Static task
static1
Behavioral task
behavioral1
Sample
AmpliTube 5.exe
Resource
win7-20240611-en
windows7-x64
Behavioral task
behavioral2
Sample
AmpliTube 5.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
General
-
Target
AmpliTube 5.exe
-
Size
61.0MB
-
MD5
129a97ef1516ccefff71fed3ae3c5ae4
-
SHA1
cdfe3af8dcf58c89cc6fdc13ea0e239dd44b1f37
-
SHA256
1dde7631483d7101c12e148cbf9c476ecb6e3ecb97c818494c8796d50ff042af
-
SHA512
a486d19a7d1c1465920e86571d42dc7e5691ec2914d65581c60cd8ad706dd017c0ea576dabb1c2535895a1ddc0a6b48fc9ea423e28730e364de6b9aee531668a
-
SSDEEP
786432:loDkJqZnlP4U2lY4o/uk+JWpSCDg3rQQmINjth9BvMXcnh8:loeqFSlYrGk+R5tZaa
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource AmpliTube 5.exe
Files
-
AmpliTube 5.exe.exe windows:6 windows x64 arch:x64
897aea2667038135cdb9f02f70c8417e
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
GetNativeSystemInfo
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
FreeLibrary
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetModuleHandleExW
GetProcAddress
LoadLibraryW
SetThreadAffinityMask
FormatMessageW
CopyFileW
MoveFileW
ReplaceFileW
CreateSymbolicLinkW
GetLocaleInfoW
GetCommandLineW
LocalFree
AttachConsole
GetCurrentProcessId
GlobalAlloc
GlobalSize
GlobalUnlock
GlobalLock
GetThreadPriority
GetPriorityClass
LoadLibraryA
MultiByteToWideChar
GetSystemInfo
CreateEventA
GetSystemTimeAsFileTime
OutputDebugStringA
IsDebuggerPresent
GetTempPathW
WriteFile
CreateProcessW
TerminateThread
FlushConsoleInputBuffer
GlobalMemoryStatus
GetFileType
GetStdHandle
CreateWaitableTimerA
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetFileTime
SetWaitableTimer
WaitForMultipleObjectsEx
OpenEventA
SetFilePointer
SetFileAttributesW
GetComputerNameExW
RemoveDirectoryW
ReadFile
GetVolumeInformationW
GetLogicalDriveStringsW
HeapCreate
SetThreadPriority
LockFile
GetFullPathNameA
UnlockFileEx
HeapValidate
HeapSize
GetTempPathA
GetDiskFreeSpaceA
GetFileAttributesA
FlushViewOfFile
DeleteFileA
HeapReAlloc
HeapCompact
HeapDestroy
UnlockFile
CreateFileMappingA
LockFileEx
GetFileSize
SystemTimeToFileTime
GetSystemTime
HeapFree
HeapAlloc
GetProcessHeap
GetTickCount
DuplicateHandle
ReleaseSemaphore
CreateSemaphoreA
GetVersionExA
GetWindowsDirectoryA
GetSystemDirectoryA
CreateFileA
FormatMessageA
WideCharToMultiByte
AreFileApisANSI
GetFullPathNameW
GetStartupInfoW
InitializeSListHead
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetLogicalProcessorInformation
GetSystemDirectoryW
SetLocalTime
GlobalMemoryStatusEx
SetEndOfFile
SetPriorityClass
GetEnvironmentVariableA
GetFileInformationByHandle
GetFileAttributesExW
GetFileAttributesW
GetDriveTypeW
GetDiskFreeSpaceExW
FlushFileBuffers
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
CreateDirectoryW
GetCurrentDirectoryW
GetCurrentThreadId
GetCurrentThread
GetExitCodeProcess
TerminateProcess
ExitProcess
GetCurrentProcess
WaitForMultipleObjects
Sleep
CreateEventW
CreateMutexW
WaitForSingleObject
ReleaseMutex
ResetEvent
SetEvent
DeleteCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
CancelIo
GetOverlappedResult
DeviceIoControl
QueryPerformanceFrequency
QueryPerformanceCounter
CreateNamedPipeW
PeekNamedPipe
DisconnectNamedPipe
ConnectNamedPipe
CreatePipe
GetLastError
SetUnhandledExceptionFilter
SetHandleInformation
CloseHandle
GetDiskFreeSpaceW
OutputDebugStringW
SetCurrentDirectoryW
GetEnvironmentVariableW
RtlCaptureStackBackTrace
user32
DrawIconEx
CreateIconIndirect
GetIconInfo
SystemParametersInfoW
GetMonitorInfoW
EnumDisplayMonitors
GetWindowInfo
EnumChildWindows
LoadCursorW
SetCursorPos
SetWindowLongPtrW
EnumWindows
FindWindowExW
CallWindowProcW
ShowWindow
MoveWindow
SetForegroundWindow
GetParent
GetWindowRect
DestroyIcon
GetDC
ReleaseDC
GetDesktopWindow
SetWindowLongW
GetWindowLongW
WindowFromPoint
ScreenToClient
SetCaretPos
RegisterWindowMessageW
AttachThreadInput
GetWindowThreadProcessId
GetMessageW
TranslateMessage
GetUserObjectInformationW
GetProcessWindowStation
DispatchMessageW
PeekMessageW
SendMessageTimeoutW
ShowCaret
PostMessageW
DefWindowProcW
UnregisterClassW
RegisterClassExW
CreateWindowExW
DestroyWindow
SetFocus
FindWindowW
GetCursorPos
CreateCaret
DestroyCaret
SetCursor
MessageBoxA
GetWindowLongPtrW
GetWindowTextW
DestroyCursor
GetFocus
MessageBeep
MessageBoxW
GetClientRect
SetWindowTextW
RedrawWindow
InvalidateRect
GetUpdateRgn
EndPaint
BeginPaint
GetForegroundWindow
EnableMenuItem
GetSystemMenu
GetSystemMetrics
ReleaseCapture
SetCapture
GetCapture
MapVirtualKeyW
SendInput
ToUnicode
GetKeyboardState
GetAsyncKeyState
GetActiveWindow
EmptyClipboard
GetClipboardData
TrackMouseEvent
GetMessagePos
GetMessageTime
GetMessageExtraInfo
SendMessageW
IsWindow
IsChild
UpdateLayeredWindow
SetLayeredWindowAttributes
SetWindowPos
GetWindowPlacement
IsWindowVisible
EndDialog
OpenClipboard
CloseClipboard
SetClipboardData
gdi32
SwapBuffers
SetPixelFormat
ChoosePixelFormat
SetBrushOrgEx
GetObjectW
CreateDIBSection
SetStretchBltMode
StretchDIBits
StretchBlt
SaveDC
RestoreDC
GetRegionData
ExcludeClipRect
CreateRectRgnIndirect
CreateRectRgn
CreateBitmap
CombineRgn
BitBlt
GetKerningPairsW
GetTextMetricsW
SetMapMode
SetMapperFlags
SelectObject
RemoveFontMemResourceEx
AddFontMemResourceEx
GetGlyphIndicesW
GetOutlineTextMetricsW
GetGlyphOutlineW
GetDeviceCaps
EnumFontFamiliesExW
DeleteObject
DeleteDC
CreateFontIndirectW
CreateCompatibleDC
comdlg32
GetSaveFileNameW
GetOpenFileNameW
advapi32
GetUserNameW
RegisterEventSourceW
DeregisterEventSource
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegEnumKeyW
RegOpenKeyW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegEnumValueA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
ReportEventW
shell32
Shell_NotifyIconW
ExtractAssociatedIconW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderPathA
CommandLineToArgvW
SHGetFolderPathA
ShellExecuteA
SHGetSpecialFolderPathW
SHFileOperationW
ShellExecuteW
SHBrowseForFolderW
ole32
PropVariantClear
CLSIDFromString
CoCreateInstance
CoTaskMemFree
RevokeDragDrop
RegisterDragDrop
CoTaskMemAlloc
OleSetContainedObject
OleCreate
OleUninitialize
OleInitialize
CoInitialize
DoDragDrop
oleaut32
SafeArrayDestroy
SafeArrayUnaccessData
SafeArrayCreateVector
VariantInit
VariantClear
SysFreeString
SafeArrayAccessData
SysAllocString
msvcp140
?in@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?out@?$codecvt@_WDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEB_W1AEAPEB_WPEAD3AEAPEAD@Z
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_Locimp_Addfac@_Locimp@locale@std@@CAXPEAV123@PEAVfacet@23@_K@Z
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UEAAXXZ
?id@?$codecvt@_WDU_Mbstatet@@@std@@2V0locale@2@A
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ
?peek@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ
?exceptions@ios_base@std@@QEAAXH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAM@Z
?widen@?$ctype@D@std@@QEBADD@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?narrow@?$ctype@D@std@@QEBADDD@Z
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
?id@?$ctype@D@std@@2V0locale@2@A
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z
_Dtest
_FDtest
?tolower@?$ctype@D@std@@QEBADD@Z
?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAPEAD0PEAH001@Z
?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Syserror_map@std@@YAPEBDH@Z
_Thrd_join
_Thrd_id
_Cnd_do_broadcast_at_thread_exit
?_Throw_Cpp_error@std@@YAXH@Z
?_Xbad_alloc@std@@YAXXZ
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPEBD@Z
?classic@locale@std@@SAAEBV12@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?_Xbad_function_call@std@@YAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@_JHH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA?AV?$fpos@U_Mbstatet@@@2@V32@H@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Xout_of_range@std@@YAXPEBD@Z
_Mtx_init_in_situ
_Mtx_destroy_in_situ
_Query_perf_counter
_Query_perf_frequency
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
_Mtx_lock
_Mtx_unlock
?_Throw_C_error@std@@YAXH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
??Bid@locale@std@@QEAA_KXZ
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@_JH@Z
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA?AV?$fpos@U_Mbstatet@@@2@XZ
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@AEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@D@Z
_Xtime_get_ticks
_Thrd_sleep
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@V?$fpos@U_Mbstatet@@@2@@Z
wininet
InternetCrackUrlW
InternetOpenW
InternetCloseHandle
InternetConnectW
HttpOpenRequestW
HttpQueryInfoW
HttpSendRequestExW
HttpEndRequestW
FindFirstUrlCacheEntryA
InternetReadFile
InternetSetFilePointer
InternetWriteFile
InternetSetOptionW
FindNextUrlCacheEntryA
FindCloseUrlCache
DeleteUrlCacheEntryA
FtpOpenFileW
ws2_32
getsockname
freeaddrinfo
getaddrinfo
WSAGetLastError
WSAStartup
socket
setsockopt
sendto
send
select
recvfrom
recv
ntohs
inet_ntoa
inet_addr
__WSAFDIsSet
accept
htons
htonl
bind
closesocket
connect
ioctlsocket
getsockopt
getpeername
listen
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
shlwapi
StrCmpLogicalW
PathStripToRootW
winmm
midiInPrepareHeader
midiInClose
midiInOpen
midiInAddBuffer
timeBeginPeriod
midiInGetNumDevs
midiOutMessage
midiOutLongMsg
midiOutShortMsg
midiOutUnprepareHeader
midiOutGetNumDevs
midiInUnprepareHeader
midiInStart
midiInStop
midiOutGetDevCapsW
midiOutOpen
timeGetDevCaps
timeGetTime
midiOutPrepareHeader
timeKillEvent
midiInReset
midiOutClose
midiInMessage
timeSetEvent
midiInGetDevCapsW
dbghelp
SymFromAddr
SymGetModuleInfo64
SymInitialize
imm32
ImmGetContext
ImmGetCompositionStringW
ImmNotifyIME
ImmSetCandidateWindow
ImmReleaseContext
opengl32
glGetIntegerv
glGetString
glGetBooleanv
glGetError
glPixelStorei
glReadPixels
glScissor
glTexImage2D
glViewport
glTexParameteri
glTexSubImage2D
glGenTextures
glEnable
glDrawElements
glDrawArrays
glDisable
glDeleteTextures
glClearColor
glClear
glBlendFunc
glBindTexture
wglShareLists
wglMakeCurrent
wglGetProcAddress
wglGetCurrentContext
wglDeleteContext
wglCreateContext
vcruntime140
wcsstr
__CxxFrameHandler3
__intrinsic_setjmp
__current_exception_context
__current_exception
strchr
__std_type_info_compare
memchr
strrchr
__C_specific_handler
strstr
longjmp
memset
memmove
memcmp
__RTDynamicCast
__RTtypeid
_CxxThrowException
__std_exception_destroy
__std_exception_copy
__std_terminate
_purecall
memcpy
vcruntime140_1
__CxxFrameHandler4
api-ms-win-crt-heap-l1-1-0
_aligned_free
_aligned_malloc
_callnewh
realloc
free
_msize
malloc
_set_new_mode
calloc
api-ms-win-crt-runtime-l1-1-0
_errno
_seh_filter_exe
_set_app_type
_configure_narrow_argv
_initialize_narrow_environment
_get_narrow_winmain_command_line
_initterm
_initterm_e
_fpreset
_exit
signal
terminate
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_initialize_onexit_table
raise
_register_onexit_function
_beginthreadex
_endthreadex
_crt_atexit
_invalid_parameter_noinfo_noreturn
strerror
exit
api-ms-win-crt-string-l1-1-0
strcmp
iswlower
_stricmp
isalpha
isspace
isalnum
iswprint
towupper
isdigit
strncat
iswalnum
iswspace
strncmp
iswupper
tolower
isupper
strncpy
iswalpha
toupper
strcspn
_strnicmp
isxdigit
towlower
iswdigit
api-ms-win-crt-stdio-l1-1-0
fputc
_fseeki64
setvbuf
__stdio_common_vsnprintf_s
ferror
fopen_s
fgetpos
ungetc
fgetc
fclose
_get_stream_buffer_pointers
__stdio_common_vsprintf
_wfopen
feof
__p__commode
fgets
__stdio_common_vswprintf
_setmode
_set_fmode
fputs
__stdio_common_vsscanf
__stdio_common_vfprintf
fwrite
fread
fflush
_fileno
freopen_s
__acrt_iob_func
fsetpos
ftell
fseek
fopen
api-ms-win-crt-time-l1-1-0
wcsftime
_localtime64_s
_get_tzname
_mktime64
_time64
_ftime64_s
clock
_tzset
_gmtime64
_gmtime64_s
api-ms-win-crt-math-l1-1-0
_copysign
log2f
ldexp
acosf
fmodf
tanhf
roundf
sqrt
sinh
sin
pow
log10
log
fmod
floor
exp
cosh
cos
ceil
atan
asin
acos
sinhf
__setusermatherr
powf
logf
log10f
expf
_fdclass
remainderf
round
atanh
asinh
acosh
_finite
tan
fmax
tanf
atan2
sqrtf
sinf
floorf
cosf
ceilf
atan2f
_hypotf
_hypot
modf
frexp
tanh
atanf
api-ms-win-crt-convert-l1-1-0
strtod
atof
strtoul
atoi
_strtod_l
_atoi64
api-ms-win-crt-locale-l1-1-0
_create_locale
_configthreadlocale
api-ms-win-crt-environment-l1-1-0
getenv
api-ms-win-crt-filesystem-l1-1-0
_lock_file
_stat64i32
_unlock_file
api-ms-win-crt-utility-l1-1-0
qsort
rand
api-ms-win-crt-conio-l1-1-0
_getch
rpcrt4
UuidCreate
Sections
.text Size: 33.3MB - Virtual size: 33.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 23.8MB - Virtual size: 23.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1.8MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 1.6MB - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 69KB - Virtual size: 69KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 484KB - Virtual size: 484KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ