D:\Disc F\work\Freelancer\2014\OBS\reality-camera\rundir\pdb32\RealityStudio.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
2024-07-10_93b984e03593ea4311463abadf96f6ef_magniber.exe
Resource
win7-20240704-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
2024-07-10_93b984e03593ea4311463abadf96f6ef_magniber.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
0 signatures
150 seconds
General
-
Target
2024-07-10_93b984e03593ea4311463abadf96f6ef_magniber
-
Size
2.5MB
-
MD5
93b984e03593ea4311463abadf96f6ef
-
SHA1
bf605e8c6fa2fc095cd5fc02e9481dea15b1908c
-
SHA256
e420979a6f182b18cb7d6f1bdece339cf06fa5a93e3b759dd347397dde8189dd
-
SHA512
029f53e5d8808e917a4e355bad3cf4097db595c0ba6a53c689712d8abce7123c3b0998204edb35053596aefc6ca84e5efb1dccbc538c6c5156ea288fc1ccf8f4
-
SSDEEP
49152:pF/lUb0g5fHXSLY+zeHFiFEaNqAi/m2etehGBff3TVBkly:1Uog5f31/kVNZRtxf3j
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2024-07-10_93b984e03593ea4311463abadf96f6ef_magniber
Files
-
2024-07-10_93b984e03593ea4311463abadf96f6ef_magniber.exe windows:6 windows x86 arch:x86
e6707315c4e4e157f128f21b70eb3282
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
avrt
AvSetMmThreadCharacteristicsW
AvRevertMmThreadCharacteristics
dwmapi
ord102
DwmIsCompositionEnabled
dxgi
CreateDXGIFactory1
d3d10_1
D3D10CreateDeviceAndSwapChain1
d3dx10_43
D3DX10CompileFromMemory
D3DX10GetImageInfoFromFileW
D3DX10CreateTextureFromFileW
ws2_32
setsockopt
recv
WSAGetLastError
gethostbyname
send
getsockopt
WSAStringToAddressW
shutdown
htons
WSAIoctl
ioctlsocket
WSACleanup
WSAStartup
WSAAddressToStringW
WSAEventSelect
htonl
WSAEnumNetworkEvents
connect
ntohl
inet_addr
WSASocketW
bind
closesocket
iphlpapi
GetBestRoute
GetIpAddrTable
GetIfEntry
winmm
timeGetTime
PlaySoundW
rsapi
?OptimizeSettings@SettingsPane@@UAEXXZ
?SetChangedSettings@SettingsPane@@IAEX_N@Z
??1SettingsPane@@UAE@XZ
??0SettingsPane@@QAE@XZ
?DialogProc@SettingsPane@@SGHPAUHWND__@@IIJ@Z
?SetDefaults@SettingsPane@@UAEXXZ
?SetAbortApplySettings@SettingsPane@@IAEX_N@Z
?SetFilePath@ConfigFile@@QAEXPB_W@Z
?SaveAs@ConfigFile@@QAEHPB_W@Z
?GetLocaleNativeName@@YGPAULocaleNativeName@@PB_W@Z
?NumDataItems@XElement@@QAEKPB_W@Z
?FindValueIndex@?$List@VString@@@@QBEIABVString@@@Z
?HasItem@XElement@@QBE_NPB_W@Z
?FloatString@@YA?AVString@@N@Z
?SetFloat@XElement@@QAEXPB_WM@Z
?InsertString@String@@QAEXIPB_W@Z
?GetElement@?$List@VString@@@@QAEAAVString@@I@Z
?SetColor@Shader@@QAEXPAXABUVect4@@@Z
??YString@@QAEAAV0@H@Z
??YString@@QAEAAV0@ABV0@@Z
?GetVolumeControlMutedVal@@YAMPAUHWND__@@@Z
?scat@@YGXPA_WPB_W@Z
?MoveToBottom@SceneItem@@QAEXXZ
?MoveToTop@SceneItem@@QAEXXZ
?MoveDown@SceneItem@@QAEXXZ
?MoveUp@SceneItem@@QAEXXZ
?Update@SceneItem@@QAEXXZ
?GetCropBL@SceneItem@@QAE?AUVect2@@XZ
?GetCropBR@SceneItem@@QAE?AUVect2@@XZ
?GetCropTR@SceneItem@@QAE?AUVect2@@XZ
?GetCropTL@SceneItem@@QAE?AUVect2@@XZ
?GetCrop@SceneItem@@QAE?AUVect4@@XZ
?MoveToBottom@XElement@@QAEXXZ
?MoveToTop@XElement@@QAEXXZ
?MoveDown@XElement@@QAEXXZ
?MoveUp@XElement@@QAEXXZ
?CopyElement@XElement@@QAEPAV1@PAV1@PB_W@Z
?AddString@XElement@@QAEXPB_WPA_W@Z
?OSMonitorDirectoryCallback@@YAPAUOSDirectoryMonitorData@@VString@@P6AXXZ@Z
?GetLVText@@YA?AVString@@PAUHWND__@@I@Z
?ReadLogPartial@@YAXAAVString@@AAII@Z
?tstr_to_wide@@YAHPB_WPA_WI@Z
?GetID@SceneItem@@QAEIXZ
?GetSelectedItems@Scene@@QBEXAAV?$List@PAVSceneItem@@@@@Z
?GetItemsOnPoint@Scene@@QBEXABUVect2@@AAV?$List@PAVSceneItem@@@@@Z
?CloseTo@Vect2@@QBEHABU1@M@Z
?Floor@Vect2@@QAEAAU1@XZ
?Dist@Vect2@@QBEMABU1@@Z
??YVect2@@QAEAAU0@M@Z
?GetVolume@AudioSource@@QBEMXZ
?SortAudio@AudioSource@@QAEX_K@Z
?QueryAudio2@AudioSource@@QAEIM_N@Z
?OSCheckForBuggyDLLs@@YGXXZ
?DumpProfileData@@YGXXZ
?MixAudio@@YAXPAM0I_N@Z
?OSIncompatibleModulesLoaded@@YGHXZ
?CreatePath@@YAHPB_W@Z
?OSFileIsDirectory@@YG_NPB_W@Z
?OSGetDefaultVideoSavePath@@YG?AVString@@PB_W@Z
?Join@StringList@@QAE?AVString@@V2@@Z
?DeselectAll@Scene@@AAEXXZ
?UpdateSettings@Scene@@UAEXXZ
?NumSceneItems@Scene@@QBEIXZ
?GetSceneItem@Scene@@QBEPAVSceneItem@@I@Z
??0Scene@@QAE@XZ
?HasValue@?$List@VString@@@@QBEHABVString@@@Z
?InitColorControl@@YAXPAUHINSTANCE__@@@Z
?LocalizeMenu@@YAXPAUHMENU__@@PAVLocaleStringLookup@@@Z
?InitVolumeMeter@@YAXPAUHINSTANCE__@@@Z
?SetVolumeMeterValue@@YAMPAUHWND__@@MMMMMM@Z
?OSGetLoadedModuleList@@YGHPAXAAVStringList@@@Z
?ResetLogUpdateCallback@@YAXP6AXXZ@Z
??1Scene@@UAE@XZ
?InsertImageSource@Scene@@UAEPAVSceneItem@@IPAVXElement@@@Z
?AddImageSource@Scene@@UAEPAVSceneItem@@PAVXElement@@@Z
?RemoveImageSource@Scene@@UAEXPAVSceneItem@@@Z
?Tick@Scene@@UAEXM@Z
?Preprocess@Scene@@UAEXXZ
?Render@Scene@@UAEXXZ
?RenderSelections@Scene@@UAEXPAVShader@@@Z
?BeginScene@Scene@@UAEXXZ
?EndScene@Scene@@UAEXXZ
?srchr@@YGPA_WPB_W_W@Z
?InsertElement@XElement@@QAEPAV1@IPB_W@Z
?RemoveElement@XElement@@QAEXPAV1@@Z
?InitVolumeControl@@YAXPAUHINSTANCE__@@@Z
?SetVolumeControlIcons@@YAXPAUHWND__@@PAUHICON__@@1@Z
?SetRender@SceneItem@@QAEX_N@Z
?LoadStringFile@LocaleStringLookup@@QAEHPB_W_N@Z
?InitHotkeyExControl@@YAXPAUHINSTANCE__@@@Z
?SetVolumeControlValue@@YAMPAUHWND__@@M@Z
?OSMonitorDirectoryCallbackStop@@YAXPAUOSDirectoryMonitorData@@@Z
?OBSGetAPIVersion@@YAIXZ
?GetFloat@ConfigFile@@QAEMPB_W0M@Z
?HasKey@ConfigFile@@QAEHPB_W0@Z
?Remove@ConfigFile@@QAEXPB_W0@Z
?SetVolumeControlMutedVal@@YAXPAUHWND__@@M@Z
?OutputQword@Serializer@@QAEAAV1@_K@Z
?InitAudioData@AudioSource@@IAEX_NIIIIK@Z
??0AudioSource@@QAE@XZ
??1AudioSource@@UAE@XZ
?QueryAudio@AudioSource@@UAEIM@Z
?GetEarliestTimestamp@AudioSource@@UAE_NAA_K@Z
?GetBuffer@AudioSource@@UAE_NPAPAM_K@Z
?GetNewestFrame@AudioSource@@UAE_NPAPAM@Z
?GetBufferedTime@AudioSource@@UAE_KXZ
?GetChannelCount@AudioSource@@QBEIXZ
?GetSamplesPerSec@AudioSource@@QBEIXZ
?GetTimeOffset@AudioSource@@QBEHXZ
?SetTimeOffset@AudioSource@@QAEXH@Z
?GetLatestTimestamp@AudioSource@@UAE_NAA_K@Z
?DataLength@String@@QBEIXZ
??0ConfigFile@@QAE@XZ
?Left@String@@QAE?AV1@I@Z
?ParseString@XConfig@@QAE_NABVString@@@Z
?GetDataItem@XElement@@QBEPAVXDataItem@@PB_W@Z
?GetDataItemByID@XElement@@QBEPAVXDataItem@@K@Z
?SetParallelCallCount@ProfilerNode@@QAEXK@Z
?GetQPCTimeNS@@YA_KXZ
?DumpLastProfileData@@YGXXZ
?OSDebugOut@@YAXPB_WZZ
?ToggleVolumeControlMute@@YAMPAUHWND__@@@Z
?OSIncompatiblePatchesLoaded@@YGHAAVString@@@Z
??1ConfigFile@@QAE@XZ
?ReverseOrder@XElement@@QAEXXZ
??0XConfig@@QAE@XZ
?OSGetTotalCores@@YGHXZ
?LogRaw@@YAXPB_WI@Z
?scmp@@YGHPB_W0@Z
?ValidIntString@@YGHPB_W@Z
?tstring_base_to_uint@@YAIPB_WPAPA_WH@Z
?Compare@String@@QBEHPB_W@Z
?tstoi@@YAHPA_W@Z
?ValidFloatString@@YGHPB_W@Z
?schr@@YGPA_WPB_W_W@Z
?sstr@@YGPA_WPB_W0@Z
?IntString@@YA?AVString@@HH@Z
?tstof@@YANPA_W@Z
?scmpi@@YGHPB_W0@Z
?CrashError@@YAXPB_WZZ
??1StringList@@QAE@XZ
??6StringList@@QAEAAV0@ABVString@@@Z
??YVect2@@QAEAAU0@ABU0@@Z
??XVect2@@QAEAAU0@ABU0@@Z
??_0Vect2@@QAEAAU0@ABU0@@Z
??A?$List@VString@@@@QAEAAVString@@I@Z
?GetFloat@XElement@@QBEMPB_WM@Z
?GetPathDirectory@@YA?AVString@@PB_W@Z
?SetStringList@XElement@@QAEXPB_WAAVStringList@@@Z
?GetLBText@@YA?AVString@@PAUHWND__@@I@Z
?slen@@YGIPB_W@Z
?OSFileExists@@YGHPB_W@Z
?SetColor@Shader@@QAEXPAXK@Z
?Preprocess@ImageSource@@UAEXXZ
?BeginScene@ImageSource@@UAEXXZ
?EndScene@ImageSource@@UAEXXZ
?GlobalSourceLeaveScene@ImageSource@@UAEXXZ
?GlobalSourceEnterScene@ImageSource@@UAEXXZ
?SetFloat@ImageSource@@UAEXPB_WM@Z
?SetInt@ImageSource@@UAEXPB_WH@Z
?SetString@ImageSource@@UAEXPB_W0@Z
?SetVector@ImageSource@@UAEXPB_WABUVect@@@Z
?SetVector2@ImageSource@@UAEXPB_WABUVect2@@@Z
?SetVector4@ImageSource@@UAEXPB_WABUVect4@@@Z
?SetMatrix@ImageSource@@UAEXPB_WABUMatrix@@@Z
?GetFloat@ImageSource@@UBE_NPB_WAAM@Z
?GetInt@ImageSource@@UBE_NPB_WAAH@Z
?GetString@ImageSource@@UBE_NPB_WAAVString@@@Z
?GetVector@ImageSource@@UBE_NPB_WAAUVect@@@Z
?GetVector2@ImageSource@@UBE_NPB_WAAUVect2@@@Z
?GetVector4@ImageSource@@UBE_NPB_WAAUVect4@@@Z
?GetMatrix@ImageSource@@UBE_NPB_WAAUMatrix@@@Z
?GetSceneItem@Scene@@QBEPAVSceneItem@@PB_W@Z
?CreatePixelShaderFromFile@GraphicsSystem@@QAEPAVShader@@PB_W@Z
?DrawSprite@GraphicsSystem@@QAEXPAVTexture@@KMMMM@Z
??_7ImageSource@@6B@
?GetEditText@@YA?AVString@@PAUHWND__@@@Z
?OBSDialogBox@@YAHPAUHINSTANCE__@@PB_WPAUHWND__@@P6GH2IIJ@ZJ@Z
?SetString@XElement@@QAEXPB_W0@Z
?SetInt@XElement@@QAEXPB_WH@Z
?CreateElement@XElement@@QAEPAV1@PB_W@Z
?CCGetColor@@YAKPAUHWND__@@@Z
?LocalizeWindow@@YAXPAUHWND__@@PAVLocaleStringLookup@@@Z
?CCSetColor@@YAXPAUHWND__@@K@Z
?OSFindFirstFile@@YGPAXPB_WAAUOSFindData@@@Z
??YString@@QAEAAV0@PB_W@Z
?GetPathWithoutExtension@@YA?AVString@@PB_W@Z
?EnableProfiling@@YGXHMM@Z
?sfix@@YGPA_WPA_W@Z
?CCGetCustomColors@@YAXPAK@Z
?OSFindNextFile@@YGHPAXAAUOSFindData@@@Z
?TerminateXT@@YGXXZ
?scat_n@@YGXPA_WPB_WI@Z
?OSGetLogicalCores@@YGHXZ
?ResetXTAllocator@@YGXPB_W@Z
?OSFindClose@@YGXPAX@Z
?OSCreateDirectory@@YGHPB_W@Z
?OSDeleteFile@@YGHPB_W@Z
?CCSetCustomColors@@YAXPAK@Z
?Create@ConfigFile@@QAEHPB_W@Z
?Open@ConfigFile@@QAEHPB_WH@Z
?SetFloat@ConfigFile@@QAEXPB_W0M@Z
?InitXTLog@@YGXPB_W@Z
?InitXT@@YGHPB_W0@Z
??0XFile@@QAE@PB_WKK@Z
?IsOpen@XFile@@QAEHXZ
??6String@@QAEAAV0@_W@Z
?ReadLog@@YAXAAVString@@@Z
?CurrentDateTimeString@@YA?AVString@@XZ
?CurrentLogFilename@@YA?AVString@@XZ
?utf8_createTstr@@YAPA_WPBD@Z
?OBSGetPluginDataPath@@YA?AVString@@XZ
?OSTryEnterMutex@@YGHPAX@Z
?OSTerminateThread@@YGHPAXK@Z
?OSCloseEvent@@YAXPAX@Z
?OSCloseThread@@YGHPAX@Z
?OSCloseMutex@@YGXPAX@Z
?OSCreateMutex@@YGPAXXZ
?GetQPCTimeMS@@YA_KXZ
?AppendString@String@@QAEAAV1@PB_WI@Z
?Tick@ImageSource@@UAEXM@Z
?DataPending@Serializer@@UAEHXZ
?Write@XFile@@QAEKPBXK@Z
?SetPos@XFile@@QAE_K_JK@Z
?Remove@StringList@@QAEXI@Z
??6String@@QAEAAV0@H@Z
?CreateUTF8String@String@@QAEPADXZ
?Logva@@YAXPB_WPAD@Z
?OSDebugOutva@@YAXPB_WPAD@Z
?OutputByte@Serializer@@QAEAAV1@E@Z
?OutputWord@Serializer@@QAEAAV1@G@Z
?OutputDword@Serializer@@QAEAAV1@K@Z
?Serialize@BufferOutputSerializer@@UAEXPBXK@Z
??0ProfilerNode@@QAE@PB_W_N@Z
??1ProfilerNode@@QAE@XZ
??HString@@QBE?AV0@ABV0@@Z
??HString@@QBE?AV0@PB_W@Z
?GetToken@String@@QBE?AV1@H_W@Z
?GetTokenList@String@@QBEXAAVStringList@@_WH@Z
?OBSGetAppDataPath@@YAPB_WXZ
?GetString@ConfigFile@@QAE?AVString@@PB_W00@Z
?ToInt@String@@QBEHH@Z
?GetCBText@@YA?AVString@@PAUHWND__@@I@Z
?LocaleIsRTL@@YA_NPAVLocaleStringLookup@@@Z
?GetPathFileName@@YA?AVString@@PB_WH@Z
?GetBaseItem@XElement@@QBEPAVXBaseItem@@PB_W@Z
?GetCursorData@@YAPAEPAUHICON__@@AAU_ICONINFO@@AAI2@Z
?SetInt@ConfigFile@@QAEXPB_W0H@Z
?OBSCreateDialog@@YAPAUHWND__@@PAUHINSTANCE__@@PB_WPAU1@P6GH2IIJ@ZJ@Z
?OSCreateThread@@YGPAXP6GKPAX@Z0@Z
??_7VertexBuffer@@6B@
??0SamplerState@@QAE@XZ
??_7SamplerState@@6B@
??_7BaseTexture@@6B@
?KillSpaces@String@@QAEAAV1@XZ
?Clear@StringList@@QAEXXZ
??6StringList@@QAEAAV0@PB_W@Z
??ZVect2@@QAEAAU0@ABU0@@Z
?Abs@Vect2@@QAEAAU1@XZ
??0Matrix@@QAE@XZ
?Rotate@Matrix@@QAEAAU1@ABUAxisAngle@@@Z
?SetIdentity@Matrix@@QAEAAU1@XZ
?Transpose@Matrix@@QAEAAU1@XZ
??0Matrix@@QAE@ABU0@@Z
?TransformVector@Vect@@QAEAAU1@ABUMatrix@@@Z
?sstri@@YGPA_WPB_W0@Z
??0GraphicsSystem@@QAE@XZ
??1XFile@@QAE@XZ
?GetPathExtension@@YA?AVString@@PB_W@Z
??0XFile@@QAE@XZ
?Open@XFile@@QAEHPB_WKK@Z
?Read@XFile@@QAEKPAXK@Z
?GetFileSize@XFile@@QBE_KXZ
?OSMonitorFileStart@@YGPAUOSFileChangeData@@VString@@_N@Z
?OSFileHasChanged@@YGHPAUOSFileChangeData@@@Z
?OSMonitorFileDestroy@@YGXPAUOSFileChangeData@@@Z
?GS@@3PAVGraphicsSystem@@A
?UIntString@@YA?AVString@@IH@Z
??8String@@QBEHABV0@@Z
?Array@String@@QBEPA_WXZ
??BString@@QBEPA_WXZ
?CopyList@StringList@@QAEXABV1@@Z
??0StringList@@QAE@XZ
?API@@3PAVAPIInterface@@A
??0String@@QAE@ABV0@@Z
??0String@@QAE@PB_W@Z
??0String@@QAE@PBD@Z
??0String@@QAE@XZ
??1String@@QAE@XZ
??4String@@QAEAAV0@ABV0@@Z
??4String@@QAEAAV0@PB_W@Z
??6String@@QAEAAV0@ABV0@@Z
??6String@@QAEAAV0@PB_W@Z
?CompareI@String@@QBEHPB_W@Z
?Clear@String@@QAEAAV1@XZ
?SetLength@String@@QAEAAV1@I@Z
?OSGetTime@@YGKXZ
?FreeProfileData@@YGXXZ
?AppendChar@String@@QAEAAV1@_W@Z
?Right@String@@QAE?AV1@I@Z
?IsSafeFilename@@YAHPB_W@Z
?GetStringList@XElement@@QBEXPB_WAAVStringList@@@Z
??1GraphicsSystem@@UAE@XZ
?Init@GraphicsSystem@@UAEXXZ
?OSGetVersion@@YGHXZ
?Matrix4x4Transpose@@YAXPAM0@Z
?Matrix4x4Convert@@YAXPAMABUMatrix@@@Z
?Matrix4x4Multiply@@YAXPAM00@Z
?Matrix4x4Frustum@@YAXPAMNNNNNN@Z
?GetVolumeControlValue@@YAMPAUHWND__@@@Z
?OBSMessageBox@@YAHPAUHWND__@@PB_W1I@Z
?Open@XConfig@@QAE_NPB_W@Z
?Close@XConfig@@QAEX_N@Z
?Save@XConfig@@QAEXXZ
?SaveTo@XConfig@@QAEXPB_W@Z
?sdup@@YGPA_WPB_W@Z
?Log@@YAXPB_WZZ
?OSSleep@@YGXK@Z
?GetString@XElement@@QBEPB_WPB_WPA_W@Z
?GetInt@XElement@@QBEHPB_WH@Z
?GetElement@XElement@@QBEPAV1@PB_W@Z
?GetElementByID@XElement@@QBEPAV1@K@Z
?NumElements@XElement@@QAEKPB_W@Z
?locale@@3PAVLocaleStringLookup@@A
?OSLeaveMutex@@YGXPAX@Z
?LookupString@LocaleStringLookup@@QAEPB_WPB_W@Z
?DumpError@@YAXPB_WZZ
?MainAllocator@@3PAVAlloc@@A
?AppWarning@@YAXPB_WZZ
?GetStringPtr@ConfigFile@@QAEPB_WPB_W00@Z
?GetInt@ConfigFile@@QAEHPB_W0H@Z
?SetString@ConfigFile@@QAEXPB_W00@Z
?FormattedString@@YA?AVString@@PB_WZZ
?OSEnterMutex@@YGXPAX@Z
?Matrix4x4Ortho@@YAXPAMNNNNNN@Z
??0BufferOutputSerializer@@QAE@AAV?$List@E@@H@Z
?MakeFromRGBA@Vect4@@QAEAAU1@K@Z
?ReadFileToString@XFile@@QAEXAAVString@@@Z
?FindReplace@String@@QAEAAV1@PB_W0@Z
?NumTokens@String@@QBEH_W@Z
?GetTokenOffset@String@@QBEPB_WH_W@Z
?Mid@String@@QAE?AV1@II@Z
?scmp_n@@YGHPB_W0I@Z
??_7Serializer@@6B@
?supr@@YGXPA_W@Z
?scmpi_n@@YGHPB_W0I@Z
??_7Shader@@6B@
?tstr_createUTF8@@YAPADPB_W@Z
??_7OutputDuplicator@@6B@
?WriteStr@XFile@@QAEHPB_W@Z
?WriteStr@XFile@@QAEHPBD@Z
?FlushFileBuffers@XFile@@QAEXXZ
?Close@XFile@@QAEXXZ
?tsprintf_s@@YAHPA_WIPB_WZZ
?scpy@@YGXPA_WPB_W@Z
?scpy_n@@YGXPA_WPB_WI@Z
?slwr@@YGXPA_W@Z
?CreateVertexShaderFromFile@GraphicsSystem@@QAEPAVShader@@PB_W@Z
?SetCanOptimizeSettings@SettingsPane@@IAEX_N@Z
shell32
ShellExecuteW
SHGetFolderPathW
CommandLineToArgvW
Shell_NotifyIconW
ord190
SHOpenFolderAndSelectItems
ord155
SHOpenWithDialog
gdiplus
GdipFillPath
GdipCreateFromHDC
GdipCreateFontFromLogfontW
GdipFillRectangle
GdipSetCompositingMode
GdipCloneStringFormat
GdipDrawString
GdipClonePath
GdipDeletePath
GdipGetFontSize
GdipDisposeImage
GdipAlloc
GdipCreateSolidFill
GdipDeleteFontFamily
GdipGetFamily
GdipSetSmoothingMode
GdipGraphicsClear
GdipSetStringFormatAlign
GdipGetImageGraphicsContext
GdipStringFormatGetGenericTypographic
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipDeleteFont
GdipDrawPath
GdipSetTextRenderingHint
GdipSetStringFormatLineAlign
GdipMeasureString
GdipCreateFontFromLogfontA
GdipCloneBrush
GdipDeletePen
GdipFree
GdipDeleteBrush
GdipSetStringFormatFlags
GdiplusStartup
GdiplusShutdown
GdipSetStringFormatTrimming
GdipCreatePath
GdipCreatePen1
GdipDeleteStringFormat
GdipGetFontStyle
GdipCreateFontFromDC
GdipSetPenLineJoin
GdipAddPathString
winhttp
WinHttpCrackUrl
WinHttpOpenRequest
WinHttpOpen
WinHttpReadData
WinHttpQueryHeaders
WinHttpCloseHandle
WinHttpConnect
WinHttpSendRequest
WinHttpReceiveResponse
WinHttpQueryDataAvailable
libx264-142
ord210
ord218
ord480
ord478
ord216
ord496
ord495
ord494
ord209
ord211
ord212
ord481
uxtheme
DrawThemeBackground
OpenThemeData
CloseThemeData
xinput9_1_0
XInputGetState
kernel32
IsValidCodePage
HeapSize
RtlUnwind
RaiseException
WideCharToMultiByte
GetProcessHeap
GetModuleHandleExW
ExitProcess
ReadFile
LeaveCriticalSection
GetACP
GetCommandLineA
HeapReAlloc
HeapAlloc
IsProcessorFeaturePresent
HeapFree
DecodePointer
EncodePointer
UnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
GetOEMCP
GetCPInfo
EnterCriticalSection
GetStringTypeW
TlsSetValue
TlsFree
GetStartupInfoW
GetStdHandle
WriteFile
GetFileType
DeleteCriticalSection
GetModuleFileNameA
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
LoadLibraryExW
LCMapStringW
OutputDebugStringW
SetStdHandle
FormatMessageA
GlobalFree
GlobalUnlock
GlobalAlloc
GlobalLock
MoveFileW
CreateSemaphoreW
ResetEvent
ReleaseSemaphore
SetThreadPriority
MultiByteToWideChar
DebugBreak
SetThreadExecutionState
SetPriorityClass
GetThreadId
TerminateThread
GetSystemTimeAsFileTime
IsBadReadPtr
HeapSetInformation
GetLocaleInfoEx
CopyFileW
SetProcessDEPPolicy
SetUnhandledExceptionFilter
GlobalMemoryStatus
GetCommandLineW
GetLocalTime
SystemTimeToFileTime
ReleaseMutex
WaitForMultipleObjects
CreateEventW
CreateFileMappingW
TerminateProcess
GetExitCodeProcess
SetEvent
WaitForSingleObject
CreateProcessW
UnmapViewOfFile
MapViewOfFile
CreateMutexW
OpenProcess
QueryFullProcessImageNameW
Sleep
GetSystemTime
LocalFree
GetCurrentProcessId
DeleteFileW
CloseHandle
GetCurrentThreadId
IsDebuggerPresent
LocalAlloc
CreateFileW
GetFileAttributesW
GetVersionExW
GetCurrentThread
GetCurrentProcess
FreeLibrary
GetThreadContext
OutputDebugStringA
GetModuleHandleA
SetCurrentDirectoryW
LoadLibraryA
GetProcAddress
SetLastError
GetCurrentDirectoryW
GetLastError
GetModuleFileNameW
LoadLibraryW
GetModuleHandleW
WriteConsoleW
user32
SendMessageW
RedrawWindow
GetDlgItem
GetAsyncKeyState
PostMessageW
SetWindowTextW
EnableWindow
ReleaseCapture
GetCursorPos
EndDialog
SetWindowLongW
ReleaseDC
GetWindowLongW
GetDC
SetCapture
LoadImageW
SetCursor
ShowWindow
DestroyWindow
GetWindow
GetWindowThreadProcessId
DefWindowProcW
DestroyIcon
GetDlgCtrlID
IsWindowVisible
RegisterClassW
MessageBoxW
CreateWindowExW
IsWindow
SetLayeredWindowAttributes
CloseClipboard
SetTimer
PostQuitMessage
TrackPopupMenu
KillTimer
GetKeyState
DeleteMenu
GetFocus
CreateMenu
GetMenuItemInfoW
OffsetRect
TrackPopupMenuEx
AppendMenuW
GetClipboardData
RemoveClipboardFormatListener
EmptyClipboard
CreatePopupMenu
DrawMenuBar
GetMenuItemCount
OpenClipboard
SetClipboardData
DestroyMenu
AddClipboardFormatListener
DrawFrameControl
CopyRect
MoveWindow
CallWindowProcW
IsWindowEnabled
ScreenToClient
GetParent
SendDlgItemMessageW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MapWindowPoints
GetSysColor
UpdateWindow
SystemParametersInfoW
SetWindowPlacement
EnumDisplayMonitors
RegisterWindowMessageW
DrawTextW
GetSubMenu
SetFocus
GetMenu
LoadIconW
GetWindowPlacement
InvalidateRect
EnableMenuItem
MonitorFromWindow
SetMenu
GetSysColorBrush
GetSystemMetrics
GetMonitorInfoW
CheckMenuItem
TranslateAcceleratorW
GetMessageW
SetForegroundWindow
TranslateMessage
LoadAcceleratorsW
IsDialogMessageW
PeekMessageW
DispatchMessageW
EndPaint
ClientToScreen
GetWindowTextLengthW
GetWindowRect
GetWindowDC
IsIconic
FillRect
LoadCursorW
DrawIcon
FindWindowW
GetClientRect
BeginPaint
GetIconInfo
GetForegroundWindow
GetCursorInfo
CopyIcon
GetWindowTextW
GetClassNameW
GetDesktopWindow
SetWindowPos
gdi32
GetTextExtentPoint32W
MoveToEx
CreateSolidBrush
GetTextColor
CreateFontW
LineTo
CreateFontIndirectW
SetTextColor
SetDCPenColor
GetTextMetricsW
SetBkColor
GetObjectA
EnumFontFamiliesExW
CreateDIBSection
SetBkMode
SetTextAlign
TextOutW
GetStockObject
BitBlt
DeleteDC
GetDIBits
DeleteObject
SelectObject
CreateCompatibleDC
GetCurrentObject
CreateCompatibleBitmap
advapi32
RegOpenKeyW
RegCloseKey
AdjustTokenPrivileges
LookupPrivilegeValueW
OpenProcessToken
RegQueryValueExW
ole32
CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateInstance
Sections
.text Size: 741KB - Virtual size: 741KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 307KB - Virtual size: 307KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 26KB - Virtual size: 221KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 37B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 50KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ