Static task
static1
Behavioral task
behavioral1
Sample
grpc_client.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
grpc_client.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
General
-
Target
grpc_client.exe
-
Size
4.7MB
-
MD5
d231264af0c27d29a244a163c6af497f
-
SHA1
b7477010cfde435a2e7d2e955c75278a339dd6f4
-
SHA256
7952ccc881b823c05ce6bd7f80d74b05f126063d9cf2422e9962a349b244d2e4
-
SHA512
30c5e7f26ed1515811244784d49b623abbc7d78865b693c2a7cabaa2f6d8f7d4fdd068276f0976785acf62af167453b41036a4eeded8f4fc25ae5ddd466f8bdd
-
SSDEEP
49152:R4oGtfrRkTJ6fioLYWqUl13/7ujMwB1i78EB5BXsovpsLPjsxxawUNTDL7xn:XGHbbRuQ8ErKJ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource grpc_client.exe
Files
-
grpc_client.exe.exe windows x64
e2cfb47ba4f2d199b504245e2bff3148
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
qt5widgets
?exec@QApplication@@SAHXZ
??1QApplication@@UEAA@XZ
??0QApplication@@QEAA@AEAHPEAPEADH@Z
?wheelEvent@QWidget@@MEAAXPEAVQWheelEvent@@@Z
?show@QWidget@@QEAAXXZ
?qt_metacall@QWidget@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?staticMetaObject@QWidget@@2UQMetaObject@@B
??0QWidget@@QEAA@PEAV0@V?$QFlags@W4WindowType@Qt@@@@@Z
??1QWidget@@UEAA@XZ
?setWindowTitle@QWidget@@QEAAXAEBVQString@@@Z
?resize@QWidget@@QEAAXHH@Z
?setGeometry@QWidget@@QEAAXAEBVQRect@@@Z
??0QComboBox@@QEAA@PEAVQWidget@@@Z
??1QComboBox@@UEAA@XZ
?currentIndex@QComboBox@@QEBAHXZ
?addItem@QComboBox@@QEAAXAEBVQString@@AEBVQVariant@@@Z
?setItemText@QComboBox@@QEAAXHAEBVQString@@@Z
??0QLabel@@QEAA@PEAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
??1QLabel@@UEAA@XZ
?setText@QLabel@@QEAAXAEBVQString@@@Z
??0QLineEdit@@QEAA@PEAVQWidget@@@Z
??1QLineEdit@@UEAA@XZ
?text@QLineEdit@@QEBA?AVQString@@XZ
?setText@QLineEdit@@QEAAXAEBVQString@@@Z
?setText@QAbstractButton@@QEAAXAEBVQString@@@Z
??0QPushButton@@QEAA@PEAVQWidget@@@Z
??1QPushButton@@UEAA@XZ
??0QTextEdit@@QEAA@PEAVQWidget@@@Z
??1QTextEdit@@UEAA@XZ
?setText@QTextEdit@@QEAAXAEBVQString@@@Z
?actionEvent@QWidget@@MEAAXPEAVQActionEvent@@@Z
?canInsertFromMimeData@QTextEdit@@MEBA_NPEBVQMimeData@@@Z
?changeEvent@QAbstractButton@@MEAAXPEAVQEvent@@@Z
?changeEvent@QComboBox@@MEAAXPEAVQEvent@@@Z
?changeEvent@QLabel@@MEAAXPEAVQEvent@@@Z
?changeEvent@QLineEdit@@MEAAXPEAVQEvent@@@Z
?changeEvent@QTextEdit@@MEAAXPEAVQEvent@@@Z
?changeEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?checkStateSet@QAbstractButton@@MEAAXXZ
?closeEvent@QWidget@@MEAAXPEAVQCloseEvent@@@Z
?contextMenuEvent@QComboBox@@MEAAXPEAVQContextMenuEvent@@@Z
?contextMenuEvent@QLabel@@MEAAXPEAVQContextMenuEvent@@@Z
?contextMenuEvent@QLineEdit@@MEAAXPEAVQContextMenuEvent@@@Z
?wheelEvent@QTextEdit@@MEAAXPEAVQWheelEvent@@@Z
?wheelEvent@QComboBox@@MEAAXPEAVQWheelEvent@@@Z
?viewportSizeHint@QAbstractScrollArea@@MEBA?AVQSize@@XZ
?viewportEvent@QAbstractScrollArea@@MEAA_NPEAVQEvent@@@Z
?timerEvent@QTextEdit@@MEAAXPEAVQTimerEvent@@@Z
?timerEvent@QAbstractButton@@MEAAXPEAVQTimerEvent@@@Z
?tabletEvent@QWidget@@MEAAXPEAVQTabletEvent@@@Z
?sizeHint@QWidget@@UEBA?AVQSize@@XZ
?sizeHint@QPushButton@@UEBA?AVQSize@@XZ
?sizeHint@QLineEdit@@UEBA?AVQSize@@XZ
?sizeHint@QLabel@@UEBA?AVQSize@@XZ
?sizeHint@QComboBox@@UEBA?AVQSize@@XZ
?sizeHint@QAbstractScrollArea@@UEBA?AVQSize@@XZ
?showPopup@QComboBox@@UEAAXXZ
?showEvent@QWidget@@MEAAXPEAVQShowEvent@@@Z
?showEvent@QTextEdit@@MEAAXPEAVQShowEvent@@@Z
?showEvent@QComboBox@@MEAAXPEAVQShowEvent@@@Z
?sharedPainter@QWidget@@MEBAPEAVQPainter@@XZ
?setupViewport@QAbstractScrollArea@@UEAAXPEAVQWidget@@@Z
?setVisible@QWidget@@UEAAX_N@Z
?scrollContentsBy@QTextEdit@@MEAAXHH@Z
?resizeEvent@QWidget@@MEAAXPEAVQResizeEvent@@@Z
?resizeEvent@QTextEdit@@MEAAXPEAVQResizeEvent@@@Z
?resizeEvent@QComboBox@@MEAAXPEAVQResizeEvent@@@Z
?redirected@QWidget@@MEBAPEAVQPaintDevice@@PEAVQPoint@@@Z
?qt_metacast@QTextEdit@@UEAAPEAXPEBD@Z
?qt_metacast@QPushButton@@UEAAPEAXPEBD@Z
?qt_metacast@QLineEdit@@UEAAPEAXPEBD@Z
?qt_metacast@QLabel@@UEAAPEAXPEBD@Z
?qt_metacast@QComboBox@@UEAAPEAXPEBD@Z
?qt_metacall@QTextEdit@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QPushButton@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QLineEdit@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QLabel@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacall@QComboBox@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?paintEvent@QWidget@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QTextEdit@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QPushButton@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QLineEdit@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QLabel@@MEAAXPEAVQPaintEvent@@@Z
?paintEvent@QComboBox@@MEAAXPEAVQPaintEvent@@@Z
?paintEngine@QWidget@@UEBAPEAVQPaintEngine@@XZ
?nextCheckState@QAbstractButton@@MEAAXXZ
?nativeEvent@QWidget@@MEAA_NAEBVQByteArray@@PEAXPEAJ@Z
?moveEvent@QWidget@@MEAAXPEAVQMoveEvent@@@Z
?mouseReleaseEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QLineEdit@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QComboBox@@MEAAXPEAVQMouseEvent@@@Z
?mouseReleaseEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QLineEdit@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QComboBox@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QLineEdit@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QLabel@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QTextEdit@@MEAAXPEAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QLineEdit@@MEAAXPEAVQMouseEvent@@@Z
?minimumSizeHint@QWidget@@UEBA?AVQSize@@XZ
?minimumSizeHint@QPushButton@@UEBA?AVQSize@@XZ
?minimumSizeHint@QLineEdit@@UEBA?AVQSize@@XZ
?minimumSizeHint@QLabel@@UEBA?AVQSize@@XZ
?minimumSizeHint@QComboBox@@UEBA?AVQSize@@XZ
?minimumSizeHint@QAbstractScrollArea@@UEBA?AVQSize@@XZ
?metric@QWidget@@MEBAHW4PaintDeviceMetric@QPaintDevice@@@Z
?metaObject@QTextEdit@@UEBAPEBUQMetaObject@@XZ
?metaObject@QPushButton@@UEBAPEBUQMetaObject@@XZ
?metaObject@QLineEdit@@UEBAPEBUQMetaObject@@XZ
?metaObject@QLabel@@UEBAPEBUQMetaObject@@XZ
?metaObject@QComboBox@@UEBAPEBUQMetaObject@@XZ
?loadResource@QTextEdit@@UEAA?AVQVariant@@HAEBVQUrl@@@Z
?leaveEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?keyReleaseEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QTextEdit@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QComboBox@@MEAAXPEAVQKeyEvent@@@Z
?keyReleaseEvent@QAbstractButton@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QTextEdit@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QPushButton@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QLineEdit@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QLabel@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QComboBox@@MEAAXPEAVQKeyEvent@@@Z
?insertFromMimeData@QTextEdit@@MEAAXPEBVQMimeData@@@Z
?inputMethodQuery@QWidget@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodQuery@QTextEdit@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodQuery@QLineEdit@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodQuery@QComboBox@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QWidget@@MEAAXPEAVQInputMethodEvent@@@Z
?inputMethodEvent@QTextEdit@@MEAAXPEAVQInputMethodEvent@@@Z
?inputMethodEvent@QLineEdit@@MEAAXPEAVQInputMethodEvent@@@Z
?inputMethodEvent@QComboBox@@MEAAXPEAVQInputMethodEvent@@@Z
?initPainter@QWidget@@MEBAXPEAVQPainter@@@Z
?hitButton@QAbstractButton@@MEBA_NAEBVQPoint@@@Z
?hidePopup@QComboBox@@UEAAXXZ
?hideEvent@QWidget@@MEAAXPEAVQHideEvent@@@Z
?hideEvent@QComboBox@@MEAAXPEAVQHideEvent@@@Z
?heightForWidth@QWidget@@UEBAHH@Z
?heightForWidth@QLabel@@UEBAHH@Z
?hasHeightForWidth@QWidget@@UEBA_NXZ
?focusOutEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?focusOutEvent@QTextEdit@@MEAAXPEAVQFocusEvent@@@Z
?focusOutEvent@QPushButton@@MEAAXPEAVQFocusEvent@@@Z
?focusOutEvent@QLineEdit@@MEAAXPEAVQFocusEvent@@@Z
?focusOutEvent@QLabel@@MEAAXPEAVQFocusEvent@@@Z
?focusOutEvent@QComboBox@@MEAAXPEAVQFocusEvent@@@Z
?focusNextPrevChild@QWidget@@MEAA_N_N@Z
?focusNextPrevChild@QTextEdit@@MEAA_N_N@Z
?focusNextPrevChild@QLabel@@MEAA_N_N@Z
?focusInEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QTextEdit@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QPushButton@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QLineEdit@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QLabel@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QComboBox@@MEAAXPEAVQFocusEvent@@@Z
?eventFilter@QAbstractScrollArea@@MEAA_NPEAVQObject@@PEAVQEvent@@@Z
?event@QWidget@@MEAA_NPEAVQEvent@@@Z
?event@QTextEdit@@MEAA_NPEAVQEvent@@@Z
?event@QPushButton@@MEAA_NPEAVQEvent@@@Z
?event@QLineEdit@@UEAA_NPEAVQEvent@@@Z
?event@QLabel@@MEAA_NPEAVQEvent@@@Z
?event@QComboBox@@UEAA_NPEAVQEvent@@@Z
?enterEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?dropEvent@QWidget@@MEAAXPEAVQDropEvent@@@Z
?dropEvent@QTextEdit@@MEAAXPEAVQDropEvent@@@Z
?dropEvent@QLineEdit@@MEAAXPEAVQDropEvent@@@Z
?dragMoveEvent@QWidget@@MEAAXPEAVQDragMoveEvent@@@Z
?dragMoveEvent@QTextEdit@@MEAAXPEAVQDragMoveEvent@@@Z
?dragMoveEvent@QLineEdit@@MEAAXPEAVQDragMoveEvent@@@Z
?dragLeaveEvent@QWidget@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragLeaveEvent@QTextEdit@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragLeaveEvent@QLineEdit@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragEnterEvent@QWidget@@MEAAXPEAVQDragEnterEvent@@@Z
?dragEnterEvent@QTextEdit@@MEAAXPEAVQDragEnterEvent@@@Z
?dragEnterEvent@QLineEdit@@MEAAXPEAVQDragEnterEvent@@@Z
?doSetTextCursor@QTextEdit@@MEAAXAEBVQTextCursor@@@Z
?devType@QWidget@@UEBAHXZ
?createMimeDataFromSelection@QTextEdit@@MEBAPEAVQMimeData@@XZ
?contextMenuEvent@QWidget@@MEAAXPEAVQContextMenuEvent@@@Z
?contextMenuEvent@QTextEdit@@MEAAXPEAVQContextMenuEvent@@@Z
?qt_metacast@QWidget@@UEAAPEAXPEBD@Z
qt5sql
?text@QSqlError@@QEBA?AVQString@@XZ
?number@QSqlError@@QEBAHXZ
??1QSqlError@@QEAA@XZ
?value@QSqlField@@QEBA?AVQVariant@@XZ
??1QSqlField@@QEAA@XZ
?field@QSqlRecord@@QEBA?AVQSqlField@@H@Z
??1QSqlRecord@@QEAA@XZ
?finish@QSqlQuery@@QEAAXXZ
?clear@QSqlQuery@@QEAAXXZ
?next@QSqlQuery@@QEAA_NXZ
?exec@QSqlQuery@@QEAA_NAEBVQString@@@Z
?record@QSqlQuery@@QEBA?AVQSqlRecord@@XZ
?lastError@QSqlQuery@@QEBA?AVQSqlError@@XZ
?isActive@QSqlQuery@@QEBA_NXZ
??1QSqlQuery@@QEAA@XZ
??0QSqlQuery@@QEAA@VQSqlDatabase@@@Z
?drivers@QSqlDatabase@@SA?AVQStringList@@XZ
?addDatabase@QSqlDatabase@@SA?AV1@AEBVQString@@0@Z
?hostName@QSqlDatabase@@QEBA?AVQString@@XZ
?databaseName@QSqlDatabase@@QEBA?AVQString@@XZ
?setHostName@QSqlDatabase@@QEAAXAEBVQString@@@Z
?setPassword@QSqlDatabase@@QEAAXAEBVQString@@@Z
?setUserName@QSqlDatabase@@QEAAXAEBVQString@@@Z
?setDatabaseName@QSqlDatabase@@QEAAXAEBVQString@@@Z
?lastError@QSqlDatabase@@QEBA?AVQSqlError@@XZ
?tables@QSqlDatabase@@QEBA?AVQStringList@@W4TableType@QSql@@@Z
?close@QSqlDatabase@@QEAAXXZ
?open@QSqlDatabase@@QEAA_NXZ
??4QSqlDatabase@@QEAAAEAV0@AEBV0@@Z
??1QSqlDatabase@@QEAA@XZ
??0QSqlDatabase@@QEAA@AEBV0@@Z
??0QSqlDatabase@@QEAA@XZ
qt5core
?toString@QVariant@@QEBA?AVQString@@XZ
?QStringList_contains@QtPrivate@@YA_NPEBVQStringList@@AEBVQString@@W4CaseSensitivity@Qt@@@Z
?size@QListData@@QEBAHXZ
?dispose@QListData@@SAXPEAUData@1@@Z
?toLong@QString@@QEBAJPEA_NH@Z
?fromLocal8Bit@QString@@SA?AV1@PEBDH@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?translate@QCoreApplication@@SA?AVQString@@PEBD00H@Z
??1QVariant@@QEAA@XZ
??0QVariant@@QEAA@XZ
??0QRect@@QEAA@HHHH@Z
?connect@QObject@@SA?AVConnection@QMetaObject@@PEBV1@PEBD01W4ConnectionType@Qt@@@Z
?startTimer@QObject@@QEAAHHW4TimerType@Qt@@@Z
?setObjectName@QObject@@QEAAXAEBVQString@@@Z
?objectName@QObject@@QEBA?AVQString@@XZ
??0QString@@QEAA@UQStringDataPtr@@@Z
?toStdString@QString@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
??0QString@@QEAA@PEBD@Z
?toInt@QString@@QEBAHPEA_NH@Z
?fromUtf8@QString@@SA?AV1@PEBDH@Z
??YQString@@QEAAAEAV0@AEBV0@@Z
?append@QString@@QEAAAEAV1@AEBV1@@Z
?arg@QString@@QEBA?AV1@AEBV1@HVQChar@@@Z
?arg@QString@@QEBA?AV1@NHDHVQChar@@@Z
?arg@QString@@QEBA?AV1@HHHVQChar@@@Z
?isEmpty@QString@@QEBA_NXZ
??4QString@@QEAAAEAV0@$$QEAV0@@Z
??0QString@@QEAA@$$QEAV0@@Z
??1QString@@QEAA@XZ
??0QString@@QEAA@AEBV0@@Z
??0QString@@QEAA@XZ
??0QChar@@QEAA@UQLatin1Char@@@Z
??1Connection@QMetaObject@@QEAA@XZ
?connectSlotsByName@QMetaObject@@SAXPEAVQObject@@@Z
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
wsock32
send
recvfrom
recv
inet_ntoa
connect
getservbyport
gethostname
ioctlsocket
WSASetLastError
setsockopt
listen
getsockname
getpeername
WSAGetLastError
socket
closesocket
bind
ntohl
htonl
ntohs
WSACleanup
WSAStartup
htons
__WSAFDIsSet
ws2_32
WSAConnect
WSASend
WSARecv
freeaddrinfo
WSARecvFrom
WSAGetOverlappedResult
WSASocketA
WSAIoctl
inet_ntop
inet_pton
getaddrinfo
kernel32
GetEnvironmentStringsW
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
HeapReAlloc
SetStdHandle
SetConsoleCtrlHandler
GetFileSizeEx
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
GetCommandLineW
GetCommandLineA
GetStdHandle
ExitProcess
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetDriveTypeW
GetConsoleCP
WriteFile
ReadConsoleW
GetConsoleMode
ReadFile
GetFileType
SetEnvironmentVariableW
GetModuleHandleExW
ExitThread
GetTimeZoneInformation
RtlUnwindEx
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
SetProcessAffinityMask
VirtualFree
VirtualProtect
VirtualAlloc
GetVersionExW
WriteConsoleW
GetModuleFileNameW
FreeLibraryAndExitThread
GetThreadTimes
OutputDebugStringW
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetThreadPriority
SetThreadPriority
SignalObjectAndWait
CreateTimerQueue
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
GetLocaleInfoW
LCMapStringW
CompareStringW
GetSystemTimeAsFileTime
CreateEventW
InitializeCriticalSectionAndSpinCount
GetStringTypeW
RaiseException
DecodePointer
EncodePointer
RtlPcToFileHeader
GetNativeSystemInfo
GetExitCodeThread
GetCurrentThread
SwitchToThread
GetCurrentProcess
DuplicateHandle
FormatMessageW
FreeEnvironmentStringsW
HeapSize
RtlCaptureStackBackTrace
LoadLibraryExW
RtlUnwind
QueryPerformanceCounter
GetTickCount
GetVersionExA
GetWindowsDirectoryA
ExpandEnvironmentStringsA
LoadLibraryW
FreeLibrary
SetEnvironmentVariableA
GetEnvironmentVariableA
CreateThread
WaitForSingleObject
GetCurrentProcessorNumber
SleepConditionVariableCS
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
InitOnceExecuteOnce
TryEnterCriticalSection
PostQueuedCompletionStatus
GetQueuedCompletionStatus
CreateIoCompletionPort
LocalFree
FormatMessageA
SetLastError
WideCharToMultiByte
MultiByteToWideChar
AreFileApisANSI
MoveFileExW
CopyFileW
CreateDirectoryExW
GetModuleHandleW
GetWindowsDirectoryW
DeviceIoControl
SetFileTime
SetFilePointerEx
SetFileAttributesW
SetEndOfFile
RemoveDirectoryW
GetFullPathNameW
GetFileTime
GetFileInformationByHandle
GetFileAttributesExW
GetFileAttributesW
GetDiskFreeSpaceExW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
CreateDirectoryW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetEnvironmentVariableW
CreateWaitableTimerA
GetProcAddress
GetModuleHandleA
GetLogicalProcessorInformation
GetSystemInfo
ResumeThread
GetCurrentProcessId
Sleep
SetWaitableTimer
OpenEventA
WaitForMultipleObjectsEx
ReleaseSemaphore
ResetEvent
GetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WaitForSingleObjectEx
SetEvent
CreateEventA
GetProcessHeap
HeapFree
HeapAlloc
QueryPerformanceFrequency
CloseHandle
advapi32
RegCloseKey
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
Sections
.text Size: 3.3MB - Virtual size: 3.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 61KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 206KB - Virtual size: 206KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 18KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ