Static task
static1
Behavioral task
behavioral1
Sample
b30131ea683a18a60df133fd81f3cd0d3ec9215ee528eefe7fe2d8563854b0b1.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
b30131ea683a18a60df133fd81f3cd0d3ec9215ee528eefe7fe2d8563854b0b1.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
b30131ea683a18a60df133fd81f3cd0d3ec9215ee528eefe7fe2d8563854b0b1
-
Size
7.7MB
-
MD5
7f1aad5797c70324ffa9593a5219837f
-
SHA1
80884050f913dc60765ae343d239021cfcfa123e
-
SHA256
b30131ea683a18a60df133fd81f3cd0d3ec9215ee528eefe7fe2d8563854b0b1
-
SHA512
855d55bf23984c58f6e6c678906794787527d5c0c00802f488a13af38a2a195bd8b7a06b7fbed14826983f0884cce980705c3f7f36fa72b60f2fb83454e75d66
-
SSDEEP
196608:azE8M/YqHtf56h7Nhm/zNxZw5M+kOMIMust6cgnAmjpG:pawkc2
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b30131ea683a18a60df133fd81f3cd0d3ec9215ee528eefe7fe2d8563854b0b1
Files
-
b30131ea683a18a60df133fd81f3cd0d3ec9215ee528eefe7fe2d8563854b0b1.exe windows:6 windows x86 arch:x86
42914d1954b6faa48265fe6f9be01b3b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
utilitiesd
??0?$TStringT@DUchar_traits@SOUI@@@SOUI@@QAE@PBD@Z
?first_child@xml_node@pugi@@QBE?AV12@XZ
?name@xml_node@pugi@@QBEPB_WXZ
?Mid@?$TStringT@DUchar_traits@SOUI@@@SOUI@@QBE?AV12@HH@Z
??A?$TStringT@DUchar_traits@SOUI@@@SOUI@@QBEDH@Z
?GetLength@?$TStringT@DUchar_traits@SOUI@@@SOUI@@QBEHXZ
?SafeStrlen_s@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@SAHPB_W@Z
?SetAttribute@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UAEJABV?$TStringT@_WUwchar_traits@SOUI@@@2@0H@Z
?InitFromXml@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UAEHVxml_node@pugi@@@Z
?GetAttribute@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UBE?AV?$TStringT@_WUwchar_traits@SOUI@@@2@ABV32@@Z
?DefAttributeProc@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UAEJABV?$TStringT@_WUwchar_traits@SOUI@@@2@0H@Z
?AfterAttribute@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UAEJABV?$TStringT@_WUwchar_traits@SOUI@@@2@0HJ@Z
??1xml_document@pugi@@QAE@XZ
??0xml_document@pugi@@QAE@XZ
?append_copy@xml_node@pugi@@QAE?AV12@ABV12@@Z
?child@xml_node@pugi@@QBE?AV12@PB_W_N@Z
??Bxml_node@pugi@@QBEP6AXPAPAPAV01@@ZXZ
?CompareNoCase@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBEHPB_W@Z
?GetBuffer@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEPA_WH@Z
?Replace@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEH_W0@Z
?TrimRight@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEAAV12@_W@Z
?ConcatCopy@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@IAE_NHPB_WH0@Z
?GetData@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@IBEPAUTStringData@2@XZ
?SouiMalloc@soui_mem_wrapper@SOUI@@SAPAXI@Z
?SetAttribute@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UAEJPBD0H@Z
?SetAttribute@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UAEJABV?$TStringT@DUchar_traits@SOUI@@@2@0H@Z
?OnInitFinished@?$SObjectImpl@UIObject@SOUI@@@SOUI@@UAEXVxml_node@pugi@@@Z
?Remove@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEH_W@Z
??Y?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEABV01@_W@Z
??Y?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEABV01@ABV01@@Z
??4?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEAAV01@PB_W@Z
?CvtW2W@SStrCpCvt@SOUI@@SA?AV?$TStringT@_WUwchar_traits@SOUI@@@2@ABV32@I@Z
?Find@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBEHPB_WH@Z
?ReverseFind@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBEH_W@Z
?Find@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBEH_WH@Z
?Replace@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEHPB_W0@Z
?TrimBlank@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEXXZ
?TrimLeft@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEAAV12@_W@Z
?Left@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBE?AV12@H@Z
?Mid@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBE?AV12@HH@Z
??4?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAEAAV01@ABV01@@Z
??A?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBE_WH@Z
?IsEmpty@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBE_NXZ
?GetLength@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBEHXZ
??0?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAE@PB_W@Z
??0?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAE@ABV01@@Z
?SouiFree@soui_mem_wrapper@SOUI@@SAXPAX@Z
?SouiCalloc@soui_mem_wrapper@SOUI@@SAPAXII@Z
?CvtA2W@SStrCpCvt@SOUI@@SA?AV?$TStringT@_WUwchar_traits@SOUI@@@2@ABV?$TStringT@DUchar_traits@SOUI@@@2@II@Z
?CvtW2A@SStrCpCvt@SOUI@@SA?AV?$TStringT@DUchar_traits@SOUI@@@2@ABV?$TStringT@_WUwchar_traits@SOUI@@@2@I@Z
?Format@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAA?AV12@PB_WZZ
?Right@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBE?AV12@H@Z
?Compare@?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBEHPB_W@Z
??B?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QBEPB_WXZ
??1?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAE@XZ
??0?$TStringT@_WUwchar_traits@SOUI@@@SOUI@@QAE@XZ
?Format@?$TStringT@DUchar_traits@SOUI@@@SOUI@@QAA?AV12@PBDZZ
??B?$TStringT@DUchar_traits@SOUI@@@SOUI@@QBEPBDXZ
??1?$TStringT@DUchar_traits@SOUI@@@SOUI@@QAE@XZ
??0?$TStringT@DUchar_traits@SOUI@@@SOUI@@QAE@XZ
souid
?LoadXmlDocment@SApplication@SOUI@@QAEHAAVxml_document@pugi@@ABV?$TStringT@_WUwchar_traits@SOUI@@@2@@Z
?LoadIcon2@SResProviderMgr@SOUI@@QAEPAUHICON__@@ABV?$TStringT@_WUwchar_traits@SOUI@@@2@@Z
?LoadIconW@SResProviderMgr@SOUI@@QAEPAUHICON__@@PB_WHHH@Z
?ProcessWindowMessage@CSimpleWnd@SOUI@@UAEHPAUHWND__@@IIJAAJK@Z
??1CSimpleWnd@SOUI@@UAE@XZ
??0CSimpleWnd@SOUI@@QAE@PAUHWND__@@@Z
?RegisterSystemObjects@SApplication@SOUI@@MAEXXZ
?CreateWindowByName@SApplication@SOUI@@UBEPAVSWindow@2@PB_W@Z
?CreateSkinByName@SApplication@SOUI@@UBEPAVISkinObj@2@PB_W@Z
?CreateInterpolatorByName@SApplication@SOUI@@UBEPAUIInterpolator@2@PB_W@Z
?Create@SHostWnd@SOUI@@QAEPAUHWND__@@PAU3@HHHH@Z
?CenterWindow@CSimpleWnd@SOUI@@QAEHPAUHWND__@@@Z
?GetClassType@SWindow@SOUI@@SAHXZ
?CreateResProvider@SOUI@@YAHW4BUILTIN_RESTYPE@1@PAPAUIObjRef@@@Z
?Run@SApplication@SOUI@@QAEHPAUHWND__@@@Z
?LoadSystemNamedResource@SApplication@SOUI@@QAEIPAUIResProvider@2@@Z
?InitXmlNamedID@SApplication@SOUI@@QAEXPBU?$TNAMEDVALUE@H@2@HH@Z
??1SApplication@SOUI@@UAE@XZ
??0SApplication@SOUI@@QAE@PAUIRenderFactory@1@PAUHINSTANCE__@@PB_WPAUISystemObjectRegister@1@@Z
??1SObjectDefaultRegister@SOUI@@UAE@XZ
??0SObjectDefaultRegister@SOUI@@QAE@XZ
?RegisterFactory@SObjectFactoryMgr@SOUI@@QAE_NAAVSObjectFactory@2@_N@Z
??0SObjectInfo@SOUI@@QAE@ABV?$TStringT@_WUwchar_traits@SOUI@@@1@H@Z
?AddResProvider@SResProviderMgr@SOUI@@QAEXPAUIResProvider@2@PB_W@Z
?Release@?$TObjRefImpl@UISystemObjectRegister@SOUI@@@SOUI@@UAEJXZ
?RegisterWindows@SObjectDefaultRegister@SOUI@@UAEXPAVSObjectFactoryMgr@2@@Z
?RegisterSkins@SObjectDefaultRegister@SOUI@@UAEXPAVSObjectFactoryMgr@2@@Z
?RegisterLayouts@SObjectDefaultRegister@SOUI@@UAEXPAVSObjectFactoryMgr@2@@Z
?RegisterInterpolator@SObjectDefaultRegister@SOUI@@UAEXPAVSObjectFactoryMgr@2@@Z
?OnFinalRelease@?$TObjRefImpl@UISystemObjectRegister@SOUI@@@SOUI@@UAEXXZ
?AddRef@?$TObjRefImpl@UISystemObjectRegister@SOUI@@@SOUI@@UAEJXZ
?OnKillFocus@SWindow@SOUI@@IAEXK@Z
?OnSize@SWindow@SOUI@@IAEXIVCSize@2@@Z
?ReleaseCapture@SWindow@SOUI@@QAEHXZ
?SetCapture@SWindow@SOUI@@QAEKXZ
?InvalidateRect@SWindow@SOUI@@QAEXABVCRect@2@H@Z
?GetWindowRect@SWindow@SOUI@@QAEXPAUtagRECT@@@Z
?GetStyle@SWindow@SOUI@@QAEAAVSwndStyle@2@XZ
?SetMsgHandled@SMsgHandleState@SOUI@@QAEXH@Z
?IsMsgHandled@SMsgHandleState@SOUI@@QBEHXZ
?LoadCursorW@SResProviderMgr@SOUI@@QAEPAUHICON__@@PB_WH@Z
?GetMenuItem@SMenuEx@SOUI@@QAEPAVSMenuExItem@2@H@Z
?GetListView@SComboView@SOUI@@QAEPAVSListView@2@XZ
?GetClassNameW@SComboView@SOUI@@SAPB_WXZ
?GetClassNameW@SwndContainerImpl@SOUI@@SAPB_WXZ
?SetReadOnly@SRichEdit@SOUI@@QAEHH@Z
?GetClassNameW@SRichEdit@SOUI@@SAPB_WXZ
?GetClassNameW@SImageButton@SOUI@@SAPB_WXZ
?GetRoot@SWindow@SOUI@@QAEPAV12@XZ
?SetUserData@SWindow@SOUI@@QAEKK@Z
?GetState@SWindow@SOUI@@QAEKXZ
?GetClassNameW@SWindow@SOUI@@SAPB_WXZ
?setMutedState@SEventSet@SOUI@@QAEX_N@Z
?CheckState@EventSwndStateChanged@SOUI@@QAE_NK@Z
?GetClassNameW@EventSwndStateChanged@SOUI@@SAPB_WXZ
?UpdateLayout@SWindow@SOUI@@UAEXXZ
?RequestRelayout@SWindow@SOUI@@UAEXPAV12@H@Z
?ProcessWindowMessage@SDropDownWnd@SOUI@@UAEHPAUHWND__@@IIJAAJK@Z
?OnScaleChanged@SWindow@SOUI@@UAEXH@Z
?OnReleaseSwndCapture@SDropDownWnd@SOUI@@MAEHXZ
?OnLanguageChanged@SWindow@SOUI@@UAEJXZ
?OnFinalRelease@?$TObjRefImpl@UIObjRef@@@SOUI@@UAEXXZ
?OnFinalMessage@SDropDownWnd@SOUI@@MAEXPAUHWND__@@@Z
?IsLayeredWindow@SWindow@SOUI@@MBEHXZ
?InitFromXml@SWindow@SOUI@@UAEHVxml_node@pugi@@@Z
?GetScale@SWindow@SOUI@@UBEHXZ
?GetObjectClass@EventArgs@SOUI@@UBEPB_WXZ
?GetMsgLoop@SDropDownWnd@SOUI@@MAEPAVSMessageLoop@2@XZ
?GetClientRect@SWindow@SOUI@@UBE?AVCRect@2@XZ
?Create@SDropDownWnd@SOUI@@UAEHPBUtagRECT@@PAXKK@Z
?BeforePaint@SWindow@SOUI@@UAEXPAUIRenderTarget@2@AAVSPainter@2@@Z
?AfterPaint@SWindow@SOUI@@UAEXPAUIRenderTarget@2@AAVSPainter@2@@Z
?GetSel@SListView@SOUI@@QBEHXZ
?GetItemLocator@SListView@SOUI@@QAEPAUIListViewItemLocator@2@XZ
?PreTranslateMessage@SDropDownWnd@SOUI@@MAEHPAUtagMSG@@@Z
?GetExitCode@SDropDownWnd@SOUI@@QBEIXZ
?EndDropDown@SDropDownWnd@SOUI@@QAEXI@Z
??1SDropDownWnd@SOUI@@UAE@XZ
?GetTopLevelParent@SWindow@SOUI@@QBEPAV12@XZ
?SetCapture@CSimpleWnd@SOUI@@QAEPAUHWND__@@XZ
?SetWindowPos@CSimpleWnd@SOUI@@QAEHPAUHWND__@@HHHHI@Z
?Create@CSimpleWnd@SOUI@@QAEPAUHWND__@@PB_WKKHHHHPAU3@PAX@Z
?KillFocus@SWindow@SOUI@@QAEXXZ
?GetContainer@SWindow@SOUI@@QAEPAUISwndContainer@2@XZ
?SetOwner@SWindow@SOUI@@QAEXPAV12@@Z
?GetEventSet@SWindow@SOUI@@QAEPAVSEventSet@2@XZ
??1SWindow@SOUI@@UAE@XZ
??0SWindow@SOUI@@QAE@XZ
?IsClass@SWindow@SOUI@@UBEHPB_W@Z
?GetObjectType@SWindow@SOUI@@UBEHXZ
?subscribeEvent@SEventSet@SOUI@@QAE_NKABUISlotFunctor@2@@Z
?addEvent@SEventSet@SOUI@@QAEXKPB_W@Z
??0ISlotFunctor@SOUI@@QAE@XZ
??1ISlotFunctor@SOUI@@UAE@XZ
?GetClassNameW@EventSetFocus@SOUI@@SAPB_WXZ
??1EventArgs@SOUI@@UAE@XZ
??0EventArgs@SOUI@@QAE@PAV?$SObjectImpl@UIObject@SOUI@@@1@@Z
?IsClass@EventArgs@SOUI@@UBEHPB_W@Z
?GetObjectType@EventArgs@SOUI@@UBEHXZ
?SetTimer@CSimpleWnd@SOUI@@QAEIIIP6GXPAUHWND__@@IIK@Z@Z
?TrackPopupMenu@SMenuEx@SOUI@@QAEIIHHPAUHWND__@@H@Z
?LoadMenuW@SMenuEx@SOUI@@QAEHPB_W@Z
??1SMenuEx@SOUI@@UAE@XZ
??0SMenuEx@SOUI@@QAE@XZ
?HitTest@SMCListView@SOUI@@QAEPAVSItemPanel@2@AAVCPoint@2@@Z
?SetSel@SMCListView@SOUI@@QAEXHH@Z
?GetItemIndex@SItemPanel@SOUI@@QAEJXZ
?ResetContent@SComboBox@SOUI@@QAEXXZ
?ShowWindow@CSimpleWnd@SOUI@@QAEHH@Z
?IsWindowVisible@CSimpleWnd@SOUI@@QBEHXZ
?PostMessageW@CSimpleWnd@SOUI@@QAEHIIJ@Z
?ClientToScreen@CSimpleWnd@SOUI@@QBEHPAUtagPOINT@@@Z
?DestroyWindow@CSimpleWnd@SOUI@@QAEHXZ
?GetCurSel@STabCtrl@SOUI@@QAEHXZ
?SetImage@SImageWnd@SOUI@@QAEXPAUIBitmap@2@W4FilterLevel@2@@Z
?GetClassNameW@SImageWnd@SOUI@@SAPB_WXZ
?FindChildByName@SWindow@SOUI@@QAEPAV12@PB_WH@Z
?GetUserData@SWindow@SOUI@@QAEKXZ
?LoadImageW@SResLoadFromFile@SOUI@@SAPAUIBitmap@2@PB_W@Z
?GetClassNameW@EventRENotify@SOUI@@SAPB_WXZ
?GetClassNameW@EventCtxMenu@SOUI@@SAPB_WXZ
?IsClass@SHostWnd@SOUI@@UBEHPB_W@Z
?GetObjectType@SHostWnd@SOUI@@UBEHXZ
?GetObjectClass@SHostWnd@SOUI@@UBEPB_WXZ
?GetMsgLoop@SHostWnd@SOUI@@MAEPAVSMessageLoop@2@XZ
?_HandleEvent@SHostWnd@SOUI@@UAEHPAVEventArgs@2@@Z
?DestroyWindow@SHostWnd@SOUI@@QAEHXZ
?AnimateHostWindow@SHostWnd@SOUI@@QAEHKK@Z
??1SHostWnd@SOUI@@UAE@XZ
??0SHostWnd@SOUI@@QAE@PB_W@Z
?SetCurSel@STabCtrl@SOUI@@QAEHH@Z
?GetClassNameW@STabCtrl@SOUI@@SAPB_WXZ
?GetClassNameW@SCheckBox@SOUI@@SAPB_WXZ
?GetClassNameW@SButton@SOUI@@SAPB_WXZ
?GetClassNameW@SStatic@SOUI@@SAPB_WXZ
?SetCheck@SWindow@SOUI@@QAEXH@Z
?SetRange@SProgress@SOUI@@QAEXHH@Z
?SetValue@SProgress@SOUI@@QAEHH@Z
?GetClassNameW@SProgress@SOUI@@SAPB_WXZ
?GetClassNameW@SRadioBox@SOUI@@SAPB_WXZ
?EnableWindow@SWindow@SOUI@@QAEXHH@Z
?GetClassNameW@SEdit@SOUI@@SAPB_WXZ
?SetFocus@SWindow@SOUI@@QAEXXZ
?SSendMessage@SWindow@SOUI@@QAEJIIJPAH@Z
?InsertItem@SComboBox@SOUI@@QAEHIPB_WHJ@Z
?GetItemData@SComboBox@SOUI@@QBEJI@Z
?GetClassNameW@SComboBox@SOUI@@SAPB_WXZ
?GetAdapter@SMCListView@SOUI@@QAEPAUILvAdapter@2@XZ
?SetAdapter@SMCListView@SOUI@@QAEHPAUIMcAdapter@2@@Z
?GetClassNameW@SMCListView@SOUI@@SAPB_WXZ
?SetSel@SListView@SOUI@@QAEXHH@Z
?GetAdapter@SListView@SOUI@@QAEPAUILvAdapter@2@XZ
?SetAdapter@SListView@SOUI@@QAEHPAUILvAdapter@2@@Z
?GetClassNameW@SListView@SOUI@@SAPB_WXZ
?GetChildrenCount@SWindow@SOUI@@QAEIXZ
?IsChecked@SWindow@SOUI@@QAEHXZ
?GetLogManager@SApplication@SOUI@@QAEPAUILog4zManager@2@XZ
?getSingleton@?$SSingleton@VSApplication@SOUI@@@SOUI@@SAAAVSApplication@2@XZ
?KillTimer@CSimpleWnd@SOUI@@QAEHI@Z
??0SMenu@SOUI@@QAE@XZ
??1SMenu@SOUI@@QAE@XZ
?LoadMenuW@SMenu@SOUI@@QAEHPB_W@Z
?TrackPopupMenu@SMenu@SOUI@@QAEIIHHPAUHWND__@@PBUtagRECT@@@Z
?getSingletonPtr@?$SSingleton@VSApplication@SOUI@@@SOUI@@SAPAVSApplication@2@XZ
??0SDropDownWnd@SOUI@@QAE@PAUISDropDownOwner@1@@Z
?ProcessWindowMessage@SHostWnd@SOUI@@UAEHPAUHWND__@@IIJAAJK@Z
?tr@SWindow@SOUI@@UAE?AV?$TStringT@_WUwchar_traits@SOUI@@@2@ABV32@@Z
?UpdateWindow@SHostWnd@SOUI@@MAEHXZ
?UpdateTooltip@SHostWnd@SOUI@@MAEXXZ
?UpdateLayout@SHostWnd@SOUI@@MAEXXZ
?UpdateChildrenPosition@SWindow@SOUI@@UAEXXZ
?UnregisterTrackMouseEvent@SwndContainerImpl@SOUI@@MAEHK@Z
?UnregisterTimelineHandler@SHostWnd@SOUI@@MAEHPAUITimelineHandler@2@@Z
?SwndProc@SWindow@SOUI@@MAEHIIJAAJ@Z
?SwndFromPoint@SWindow@SOUI@@UAEKVCPoint@2@H@Z
?ShowCaret@SWindow@SOUI@@UAEXH@Z
?SetWindowTextW@SWindow@SOUI@@UAEXPB_W@Z
?SetToolTipText@SWindow@SOUI@@UAEXPB_W@Z
?SetCaretPos@SWindow@SOUI@@UAEXHH@Z
?SetAttribute@SWindow@SOUI@@UAEJABV?$TStringT@_WUwchar_traits@SOUI@@@2@0H@Z
?RevokeDragDrop@SwndContainerImpl@SOUI@@MAEHK@Z
?RequestRelayout@SHostWnd@SOUI@@UAEXPAVSWindow@2@H@Z
?Release@?$TObjRefImpl@UIObjRef@@@SOUI@@UAEJXZ
?RegisterTrackMouseEvent@SwndContainerImpl@SOUI@@MAEHK@Z
?RegisterTimelineHandler@SHostWnd@SOUI@@MAEHPAUITimelineHandler@2@@Z
?RegisterDragDrop@SwndContainerImpl@SOUI@@MAEHKPAUIDropTarget@@@Z
?ProcessSwndMessage@SWindow@SOUI@@MAEHIIJAAJ@Z
?OnUpdateToolTip@SWindow@SOUI@@UAEHVCPoint@2@AAUSwndToolTipInfo@2@@Z
?OnUpdateFloatPosition@SWindow@SOUI@@UAEXABVCRect@2@@Z
?OnStateChanging@SWindow@SOUI@@UAEXKK@Z
?OnStateChanged@SWindow@SOUI@@UAEXKK@Z
?OnShowCaret@SHostWnd@SOUI@@MAEHH@Z
?OnSetSwndFocus@SwndContainerImpl@SOUI@@MAEXK@Z
?OnSetSwndCapture@SHostWnd@SOUI@@MAEKK@Z
?OnSetCursor@SWindow@SOUI@@UAEHABVCPoint@2@@Z
?OnSetCaretPos@SHostWnd@SOUI@@MAEHHH@Z
?OnScaleChanged@SHostWnd@SOUI@@MAEXH@Z
?OnReleaseSwndCapture@SHostWnd@SOUI@@MAEHXZ
?OnReleaseRenderTarget@SHostWnd@SOUI@@MAEXPAUIRenderTarget@2@ABVCRect@2@K@Z
?OnRelayout@SWindow@SOUI@@UAEHABVCRect@2@@Z
?OnRedraw@SHostWnd@SOUI@@MAEXABVCRect@2@@Z
?OnNextFrame@SwndContainerImpl@SOUI@@UAEXXZ
?OnNcHitTest@SWindow@SOUI@@UAEHVCPoint@2@@Z
?OnLanguageChanged@SHostWnd@SOUI@@MAEJXZ
?OnGetSwndCapture@SwndContainerImpl@SOUI@@MAEKXZ
?OnGetRenderTarget@SHostWnd@SOUI@@MAEPAUIRenderTarget@2@ABVCRect@2@K@Z
?OnGetDlgCode@SWindow@SOUI@@UAEIXZ
?OnFireEvent@SHostWnd@SOUI@@MAEHAAVEventArgs@2@@Z
?OnFinalRelease@?$TObjRefImpl2@UIObjRef@@VSWindow@SOUI@@@SOUI@@UAEXXZ
?OnFinalMessage@CSimpleWnd@SOUI@@MAEXPAUHWND__@@@Z
?OnCreateCaret@SHostWnd@SOUI@@MAEHKPAUHBITMAP__@@HH@Z
?OnColorize@SWindow@SOUI@@MAEXK@Z
?NeedRedrawWhenStateChange@SWindow@SOUI@@UAEHXZ
?MarkWndTreeZorderDirty@SwndContainerImpl@SOUI@@MAEXXZ
?IsTranslucent@SHostWnd@SOUI@@MBEHXZ
?IsSiblingsAutoGroupped@SWindow@SOUI@@UAEHXZ
?IsSendWheel2Hover@SHostWnd@SOUI@@MBEHXZ
?IsLayeredWindow@SHostWnd@SOUI@@MBEHXZ
?IsFocusable@SWindow@SOUI@@UAEHXZ
?IsDrawToCache@SWindow@SOUI@@MBE_NXZ
?IsContainPoint@SWindow@SOUI@@UBEHABUtagPOINT@@H@Z
?IsClipClient@SWindow@SOUI@@UAEHXZ
?IsClass@SHostDialog@SOUI@@UBEHPB_W@Z
?InitFromXml@SHostWnd@SOUI@@UAEHVxml_node@pugi@@@Z
?GetWindowTextW@SWindow@SOUI@@UAE?AV?$TStringT@_WUwchar_traits@SOUI@@@2@XZ
?GetTranslatorContext@SHostWnd@SOUI@@MAEABV?$TStringT@_WUwchar_traits@SOUI@@@2@XZ
?GetTrCtx@SWindow@SOUI@@UAEABV?$TStringT@_WUwchar_traits@SOUI@@@2@XZ
?GetToolTipText@SWindow@SOUI@@UAE?AV?$TStringT@_WUwchar_traits@SOUI@@@2@XZ
?GetTextRect@SWindow@SOUI@@UAEXPAUtagRECT@@@Z
?GetSelectedSiblingInGroup@SWindow@SOUI@@UAEPAV12@XZ
?GetSelectedChildInGroup@SWindow@SOUI@@UAEPAV12@XZ
?GetScriptModule@SHostWnd@SOUI@@MAEPAUIScriptModule@2@XZ
?GetObjectType@SHostDialog@SOUI@@UBEHXZ
?GetObjectClass@SHostDialog@SOUI@@UBEPB_WXZ
?GetName@SWindow@SOUI@@UBEPB_WXZ
?GetMsgLoop@SHostDialog@SOUI@@MAEPAVSMessageLoop@2@XZ
?GetID@SWindow@SOUI@@UBEHXZ
?GetHover@SwndContainerImpl@SOUI@@MAEKXZ
?GetHostHwnd@SHostWnd@SOUI@@MAEPAUHWND__@@XZ
?GetFocus@SwndContainerImpl@SOUI@@MAEKXZ
?GetDesiredSize@SWindow@SOUI@@UAE?AVCSize@2@PBUtagRECT@@@Z
?GetDesiredSize@SWindow@SOUI@@UAE?AVCSize@2@HH@Z
?GetContainerRect@SHostWnd@SOUI@@MAE?AVCRect@2@XZ
?GetClientRect@SWindow@SOUI@@UBEXPAUtagRECT@@@Z
?GetClientRect@SHostWnd@SOUI@@UBE?AVCRect@2@XZ
?GetChildrenLayoutRect@SWindow@SOUI@@UAE?AVCRect@2@XZ
?GetAttribute@SWindow@SOUI@@MBE?AV?$TStringT@_WUwchar_traits@SOUI@@@2@ABV32@@Z
?GetAcceleratorMgr@SwndContainerImpl@SOUI@@MAEPAUIAcceleratorMgr@2@XZ
?FrameToHost@SwndContainerImpl@SOUI@@MAEXAAUtagRECT@@@Z
?FireEvent@SWindow@SOUI@@UAEHAAVEventArgs@2@@Z
?EndDialog@SHostDialog@SOUI@@UAEXH@Z
?DrawTextW@SWindow@SOUI@@UAEXPAUIRenderTarget@2@PB_WHPAUtagRECT@@I@Z
?DrawFocus@SWindow@SOUI@@UAEXPAUIRenderTarget@2@@Z
?DoModal@SHostDialog@SOUI@@UAEHPAUHWND__@@@Z
?DoFrameEvent@SwndContainerImpl@SOUI@@MAEJIIJ@Z
?DefAttributeProc@SWindow@SOUI@@MAEJABV?$TStringT@_WUwchar_traits@SOUI@@@2@0H@Z
?CreateChildren@SWindow@SOUI@@UAEHVxml_node@pugi@@@Z
?CreateCaret@SWindow@SOUI@@UAEHPAUHBITMAP__@@HH@Z
?BuildWndTreeZorder@SwndContainerImpl@SOUI@@MAEXXZ
?BeforePaint@SHostWnd@SOUI@@MAEXPAUIRenderTarget@2@AAVSPainter@2@@Z
?AfterPaint@SHostWnd@SOUI@@MAEXPAUIRenderTarget@2@AAVSPainter@2@@Z
?AfterAttribute@SWindow@SOUI@@MAEJABV?$TStringT@_WUwchar_traits@SOUI@@@2@0HJ@Z
?AddRef@?$TObjRefImpl@UIObjRef@@@SOUI@@UAEJXZ
?ProcessWindowMessage@SHostDialog@SOUI@@UAEHPAUHWND__@@IIJAAJK@Z
?_HandleEvent@SHostDialog@SOUI@@UAEHPAVEventArgs@2@@Z
??1SHostDialog@SOUI@@UAE@XZ
??0SHostDialog@SOUI@@QAE@PB_W@Z
?GetScale@SHostWnd@SOUI@@MBEHXZ
?KillTimer@SHostWnd@SOUI@@QAEHI@Z
?SetTimer@SHostWnd@SOUI@@QAEIII@Z
?ReflectNotifications@CSimpleWnd@SOUI@@QAEJIIJAAH@Z
?SendMessageW@CSimpleWnd@SOUI@@QAEJIIJ@Z
?InvalidateRect@CSimpleWnd@SOUI@@QAEHPBUtagRECT@@H@Z
?FindChildByID@SWindow@SOUI@@QAEPAV12@HH@Z
?GetWindowRect@SWindow@SOUI@@QAE?AVCRect@2@XZ
?SetVisible@SWindow@SOUI@@QAEXHH@Z
?GetAppDir@SApplication@SOUI@@QBE?AV?$TStringT@_WUwchar_traits@SOUI@@@2@XZ
extcontrold
?GetSelectedSiblingInGroup@CTabButton@SOUI@@EAEPAVSWindow@2@XZ
?GetObjectType@CTabButton@SOUI@@UBEHXZ
?GetObjectClass@CTabButton@SOUI@@UBEPB_WXZ
??1CTabButton@SOUI@@UAE@XZ
??0CTabButton@SOUI@@QAE@XZ
?BaseClassName@CTabButton@SOUI@@SAPB_WXZ
?SetAttribute@CTabButton@SOUI@@UAEJABV?$TStringT@_WUwchar_traits@SOUI@@@2@0H@Z
?GetClassType@CTabButton@SOUI@@SAHXZ
?ProcessSwndMessage@CTabButton@SOUI@@MAEHIIJAAJ@Z
?OnStateChanging@CTabButton@SOUI@@UAEXKK@Z
?IsClass@CTabButton@SOUI@@UBEHPB_W@Z
?GetClassNameW@CTabButton@SOUI@@SAPB_WXZ
nfapi
?nf_getProcessNameFromKernel@nfapi@@YAHKPA_WK@Z
?nf_udpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z
?nf_udpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBEPBDHPAU_NF_UDP_OPTIONS@1@@Z
?nf_addRuleEx@nfapi@@YA?AW4_NF_STATUS@@PAU_NF_RULE_EX@1@H@Z
?nf_deleteRules@nfapi@@YA?AW4_NF_STATUS@@XZ
?nf_addRule@nfapi@@YA?AW4_NF_STATUS@@PAU_NF_RULE@1@H@Z
?nf_getProcessNameW@nfapi@@YAHKPA_WK@Z
?nf_deleteBindingRules@nfapi@@YA?AW4_NF_STATUS@@XZ
?nf_tcpPostSend@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z
?nf_unRegisterDriver@nfapi@@YA?AW4_NF_STATUS@@PBD@Z
?nf_registerDriver@nfapi@@YA?AW4_NF_STATUS@@PBD@Z
?nf_free@nfapi@@YAXXZ
?nf_init@nfapi@@YA?AW4_NF_STATUS@@PBDPAVNF_EventHandler@1@@Z
?nf_tcpPostReceive@nfapi@@YA?AW4_NF_STATUS@@_KPBDH@Z
?nf_adjustProcessPriviledges@nfapi@@YAXXZ
libcurl
curl_easy_getinfo
curl_easy_cleanup
curl_easy_perform
curl_easy_setopt
curl_easy_strerror
curl_slist_append
curl_global_cleanup
curl_global_init
curl_easy_init
iphlpapi
GetAdaptersAddresses
GetIpForwardTable
CreateIpForwardEntry
SetIpForwardEntry
DeleteIpForwardEntry
GetBestInterfaceEx
GetAdaptersInfo
setupapi
CM_Locate_DevNodeW
CM_Reenumerate_DevNode
rpcrt4
UuidCreate
RpcStringFreeW
UuidToStringW
libcrypto-1_1
DES_ecb3_encrypt
DES_set_key_unchecked
EVP_EncryptInit_ex
EVP_EncryptFinal_ex
EVP_DecryptInit_ex
EVP_des_ede3_cbc
EVP_CIPHER_CTX_free
EVP_CIPHER_CTX_reset
EVP_CIPHER_CTX_new
EVP_DecryptFinal_ex
EVP_DecryptUpdate
EVP_EncryptUpdate
kernel32
WriteConsoleW
GetFileType
ResumeThread
ExitThread
HeapValidate
GetModuleHandleExW
RtlUnwind
WaitForMultipleObjectsEx
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
ReleaseSemaphore
SetProcessAffinityMask
VirtualFree
VirtualProtect
VirtualAlloc
GetVersionExW
LoadLibraryExW
GetModuleHandleA
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
ExitProcess
SignalObjectAndWait
CreateTimerQueue
VirtualQuery
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
GetStringTypeW
GetLocaleInfoW
LCMapStringW
CompareStringW
GetCPInfo
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
TryEnterCriticalSection
QueryPerformanceFrequency
QueryPerformanceCounter
GetNativeSystemInfo
GetExitCodeThread
GetCurrentThread
SwitchToThread
WaitForSingleObjectEx
DuplicateHandle
FormatMessageW
SetConsoleCtrlHandler
GetFileSizeEx
SetFilePointerEx
HeapQueryInformation
MoveFileExW
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FlushFileBuffers
SetThreadPriority
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
CreateFileW
DeleteFileW
GetLongPathNameW
OutputDebugStringW
CloseHandle
GetLastError
CreateIoCompletionPort
GetQueuedCompletionStatus
PostQueuedCompletionStatus
DeviceIoControl
SetEvent
ResetEvent
WaitForSingleObject
CreateEventW
OpenEventW
Sleep
WaitForMultipleObjects
GetCurrentProcessId
CreateThread
TerminateThread
GetSystemInfo
Wow64DisableWow64FsRedirection
Wow64RevertWow64FsRedirection
FreeLibrary
LoadResource
LockResource
SizeofResource
FindResourceW
LoadLibraryW
DeleteFileA
WinExec
GetStdHandle
GetFileAttributesA
WriteFile
GetCurrentThreadId
GetDynamicTimeZoneInformation
GetConsoleMode
WriteConsoleA
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
DecodePointer
RaiseException
SetLastError
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InitializeCriticalSectionEx
FindResourceExW
GlobalSize
GlobalUnlock
GlobalLock
InitializeCriticalSectionAndSpinCount
TerminateProcess
OpenProcess
WideCharToMultiByte
K32GetModuleFileNameExW
GetTimeZoneInformation
SetStdHandle
ReadConsoleW
GetFileAttributesExW
FindClose
FindFirstFileExW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
ReadFile
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetEndOfFile
GetConsoleOutputCP
CreatePipe
SetNamedPipeHandleState
CreateProcessA
RtlCaptureStackBackTrace
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GlobalAlloc
lstrlenW
GetStartupInfoA
GetPrivateProfileStringW
WritePrivateProfileStringW
CopyFileW
MultiByteToWideChar
OutputDebugStringA
CreateProcessW
GetLocalTime
GetTickCount
SystemTimeToFileTime
CreateDirectoryW
SetUnhandledExceptionFilter
GetCurrentProcess
WriteProcessMemory
FormatMessageA
lstrlenA
SetCurrentDirectoryW
CreateMutexW
user32
SetWindowTextW
GetCursorPos
GetActiveWindow
GetSystemMetrics
ClientToScreen
CopyRect
EmptyClipboard
GetMonitorInfoW
SendMessageW
MessageBoxA
SetCursor
IntersectRect
RegisterWindowMessageW
FillRect
SetClipboardData
CloseClipboard
OpenClipboard
wsprintfW
GetWindow
GetWindowThreadProcessId
EnumWindows
MessageBoxW
UnregisterClassW
GetDC
ReleaseDC
PostMessageW
IsWindow
SetForegroundWindow
DestroyIcon
GetClientRect
IsWindowVisible
GetWindowLongW
GetWindowTextA
MonitorFromWindow
OffsetRect
gdi32
CreateDIBSection
SelectObject
CreateCompatibleBitmap
CreateSolidBrush
GetDeviceCaps
DeleteObject
DeleteDC
CreateCompatibleDC
GetObjectW
BitBlt
shell32
ShellExecuteW
Shell_NotifyIconW
SHGetSpecialFolderPathW
ole32
OleInitialize
CoInitialize
CoCreateInstance
GetHGlobalFromStream
CreateStreamOnHGlobal
OleUninitialize
advapi32
RegOpenKeyExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
RegQueryValueExW
ws2_32
WSAStringToAddressW
connect
inet_ntoa
recv
send
gethostbyname
WSAStartup
WSACleanup
inet_ntop
ntohl
recvfrom
sendto
WSACreateEvent
WSAAddressToStringW
WSAEventSelect
WSAWaitForMultipleEvents
ioctlsocket
select
getaddrinfo
freeaddrinfo
WSAStringToAddressA
WSARecvFrom
WSARecv
WSAIoctl
WSAGetLastError
socket
shutdown
setsockopt
WSAAddressToStringA
WSASendTo
WSASocketW
WSAEnumNetworkEvents
bind
closesocket
getsockname
htonl
htons
inet_addr
listen
WSASend
ntohs
shlwapi
PathFindExtensionW
StrToIntExW
PathIsDirectoryW
PathFileExistsW
sensapi
IsNetworkAlive
gdiplus
GdipCreateBitmapFromScan0
GdipSaveImageToStream
GdipSaveImageToFile
GdipDisposeImage
GdipCloneImage
GdipCreateBitmapFromHBITMAP
GdipGetImageEncoders
GdipAlloc
GdiplusShutdown
GdiplusStartup
GdipFree
GdipGetImageEncodersSize
msimg32
AlphaBlend
version
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
dbghelp
MiniDumpWriteDump
imm32
ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow
ImmSetCandidateWindow
Sections
.textbss Size: - Virtual size: 2.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 5.6MB - Virtual size: 5.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.0MB - Virtual size: 1.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 48KB - Virtual size: 91KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 37KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.msvcjmc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 1024B - Virtual size: 787B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.00cfg Size: 512B - Virtual size: 260B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 855KB - Virtual size: 855KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 243KB - Virtual size: 242KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ