e:\KINGSOFT_DUBA\Build\Build_Src\drivergenius_srv\dgsrv_1615_20201202_fb\product\win32\dbginfo\UsbPnp.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
d130b80ccf874b9128651e3bac490ee6c9c7b58237e2f1638145fa6a87962bfd.exe
Resource
win7-20240221-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
d130b80ccf874b9128651e3bac490ee6c9c7b58237e2f1638145fa6a87962bfd.exe
Resource
win10v2004-20240412-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
d130b80ccf874b9128651e3bac490ee6c9c7b58237e2f1638145fa6a87962bfd
-
Size
2.6MB
-
MD5
bc90aa3ca6396c66fb2594dc38a8580f
-
SHA1
b0cec99277c154270f20010e86b79b14c912b20b
-
SHA256
d130b80ccf874b9128651e3bac490ee6c9c7b58237e2f1638145fa6a87962bfd
-
SHA512
e33bc4818847a409353c7847d1bcd9d7facb13d5dc6808dd4bebc9f4395c42c4e285aaef55024b989462ab2f1216a3b9bd315fb029c65f48c2ca821aabf5656c
-
SSDEEP
49152:t2tEyexlsTw4UCDaqIGc3KzwaCZ8d/HBvSeTS7fTIPvoWT:t2trw49mq7z/BvIEPvoWT
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource d130b80ccf874b9128651e3bac490ee6c9c7b58237e2f1638145fa6a87962bfd
Files
-
d130b80ccf874b9128651e3bac490ee6c9c7b58237e2f1638145fa6a87962bfd.exe windows:4 windows x86 arch:x86
921bc1e3ffa50e6ba4c51f255c7745b7
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
sqlite3
sqlite3_open
sqlite3_get_table
sqlite3_free_table
sqlite3_close
kernel32
GetTickCount
GetProcessId
WaitForMultipleObjects
Sleep
OpenMutexW
ReleaseMutex
ResetEvent
CreateThread
LoadLibraryExW
CreateDirectoryW
lstrcpynW
GetSystemTimeAsFileTime
InterlockedExchange
GetTempPathW
DeleteFileW
GetCurrentProcessId
FatalAppExitW
SetUnhandledExceptionFilter
lstrcmpiW
GetFileAttributesW
WriteFile
SetFilePointer
CreateFileA
GetFileAttributesA
SetFileAttributesA
SetFileAttributesW
SetFilePointerEx
GetFileSizeEx
FindFirstFileA
FindNextFileA
GetFileAttributesExA
GetFileAttributesExW
DeleteFileA
CopyFileA
CopyFileW
RemoveDirectoryA
RemoveDirectoryW
MoveFileA
MoveFileW
MoveFileExA
MoveFileExW
CreateToolhelp32Snapshot
LocalFree
DeviceIoControl
GetDiskFreeSpaceW
SetEndOfFile
FormatMessageW
InterlockedCompareExchange
IsBadWritePtr
ProcessIdToSessionId
SetEnvironmentVariableW
GetEnvironmentVariableW
FlushFileBuffers
LocalAlloc
lstrcmpA
GetSystemTime
TerminateProcess
FileTimeToSystemTime
FileTimeToLocalFileTime
GetUserDefaultLangID
GetModuleFileNameW
SizeofResource
LockResource
LoadResource
QueryPerformanceCounter
IsDebuggerPresent
UnhandledExceptionFilter
GetStartupInfoW
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
GetThreadLocale
GetLocaleInfoA
GetACP
GetVersionExA
FindFirstFileW
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
Process32FirstW
Process32NextW
GetCommandLineW
GetLocalTime
FindResourceW
FindResourceExW
WritePrivateProfileStringW
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
GetPrivateProfileStringW
WritePrivateProfileSectionW
GetPrivateProfileIntW
CloseHandle
GetExitCodeThread
TerminateThread
WaitForSingleObject
FreeLibrary
GetProcAddress
LoadLibraryW
MultiByteToWideChar
VirtualFreeEx
ReadProcessMemory
OutputDebugStringW
WriteProcessMemory
VirtualAllocEx
OpenProcess
GetModuleHandleW
GetVersionExW
GetSystemDirectoryW
GetProcessHeap
RaiseException
GetLastError
EnterCriticalSection
LeaveCriticalSection
FlushInstructionCache
GetCurrentProcess
WideCharToMultiByte
GetVersion
CreateEventW
lstrlenA
lstrlenW
GetCurrentThreadId
GetExitCodeProcess
CreateMutexW
SetEvent
OpenEventW
GetFileSize
CreateFileW
SetLastError
FreeResource
InitializeCriticalSection
DeleteCriticalSection
lstrcmpW
MulDiv
InterlockedIncrement
InterlockedDecrement
GlobalUnlock
GlobalLock
GlobalAlloc
ReadFile
FindClose
FindNextFileW
user32
DrawTextW
ClientToScreen
ScreenToClient
InvalidateRgn
FindWindowExW
FindWindowW
SendMessageW
GetClassNameW
GetWindow
GetDesktopWindow
GetWindowThreadProcessId
UnregisterClassA
SetWindowLongW
GetWindowLongW
CreateWindowExW
MoveWindow
SetWindowPos
GetWindowRect
GetClientRect
InvalidateRect
MapWindowPoints
SystemParametersInfoW
GetParent
GetClassInfoExW
wsprintfW
LoadCursorW
CopyRect
SetRect
GetDlgItem
RegisterClassExW
DefWindowProcW
RegisterWindowMessageW
DestroyWindow
DispatchMessageW
TranslateMessage
GetMessageW
IsWindow
PeekMessageW
ShowWindow
PostMessageW
GetSysColor
PtInRect
GetDC
ReleaseDC
UpdateLayeredWindow
GetCursorPos
DialogBoxParamW
SetWindowRgn
SetParent
EndDialog
WindowFromPoint
LoadBitmapW
EnumDisplayDevicesW
CreatePopupMenu
AppendMenuW
TrackPopupMenu
SetCursorPos
mouse_event
ExitWindowsEx
MessageBoxW
GetSystemMetrics
GetActiveWindow
EnableWindow
SetActiveWindow
SetForegroundWindow
GetForegroundWindow
GetAsyncKeyState
GetCursorInfo
GetKeyState
MonitorFromWindow
GetMonitorInfoW
PostThreadMessageW
IsWindowEnabled
SetTimer
UpdateWindow
OffsetRect
DrawIconEx
LoadIconW
LoadImageW
DrawFrameControl
GetDlgCtrlID
EqualRect
DestroyIcon
KillTimer
IsWindowVisible
RedrawWindow
SetCursor
InflateRect
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CreateAcceleratorTableW
GetFocus
SetFocus
DestroyAcceleratorTable
BeginPaint
EndPaint
CallWindowProcW
FillRect
ReleaseCapture
IsChild
SetCapture
CharNextW
gdi32
Rectangle
CombineRgn
StretchBlt
CreateDIBSection
GetTextExtentPoint32W
TextOutW
RestoreDC
SaveDC
LineTo
MoveToEx
GetClipRgn
CreateRectRgnIndirect
CreateRectRgn
CreatePen
RoundRect
SelectClipRgn
RectInRegion
ExtTextOutW
SetTextColor
SetBkMode
SetBkColor
CreateSolidBrush
GetDeviceCaps
BitBlt
DeleteDC
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
GetStockObject
GetObjectW
CreateFontIndirectW
DeleteObject
CreateRoundRectRgn
CreateBitmap
advapi32
RegOpenCurrentUser
ImpersonateLoggedOnUser
RevertToSelf
RegSetValueExA
RegEnumValueW
RegEnumValueA
RegEnumKeyW
RegEnumKeyA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyExA
RegCreateKeyW
RegCreateKeyA
RegOpenKeyExA
RegOpenKeyA
RegQueryInfoKeyW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyExW
RegSetValueExW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyW
RegCreateKeyExW
RegCloseKey
shell32
ShellExecuteExW
ShellExecuteW
Shell_NotifyIconW
SHAppBarMessage
ord680
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
SHGetFolderPathW
SHFileOperationW
ole32
StringFromGUID2
CoTaskMemRealloc
CoInitialize
CoUninitialize
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoTaskMemAlloc
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
CoTaskMemFree
oleaut32
DispCallFunc
VarBstrCmp
LoadTypeLi
SysFreeString
SysStringLen
SysAllocStringLen
SysAllocString
LoadRegTypeLi
OleCreateFontIndirect
VariantClear
VariantInit
VarUI4FromStr
SysStringByteLen
shlwapi
StrToIntA
PathFileExistsW
PathAppendW
StrToIntW
PathUnquoteSpacesW
PathRemoveArgsW
AssocCreate
PathRemoveExtensionW
PathAddBackslashW
PathIsDirectoryW
PathFindFileNameW
PathIsDirectoryA
SHDeleteValueW
SHDeleteValueA
SHSetValueW
SHSetValueA
SHGetValueW
SHGetValueA
PathRemoveFileSpecW
PathFileExistsA
PathFindExtensionW
SHEnumKeyExW
StrCpyW
PathCombineW
comctl32
_TrackMouseEvent
gdiplus
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipDisposeImage
GdipCloneImage
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatTrimming
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipDrawImageRectI
GdiplusStartup
GdiplusShutdown
GdipFree
GdipCloneBrush
GdipDeleteBrush
GdipCreateFont
GdipAlloc
GdipDeleteGraphics
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipDeleteFont
GdipGetImageWidth
GdipGetImageHeight
GdipCreateSolidFill
GdipCreateFromHDC
GdipDrawString
GdipDrawImageRectRectI
msvcp80
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
??_D?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??0?$basic_ofstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
??_D?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?imbue@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE?AVlocale@2@ABV32@@Z
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PBDHH@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Init@locale@std@@CAPAV_Locimp@12@XZ
??$?9_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEGXZ
?_Lock@_Mutex@std@@QAEXXZ
?_Unlock@_Mutex@std@@QAEXXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??1locale@std@@QAE@XZ
?_Incref@facet@locale@std@@QAEXXZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
??$?6_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YAAAV?$basic_ostream@_WU?$char_traits@_W@std@@@0@AAV10@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@I_W@Z
?allocate@?$allocator@_W@std@@QAEPA_WI@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?length@?$char_traits@D@std@@SAIPBD@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$_String_const_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find_first_not_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEHPB_WH@Z
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?deallocate@?$allocator@_W@std@@QAEXPA_WI@Z
?_Tidy@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@IAEX_NI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@I_W@Z
?reserve@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
??_D?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
?str@?$basic_ostringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??$getline@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@D@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@II@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
patchcore
ord257
ord397
ord260
ord326
ord393
ord395
ord376
pnpsup
curl_easy_init
curl_slist_append
curl_easy_setopt
curl_easy_perform
curl_easy_getinfo
curl_slist_free_all
curl_easy_cleanup
ord39
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
msvcr80
_wcslwr
srand
rand
_wtoi64
_mbsstr
_mbsicmp
atoi
wcstol
wcstoul
wcstod
wcscmp
_wtof
_wcsupr
wcscat
__RTDynamicCast
swprintf_s
wcsncpy_s
wcscat_s
sqrt
??3@YAXPAX@Z
_vswprintf
_CxxThrowException
__CxxFrameHandler3
_vscwprintf
_mktime64
wcslen
memcpy
memmove
??_V@YAXPAX@Z
memset
_wcsdup
_stricmp
memcpy_s
wcsspn
wcscspn
vswprintf_s
memmove_s
swscanf
atol
wcspbrk
fclose
fread
_wfopen
fopen_s
ferror
fputc
fprintf
sscanf_s
_mbschr
memcmp
_waccess
strcmp
malloc
vsprintf
_vscprintf
_recalloc
_mbscmp
strlen
_localtime64
_purecall
wcsrchr
iswspace
_wtoi
_beginthreadex
??2@YAPAXI@Z
??0exception@std@@QAE@ABV01@@Z
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
_time64
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
calloc
free
wcschr
wcsstr
atof
_vsnprintf_s
ftell
fseek
isspace
tolower
isalpha
isalnum
strncmp
strchr
_localtime64_s
_wtol
_vsnwprintf
_exit
strncpy_s
wcsncmp
wcscpy_s
abs
strncpy
_wcsnicmp
sprintf
sscanf
sprintf_s
strpbrk
?terminate@@YAXXZ
_except_handler4_common
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
__clean_type_info_names_internal
_amsg_exit
__wgetmainargs
_cexit
_XcptFilter
exit
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_invoke_watson
_controlfp_s
wcsncpy
_swprintf
wcscpy
_wcsicmp
swscanf_s
_wcsrev
psapi
EnumProcesses
GetProcessImageFileNameW
GetModuleFileNameExW
dbghelp
MiniDumpWriteDump
ws2_32
socket
inet_addr
htons
sendto
select
__WSAFDIsSet
recvfrom
ntohs
gethostbyname
inet_ntoa
WSACleanup
WSAStartup
WSAGetLastError
iphlpapi
IcmpSendEcho
IcmpCreateFile
IcmpCloseHandle
Exports
Exports
??4_Init_locks@std@@QAEAAV01@ABV01@@Z
Sections
.text Size: 984KB - Virtual size: 980KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 384KB - Virtual size: 382KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 24KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE