Static task
static1
Behavioral task
behavioral1
Sample
b3b91e33709eae8087714e645a567e8e_JaffaCakes118.exe
Resource
win7-20240704-en
windows7-x64
Behavioral task
behavioral2
Sample
b3b91e33709eae8087714e645a567e8e_JaffaCakes118.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
General
-
Target
b3b91e33709eae8087714e645a567e8e_JaffaCakes118
-
Size
1.9MB
-
MD5
b3b91e33709eae8087714e645a567e8e
-
SHA1
e106f45366ddf2340194e2b20519bf017d6b017b
-
SHA256
c25def6df1c5e13efdf19ea078f46b457b4e22f31a94a3b4a4a8e96f4ecaaf3f
-
SHA512
60b923a5ccfc2be4a73bacf5ed09dcc99b0f2bafcc011504bcd01a2b8774dc144aabadea5dd4c05af65b6c67e09d55b32516a292873a17f4a3e8456caa85d45e
-
SSDEEP
24576:dmESmR+giqN6xCN9TzrJ3t9jgOZ6Bsh008h3mJ6K6zxlYJLU9Hvfbw3poITxOZKO:H7iqNQCN9TdcBsYdu6oEb+9TAZ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource b3b91e33709eae8087714e645a567e8e_JaffaCakes118
Files
-
b3b91e33709eae8087714e645a567e8e_JaffaCakes118.exe windows:4 windows x86 arch:x86
45a9c66715175f94d7e4cd2736b2af8d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
shfolder
SHGetFolderPathA
SHGetFolderPathW
shell32
SHFileOperationA
SHQueryRecycleBinA
ord18
ord21
ord25
SHGetMalloc
SHAppBarMessage
SHEmptyRecycleBinA
ShellExecuteA
Shell_NotifyIconA
ord155
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetSpecialFolderPathA
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
wininet
HttpOpenRequestA
HttpSendRequestA
InternetQueryOptionA
InternetSetFilePointer
InternetConnectA
InternetReadFile
InternetSetCookieA
InternetGetCookieA
InternetOpenA
InternetSetOptionA
InternetOpenUrlA
InternetCloseHandle
HttpQueryInfoA
InternetGetConnectedState
InternetCanonicalizeUrlA
advapi32
LookupPrivilegeValueA
RegEnumValueA
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyA
CryptDestroyHash
AdjustTokenPrivileges
OpenProcessToken
OpenThreadToken
RegQueryValueA
RegEnumKeyExA
QueryServiceStatus
StartServiceA
OpenServiceA
DeleteService
OpenSCManagerA
CloseServiceHandle
CreateServiceA
RegNotifyChangeKeyValue
RegSaveKeyA
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
GetUserNameA
CryptCreateHash
CryptGetHashParam
CryptHashData
RegSetValueExA
RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
CryptAcquireContextA
CryptReleaseContext
RegEnumKeyA
ws2_32
sendto
closesocket
socket
gethostname
gethostbyaddr
inet_ntoa
getservbyport
ntohs
WSAResetEvent
WSACloseEvent
connect
gethostbyname
WSARecvFrom
WSASendTo
WSASocketA
shutdown
setsockopt
WSAWaitForMultipleEvents
WSASetEvent
WSACreateEvent
WSAGetLastError
WSAStartup
inet_addr
WSACleanup
mfc71
ord5403
ord3762
ord5868
ord2322
ord1249
ord1917
ord769
ord272
ord3997
ord5563
ord4081
ord1263
ord6168
ord6138
ord1916
ord1248
ord2873
ord1425
ord5214
ord3401
ord2882
ord326
ord3163
ord5634
ord2370
ord3204
ord1955
ord4100
ord2094
ord3244
ord651
ord6223
ord1564
ord4118
ord2794
ord2160
ord416
ord567
ord758
ord5642
ord1930
ord5613
ord2372
ord3651
ord3348
ord2264
ord2074
ord2075
ord6120
ord1979
ord2654
ord6275
ord760
ord572
ord658
ord2092
ord2958
ord4115
ord5731
ord6286
ord5320
ord6297
ord5331
ord3230
ord4261
ord5073
ord4238
ord1402
ord5915
ord1641
ord1571
ord4232
ord3255
ord3441
ord3641
ord501
ord709
ord5203
ord6020
ord5491
ord3287
ord5641
ord4123
ord4001
ord4749
ord3883
ord2884
ord2867
ord3587
ord3680
ord2876
ord754
ord2987
ord3328
ord1654
ord1598
ord2878
ord298
ord384
ord629
ord5089
ord317
ord584
ord1434
ord1439
ord5059
ord6282
ord908
ord5154
ord4104
ord3760
ord777
ord577
ord293
ord2467
ord3850
ord5420
ord2475
ord6006
ord4108
ord4083
ord865
ord2020
ord5323
ord6178
ord1091
ord3795
ord2931
ord1161
ord3337
ord2991
ord1247
ord3423
ord2086
ord3164
ord587
ord3684
ord4394
ord2719
ord1545
ord556
ord744
ord5346
ord1452
ord3596
ord2371
ord6017
ord3799
ord3683
ord4541
ord334
ord593
ord5124
ord566
ord757
ord3830
ord2468
ord5119
ord783
ord1126
ord2248
ord3333
ord4481
ord2838
ord5566
ord5213
ord5230
ord4568
ord3948
ord5226
ord5224
ord1920
ord3832
ord5382
ord6219
ord5102
ord1010
ord3806
ord5583
ord2018
ord2063
ord4326
ord6276
ord3801
ord6278
ord4014
ord4038
ord6167
ord1395
ord6173
ord6179
ord4085
ord1440
ord3881
ord4243
ord1650
ord2098
ord305
ord776
ord5402
ord2466
ord5710
ord5529
ord2292
ord1614
ord1024
ord3908
ord3605
ord442
ord675
ord548
ord6205
ord559
ord747
ord3174
ord1025
ord4648
ord4692
ord1966
ord605
ord356
ord354
ord4580
ord3835
ord2948
ord3182
ord774
ord280
ord287
ord2130
ord6018
ord4078
ord6037
ord2346
ord5640
ord2234
ord1580
ord1929
ord2233
ord5727
ord6283
ord4350
ord1031
ord1647
ord1589
ord739
ord6041
ord6310
ord5097
ord6040
ord2306
ord3635
ord3595
ord5227
ord4569
ord5567
ord570
ord759
ord2249
ord1716
ord1377
ord6172
ord2263
ord3473
ord5658
ord2090
ord1637
ord1558
ord4236
ord3214
ord642
ord3551
ord1643
ord715
ord1581
ord3139
ord3292
ord3676
ord3583
ord1594
ord2983
ord3324
ord748
ord2095
ord1591
ord4240
ord3317
ord741
ord1397
ord6266
ord1933
ord1484
ord4099
ord2091
ord1570
ord4237
ord3229
ord657
ord1931
ord1483
ord4098
ord2089
ord1547
ord4234
ord3171
ord591
ord1554
ord3195
ord620
ord1587
ord3307
ord731
ord1550
ord3178
ord599
ord1576
ord1575
ord3249
ord671
ord1652
ord1596
ord2985
ord3326
ord752
ord2097
ord1649
ord1593
ord4242
ord3319
ord743
ord1638
ord1559
ord3215
ord643
ord3315
ord1646
ord1588
ord3312
ord736
ord1635
ord1543
ord3157
ord583
ord1645
ord1586
ord3304
ord730
ord1644
ord1584
ord3298
ord1636
ord1548
ord3172
ord592
ord1639
ord1568
ord3227
ord656
ord1640
ord1569
ord3228
ord2328
ord1265
ord2327
ord4032
ord282
ord2932
ord1264
ord4036
ord4037
ord1262
ord4033
ord4034
ord2319
ord1260
ord259
ord1971
ord2938
ord1092
ord3233
ord423
ord660
ord4063
ord866
ord5466
ord3574
ord3454
ord3437
ord3430
ord3488
ord502
ord5647
ord3474
ord2802
ord3563
ord5991
ord4761
ord5994
ord3406
ord3571
ord2451
ord907
ord2271
ord2272
ord4109
ord2321
ord1482
ord3088
ord2021
ord630
ord385
ord3397
ord6236
ord2899
ord2469
ord911
ord1486
ord2933
ord1489
ord299
ord1185
ord5871
ord3989
ord2657
ord3761
ord1283
ord2495
ord5746
ord5866
ord3879
ord5873
ord2866
ord5716
ord2131
ord1258
ord745
ord2751
ord2748
ord3931
ord2288
ord2280
ord631
ord386
ord557
ord3875
ord4353
ord3934
ord781
ord784
ord762
ord1187
ord1191
ord304
ord300
ord297
ord5182
ord4212
ord4735
ord4890
ord1671
ord1670
ord1551
ord5912
ord1620
ord1617
ord3946
ord1401
ord4244
ord5152
ord1908
ord4185
ord3403
ord4722
ord4282
ord1600
ord5960
ord5235
ord5233
ord923
ord928
ord932
ord930
ord934
ord2390
ord2410
ord2394
ord2400
ord2398
ord2396
ord2413
ord2408
ord2392
ord2415
ord2403
ord2385
ord2387
ord2405
ord2178
ord2172
ord1522
msvcr71
memmove
_mbsinc
_mbsicmp
_vscprintf
vsprintf
??0exception@@QAE@XZ
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
_mbschr
_mbsstr
_mbscmp
_purecall
?what@exception@@UBEPBDXZ
_stricmp
atoi
_beginthreadex
realloc
_mbctype
_resetstkoflw
strftime
strstr
ceil
_mbsnbcpy
sscanf
wcscpy
_strdup
_snprintf
strtok
strrchr
sprintf
floor
_mbslwr
_mbsrchr
qsort
strncmp
_strnicmp
_strlwr
strtol
isdigit
atol
fopen
fscanf
fclose
__CxxFrameHandler
_except_handler3
_CxxThrowException
wcslen
_localtime64
_time64
__RTDynamicCast
free
malloc
strtoul
wcscmp
_itoa
_vscwprintf
vswprintf
_ismbcspace
_mbsspn
_mbscspn
wcschr
_local_unwind2
_mbspbrk
??0exception@@QAE@ABQBD@Z
memset
_vsnprintf
_endthreadex
_beginthread
_mbsnbcat
_mbstok
_mbsnbcmp
_mbsnbicmp
_mbslen
asctime
fwrite
rand
srand
fread
_ultoa
fputc
ftell
fprintf
_fdopen
??1type_info@@UAE@XZ
__dllonexit
_onexit
?terminate@@YAXXZ
_c_exit
_exit
_XcptFilter
_ismbblead
_cexit
exit
_acmdln
_amsg_exit
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__security_error_handler
_controlfp
_strcmpi
_wcsdup
_fstat
_fileno
_setmbcp
_errno
kernel32
GetFullPathNameA
lstrcpynA
GetPrivateProfileIntA
WritePrivateProfileStringA
WriteProfileStringA
GetPrivateProfileStringA
GetProfileStringA
WriteFile
CreateFileA
MultiByteToWideChar
TerminateThread
WaitForSingleObject
CloseHandle
GetTimeFormatA
GetDateFormatA
GetSystemTime
DeleteFileA
CreateDirectoryA
GetProcAddress
FreeLibrary
LoadLibraryA
LocalFree
FormatMessageA
lstrlenA
LocalAlloc
GetModuleFileNameA
InterlockedIncrement
GetLogicalDriveStringsA
GetModuleHandleA
GetTickCount
GetShortPathNameA
GetLongPathNameA
FindResourceExA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
FindResourceA
GetFileAttributesExA
lstrlenW
InterlockedDecrement
GetLastError
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
CreateEventA
SetEvent
InitializeCriticalSection
GetEnvironmentVariableA
RaiseException
lstrcmpiA
DeleteCriticalSection
GetVersion
GetCurrentProcess
GetCurrentThread
OpenProcess
GetCurrentProcessId
GetFileSize
FlushFileBuffers
EnterCriticalSection
Sleep
CreateWaitableTimerA
SetWaitableTimer
WaitForMultipleObjects
SetEndOfFile
SetFilePointer
LeaveCriticalSection
lstrcpyA
MulDiv
GetWindowsDirectoryA
CreateToolhelp32Snapshot
Process32First
Process32Next
SystemTimeToFileTime
OpenMutexA
TerminateProcess
CreateMutexA
CreateProcessA
InterlockedExchangeAdd
OpenEventA
GetSystemDirectoryA
SetLastError
GetProcessHeap
HeapFree
HeapAlloc
lstrcmpA
ExpandEnvironmentStringsA
GetPrivateProfileSectionNamesA
GetFileAttributesA
RemoveDirectoryA
SetFileAttributesA
CreateThread
ResetEvent
ResumeThread
SetCurrentDirectoryA
MapViewOfFileEx
CreateFileMappingA
UnmapViewOfFile
GetDriveTypeA
FileTimeToSystemTime
GetCurrentThreadId
WriteProcessMemory
VirtualProtect
FindResourceW
FindResourceExW
GetTempPathA
FindClose
FindNextFileA
FindFirstFileA
ReleaseMutex
SetThreadPriority
WritePrivateProfileSectionA
GetPrivateProfileSectionA
MoveFileExA
Module32Next
Module32First
FindNextChangeNotification
FindCloseChangeNotification
FindFirstChangeNotificationA
lstrcatW
lstrcpyW
lstrcmpW
CreateFileW
GetFileAttributesW
GetTempFileNameA
ReleaseSemaphore
CreateSemaphoreA
DeviceIoControl
SetErrorMode
SetUnhandledExceptionFilter
GetExitCodeThread
OutputDebugStringA
GetCurrentDirectoryA
GetDiskFreeSpaceExA
CopyFileA
WaitForMultipleObjectsEx
GetStartupInfoA
ExitProcess
QueryPerformanceCounter
GetSystemTimeAsFileTime
DebugBreak
HeapDestroy
HeapReAlloc
HeapSize
GetVolumeInformationA
GetLocalTime
ReadFile
user32
ReleaseCapture
LoadMenuA
GetDlgCtrlID
DrawStateA
MapWindowPoints
SetFocus
TrackPopupMenu
GetSubMenu
IsRectEmpty
RegisterWindowMessageA
MessageBoxA
GetActiveWindow
LoadImageA
SetParent
SetMenuDefaultItem
DrawIcon
SetActiveWindow
GetSystemMenu
GetForegroundWindow
GetWindowTextA
SendMessageTimeoutA
SetCapture
EnumWindows
GetWindowTextLengthA
SetWindowTextA
OpenClipboard
EmptyClipboard
CloseClipboard
CountClipboardFormats
IsDialogMessageA
PostQuitMessage
FrameRect
DestroyIcon
CreateIconFromResourceEx
LookupIconIdFromDirectoryEx
InsertMenuItemA
IsMenu
GetMenuState
GetMenuItemCount
GetMenuDefaultItem
GetMenuItemInfoA
SetMenuItemBitmaps
SetMenuItemInfoA
TrackPopupMenuEx
UnionRect
GetMenuItemRect
keybd_event
CallNextHookEx
SetWindowsHookExA
LoadStringW
LoadBitmapW
LoadIconW
LoadCursorW
LoadImageW
UnhookWindowsHookEx
WindowFromPoint
CreateWindowExA
RegisterClassA
LoadStringA
EndPaint
BeginPaint
SetCursor
LoadCursorA
GetCursor
ShowWindow
IsZoomed
IsIconic
GetWindowPlacement
GetWindowThreadProcessId
LoadIconA
UnregisterClassA
PostThreadMessageA
AnimateWindow
GetClassNameA
BringWindowToTop
OffsetRect
SetRectEmpty
MsgWaitForMultipleObjects
PeekMessageA
IsWindowUnicode
GetMessageW
GetMessageA
TranslateMessage
DispatchMessageW
DispatchMessageA
GetDesktopWindow
IsWindowVisible
GetKeyState
ValidateRect
FindWindowExA
GetSysColor
IsWindowEnabled
FillRect
InflateRect
UpdateWindow
InvalidateRect
SetRect
EnableScrollBar
SetScrollPos
GetSystemMetrics
PtInRect
SystemParametersInfoA
GetFocus
CopyRect
DrawFocusRect
DrawTextA
GetParent
ClientToScreen
SetWindowPos
GetClientRect
SetWindowLongA
GetWindowLongA
GetWindow
wsprintfA
GetDlgItem
IsWindow
CloseWindow
SetForegroundWindow
EnableMenuItem
CreatePopupMenu
EnableWindow
SetTimer
KillTimer
GetWindowRgn
ScreenToClient
GetCursorPos
TrackMouseEvent
SendMessageA
GetDC
SetWindowRgn
ReleaseDC
GetWindowDC
CopyImage
GetWindowRect
FindWindowA
PostMessageA
RedrawWindow
LoadBitmapA
AppendMenuA
GetMenuItemID
DestroyMenu
CallWindowProcA
GetAsyncKeyState
GetComboBoxInfo
DestroyCursor
GetClassLongA
GetCapture
gdi32
GetPixel
SetPixel
GetDeviceCaps
GetTextColor
SetBkColor
CreateDIBitmap
TextOutA
GetBkMode
GetBkColor
CreateBrushIndirect
PatBlt
GetStockObject
LineTo
MoveToEx
CreatePen
CreateSolidBrush
Rectangle
GetTextExtentPoint32A
CreateFontIndirectA
SetMapMode
CreateRectRgnIndirect
SetTextColor
SetBkMode
DeleteDC
SelectObject
PtInRegion
CombineRgn
CreateRectRgn
DeleteObject
GetMapMode
CreateBitmap
DPtoLP
SetStretchBltMode
CreateFontA
GetTextMetricsA
ExtCreatePen
GetDIBits
GetObjectA
SetBitmapBits
GetBitmapBits
StretchBlt
BitBlt
CreateCompatibleDC
CreateEllipticRgn
CreateCompatibleBitmap
msimg32
AlphaBlend
comctl32
ImageList_GetImageCount
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_Remove
_TrackMouseEvent
ImageList_DrawEx
ImageList_SetBkColor
ord17
ImageList_GetImageInfo
ImageList_GetIconSize
shlwapi
PathCanonicalizeA
PathMatchSpecA
PathAddBackslashA
PathUnquoteSpacesA
PathIsDirectoryEmptyA
SHDeleteValueA
SHDeleteKeyA
PathRenameExtensionA
PathFindFileNameA
PathStripPathA
PathFindExtensionA
PathRemoveExtensionA
PathAppendA
PathRemoveFileSpecA
PathCombineA
SHCreateStreamOnFileA
PathIsDirectoryA
PathFileExistsA
ole32
CoTaskMemFree
StringFromCLSID
CoCreateGuid
OleRun
CoCreateInstance
CoUninitialize
CoInitialize
StringFromGUID2
oleaut32
VarDateFromStr
VariantChangeType
VariantInit
VariantClear
VariantCopy
VarBstrFromDate
SysAllocString
SysFreeString
SysStringByteLen
SysAllocStringByteLen
SysStringLen
GetErrorInfo
LoadTypeLi
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
VariantTimeToSystemTime
VarUdateFromDate
SysAllocStringLen
SystemTimeToVariantTime
msvcp71
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AVconst_iterator@12@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AVconst_iterator@12@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@Vconst_iterator@01@0@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@Viterator@12@0ABV12@@Z
??$?9DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?rbegin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@Viterator@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ
?rend@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AV?$reverse_iterator@Viterator@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@XZ
??0?$_String_val@DV?$allocator@D@std@@@std@@IAE@V?$allocator@D@1@@Z
?reserve@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@IAEX_NI@Z
?begin@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
?end@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE?AViterator@12@XZ
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?clear@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXID@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIABV12@I@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??_D?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??A?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAADI@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
?size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIDI@Z
?find_first_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?find_last_not_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
iphlpapi
GetAdaptersInfo
GetTcpTable
SetTcpEntry
GetUdpTable
dbghelp
ImageDirectoryEntryToData
winmm
PlaySoundA
waveOutSetVolume
setupapi
SetupInstallFileA
imagehlp
ImageLoad
ImageUnload
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 264KB - Virtual size: 263KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 4KB - Virtual size: 541B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 264KB - Virtual size: 263KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ