OperationNotExistException@Ice@@QAE@PBDHABUIdentity@1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2@Z
?__checkMode@Object@Ice@@KAXW4OperationMode@2@0@Z
?waitForShutdown@Service@Ice@@MAEXXZ
?stop@Service@Ice@@MAE_NXZ
?initializeCommunicator@Service@Ice@@MAE?AV?$Handle@VCommunicator@Ice@@@IceInternal@@AAHQAPADABUInitializationData@2@@Z
?syserror@Service@Ice@@MAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?error@Service@Ice@@MAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?warning@Service@Ice@@MAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?trace@Service@Ice@@MAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?print@Service@Ice@@MAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?upCast@Ice@@YAPAVLocalObject@1@PAVCommunicator@1@@Z
?upCast@Ice@@YAPAVObject@1@PAV21@@Z
?createProperties@Ice@@YA?AV?$Handle@VProperties@Ice@@@IceInternal@@AAHQAPADABV23@ABV?$Handle@V?$BasicStringConverter@D@Ice@@@IceUtil@@@Z
?main@Service@Ice@@QAEHAAHQAPADABUInitializationData@2@@Z
?upCast@Instrumentation@Ice@@YAPAVLocalObject@2@PAVCommunicatorObserver@12@@Z
?upCast@Ice@@YAPAVLocalObject@1@PAVStats@1@@Z
?upCast@Ice@@YAPAVLocalObject@1@PAVLogger@1@@Z
?upCast@Ice@@YAPAVLocalObject@1@PAVProperties@1@@Z
??0AMICallbackBase@Ice@@QAE@XZ
??0ConnectionInfo@Ice@@QAE@XZ
??_DConnectionInfo@Ice@@IAEXXZ
??0AdapterNotFoundException@Ice@@QAE@XZ
??0UnknownMetricsView@IceMX@@QAE@XZ
??0Metrics@IceMX@@QAE@XZ
??_DMetrics@IceMX@@IAEXXZ
??0FactoryTableInit@IceInternal@@QAE@XZ
??1FactoryTableInit@IceInternal@@QAE@XZ
?interrupt@Service@Ice@@UAEXXZ
?communicator@Service@Ice@@QBE?AV?$Handle@VCommunicator@Ice@@@IceInternal@@XZ
??1UnknownMetricsView@IceMX@@UAE@XZ
??1AdapterNotFoundException@Ice@@UAE@XZ
?startWriteSlice@BasicStream@IceInternal@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H_N@Z
?endWriteSlice@BasicStream@IceInternal@@QAEXXZ
?startReadSlice@BasicStream@IceInternal@@QAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?endReadSlice@BasicStream@IceInternal@@QAEXXZ
?writeSize@BasicStream@IceInternal@@QAEXH@Z
?write@BasicStream@IceInternal@@QAEX_N@Z
?read@BasicStream@IceInternal@@QAEXAA_N@Z
?write@BasicStream@IceInternal@@QAEXH@Z
?read@BasicStream@IceInternal@@QAEXAAH@Z
?write@BasicStream@IceInternal@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?read@BasicStream@IceInternal@@QAEXAAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?__startReadParams@AsyncResult@Ice@@QAEPAVBasicStream@IceInternal@@XZ
?__endReadParams@AsyncResult@Ice@@QAEXXZ
?__startWriteParams@OutgoingAsync@IceInternal@@QAEPAVBasicStream@2@W4FormatType@Ice@@@Z
?__endWriteParams@OutgoingAsync@IceInternal@@QAEXXZ
?checkCallback@CallbackBase@IceInternal@@QAEX_N0@Z
??0CallbackBase@IceInternal@@QAE@XZ
??1CallbackBase@IceInternal@@UAE@XZ
?startReadParams@Outgoing@IceInternal@@QAEPAVBasicStream@2@XZ
?endReadParams@Outgoing@IceInternal@@QAEXXZ
?startWriteParams@Outgoing@IceInternal@@QAEPAVBasicStream@2@W4FormatType@Ice@@@Z
?endWriteParams@Outgoing@IceInternal@@QAEXXZ
?startReadParams@Incoming@IceInternal@@QAEPAVBasicStream@2@XZ
?endReadParams@Incoming@IceInternal@@QBEXXZ
?readEmptyParams@Incoming@IceInternal@@QAEXXZ
??0Object@Ice@IceProxy@@QAE@XZ
??1Object@Ice@IceProxy@@UAE@XZ
??_DOutgoingAsync@IceInternal@@QAEXXZ
??0UnknownUserException@Ice@@QAE@ABV01@@Z
??0UnknownException@Ice@@QAE@ABV01@@Z
??0LocalException@Ice@@QAE@ABV01@@Z
??0Object@Ice@IceDelegate@@QAE@XZ
??1Object@Ice@IceDelegate@@UAE@XZ
??0Object@Ice@IceDelegateM@@QAE@XZ
??0Object@Ice@IceDelegateD@@QAE@XZ
??1Object@Ice@IceDelegateD@@UAE@XZ
??1LocalExceptionWrapper@IceInternal@@QAE@XZ
??1Direct@IceInternal@@UAE@XZ
??0OperationNotExistException@Ice@@QAE@ABV01@@Z
??0RequestFailedException@Ice@@QAE@ABV01@@Z
?failed@?$ObserverHelperT@VInvocationObserver@Instrumentation@Ice@@@IceInternal@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?read@?$StreamReader@UIdentity@Ice@@VBasicStream@IceInternal@@@Ice@@SAXPAVBasicStream@IceInternal@@AAUIdentity@2@@Z
??0LocalExceptionWrapper@IceInternal@@QAE@ABV01@@Z
??0LocalExceptionWrapper@IceInternal@@QAE@ABVLocalException@Ice@@_N@Z
?throwWrapper@LocalExceptionWrapper@IceInternal@@SAXABVexception@std@@@Z
??0Outgoing@IceInternal@@QAE@PAVRequestHandler@1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4OperationMode@Ice@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@4@AAVInvocationObserver@1@@Z
??1Outgoing@IceInternal@@UAE@XZ
?invoke@Outgoing@IceInternal@@QAE_NXZ
?abort@Outgoing@IceInternal@@QAEXABVLocalException@Ice@@@Z
?throwUserException@Outgoing@IceInternal@@QAEXXZ
??0OutgoingAsync@IceInternal@@QAE@ABV?$ProxyHandle@VObject@Ice@IceProxy@@@1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV?$Handle@VCallbackBase@IceInternal@@@IceUtil@@ABV?$Handle@VLocalObject@Ice@@@1@@Z
?__prepare@OutgoingAsync@IceInternal@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4OperationMode@Ice@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@4@@Z
?__send@OutgoingAsync@IceInternal@@QAE_N_N@Z
??0Direct@IceInternal@@QAE@ABUCurrent@Ice@@@Z
?destroy@Direct@IceInternal@@QAEXXZ
?getServant@Direct@IceInternal@@QAEABV?$Handle@VObject@Ice@@@2@XZ
?isCollocated@Direct@IceInternal@@UAE_NXZ
?getCurrent@Direct@IceInternal@@UAEABUCurrent@Ice@@XZ
?upCast@IceInternal@@YAPAVShared@IceUtil@@PAVOutgoingAsync@1@@Z
?write@BasicStream@IceInternal@@QAEXPBE0@Z
?__startWriteParams@IncomingBase@IceInternal@@QAEPAVBasicStream@2@W4FormatType@Ice@@@Z
?__endWriteParams@IncomingBase@IceInternal@@QAEX_N@Z
?__writeEmptyParams@IncomingBase@IceInternal@@QAEXXZ
?__copyFrom@Object@Ice@IceProxy@@QAEXABV?$ProxyHandle@VObject@Ice@IceProxy@@@IceInternal@@@Z
?__checkTwowayOnly@Object@Ice@IceProxy@@QBEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?__checkAsyncTwowayOnly@Object@Ice@IceProxy@@QBEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?ice_isA@Object@Ice@IceDelegateD@@UAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_ping@Object@Ice@IceDelegateD@@UAEXPBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@AAVInvocationObserver@IceInternal@@@Z
?ice_ids@Object@Ice@IceDelegateD@@UAE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_id@Object@Ice@IceDelegateD@@UAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_invoke@Object@Ice@IceDelegateD@@UAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4OperationMode@2@ABU?$pair@PBEPBE@5@AAV?$vector@EV?$allocator@E@std@@@5@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_flushBatchRequests@Object@Ice@IceDelegateD@@UAEXAAVInvocationObserver@IceInternal@@@Z
?__getRequestHandler@Object@Ice@IceDelegateD@@UBE?AV?$Handle@VRequestHandler@IceInternal@@@IceInternal@@XZ
?__setRequestHandler@Object@Ice@IceDelegateD@@UAEXABV?$Handle@VRequestHandler@IceInternal@@@IceInternal@@@Z
?__initCurrent@Object@Ice@IceDelegateD@@IAEXAAUCurrent@2@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4OperationMode@2@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@6@@Z
??1Object@Ice@IceDelegateM@@UAE@XZ
?ice_isA@Object@Ice@IceDelegateM@@UAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_ping@Object@Ice@IceDelegateM@@UAEXPBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@std@@AAVInvocationObserver@IceInternal@@@Z
?ice_ids@Object@Ice@IceDelegateM@@UAE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_id@Object@Ice@IceDelegateM@@UAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_invoke@Object@Ice@IceDelegateM@@UAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4OperationMode@2@ABU?$pair@PBEPBE@5@AAV?$vector@EV?$allocator@E@std@@@5@PBV?$map@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@U?$less@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@V?$allocator@U?$pair@$$CBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V12@@std@@@2@@5@AAVInvocationObserver@IceInternal@@@Z
?ice_flushBatchRequests@Object@Ice@IceDelegateM@@UAEXAAVInvocationObserver@IceInternal@@@Z
?__getRequestHandler@Object@Ice@IceDelegateM@@UBE?AV?$Handle@VRequestHandler@IceInternal@@@IceInternal@@XZ
?__setRequestHandler@Object@Ice@IceDelegateM@@UAEXABV?$Handle@VRequestHandler@IceInternal@@@IceInternal@@@Z
?__wait@AsyncResult@Ice@@QAE_NXZ
?__throwUserException@AsyncResult@Ice@@QAEXXZ
?__exceptionAsync@AsyncResult@Ice@@QAEXABVException@IceUtil@@@Z
?__check@AsyncResult@Ice@@SAXABV?$Handle@VAsyncResult@Ice@@@IceInternal@@PBVObject@2IceProxy@@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0UnknownUserException@Ice@@QAE@PBDHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1UnknownUserException@Ice@@UAE@XZ
??0UnknownException@Ice@@QAE@PBDHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1UnknownException@Ice@@UAE@XZ
?__sent@AMICallbackBase@Ice@@QAEX_N@Z
?___ice_isA@Object@Ice@@QAE?AW4DispatchStatus@2@AAVIncoming@IceInternal@@ABUCurrent@2@@Z
?___ice_ping@Object@Ice@@QAE?AW4DispatchStatus@2@AAVIncoming@IceInternal@@ABUCurrent@2@@Z
?___ice_ids@Object@Ice@@QAE?AW4DispatchStatus@2@AAVIncoming@IceInternal@@ABUCurrent@2@@Z
?___ice_id@Object@Ice@@QAE?AW4DispatchStatus@2@AAVIncoming@IceInternal@@ABUCurrent@2@@Z
??8Object@Ice@@UBE_NABV01@@Z
iceutil35
?join@ThreadControl@IceUtil@@QAEXXZ
?getThreadControl@Thread@IceUtil@@QBE?AVThreadControl@2@XZ
?isAlive@Thread@IceUtil@@QBE_NXZ
?now@Time@IceUtil@@SA?AV12@W4Clock@12@@Z
?toSeconds@Time@IceUtil@@QBE_JXZ
??0Mutex@IceUtil@@QAE@XZ
??1Mutex@IceUtil@@QAE@XZ
?lock@Mutex@IceUtil@@QBEXXZ
?unlock@Mutex@IceUtil@@QBEXXZ
?milliSeconds@Time@IceUtil@@SA?AV12@_J@Z
?sleep@ThreadControl@IceUtil@@SAXABVTime@2@@Z
??0Thread@IceUtil@@QAE@XZ
??1Thread@IceUtil@@UAE@XZ
?start@Thread@IceUtil@@QAE?AVThreadControl@2@I@Z
??0Shared@IceUtil@@QAE@XZ
??1Shared@IceUtil@@UAE@XZ
??0Exception@IceUtil@@QAE@ABV01@@Z
??0IllegalArgumentException@IceUtil@@QAE@ABV01@@Z
??0NullHandleException@IceUtil@@QAE@ABV01@@Z
??_7Shared@IceUtil@@6B@
??0NullHandleException@IceUtil@@QAE@PBDH@Z
??1NullHandleException@IceUtil@@UAE@XZ
??0IllegalArgumentException@IceUtil@@QAE@PBDHABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??1IllegalArgumentException@IceUtil@@UAE@XZ
?__incRef@Shared@IceUtil@@UAEXXZ
?__decRef@Shared@IceUtil@@UAEXXZ
?__getRef@Shared@IceUtil@@UBEHXZ
?__setNoDelete@Shared@IceUtil@@UAEX_N@Z
kernel32
GetModuleFileNameW
MultiByteToWideChar
GetLastError
SetLastError
GetProcAddress
FindClose
CreateMutexA
FindNextFileW
GetFileAttributesExW
GetCurrentThreadId
DuplicateHandle
ReleaseMutex
GetSystemTimeAsFileTime
GetCurrentProcessId
IsDebuggerPresent
SetUnhandledExceptionFilter
TerminateProcess
HeapSetInformation
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
CloseHandle
DeleteFileW
CreateThread
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
QueryPerformanceCounter
GetTickCount
GetModuleFileNameA
CreateProcessA
GetFileAttributesW
CreateEventA
Sleep
LoadLibraryW
WideCharToMultiByte
SetEvent
WaitForSingleObject
CreateDirectoryW
GetCurrentProcess
UnhandledExceptionFilter
IsProcessorFeaturePresent
FindFirstFileW
user32
PostThreadMessageA
advapi32
OpenSCManagerA
SetServiceStatus
QueryServiceStatus
StartServiceA
CreateServiceA
RegisterServiceCtrlHandlerA
DeleteService
StartServiceCtrlDispatcherA
CloseServiceHandle
OpenServiceA
ControlService
msvcp100
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1_Container_base12@std@@QAE@XZ
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
msvcr100
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
memmove
?what@exception@std@@UBEPBDXZ
_purecall
??3@YAXPAX@Z
?terminate@@YAXXZ
sscanf
free
malloc
strchr
??_V@YAXPAX@Z
sprintf_s
strpbrk
setbuf
fputc
_mktime64
isspace
calloc
qsort
_pclose
strerror
strstr
__iob_func
memchr
_splitpath_s
fflush
atoi
_wfopen
_pipe
_popen
_errno
fgetc
tolower
isprint
fgets
wcsrchr
printf
fopen
fread
fprintf
_vsnprintf
isdigit
strftime
ferror
fwrite
strrchr
toupper
strspn
_get_osfhandle
strcspn
realloc
strtoul
_localtime64
fseek
getenv
fclose
isxdigit
_time64
_close
_fdopen
??1exception@std@@UAE@XZ
_unlock
__dllonexit
_lock
_onexit
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
exit
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_crt_debugger_hook
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
_strdup
_CxxThrowException
__CxxFrameHandler3
memset
memcpy
__RTDynamicCast
??2@YAPAXI@Z
Sections
.text Size: 141KB - Virtual size: 140KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 52KB - Virtual size: 51KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 436B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 38KB - Virtual size: 38KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ