E:\KINGSOFT_DUBA\Build\Build_Src\kisengine_git\1517\product\win32\dbginfo\kxemain.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
1d9a13260214f58c391df74e8722f15a601f77baa592fea5d93b427b6ae49177.exe
Resource
win7-20240611-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
1d9a13260214f58c391df74e8722f15a601f77baa592fea5d93b427b6ae49177.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
1d9a13260214f58c391df74e8722f15a601f77baa592fea5d93b427b6ae49177
-
Size
5.9MB
-
MD5
8400854b3fa214f518005e0b5c8f7fe7
-
SHA1
e029a7d95efd654215d57160fe56a394b4781965
-
SHA256
1d9a13260214f58c391df74e8722f15a601f77baa592fea5d93b427b6ae49177
-
SHA512
4301da8b3475fa2e88a5e8f9b746a38c4aa6ef59cc9d87b22c9c9fbfa9bdd9d378dc6352ec2dcd9c157b00e61249b3da9420d8099300882f2b9d8f376d84181a
-
SSDEEP
98304:GmeE4qKDF6tH85IrzT20KxtV2ozpFwpZ9qHvxknz4TEvgu8A1S8sVYF477v6cZ+:FedQH0sT20Kxv2oz4QHv+nzTSFB+
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1d9a13260214f58c391df74e8722f15a601f77baa592fea5d93b427b6ae49177
Files
-
1d9a13260214f58c391df74e8722f15a601f77baa592fea5d93b427b6ae49177.exe windows:6 windows x86 arch:x86
9230ac67a5d0e208119bd8086629bc57
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
MapViewOfFileEx
lstrcmpiW
lstrcmpW
GetProcessId
GlobalAddAtomW
GlobalGetAtomNameW
GlobalDeleteAtom
K32EnumProcesses
GetProcessTimes
K32EmptyWorkingSet
GetCommandLineW
GetFullPathNameW
GetLocaleInfoW
GetTimeFormatW
GetDateFormatW
OpenFileMappingA
GetDriveTypeW
GetLogicalDrives
SetErrorMode
FileTimeToLocalFileTime
GlobalFree
GlobalUnlock
GlobalLock
GetVersion
GetSystemTimes
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
IsDebuggerPresent
GetStartupInfoW
GetSystemTimeAsFileTime
InitializeSListHead
EncodePointer
GlobalAlloc
FreeResource
VerSetConditionMask
VerifyVersionInfoW
OutputDebugStringA
GetEnvironmentStringsW
SetEnvironmentVariableW
GetEnvironmentVariableW
FreeEnvironmentStringsW
lstrcpyW
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
VirtualAlloc
VirtualFree
LoadLibraryExA
VirtualProtect
VirtualQuery
SetCurrentDirectoryW
OpenEventW
LocalAlloc
lstrlenW
LoadLibraryExW
ResumeThread
SuspendThread
CreateThread
CreateDirectoryA
VirtualProtectEx
VirtualFreeEx
VirtualAllocEx
WriteProcessMemory
MoveFileExA
MoveFileW
MoveFileA
RemoveDirectoryA
CopyFileA
IsBadWritePtr
GetFileAttributesExW
GetFileAttributesExA
FindNextFileA
FindFirstFileA
SetFileAttributesA
CreateFileA
GetCurrentThread
SetThreadPriority
WTSGetActiveConsoleSessionId
LoadLibraryA
FlushFileBuffers
SetFilePointerEx
ProcessIdToSessionId
lstrcmpA
GetACP
WritePrivateProfileStringA
GetPrivateProfileStringA
RemoveDirectoryW
FindNextFileW
IsBadReadPtr
GetFileTime
GetTempFileNameW
SystemTimeToTzSpecificLocalTime
SetFileAttributesW
GetTempPathW
WritePrivateProfileSectionW
GetPrivateProfileSectionNamesW
GetPrivateProfileSectionW
LocalFree
GetDiskFreeSpaceExW
GetSystemDirectoryW
GetComputerNameA
TerminateThread
WritePrivateProfileStringW
GetWindowsDirectoryW
GetSystemInfo
GetVersionExW
K32GetProcessImageFileNameW
FindClose
FindFirstFileW
GetSystemTime
GetFileAttributesA
GetModuleFileNameA
OpenMutexW
MoveFileExW
GetPrivateProfileIntW
OutputDebugStringW
CopyFileW
WaitNamedPipeW
OpenFileMappingW
GetPrivateProfileStringW
GetLongPathNameW
K32GetModuleFileNameExW
ResetEvent
SetEvent
GetExitCodeThread
CreateEventW
InitializeCriticalSection
WaitForMultipleObjects
GetExitCodeProcess
Module32NextW
FreeLibrary
GetModuleHandleW
CreateProcessW
ReadProcessMemory
GetProcAddress
Module32FirstW
LoadLibraryW
Process32FirstW
Process32NextW
CreateToolhelp32Snapshot
GetLogicalDriveStringsW
OpenProcess
DeleteFileA
TerminateProcess
ExpandEnvironmentStringsW
GetCurrentProcess
QueryDosDeviceW
QueryPerformanceCounter
QueryPerformanceFrequency
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcessId
DeleteFileW
FormatMessageW
Sleep
ReleaseMutex
GetCurrentThreadId
WaitForSingleObject
CreateMutexW
SetLastError
GetFileSizeEx
SetEndOfFile
FindResourceW
LoadResource
FindResourceExW
LockResource
SizeofResource
GetModuleFileNameW
GetUserDefaultLangID
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
DeviceIoControl
HeapFree
GetTickCount
MapViewOfFile
CreateFileMappingW
GetFileSize
GetLocalTime
FileTimeToSystemTime
GetFileInformationByHandle
UnmapViewOfFile
WideCharToMultiByte
SystemTimeToFileTime
GetCurrentDirectoryW
CloseHandle
LocalFileTimeToFileTime
MultiByteToWideChar
GetFileAttributesW
CreateFileW
SetFilePointer
CreateDirectoryW
SetFileTime
WriteFile
ReadFile
GlobalMemoryStatusEx
user32
LoadBitmapW
DrawIcon
IntersectRect
ReleaseCapture
GetFocus
SetFocus
SetCapture
LoadIconW
KillTimer
EnableWindow
MoveWindow
IsRectEmpty
IsChild
IsDialogMessageW
ScreenToClient
GetNextDlgTabItem
GetCursorPos
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
GetWindow
FrameRect
GetSysColor
IsWindowEnabled
GetWindowDC
GetScrollInfo
SetWindowTextW
SetForegroundWindow
GetActiveWindow
GetForegroundWindow
AttachThreadInput
SetActiveWindow
FillRect
WindowFromPoint
GetScrollPos
GetKeyState
GetSysColorBrush
CallNextHookEx
GetAsyncKeyState
AllowSetForegroundWindow
ExitWindowsEx
IsIconic
PostQuitMessage
EnumDisplayDevicesW
EnumDisplaySettingsW
GetCapture
GetWindowTextLengthW
GetWindowTextW
RedrawWindow
GetMessagePos
DrawFrameControl
SetScrollInfo
LoadImageW
DestroyIcon
DrawIconEx
SetRectEmpty
UnionRect
CopyRect
SetCursor
PtInRect
GetDlgItem
SetRect
InflateRect
GetDlgCtrlID
InvalidateRect
DrawTextW
GetShellWindow
MessageBoxW
LoadStringW
UnhookWindowsHookEx
SetWindowsHookExW
OffsetRect
ClientToScreen
CallWindowProcW
GetClassInfoExW
UpdateLayeredWindow
BringWindowToTop
UpdateWindow
IsWindowVisible
RegisterWindowMessageW
EndPaint
BeginPaint
GetParent
SendMessageW
SetWindowPos
TrackPopupMenu
CharNextW
CharLowerW
GetMessageW
DispatchMessageW
SetTimer
PeekMessageW
TranslateMessage
PostThreadMessageW
GetWindowLongW
PostMessageW
FindWindowExW
GetWindowRect
SendMessageTimeoutW
EqualRect
EnumChildWindows
SetWindowRgn
ShowWindow
IsWindow
FindWindowW
CreatePopupMenu
GetDesktopWindow
UnregisterClassW
wsprintfW
SetScrollPos
ShowScrollBar
DestroyCursor
RegisterClipboardFormatW
GetClassNameW
SetWindowLongW
GetClientRect
SystemParametersInfoW
DefWindowProcW
DestroyWindow
GetDC
CreateWindowExW
RegisterClassExW
AdjustWindowRect
LoadCursorW
ReleaseDC
GetWindowThreadProcessId
EnumWindows
GetSystemMetrics
gdi32
GetPixelFormat
ChoosePixelFormat
DescribePixelFormat
DeleteObject
DeleteDC
SelectObject
BitBlt
StretchBlt
CreateCompatibleDC
CreateCompatibleBitmap
CreateDIBSection
SetBkMode
GetStockObject
SetViewportOrgEx
CreateRectRgn
CombineRgn
OffsetRgn
GetDeviceCaps
CreateFontIndirectW
GetObjectW
SetTextColor
SetBkColor
GetTextColor
GetCurrentObject
Rectangle
ExtTextOutW
SetWorldTransform
GetWorldTransform
RectInRegion
RestoreDC
TextOutW
GetTextExtentPoint32W
SelectClipRgn
SaveDC
CreateRectRgnIndirect
LineTo
MoveToEx
CreatePen
GetClipRgn
RoundRect
ExtSelectClipRgn
CreatePolygonRgn
SetStretchBltMode
CreateBrushIndirect
CreateBitmap
GetViewportOrgEx
GetWindowOrgEx
CreateDCW
GetDIBits
GetRgnBox
SetWindowOrgEx
CreateRoundRectRgn
SetGraphicsMode
CreateSolidBrush
Polygon
GetClipBox
OffsetWindowOrgEx
GetTextMetricsW
SetPixelFormat
FillRgn
comdlg32
ChooseColorW
GetSaveFileNameW
GetOpenFileNameW
advapi32
RegGetValueA
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptAcquireContextW
GetUserNameW
GetTokenInformation
IsValidSid
GetLengthSid
ConvertSidToStringSidW
CopySid
RegEnumKeyW
RevertToSelf
ImpersonateLoggedOnUser
RegDeleteValueW
RegDeleteKeyW
DeleteService
ControlService
CreateServiceW
UnlockServiceDatabase
ChangeServiceConfig2W
LockServiceDatabase
StartServiceW
QueryServiceStatus
QueryServiceStatusEx
GetUserNameA
SetTokenInformation
AllocateLocallyUniqueId
BuildTrusteeWithSidW
LookupAccountSidW
LookupAccountNameW
GetAclInformation
AddAce
InitializeAcl
GetSidSubAuthority
InitializeSid
GetSidLengthRequired
CloseServiceHandle
ChangeServiceConfigW
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
DuplicateTokenEx
CreateProcessAsUserW
GetSecurityDescriptorSacl
SetSecurityDescriptorDacl
SetSecurityDescriptorSacl
InitializeSecurityDescriptor
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegSetValueExA
RegEnumValueA
RegEnumKeyA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegCreateKeyA
RegOpenKeyA
SetNamedSecurityInfoW
SetEntriesInAclW
BuildExplicitAccessWithNameW
DeleteAce
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueW
RegEnumValueW
RegEnumKeyExW
RegQueryValueW
RegQueryInfoKeyW
RegNotifyChangeKeyValue
RegSetValueExW
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
RegCreateKeyExW
RegOpenKeyW
RegCreateKeyW
RegSetValueW
RegOpenKeyExA
RegQueryValueExA
GetAce
GetNamedSecurityInfoW
RegOpenCurrentUser
shell32
SHFileOperationW
SHCreateDirectoryExW
ShellExecuteExW
SHGetSpecialFolderPathW
SHGetFolderPathW
SHGetFolderPathA
ord21
SHGetDesktopFolder
DragFinish
DragQueryFileW
SHGetFileInfoW
SHChangeNotify
ShellExecuteW
ord680
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBindToParent
ole32
CoUninitialize
CoSetProxyBlanket
DoDragDrop
RevokeDragDrop
OleDuplicateData
ReleaseStgMedium
CoInitializeEx
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CreateStreamOnHGlobal
CoCreateGuid
CoCreateInstance
RegisterDragDrop
CoGetMalloc
CoInitialize
oleaut32
VarR8FromStr
VarI4FromStr
VarDateFromStr
SetErrorInfo
VarDecFromStr
VarDecCmp
VarUI4FromStr
SysAllocStringLen
VariantClear
SysStringLen
SysAllocString
SysFreeString
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantChangeType
GetErrorInfo
VariantInit
CreateErrorInfo
msvcp140
?_Xout_of_range@std@@YAXPBD@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
_Mbrtowc
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
_Mtx_unlock
_Mtx_lock
_Mtx_destroy_in_situ
_Mtx_init_in_situ
?_Throw_C_error@std@@YAXH@Z
?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?readsome@?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE_JPA_W_J@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?setf@ios_base@std@@QAEHH@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?fail@ios_base@std@@QBE_NXZ
?widen@?$ctype@_W@std@@QBE_WD@Z
?id@?$ctype@_W@std@@2V0locale@2@A
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??Bid@locale@std@@QAEIXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_Getdays@_Locinfo@std@@QBEPBDXZ
?_Getmonths@_Locinfo@std@@QBEPBDXZ
?_W_Getdays@_Locinfo@std@@QBEPBGXZ
?_W_Getmonths@_Locinfo@std@@QBEPBGXZ
?rdstate@ios_base@std@@QBEHXZ
?good@ios_base@std@@QBE_NXZ
?flags@ios_base@std@@QBEHXZ
?setf@ios_base@std@@QAEHHH@Z
?width@ios_base@std@@QBE_JXZ
?width@ios_base@std@@QAE_J_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
?uncaught_exception@std@@YA_NXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WXZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?pbase@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE_W_W@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
shlwapi
StrCmpW
PathGetDriveNumberW
PathIsNetworkPathW
PathFindExtensionW
PathCanonicalizeW
PathIsUNCW
StrToIntW
PathAddExtensionW
SHDeleteValueW
SHDeleteValueA
SHSetValueW
SHSetValueA
SHGetValueW
SHGetValueA
PathFileExistsA
PathIsDirectoryA
SHEnumKeyExW
SHDeleteKeyW
PathRemoveBackslashW
PathIsRootW
StrToIntA
PathIsDirectoryW
PathIsFileSpecW
PathAddBackslashW
UrlGetPartW
StrRetToBufW
SHRegGetUSValueW
PathMatchSpecW
PathRemoveArgsW
AssocCreate
StrCmpIW
StrStrIW
PathUnquoteSpacesW
PathAppendW
PathRemoveExtensionW
PathRemoveFileSpecW
PathFindFileNameW
PathFileExistsW
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
comctl32
ImageList_DrawEx
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_LoadImageW
DrawShadowText
ImageList_GetIcon
_TrackMouseEvent
InitCommonControlsEx
ImageList_Destroy
uxtheme
CloseThemeData
OpenThemeData
DrawThemeBackground
msimg32
GradientFill
TransparentBlt
AlphaBlend
wtsapi32
WTSQueryUserToken
WTSFreeMemory
WTSEnumerateSessionsW
wininet
InternetOpenUrlW
InternetCloseHandle
InternetOpenA
InternetGetConnectedState
HttpOpenRequestW
InternetConnectW
InternetOpenW
InternetCrackUrlW
InternetCanonicalizeUrlW
InternetReadFile
InternetCrackUrlA
InternetSetOptionW
HttpSendRequestW
HttpQueryInfoW
HttpQueryInfoA
userenv
DestroyEnvironmentBlock
CreateEnvironmentBlock
LoadUserProfileW
UnloadUserProfile
crypt32
CertOpenStore
CertEnumCertificatesInStore
CertVerifyTimeValidity
CertGetCertificateContextProperty
CertCloseStore
CertFreeCertificateContext
ws2_32
gethostbyname
WSAStartup
inet_ntoa
WSACleanup
ntohl
gethostname
netapi32
NetApiBufferFree
vcruntime140
__current_exception_context
_CxxThrowException
__std_type_info_destroy_list
strrchr
strstr
__std_type_info_compare
_except_handler4_common
strchr
memchr
_purecall
wcsrchr
memcmp
wcschr
memmove
__RTDynamicCast
__current_exception
__CxxFrameHandler3
memcpy
wcsstr
memset
__std_terminate
__std_exception_destroy
__std_exception_copy
api-ms-win-crt-heap-l1-1-0
_recalloc
calloc
realloc
_set_new_mode
free
_callnewh
malloc
api-ms-win-crt-string-l1-1-0
_wcsrev
iswdigit
iswprint
iswupper
wcscpy
_wcsdup
wcspbrk
__isascii
isprint
toupper
strcat_s
strncat_s
isgraph
strcpy_s
wcsspn
wcscspn
tolower
_strnicmp
isspace
isupper
wcscat
wcscat_s
wcsncpy_s
_wcsnicmp
_wcsicmp
isalpha
isxdigit
isalnum
strncmp
strncpy_s
isblank
wcsncmp
_stricmp
_memccpy
strnlen
wcscmp
_wcslwr_s
iswspace
wcsncat_s
ispunct
strlen
_wcsupr_s
isdigit
wcslen
wmemcpy_s
wcsncpy
wcsnlen
islower
wcscpy_s
strcat
strcmp
strcpy
iscntrl
strncpy
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vswprintf
__stdio_common_vswprintf_s
__p__commode
_wfopen_s
fclose
fread
__acrt_iob_func
__stdio_common_vfprintf
ftell
fputc
ferror
fseek
__stdio_common_vsnprintf_s
fopen_s
__stdio_common_vsscanf
_set_fmode
__stdio_common_vsprintf_p
__stdio_common_vswprintf_p
__stdio_common_vsprintf
__stdio_common_vswscanf
__stdio_common_vsprintf_s
_wfopen
fwrite
__stdio_common_vsnwprintf_s
api-ms-win-crt-utility-l1-1-0
div
srand
abs
labs
rand
api-ms-win-crt-runtime-l1-1-0
_c_exit
_controlfp_s
exit
_initterm_e
_initterm
_seh_filter_dll
_configure_narrow_argv
_get_wide_winmain_command_line
_initialize_narrow_environment
_initialize_onexit_table
_beginthreadex
_initialize_wide_environment
_configure_wide_argv
_register_onexit_function
_execute_onexit_table
_set_app_type
_crt_atexit
_errno
_invalid_parameter_noinfo
_crt_at_quick_exit
_register_thread_local_exe_atexit_callback
_seh_filter_exe
_resetstkoflw
_invalid_parameter_noinfo_noreturn
_cexit
terminate
_exit
api-ms-win-crt-convert-l1-1-0
_ui64tow_s
_wtoi
_itow_s
atoi
wcstoul
_wtof
_i64tow
_wtol
_atoi64
_wtoi64
wcstod
_wcstoui64
_wcstoi64
_i64tow_s
_itoa_s
strtol
wcstol
_strtoui64
atof
api-ms-win-crt-time-l1-1-0
_mktime64
_mkgmtime64
_time64
_time32
_localtime64_s
api-ms-win-crt-math-l1-1-0
pow
fabs
ceil
modf
_dclass
asin
__setusermatherr
sin
cos
sqrt
_isnan
_finite
floor
_except1
api-ms-win-crt-filesystem-l1-1-0
_waccess
_waccess_s
_mkdir
api-ms-win-crt-multibyte-l1-1-0
_mbscmp
_mbsrchr
_mbscspn
_mbsstr
_mbsinc
_mbschr
_mbsicmp
_mbsspn
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
iphlpapi
GetAdaptersInfo
Sections
.text Size: 2.2MB - Virtual size: 2.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 633KB - Virtual size: 633KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 50KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2.8MB - Virtual size: 2.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 150KB - Virtual size: 149KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ