2024-04-09_8665b935727723d87f6660627b065b19_magniber

Sharing

Copy URL Twitter E-mail

General

Target

2024-04-09_8665b935727723d87f6660627b065b19_magniber
Size

8.5MB
MD5

8665b935727723d87f6660627b065b19
SHA1

eb622c6af36778ca3253a15501ba80378d4ffe52
SHA256

597f45dc6156d073c4afd7a96af7186f4c3e677b2f4ff3b9b28c946749abe1c3
SHA512

3b170d55a8eb349c62a4b22769e8fc2b714606737c21a8c9e41b86de7ae6ebd9cf844a4bf59ad884ef0cedbe4e21926d2a6e6689ebd822fe32ca9b736fab1578
SSDEEP

98304:b1XBCty2v9ZANpJJWUdeJtsn2k02DymNgqxUbcfhUSVINM91NWEL6F/wwNaUoo20:bJBCtV9Z2pJJWUPn2kjD3V4FxFbiFdLs

Score

9^/10

cryptone packer

Malware Config

Signatures

CryptOne packer 1 IoCs

Detects CryptOne packer defined in NCC blogpost.

cryptone packer

resource	yara_rule
sample	cryptone

Files

2024-04-09_8665b935727723d87f6660627b065b19_magniber
.exe windows:6 windows x86 arch:x86

97454b002d1fd754d44698d362170136

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:57:28:52:a8:01:4c:70:68:ff:2f:fd:e8:e9:17:1f
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12/05/2023, 00:00

Not After

11/05/2025, 23:59

Subject

SERIALNUMBER=91440300MA5GXDWH9L,CN=深圳市文德海智科技有限公司,O=深圳市文德海智科技有限公司,L=深圳市,ST=广东省,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c09e6b7b1e59cb3e5b882,1.3.6.1.4.1.311.60.2.1.2=#0c09e5b9bfe4b89ce79c81,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:57:28:52:a8:01:4c:70:68:ff:2f:fd:e8:e9:17:1f
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

12/05/2023, 00:00

Not After

11/05/2025, 23:59

Subject

SERIALNUMBER=91440300MA5GXDWH9L,CN=深圳市文德海智科技有限公司,O=深圳市文德海智科技有限公司,L=深圳市,ST=广东省,C=CN,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.1=#0c09e6b7b1e59cb3e5b882,1.3.6.1.4.1.311.60.2.1.2=#0c09e5b9bfe4b89ce79c81,1.3.6.1.4.1.311.60.2.1.3=#1302434e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

47:17:4d:b1:61:3a:cc:5e:f5:8c:2d:1c:40:42:d2:23:ed:0c:64:b1:cf:1f:c1:66:fb:bf:0d:ed:00:b1:bd:d9
Signer

Actual PE Digest

47:17:4d:b1:61:3a:cc:5e:f5:8c:2d:1c:40:42:d2:23:ed:0c:64:b1:cf:1f:c1:66:fb:bf:0d:ed:00:b1:bd:d9

Digest Algorithm

sha256

PE Digest Matches

true

97:54:7d:8e:5b:22:31:3c:b1:bf:65:16:3e:53:0e:7a:50:2e:0d:5a
Signer

Actual PE Digest

97:54:7d:8e:5b:22:31:3c:b1:bf:65:16:3e:53:0e:7a:50:2e:0d:5a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\code\bohe_game\product\win32r\bhgame.pdb

Imports

ws2_32

WSACloseEvent
WSASetLastError
getnameinfo
WSACreateEvent
WSAEnumNetworkEvents
gethostname
gethostbyname
WSAStartup
WSACleanup
__WSAFDIsSet
accept
WSAEventSelect
bind
closesocket
connect
freeaddrinfo
getaddrinfo
WSAIoctl
WSAGetLastError
socket
shutdown
setsockopt
sendto
send
select
recvfrom
recv
ntohs
listen
htons
htonl
getsockopt
getsockname
getpeername
ioctlsocket

ole32

CoUninitialize
CLSIDFromString
CoCreateInstance
CoInitializeSecurity
CreateStreamOnHGlobal
CoInitialize
CoSetProxyBlanket
DoDragDrop
OleDuplicateData
ReleaseStgMedium
OleLockRunning
CLSIDFromProgID

kernel32

DeviceIoControl
CreateProcessW
GetStartupInfoW
GetLogicalDriveStringsW
QueryDosDeviceW
GetExitCodeProcess
OpenThread
SuspendThread
ResumeThread
GetProcessId
OpenProcess
LocalAlloc
lstrcmpA
lstrcpynW
lstrcpyW
lstrcatW
lstrlenW
K32GetModuleFileNameExW
K32GetProcessImageFileNameW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
Thread32First
Thread32Next
EncodePointer
IsDebuggerPresent
OutputDebugStringA
SetUnhandledExceptionFilter
GetFileInformationByHandle
SetFilePointer
SystemTimeToFileTime
GetCurrentDirectoryW
LocalFileTimeToFileTime
SetFilePointerEx
SetFileTime
FlushFileBuffers
ConnectNamedPipe
DisconnectNamedPipe
SetNamedPipeHandleState
CreateEventW
CreateNamedPipeA
WaitNamedPipeA
DeleteFileA
CopyFileA
OpenEventA
GetPrivateProfileIntA
VirtualProtect
ReadProcessMemory
VirtualAllocEx
VirtualFreeEx
CreateThread
CreateRemoteThread
GetExitCodeThread
VirtualProtectEx
WriteProcessMemory
FreeLibraryAndExitThread
Module32FirstW
Module32NextW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
WaitForMultipleObjects
VirtualQueryEx
LCMapStringW
GetFullPathNameW
SleepEx
ReleaseMutex
CreateMutexA
GetTimeZoneInformation
VirtualFree
VirtualAlloc
InitializeCriticalSectionEx
GetSystemInfo
PeekNamedPipe
Wow64RevertWow64FsRedirection
GetSystemTimeAsFileTime
CreateNamedPipeW
TerminateThread
GetNativeSystemInfo
IsWow64Process
GetThreadContext
SetThreadContext
ReleaseActCtx
GetEnvironmentVariableW
CreatePipe
VerifyVersionInfoW
GetVersionExW
VerSetConditionMask
FileTimeToSystemTime
CopyFileW
GetModuleHandleA
GetLocalTime
GetCurrentThread
ExitProcess
ResetEvent
OutputDebugStringW
FileTimeToLocalFileTime
MultiByteToWideChar
IsBadStringPtrA
IsBadReadPtr
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
WriteFile
ReadFile
WriteConsoleW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
FindFirstFileExW
SetStdHandle
GetFileSizeEx
EnumSystemLocalesW
IsValidLocale
GetLocaleInfoW
CompareStringW
GetTimeFormatW
GetDateFormatW
SetEnvironmentVariableW
GetConsoleOutputCP
SetConsoleCtrlHandler
ExitThread
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
InterlockedPushEntrySList
RtlUnwind
LoadLibraryExA
LoadLibraryExW
FlushInstructionCache
InterlockedCompareExchange
VirtualQuery
IsProcessorFeaturePresent
UnhandledExceptionFilter
InitializeSListHead
GetEnvironmentVariableA
CompareFileTime
ReadConsoleW
ReadConsoleA
SetConsoleMode
GetConsoleMode
ConvertThreadToFiber
ConvertFiberToThread
CreateFiber
DeleteFiber
SwitchToFiber
GetModuleHandleExW
GetFileType
GetStdHandle
lstrcmpiW
GlobalAlloc
GlobalLock
GlobalUnlock
GetACP
AreFileApisANSI
MoveFileExW
CopyFileExW
CreateDirectoryExW
SetEndOfFile
GetFileSize
GetDiskFreeSpaceExW
GetDiskFreeSpaceExA
FindNextFileW
FindFirstFileW
FindClose
CreateFileW
CreateFileA
GetModuleFileNameW
GetModuleFileNameA
GetSystemWow64DirectoryW
GetWindowsDirectoryW
GetSystemDirectoryW
GetTempPathW
GetUserDefaultLCID
FreeLibrary
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
HeapSize
HeapReAlloc
RaiseException
DecodePointer
GetFileAttributesW
SetDllDirectoryW
LoadLibraryA
FindResourceW
SetDefaultDllDirectories
SizeofResource
LockResource
LoadResource
GetModuleHandleW
FreeResource
GetCommandLineA
WritePrivateProfileStructW
GetPrivateProfileStructW
WritePrivateProfileStringA
GetPrivateProfileStringA
CreateSemaphoreA
GetTickCount64
GetCurrentProcessId
Sleep
CreateMutexW
WaitForSingleObject
ReleaseSemaphore
DuplicateHandle
DeleteFileW
GetCommandLineW
WritePrivateProfileStringW
GetPrivateProfileStringW
CreateDirectoryW
GetTickCount
MulDiv
SetLastError
GetLastError
WaitForSingleObjectEx
SetEvent
InitOnceExecuteOnce
RemoveDirectoryW
GetFileTime
GetFileAttributesExW
CreateWaitableTimerA
TlsFree
TlsSetValue
WideCharToMultiByte
FormatMessageW
FormatMessageA
LocalFree
CreateEventA
GetProcessHeap
HeapFree
TlsGetValue
TlsAlloc
SetWaitableTimer
HeapAlloc
QueryPerformanceFrequency
QueryPerformanceCounter
CloseHandle
LoadLibraryW
GetProcAddress
GetCurrentThreadId
TerminateProcess
GetCurrentProcess
GetPrivateProfileIntW
LCMapStringEx
GetStringTypeW
TryEnterCriticalSection
InitializeSRWLock
ReleaseSRWLockExclusive
WaitForMultipleObjectsEx
GetCPInfo
CompareStringEx
GetLocaleInfoEx
Wow64DisableWow64FsRedirection
GetSystemTime
AcquireSRWLockExclusive

user32

IsIconic
SetFocus
SetCapture
ReleaseCapture
UpdateWindow
GetForegroundWindow
SetForegroundWindow
GetDC
ReleaseDC
BeginPaint
EndPaint
SetWindowTextW
GetClientRect
GetWindowRect
MoveWindow
SetCursor
ScreenToClient
GetUserObjectInformationW
GetProcessWindowStation
MapVirtualKeyExW
GetKeyNameTextW
GetGUIThreadInfo
InvalidateRgn
CreateAcceleratorTableW
DrawTextA
wsprintfA
GetWindowTextLengthW
EqualRect
ClientToScreen
SetWindowPos
ShowWindow
DestroyWindow
CreateWindowExW
RegisterClassExW
DefWindowProcW
GetCaretPos
GetClassNameW
EnumWindows
CopyRect
MapWindowPoints
FindWindowA
GetDesktopWindow
wsprintfW
LoadImageW
GetWindowTextW
IsZoomed
IsWindowVisible
PostQuitMessage
SystemParametersInfoW
TrackPopupMenu
InsertMenuW
DestroyMenu
CreatePopupMenu
FindWindowW
SetActiveWindow
SetCaretPos
DestroyCaret
CreateCaret
GetFocus
EnumChildWindows
SetWindowLongW
GetWindowLongW
WindowFromPoint
RemovePropW
GetPropW
SetPropW
GetSystemMetrics
GetCapture
VkKeyScanExW
GetKeyState
GetDoubleClickTime
CallWindowProcW
GetMessageTime
TrackMouseEvent
GetKeyboardLayout
SetClassLongW
IsWindow
SendMessageW
PostMessageW
GetMonitorInfoW
MonitorFromWindow
LoadIconW
LoadCursorW
GetWindow
GetWindowThreadProcessId
GetParent
PtInRect
CharNextW
InflateRect
UnionRect
OffsetRect
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
SetTimer
KillTimer
GetUpdateRect
InvalidateRect
GetSysColor
IntersectRect
IsRectEmpty
IsWindowEnabled
MessageBoxW
MonitorFromPoint
RegisterClassW
GetClassInfoExW
EnableWindow
SetWindowRgn
UpdateLayeredWindow
GetWindowRgn
CharPrevW
DrawTextW
FillRect
SetRect
EnableMenuItem
AppendMenuW
GetCaretBlinkTime
HideCaret
ShowCaret
GetCursorPos

gdi32

ExtSelectClipRgn
SetBkColor
SelectClipRgn
StretchBlt
SetStretchBltMode
SetTextColor
GetObjectA
MoveToEx
TextOutW
GdiFlush
CreatePatternBrush
GetTextExtentPointA
GetBitmapBits
SetBitmapBits
GetTextExtentPoint32W
GetCharABCWidthsW
CreateSolidBrush
CreateRectRgnIndirect
CreatePenIndirect
LineTo
SetBkMode
CreateRoundRectRgn
GetClipBox
SetWindowOrgEx
AddFontResourceW
GetObjectW
SetRectRgn
PtInRegion
CreateRectRgn
CombineRgn
CreateDIBSection
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
CreateDIBitmap
CreateFontIndirectW
CreatePen
GetDeviceCaps
GetStockObject
AddFontMemResourceEx
RemoveFontMemResourceEx
Rectangle
RestoreDC
SaveDC
CloseEnhMetaFile
CreateEnhMetaFileW
GetEnhMetaFileHeader
PlayEnhMetaFile
GetTextMetricsW

comdlg32

GetOpenFileNameA

advapi32

ControlService
OpenProcessToken
AdjustTokenPrivileges
RegOpenKeyW
ConvertStringSecurityDescriptorToSecurityDescriptorW
LookupPrivilegeValueW
RegCloseKey
RegCreateKeyW
RegCreateKeyExW
RegDeleteValueW
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
CloseServiceHandle
OpenSCManagerW
OpenServiceW
RegEnumValueW
RegQueryInfoKeyW
CreateServiceW
DeleteService
OpenThreadToken
StartServiceW
InitializeSecurityDescriptor
SetSecurityDescriptorControl
SetSecurityDescriptorDacl

shell32

SHGetFileInfoW
SHGetSpecialFolderPathA
Shell_NotifyIconW
ShellExecuteA
CommandLineToArgvW
ShellExecuteW
SHGetMalloc
DragQueryFileW
SHGetPathFromIDListA
SHBrowseForFolderA
SHCreateDirectoryExW
ShellExecuteExW
SHGetSpecialFolderPathW

oleaut32

VariantInit
SysFreeString
SysAllocString
VariantClear
OleCreatePictureIndirect

shlwapi

PathFileExistsW
PathFileExistsA
PathRemoveFileSpecA
PathRemoveFileSpecW
SHDeleteKeyA
SHDeleteKeyW
PathIsDirectoryW

imm32

ImmGetContext
ImmReleaseContext
ImmSetCandidateWindow
ImmAssociateContextEx
ImmGetCompositionStringW
ImmNotifyIME
ImmSetCompositionWindow

crypt32

CertOpenSystemStoreW
CertGetIntendedKeyUsage
CertGetEnhancedKeyUsage
CertGetCertificateContextProperty
CertDuplicateCertificateContext
CryptDecodeObject
CertOpenStore
CryptMsgClose
CryptMsgGetParam
CertCloseStore
CertFindCertificateInStore
CertFreeCertificateContext
CertGetNameStringW
CryptQueryObject
CertEnumCertificatesInStore

wintrust

CryptCATCatalogInfoFromContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminReleaseCatalogContext
CryptCATAdminReleaseContext
CryptCATAdminAcquireContext
CryptCATAdminEnumCatalogFromHash

iphlpapi

GetAdaptersInfo

version

VerQueryValueW
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
GetFileVersionInfoW

imagehlp

ImageDirectoryEntryToDataEx

bcrypt

BCryptGenRandom

dbghelp

MiniDumpWriteDump

comctl32

_TrackMouseEvent
InitCommonControlsEx
ord17

gdiplus

GdipAlloc
GdipFree
GdipCreatePath
GdipDeletePath
GdipAddPathLine
GdipAddPathArc
GdipCreateMatrix
GdipDeleteMatrix
GdipTranslateMatrix
GdipRotateMatrix
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipCreatePen1
GdipDeletePen
GdipSetPenMode
GdipSetPenDashStyle
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipCloneImage
GdipDisposeImage
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipCreateFromHDC
GdipDeleteGraphics
GdipReleaseDC
GdipSetSmoothingMode
GdipSetTextRenderingHint
GdiplusShutdown
GdipSetWorldTransform
GdipResetWorldTransform
GdipDrawRectangleI
GdipDrawPath
GdipFillRectangleI
GdipFillPath
GdipDrawImageRectRect
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdiplusStartup
GdipDrawString
GdipMeasureString
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipCloneStringFormat
GdipSetStringFormatFlags
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipGetImageWidth
GdipGetImageHeight
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipImageSelectActiveFrame
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipDrawImageRectI
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipCreatePen2
GdipSetPenStartCap
GdipSetPenEndCap
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipDrawLine
GdipDrawImageI
GdipSetInterpolationMode
GdipDeleteFont

wldap32

ord14
ord46
ord145
ord216
ord208
ord41
ord117
ord219
ord27
ord127
ord167
ord301
ord147
ord133
ord79
ord142
ord26

Exports

Exports

??0Assembler@asmjit@@QAE@PAURuntime@1@@Z
??0CharReader@Json@@QAE@ABV01@@Z
??0CharReader@Json@@QAE@XZ
??0CharReaderBuilder@Json@@QAE@ABV01@@Z
??0CharReaderBuilder@Json@@QAE@XZ
??0CodeGen@asmjit@@QAE@PAURuntime@1@@Z
??0Exception@Json@@QAE@ABV01@@Z
??0Exception@Json@@QAE@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0Factory@CharReader@Json@@QAE@ABV012@@Z
??0Factory@CharReader@Json@@QAE@XZ
??0Factory@StreamWriter@Json@@QAE@ABV012@@Z
??0Factory@StreamWriter@Json@@QAE@XZ
??0FastWriter@Json@@QAE@ABV01@@Z
??0FastWriter@Json@@QAE@XZ
??0Features@Json@@QAE@XZ
??0HostRuntime@asmjit@@QAE@XZ
??0JitRuntime@asmjit@@QAE@XZ
??0LogicError@Json@@QAE@$$QAV01@@Z
??0LogicError@Json@@QAE@ABV01@@Z
??0LogicError@Json@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0Path@Json@@QAE@$$QAV01@@Z
??0Path@Json@@QAE@ABV01@@Z
??0Path@Json@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABVPathArgument@1@1111@Z
??0PathArgument@Json@@QAE@$$QAV01@@Z
??0PathArgument@Json@@QAE@ABV01@@Z
??0PathArgument@Json@@QAE@I@Z
??0PathArgument@Json@@QAE@PBD@Z
??0PathArgument@Json@@QAE@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0PathArgument@Json@@QAE@XZ
??0Reader@Json@@QAE@$$QAV01@@Z
??0Reader@Json@@QAE@ABV01@@Z
??0Reader@Json@@QAE@ABVFeatures@1@@Z
??0Reader@Json@@QAE@XZ
??0Runtime@asmjit@@QAE@XZ
??0RuntimeError@Json@@QAE@$$QAV01@@Z
??0RuntimeError@Json@@QAE@ABV01@@Z
??0RuntimeError@Json@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0StaticRuntime@asmjit@@QAE@PAXI@Z
??0StaticString@Json@@QAE@PBD@Z
??0StreamWriter@Json@@QAE@ABV01@@Z
??0StreamWriter@Json@@QAE@XZ
??0StreamWriterBuilder@Json@@QAE@ABV01@@Z
??0StreamWriterBuilder@Json@@QAE@XZ
??0StyledStreamWriter@Json@@QAE@ABV01@@Z
??0StyledStreamWriter@Json@@QAE@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0StyledWriter@Json@@QAE@ABV01@@Z
??0StyledWriter@Json@@QAE@XZ
??0VMemMgr@asmjit@@QAE@PAX@Z
??0Value@Json@@QAE@$$QAV01@@Z
??0Value@Json@@QAE@ABV01@@Z
??0Value@Json@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0Value@Json@@QAE@ABVStaticString@1@@Z
??0Value@Json@@QAE@H@Z
??0Value@Json@@QAE@I@Z
??0Value@Json@@QAE@N@Z
??0Value@Json@@QAE@PBD0@Z
??0Value@Json@@QAE@PBD@Z
??0Value@Json@@QAE@W4ValueType@1@@Z
??0Value@Json@@QAE@_J@Z
??0Value@Json@@QAE@_K@Z
??0Value@Json@@QAE@_N@Z
??0ValueConstIterator@Json@@AAE@ABV?$_Tree_iterator@V?$_Tree_val@U?$_Tree_simple_types@U?$pair@$$CBVCZString@Value@Json@@V23@@std@@@std@@@std@@@std@@@Z
??0ValueConstIterator@Json@@QAE@ABVValueIterator@1@@Z
??0ValueConstIterator@Json@@QAE@XZ
??0ValueIterator@Json@@AAE@ABV?$_Tree_iterator@V?$_Tree_val@U?$_Tree_simple_types@U?$pair@$$CBVCZString@Value@Json@@V23@@std@@@std@@@std@@@std@@@Z
??0ValueIterator@Json@@QAE@ABV01@@Z
??0ValueIterator@Json@@QAE@ABVValueConstIterator@1@@Z
??0ValueIterator@Json@@QAE@XZ
??0ValueIteratorBase@Json@@QAE@ABV?$_Tree_iterator@V?$_Tree_val@U?$_Tree_simple_types@U?$pair@$$CBVCZString@Value@Json@@V23@@std@@@std@@@std@@@std@@@Z
??0ValueIteratorBase@Json@@QAE@XZ
??0Writer@Json@@QAE@ABV01@@Z
??0Writer@Json@@QAE@XZ
??0X86Assembler@asmjit@@QAE@PAURuntime@1@I@Z
??0Zone@asmjit@@QAE@I@Z
??1Assembler@asmjit@@UAE@XZ
??1CharReader@Json@@UAE@XZ
??1CharReaderBuilder@Json@@UAE@XZ
??1CodeGen@asmjit@@UAE@XZ
??1Exception@Json@@UAE@XZ
??1Factory@CharReader@Json@@UAE@XZ
??1Factory@StreamWriter@Json@@UAE@XZ
??1FastWriter@Json@@UAE@XZ
??1HostRuntime@asmjit@@UAE@XZ
??1JitRuntime@asmjit@@UAE@XZ
??1LogicError@Json@@UAE@XZ
??1Path@Json@@QAE@XZ
??1PathArgument@Json@@QAE@XZ
??1Reader@Json@@QAE@XZ
??1Runtime@asmjit@@UAE@XZ
??1RuntimeError@Json@@UAE@XZ
??1StaticRuntime@asmjit@@UAE@XZ
??1StreamWriter@Json@@UAE@XZ
??1StreamWriterBuilder@Json@@UAE@XZ
??1StyledStreamWriter@Json@@QAE@XZ
??1StyledWriter@Json@@UAE@XZ
??1VMemMgr@asmjit@@QAE@XZ
??1Value@Json@@QAE@XZ
??1Writer@Json@@UAE@XZ
??1X86Assembler@asmjit@@UAE@XZ
??1Zone@asmjit@@QAE@XZ
??4CharReader@Json@@QAEAAV01@ABV01@@Z
??4CharReaderBuilder@Json@@QAEAAV01@ABV01@@Z
??4Exception@Json@@QAEAAV01@ABV01@@Z
??4Factory@CharReader@Json@@QAEAAV012@ABV012@@Z
??4Factory@StreamWriter@Json@@QAEAAV012@ABV012@@Z
??4FastWriter@Json@@QAEAAV01@ABV01@@Z
??4Features@Json@@QAEAAV01@$$QAV01@@Z
??4Features@Json@@QAEAAV01@ABV01@@Z
??4LogicError@Json@@QAEAAV01@$$QAV01@@Z
??4LogicError@Json@@QAEAAV01@ABV01@@Z
??4Path@Json@@QAEAAV01@$$QAV01@@Z
??4Path@Json@@QAEAAV01@ABV01@@Z
??4PathArgument@Json@@QAEAAV01@$$QAV01@@Z
??4PathArgument@Json@@QAEAAV01@ABV01@@Z
??4Reader@Json@@QAEAAV01@$$QAV01@@Z
??4Reader@Json@@QAEAAV01@ABV01@@Z
??4RuntimeError@Json@@QAEAAV01@$$QAV01@@Z
??4RuntimeError@Json@@QAEAAV01@ABV01@@Z
??4StaticString@Json@@QAEAAV01@$$QAV01@@Z
??4StaticString@Json@@QAEAAV01@ABV01@@Z
??4StreamWriter@Json@@QAEAAV01@ABV01@@Z
??4StreamWriterBuilder@Json@@QAEAAV01@ABV01@@Z
??4StyledStreamWriter@Json@@QAEAAV01@ABV01@@Z
??4StyledWriter@Json@@QAEAAV01@ABV01@@Z
??4Value@Json@@QAEAAV01@$$QAV01@@Z
??4Value@Json@@QAEAAV01@ABV01@@Z
??4ValueConstIterator@Json@@QAEAAV01@$$QAV01@@Z
??4ValueConstIterator@Json@@QAEAAV01@ABV01@@Z
??4ValueConstIterator@Json@@QAEAAV01@ABVValueIteratorBase@1@@Z
??4ValueIterator@Json@@QAEAAV01@ABV01@@Z
??4ValueIteratorBase@Json@@QAEAAV01@$$QAV01@@Z
??4ValueIteratorBase@Json@@QAEAAV01@ABV01@@Z
??4Writer@Json@@QAEAAV01@ABV01@@Z
??5Json@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@std@@AAV12@AAVValue@0@@Z
??6Json@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AAV12@ABVValue@0@@Z
??8Value@Json@@QBE_NABV01@@Z
??8ValueIteratorBase@Json@@QBE_NABV01@@Z
??9Value@Json@@QBE_NABV01@@Z
??9ValueIteratorBase@Json@@QBE_NABV01@@Z
??ACharReaderBuilder@Json@@QAEAAVValue@1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??AStreamWriterBuilder@Json@@QAEAAVValue@1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??AValue@Json@@QAEAAV01@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??AValue@Json@@QAEAAV01@ABVStaticString@1@@Z
??AValue@Json@@QAEAAV01@H@Z
??AValue@Json@@QAEAAV01@I@Z
??AValue@Json@@QAEAAV01@PBD@Z
??AValue@Json@@QBEABV01@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??AValue@Json@@QBEABV01@H@Z
??AValue@Json@@QBEABV01@I@Z
??AValue@Json@@QBEABV01@PBD@Z
??BStaticString@Json@@QBEPBDXZ
??BValue@Json@@QBE_NXZ
??CValueConstIterator@Json@@QBEPBVValue@1@XZ
??CValueIterator@Json@@QAEPAVValue@1@XZ
??DValueConstIterator@Json@@QBEABVValue@1@XZ
??DValueIterator@Json@@QAEAAVValue@1@XZ
??EValueConstIterator@Json@@QAE?AV01@H@Z
??EValueConstIterator@Json@@QAEAAV01@XZ
??EValueIterator@Json@@QAE?AV01@H@Z
??EValueIterator@Json@@QAEAAV01@XZ
??FValueConstIterator@Json@@QAE?AV01@H@Z
??FValueConstIterator@Json@@QAEAAV01@XZ
??FValueIterator@Json@@QAE?AV01@H@Z
??FValueIterator@Json@@QAEAAV01@XZ
??GValueIteratorBase@Json@@QBEHABV01@@Z
??MValue@Json@@QBE_NABV01@@Z
??NValue@Json@@QBE_NABV01@@Z
??OValue@Json@@QBE_NABV01@@Z
??PValue@Json@@QBE_NABV01@@Z
??_7CharReader@Json@@6B@
??_7CharReaderBuilder@Json@@6B@
??_7Exception@Json@@6B@
??_7Factory@CharReader@Json@@6B@
??_7Factory@StreamWriter@Json@@6B@
??_7FastWriter@Json@@6B@
??_7LogicError@Json@@6B@
??_7RuntimeError@Json@@6B@
??_7StreamWriter@Json@@6B@
??_7StreamWriterBuilder@Json@@6B@
??_7StyledWriter@Json@@6B@
??_7Writer@Json@@6B@
??_FStyledStreamWriter@Json@@QAEXXZ
??_FVMemMgr@asmjit@@QAEXXZ
??_FValue@Json@@QAEXXZ
?_alloc@Zone@asmjit@@QAEPAXI@Z
?_emit@X86Assembler@asmjit@@UAEIIABUOperand@2@000@Z
?_grow@Assembler@asmjit@@QAEII@Z
?_grow@PodVectorBase@asmjit@@IAEIII@Z
?_newLabel@Assembler@asmjit@@QAEIPAULabel@2@@Z
?_newLabelLink@Assembler@asmjit@@QAEPAULabelLink@2@XZ
?_nullData@PodVectorBase@asmjit@@2UPodVectorData@2@B
?_registerIndexedLabels@Assembler@asmjit@@QAEII@Z
?_relocCode@X86Assembler@asmjit@@UBEIPAX_K@Z
?_reserve@Assembler@asmjit@@QAEII@Z
?_reserve@PodVectorBase@asmjit@@IAEIII@Z
?_x86CondToCmovcc@asmjit@@3QBIB
?_x86CondToJcc@asmjit@@3QBIB
?_x86CondToSetcc@asmjit@@3QBIB
?_x86InstExtendedInfo@asmjit@@3QBUX86InstExtendedInfo@1@B
?_x86InstInfo@asmjit@@3QBUX86InstInfo@1@B
?_x86ReverseCond@asmjit@@3QBIB
?add@JitRuntime@asmjit@@UAEIPAPAXPAUAssembler@2@@Z
?add@StaticRuntime@asmjit@@UAEIPAPAXPAUAssembler@2@@Z
?addComment@Reader@Json@@AAEXPBD0W4CommentPlacement@2@@Z
?addError@Reader@Json@@AAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAVToken@12@PBD@Z
?addErrorAndRecover@Reader@Json@@AAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAVToken@12@W4TokenType@12@@Z
?addPathInArg@Path@Json@@AAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV?$vector@PBVPathArgument@Json@@V?$allocator@PBVPathArgument@Json@@@std@@@4@AAV?$_Vector_const_iterator@V?$_Vector_val@U?$_Simple_types@PBVPathArgument@Json@@@std@@@std@@@4@W4Kind@PathArgument@2@@Z
?align@X86Assembler@asmjit@@UAEIII@Z
?all@Features@Json@@SA?AV12@XZ
?alloc@VMemMgr@asmjit@@QAEPAXII@Z
?alloc@VMemUtil@asmjit@@SAPAXIPAII@Z
?allocProcessMemory@VMemUtil@asmjit@@SAPAXPAXIPAII@Z
?allocZeroed@Zone@asmjit@@QAEPAXI@Z
?append@Value@Json@@QAEAAV12@$$QAV12@@Z
?append@Value@Json@@QAEAAV12@ABV12@@Z
?asBool@Value@Json@@QBE_NXZ
?asCString@Value@Json@@QBEPBDXZ
?asDouble@Value@Json@@QBENXZ
?asFloat@Value@Json@@QBEMXZ
?asInt64@Value@Json@@QBE_JXZ
?asInt@Value@Json@@QBEHXZ
?asLargestInt@Value@Json@@QBE_JXZ
?asLargestUInt@Value@Json@@QBE_KXZ
?asString@Value@Json@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?asUInt64@Value@Json@@QBE_KXZ
?asUInt@Value@Json@@QBEIXZ
?begin@Value@Json@@QAE?AVValueIterator@2@XZ
?begin@Value@Json@@QBE?AVValueConstIterator@2@XZ
?bind@Assembler@asmjit@@UAEIABULabel@2@@Z
?c_str@StaticString@Json@@QBEPBDXZ
?callCpuId@X86CpuUtil@asmjit@@SAXIIPATX86CpuId@2@@Z
?clear@Value@Json@@QAEXXZ
?compare@Value@Json@@QBEHABV12@@Z
?computeDistance@ValueIteratorBase@Json@@IBEHABV12@@Z
?containsNewLine@Reader@Json@@CA_NPBD0@Z
?copy@Value@Json@@QAEXABV12@@Z
?copy@ValueIteratorBase@Json@@IAEXABV12@@Z
?copyPayload@Value@Json@@QAEXABV12@@Z
?currentValue@Reader@Json@@AAEAAVValue@2@XZ
?decodeDouble@Reader@Json@@AAE_NAAVToken@12@@Z
?decodeDouble@Reader@Json@@AAE_NAAVToken@12@AAVValue@2@@Z
?decodeNumber@Reader@Json@@AAE_NAAVToken@12@@Z
?decodeNumber@Reader@Json@@AAE_NAAVToken@12@AAVValue@2@@Z
?decodeString@Reader@Json@@AAE_NAAVToken@12@@Z
?decodeString@Reader@Json@@AAE_NAAVToken@12@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?decodeUnicodeCodePoint@Reader@Json@@AAE_NAAVToken@12@AAPBDPBDAAI@Z
?decodeUnicodeEscapeSequence@Reader@Json@@AAE_NAAVToken@12@AAPBDPBDAAI@Z
?decrement@ValueIteratorBase@Json@@IAEXXZ
?defaultRealPrecision@Value@Json@@2IB
?demand@Value@Json@@QAEPAV12@PBD0@Z
?deref@ValueIteratorBase@Json@@IAEAAVValue@2@XZ
?deref@ValueIteratorBase@Json@@IBEABVValue@2@XZ
?detect@X86CpuUtil@asmjit@@SAXPAUX86CpuInfo@2@@Z
?detectHwThreadsCount@CpuInfo@asmjit@@SAIXZ
?dropNullPlaceholders@FastWriter@Json@@QAEXXZ
?dup@Zone@asmjit@@QAEPAXPBXI@Z
?dupMeta@Value@Json@@AAEXABV12@@Z
?dupPayload@Value@Json@@AAEXABV12@@Z
?embed@Assembler@asmjit@@UAEIPBXI@Z
?embedLabel@X86Assembler@asmjit@@QAEIABULabel@2@@Z
?emit@Assembler@asmjit@@QAEII@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@00@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@00H@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@00_K@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@0@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@0H@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@0_K@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@H@Z
?emit@Assembler@asmjit@@QAEIIABUOperand@2@_K@Z
?emit@Assembler@asmjit@@QAEIIH@Z
?emit@Assembler@asmjit@@QAEII_K@Z
?empty@Value@Json@@QBE_NXZ
?enableYAMLCompatibility@FastWriter@Json@@QAEXXZ
?end@Value@Json@@QAE?AVValueIterator@2@XZ
?end@Value@Json@@QBE?AVValueConstIterator@2@XZ
?find@Value@Json@@QBEPBV12@PBD0@Z
?flush@HostRuntime@asmjit@@UAEXPAXI@Z
?get@Value@Json@@QBE?AV12@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV12@@Z
?get@Value@Json@@QBE?AV12@IABV12@@Z
?get@Value@Json@@QBE?AV12@PBD0ABV12@@Z
?get@Value@Json@@QBE?AV12@PBDABV12@@Z
?getComment@Value@Json@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4CommentPlacement@2@@Z
?getCpuInfo@HostRuntime@asmjit@@UAEPBUCpuInfo@2@XZ
?getFormatedErrorMessages@Reader@Json@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?getFormattedErrorMessages@Reader@Json@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?getHost@CpuInfo@asmjit@@SAPBU12@XZ
?getLocationLineAndColumn@Reader@Json@@ABE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBD@Z
?getLocationLineAndColumn@Reader@Json@@ABEXPBDAAH1@Z
?getMemberNames@Value@Json@@QBE?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?getNextChar@Reader@Json@@AAEDXZ
?getOffsetLimit@Value@Json@@QBEHXZ
?getOffsetStart@Value@Json@@QBEHXZ
?getPageGranularity@VMemUtil@asmjit@@SAIXZ
?getPageSize@VMemUtil@asmjit@@SAIXZ
?getStackAlignment@HostRuntime@asmjit@@UAEIXZ
?getString@Value@Json@@QBE_NPAPBD0@Z
?getStructuredErrors@Reader@Json@@QBE?AV?$vector@UStructuredError@Reader@Json@@V?$allocator@UStructuredError@Reader@Json@@@std@@@std@@XZ
?get_lock@singleton_module@serialization@boost@@AAEAA_NXZ
?good@Reader@Json@@QBE_NXZ
?hasComment@Value@Json@@QBE_NW4CommentPlacement@2@@Z
?hasCommentForValue@StyledStreamWriter@Json@@CA_NABVValue@2@@Z
?hasCommentForValue@StyledWriter@Json@@CA_NABVValue@2@@Z
?increment@ValueIteratorBase@Json@@IAEXXZ
?indent@StyledStreamWriter@Json@@AAEXXZ
?indent@StyledWriter@Json@@AAEXXZ
?index@ValueIteratorBase@Json@@QBEIXZ
?initBasic@Value@Json@@AAEXW4ValueType@2@_N@Z
?insert@Value@Json@@QAE_NI$$QAV12@@Z
?insert@Value@Json@@QAE_NIABV12@@Z
?invalidPath@Path@Json@@CAXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?isAllocated@Value@Json@@ABE_NXZ
?isArray@Value@Json@@QBE_NXZ
?isBool@Value@Json@@QBE_NXZ
?isConvertibleTo@Value@Json@@QBE_NW4ValueType@2@@Z
?isDouble@Value@Json@@QBE_NXZ
?isEqual@ValueIteratorBase@Json@@IBE_NABV12@@Z
?isInt64@Value@Json@@QBE_NXZ
?isInt@Value@Json@@QBE_NXZ
?isIntegral@Value@Json@@QBE_NXZ
?isMember@Value@Json@@QBE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?isMember@Value@Json@@QBE_NPBD0@Z
?isMember@Value@Json@@QBE_NPBD@Z
?isMultilineArray@StyledStreamWriter@Json@@AAE_NABVValue@2@@Z
?isMultilineArray@StyledWriter@Json@@AAE_NABVValue@2@@Z
?isNull@Value@Json@@QBE_NXZ
?isNumeric@Value@Json@@QBE_NXZ
?isObject@Value@Json@@QBE_NXZ
?isString@Value@Json@@QBE_NXZ
?isUInt64@Value@Json@@QBE_NXZ
?isUInt@Value@Json@@QBE_NXZ
?isValidIndex@Value@Json@@QBE_NI@Z
?is_locked@singleton_module@serialization@boost@@QAE_NXZ
?key@ValueIteratorBase@Json@@QBE?AVValue@2@XZ
?lock@?1??get_lock@singleton_module@serialization@boost@@AAEAA_NXZ@4_NA
?lock@singleton_module@serialization@boost@@QAEXXZ
?make@Assembler@asmjit@@UAEPAXXZ
?make@Path@Json@@QBEAAVValue@2@AAV32@@Z
?makePath@Path@Json@@AAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV?$vector@PBVPathArgument@Json@@V?$allocator@PBVPathArgument@Json@@@std@@@4@@Z
?match@Reader@Json@@AAE_NPBDH@Z
?maxInt64@Value@Json@@2_JB
?maxInt@Value@Json@@2HB
?maxLargestInt@Value@Json@@2_JB
?maxLargestUInt@Value@Json@@2_KB
?maxUInt64@Value@Json@@2_KB
?maxUInt64AsDouble@Value@Json@@2NB
?maxUInt@Value@Json@@2IB
?memberName@ValueIteratorBase@Json@@QBEPBDPAPBD@Z
?memberName@ValueIteratorBase@Json@@QBEPBDXZ
?minInt64@Value@Json@@2_JB
?minInt@Value@Json@@2HB
?minLargestInt@Value@Json@@2_JB
?name@ValueIteratorBase@Json@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?newCharReader@CharReaderBuilder@Json@@UBEPAVCharReader@2@XZ
?newStreamWriter@StreamWriterBuilder@Json@@UBEPAVStreamWriter@2@XZ
?noOperand@asmjit@@3UOperand@1@B
?normalizeEOL@Reader@Json@@CA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBD0@Z
?null@Value@Json@@2ABV12@B
?nullRef@Value@Json@@2ABV12@B
?nullSingleton@Value@Json@@SAABV12@XZ
?omitEndingLineFeed@FastWriter@Json@@QAEXXZ
?parse@Reader@Json@@QAE_NAAV?$basic_istream@DU?$char_traits@D@std@@@std@@AAVValue@2@_N@Z
?parse@Reader@Json@@QAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAVValue@2@_N@Z
?parse@Reader@Json@@QAE_NPBD0AAVValue@2@_N@Z
?parseFromStream@Json@@YA_NABVFactory@CharReader@1@AAV?$basic_istream@DU?$char_traits@D@std@@@std@@PAVValue@1@PAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@5@@Z
?ptr_abs@x86@asmjit@@YA?AUX86Mem@2@_KABUX86Reg@2@IHI@Z
?ptr_abs@x86@asmjit@@YA?AUX86Mem@2@_KHI@Z
?pushError@Reader@Json@@QAE_NABVValue@2@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?pushError@Reader@Json@@QAE_NABVValue@2@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?pushValue@StyledStreamWriter@Json@@AAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?pushValue@StyledWriter@Json@@AAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?readArray@Reader@Json@@AAE_NAAVToken@12@@Z
?readCStyleComment@Reader@Json@@AAE_NXZ
?readComment@Reader@Json@@AAE_NXZ
?readCppStyleComment@Reader@Json@@AAE_NXZ
?readNumber@Reader@Json@@AAEXXZ
?readObject@Reader@Json@@AAE_NAAVToken@12@@Z
?readString@Reader@Json@@AAE_NXZ
?readToken@Reader@Json@@AAE_NAAVToken@12@@Z
?readValue@Reader@Json@@AAE_NXZ
?recoverFromError@Reader@Json@@AAE_NW4TokenType@12@@Z
?release@JitRuntime@asmjit@@UAEIPAX@Z
?release@StaticRuntime@asmjit@@UAEIPAX@Z
?release@VMemMgr@asmjit@@QAEIPAX@Z
?release@VMemUtil@asmjit@@SAIPAXI@Z
?releasePayload@Value@Json@@AAEXXZ
?releaseProcessMemory@VMemUtil@asmjit@@SAIPAX0I@Z
?relocCode@Assembler@asmjit@@QBEIPAX_K@Z
?removeIndex@Value@Json@@QAE_NIPAV12@@Z
?removeMember@Value@Json@@QAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?removeMember@Value@Json@@QAEXPBD@Z
?removeMember@Value@Json@@QAE_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PAV12@@Z
?removeMember@Value@Json@@QAE_NPBD0PAV12@@Z
?removeMember@Value@Json@@QAE_NPBDPAV12@@Z
?reset@Assembler@asmjit@@QAEX_N@Z
?reset@PodVectorBase@asmjit@@QAEX_N@Z
?reset@VMemMgr@asmjit@@QAEXXZ
?reset@Zone@asmjit@@QAEX_N@Z
?resize@Value@Json@@QAEXI@Z
?resolve@Path@Json@@QBE?AVValue@2@ABV32@0@Z
?resolve@Path@Json@@QBEABVValue@2@ABV32@@Z
?resolveReference@Value@Json@@AAEAAV12@PBD0@Z
?resolveReference@Value@Json@@AAEAAV12@PBD@Z
?sdup@Zone@asmjit@@QAEPADPBD@Z
?setArch@X86Assembler@asmjit@@QAEII@Z
?setComment@Value@Json@@QAEXPBDIW4CommentPlacement@2@@Z
?setComment@Value@Json@@QAEXPBDW4CommentPlacement@2@@Z
?setComment@Value@Json@@QAEXV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4CommentPlacement@2@@Z
?setDefaults@CharReaderBuilder@Json@@SAXPAVValue@2@@Z
?setDefaults@StreamWriterBuilder@Json@@SAXPAVValue@2@@Z
?setError@CodeGen@asmjit@@QAEIIPBD@Z
?setErrorHandler@CodeGen@asmjit@@QAEIPAUErrorHandler@2@@Z
?setIsAllocated@Value@Json@@AAEX_N@Z
?setOffsetLimit@Value@Json@@QAEXH@Z
?setOffsetStart@Value@Json@@QAEXH@Z
?setType@Value@Json@@AAEXW4ValueType@2@@Z
?sformat@Zone@asmjit@@QAAPADPBDZZ
?shrink@VMemMgr@asmjit@@QAEIPAXI@Z
?size@Value@Json@@QBEIXZ
?skipCommentTokens@Reader@Json@@AAEXAAVToken@12@@Z
?skipSpaces@Reader@Json@@AAEXXZ
?strictMode@CharReaderBuilder@Json@@SAXPAVValue@2@@Z
?strictMode@Features@Json@@SA?AV12@XZ
?swap@Value@Json@@QAEXAAV12@@Z
?swapPayload@Value@Json@@QAEXAAV12@@Z
?toStyledString@Value@Json@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?type@Value@Json@@QBE?AW4ValueType@2@XZ
?unindent@StyledStreamWriter@Json@@AAEXXZ
?unindent@StyledWriter@Json@@AAEXXZ
?unlock@singleton_module@serialization@boost@@QAEXXZ
?validate@CharReaderBuilder@Json@@QBE_NPAVValue@2@@Z
?validate@StreamWriterBuilder@Json@@QBE_NPAVValue@2@@Z
?valueToQuotedString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PBD@Z
?valueToString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?valueToString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@I@Z
?valueToString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@NIW4PrecisionType@1@@Z
?valueToString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_J@Z
?valueToString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_K@Z
?valueToString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@_N@Z
?what@Exception@Json@@UBEPBDXZ
?write@FastWriter@Json@@UAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABVValue@2@@Z
?write@StyledStreamWriter@Json@@QAEXAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@ABVValue@2@@Z
?write@StyledWriter@Json@@UAE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABVValue@2@@Z
?writeArrayValue@StyledStreamWriter@Json@@AAEXABVValue@2@@Z
?writeArrayValue@StyledWriter@Json@@AAEXABVValue@2@@Z
?writeCommentAfterValueOnSameLine@StyledStreamWriter@Json@@AAEXABVValue@2@@Z
?writeCommentAfterValueOnSameLine@StyledWriter@Json@@AAEXABVValue@2@@Z
?writeCommentBeforeValue@StyledStreamWriter@Json@@AAEXABVValue@2@@Z
?writeCommentBeforeValue@StyledWriter@Json@@AAEXABVValue@2@@Z
?writeIndent@StyledStreamWriter@Json@@AAEXXZ
?writeIndent@StyledWriter@Json@@AAEXXZ
?writeString@Json@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABVFactory@StreamWriter@1@ABVValue@1@@Z
?writeValue@FastWriter@Json@@AAEXABVValue@2@@Z
?writeValue@StyledStreamWriter@Json@@AAEXABVValue@2@@Z
?writeValue@StyledWriter@Json@@AAEXABVValue@2@@Z
?writeWithIndent@StyledStreamWriter@Json@@AAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?writeWithIndent@StyledWriter@Json@@AAEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?x86RegData@asmjit@@3UX86RegData@1@B

Sections

.text
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourd
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97454b002d1fd754d44698d362170136

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

06:57:28:52:a8:01:4c:70:68:ff:2f:fd:e8:e9:17:1fCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

06:57:28:52:a8:01:4c:70:68:ff:2f:fd:e8:e9:17:1fCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

47:17:4d:b1:61:3a:cc:5e:f5:8c:2d:1c:40:42:d2:23:ed:0c:64:b1:cf:1f:c1:66:fb:bf:0d:ed:00:b1:bd:d9Signer

97:54:7d:8e:5b:22:31:3c:b1:bf:65:16:3e:53:0e:7a:50:2e:0d:5aSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

ole32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

shlwapi

imm32

crypt32

wintrust

iphlpapi

version

imagehlp

bcrypt

dbghelp

comctl32

gdiplus

wldap32

Exports

Exports

Sections

.text Size: 5.1MB - Virtual size: 5.1MB

.rdata Size: 1.1MB - Virtual size: 1.1MB

.data Size: 70KB - Virtual size: 116KB

.detourd Size: 512B - Virtual size: 12B

.detourc Size: 4KB - Virtual size: 4KB

.rsrc Size: 1.9MB - Virtual size: 1.9MB

.reloc Size: 236KB - Virtual size: 235KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

06:57:28:52:a8:01:4c:70:68:ff:2f:fd:e8:e9:17:1f
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

06:57:28:52:a8:01:4c:70:68:ff:2f:fd:e8:e9:17:1f
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

47:17:4d:b1:61:3a:cc:5e:f5:8c:2d:1c:40:42:d2:23:ed:0c:64:b1:cf:1f:c1:66:fb:bf:0d:ed:00:b1:bd:d9
Signer

97:54:7d:8e:5b:22:31:3c:b1:bf:65:16:3e:53:0e:7a:50:2e:0d:5a
Signer

.text
Size: 5.1MB - Virtual size: 5.1MB

.rdata
Size: 1.1MB - Virtual size: 1.1MB

.data
Size: 70KB - Virtual size: 116KB

.detourd
Size: 512B - Virtual size: 12B

.detourc
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1.9MB - Virtual size: 1.9MB

.reloc
Size: 236KB - Virtual size: 235KB