Extracted

• 7643b69465e4fe44e441adf35ecd82bcf7dadccdf5c76cecdd1528ca4e9f6cb1

  .exe windows:6 windows x64 arch:x64

  07f6420e98e6150b7f9d2e6e16ec27c2

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  PDB Paths

  C:\Users\lql\source\repos\ApcInject\x64\Release\ApcInject.pdb

  Imports

  kernel32

  WriteProcessMemory

  Thread32Next

  Thread32First

  OpenProcess

  CreateToolhelp32Snapshot

  Sleep

  Process32NextW

  Process32FirstW

  QueueUserAPC

  VirtualAllocEx

  OpenThread

  RtlLookupFunctionEntry

  GetModuleHandleW

  IsDebuggerPresent

  InitializeSListHead

  GetSystemTimeAsFileTime

  RtlVirtualUnwind

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  IsProcessorFeaturePresent

  QueryPerformanceCounter

  GetCurrentProcessId

  GetCurrentThreadId

  RtlCaptureContext

  msvcp140

  ?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ

  ?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z

  ?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ

  ??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z

  ?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

  ?uncaught_exception@std@@YA_NXZ

  ?_Xlength_error@std@@YAXPEBD@Z

  ?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z

  ?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z

  ?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z

  ?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z

  vcruntime140

  memset

  _CxxThrowException

  __C_specific_handler

  __std_terminate

  __std_exception_copy

  __CxxFrameHandler3

  memmove

  __std_exception_destroy

  api-ms-win-crt-heap-l1-1-0

  malloc

  _callnewh

  _set_new_mode

  free

  api-ms-win-crt-string-l1-1-0

  _wcsicmp

  api-ms-win-crt-runtime-l1-1-0

  _c_exit

  _invalid_parameter_noinfo_noreturn

  _cexit

  __p___argv

  _register_onexit_function

  _crt_atexit

  terminate

  __p___argc

  _initterm

  _exit

  _register_thread_local_exe_atexit_callback

  exit

  _initterm_e

  _get_initial_narrow_environment

  _initialize_narrow_environment

  _configure_narrow_argv

  _initialize_onexit_table

  _set_app_type

  _seh_filter_exe

  api-ms-win-crt-math-l1-1-0

  __setusermatherr

  api-ms-win-crt-stdio-l1-1-0

  __p__commode

  _set_fmode

  api-ms-win-crt-locale-l1-1-0

  _configthreadlocale

  Sections

  .text

  Size: 6KB - Virtual size: 6KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 7KB - Virtual size: 6KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1024B - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 1024B - Virtual size: 612B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 68B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ