Static task
static1
Behavioral task
behavioral1
Sample
6f83b64028499497579d846768ddbce4d9fd79251f524eb77fa189e7194d969c.exe
Resource
win7-20230831-en
windows7-x64
Behavioral task
behavioral2
Sample
6f83b64028499497579d846768ddbce4d9fd79251f524eb77fa189e7194d969c.exe
Resource
win10v2004-20230915-en
windows10-2004-x64
General
-
Target
6f83b64028499497579d846768ddbce4d9fd79251f524eb77fa189e7194d969c
-
Size
7.9MB
-
MD5
71ef47524d3e1faa20573f5ab0e1c9f5
-
SHA1
8972768aec1a39deb5b64d8351edfbdf7c50322b
-
SHA256
6f83b64028499497579d846768ddbce4d9fd79251f524eb77fa189e7194d969c
-
SHA512
8e1e7fa7fb8626e752fb5dc67fc4f28af70028f47e3d1e752481aee9ab57a368ea9543145778f495e3427f60ab0710ecfe6559c075bcbb56ab063e96f47d51f4
-
SSDEEP
98304:3urfIgegS6vT/4cilXWK+RewcLRUibPvnffuMNQlbanWKTvmZn6E:3urfIgevkLglXWK+Rew+6ibPvnF
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6f83b64028499497579d846768ddbce4d9fd79251f524eb77fa189e7194d969c
Files
-
6f83b64028499497579d846768ddbce4d9fd79251f524eb77fa189e7194d969c.exe windows:6 windows x64
3490f0d6429db4f4674395951d30ec0c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
comctl32
ImageList_ReplaceIcon
ImageList_BeginDrag
ImageList_EndDrag
ImageList_GetIcon
ImageList_DragLeave
ImageList_DragMove
ImageList_SetDragCursorImage
ord17
ImageList_Remove
ImageList_Replace
ImageList_SetBkColor
ImageList_Destroy
ImageList_Create
ImageList_Copy
ImageList_Add
ord16
ImageList_GetIconSize
ImageList_Draw
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_DragEnter
rpcrt4
UuidToStringW
RpcStringFreeW
ncore
NSyncEventSet
NObjectReset
NInt64TypeOf
NPropertyBagParseN
NPropertyInfoGetDefaultValue
NTypeGetDeclaredPropertyWithNameN
NValueToDouble
NDoubleParseN
NObjectResetPropertyN
NBooleanTypeOf
NSingleTypeOf
NUInt8TypeOf
NParameterBagCreate
NParameterDescriptorGetStdValueCount
NParameterDescriptorGetStdValue
NParameterDescriptorGetDefaultValue
NParameterBagToPropertyBag
NParameterBagSetN
NTypeGetTypeCode
NParameterDescriptorGetParameterType
NObjectGet
NDescriptorGetAttributes
NPluginManagerGetPlugin
NObjectGetOwnerEx
NObjectClone
NPropertyBagGetKeys
NInt32ToStringN
NInt32TryParseStrOrCharsW
NValueGetTypeCode
NEnumGetValues
NValueToInt32
NSyncEventCreate
NAsyncOperationIsCanceled
NTimeSpanToStringN
NPropertyBagTypeOf
NPropertyBagClear
NFileWriteAllBytesN
NStringEqualsStrOrCharsW
NObjectRef
NErrorGetLastEx
NErrorSuppress
NObjectUnref
NFileExistsN
NFileReadAllLinesN
NStringClone
NStringFree
NStringCreateWrapperA
NStringToLower
NFree
NStringTrim
NStringBuilderGetLengthW
NStringBuilderDisposeW
NStringBuilderDetachStringNW
NStringBuilderAppendCharW
NStringBuilderAppendNW
NStringBuilderAppendW
NStringBuilderInitW
NErrorGetMessageN
NStringGetBufferW
NErrorCreateN
NStringCreateWrapperW
NCoreOnStart
NObjectToStringN
NCoreOnExitEx
NModuleGetCopyrightN
NModuleGetVersionMajor
NModuleGetVersionMinor
NModuleGetVersionBuild
NModuleGetVersionRevision
NModuleGetTitleN
NWaitObjectWaitForTimed
NObjectEquals
NPluginGetModule
NPluginManagerGetPlugins
NPluginManagerGetPluginCount
NPluginManagerGetInterfaceTypeN
NModuleGetLoadedModules
NPluginManagerGetInstances
NModuleGetActivatedN
NCallbackFree
NPluginManagerRemoveDisabledPluginsCollectionChanged
NErrorSetLastW
NErrorSetLastA
NErrorSetLastN
NStringCreateFromStrOrCharsA
NStringConcatManyVAA
NErrorSetComW
NStringConcatManyVAW
NErrorGetCodeEx
NErrorSetLastEx
NCallbackCreateCustomRaw
NPluginManagerRemovePluginsCollectionChanged
NObjectRemovePropertyChanged
NPluginManagerAllowsUnplug
NPluginGetError
NPluginModuleGetIncompatiblePluginsN
NPluginModuleGetPriority
NPluginModuleGetInterfaceVersions
NCAlloc
NStringAppendStrOrCharsW
NVersionRangeToStringN
NPluginModuleGetInterfaceTypeN
NPluginGetFileNameN
NPluginModuleGetPluginNameN
NPluginGetSelectedInterfaceVersion
NVersionToStringN
NPluginGetPlugTime
NTimeSpanGetTotalSeconds
NPluginGetLoadTime
NPluginGetState
NTimeSpanAdd
NPluginManagerGetDisabledPlugins
NTimeSpanCreate
NObjectAddPropertyChanged
NPluginManagerRefresh
NPluginManagerAddPluginFromFileN
NPluginManagerUnplugAll
NPluginUnplug
NPluginManagerPlugAll
NPluginPlug
NPluginEnable
NPluginDisable
NPluginManagerGetPluginSearchPathN
NPluginManagerSetPluginSearchPathN
NPluginManagerAddPluginsCollectionChanged
NPluginManagerAddDisabledPluginsCollectionChanged
NPluginManagerGetInterfaceVersions
NTimeSpanIsValid
NEnumToStringN
NExpandableObjectGetProperties
NPropertyBagContainsN
NPropertyBagGetN
NNameValuePairCopy
NNameValuePairDispose
NPropertyBagGetCount
NPropertyBagRemoveN
NPropertyBagApplyTo
NValueToString
NPropertyBagGetAt
NValueToObject
NBufferTypeOf
NObjectSetPropertyNN
NStringTypeOf
NAsyncOperationGetResult
NInt32TypeOf
NObjectGetPropertyNN
NAsyncOperationAddCompleted
NAsyncOperationGetError
NBufferGetSize
NBinaryWriterWriteInt32
NBinaryWriterWriteBytesN
NEncodingGetBytesW
NBinaryWriterWriteBytes
NBinaryWriterWriteUInt16
NBinaryReaderReadBytesN
NEncodingGetStringN
NBufferGetPtr
NBinaryReaderReadUInt16
NMemoryStreamCreate
NBinaryWriterCreate
NBufferGetEmpty
NMemoryStreamGetBuffer
NMemoryStreamCreateFromBufferN
NBinaryReaderCreate
NBinaryReaderReadInt32
NTypeIsInstanceOfType
NUInt8ToStringN
NValueCreate
NReAlloc
NEnumParseN
NObjectCaptureProperties
NStringEqualsN
NObjectSet
NPropertyBagSetN
NPropertyBagCreate
NTypeDescriptorGetPropertiesForType
NDescriptorGetName
NValueCreateFromInt32
NValueCreateFromStringN
NPropertyBagTryGetN
nmedia
NImageFormatGetFormatEx
NImageFormatCanWrite
NImageFormatGetNameN
NImageFormatGetFormatCount
NImageFormatGetFileFilterN
NImageCreateFromFileExN
NImageSaveToFileExN
NSoundBufferSaveToFileN
NImagesGetGrayscaleColorWrapperEx
NImageGetWidth
NImageGetHeight
NImageCopyToData
NSoundBufferCreateFromMemoryN
NImageCreateFromMemoryN
NSoundBufferSaveToMemoryN
NImageFormatGetPngEx
NImageFormatGetWsqEx
NImageSaveToMemoryN
NImageFormatCanRead
nbiometrics
NLAttributesGetRightEyeCenter
NFingerGetWrongHandWarning
NFAttributesGetTemplate
NFrictionRidgeRemoveObjectsCollectionChanged
NFRecordGetWidth
NMatchingDetailsGetFaceCount
NMatchingDetailsGetVoicesScore
NMatchingDetailsGetIrisesScore
NMatchingDetailsGetFacesScore
NMatchingDetailsGetFingersScore
NMatchingDetailsBaseGetBiometricType
NMatchingDetailsGetPalmsScore
NFaceTypeOf
NSubjectTypeOf
NBiographicDataElementCreateN
NBiographicDataSchemaAddElement
NBiographicDataSchemaRemoveElementAt
NSubjectGetPalmCount
NSubjectRemoveIrisAt
NSubjectRemoveFingersCollectionChanged
NSubjectGetIrisCount
NSubjectGetIrises
NSubjectAddVoicesCollectionChanged
NSubjectGetFingers
NBiometricGetParentObject
NSubjectRemoveFacesCollectionChanged
NFImpressionTypeIsRolled
NSubjectGetVoices
NSubjectGetFingerCount
NSubjectRemoveIrisesCollectionChanged
NSubjectRemoveVoicesCollectionChanged
NBiometricGetBiometricType
NIrisTypeOf
NSubjectRemoveVoiceAt
NSubjectGetFaces
NSubjectAddIrisesCollectionChanged
NBiometricGetSessionId
NSubjectRemoveFaceAt
NBiometricAttributesGetChild
NSubjectAddFingersCollectionChanged
NSubjectRemovePalmsCollectionChanged
NSubjectGetPalms
NSubjectGetVoiceCount
NSubjectAddFacesCollectionChanged
NSubjectRemoveFingerAt
NSubjectRemovePalmAt
NFrictionRidgeGetImpressionType
NSubjectGetFaceCount
NVoiceTypeOf
NSubjectAddPalmsCollectionChanged
NIrisGetObjects
NMatchingDetailsGetPalmEx
NVoiceGetObjects
NSAttributesGetTemplate
NTemplateSizeTypeOf
NMatchingSpeedTypeOf
NLivenessModeTypeOf
NBiometricEngineTypeOf
NBiographicDataSchemaCreate
NBiographicDataSchemaParseN
NSubjectGetStatus
NSubjectClear
NFaceCreate
NBiometricSetSessionId
NBiometricSetFileNameN
NBiometricSetCaptureOptions
NBiometricTypeOf
NFPositionIsFourFingers
NSubjectClearMissingFingers
NSubjectAddMissingFinger
NFImpressionTypeTypeOf
NFingerCreate
NFrictionRidgeSetPosition
NFrictionRidgeSetImpressionType
NFPositionIsCompatibleWithImpressionType
NFPositionIsTheFinger
NSubjectGetMissingFingers
NSubjectGetMissingFingerCount
NSubjectGetMissingFinger
NIrisSetPosition
NBiometricEngineCreateTemplateAsync
NSubjectClearIrises
NFRecordGetHeight
NFImpressionTypeIsPalm
NFPositionIsPalm
NPalmCreate
NVoiceCreate
NSAttributesGetSoundLevel
NSAttributesIsVoiceDetected
NVoiceAddObjectsCollectionChanged
NVoiceRemoveObjectsCollectionChanged
NSubjectClearVoices
NVoiceSetSoundBuffer
NVoiceSetPhraseId
NSAttributesCreate
NFPositionIsSingleFinger
NFPositionGetAvailableParts
NSubjectSetQueryStringN
NLAttributesGetThumbnail
NSAttributesGetVoiceStart
NSAttributesGetVoiceDuration
NFaceAddObjectsCollectionChanged
NFaceGetObjects
NFAttributesGetRotation
NFRecordGetDoubleCore
NBiometricAttributesGetDetectionConfidence
NIrisCreate
NFrictionRidgeAddObjectsCollectionChanged
NFRecordGetMinutia
NLAttributesGetRoll
NXMatchingDetailsGetMatchedIndex
NFRecordGetVertResolution
NBiometricAttributesGetQuality
NFRecordGetCoreCount
NLAttributesGetNoseTip
NSubjectGetVoice
NEPositionTypeOf
NFRecordGetDelta
NSubjectGetFace
NVoiceGetObjectCount
NFPatternClassTypeOf
NFRecordGetMinutiaNeighbors
NEAttributesRemoveOuterBoundaryPointsCollectionChanged
NFRecordGetDeltaCount
NFPositionTypeOf
NLAttributesGetBoundingRect
NFrictionRidgeGetObjects
NEAttributesAddInnerBoundaryPointsCollectionChanged
NSubjectGetIris
NMatchingResultGetMatchingDetails
NLAttributesGetTokenImageRect
NFrictionRidgeGetBinarizedImage
NLAttributesGetLivenessAction
NFRecordGetHorzResolution
NBiometricNfiq1ToNfiqQuality
NEAttributesGetTemplate
NFingerGetTipsWarning
NfiqQualityTypeOf
NFRecordGetDoubleCoreCount
NEAttributesRemoveInnerBoundaryPointsCollectionChanged
NSubjectGetFinger
NBiometricGetStatus
NLAttributesGetLivenessScore
NGenderTypeOf
NFRecordGetCore
NLAttributesGetLeftEyeCenter
NMatchingDetailsGetVoiceEx
NFingerGetFingerAngleWarning
NVoiceGetPhraseId
NEAttributesIsOuterBoundaryAvailable
NEAttributesGetInnerBoundaryPointCount
NFAttributesGetPatternClass
NLAttributesGetGender
NFRecordGetMinutiaCount
NEAttributesGetInnerBoundaryPoint
NMatchingDetailsGetIrisEx
NMatchingDetailsGetVoiceCount
NMatchingDetailsGetFingerEx
NVoiceGetObject
NLAttributesGetYaw
NIrisRemoveObjectsCollectionChanged
NBiometricEngineGetAsync
NMatchingDetailsGetPalmCount
NMatchingDetailsGetIrisCount
NBiometricAttributesGetAttributeIndexOf
NBiometricAttributesGetAttributeThreshold
NBiometricAttributesGetAttributeValue
NBiometricAttributesGetAttributeId
NLAttributesGetIcaoWarnings
NBiometricEngineGet
NPalmTypeOf
NLTemplateGetRecordEx
NFaceGetObject
NFTemplateGetRecordEx
NETemplateGetRecordEx
NSTemplateGetRecordEx
NLTemplateGetRecordCount
NSubjectAddVoice
NTemplateGetVoicesEx
NVoiceFromSoundBufferAndTemplate
NSubjectAddPalm
NTemplateGetPalmsEx
NSubjectAddIris
NTemplateGetIrisesEx
NIrisFromImageAndTemplate
NSubjectAddFace
NFaceFromImageAndAttributes
NLAttributesSetTemplate
NTemplateGetFacesEx
NLTemplateAddRecordEx
NLAttributesCreate
NLTemplateCreateEx
NFingerTypeOf
NSubjectAddFinger
NTemplateGetFingersEx
NFrictionRidgeFromImageAndTemplate
NTemplateCreateFromMemoryN
NVoiceGetSoundBuffer
NIrisGetImage
NFaceGetImage
NLAttributesGetTemplate
NFrictionRidgeGetImage
NBiometricEngineListIds
NSubjectGetMatchingResult
NSubjectGetMatchingResultCount
NMatchingResultGetId
NBiometricTaskGetStatus
NBiometricTaskGetOperations
NBiometricEngineCreateTask
NBiometricOperationsTypeOf
NSubjectCreate
NBiometricEnginePerformTaskAsync
NBiometricTaskTypeOf
NBiometricTaskGetError
NBiographicDataSchemaTypeOf
NBiometricEngineClear
NBiometricEngineInitialize
NBiographicDataSchemaGetElement
NBiographicDataElementCopy
NBiographicDataSchemaGetElementCount
NBiographicDataElementDispose
NSubjectSetIdN
NSubjectGetTemplateBuffer
NBiometricStatusTypeOf
NBiometricEngineDelete
NSubjectGetId
NSubjectCreateFromFileWithFormatN
NFrictionRidgeGetObjectCount
NMatchingResultGetScore
NFAttributesGetBoundingRect
NFrictionRidgeTypeOf
NIrisGetObject
NEAttributesIsInnerBoundaryAvailable
NLAttributesGetGenderConfidence
NFrictionRidgeGetObject
NIrisAddObjectsCollectionChanged
NFRecordGetMinutiaFormat
NIrisGetPosition
NEAttributesGetOuterBoundaryPoint
NLAttributesGetFeaturePoints
NMatchingDetailsGetFingerCount
NFAttributesGetPatternClassConfidence
NIrisGetObjectCount
NLAttributesGetLivenessTargetYaw
NSubjectGetPalm
NEAttributesAddOuterBoundaryPointsCollectionChanged
NMatchingDetailsGetFaceEx
NEAttributesGetOuterBoundaryPointCount
NFrictionRidgeGetPosition
NMatchingDetailsBaseGetScore
NFaceGetObjectCount
NLAttributesGetMouthCenter
NFaceRemoveObjectsCollectionChanged
NSubjectClearPalms
nbiometricclient
NBiometricClientForceStart
NBiometricClientSkip
NBiometricClientRemoveCurrentBiometricCompleted
NBiometricClientAddCurrentBiometricCompleted
NBiometricClientRepeat
NBiometricClientCancel
NBiometricClientForce
NBiometricClientGetCurrentBiometric
NBiometricClientSetVoiceCaptureDevice
NBiometricClientGetVoiceCaptureDevice
NBiometricClientSetPalmScanner
NBiometricClientGetPalmScanner
NBiometricClientSetIrisScanner
NBiometricClientGetIrisScanner
NBiometricClientGetFingerScanner
NBiometricClientSetFingerScanner
NBiometricClientGetFaceCaptureDevice
NBiometricClientSetFaceCaptureDevice
NBiometricClientGetDeviceManager
NBiometricClientCreate
NBiometricClientSetDatabaseConnectionToOdbcN
NBiometricClientSetLocalOperations
NBiometricClientSetUseDeviceManager
NBiometricClientSetDatabaseConnectionToSQLiteN
NMMAbisConnectionCreateN
NBiometricClientAddRemoteConnection
NBiometricClientGetRemoteConnectionCount
NBiometricClientGetRemoteConnection
NRemoteBiometricConnectionGetOperations
NBiometricClientGetLocalOperations
NClusterBiometricConnectionCreateWithHostN
nlicensing
NLicenseIsComponentActivatedN
NLicenseObtainComponentsN
NLicManGetTrialMode
NLicManSetTrialMode
ndevices
NCaptureDeviceGetFormats
NIrisScannerGetSupportedPositions
NFScannerGetSupportedPositions
NFScannerGetSupportedImpressionTypes
NDeviceIsAvailable
NMicrophoneTypeOf
NIrisScannerTypeOf
NFScannerTypeOf
NDeviceManagerAddDevicesCollectionChanged
NDeviceManagerGetPluginManager
NDeviceManagerIsConnectToDeviceSupported
NDeviceManagerGetConnectToDeviceParameters
NDeviceGetIdN
NDeviceIsDisconnectable
NDeviceGetDeviceType
NDeviceGetDisplayNameN
NCameraTypeOf
NCaptureDeviceGetCurrentFormat
NDeviceManagerConnectToDevice
NDeviceManagerDisconnectFromDevice
NCaptureDeviceSetCurrentFormat
NDeviceManagerGetDevice
NDeviceManagerGetDeviceCount
NDeviceManagerRemoveDevicesCollectionChanged
kernel32
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
GetStartupInfoW
WaitForSingleObjectEx
ResetEvent
InitializeCriticalSectionAndSpinCount
InitializeSListHead
RtlLookupFunctionEntry
IsBadStringPtrA
IsBadReadPtr
GetACP
RtlCaptureContext
FindNextFileW
WaitForMultipleObjects
GetLogicalDriveStringsW
GetDriveTypeW
ExpandEnvironmentStringsW
QueryPerformanceFrequency
QueryPerformanceCounter
OutputDebugStringW
CreateEventW
SetEvent
GetCPInfo
IsValidCodePage
FindResourceW
SizeofResource
LockResource
LoadResource
GetNativeSystemInfo
GetVersionExW
TerminateProcess
IsDebuggerPresent
GetEnvironmentVariableW
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetCurrentProcessId
CopyFileW
GetFileType
GetTempPathW
GetTempFileNameW
GetLongPathNameW
GetFileAttributesW
FindFirstFileW
FindClose
CreateFileW
WideCharToMultiByte
MultiByteToWideChar
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsAlloc
ResumeThread
SetThreadPriority
GetCurrentThread
GetCurrentProcess
WaitForSingleObject
CloseHandle
SetErrorMode
SetCurrentDirectoryW
GlobalHandle
GlobalSize
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
LoadLibraryW
FreeLibrary
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
ReadConsoleOutputCharacterA
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
FillConsoleOutputCharacterW
WriteConsoleW
WriteConsoleA
AttachConsole
FreeConsole
GetStdHandle
LocalFree
GetCommandLineW
MulDiv
GetCurrentThreadId
ExitProcess
SetLastError
GetLastError
FormatMessageW
LocalAlloc
user32
DrawTextW
GetDlgItem
CreateDialogParamW
SetWindowRgn
SetForegroundWindow
EnableMenuItem
GetSystemMenu
DrawMenuBar
GetDialogBaseUnits
CreateDialogIndirectParamW
IsZoomed
BringWindowToTop
IsIconic
GetWindowPlacement
FlashWindowEx
SetLayeredWindowAttributes
LoadCursorW
GetProcessDefaultLayout
MessageBoxW
UnregisterClassW
RegisterClassW
DrawIconEx
SystemParametersInfoW
GetScrollInfo
SetScrollInfo
IsDialogMessageW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
SetParent
GetParent
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
GetWindowLongW
PtInRect
InflateRect
FillRect
GetSysColor
ChildWindowFromPointEx
WindowFromPoint
MapWindowPoints
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
SetCursorPos
DrawFocusRect
GetClientRect
SetWindowTextW
EnableScrollBar
ScrollWindow
RedrawWindow
InvalidateRect
GetUpdateRgn
ReleaseDC
GetDC
GetMenuItemInfoW
TrackPopupMenu
GetMenuItemCount
GetSystemMetrics
SetRect
SetRectEmpty
CopyRect
OffsetRect
IsWindowEnabled
EnableWindow
ReleaseCapture
SetCapture
GetCapture
MapVirtualKeyW
VkKeyScanW
GetAsyncKeyState
GetKeyState
GetFocus
GetActiveWindow
SetFocus
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPos
MoveWindow
AnimateWindow
ShowWindow
DestroyWindow
IsWindow
CreateWindowExW
CreateIconIndirect
GetIconInfo
LoadBitmapW
LoadIconW
LoadImageW
IsMenu
keybd_event
GetWindowTextLengthW
HideCaret
DestroyIcon
RegisterWindowMessageW
PostMessageW
SetMenu
GetComboBoxInfo
GetClassInfoW
IsRectEmpty
CallWindowProcW
GetPropW
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
PostQuitMessage
DefWindowProcW
SendMessageW
GetMessageTime
GetMessagePos
ChildWindowFromPoint
FindWindowExW
GetMenuState
CreateMenu
CreatePopupMenu
DrawStateW
DestroyMenu
GetSubMenu
InsertMenuW
AppendMenuW
ModifyMenuW
RemoveMenu
SetMenuInfo
InsertMenuItemW
SetMenuItemInfoW
DrawEdge
DrawFrameControl
CheckMenuItem
GetMenuItemID
GetSysColorBrush
CheckMenuRadioItem
UnionRect
DestroyCursor
UnregisterHotKey
RegisterHotKey
PeekMessageW
DispatchMessageW
GetWindowTextW
MessageBeep
GetClassNameW
DdeFreeStringHandle
DdeQueryStringW
DdeCreateStringHandleW
DdeGetLastError
DdeFreeDataHandle
DdeGetData
DdeCreateDataHandle
DdeClientTransaction
DdeNameService
DdePostAdvise
DdeDisconnect
DdeConnect
DdeUninitialize
DdeInitializeW
KillTimer
SetTimer
MsgWaitForMultipleObjects
NotifyWinEvent
IsClipboardFormatAvailable
wsprintfW
EnumDisplayMonitors
GetMonitorInfoW
MonitorFromWindow
MonitorFromPoint
EnumDisplaySettingsW
ChangeDisplaySettingsExW
ShowCursor
AdjustWindowRectEx
GetClipboardFormatNameW
RegisterClipboardFormatW
ValidateRgn
GetDesktopWindow
EndPaint
BeginPaint
GetWindowDC
ValidateRect
PostThreadMessageW
GetMessageW
GetCaretBlinkTime
GetDoubleClickTime
TranslateAcceleratorW
DestroyAcceleratorTable
GetWindowRect
CreateAcceleratorTableW
TranslateMessage
UpdateWindow
gdi32
CreateFontIndirectW
GdiFlush
DeleteObject
PatBlt
SetBrushOrgEx
SelectPalette
SelectObject
RealizePalette
GetDeviceCaps
ExcludeClipRect
GetTextMetricsW
GetOutlineTextMetricsW
GetSystemPaletteEntries
EndPage
StartPage
EndDoc
StartDocW
SetAbortProc
EnumFontFamiliesExW
CreateDCW
SetDIBColorTable
GetDIBColorTable
CreateDIBSection
GetDIBits
CreateDIBitmap
PlayEnhMetaFile
GetEnhMetaFileHeader
GetEnhMetaFileW
DeleteEnhMetaFile
CreateEnhMetaFileW
CloseEnhMetaFile
GetTextExtentExPointW
GetCharABCWidthsW
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
PtInRegion
GetRgnBox
EqualRgn
MoveToEx
LineTo
GetBkColor
RectInRegion
CreateRectRgnIndirect
CombineRgn
CreateICW
SetViewportOrgEx
ExtCreatePen
CreatePen
GetTextExtentPoint32W
CreateBitmapIndirect
CreateBitmap
OffsetRgn
SetWindowOrgEx
SetWindowExtEx
SetViewportExtEx
PolyBezier
Polyline
Polygon
LPtoDP
DPtoLP
CreatePolygonRgn
ExtTextOutW
GetObjectW
ModifyWorldTransform
SetWorldTransform
GetWorldTransform
SetTextColor
SetStretchBltMode
SetROP2
StretchDIBits
StretchBlt
SetPolyFillMode
SetPixel
GetLayout
SetLayout
SetMapMode
SetGraphicsMode
SetBkMode
SetBkColor
ExtSelectClipRgn
SelectClipRgn
RoundRect
Rectangle
PolyPolygon
Pie
MaskBlt
GetWindowExtEx
GetViewportExtEx
GetRegionData
GetPixel
GetObjectType
GetGraphicsMode
GetClipBox
ExtFloodFill
ExtCreateRegion
Ellipse
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
Arc
GetStockObject
CreateSolidBrush
CreatePatternBrush
CreateHatchBrush
CreateRectRgn
winspool.drv
DocumentPropertiesW
ClosePrinter
OpenPrinterW
GetPrinterW
comdlg32
PrintDlgW
ChooseFontW
CommDlgExtendedError
GetSaveFileNameW
GetOpenFileNameW
ChooseColorW
PageSetupDlgW
advapi32
RegCloseKey
RegSetValueExW
GetUserNameW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
shell32
ShellExecuteExW
ord6
SHGetFileInfoW
SHBrowseForFolderW
SHGetFolderPathW
SHGetMalloc
ExtractIconExW
ExtractIconW
CommandLineToArgvW
DragAcceptFiles
DragFinish
DragQueryPoint
DragQueryFileW
SHGetPathFromIDListW
ole32
ReleaseStgMedium
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleSetClipboard
CoTaskMemAlloc
CoCreateInstance
OleUninitialize
OleInitialize
DoDragDrop
OleGetClipboard
OleFlushClipboard
CoTaskMemFree
OleIsCurrentClipboard
oleaut32
SafeArrayUnlock
SafeArrayLock
VarBstrFromCy
SafeArrayGetVartype
SafeArrayDestroy
SafeArrayCreate
SystemTimeToVariantTime
SysStringLen
VariantInit
SysFreeString
SysAllocString
msvcp140
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Xout_of_range@std@@YAXPEBD@Z
?uncaught_exception@std@@YA_NXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?__ExceptionPtrToBool@@YA_NPEBX@Z
?__ExceptionPtrSwap@@YAXPEAX0@Z
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAN@Z
?_Xlength_error@std@@YAXPEBD@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
oleacc
CreateStdAccessibleObject
LresultFromObject
uxtheme
GetThemeMargins
SetWindowTheme
GetThemeBackgroundExtent
GetCurrentThemeName
GetThemePartSize
GetThemeInt
GetThemeSysColor
GetThemeSysFont
GetThemeFont
IsThemeActive
IsAppThemed
IsThemePartDefined
OpenThemeData
GetThemeColor
IsThemeBackgroundPartiallyTransparent
GetThemeBackgroundContentRect
DrawThemeBackground
CloseThemeData
DrawThemeParentBackground
msimg32
GradientFill
AlphaBlend
shlwapi
AssocQueryStringW
SHAutoComplete
vcruntime140
__RTDynamicCast
__std_exception_destroy
__std_exception_copy
__intrinsic_setjmp
__CxxFrameHandler3
__std_terminate
_purecall
__RTtypeid
__std_type_info_compare
__std_type_info_name
wcschr
__C_specific_handler
memcpy
memmove
memset
_CxxThrowException
memcmp
__RTCastToVoid
strstr
strchr
longjmp
wcsstr
_set_se_translator
api-ms-win-crt-stdio-l1-1-0
_fileno
_open_osfhandle
_wfopen
clearerr
feof
ferror
_fseeki64
_ftelli64
fwrite
_wsopen_dispatch
__stdio_common_vfwprintf
_close
_commit
_read
_write
_lseeki64
_telli64
_set_fmode
__stdio_common_vswprintf
__stdio_common_vswprintf_p
__p__commode
__stdio_common_vswscanf
__stdio_common_vsscanf
fread
fclose
_get_osfhandle
__stdio_common_vswprintf_s
__stdio_common_vsprintf
__stdio_common_vfprintf
__acrt_iob_func
fflush
api-ms-win-crt-heap-l1-1-0
_set_new_mode
free
realloc
_callnewh
malloc
calloc
api-ms-win-crt-runtime-l1-1-0
_exit
_initterm_e
_initterm
_c_exit
terminate
_register_thread_local_exe_atexit_callback
_initialize_onexit_table
_initialize_narrow_environment
abort
_beginthreadex
_errno
_register_onexit_function
_get_narrow_winmain_command_line
_invalid_parameter_noinfo_noreturn
_set_app_type
_seh_filter_exe
_cexit
_crt_atexit
_configure_narrow_argv
exit
api-ms-win-crt-math-l1-1-0
cosf
floorf
fmodf
pow
atan2f
sqrtf
powf
tanf
lroundf
acosf
sin
cos
lround
_dtest
log10
floor
atan2
roundf
ceil
fmod
_fdopen
ceilf
__setusermatherr
sqrt
sinf
api-ms-win-crt-string-l1-1-0
tolower
strncpy
iswdigit
towupper
wcsncpy
toupper
iswalnum
iswalpha
isspace
_strdup
iswspace
iswprint
iswxdigit
_wcsicmp
wcspbrk
towlower
strncmp
strcmp
api-ms-win-crt-convert-l1-1-0
atof
_wtol
strtoul
_wcstoui64
_wcstoi64
wcstoul
wcstol
_wcstod_l
wcstod
strtoll
strtol
_wtoi
api-ms-win-crt-time-l1-1-0
_get_timezone
_tzset
clock
wcsftime
_localtime64
_mktime64
_time64
_gmtime64
api-ms-win-crt-utility-l1-1-0
rand_s
qsort
bsearch
api-ms-win-crt-filesystem-l1-1-0
_wremove
_wmkdir
_wrename
api-ms-win-crt-environment-l1-1-0
getenv
_wgetenv
_wgetcwd
api-ms-win-crt-locale-l1-1-0
_create_locale
setlocale
_configthreadlocale
_free_locale
Sections
.text Size: 4.5MB - Virtual size: 4.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.8MB - Virtual size: 2.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 246KB - Virtual size: 448KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 205KB - Virtual size: 204KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 125KB - Virtual size: 124KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ