D:\ClampTower\Bin\FarawayClient.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
73abd496089de3ecddc845a5c3a17d9aac7a5e6db825e6545ffdefeea89783a0.exe
Resource
win7-20240221-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
73abd496089de3ecddc845a5c3a17d9aac7a5e6db825e6545ffdefeea89783a0.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
73abd496089de3ecddc845a5c3a17d9aac7a5e6db825e6545ffdefeea89783a0
-
Size
9.2MB
-
MD5
613d9cb0959764db500acbbff0e46172
-
SHA1
5f450afcd38a9f2d5a46b2e6deeb74371ef4804c
-
SHA256
73abd496089de3ecddc845a5c3a17d9aac7a5e6db825e6545ffdefeea89783a0
-
SHA512
2f5a2e0851df678f142e4eb674e77138b8be69e5cd9508d83b8b2aaaa5f8ff44df861bb0ba87632aa42f0aee4e6da1286ca5b140cadfecee1c2947af435872e7
-
SSDEEP
196608:hU+fgEl7zHChdiAKdzsmBN5THYd9wPkJ0Ke:hdll7zHUMdzsmVHYdR
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 73abd496089de3ecddc845a5c3a17d9aac7a5e6db825e6545ffdefeea89783a0
Files
-
73abd496089de3ecddc845a5c3a17d9aac7a5e6db825e6545ffdefeea89783a0.exe windows:6 windows x86 arch:x86
83e1606ad80d37730d373033acd45dcd
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
dbghelp
StackWalk64
SymGetSymFromAddr64
SymInitialize
SymGetLineFromAddr64
SymGetModuleBase64
SymGetModuleInfo64
SymFunctionTableAccess64
SymCleanup
libegl
ord9
ord25
ord32
ord34
ord7
ord6
ord3
ord2
ord23
comctl32
ImageList_Draw
ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_DragLeave
ord17
ord16
ImageList_Create
ImageList_Destroy
ImageList_GetImageCount
ImageList_Add
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_Replace
ImageList_AddMasked
ImageList_Remove
ImageList_GetIcon
ImageList_GetIconSize
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragEnter
rpcrt4
UuidToStringW
UuidCreate
RpcStringFreeW
UuidFromStringW
kernel32
CreateEventW
GetExitCodeProcess
CreateThread
CreateProcessW
WaitForMultipleObjects
ExpandEnvironmentStringsW
QueryPerformanceCounter
QueryPerformanceFrequency
GetDriveTypeW
GetLogicalDriveStringsW
RaiseException
FindNextFileW
IsBadReadPtr
IsBadStringPtrA
DeleteFileW
GetTempPathA
GetSystemTime
AreFileApisANSI
DeleteFileA
GetFullPathNameA
HeapReAlloc
HeapCompact
SetEvent
PeekNamedPipe
SetNamedPipeHandleState
CreatePipe
VirtualQuery
HeapFree
HeapAlloc
LoadLibraryExW
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
GetModuleHandleA
LoadLibraryA
OutputDebugStringA
GetModuleFileNameA
FindFirstFileA
CreateProcessA
CreateFileA
DuplicateHandle
WriteFile
ReadFile
SetFileTime
GetTempFileNameW
GetShortPathNameW
GetFileTime
GetFileSize
FindFirstFileW
FindClose
CopyFileW
GetWindowsDirectoryW
GetFileType
GetFileAttributesW
CreateFileW
SetFilePointer
MapViewOfFile
UnmapViewOfFile
SetEndOfFile
SystemTimeToFileTime
UnlockFile
LockFile
GetTickCount
UnlockFileEx
FormatMessageA
HeapDestroy
GetFileAttributesA
HeapCreate
HeapValidate
FlushFileBuffers
LockFileEx
CreateFileMappingA
CreateFileMappingW
GetDiskFreeSpaceA
GetFileAttributesExW
GetSystemTimeAsFileTime
GetStdHandle
SetUnhandledExceptionFilter
GetCurrentProcess
GetCurrentThread
FatalAppExitW
AllocConsole
WriteConsoleA
MulDiv
GetLastError
SetLastError
GetCurrentThreadId
GetCommandLineW
GetVersionExW
ReadConsoleOutputCharacterA
FillConsoleOutputCharacterW
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
FreeConsole
WriteConsoleW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FreeLibrary
LoadLibraryW
GlobalAlloc
GlobalLock
GlobalUnlock
HeapSize
GetProcessHeap
GlobalSize
GlobalFree
SetErrorMode
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
ReleaseSemaphore
ReleaseMutex
WaitForSingleObject
CreateMutexW
Sleep
ExitProcess
SetThreadPriority
GetFullPathNameW
TerminateThread
GetExitCodeThread
SuspendThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemInfo
GetProcAddress
GetProcessAffinityMask
CreateSemaphoreW
SetCurrentDirectoryW
GetUserDefaultLCID
LocalFree
SetThreadLocale
IsValidLocale
GetLocaleInfoW
GetACP
OutputDebugStringW
GetTempPathW
GetCPInfo
IsValidCodePage
GetComputerNameW
GetProfileStringW
FindResourceW
GlobalMemoryStatus
SizeofResource
LockResource
LoadResource
GetModuleHandleW
GetModuleFileNameW
OpenProcess
TerminateProcess
GetCurrentProcessId
GetDiskFreeSpaceW
GetEnvironmentVariableW
EnumResourceNamesW
FormatMessageW
user32
DdeFreeStringHandle
DdeQueryStringW
DdeCreateStringHandleW
DdeGetLastError
DdeFreeDataHandle
DdeGetData
DdeCreateDataHandle
DdeClientTransaction
DdeNameService
DdePostAdvise
DdeDisconnect
DdeConnect
DdeUninitialize
DdeInitializeW
WaitForInputIdle
KillTimer
SetTimer
GetWindowThreadProcessId
EnumWindows
ExitWindowsEx
GetDialogBaseUnits
ShowCursor
AdjustWindowRectEx
GetClassInfoW
wsprintfW
IsClipboardFormatAvailable
EmptyClipboard
EnumClipboardFormats
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
GetClipboardFormatNameW
RegisterClipboardFormatW
FindWindowExW
EnumDisplaySettingsW
ChangeDisplaySettingsW
CheckMenuRadioItem
SetRect
GetSysColorBrush
DrawStateW
CheckMenuItem
DrawEdge
ValidateRgn
ChildWindowFromPoint
OffsetRect
CopyRect
DrawFocusRect
DrawTextW
UnionRect
ValidateRect
PostThreadMessageW
GetMessageW
DrawIconEx
DrawFrameControl
EndPaint
BeginPaint
GetWindowDC
GetClassNameW
MessageBeep
GetWindowTextW
CreateIconIndirect
DestroyCursor
LoadCursorFromFileW
GetIconInfo
LoadImageW
LoadIconW
LoadBitmapW
SetMenuItemInfoW
InsertMenuItemW
RemoveMenu
ModifyMenuW
AppendMenuW
InsertMenuW
GetSubMenu
CreatePopupMenu
CreateMenu
GetMenuState
DestroyIcon
GetDoubleClickTime
TranslateAcceleratorW
DestroyAcceleratorTable
CreateAcceleratorTableW
LoadAcceleratorsW
ShowCaret
HideCaret
GetWindowTextLengthW
keybd_event
LoadCursorW
MsgWaitForMultipleObjects
MessageBoxW
GetDesktopWindow
SetForegroundWindow
EnableMenuItem
GetSystemMenu
DrawMenuBar
CreateDialogIndirectParamW
IsZoomed
BringWindowToTop
IsIconic
GetWindowPlacement
FlashWindow
UnregisterClassW
RegisterClassW
SetWindowRgn
GetDlgItem
CreateDialogParamW
SystemParametersInfoW
GetScrollInfo
SetScrollInfo
IsDialogMessageW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
SetParent
GetParent
SetWindowLongW
GetWindowLongW
PtInRect
InflateRect
FillRect
GetSysColor
ChildWindowFromPointEx
PostQuitMessage
MapWindowPoints
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
SetCursorPos
GetClientRect
SetWindowTextW
EnableScrollBar
ScrollWindow
RedrawWindow
InvalidateRect
GetUpdateRgn
ReleaseDC
UpdateWindow
GetMenuItemInfoW
TrackPopupMenu
GetMenuItemCount
GetSystemMetrics
IsWindowEnabled
EnableWindow
ReleaseCapture
SetCapture
GetCapture
MapVirtualKeyW
VkKeyScanW
GetAsyncKeyState
GetKeyState
GetFocus
CallWindowProcW
CreateWindowExW
IsWindow
DestroyWindow
ShowWindow
MoveWindow
SetWindowPos
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
SetFocus
DestroyMenu
DefWindowProcW
MessageBoxA
DefWindowProcA
WindowFromPoint
GetDC
SendMessageW
PostMessageW
SetMenu
GetWindowRect
TranslateMessage
DispatchMessageW
PeekMessageW
RegisterHotKey
UnregisterHotKey
GetMessagePos
GetMessageTime
SendMessageA
LoadCursorA
SetWindowLongA
GetWindowLongA
CreateWindowExA
RegisterClassA
GetActiveWindow
gdi32
StretchBlt
DeleteDC
CreateCompatibleDC
ExtCreatePen
DeleteObject
CreatePen
GetObjectW
GetStockObject
SetTextColor
SetBkMode
SetBkColor
OffsetRgn
GetRegionData
ExtCreateRegion
GdiFlush
SetBrushOrgEx
GetTextMetricsW
SelectPalette
SelectObject
RealizePalette
ExcludeClipRect
CreateRectRgn
ExtFloodFill
GetBkColor
GetClipBox
GetPixel
MaskBlt
Pie
GetDeviceCaps
Rectangle
RoundRect
SelectClipRgn
ExtSelectClipRgn
SetMapMode
SetPixel
SetPolyFillMode
StretchDIBits
SetROP2
SetStretchBltMode
ExtTextOutW
Polygon
Polyline
PolyBezier
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
CreateBitmap
CreateRectRgnIndirect
GetCharABCWidthsW
GetTextExtentExPointW
CreateICW
SetTextAlign
CreateDIBitmap
GetDIBits
CreateDIBSection
GetDIBColorTable
CreateBitmapIndirect
EnumFontFamiliesExW
SetAbortProc
CreateDCW
StartDocW
EndDoc
StartPage
EndPage
GetMetaFileBitsEx
SetMetaFileBitsEx
CloseEnhMetaFile
CopyEnhMetaFileW
CreateEnhMetaFileW
DeleteEnhMetaFile
GetEnhMetaFileW
GetEnhMetaFileHeader
GetWinMetaFileBits
PlayEnhMetaFile
SetWinMetaFileBits
GetSystemPaletteEntries
LineTo
MoveToEx
CreateFontIndirectW
GetOutlineTextMetricsW
CombineRgn
GetRgnBox
EqualRgn
PtInRegion
RectInRegion
CreatePolygonRgn
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetTextExtentPoint32W
CreateHatchBrush
CreatePatternBrush
Ellipse
CreateSolidBrush
Arc
BitBlt
CreateCompatibleBitmap
PolyPolygon
AddFontResourceW
CreateFontIndirectA
RemoveFontResourceW
GetObjectA
winspool.drv
DocumentPropertiesW
ClosePrinter
OpenPrinterW
comdlg32
PageSetupDlgW
GetOpenFileNameW
PrintDlgW
CommDlgExtendedError
ChooseFontW
GetSaveFileNameW
ole32
CoTaskMemAlloc
CoCreateInstance
OleUninitialize
OleInitialize
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
ReleaseStgMedium
OleSetClipboard
OleGetClipboard
OleFlushClipboard
OleIsCurrentClipboard
oleaut32
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetDim
VarBstrFromCy
VariantInit
SafeArrayGetVartype
SafeArrayDestroy
SafeArrayCreate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysFreeString
SysReAllocString
SysAllocString
msvcp120d
?_Debug_message@std@@YAXPB_W0I@Z
??0_Container_base12@std@@QAE@XZ
??1_Container_base12@std@@QAE@XZ
?_Orphan_all@_Container_base12@std@@QAEXXZ
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
??0id@locale@std@@QAE@I@Z
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?uncaught_exception@std@@YA_NXZ
?good@ios_base@std@@QBE_NXZ
?width@ios_base@std@@QBE_JXZ
?width@ios_base@std@@QAE_J_J@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@_JHH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@V32@H@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?_BADOFF@std@@3_JB
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?_Swap_all@_Container_base12@std@@QAEXAAU12@@Z
?setf@ios_base@std@@QAEHHH@Z
?precision@ios_base@std@@QAE_J_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?flags@ios_base@std@@QBEHXZ
msvcr120d
_wgetcwd
_wmkdir
_wrmdir
_wrename
_wremove
wcscat
_fileno
_get_osfhandle
_getcwd
_wchmod
?_wopen@@YAHPB_WHH@Z
_fdopen
_open_osfhandle
feof
_waccess
_close
_commit
_eof
_read
_write
_lseeki64
_telli64
bsearch
fputwc
fputws
_putws
_vswprintf_p
_vswprintf
_wperror
wcsspn
strpbrk
strspn
mbstowcs
wcstombs
fgets
_create_locale
_free_locale
strtod
strtol
strtoul
_ctime64
_wenviron
frexp
ldexp
_HUGE
strerror
fopen
remove
pow
modf
fseek
ftell
_wassert
sprintf_s
raise
isxdigit
_ftelli64
_fseeki64
fread
ferror
strcspn
strncat
strcoll
iswctype
freopen
ungetc
vsprintf
clearerr
_wfopen
fwprintf
setlocale
fprintf
??3@YAXPAXHPBDH@Z
??_U@YAPAXIHPBDH@Z
??2@YAPAXIHPBDH@Z
_CrtSetDbgFlag
wcsncat
_wputenv
_wgetenv
getenv
isalnum
isdigit
isalpha
atof
_wtol
_mktime64
_localtime64
_gmtime64
_difftime64
_tzset
_get_timezone
_endthreadex
_beginthreadex
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
qsort
_wcsicmp
wcsstr
iscntrl
isprint
fputs
isupper
islower
ispunct
memchr
fscanf
setvbuf
tmpfile
system
clock
strftime
rename
tmpnam
rand
srand
acos
asin
atan
cosh
exp
fmod
log
log10
sinh
tan
tanh
strrchr
rewind
_wfopen_s
_wstat64
strcat_s
_stricmp
_strnicmp
sscanf_s
_vsnprintf_s
__RTDynamicCast
roundf
printf
vfprintf
_lock
_unlock
_calloc_dbg
__dllonexit
_onexit
_CRT_RTC_INITW
??1type_info@@UAE@XZ
_except1
?terminate@@YAXXZ
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__getmainargs
__set_app_type
_CrtSetCheckCount
_exit
_cexit
_ismbblead
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
_acmdln
_fmode
_commode
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
__crtSetUnhandledExceptionFilter
_invoke_watson
_controlfp_s
wcscpy_s
_wmakepath_s
_wsplitpath_s
_strlwr
_localtime64_s
_msize
getc
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
_hypot
memcpy
memset
strcmp
strlen
memmove
_CxxThrowException
__CxxFrameHandler3
floor
__RTtypeid
memcmp
strcpy_s
strncpy_s
wcslen
free
_aligned_free
_aligned_malloc
_aligned_realloc
fclose
fflush
fopen_s
fwrite
vsprintf_s
??_V@YAXPAX@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
_time64
_invalid_parameter
swscanf
malloc
sscanf
_CrtDbgReportW
calloc
realloc
towupper
wcschr
wcsncpy
toupper
_wcsdup
__iob_func
strncmp
exit
wcscpy
_wtoi
strncpy
abs
cos
sin
sqrt
fabs
__RTCastToVoid
wcsftime
iswprint
towlower
ceil
wcscmp
strcpy
strcat
strstr
sprintf
atan2
isspace
tolower
_strdup
strchr
iswalpha
iswdigit
iswalnum
longjmp
__CxxLongjmpUnwind
_setjmp3
abort
_errno
iswspace
wcstod
_wcstod_l
wcstol
_wcstol_l
wcstoul
_wcstoul_l
_wcstoi64
_wcstoui64
wcspbrk
strnlen
advapi32
RegEnumValueW
RegSetValueExW
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
GetUserNameW
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenProcessToken
shell32
SHFileOperationW
ExtractIconExW
ExtractIconW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
ShellExecuteExW
SHGetFileInfoW
DragAcceptFiles
DragFinish
DragQueryPoint
DragQueryFileW
winmm
mciSendCommandA
timeGetTime
libglesv2
ord54
ord31
ord7
ord1
ord141
ord42
ord4
ord131
ord125
ord90
ord77
ord65
ord34
ord32
ord106
ord2
ord142
ord104
ord100
ord97
ord61
ord44
ord43
ord39
ord19
ord17
ord16
ord12
ord11
ord109
ord3
ord21
ord27
ord68
ord69
ord114
ord26
ord99
Sections
.textbss Size: - Virtual size: 3.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 7.3MB - Virtual size: 7.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 91KB - Virtual size: 492KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 30KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 1024B - Virtual size: 777B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 364KB - Virtual size: 363KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ