E:\KINGSOFT_DUBA\Build\Build_Src\kisengine_git\1517\product\win32\dbginfo\ksoftmgr.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
cbf0cc4af3565e5ac9c0438ae373600e9f3641fde886b5f06951637b5a2c9a17.exe
Resource
win7-20240508-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
cbf0cc4af3565e5ac9c0438ae373600e9f3641fde886b5f06951637b5a2c9a17.exe
Resource
win10v2004-20240611-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
cbf0cc4af3565e5ac9c0438ae373600e9f3641fde886b5f06951637b5a2c9a17
-
Size
9.9MB
-
MD5
ef0ebf525c14a8f430c3110b7cb219c7
-
SHA1
2ea8680a280d360121192e23d7ef7dd10844d1fa
-
SHA256
cbf0cc4af3565e5ac9c0438ae373600e9f3641fde886b5f06951637b5a2c9a17
-
SHA512
27d5c0f0b9b540627846791f92b0582b67ccbce2443d379adcb03049e011a85a40fa41cb56cb91358acf939280202d17b56eff4786f984780165f93355b8ec43
-
SSDEEP
196608:b72M1hVqm+elnTy3tKYhLVCUVzVu2YG1M4TF:hQSm3tDCUVzY2BS4TF
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cbf0cc4af3565e5ac9c0438ae373600e9f3641fde886b5f06951637b5a2c9a17
Files
-
cbf0cc4af3565e5ac9c0438ae373600e9f3641fde886b5f06951637b5a2c9a17.exe windows:6 windows x86 arch:x86
3029ee37feb1b7b1fc278e333f5e2432
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
CreateSemaphoreW
OutputDebugStringA
FreeResource
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
OpenMutexW
WritePrivateProfileSectionW
GetFullPathNameW
GetVersion
MapViewOfFileEx
lstrlenW
FileTimeToLocalFileTime
GetSystemTime
GetDriveTypeW
GetLogicalDrives
SetErrorMode
GlobalMemoryStatusEx
DeviceIoControl
GetCommandLineW
GetProcessTimes
GetProcessId
GetProcessIoCounters
K32QueryWorkingSet
K32GetProcessMemoryInfo
K32GetProcessImageFileNameW
VerSetConditionMask
OutputDebugStringW
VerifyVersionInfoW
K32GetModuleFileNameExW
QueryPerformanceFrequency
LoadLibraryA
GlobalDeleteAtom
GlobalGetAtomNameW
GetDiskFreeSpaceExW
VirtualAllocEx
VirtualFreeEx
MulDiv
lstrcmpW
IsBadWritePtr
OpenFileMappingW
LoadLibraryExW
lstrcmpiW
K32EnumProcesses
GetSystemInfo
EnumResourceNamesW
WaitNamedPipeW
TzSpecificLocalTimeToSystemTime
GetUserDefaultLangID
SetFilePointerEx
ReplaceFileW
GetVolumePathNameW
GetVolumeInformationW
GetLongPathNameW
GetFileAttributesExW
SetCurrentDirectoryW
VirtualProtect
ConvertThreadToFiber
ConvertFiberToThread
GetModuleHandleExW
CreateFiber
DeleteFiber
SwitchToFiber
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
ReadConsoleW
ReadConsoleA
SetConsoleMode
GetConsoleMode
GetEnvironmentVariableW
VerifyVersionInfoA
PeekNamedPipe
GetFileType
GetStdHandle
GetEnvironmentVariableA
CompareFileTime
MoveFileExA
GetModuleHandleA
GetSystemDirectoryA
SleepEx
LoadLibraryExA
VirtualFree
VirtualAlloc
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
EncodePointer
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetExitCodeThread
OpenEventW
LocalFree
LocalAlloc
FlushFileBuffers
CreateFileA
ResumeThread
SuspendThread
SetThreadPriority
MoveFileW
TerminateThread
CreateThread
ProcessIdToSessionId
GetWindowsDirectoryW
WritePrivateProfileStringW
WritePrivateProfileStringA
GetPrivateProfileStringW
GetPrivateProfileStringA
RemoveDirectoryW
FindNextFileW
FindFirstFileW
FindClose
SystemTimeToTzSpecificLocalTime
MoveFileExW
GetTempPathW
SetFileAttributesW
GetTempFileNameW
GetFileTime
WaitForMultipleObjects
CreateEventW
ResetEvent
SetEvent
CopyFileW
GetPrivateProfileIntW
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetVersionExW
GetSystemDirectoryW
Module32NextW
Module32FirstW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
LoadLibraryW
GetProcAddress
GetModuleHandleW
FreeLibrary
ReadProcessMemory
OpenProcess
CreateProcessW
GetExitCodeProcess
ReleaseSemaphore
TerminateProcess
GetCurrentProcess
QueryDosDeviceW
GetLogicalDriveStringsW
ExpandEnvironmentStringsW
FormatMessageW
GetModuleFileNameW
GetCurrentThreadId
GetCurrentProcessId
Sleep
CreateMutexW
WaitForSingleObject
ReleaseMutex
SetLastError
GetFileSizeEx
DeleteFileW
SetEndOfFile
FindResourceW
SizeofResource
LockResource
LoadResource
FindResourceExW
DeleteCriticalSection
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
RaiseException
DecodePointer
FileTimeToSystemTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetTickCount
GetLocalTime
GetFileSize
GetFileInformationByHandle
WideCharToMultiByte
MultiByteToWideChar
SystemTimeToFileTime
CloseHandle
WriteFile
SetFileTime
SetFilePointer
ReadFile
LocalFileTimeToFileTime
GetFileAttributesW
CreateFileW
CreateDirectoryW
CompareStringW
GetCurrentDirectoryW
user32
EnumChildWindows
FillRect
GetSysColor
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
RedrawWindow
InvalidateRgn
DestroyAcceleratorTable
CreateAcceleratorTableW
CharNextW
GetWindowDC
TrackPopupMenu
AppendMenuW
DestroyMenu
CreatePopupMenu
FindWindowExW
PostQuitMessage
GetScrollPos
SetActiveWindow
IsWindowEnabled
EnableWindow
GetKeyState
IsIconic
GetActiveWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetTimer
AttachThreadInput
GetMonitorInfoW
MonitorFromWindow
SystemParametersInfoW
IsDialogMessageW
LoadImageW
LoadCursorW
GetWindow
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
BringWindowToTop
DestroyCursor
SendMessageTimeoutW
ExitWindowsEx
GetIconInfo
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
CreateDesktopW
SetThreadDesktop
CloseDesktop
GetThreadDesktop
SetWindowRgn
EnumDesktopWindows
EnumWindows
SetCursor
DrawTextW
DrawIcon
IsWindow
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxW
wsprintfW
PostThreadMessageW
PeekMessageW
GetClassNameW
GetWindowRect
GetClientRect
InvalidateRect
EndPaint
OffsetRect
UnionRect
IntersectRect
InflateRect
SetRectEmpty
SetRect
MapWindowPoints
ScreenToClient
CopyRect
LoadBitmapW
LoadIconW
DestroyIcon
DrawIconEx
GetSystemMetrics
GetCursorPos
WindowFromPoint
GetWindowThreadProcessId
GetShellWindow
GetParent
SendMessageW
FindWindowW
IsRectEmpty
LoadStringW
GetDC
GetGuiResources
RegisterWindowMessageW
PostMessageW
DefWindowProcW
CallWindowProcW
RegisterClassExW
GetClassInfoExW
CreateWindowExW
IsChild
DestroyWindow
ShowWindow
UpdateLayeredWindow
MoveWindow
SetWindowPos
IsWindowVisible
GetDlgItem
GetNextDlgTabItem
GetDlgCtrlID
SetFocus
GetFocus
SetCapture
ReleaseCapture
KillTimer
ReleaseDC
BeginPaint
GetDesktopWindow
UnregisterClassW
GetMessageW
TranslateMessage
DispatchMessageW
ClientToScreen
gdi32
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectInRegion
CreateBrushIndirect
CreateCompatibleDC
CreateFontIndirectW
CreatePen
DeleteDC
DeleteObject
GetCurrentObject
GetStockObject
LineTo
Rectangle
SetGraphicsMode
SelectObject
SetBkColor
SetBkMode
StretchBlt
SetStretchBltMode
SetTextColor
GetObjectW
MoveToEx
ExtTextOutW
BitBlt
CreateCompatibleBitmap
CreateDCW
CombineRgn
GetWorldTransform
SetWorldTransform
CreateDIBSection
TextOutW
SetViewportOrgEx
SetWindowOrgEx
CreateRectRgn
CreateRectRgnIndirect
GetBitmapBits
GetObjectA
EnumFontFamiliesExW
GetDeviceCaps
CreateSolidBrush
CreateBitmap
RoundRect
CreateRoundRectRgn
GetClipRgn
GetDIBits
GetRgnBox
GetTextColor
GetTextExtentPoint32W
GetViewportOrgEx
GetWindowOrgEx
SetBitmapBits
OffsetRgn
advapi32
OpenProcessToken
OpenServiceW
OpenSCManagerW
CryptGenRandom
CryptReleaseContext
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
CloseServiceHandle
ChangeServiceConfigW
CreateProcessAsUserW
RegQueryInfoKeyW
RegNotifyChangeKeyValue
RegEnumValueW
RegEnumKeyExW
RegQueryValueExA
RegOpenKeyExA
DuplicateTokenEx
SetTokenInformation
BuildTrusteeWithSidW
SetEntriesInAclW
LookupAccountNameW
LookupAccountSidW
GetTokenInformation
GetLengthSid
CopySid
AllocateLocallyUniqueId
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetSecurityDescriptorSacl
GetSecurityDescriptorSacl
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegOpenCurrentUser
RevertToSelf
ImpersonateLoggedOnUser
RegQueryValueW
RegDeleteValueW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyW
RegCreateKeyExW
LookupPrivilegeValueW
AdjustTokenPrivileges
QueryServiceConfigW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
shell32
SHFileOperationW
ShellExecuteExW
SHCreateDirectoryExW
ShellExecuteW
SHGetFileInfoW
SHGetFolderPathW
CommandLineToArgvW
SHGetSpecialFolderPathW
SHGetMalloc
ord680
SHChangeNotify
ord727
Shell_NotifyIconW
SHBrowseForFolderW
SHGetPathFromIDListW
ole32
CoUninitialize
CoInitializeEx
CoSetProxyBlanket
CoGetClassObject
CLSIDFromString
StringFromGUID2
CLSIDFromProgID
CoTaskMemFree
OleInitialize
OleUninitialize
OleLockRunning
CoInitialize
CoTaskMemRealloc
CoCreateGuid
CoTaskMemAlloc
CreateStreamOnHGlobal
CoCreateInstance
oleaut32
DispCallFunc
LoadRegTypeLi
LoadTypeLi
SysStringLen
VariantInit
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
SysAllocStringLen
SysFreeString
VarUI4FromStr
OleCreateFontIndirect
CreateErrorInfo
SetErrorInfo
VariantChangeType
GetErrorInfo
VariantClear
msvcp140
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?id@?$ctype@_W@std@@2V0locale@2@A
_Xtime_get_ticks
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?_W_Getmonths@_Locinfo@std@@QBEPBGXZ
?_W_Getdays@_Locinfo@std@@QBEPBGXZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
_Mbrtowc
?_Xbad_alloc@std@@YAXXZ
?uncaught_exception@std@@YA_NXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
shlwapi
PathGetDriveNumberW
PathIsUNCW
StrFormatByteSizeW
StrCmpNW
StrCmpNIW
StrCmpIW
PathIsRelativeW
PathSearchAndQualifyW
StrToIntW
PathFindExtensionW
SHEnumKeyExW
SHDeleteKeyW
PathRemoveBackslashW
PathIsRootW
PathAddBackslashW
StrToIntA
PathIsDirectoryW
PathRemoveFileSpecW
PathRemoveExtensionW
PathFindFileNameW
PathAppendW
PathFileExistsW
StrCpyW
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
comctl32
_TrackMouseEvent
ImageList_Draw
ImageList_GetIconSize
InitCommonControlsEx
DrawShadowText
msimg32
AlphaBlend
gdiplus
GdipAddPathArcI
GdipCreateLineBrushFromRectWithAngleI
GdipCreatePen1
GdipDeletePen
GdipSetPenStartCap
GdipSetPenEndCap
GdipSetPenMode
GdipSetPenDashStyle
GdipBitmapUnlockBits
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipSetCompositingQuality
GdipSetSmoothingMode
GdipSetPixelOffsetMode
GdipAddPathStringI
GdipSetTextRenderingHint
GdipSetInterpolationMode
GdipResetWorldTransform
GdipTranslateWorldTransform
GdipRotateWorldTransform
GdipDrawLine
GdipDeleteBrush
GdipDrawLinesI
GdipDrawRectangleI
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipDrawPath
GdipGraphicsClear
GdipCreateStringFormat
GdipFillRectangle
GdipFillRectangleI
GdipFillPath
GdipDrawImageI
GdipDrawImageRectI
GdipDrawImageRectRect
GdipGetFamily
GdipGetFontSize
GdipMeasureString
GdipDrawString
GdipDeleteFont
GdipSetStringFormatFlags
GdipCloneBrush
GdipSetStringFormatLineAlign
GdipSetStringFormatTrimming
GdipCreateBitmapFromFile
GdipAddPathPieI
GdipCreateBitmapFromFileICM
GdipClosePathFigure
GdipAddPathRectangleI
GdipDrawLineI
GdipSetClipHrgn
GdipCreateSolidFill
GdipImageRotateFlip
GdipCloneBitmapArea
GdipDrawImagePointsRectI
GdipCreateLineBrush
GdipAddPathLineI
GdipCreateFont
GdipCreateFontFromLogfontW
GdipCreateFontFromDC
GdipCreateFromHDC
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipBitmapLockBits
GdipCreateBitmapFromHBITMAP
GdipGetImagePixelFormat
GdipSaveImageToFile
GdipSetClipPath
GdipDrawImageRectRectI
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipLoadImageFromFileICM
GdipLoadImageFromFile
GdipAddPathEllipseI
GdipDeletePath
GdipCreatePath
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipDisposeImage
GdipCloneImage
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipPrivateAddFontFile
GdipGetFontCollectionFamilyList
GdipGetFontCollectionFamilyCount
GdipDeletePrivateFontCollection
GdipNewPrivateFontCollection
GdipCloneFontFamily
GdiplusShutdown
GdiplusStartup
GdipAlloc
GdipDeleteFontFamily
GdipFree
GdipGetGenericFontFamilySansSerif
GdipCreateFontFromLogfontA
GdipCreateFontFamilyFromName
ws2_32
gethostbyname
getnameinfo
shutdown
WSACleanup
closesocket
recv
send
WSAGetLastError
bind
connect
getpeername
getsockname
getsockopt
htons
ntohs
setsockopt
socket
WSASetLastError
WSAIoctl
WSAStartup
accept
htonl
listen
ioctlsocket
__WSAFDIsSet
select
getaddrinfo
freeaddrinfo
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
recvfrom
sendto
gethostname
ntohl
crypt32
CertFreeCertificateContext
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertOpenSystemStoreA
CertCloseStore
CertEnumCertificatesInStore
wldap32
ord27
ord26
ord22
ord41
ord50
ord33
ord60
ord211
ord46
ord217
ord143
ord35
ord32
ord79
ord30
ord45
ord301
ord200
normaliz
IdnToAscii
IdnToUnicode
userenv
LoadUserProfileW
CreateEnvironmentBlock
DestroyEnvironmentBlock
UnloadUserProfile
wtsapi32
WTSFreeMemory
WTSEnumerateSessionsW
psapi
GetMappedFileNameW
vcruntime140
memmove
wcschr
__std_terminate
_CxxThrowException
__std_exception_destroy
memchr
memset
strchr
__CxxFrameHandler3
wcsstr
_except_handler4_common
__current_exception
wcsrchr
_purecall
_local_unwind4
__std_exception_copy
strstr
__current_exception_context
__std_type_info_destroy_list
strrchr
memcpy
__RTDynamicCast
api-ms-win-crt-string-l1-1-0
isalnum
isalpha
wcscat_s
wcscpy_s
wcsspn
wcscspn
_wcsupr_s
wcstok
iswascii
_stricmp
strcpy_s
strncat_s
strcat_s
strncmp
wcspbrk
strcspn
strspn
strcmp
isspace
wcsncpy
_wcsnicmp
_wcsicmp
wcsncpy_s
strncpy_s
strnlen
wcsncmp
tolower
wmemcpy_s
_wcslwr_s
wcsnlen
_wcslwr
strncpy
_strnicmp
wcsncat_s
iswspace
_strdup
strpbrk
api-ms-win-crt-heap-l1-1-0
_set_new_mode
malloc
realloc
_msize
calloc
_recalloc
_callnewh
free
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vsprintf_s
__acrt_iob_func
__stdio_common_vswscanf
_set_fmode
_wfopen_s
__stdio_common_vsprintf
fread
fclose
__p__commode
fflush
fwrite
_wfopen
fputs
feof
putc
setbuf
_wfsopen
_get_stream_buffer_pointers
fgetc
fgetpos
_fileno
fputc
_fsopen
fsetpos
_fseeki64
ftell
setvbuf
ungetc
clearerr
_setmode
__stdio_common_vswprintf
_chsize
fopen
_open_osfhandle
__stdio_common_vsnwprintf_s
_open
__stdio_common_vswprintf_s
_close
_read
fopen_s
ferror
fseek
__stdio_common_vfprintf
__stdio_common_vsnprintf_s
__stdio_common_vsscanf
_write
fgets
_lseeki64
api-ms-win-crt-utility-l1-1-0
rand
srand
qsort
api-ms-win-crt-runtime-l1-1-0
_errno
_invalid_parameter_noinfo_noreturn
signal
strerror_s
_seh_filter_dll
raise
_configure_narrow_argv
__sys_nerr
_initialize_narrow_environment
_initialize_onexit_table
_getpid
_register_onexit_function
_exit
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
terminate
_seh_filter_exe
_set_app_type
strerror
_configure_wide_argv
_controlfp_s
_invalid_parameter_noinfo
_register_thread_local_exe_atexit_callback
_beginthreadex
_initialize_wide_environment
_c_exit
exit
_initterm_e
_get_wide_winmain_command_line
_initterm
api-ms-win-crt-convert-l1-1-0
_strtoi64
_strtoui64
_i64toa
_itow_s
_ui64toa
_wcstoui64
_wcstoi64
atof
wcstod
_itoa_s
wcstol
_wtol
_atoi64
_wtoi64
_wtoi
_ui64tow_s
_i64tow
wcstoul
atoi
strtol
strtoul
wcstombs
strtoll
_wtof
api-ms-win-crt-time-l1-1-0
_time32
_mkgmtime64
_gmtime64_s
_localtime64
strftime
_mktime64
_time64
_gmtime64
_localtime64_s
api-ms-win-crt-multibyte-l1-1-0
_mbsicmp
_mbscmp
_mbschr
_mbsinc
_mbsstr
api-ms-win-crt-filesystem-l1-1-0
rename
_stat64
_unlink
_access
_fstat64
_unlock_file
_lock_file
_wfullpath
_fstat64i32
_mkdir
_stat64i32
_chmod
_waccess
api-ms-win-crt-math-l1-1-0
modf
__setusermatherr
floor
_libm_sse2_sqrt_precise
_dclass
_fdopen
_isnan
_libm_sse2_asin_precise
_libm_sse2_cos_precise
_libm_sse2_pow_precise
_libm_sse2_sin_precise
ceil
_finite
_except1
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
api-ms-win-crt-environment-l1-1-0
getenv
Sections
.text Size: 5.8MB - Virtual size: 5.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 68KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 301KB - Virtual size: 300KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ