archive[.]tgz | Triage

Resubmissions

15/03/2024, 01:31

240315-bxsktafc92 7

15/03/2024, 01:23

240315-brvg8afb65 7

Sharing

Copy URL Twitter E-mail

General

Target

archive.tgz
Size

42.3MB
MD5

e2dd54059d85d6337987d8f0d0db55fe
SHA1

aca32712b294b14526dcfde6cc451c7bf52c49a0
SHA256

2c50a621b9bd8cfd0ca10f568f013ce28b21440c635491ae887dfcaf99d72f97
SHA512

d90e971cd030b32fe871ce5ac0678d6a9e0ffee619745f23b46ed12606869bced043482d9082cd8c2ae6ea42498cdd55c505eba8c91d44d0bea2fc91fc8af42f
SSDEEP

786432:oHTtbBJ+Oi2RMKze7UKyK4cP430z4BHCsq0bRe6I0kJSaCtlKIFO8wsWy2mJ87d:o5bBJ+2MKzeQXcgE2/bB2IFPwsWy2mCp

Score

3^/10

pyinstaller

Malware Config

Signatures

Detects Pyinstaller 1 IoCs

pyinstaller

resource	yara_rule
static1/unpack004/ABLETON KEYGEN.exe	pyinstaller

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack004/ABLETON KEYGEN.exe

Files

archive.tgz
.gz
sample
.tar
Crack-Keygen/Crack.zip
.zip
Ableton Live 11 Suite.exe
.exe windows:6 windows x64 arch:x64

7f26bb19ac1a3a13b84398d3a0c1c0f9

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:74:8f:f7:54:3c:c1:11:68:f9:51:99:42:fb:05:84
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

03/05/2023, 00:00

Not After

16/06/2026, 23:59

Subject

SERIALNUMBER=HRB 72838,CN=Ableton AG,OU=IT OPS,O=Ableton AG,L=Berlin,ST=Berlin,C=DE,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#130e436861726c6f7474656e62757267,1.3.6.1.4.1.311.60.2.1.2=#13064265726c696e,1.3.6.1.4.1.311.60.2.1.3=#13024445

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

cc:7e:44:6a:cd:68:5d:a5:9b:4c:9a:ca:2c:aa:14:e7:c7:d0:45:ef:e3:9b:fb:93:ae:a5:27:95:a2:f7:e8:ae
Signer

Actual PE Digest

cc:7e:44:6a:cd:68:5d:a5:9b:4c:9a:ca:2c:aa:14:e7:c7:d0:45:ef:e3:9b:fb:93:ae:a5:27:95:a2:f7:e8:ae

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

F:\Jenkins\live\output\Live\win_64_static\Release\Live.pdb

Imports

kernel32

SwitchToFiber
DeleteFiber
CreateFiber
ConvertFiberToThread
ConvertThreadToFiber
SetConsoleMode
ReadConsoleA
MapViewOfFileEx
OpenEventA
OpenFileMappingW
CloseHandle
GetModuleHandleExW
CreateProcessW
IsProcessorFeaturePresent
GetStartupInfoW
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
InitializeSListHead
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitOnceComplete
InitOnceBeginInitialize
SignalObjectAndWait
MulDiv
OpenFile
CreateFileMappingA
GetEnvironmentVariableA
MoveFileExA
InitializeCriticalSectionEx
GetSystemDirectoryA
VirtualQuery
DisconnectNamedPipe
GetQueuedCompletionStatusEx
InitializeConditionVariable
InitOnceExecuteOnce
GetFileSize
LockFileEx
UnlockFile
HeapDestroy
HeapCompact
HeapReAlloc
DeleteFileA
LoadLibraryA
FlushViewOfFile
GetFileAttributesA
GetDiskFreeSpaceA
HeapSize
HeapValidate
UnlockFileEx
GetFullPathNameA
LockFile
GetDiskFreeSpaceW
HeapCreate
TryEnterCriticalSection
WriteConsoleA
GetDynamicTimeZoneInformation
SetConsoleTextAttribute
GetTempFileNameA
GetTempPathA
ResumeThread
GetThreadPriority
OpenThread
CreateProcessA
GetCommandLineA
GetModuleFileNameA
AreFileApisANSI
CreateDirectoryExW
CopyFileExW
GetEnvironmentVariableW
GetTempPathW
GetVolumeNameForVolumeMountPointW
GetLogicalDrives
SwitchToThread
OpenMutexW
GlobalHandle
CreateMutexA
CreateWaitableTimerW
DebugBreak
GlobalFree
GlobalAlloc
GlobalUnlock
GlobalLock
SetThreadExecutionState
CreateThread
UnmapViewOfFile
ReleaseMutex
MapViewOfFile
CreateFileMappingW
CreateMutexW
GetLongPathNameW
GetCommandLineW
SetDllDirectoryW
GetVolumeInformationW
GetDriveTypeW
GetSystemDirectoryW
lstrlenW
ReplaceFileW
SetPriorityClass
GetProcessId
SetUnhandledExceptionFilter
GetFileTime
SetEndOfFile
SetFilePointerEx
GetFileSizeEx
FlushFileBuffers
GetTimeZoneInformation
SystemTimeToFileTime
FileTimeToSystemTime
GetSystemTime
SetThreadPriority
OutputDebugStringA
RtlCaptureContext
GetLogicalProcessorInformationEx
GetLogicalProcessorInformation
SetThreadAffinityMask
GetProcessAffinityMask
K32GetProcessMemoryInfo
GlobalMemoryStatusEx
FlushInstructionCache
IsDebuggerPresent
GetUserPreferredUILanguages
Process32NextW
Process32FirstW
GetLocaleInfoA
GetThreadTimes
GetCurrentThread
Sleep
VerifyVersionInfoW
GetCurrentProcessId
VerSetConditionMask
GetComputerNameExW
VerifyVersionInfoA
ExpandEnvironmentStringsW
GetExitCodeProcess
ConnectNamedPipe
ExitProcess
GetOverlappedResult
DeleteProcThreadAttributeList
UpdateProcThreadAttribute
GetVersion
GetACP
GetModuleHandleA
DuplicateHandle
PeekNamedPipe
InitializeProcThreadAttributeList
CreateNamedPipeA
WaitNamedPipeA
SetNamedPipeHandleState
CancelIo
GetStringTypeW
GetNumberOfConsoleInputEvents
ResetEvent
ReadConsoleW
GetConsoleMode
AddVectoredExceptionHandler
RaiseException
RemoveVectoredExceptionHandler
LoadLibraryExW
FreeLibrary
SetErrorMode
GetTickCount
GetProcessHeap
HeapAlloc
GetCurrentThreadId
HeapFree
GetVersionExA
QueryPerformanceCounter
QueryPerformanceFrequency
GetTickCount64
GetSystemTimeAdjustment
CreateEventA
GetFileType
GetConsoleCP
GetConsoleOutputCP
GenerateConsoleCtrlEvent
GetProcessTimes
GetSystemTimeAsFileTime
GetModuleHandleW
MoveFileExW
GetProcAddress
SetCurrentDirectoryW
GetCurrentDirectoryW
LoadLibraryW
GetSystemInfo
Process32Next
DeleteFileW
GetDiskFreeSpaceExW
GetFileAttributesExW
GetFileInformationByHandle
CreateToolhelp32Snapshot
SetFileAttributesW
OpenProcess
GetFileAttributesW
GetVolumePathNameW
FindClose
CreateHardLinkW
CreatePipe
SetEnvironmentVariableW
SetFileTime
GetFinalPathNameByHandleW
RemoveDirectoryW
TerminateProcess
DeviceIoControl
GetStdHandle
GetCurrentProcess
FindNextFileW
GetFullPathNameW
GetHandleInformation
GetConsoleScreenBufferInfo
SetHandleInformation
Process32First
FindFirstFileW
CreateDirectoryW
OutputDebugStringW
CreateSemaphoreA
WaitForSingleObjectEx
InitializeCriticalSection
ReleaseSemaphore
VirtualAlloc
VirtualFree
CreateFileA
CreateFileW
SetFilePointer
WriteFile
ReadFile
WriteConsoleW
TlsFree
TlsSetValue
TlsGetValue
CancelIoEx
MultiByteToWideChar
CreateWaitableTimerA
SetLastError
GetQueuedCompletionStatus
SetWaitableTimer
CreateIoCompletionPort
PostQueuedCompletionStatus
SleepEx
SetEvent
QueueUserAPC
TerminateThread
WaitForMultipleObjects
WaitForSingleObject
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
CreateEventW
GetLastError
TlsAlloc
LocalFree
WideCharToMultiByte
FormatMessageW
FormatMessageA
GetModuleFileNameW

user32

SystemParametersInfoW
GetGestureInfo
CloseGestureInfoHandle
GetKeyboardState
ShowWindow
ToAscii
DefWindowProcW
GetWindowRect
GetWindowPlacement
SetWindowPlacement
IsIconic
GetClientRect
ValidateRect
GetUpdateRect
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
MonitorFromWindow
GetKeyState
WindowFromPoint
GetWindow
GetWindowThreadProcessId
SetWindowLongPtrW
GetWindowLongPtrW
GetMenu
GetCursorPos
SendMessageW
GetWindowLongW
ReleaseCapture
GetTopWindow
SetCapture
InvalidateRect
RegisterWindowMessageW
BroadcastSystemMessageW
MessageBoxExW
LoadCursorW
SetWindowTextW
RegisterClassExW
CreateWindowExW
SetWindowLongW
CreateMenu
DestroyMenu
EnumChildWindows
DrawMenuBar
AppendMenuW
WaitForInputIdle
SetMenuItemInfoW
DeleteMenu
GetWindowTextW
ReplyMessage
OpenClipboard
EmptyClipboard
SetClipboardData
IsWindowVisible
SetWindowPos
GetWindowTextLengthW
GetActiveWindow
GetClipboardSequenceNumber
SetCursor
SetCursorPos
ShowCursor
LoadCursorFromFileW
DestroyCursor
GetDC
ReleaseDC
RegisterDeviceNotificationW
SetActiveWindow
UnregisterDeviceNotification
MapVirtualKeyW
SetFocus
IsWindowEnabled
RegisterClassW
MoveWindow
SetMenu
ToUnicode
RegisterWindowMessageA
GetKeyboardLayoutNameW
EnumDisplayMonitors
BringWindowToTop
GetClassNameW
SetRect
GetWindowInfo
CallWindowProcW
AdjustWindowRectEx
GetDoubleClickTime
CharLowerBuffA
FillRect
PostMessageW
DrawTextA
DrawTextExA
GetSystemMetrics
RemoveMenu
UpdateWindow
EnableWindow
GetMessageW
TranslateMessage
SetRectEmpty
MsgWaitForMultipleObjects
DispatchMessageW
MessageBoxA
PeekMessageA
MessageBoxW
SetTimer
DispatchMessageA
GetQueueStatus
KillTimer
EnumDisplayDevicesW
PostThreadMessageA
ClientToScreen
ScreenToClient
GetProcessWindowStation
GetUserObjectInformationW
CloseClipboard
EnumWindows
FlashWindowEx
LoadIconW
DestroyWindow
PeekMessageW
MonitorFromPoint
GetMonitorInfoW
PostQuitMessage
ShutdownBlockReasonCreate
ShutdownBlockReasonDestroy
GetSystemMenu
EnableMenuItem
GetParent
InSendMessage
SetForegroundWindow

msvcp140

?rdstate@ios_base@std@@QEBAHXZ
?_Syserror_map@std@@YAPEBDH@Z
?_Incref@facet@locale@std@@UEAAXXZ
??1facet@locale@std@@MEAA@XZ
??_7facet@locale@std@@6B@
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?good@ios_base@std@@QEBA_NXZ
?uncaught_exception@std@@YA_NXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?_Winerror_map@std@@YAHH@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
??1codecvt_base@std@@UEAA@XZ
??_7codecvt_base@std@@6B@
??_7?$codecvt@_WDU_Mbstatet@@@std@@6B@
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xbad_function_call@std@@YAXXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
??Bid@locale@std@@QEAA_KXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
?_Xout_of_range@std@@YAXPEBD@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
??_7_Facet_base@std@@6B@
??1_Facet_base@std@@UEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
??1_Locinfo@std@@QEAA@XZ
??0_Locinfo@std@@QEAA@PEBD@Z
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
_Strxfrm
_Strcoll
??0facet@locale@std@@IEAA@_K@Z
?id@?$collate@D@std@@2V0locale@2@A
?id@?$messages@D@std@@2V0locale@2@A
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?id@?$ctype@D@std@@2V0locale@2@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
?_Gettrue@_Locinfo@std@@QEBAPEBDXZ
?_Xbad_alloc@std@@YAXXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Getfalse@_Locinfo@std@@QEBAPEBDXZ
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@_N@Z
??0_Locinfo@std@@QEAA@HPEBD@Z
?_Getlconv@_Locinfo@std@@QEBAPEBUlconv@@XZ
?id@?$numpunct@D@std@@2V0locale@2@A
_Mtx_destroy_in_situ
?_Makeloc@_Locimp@locale@std@@CAPEAV123@AEBV_Locinfo@3@HPEAV123@PEBV23@@Z
?_Xruntime_error@std@@YAXPEBD@Z
_Mtx_init_in_situ
_Mtx_lock
?_Throw_C_error@std@@YAXH@Z
_Mtx_unlock
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?tolower@?$ctype@D@std@@QEBADD@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?widen@?$ctype@D@std@@QEBADD@Z
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?fail@ios_base@std@@QEBA_NXZ
?narrow@?$ctype@D@std@@QEBADDD@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?pubsetbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAPEAV12@PEAD_J@Z
?in_avail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEA_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAI@Z
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Throw_Cpp_error@std@@YAXH@Z
_Thrd_join
_Thrd_id
_Query_perf_counter
_Query_perf_frequency
_Cnd_do_broadcast_at_thread_exit
_Thrd_sleep
_Xtime_get_ticks
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Random_device@std@@YAIXZ
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Cnd_wait
_Cnd_broadcast
?_Release_chore@details@Concurrency@@YAXPEAU_Threadpool_chore@12@@Z
?_Schedule_chore@details@Concurrency@@YAHPEAU_Threadpool_chore@12@@Z
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ
?_Reset@_ContextCallback@details@Concurrency@@AEAAXXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?__ExceptionPtrRethrow@@YAXPEBX@Z
??0task_continuation_context@Concurrency@@AEAA@XZ
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QEAAX_N@Z
?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z
_Cnd_register_at_thread_exit
?__ExceptionPtrToBool@@YA_NPEBX@Z
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
_Cnd_unregister_at_thread_exit
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
_Cnd_timedwait
_Mtx_current_owns
?toupper@?$ctype@D@std@@QEBADD@Z
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?swap@?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
?classic@locale@std@@SAAEBV12@XZ
?__ExceptionPtrCopyException@@YAXPEAXPEBX1@Z
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
_Cnd_signal
?_Xinvalid_argument@std@@YAXPEBD@Z
_Thrd_hardware_concurrency
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@V?$fpos@U_Mbstatet@@@2@@Z
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@PEAV32@@Z
_Thrd_detach
?set_new_handler@std@@YAP6AXXZP6AXXZ@Z
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?_Xoverflow_error@std@@YAXPEBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
?exceptions@ios_base@std@@QEAAXH@Z
?id@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?put@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEBA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AEAVios_base@2@DPEBUtm@@PEBD3@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?swap@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?swap@?$basic_iostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?clog@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?setbase@std@@YA?AU?$_Smanip@H@1@H@Z
?do_in@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?do_always_noconv@?$codecvt@_WDU_Mbstatet@@@std@@MEBA_NXZ
?do_max_length@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHXZ
?do_encoding@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHXZ
?do_out@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
?do_unshift@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?do_length@?$codecvt@_WDU_Mbstatet@@@std@@MEBAHAEAU_Mbstatet@@PEBD1_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
?id@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@2V0locale@2@A
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?pubsync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?get@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEBA?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AEAVios_base@2@AEAHPEAUtm@@PEBD4@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ
?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ
?swap@?$basic_istream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
?pubimbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAM@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__current_exception_context
__current_exception
longjmp
wcsstr
_set_purecall_handler
_set_se_translator
memset
strstr
wcsrchr
wcschr
strrchr
__C_specific_handler
__RTtypeid
__std_type_info_compare
__std_type_info_name
_purecall
__std_exception_destroy
__std_exception_copy
__std_type_info_hash
__RTDynamicCast
__std_terminate
memcpy
memchr
memcmp
memmove
strchr
__RTCastToVoid
__intrinsic_setjmp
_CxxThrowException

api-ms-win-crt-runtime-l1-1-0

_set_abort_behavior
set_terminate
strerror_s
fesetenv
fegetenv
raise
_endthreadex
_set_thread_local_invalid_parameter_handler
_control87
_seh_filter_exe
_set_app_type
exit
_exit
_get_wide_winmain_command_line
_initterm
_initterm_e
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_invalid_parameter_noinfo_noreturn
abort
_getpid
__fpe_flt_rounds
_initialize_wide_environment
_wsystem
__sys_nerr
__sys_errlist
_configure_wide_argv
signal
_errno
strerror
_beginthreadex
terminate

api-ms-win-crt-heap-l1-1-0

free
realloc
calloc
_aligned_malloc
_aligned_free
malloc
_aligned_realloc
_msize
_heapmin
_set_new_mode
_callnewh

api-ms-win-crt-environment-l1-1-0

getenv
__p__wenviron
_wputenv
_wgetenv
_wgetcwd

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
fclose
_get_stream_buffer_pointers
fread
_getcwd
fwrite
_wfopen
fputs
_wfopen_s
fgetpos
_wfsopen
_filelengthi64
_pipe
_dup
__stdio_common_vswscanf
__stdio_common_vsscanf
__stdio_common_vfprintf
__acrt_iob_func
_fileno
_isatty
_get_osfhandle
_chsize_s
_lseeki64
_locking
_fseeki64
__stdio_common_vswprintf
ftell
ferror
fopen
fseek
_ftelli64
clearerr
fsetpos
setvbuf
fflush
ungetc
_wopen
_kbhit
_commit
fputc
_set_fmode
__stdio_common_vsprintf_s
feof
_creat
fgets
_lseek
_write
_read
_open
fgetc
_dup2
_close
__p__commode
_open_osfhandle
_setmode
getc
rewind
__stdio_common_vsnprintf_s

api-ms-win-crt-filesystem-l1-1-0

_umask
_access_s
_wstat64
_wstat64i32
remove
_mkdir
_unlock_file
_fstat64i32
_fstat64
_lock_file
_unlink
_access
_stat64
_wmkdir
_stat64i32

api-ms-win-crt-math-l1-1-0

fabs
acos
asin
sinh
floor
cos
ceil
sin
atan
fmod
log10f
powf
sinf
cosf
pow
tanf
lrintf
exp
tanh
erfc
sqrt
erf
floorf
log2f
atan2f
tanhf
sqrtf
atanf
trunc
exp2
lroundf
fmin
modff
copysignf
log2
nextafterf
logf
llround
roundf
tan
exp2f
nextafter
log1pf
lround
_finite
_dclass
_fdsign
cbrt
truncf
round
fminf
fmaxf
llrint
__setusermatherr
_isnan
_fdclass
_dsign
ceilf
expf
_ldclass
acosf
atan2
fmodf
cosh
log
hypot
copysign
log10
modf
frexp
ldexp
_fdopen
sinhf

api-ms-win-crt-string-l1-1-0

wcscat_s
wcscpy_s
isxdigit
wcsncpy_s
wcsncmp
toupper
_wcsicmp
wcsncpy
wcsxfrm
wcscoll
wcstok
_stricmp_l
strnlen
strncat
strcpy_s
strncmp
strspn
wcsnlen
towlower
strcmp
_stricmp
isprint
isalnum
_strnicmp
isdigit
isalpha
strcspn
isspace
isupper
strncpy
iswprint
_strdup
tolower
iscntrl

api-ms-win-crt-convert-l1-1-0

atoll
_wtoi
mbstowcs
_wcstod_l
atoi
strtof
atof
strtoull
wcstol
_wcstoi64
strtoul
strtol
strtod
strtoll
wcstombs
strtold

api-ms-win-crt-utility-l1-1-0

bsearch
qsort
srand
rand
rand_s

api-ms-win-crt-time-l1-1-0

__daylight
_gmtime64
clock
_ctime64
_gmtime64_s
_time64
_difftime64
_localtime64_s
_tzset
__timezone
_localtime64
_mktime64
strftime
__tzname

api-ms-win-crt-multibyte-l1-1-0

_mbsnbcpy
_mbsncmp
_mbschr
_mbspbrk

api-ms-win-crt-locale-l1-1-0

localeconv
setlocale
_free_locale
_create_locale
_configthreadlocale

api-ms-win-crt-process-l1-1-0

_wexecve
_wspawnv
_wspawnve
_cwait
_wexecv

api-ms-win-crt-conio-l1-1-0

_getche
_putch
_ungetwch
_ungetch
_getch
_putwch
_getwche
_getwch

ws2_32

WSASocketW
setsockopt
WSAAddressToStringW
WSAStringToAddressW
ntohl
htonl
ntohs
htons
bind
getsockname
recv
send
__WSAFDIsSet
getsockopt
getaddrinfo
freeaddrinfo
connect
getnameinfo
getpeername
listen
accept
ioctlsocket
inet_pton
socket
sendto
inet_ntop
recvfrom
getservbyname
inet_ntoa
getservbyport
getprotobyname
gethostbyaddr
inet_addr
WSADuplicateSocketW
gethostbyname
WSAIoctl
WSARecv
WSAPoll
WSASend
WSARecvFrom
select
shutdown
WSASendTo
closesocket
WSAGetLastError
WSACleanup
WSAStartup
WSASetLastError

propsys

PropVariantToInt64

mfplat

MFCreateMediaType
MFStartup
MFInvokeCallback
MFShutdown
MFCreateAsyncResult

mfreadwrite

MFCreateSourceReaderFromByteStream

mswsock

AcceptEx

iphlpapi

GetAdaptersAddresses

avrt

AvSetMmThreadCharacteristicsW

dbghelp

MiniDumpWriteDump

shlwapi

PathCanonicalizeW
StrCmpLogicalW
PathCombineW

d3d11

D3D11CreateDevice

dwmapi

DwmIsCompositionEnabled
DwmFlush
DwmGetCompositionTimingInfo

imm32

ImmSetCandidateWindow
ImmReleaseContext
ImmGetCompositionStringW
ImmAssociateContextEx
ImmNotifyIME
ImmGetContext

opengl32

glGenTextures
glDeleteTextures
glDisable
glBlendFunc
glEnable
glEnd
glVertex2f
glTexCoord2f
glLoadIdentity
glColor3f
glPixelStorei
glTexParameterfv
glTexParameteri
glTexImage2D
glBindTexture
glGetError
wglCreateContext
glViewport
wglDeleteContext
wglGetCurrentDC
glMatrixMode
wglGetCurrentContext
wglMakeCurrent
wglGetProcAddress
glGetString
glTexSubImage2D
glBegin

uiautomationcore

UiaReturnRawElementProvider
UiaHostProviderFromHwnd
UiaRaiseAutomationEvent

shell32

DragQueryFileW
SHGetSpecialFolderPathA
SHCreateItemFromParsingName
SetCurrentProcessExplicitAppUserModelID
DragAcceptFiles
CommandLineToArgvW
SHGetKnownFolderPath
FindExecutableW
ShellExecuteExW
ShellExecuteW
SHAddToRecentDocs

version

GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
GetFileVersionInfoW
VerQueryValueA

dsound

ord8
ord6
ord3
ord1

rex shared library

REXRenderSlice
REXGetSliceInfo
REXGetInfo
REXCreate
REXDelete
REXInitializeDLL

gdi32

CreateCompatibleDC
CreateDIBSection
SelectObject
GetPixel
DeleteObject
DescribePixelFormat
BitBlt
SetBkColor
SetTextColor
GetStockObject
SetPixelFormat
SwapBuffers
ChoosePixelFormat
DeleteDC

ole32

RegisterDragDrop
CoTaskMemAlloc
OleGetClipboard
CoInitializeEx
PropVariantClear
CLSIDFromString
GetRunningObjectTable
CreateItemMoniker
DoDragDrop
StringFromGUID2
RevokeDragDrop
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoCreateInstance
ReleaseStgMedium
CoUninitialize
CoLockObjectExternal
CoInitialize
CoTaskMemFree

oleaut32

SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
SysAllocString
SysFreeString

winmm

midiOutUnprepareHeader
timeBeginPeriod
timeEndPeriod
midiOutPrepareHeader
midiOutShortMsg
midiOutClose
midiOutReset
midiInStop
midiInReset
midiOutOpen
midiInStart
midiInClose
midiInOpen
midiInUnprepareHeader
midiInAddBuffer
midiInPrepareHeader
midiOutLongMsg
midiOutGetNumDevs
midiOutMessage
midiOutGetDevCapsW
midiInGetNumDevs
midiInMessage
timeGetTime
waveOutGetNumDevs
waveOutGetDevCapsW
waveOutOpen
waveOutClose
waveOutPause
waveOutRestart
waveOutReset
waveOutGetPosition
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutWrite
waveInGetNumDevs
waveInGetDevCapsW
waveInOpen
waveInClose
waveInGetPosition
waveInStart
waveInReset
waveInUnprepareHeader
waveInPrepareHeader
waveInAddBuffer
timeSetEvent
timeKillEvent
waveInGetErrorTextA
midiInGetDevCapsW

usflib

XUsfBankDelete
XUsfStreamDelete
XUsfProgGetTuno
XUsfProgGetVelFade
XUsfVoiceGetTuno
XUsfSampSamplePitch
XUsfSampNumberOfChannels
XUsfSampIsLooped
XUsfSampGetFormat
XUsfVoiceChannelName
XUsfVoiceIsInterleaved
XUsfVoiceIsExternal
XUsfVoiceIsLooped
XUsfModGetDepthExt
XUsfModGetControl
XUsfEnvSegmentRate
XUsfEnvSegmentCount
XUsfProgLfoCount
XUsfProgGetDim
XUsfProgHasCrossFade
XUsfProgDimCount
XUsfProgGetVcfKeyFollow
XUsfProgGetLevelRange
XUsfProgGetCrossfade
XUsfImportUsfProgramName
XUsfImportUsfFileName
XUsfImportUsfCurrentFolder
XUsfLibNew
XUsfLibNewFileImport
XUsfLibNewImageImport
XUsfImportUsfVolumeName
XUsfImportUsfVolumeCount
XUsfImportUsfCloseSubFolder
XUsfImportUsfFolderName
XUsfImportUsfFolderCount
XUsfImportUsfFileCount
XUsfImportUsfOpenSubFolder
XUsfImportUsfOpenFolder
XUsfImportUsfProgramCount
XUsfImportUsfOpenFileByName
XUsfImportUsfOpenFile
XUsfBankGetProgram
XUsfVoiceRootKey
XUsfProgPitchTracking
XUsfBankProgramCount
XUsfImportUsfLoadProgram
XUsfBankNew
XUsfProgHasReleaseTrigger
XUsfProgSplitByGroup
XUsfProgVcaLevel
XUsfProgGetReleaseTrigger
XUsfProgIsSet
XUsfProgSplitBadStereo
XUsfProgFlatten
XUsfNodeGetName
XUsfNodeGetChildByIndex
XUsfNodeChildCount
XUsfEnvGetSustainIndex
XUsfProgGetPano
XUsfEnvSegmentLevel
XUsfEnvSegmentRateByType
XUsfEnvSegmentLevelByType
XUsfModGetSource
XUsfModGetDepthInt
XUsfLfoGetDelay
XUsfLfoGetRate
XUsfLfoGetSync
XUsfLfoGetTrig
XUsfLfoGetWave
XUsfVoiceChannelCount
XUsfVoiceChannelStart
XUsfVoiceChannelEnd
XUsfProgGetLfo
XUsfModGetDestin
XUsfProgGetMod
XUsfProgModCount
XUsfProgGetEnvAux
XUsfProgGetEnvMod
XUsfProgVcaByEnv
XUsfEnvSetDestination
XUsfProgGetEnvAmp
XUsfImportDelete
XUsfVoiceChannelLoopStart
XUsfVoiceChannelLoopEnd
XUsfVoicePlayMode
XUsfImportUsfGetFormat
XUsfVoiceLoopCrossfade
XUsfVoiceIsDummy
XUsfVoiceSampleCount
XUsfSampIsExternal
XUsfVoiceIsStereo
XUsfVoiceCanInterleave
XUsfProgGetKeyFade
XUsfProgGetKeyRange
XUsfProgGetVoice
XUsfSampGetFolderPathByArgs
XUsfSampGetFileName
XUsfSampGetFullPath
XUsfVoiceGetSample
XUsfVoiceVoiceName
XUsfVoiceChannelSize
XUsfVoiceSampleRate
XUsfVoiceBitDepth
XUsfLibDelete
XUsfProgVcfByEnv
XUsfProgVcfByVel
XUsfProgGetFilter
XUsfProgVcaByVel
XUsfProgGetTranspose
XUsfProgPitchByEnv
XUsfProgGetPitchBend
XUsfProgGetGlide
XUsfProgGetPolyphony
XUsfProgGetNextZone
XUsfStreamGetAudioByFloats
XUsfStreamGetAudioByShorts
XUsfStreamSetOffset
XUsfImportUsfCreateStream
XUsfProgGetVelRange

advapi32

InitializeSecurityDescriptor
GetUserNameW
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
RegSetValueW
RegQueryValueExW
RegEnumValueW
RegDeleteValueW
RegConnectRegistryW
RegCreateKeyW
RegOpenKeyExW
RegLoadKeyW
RegQueryInfoKeyA
RegSetValueExW
RegEnumKeyExW
RegSaveKeyW
RegCreateKeyExW
RegFlushKey
RegQueryValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegCloseKey
RegGetValueW
RegSetKeyValueW
RegDeleteTreeW
SetSecurityDescriptorDacl
CryptGetHashParam
CryptDestroyHash
CryptHashData
CryptCreateHash
RegOpenKeyA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
DeregisterEventSource
CryptEnumProvidersW
CryptSignHashW
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptAcquireContextW
ReportEventW
RegisterEventSourceW

bcrypt

BCryptGenRandom
BCryptCloseAlgorithmProvider
BCryptOpenAlgorithmProvider

crypt32

CertFreeCertificateContext
CertCloseStore
CertEnumCRLsInStore
CertGetEnhancedKeyUsage
CertFreeCRLContext
CertOpenStore
PFXImportCertStore
CertEnumCertificatesInStore
CryptStringToBinaryA
CertFindCertificateInStore
CryptDecodeObjectEx
CertGetCertificateChain
CertFreeCertificateChainEngine
CertOpenSystemStoreW
CryptQueryObject
CertFreeCertificateChain
CertGetNameStringA
CertFindExtension
CertCreateCertificateChainEngine
CertDuplicateCertificateContext
CertGetCertificateContextProperty
CryptProtectData
CryptUnprotectData
CertAddCertificateContextToStore

libusb-1.0

libusb_claim_interface
libusb_bulk_transfer
libusb_strerror
libusb_close
libusb_release_interface
libusb_get_device_descriptor
libusb_get_device_list
libusb_free_device_list
libusb_exit
libusb_open
libusb_init

rpcrt4

UuidCreate
UuidToStringW
RpcStringFreeW

wininet

InternetGetConnectedState

Exports

Exports

AmdPowerXpressRequestHighPerformance
NvOptimusEnablement
PyInit_Application
PyInit_Base
PyInit_Browser
PyInit_Chain
PyInit_ChainMixerDevice
PyInit_Clip
PyInit_ClipSlot
PyInit_CompressorDevice
PyInit_Conversions
PyInit_Device
PyInit_DeviceIO
PyInit_DeviceParameter
PyInit_DriftDevice
PyInit_DrumChain
PyInit_DrumPad
PyInit_Eq8Device
PyInit_Groove
PyInit_GroovePool
PyInit_HybridReverbDevice
PyInit_ListWrapper
PyInit_Listener
PyInit_Live
PyInit_LomObject
PyInit_MaxDevice
PyInit_MidiMap
PyInit_MidiRemoteScript
PyInit_MixerDevice
PyInit_MxDManager
PyInit_PluginDevice
PyInit_RackDevice
PyInit_Sample
PyInit_Scene
PyInit_ShifterDevice
PyInit_SimplerDevice
PyInit_Song
PyInit_SpectralResonatorDevice
PyInit_Track
PyInit_WavetableDevice
PyInit__MoveDisplay
PyInit_live_io

Sections

.text
Size: 71.8MB - Virtual size: 71.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

IPPCODE
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21.8MB - Virtual size: 21.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3.7MB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

IPPDATA
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Crack-Keygen/Keygen.zip
.zip
ABLETON KEYGEN.exe
.exe windows:5 windows x64 arch:x64

bae3d3e8262d7ce7e9ee69cc1b630d3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

GetWindowThreadProcessId
ShowWindow

kernel32

GetModuleFileNameW
CreateSymbolicLinkW
GetProcAddress
GetCommandLineW
GetEnvironmentVariableW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
SetDllDirectoryW
FreeLibrary
LoadLibraryExW
SetConsoleCtrlHandler
FindClose
FindFirstFileExW
CloseHandle
GetCurrentProcess
GetCurrentProcessId
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
GetConsoleWindow
HeapSize
GetLastError
WriteConsoleW
SetEndOfFile
GetStartupInfoW
TlsSetValue
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
RtlUnwindEx
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsFree
EncodePointer
RaiseException
RtlPcToFileHeader
GetCommandLineA
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindNextFileW
SetStdHandle
DeleteFileW
ReadFile
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW
GetCurrentDirectoryW
FlushFileBuffers
HeapReAlloc
GetFileAttributesExW
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetTimeZoneInformation

advapi32

ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken
ConvertStringSecurityDescriptorToSecurityDescriptorW

Sections

.text
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ableton.pyc
Crack-Keygen/READ ME.txt

Resubmissions

Sharing

General

Malware Config

Signatures

Files

7f26bb19ac1a3a13b84398d3a0c1c0f9

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

07:74:8f:f7:54:3c:c1:11:68:f9:51:99:42:fb:05:84Certificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

cc:7e:44:6a:cd:68:5d:a5:9b:4c:9a:ca:2c:aa:14:e7:c7:d0:45:ef:e3:9b:fb:93:ae:a5:27:95:a2:f7:e8:aeSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

msvcp140

vcruntime140_1

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-multibyte-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-process-l1-1-0

api-ms-win-crt-conio-l1-1-0

ws2_32

propsys

mfplat

mfreadwrite

mswsock

iphlpapi

avrt

dbghelp

shlwapi

d3d11

dwmapi

imm32

opengl32

uiautomationcore

shell32

version

dsound

rex shared library

gdi32

ole32

oleaut32

winmm

usflib

advapi32

bcrypt

crypt32

libusb-1.0

rpcrt4

wininet

Exports

Exports

Sections

.text Size: 71.8MB - Virtual size: 71.8MB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

07:74:8f:f7:54:3c:c1:11:68:f9:51:99:42:fb:05:84
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

cc:7e:44:6a:cd:68:5d:a5:9b:4c:9a:ca:2c:aa:14:e7:c7:d0:45:ef:e3:9b:fb:93:ae:a5:27:95:a2:f7:e8:ae
Signer

.text
Size: 71.8MB - Virtual size: 71.8MB

IPPCODE
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 21.8MB - Virtual size: 21.8MB

.data
Size: 3.7MB - Virtual size: 5.9MB

.pdata
Size: 3.3MB - Virtual size: 3.3MB

IPPDATA
Size: 3KB - Virtual size: 3KB

_RDATA
Size: 158KB - Virtual size: 158KB

.rsrc
Size: 120KB - Virtual size: 119KB

.text
Size: 167KB - Virtual size: 167KB

.rdata
Size: 74KB - Virtual size: 74KB

.data
Size: 3KB - Virtual size: 12KB

.pdata
Size: 9KB - Virtual size: 8KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 2KB - Virtual size: 1KB