C:\jenkins\jobs\fdm_qt_build_windows\workspace\build_x86\bin\wincomserver.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
ec0331d73dc795ae8daf658c564b57a0N.exe
Resource
win7-20240704-en
windows7-x64
0 signatures
120 seconds
Behavioral task
behavioral2
Sample
ec0331d73dc795ae8daf658c564b57a0N.exe
Resource
win10v2004-20240704-en
windows10-2004-x64
0 signatures
120 seconds
General
-
Target
ec0331d73dc795ae8daf658c564b57a0N.exe
-
Size
378KB
-
MD5
ec0331d73dc795ae8daf658c564b57a0
-
SHA1
8783b8a40ed46929ddc103fd70adcc3a7c4319b3
-
SHA256
550ef492b27fc5053122a83b6dd99b3a1b8286b35ff6519de92a58e102921e08
-
SHA512
220650ecdcdbf5dc6a9480195894fe06e9697eb079baa877b7b5f1089c02681a058c79d1b708eb4bed0043ae292c4bf8cfb720260ed5cd62cc86a3e9e13557ca
-
SSDEEP
6144:85ituDDeyS2WvahwrgHa2FkzzDoMV3wgrdChVjYfOJgZR:+0uDDeySFOwrgHake13wgrgUmS
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ec0331d73dc795ae8daf658c564b57a0N.exe
Files
-
ec0331d73dc795ae8daf658c564b57a0N.exe.exe windows:6 windows x86 arch:x86
0237b99c0f2b9b4f2ff7074a759388fc
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
qt5core
?qt_metacast@QTimer@@UAEPAXPBD@Z
?qt_metacall@QTimer@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?pos@QIODevice@@UBE_JXZ
?metaObject@QTimer@@UBEPBUQMetaObject@@XZ
?qt_metacall@QObject@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QObject@@2UQMetaObject@@B
??0QString@@QAE@VQLatin1String@@@Z
??0QString@@QAE@$$QAV0@@Z
?arg@QString@@QBE?AV1@ABV1@00@Z
??M@YA_NABVQString@@0@Z
?indexOfEnumerator@QMetaObject@@QBEHPBD@Z
?enumerator@QMetaObject@@QBE?AVQMetaEnum@@H@Z
?detach@QListData@@QAEPAUData@1@H@Z
?detach_grow@QListData@@QAEPAUData@1@PAHH@Z
?readLineData@QIODevice@@MAE_JPAD_J@Z
?dispose@QListData@@SAXPAUData@1@@Z
?atEnd@QIODevice@@UBE_NXZ
?exists@QFile@@SA_NABVQString@@@Z
?startDetached@QProcess@@SA_NABVQString@@@Z
?closeReadChannel@QProcess@@QAEXW4ProcessChannel@1@@Z
?setProcessChannelMode@QProcess@@QAEXW4ProcessChannelMode@1@@Z
?windowsVersion@QSysInfo@@SA?AW4WinVersion@1@XZ
??1QProcess@@UAE@XZ
??0QProcess@@QAE@PAVQObject@@@Z
??5QDataStream@@QAEAAV0@AA_N@Z
??5QDataStream@@QAEAAV0@AA_J@Z
??1QDataStream@@QAE@XZ
??0QDataStream@@QAE@ABVQByteArray@@@Z
??0QDataStream@@QAE@PAVQIODevice@@@Z
?reset@QIODevice@@UAE_NXZ
?seek@QIODevice@@UAE_N_J@Z
?size@QIODevice@@UBE_JXZ
?timerEvent@QTimer@@MAEXPAVQTimerEvent@@@Z
?qt_metacast@QObject@@UAEPAXPBD@Z
?dynamicMetaObject@QObjectData@@QBEPAUQMetaObject@@XZ
?activate@QMetaObject@@SAXPAVQObject@@PBU1@HPAPAX@Z
?staticMetaObject@QIODevice@@2UQMetaObject@@B
?dispose@QListData@@QAEXXZ
?append@QListData@@QAEPAPAXXZ
?begin@QListData@@QBEPAPAXXZ
?end@QListData@@QBEPAPAXXZ
?allocateNode@QHashData@@QAEPAXH@Z
?detach_helper@QHashData@@QAEPAU1@P6AXPAUNode@1@PAX@ZP6AX0@ZHH@Z
?willGrow@QHashData@@QAE_NXZ
?firstNode@QHashData@@QAEPAUNode@1@XZ
?nextNode@QHashData@@SAPAUNode@1@PAU21@@Z
??0QVariant@@QAE@ABVQString@@@Z
??4QVariant@@QAEAAV0@$$QAV0@@Z
?keyToValue@QMetaEnum@@QBEHPBDPA_N@Z
?valueToKey@QMetaEnum@@QBEPBDH@Z
?shared_null@QListData@@2UData@1@B
?shared_null@QHashData@@2U1@B
?cast@QMetaObject@@QBEPAVQObject@@PAV2@@Z
?propertyCount@QMetaObject@@QBEHXZ
?property@QMetaObject@@QBE?AVQMetaProperty@@H@Z
?newInstance@QMetaObject@@QBEPAVQObject@@VQGenericArgument@@000000000@Z
??0QByteArray@@QAE@$$QAV0@@Z
?constData@QByteArray@@QBEPBDXZ
?length@QByteArray@@QBEHXZ
?length@QString@@QBEHXZ
?constData@QString@@QBEPBVQChar@@XZ
??6@YAAAVQDataStream@@AAV0@ABVQString@@@Z
?typeFlags@QMetaType@@SA?AV?$QFlags@W4TypeFlag@QMetaType@@@@H@Z
?metaObjectForType@QMetaType@@SAPBUQMetaObject@@H@Z
?setProperty@QObject@@QAE_NPBDABVQVariant@@@Z
?property@QObject@@QBE?AVQVariant@@PBD@Z
??0QVariant@@QAE@HPBXI@Z
?userType@QVariant@@QBEHXZ
?constData@QVariant@@QBEPBXXZ
?convert@QVariant@@QBE_NHPAX@Z
??5@YAAAVQDataStream@@AAV0@AAVQVariant@@@Z
??6@YAAAVQDataStream@@AAV0@ABVQVariant@@@Z
?name@QMetaProperty@@QBEPBDXZ
??0QDataStream@@QAE@PAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?codecForName@QTextCodec@@SAPAV1@PBD@Z
??1ConverterState@QTextCodec@@QAE@XZ
?toUnicode@QTextCodec@@QBE?AVQString@@PBDHPAUConverterState@1@@Z
?fromUnicode@QTextCodec@@QBE?AVQByteArray@@PBVQChar@@HPAUConverterState@1@@Z
?deleteLater@QObject@@QAEXXZ
?moveToThread@QObject@@QAEXPAVQThread@@@Z
?invokeMethod@QMetaObject@@SA_NPAVQObject@@PBDVQGenericArgument@@222222222@Z
??0QGenericArgument@@QAE@PBDPBX@Z
?fromWCharArray@QString@@SA?AV1@PB_WH@Z
?absolutePath@QDir@@QBE?AVQString@@XZ
??1QDir@@QAE@XZ
?currentThread@QThread@@SAPAV1@XZ
?quit@QCoreApplication@@SAXXZ
?exec@QCoreApplication@@SAHXZ
?setApplicationVersion@QCoreApplication@@SAXABVQString@@@Z
?applicationName@QCoreApplication@@SA?AVQString@@XZ
?setApplicationName@QCoreApplication@@SAXABVQString@@@Z
??1QCoreApplication@@UAE@XZ
??0QCoreApplication@@QAE@AAHPAPADH@Z
?absoluteFilePath@QFileInfo@@QBE?AVQString@@XZ
?exists@QFileInfo@@QBE_NXZ
??1QFileInfo@@QAE@XZ
??0QFileInfo@@QAE@ABVQString@@@Z
?applicationFilePath@QCoreApplication@@SA?AVQString@@XZ
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
?instance@QCoreApplication@@SAPAV1@XZ
?applicationVersion@QCoreApplication@@SA?AVQString@@XZ
?toStdWString@QString@@QBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@XZ
?toStdString@QString@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
??0QString@@QAE@PBD@Z
?fromLatin1@QString@@SA?AV1@PBDH@Z
?arg@QString@@QBE?AV1@ABV1@HVQChar@@@Z
?arg@QString@@QBE?AV1@HHHVQChar@@@Z
??4QString@@QAEAAV0@ABV0@@Z
??1QString@@QAE@XZ
??0QString@@QAE@XZ
??0QChar@@QAE@UQLatin1Char@@@Z
?staticMetaObject@QTimer@@2UQMetaObject@@B
?readyRead@QIODevice@@QAEXXZ
?timeout@QTimer@@QAEXUQPrivateSignal@1@@Z
?stop@QTimer@@QAEXXZ
?start@QTimer@@QAEXH@Z
?singleShot@QTimer@@SAXHPBVQObject@@PBD@Z
?setSingleShot@QTimer@@QAEX_N@Z
??1QTimer@@UAE@XZ
??0QTimer@@QAE@PAVQObject@@@Z
?normalizedType@QMetaObject@@SA?AVQByteArray@@PBD@Z
??1Connection@QMetaObject@@QAE@XZ
??1QByteArray@@QAE@XZ
?fromStdString@QString@@SA?AV1@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?registerNormalizedType@QMetaType@@SAHABVQByteArray@@P6AXPAX@ZP6APAX1PBX@ZHV?$QFlags@W4TypeFlag@QMetaType@@@@PBUQMetaObject@@@Z
?registerNormalizedTypedef@QMetaType@@SAHABVQByteArray@@H@Z
??0QObject@@QAE@PAV0@@Z
??1QObject@@UAE@XZ
?connectImpl@QObject@@CA?AVConnection@QMetaObject@@PBV1@PAPAX01PAVQSlotObjectBase@QtPrivate@@W4ConnectionType@Qt@@PBHPBU3@@Z
??0QJsonValue@@QAE@ABVQString@@@Z
??1QJsonValue@@QAE@XZ
??0QJsonDocument@@QAE@ABVQJsonObject@@@Z
??1QJsonDocument@@QAE@XZ
??0QJsonObject@@QAE@XZ
??1QJsonObject@@QAE@XZ
?insert@QJsonObject@@QAE?AViterator@1@ABVQString@@ABVQJsonValue@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?connectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?disconnectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
??0QString@@QAE@ABV0@@Z
??4QString@@QAEAAV0@$$QAV0@@Z
?free_helper@QHashData@@QAEXP6AXPAUNode@1@@Z@Z
??0QVariant@@QAE@XZ
??1QVariant@@QAE@XZ
??0QVariant@@QAE@ABV0@@Z
?toLongLong@QVariant@@QBE_JPA_N@Z
?toBool@QVariant@@QBE_NXZ
?toString@QVariant@@QBE?AVQString@@XZ
?isEmpty@QString@@QBE_NXZ
?fromStdWString@QString@@SA?AV1@ABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@@Z
?thread@QObject@@QBEPAVQThread@@XZ
?setQObjectShared@ExternalRefCountData@QtSharedPointer@@QAEXPBVQObject@@_N@Z
??0QByteArray@@QAE@PBDH@Z
??0QByteArray@@QAE@ABV0@@Z
?size@QByteArray@@QBEHXZ
?resize@QByteArray@@QAEXH@Z
?data@QByteArray@@QAEPADXZ
?data@QByteArray@@QBEPBDXZ
?isRegistered@QMetaType@@SA_NH@Z
??5QDataStream@@QAEAAV0@AAC@Z
??5QDataStream@@QAEAAV0@AAH@Z
??6QDataStream@@QAEAAV0@C@Z
??6QDataStream@@QAEAAV0@H@Z
??6QDataStream@@QAEAAV0@_J@Z
?readRawData@QDataStream@@QAEHPADH@Z
?writeRawData@QDataStream@@QAEHPBDH@Z
??0QByteArray@@QAE@XZ
??4QByteArray@@QAEAAV0@ABV0@@Z
?endsWith@QString@@QBE_NABV1@W4CaseSensitivity@Qt@@@Z
?append@QString@@QAEAAV1@PBD@Z
??5@YAAAVQDataStream@@AAV0@AAVQString@@@Z
?toJson@QJsonDocument@@QBE?AVQByteArray@@XZ
common
?DatabaseFileName@@3VQString@@B
?createDir@Utils@@YA?AVQDir@@ABVQString@@@Z
?AppComponentName@@3VQString@@B
?DumpsFolder@@3VQString@@B
?writableLocation@Utils@@YA?AVQString@@XZ
?AppMutexName@@3VQString@@B
?queryState@AppSystemWideStateManager@@SA_NAAUAppSystemWideStateInfo@@@Z
?appRunning@WinAppMutexesManager@@SA_NABVQString@@PAX@Z
?adjustLocalServerNameForToken@WinUtils@@YA?AVQString@@ABV2@PAX@Z
?escapedString@Utils@@YA?AVQString@@ABV2@@Z
?UrlReceiverServerName@@3VQString@@B
?concatPaths@Utils@@YA?AVQString@@ABV2@0@Z
?AppExecutableName@@3VQString@@B
?writablePath@Utils@@YA?AVQString@@ABV2@@Z
qt5network
?bytesAvailable@QLocalSocket@@UBE_JXZ
?staticMetaObject@QLocalSocket@@2UQMetaObject@@B
?writeData@QLocalSocket@@MAE_JPBD_J@Z
??0QLocalSocket@@QAE@PAVQObject@@@Z
??1QLocalSocket@@UAE@XZ
?connectToServer@QLocalSocket@@QAEXABVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?disconnectFromServer@QLocalSocket@@QAEXXZ
?flush@QLocalSocket@@QAE_NXZ
?state@QLocalSocket@@QBE?AW4LocalSocketState@1@XZ
?waitForConnected@QLocalSocket@@QAE_NH@Z
?waitForDisconnected@QLocalSocket@@QAE_NH@Z
?connected@QLocalSocket@@QAEXXZ
?disconnected@QLocalSocket@@QAEXXZ
?stateChanged@QLocalSocket@@QAEXW4LocalSocketState@1@@Z
?bytesToWrite@QLocalSocket@@UBE_JXZ
?canReadLine@QLocalSocket@@UBE_NXZ
?close@QLocalSocket@@UAEXXZ
?isSequential@QLocalSocket@@UBE_NXZ
?metaObject@QLocalSocket@@UBEPBUQMetaObject@@XZ
?open@QLocalSocket@@UAE_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?qt_metacall@QLocalSocket@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QLocalSocket@@UAEPAXPBD@Z
?readData@QLocalSocket@@MAE_JPAD_J@Z
?waitForBytesWritten@QLocalSocket@@UAE_NH@Z
?waitForReadyRead@QLocalSocket@@UAE_NH@Z
qt5sql
??0QSqlDatabase@@QAE@XZ
?isValid@QSqlDatabase@@QBE_NXZ
??0QSqlDatabase@@QAE@ABV0@@Z
?bindValue@QSqlQuery@@QAEXABVQString@@ABVQVariant@@V?$QFlags@W4ParamTypeFlag@QSql@@@@@Z
?record@QSqlQuery@@QBE?AVQSqlRecord@@XZ
?numRowsAffected@QSqlQuery@@QBEHXZ
??4QSqlQuery@@QAEAAV0@ABV0@@Z
??0QSqlQuery@@QAE@ABV0@@Z
??0QSqlQuery@@QAE@ABVQString@@VQSqlDatabase@@@Z
?indexOf@QSqlRecord@@QBEHABVQString@@@Z
??1QSqlRecord@@QAE@XZ
?prepare@QSqlQuery@@QAE_NABVQString@@@Z
?exec@QSqlQuery@@QAE_NXZ
?next@QSqlQuery@@QAE_NXZ
?value@QSqlQuery@@QBE?AVQVariant@@H@Z
??0QSqlQuery@@QAE@VQSqlDatabase@@@Z
?removeDatabase@QSqlDatabase@@SAXABVQString@@@Z
?database@QSqlDatabase@@SA?AV1@ABVQString@@_N@Z
?addDatabase@QSqlDatabase@@SA?AV1@ABVQString@@0@Z
?driver@QSqlDatabase@@QBEPAVQSqlDriver@@XZ
?setConnectOptions@QSqlDatabase@@QAEXABVQString@@@Z
?setDatabaseName@QSqlDatabase@@QAEXABVQString@@@Z
?commit@QSqlDatabase@@QAE_NXZ
?transaction@QSqlDatabase@@QAE_NXZ
??1QSqlDatabase@@QAE@XZ
?isOpen@QSqlDatabase@@QBE_NXZ
?close@QSqlDatabase@@QAEXXZ
?open@QSqlDatabase@@QAE_NXZ
??4QSqlDatabase@@QAEAAV0@ABV0@@Z
??1QSqlQuery@@QAE@XZ
msvcp120
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??Bios_base@std@@QBE_NXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
?_Xbad_function_call@std@@YAXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?_Future_error_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
??0id@locale@std@@QAE@I@Z
?_BADOFF@std@@3_JB
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??0_Pad@std@@QAE@XZ
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
_Thrd_join
_Thrd_equal
_Thrd_current
_Mtx_init
_Mtx_destroy
_Mtx_lock
_Mtx_unlock
_Cnd_init
_Cnd_destroy
_Cnd_broadcast
?_Throw_C_error@std@@YAXH@Z
?_Throw_Cpp_error@std@@YAXH@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1_Pad@std@@QAE@XZ
?_Launch@_Pad@std@@QAEXPAU_Thrd_imp_t@@@Z
?_Release@_Pad@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Syserror_map@std@@YAPBDH@Z
?good@ios_base@std@@QBE_NXZ
?fail@ios_base@std@@QBE_NXZ
?flags@ios_base@std@@QBEHXZ
?width@ios_base@std@@QBE_JXZ
?width@ios_base@std@@QAE_J_J@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
xtime_get
_Xtime_diff_to_millis2
_Xtime_get_ticks
_Thrd_sleep
kernel32
WTSGetActiveConsoleSessionId
CreateProcessW
TerminateProcess
CreateSemaphoreW
VirtualQueryEx
GetThreadContext
GetProcessId
ResumeThread
SuspendThread
TerminateThread
OpenThread
CreateThread
WaitForSingleObject
ReleaseSemaphore
SetUnhandledExceptionFilter
RtlCaptureContext
LoadLibraryW
GetProcAddress
FreeLibrary
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WideCharToMultiByte
LocalFree
QueryPerformanceCounter
GetCommandLineW
EncodePointer
UnregisterWait
UnregisterWaitEx
ReadProcessMemory
GetSystemTimeAsFileTime
OpenProcess
GetProcessTimes
CreateEventW
WaitForMultipleObjects
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
ResetEvent
SetEvent
WaitNamedPipeW
TransactNamedPipe
SetNamedPipeHandleState
DuplicateHandle
CloseHandle
WriteFile
CreateFileW
FindResourceW
MultiByteToWideChar
GetFileAttributesW
IsDebuggerPresent
OutputDebugStringW
DecodePointer
RaiseException
InitializeCriticalSectionEx
Sleep
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
LoadResource
SizeofResource
lstrcmpiW
IsProcessorFeaturePresent
GetLastError
user32
GetMessageW
TranslateMessage
DispatchMessageW
PostThreadMessageW
CharUpperW
CharNextW
GetKeyState
UnregisterClassW
advapi32
OpenProcessToken
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
CreateProcessAsUserW
DuplicateTokenEx
ole32
CoUninitialize
CoInitializeEx
CoRegisterClassObject
CoRevokeClassObject
CoResumeClassObjects
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance
CoReleaseServerProcess
CoAddRefServerProcess
oleaut32
LoadRegTypeLi
UnRegisterTypeLi
RegisterTypeLi
LoadTypeLi
VarUI4FromStr
SysStringLen
SysFreeString
SysAllocString
msvcr120
_purecall
_snwprintf_s
fprintf
__iob_func
exit
_set_invalid_parameter_handler
_set_purecall_handler
_invalid_parameter_noinfo
_invalid_parameter_noinfo_noreturn
??_V@YAXPAX@Z
wcscpy_s
_i64tow_s
memset
memcpy
__CxxFrameHandler3
_CxxThrowException
memmove
swprintf_s
??3@YAXPAX@Z
free
malloc
_recalloc
memcpy_s
_itoa
wcscat_s
wcsncpy_s
wcsstr
?terminate@@YAXXZ
strtod
_vsnprintf_s
strncpy
strstr
??0exception@std@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABV01@@Z
??1exception@std@@UAE@XZ
_finite
tolower
localeconv
?wait@Concurrency@@YAXI@Z
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
?what@exception@std@@UBEPBDXZ
_hypot
strncmp
modf
memmove_s
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__getmainargs
__set_app_type
_exit
_cexit
_ismbblead
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
_acmdln
_fmode
_commode
_except_handler4_common
__crtSetUnhandledExceptionFilter
_invoke_watson
??2@YAPAXI@Z
_controlfp_s
wtsapi32
WTSQueryUserToken
userenv
DestroyEnvironmentBlock
CreateEnvironmentBlock
shell32
CommandLineToArgvW
SHGetKnownFolderPath
Sections
.text Size: 248KB - Virtual size: 248KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 100KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 6KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ