D:\Projects\C++\PWClient\WMGJ\CElement\CElementClient\Release\ElementClient.pdb
Behavioral task
behavioral1
Sample
2514324d2afd95c91b16925746faa95b2e4d98795aa3e16ad14fb174f09f1eef.exe
Resource
win7-20240903-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
2514324d2afd95c91b16925746faa95b2e4d98795aa3e16ad14fb174f09f1eef.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
2514324d2afd95c91b16925746faa95b2e4d98795aa3e16ad14fb174f09f1eef
-
Size
12.6MB
-
MD5
ec1fa9da35e4bc24a8cc565b481fc66f
-
SHA1
a2f474761f7ee880b9917786bad9dacca3969b30
-
SHA256
2514324d2afd95c91b16925746faa95b2e4d98795aa3e16ad14fb174f09f1eef
-
SHA512
5770ca2651dbc3fe6a4c54099a085b9524d69a53a142d336d103c5ef0c91c60be509350d4d4131d410107082746c7b90beee2e30c291ab08a023f42e5df1c2f0
-
SSDEEP
98304:uJdpvUqvz9yQC3xKhmbBZVP+vAglOO0s24ItNTpzvjrqmMqtaM5GiWAgEKu3eXiQ:uv9Ryd3Kgnc4XO0s24Izp+qtLEihKWv
Score
10/10
Malware Config
Signatures
-
Detects Strela Stealer payload 1 IoCs
Processes:
resource yara_rule sample family_strela -
Strela family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource 2514324d2afd95c91b16925746faa95b2e4d98795aa3e16ad14fb174f09f1eef
Files
-
2514324d2afd95c91b16925746faa95b2e4d98795aa3e16ad14fb174f09f1eef.exe windows:6 windows x86 arch:x86
6d71a73432c871b69ea2f1f98536fde2
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
winmm
waveOutGetDevCapsW
waveOutMessage
waveInGetNumDevs
timeGetTime
waveOutGetNumDevs
waveOutWrite
waveInGetDevCapsW
waveInMessage
waveOutUnprepareHeader
waveOutReset
waveInOpen
waveInClose
waveInPrepareHeader
waveInUnprepareHeader
waveInAddBuffer
waveInStart
waveInStop
waveInReset
waveOutClose
waveOutOpen
waveOutSetVolume
waveOutPrepareHeader
ws2_32
__WSAFDIsSet
WSAGetLastError
inet_addr
bind
recvfrom
select
gethostbyname
inet_ntoa
WSAStartup
socket
setsockopt
sendto
send
recv
ntohs
htons
ioctlsocket
connect
WSACleanup
closesocket
getsockname
shlwapi
PathFileExistsA
PathFindFileNameA
StrToIntW
PathFindExtensionA
wininet
HttpAddRequestHeadersA
HttpOpenRequestA
InternetOpenA
InternetReadFile
InternetConnectA
HttpQueryInfoA
InternetOpenUrlW
InternetCloseHandle
HttpSendRequestA
imm32
ImmGetDescriptionW
ImmGetProperty
ImmGetContext
ImmReleaseContext
ImmAssociateContext
ImmGetCompositionStringW
ImmSetCompositionWindow
ImmSetCandidateWindow
ImmGetCandidateListW
ImmNotifyIME
ImmIsIME
ddraw
DirectDrawCreate
d3d9
Direct3DCreate9
d3dx9_43
D3DXGetImageInfoFromFileA
D3DXVec3TransformCoord
D3DXMatrixOrthoOffCenterLH
D3DXLoadSurfaceFromFileInMemory
D3DXQuaternionRotationMatrix
D3DXMatrixRotationQuaternion
D3DXAssembleShader
D3DXMatrixShadow
D3DXSaveSurfaceToFileW
D3DXCreateBuffer
D3DXLoadSurfaceFromSurface
D3DXMatrixPerspectiveFovLH
D3DXSaveTextureToFileA
D3DXCreateTextureFromFileInMemoryEx
D3DXGetImageInfoFromFileInMemory
D3DXPlaneTransform
D3DXSaveSurfaceToFileA
D3DXMatrixMultiply
D3DXMatrixLookAtLH
D3DXMatrixRotationAxis
D3DXDeclaratorFromFVF
speedtreert
?SetLightAttributes@CSpeedTreeRT@@SAXIPBM@Z
?SetCamera@CSpeedTreeRT@@SAXPBM0@Z
?SetTime@CSpeedTreeRT@@SAXM@Z
?Authorize@CSpeedTreeRT@@SAXPBD@Z
??0SGeometry@CSpeedTreeRT@@QAE@XZ
??1SGeometry@CSpeedTreeRT@@QAE@XZ
??0STextures@CSpeedTreeRT@@QAE@XZ
??1STextures@CSpeedTreeRT@@QAE@XZ
??0CSpeedTreeRT@@QAE@XZ
??1CSpeedTreeRT@@QAE@XZ
??2CSpeedTreeRT@@SAPAXI@Z
??3CSpeedTreeRT@@SAXPAX@Z
?Compute@CSpeedTreeRT@@QAE_NPBMI_N@Z
?MakeInstance@CSpeedTreeRT@@QAEPAV1@XZ
?LoadTree@CSpeedTreeRT@@QAE_NPBEI@Z
?GetTreeSize@CSpeedTreeRT@@QBEXAAM0@Z
?SetTreeSize@CSpeedTreeRT@@QAEXMM@Z
?SetTreePosition@CSpeedTreeRT@@QAEXMMM@Z
?SetBranchLightingMethod@CSpeedTreeRT@@QAEXW4ELightingMethod@1@@Z
?SetLeafLightingMethod@CSpeedTreeRT@@QAEXW4ELightingMethod@1@@Z
?SetFrondLightingMethod@CSpeedTreeRT@@QAEXW4ELightingMethod@1@@Z
?SetLeafRockingState@CSpeedTreeRT@@QAEX_N@Z
?SetNumLeafRockingGroups@CSpeedTreeRT@@QAEXI@Z
?SetLeafWindMethod@CSpeedTreeRT@@QAEXW4EWindMethod@1@@Z
?SetBranchWindMethod@CSpeedTreeRT@@QAEXW4EWindMethod@1@@Z
?SetFrondWindMethod@CSpeedTreeRT@@QAEXW4EWindMethod@1@@Z
?SetWindStrength@CSpeedTreeRT@@QAEMMMM@Z
?ComputeLodLevel@CSpeedTreeRT@@QAEXXZ
?SetLodLevel@CSpeedTreeRT@@QAEXM@Z
?SetDropToBillboard@CSpeedTreeRT@@SAX_N@Z
?SetLodLimits@CSpeedTreeRT@@QAEXMM@Z
?GetDiscreteLeafLodLevel@CSpeedTreeRT@@QBEGM@Z
?GetNumBranchLodLevels@CSpeedTreeRT@@QBEGXZ
?GetNumLeafLodLevels@CSpeedTreeRT@@QBEGXZ
?GetNumFrondLodLevels@CSpeedTreeRT@@QBEGXZ
?GetGeometry@CSpeedTreeRT@@QAEXAAUSGeometry@1@KFFF@Z
?GetTextures@CSpeedTreeRT@@QBEXAAUSTextures@1@@Z
?SetTextureFlip@CSpeedTreeRT@@SAX_N@Z
?GetBoundingBox@CSpeedTreeRT@@QBEXPAM@Z
?SetLightState@CSpeedTreeRT@@SAXI_N@Z
kernel32
GetFileAttributesA
SetFileAttributesA
CreateFileW
CloseHandle
GetLastError
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
FreeLibrary
GetModuleFileNameA
GetModuleFileNameW
GetProcAddress
LoadLibraryW
lstrcpyW
IsBadReadPtr
InitializeCriticalSection
DeleteCriticalSection
WaitForSingleObject
CreateThread
VirtualProtect
GetModuleHandleA
LoadLibraryA
TerminateProcess
OpenProcess
VirtualQueryEx
ReadProcessMemory
CreateToolhelp32Snapshot
GetCommandLineA
Process32Next
CreateFileA
DeviceIoControl
GlobalMemoryStatusEx
GetComputerNameW
Sleep
GetSystemInfo
GetVersionExW
GlobalMemoryStatus
lstrlenA
HeapAlloc
HeapFree
GetProcessHeap
GetSystemTime
SystemTimeToFileTime
GetFullPathNameA
GetModuleHandleW
FlushInstructionCache
ReleaseMutex
CreateMutexW
IsBadWritePtr
GlobalAlloc
GlobalUnlock
GlobalLock
WideCharToMultiByte
DeleteFileA
MultiByteToWideChar
GetCurrentDirectoryW
DecodePointer
InitializeCriticalSectionAndSpinCount
Process32First
CreateEventW
ExitThread
InitializeCriticalSectionEx
CreateDirectoryA
FindFirstFileA
FindNextFileA
GetFileSize
ResetEvent
WaitForMultipleObjects
GetExitCodeThread
GetLocalTime
CopyFileA
ReadFile
GetCommandLineW
OutputDebugStringA
ExitProcess
ResumeThread
FindClose
WriteFile
ConnectNamedPipe
CreateNamedPipeW
CreateMutexA
CreateProcessW
K32GetProcessMemoryInfo
GetDiskFreeSpaceA
OutputDebugStringW
SignalObjectAndWait
SetThreadPriority
SetThreadPriorityBoost
GetPrivateProfileStringW
WritePrivateProfileStringW
LocalAlloc
GetCurrentDirectoryA
IsDebuggerPresent
GetVersion
DuplicateHandle
SuspendThread
GetPrivateProfileIntA
OpenFile
ReleaseSemaphore
CreateSemaphoreW
RaiseException
SetLastError
QueueUserAPC
LoadLibraryExW
LoadResource
SizeofResource
FindResourceW
MulDiv
lstrcmpW
lstrcmpiW
QueryPerformanceCounter
QueryPerformanceFrequency
Module32FirstW
Module32NextW
SetFilePointer
IsDBCSLeadByteEx
WinExec
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GlobalFree
GetWindowsDirectoryA
IsDBCSLeadByte
GlobalReAlloc
GlobalSize
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
FormatMessageA
LoadLibraryExA
VirtualFree
VirtualAlloc
InterlockedPushEntrySList
GetTickCount
SetEvent
InterlockedPopEntrySList
EncodePointer
GetStartupInfoW
SetCurrentDirectoryA
GetSystemTimeAsFileTime
InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SleepConditionVariableSRW
user32
ChangeDisplaySettingsW
LoadIconW
SetCursor
MessageBoxA
EndPaint
BeginPaint
GetForegroundWindow
PeekMessageW
DispatchMessageW
TranslateMessage
SetWindowTextW
SetCursorPos
SetWindowLongW
AdjustWindowRectEx
InvalidateRect
GetAsyncKeyState
GetMenuBarInfo
EnumChildWindows
SetActiveWindow
GetActiveWindow
IsWindow
UnregisterClassW
IntersectRect
GetClassNameW
FindWindowW
GetWindowLongW
GetWindowTextW
IsWindowEnabled
GetCapture
IsIconic
IsWindowVisible
SetWindowPos
ShowWindow
GetClientRect
PostMessageW
ClientToScreen
GetKeyState
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
ScreenToClient
GetCursorPos
PostQuitMessage
EnumWindows
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
FindWindowA
PtInRect
IsRectEmpty
GetWindowRect
GetWindow
GetWindowThreadProcessId
GetTopWindow
GetClassNameA
GetWindowTextA
GetGUIThreadInfo
SetCapture
ReleaseCapture
wsprintfW
DefWindowProcW
RegisterClassExW
CreateWindowExW
SetRect
MoveWindow
GetSystemMetrics
UpdateWindow
SetForegroundWindow
AdjustWindowRect
LoadCursorW
MessageBoxW
RegisterWindowMessageW
GetMessageW
CallWindowProcW
GetClassInfoExW
IsChild
DestroyWindow
GetDlgItem
CharNextW
SetFocus
GetFocus
keybd_event
SetTimer
KillTimer
CreateAcceleratorTableW
DestroyAcceleratorTable
GetDC
InvalidateRgn
RedrawWindow
GetWindowTextLengthW
GetSysColor
FillRect
SetWindowLongA
GetDesktopWindow
GetParent
GetAncestor
IsZoomed
LoadCursorFromFileA
DestroyCursor
RegisterClipboardFormatW
WindowFromDC
CreateWindowExA
EnumThreadWindows
GetWindowDC
IsWindowUnicode
SetCaretPos
GetClipboardData
EnumDisplaySettingsW
SendMessageW
CreateCaret
GetKeyboardLayout
ReleaseDC
gdi32
ExtTextOutW
CreateDIBSection
SetTextAlign
SetTextColor
SetBkColor
GetObjectW
SelectObject
GetDeviceCaps
DeleteObject
DeleteDC
CreateSolidBrush
SetMapMode
CreateCompatibleBitmap
GetStockObject
BitBlt
SetPixel
TextOutA
GetTextExtentPoint32W
GetDIBits
CreateFontIndirectW
PtInRegion
CreatePolygonRgn
EnumFontFamiliesExW
GetGlyphOutlineW
CreateEllipticRgn
CreateCompatibleDC
CreateFontW
advapi32
GetUserNameW
OpenProcessToken
OpenThreadToken
AdjustTokenPrivileges
LookupPrivilegeValueW
CloseServiceHandle
CreateServiceA
DeleteService
OpenSCManagerW
OpenServiceA
StartServiceW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegSetValueExW
shell32
ShellExecuteExA
Shell_NotifyIconW
ShellExecuteA
ShellExecuteW
SHOpenFolderAndSelectItems
ole32
CreateStreamOnHGlobal
CoInitialize
CoCreateInstance
CoUninitialize
OleUninitialize
OleLockRunning
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
StringFromGUID2
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
OleInitialize
PropVariantClear
oleaut32
LoadRegTypeLi
DispCallFunc
OleCreateFontIndirect
SysFreeString
VarUI4FromStr
VariantCopy
VariantClear
VariantInit
SysStringLen
SysAllocStringLen
SysAllocString
LoadTypeLi
elementskill
?LoadSkillData@ElementSkill@GNET@@SAXPAX@Z
?SetLevel@ElementSkill@GNET@@SAHIH@Z
?SetAbility@ElementSkill@GNET@@SAHIH@Z
?GetComboSkActivated@ElementSkill@GNET@@SAXABUComboSkillState@2@AAV?$vector@U?$pair@IH@std@@V?$allocator@U?$pair@IH@std@@@2@@std@@@Z
?GetVersion@ElementSkill@GNET@@SAHXZ
?IsMovingSkill@ElementSkill@GNET@@SA_NI@Z
?NextSkill@ElementSkill@GNET@@SAII@Z
?GetInherentSkills@ElementSkill@GNET@@SAABV?$vector@IV?$allocator@I@std@@@std@@H@Z
?GetComboSkPreSkill@ElementSkill@GNET@@SAHI@Z
?Condition@ElementSkill@GNET@@SAHIAAUUseRequirement@2@H@Z
?PetLearn@ElementSkill@GNET@@SAHIAAUPetRequirement@2@H@Z
?LearnCondition@ElementSkill@GNET@@SAHIAAULearnRequirement@2@H@Z
?GetRequiredSp@ElementSkill@GNET@@SAHIH@Z
?GetMaxAbility@ElementSkill@GNET@@SAHIH@Z
?GetAbility@ElementSkill@GNET@@SAHI@Z
?GetRequiredRealmLevel@ElementSkill@GNET@@SAHIH@Z
?GetRequiredLevel@ElementSkill@GNET@@SAHIH@Z
?IsOverridden@ElementSkill@GNET@@SA_NI@Z
?GetType@ElementSkill@GNET@@SADI@Z
?Query@TeamState@GNET@@SAPBV12@H@Z
?GetAbilityPercent@ElementSkill@GNET@@SAHI@Z
?Create@ElementSkill@GNET@@SAPAV12@IH@Z
?Destroy@ElementSkill@GNET@@QAEXXZ
?GetEffect@ElementSkill@GNET@@SAPBDI@Z
?GetIcon@ElementSkill@GNET@@SAPBDI@Z
?Query@VisibleState@GNET@@SAPBV12@HH@Z
?GetName@ElementSkill@GNET@@SAPB_WI@Z
?GetCommonCoolDown@ElementSkill@GNET@@SAHI@Z
?IsGoblinSkill@ElementSkill@GNET@@SA_NI@Z
?GetRequiredBook@ElementSkill@GNET@@SAHIH@Z
?GetNativeName@ElementSkill@GNET@@SAPBDI@Z
?InitStaticData@ElementSkill@GNET@@SAXXZ
?GetRequiredMoney@ElementSkill@GNET@@SAHIH@Z
?GetExecuteTime@ElementSkill@GNET@@SAHIH@Z
msvcp140
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE_W_W@Z
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WXZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pbase@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
?good@ios_base@std@@QBE_NXZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
?_W_Getmonths@_Locinfo@std@@QBEPBGXZ
?_W_Getdays@_Locinfo@std@@QBEPBGXZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
_Mbrtowc
?uncaught_exception@std@@YA_NXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Xlength_error@std@@YAXPBD@Z
_Mtx_destroy_in_situ
_Mtx_init_in_situ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?flags@ios_base@std@@QBEHXZ
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
_Mtx_lock
_Mtx_unlock
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Cnd_wait
_Cnd_broadcast
_Cnd_signal
_Cnd_register_at_thread_exit
_Cnd_unregister_at_thread_exit
?_Throw_Cpp_error@std@@YAXH@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?id@?$ctype@_W@std@@2V0locale@2@A
?always_noconv@codecvt_base@std@@QBE_NXZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_function_call@std@@YAXXZ
_Thrd_join
_Thrd_id
_Cnd_do_broadcast_at_thread_exit
??Bios_base@std@@QBE_NXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
_Xtime_get_ticks
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
_Thrd_hardware_concurrency
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
iphlpapi
GetAdaptersAddresses
mpg123
mpg123_init
mpg123_new
mpg123_close
mpg123_decode
mpg123_open_feed
mpg123_format
mpg123_format_none
mpg123_strerror
urlmon
URLDownloadToFileW
opus
opus_encode
opus_encoder_create
opus_decoder_create
opus_decode
vcruntime140
memcpy
__CxxFrameHandler3
strrchr
__std_terminate
strstr
strchr
_setjmp3
__std_exception_copy
__std_type_info_destroy_list
_except_handler4_common
memset
__current_exception_context
__current_exception
longjmp
__std_type_info_name
wcschr
wcsrchr
wcsstr
_local_unwind4
memchr
memmove
__RTDynamicCast
__std_exception_destroy
_CxxThrowException
_purecall
api-ms-win-crt-utility-l1-1-0
rand
qsort
srand
api-ms-win-crt-math-l1-1-0
_libm_sse2_asin_precise
_libm_sse2_acos_precise
_libm_sse2_pow_precise
_libm_sse2_log_precise
_libm_sse2_exp_precise
modf
ldexp
_libm_sse2_sqrt_precise
_except1
_libm_sse2_log10_precise
_CIfmod
frexp
_libm_sse2_atan_precise
__libm_sse2_log10
__setusermatherr
__libm_sse2_exp
_libm_sse2_cos_precise
ceil
_CIcosh
_CIatan2
_CIsinh
_CItanh
_libm_sse2_tan_precise
__libm_sse2_asin
__libm_sse2_atan2
__libm_sse2_cos
__libm_sse2_sinf
_isnan
__libm_sse2_pow
floor
__libm_sse2_asinf
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_sin
__libm_sse2_log
__libm_sse2_atan
__libm_sse2_tan
__libm_sse2_cosf
__libm_sse2_tanf
__libm_sse2_powf
_libm_sse2_sin_precise
api-ms-win-crt-stdio-l1-1-0
fsetpos
__stdio_common_vswprintf_s
fputc
_set_fmode
fgetpos
fgetc
_get_stream_buffer_pointers
feof
__stdio_common_vswprintf
__p__commode
fgetws
fgetwc
ftell
fseek
__stdio_common_vfprintf
getc
ferror
freopen
__acrt_iob_func
fgets
_chsize
fread
fflush
tmpnam
__stdio_common_vfwprintf
__stdio_common_vswscanf
fopen
_fileno
__stdio_common_vsscanf
fwrite
__stdio_common_vsprintf
clearerr
_popen
__stdio_common_vfscanf
_pclose
fclose
fputs
ungetc
setvbuf
tmpfile
_fseeki64
api-ms-win-crt-time-l1-1-0
_mktime32
asctime
_gmtime64
_time32
_localtime32
_gmtime32
_localtime64
_time64
strftime
_mktime64
clock
_difftime64
api-ms-win-crt-string-l1-1-0
strncpy
_strnicmp
_strupr
islower
ispunct
isxdigit
isupper
toupper
strpbrk
strtok
_wcsicmp
_wcsupr
_strlwr
strcpy_s
isspace
wcsncmp
_wcslwr
tolower
isdigit
strcspn
strcoll
_stricmp
iswdigit
strncat
isalpha
wcsncpy
strncmp
isalnum
wcsncat
iscntrl
_strdup
wcsncpy_s
wcscspn
api-ms-win-crt-filesystem-l1-1-0
_stat32
_lock_file
_splitpath
_fstat64i32
rename
_findnext32
_findclose
_mkdir
_findnext64i32
_rmdir
_wremove
_findfirst32
_findfirst64i32
_unlock_file
remove
_stat64i32
_access
api-ms-win-crt-convert-l1-1-0
atof
strtoul
strtol
strtod
_itoa
_wtoi
atol
_itow
atoi
api-ms-win-crt-runtime-l1-1-0
system
_beginthreadex
_beginthread
_invalid_parameter_noinfo_noreturn
_cexit
terminate
_controlfp_s
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
strerror
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
exit
abort
_register_thread_local_exe_atexit_callback
_c_exit
_invalid_parameter_noinfo
perror
_exit
_initterm_e
_resetstkoflw
_initterm
_get_wide_winmain_command_line
_seh_filter_exe
_set_app_type
_errno
_configure_wide_argv
_initialize_wide_environment
api-ms-win-crt-heap-l1-1-0
_set_new_mode
calloc
_callnewh
_recalloc
realloc
malloc
free
api-ms-win-crt-locale-l1-1-0
setlocale
localeconv
_configthreadlocale
glu32
gluTessEndPolygon
gluTessEndContour
gluTessCallback
gluTessBeginContour
gluTessBeginPolygon
gluDeleteTess
gluTessVertex
gluTessProperty
gluNewTess
dsound
ord11
ftdriver
?CreateFTManager@@YAPAVIFTManager@@HHH@Z
api-ms-win-crt-environment-l1-1-0
getenv
Sections
.text Size: 10.1MB - Virtual size: 10.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 214KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 146KB - Virtual size: 146KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 282KB - Virtual size: 281KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 573KB - Virtual size: 572KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ