Static task
static1
Behavioral task
behavioral1
Sample
7fb683d94f7a16932e220d54c5e54c314eefd55d06322f32dc2a630cad486148.exe
Resource
win7-20240508-en
windows7-x64
Behavioral task
behavioral2
Sample
7fb683d94f7a16932e220d54c5e54c314eefd55d06322f32dc2a630cad486148.exe
Resource
win10v2004-20240611-en
windows10-2004-x64
General
-
Target
7fb683d94f7a16932e220d54c5e54c314eefd55d06322f32dc2a630cad486148
-
Size
5.0MB
-
MD5
b35c0a4525e5284d42f8d8c7f539f21e
-
SHA1
c1937d573a953bfe2b8f5a99fc5603775adf2357
-
SHA256
7fb683d94f7a16932e220d54c5e54c314eefd55d06322f32dc2a630cad486148
-
SHA512
19d516aab3cefad54d82378a41e696aa199cedbbecc5319b625d2ea5a7f1741d57577b7a945287cd7dd7caf2a588197588a0359276dbb5f9699e99c3ffdf065d
-
SSDEEP
49152:x3eQurLrfGtqBYXVrQTi2ftULwwunIoKIVLdndRsY8f8kdq0A/gjuV7:w9r3WQbtUJotLdHsY8f8kdq0A/nV7
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7fb683d94f7a16932e220d54c5e54c314eefd55d06322f32dc2a630cad486148
Files
-
7fb683d94f7a16932e220d54c5e54c314eefd55d06322f32dc2a630cad486148.exe windows:4 windows x86 arch:x86
4688259ec10e41f8e3914fdf4aad94e3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
tcalc
?InputDataInfo@CalcInterface@@QAEJPADFFUtag_NTime@@1EK@Z
?PopupDlg@CalcInterface@@QAEHEJF@Z
?GetTreeInfo@CalcInterface@@QAEJPAXHH@Z
?Freefloat@CalcInterface@@QAEXPAM@Z
?InputDataInfo@CalcInterface@@QAEJPADFFFEK@Z
?PopupDlg@CalcInterface@@QAEHF@Z
?InputData@CalcInterface@@QAEJPADFFPAXFEK@Z
?RegisterCallBackFunc@CalcInterface@@QAEFP6GJPADFFPAXFUtag_NTime@@2EK@ZP6GJ0F0JFFK@Z@Z
?Init@CalcInterface@@QAEHPAD000@Z
?SetSysLimited@CalcInterface@@QAEXHHJJPAD0@Z
??1CalcInterface@@UAE@XZ
?AutoImport@CalcInterface@@QAEHHPBDAAH1@Z
?Allocfloat@CalcInterface@@QAEPAMF@Z
?Calc@CalcInterface@@QAEFEJQAPAM@Z
?GetIndexNo@CalcInterface@@QBEJEPAD@Z
?GetIndexNum@CalcInterface@@QBEJE@Z
?GetTypeNum@CalcInterface@@QBEJXZ
?GetTypeName@CalcInterface@@QBEPADJ@Z
?GetIndexInfo@CalcInterface@@QBEPAUtag_INDEXINFO@@EJ@Z
?GetIndexInfo@CalcInterface@@QBEPAUtag_INDEXINFO@@EPAD@Z
??0CalcInterface@@QAE@XZ
??ACalcInterface@@QBEPAUtag_INDEXINFO@@E@Z
viewthem
?INFO_SetLoginName@@YAXQADKD0@Z
?INFO_GetMetaItem@@YAHPAUMETA_ITEM_INFO@@H@Z
?INFO_GetCjzxNum@@YAHXZ
?INFO_GetCjzxTitle@@YAHFPAUext_info_title@@@Z
?INFO_AskCjzx2Title@@YAHJ@Z
?INFO_AskGGCjzx@@YAHFFPADF@Z
?INFO_GetMineNum@@YAHXZ
?INFO_GetMineTitle@@YAHFPAUext_info_title@@@Z
?INFO_AskMineTitle@@YAHFPADFQAJ1@Z
?INFO_GetFixedFile@@YAHPAD0H@Z
?INFO_GetGGCjzxTitle@@YAHFFPAUext_info_title@@@Z
?INFO_GetStatus@@YAXPAD0PAG0@Z
?INFO_GetGGBWTitle@@YAHFPADPAUext_ggbw_title@@F@Z
?INFO_ShowFunc@@YAHPAUHWND__@@FFJFPADFPAUext_info_title@@PAUext_ggbw_title@@FF@Z
?INFO_ProcessMsg@@YAHFPAUHWND__@@IIJ@Z
?INFO_ShowCjzx2Content@@YAHPAUHWND__@@PAUext_info_title@@@Z
?INFO_IsConnect@@YAHXZ
?INFO_Scheme@@YAXUtag_OP_Scheme_Color@@Utag_OP_Scheme_Font@@Utag_OP_Scheme_Menu@@@Z
?INFO_Init@@YAHPAUHWND__@@JPBD111IJ@Z
?INFO_SetOpenRqinfo@@YAXJKQAD@Z
?INFO_GetRollTitle@@YAHFFPAUext_info_title@@AAH@Z
?INFO_RegisterCallBack@@YAXP6GJPADFFPAXFUtag_NTime@@2EK@ZP6GJ0F0JFFK@Z@Z
?INFO_Uninit@@YAHXZ
?INFO_DisConnect@@YAXXZ
?INFO_GetHqMineInfo@@YAHPAPAUstock_mine_info@@@Z
?INFO_Connect@@YAHH@Z
?INFO_AskHqMineInfo@@YAHHPAUsetcode_and_stockcode@@@Z
?INFO_GetTopTitle@@YAHFFPAUext_info_title@@@Z
invest
?SetPrivateInvestDir@@YAXPAD@Z
?RegisterInvestGPInfoHq@@YAXP6GJPBDFPADPAM2@Z@Z
?PopupInvestDlg@@YAXXZ
dbf
?CloseBase@@YAFPAUDBFINFO@@@Z
?Skip@@YAJJPAUDBFINFO@@@Z
?GetFieldStr2@@YAFPAUDBFINFO@@PAD1@Z
?GetFieldStr@@YAFPAUDBFINFO@@PAD1@Z
?ReadDbf@@YAJPAUDBFINFO@@J@Z
?OpenBase@@YAFPAUDBFINFO@@PADF@Z
?WriteDbf@@YAJPAUDBFINFO@@J@Z
?PrevFieldStr@@YAFPAUDBFINFO@@PAD1@Z
tusercomm
DelUserCommModule
NewUserCommModule
tmarquee
DelMarquee
NewMarquee
tgear
GetPYStr
Base64Encode
GetNetCardStr
MD5_String
SendToSocket
CloseTdxIni
DirectConnect
GetTDXProfileString
OpenTdxIni
ListCtrl2Txt
SoftKey_Close
SoftKey_Switch
MD5BIN_Buffer
BufToDouble
ClassXP
MakeBuildNo
SaveToBMPFile
MD5_Buffer
GetTDXProfileInt
tjyaid
GetWtDefInfoFromXML
ProcessWTHostFromXML
tcontrol
?Control_GetTendXMLInfo@@YAXPBDPAUTend_Info@@J@Z
tdximage
DeleteGP
NewTDXImg
NewGP
TDX_JieTu
DeleteTDXImg
mfc42
ord2862
ord1168
ord2096
ord6334
ord800
ord537
ord4710
ord939
ord6888
ord6199
ord3092
ord2818
ord6907
ord6007
ord540
ord4854
ord6675
ord3286
ord641
ord616
ord804
ord5287
ord4247
ord4234
ord4248
ord4245
ord4242
ord4246
ord1644
ord4457
ord4724
ord5053
ord2379
ord2863
ord4499
ord1133
ord2864
ord4810
ord4774
ord3021
ord6453
ord4458
ord4500
ord4501
ord4775
ord3402
ord3721
ord4376
ord5280
ord3597
ord795
ord324
ord6215
ord6880
ord4853
ord3663
ord4284
ord5440
ord6383
ord5450
ord6394
ord2575
ord4396
ord3574
ord3398
ord3733
ord810
ord609
ord2642
ord3287
ord4125
ord6008
ord4000
ord2358
ord924
ord922
ord1949
ord818
ord4275
ord2688
ord2135
ord4299
ord1574
ord4809
ord755
ord2754
ord470
ord535
ord1175
ord3708
ord781
ord2301
ord941
ord3337
ord3811
ord6197
ord6380
ord6270
ord5981
ord1945
ord4273
ord4589
ord4588
ord4899
ord4370
ord4892
ord5076
ord4341
ord4890
ord4531
ord4545
ord4543
ord4526
ord4529
ord4524
ord4964
ord4961
ord4108
ord5240
ord3748
ord1726
ord5260
ord4432
ord560
ord813
ord4723
ord4464
ord4508
ord4349
ord4694
ord5148
ord2086
ord3584
ord543
ord803
ord665
ord1979
ord6385
ord5186
ord354
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord2513
ord293
ord3626
ord2414
ord5787
ord5788
ord2380
ord472
ord283
ord2859
ord798
ord1997
ord6010
ord3511
ord6407
ord5194
ord533
ord858
ord926
ord5465
ord3998
ord6283
ord860
ord5645
ord5583
ord4277
ord3499
ord2515
ord355
ord3571
ord3711
ord2112
ord3619
ord1641
ord6128
ord3752
ord4133
ord4297
ord3693
ord640
ord6172
ord5789
ord5875
ord2405
ord2753
ord5785
ord1640
ord323
ord783
ord809
ord556
ord3874
ord613
ord289
ord1146
ord2122
ord4160
ord6358
ord1088
ord2567
ord2452
ord1816
ord326
ord5101
ord2101
ord2723
ord2390
ord3059
ord5100
ord5104
ord4467
ord4303
ord3351
ord5012
ord976
ord5472
ord3403
ord2879
ord2878
ord4152
ord4077
ord5237
ord2382
ord5283
ord2649
ord1665
ord4436
ord5254
ord2445
ord4427
ord401
ord674
ord5054
ord5031
ord2587
ord4406
ord3394
ord3729
ord3610
ord656
ord6785
ord5953
ord4278
ord4476
ord3089
ord5810
ord5481
ord2031
ord4335
ord4863
ord4975
ord5796
ord5478
ord1971
ord966
ord3570
ord278
ord605
ord2256
ord4919
ord4411
ord4447
ord1795
ord6154
ord2530
ord4364
ord4056
ord5471
ord4121
ord2389
ord5234
ord6369
ord5248
ord2444
ord620
ord298
ord1232
ord1803
ord4230
ord6335
ord1233
ord5871
ord2997
ord1709
ord3103
ord4023
ord2569
ord2714
ord3220
ord4759
ord2078
ord4454
ord6209
ord2800
ord5279
ord3797
ord6605
ord2841
ord4083
ord1865
ord2107
ord1567
ord1265
ord2233
ord268
ord2450
ord1771
ord6366
ord2413
ord2024
ord4401
ord3639
ord692
ord4219
ord2581
ord6119
ord2915
ord5873
ord4129
ord2516
ord361
ord4220
ord2584
ord3654
ord2438
ord1825
ord4696
ord3058
ord3065
ord6336
ord2510
ord2542
ord5243
ord5740
ord1746
ord5577
ord3172
ord5653
ord4420
ord4953
ord4858
ord2399
ord4387
ord3454
ord3198
ord6080
ord6175
ord4623
ord4426
ord338
ord4823
ord652
ord4238
ord6640
ord3317
ord5651
ord3616
ord3127
ord350
ord4202
ord5442
ord3803
ord2289
ord2370
ord2297
ord2363
ord3873
ord2764
ord5768
ord2614
ord2860
ord6905
ord6696
ord6663
ord3790
ord3318
ord6379
ord1841
ord4533
ord4340
ord4347
ord4720
ord4889
ord4963
ord4960
ord6054
ord1725
ord364
ord784
ord4241
ord2091
ord6131
ord6216
ord6778
ord6648
ord6779
ord3753
ord5146
ord5281
ord6877
ord703
ord2454
ord2393
ord6389
ord5356
ord5353
ord2683
ord5355
ord5207
ord389
ord404
ord551
ord3573
ord5773
ord2362
ord2366
ord2763
ord6222
ord6223
ord6282
ord5683
ord5710
ord3177
ord2298
ord6392
ord4536
ord913
ord912
ord3939
ord398
ord4204
ord940
ord3938
ord397
ord3439
ord3438
ord5593
ord5594
ord4189
ord4188
ord3447
ord3196
ord6911
ord6153
ord3920
ord5778
ord6467
ord1154
ord4114
ord6241
ord3996
ord3301
ord3706
ord548
ord2123
ord3914
ord3698
ord765
ord2971
ord5759
ord6192
ord5756
ord6186
ord4330
ord6189
ord6021
ord5794
ord5678
ord5736
ord5579
ord5571
ord6061
ord5864
ord3596
ord6194
ord4614
ord4613
ord2111
ord2535
ord3517
ord6597
ord6650
ord6591
ord6807
ord6857
ord6823
ord6855
ord6832
ord6859
ord6867
ord6847
ord6814
ord6839
ord6846
msvcrt
_mbscmp
time
_setmbcp
_memicmp
_strlwr
_fileno
_chsize
_strcmpi
_unlink
_mbsnbcpy
_strnicmp
fwrite
fopen
fread
fclose
strncpy
_ftol
sprintf
__CxxFrameHandler
fseek
atoi
atof
atol
fgets
_fsopen
memmove
isalnum
free
realloc
rewind
strstr
fflush
strncmp
_CIpow
strtok
isprint
vsprintf
memchr
_findclose
_findfirst
_findnext
ftell
sscanf
exit
srand
fputs
qsort
rand
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@ABQBD@Z
_CxxThrowException
_mbsstr
isdigit
_errno
_stat
_snprintf
_purecall
localtime
_getdiskfree
_getdrive
floor
malloc
calloc
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
??1type_info@@UAE@XZ
_exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_stricmp
_controlfp
kernel32
DeleteFileA
GetTickCount
FindFirstFileA
FindNextFileA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
IsDBCSLeadByte
GetPrivateProfileStructA
WritePrivateProfileStructA
InterlockedExchange
GetModuleFileNameA
lstrlenA
RemoveDirectoryA
CloseHandle
CreateProcessA
GetLocalTime
CreateDirectoryA
GetLastError
MultiByteToWideChar
ReleaseMutex
CreateMutexA
lstrcpyA
lstrcpynA
GlobalUnlock
GlobalLock
TerminateThread
WaitForSingleObject
InterlockedExchangeAdd
GetExitCodeThread
WaitForMultipleObjects
CreateThread
GetTempPathA
WinExec
lstrcatA
GetProcAddress
SetCurrentDirectoryA
LockResource
LoadResource
FindResourceA
InterlockedIncrement
GlobalSize
MulDiv
LocalFree
FormatMessageA
GetVersionExA
GetVersion
SetLastError
GetCurrentThreadId
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
CreateEventA
ResetEvent
GlobalAlloc
GetModuleHandleA
GetCurrentProcessId
GetCurrentDirectoryA
IsDebuggerPresent
GlobalMemoryStatusEx
SetFileAttributesA
GetWindowsDirectoryA
LocalAlloc
GetStartupInfoA
WritePrivateProfileStringA
lstrlenW
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
Sleep
CopyFileA
FindClose
SetEvent
user32
GetPriorityClipboardFormat
GetAsyncKeyState
SetActiveWindow
EnableMenuItem
SetClassLongA
FlashWindow
GetWindowThreadProcessId
GetClipboardData
CloseClipboard
GetClassInfoA
AdjustWindowRect
SystemParametersInfoA
FindWindowA
keybd_event
ChangeClipboardChain
HideCaret
ShowCaret
DestroyCaret
GetKeyboardLayout
CreateCaret
GetCaretPos
IsClipboardFormatAvailable
SetCaretPos
ValidateRect
RegisterClassA
CallNextHookEx
GetClassNameA
SetPropA
CallWindowProcA
GetPropA
RemovePropA
UnhookWindowsHookEx
SetWindowsHookExA
IntersectRect
DeleteMenu
RemoveMenu
GetMenuState
ModifyMenuA
InsertMenuA
DrawEdge
GetMessagePos
IsMenu
ShowScrollBar
EmptyClipboard
SetClipboardData
IsRectEmpty
GetMenuStringA
GetWindowRgn
GetDlgCtrlID
SetClipboardViewer
OpenClipboard
GetMenuItemID
SendMessageA
LoadIconA
PostMessageA
GetSystemMenu
GetMenu
KillTimer
EnableWindow
GetCursorPos
MenuItemFromPoint
IsChild
GetFocus
InflateRect
GetWindowRect
InvalidateRect
GetClientRect
SetTimer
SetForegroundWindow
SetRect
CreatePopupMenu
GetParent
ReleaseDC
GetDC
GetMenuItemRect
IsZoomed
RegisterHotKey
UnregisterHotKey
GetWindow
DrawFocusRect
CreateMenu
AppendMenuA
SetWindowRgn
SetScrollPos
SetScrollRange
CopyRect
PtInRect
SetCursor
GetForegroundWindow
LoadCursorA
DestroyMenu
DestroyCursor
DestroyIcon
GetWindowLongA
WindowFromDC
UpdateWindow
SetMenuDefaultItem
GrayStringA
TabbedTextOutA
GetNextDlgTabItem
GetActiveWindow
WindowFromPoint
ClientToScreen
TrackPopupMenuEx
GetSubMenu
OffsetRect
GetSysColor
FrameRect
DrawStateA
LoadImageA
GetIconInfo
LoadMenuA
FillRect
RegisterWindowMessageA
ShowWindow
SetCursorPos
GetMenuItemCount
GetLastActivePopup
EnumWindows
GetWindowTextA
wsprintfA
GetDesktopWindow
GetMenuItemInfoA
SetMenuItemInfoA
PeekMessageA
TranslateMessage
DispatchMessageA
MessageBoxA
MessageBeep
PostQuitMessage
IsWindowVisible
DrawIcon
BeginPaint
EndPaint
IsWindow
EqualRect
ScreenToClient
GetKeyState
ClipCursor
DrawTextA
GetDCEx
RedrawWindow
LockWindowUpdate
SetRectEmpty
GetSysColorBrush
DefWindowProcA
DrawIconEx
CheckMenuItem
SetWindowLongA
SetMenu
IsIconic
GetSystemMetrics
SetCapture
ReleaseCapture
GetWindowDC
LoadBitmapA
gdi32
DPtoLP
StretchBlt
PatBlt
GetObjectA
CreateBitmap
DeleteDC
SelectObject
PolyBezier
GetDIBits
FrameRgn
CreatePolygonRgn
Pie
SelectClipRgn
GetNearestColor
CreateRectRgnIndirect
GetPixel
RoundRect
Rectangle
GetTextExtentPoint32A
CreateFontA
CreatePen
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
DeleteObject
Polyline
CreateDCA
ExtCreateRegion
GetBkMode
OffsetRgn
CombineRgn
GetBitmapBits
CreateBitmapIndirect
CreateFontIndirectA
GetTextMetricsA
CreateRectRgn
PtInRegion
GetDeviceCaps
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
Ellipse
CreateEllipticRgn
FillRgn
GetStockObject
BeginPath
EndPath
StrokeAndFillPath
CreateSolidBrush
SetPixel
Arc
advapi32
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegQueryValueA
shell32
Shell_NotifyIconA
ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
SHChangeNotify
SHGetSpecialFolderPathA
SHGetFileInfoA
ShellExecuteExA
comctl32
ImageList_DragLeave
ImageList_DragEnter
ImageList_DragMove
ImageList_GetIcon
ImageList_Draw
ImageList_AddMasked
ImageList_EndDrag
ImageList_BeginDrag
_TrackMouseEvent
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Add
ImageList_Replace
ImageList_SetBkColor
ole32
CoCreateInstance
CoInitialize
CoUninitialize
wsock32
WSACleanup
__WSAFDIsSet
ntohs
ioctlsocket
closesocket
recv
select
WSAGetLastError
gethostbyname
msvcp60
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PADH@Z
?seekoff@strstreambuf@std@@MAE?AV?$fpos@H@2@JW4seekdir@ios_base@2@H@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPBDH@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPADH@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?underflow@strstreambuf@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?pbackfail@strstreambuf@std@@MAEHH@Z
?overflow@strstreambuf@std@@MAEHH@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1ios_base@std@@UAE@XZ
??1istrstream@std@@UAE@XZ
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z
??1locale@std@@QAE@XZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?_Init@strstreambuf@std@@IAEXHPAD0H@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0ios_base@std@@IAE@XZ
?do_toupper@?$ctype@D@std@@MBEDD@Z
?do_toupper@?$ctype@D@std@@MBEPBDPADPBD@Z
?do_tolower@?$ctype@D@std@@MBEDD@Z
?do_tolower@?$ctype@D@std@@MBEPBDPADPBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??1bad_cast@std@@UAE@XZ
??1ctype_base@std@@UAE@XZ
??_7bad_cast@std@@6B@
??1_Locinfo@std@@QAE@XZ
?_Term@?$ctype@D@std@@KAXXZ
?_Cltab@?$ctype@D@std@@0PBFB
_Getctype
??0_Locinfo@std@@QAE@PBD@Z
??_7?$ctype@D@std@@6B@
??_7ctype_base@std@@6B@
??_7facet@locale@std@@6B@
?_Iscloc@locale@std@@QBE_NXZ
?_Getfacet@locale@std@@QBEPBVfacet@12@I_N@Z
?_Id_cnt@id@locale@std@@0HA
?id@?$ctype@D@std@@2V0locale@2@A
??1?$ctype@D@std@@UAE@XZ
??1strstreambuf@std@@UAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?seekpos@strstreambuf@std@@MAE?AV?$fpos@H@2@V32@H@Z
winmm
PlaySoundA
imm32
ImmIsIME
ImmSimulateHotKey
wininet
InternetSetOptionA
InternetQueryOptionA
HttpOpenRequestA
InternetConnectA
InternetOpenA
HttpQueryInfoA
InternetReadFile
InternetCloseHandle
HttpSendRequestA
Sections
.text Size: 2.6MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 248KB - Virtual size: 244KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 196KB - Virtual size: 2.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ