MX[.]zip | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

MX.zip
Size

828KB
MD5

8224bdd207d478143334df409cbe8014
SHA1

8064f52e319605627d0bc4bb032530ec1875e230
SHA256

3735e9fede6677084cf0bb6a3af3c8ec08e00882aa4fa180192d387c030d915f
SHA512

6f17932cd90c2c680ed9cdb448f49db8e77486bfe5c9a9247d556a5f9193a7b249b338ed178c43a5f9ca7ff97765c49234fb70c3432fe8d19682d11333da6257
SSDEEP

12288:qms1Pw5OiAYtAkAbiGPxinCjwGAcory190qgHsZlERA2/A5etohHoUEcbx5:qz1oQiAeAn5inCsGIy190q3mRTifZ5bH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs
Checks for missing Authenticode signature.

Processes:

resource

unpack002/inf2.dll

resource
unpack002/inf2.dll

Files

MX.zip
.zip

Password: MG
NONw.img
.iso

Password: MG
document.docx.lnk
.lnk
inf2.dll
.dll windows:6 windows x86 arch:x86

Password: MG

2bc31650dd04d71ad91050df0e8b6290

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateThreadpoolWork
CompareStringEx
MultiByteToWideChar
GetCPInfo
WideCharToMultiByte
LCMapStringEx
GetLocaleInfoEx
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesExW
GetFileInformationByHandle
SetEndOfFile
InitializeSListHead
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetFileInformationByHandleEx
GetProcAddress
GetModuleHandleW
CloseThreadpoolWait
SetThreadpoolWait
CreateThreadpoolWait
CloseThreadpoolTimer
WaitForThreadpoolTimerCallbacks
SetThreadpoolTimer
CreateThreadpoolTimer
GetTickCount64
GetSystemTimeAsFileTime
GetCurrentProcessorNumber
FlushProcessWriteBuffers
CreateSemaphoreExW
CreateEventExW
SetFileInformationByHandle
InitOnceExecuteOnce
GetStringTypeW
QueryPerformanceFrequency
QueryPerformanceCounter
GetModuleHandleExW
CloseThreadpoolWork
SubmitThreadpoolWork
RaiseException
FreeLibraryWhenCallbackReturns
IsProcessorFeaturePresent
RtlCaptureStackBackTrace
DeleteCriticalSection
TryEnterCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
InitializeSRWLock
GetNativeSystemInfo
GetExitCodeThread
GetCurrentThreadId
SwitchToThread
Sleep
WaitForSingleObjectEx
SleepConditionVariableSRW
SleepConditionVariableCS
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
FormatMessageA
LocalFree
DecodePointer
EncodePointer
CreateSymbolicLinkW
CreateHardLinkW
CopyFileW
GetLastError
CloseHandle
AreFileApisANSI
GetTempPathW
SetFileTime
SetFilePointerEx
SetFileAttributesW

Exports

Exports

J?$_Getvals@_W@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
J?$_Getvals@_W@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
J?$_Getvals@_W@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z
J?0?$_Yarn@D@std@@QAE@ABV01@@Z
J?0?$_Yarn@D@std@@QAE@PBD@Z
J?0?$_Yarn@D@std@@QAE@XZ
J?0?$_Yarn@G@std@@QAE@ABV01@@Z
J?0?$_Yarn@G@std@@QAE@PBG@Z
J?0?$_Yarn@G@std@@QAE@XZ
J?0?$_Yarn@_W@std@@QAE@ABV01@@Z
J?0?$_Yarn@_W@std@@QAE@PB_W@Z
J?0?$_Yarn@_W@std@@QAE@XZ
J?0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
J?0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
J?0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
J?0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
J?0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
J?0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
J?0?$basic_iostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
J?0?$basic_iostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
J?0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
J?0?$basic_istream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
J?0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
J?0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
J?0?$basic_istream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
J?0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
J?0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
J?0?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z
J?0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
J?0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z
J?0?$basic_ostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
J?0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
J?0?$basic_ostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
J?0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
J?0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z
J?0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
J?0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z
J?0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z
J?0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
J?0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
J?0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z
J?0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
J?0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
J?0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z
J?0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z
J?0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
J?0?$codecvt@DDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$codecvt@DDU_Mbstatet@@@std@@QAE@I@Z
J?0?$codecvt@GDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$codecvt@GDU_Mbstatet@@@std@@QAE@I@Z
J?0?$codecvt@_SDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$codecvt@_SDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z
J?0?$codecvt@_SDU_Mbstatet@@@std@@QAE@I@Z
J?0?$codecvt@_UDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$codecvt@_UDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@KW4_Codecvt_mode@1@I@Z
J?0?$codecvt@_UDU_Mbstatet@@@std@@QAE@I@Z
J?0?$codecvt@_WDU_Mbstatet@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$codecvt@_WDU_Mbstatet@@@std@@QAE@I@Z
J?0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$ctype@D@std@@QAE@PBF_NI@Z
J?0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$ctype@G@std@@QAE@I@Z
J?0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$ctype@_W@std@@QAE@I@Z
J?0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
J?0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
J?0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
J?0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
J?0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
J?0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
J?0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z
J?0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
J?0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
J?0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
J?0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
J?0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
J?0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
J?0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z
J?0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
J?0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z
J?0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
J?0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z
J?0Init@ios_base@std@@QAE@XZ
J?0_Facet_base@std@@QAE@ABV01@@Z
J?0_Facet_base@std@@QAE@XZ
J?0_Init_locks@std@@QAE@XZ
J?0_Locimp@locale@std@@AAE@ABV012@@Z
J?0_Locimp@locale@std@@AAE@_N@Z
J?0_Locinfo@std@@QAE@HPBD@Z
J?0_Locinfo@std@@QAE@PBD@Z
J?0_Lockit@std@@QAE@H@Z
J?0_Lockit@std@@QAE@XZ
J?0_Timevec@std@@QAE@ABV01@@Z
J?0_Timevec@std@@QAE@PAX@Z
J?0_UShinit@std@@QAE@XZ
J?0_Winit@std@@QAE@XZ
J?0codecvt_base@std@@QAE@I@Z
J?0ctype_base@std@@QAE@I@Z
J?0facet@locale@std@@IAE@I@Z
J?0id@locale@std@@QAE@I@Z
J?0ios_base@std@@IAE@XZ
J?0task_continuation_context@Concurrency@@AAE@XZ
J?0time_base@std@@QAE@I@Z
J?1?$_Yarn@D@std@@QAE@XZ
J?1?$_Yarn@G@std@@QAE@XZ
J?1?$_Yarn@_W@std@@QAE@XZ
J?1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
J?1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ
J?1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
J?1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
J?1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
J?1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
J?1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
J?1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ
J?1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
J?1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
J?1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ
J?1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
J?1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
J?1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
J?1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
J?1?$codecvt@DDU_Mbstatet@@@std@@MAE@XZ
J?1?$codecvt@GDU_Mbstatet@@@std@@MAE@XZ
J?1?$codecvt@_SDU_Mbstatet@@@std@@MAE@XZ
J?1?$codecvt@_UDU_Mbstatet@@@std@@MAE@XZ
J?1?$codecvt@_WDU_Mbstatet@@@std@@MAE@XZ
J?1?$ctype@D@std@@MAE@XZ
J?1?$ctype@G@std@@MAE@XZ
J?1?$ctype@_W@std@@MAE@XZ
J?1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
J?1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
J?1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
J?1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
J?1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
J?1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
J?1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
J?1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
J?1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
J?1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ
J?1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ
J?1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ
J?1Init@ios_base@std@@QAE@XZ
J?1_Facet_base@std@@UAE@XZ
J?1_Init_locks@std@@QAE@XZ
J?1_Locimp@locale@std@@MAE@XZ
J?1_Locinfo@std@@QAE@XZ
J?1_Lockit@std@@QAE@XZ
J?1_Timevec@std@@QAE@XZ
J?1_UShinit@std@@QAE@XZ
J?1_Winit@std@@QAE@XZ
J?1codecvt_base@std@@UAE@XZ
J?1ctype_base@std@@UAE@XZ
J?1facet@locale@std@@MAE@XZ
J?1ios_base@std@@UAE@XZ
J?1time_base@std@@UAE@XZ
J?4?$_Iosb@H@std@@QAEAAV01@$$QAV01@@Z
J?4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z
J?4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z
J?4?$_Yarn@D@std@@QAEAAV01@PBD@Z
J?4?$_Yarn@G@std@@QAEAAV01@ABV01@@Z
J?4?$_Yarn@G@std@@QAEAAV01@PBG@Z
J?4?$_Yarn@_W@std@@QAEAAV01@ABV01@@Z
J?4?$_Yarn@_W@std@@QAEAAV01@PB_W@Z
J?4?$basic_iostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_iostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_istream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_istream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_ostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_ostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z
J?4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z
J?4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z
J?4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z
J?4Init@ios_base@std@@QAEAAV012@ABV012@@Z
J?4_Crt_new_delete@std@@QAEAAU01@$$QAU01@@Z
J?4_Crt_new_delete@std@@QAEAAU01@ABU01@@Z
J?4_Facet_base@std@@QAEAAV01@ABV01@@Z
J?4_Init_locks@std@@QAEAAV01@ABV01@@Z
J?4_Timevec@std@@QAEAAV01@ABV01@@Z
J?4_UShinit@std@@QAEAAV01@ABV01@@Z
J?4_Winit@std@@QAEAAV01@ABV01@@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
J?5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
J?5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
J?5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
J?6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z
J?6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z
J?6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
J?7ios_base@std@@QBE_NXZ
J?Bid@locale@std@@QAEIXZ
J?Bios_base@std@@QBE_NXZ
J?_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
J?_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@
J?_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@
J?_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@
J?_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@
J?_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@
J?_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
J?_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@
J?_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@
J?_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
J?_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@
J?_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
J?_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@
J?_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@
J?_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@
J?_7?$codecvt@DDU_Mbstatet@@@std@@6B@
J?_7?$codecvt@GDU_Mbstatet@@@std@@6B@
J?_7?$codecvt@_SDU_Mbstatet@@@std@@6B@
J?_7?$codecvt@_UDU_Mbstatet@@@std@@6B@
J?_7?$codecvt@_WDU_Mbstatet@@@std@@6B@
J?_7?$ctype@D@std@@6B@
J?_7?$ctype@G@std@@6B@
J?_7?$ctype@_W@std@@6B@
J?_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
J?_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
J?_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
J?_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
J?_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
J?_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
J?_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
J?_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
J?_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
J?_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
J?_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
J?_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
J?_7_Facet_base@std@@6B@
J?_7_Locimp@locale@std@@6B@
J?_7codecvt_base@std@@6B@
J?_7ctype_base@std@@6B@
J?_7facet@locale@std@@6B@
J?_7ios_base@std@@6B@
J?_7time_base@std@@6B@
J?_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
J?_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
J?_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@
J?_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@
J?_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@
J?_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@
J?_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@
J?_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@
J?_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@
J?_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
J?_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@
J?_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@
J?_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ
J?_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ
J?_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
J?_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ
J?_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ
J?_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
J?_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
J?_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ
J?_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
J?_F?$codecvt@DDU_Mbstatet@@@std@@QAEXXZ
J?_F?$codecvt@GDU_Mbstatet@@@std@@QAEXXZ
J?_F?$codecvt@_SDU_Mbstatet@@@std@@QAEXXZ
J?_F?$codecvt@_UDU_Mbstatet@@@std@@QAEXXZ
J?_F?$codecvt@_WDU_Mbstatet@@@std@@QAEXXZ
J?_F?$ctype@D@std@@QAEXXZ
J?_F?$ctype@G@std@@QAEXXZ
J?_F?$ctype@_W@std@@QAEXXZ
J?_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
J?_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
J?_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
J?_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
J?_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
J?_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
J?_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
J?_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
J?_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
J?_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ
J?_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ
J?_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ
J?_F_Locinfo@std@@QAEXXZ
J?_F_Timevec@std@@QAEXXZ
J?_Fcodecvt_base@std@@QAEXXZ
J?_Fctype_base@std@@QAEXXZ
J?_Ffacet@locale@std@@QAEXXZ
J?_Fid@locale@std@@QAEXXZ
J?_Ftime_base@std@@QAEXXZ
JCaptureCallstack@platform@details@Concurrency@@YAIPAPAXII@Z
JGetCurrentThreadId@platform@details@Concurrency@@YAJXZ
JGetNextAsyncId@platform@details@Concurrency@@YAIXZ
JReportUnhandledError@_ExceptionHolder@details@Concurrency@@AAEXXZ
J_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z
J_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
J_Addstd@ios_base@std@@SAXPAV12@@Z
J_Assign@_ContextCallback@details@Concurrency@@AAEXPAX@Z
J_Atexit@@YAXP6AXXZ@Z
J_BADOFF@std@@3_JB
J_C_str@?$_Yarn@D@std@@QBEPBDXZ
J_C_str@?$_Yarn@G@std@@QBEPBGXZ
J_C_str@?$_Yarn@_W@std@@QBEPB_WXZ
J_CallInContext@_ContextCallback@details@Concurrency@@QBEXV?$function@$$A6AXXZ@std@@_N@Z
J_Callfns@ios_base@std@@AAEXW4event@12@@Z
J_Capture@_ContextCallback@details@Concurrency@@AAEXXZ
J_Clocptr@_Locimp@locale@std@@0PAV123@A
J_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
J_Donarrow@?$ctype@G@std@@IBEDGD@Z
J_Donarrow@?$ctype@_W@std@@IBED_WD@Z
J_Dowiden@?$ctype@G@std@@IBEGD@Z
J_Dowiden@?$ctype@_W@std@@IBE_WD@Z
J_Empty@?$_Yarn@D@std@@QBE_NXZ
J_Empty@?$_Yarn@G@std@@QBE_NXZ
J_Empty@?$_Yarn@_W@std@@QBE_NXZ
J_Execute_once@std@@YAHAAUonce_flag@1@P6GHPAX1PAPAX@Z1@Z
J_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z
J_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z
J_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z
J_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z
J_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
J_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z
J_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
J_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDI@Z
J_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDI@Z
J_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDI@Z
J_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$codecvt@GDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$codecvt@_SDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$codecvt@_UDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
J_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z
J_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
J_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ
J_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
J_Getdateorder@_Locinfo@std@@QBEHXZ
J_Getdays@_Locinfo@std@@QBEPBDXZ
J_Getfalse@_Locinfo@std@@QBEPBDXZ
J_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
J_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
J_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
J_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z
J_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z
J_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AAVios_base@2@PAH@Z
J_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
J_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
J_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IBE?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AAVios_base@2@AAHPAUtm@@PBD@Z
J_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
J_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HABVlocale@2@@Z
J_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HABVlocale@2@@Z
J_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HABVlocale@2@@Z
J_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAAHABV?$ctype@D@2@@Z
J_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAAHABV?$ctype@G@2@@Z
J_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAHAAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAAHABV?$ctype@_W@2@@Z
J_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
J_Getmonths@_Locinfo@std@@QBEPBDXZ
J_Getname@_Locinfo@std@@QBEPBDXZ
J_Getptr@_Timevec@std@@QBEPAXXZ
J_Gettnames@_Locinfo@std@@QBE?AV_Timevec@2@XZ
J_Gettrue@_Locinfo@std@@QBEPBDXZ
J_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
J_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IBE_JXZ
J_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBE_JXZ
J_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
J_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
J_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
J_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
J_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
J_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
J_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
J_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEPAGXZ
J_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
J_Id_cnt@id@locale@std@@0HA
J_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADPBDH@Z
J_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADPBDH@Z
J_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADPBDH@Z
J_Incref@facet@locale@std@@UAEXXZ
J_Index@ios_base@std@@0HA

Sections

.text
Size: 389KB - Virtual size: 389KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 700KB - Virtual size: 696KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: MG

Password: MG

Password: MG

2bc31650dd04d71ad91050df0e8b6290

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 389KB - Virtual size: 389KB

.data Size: 6KB - Virtual size: 10KB

.idata Size: 6KB - Virtual size: 5KB

.rsrc Size: 700KB - Virtual size: 696KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 389KB - Virtual size: 389KB

.data
Size: 6KB - Virtual size: 10KB

.idata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 700KB - Virtual size: 696KB

.reloc
Size: 14KB - Virtual size: 13KB