d:\work\MRP\output\win32\unlimited\PartAssist.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
88873e67b18c9a4ad5f77dfa05a779d9817686a308715c00f48dcd7e29069e05.exe
Resource
win7-20240508-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
88873e67b18c9a4ad5f77dfa05a779d9817686a308715c00f48dcd7e29069e05.exe
Resource
win10v2004-20240426-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
88873e67b18c9a4ad5f77dfa05a779d9817686a308715c00f48dcd7e29069e05
-
Size
15.8MB
-
MD5
55a4649073b2fb0899db03349b50aedb
-
SHA1
eee8205f2c28ce526e836e6266de31f07411bdf4
-
SHA256
88873e67b18c9a4ad5f77dfa05a779d9817686a308715c00f48dcd7e29069e05
-
SHA512
fa91b5cfafc4a0d3dea9b73bff8eee02bd97df90278b28c74c3e0b456ac74c87a1c892c4a9fe7794019c227885efd1c61efee5c07d02e56778b50978ed98654e
-
SSDEEP
98304:2BX3kx5hW5x547kMUORdz4ehx6Xw+qLlFQBMb+Fjydn/9G/s8rtio3ywWqQ9t9oM:c3kx5co79IXhGL6qn/9P8rtixqQ9t9YE
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 88873e67b18c9a4ad5f77dfa05a779d9817686a308715c00f48dcd7e29069e05
Files
-
88873e67b18c9a4ad5f77dfa05a779d9817686a308715c00f48dcd7e29069e05.exe windows:4 windows x86 arch:x86
c86e613173e2c30a9e1227c02efae753
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
ntdll
_allshl
_allshr
_aullshr
qsort
memmove
strrchr
atoi
wcsrchr
sprintf
mbstowcs
wcsstr
_wcsupr
strstr
wcschr
sscanf
_wcsnicmp
_wtoi
wcsncpy
NtQueryInformationFile
NtQuerySystemTime
NtReadFile
NtWriteFile
NtDeviceIoControlFile
NtFsControlFile
NtCreateFile
RtlAnsiStringToUnicodeString
NtClose
RtlTimeToSecondsSince1970
_itoa
strpbrk
ZwUnloadKey
_strlwr
ZwOpenFile
ZwSetInformationFile
RtlNtStatusToDosError
_aullrem
wcsncmp
_aulldiv
_allrem
vsprintf
ZwOpenDirectoryObject
ZwQueryDirectoryObject
ZwOpenSymbolicLinkObject
ZwQuerySymbolicLinkObject
NtUnloadDriver
NtLoadDriver
_allmul
ZwQueryVolumeInformationFile
memcpy
_alldiv
_chkstk
ZwClose
memset
wcstoul
strncmp
_itow
_wcsicmp
strncat
_vsnprintf
_wcslwr
ZwCreateFile
RtlInitUnicodeString
_atoi64
strchr
_strnicmp
strncpy
_wtoi64
wcstombs
scanpartition
DeleteDiskList
DeletePartList
SearchCancel
SearchLosePartition
GetDiskCurPartList
InitDiskList
pe
GetObjGATrackingData
GetPOLoigcObject
ClsWinrePath
IsSupportMakePE
GetUSBBootLogicObj
GetObjGAHelp
wimmgr
Del_File
GetToolNeedSpace
PackToolToRecovery
ssdsecurityerase
ord1
exfat
ord2
upgradeshow
PAShowRegisterDlg
PAGetGlobalDataObject
diskinfo
CreateDiskInfo
libcrypto-1_1
ERR_get_error
ERR_error_string
libssl-1_1
SSL_connect
SSL_write
SSL_read
SSL_shutdown
SSL_free
SSL_CTX_free
SSL_get_error
OPENSSL_init_ssl
TLS_client_method
SSL_CTX_new
SSL_new
SSL_set_fd
sysclear
createObjSysClear
regclear
createObjRegClear
scanmft
createObjScanMFT
encrypt
BRCrc32
mfc80u
ord765
ord1600
ord6726
ord5156
ord5137
ord6099
ord1619
ord1620
ord3913
ord763
ord1049
ord3163
ord1605
ord3902
ord4475
ord2936
ord900
ord1604
ord1603
ord1941
ord2049
ord3903
ord5943
ord3900
ord3108
ord5940
ord5567
ord3393
ord2712
ord4108
ord4111
ord6062
ord3754
ord2647
ord5798
ord4118
ord6060
ord6085
ord3982
ord2154
ord5827
ord5828
ord2137
ord1303
ord1311
ord5311
ord6715
ord1718
ord6716
ord454
ord686
ord2648
ord502
ord3281
ord5637
ord4117
ord3995
ord4026
ord3990
ord5558
ord5524
ord2255
ord266
ord265
ord777
ord3395
ord3570
ord3678
ord6161
ord4078
ord5484
ord6061
ord3983
ord860
ord1182
ord6140
ord1270
ord1957
ord347
ord602
ord1176
ord3155
ord5638
ord6033
ord385
ord5723
ord630
ord1058
ord2012
ord3082
ord1178
ord6133
ord1476
ord2076
ord3156
ord4010
ord6089
ord6751
ord754
ord416
ord651
ord6749
ord2364
ord1555
ord2981
ord3877
ord3322
ord3590
ord2261
ord1634
ord1572
ord3286
ord715
ord326
ord5636
ord4100
ord5485
ord772
ord894
ord5633
ord2121
ord1920
ord5884
ord604
ord2709
ord1609
ord1355
ord4573
ord4193
ord4120
ord4664
ord4357
ord3634
ord3930
ord6075
ord2793
ord6083
ord3785
ord6253
ord2139
ord4361
ord4494
ord5511
ord6147
ord3058
ord2674
ord2723
ord6157
ord2257
ord1384
ord985
ord5388
ord3706
ord3698
ord2812
ord3894
ord1975
ord2632
ord3434
ord350
ord1039
ord1416
ord4259
ord4271
ord1297
ord2164
ord5144
ord3939
ord4013
ord2418
ord2419
ord578
ord2932
ord2986
ord5352
ord5855
ord940
ord304
ord4898
ord2933
ord4129
ord310
ord4303
ord5006
ord5003
ord2609
ord5161
ord1904
ord395
ord2237
ord635
ord3201
ord2463
ord1548
ord5201
ord2313
ord3070
ord5973
ord4921
ord736
ord1637
ord1579
ord3306
ord5965
ord3922
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord3249
ord547
ord956
ord4461
ord4463
ord3677
ord334
ord593
ord5113
ord5221
ord566
ord757
ord1096
ord3824
ord1121
ord4025
ord6293
ord5327
ord3176
ord2239
ord421
ord3327
ord655
ord5105
ord2832
ord1434
ord5562
ord384
ord5209
ord629
ord5226
ord5083
ord4562
ord6284
ord3942
ord1430
ord5222
ord5220
ord2925
ord1911
ord3826
ord5378
ord6215
ord5096
ord6282
ord1007
ord1172
ord3800
ord5316
ord5579
ord2009
ord5152
ord4699
ord2042
ord2007
ord6234
ord2615
ord2608
ord4560
ord4451
ord4476
ord6039
ord5930
ord2762
ord3444
ord3034
ord4216
ord1913
ord3639
ord4733
ord4846
ord4251
ord5491
ord2736
ord368
ord5408
ord616
ord1370
ord5588
ord1352
ord5147
ord4855
ord4858
ord3585
ord4771
ord4585
ord4175
ord4166
ord3676
ord565
ord756
ord5170
ord567
ord758
ord4743
ord3914
ord1403
ord4882
ord2362
ord1719
ord4686
ord2151
ord563
ord1006
ord3417
ord4109
ord3174
ord5715
ord5917
ord5397
ord5410
ord5584
ord5519
ord5643
ord6053
ord4155
ord6050
ord5604
ord6056
ord5607
ord2521
ord6058
ord3875
ord1396
ord1765
ord1921
ord2489
ord2867
ord2877
ord2876
ord3873
ord5869
ord5742
ord2788
ord3869
ord2083
ord4232
ord2952
ord3224
ord658
ord2656
ord287
ord5398
ord2460
ord3050
ord5711
ord6002
ord2132
ord3596
ord3627
ord6077
ord2066
ord1953
ord5157
ord5198
ord6265
ord5141
ord1343
ord2030
ord2072
ord1903
ord3981
ord5351
ord3923
ord4190
ord6010
ord3426
ord336
ord595
ord3500
ord2784
ord3631
ord2068
ord2268
ord3289
ord6001
ord1156
ord3857
ord3103
ord6301
ord5710
ord4290
ord3946
ord3079
ord3499
ord4902
ord530
ord722
ord1334
ord5493
ord5058
ord5909
ord1338
ord4980
ord1543
ord3636
ord3436
ord357
ord606
ord5051
ord3561
ord544
ord732
ord4754
ord3666
ord4300
ord5984
ord6087
ord5616
ord4929
ord3331
ord3415
ord753
ord4275
ord4715
ord1581
ord1727
ord1735
ord4391
ord5357
ord4658
ord4600
ord1725
ord1937
ord6100
ord6098
ord1927
ord3569
ord1912
ord2423
ord5700
ord552
ord1358
ord740
ord944
ord2008
ord2043
ord3668
ord2044
ord3791
ord2826
ord2791
ord6142
ord4930
ord6138
ord4632
ord2067
ord6006
ord6104
ord6106
ord3296
ord4235
ord1341
ord4984
ord1344
ord4191
ord1583
ord1639
ord2087
ord3571
ord553
ord742
ord3669
ord3073
ord5168
ord3670
ord4237
ord1585
ord1641
ord3577
ord2089
ord748
ord3471
ord3644
ord6115
ord3448
ord965
ord4057
ord862
ord2368
ord660
ord5462
ord3503
ord1000
ord3290
ord3497
ord5477
ord723
msvcr80
printf
wcscpy_s
swscanf_s
rand
free
memcpy_s
malloc
_resetstkoflw
_localtime64_s
_time64
_wtof
wprintf
fopen
fwrite
ftell
fseek
fclose
fread
fopen_s
sprintf_s
strcat_s
strcpy_s
swscanf
_beginthreadex
_invalid_parameter_noinfo
memmove_s
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABV01@@Z
swprintf_s
??0exception@std@@QAE@ABQBD@Z
wcscat_s
??0exception@std@@QAE@XZ
_vswprintf
_swprintf
_CIcos
rename
_wfdopen
_mktime64
_open_osfhandle
_vsnwprintf
_wfreopen
__iob_func
setlocale
system
exit
_purecall
vswprintf_s
calloc
_wfopen
fprintf
_vscprintf
_vscwprintf
fgets
feof
realloc
_vswprintf_c_l
_localtime64
_endthread
__CxxFrameHandler3
wcsncpy_s
_CxxThrowException
_wassert
isdigit
abort
ceil
fflush
toupper
_endthreadex
memcmp
_isatty
_fileno
fputs
fputc
wcslen
fgetc
sin
cos
_beginthread
_msize
perror
_fstat64i32
strerror
_errno
isprint
vfprintf
raise
_stricmp
strtol
strftime
tolower
_CIpow
_amsg_exit
__wgetmainargs
_cexit
_exit
_strdup
_read
_close
_open
_lseek
_write
_gmtime64
_wgetenv_s
_wfopen_s
_XcptFilter
_wcmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
srand
_CIsin
kernel32
SetFileTime
SystemTimeToFileTime
SetFileAttributesW
MoveFileW
GetDiskFreeSpaceW
GetFileSizeEx
LocalFree
FormatMessageW
SetFileAttributesA
SetThreadExecutionState
LockResource
GetThreadContext
ReleaseMutex
CopyFileA
GetConsoleWindow
SetConsoleTitleW
FreeConsole
GetStdHandle
AttachConsole
GetLocalTime
CreateThread
CopyFileW
GetWindowsDirectoryW
OutputDebugStringA
GetPrivateProfileIntW
GetSystemWindowsDirectoryA
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntA
OpenProcess
GetDriveTypeW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
MulDiv
ExpandEnvironmentStringsW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemDefaultLangID
lstrlenW
GetSystemTime
SetFilePointer
GetEnvironmentStringsW
GetFileSize
lstrcpyW
GlobalFree
ResumeThread
SuspendThread
LoadResource
SizeofResource
FindResourceW
SetUnhandledExceptionFilter
GetCurrentProcess
GetCurrentThreadId
SetLastError
LoadLibraryW
VirtualFree
VirtualAlloc
GetCurrentProcessId
WriteFile
SetEndOfFile
SetFilePointerEx
CreateDirectoryW
GetTickCount
InterlockedExchange
GlobalUnlock
GetVolumeInformationW
LeaveCriticalSection
EnterCriticalSection
GlobalLock
GetDiskFreeSpaceExW
GlobalAlloc
InitializeCriticalSection
GetVolumeNameForVolumeMountPointW
TerminateProcess
CreateProcessW
GetModuleHandleW
FreeLibrary
LoadLibraryA
GetProcAddress
GetVersionExW
RemoveDirectoryW
FindClose
FindFirstFileW
GetLogicalDrives
Sleep
MultiByteToWideChar
WideCharToMultiByte
GetExitCodeThread
GetLastError
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
DeleteFileA
GetFileAttributesA
TerminateThread
DeleteFileW
GetSystemWindowsDirectoryW
CloseHandle
GetFileAttributesW
CreateFileW
DeviceIoControl
GetSystemPowerStatus
GetModuleFileNameW
GetPrivateProfileStringA
WritePrivateProfileStringA
GetModuleFileNameA
CreatePipe
DuplicateHandle
PeekNamedPipe
GetWindowsDirectoryA
GetCurrentDirectoryW
GetFileAttributesExW
GetLogicalDriveStringsW
DeleteCriticalSection
WinExec
SetVolumeMountPointW
DeleteVolumeMountPointW
GlobalMemoryStatusEx
UnmapViewOfFile
MapViewOfFile
OpenEventW
OpenFileMappingW
SetHandleInformation
SetFirmwareEnvironmentVariableW
SetVolumeLabelW
WriteConsoleA
ResetEvent
CreateEventA
GetTimeZoneInformation
QueryPerformanceCounter
LoadLibraryExA
AreFileApisANSI
OpenFileMappingA
OpenEventA
lstrlenA
FormatMessageA
MoveFileA
GetFullPathNameA
GetTempPathA
GetTempPathW
GetFullPathNameW
MoveFileExW
UnlockFileEx
GetDiskFreeSpaceA
TryEnterCriticalSection
GetProcessHeap
GetSystemTimeAsFileTime
HeapAlloc
HeapSize
LockFileEx
HeapFree
HeapDestroy
InterlockedCompareExchange
HeapReAlloc
HeapCreate
UnlockFile
HeapValidate
CreateFileMappingA
LockFile
HeapCompact
WaitForSingleObjectEx
CreateFileMappingW
InterlockedDecrement
OpenMutexW
GetStartupInfoW
UnhandledExceptionFilter
IsDebuggerPresent
FreeEnvironmentStringsW
FindNextFileW
CreateFileA
IsBadWritePtr
GetCurrentThread
GetSystemDirectoryW
DefineDosDeviceW
GetVersion
CreateMutexW
LocalAlloc
QueryDosDeviceW
FlushFileBuffers
GetFirmwareEnvironmentVariableW
GetSystemWow64DirectoryW
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
OutputDebugStringW
SetEvent
CreateEventW
GetSystemInfo
GetVersionExA
IsBadReadPtr
GetDriveTypeA
FindFirstFileA
FindNextFileA
CreateDirectoryA
RemoveDirectoryA
RaiseException
GetACP
GetLocaleInfoA
GetThreadLocale
AllocConsole
ReadFile
WriteConsoleW
user32
GetSysColorBrush
InflateRect
GetDCEx
GetSysColor
IsChild
GetKeyState
SetWindowsHookExW
CallNextHookEx
EndDialog
UnhookWindowsHookEx
SetDlgItemTextW
ExitWindowsEx
GetPropW
RemovePropW
SetPropW
SetForegroundWindow
FrameRect
SetRectEmpty
GetFocus
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
ReleaseDC
UpdateWindow
ChangeDisplaySettingsW
EnumDisplaySettingsW
DispatchMessageW
TranslateMessage
PeekMessageW
GetMenuState
SetWindowPos
GetMessagePos
CallWindowProcW
DrawEdge
DrawFocusRect
SetRect
GetMenuDefaultItem
GetMenuInfo
AppendMenuW
IntersectRect
GetClassNameW
WindowFromDC
InsertMenuW
GetMenuItemID
ModifyMenuW
WindowFromPoint
SetWindowRgn
PtInRect
SetMenu
EnableMenuItem
ClientToScreen
OffsetRect
GetWindowTextW
IsMenu
GetIconInfo
SetMenuInfo
LoadMenuW
GetAsyncKeyState
GetDlgItem
GetDlgItemTextA
UnregisterClassA
GetCapture
CharLowerW
BeginDeferWindowPos
DestroyCursor
CharPrevA
CharUpperA
CharUpperW
CharNextA
CreateWindowExW
RegisterClassW
SetParent
CreateDialogParamW
GetActiveWindow
DeleteMenu
GetSubMenu
DrawMenuBar
DrawStateW
IsZoomed
GetMenuItemCount
IsIconic
CreatePopupMenu
FindWindowW
SystemParametersInfoW
IsWindow
IsWindowVisible
wsprintfW
LoadImageW
FindWindowExW
CopyRect
MessageBeep
LoadBitmapW
GetWindowDC
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
WaitForInputIdle
GetWindowLongW
ShowWindow
MessageBoxW
DestroyIcon
FillRect
InvalidateRect
SetWindowLongW
LoadCursorW
SetCursor
ShowScrollBar
GetDC
PostMessageW
GetCursorPos
GetMenu
GetSystemMenu
DestroyMenu
LoadIconW
GetClientRect
GetParent
MoveWindow
ScreenToClient
DrawIconEx
KillTimer
EnableWindow
GetDesktopWindow
GetWindowRect
GetSystemMetrics
SetTimer
SendMessageW
GetMessageW
GetWindow
EndDeferWindowPos
IsRectEmpty
SetCapture
RedrawWindow
GetMenuItemRect
ReleaseCapture
DefWindowProcW
SetScrollInfo
IsWindowEnabled
TrackMouseEvent
GetScrollInfo
GetDlgCtrlID
IsDlgButtonChecked
CopyIcon
GetMenuItemInfoW
gdi32
CreateRoundRectRgn
Arc
Pie
FrameRgn
StrokeAndFillPath
EndPath
BeginPath
GetGlyphOutlineW
ExcludeClipRect
SetPixel
SelectClipRgn
CreateSolidBrush
CreateFontW
SetBkMode
GetTextExtentPoint32W
CreateCompatibleDC
GetBkColor
GetObjectW
SelectObject
GetDeviceCaps
BitBlt
CreatePatternBrush
CreateDIBSection
DeleteObject
GetStockObject
SetDIBColorTable
SetBkColor
ExtTextOutW
GetTextMetricsW
CreateCompatibleBitmap
CreateBitmap
StretchBlt
Rectangle
GetTextColor
SetTextColor
SetTextJustification
CreatePen
MoveToEx
DeleteDC
LineTo
TextOutW
DPtoLP
GetCurrentObject
GetMapMode
CreateFontIndirectW
CreateDCW
PtVisible
RectVisible
Escape
EnumFontFamiliesW
PatBlt
GetPixel
CreateRectRgn
CombineRgn
FillRgn
CreateRectRgnIndirect
RoundRect
UnrealizeObject
SetBrushOrgEx
CreatePolygonRgn
GetNearestColor
comdlg32
GetOpenFileNameW
GetSaveFileNameW
advapi32
RegSaveKeyW
GetNamedSecurityInfoW
RegCloseKey
RegQueryValueExW
RegEnumKeyW
EnumServicesStatusW
QueryServiceConfigW
ControlService
RegEnumKeyExA
RegSetValueExA
RegQueryValueW
RegFlushKey
RegDeleteValueW
RegSetKeySecurity
ConvertStringSecurityDescriptorToSecurityDescriptorW
ConvertSecurityDescriptorToStringSecurityDescriptorW
RegGetKeySecurity
RegDeleteKeyW
SetSecurityInfo
RegLoadKeyW
RegOpenKeyA
StartServiceW
AdjustTokenPrivileges
QueryServiceStatus
LookupPrivilegeValueW
RegUnLoadKeyW
RegQueryInfoKeyW
RegEnumKeyExW
RegEnumValueW
OpenServiceW
CloseServiceHandle
OpenSCManagerW
EqualSid
GetTokenInformation
FreeSid
OpenProcessToken
OpenThreadToken
AllocateAndInitializeSid
RegQueryValueExA
SetNamedSecurityInfoW
ConvertStringSidToSidW
SetEntriesInAclW
BuildExplicitAccessWithNameW
RegCreateKeyExW
RegOpenKeyW
RegOpenKeyExA
RegSetValueExW
RegOpenKeyExW
shell32
CommandLineToArgvW
SHAppBarMessage
ExtractIconW
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFolderPathA
SHGetFolderPathW
DragAcceptFiles
DragQueryFileW
SHGetSpecialFolderPathW
ShellExecuteA
SHGetFileInfoW
ShellExecuteW
comctl32
ImageList_GetIconSize
InitCommonControlsEx
_TrackMouseEvent
shlwapi
PathFindFileNameW
PathAppendW
PathFindExtensionW
StrStrIW
PathFileExistsW
ole32
CoInitialize
CoUninitialize
CoCreateInstance
CoCreateGuid
CoSetProxyBlanket
CoInitializeEx
CoInitializeSecurity
CreateStreamOnHGlobal
oleaut32
SysFreeString
VariantInit
SysStringByteLen
SysStringLen
SysAllocString
VariantCopy
VariantClear
urlmon
URLDownloadToFileA
msvcp80
??$getline@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@YAAAV?$basic_istream@_WU?$char_traits@_W@std@@@0@AAV10@AAV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_D?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$_String_iterator@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?push_back@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXD@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??$?M_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z
?replace@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IIABV12@@Z
?at@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?begin@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V32@0@Z
?push_back@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEX_W@Z
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
?insert@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@IPB_W@Z
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHABV12@@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_WI@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?resize@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXI@Z
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@PB_W@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??A?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAA_WI@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIABV12@I@Z
?find@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
?compare@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEHPB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBD@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@ABV12@@Z
?clear@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?append@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?uncaught_exception@std@@YA_NXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
?swap@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXAAV12@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?allocate@?$allocator@D@std@@QAEPADI@Z
?allocate@?$allocator@_W@std@@QAEPA_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
?deallocate@?$allocator@D@std@@QAEXPADI@Z
?deallocate@?$allocator@_W@std@@QAEXPA_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?find_last_of@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEIPB_WI@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ifstream@_WU?$char_traits@_W@std@@@std@@QAE@PB_WHH@Z
gdiplus
GdipCloneImage
GdipFree
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipDrawImageI
GdipCreateBitmapFromStream
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipGetImageEncoders
GdipGetImageWidth
GdipGetImageHeight
GdipDrawImageRectRect
GdipLoadImageFromStreamICM
GdipCreateFromHDC
GdipReleaseDC
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdiplusShutdown
GdiplusStartup
GdipGetImageEncodersSize
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipSaveImageToFile
ws2_32
inet_addr
bind
recv
send
socket
WSAGetLastError
closesocket
accept
listen
connect
WSAStartup
gethostbyname
WSACleanup
htons
wininet
DeleteUrlCacheEntryA
netapi32
NetUserEnum
mpr
WNetGetUniversalNameW
rpcrt4
UuidCreate
psapi
GetProcessImageFileNameW
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
winhttp
WinHttpCloseHandle
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpSendRequest
WinHttpOpenRequest
WinHttpConnect
WinHttpSetTimeouts
WinHttpOpen
WinHttpCrackUrl
WinHttpAddRequestHeaders
WinHttpReceiveResponse
Exports
Exports
??0CUIButton@EUI@@QAE@ABV01@@Z
??0CUICheckBox@EUI@@QAE@ABV01@@Z
??0CUICombo@EUI@@QAE@ABV01@@Z
??0CUIMessage@EUI@@QAE@ABV01@@Z
??4CUIButton@EUI@@QAEAAV01@ABV01@@Z
??4CUICheckBox@EUI@@QAEAAV01@ABV01@@Z
??4CUICombo@EUI@@QAEAAV01@ABV01@@Z
??4CUIImage@EUI@@QAEAAV01@ABV01@@Z
??4CUIMessage@EUI@@QAEAAV01@ABV01@@Z
??4CUIPaint@EUI@@QAEAAV01@ABV01@@Z
??_7CUIButton@EUI@@6B@
??_7CUICheckBox@EUI@@6B@
??_7CUICombo@EUI@@6B@
??_7CUIMessage@EUI@@6B@
FormatExtFs
Sections
.text Size: 4.1MB - Virtual size: 4.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 140KB - Virtual size: 33.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 10.4MB - Virtual size: 10.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE