Static task
static1
Behavioral task
behavioral1
Sample
157b7dc76911dcbdbd56b7036aa8b5f0_NeikiAnalytics.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
157b7dc76911dcbdbd56b7036aa8b5f0_NeikiAnalytics.exe
Resource
win10v2004-20240426-en
windows10-2004-x64
General
-
Target
157b7dc76911dcbdbd56b7036aa8b5f0_NeikiAnalytics.exe
-
Size
3.0MB
-
MD5
157b7dc76911dcbdbd56b7036aa8b5f0
-
SHA1
9a7f2268a10a37b19d9f7c4dbe2ef887ef98cf16
-
SHA256
bd94e9f6f5b752de990205df40dad55ce6721284c629bee013f820caa83a93c8
-
SHA512
ce8610571a18fe69ae36898a44b5b5c1a2b62f362c82929664ccb72dce859a5d60d8361913e88394b287da4ab918b000b5c10a77a3fcbf4be0f67c7fee8e1205
-
SSDEEP
49152:n17/ivdClWts7zvAhVKNMfKzxEaxc9bTgouSYH99:n1aslcVDKzxEaxc9bTgouS
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 157b7dc76911dcbdbd56b7036aa8b5f0_NeikiAnalytics.exe
Files
-
157b7dc76911dcbdbd56b7036aa8b5f0_NeikiAnalytics.exe.exe windows:4 windows x86 arch:x86
a1d38a9474e1f9fbfa4dedea73ea006c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
wininet
InternetGetConnectedState
acdappinfo
?SetUserProfileID@CAppInfoBase3_0@@UAE?AW4typAIResult@@PBD@Z
?GetRegKeyAppGUID@CAppInfoBase3_0@@IAEPAVRegistryKey@@XZ
?GetLastErrorDesc@CAppInfoBase3_0@@UAEXAAV?$CStdStr@D@@@Z
?GetLastErrorCode@CAppInfoBase3_0@@UAEJXZ
?GetUserProfileID@CAppInfoBase3_0@@UAE?AW4typAIResult@@PAV?$CStdStr@D@@@Z
?GetAppProfileID@CAppInfoBase3_0@@UAE?AW4typAIResult@@PAV?$CStdStr@D@@@Z
??1CAppInfoBase3_0@@UAE@XZ
??0CAppInfoBase3_0@@QAE@PAVRegistryKey@@@Z
acdintouch
?ClearLastError@CInTouch3_0@@MAEXXZ
?SetError@CInTouch3_0@@MAEXW4typITResult@@J@Z
?GetBypassInTouchDialog@CInTouchBase3_0@@UAEHXZ
?AskToConnect@CInTouch@@UAEHXZ
?ShowPopupBrowser@CInTouch@@UAEXPBDPAUtagRECT@@@Z
?HandleInTouchErrorSimple@CInTouchBase3_0@@UAEHPBD@Z
?SetBypassInTouchDialog@CInTouchBase3_0@@UAEXH@Z
?GetProductInfoXML@CInTouchBase3_0@@UAE?AW4typITResult@@AAV?$CStdStr@D@@@Z
?GetStatsXML@CInTouchBase@@UAE?AW4typITResult@@AAV?$CStdStr@D@@@Z
?ParseBannerAdXML@CInTouchBase@@UAE?AW4typITResult@@ABV?$CStdStr@D@@@Z
?ParseStaticPageXML@CInTouchBase@@UAE?AW4typITResult@@ABV?$CStdStr@D@@@Z
?SetErrorString@CInTouch3_0@@MAEXW4typITResult@@PBD@Z
??0CInTouchBase3_0@@QAE@PAVIAppInfo3_0@@PBD1@Z
?UpdateInTouch@CInTouch3_0@@QAE?AW4typITResult@@PAUHWND__@@@Z
?StandardConnection@CInTouchBase3_0@@QAEHPAUHWND__@@W4etypStatuses@@JAAV?$CStdStr@D@@PAHPAI3HH@Z
?CheckForUpdates@CCheckForUpdates@@QAEHPAUHWND__@@PAVCInTouchBase3_0@@AAV?$CStdStr@D@@@Z
?SetHelpCallback@CInTouch@@QAEXP6AXPAUHWND__@@IK@Z@Z
??1CInTouchBase3_0@@UAE@XZ
?ShowReminder@CCheckForUpdates@@QAEHPAUHWND__@@@Z
?CheckIfTimeToRemind@CCheckForUpdates@@QAEHXZ
?SetHasConnected@CInTouch@@QAEXH@Z
?SetShowReminder@CCheckForUpdates@@QAEXH@Z
?GetCheckInterval@CCheckForUpdates@@QAEKXZ
?GetShowReminder@CCheckForUpdates@@QAEHXZ
?HandleInTouchError@CInTouchBase@@UAEHW4typITResult@@JPBD@Z
??0CCheckForUpdates@@QAE@PAVIAppInfo3_0@@@Z
shellintmgr
ShlInt_VerifyAssociations_XMLFile
ShlInt_PerformAssociations_XMLFile
acdclclient
??0CACDCLClient@@QAE@PAVIAppInfo3_0@@@Z
?Free@CACDCLClient@@QAEXXZ
??1CACDCLClient@@UAE@XZ
mfc42
ord5199
ord1948
ord663
ord2092
ord5484
ord4699
ord6307
ord521
ord1106
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord348
ord565
ord5302
ord4698
ord5714
ord561
ord1946
ord6438
ord2621
ord6117
ord1205
ord3499
ord641
ord2515
ord355
ord1158
ord2438
ord2614
ord1089
ord6930
ord926
ord4129
ord5683
ord2764
ord6283
ord2784
ord1200
ord1175
ord6877
ord2763
ord4224
ord6442
ord6378
ord6380
ord683
ord5265
ord4998
ord6052
ord1775
ord5280
ord4425
ord3597
ord5872
ord5990
ord6146
ord2463
ord6467
ord1154
ord3027
ord5861
ord5608
ord5495
ord1644
ord1146
ord1842
ord2514
ord2723
ord3059
ord5100
ord5103
ord4467
ord4303
ord3350
ord5012
ord975
ord5472
ord3403
ord2879
ord2878
ord4151
ord4077
ord5237
ord2649
ord1665
ord4436
ord4427
ord674
ord366
ord5282
ord4242
ord1768
ord4457
ord4499
ord2753
ord3103
ord2800
ord2627
ord2639
ord2626
ord5252
ord3716
ord4622
ord817
ord790
ord324
ord2302
ord4234
ord656
ord5953
ord5951
ord6111
ord4055
ord3092
ord1779
ord4710
ord4694
ord5802
ord3095
ord4853
ord6888
ord3998
ord6675
ord4683
ord2012
ord4123
ord5572
ord2915
ord2737
ord5272
ord2370
ord6874
ord3610
ord2645
ord3876
ord6741
ord6508
ord2358
ord2301
ord6334
ord2390
ord4376
ord3698
ord1771
ord6366
ord2413
ord2024
ord4219
ord2581
ord4401
ord3639
ord765
ord692
ord2340
ord771
ord809
ord768
ord2528
ord4715
ord1690
ord5288
ord4439
ord2054
ord4431
ord3700
ord6176
ord5849
ord1008
ord497
ord4259
ord4804
ord2881
ord2289
ord2299
ord4476
ord283
ord2362
ord2298
ord5685
ord3274
ord3353
ord3579
ord439
ord736
ord6379
ord6335
ord3019
ord2516
ord361
ord2513
ord293
ord6673
ord551
ord4204
ord539
ord2558
ord3573
ord4995
ord3623
ord4365
ord5085
ord1714
ord4404
ord5258
ord3392
ord3722
ord6491
ord529
ord796
ord2494
ord6565
ord6619
ord2117
ord2575
ord3093
ord2455
ord5030
ord4724
ord4776
ord5054
ord4337
ord5053
ord4875
ord4910
ord3089
ord3317
ord3302
ord3719
ord793
ord4278
ord1601
ord4277
ord6135
ord2652
ord1669
ord3693
ord4133
ord4297
ord2567
ord2380
ord5787
ord5788
ord472
ord3766
ord3521
ord6402
ord3495
ord4299
ord2113
ord5949
ord2086
ord6241
ord2450
ord2099
ord2405
ord4124
ord6129
ord6130
ord3753
ord5148
ord3813
ord3287
ord3914
ord3303
ord6282
ord5710
ord6662
ord5655
ord5885
ord4530
ord4544
ord4523
ord1938
ord3021
ord955
ord2108
ord2119
ord4542
ord6270
ord6779
ord6663
ord5161
ord5162
ord5160
ord4905
ord4742
ord4976
ord4948
ord4358
ord3394
ord5307
ord3385
ord3699
ord489
ord5287
ord5871
ord4258
ord3097
ord3098
ord3397
ord3732
ord556
ord2122
ord2089
ord6358
ord3754
ord4835
ord4480
ord6891
ord6762
ord6678
ord940
ord6612
ord3711
ord783
ord2112
ord5768
ord6128
ord3752
ord5769
ord6802
ord6862
ord6593
ord6594
ord6931
ord6860
ord6749
ord6646
ord3138
ord2294
ord3631
ord3226
ord6148
ord2568
ord6268
ord6271
ord3225
ord3257
ord3912
ord2544
ord2543
ord2511
ord978
ord1731
ord5851
ord2883
ord2398
ord2418
ord6224
ord6226
ord2429
ord2250
ord4541
ord2259
ord4836
ord4440
ord3720
ord527
ord794
ord2252
ord4732
ord6230
ord3566
ord3481
ord2975
ord4083
ord1928
ord4264
ord5038
ord4789
ord4763
ord4766
ord773
ord501
ord5600
ord5621
ord613
ord289
ord1081
ord415
ord2762
ord5607
ord1083
ord5597
ord5605
ord3286
ord715
ord4268
ord3295
ord4366
ord5064
ord554
ord807
ord6625
ord3289
ord4076
ord2920
ord6603
ord5883
ord5884
ord1715
ord1710
ord6164
ord6109
ord702
ord400
ord5596
ord915
ord4191
ord2452
ord816
ord562
ord998
ord812
ord5862
ord559
ord6403
ord3522
ord6170
ord2243
ord1834
ord4750
ord5016
ord2097
ord4852
ord4229
ord5232
ord1180
ord1176
ord1568
ord5268
ord4834
ord4608
ord4716
ord4607
ord4635
ord5067
ord2574
ord3572
ord1793
ord1088
ord1941
ord2152
ord665
ord1979
ord1567
ord6385
ord268
ord5186
ord354
ord1795
ord3701
ord500
ord772
ord5860
ord5606
ord4809
ord5933
ord1949
ord3643
ord394
ord696
ord909
ord5628
ord4185
ord3758
ord3408
ord3227
ord3880
ord3425
ord3054
ord859
ord3337
ord3811
ord5910
ord6120
ord3920
ord5789
ord6197
ord2571
ord1641
ord2414
ord3663
ord3626
ord818
ord3619
ord3742
ord537
ord6008
ord4125
ord4774
ord2754
ord4538
ord2116
ord795
msvcrt
_adjust_fdiv
__set_app_type
__p__commode
__p__fmode
_acmdln
difftime
_strnicmp
_stat
bsearch
_strlwr
wcslen
_strupr
isalpha
_setmbcp
__CxxFrameHandler
malloc
free
_beginthreadex
realloc
toupper
_mbscmp
atoi
strtok
_itoa
_mbspbrk
_ftol
_mbsrchr
srand
_vsnprintf
memmove
strchr
sprintf
tolower
_beginthread
fopen
fclose
fprintf
_mbsstr
_mbsicmp
_atoi64
_strrev
isdigit
_mbslwr
_mbstok
_strdup
_mbschr
strncmp
_mbsinc
_endthreadex
_access
_purecall
strrchr
qsort
strncat
strncpy
_endthread
rand
__RTDynamicCast
strstr
fread
_filelength
fputs
_mbsninc
_CIpow
_mbsupr
_mbscpy
__setusermatherr
islower
atol
_mbbtype
atof
_findclose
_findfirst
floor
fseek
fwrite
calloc
ftell
remove
time
isalnum
_mbsnbcmp
_mbsnbicmp
_mbsbtype
vsprintf
fgets
_strcmpi
_CxxThrowException
wcstombs
_stricmp
_mbsnbcpy
_splitpath
ctime
_fstat
__p__pgmptr
_memicmp
_errno
_pctype
__mb_cur_max
_isctype
ceil
memchr
_mbsnbcat
??1type_info@@UAE@XZ
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
_exit
_XcptFilter
exit
_controlfp
__getmainargs
_initterm
kernel32
RaiseException
OpenFile
_lread
_llseek
lstrlenW
LocalAlloc
GlobalFlags
GetUserDefaultLangID
GetLogicalDriveStringsA
GetACP
GetSystemInfo
SetFilePointer
SetEndOfFile
IsBadWritePtr
GetNumberFormatA
LocalFree
GetCurrentProcessId
LoadLibraryExA
GetTimeFormatA
GetSystemDirectoryA
GetDateFormatA
GetLocaleInfoA
GetDiskFreeSpaceA
FindResourceA
LoadResource
LockResource
FormatMessageA
SizeofResource
CompareStringA
ReleaseMutex
WideCharToMultiByte
SetFileTime
GetTimeZoneInformation
GetFileTime
FindFirstChangeNotificationA
FindNextChangeNotification
GetLocalTime
SearchPathA
CreateThread
GetShortPathNameA
SetFileAttributesA
_lcreat
MoveFileA
_lclose
CreateFileMappingA
_lwrite
UnmapViewOfFile
RemoveDirectoryA
MapViewOfFile
MultiByteToWideChar
GetFullPathNameA
GlobalFree
HeapAlloc
GlobalAlloc
GetProcessHeap
GlobalSize
GlobalUnlock
GlobalLock
FindFirstFileA
FindClose
FindNextFileA
GetTempPathA
GetTempFileNameA
GetVolumeInformationA
GetFileSize
ReadFile
DeleteFileA
InterlockedDecrement
ResetEvent
lstrcmpA
OutputDebugStringA
SetUnhandledExceptionFilter
CopyFileA
GetLastError
GetModuleHandleA
CreateMutexA
CreateFileA
CreateDirectoryA
WriteFile
GetCurrentDirectoryA
SetCurrentDirectoryA
MulDiv
GetExitCodeThread
FileTimeToLocalFileTime
CreateProcessA
FileTimeToSystemTime
CompareFileTime
LocalFileTimeToFileTime
ReleaseSemaphore
GetSystemTime
CreateSemaphoreA
GetWindowsDirectoryA
GetLogicalDrives
SystemTimeToFileTime
GetTickCount
WaitForMultipleObjects
GetDriveTypeA
FreeLibrary
GetVersionExA
WaitForSingleObject
GetProcAddress
SetThreadPriority
LoadLibraryA
lstrcmpiA
SetEvent
ResumeThread
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
CloseHandle
InitializeCriticalSection
DeleteCriticalSection
lstrcpyA
lstrcpynA
CreateEventA
Sleep
GetModuleFileNameA
lstrlenA
GetFileAttributesA
lstrcatA
GetExitCodeProcess
GetProfileStringA
InterlockedExchange
GetStartupInfoA
user32
GetCapture
GetUpdateRect
CharNextA
EndDeferWindowPos
ScrollWindowEx
InvalidateRgn
LoadBitmapA
GetClassLongA
SetClassLongA
GetNextDlgTabItem
SetMenuItemInfoA
IsChild
SetCursorPos
SetWindowPlacement
FrameRect
VkKeyScanA
ShowScrollBar
BeginDeferWindowPos
DeferWindowPos
PostQuitMessage
GetCursor
DestroyCursor
IsDialogMessageA
CreateDialogParamA
BringWindowToTop
GetClipboardData
SetClipboardData
CheckMenuItem
GetKeyState
FindWindowA
SetWindowRgn
GetMessageTime
DestroyWindow
IsZoomed
AdjustWindowRect
SetMenu
DrawMenuBar
GetSystemMenu
RedrawWindow
SetWindowContextHelpId
CharUpperA
GetMenu
IsRectEmpty
EqualRect
TrackPopupMenuEx
ChildWindowFromPoint
SetWindowTextA
GetWindowDC
BeginPaint
EndPaint
LoadAcceleratorsA
TranslateAcceleratorA
FindWindowExA
GetClassInfoA
RegisterClassA
SetWindowPos
CharToOemA
DdeConnect
DdeGetLastError
DdeClientTransaction
DdeDisconnect
DdeCmpStringHandles
DdeAccessData
DdeUnaccessData
DdeFreeStringHandle
DdeUninitialize
DdeInitializeA
DdeCreateStringHandleA
DdeNameService
IsClipboardFormatAvailable
GetClipboardFormatNameA
GetAsyncKeyState
RegisterClipboardFormatA
InsertMenuA
GetLastActivePopup
IsWindowEnabled
RemoveMenu
SetMenuDefaultItem
ChildWindowFromPointEx
LoadImageA
GetDoubleClickTime
GetWindowTextA
MoveWindow
GetIconInfo
DrawStateA
CreateMenu
GetMessageA
InSendMessage
InflateRect
GetDlgItemInt
CheckDlgButton
SetDlgItemInt
CopyAcceleratorTableA
GetKeyNameTextA
MapVirtualKeyA
CheckRadioButton
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
UnionRect
CopyIcon
RegisterClassExA
MapWindowPoints
EnumChildWindows
GetActiveWindow
RegisterWindowMessageA
GetDesktopWindow
OemToCharA
DialogBoxParamA
EndDialog
SendDlgItemMessageA
GetDlgItemTextA
IsDlgButtonChecked
GetDlgItem
SetFocus
SetDlgItemTextA
ShowWindow
GrayStringA
TabbedTextOutA
CallWindowProcA
GetWindow
AttachThreadInput
GetSysColorBrush
CopyRect
DrawFrameControl
GetParent
LoadMenuA
GetSubMenu
EnableMenuItem
DestroyMenu
SetParent
InvalidateRect
DrawIcon
ReleaseCapture
ClientToScreen
WindowFromPoint
SetCapture
SetRectEmpty
OffsetRect
SystemParametersInfoA
PtInRect
GetMessagePos
GetMenuItemInfoA
DrawIconEx
AppendMenuA
GetMenuItemCount
CreatePopupMenu
InsertMenuItemA
TrackPopupMenu
SetTimer
GetWindowLongA
SetWindowLongA
GetCursorPos
ScreenToClient
KillTimer
PostMessageA
UpdateWindow
IsWindowVisible
GetWindowRect
LoadStringA
LoadCursorA
SetCursor
MessageBeep
GetFocus
GetSysColor
GetClientRect
IntersectRect
DrawTextA
FillRect
DrawEdge
DrawFocusRect
LoadIconA
DestroyIcon
SendMessageA
GetDC
ReleaseDC
GetSystemMetrics
wsprintfA
EnableWindow
CharLowerA
IsWindow
SetForegroundWindow
SetRect
IsIconic
GetWindowPlacement
GetMenuItemID
GetMenuState
DeleteMenu
PeekMessageA
MsgWaitForMultipleObjects
TranslateMessage
PostThreadMessageA
OpenClipboard
DispatchMessageA
SetActiveWindow
CreateWindowExA
EmptyClipboard
CloseClipboard
DefWindowProcA
GetWindowTextLengthA
MessageBoxA
gdi32
TextOutA
Escape
CreateRectRgn
RectVisible
ExtTextOutA
Rectangle
CreatePen
DeleteDC
SetStretchBltMode
CreateCompatibleBitmap
CreateBrushIndirect
FloodFill
SetPixel
RoundRect
FillRgn
CombineRgn
CreateRectRgnIndirect
CreateRoundRectRgn
PatBlt
SetEnhMetaFileBits
GetEnhMetaFileBits
GetDIBColorTable
DeleteEnhMetaFile
CreatePalette
CreateDIBSection
SelectClipRgn
PlayEnhMetaFile
SetDIBitsToDevice
GetPaletteEntries
GetCurrentObject
SetBrushOrgEx
SetDIBColorTable
Ellipse
SetViewportOrgEx
GetViewportOrgEx
CreateCompatibleDC
PtVisible
GetRgnBox
PathToRegion
PolyBezier
Polygon
EndPath
LineTo
PolyBezierTo
MoveToEx
BeginPath
GetTextColor
GetBkMode
StretchDIBits
CreateFontA
EndPage
StartPage
StartDocA
SetAbortProc
EndDoc
GetClipRgn
CreateDCA
StretchBlt
SetViewportExtEx
SetWindowExtEx
SetMapMode
RestoreDC
GetBkColor
CreateFontIndirectA
GetStockObject
SelectObject
GetTextExtentPoint32A
GetDeviceCaps
SelectPalette
RealizePalette
SetBkMode
SetTextColor
CreateSolidBrush
SetBkColor
GetTextMetricsA
DeleteObject
BitBlt
SaveDC
CreateBitmap
SetRectRgn
GetObjectA
ExtFloodFill
GetPixel
advapi32
RegQueryValueA
RegEnumKeyA
RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegEnumKeyExA
RegSetValueA
RegQueryValueExA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyA
RegEnumValueA
RegOpenKeyExA
shell32
SHGetMalloc
ExtractIconExA
SHBrowseForFolderA
DragFinish
SHAppBarMessage
SHFileOperationA
SHGetDesktopFolder
SHGetPathFromIDListA
DragQueryFileA
Shell_NotifyIconA
ShellExecuteA
SHGetSpecialFolderLocation
SHGetFileInfoA
ShellExecuteExA
msvcp60
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IPBDI@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?close@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@XZ
??1?$basic_ifstream@DU?$char_traits@D@std@@@std@@UAE@XZ
?putback@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??_8?$basic_ifstream@DU?$char_traits@D@std@@@std@@7B@
??0ios_base@std@@IAE@XZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??_7?$basic_ifstream@DU?$char_traits@D@std@@@std@@6B@
?open@?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEPAV12@PBDH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Init@?$basic_filebuf@DU?$char_traits@D@std@@@std@@IAEXPAU_iobuf@@W4_Initfl@12@@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??1ios_base@std@@UAE@XZ
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?_Xran@std@@YAXXZ
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Xlen@std@@YAXXZ
msvfw32
DrawDibDraw
DrawDibClose
DrawDibOpen
avifil32
AVIStreamOpenFromFileA
AVIStreamRelease
AVIStreamGetFrameClose
AVIStreamLength
AVIStreamSampleToTime
AVIStreamInfoA
AVIFileExit
AVIFileInit
AVIStreamGetFrameOpen
AVIStreamStart
AVIStreamGetFrame
Sections
.text Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 224KB - Virtual size: 221KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 56KB - Virtual size: 140KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 620KB - Virtual size: 617KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ