q:\hydra\release\HydraRemoteClient.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
81f8e170e35e3d867d98f93518d8c6b59b4b06c98e94557894618ecd5d5c2ac2.exe
Resource
win7-20240508-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
81f8e170e35e3d867d98f93518d8c6b59b4b06c98e94557894618ecd5d5c2ac2.exe
Resource
win10v2004-20240426-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
81f8e170e35e3d867d98f93518d8c6b59b4b06c98e94557894618ecd5d5c2ac2
-
Size
284KB
-
MD5
d26d04edc349af4644bf9dd3583f8c64
-
SHA1
411082b4f33e5b3751fe3fedcfb47dfe67cf7eed
-
SHA256
81f8e170e35e3d867d98f93518d8c6b59b4b06c98e94557894618ecd5d5c2ac2
-
SHA512
9b9380e24a51c68d1b3c316faf7aaed03005a81939d97b5ff0c62156bb225963af1693285e7dedf4200015e577c073e93d3fea9a32b1654fdaf4e92271ac51a4
-
SSDEEP
6144:aNm5EvX5RgaHhhFLfhLL2EKgqCaO/4EXXXV:aNm5G5RgyFL52HghNhXXXV
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 81f8e170e35e3d867d98f93518d8c6b59b4b06c98e94557894618ecd5d5c2ac2
Files
-
81f8e170e35e3d867d98f93518d8c6b59b4b06c98e94557894618ecd5d5c2ac2.exe windows:4 windows x86 arch:x86
a2feb4994f9f64503c1eddac1ea5d042
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mfc80
ord5235
ord310
ord5960
ord3337
ord1600
ord4282
ord3182
ord4262
ord2248
ord5203
ord1401
ord354
ord762
ord5912
ord605
ord6724
ord1551
ord1670
ord1671
ord4580
ord4890
ord4735
ord4212
ord5182
ord3333
ord4481
ord2838
ord3683
ord5566
ord5213
ord5230
ord4568
ord3948
ord566
ord5226
ord757
ord5224
ord1892
ord2931
ord3641
ord1920
ord3832
ord5382
ord6219
ord5102
ord1010
ord3830
ord3806
ord5583
ord1126
ord2018
ord1122
ord2063
ord1054
ord4326
ord5975
ord6276
ord3801
ord6278
ord4014
ord6090
ord4038
ord3945
ord1557
ord4299
ord2424
ord2425
ord2992
ord5356
ord943
ord4952
ord2939
ord4135
ord4309
ord5012
ord5009
ord2615
ord1161
ord2246
ord5165
ord4277
ord3466
ord1306
ord2173
ord5833
ord4265
ord3648
ord4250
ord5148
ord3441
ord3204
ord501
ord2367
ord709
ord2264
ord1934
ord3210
ord330
ord589
ord3596
ord2372
ord4951
ord1280
ord3163
ord3109
ord6305
ord5641
ord3287
ord2942
ord4123
ord4001
ord3244
ord911
ord1283
ord347
ord602
ord6144
ord1279
ord5637
ord5642
ord5731
ord3350
ord6037
ord3161
ord907
ord5985
ord5986
ord5446
ord1482
ord1955
ord4100
ord1728
ord2094
ord2271
ord5419
ord783
ord2469
ord3997
ord1486
ord5233
ord5175
ord923
ord928
ord932
ord930
ord934
ord3684
ord2390
ord2410
ord2394
ord2400
ord2398
ord2396
ord2413
ord760
ord2408
ord572
ord2392
ord2415
ord2403
ord2385
ord1187
ord784
ord2387
ord1191
ord6006
ord2405
ord1532
ord2178
ord2172
ord4353
ord1522
ord6279
ord3802
ord6277
ord3345
ord3110
ord4967
ord1362
ord5715
ord1207
ord781
ord1964
ord1656
ord2328
ord1655
ord4125
ord5200
ord1903
ord6725
ord2537
ord5915
ord2731
ord1620
ord2835
ord1617
ord4307
ord3946
ord2714
ord1402
ord2862
ord304
ord4244
ord2540
ord5152
ord2646
ord1908
ord2533
ord5073
ord1123
ord3718
ord2322
ord1084
ord4185
ord3719
ord745
ord5214
ord3709
ord557
ord2644
ord3949
ord4486
ord4261
ord1185
ord6275
ord1599
ord6306
ord3403
ord2020
ord4722
ord578
ord1913
ord764
ord300
ord3758
ord6063
msvcr80
atoi
div
_setmbcp
memset
memcpy
_controlfp_s
_invoke_watson
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
__CxxFrameHandler3
memmove
_time64
strncpy_s
free
strcpy_s
calloc
strcat_s
memmove_s
_beginthread
strchr
sprintf_s
malloc
strtoul
realloc
kernel32
CreateThread
MapViewOfFile
CreateMutexA
TerminateThread
OpenMutexA
WriteFile
UnmapViewOfFile
ReleaseMutex
GetSystemTime
GlobalFree
GlobalUnlock
GlobalLock
HeapAlloc
QueryPerformanceFrequency
HeapFree
GetProcessHeap
CreateFileMappingA
GlobalAlloc
GetComputerNameA
lstrcpyA
CloseHandle
GetVersionExA
GetThreadLocale
GetACP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
GetLastError
InterlockedExchange
MultiByteToWideChar
Sleep
LeaveCriticalSection
DeleteCriticalSection
EnterCriticalSection
ResetEvent
InitializeCriticalSection
WaitForSingleObject
FreeLibrary
SetEvent
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
CreateEventA
GetLocaleInfoA
user32
ClientToScreen
SetClipboardData
CloseClipboard
RegisterWindowMessageA
IsWindowVisible
GetDC
GetSysColor
SetRect
ReleaseDC
LoadIconA
SendMessageA
UpdateWindow
LoadCursorA
KillTimer
IsWindow
OpenClipboard
AppendMenuA
GetClientRect
CreatePopupMenu
GetSysColorBrush
GetParent
SetCursor
ReleaseCapture
GetCapture
InvalidateRect
SetCapture
FillRect
SetTimer
EnableWindow
EmptyClipboard
gdi32
GetStockObject
CreatePen
CreateCompatibleDC
BitBlt
CreateCompatibleBitmap
advapi32
GetUserNameA
AllocateAndInitializeSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
FreeSid
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
InitializeSecurityDescriptor
comctl32
InitCommonControlsEx
oleaut32
SysAllocString
SysAllocStringLen
VariantTimeToSystemTime
SystemTimeToVariantTime
SysFreeString
toolkitpro1340vc80
?DrawControlToolBarParent@CXTPPaintManager@@UAE?AVCSize@@PAVCDC@@PAVCXTPControl@@H@Z
?DrawControlCheckBoxMark@CXTPOfficeTheme@@MAE?AVCSize@@PAVCDC@@VCRect@@HHHHH@Z
?FillPopupLabelEntry@CXTPOfficeTheme@@MAEXPAVCDC@@VCRect@@@Z
?DrawSplitButtonFrame@CXTPOfficeTheme@@MAEXPAVCDC@@PAVCXTPControl@@VCRect@@@Z
?DrawControlRadioButtonMark@CXTPOfficeTheme@@MAE?AVCSize@@PAVCDC@@VCRect@@HHHHH@Z
?HasFloatingBarGradientEntry@CXTPOffice2003Theme@@MAEHPAVCXTPCommandBar@@@Z
?DrawControlComboBox@CXTPOfficeTheme@@MAE?AVCSize@@PAVCDC@@PAVCXTPControlComboBox@@H@Z
?DrawPopupBarGripper@CXTPOffice2003Theme@@MAEXPAVCDC@@HHHHH@Z
?RefreshMetrics@CXTPOffice2003Theme@@MAEXXZ
?GetControlEditBackColor@CXTPPaintManager@@UAEKPAVCXTPControl@@@Z
?BaseTheme@CXTPOffice2003Theme@@MAE?AW4XTPPaintTheme@@XZ
?DrawControlEdit@CXTPOfficeTheme@@MAE?AVCSize@@PAVCDC@@PAVCXTPControlEdit@@H@Z
?GetControlFont@CXTPPaintManager@@UAEPAVCFont@@PAVCXTPControl@@@Z
?DrawListBoxControl@CXTPOfficeTheme@@UAE?AVCSize@@PAVCDC@@PAVCXTPControl@@VCRect@@HHPAVCXTPCommandBars@@@Z
?GetCommandBarFont@CXTPPaintManager@@UAEPAVCFont@@PAVCXTPCommandBar@@@Z
?FillCommandBarEntry@CXTPOffice2003Theme@@MAEXPAVCDC@@PAVCXTPCommandBar@@@Z
?GetControlTextOrientation@CXTPPaintManager@@UAE?AW4XTPBarTextOrientation@@PAVCXTPControl@@@Z
??1CXTPOffice2003Theme@@UAE@XZ
?DrawControlEntry@CXTPPaintManager@@UAEXPAVCDC@@PAVCXTPControl@@@Z
?UpdateFonts@CXTPPaintManager@@UAEXXZ
?GetControlTextColor@CXTPPaintManager@@UAEKPAVCXTPControl@@@Z
?UpdateColors@CXTPPaintManager@@UAEXXZ
??0CXTPOffice2003Theme@@QAE@XZ
?GetRectangleTextColor@CXTPOfficeTheme@@UAEKHHHHHW4XTPBarType@@W4XTPBarPosition@@@Z
?UseOfficeFont@CXTPPaintManager@@QAEX_N@Z
?DrawPopupBarCheckMark@CXTPPaintManager@@UAEXPAVCDC@@VCRect@@HK@Z
?DrawRectangle@CXTPOffice2003Theme@@MAEXPAVCDC@@VCRect@@HHHHHW4XTPBarType@@W4XTPBarPosition@@@Z
?DrawPopupBarRadioMark@CXTPPaintManager@@UAEXPAVCDC@@VCRect@@HK@Z
?DrawCommandBarGripper@CXTPOffice2003Theme@@MAE?AVCSize@@PAVCDC@@PAVCXTPCommandBar@@H@Z
?DrawComboExpandMark@CXTPPaintManager@@UAEXPAVCDC@@VCRect@@K@Z
?DrawCommandBarSeparator@CXTPOffice2003Theme@@MAE?AVCSize@@PAVCDC@@PAVCXTPCommandBar@@PAVCXTPControl@@H@Z
?DrawControlMDIButton@CXTPPaintManager@@UAEXPAVCDC@@PAVCXTPControlButton@@@Z
?AdjustExcludeRect@CXTPOfficeTheme@@UAEXAAVCRect@@PAVCXTPControl@@H@Z
?DrawDropDownGlyph@CXTPPaintManager@@UAEXPAVCDC@@PAVCXTPControl@@VCPoint@@HHHH@Z
?DrawStatusBarPaneEntry@CXTPPaintManager@@UAEXPAVCDC@@VCRect@@PAVCXTPStatusBarPane@@@Z
?Animate@CXTPPaintManager@@UAEXPAVCDC@@0VCRect@@W4XTPAnimationType@@@Z
?DrawStatusBarButtonFace@CXTPPaintManager@@UAEXPAVCDC@@VCRect@@PAVCXTPStatusBarPane@@@Z
?AnimateExpanding@CXTPPaintManager@@UAEXPAVCXTPCommandBar@@PAVCDC@@1H@Z
?DrawStatusBarSwitchPane@CXTPPaintManager@@UAEHPAVCDC@@VCRect@@PAVCXTPStatusBarSwitchPane@@@Z
?UpdateRTLCaption@CXTPPaintManager@@UAEXAAV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@@Z
?DrawStatusBarPaneBorder@CXTPOffice2003Theme@@MAEXPAVCDC@@VCRect@@PAVCXTPStatusBarPane@@H@Z
?GetPopupBarGripperWidth@CXTPPaintManager@@UAEHPAVCXTPCommandBar@@@Z
?DrawStatusBarPaneSeparator@CXTPOfficeTheme@@MAEXPAVCDC@@VCRect@@PAVCXTPStatusBarPane@@@Z
?GetGalleryPaintManager@CXTPPaintManager@@UBEPAVCXTPControlGalleryPaintManager@@XZ
?DrawStatusBarGripper@CXTPOffice2003Theme@@MAEXPAVCDC@@VCRect@@@Z
?FillDockBar@CXTPOffice2003Theme@@MAEXPAVCDC@@PAVCXTPDockBar@@@Z
?GetSliderPaintManager@CXTPPaintManager@@UBEPAVCXTPSliderPaintManager@@XZ
?FillMessageBar@CXTPOffice2003Theme@@MAEXPAVCDC@@PAVCXTPMessageBar@@@Z
?GetProgressPaintManager@CXTPPaintManager@@UBEPAVCXTPProgressPaintManager@@XZ
??1CXTPCustomizeOptionsPage@@UAE@XZ
?OnWndMsg@?$CXTPCommandBarsSiteBase@VCFrameWnd@@@@MAEHIIJPAJ@Z
??0CXTPCustomizeOptionsPage@@QAE@PAVCXTPCustomizeSheet@@@Z
?DrawControlPopupGlyph@CXTPOfficeTheme@@MAEXPAVCDC@@PAVCXTPControl@@@Z
?AddCategories@CXTPCustomizeKeyboardPage@@QAEHIH@Z
?DrawControlPopupParent@CXTPOfficeTheme@@MAE?AVCSize@@PAVCDC@@PAVCXTPControl@@H@Z
??1CXTPFrameWnd@@UAE@XZ
?AddPage@CXTPCustomizeSheet@@QAEXPAVCPropertyPage@@@Z
?PreTranslateMessage@?$CXTPCommandBarsSiteBase@VCFrameWnd@@@@MAEHPAUtagMSG@@@Z
??1CXTPCustomizeKeyboardPage@@UAE@XZ
??0CXTPFrameWnd@@QAE@XZ
??0CXTPCustomizeKeyboardPage@@QAE@PAVCXTPCustomizeSheet@@@Z
?LoadCommandBars@?$CXTPCommandBarsSiteBase@VCFrameWnd@@@@UAEXPBDH@Z
??1CXTPCustomizeSheet@@UAE@XZ
??0CXTPCustomizeSheet@@QAE@PAVCXTPCommandBars@@I@Z
?SaveCommandBars@?$CXTPCommandBarsSiteBase@VCFrameWnd@@@@UAEXPBD@Z
?GetShortcutManager@CXTPCommandBars@@QBEPAVCXTPShortcutManager@@XZ
?SetAccelerators@CXTPShortcutManager@@QAEXI@Z
?InitCommandBars@?$CXTPCommandBarsSiteBase@VCFrameWnd@@@@UAEHPAUCRuntimeClass@@@Z
?HideCommands@CXTPCommandBars@@QAEXPBIH@Z
?SetTheme@CXTPPaintManager@@SAXW4XTPPaintTheme@@@Z
?Add@CXTPCommandBars@@QAEPAVCXTPToolBar@@PBDW4XTPBarPosition@@PAUCRuntimeClass@@@Z
?SetMenu@CXTPCommandBars@@QAEPAVCXTPMenuBar@@PBDI@Z
?OnSetPreviewMode@?$CXTPFrameWndBase@VCFrameWnd@@@@UAEXHPAUCPrintPreviewState@@@Z
?MinimizeToTray@CXTTrayIcon@@QAEXPAVCWnd@@@Z
?GetThisClass@CXTPCommandBars@@SGPAUCRuntimeClass@@XZ
?MaximizeFromTray@CXTTrayIcon@@QAEXPAVCWnd@@@Z
?SetIndicators@CXTPStatusBar@@QAEHPBIH@Z
?DoModal@CXTPCustomizeSheet@@UAEHXZ
?Create@CXTPStatusBar@@QAEHPAVCWnd@@KI@Z
?InsertNewMenuCategory@CXTPCustomizeCommandsPage@@QAEXIH@Z
?InsertBuiltInMenus@CXTPCustomizeCommandsPage@@QAEHIIH@Z
?LoadFrame@?$CXTPFrameWndBase@VCFrameWnd@@@@UAEHIKPAVCWnd@@PAUCCreateContext@@@Z
?InsertAllCommandsCategory@CXTPCustomizeCommandsPage@@QAEXIHH@Z
?AddCategories@CXTPCustomizeCommandsPage@@QAEHIH@Z
?OnTrayNotification@CXTTrayIcon@@MAEJIJ@Z
?SetTimer@CXTTrayIcon@@UAEXII@Z
?ShowBalloonTip@CXTTrayIcon@@QAE_NPBD0KI@Z
?SetIcon@CXTTrayIcon@@QAE_NI@Z
?KillTimer@CXTTrayIcon@@UAEXXZ
?SetTrayIcon@CXTTrayIcon@@UAEXIK@Z
?SetTooltip@CXTTrayIcon@@UAEXPBD@Z
??1CXTTrayIcon@@UAE@XZ
?InstallIconPending@CXTTrayIcon@@UAEXXZ
??0CXTTrayIcon@@QAE@XZ
?SetAnimationIcons@CXTTrayIcon@@UAEXPBIPBV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@H@Z
?SetAnimationIcons@CXTTrayIcon@@UAE_NPBIHPBV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@@Z
?StartAnimation@CXTTrayIcon@@UAEXI@Z
?StopAnimation@CXTTrayIcon@@UAEXXZ
?Create@CXTTrayIcon@@UAE_NPBDPAVCWnd@@III_N@Z
?Create@CXTTrayIcon@@EAEHPBD0KABUtagRECT@@PAVCWnd@@IPAUCCreateContext@@@Z
?Create@CXTTrayIcon@@UAE_NPBDKPAVCWnd@@I@Z
?GetMessageMap@CXTTrayIcon@@MBEPBUAFX_MSGMAP@@XZ
?WindowProc@CXTTrayIcon@@MAEJIIJ@Z
?DrawSplitButtonPopup@CXTPOfficeTheme@@MAEXPAVCDC@@PAVCXTPControl@@@Z
?GetSplitButtonCommandRect@CXTPPaintManager@@UAE?AVCRect@@PAVCXTPControl@@@Z
??1CXTPStatusBar@@UAE@XZ
?SetCommandBarRegion@CXTPPaintManager@@UAEXPAVCXTPCommandBar@@@Z
?DrawKeyboardTip@CXTPPaintManager@@UAEXPAVCDC@@PAVCXTPCommandBarKeyboardTip@@H@Z
?DrawPopupResizeGripper@CXTPOfficeTheme@@UAEXPAVCDC@@VCRect@@H@Z
?IsFlatToolBar@CXTPPaintManager@@MAEHPAVCXTPCommandBar@@@Z
?GetRuntimeClass@CXTPOffice2003Theme@@UBEPAUCRuntimeClass@@XZ
?DrawImage@CXTPOfficeTheme@@MAEXPAVCDC@@VCPoint@@VCSize@@PAVCXTPImageManagerIcon@@HHHHHH@Z
?GetPopupBarImageSize@CXTPPaintManager@@MAE?AVCSize@@PAVCXTPCommandBar@@@Z
?DrawDialogBarGripper@CXTPOffice2003Theme@@MAE?AVCSize@@PAVCDC@@PAVCXTPDialogBar@@H@Z
?DrawPopupBarText@CXTPPaintManager@@MAEXPAVCDC@@ABV?$CStringT@DV?$StrTraitMFC_DLL@DV?$ChTraitsCRT@D@ATL@@@@@ATL@@AAVCRect@@IHHH@Z
?DrawTearOffGripper@CXTPOffice2003Theme@@MAE?AVCSize@@PAVCDC@@VCRect@@HH@Z
?FillWorkspace@CXTPPaintManager@@UAEXPAVCDC@@VCRect@@1@Z
??0CXTPStatusBar@@QAE@XZ
?RemoveAnimationIcons@CXTTrayIcon@@UAEXXZ
?GetRibbonPaintManager@CXTPPaintManager@@UAEPAVCXTPRibbonPaintManager@@XZ
?DrawSpecialControl@CXTPOffice2003Theme@@MAE?AVCSize@@PAVCDC@@W4XTPSpecialControl@@PAVCXTPControl@@PAVCXTPCommandBar@@HPAX@Z
?GetFramePaintManager@CXTPPaintManager@@UAEPAVCXTPFramePaintManager@@XZ
?FillStatusBar@CXTPPaintManager@@UAEXPAVCDC@@PAVCXTPStatusBar@@@Z
?DrawMessageBarButton@CXTPPaintManager@@UAEXPAVCDC@@PAVCXTPMessageBarButton@@@Z
?GetCommandBarBorders@CXTPOffice2003Theme@@MAE?AVCRect@@PAVCXTPCommandBar@@@Z
ws2_32
shutdown
getaddrinfo
getnameinfo
bind
htons
closesocket
getservbyname
htonl
socket
inet_ntoa
connect
setsockopt
ntohs
recv
getservbyport
gethostbyaddr
WSAStartup
WSASetLastError
inet_addr
gethostbyname
send
WSAGetLastError
freeaddrinfo
recvfrom
xerces-c_2_7
??0MemBufInputSource@xercesc_2_7@@QAE@QBEIQB_W_NQAVMemoryManager@1@@Z
??1MemBufInputSource@xercesc_2_7@@UAE@XZ
??3XMemory@xercesc_2_7@@SAXPAX@Z
?makeStream@MemBufInputSource@xercesc_2_7@@UBEPAVBinInputStream@2@XZ
?setIssueFatalErrorIfNotFound@InputSource@xercesc_2_7@@UAEX_N@Z
?Terminate@XMLPlatformUtils@xercesc_2_7@@SAXXZ
?setSystemId@InputSource@xercesc_2_7@@UAEXQB_W@Z
?setPublicId@InputSource@xercesc_2_7@@UAEXQB_W@Z
?setEncoding@InputSource@xercesc_2_7@@UAEXQB_W@Z
?fgXercescDefaultLocale@XMLUni@xercesc_2_7@@2QBDB
?getIssueFatalErrorIfNotFound@InputSource@xercesc_2_7@@UBE_NXZ
?Initialize@XMLPlatformUtils@xercesc_2_7@@SAXQBD0QAVPanicHandler@2@QAVMemoryManager@2@_N@Z
?getSystemId@InputSource@xercesc_2_7@@UBEPB_WXZ
?reset@AbstractDOMParser@xercesc_2_7@@QAEXXZ
??1XercesDOMParser@xercesc_2_7@@UAE@XZ
??2XMemory@xercesc_2_7@@SAPAXI@Z
?getDocument@AbstractDOMParser@xercesc_2_7@@QAEPAVDOMDocument@2@XZ
?loadDOMExceptionMsg@DOMImplementation@xercesc_2_7@@SA_NW4ExceptionCode@DOMException@2@QA_WI@Z
?release@XMLString@xercesc_2_7@@SAXPAPA_W@Z
?transcode@XMLString@xercesc_2_7@@SAPA_WQBD@Z
?release@XMLString@xercesc_2_7@@SAXPAPAD@Z
?transcode@XMLString@xercesc_2_7@@SAPADQB_W@Z
?parse@AbstractDOMParser@xercesc_2_7@@QAEXABVInputSource@2@@Z
?getPublicId@InputSource@xercesc_2_7@@UBEPB_WXZ
?fgMemoryManager@XMLPlatformUtils@xercesc_2_7@@2PAVMemoryManager@2@A
?getEncoding@InputSource@xercesc_2_7@@UBEPB_WXZ
??0XercesDOMParser@xercesc_2_7@@QAE@QAVXMLValidator@1@QAVMemoryManager@1@QAVXMLGrammarPool@1@@Z
ole32
CLSIDFromString
StringFromCLSID
CoTaskMemFree
CoCreateGuid
secur32
GetUserNameExA
Sections
.text Size: 108KB - Virtual size: 105KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 52KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 112KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ