F:\work\capture\ScreenRecorder\New_Screener\Release\Screener.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
365d624ca21720b21b13d1fb49be975f4decee1dd01f3807797eb3bdb3eb9847.exe
Resource
win7-20240704-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
365d624ca21720b21b13d1fb49be975f4decee1dd01f3807797eb3bdb3eb9847.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
365d624ca21720b21b13d1fb49be975f4decee1dd01f3807797eb3bdb3eb9847
-
Size
1.5MB
-
MD5
7d01bd09b060c12cbff3ee100624dc40
-
SHA1
5cb6651c27eccdf57a0c9152abdd8fb33daf7dbf
-
SHA256
365d624ca21720b21b13d1fb49be975f4decee1dd01f3807797eb3bdb3eb9847
-
SHA512
add9aaeb80622615f385261796636cd42a1f3c9607229b93464b14a5f31f5a97f99ebfd93ca22076ecb239fe72b1a6354240fde5cd12647dd7d6672bf48b0617
-
SSDEEP
24576:vQeZ4nlx5vUZ2ASb8O4noJkjmvGsiwsjyBb:IQ0aZE4n0kjJwsj
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 365d624ca21720b21b13d1fb49be975f4decee1dd01f3807797eb3bdb3eb9847
Files
-
365d624ca21720b21b13d1fb49be975f4decee1dd01f3807797eb3bdb3eb9847.exe windows:6 windows x86 arch:x86
f03eb6ac697f1d9a71a2009a3bf3f76c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
comdlg32
GetOpenFileNameW
GetSaveFileNameW
kernel32
FindFirstFileW
FindNextFileW
FindClose
RemoveDirectoryW
IsBadReadPtr
DeviceIoControl
GetDriveTypeW
GetLogicalDriveStringsW
GetDiskFreeSpaceExW
GetSystemInfo
GetWindowsDirectoryW
GetSystemDirectoryW
GetEnvironmentVariableW
WTSGetActiveConsoleSessionId
SetErrorMode
K32GetModuleFileNameExW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
K32EnumProcessModules
Thread32First
Thread32Next
VirtualAllocEx
WriteProcessMemory
VirtualFreeEx
CreateRemoteThread
ReadProcessMemory
GetProcessId
Module32FirstW
Module32NextW
lstrcmpA
CreateProcessW
GetExitCodeProcess
DeleteFileW
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SleepConditionVariableSRW
WakeAllConditionVariable
SetFilePointer
ReleaseSRWLockExclusive
LoadLibraryExA
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
EncodePointer
IsDebuggerPresent
MapViewOfFile
CreateFileMappingW
SetEndOfFile
UnmapViewOfFile
FlushViewOfFile
HeapDestroy
HeapAlloc
GlobalFree
GlobalLock
GlobalUnlock
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
GetLocalTime
GlobalAlloc
FindResourceExW
LoadResource
LockResource
SizeofResource
FindResourceW
lstrcpyW
MultiByteToWideChar
GetProfileIntW
OutputDebugStringW
DecodePointer
RaiseException
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
CreateMutexW
GetFileSizeEx
CreateFileW
lstrcpynA
lstrlenA
MoveFileExW
ReadFile
GetFileSize
SetFileAttributesW
SetThreadLocale
GetThreadLocale
CopyFileW
GlobalSize
CreateThread
Sleep
TerminateThread
WaitForSingleObject
GetFileTime
SetFileTime
LoadLibraryW
GetTempFileNameW
GetVersion
GetCurrentProcessId
OpenProcess
GetModuleHandleA
VerifyVersionInfoW
VerSetConditionMask
InitializeCriticalSectionEx
WideCharToMultiByte
GetVolumeInformationW
GetLongPathNameW
SystemTimeToFileTime
GetSystemTime
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrlenW
lstrcatW
lstrcatA
lstrcpynW
GetVersionExW
GetTickCount
TerminateProcess
GetCurrentProcess
InitializeCriticalSection
GetTempPathW
CreateDirectoryW
CreateDirectoryA
GetCommandLineW
MulDiv
LocalFree
LocalAlloc
CloseHandle
WriteFile
AcquireSRWLockExclusive
GetCurrentThreadId
FreeLibrary
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
LoadLibraryExW
lstrcmpW
FreeResource
lstrcmpiW
user32
InvalidateRect
ReleaseDC
GetDCEx
GetDC
UpdateWindow
GetIconInfo
GetDoubleClickTime
SetRectEmpty
SetActiveWindow
BringWindowToTop
AttachThreadInput
GetWindowThreadProcessId
IntersectRect
SetLayeredWindowAttributes
OffsetRect
IsZoomed
GetForegroundWindow
EnableWindow
SetWindowRgn
ClientToScreen
IsIconic
MonitorFromRect
SystemParametersInfoW
GetMessagePos
KillTimer
SetTimer
MonitorFromPoint
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
FindWindowExW
IsRectEmpty
MessageBeep
ReleaseCapture
GetWindowTextW
SetWindowTextW
RedrawWindow
SetForegroundWindow
GetMenuItemInfoW
TrackPopupMenuEx
RemoveMenu
AppendMenuW
GetMenuItemCount
DestroyMenu
CreatePopupMenu
GetSystemMetrics
TranslateAcceleratorW
EmptyClipboard
RegisterClipboardFormatW
SetClipboardData
CloseClipboard
OpenClipboard
UpdateLayeredWindow
PostQuitMessage
SendMessageTimeoutW
LoadStringA
GetMonitorInfoW
MonitorFromWindow
GetWindow
IsWindowVisible
MoveWindow
IsWindow
CallWindowProcW
PostMessageW
SetClassLongW
GetSysColorBrush
GetClientRect
SetFocus
GetDlgItem
DestroyWindow
GetParent
GetWindowLongW
EndPaint
BeginPaint
SetWindowPos
TrackMouseEvent
MapWindowPoints
LoadCursorW
SendMessageW
GetDesktopWindow
LoadImageW
DestroyCursor
FindWindowW
SetWindowLongW
LoadMenuW
LoadAcceleratorsW
CharNextW
CreateDialogParamW
ShowWindow
SetCapture
GetCapture
DispatchMessageW
GetMessageW
PtInRect
InflateRect
CopyRect
DrawTextW
LoadStringW
TranslateMessage
PeekMessageW
DrawIconEx
GetFocus
wsprintfW
GetCaretBlinkTime
CreateCaret
SetCaretPos
GetSysColor
IsClipboardFormatAvailable
GetWindowTextLengthW
GetWindowRect
CreateWindowExW
GetClassInfoExW
RegisterClassExW
UnregisterClassW
DefWindowProcW
SetCursor
GetCursorPos
ScreenToClient
FillRect
SetRect
EqualRect
gdi32
Rectangle
SelectObject
SetBkMode
SetTextColor
CreateBitmap
CreatePatternBrush
CreateSolidBrush
PatBlt
RestoreDC
SaveDC
SetMapMode
SetROP2
SetViewportOrgEx
SetWindowOrgEx
UnrealizeObject
GetPixel
SetPixel
BitBlt
CreateCompatibleDC
DeleteDC
GetDeviceCaps
GetDIBits
GetStockObject
GetObjectW
CreateCompatibleBitmap
CreateFontW
EnumFontFamiliesExW
CreateDCW
CreateRectRgn
GetBitmapBits
SetBitmapBits
StretchBlt
CreateRoundRectRgn
CombineRgn
GetTextExtentPointW
ExtSelectClipRgn
CreateRectRgnIndirect
CreateFontIndirectW
SetStretchBltMode
SetBkColor
GetTextColor
GetCurrentObject
SetTextCharacterExtra
GetViewportOrgEx
CopyMetaFileW
DeleteObject
CreatePen
Polygon
MoveToEx
CreateDIBSection
LineTo
advapi32
OpenSCManagerW
GetLengthSid
CreateProcessAsUserW
DuplicateTokenEx
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetTokenInformation
ConvertSidToStringSidW
LookupAccountNameW
GetUserNameW
GetUserNameA
LookupAccountNameA
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
AccessCheck
MapGenericMask
DuplicateToken
OpenProcessToken
GetFileSecurityW
RegQueryValueExW
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
EnumServicesStatusExW
LookupPrivilegeValueW
AdjustTokenPrivileges
AllocateAndInitializeSid
CheckTokenMembership
FreeSid
SetTokenInformation
shell32
ord165
ShellExecuteExW
ShellExecuteW
CommandLineToArgvW
SHGetSpecialFolderPathW
SHGetFolderPathA
SHGetFolderPathW
SHCreateDirectoryExW
ole32
CoTaskMemRealloc
ReleaseStgMedium
CoInitialize
CoTaskMemAlloc
CreateStreamOnHGlobal
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleCreateStaticFromData
OleSetContainedObject
RevokeDragDrop
RegisterDragDrop
OleDuplicateData
CoInitializeEx
CoCreateInstance
CoUninitialize
oleaut32
SysStringLen
OleLoadPicture
SysFreeString
SysAllocString
VarUI4FromStr
VarBstrCmp
SysAllocStringByteLen
SysStringByteLen
VariantInit
LoadTypeLi
SysAllocStringLen
LoadRegTypeLi
msvcp140
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
?_W_Getdays@_Locinfo@std@@QBEPBGXZ
?_W_Getmonths@_Locinfo@std@@QBEPBGXZ
_Thrd_detach
_Cnd_do_broadcast_at_thread_exit
?_Throw_Cpp_error@std@@YAXH@Z
?_Xbad_function_call@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
_Wcscoll
_Wcsxfrm
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?id@?$ctype@_W@std@@2V0locale@2@A
?id@?$collate@_W@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?c_str@?$_Yarn@D@std@@QBEPBDXZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?is@?$ctype@_W@std@@QBE_NF_W@Z
??1facet@locale@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??Bid@locale@std@@QAEIXZ
?_Getmonths@_Locinfo@std@@QBEPBDXZ
?_Getdays@_Locinfo@std@@QBEPBDXZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEDD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
_Mbrtowc
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
?good@ios_base@std@@QBE_NXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Xbad_alloc@std@@YAXXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?_Xlength_error@std@@YAXPBD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?flags@ios_base@std@@QBEHXZ
shlwapi
StrCmpIW
PathRemoveFileSpecW
PathAppendW
PathIsDirectoryW
PathFileExistsW
PathIsRootW
StrCpyNW
SHGetValueW
PathAddBackslashW
PathCombineW
PathCanonicalizeW
PathRemoveBackslashW
PathIsPrefixW
PathCommonPrefixW
PathRelativePathToW
StrFormatByteSizeW
PathSearchAndQualifyW
SHSetValueW
ord176
comctl32
ord17
InitCommonControlsEx
msimg32
AlphaBlend
gdiplus
GdipGetImageEncodersSize
GdipSaveImageToFile
GdipDeleteRegion
GdipCombineRegionRegion
GdipCreateBitmapFromScan0
GdipDrawImageRectRectI
GdipSetInterpolationMode
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipGetImageHeight
GdipBitmapGetPixel
GdipFillRegion
GdipDrawImageRectI
GdipGetImageGraphicsContext
GdipGetImagePixelFormat
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipGetImageEncoders
GdipDrawString
GdipMeasureString
GdipDrawLine
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateFont
GdipDeleteFont
GdipGetImageWidth
GdipSetPenWidth
GdipDisposeImage
GdipCloneImage
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdiplusStartup
GdipDrawPath
GdipSetPenColor
GdipSetPenCustomEndCap
GdipSetPenEndCap
GdipSetPenStartCap
GdipDeletePen
GdipCreatePen1
GdipSetTextRenderingHint
GdipCreateSolidFill
GdipDeleteBrush
GdipDrawLineI
GdipSetSmoothingMode
GdipCreateRegionHrgn
GdipCloneBrush
GdipAddPathEllipseI
GdipAddPathLineI
GdipDeletePath
GdipCreatePath
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetCustomLineCapWidthScale
GdipSetCustomLineCapStrokeCaps
GdipFree
GdipDeleteCustomLineCap
GdipCreateCustomLineCap
GdipAlloc
GdipCreateHBITMAPFromBitmap
GdipSetPenBrushFill
opencv_world455
?cvtColor@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@HH@Z
?threshold@cv@@YANABV_InputArray@1@ABV_OutputArray@1@NNH@Z
?warpPerspective@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@0V?$Size_@H@1@HHABV?$Scalar_@N@1@@Z
?imwrite@cv@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@ABV_InputArray@1@ABV?$vector@HV?$allocator@H@std@@@3@@Z
?findHomography@cv@@YA?AVMat@1@ABV_InputArray@1@0HNABV_OutputArray@1@HN@Z
?radiusMatchImpl@BFMatcher@cv@@MAEXABV_InputArray@2@AAV?$vector@V?$vector@VDMatch@cv@@V?$allocator@VDMatch@cv@@@std@@@std@@V?$allocator@V?$vector@VDMatch@cv@@V?$allocator@VDMatch@cv@@@std@@@std@@@2@@std@@M0_N@Z
?knnMatchImpl@BFMatcher@cv@@MAEXABV_InputArray@2@AAV?$vector@V?$vector@VDMatch@cv@@V?$allocator@VDMatch@cv@@@std@@@std@@V?$allocator@V?$vector@VDMatch@cv@@V?$allocator@VDMatch@cv@@@std@@@std@@@2@@std@@H0_N@Z
?clone@BFMatcher@cv@@UBE?AU?$Ptr@VDescriptorMatcher@cv@@@2@_N@Z
??0Mat@cv@@QAE@$$QAV01@@Z
?write@DescriptorMatcher@cv@@UBEXAAVFileStorage@2@@Z
?read@DescriptorMatcher@cv@@UAEXABVFileNode@2@@Z
?knnMatch@DescriptorMatcher@cv@@QBEXABV_InputArray@2@0AAV?$vector@V?$vector@VDMatch@cv@@V?$allocator@VDMatch@cv@@@std@@@std@@V?$allocator@V?$vector@VDMatch@cv@@V?$allocator@VDMatch@cv@@@std@@@std@@@2@@std@@H0_N@Z
?train@DescriptorMatcher@cv@@UAEXXZ
?empty@DescriptorMatcher@cv@@UBE_NXZ
?clear@DescriptorMatcher@cv@@UAEXXZ
?add@DescriptorMatcher@cv@@UAEXABV_InputArray@2@@Z
??1DescriptorMatcher@cv@@UAE@XZ
?create@ORB@cv@@SA?AU?$Ptr@VORB@cv@@@2@HMHHHHW4ScoreType@12@HH@Z
?getDefaultName@Algorithm@cv@@UBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?save@Algorithm@cv@@UBEXABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?minMaxLoc@cv@@YAXABV_InputArray@1@PAN1PAV?$Point_@H@1@20@Z
??Dcv@@YA?AVMatExpr@0@ABVMat@0@0@Z
?matchTemplate@cv@@YAXABV_InputArray@1@0ABV_OutputArray@1@H0@Z
?step1@Mat@cv@@QBEIH@Z
?create@Mat@cv@@QAEXV?$Size_@H@2@H@Z
?zeros@Mat@cv@@SA?AVMatExpr@2@V?$Size_@H@2@H@Z
?setTo@Mat@cv@@QAEAAV12@ABV_InputArray@2@0@Z
?copyTo@Mat@cv@@QBEXABV_OutputArray@2@@Z
??4Mat@cv@@QAEAAV01@ABV01@@Z
??1Mat@cv@@QAE@XZ
??0Mat@cv@@QAE@ABV01@ABV?$Rect_@H@1@@Z
??0Mat@cv@@QAE@ABV01@ABVRange@1@1@Z
??0Mat@cv@@QAE@HHHPAXI@Z
??0Mat@cv@@QAE@ABV01@@Z
??0Mat@cv@@QAE@HHH@Z
??0Mat@cv@@QAE@XZ
?noArray@cv@@YAABV_InputOutputArray@1@XZ
??0BFMatcher@cv@@QAE@H_N@Z
??4Mat@cv@@QAEAAV01@$$QAV01@@Z
version
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
crypt32
CryptStringToBinaryA
CryptBinaryToStringW
CryptBinaryToStringA
CryptStringToBinaryW
imagehlp
ImageDirectoryEntryToData
ImageNtHeader
wintrust
CryptCATAdminReleaseContext
CryptCATCatalogInfoFromContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminReleaseCatalogContext
WinVerifyTrust
CryptCATAdminEnumCatalogFromHash
CryptCATAdminAcquireContext
wtsapi32
WTSQueryUserToken
userenv
DestroyEnvironmentBlock
CreateEnvironmentBlock
vcruntime140
__RTDynamicCast
_except_handler4_common
__std_type_info_destroy_list
__current_exception_context
wcsstr
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__CxxFrameHandler3
memcpy
memmove
memset
_purecall
__std_terminate
wcschr
wcsrchr
strchr
__current_exception
api-ms-win-crt-runtime-l1-1-0
_invalid_parameter_noinfo_noreturn
_invalid_parameter_noinfo
_seh_filter_dll
_errno
terminate
_configure_narrow_argv
_initialize_onexit_table
_initialize_narrow_environment
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_controlfp_s
_cexit
_seh_filter_exe
_set_app_type
_register_thread_local_exe_atexit_callback
_c_exit
_get_narrow_winmain_command_line
_exit
exit
_initterm_e
_initterm
_beginthreadex
api-ms-win-crt-string-l1-1-0
strncpy_s
_wcslwr_s
_wcsdup
_wcsicmp
wcstok
strncpy
iswspace
strpbrk
wcsncpy
_wcsnicmp
tolower
isalpha
strtok
wcsnlen
wcsncpy_s
wmemcpy_s
isalnum
strncmp
isspace
_wcsupr_s
wcscpy_s
strnlen
wcsncat
api-ms-win-crt-convert-l1-1-0
wcstol
atol
_wtof
_wtoi64
_wtoi
_wtol
_atoi64
atoi
atof
strtod
strtol
strtoul
_strtoui64
api-ms-win-crt-stdio-l1-1-0
ferror
__p__commode
fputc
fwrite
__stdio_common_vfprintf
__stdio_common_vsnprintf_s
_wfopen
fopen_s
__stdio_common_vswprintf_s
__stdio_common_vsscanf
__stdio_common_vsprintf
_fileno
fclose
fread
_filelength
fseek
_wfopen_s
__stdio_common_vswscanf
__stdio_common_vswprintf
ftell
__stdio_common_vsprintf_s
_set_fmode
api-ms-win-crt-math-l1-1-0
_libm_sse2_tan_precise
_libm_sse2_sqrt_precise
round
__setusermatherr
_fdclass
floor
_libm_sse2_cos_precise
_libm_sse2_pow_precise
_libm_sse2_sin_precise
_except1
api-ms-win-crt-heap-l1-1-0
_recalloc
malloc
_set_new_mode
_callnewh
calloc
free
realloc
api-ms-win-crt-utility-l1-1-0
srand
rand
api-ms-win-crt-multibyte-l1-1-0
_mbscmp
_mbsicmp
api-ms-win-crt-filesystem-l1-1-0
_waccess
_wfindnext64i32
_findclose
_wfindfirst64i32
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Sections
.text Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 182KB - Virtual size: 181KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 159KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 79KB - Virtual size: 78KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ