D:\_SVN\AntiMalwareSuite\_Release\WAS7.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
8e2422579e263471516d564c53a3ba0b_JaffaCakes118.exe
Resource
win7-20240704-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
8e2422579e263471516d564c53a3ba0b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
8e2422579e263471516d564c53a3ba0b_JaffaCakes118
-
Size
2.4MB
-
MD5
8e2422579e263471516d564c53a3ba0b
-
SHA1
188a7f4c3ab47c1debd212ca82445643f4b0e3f0
-
SHA256
13cbd4751437e4a26836cba160d581d7d811c118c454d05aa325a10ed2960ada
-
SHA512
5142013531cb402485bd23edbbbad4c7f7fffe13289b0ace6c0655e9ad91ab14ae9b38a5fb15fe5914a9d5e8390d2b252a1c93f0282306998153c8fdbb55fcbb
-
SSDEEP
49152:Ku2d83xX3ydYnwWwLPhEKqIRTsHaqzRgQj2C:K4Z3FuP8zRgQj5
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 8e2422579e263471516d564c53a3ba0b_JaffaCakes118
Files
-
8e2422579e263471516d564c53a3ba0b_JaffaCakes118.exe windows:4 windows x86 arch:x86
6ee294ccb89e182551659bd3613a000e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
shfolder
SHGetFolderPathA
SHGetFolderPathW
shell32
SHGetSpecialFolderLocation
ord155
SHGetPathFromIDListA
SHGetFileInfoA
ShellExecuteA
Shell_NotifyIconA
SHGetSpecialFolderPathA
SHGetDesktopFolder
SHQueryRecycleBinA
ord21
SHEmptyRecycleBinA
SHFileOperationA
SHAppBarMessage
SHGetMalloc
ExtractIconExA
ord18
ord25
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
wininet
InternetOpenUrlA
InternetSetOptionA
InternetOpenA
InternetCloseHandle
HttpQueryInfoA
InternetConnectA
InternetReadFile
InternetCanonicalizeUrlA
InternetCrackUrlA
HttpSendRequestA
InternetGetCookieA
InternetSetCookieA
InternetGetConnectedState
HttpOpenRequestA
InternetQueryOptionA
HttpAddRequestHeadersA
rpcrt4
UuidCreate
RpcStringFreeA
UuidToStringA
iphlpapi
GetAdaptersInfo
useragent
?ModifyEntry@UserAgentManager@@AAE_NPBD0@Z
mfc71
ord3641
ord5623
ord5203
ord3287
ord5641
ord4123
ord4001
ord6020
ord5491
ord2866
ord1283
ord3881
ord2878
ord2867
ord2884
ord3883
ord5751
ord317
ord584
ord1434
ord6182
ord6281
ord6282
ord908
ord5154
ord5715
ord5529
ord5059
ord5420
ord2475
ord6006
ord4083
ord3086
ord5991
ord5867
ord4888
ord3908
ord3605
ord2020
ord502
ord5640
ord6280
ord4564
ord5866
ord1091
ord2931
ord1161
ord3337
ord3849
ord3423
ord2086
ord3164
ord587
ord3684
ord4394
ord2719
ord1545
ord556
ord744
ord5346
ord1452
ord501
ord709
ord2371
ord754
ord2987
ord3328
ord3799
ord1654
ord1598
ord3683
ord334
ord593
ord5124
ord566
ord757
ord3830
ord5119
ord1054
ord1101
ord783
ord1126
ord2248
ord5642
ord5224
ord3333
ord4481
ord2838
ord5566
ord5213
ord5230
ord4568
ord3948
ord5226
ord1920
ord3832
ord5382
ord6219
ord5102
ord1010
ord3806
ord5583
ord2018
ord2063
ord4326
ord6276
ord3801
ord6278
ord4014
ord4038
ord6167
ord6173
ord6179
ord4085
ord1440
ord2657
ord4350
ord2876
ord3583
ord2983
ord3324
ord748
ord1594
ord3676
ord4243
ord1650
ord2098
ord1377
ord6172
ord5710
ord2877
ord776
ord5402
ord2466
ord2292
ord1025
ord442
ord675
ord548
ord6205
ord559
ord747
ord3441
ord5686
ord1024
ord4692
ord1966
ord5658
ord605
ord356
ord354
ord4580
ord3835
ord2948
ord3182
ord3430
ord3488
ord1397
ord6266
ord1933
ord1484
ord4099
ord2091
ord1570
ord4237
ord3229
ord657
ord1931
ord1483
ord4098
ord2089
ord1547
ord4234
ord3171
ord591
ord5647
ord6037
ord5727
ord1929
ord280
ord774
ord2130
ord6018
ord287
ord3473
ord2090
ord1637
ord1558
ord4236
ord3214
ord642
ord4078
ord3952
ord1031
ord1647
ord1589
ord739
ord6041
ord6310
ord5097
ord6040
ord2306
ord3635
ord3595
ord5227
ord4569
ord5567
ord570
ord759
ord2249
ord1716
ord2346
ord2234
ord1580
ord2233
ord3551
ord1643
ord715
ord1581
ord3139
ord3292
ord3680
ord3587
ord3454
ord1554
ord3195
ord620
ord2095
ord1591
ord4240
ord3317
ord741
ord1587
ord3307
ord731
ord1550
ord3178
ord599
ord1576
ord1575
ord3249
ord671
ord1652
ord1596
ord2985
ord3326
ord752
ord2097
ord1649
ord1593
ord4242
ord3319
ord743
ord1638
ord1559
ord3215
ord643
ord3315
ord1646
ord1588
ord3312
ord736
ord1635
ord1543
ord3157
ord583
ord1645
ord1586
ord3304
ord730
ord1644
ord1584
ord3298
ord1636
ord1548
ord3172
ord592
ord1639
ord1568
ord3227
ord656
ord1640
ord1569
ord3228
ord2328
ord1265
ord2327
ord4032
ord282
ord2932
ord1264
ord4036
ord4037
ord1262
ord4033
ord4034
ord2319
ord1260
ord3574
ord3437
ord259
ord1971
ord2938
ord1092
ord3233
ord423
ord660
ord4063
ord866
ord5466
ord3474
ord2802
ord3563
ord4761
ord5994
ord3406
ord3571
ord4104
ord785
ord1740
ord569
ord295
ord1203
ord807
ord803
ord2566
ord4232
ord5320
ord6286
ord5731
ord2495
ord2654
ord5746
ord1979
ord3989
ord3651
ord5833
ord5873
ord3879
ord2160
ord6017
ord2263
ord1247
ord298
ord3255
ord1917
ord5331
ord6297
ord262
ord6288
ord1439
ord5323
ord5089
ord629
ord384
ord1249
ord5868
ord3762
ord6283
ord1248
ord305
ord1916
ord5490
ord5419
ord6138
ord4081
ord6168
ord6021
ord1263
ord2372
ord1425
ord6120
ord1571
ord1641
ord4238
ord5869
ord3795
ord3204
ord5634
ord3163
ord326
ord2882
ord2873
ord3401
ord4648
ord3230
ord2958
ord567
ord758
ord2075
ord2074
ord2264
ord3348
ord2092
ord658
ord3244
ord2094
ord4100
ord1955
ord3489
ord5915
ord1402
ord5073
ord6275
ord5214
ord2991
ord4261
ord3596
ord760
ord572
ord1614
ord2451
ord907
ord2272
ord4109
ord2321
ord2467
ord293
ord577
ord777
ord1482
ord3760
ord3397
ord6236
ord2899
ord865
ord911
ord2271
ord4108
ord5563
ord3997
ord1185
ord1564
ord1930
ord2751
ord2748
ord3931
ord2288
ord2280
ord631
ord386
ord1258
ord745
ord265
ord5716
ord557
ord1486
ord6178
ord2933
ord1489
ord299
ord6118
ord2131
ord2322
ord5871
ord3934
ord651
ord416
ord5403
ord2468
ord266
ord304
ord300
ord2469
ord272
ord3302
ord3210
ord2902
ord1903
ord2367
ord1968
ord1280
ord1934
ord5637
ord1279
ord589
ord330
ord602
ord347
ord1063
ord3161
ord4125
ord1207
ord5613
ord769
ord4212
ord297
ord762
ord1187
ord1191
ord2164
ord1084
ord6090
ord4118
ord6065
ord2794
ord2370
ord3875
ord6067
ord4035
msvcr71
fclose
fscanf
fopen
isdigit
_strlwr
_strnicmp
strncmp
qsort
_mbsrchr
labs
_mbslwr
sscanf
floor
strtok
_strdup
_snprintf
strncpy
strcmp
strftime
div
strstr
_mbscspn
strcat
wcscpy
_mbsspn
_mbctype
_resetstkoflw
realloc
memcmp
??8type_info@@QBEHABV0@@Z
??1bad_cast@@UAE@XZ
??0bad_cast@@QAE@ABV0@@Z
??0bad_cast@@QAE@PBD@Z
difftime
time
_mbslen
atol
_ltoa
_stricmp
_purecall
_ismbcspace
fprintf
_atoi64
getenv
srand
?what@exception@@UBEPBDXZ
??0exception@@QAE@ABQBD@Z
_mbsstr
_mbschr
sprintf
strtol
_mktime64
memchr
atoi
_mbsnbcpy
strcpy
strlen
_mbsicmp
_mbsinc
memmove
_localtime64
vsprintf
_vscprintf
rand
memcpy
_mbscmp
memset
??1exception@@UAE@XZ
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
free
malloc
_beginthreadex
_time64
__RTDynamicCast
__CxxFrameHandler
_except_handler3
_CxxThrowException
wcslen
strtoul
_vscwprintf
__security_error_handler
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_wcsdup
_fstat
_fileno
_setmbcp
_initterm
_controlfp
__getmainargs
_amsg_exit
_acmdln
exit
_cexit
_ismbblead
_XcptFilter
_exit
_c_exit
?terminate@@YAXXZ
_onexit
__dllonexit
??1type_info@@UAE@XZ
printf
tolower
_mbstok
_fdopen
vswprintf
fgets
fputs
_ui64toa
wcscmp
wcschr
_local_unwind2
_mbspbrk
_strrev
strrchr
_vsnprintf
_mbsnbcmp
_mbsnbicmp
_itoa
fwrite
_mbsnbcat
asctime
_ultoa
fread
_errno
fflush
ftell
fputc
kernel32
GetEnvironmentVariableA
CreateProcessA
Sleep
InitializeCriticalSection
MultiByteToWideChar
WritePrivateProfileStringA
DeleteTimerQueueTimer
CreateTimerQueueTimer
DeleteTimerQueueEx
CreateTimerQueue
GetSystemTime
DeleteFileA
CreateDirectoryA
GetProcAddress
FreeLibrary
LoadLibraryA
TerminateThread
WaitForSingleObject
CreateThread
LocalFree
FormatMessageA
lstrlenA
LocalAlloc
GetLogicalDriveStringsA
GetLocalTime
GetPrivateProfileIntA
lstrcmpA
UnmapViewOfFile
GetFileSize
CreateFileMappingA
MapViewOfFileEx
CreateFileA
GetPrivateProfileStringA
ReadFile
GetTimeFormatA
GetDateFormatA
GetPrivateProfileSectionNamesA
CloseHandle
GetLongPathNameA
GetShortPathNameA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
FindResourceA
GetFileAttributesExA
lstrlenW
SetWaitableTimer
InterlockedDecrement
InterlockedIncrement
GlobalLock
GetVersionExA
GetThreadLocale
RaiseException
GetACP
InterlockedExchange
ResetEvent
SetCurrentDirectoryA
GetLogicalDrives
GetVolumeInformationA
FindFirstFileA
FindNextFileA
FindClose
lstrcatA
InterlockedCompareExchange
WriteProcessMemory
VirtualProtect
FindResourceW
FindResourceExW
CreateDirectoryExA
ReleaseMutex
SetThreadPriority
WritePrivateProfileSectionA
GetPrivateProfileSectionA
MoveFileExA
Module32Next
Module32First
MapViewOfFile
MoveFileA
FindNextChangeNotification
FindCloseChangeNotification
FindFirstChangeNotificationA
lstrcatW
lstrcmpW
lstrcpyW
CreateFileW
GetFileAttributesW
ReleaseSemaphore
CreateSemaphoreA
DeviceIoControl
SetErrorMode
SetUnhandledExceptionFilter
ExitThread
GetExitCodeThread
GetCurrentDirectoryA
CopyFileA
GetDiskFreeSpaceExA
OutputDebugStringA
WaitForMultipleObjectsEx
GetSystemInfo
GetStartupInfoA
ExitProcess
QueryPerformanceCounter
GetSystemTimeAsFileTime
DebugBreak
GetStringTypeExA
lstrcmpiA
GetModuleFileNameA
DeleteCriticalSection
GetVersion
GetProfileStringA
WriteProfileStringA
lstrcpynA
GetFullPathNameA
GetModuleHandleA
GetTempPathA
GetTempFileNameA
EnterCriticalSection
LeaveCriticalSection
WriteFile
GetDriveTypeA
GetCurrentThreadId
CreateEventA
CreateWaitableTimerA
SetEvent
WaitForMultipleObjects
SystemTimeToFileTime
LocalFileTimeToFileTime
FileTimeToSystemTime
GetCurrentProcess
GetCurrentThread
OpenProcess
GetCurrentProcessId
FlushFileBuffers
SetEndOfFile
SetFilePointer
GetFileAttributesA
lstrcpyA
MulDiv
GetWindowsDirectoryA
CreateToolhelp32Snapshot
Process32First
Process32Next
TerminateProcess
CreateMutexA
OpenMutexA
InterlockedExchangeAdd
OpenEventA
GetSystemDirectoryA
SetLastError
GetProcessHeap
HeapFree
HeapAlloc
ExpandEnvironmentStringsA
RemoveDirectoryA
GetLocaleInfoA
SetFileAttributesA
GlobalUnlock
GlobalFree
GlobalAlloc
GetLastError
HeapDestroy
HeapReAlloc
HeapSize
GetUserDefaultLCID
LCMapStringA
FindResourceExA
GetTickCount
ResumeThread
user32
CopyImage
LoadBitmapA
GetWindowRect
FindWindowA
SetForegroundWindow
IsWindow
SendMessageA
PostMessageA
InvalidateRect
ShowWindowAsync
ShowWindow
EnableWindow
GetWindowDC
ReleaseDC
SetWindowRgn
GetDC
TrackMouseEvent
GetCursorPos
ScreenToClient
GetWindowRgn
KillTimer
SetTimer
RedrawWindow
LoadIconA
SetActiveWindow
InflateRect
SetScrollPos
EnableScrollBar
SetRect
IsWindowVisible
GetSysColor
CopyRect
FillRect
GetSystemMetrics
GetClientRect
GetDesktopWindow
GetParent
GetWindowLongA
ChildWindowFromPointEx
GetDlgItem
EndDialog
MoveWindow
DestroyCursor
CallWindowProcA
DestroyMenu
GetMenuItemID
AppendMenuA
WindowFromPoint
GetAsyncKeyState
LoadImageW
LoadImageA
LoadCursorW
LoadIconW
LoadBitmapW
LoadStringW
UnhookWindowsHookEx
SystemParametersInfoA
SetRectEmpty
GetMenuItemRect
UnionRect
TrackPopupMenuEx
SetMenuItemInfoA
SetMenuItemBitmaps
GetMenuItemInfoA
GetMenuDefaultItem
GetMenuItemCount
GetMenuState
IsMenu
InsertMenuItemA
SetWindowsHookExA
CallNextHookEx
keybd_event
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
GetCapture
GetComboBoxInfo
DestroyIcon
CloseWindow
FrameRect
CountClipboardFormats
CloseClipboard
EmptyClipboard
OpenClipboard
SetWindowTextA
GetWindowTextLengthA
GetWindowModuleFileNameA
GetClassLongA
SendMessageTimeoutA
GetSystemMenu
DrawIcon
SetMenuDefaultItem
TranslateAcceleratorA
EnumWindows
LoadAcceleratorsA
MessageBoxA
GetWindowTextA
RegisterWindowMessageA
IsRectEmpty
GetSubMenu
TrackPopupMenu
SetFocus
MapWindowPoints
LoadMenuA
ReleaseCapture
SetCapture
DrawStateA
LoadStringA
EndPaint
BeginPaint
SetCursor
LoadCursorA
GetCursor
IsZoomed
IsIconic
GetWindowPlacement
ExitWindowsEx
AnimateWindow
GetClassNameA
PostQuitMessage
GetWindowThreadProcessId
DestroyWindow
RegisterClassExA
UnregisterClassA
CreateWindowExA
DefWindowProcA
BringWindowToTop
OffsetRect
SetParent
GetDlgCtrlID
EnableMenuItem
CreatePopupMenu
MsgWaitForMultipleObjects
PeekMessageA
IsWindowUnicode
GetMessageW
DispatchMessageW
GetKeyState
ValidateRect
FindWindowExA
IsWindowEnabled
wsprintfA
PostThreadMessageA
GetForegroundWindow
UpdateWindow
PtInRect
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetWindow
SetWindowLongA
SetWindowPos
ClientToScreen
DrawTextA
DrawFocusRect
GetFocus
gdi32
CreateFontA
GetBitmapBits
SetBitmapBits
CreateBrushIndirect
SetStretchBltMode
DPtoLP
CreateBitmap
GetMapMode
SetMapMode
GetBkColor
GetBkMode
TextOutA
CreateDIBitmap
CreateEllipticRgn
GetPixel
SetPixel
GetDeviceCaps
GetTextColor
SetBkColor
LineTo
MoveToEx
PatBlt
CreatePen
GetStockObject
Rectangle
ExtCreatePen
CreateSolidBrush
GetTextExtentPoint32A
SetTextColor
SetBkMode
DeleteDC
SelectObject
CreateFontIndirectA
CreateRectRgnIndirect
PtInRegion
CombineRgn
CreateRectRgn
DeleteObject
GetDIBits
GetObjectA
StretchBlt
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetTextMetricsA
msimg32
AlphaBlend
comdlg32
ChooseFontA
ChooseColorA
advapi32
RegOpenKeyExW
RegSetValueExW
SetEntriesInAclA
SetSecurityInfo
RegFlushKey
CryptCreateHash
CryptGetHashParam
CryptHashData
CryptAcquireContextA
CryptReleaseContext
GetUserNameA
RegEnumKeyExA
RegQueryValueA
OpenThreadToken
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
CryptDestroyHash
RegDeleteKeyA
RegEnumKeyA
RegEnumValueA
RegQueryInfoKeyA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegQueryValueExW
RegSaveKeyA
RegNotifyChangeKeyValue
CreateServiceA
CloseServiceHandle
OpenSCManagerA
DeleteService
OpenServiceA
AllocateAndInitializeSid
GetTokenInformation
EqualSid
FreeSid
RegCreateKeyA
QueryServiceStatus
StartServiceA
comctl32
ImageList_ReplaceIcon
ImageList_Draw
ImageList_SetBkColor
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Remove
ImageList_DrawEx
ord17
ImageList_GetIcon
ImageList_GetIconSize
_TrackMouseEvent
shlwapi
SHDeleteValueA
PathFileExistsA
PathIsDirectoryA
PathAppendA
SHCreateStreamOnFileA
PathCombineA
PathRemoveFileSpecA
PathRemoveExtensionA
PathFindExtensionA
PathIsDirectoryEmptyA
PathMatchSpecA
PathFindFileNameA
PathRenameExtensionA
PathRemoveBackslashA
StrToIntA
StrRChrA
StrChrA
StrCmpNIA
PathCanonicalizeA
PathUnquoteSpacesA
PathAddExtensionA
PathAddBackslashA
StrStrIA
SHDeleteKeyA
PathStripPathA
ole32
CoInitialize
CoUninitialize
CoCreateInstance
OleRun
CoTaskMemFree
CoCreateGuid
StringFromGUID2
StringFromCLSID
CreateStreamOnHGlobal
CLSIDFromProgID
CLSIDFromString
oleaut32
SysAllocString
SysFreeString
VariantChangeType
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SystemTimeToVariantTime
VarDateFromStr
SysAllocStringLen
VariantTimeToSystemTime
OleLoadPicture
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayDestroy
LoadTypeLi
VarBstrFromDate
VariantClear
VariantCopy
VariantInit
GetErrorInfo
urlmon
ObtainUserAgentString
msvcp71
?_Getfacet@locale@std@@QBEPBVfacet@12@I@Z
??Bid@locale@std@@QAEIXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
??Bios_base@std@@QBEPAXXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??0locale@std@@QAE@XZ
?id@?$ctype@D@std@@2V0locale@2@A
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??1locale@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?toupper@?$ctype@D@std@@QBEDD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AVconst_iterator@12@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AVconst_iterator@12@XZ
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
?empty@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE_NXZ
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEABDI@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@V312@D@Z
??$?NDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Incref@facet@locale@std@@QAEXXZ
?_Register@facet@locale@std@@QAEXXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHABV12@@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@V312@0@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z
?_Xran@_String_base@std@@QBEXXZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@Viterator@12@0ABV12@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?rbegin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@Viterator@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ
?rend@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@Viterator@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIABV12@@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
?close@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?close@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?length@?$char_traits@D@std@@SAIPBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0@Z
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?open@?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXPBDHH@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?find_last_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXViterator@12@Vconst_iterator@12@1@Z
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXViterator@12@PBD1@Z
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@Vconst_iterator@01@0@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?push_back@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXD@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?open@?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXPBDHH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?eof@ios_base@std@@QBE_NXZ
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
??$?ODU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXID@Z
??$?MDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
setupapi
SetupInstallFileA
ws2_32
WSACleanup
WSAStartup
connect
closesocket
socket
inet_ntoa
htons
WSACreateEvent
WSASetEvent
WSAWaitForMultipleEvents
WSAResetEvent
WSACloseEvent
inet_addr
gethostbyname
WSASocketA
setsockopt
WSASendTo
WSARecvFrom
WSAGetLastError
shutdown
imagehlp
ImageUnload
ImageLoad
ImageDirectoryEntryToData
Exports
Exports
?$S25@?1??I@UserAgentManager@@SAPAV2@XZ@4IA
??0UserAgentManager@@AAE@XZ
??0UserAgentManager@@QAE@ABV0@@Z
??1UserAgentManager@@QAE@XZ
??4UserAgentManager@@QAEAAV0@ABV0@@Z
?I@UserAgentManager@@SAPAV1@XZ
?RemoveFree@UserAgentManager@@QAE_NXZ
?RemovePaid@UserAgentManager@@QAE_NXZ
?SetPurchased@UserAgentManager@@QAE_NXZ
?SetUnpurchased@UserAgentManager@@QAE_NXZ
?UpdateFreeVersion@UserAgentManager@@QAE_NXZ
?UpdatePaidVersion@UserAgentManager@@QAE_NXZ
?uam@?1??I@UserAgentManager@@SAPAV2@XZ@4V2@A
Sections
.text Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 368KB - Virtual size: 365KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 32KB - Virtual size: 51KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 4KB - Virtual size: 541B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 256KB - Virtual size: 254KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ