D:\Releases\JKSimulator\JKSimMet v6.3 (Build 364)\Source\build\bin\Release\QlmLicAdmin.FloatingLicense.Registrator.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
96547516dd2e1e544e888ead9c5179d0_NeikiAnalytics.exe
Resource
win7-20240508-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
96547516dd2e1e544e888ead9c5179d0_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
96547516dd2e1e544e888ead9c5179d0_NeikiAnalytics
-
Size
880KB
-
MD5
96547516dd2e1e544e888ead9c5179d0
-
SHA1
6f143b8f418d6a5fa054e4b70e632bfb6777993a
-
SHA256
016d8fdf0e056a8f943ec08e41eb9dbfea7f3557e0d1dbf19b2c5bb7c763402e
-
SHA512
aca1f77e2fc83e86611b471258d8d476f8a6058ef5760679a42c706ee3b3d8c40a24d0ec56b3196294c8ae198b3cf93ae5fe68604f67e2fb2110f65aa9a0dac7
-
SSDEEP
12288:yB/HdBmYAoRPQoQIcisnkc+yAJytOdSRr68Z:G/H/m/0ci0k3It0SRr6
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 96547516dd2e1e544e888ead9c5179d0_NeikiAnalytics
Files
-
96547516dd2e1e544e888ead9c5179d0_NeikiAnalytics.exe windows:6 windows x86 arch:x86
c11ef88d85d1cc0ce0e89096b711856e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
dwmapi
DwmExtendFrameIntoClientArea
DwmDefWindowProc
DwmIsCompositionEnabled
gdiplus
GdipFree
GdipAlloc
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipScaleWorldTransform
GdipDrawImageI
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImageVerticalResolution
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipCreateHBITMAPFromBitmap
GdipBitmapSetResolution
GdiplusStartup
GdiplusShutdown
mpr
WNetGetConnectionW
odbc32
ord24
ord31
ord155
ord75
ord136
api-ms-win-shcore-scaling-l1-1-1
GetDpiForMonitor
glog
??0LogMessage@google@@QAE@PBDH@Z
??1LogMessageFatal@google@@QAE@XZ
??1LogMessage@google@@QAE@XZ
??0LogMessageFatal@google@@QAE@PBDH@Z
?InitGoogleLogging@google@@YAXPBD@Z
?FLAGS_v@fLI@@3HA
?FLAGS_stderrthreshold@fLI@@3HA
?FLAGS_logtostderr@fLB@@3_NA
??0LogMessage@google@@QAE@PBDHH@Z
?stream@LogMessage@google@@QAEAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@XZ
?SetLogDestination@google@@YAXHPBD@Z
?ShutdownGoogleLogging@google@@YAXXZ
?SetLogFilenameExtension@google@@YAXPBD@Z
mfc120u
ord2369
ord1509
ord325
ord1508
ord265
ord1506
ord266
ord2347
ord2343
ord2204
ord286
ord1042
ord1050
ord2323
ord324
ord1049
msvcr120
_CxxThrowException
memcpy
__RTDynamicCast
strerror
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
?wait@Concurrency@@YAXI@Z
_vsnwprintf
_time64
??0exception@std@@QAE@ABQBDH@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
?Alloc@Concurrency@@YAPAXI@Z
?Free@Concurrency@@YAXPAX@Z
?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_GetCurrentInlineDepth@_StackGuard@details@Concurrency@@CAAAIXZ
?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?set@event@Concurrency@@QAEXXZ
??0event@Concurrency@@QAE@XZ
??1event@Concurrency@@QAE@XZ
??0critical_section@Concurrency@@QAE@XZ
??1critical_section@Concurrency@@QAE@XZ
??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z
??1scoped_lock@critical_section@Concurrency@@QAE@XZ
?wait@event@Concurrency@@QAEII@Z
?_NewCollection@_AsyncTaskCollection@details@Concurrency@@SAPAV123@PAV_CancellationTokenState@23@@Z
?_ScheduleTask@_CurrentScheduler@details@Concurrency@@SAXP6AXPAX@Z0@Z
?_Oversubscribe@_Context@details@Concurrency@@SAX_N@Z
?_ReportUnobservedException@details@Concurrency@@YAXXZ
wcsnlen
__crtTerminateProcess
__crtUnhandledException
_crt_debugger_hook
_controlfp_s
_invoke_watson
__crtSetUnhandledExceptionFilter
_except_handler4_common
_onexit
__dllonexit
_calloc_crt
_unlock
_lock
??1type_info@@UAE@XZ
_commode
_fmode
_wcmdln
_initterm
_initterm_e
__setusermatherr
_configthreadlocale
_cexit
_exit
exit
__set_app_type
__wgetmainargs
_amsg_exit
__crtGetShowWindowMode
_XcptFilter
__CxxFrameHandler3
memset
_snwprintf_s
abort
raise
_ctime64
ungetwc
fputwc
fgetwc
isspace
fclose
fflush
setvbuf
fsetpos
fgetpos
_fseeki64
fwrite
_unlock_file
_lock_file
tolower
ungetc
fputc
fgetc
memcpy_s
__RTtypeid
??0bad_cast@std@@QAE@PBD@Z
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
memchr
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
??0exception@std@@QAE@XZ
swprintf_s
calloc
_recalloc
_vsnwprintf_s
_purecall
?terminate@@YAXXZ
malloc
wcscpy_s
wcsncmp
?what@exception@std@@UBEPBDXZ
_vsnprintf_s
??8type_info@@QBE_NABV0@@Z
??0exception@std@@QAE@ABV01@@Z
free
memmove
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
_except1
kernel32
CreateProcessW
CreatePipe
GetProcessTimes
GetExitCodeProcess
TerminateProcess
WaitForSingleObject
OutputDebugStringW
CreateDirectoryW
CreateFileW
GetFileAttributesW
CloseHandle
DeviceIoControl
CopyFileW
AreFileApisANSI
WideCharToMultiByte
FormatMessageA
CreateFileA
ReadFile
SetFilePointer
CreateFileMappingW
MapViewOfFile
LocalSize
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
EncodePointer
GetProcAddress
SetLastError
LocalFree
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GetComputerNameW
LocalAlloc
lstrlenW
FormatMessageW
GetCurrentProcessId
GetModuleHandleW
GetModuleFileNameW
GetModuleHandleExW
GetCurrentProcess
CheckRemoteDebuggerPresent
IsDebuggerPresent
DeleteCriticalSection
DecodePointer
InitializeCriticalSectionEx
GlobalAlloc
GlobalFree
FindResourceW
SizeofResource
LoadResource
LockResource
GlobalLock
GetCommandLineW
MultiByteToWideChar
GetLastError
GlobalUnlock
user32
MonitorFromRect
GetDC
SendDlgItemMessageW
SendMessageW
GetDlgItem
GetDlgItemTextW
EndDialog
SetDlgItemTextW
SetCursor
GetWindowLongW
SetWindowLongW
DialogBoxParamW
MessageBoxW
EnumWindows
ReleaseDC
LoadStringW
CreateWindowExW
SetWindowRgn
CreateDialogParamW
ShowWindow
UpdateWindow
SetWindowPos
LoadAcceleratorsW
GetMessageW
BeginPaint
EndPaint
MessageBoxA
LoadCursorW
IsWindowVisible
GetWindowThreadProcessId
SetForegroundWindow
WaitForInputIdle
GetWindowRect
CharLowerBuffW
InvalidateRect
GetWindowTextW
GetWindowTextLengthW
IsWindowEnabled
DrawTextW
GetSysColorBrush
DestroyWindow
PostQuitMessage
RegisterClassExW
LoadIconW
EnableWindow
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
DefWindowProcW
FillRect
GetClientRect
AdjustWindowRectEx
gdi32
MoveToEx
LineTo
RoundRect
CreatePen
SelectClipRgn
CreateRectRgn
Rectangle
SetBkColor
SetBkMode
CreateRoundRectRgn
DeleteObject
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
CreateDIBSection
SetTextColor
CreateFontW
GetStockObject
CreateSolidBrush
GetClipRgn
comdlg32
GetOpenFileNameW
advapi32
CreateProcessAsUserW
OpenSCManagerW
EnumServicesStatusExW
CloseServiceHandle
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegCloseKey
shell32
SHGetPathFromIDListW
ShellExecuteExW
CommandLineToArgvW
SHGetFolderPathW
SHGetMalloc
SHBrowseForFolderW
comctl32
ord412
_TrackMouseEvent
ord410
ord413
shlwapi
PathRemoveFileSpecW
uxtheme
OpenThemeData
CloseThemeData
DrawThemeTextEx
ole32
CoTaskMemFree
StringFromCLSID
OleRun
CoUninitialize
CoInitializeEx
CoCreateInstance
CreateStreamOnHGlobal
CoSetProxyBlanket
oleaut32
SafeArrayAccessData
SafeArrayDestroy
GetErrorInfo
VariantInit
VariantTimeToSystemTime
SafeArrayUnaccessData
SysAllocStringLen
SysStringLen
SysAllocString
SysFreeString
VariantClear
msvcp120
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?exceptions@ios_base@std@@QAEXH@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?classic@locale@std@@SAABV12@XZ
?unshift@?$codecvt@_WDH@std@@QBEHAAHPAD1AAPAD@Z
?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@_W@Z
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WD@Z
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?imbue@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE?AVlocale@2@ABV32@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
_Xtime_get_ticks
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
_Mtx_destroy
_Mtx_unlock
_Mtx_lock
_Mtx_init
?_Throw_C_error@std@@YAXH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Locimp_Addfac@_Locimp@locale@std@@CAXPAV123@PAVfacet@23@I@Z
xtime_get
_Xtime_diff_to_millis2
_Thrd_sleep
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?wcerr@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A
_Thrd_join
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
_Cnd_init
_Cnd_wait
_Cnd_timedwait
_Cnd_broadcast
_Cnd_signal
_Cnd_destroy
_Mtx_current_owns
?_Throw_Cpp_error@std@@YAXH@Z
_Cnd_register_at_thread_exit
_Cnd_unregister_at_thread_exit
_Thrd_current
_Thrd_equal
?_Future_error_map@std@@YAPBDH@Z
_Cnd_do_broadcast_at_thread_exit
?_Throw_future_error@std@@YAXABVerror_code@1@@Z
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
?_Launch@_Pad@std@@QAEXPAU_Thrd_imp_t@@@Z
??1_Pad@std@@QAE@XZ
?_Release@_Pad@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?id@?$ctype@_W@std@@2V0locale@2@A
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0_Lockit@std@@QAE@H@Z
??0_Pad@std@@QAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
??1_Lockit@std@@QAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
??_7_Facet_base@std@@6B@
??_7facet@locale@std@@6B@
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z
??_7codecvt_base@std@@6B@
??_7?$codecvt@_WDH@std@@6B@
?_Xbad_function_call@std@@YAXXZ
?uncaught_exception@std@@YA_NXZ
?id@?$codecvt@_WDH@std@@2V0locale@2@A
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??0?$codecvt@_WDH@std@@QAE@I@Z
?in@?$codecvt@_WDH@std@@QBEHAAHPBD1AAPBDPA_W3AAPA_W@Z
?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
?out@?$codecvt@_WDH@std@@QBEHAAHPB_W1AAPB_WPAD3AAPAD@Z
?_BADOFF@std@@3_JB
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
?pubimbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE?AVlocale@2@ABV32@@Z
?pubsync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
version
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
userenv
DestroyEnvironmentBlock
CreateEnvironmentBlock
wtsapi32
WTSQueryUserToken
WTSSendMessageA
WTSSendMessageW
Sections
.text Size: 613KB - Virtual size: 613KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 152KB - Virtual size: 151KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 40KB - Virtual size: 39KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 49KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ