Static task
static1
Behavioral task
behavioral1
Sample
ec94159473056ca6710c75cf2da8a2b6ab28fce07b126162e761c32c3c3f26dd.exe
Resource
win7-20231129-en
windows7-x64
Behavioral task
behavioral2
Sample
ec94159473056ca6710c75cf2da8a2b6ab28fce07b126162e761c32c3c3f26dd.exe
Resource
win10v2004-20231222-en
windows10-2004-x64
General
-
Target
ec94159473056ca6710c75cf2da8a2b6ab28fce07b126162e761c32c3c3f26dd
-
Size
1.3MB
-
MD5
b89b59637e43eec4df27539b1921ba5e
-
SHA1
91810a11387e418212dc8a5e55bdbc329a737197
-
SHA256
ec94159473056ca6710c75cf2da8a2b6ab28fce07b126162e761c32c3c3f26dd
-
SHA512
354005965f79c32af16211be90a973924fe4445106f7423ac2560595ed95dcd8c6fad85156c5d6d0cc402e2d61e61ead24ff52e8712dfd3e87cb6c366f780771
-
SSDEEP
24576:PVW0HFOg0UgNAZSD3Bmxll15TfZ9oyMIljQymXJByK:POUAAZi3B4lljTfZ9H7lMymXaK
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ec94159473056ca6710c75cf2da8a2b6ab28fce07b126162e761c32c3c3f26dd
Files
-
ec94159473056ca6710c75cf2da8a2b6ab28fce07b126162e761c32c3c3f26dd.exe windows:6 windows x86 arch:x86
cdc8117768e57eba0a41101f429309bc
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
winmm
PlaySoundW
msvcr120
rename
fflush
fgetc
fgetpos
fopen
fprintf
fputc
fsetpos
free
malloc
realloc
memmove_s
_recalloc
_fseeki64
fwrite
setvbuf
ungetc
_controlfp_s
_invoke_watson
__crtSetUnhandledExceptionFilter
_except_handler4_common
??1type_info@@UAE@XZ
_onexit
__dllonexit
memmove
strncmp
_localtime64_s
memcpy
memset
vfprintf
??3@YAXPAX@Z
_purecall
??2@YAPAXI@Z
_beginthreadex
_hypot
_CxxThrowException
__CxxFrameHandler3
_wtoi
sprintf_s
??_V@YAXPAX@Z
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??8type_info@@QBE_NABV0@@Z
signal
strncpy
wcsftime
sprintf
memcpy_s
strstr
_calloc_crt
_unlock
_lock
_except1
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
_commode
_fmode
_wcmdln
_initterm
_initterm_e
__setusermatherr
_configthreadlocale
_cexit
_exit
__set_app_type
__wgetmainargs
_amsg_exit
__crtGetShowWindowMode
_XcptFilter
isspace
isdigit
??4exception@std@@QAEAAV01@ABV01@@Z
_ftime64
_gmtime64_s
_mkdir
_unlink
_lock_file
fopen_s
tolower
toupper
vsprintf_s
atol
??0exception@std@@QAE@XZ
atof
_stat64i32
strerror
srand
rand
exit
_mkgmtime64
_vsnprintf
?terminate@@YAXXZ
??_U@YAPAXI@Z
_wcsdup
wcsncmp
wcscpy_s
__RTDynamicCast
_time64
_mktime64
_gmtime64
_snprintf
_wfopen
vswprintf_s
fwprintf
memchr
atoi
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
_localtime64
_errno
_unlock_file
fclose
mfc120u
ord9107
ord11998
ord11963
ord2638
ord10998
ord7671
ord11156
ord11159
ord7032
ord511
ord1146
ord10385
ord9409
ord3131
ord12051
ord8801
ord8793
ord13614
ord6122
ord7393
ord6469
ord3839
ord6392
ord1110
ord7004
ord462
ord12048
ord9116
ord7384
ord3761
ord3773
ord3766
ord3638
ord2480
ord6389
ord6431
ord3805
ord13121
ord13635
ord12429
ord12449
ord450
ord12824
ord12738
ord12966
ord12958
ord13149
ord13907
ord13554
ord13975
ord8763
ord13972
ord12890
ord13987
ord13983
ord12893
ord5119
ord4528
ord4606
ord1105
ord12941
ord887
ord1386
ord5327
ord12899
ord11157
ord11160
ord10999
ord10390
ord8804
ord8794
ord2639
ord9229
ord376
ord9408
ord1075
ord2130
ord5754
ord13509
ord7061
ord6493
ord4183
ord9014
ord11980
ord7399
ord5888
ord4839
ord6462
ord10895
ord8920
ord7002
ord12010
ord11950
ord6402
ord7376
ord5865
ord2341
ord2336
ord6652
ord12219
ord14463
ord12276
ord14516
ord261
ord13991
ord7311
ord6743
ord3218
ord3324
ord4196
ord1449
ord9019
ord7531
ord6020
ord14458
ord6492
ord4182
ord1177
ord9013
ord7398
ord5887
ord7033
ord514
ord3132
ord8280
ord4943
ord4944
ord6033
ord12331
ord1746
ord5837
ord13560
ord13569
ord5842
ord13567
ord5841
ord4340
ord3976
ord2515
ord4452
ord11305
ord5858
ord8713
ord1148
ord8091
ord9094
ord11675
ord11670
ord5274
ord12052
ord3800
ord4544
ord11977
ord9118
ord11956
ord11370
ord10283
ord9183
ord11415
ord7394
ord13142
ord4338
ord965
ord13488
ord1442
ord981
ord8358
ord1455
ord13784
ord7946
ord13404
ord13514
ord7951
ord11456
ord6696
ord3821
ord12957
ord12956
ord13153
ord7331
ord4423
ord8227
ord4434
ord1471
ord7543
ord982
ord6927
ord1987
ord14406
ord1457
ord14337
ord4272
ord1879
ord4624
ord8665
ord2839
ord11828
ord11827
ord11826
ord437
ord6991
ord3946
ord4456
ord2520
ord2204
ord1520
ord5669
ord7390
ord9093
ord9860
ord11618
ord9244
ord11020
ord11019
ord10602
ord10132
ord10312
ord5273
ord5282
ord14371
ord4045
ord4095
ord1125
ord11968
ord12835
ord2676
ord9365
ord4660
ord12531
ord12289
ord2516
ord13212
ord2801
ord7544
ord8277
ord11133
ord12446
ord6773
ord12657
ord9078
ord11148
ord10905
ord10857
ord3814
ord8962
ord6102
ord5514
ord2816
ord13692
ord13925
ord481
ord7016
ord3806
ord2163
ord950
ord8352
ord7542
ord1467
ord8268
ord12122
ord10314
ord12799
ord12736
ord8206
ord5262
ord2444
ord12413
ord12412
ord14448
ord7806
ord14454
ord9279
ord4109
ord4047
ord12818
ord7825
ord12121
ord11902
ord1992
ord11858
ord11857
ord1824
ord14326
ord12402
ord7884
ord14526
ord6251
ord14528
ord6253
ord14527
ord6252
ord13771
ord8344
ord992
ord6758
ord1069
ord366
ord2214
ord3809
ord5821
ord12114
ord8099
ord12126
ord12094
ord7382
ord12006
ord6121
ord13612
ord2718
ord9091
ord12047
ord1108
ord8921
ord10896
ord11271
ord10353
ord4049
ord458
ord3361
ord3362
ord3122
ord6434
ord10883
ord9137
ord8699
ord13997
ord5667
ord10131
ord4692
ord4672
ord8059
ord5488
ord1141
ord503
ord6853
ord8242
ord12634
ord12633
ord2948
ord1521
ord6016
ord10882
ord9135
ord14149
ord14136
ord13833
ord4130
ord14232
ord14239
ord5593
ord5660
ord7791
ord1439
ord4098
ord4097
ord4046
ord1752
ord2650
ord13086
ord4948
ord3813
ord3845
ord14123
ord14125
ord3860
ord3578
ord9462
ord10408
ord9800
ord12353
ord7810
ord6166
ord3601
ord9929
ord9928
ord3584
ord3214
ord963
ord6733
ord6123
ord13616
ord3263
ord3260
ord10136
ord8092
ord2719
ord10166
ord10168
ord10167
ord10165
ord10169
ord5557
ord11600
ord11601
ord9020
ord11964
ord3795
ord11811
ord14447
ord8846
ord12095
ord6875
ord3224
ord13738
ord12134
ord12132
ord1711
ord1723
ord1731
ord1727
ord1736
ord4879
ord4920
ord4887
ord4899
ord4895
ord4891
ord4928
ord4916
ord4883
ord4932
ord4905
ord4867
ord4874
ord4909
ord4459
ord5693
ord9574
ord4451
ord3013
ord14449
ord7807
ord14455
ord6774
ord11592
ord14094
ord13563
ord5838
ord13329
ord2640
ord11999
ord3898
ord3329
ord3330
ord3223
ord12043
ord5157
ord5454
ord5664
ord9231
ord5430
ord5160
ord5316
ord5137
ord7609
ord7610
ord7600
ord5314
ord8101
ord9090
ord1138
ord492
ord2262
ord1518
ord280
ord290
ord14311
ord951
ord6404
ord1447
ord973
ord4772
ord5824
ord1042
ord286
ord285
ord11027
ord8892
ord11003
ord11621
ord9407
ord9872
ord9867
ord9395
ord9405
ord9390
ord8186
ord4949
ord1130
ord6452
ord9007
ord1063
ord4176
ord3103
ord6393
ord9016
ord1441
ord4193
ord3215
ord6735
kernel32
MultiByteToWideChar
CreateFileW
ReadFile
GetFileAttributesW
HeapValidate
HeapCreate
GetFileAttributesA
HeapDestroy
FormatMessageW
Sleep
LoadLibraryW
WideCharToMultiByte
WriteFile
FormatMessageA
GetSystemTimeAsFileTime
GetProcessHeap
UnlockFileEx
GetTickCount
OutputDebugStringW
LockFile
UnlockFile
WaitForSingleObject
HeapFree
QueryPerformanceCounter
SystemTimeToFileTime
HeapAlloc
FreeLibrary
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
DecodePointer
RaiseException
InitializeCriticalSectionAndSpinCount
VerSetConditionMask
SetLastError
FlushFileBuffers
GetQueuedCompletionStatus
PostQueuedCompletionStatus
SetWaitableTimer
QueueUserAPC
GetCurrentThreadId
TerminateThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
WaitForMultipleObjects
VerifyVersionInfoW
CreateEventA
SetEvent
GetComputerNameW
GetModuleFileNameW
ResetEvent
GetModuleFileNameA
GetPrivateProfileStringA
WritePrivateProfileStringA
QueryPerformanceFrequency
GetPrivateProfileStringW
WritePrivateProfileStringW
CreateDirectoryW
FindClose
FindFirstFileW
FindNextFileW
ResumeThread
GetLocalTime
lstrcpyW
lstrlenW
SleepEx
CreateEventW
GetCurrentThread
EncodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
GetModuleHandleA
GetModuleHandleW
GetTempPathW
GetLastError
GetProcAddress
HeapSize
LockFileEx
GetDiskFreeSpaceW
LoadLibraryA
CreateFileMappingA
CreateFileMappingW
GetDiskFreeSpaceA
GetSystemInfo
GetFileAttributesExW
OutputDebugStringA
GetVersionExA
CloseHandle
DeleteFileW
GetCurrentProcessId
GetTempPathA
LocalFree
GetSystemTime
AreFileApisANSI
DeleteFileA
GetFullPathNameW
GetFullPathNameA
HeapReAlloc
CreateFileA
GetFileSize
CreateMutexW
CreateIoCompletionPort
SetFilePointer
user32
RedrawWindow
SendMessageW
UpdateWindow
GetDlgItem
GetFocus
GetKeyState
SetTimer
CreatePopupMenu
AppendMenuW
GetWindowRect
GetCursorPos
EnableWindow
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
InvalidateRect
GetSysColor
MessageBeep
GetWindowLongW
SetWindowLongW
GetWindow
PtInRect
wsprintfW
PostMessageW
UnregisterClassW
GetClientRect
gdi32
StretchBlt
Rectangle
CreateSolidBrush
CreatePen
CreateFontW
SelectObject
GetObjectW
CreateFontIndirectW
LPtoDP
DPtoLP
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowExtEx
BitBlt
GetViewportExtEx
GetMapMode
GetBkColor
Escape
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
msimg32
TransparentBlt
advapi32
GetUserNameW
shell32
SHGetDesktopFolder
SHBrowseForFolderW
SHGetPathFromIDListW
ShellExecuteW
SHOpenFolderAndSelectItems
ord190
ord155
comctl32
_TrackMouseEvent
shlwapi
StrRetToStrW
PathMatchSpecW
ole32
CoTaskMemFree
oleaut32
SysFreeString
gdiplus
GdiplusShutdown
msvcp120
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?uncaught_exception@std@@YA_NXZ
??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7ios_base@std@@6B@
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
?_BADOFF@std@@3_JB
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@V32@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@_JHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?id@?$codecvt@DDH@std@@2V0locale@2@A
?id@?$ctype@_W@std@@2V0locale@2@A
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
boost_thread-vc120-mt-1_63
?notify_all_at_thread_exit@thread_data_base@detail@boost@@UAEXPAVcondition_variable@3@PAVmutex@3@@Z
?join@thread@boost@@QAEXXZ
?get_id@thread@boost@@QBE?AVid@12@XZ
??1thread@boost@@QAE@XZ
?start_thread@thread@boost@@AAEXXZ
??1thread_data_base@detail@boost@@UAE@XZ
??0thread_data_base@detail@boost@@QAE@XZ
boost_system-vc120-mt-1_63
?generic_category@system@boost@@YAABVerror_category@12@XZ
?system_category@system@boost@@YAABVerror_category@12@XZ
ws2_32
gethostname
closesocket
ioctlsocket
htons
listen
setsockopt
WSAStartup
WSACleanup
WSASetLastError
WSAGetLastError
WSASend
WSASocketW
inet_ntoa
socket
shutdown
send
recv
ntohs
inet_addr
getpeername
WSAIoctl
select
htonl
getsockopt
getsockname
connect
accept
__WSAFDIsSet
WSARecv
getaddrinfo
gethostbyname
freeaddrinfo
bind
mswsock
GetAcceptExSockaddrs
AcceptEx
libmysql
mysql_num_rows
mysql_errno
mysql_error
mysql_init
mysql_real_connect
mysql_query
mysql_store_result
mysql_ping
mysql_options
mysql_free_result
mysql_fetch_row
mysql_escape_string
mysql_close
iphlpapi
GetIpAddrTable
Sections
.text Size: 995KB - Virtual size: 995KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 195KB - Virtual size: 194KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 59KB - Virtual size: 59KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ