c:\Temp\MICSTool\G3toM\Release.142\G3toM.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
ed45186185c67aceb1fe6e8cbdae8cd0N.exe
Resource
win7-20240705-en
windows7-x64
4 signatures
120 seconds
Behavioral task
behavioral2
Sample
ed45186185c67aceb1fe6e8cbdae8cd0N.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
4 signatures
120 seconds
General
-
Target
ed45186185c67aceb1fe6e8cbdae8cd0N.exe
-
Size
5.3MB
-
MD5
ed45186185c67aceb1fe6e8cbdae8cd0
-
SHA1
9950ae23eea0ba5372cd78078519a8d6aa24bf17
-
SHA256
dd76d9008f8650d02cf5ed0a54a93732acd8420764d21cc496e288cfc3e15fe7
-
SHA512
710138d8caf2bc843fce0ca7dcac08c25851f37c5f1bd3f8404dcba5fef8be01478e77b2d122ac20667653f0b07bf183ca56692a7c42530f46126f79b1552b04
-
SSDEEP
98304:tUuv3gDbgZnH/BhVC64G8G28hWzAjaTZZdpQoSxX03nK0v4uInP:tU+gDkVHJhVCg3OGatZdpyx4nKj
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource ed45186185c67aceb1fe6e8cbdae8cd0N.exe
Files
-
ed45186185c67aceb1fe6e8cbdae8cd0N.exe.exe windows:6 windows x86 arch:x86
d19b2c99df6e98ecbb4a4aa1a782dc83
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
mfc140u
ord266
ord265
ord1133
ord6549
ord9128
ord1070
ord3872
ord2993
ord8744
ord4222
ord5882
ord3147
ord6497
ord7493
ord12131
ord6218
ord13752
ord2760
ord9210
ord12172
ord1111
ord9040
ord11015
ord11396
ord10472
ord4092
ord458
ord3403
ord3404
ord3164
ord6531
ord6129
ord6220
ord13756
ord3305
ord3302
ord10255
ord8210
ord2761
ord14785
ord1866
ord14466
ord12531
ord8000
ord14667
ord6348
ord14669
ord6350
ord14668
ord6349
ord12536
ord13911
ord4449
ord8462
ord995
ord6860
ord1072
ord366
ord3852
ord5918
ord12239
ord8217
ord12251
ord12219
ord5763
ord10250
ord3849
ord4881
ord14364
ord1452
ord976
ord13473
ord4477
ord13028
ord8817
ord12637
ord13669
ord2925
ord6501
ord13259
ord2217
ord8049
ord12639
ord8046
ord1465
ord13965
ord987
ord13125
ord12638
ord2467
ord3077
ord4616
ord14606
ord13048
ord498
ord8031
ord291
ord287
ord281
ord2413
ord2342
ord7327
ord5669
ord5222
ord13380
ord7027
ord5422
ord261
ord12643
ord4797
ord5590
ord12351
ord12754
ord1521
ord484
ord10285
ord10287
ord10286
ord10284
ord10288
ord5652
ord11725
ord11726
ord9139
ord12089
ord3838
ord11936
ord14588
ord8965
ord12220
ord6978
ord11002
ord9256
ord3266
ord13878
ord12262
ord12258
ord1722
ord1744
ord1770
ord1756
ord1777
ord4936
ord5003
ord4948
ord4966
ord4960
ord4954
ord2385
ord4997
ord4942
ord5019
ord4974
ord4912
ord4927
ord4988
ord4502
ord5790
ord9693
ord4494
ord3055
ord14590
ord7923
ord14596
ord14507
ord6877
ord11717
ord13703
ord5935
ord2682
ord12124
ord3941
ord3371
ord290
ord14600
ord13961
ord3265
ord12168
ord1002
ord5249
ord5549
ord5760
ord9350
ord5525
ord5252
ord5411
ord11991
ord12317
ord13110
ord1175
ord2889
ord5699
ord545
ord2332
ord6196
ord6316
ord4093
ord1143
ord5228
ord7722
ord7723
ord7712
ord5409
ord501
ord6225
ord8219
ord9209
ord3697
ord6226
ord14234
ord14128
ord7810
ord14131
ord2470
ord3069
ord12419
ord2178
ord1416
ord932
ord6189
ord5602
ord5954
ord4884
ord12058
ord8100
ord13985
ord13293
ord13087
ord8051
ord13258
ord1477
ord13260
ord13966
ord1003
ord3068
ord2463
ord13253
ord2874
ord1060
ord346
ord1142
ord2885
ord5886
ord13979
ord12586
ord11962
ord6328
ord500
ord5514
ord6555
ord321
ord2396
ord8719
ord4664
ord2996
ord1690
ord1687
ord5074
ord1663
ord12784
ord5512
ord494
ord2389
ord358
ord1353
ord822
ord1197
ord571
ord5840
ord2304
ord2215
ord2256
ord7649
ord9467
ord9348
ord12088
ord12123
ord9226
ord6876
ord2681
ord1468
ord10048
ord10047
ord9011
ord11746
ord8913
ord8923
ord10509
ord11118
ord9526
ord9991
ord9986
ord9514
ord9524
ord9509
ord11279
ord11276
ord2378
ord6751
ord8225
ord4323
ord13251
ord293
ord1525
ord1526
ord1689
ord1692
ord1693
ord12884
ord8712
ord14417
ord14411
ord6956
ord503
ord1144
ord5583
ord1511
ord5586
ord8177
ord4715
ord4735
ord12348
ord14604
ord12425
ord12405
ord14657
ord360
ord13960
ord5013
ord1067
ord13254
ord1131
ord823
ord13962
ord8304
ord4130
ord991
ord7432
ord7410
ord5390
ord3833
ord7820
ord14137
ord4886
ord5322
ord4499
ord2562
ord8746
ord4227
ord14377
ord2526
ord4885
ord3932
ord6607
ord1068
ord362
ord13070
ord1108
ord4648
ord4649
ord13061
ord8365
ord8811
ord13062
ord14047
ord13922
ord13289
ord13085
ord13086
ord13095
ord450
ord3954
ord2520
ord6486
ord3605
ord6559
ord6489
ord3693
ord3809
ord1450
ord13257
ord13964
ord974
ord4815
ord14259
ord8360
ord12921
ord8757
ord898
ord6795
ord13255
ord1354
ord3075
ord2246
ord6566
ord4882
ord2522
ord3957
ord5234
ord1460
ord2945
ord13288
ord8476
ord13968
ord984
ord1447
ord13628
ord968
ord4381
ord13299
ord7505
ord11723
ord9175
ord9302
ord10402
ord11495
ord12081
ord9237
ord12102
ord4587
ord3843
ord12177
ord5369
ord11795
ord11800
ord9213
ord8209
ord1151
ord9352
ord8831
ord5955
ord11430
ord14181
ord4495
ord2557
ord5273
ord4019
ord4383
ord5938
ord13707
ord5939
ord13709
ord13700
ord5934
ord1788
ord12460
ord6130
ord5034
ord5033
ord8398
ord3174
ord514
ord7138
ord10737
ord9701
ord2865
ord10150
ord10149
ord2303
ord5765
ord7501
ord11792
ord10155
ord9212
ord9979
ord11743
ord9363
ord11139
ord11138
ord10721
ord10251
ord10431
ord5368
ord5377
ord14511
ord4088
ord4138
ord1128
ord12093
ord12964
ord2718
ord9484
ord4703
ord12660
ord12418
ord2558
ord13352
ord2843
ord7655
ord8395
ord11252
ord12575
ord5577
ord12786
ord9197
ord11267
ord11024
ord10976
ord3857
ord9081
kernel32
WaitForSingleObject
ReleaseSemaphore
OpenSemaphoreA
OutputDebugStringW
FindFirstFileA
ReadFile
GetEnvironmentVariableA
SetErrorMode
GetSystemTime
SystemTimeToFileTime
CreateFileA
WriteFile
GetModuleFileNameA
GetLocalTime
FindNextFileA
DeviceIoControl
LoadLibraryA
GetFileSize
GetVersion
FindClose
lstrcpyW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
GetModuleHandleA
OutputDebugStringA
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
RaiseException
DecodePointer
SearchPathW
LocalAlloc
GetUserDefaultLCID
LCMapStringW
lstrlenW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
RemoveDirectoryW
GetACP
CreateDirectoryW
GetPrivateProfileIntW
GetVolumeInformationW
GetLogicalDrives
GetDiskFreeSpaceW
VerifyVersionInfoW
WritePrivateProfileStringW
LoadLibraryW
FreeLibrary
GetSystemInfo
GlobalMemoryStatusEx
OpenProcess
VerSetConditionMask
SetConsoleCtrlHandler
WideCharToMultiByte
MultiByteToWideChar
GetComputerNameW
MoveFileW
GetPrivateProfileStringW
lstrcpynW
GetCurrentProcess
CreateMutexW
Beep
GetShortPathNameW
GetDriveTypeW
CopyFileW
FormatMessageW
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
GetProcAddress
GetModuleHandleW
GetModuleFileNameW
GetWindowsDirectoryW
GetSystemDirectoryW
GetTickCount
CreateProcessW
Sleep
SetLastError
CloseHandle
GetTempPathW
SetFileAttributesW
GetLongPathNameW
GetFileAttributesW
GetCurrentDirectoryW
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetLastError
CreateSemaphoreA
SearchPathA
user32
SetActiveWindow
GetIconInfo
SetWindowLongW
UnregisterClassW
GetWindowLongW
EnableMenuItem
DrawIconEx
GetClassNameW
EnumWindows
FindWindowW
GetWindowRect
GetWindowTextW
SetForegroundWindow
IsIconic
IsWindowVisible
SystemParametersInfoW
DestroyIcon
LoadIconW
LoadBitmapW
OffsetRect
SetRect
DrawIcon
DeleteMenu
ModifyMenuW
GetMenuItemCount
GetMenuItemID
GetDlgCtrlID
DispatchMessageW
TranslateMessage
FillRect
LoadCursorW
GetDesktopWindow
PtInRect
IsRectEmpty
IntersectRect
InflateRect
InvertRect
GetSysColor
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
SetCursorPos
MessageBeep
MessageBoxW
GetClientRect
InvalidateRect
ReleaseDC
GetDC
SetMenuDefaultItem
GetSubMenu
GetMenuState
LoadMenuW
GetSystemMetrics
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetCapture
GetAsyncKeyState
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
IsWindow
PostMessageW
PeekMessageW
CopyRect
SetRectEmpty
EnableWindow
SendMessageW
wsprintfW
UpdateWindow
gdi32
GetObjectType
Rectangle
RoundRect
SelectObject
SetPixel
SetPixelFormat
StretchDIBits
GetCurrentPositionEx
CloseEnhMetaFile
CreateEnhMetaFileW
CreateDIBSection
BeginPath
EndPath
GetObjectW
Polygon
SwapBuffers
GetDeviceCaps
GetCurrentObject
Ellipse
DescribePixelFormat
CreatePenIndirect
DeleteObject
CreateMetaFileW
CreateFontIndirectW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CloseMetaFile
ChoosePixelFormat
Arc
SetStretchBltMode
GetPixel
BitBlt
GetBitmapBits
CreateBitmap
SetDIBColorTable
GetStretchBltMode
DeleteDC
GetDIBits
Polyline
PolyPolygon
GetGlyphOutlineW
Chord
GetTextMetricsW
GetTextExtentPoint32W
GetBkMode
GetBkColor
CreateFontW
PlayEnhMetaFile
GetEnhMetaFileHeader
GetEnhMetaFileW
DeleteEnhMetaFile
StretchBlt
GetTextColor
GetStockObject
GetMetaFileW
DeleteMetaFile
msimg32
AlphaBlend
advapi32
GetUserNameW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegSetValueExW
RegCloseKey
shell32
DragFinish
DragQueryFileW
DragAcceptFiles
SHGetDesktopFolder
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
SHGetFileInfoW
ExtractIconW
SHGetFolderPathW
ShellExecuteW
comctl32
ImageList_Draw
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_SetBkColor
shlwapi
PathFindExtensionW
ole32
CoCreateInstance
CoInitialize
oleaut32
SysAllocString
VariantClear
VariantTimeToSystemTime
VarDateFromStr
VarUdateFromDate
SysFreeString
VariantInit
msvcp140
_Mbrtowc
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_W_Getdays@_Locinfo@std@@QBEPBGXZ
?_W_Getmonths@_Locinfo@std@@QBEPBGXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?widen@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WD@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?uncaught_exception@std@@YA_NXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?wcerr@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?wcout@std@@3V?$basic_ostream@_WU?$char_traits@_W@std@@@1@A
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?put@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@_W@Z
gdiplus
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipSaveImageToFile
GdipDisposeImage
GdipCloneImage
GdipFillPie
GdipFillRectangleI
GdipFillRectangle
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateLineBrushI
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
version
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
opengl32
glColor4fv
glDeleteLists
glDisable
glEnable
glEnd
glFlush
glGenLists
glGetError
glGetIntegerv
glIsEnabled
glLightfv
glLineWidth
glListBase
glLoadIdentity
glMaterialfv
glClear
glNormal3d
glOrtho
glPopMatrix
glPushMatrix
glRotated
glScaled
glShadeModel
glTexCoord2d
glTranslated
glVertex3d
glViewport
glPointSize
glColor3d
glColor3f
glLineStipple
glVertex3dv
glClearColor
glCallLists
glBegin
wglUseFontOutlinesW
wglMakeCurrent
wglGetCurrentContext
glMatrixMode
wglDeleteContext
glBlendFunc
wglCreateContext
glu32
gluEndPolygon
gluNextContour
gluBeginPolygon
gluErrorString
gluPerspective
gluLookAt
gluNewTess
gluDeleteTess
gluTessVertex
gluTessCallback
mpr
WNetGetConnectionW
vcomp140
omp_get_nested
omp_get_num_procs
omp_get_max_threads
_vcomp_leave_critsect
_vcomp_fork
_vcomp_for_static_simple_init
_vcomp_enter_critsect
_vcomp_for_static_end
vcruntime140
memchr
wcsrchr
__current_exception
__current_exception_context
_except_handler4_common
__std_type_info_destroy_list
wcsstr
memset
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__CxxFrameHandler3
memcpy
wcschr
__std_terminate
memmove
_purecall
api-ms-win-crt-runtime-l1-1-0
_initialize_onexit_table
terminate
_set_app_type
_configure_narrow_argv
_invalid_parameter_noinfo
_errno
_controlfp_s
_crt_at_quick_exit
_configure_wide_argv
_seh_filter_dll
_initialize_wide_environment
_register_thread_local_exe_atexit_callback
_c_exit
_seh_filter_exe
_resetstkoflw
_invalid_parameter_noinfo_noreturn
_crt_atexit
_register_onexit_function
_wsystem
_execute_onexit_table
_initialize_narrow_environment
_cexit
_get_wide_winmain_command_line
_exit
_initterm
_initterm_e
exit
api-ms-win-crt-convert-l1-1-0
wcstod
_ultow_s
_ltow_s
_wtol
atol
wcstoul
_wtof
_wtoi
_i64tow_s
_wtoi64
wcstol
_itow_s
api-ms-win-crt-heap-l1-1-0
calloc
_recalloc
_set_new_mode
malloc
free
api-ms-win-crt-string-l1-1-0
toupper
wcscpy_s
wcsncpy_s
wcspbrk
_wcslwr_s
isprint
_wcsupr_s
wcsncmp
wcscspn
wcsncat_s
wcscat_s
iswalnum
iswdigit
iswlower
iswspace
iswupper
_wcsdup
iswcntrl
isdigit
iswprint
tolower
iswalpha
api-ms-win-crt-filesystem-l1-1-0
_unlock_file
_wremove
_wrmdir
_wmkdir
_wstat64
_waccess
_lock_file
api-ms-win-crt-stdio-l1-1-0
fclose
fsetpos
_fseeki64
_close
_wfopen_s
ungetc
fwrite
fgetpos
_set_fmode
__p__commode
_wsopen_s
fgetc
fflush
_get_stream_buffer_pointers
fread
fputc
__stdio_common_vswprintf_s
setvbuf
api-ms-win-crt-environment-l1-1-0
_wdupenv_s
api-ms-win-crt-time-l1-1-0
_time64
_localtime64_s
wcsftime
_strdate_s
_gmtime64_s
_strtime_s
_wutime64
_mktime64
api-ms-win-crt-math-l1-1-0
_CIfmod
_libm_sse2_asin_precise
_libm_sse2_atan_precise
_libm_sse2_cos_precise
_libm_sse2_log_precise
_libm_sse2_sin_precise
_libm_sse2_sqrt_precise
__setusermatherr
_libm_sse2_acos_precise
_except1
_CIatan2
_libm_sse2_pow_precise
_libm_sse2_tan_precise
floor
ceil
api-ms-win-crt-multibyte-l1-1-0
_ismbslead
_ismbblead
api-ms-win-crt-utility-l1-1-0
rand
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Sections
.text Size: 4.5MB - Virtual size: 4.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
CONST Size: 512B - Virtual size: 48B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 625KB - Virtual size: 625KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 130KB - Virtual size: 590KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 58KB - Virtual size: 58KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ