D:\Development\SKIF\Builds\SKIF.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
55854b77aaeb405bb430b120485a2f90_NeikiAnalytics.exe
Resource
win7-20240221-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
55854b77aaeb405bb430b120485a2f90_NeikiAnalytics.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
7 signatures
150 seconds
General
-
Target
55854b77aaeb405bb430b120485a2f90_NeikiAnalytics
-
Size
3.5MB
-
MD5
55854b77aaeb405bb430b120485a2f90
-
SHA1
1d107580225896f4b054d01caf3966d5ff479fcd
-
SHA256
003f7f72d35b8a74df651a0797c98c59f73443edc84da5b439eecfffe0e5038a
-
SHA512
00afa34384f8135096dd2cf51112009039bd35c1150be1f103c014ae03f5ae2f13856daf16c728b4714b34aaba429a36f4f293573b7045a69a65135a8da77c0a
-
SSDEEP
49152:KC9/UsvnuzcU+tioXABlJhI1Ly/lXvBkv4oa6YwUEwOTjEUaj0wpOx:z/nut9vnvl38
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 55854b77aaeb405bb430b120485a2f90_NeikiAnalytics
Files
-
55854b77aaeb405bb430b120485a2f90_NeikiAnalytics.exe windows:6 windows x64 arch:x64
fa55d0e45a70ba5d6ac98d639b6dfbfd
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
PDB Paths
Imports
advapi32
RegGetValueW
RegOpenKeyExW
RegCloseKey
DuplicateTokenEx
OpenProcessToken
CreateProcessWithTokenW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegCreateKeyExW
RegSetKeyValueW
RegCreateKeyW
GetTokenInformation
RegQueryValueExW
RegNotifyChangeKeyValue
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegDeleteKeyExW
RegEnumValueW
RegOpenKeyW
LookupAccountSidW
OpenServiceW
QueryServiceConfigW
CheckTokenMembership
CreateWellKnownSid
OpenSCManagerW
CloseServiceHandle
d3d11
D3D11CreateDevice
dbghelp
ImageNtHeader
dwmapi
DwmSetWindowAttribute
dxgi
CreateDXGIFactory1
gdi32
GetDeviceCaps
DeleteObject
kernel32
WaitForSingleObjectEx
CloseHandle
GetCurrentThreadId
MultiByteToWideChar
DeleteCriticalSection
GetModuleHandleA
GetLocaleInfoA
LoadLibraryA
QueryPerformanceFrequency
GetProcAddress
GlobalLock
VerSetConditionMask
GetCurrentProcessId
GetModuleHandleW
QueryPerformanceCounter
GlobalUnlock
DeleteFileW
CopyFileW
FindFirstFileExW
FindClose
WideCharToMultiByte
GetStartupInfoW
GetCurrentProcess
TerminateProcess
OpenProcess
CreateToolhelp32Snapshot
Sleep
Process32NextW
Process32FirstW
SleepConditionVariableCS
WakeAllConditionVariable
InitializeConditionVariable
GetCurrentThread
LoadLibraryW
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
SetLastError
WaitForSingleObject
QueryFullProcessImageNameW
GetExitCodeProcess
GetFileAttributesW
GetACP
SetThreadAffinityMask
GetTimeFormatEx
GetProcessAffinityMask
SetEnvironmentVariableW
SetThreadPriority
LocalAlloc
CreateFileW
GetDateFormatEx
RtlLookupFunctionEntry
UnmapViewOfFile
FindFirstChangeNotificationW
CreateEventW
FormatMessageW
GetLogicalProcessorInformationEx
FileTimeToSystemTime
FindCloseChangeNotification
GlobalAlloc
GlobalFree
GetNativeSystemInfo
ResetEvent
FindNextChangeNotification
SetThreadGroupAffinity
InitializeCriticalSectionEx
CreateProcessW
CreateFileMappingW
MapViewOfFile
LoadLibraryExW
SetFileShortNameW
ExpandEnvironmentStringsW
GetModuleFileNameW
GetCurrentDirectoryW
FindNextFileW
MoveFileExW
SetPriorityClass
RemoveDirectoryW
GetProcessId
SetErrorMode
WaitForMultipleObjectsEx
SetCurrentDirectoryW
ExitProcess
OutputDebugStringW
MoveFileW
IsDebuggerPresent
CheckRemoteDebuggerPresent
ReadFile
TryEnterCriticalSection
FreeEnvironmentStringsW
lstrcatW
SetEnvironmentStringsW
GetFileSize
lstrcpyW
lstrcmpiA
GetEnvironmentStringsW
QueryDosDeviceW
WakeConditionVariable
K32GetProcessImageFileNameW
Module32FirstW
Module32NextW
CompareFileTime
GetBinaryTypeW
lstrcatA
SetFileAttributesW
GetFileAttributesExW
GetSystemDirectoryW
GetFileSizeEx
SystemTimeToFileTime
GetSystemTime
InitOnceExecuteOnce
InitializeSListHead
InitOnceBeginInitialize
InitOnceComplete
GetFileInformationByHandleEx
AreFileApisANSI
FindFirstFileW
CreateDirectoryW
GetLocaleInfoEx
FormatMessageA
GetLastError
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
SleepConditionVariableSRW
LocalFree
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
K32EmptyWorkingSet
ole32
CoTaskMemFree
CoUninitialize
RegisterDragDrop
PropVariantClear
CoInitializeEx
CoCreateInstance
StringFromGUID2
CoCreateGuid
RevokeDragDrop
ReleaseStgMedium
OleInitialize
CoTaskMemAlloc
shell32
SHAddToRecentDocs
SHFileOperationW
SHGetKnownFolderItem
SHGetKnownFolderPath
SetCurrentProcessExplicitAppUserModelID
ShellExecuteExW
ShellExecuteW
ord680
DragQueryFileW
ord6
Shell_NotifyIconW
user32
GetWindowPlacement
SetWindowPlacement
EnumWindows
FindWindowW
GetWindowLongW
GetWindowThreadProcessId
DefWindowProcW
GetKeyState
GetMessageExtraInfo
MonitorFromPoint
DestroyWindow
GetDC
SetWindowPos
MonitorFromWindow
SetWindowLongPtrW
EnumDisplayMonitors
CreateWindowExW
ScreenToClient
SendMessageW
SetWindowTextW
SetClassLongPtrW
CreatePopupMenu
WindowFromPoint
ShowWindow
GetCapture
GetMonitorInfoW
ClientToScreen
IsWindowVisible
TrackMouseEvent
GetKeyboardLayout
GetForegroundWindow
SetLayeredWindowAttributes
SetFocus
BringWindowToTop
LoadIconW
LoadCursorW
SetCapture
SetCursor
SetWindowLongW
GetClientRect
PostQuitMessage
IsWindowUnicode
ReleaseCapture
SetForegroundWindow
IsIconic
RegisterWindowMessageW
ReleaseDC
GetCursorPos
SetActiveWindow
FindWindowExW
PostMessageW
UnregisterDeviceNotification
RegisterDeviceNotificationW
SetTimer
PtInRect
EnumDisplaySettingsW
DisplayConfigGetDeviceInfo
SetClipboardData
DisplayConfigSetDeviceInfo
GetDisplayConfigBufferSizes
RegisterHotKey
QueryDisplayConfig
EmptyClipboard
CloseClipboard
DestroyIcon
OpenClipboard
GetSystemMetrics
MessageBoxW
UnregisterHotKey
GetPhysicalCursorPos
CharNextW
GetClipboardData
AppendMenuW
AllowSetForegroundWindow
ShowWindowAsync
IsZoomed
TranslateMessage
GetShellWindow
UpdateWindow
DestroyMenu
PeekMessageW
DispatchMessageW
GetWindowRect
UnregisterClassW
IsWindow
KillTimer
TrackPopupMenu
GetWindowLongPtrW
RealGetWindowClassW
IsChild
MsgWaitForMultipleObjects
RegisterClassExW
SetCursorPos
version
GetFileVersionInfoExW
VerQueryValueW
winmm
timeBeginPeriod
timeGetTime
timeEndPeriod
msvcp140
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
?_Random_device@std@@YAIXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?widen@?$ctype@_W@std@@QEBA_WD@Z
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??0_Locinfo@std@@QEAA@HPEBD@Z
?_Getname@_Locinfo@std@@QEBAPEBDXZ
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
?unshift@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
??Bios_base@std@@QEBA_NXZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?write@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@PEB_W_J@Z
?imbue@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
?_Init@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXXZ
?getloc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEBA?AVlocale@2@XZ
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEBA_WD@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?sgetc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?sbumpc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?snextc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAGXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Ipfx@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA_N_N@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?empty@locale@std@@SA?AV12@XZ
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@_N@Z
?_Makeloc@_Locimp@locale@std@@CAPEAV123@AEBV_Locinfo@3@HPEAV123@PEBV23@@Z
?_Xruntime_error@std@@YAXPEBD@Z
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
?tolower@?$ctype@D@std@@QEBADD@Z
?tolower@?$ctype@D@std@@QEBAPEBDPEADPEBD@Z
?toupper@?$ctype@D@std@@QEBADD@Z
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?is@?$ctype@_W@std@@QEBA_NF_W@Z
?tolower@?$ctype@_W@std@@QEBA_W_W@Z
?tolower@?$ctype@_W@std@@QEBAPEB_WPEA_WPEB_W@Z
?_Getcat@?$ctype@_W@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_N@Z
_Strcoll
_Wcsxfrm
?id@?$collate@D@std@@2V0locale@2@A
?id@?$collate@_W@std@@2V0locale@2@A
?id@?$ctype@D@std@@2V0locale@2@A
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$ctype@_W@std@@2V0locale@2@A
_Wcscoll
_Strxfrm
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Xinvalid_argument@std@@YAXPEBD@Z
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?uncaught_exceptions@std@@YAHXZ
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPEBD@Z
?id@?$numpunct@D@std@@2V0locale@2@A
?_Xlength_error@std@@YAXPEBD@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV12@XZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAA_JPEB_W_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@M@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QEAAG_W@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAAXH_N@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAPEAV12@PEA_W_J@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAHXZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAXAEBVlocale@2@@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?good@ios_base@std@@QEBA_NXZ
??1facet@locale@std@@MEAA@XZ
??0facet@locale@std@@IEAA@_K@Z
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UEAAXXZ
??Bid@locale@std@@QEAA_KXZ
?_Gettrue@_Locinfo@std@@QEBAPEBDXZ
?_Getfalse@_Locinfo@std@@QEBAPEBDXZ
?_Getlconv@_Locinfo@std@@QEBAPEBUlconv@@XZ
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ
??1_Locinfo@std@@QEAA@XZ
??0_Locinfo@std@@QEAA@PEBD@Z
?_Winerror_map@std@@YAHH@Z
?_Xbad_function_call@std@@YAXXZ
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?_Syserror_map@std@@YAPEBDH@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@PEBX@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
shlwapi
PathCombineW
PathIsURLW
PathFindFileNameW
ord487
wnsprintfW
PathAppendW
ord169
StrCmpIW
StrCatW
PathAddExtensionW
StrStrIA
PathRemoveBackslashW
PathFindExtensionW
PathAddBackslashW
PathRemoveExtensionW
PathRemoveBlanksW
PathStripPathW
PathIsNetworkPathW
StrStrIW
PathRemoveFileSpecW
PathFileExistsW
wininet
InternetCrackUrlW
InternetCloseHandle
InternetOpenW
InternetQueryDataAvailable
HttpOpenRequestW
InternetConnectW
InternetReadFile
HttpSendRequestW
InternetSetOptionW
HttpQueryInfoW
concrt140
?_Internal_throw_exception@_Concurrent_queue_base_v4@details@Concurrency@@IEBAXXZ
?_Internal_finish_clear@_Concurrent_queue_base_v4@details@Concurrency@@IEAAXXZ
?_Internal_empty@_Concurrent_queue_base_v4@details@Concurrency@@IEBA_NXZ
?_Internal_pop_if_present@_Concurrent_queue_base_v4@details@Concurrency@@IEAA_NPEAX@Z
??1_Concurrent_queue_base_v4@details@Concurrency@@MEAA@XZ
??0_Concurrent_queue_base_v4@details@Concurrency@@IEAA@_K@Z
?_Internal_move_push@_Concurrent_queue_base_v4@details@Concurrency@@IEAAXPEAX@Z
setupapi
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiCallClassInstaller
SetupDiGetClassDevsW
SetupDiSetClassInstallParamsW
secur32
GetUserNameExW
userenv
GetUserProfileDirectoryW
CreateEnvironmentBlock
DestroyEnvironmentBlock
gdiplus
GdiplusStartup
GdiplusShutdown
GdipCloneImage
GdipAlloc
GdipDisposeImage
GdipFree
GdipSaveImageToFile
GdipCreateBitmapFromHICON
powrprof
CallNtPowerInformation
imm32
ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow
vcruntime140_1
__CxxFrameHandler4
vcruntime140
memcmp
memchr
strchr
__std_type_info_compare
wcsstr
__std_terminate
wcsrchr
memcpy
_purecall
memset
_CxxThrowException
memmove
__C_specific_handler
__current_exception
__current_exception_context
__std_exception_copy
__std_exception_destroy
strstr
api-ms-win-crt-heap-l1-1-0
realloc
_aligned_free
free
_aligned_malloc
malloc
_set_new_mode
_callnewh
calloc
api-ms-win-crt-time-l1-1-0
_ftime64
_gmtime64_s
_time64
_localtime64_s
api-ms-win-crt-math-l1-1-0
_dclass
_ldclass
acosf
_fdclass
powf
modff
cosf
lroundf
fmodf
_ldsign
_fdsign
_dsign
sin
__setusermatherr
sinf
api-ms-win-crt-stdio-l1-1-0
rewind
_ftelli64
__stdio_common_vswprintf_s
fgetc
__stdio_common_vsprintf_s
fclose
__acrt_iob_func
fgetpos
setvbuf
__stdio_common_vsprintf
__stdio_common_vswprintf
__stdio_common_vsnprintf_s
ungetc
__p__commode
fsetpos
__stdio_common_vsnwprintf_s
fread
feof
fseek
_wfopen_s
_set_fmode
ferror
ftell
_get_stream_buffer_pointers
_wfopen
__stdio_common_vswscanf
__stdio_common_vfwscanf
fputws
__stdio_common_vsscanf
fwrite
_wsopen_s
_write
_close
fputc
fflush
_lseeki64
_fseeki64
fputwc
fgetwc
ungetwc
api-ms-win-crt-runtime-l1-1-0
_errno
_invalid_parameter_noinfo_noreturn
_register_thread_local_exe_atexit_callback
_c_exit
_exit
exit
_initterm_e
_initterm
_get_wide_winmain_command_line
_initialize_wide_environment
_configure_wide_argv
_set_app_type
_seh_filter_exe
terminate
_invalid_parameter_noinfo
_cexit
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_beginthreadex
abort
api-ms-win-crt-convert-l1-1-0
strtoull
_wtoi
atoi
strtoll
strtod
strtol
wcstol
api-ms-win-crt-filesystem-l1-1-0
_wstat64
_wchdir
_wunlink
_unlock_file
_lock_file
api-ms-win-crt-locale-l1-1-0
___lc_codepage_func
localeconv
_configthreadlocale
api-ms-win-crt-string-l1-1-0
strncpy_s
_wcsdup
wcstok
strcmp
strncmp
strncpy
_wcsicmp
toupper
isalnum
isspace
wcsncpy
_wcsnicmp
iswalpha
wcsncpy_s
towlower
iswspace
wcscpy_s
_stricmp
api-ms-win-crt-environment-l1-1-0
_wgetenv
api-ms-win-crt-utility-l1-1-0
qsort
rand
bsearch
Sections
.text Size: 1.9MB - Virtual size: 1.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 703KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 65KB - Virtual size: 64KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.msvcjmc Size: 11KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 278KB - Virtual size: 278KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ