F:\workspace\Branches\IPV6\brbuild\Release\PDB\BonreeKingKong.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
d4a6ffafa78669cf2f30fd0a22e96ac5.exe
Resource
win7-20240221-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
d4a6ffafa78669cf2f30fd0a22e96ac5.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
d4a6ffafa78669cf2f30fd0a22e96ac5
-
Size
1.1MB
-
MD5
d4a6ffafa78669cf2f30fd0a22e96ac5
-
SHA1
c35b361894d6a308025246f5f1f3cdc01cf1ee5f
-
SHA256
4dc66a26307640996521eb83d69aee992cbcebf2fe2bca438f60f29908e82dfe
-
SHA512
b6c3e15586994435c1f7d3044abbde097676169a1026f2433deabe8094da2192e47daef1a4c88e0f0b18c270442ad40cf90bc57ccdc40c0d1d9bfbad53808be3
-
SSDEEP
24576:rOsQs3n7zpdoHO6kbo2DKQqlxyGvBRa4QmRS2jU4OUJM46NirgFITT8ypfL08:rOsQsXsu6kbaQmVEZ+OUJM46NirgyTAE
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d4a6ffafa78669cf2f30fd0a22e96ac5
Files
-
d4a6ffafa78669cf2f30fd0a22e96ac5.exe windows:5 windows x86 arch:x86
c8c38970cef308e91db890201f035ab2
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
brbase
?Now@Time@base@@SA?AV12@XZ
?WaitForIOCompletion@MessageLoopForIO@base@@QAE_NKPAVIOHandler@MessagePumpForIO@2@@Z
?CalledOnValidThread@ThreadCheckerImpl@base@@QBE_NXZ
?GetMinLogLevel@logging@@YAHXZ
??6@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AAV01@PB_W@Z
??1ThreadCheckerImpl@base@@QAE@XZ
?ForCurrentProcess@CommandLine@@SAPAV1@XZ
?KillProcess@base@@YA_NPAXH_N@Z
?FindNext@Pickle@@KAPBDIPBD0@Z
?ReadWString@PickleIterator@@QAE_NPAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?GetInstance@TraceLog@debug@base@@SAPAV123@XZ
??1Pickle@@UAE@XZ
??0Pickle@@QAE@PBDH@Z
??0Pickle@@QAE@ABV0@@Z
??0Pickle@@QAE@H@Z
?ReadBool@PickleIterator@@QAE_NPA_N@Z
?GenerateGUID@base@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
??0CommandLine@@QAE@W4NoProgram@0@@Z
??1CommandLine@@QAE@XZ
?ParseFromString@CommandLine@@QAEXABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?AppendSwitchASCII@CommandLine@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?GetCommandLineString@CommandLine@@QBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?PostDelayedTask@MessageLoop@base@@QAEXABVLocation@tracked_objects@@ABV?$Callback@$$A6AXXZ@2@VTimeDelta@2@@Z
?current@MessageLoop@base@@SAPAV12@XZ
?Stop@Thread@base@@QAEXXZ
?HasSwitch@CommandLine@@QBE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0CommandLine@@QAE@ABVFilePath@base@@@Z
?AddTraceEvent@TraceLog@debug@base@@QAEXDPBEPBD_KHPAPBD0PB_KE@Z
?LaunchProcess@base@@YA_NABVCommandLine@@ABULaunchOptions@1@PAPAX@Z
?GetProcId@base@@YAKPAX@Z
?IsRunning@Thread@base@@QBE_NXZ
?StartWithOptions@Thread@base@@QAE_NABUOptions@12@@Z
??1WeakPtrBase@internal@base@@QAE@XZ
?StringToInt@base@@YA_NABV?$BasicStringPiece@V?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@1@PAH@Z
??0WeakReferenceOwner@internal@base@@QAE@XZ
??1WeakReferenceOwner@internal@base@@QAE@XZ
?GetRef@WeakReferenceOwner@internal@base@@QBE?AVWeakReference@23@XZ
??1WeakReference@internal@base@@QAE@XZ
?AddRef@RefCountedThreadSafeBase@subtle@base@@IBEXXZ
??0WeakPtrBase@internal@base@@IAE@ABVWeakReference@12@@Z
?is_valid@WeakReference@internal@base@@QBE_NXZ
?StringToInt@base@@YA_NABV?$BasicStringPiece@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@1@PAH@Z
?ReadUInt64@PickleIterator@@QAE_NPA_K@Z
?PostNonNestableDelayedTask@MessageLoop@base@@QAEXABVLocation@tracked_objects@@ABV?$Callback@$$A6AXXZ@2@VTimeDelta@2@@Z
?CreateProcessMetrics@ProcessMetrics@base@@SAPAV12@PAX@Z
?GetWorkingSetSize@ProcessMetrics@base@@QBEIXZ
??1ProcessMetrics@base@@QAE@XZ
?RegisterIOHandler@MessageLoopForIO@base@@QAEXPAXPAVIOHandler@MessagePumpForIO@2@@Z
?GetCategoryGroupEnabled@TraceLog@debug@base@@SAPBEPBD@Z
?GetSwitchValueASCII@CommandLine@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV23@@Z
??0ThreadCheckerImpl@base@@QAE@XZ
?CurrentId@PlatformThread@base@@SAKXZ
?NowFromSystemTraceTime@TimeTicks@base@@SA?AV12@XZ
?AddTraceEventWithThreadIdAndTimestamp@TraceLog@debug@base@@QAEXDPBEPBD_KHABVTimeTicks@3@HPAPBD0PB_KE@Z
??1FilePath@base@@QAE@XZ
?GetFunctionPointer@ScopedNativeLibrary@base@@QBEPAXPBD@Z
??0ScopedNativeLibrary@base@@QAE@ABVFilePath@1@@Z
??0FilePath@base@@QAE@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
??1RefCountedThreadSafeBase@subtle@base@@IAE@XZ
?Release@RefCountedThreadSafeBase@subtle@base@@IBE_NXZ
??0LockImpl@internal@base@@QAE@XZ
??1LockImpl@internal@base@@QAE@XZ
?Lock@LockImpl@internal@base@@QAEXXZ
?Unlock@LockImpl@internal@base@@QAEXXZ
??1CallbackBase@internal@base@@IAE@XZ
??0RefCountedThreadSafeBase@subtle@base@@IAE@XZ
?AppendArg@CommandLine@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?AppendToFile@file_util@@YAHABVFilePath@base@@PBDH@Z
?WriteFile@file_util@@YAHABVFilePath@base@@PBDH@Z
?CreateDirectoryW@file_util@@YA_NABVFilePath@base@@@Z
?DirectoryExists@file_util@@YA_NABVFilePath@base@@@Z
??1AtExitManager@base@@QAE@XZ
??0AtExitManager@base@@QAE@XZ
?EnableTerminationOnOutOfMemory@base@@YAXXZ
?EnableTerminationOnHeapCorruption@base@@YAXXZ
?Init@CommandLine@@SA_NHPBQBD@Z
?IntToString@base@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?PathExists@file_util@@YA_NABVFilePath@base@@@Z
?Append@FilePath@base@@QBE?AV12@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?DirName@FilePath@base@@QBE?AV12@XZ
??4FilePath@base@@QAEAAV01@ABV01@@Z
?BaseName@FilePath@base@@QBE?AV12@XZ
?Get@PathService@@SA_NHPAVFilePath@base@@@Z
??0FilePath@base@@QAE@XZ
??0PickleIterator@@QAE@ABVPickle@@@Z
?ReadInt@PickleIterator@@QAE_NPAH@Z
?ReadString@PickleIterator@@QAE_NPAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0LogMessage@logging@@QAE@PBDHHPAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?WriteString@Pickle@@QAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?WriteBytes@Pickle@@QAE_NPBXH@Z
??0LogMessage@logging@@QAE@PBDHH@Z
??1LogMessage@logging@@QAE@XZ
?SysNativeMBToWide@base@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABV?$BasicStringPiece@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@1@@Z
?SysWideToNativeMB@base@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@3@@Z
?SysWideToUTF8@base@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@3@@Z
?Uint64ToString@base@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_K@Z
?UintToString@base@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I@Z
?SysUTF8ToWide@base@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@ABV?$BasicStringPiece@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@1@@Z
??0Thread@base@@QAE@PBD@Z
?Start@Thread@base@@QAE_NXZ
?GetProgramCounter@tracked_objects@@YAPBXXZ
??0Location@tracked_objects@@QAE@PBD0HPBX@Z
?PostTask@MessageLoop@base@@QAEXABVLocation@tracked_objects@@ABV?$Callback@$$A6AXXZ@2@@Z
??0CallbackBase@internal@base@@IAE@PAVBindStateBase@12@@Z
??1ScopedNativeLibrary@base@@QAE@XZ
ws2_32
WSAStartup
recvfrom
sendto
getsockopt
ntohs
getsockname
WSAIoctl
listen
closesocket
bind
htons
htonl
socket
send
recv
accept
gethostbyname
inet_addr
ntohl
inet_ntoa
getpeername
connect
gethostname
setsockopt
select
ioctlsocket
getaddrinfo
freeaddrinfo
__WSAFDIsSet
WSASetLastError
WSACleanup
WSAStringToAddressA
WSAGetLastError
ssleay32
ord5
ord126
ord48
ord49
ord75
ord24
ord30
ord222
ord17
ord235
ord183
ord74
ord407
ord8
ord86
ord96
ord58
ord78
ord31
ord180
ord60
ord45
ord164
ord87
ord90
ord21
ord141
ord15
ord387
ord361
ord266
ord6
ord12
ord116
ord110
ord385
ord130
ord127
ord157
ord43
ord61
ord242
ord77
ord108
libeay32
ord2437
ord2436
ord2435
ord784
ord809
ord808
ord3479
ord3765
ord3712
ord342
ord340
ord1
ord641
ord391
ord2454
ord869
ord653
ord7
ord86
ord656
ord88
ord816
ord1161
ord151
ord421
ord544
ord1180
ord543
ord18
ord154
ord979
ord680
ord248
ord556
ord625
ord958
ord2596
ord3020
ord2561
ord2598
ord3164
ord3048
ord3025
ord2593
ord2989
ord2971
ord2647
ord2844
ord2838
ord3173
ord1958
ord1654
ord1653
ord2075
ord2023
ord1216
ord657
ord579
ord578
ord566
ord1951
ord188
ord2442
ord181
ord222
ord298
ord2604
ord224
ord4445
ord3226
ord3214
ord3182
ord3212
ord2291
ord95
ord78
ord2431
ord52
ord66
ord227
ord223
ord654
ord280
ord281
ord467
ord341
ord464
ord2201
ord466
ord2254
kernel32
HeapDestroy
HeapReAlloc
CancelIo
RaiseException
LocalFree
EncodePointer
DecodePointer
InterlockedCompareExchange
HeapSetInformation
GetStartupInfoW
UnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
ResumeThread
GetThreadContext
CreateNamedPipeW
GetNamedPipeInfo
SetThreadContext
VirtualQuery
VirtualFree
FlushInstructionCache
VirtualProtect
SuspendThread
GetSystemTimes
GetProcessTimes
ConnectNamedPipe
HeapSize
GetModuleHandleA
VerSetConditionMask
VerifyVersionInfoA
ExpandEnvironmentStringsA
GetStdHandle
PeekNamedPipe
FormatMessageA
SleepEx
SetLastError
CreateEventW
ResetEvent
CreateEventA
SetEvent
InterlockedExchangeAdd
MulDiv
DuplicateHandle
GetFileType
DosDateTimeToFileTime
ExitProcess
FreeResource
WriteFile
GetCurrentDirectoryW
ReadFile
SetFilePointer
CreateFileW
SetThreadAffinityMask
lstrcmpiA
IsWow64Process
SystemTimeToFileTime
GetProcessHeap
HeapFree
HeapAlloc
DeleteFileW
GetCurrentThread
CreateProcessW
InitializeCriticalSection
GetFileSize
DeleteFileA
RemoveDirectoryA
GetFileAttributesW
GetFileAttributesA
GetSystemInfo
GlobalMemoryStatusEx
LockResource
GetPrivateProfileStringA
GetSystemDirectoryA
SizeofResource
WideCharToMultiByte
GetPrivateProfileIntA
InterlockedDecrement
LoadResource
FindResourceW
FindResourceExW
WinExec
GetCurrentThreadId
QueryPerformanceFrequency
CreateToolhelp32Snapshot
FindNextFileA
Process32NextW
GetModuleFileNameA
Process32FirstW
LoadLibraryA
FindClose
FindFirstFileA
GetStartupInfoA
SetCurrentDirectoryA
lstrcatA
GetModuleFileNameW
TerminateProcess
CreateProcessA
OpenProcess
GetModuleHandleW
WaitForSingleObject
QueryPerformanceCounter
GetCurrentProcess
GetNativeSystemInfo
lstrcmpA
WaitForMultipleObjects
GetTempPathA
CreateDirectoryA
GetLocalTime
OpenThread
TerminateThread
GetTickCount
InterlockedExchange
Sleep
lstrcpyA
LoadLibraryW
GetProcAddress
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
GetVersionExW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedIncrement
SetErrorMode
SetUnhandledExceptionFilter
GetCurrentProcessId
CreateMutexW
lstrlenA
MultiByteToWideChar
CloseHandle
GetLastError
user32
IsZoomed
IsIconic
SetCursor
wvsprintfW
InflateRect
OffsetRect
GetPropW
SetPropW
CallWindowProcW
RegisterClassExW
GetClassInfoExW
RegisterClassW
LoadCursorW
LoadImageW
MonitorFromWindow
GetMonitorInfoW
EnableWindow
ShowWindow
DefWindowProcW
PtInRect
ReleaseCapture
SetCapture
KillTimer
GetFocus
DispatchMessageW
TranslateMessage
GetCursorPos
ScreenToClient
CreateWindowExW
MapWindowPoints
GetWindowRect
InvalidateRect
IsRectEmpty
EndPaint
BeginPaint
GetUpdateRect
SetFocus
GetWindow
SetWindowPos
GetClientRect
GetDC
ReleaseDC
GetKeyState
GetParent
GetSystemMetrics
MoveWindow
EnumWindows
GetWindowThreadProcessId
SendMessageTimeoutA
FindWindowExA
GetDlgCtrlID
IsWindow
DestroyWindow
FindWindowA
SendMessageW
PostThreadMessageW
SetTimer
PostMessageW
GetMessageW
GetWindowLongW
SetWindowLongW
PostQuitMessage
SetWindowRgn
MessageBoxW
IntersectRect
UpdateWindow
CreateAcceleratorTableW
InvalidateRgn
GetWindowTextW
GetWindowTextLengthW
SetWindowTextW
CharPrevW
SetRect
DrawTextW
FillRect
GetSysColor
ClientToScreen
SetCaretPos
HideCaret
ShowCaret
CreateCaret
CharNextW
gdi32
SetWindowOrgEx
GetStockObject
CreateFontIndirectW
CreatePen
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
SaveDC
BitBlt
RestoreDC
Rectangle
GetObjectA
TextOutW
GetTextExtentPoint32W
GetCharABCWidthsW
SetTextColor
SetBkMode
RoundRect
LineTo
MoveToEx
CreatePenIndirect
CreateSolidBrush
ExtTextOutW
SetBkColor
SetStretchBltMode
StretchBlt
CreateDIBSection
CombineRgn
ExtSelectClipRgn
CreateRectRgnIndirect
GetClipBox
SelectClipRgn
GetDeviceCaps
CreateRoundRectRgn
GetTextMetricsW
GetObjectW
advapi32
OpenServiceA
CloseServiceHandle
RegCloseKey
RegOpenKeyExA
StartServiceA
RegQueryValueExA
OpenSCManagerW
shell32
ShellExecuteW
SHGetFolderPathA
ShellExecuteA
ole32
CoInitialize
CoCreateInstance
CoCreateGuid
CoSetProxyBlanket
CoInitializeSecurity
CoInitializeEx
OleLockRunning
CLSIDFromString
CLSIDFromProgID
CoUninitialize
oleaut32
SafeArrayGetUBound
SafeArrayUnaccessData
SysAllocStringLen
VarBstrCat
VariantInit
SafeArrayAccessData
SafeArrayGetLBound
SysStringLen
SysFreeString
VariantClear
SysAllocString
shlwapi
PathFileExistsA
PathAppendA
StrStrIA
msvcp100
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?_BADOFF@std@@3_JB
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Incref@facet@locale@std@@QAEXXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
?_Getlconv@_Locinfo@std@@QBEPBUlconv@@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
?id@?$ctype@_W@std@@2V0locale@2@A
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?toupper@?$ctype@_W@std@@QBE_W_W@Z
?_Decref@facet@locale@std@@QAEPAV123@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??1_Lockit@std@@QAE@XZ
?id@?$ctype@D@std@@2V0locale@2@A
??0_Lockit@std@@QAE@H@Z
?toupper@?$ctype@D@std@@QBEDD@Z
?_Gettrue@_Locinfo@std@@QBEPBDXZ
?_Getfalse@_Locinfo@std@@QBEPBDXZ
??1facet@locale@std@@UAE@XZ
??0facet@locale@std@@IAE@I@Z
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
?id@?$numpunct@D@std@@2V0locale@2@A
?classic@locale@std@@SAABV12@XZ
??1_Container_base12@std@@QAE@XZ
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
comctl32
_TrackMouseEvent
ord17
gdiplus
GdipDrawString
GdipCloneBrush
GdipAlloc
GdipFree
GdipDeleteBrush
GdipCreateLineBrushI
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipSetTextRenderingHint
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdiplusShutdown
GdiplusStartup
GdipDeleteFont
msvcr100
??3@YAXPAX@Z
memcpy
memmove
_CxxThrowException
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
_purecall
free
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
calloc
_recalloc
__CxxFrameHandler3
abort
_time64
memchr
memset
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
??_V@YAXPAX@Z
??0bad_cast@std@@QAE@ABV01@@Z
exit
memcpy_s
isspace
_beginthreadex
sprintf_s
strstr
_access
sprintf
getenv
memmove_s
strnlen
_vscprintf
vsprintf_s
??8type_info@@QBE_NABV0@@Z
atoi
_wcsicmp
fputc
_vsnprintf_s
_localtime64_s
fflush
tolower
_access_s
strftime
fwrite
fclose
malloc
_snprintf
fopen
strcpy_s
_mbsrchr
ftell
fseek
isxdigit
fread
strtol
_atoi64
wcsrtombs_s
_waccess_s
_strnicmp
_open
_close
_write
_read
_strdup
_stricmp
_controlfp_s
_invoke_watson
fgets
_wfsopen
ferror
toupper
wcsncpy
wcsstr
strncpy
wcscpy_s
isdigit
wcstol
realloc
_wcslwr
wcschr
wcsrchr
_wtoi
_gmtime64
wcstoul
wcsncmp
iswalnum
_errno
strncmp
sscanf
__iob_func
strchr
strrchr
isalpha
strtoul
strpbrk
_strtoi64
qsort
fputs
strerror
__sys_nerr
isalnum
_getpid
_fstat64
_lseeki64
_mbspbrk
isupper
_stat64
islower
isprint
isgraph
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
?terminate@@YAXXZ
_amsg_exit
__wgetmainargs
_cexit
_exit
_XcptFilter
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
wininet
DetectAutoProxyUrl
psapi
GetModuleFileNameExA
EnumProcessModules
winmm
waveOutGetNumDevs
waveOutOpen
waveOutClose
version
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA
wldap32
ord211
ord143
ord60
ord50
ord26
ord22
ord200
ord32
ord35
ord79
ord33
ord301
ord27
ord41
ord46
ord30
Exports
Exports
curl_easy_cleanup
curl_easy_duphandle
curl_easy_escape
curl_easy_getinfo
curl_easy_init
curl_easy_pause
curl_easy_perform
curl_easy_recv
curl_easy_reset
curl_easy_send
curl_easy_setopt
curl_easy_strerror
curl_easy_unescape
curl_escape
curl_formadd
curl_formfree
curl_formget
curl_free
curl_getdate
curl_getenv
curl_global_cleanup
curl_global_init
curl_global_init_mem
curl_maprintf
curl_mfprintf
curl_mprintf
curl_msnprintf
curl_msprintf
curl_multi_add_handle
curl_multi_assign
curl_multi_cleanup
curl_multi_fdset
curl_multi_info_read
curl_multi_init
curl_multi_perform
curl_multi_remove_handle
curl_multi_setopt
curl_multi_socket
curl_multi_socket_action
curl_multi_socket_all
curl_multi_strerror
curl_multi_timeout
curl_multi_wait
curl_mvaprintf
curl_mvfprintf
curl_mvprintf
curl_mvsnprintf
curl_mvsprintf
curl_share_cleanup
curl_share_init
curl_share_setopt
curl_share_strerror
curl_slist_append
curl_slist_free_all
curl_strequal
curl_strnequal
curl_unescape
curl_version
curl_version_info
Sections
.text Size: 826KB - Virtual size: 825KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 185KB - Virtual size: 184KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 86KB - Virtual size: 85KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ