Static task
static1
Behavioral task
behavioral1
Sample
70a6f8d874b85e1029e949d057980bc482f31aa9fd15c980914500f5e623a3c7.exe
Resource
win7-20230831-en
windows7-x64
Behavioral task
behavioral2
Sample
70a6f8d874b85e1029e949d057980bc482f31aa9fd15c980914500f5e623a3c7.exe
Resource
win10v2004-20230915-en
windows10-2004-x64
General
-
Target
70a6f8d874b85e1029e949d057980bc482f31aa9fd15c980914500f5e623a3c7
-
Size
242KB
-
MD5
e275e7ee1f942752a89b83a9af6c9342
-
SHA1
151e9c2d32af35f2d43d183f94ba3c772b8770f9
-
SHA256
70a6f8d874b85e1029e949d057980bc482f31aa9fd15c980914500f5e623a3c7
-
SHA512
2e8e3c4d5c53544fac239b1b83afcddc1b3948f59de17ca521385d681e3ab4423add506deff87dff7aace166331f457c5a4510fdbea8829bdd5c3ea9f994c443
-
SSDEEP
3072:vW+aoJlL2mghtnvv8b8/BntyDm19Tiak:jao325LnvT/BntyD+9T
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 70a6f8d874b85e1029e949d057980bc482f31aa9fd15c980914500f5e623a3c7
Files
-
70a6f8d874b85e1029e949d057980bc482f31aa9fd15c980914500f5e623a3c7.exe windows:6 windows x64
5c65880be600764f3c204eca279bd180
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
gmpwidgets
?show@GMPMainForm@@QEAAXXZ
?initialize@GMPMainForm@@QEAAXXZ
??_DGMPMainForm@@QEAAXXZ
??0GMPMainForm@@QEAA@PEAVGMPUIPluginService@@@Z
gmpcore
??0GMPBroadcastEventBeforeStartup@@QEAA@XZ
??1GMPBroadcastEventBeforeStartup@@UEAA@XZ
??0GMPBroadcastEventInitUserLoginSetting@@QEAA@XZ
??1GMPBroadcastEventInitUserLoginSetting@@UEAA@XZ
??1GMPBroadcastEventWelcome@@UEAA@XZ
??0GMPApplication@@QEAA@AEAHPEAPEADH@Z
??0GMPBroadcastEventWelcome@@QEAA@PEAVGLDMainForm@@@Z
??1GMPBroadcastEvent@@UEAA@XZ
??0GMPBroadcastEvent@@QEAA@H@Z
?addShortcutObj@GMPShortcutKeyMgr@@QEAAXPEAVQObject@@@Z
?freeInstance@GMPShortcutKeyMgr@@SAXXZ
?execSystemCheck@@YA_NXZ
?ProcHighDpiScreen@@YAPEAPEADAEAHPEAPEAD@Z
?initialize@GMPApplication@@QEAAXAEBVQString@@_N0@Z
??1GMPApplication@@UEAA@XZ
??0GMPUIPluginService@@QEAA@_N@Z
?instance@GMPShortcutKeyMgr@@SAPEAV1@XZ
??1GMPUIPluginService@@UEAA@XZ
?initializeGGDB@GMPUIPluginService@@QEAAXXZ
?initAppInfo@GMPUIPluginService@@QEAAXXZ
?loadPlugin@GMPUIPluginService@@QEAA_NVQString@@@Z
?unloadPlugin@GMPUIPluginService@@QEAAXXZ
?registerMainForm@GMPUniqueManager@@SAX_K@Z
?checkUnique@GMPUniqueManager@@SA_NXZ
?getUiPluginFacades@GMPUIPluginService@@UEAAAEAV?$QList@PEAVIGLDUIPluginFacade@@@@XZ
?loadGMPUiPluginsFacade@GMPUIPluginService@@MEAA_NAEBVQString@@@Z
?sendBroadcast@GMPBroadcastService@@SAXPEAVGMPBroadcastEvent@@_N@Z
getGMPLicence
?clearTags@GMPGlobalTags@@SAXXZ
gmpcloud
??0GMPLoginItemExtension@@QEAA@XZ
?onOfflineAuth@GMPLoginHelperExtension@@UEAA_NAEAHAEAVQString@@@Z
?onAuthSuccess@GMPLoginHelperExtension@@UEAA_NXZ
?onAuthFailed@GMPLoginHelperExtension@@UEAA_NXZ
?getGMPLicenceErrorMessage@@YA?AVQString@@W4GMPLicenceResult@@@Z
?initCloudService@@YAXXZ
?startCloudService@@YAXXZ
?stopCloudService@@YAXXZ
?initGMPIPCService@@YAXAEBVQString@@@Z
?releaseGMPIPCService@@YAXXZ
??1GMPLoginItemExtension@@UEAA@XZ
??0GMPLoginHelperExtension@@QEAA@XZ
??1GMPLoginHelperExtension@@UEAA@XZ
?auth@GMPLoginItemExtension@@UEAAXAEBUGUserInfo@@AEAHAEAVQString@@@Z
?authLicence@GMPLoginItemExtension@@UEAA?AW4GMPLicenceResult@@AEBUGUserInfo@@AEAHAEAVQString@@@Z
guc
getGUCFuncMgr
?parseUnitConfigXMLFile@GUCFuncMgr@GUC@@SA_NVQString@@_N@Z
vmprotectsdk64
VMProtectBegin
ggdb
?DatabaseCheck@CDatabase@ggp@@QEAA_NW4EnCheckLevel@2@_N@Z
?Flush@CDatabase@ggp@@QEAA_NXZ
log64
?deinitialize@GMPLog4Helper@@SAXXZ
?initialize@GMPLog4Helper@@SAXXZ
gmpproject
??1GMPProcessLocker@@QEAA@XZ
??0GMPProcessLocker@@QEAA@AEBVQString@@H@Z
?removeAll@GMPProcessFileManager@@QEAAXXZ
?getTempFilePath@GMPProcessFileManager@@QEAA?AVQString@@AEBV2@@Z
?getInstance@GMPProcessFileManager@@SAAEAV1@XZ
?appDataPath@GMPAppInfo@@QEAA?AVQString@@XZ
?maxProcessCount@GMPAppInfo@@QEAAHXZ
?multiProcess@GMPAppInfo@@QEAA_NXZ
?projectExt@GMPAppInfo@@QEAA?AVQString@@XZ
?productTitle@GMPAppInfo@@QEAA?AVQString@@XZ
?productCode@GMPAppInfo@@QEAA?AVQString@@XZ
?setSysOption@GMPSystemOptions@@QEAAXAEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@AEBVQVariant@@_N@Z
?getInstance@GMPSystemOptions@@SAPEAV1@XZ
?closeAll@GMPGGDBManager@@QEAAXXZ
?getGGDB@GMPGGDBManager@@QEAAPEAVCDatabase@ggp@@AEBVQString@@_N@Z
?ggdbMgr@GMPGGDBManager@@SAPEAV1@XZ
?gAppInfo@GMPAppInfo@@SAPEAV1@XZ
?productId@GMPAppInfo@@QEAAFXZ
gmpubc
?logUbcDataProtocolNew@GMPUbc@@QEAAXAEAUUbcDataProtocol@@@Z
?initUbcDataProtocol@GMPUbc@@QEAAXAEAUUbcDataProtocol@@@Z
?instance@GMPUbc@@SAPEAV1@XZ
gmpcontrols
?setConfigFileDir@GMPConfigManager@@QEAAXAEBVQString@@@Z
?initSkin@GMPStyleData@@QEAAXXZ
?getInstance@GMPStyleData@@SAAEAV1@XZ
?setCurrentTip@GMPSplashScreen@@QEAAXW4GMPSplashTip@@@Z
?setPixmap@GMPSplashScreen@@QEAAXAEBVQPixmap@@@Z
?setTitle@GMPSplashScreen@@QEAAXAEBVQString@@@Z
??1GMPSplashScreen@@UEAA@XZ
??0GMPSplashScreen@@QEAA@AEBVQString@@AEBVQPixmap@@V?$QFlags@W4WindowType@Qt@@@@@Z
?confirmDlg@gmp@@YAHAEBVQString@@HPEAVQWidget@@@Z
?information@GMPMessageBox@@SA?AW4GLDStandardButton@GlodonStandardDialog@@PEAVQWidget@@AEBVQString@@1V?$QFlags@W4GLDStandardButton@GlodonStandardDialog@@@@W423@1@Z
?exec@GMPMessageBox@@UEAAHXZ
??1GMPMessageBox@@UEAA@XZ
??0GMPMessageBox@@QEAA@AEBVQString@@0W4Type@GlodonMessageBox@@PEAVQWidget@@V?$QFlags@W4GLDStandardButton@GlodonStandardDialog@@@@W4GLDStandardButton@GlodonStandardDialog@@0@Z
?getConfigFilePath@GMPConfigManager@@QEAA?AVQString@@XZ
?metaObject@GMPSplashScreen@@UEBAPEBUQMetaObject@@XZ
?qt_metacall@GMPSplashScreen@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@GMPSplashScreen@@UEAAPEAXPEBD@Z
?getInstance@GMPConfigManager@@SAAEAV1@XZ
gmcommon
?getProjectFilePath@@YA?AVQString@@VQStringList@@AEBV1@@Z
?getInstance@GMPTranslations@@SAPEAV1@XZ
?StartGMPProcessAPIHook@gmp@@YAXXZ
?getCommandLineArgv@@YA?AVQStringList@@XZ
?exitInstance@GMPTranslations@@SAXXZ
?type@GMPCustomException@@QEBAIXZ
?message@GMPCustomException@@QEBA?AVQString@@XZ
?instance@GMPIPCService@@SAPEAV1@XZ
?processCount@GMPIPCService@@QEAAHXZ
gmpcloudlogin
?authLoginStartup@GMPLoginHelper@@SA_NXZ
?getLoginIntf@GMPAccountMgr@@SAPEAVGMPLoginIntf@@XZ
?setFrameColor@GMPLoginHelper@@SAXAEBVQString@@@Z
?bindExtension@GMPLoginHelper@@SAXPEAVIGMPLoginStartupExtension@@@Z
qt5widgets
?sizeHint@QWidget@@UEBA?AVQSize@@XZ
?paintEvent@QWidget@@MEAAXPEAVQPaintEvent@@@Z
?mouseReleaseEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?minimumSizeHint@QWidget@@UEBA?AVQSize@@XZ
?keyReleaseEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QWidget@@MEAAXPEAVQKeyEvent@@@Z
?focusOutEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?focusInEvent@QWidget@@MEAAXPEAVQFocusEvent@@@Z
?event@QWidget@@MEAA_NPEAVQEvent@@@Z
?changeEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?exec@QApplication@@SAHXZ
?close@QWidget@@QEAA_NXZ
?show@QWidget@@QEAAXXZ
?winId@QWidget@@QEBA_KXZ
?wheelEvent@QWidget@@MEAAXPEAVQWheelEvent@@@Z
?timerEvent@QAbstractButton@@MEAAXPEAVQTimerEvent@@@Z
?hasHeightForWidth@QWidget@@UEBA_NXZ
??0QPushButton@@QEAA@AEBVQString@@PEAVQWidget@@@Z
?tabletEvent@QWidget@@MEAAXPEAVQTabletEvent@@@Z
?sizeHint@QPushButton@@UEBA?AVQSize@@XZ
?showEvent@QWidget@@MEAAXPEAVQShowEvent@@@Z
?sharedPainter@QWidget@@MEBAPEAVQPainter@@XZ
?setVisible@QWidget@@UEAAX_N@Z
?resizeEvent@QWidget@@MEAAXPEAVQResizeEvent@@@Z
?redirected@QWidget@@MEBAPEAVQPaintDevice@@PEAVQPoint@@@Z
?qt_metacast@QPushButton@@UEAAPEAXPEBD@Z
?qt_metacall@QPushButton@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?paintEvent@QPushButton@@MEAAXPEAVQPaintEvent@@@Z
?paintEngine@QWidget@@UEBAPEAVQPaintEngine@@XZ
?nextCheckState@QAbstractButton@@MEAAXXZ
?nativeEvent@QWidget@@MEAA_NAEBVQByteArray@@PEAXPEAJ@Z
?moveEvent@QWidget@@MEAAXPEAVQMoveEvent@@@Z
?mouseReleaseEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mousePressEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mouseMoveEvent@QAbstractButton@@MEAAXPEAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QWidget@@MEAAXPEAVQMouseEvent@@@Z
?minimumSizeHint@QPushButton@@UEBA?AVQSize@@XZ
?metric@QWidget@@MEBAHW4PaintDeviceMetric@QPaintDevice@@@Z
?metaObject@QPushButton@@UEBAPEBUQMetaObject@@XZ
?leaveEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?keyReleaseEvent@QAbstractButton@@MEAAXPEAVQKeyEvent@@@Z
?keyPressEvent@QPushButton@@MEAAXPEAVQKeyEvent@@@Z
?inputMethodQuery@QWidget@@UEBA?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QWidget@@MEAAXPEAVQInputMethodEvent@@@Z
?initPainter@QWidget@@MEBAXPEAVQPainter@@@Z
?hitButton@QAbstractButton@@MEBA_NAEBVQPoint@@@Z
?hideEvent@QWidget@@MEAAXPEAVQHideEvent@@@Z
??1QPushButton@@UEAA@XZ
?activeWindow@QApplication@@SAPEAVQWidget@@XZ
?actionEvent@QWidget@@MEAAXPEAVQActionEvent@@@Z
?changeEvent@QAbstractButton@@MEAAXPEAVQEvent@@@Z
?checkStateSet@QAbstractButton@@MEAAXXZ
?closeEvent@QWidget@@MEAAXPEAVQCloseEvent@@@Z
?contextMenuEvent@QWidget@@MEAAXPEAVQContextMenuEvent@@@Z
?devType@QWidget@@UEBAHXZ
?dragEnterEvent@QWidget@@MEAAXPEAVQDragEnterEvent@@@Z
?dragLeaveEvent@QWidget@@MEAAXPEAVQDragLeaveEvent@@@Z
?dragMoveEvent@QWidget@@MEAAXPEAVQDragMoveEvent@@@Z
?dropEvent@QWidget@@MEAAXPEAVQDropEvent@@@Z
?enterEvent@QWidget@@MEAAXPEAVQEvent@@@Z
?event@QPushButton@@MEAA_NPEAVQEvent@@@Z
?focusInEvent@QPushButton@@MEAAXPEAVQFocusEvent@@@Z
?focusNextPrevChild@QWidget@@MEAA_N_N@Z
?focusOutEvent@QPushButton@@MEAAXPEAVQFocusEvent@@@Z
?heightForWidth@QWidget@@UEBAHH@Z
qt5gui
??1QPixmap@@UEAA@XZ
??0QPixmap@@QEAA@AEBVQString@@PEBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z
??0QPixmap@@QEAA@XZ
qt5core
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?invokeMethod@QMetaObject@@SA_NPEAVQObject@@PEBDW4ConnectionType@Qt@@VQGenericReturnArgument@@VQGenericArgument@@444444444@Z
??0QChar@@QEAA@H@Z
??4QString@@QEAAAEAV0@$$QEAV0@@Z
??0QObject@@QEAA@PEAV0@@Z
??1QObject@@UEAA@XZ
?cast@QMetaObject@@QEBAPEAVQObject@@PEAV2@@Z
?fromUtf8@QString@@SA?AV1@PEBDH@Z
??0QByteArray@@QEAA@PEBDH@Z
??1QByteArray@@QEAA@XZ
?toHex@QByteArray@@QEBA?AV1@XZ
??0QString@@QEAA@AEBV0@@Z
??4QString@@QEAAAEAV0@AEBV0@@Z
?arg@QString@@QEBA?AV1@KHHVQChar@@@Z
?arg@QString@@QEBA?AV1@HHHVQChar@@@Z
?simplified@QString@@QEHAA?AV1@XZ
?replace@QString@@QEAAAEAV1@AEBV1@0W4CaseSensitivity@Qt@@@Z
?split@QString@@QEBA?AVQStringList@@VQChar@@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z
?fromLocal8Bit@QString@@SA?AV1@AEBVQByteArray@@@Z
?fromWCharArray@QString@@SA?AV1@PEB_WH@Z
?compare@QString@@QEBAHAEBV1@W4CaseSensitivity@Qt@@@Z
?toUInt@QString@@QEBAIPEA_NH@Z
?number@QString@@SA?AV1@_JH@Z
?number@QString@@SA?AV1@_KH@Z
??8@YA_NAEBVQString@@0@Z
??M@YA_NAEBVQString@@0@Z
??0QString@@QEAA@AEBVQByteArray@@@Z
?fromStdWString@QString@@SA?AV1@AEBV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?toStdWString@QString@@QEBA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?detach@QListData@@QEAAPEAUData@1@H@Z
?detach_grow@QListData@@QEAAPEAUData@1@PEAHH@Z
?dispose@QListData@@SAXPEAUData@1@@Z
?append@QListData@@QEAAPEAPEAXXZ
?size@QListData@@QEBAHXZ
?at@QListData@@QEBAPEAPEAXH@Z
?begin@QListData@@QEBAPEAPEAXXZ
?end@QListData@@QEBAPEAPEAXXZ
?typeFlags@QMetaType@@SA?AV?$QFlags@W4TypeFlag@QMetaType@@@@H@Z
?property@QObject@@QEBA?AVQVariant@@PEBD@Z
?freeNodeAndRebalance@QMapDataBase@@QEAAXPEAUQMapNodeBase@@@Z
?recalcMostLeftNode@QMapDataBase@@QEAAXXZ
?createNode@QMapDataBase@@QEAAPEAUQMapNodeBase@@HHPEAU2@_N@Z
?freeTree@QMapDataBase@@QEAAXPEAUQMapNodeBase@@H@Z
?createData@QMapDataBase@@SAPEAU1@XZ
?freeData@QMapDataBase@@SAXPEAU1@@Z
??0QVariant@@QEAA@XZ
??1QVariant@@QEAA@XZ
??0QVariant@@QEAA@_N@Z
??0QVariant@@QEAA@PEBD@Z
??0QVariant@@QEAA@AEBVQString@@@Z
?userType@QVariant@@QEBAHXZ
?toString@QVariant@@QEBA?AVQString@@XZ
?constData@QVariant@@QEBAPEBXXZ
?convert@QVariant@@QEBA_NHPEAX@Z
?msleep@QThread@@SAXK@Z
?setAttribute@QCoreApplication@@SAXW4ApplicationAttribute@Qt@@_N@Z
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
?applicationFilePath@QCoreApplication@@SA?AVQString@@XZ
?exists@QFile@@SA_NAEBVQString@@@Z
??1QDateTime@@QEAA@XZ
?secsTo@QDateTime@@QEBA_JAEBV1@@Z
?currentDateTime@QDateTime@@SA?AV1@XZ
??0QFileInfo@@QEAA@AEBVQString@@@Z
??1QFileInfo@@QEAA@XZ
?absolutePath@QFileInfo@@QEBA?AVQString@@XZ
??1QDir@@QEAA@XZ
?absoluteFilePath@QDir@@QEBA?AVQString@@AEBV2@@Z
?temp@QDir@@SA?AV1@XZ
??0QSettings@@QEAA@AEBVQString@@W4Format@0@PEAVQObject@@@Z
??1QSettings@@UEAA@XZ
?setValue@QSettings@@QEAAXAEBVQString@@AEBVQVariant@@@Z
?value@QSettings@@QEBA?AVQVariant@@AEBVQString@@AEBV2@@Z
??0QLockFile@@QEAA@AEBVQString@@@Z
??1QLockFile@@QEAA@XZ
?tryLock@QLockFile@@QEAA_NH@Z
?hash@QCryptographicHash@@SA?AVQByteArray@@AEBV2@W4Algorithm@1@@Z
?resolve@QLibrary@@SAP6AXXZAEBVQString@@PEBD@Z
??0QProcess@@QEAA@PEAVQObject@@@Z
??1QProcess@@UEAA@XZ
?start@QProcess@@QEAAXAEBVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?waitForFinished@QProcess@@QEAA_NH@Z
?readAllStandardOutput@QProcess@@QEAA?AVQByteArray@@XZ
?shared_null@QListData@@2UData@1@B
?shared_null@QMapDataBase@@2U1@B
?self@QCoreApplication@@0PEAV1@EA
?append@QString@@QEAAAEAV1@AEBV1@@Z
??0QString@@QEAA@XZ
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?translate@QCoreApplication@@SA?AVQString@@PEBD00H@Z
?qt_metacall@QObject@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?qt_metacast@QObject@@UEAAPEAXPEBD@Z
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
?fromAscii_helper@QString@@CAPEAU?$QTypedArrayData@G@@PEBDH@Z
??1QString@@QEAA@XZ
?staticMetaObject@QObject@@2UQMetaObject@@B
??0QChar@@QEAA@UQLatin1Char@@@Z
gldthemeengine
?setWindowAccentPolicy@GLDWinExtras@@SAXW4_ACCENT_STATE@1@_N@Z
gldwidget
?setText@GlodonMessageBox@@QEAAXAEBVQString@@H@Z
?addButton@GlodonStandardDialog@@QEAAXPEAVQAbstractButton@@W4GLDButtonRole@1@@Z
?buttonRole@GlodonStandardDialog@@QEBA?AW4GLDButtonRole@1@PEAVQAbstractButton@@@Z
?clickedButton@GlodonStandardDialog@@QEBAPEAVQAbstractButton@@XZ
gldcommon
?deleteFile@@YA_NAEBVQString@@@Z
?fileExists@@YA_NAEBVQString@@@Z
?includeTrailingBackslash@@YA?AVQString@@AEBV1@@Z
?exePath@@YA?AVQString@@XZ
common
??0QProfileStarter@@QEAA@PEAVQProfile@@@Z
?SetErrorReportMode@ggp@@YA?AW4ErrorReportMode@1@W421@@Z
??1QProfileStarter@@QEAA@XZ
??0QProfile@@QEAA@PEBD_N0H@Z
??1QProfile@@QEAA@XZ
mdcommon
?GetInstance@CCfgParamManager@ggp@@SAPEAV12@XZ
?GetCfgValue@CCfgParamManager@ggp@@QEAA_KW4EnCfgItemID@2@@Z
kernel32
GetProcAddress
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
LeaveCriticalSection
RtlCaptureContext
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetCommandLineW
LocalFree
WideCharToMultiByte
RtlLookupFunctionEntry
EnterCriticalSection
RtlVirtualUnwind
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeLibrary
GetModuleFileNameW
GetModuleHandleW
LoadLibraryW
CreateFileW
IsDebuggerPresent
GetFileAttributesW
GetFileSize
ReadFile
SetFileAttributesW
SetFilePointer
CloseHandle
GetCurrentProcess
GetCurrentProcessId
IsProcessorFeaturePresent
TerminateProcess
K32GetModuleFileNameExW
OpenProcess
ole32
CoUninitialize
msvcp140
?always_noconv@codecvt_base@std@@QEBA_NXZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
??Bid@locale@std@@QEAA_KXZ
?_Xout_of_range@std@@YAXPEBD@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xbad_alloc@std@@YAXXZ
??0_Lockit@std@@QEAA@H@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?_BADOFF@std@@3_JB
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
??1_Lockit@std@@QEAA@XZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
vcruntime140
_CxxThrowException
memset
memcpy
__CxxFrameHandler3
__std_terminate
memmove
wcsrchr
__std_exception_copy
__vcrt_InitializeCriticalSectionEx
__C_specific_handler
__std_exception_destroy
_purecall
api-ms-win-crt-runtime-l1-1-0
_exit
_initterm_e
_get_narrow_winmain_command_line
_register_thread_local_exe_atexit_callback
_configure_narrow_argv
exit
_initialize_narrow_environment
_initialize_onexit_table
_set_app_type
_seh_filter_exe
_initterm
terminate
_register_onexit_function
_errno
_invalid_parameter_noinfo_noreturn
_invalid_parameter_noinfo
_cexit
_crt_atexit
_c_exit
api-ms-win-crt-stdio-l1-1-0
fflush
__p__commode
fgetc
_set_fmode
ungetc
setvbuf
fwrite
_fseeki64
fsetpos
fputc
fgetpos
fclose
_get_stream_buffer_pointers
api-ms-win-crt-filesystem-l1-1-0
_lock_file
_unlock_file
api-ms-win-crt-heap-l1-1-0
free
_callnewh
malloc
_set_new_mode
api-ms-win-crt-math-l1-1-0
__setusermatherr
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
shell32
CommandLineToArgvW
Sections
.text Size: 46KB - Virtual size: 45KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 48KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.gfids Size: 512B - Virtual size: 64B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 796B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 137KB - Virtual size: 137KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ