d:\DailyBuild\b95_ent_zh\dianji\ring\client\bin\release\TribeFile.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
1fa09db036bc7fca3b8315e4316da0f5.dll
Resource
win7-20240221-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
1fa09db036bc7fca3b8315e4316da0f5.dll
Resource
win10v2004-20240226-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
1fa09db036bc7fca3b8315e4316da0f5
-
Size
520KB
-
MD5
1fa09db036bc7fca3b8315e4316da0f5
-
SHA1
160404fc428adf792311734155467a83a02fb483
-
SHA256
30d33aa022ba88ac15813e6f54d3778e65fb89b68f5dbcac83c36f4d3d06134a
-
SHA512
7cab0e4230d09ab8208f0ba9bf4d88e60195e87104231a54d8367f316238f96e13111f9df4af07241a5e7d7e0183d12def1c22213f05c2436f1115f0a3912c44
-
SSDEEP
12288:ZSm5zt/vH5h5/QPnhafFl++f1D2ccVfVCMZknPCR5TAnIAvSP:ZSm5OgFLyxfVpwPCHMIYSP
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1fa09db036bc7fca3b8315e4316da0f5
Files
-
1fa09db036bc7fca3b8315e4316da0f5.dll windows:4 windows x86 arch:x86
08a4703c3e7ac40176b9c408147b9618
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
zone
_zone_GID642GIDUI@16
funproxy
_GetModuleLinkIF@0
_UnregisterFunc@4
_RegisterFunc@8
gsbase
??4CGsStrW@@QAEAAV0@PBG@Z
?SetPropertyValue@CXmlW@@QAEXPBG0@Z
??3CGsTree@@SAXPAX@Z
?Compare@CXmlW@@UBEHPAVCGsTree@@H@Z
?Matched@CGsTree@@UBE_NJ@Z
??2CGsTree@@SAPAXI@Z
??1CXmlW@@UAE@XZ
?WriteXmlBody@CXmlW@@SAXAAVCGsStrW@@PBV1@@Z
?erase@CGsStrW@@QAEXII@Z
??0CGsStrW@@QAE@XZ
?GetPropertyValue@CXmlW@@QBE_NPBGAAVCGsStrW@@@Z
?FindChild@CXmlW@@SAPAV1@PBGHPBV1@@Z
?Insert@CGsTree@@QAEXPAV1@K@Z
?Remove@CGsTree@@QAEXXZ
?GetMarkerTag@CXmlW@@QBEXAAVCGsStrW@@@Z
?FindMarker@CXmlW@@SAPAV1@PBGPBV1@@Z
?ScanXml@CXmlW@@SAPBGPBGPAV1@@Z
??1CXmlFileW@@QAE@XZ
?SaveXml@CXmlFileW@@QAEXXZ
?SetXml@CXmlFileW@@QAEXPAVCXmlW@@@Z
?ReloadXml@CXmlFileW@@QAEPAVCXmlW@@XZ
?FindChildProperty@CXmlW@@SAPAV1@PBG0PBV1@@Z
??0CXmlFileW@@QAE@XZ
?ScanXml@CXmlW@@SAPAV1@PBDAAV1@HI@Z
??1CGsStr@@QAE@XZ
?GKZip_UnCompress@@YAKPAEPAKPBEK@Z
?GetBuffer@CGsStr@@QAEPADH@Z
??0CGsStr@@QAE@XZ
?CopyXml@CXmlW@@SAPAV1@PBV1@@Z
??YCGsStrW@@QAEAAV0@PBG@Z
??0CXmlFileW@@QAE@PBG0@Z
?ReleaseBuffer@CGsStrW@@QAEXH@Z
?GetBuffer@CGsStrW@@QAEPAGH@Z
??0CGsStrW@@QAE@PBDI@Z
?Append@CGsStrW@@QAEXPBDII@Z
?DeleteChild@CGsTree@@QAEXXZ
??0CGsStr@@QAE@PBGI@Z
?SetMarker@CXmlW@@QAEXPBG@Z
?c_str@CGsStrW@@QBEPBGXZ
?SetFile@CXmlFileW@@QAEXPBG0@Z
?GetNext@CGsTree@@QBEPAV1@XZ
?GetChild@CGsTree@@QBEPAV1@XZ
?IsEmpty@CGsStrW@@QBE_NXZ
??BCGsStrW@@QBEPBGXZ
??YCGsStrW@@QAEAAV0@ABV0@@Z
??0CGsStrW@@QAE@PBG@Z
?length@CGsStrW@@QBEHXZ
??0CGsStrW@@QAE@ABV0@@Z
?Append@CGsStrW@@QAEXPBGI@Z
??1CGsStrW@@QAE@XZ
?Compare@CGsStrW@@QBEHPBG@Z
??0CXmlW@@QAE@XZ
??YCGsStrW@@QAEAAV0@G@Z
?GetLength@CGsStrW@@QBEHXZ
?GetContent@CXmlW@@QBEPBGXZ
?Append@CGsStrW@@QAEXABV1@@Z
?Append@CGsStrW@@QAEXPBG@Z
?Empty@CGsStrW@@QAEXXZ
?GetParent@CGsTree@@QBEPAV1@XZ
??0CGsStrW@@QAE@ABVCGsStr@@I@Z
?length@CGsStr@@QBEHXZ
?Append@CGsStr@@QAEXPBGII@Z
?Append@CGsStr@@QAEXPBDI@Z
??0CGsStr@@QAE@PBD@Z
??0CXml@@QAE@XZ
?WriteXmlBody@CXml@@SAXAAVCGsStr@@PBV1@@Z
??1CXml@@UAE@XZ
??4CGsStrW@@QAEAAV0@ABV0@@Z
?Replace@CGsStrW@@QAEHPBG0@Z
?ScanXml@CXml@@SAPAV1@PBDAAV1@H@Z
?AppendChar@CGsStrW@@QAEXG@Z
resagent
GetCurrentLanguage
GetOemSect
RegisterSkinHwnd
UnregisterSkinHwnd
GetRingUIInfo
LoadResStringEx
ReleaseUIInfoXml
LoadResImage
ReleaseResImage
GetResImageFile2
InitDialogEx
ReColorImage
gicconn
?GICConnOpenSocket@@YAIKG@Z
?GICConnOpenSocket@@YAIPBDG@Z
?GICConnConnectGid@@YAI_KIAAI@Z
?GICConnSetBuddyItem@@YAHPBUBUDDYITEM@@@Z
?GICConnGetBuddyItem@@YAHPAUBUDDYITEM@@@Z
ruibase
?Create@CRingDialogBase@@UAEHIPAVCWnd@@@Z
?Create@CRingDialogBase@@UAEHPBGPAVCWnd@@@Z
?DoModal@CRingDialogBase@@UAEHXZ
?AppendSystemMenu@CRingDialogBase@@UAEXPAVCMenu@@@Z
?ArrangeControlPosition@CRingDialogBase@@UAEXIVCRect@@@Z
?CreateCtrl@CRingDialogBase@@UAEHXZ
?SetToolBar@CRingDialogBase@@UAEXPAVCToolBar@@@Z
?CreateToolBar@CRingDialogBase@@UAEPAVCWnd@@XZ
?InitDlg@CRingDialogBase@@UAEXXZ
?LoadAndSetControlString@CRingDialogBase@@UAEXXZ
??1CRingButton@@UAE@XZ
??1CRingDialogBase@@UAE@XZ
??0CRingButton@@QAE@XZ
??0CRingDialogBase@@QAE@IPAUHINSTANCE__@@PAVCWnd@@@Z
?DoDataExchange@CRingDialogBase@@UAEXPAVCDataExchange@@@Z
?LoadSkinFromID@CRingButton@@QAEXI@Z
?OnInitDialog@CRingDialogBase@@UAEHXZ
?SetTitlebarText@CRingDialogBase@@QAEXV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?SetTitleButton@CRingDialogBase@@QAEXH@Z
?OnCtlColor@CRingDialogBase@@QAEPAUHBRUSH__@@PAVCDC@@PAVCWnd@@I@Z
?GetThisMessageMap@CRingDialogBase@@KGPBUAFX_MSGMAP@@XZ
?OnPaint@CRingDialogBase@@QAEXXZ
?OnEraseBkgnd@CRingDialogBase@@QAEHPAVCDC@@@Z
?DrawArrow@CRingBarContainer@@MAEXPAUHDC__@@@Z
?WindowProc@CRingBarContainer@@MAEJIIJ@Z
?GetMessageMap@CRingBarContainer@@MBEPBUAFX_MSGMAP@@XZ
?SetHotImageList@CRingToolBar@@QAEXPBGHK@Z
?SetNormalImageList@CRingToolBar@@QAEXPBGHK@Z
?SetDisableImageList@CRingToolBar@@QAEXPBGHK@Z
?GetToolbar@CRingBarContainer@@QAEAAVCRingToolBar@@XZ
?SetBmpRect@CRingBarContainer@@QAEXABUtagRECT@@00W4eStretchMode@@@Z
?SetBackBmp@CRingBarContainer@@QAEXPBG@Z
?CreateContainer@CRingBarContainer@@QAEHPAVCWnd@@ABUtagRECT@@II@Z
??0CRingBarContainer@@QAE@XZ
??1CRingBarContainer@@UAE@XZ
?SkinChanged@CRingDialogBase@@UAEJXZ
?GetClientRect@CRingDialogBase@@QBEXPAUtagRECT@@@Z
?OnCreate@CRingDialogBase@@QAEHPAUtagCREATESTRUCTW@@@Z
?OnDestroy@CRingDialogBase@@QAEXXZ
?GetThisClass@CRingDialogBase@@SGPAUCRuntimeClass@@XZ
_StringToRect@8
_StringToColor@4
??1CNewMenu@RING_GUI_HELPER@@UAE@XZ
?AppendMenuW@CNewMenu@RING_GUI_HELPER@@QAEHIIPBGH@Z
?SetTextBackground@CNewMenu@RING_GUI_HELPER@@QAEKK@Z
?SetIconBackground@CNewMenu@RING_GUI_HELPER@@QAEKK@Z
?SetXpBlending@CNewMenu@RING_GUI_HELPER@@SAHH@Z
??0CNewMenu@RING_GUI_HELPER@@QAE@PAUHMENU__@@@Z
_Ring_GetSysFont@8
?OnHtmlReady@CHtmlInfoWnd@@MAEXXZ
?GetMessageMap@CHtmlInfoWnd@@MBEPBUAFX_MSGMAP@@XZ
?DrawLine@CSplitterControl@@MAEXPAVCDC@@HH@Z
?DrawBmpBtn@CSplitterControl@@MAEXPAVCDC@@ABUtagRECT@@@Z
?DrawDefaultBtn@CSplitterControl@@MAEXPAVCDC@@ABUtagRECT@@@Z
?DrawBtn@CSplitterControl@@MAEXPAVCDC@@ABUtagRECT@@@Z
?Draw@CSplitterControl@@MAEXPAVCDC@@@Z
?GetMessageMap@CSplitterControl@@MBEPBUAFX_MSGMAP@@XZ
?CreateInfoWnd@CHtmlInfoWnd@@QAEHPAVCWnd@@ABUtagRECT@@I@Z
??0CHtmlInfoWnd@@QAE@IPBG@Z
?SetRange@CSplitterControl@@QAEXHH@Z
?SetSplitterDirection@CSplitterControl@@QAEXW4ESpliterDir@1@H@Z
?SetBtnState@CSplitterControl@@QAEXW4EBtnState@1@H@Z
?SetSplitterWidth@CSplitterControl@@QAEXH@Z
?SetStyle@CSplitterControl@@QAEHH@Z
?Create@CSplitterControl@@QAEXKABVCRect@@PAVCWnd@@I@Z
??0CSplitterControl@@QAE@XZ
??1CSplitterControl@@UAE@XZ
??1CHtmlInfoWnd@@UAE@XZ
?SetBorder@CHtmlInfoWnd@@QAEXI@Z
?SetBorderColor@CHtmlInfoWnd@@QAEXK@Z
?EnableWindow@CRingButton@@QAEHH@Z
?SetWindowTextW@CRingButton@@QAEXPBG@Z
??1CRProgressBar@@UAE@XZ
??0CRProgressBar@@QAE@XZ
?SetRange@CRProgressBar@@QAEHHH@Z
?CreateBar@CRProgressBar@@QAEHPAVCWnd@@ABUtagRECT@@I@Z
?SetPos@CRProgressBar@@QAEXH@Z
?OnSize@CRingDialogBase@@QAEXIHH@Z
dhtmlwnd
?AddRef@CSimpleConnPoint@DHtml_PH@@UAGKXZ
?Release@CSimpleConnPoint@DHtml_PH@@UAGKXZ
?GetTypeInfoCount@CSimpleConnPoint@DHtml_PH@@UAGJPAI@Z
?GetTypeInfo@CSimpleConnPoint@DHtml_PH@@UAGJIKPAPAUITypeInfo@@@Z
?GetIDsOfNames@CSimpleConnPoint@DHtml_PH@@UAGJABU_GUID@@PAPAGIKPAJ@Z
?Invoke@CIMHtmlDisplay@DHtml_PH@@UAGJJABU_GUID@@KGPAUtagDISPPARAMS@@PAUtagVARIANT@@PAUtagEXCEPINFO@@PAI@Z
?GetDHtmlDocument@CHtmlWndBase@DHtml_PH@@QBEHPAPAUIHTMLDocument2@@@Z
?GetReadyState@CHtmlWndBase@DHtml_PH@@QBE?AW4tagREADYSTATE@@XZ
?OnPaint@CHtmlWndBase@DHtml_PH@@QAEXXZ
?InsertBodyHtml@CHtmlWndBase@DHtml_PH@@QAEHPBG_N@Z
?CreateWnd@CHtmlWndBase@DHtml_PH@@QAEHPAVCWnd@@ABUtagRECT@@I@Z
??_7CDHtmlCustomUI@DHtml_PH@@6B@
?ReplaceUrl@CDHtmlCustomUI@DHtml_PH@@UAEPAGPBG@Z
?OnFontChanged@CDHtmlCustomUI@DHtml_PH@@UAEXXZ
?GetRuntimeClass@CHtmlWndBase@DHtml_PH@@UBEPAUCRuntimeClass@@XZ
?OnCmdMsg@CDHtmlEditWnd@DHtml_PH@@UAEHIHPAXPAUAFX_CMDHANDLERINFO@@@Z
?GetEventSinkMap@CHtmlWndBase@DHtml_PH@@MBEPBUAFX_EVENTSINKMAP@@XZ
?PreTranslateMessage@CHtmlWndBase@DHtml_PH@@UAEHPAUtagMSG@@@Z
?OnAmbientProperty@CIMHtmlDisplay@DHtml_PH@@UAEHPAVCOleControlSite@@JPAUtagVARIANT@@@Z
?CreateControlSite@CHtmlWndBase@DHtml_PH@@UAEHPAVCOleControlContainer@@PAPAVCOleControlSite@@IABU_GUID@@@Z
?Initialize@CHtmlWndBase@DHtml_PH@@UAEXXZ
?GetStartDocument@CHtmlWndBase@DHtml_PH@@UAEPBGXZ
?OnInitWnd@CHtmlWndBase@DHtml_PH@@UAEXPAUIDispatch@@PBG@Z
?OnBeforeNavigate@CHtmlWndBase@DHtml_PH@@UAEXPAUIDispatch@@PBG@Z
?OnNavigateComplete@CIMHtmlDisplay@DHtml_PH@@UAEXPAUIDispatch@@PBG@Z
?OnDocumentComplete@CIMHtmlDisplay@DHtml_PH@@UAEXPAUIDispatch@@PBG@Z
?OnFrameDocumentComplete@CHtmlWndBase@DHtml_PH@@UAEXPAUIDispatch@@PBG@Z
?QueryInterface@CSimpleConnPoint@DHtml_PH@@UAGJABU_GUID@@PAPAX@Z
?GetElement@CHtmlWndBase@DHtml_PH@@UAEJPBGPAPAUIDispatch@@PAH@Z
?GetElementInterface@CHtmlWndBase@DHtml_PH@@UAEJPBGABU_GUID@@PAPAX@Z
?GetBodyHtml@CHtmlWndBase@DHtml_PH@@UAEXAAV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?SetBodyHtml@CHtmlWndBase@DHtml_PH@@UAEXPBG@Z
?OnShowContextMenu@CIMBase@DHtml_PH@@MAEJKPAUtagPOINT@@PAUIUnknown@@PAUIDispatch@@@Z
?OnGetExternal@CHtmlWndBase@DHtml_PH@@UAEJPAPAUIDispatch@@@Z
?OnGetHostInfo@CHtmlWndBase@DHtml_PH@@UAEJPAU_DOCHOSTUIINFO@@@Z
?OnShowUI@CHtmlWndBase@DHtml_PH@@UAEJKPAUIOleInPlaceActiveObject@@PAUIOleCommandTarget@@PAUIOleInPlaceFrame@@PAUIOleInPlaceUIWindow@@@Z
?OnHideUI@CHtmlWndBase@DHtml_PH@@UAEJXZ
?OnUpdateUI@CHtmlWndBase@DHtml_PH@@UAEJXZ
?OnEnableModeless@CHtmlWndBase@DHtml_PH@@UAEJH@Z
?OnDocWindowActivate@CHtmlWndBase@DHtml_PH@@UAEJH@Z
?OnFrameWindowActivate@CHtmlWndBase@DHtml_PH@@UAEJH@Z
?OnResizeBorder@CHtmlWndBase@DHtml_PH@@UAEJPBUtagRECT@@PAUIOleInPlaceUIWindow@@H@Z
?OnTranslateAccelerator@CHtmlWndBase@DHtml_PH@@UAEJPAUtagMSG@@PBU_GUID@@K@Z
?OnGetOptionKeyPath@CHtmlWndBase@DHtml_PH@@UAEJPAPAGK@Z
?OnFilterDataObject@CHtmlWndBase@DHtml_PH@@UAEJPAUIDataObject@@PAPAU3@@Z
?OnTranslateUrl@CHtmlWndBase@DHtml_PH@@UAEJKPAGPAPAG@Z
?OnGetDropTarget@CHtmlWndBase@DHtml_PH@@UAEJPAUIDropTarget@@PAPAU3@@Z
?IEWndProc@CIMBase@DHtml_PH@@UAEHPAUHWND__@@IIJ@Z
?GetDHtmlCommandMapping@CDHtmlEditWnd@DHtml_PH@@UAEIIAAHAAI@Z
?ExecHandler@CDHtmlEditWnd@DHtml_PH@@UAEHI@Z
?Init@CDHtmlEditWnd@DHtml_PH@@UAEXXZ
?OnBeforMenuDisplay@CIMBase@DHtml_PH@@UAEXPAVCMenu@@PAUIHTMLElement@@@Z
?OnShowDefaultContextMenu@CIMBase@DHtml_PH@@MAEJPAUIHTMLElement@@PAUtagPOINT@@@Z
?OnShowWinksContextMenu@CIMBase@DHtml_PH@@MAEJPAUIHTMLElement@@PAUtagPOINT@@@Z
?OnHtmlReady@CIMHtmlDisplay@DHtml_PH@@UAEXXZ
??1CIMHtmlDisplay@DHtml_PH@@UAE@XZ
?SetIMBodyHtml@CIMBase@DHtml_PH@@QAEXAAV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?SetIfScroll@CHtmlWndBase@DHtml_PH@@QAEXH@Z
??0CIMHtmlDisplay@DHtml_PH@@QAE@XZ
?GetThisClass@CHtmlWndBase@DHtml_PH@@SGPAUCRuntimeClass@@XZ
?GetThisMessageMap@CIMHtmlDisplay@DHtml_PH@@KGPBUAFX_MSGMAP@@XZ
?GetElement@CHtmlWndBase@DHtml_PH@@UAEJPBGPAPAUIHTMLElement@@@Z
tribecomm
?PostNcDestroy@CTribeDialogBase@@MAEXXZ
?GetThisMessageMap@CTribeDialogBase@@KGPBUAFX_MSGMAP@@XZ
?GetThisClass@CTribeDialogBase@@SGPAUCRuntimeClass@@XZ
??0CTribeDialogBase@@QAE@IPAUHINSTANCE__@@PAVCWnd@@@Z
??1CTribeDialogBase@@UAE@XZ
?SkinChanged@CTribeDialogBase@@UAEJXZ
_GetProgName@4
?OnInitDialog@CTribeDialogBase@@UAEHXZ
tribecore
?IsVirtualPersonOpen@TribeCore@@QAE_N_K@Z
?GetVirtualPersonPath@TribeCore@@QAE?BV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@_K@Z
?GetMemberSimpleInfo@MemberCore@@QAE_N_K0AAU_tMemberSimpleInfo@@@Z
?GetInstance@MemberCore@@SAPAV1@XZ
?GetVirtualPersonList@MemberCore@@QAEX_KAAV?$vector@_KV?$allocator@_K@std@@@std@@@Z
?GetInstance@LogFileFacade@@SAAAV1@XZ
?Log@LogFileFacade@@QAEXPBG@Z
?GetInstance@TribeCore@@SAPAV1@XZ
gkimtext
?IM_Send@@YAHPA_KHPBG@Z
mfc71u
ord4074
ord1476
ord1220
ord2121
ord2460
ord4320
ord2009
ord1007
ord5096
ord566
ord3082
ord3990
ord5524
ord5398
ord4098
ord3032
ord1156
ord3877
ord5864
ord1236
ord2468
ord1237
ord2260
ord5558
ord1172
ord1457
ord5485
ord2461
ord3869
ord1765
ord6160
ord1542
ord1058
ord6063
ord1536
ord4904
ord385
ord896
ord894
ord4078
ord1252
ord3390
ord1118
ord287
ord581
ord1162
ord1087
ord1200
ord1170
ord1168
ord1192
ord1115
ord371
ord1093
ord1199
ord1197
ord1033
ord315
ord765
ord2261
ord1472
ord1782
ord6161
ord5803
ord1883
ord2311
ord2926
ord282
ord6111
ord1479
ord899
ord280
ord774
ord559
ord283
ord1006
ord3756
ord3927
ord2895
ord764
ord266
ord265
ord762
ord3678
ord2086
ord5911
ord1611
ord1608
ord3940
ord1393
ord4234
ord5148
ord1899
ord5067
ord6271
ord4179
ord3397
ord4716
ord4276
ord1591
ord5956
ord920
ord925
ord929
ord927
ord931
ord2404
ord2388
ord2407
ord2402
ord2379
ord2381
ord2399
ord2169
ord2163
ord1513
ord6273
ord3796
ord6275
ord3339
ord4961
ord1353
ord5171
ord1955
ord2531
ord2725
ord2829
ord4301
ord2708
ord2856
ord2534
ord2640
ord2527
ord3712
ord3713
ord3703
ord2638
ord3943
ord4480
ord4255
ord3311
ord741
ord753
ord5727
ord3204
ord1925
ord3198
ord1271
ord4119
ord2361
ord2366
ord1894
ord5210
ord5196
ord2985
ord572
ord758
ord567
ord563
ord4109
ord5609
ord6201
ord3168
ord747
ord1178
ord548
ord578
ord2462
ord310
ord3435
ord3157
ord1545
ord4238
ord3189
ord620
ord5178
ord4206
ord4729
ord4884
ord1662
ord1661
ord5908
ord1392
ord4256
ord1785
ord6232
ord2648
ord2159
ord5199
ord1784
ord3590
ord3155
ord3331
ord1921
ord4347
ord709
ord5637
ord502
ord501
ord2364
ord1959
ord1555
ord416
ord760
ord3677
ord3824
ord2239
ord4032
ord4008
ord6272
ord3795
ord6274
ord2054
ord5579
ord3800
ord6215
ord5378
ord3826
ord1911
ord2925
ord5220
ord5222
ord3942
ord4562
ord5226
ord5209
ord5562
ord2832
ord4475
ord3327
ord757
ord314
ord6086
ord1079
ord2155
ord4094
ord2085
ord3238
ord1946
ord1274
ord6140
ord5867
ord2151
ord2012
ord651
ord2788
ord3676
ord3051
ord3910
ord5373
ord4346
ord2167
ord1299
ord689
ord2002
ord1331
ord458
ord4438
ord4437
ord4784
ord4198
ord4775
ord4974
ord4166
ord4175
ord4585
ord4771
ord4380
ord4395
ord4375
ord4373
ord4858
ord4855
ord3968
ord3338
ord1352
ord5170
ord4267
ord3326
ord756
ord694
ord468
ord565
ord3281
ord6061
ord6278
ord5522
ord2255
ord589
ord330
ord3674
ord3581
ord4686
ord1645
ord1589
ord2981
ord3322
ord754
ord3985
ord2861
ord4344
ord4300
ord2872
ord3793
ord5829
ord4378
ord2781
ord4393
ord1416
ord3296
ord602
ord1957
ord5636
ord2784
ord5631
ord5630
ord1270
ord347
ord3995
ord4117
ord2254
ord2297
ord2250
ord2362
ord5633
ord2081
ord1628
ord1549
ord4230
ord3208
ord642
ord2521
ord3249
ord2340
ord1571
ord2066
ord5327
ord6293
ord5316
ord6282
ord1920
ord6033
ord5638
ord6279
ord4112
ord1939
ord3645
ord2083
ord1632
ord1562
ord4232
ord3224
ord658
ord6116
ord2867
ord3396
ord2651
ord2074
ord2225
ord3885
ord2579
ord3635
ord1189
ord605
ord354
ord1590
ord1908
ord5566
ord3395
ord1622
ord1091
ord313
ord1190
ord5181
ord4314
ord4574
ord3630
ord3453
ord2077
ord4226
ord3158
ord587
ord4966
ord4488
ord4458
ord4578
ord4619
ord4205
ord4713
ord630
ord3050
ord4728
ord4459
ord4743
ord5392
ord1282
ord457
ord326
ord776
ord577
ord870
ord293
ord1582
ord5231
ord5229
ord2384
ord2394
ord2392
ord2390
ord2386
ord2409
ord2397
ord1647
ord1646
ord5138
msvcr71
wcschr
free
malloc
_wtoi
toupper
calloc
strncpy
strtoul
strchr
sprintf
_beginthreadex
realloc
wcsrchr
wcscmp
_wtol
_vsnwprintf
_wtoi64
_wcstoui64
iswdigit
wcsncpy
wcstol
_wcsnicmp
wcsncmp
_localtime64
wcsftime
_time64
_ltow
wcscat
_wstrdate
_wstrtime
wcsstr
_ui64tow
time
atoi
strrchr
_ui64toa
memset
__security_error_handler
??1type_info@@UAE@XZ
__dllonexit
_onexit
?terminate@@YAXXZ
_initterm
_adjust_fdiv
__CppXcptFilter
wcstoul
_purecall
_except_handler3
wcscpy
swprintf
memmove
_itow
??0exception@@QAE@XZ
??1exception@@UAE@XZ
_CxxThrowException
??0exception@@QAE@ABV0@@Z
wcslen
__CxxFrameHandler
_ultow
kernel32
WideCharToMultiByte
GetVersionExA
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
ExitProcess
LocalAlloc
LocalFree
GetModuleFileNameA
GetPrivateProfileStringA
ResumeThread
TerminateThread
GetPrivateProfileStringW
SetEndOfFile
FlushFileBuffers
GetDriveTypeW
GetFileSize
RemoveDirectoryW
MultiByteToWideChar
SetFileAttributesW
ResetEvent
WaitForMultipleObjects
GetModuleHandleW
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
WaitForSingleObject
Sleep
CreateDirectoryW
GetFileAttributesW
GetDiskFreeSpaceExW
WritePrivateProfileStringW
FindResourceW
LoadResource
CloseHandle
SetFilePointer
CreateFileW
WriteFile
GetSystemTimeAsFileTime
GetTimeFormatW
GetDateFormatW
FileTimeToSystemTime
FileTimeToLocalFileTime
MulDiv
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateEventW
SetEvent
DeleteFileW
LockResource
FreeResource
lstrcpynW
GetWindowsDirectoryW
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
OutputDebugStringW
GetModuleFileNameW
GetPrivateProfileIntW
CompareStringW
GetTickCount
FindFirstFileW
FindNextFileW
FindClose
GetLastError
user32
CreateWindowExW
FrameRect
CallWindowProcW
EndDialog
SetPropW
DrawIcon
CopyIcon
GetActiveWindow
IsWindowEnabled
GetDesktopWindow
MapWindowPoints
LoadIconW
DialogBoxIndirectParamW
GetPropW
SetWindowRgn
SetActiveWindow
GetMessagePos
PtInRect
InflateRect
SendMessageW
GetWindowRect
GetClientRect
ScreenToClient
GetDC
ReleaseDC
InvalidateRect
SetTimer
KillTimer
GetParent
EnableWindow
SystemParametersInfoW
LoadCursorW
DestroyCursor
SetCursor
GetCursorPos
PostMessageW
GetKeyState
MessageBoxW
IsWindow
SetRect
RegisterClipboardFormatW
CreatePopupMenu
AppendMenuW
UpdateWindow
RedrawWindow
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
DestroyIcon
ClientToScreen
IsWindowVisible
LoadImageW
CopyRect
GetSysColorBrush
SetRectEmpty
UnionRect
DrawEdge
SetCapture
IsRectEmpty
ReleaseCapture
DrawStateW
FillRect
GetSystemMetrics
GetSysColor
SetLayeredWindowAttributes
SetWindowLongW
GetWindowLongW
SetWindowPos
DrawFrameControl
GetFocus
gdi32
CreateSolidBrush
GetStockObject
CreateFontIndirectW
GetTextExtentPoint32W
GetDeviceCaps
Rectangle
CreatePen
CreateRectRgn
PatBlt
CreateCompatibleBitmap
GetObjectW
CreateRectRgnIndirect
CreateCompatibleDC
BitBlt
StretchBlt
EnumFontFamiliesW
GetTextCharsetInfo
CreatePenIndirect
GetCurrentObject
CreateRoundRectRgn
GetTextExtentExPointW
GetTextExtentPointW
DeleteObject
shell32
SHFileOperationW
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetSpecialFolderPathW
DragAcceptFiles
ShellExecuteExW
comctl32
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_GetBkColor
_TrackMouseEvent
ImageList_SetBkColor
ImageList_Draw
ImageList_ReplaceIcon
ImageList_AddMasked
shlwapi
PathFileExistsW
PathRemoveFileSpecW
PathCombineW
PathStripToRootW
PathAppendW
PathStripPathW
PathIsNetworkPathW
ole32
CoCreateGuid
CoCreateInstance
StringFromGUID2
StringFromCLSID
CoTaskMemFree
CLSIDFromString
CoUninitialize
CoInitialize
IIDFromString
oleaut32
SysFreeString
msvcp71
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??$?8GU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
?find@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIGI@Z
?substr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBE?AV12@II@Z
?begin@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE?AViterator@12@XZ
?erase@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE?AViterator@12@V312@@Z
?size@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEIXZ
??A?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAGI@Z
?resize@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXI@Z
?c_str@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QBEPBGXZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
?replace@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@IIPBG@Z
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBGI@Z
?clear@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEXXZ
?append@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBG@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??$?OGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??$?MGU?$char_traits@G@std@@V?$allocator@G@1@@std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@G@Z
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG@Z
??Y?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
rpcrt4
UuidToStringW
RpcStringFreeW
ws2_32
WSAGetLastError
gethostbyname
inet_ntoa
htonl
getservbyname
htons
gethostbyaddr
getservbyport
ntohs
WSACreateEvent
WSASetEvent
WSAEventSelect
closesocket
recv
send
setsockopt
inet_addr
getsockopt
WSACleanup
WSAStartup
WSACloseEvent
getsockname
WSAEnumNetworkEvents
socket
connect
WSAResetEvent
Exports
Exports
??4LogFileFacade@@QAEAAV0@ABV0@@Z
StartupTool
Sections
.text Size: 348KB - Virtual size: 347KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 100KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 52KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ