Behavioral task
behavioral1
Sample
5a861538d31a63f4e6450fbbaa5c01fd778d6ef68c39c8c1eba71b5155dcea71.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
5a861538d31a63f4e6450fbbaa5c01fd778d6ef68c39c8c1eba71b5155dcea71.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
General
-
Target
5a861538d31a63f4e6450fbbaa5c01fd778d6ef68c39c8c1eba71b5155dcea71
-
Size
6.7MB
-
MD5
58052266bb5b59b999eacad5e487faaf
-
SHA1
96463f521bb48a4d1b17dbd2914aac05741c244d
-
SHA256
5a861538d31a63f4e6450fbbaa5c01fd778d6ef68c39c8c1eba71b5155dcea71
-
SHA512
702aba9024a5c9bdd3bbdc1696d07752843a8a11aee36f9543b2e8a95d24994781976c168563b5738db6ef6c57e0bfd908623dfe2969c475972f3417d58b678a
-
SSDEEP
98304:gbfV2rOTv3h5KNBe48I7ADOSqRFXp2C1FWFoypCZuTzmtSBYG7C2Vct:qbTf2Pz1vRFZ2OFWF5mu+4aGe
Malware Config
Signatures
-
resource yara_rule sample vmprotect -
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 5a861538d31a63f4e6450fbbaa5c01fd778d6ef68c39c8c1eba71b5155dcea71
Files
-
5a861538d31a63f4e6450fbbaa5c01fd778d6ef68c39c8c1eba71b5155dcea71.exe windows x86
beaf549e2914ee298ea7f5daa3ab395f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
mfc42
ord6762
ord3293
ord470
ord2582
ord6215
ord3996
ord4299
ord3797
ord1795
ord2575
ord3574
ord4396
ord609
ord4284
ord6197
ord3874
ord3721
ord2116
ord3752
ord6377
ord1949
ord6442
ord6283
ord6379
ord6605
ord6170
ord5788
ord472
ord5787
ord4200
ord1941
ord3398
ord3733
ord810
ord4271
ord3706
ord3297
ord3296
ord5781
ord2971
ord1768
ord6282
ord4160
ord3499
ord2515
ord355
ord1200
ord4204
ord4673
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord4079
ord4698
ord5307
ord5289
ord5714
ord4622
ord3738
ord815
ord561
ord3028
ord950
ord807
ord809
ord686
ord2621
ord1134
ord1205
ord4220
ord2584
ord3654
ord2438
ord4402
ord693
ord2725
ord589
ord826
ord260
ord824
ord593
ord324
ord4476
ord3092
ord6199
ord3370
ord3640
ord384
ord556
ord554
ord2370
ord2302
ord2086
ord2096
ord2645
ord4163
ord6625
ord2453
ord2078
ord1087
ord2122
ord5655
ord6655
ord6146
ord1158
ord4203
ord1644
ord2919
ord2863
ord5981
ord6134
ord1105
ord5937
ord3061
ord2639
ord3914
ord6904
ord3283
ord6334
ord3763
ord4130
ord536
ord4224
ord6270
ord3089
ord3754
ord6136
ord3771
ord6905
ord3767
ord6453
ord4774
ord2935
ord2516
ord360
ord2299
ord665
ord1979
ord5442
ord3318
ord5186
ord354
ord2642
ord6927
ord2340
ord6007
ord3998
ord2513
ord293
ord3286
ord663
ord348
ord6907
ord2587
ord4406
ord3394
ord3729
ord804
ord6785
ord3302
ord3305
ord3311
ord3011
ord3319
ord3097
ord5953
ord4234
ord4287
ord6241
ord2243
ord816
ord562
ord1269
ord3708
ord781
ord6129
ord4133
ord4297
ord613
ord289
ord3329
ord6128
ord4132
ord5759
ord6192
ord5756
ord6186
ord4330
ord6189
ord6021
ord5873
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord540
ord1576
ord2614
ord941
ord858
ord4278
ord6662
ord535
ord5683
ord4129
ord2764
ord825
ord823
ord1802
ord4275
ord2578
ord3582
ord4219
ord2581
ord3402
ord3639
ord3619
ord2411
ord2023
ord4218
ord4398
ord2385
ord5290
ord5277
ord3693
ord3626
ord3663
ord1771
ord6366
ord2413
ord2024
ord6055
ord4078
ord1776
ord4401
ord5241
ord5163
ord6374
ord4353
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4424
ord692
ord616
ord818
ord1641
ord2860
ord567
ord2414
ord795
ord537
ord1146
ord1168
ord800
ord3317
ord2452
ord3571
ord3573
ord640
ord2405
ord5789
ord2862
ord3301
ord755
ord6696
ord4243
ord1848
ord3803
ord6172
ord2754
ord2450
ord1847
ord2071
ord3303
ord4125
ord3287
ord1980
ord4202
ord356
ord2770
ord2781
ord4058
ord3181
ord3178
ord5710
ord6930
ord668
ord641
ord3597
ord4425
ord5280
ord1775
ord6052
ord4710
ord4998
ord4853
ord4376
ord5265
ord2514
ord940
ord2763
ord6008
ord4000
ord6778
ord543
ord803
ord3584
ord656
ord4407
ord3610
ord1829
ord6394
ord5834
ord6383
ord5440
ord5450
ord3903
ord2915
ord5572
ord2841
ord6929
ord6876
ord2107
ord2044
ord6663
ord6648
ord6779
ord6874
ord924
ord5856
ord939
ord926
ord2818
ord2448
ord6877
ord922
ord860
ord2859
ord6242
ord2864
ord6880
ord2379
ord323
ord1640
ord5785
ord283
ord5875
msvcrt
strstr
fwrite
fflush
rename
atoi
_ftol
strncmp
memmove
tolower
_pctype
__mb_cur_max
_isctype
qsort
_errno
_setmode
fgets
wcsstr
strcmp
??0exception@@QAE@ABV0@@Z
gmtime
_itoa
_strnicmp
_fileno
_getch
toupper
_purecall
_setmbcp
strspn
sscanf
_mbscmp
fopen
fseek
ftell
fclose
fread
realloc
_vsnprintf
_snprintf
strncpy
malloc
free
??1exception@@UAE@XZ
_initterm
__getmainargs
_acmdln
_XcptFilter
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_onexit
__dllonexit
time
srand
rand
_mbsstr
_mbsnbcpy
isdigit
strtok
strrchr
islower
isupper
mbstowcs
wcstombs
calloc
rewind
isspace
isxdigit
_mbslen
strtol
__CxxLongjmpUnwind
_setjmp3
longjmp
raise
signal
abort
_exit
exit
?what@exception@@UBEPBDXZ
getenv
fputs
scanf
freopen
_open_osfhandle
_fdopen
_stricmp
fprintf
printf
vfprintf
strchr
isprint
memchr
wcslen
sprintf
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
strtoul
_iob
_stat
__CxxFrameHandler
??0exception@@QAE@ABQBD@Z
_mbsicmp
isgraph
isalnum
_mbsnbicmp
_except_handler3
_CxxThrowException
_controlfp
kernel32
GetVersion
GetFileType
GlobalMemoryStatus
QueryPerformanceCounter
GetVersionExA
FlushConsoleInputBuffer
SetLastError
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
GetLocalTime
GetFileInformationByHandle
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFilePointer
GetCurrentProcessId
CreateToolhelp32Snapshot
Thread32First
Thread32Next
ReleaseMutex
CreateMutexA
lstrcpyA
SetCurrentDirectoryA
FileTimeToLocalFileTime
GetCurrentDirectoryA
PulseEvent
GetTickCount
VirtualProtect
FileTimeToSystemTime
SetThreadPriority
ResumeThread
InterlockedDecrement
GetExitCodeThread
GetCurrentThreadId
GetLastError
FreeLibrary
LocalFree
FreeConsole
InterlockedIncrement
GetVolumeInformationA
WideCharToMultiByte
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetFileAttributesA
CreateFileA
SetFileTime
FindFirstFileA
GetSystemDirectoryA
GetConsoleWindow
SetConsoleTextAttribute
AllocConsole
GetStdHandle
GetModuleFileNameA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
MultiByteToWideChar
MulDiv
GetSystemInfo
GetPrivateProfileIntA
lstrcpynA
CopyFileA
GetPrivateProfileStringA
WritePrivateProfileStringA
LoadLibraryA
GetProcAddress
GetModuleHandleA
FindResourceA
LoadResource
LockResource
SizeofResource
GetTempPathA
DeleteFileA
CreateDirectoryA
GetFileAttributesA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
IsBadWritePtr
IsBadReadPtr
lstrlenA
SetEvent
PeekNamedPipe
ReadFile
GetExitCodeProcess
Sleep
TerminateProcess
WriteFile
CreatePipe
GetStartupInfoA
CreateProcessA
CloseHandle
CreateThread
CreateEventA
VirtualQuery
GetSystemTimeAsFileTime
GetModuleHandleA
CreateEventA
GetModuleFileNameW
LoadLibraryA
TerminateProcess
GetCurrentProcess
CreateToolhelp32Snapshot
Thread32First
GetCurrentProcessId
GetCurrentThreadId
OpenThread
Thread32Next
CloseHandle
SuspendThread
ResumeThread
WriteProcessMemory
GetSystemInfo
VirtualAlloc
VirtualProtect
VirtualFree
GetProcessAffinityMask
SetProcessAffinityMask
GetCurrentThread
SetThreadAffinityMask
Sleep
FreeLibrary
GetTickCount
SystemTimeToFileTime
FileTimeToSystemTime
GlobalFree
LocalAlloc
LocalFree
GetProcAddress
ExitProcess
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GetModuleHandleW
LoadResource
MultiByteToWideChar
FindResourceExW
FindResourceExA
WideCharToMultiByte
GetThreadLocale
GetUserDefaultLCID
GetSystemDefaultLCID
EnumResourceNamesA
EnumResourceNamesW
EnumResourceLanguagesA
EnumResourceLanguagesW
EnumResourceTypesA
EnumResourceTypesW
CreateFileW
LoadLibraryW
GetLastError
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetCommandLineA
RaiseException
RtlUnwind
HeapFree
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
HeapReAlloc
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
WriteFile
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
SetStdHandle
LocalAlloc
LocalFree
GetModuleFileNameW
GetProcessAffinityMask
SetProcessAffinityMask
SetThreadAffinityMask
Sleep
ExitProcess
FreeLibrary
LoadLibraryA
GetModuleHandleA
GetProcAddress
user32
GetDesktopWindow
ShowWindow
CloseWindow
DestroyWindow
SetWindowPos
GetProcessWindowStation
GetUserObjectInformationW
CreateWindowExA
DefWindowProcA
RegisterClassExA
wsprintfA
GrayStringA
DrawTextA
TabbedTextOutA
LoadMenuA
GetMenuItemID
LoadIconA
SetMenuItemBitmaps
SetWindowRgn
GetWindowDC
FindWindowA
MonitorFromWindow
GetCapture
GetClassLongA
SetClassLongA
SetTimer
SetForegroundWindow
GetMessagePos
GetMessageA
TranslateMessage
DispatchMessageA
SetActiveWindow
SetParent
HideCaret
GetUpdateRect
GetClipboardData
IsMenu
GetFocus
EqualRect
InvalidateRgn
SetCursor
LockWindowUpdate
UpdateWindow
OpenClipboard
EmptyClipboard
SetClipboardData
GetKeyState
ClientToScreen
AppendMenuA
RedrawWindow
IsIconic
DrawIcon
GetWindowLongA
SetWindowLongA
GetDlgCtrlID
SetWindowsHookExA
CreateMenu
GetMenuItemInfoA
CheckMenuItem
SetMenu
GetSubMenu
GetMenuStringA
GetMenuItemCount
RemoveMenu
InsertMenuA
CreatePopupMenu
LoadBitmapA
SystemParametersInfoA
IsZoomed
PostMessageA
SetMenuInfo
MessageBoxA
GetWindow
LoadImageA
ReleaseCapture
SetCapture
LoadCursorA
IsWindowVisible
GetScrollBarInfo
GetSysColor
GetSystemMetrics
GetDC
ReleaseDC
DestroyIcon
CopyRect
OffsetRect
IsWindow
GetCursorPos
ScreenToClient
PtInRect
GetWindowRect
InflateRect
GetParent
InvalidateRect
GetClientRect
FillRect
DrawIconEx
SendMessageA
EnableWindow
CloseClipboard
GetProcessWindowStation
GetUserObjectInformationW
CharUpperBuffW
MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW
gdi32
CombineRgn
CreateRectRgnIndirect
Rectangle
SelectObject
StretchBlt
GetObjectA
GetTextExtentPoint32A
DeleteObject
CreateSolidBrush
CreateFontA
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreateFontIndirectA
GetStockObject
CreatePen
GetDeviceCaps
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateRectRgn
Ellipse
Polygon
DeleteDC
GetTextMetricsA
RoundRect
CreateDCA
advapi32
RegOpenKeyA
CryptDestroyHash
RegisterEventSourceA
ReportEventA
DeregisterEventSource
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextA
RegCloseKey
RegQueryValueExA
RegSetValueA
RegCreateKeyA
CryptDestroyKey
CryptExportKey
CryptReleaseContext
shell32
StrStrIA
SHFileOperationA
SHGetFileInfoA
SHChangeNotify
SHGetSpecialFolderLocation
DragQueryFileA
DragFinish
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA
comctl32
ImageList_AddMasked
ImageList_GetImageCount
ImageList_GetImageInfo
_TrackMouseEvent
ImageList_ReplaceIcon
ImageList_Draw
ole32
CreateILockBytesOnHGlobal
CoInitialize
OleCreateStaticFromData
OleDuplicateData
ReleaseStgMedium
CreateStreamOnHGlobal
StgCreateDocfileOnILockBytes
OleSetContainedObject
gdiplus
GdipFillPath
GdipSetMatrixElements
GdipTransformPath
GdipCreatePath
GdipSetLineColors
GdipRotateMatrix
GdipTranslateMatrix
GdipCreateMatrix
GdipAddPathPieI
GdipSetSolidFillColor
GdipSetInterpolationMode
GdipAddPathEllipseI
GdipFillRectangle
GdipDeleteRegion
GdipGetRegionHRgn
GdipCreateRegionPath
GdipDrawLineI
GdipFillPolygonI
GdipDrawEllipseI
GdipFillEllipseI
GdipDeletePath
GdipDeleteMatrix
GdipDrawLine
GdipDrawArc
GdipDrawArcI
GdipDeleteGraphics
GdipDisposeImage
GdipReleaseDC
GdipSetPenColor
GdipCreatePen1
GdipDeletePen
GdipCloneBitmapAreaI
GdipCreateBitmapFromHBITMAP
GdiplusShutdown
GdiplusStartup
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipCreateFontFamilyFromName
GdipCreateFont
GdipCreateLineBrushFromRectWithAngle
GdipCreateStringFormat
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipSetTextRenderingHint
GdipDrawString
GdipDeleteStringFormat
GdipDeleteFont
GdipDeleteFontFamily
GdipAddPathArc
GdipAddPathLine
GdipCloneImage
GdipCloneBrush
GdipAlloc
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipGraphicsClear
GdipSetSmoothingMode
GdipCreateHBITMAPFromBitmap
GdipFree
GdipFillPieI
GdipFillRectangleI
GdipCreateSolidFill
GdipFillPolygon
GdipDeleteBrush
GdipGetImageHeight
GdipGetImageWidth
GdipCreateFromHDC
GdipDrawImageRectI
msvcp60
?_Xran@std@@YAXXZ
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIID@Z
??_7bad_alloc@std@@6B@
wctype
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEPADPAD0@Z
??0bad_alloc@std@@QAE@PBD@Z
??1bad_alloc@std@@UAE@XZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??0bad_alloc@std@@QAE@ABV01@@Z
?_Xlen@std@@YAXXZ
??_7logic_error@std@@6B@
??_7out_of_range@std@@6B@
??1logic_error@std@@UAE@XZ
??1out_of_range@std@@UAE@XZ
??0out_of_range@std@@QAE@ABV01@@Z
??0logic_error@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?clear@ios_base@std@@QAEXH_N@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIABV12@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PAD0PBD1@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEPADXZ
??0out_of_range@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?what@logic_error@std@@UBEPBDXZ
??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
ws2_32
WSAGetLastError
shutdown
recv
send
closesocket
WSASetLastError
wininet
HttpOpenRequestA
InternetOpenA
InternetConnectA
InternetReadFile
HttpSendRequestA
InternetCloseHandle
crypt32
CertNameToStrA
CertCreateCertificateContext
CryptImportPublicKeyInfo
CertFreeCertificateContext
wtsapi32
WTSSendMessageW
Sections
.text Size: - Virtual size: 1.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 332KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 301KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.vmp0 Size: - Virtual size: 3.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.vmp1 Size: 5.8MB - Virtual size: 5.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CXV0 Size: 580KB - Virtual size: 578KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 344KB - Virtual size: 343KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ