C:\00_WORK\01_Source(G3)\3.0.11.5_BN12_Rev.141639\FrameWork\CDViewer_Release_V14\CDViewer.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
0b6510044e1503b994e53906ab54ed3c1d661ff144091a8c5e10c76d13d0e5de.exe
Resource
win7-20240419-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
0b6510044e1503b994e53906ab54ed3c1d661ff144091a8c5e10c76d13d0e5de.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
0b6510044e1503b994e53906ab54ed3c1d661ff144091a8c5e10c76d13d0e5de
-
Size
444KB
-
MD5
766a3a7db28b905bb8c30726af7ebb9b
-
SHA1
2337175efbfa3b81151b619c419a8bd3358a46b0
-
SHA256
0b6510044e1503b994e53906ab54ed3c1d661ff144091a8c5e10c76d13d0e5de
-
SHA512
76b33030f5941f350d084b75306ed1637efbf995d9ec5af8f6b2afdaf938f76365f1be0ea127ba4d473ebaceab041515af0b00f05c8fe6c828bc0c3c8db7641d
-
SSDEEP
6144:YtjR5KUzjsAIUEjoWBscZA9SP1/BrcNnwcQA4ylO:YtjTKiQAIUEj3ZaK+wKQ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 0b6510044e1503b994e53906ab54ed3c1d661ff144091a8c5e10c76d13d0e5de
Files
-
0b6510044e1503b994e53906ab54ed3c1d661ff144091a8c5e10c76d13d0e5de.exe windows:5 windows x86 arch:x86
afa1403a8078dadec23176cd39304c68
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
guicommon
??1CXMsgBox@@UAE@XZ
?DoModal@CXMsgBox@@UAEHXZ
??0CXMsgBox@@QAE@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@HPAVCWnd@@@Z
?Release@CXTimeMsg@@SAXXZ
?ShowMessage@CXTimeMsg@@SAXPB_WIW4_tmsgOption@1@HPAVCWnd@@@Z
??BCXTokenString@@QAEPB_WXZ
?Add@CXTokenString@@QAEXPB_W@Z
??1CXTokenString@@UAE@XZ
??0CXTokenString@@QAE@_W@Z
?DrawFrame@CXMonitorSetFrmTheme@@UAEHPAVCWnd@@@Z
?DrawClient@CXMonitorSetFrmTheme@@UAEHPAVCWnd@@@Z
?GetBorder@CXMonitorSetFrmTheme@@QAEHW4BORDER_POS@@@Z
??1CXMonitorSetFrmTheme@@UAE@XZ
??0CXMonitorSetFrmTheme@@QAE@H@Z
?GetTokenCount@CXStrTokenizer@@QAEHXZ
?GetNext@CXStrTokenizer@@QAEHPAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@_W1H@Z
??1CXStrTokenizer@@UAE@XZ
??0CXStrTokenizer@@QAE@PB_W0H@Z
?Add@CXTokenString@@QAEXABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
mfdcm45v14u
?GetNextValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KPAM@Z
??1CDcmApp@@UAE@XZ
?Register@CDcmApp@@QAE?AW4DCMRESULT@@ABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?Release@CDcmApp@@QAE?AW4DCMRESULT@@XZ
?DcmInit@CDcmApp@@SA?AW4DCMRESULT@@P6APAXXZ00PAW4MC_STATUS@@@Z
?DcmExit@CDcmApp@@SA?AW4DCMRESULT@@PAW4MC_STATUS@@@Z
?SetMergeINI@CDcmApp@@SA?AW4DCMRESULT@@ABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAW4MC_STATUS@@@Z
?SetValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KPB_WH@Z
?SetNextValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KPB_WH@Z
?WriteFile@CDcmObject@@QAE?AW4DCMRESULT@@PAVCDcmApp@@HPAXP6A?AW4MC_STATUS@@PAD1H1HH@Z@Z
??0CDcmUIDGenerator@@QAE@ABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0@Z
??1CDcmUIDGenerator@@UAE@XZ
?Generate@CDcmUIDGenerator@@QAE?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@HHH@Z
?SetValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KH@Z
?SetValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@H@Z
?GetValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KPAM@Z
?RenameFile@CDcmObject@@QAE?AW4DCMRESULT@@ABV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?RemoveValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@K@Z
??0CDcmApp@@QAE@XZ
?GetValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KAAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@H@Z
?GetValue@CDcmObjectCommon@@QAE?AW4DCMRESULT@@KPAH@Z
dcmtools
??1CxDcmParser@@UAE@XZ
??0CxDcmParser@@QAE@XZ
?Initialize@CxDcmParser@@QAE?AW4DCM_TOOLS_MESSAGE@@PAVCDcmApp@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@H@Z
?GetHeader@CxDcmParser@@QAEPAVCDcmObject@@XZ
?MakeDcmObject@CxDcmMaker@@QAE?AW4DCM_TOOLS_MESSAGE@@AAPAVCDcmObject@@@Z
?AddFrame@CxDcmMaker@@QAE?AW4DCM_TOOLS_MESSAGE@@PAE@Z
?DcmMakerInit@CxDcmMaker@@QAE?AW4DCM_TOOLS_MESSAGE@@PAVCDcmObject@@PAU_USER_SETTING_INFO@@PAU_FRAME_INFO@@@Z
?MakeDcmObject@CxDcmMaker@@QAE?AW4DCM_TOOLS_MESSAGE@@PAVCDcmObject@@PAU_USER_SETTING_INFO@@PAU_FRAME_INFO@@PAEAAPAV3@@Z
?SetPixelPaddingInfo@CxDcmParser@@QAEXHGG@Z
?SetWindowingMinValue@CxDcmParser@@QAEXH@Z
?MakeThumbNail@CxDcmParser@@QAE?AW4DCM_TOOLS_MESSAGE@@HVCSize@@W4DCM_TOOLS_XFERSYNTAX@@HAAPAEAAKAAPAUtagBITMAPINFOHEADER@@3G@Z
?Initialize@CxDcmParser@@QAE?AW4DCM_TOOLS_MESSAGE@@PAVCDcmApp@@PAVCDcmObject@@PAEKK@Z
?MakeDcmObject@CxDcmMaker@@QAE?AW4DCM_TOOLS_MESSAGE@@PAVCDcmApp@@PAVCDcmObject@@PAU_USER_SETTING_INFO@@HPAVCxDcmParser@@@Z
??1CxDcmMaker@@UAE@XZ
??0CxDcmMaker@@QAE@XZ
g3ctrl
?Empty@CEXListCtrlTheme@@UAEXXZ
?WindowProc@CEXDialog@@MAEJIIJ@Z
?SetTheme@CEXDialog@@UAEXPAVITheme@@@Z
?SetTheme@CEXDialog@@UAEXPAVCEXDialogTheme@@@Z
?GetRuntimeClass@CEXDialog@@UBEPAUCRuntimeClass@@XZ
?DrawDialog@CEXDialog@@MAEXPAVCPaintDC@@@Z
??1CEXComboBox@@UAE@XZ
?SetTheme@CEXComboBox@@QAEXPAVCEXComboBoxTheme@@@Z
??0CEXComboBox@@QAE@XZ
??1CEXDialog@@UAE@XZ
?GetThisMessageMap@CEXDialog@@KGPBUAFX_MSGMAP@@XZ
?DoDataExchange@CEXDialog@@MAEXPAVCDataExchange@@@Z
??0CEXDialog@@QAE@IPAVCWnd@@@Z
??1CEXButton@@UAE@XZ
?SetTheme@CEXButton@@QAEXPAVCEXButtonTheme@@@Z
??0CEXButton@@QAE@XZ
??1CEXStatic@@UAE@XZ
?SetTheme@CEXStatic@@QAEXPAVCEXStaticTheme@@@Z
??0CEXStatic@@QAE@XZ
?Serialize@CEXTabCtrlTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXStatusBarTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXStaticTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXScrollBarTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXPropertySheetTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
??0CRFontSet@@QAE@XZ
?GetZoom@CEXResMngr@@QAEMXZ
?SetZoom@CEXResMngr@@QAEXM@Z
?GetFontSet@CEXResMngr@@QAEPAVCRFontSet@@I@Z
?GetTheme@CEXResMngr@@QAEPAVITheme@@I@Z
?GetImage@CEXResMngr@@QAEPAVIImage@@I@Z
?RegTheme@CEXResMngr@@QAEHIIPAVITheme@@H@Z
?RegRGripAfterCreate@CEXResMngr@@QAEPAVCRGrip@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@IIVCPoint@@HHHH@Z
?RegRImageMapAfterCreate@CEXResMngr@@QAEPAVCRImageMap@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@IIHHHH@Z
?RegRImageAfterCreate@CEXResMngr@@QAEPAVCRImage@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0IVCSize@@HH@Z
?RegRImageAfterCreate@CEXResMngr@@QAEPAVCRImage@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@IIHHHH@Z
?RegRFontSetAfterCreate@CEXResMngr@@QAEPBVCRFontSet@@IIIII@Z
?GetColor@CEXResMngr@@QAEKI@Z
?RegColor@CEXResMngr@@QAEHIK@Z
?RegRFontAfterCreate@CEXResMngr@@QAEPAVCRFont@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@0HKKIIVCSize@@@Z
?RegRFontAfterCreate@CEXResMngr@@QAEPAVCRFont@@IV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@HIIIIVCSize@@@Z
?RegFontSet@CEXResMngr@@QAEHV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@PAVCRFontSet@@@Z
?GetFont@CEXResMngr@@QAEPAVCRFont@@V?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?GetFont@CEXResMngr@@QAEPAVCRFont@@I@Z
?SetResModuleNm@CEXResMngr@@QAEHV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
??0CEXResMngr@@QAE@XZ
??1CEXResMngr@@UAE@XZ
??0CEXStaticTheme@@QAE@XZ
??1CEXStaticTheme@@UAE@XZ
??0CEXButtonTheme@@QAE@XZ
??1CEXButtonTheme@@UAE@XZ
??0CEXButtonTheme@@QAE@ABV0@@Z
??0CEXDialogTheme@@QAE@XZ
??1CEXDialogTheme@@UAE@XZ
??0CEXComboBoxTheme@@QAE@XZ
??1CEXComboBoxTheme@@UAE@XZ
??0CEXListBoxTheme@@QAE@XZ
??1CEXListBoxTheme@@UAE@XZ
??0CEXHeaderCtrlTheme@@QAE@XZ
??1CEXHeaderCtrlTheme@@UAE@XZ
??0CEXScrollBarTheme@@QAE@XZ
??1CEXScrollBarTheme@@UAE@XZ
??0CEXListCtrlTheme@@QAE@XZ
??1CEXListCtrlTheme@@UAE@XZ
??0CEXTabCtrlTheme@@QAE@XZ
??1CEXTabCtrlTheme@@UAE@XZ
??0CEXMultiSliderCtrlTheme@@QAE@XZ
??1CEXMultiSliderCtrlTheme@@UAE@XZ
??0CEXPropertySheetTheme@@QAE@XZ
??1CEXPropertySheetTheme@@UAE@XZ
??0CEXPropertyPageTheme@@QAE@XZ
??1CEXPropertyPageTheme@@UAE@XZ
?Serialize@CEXPropertySheetExTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
??1CEXProgressCtrlTheme@@UAE@XZ
??0CEXStatusBarTheme@@QAE@XZ
??1CEXStatusBarTheme@@UAE@XZ
??0CEXPropertySheetExTheme@@QAE@XZ
??1CEXPropertySheetExTheme@@UAE@XZ
??0CEXFrameWndTheme@@QAE@XZ
??1CEXFrameWndTheme@@UAE@XZ
??0CEXEditTheme@@QAE@XZ
??1CEXEditTheme@@UAE@XZ
?Empty@CEXButtonTheme@@UAEXXZ
?Empty@CEXComboBoxTheme@@UAEXXZ
?Empty@CEXDialogTheme@@UAEXXZ
?Empty@CEXEditTheme@@UAEXXZ
?Empty@CEXFrameWndTheme@@UAEXXZ
?Empty@CEXHeaderCtrlTheme@@UAEXXZ
?Empty@CEXListBoxTheme@@UAEXXZ
??0CEXProgressCtrlTheme@@QAE@XZ
?Empty@CEXMultiSliderCtrlTheme@@UAEXXZ
?Empty@CEXProgressCtrlTheme@@UAEXXZ
?Empty@CEXPropertyPageTheme@@UAEXXZ
?Empty@CEXPropertySheetExTheme@@UAEXXZ
?Empty@CEXPropertySheetTheme@@UAEXXZ
?Empty@CEXScrollBarTheme@@UAEXXZ
?Empty@CEXStaticTheme@@UAEXXZ
?Empty@CEXStatusBarTheme@@UAEXXZ
?Empty@CEXTabCtrlTheme@@UAEXXZ
?FitToZoom@CEXButtonTheme@@UAEXM@Z
?FitToZoom@CEXComboBoxTheme@@UAEXM@Z
?FitToZoom@CEXDialogTheme@@UAEXM@Z
?FitToZoom@CEXEditTheme@@UAEXM@Z
?FitToZoom@CEXFrameWndTheme@@UAEXM@Z
?FitToZoom@CEXHeaderCtrlTheme@@UAEXM@Z
?FitToZoom@CEXListBoxTheme@@UAEXM@Z
?FitToZoom@CEXListCtrlTheme@@UAEXM@Z
?FitToZoom@CEXMultiSliderCtrlTheme@@UAEXM@Z
?FitToZoom@CEXProgressCtrlTheme@@UAEXM@Z
?FitToZoom@CEXPropertyPageTheme@@UAEXM@Z
?FitToZoom@CEXPropertySheetExTheme@@UAEXM@Z
?FitToZoom@CEXPropertySheetTheme@@UAEXM@Z
?FitToZoom@CEXScrollBarTheme@@UAEXM@Z
?FitToZoom@CEXStaticTheme@@UAEXM@Z
?FitToZoom@CEXStatusBarTheme@@UAEXM@Z
?FitToZoom@CEXTabCtrlTheme@@UAEXM@Z
?Serialize@CEXButtonTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXComboBoxTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXDialogTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXEditTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXFrameWndTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXHeaderCtrlTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXListBoxTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXListCtrlTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXMultiSliderCtrlTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXProgressCtrlTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
?Serialize@CEXPropertyPageTheme@@UAEXAAVCArchive@@PAVCEXResMngr@@@Z
g3worklist
??0CXSimpleWorklist@@QAE@XZ
?Request@CXSimpleWorklist@@UAEHIPAVIXCommonModule@@PAX1@Z
?Init@CXSimpleWorklist@@UAEHJ@Z
?Destroy@CXSimpleWorklist@@UAEHXZ
??1CXSimpleWorklist@@UAE@XZ
?Send@CXSimpleWorklist@@UAEHIPAVIXCommonModule@@PAX@Z
g3viewer
?Send@CXElpisViewer@@UAEHIPAVIXCommonModule@@PAX@Z
?Request@CXElpisViewer@@UAEHIPAVIXCommonModule@@PAX1@Z
?Init@CXElpisViewer@@UAEHJ@Z
?Destroy@CXElpisViewer@@UAEHXZ
??1CXElpisViewer@@UAE@XZ
??0CXElpisViewer@@QAE@XZ
imagehlp
MakeSureDirectoryPathExists
winmm
joyReleaseCapture
mciSendCommandW
timeGetTime
joySetCapture
joyGetNumDevs
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
dcmlib
uncompress
g3api
??0CXEvalTime@@QAE@XZ
?DeleteDirFiles@@YAHPB_WHH@Z
?ENDWAITCURSOR@@YAXXZ
?BEGINWAITCURSOR@@YAXXZ
?URLEncoding@@YA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@V12@@Z
?GetElapsedTime@CXEvalTime@@QAENH@Z
?RestartTimer@CXEvalTime@@QAEXXZ
??1CXEvalTime@@QAE@XZ
mfc140u
ord3236
ord4856
ord261
ord258
ord7505
ord6489
ord358
ord3954
ord13085
ord514
ord3174
ord8398
ord5033
ord5034
ord6130
ord12460
ord1788
ord5934
ord13700
ord13709
ord5939
ord13707
ord5938
ord2557
ord4495
ord11430
ord5955
ord8831
ord9352
ord1151
ord8209
ord9213
ord11800
ord11795
ord5369
ord12177
ord3843
ord4587
ord12102
ord9237
ord12081
ord11495
ord10402
ord9302
ord9423
ord9175
ord11540
ord11634
ord2389
ord976
ord1452
ord6501
ord8776
ord8817
ord4477
ord2350
ord494
ord3849
ord5512
ord12784
ord1689
ord14416
ord14410
ord6555
ord5514
ord500
ord11962
ord5886
ord12351
ord2885
ord1142
ord987
ord13965
ord13259
ord1465
ord13028
ord4649
ord8773
ord3833
ord6380
ord954
ord8482
ord14451
ord1653
ord290
ord1690
ord6956
ord5583
ord3075
ord1891
ord2010
ord8058
ord4725
ord1451
ord2209
ord14131
ord13544
ord14599
ord14597
ord14600
ord14598
ord2750
ord8386
ord12247
ord10433
ord12928
ord12865
ord4589
ord8324
ord5357
ord2486
ord12542
ord12541
ord14589
ord7922
ord14595
ord9398
ord4152
ord4090
ord12947
ord7941
ord2034
ord11983
ord11982
ord14466
ord12531
ord8000
ord14667
ord6348
ord14669
ord6350
ord14668
ord6349
ord13911
ord995
ord6860
ord2256
ord3852
ord5918
ord12239
ord8217
ord12251
ord12219
ord7138
ord7125
ord7073
ord12131
ord6218
ord13752
ord2760
ord9210
ord12172
ord1111
ord1413
ord11015
ord11396
ord10472
ord4485
ord4092
ord458
ord3403
ord3404
ord3164
ord6531
ord7107
ord2271
ord3305
ord3302
ord10255
ord8210
ord14785
ord10285
ord10287
ord10286
ord10284
ord10288
ord5652
ord11725
ord11726
ord9139
ord12089
ord3838
ord11936
ord14588
ord8965
ord6978
ord11002
ord9256
ord3266
ord13878
ord12262
ord12258
ord1722
ord1744
ord1770
ord1756
ord1777
ord4936
ord5003
ord4948
ord4966
ord4960
ord4954
ord5013
ord4997
ord4942
ord5019
ord4974
ord4912
ord4927
ord4988
ord4502
ord5790
ord9693
ord4494
ord3055
ord14590
ord7923
ord14596
ord6877
ord11717
ord14234
ord13703
ord5935
ord14137
ord2682
ord12124
ord3941
ord3371
ord3372
ord3265
ord12168
ord4886
ord5249
ord5549
ord5760
ord9350
ord5525
ord5763
ord5252
ord5411
ord5228
ord7722
ord7723
ord7712
ord5409
ord8219
ord10250
ord9209
ord2246
ord1450
ord2470
ord13257
ord13258
ord13964
ord974
ord4735
ord4715
ord2886
ord8177
ord5586
ord1144
ord503
ord8360
ord12921
ord8757
ord14409
ord14411
ord14417
ord8719
ord12884
ord4664
ord4663
ord12763
ord12762
ord2996
ord1687
ord2008
ord929
ord6805
ord1412
ord13256
ord1692
ord280
ord14320
ord12559
ord4323
ord8225
ord2383
ord266
ord265
ord7653
ord7493
ord8039
ord12612
ord975
ord4815
ord2990
ord5921
ord1526
ord1525
ord1523
ord1045
ord293
ord286
ord285
ord296
ord3009
ord8182
ord5884
ord13963
ord928
ord5109
ord1663
ord1511
ord5626
ord14507
ord1513
ord3697
ord1171
ord3182
ord540
ord14047
ord13087
ord14657
ord12405
ord14604
ord12348
ord14415
ord6751
ord2378
ord2385
ord6220
ord13756
ord2761
ord1476
ord12220
ord1002
ord6865
ord1391
ord890
ord13070
ord1108
ord4648
ord8365
ord8811
ord13293
ord13086
ord3864
ord450
ord2520
ord4881
ord6486
ord6559
ord6795
ord3882
ord2522
ord6566
ord7654
ord7391
ord2205
ord6316
ord4093
ord1143
ord501
ord2304
ord9040
ord8470
ord1472
ord2409
kernel32
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileSectionW
GetPrivateProfileSectionNamesW
OutputDebugStringW
SetCurrentDirectoryW
DeleteFileW
GetDriveTypeW
RemoveDirectoryW
CloseHandle
GetLastError
CreateMutexW
GetCurrentProcessId
FreeLibrary
GetModuleFileNameW
GlobalLock
GlobalUnlock
LoadLibraryW
GlobalAddAtomW
MultiByteToWideChar
GetTempPathW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetVersionExA
GetModuleHandleW
GetProcAddress
GetTickCount
GetDiskFreeSpaceExW
SetFileAttributesW
GetCurrentProcess
GlobalMemoryStatusEx
GetLocalTime
GetSystemInfo
GetVersionExW
GetPrivateProfileIntW
GetDateFormatW
WideCharToMultiByte
SetThreadLocale
GetUserDefaultLangID
GetExitCodeProcess
GlobalDeleteAtom
GlobalGetAtomNameW
MoveFileW
CreateFileW
CreateDirectoryW
FindClose
FindFirstFileW
SetUnhandledExceptionFilter
GetCurrentThreadId
GetSystemTime
SystemTimeToFileTime
GlobalAlloc
GlobalFree
DecodePointer
RaiseException
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InterlockedIncrement
InterlockedDecrement
LocalAlloc
LocalFree
FormatMessageW
GetFileAttributesW
OutputDebugStringA
SetLastError
GetModuleHandleA
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
UnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
FindNextFileW
user32
SetForegroundWindow
wsprintfW
CloseClipboard
UnregisterClassW
GetClipboardData
EmptyClipboard
EnableWindow
UpdateWindow
GetForegroundWindow
GetParent
GetDC
ReleaseDC
KillTimer
GetWindowRect
RedrawWindow
GetWindowDC
DestroyMenu
IsWindowVisible
CopyRect
LoadCursorW
LoadIconW
ShowWindow
MoveWindow
GetWindowPlacement
IsIconic
SetFocus
wvsprintfW
ActivateKeyboardLayout
RegisterWindowMessageW
SendMessageW
PostMessageW
IsWindow
GetClientRect
OpenClipboard
GetSystemMetrics
GetCursorPos
IntersectRect
OffsetRect
PtInRect
FindWindowW
EnumDisplaySettingsW
SystemParametersInfoA
SetTimer
EqualRect
GetSysColorBrush
DestroyWindow
RegisterHotKey
UnregisterHotKey
SendNotifyMessageW
CopyImage
BringWindowToTop
ClientToScreen
gdi32
SelectObject
CreatePen
CreateSolidBrush
DeleteDC
DeleteObject
PatBlt
GetStockObject
GetClipBox
GetObjectW
GetDCOrgEx
GetDeviceCaps
CreateFontW
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
StretchDIBits
advapi32
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
shell32
ShellExecuteExW
DragAcceptFiles
DragFinish
DragQueryPoint
DragQueryFileW
SHAppBarMessage
ShellExecuteW
comctl32
ImageList_AddMasked
ImageList_Remove
ole32
CreateStreamOnHGlobal
OleRun
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoInitialize
CoUninitialize
oleaut32
CreateErrorInfo
SetErrorInfo
GetErrorInfo
SysAllocString
SysFreeString
SysStringByteLen
SysAllocStringByteLen
VariantClear
SystemTimeToVariantTime
VariantTimeToSystemTime
OleLoadPicture
SafeArrayGetUBound
SafeArrayCreateVector
VariantInit
VariantCopy
VariantChangeType
vcruntime140
_except_handler4_common
__vcrt_InitializeCriticalSectionEx
__CxxFrameHandler3
memset
_purecall
memmove
memcpy
__std_terminate
_CxxThrowException
wcsrchr
__std_type_info_destroy_list
api-ms-win-crt-convert-l1-1-0
wcstombs
_wtol
_wtoi
api-ms-win-crt-string-l1-1-0
iswalpha
iswdigit
api-ms-win-crt-environment-l1-1-0
_wgetenv
_wputenv
api-ms-win-crt-runtime-l1-1-0
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_crt_atexit
_configure_narrow_argv
_seh_filter_dll
_invalid_parameter_noinfo
_crt_at_quick_exit
_initialize_narrow_environment
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
_errno
_exit
exit
_initterm_e
_initterm
_get_wide_winmain_command_line
_initialize_wide_environment
_configure_wide_argv
terminate
_set_app_type
_seh_filter_exe
_controlfp_s
api-ms-win-crt-filesystem-l1-1-0
_waccess
_wsplitpath_s
_wremove
api-ms-win-crt-time-l1-1-0
_time64
_localtime64
_localtime64_s
_mktime64
_gmtime64
wcsftime
api-ms-win-crt-stdio-l1-1-0
ftell
fseek
fread
fopen
fclose
__p__commode
_set_fmode
__stdio_common_vswscanf
__stdio_common_vswprintf_s
api-ms-win-crt-heap-l1-1-0
_set_new_mode
free
malloc
_recalloc
api-ms-win-crt-math-l1-1-0
__setusermatherr
_except1
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Exports
Exports
??4CXEvalTime@@QAEAAV0@ABV0@@Z
Sections
.text Size: 297KB - Virtual size: 297KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 122KB - Virtual size: 121KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 512B - Virtual size: 108B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 18KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ