D:\Projects\C++\PWClient\WMGJ\CElement\CElementClient\Release\ElementClient.pdb
Behavioral task
behavioral1
Sample
97e27fe97d5bf005aa0002fed3594ab516e571ad768086e86580c02b009ec75c.exe
Resource
win7-20240704-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
97e27fe97d5bf005aa0002fed3594ab516e571ad768086e86580c02b009ec75c.exe
Resource
win10v2004-20240910-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
97e27fe97d5bf005aa0002fed3594ab516e571ad768086e86580c02b009ec75c
-
Size
12.5MB
-
MD5
5ebc4ccf96729d8fb4ee34ffb6488035
-
SHA1
0ac5dab57b4e3570c363d959bdfff3df90fbeaf9
-
SHA256
97e27fe97d5bf005aa0002fed3594ab516e571ad768086e86580c02b009ec75c
-
SHA512
5795b2cc8d405f811a502dd29b9959d199bb537e5e71a5c56afbfe5dbe01e264f935fb01bff132f3a7146b0b700eab65f4bc20d8bbd83183909b3b35bc6c7298
-
SSDEEP
196608:mzU/INRap8j0Zc16hoV12DzNYSZhYqw8E9/:wUgNRapo0ZcSAAxby
Score
10/10
Malware Config
Signatures
-
Detects Strela Stealer payload 1 IoCs
resource yara_rule sample family_strela -
Strela family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 97e27fe97d5bf005aa0002fed3594ab516e571ad768086e86580c02b009ec75c
Files
-
97e27fe97d5bf005aa0002fed3594ab516e571ad768086e86580c02b009ec75c.exe windows:6 windows x86 arch:x86
7d22a812cc5d8674d2e1d8fb40d2cb5d
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
winmm
waveOutGetDevCapsW
waveOutMessage
waveInGetNumDevs
timeGetTime
waveOutGetNumDevs
waveOutWrite
waveInGetDevCapsW
waveInMessage
waveOutUnprepareHeader
waveOutReset
waveInOpen
waveInClose
waveInPrepareHeader
waveInUnprepareHeader
waveInAddBuffer
waveInStart
waveInStop
waveInReset
waveOutClose
waveOutOpen
waveOutSetVolume
waveOutPrepareHeader
ws2_32
__WSAFDIsSet
inet_addr
select
bind
WSAGetLastError
gethostbyname
recvfrom
inet_ntoa
WSAStartup
socket
setsockopt
sendto
send
recv
ntohs
htons
ioctlsocket
connect
WSACleanup
closesocket
getsockname
shlwapi
PathFileExistsA
PathFindFileNameA
StrToIntW
PathFindExtensionA
wininet
HttpAddRequestHeadersA
HttpOpenRequestA
InternetOpenA
InternetReadFile
InternetConnectA
HttpQueryInfoA
InternetOpenUrlW
InternetCloseHandle
HttpSendRequestA
imm32
ImmGetDescriptionW
ImmGetProperty
ImmGetContext
ImmReleaseContext
ImmAssociateContext
ImmGetCompositionStringW
ImmNotifyIME
ImmIsIME
ImmGetCandidateListW
ImmSetCompositionWindow
ImmSetCandidateWindow
ddraw
DirectDrawCreate
d3d9
Direct3DCreate9
d3dx9_43
D3DXPlaneTransform
D3DXMatrixOrthoOffCenterLH
D3DXLoadSurfaceFromFileInMemory
D3DXQuaternionRotationMatrix
D3DXMatrixRotationQuaternion
D3DXAssembleShader
D3DXVec3TransformCoord
D3DXMatrixShadow
D3DXSaveSurfaceToFileW
D3DXCreateBuffer
D3DXGetImageInfoFromFileA
D3DXMatrixPerspectiveFovLH
D3DXSaveTextureToFileA
D3DXCreateTextureFromFileInMemoryEx
D3DXGetImageInfoFromFileInMemory
D3DXLoadSurfaceFromSurface
D3DXMatrixMultiply
D3DXDeclaratorFromFVF
D3DXMatrixLookAtLH
D3DXMatrixRotationAxis
D3DXSaveSurfaceToFileA
speedtreert
?SetLightAttributes@CSpeedTreeRT@@SAXIPBM@Z
?SetCamera@CSpeedTreeRT@@SAXPBM0@Z
?SetTime@CSpeedTreeRT@@SAXM@Z
?Authorize@CSpeedTreeRT@@SAXPBD@Z
??0SGeometry@CSpeedTreeRT@@QAE@XZ
??1SGeometry@CSpeedTreeRT@@QAE@XZ
??0STextures@CSpeedTreeRT@@QAE@XZ
??1STextures@CSpeedTreeRT@@QAE@XZ
??0CSpeedTreeRT@@QAE@XZ
??1CSpeedTreeRT@@QAE@XZ
??2CSpeedTreeRT@@SAPAXI@Z
??3CSpeedTreeRT@@SAXPAX@Z
?Compute@CSpeedTreeRT@@QAE_NPBMI_N@Z
?MakeInstance@CSpeedTreeRT@@QAEPAV1@XZ
?LoadTree@CSpeedTreeRT@@QAE_NPBEI@Z
?GetTreeSize@CSpeedTreeRT@@QBEXAAM0@Z
?SetTreeSize@CSpeedTreeRT@@QAEXMM@Z
?SetTreePosition@CSpeedTreeRT@@QAEXMMM@Z
?SetBranchLightingMethod@CSpeedTreeRT@@QAEXW4ELightingMethod@1@@Z
?SetLeafLightingMethod@CSpeedTreeRT@@QAEXW4ELightingMethod@1@@Z
?SetFrondLightingMethod@CSpeedTreeRT@@QAEXW4ELightingMethod@1@@Z
?SetLeafRockingState@CSpeedTreeRT@@QAEX_N@Z
?SetNumLeafRockingGroups@CSpeedTreeRT@@QAEXI@Z
?SetLeafWindMethod@CSpeedTreeRT@@QAEXW4EWindMethod@1@@Z
?SetBranchWindMethod@CSpeedTreeRT@@QAEXW4EWindMethod@1@@Z
?SetFrondWindMethod@CSpeedTreeRT@@QAEXW4EWindMethod@1@@Z
?SetWindStrength@CSpeedTreeRT@@QAEMMMM@Z
?ComputeLodLevel@CSpeedTreeRT@@QAEXXZ
?SetLodLevel@CSpeedTreeRT@@QAEXM@Z
?SetDropToBillboard@CSpeedTreeRT@@SAX_N@Z
?SetLodLimits@CSpeedTreeRT@@QAEXMM@Z
?GetDiscreteLeafLodLevel@CSpeedTreeRT@@QBEGM@Z
?GetNumBranchLodLevels@CSpeedTreeRT@@QBEGXZ
?GetNumLeafLodLevels@CSpeedTreeRT@@QBEGXZ
?GetNumFrondLodLevels@CSpeedTreeRT@@QBEGXZ
?GetGeometry@CSpeedTreeRT@@QAEXAAUSGeometry@1@KFFF@Z
?GetTextures@CSpeedTreeRT@@QBEXAAUSTextures@1@@Z
?SetTextureFlip@CSpeedTreeRT@@SAX_N@Z
?GetBoundingBox@CSpeedTreeRT@@QBEXPAM@Z
?SetLightState@CSpeedTreeRT@@SAXI_N@Z
kernel32
CreateFileW
CloseHandle
GetLastError
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
FreeLibrary
GetModuleFileNameA
GetModuleFileNameW
GetProcAddress
LoadLibraryW
lstrcpyW
IsBadReadPtr
InitializeCriticalSection
DeleteCriticalSection
WaitForSingleObject
CreateThread
VirtualProtect
GetModuleHandleA
LoadLibraryA
TerminateProcess
OpenProcess
VirtualQueryEx
ReadProcessMemory
CreateToolhelp32Snapshot
Process32First
Process32Next
CreateFileA
DeviceIoControl
GlobalMemoryStatusEx
GetComputerNameW
Sleep
GetSystemInfo
GetVersionExW
GlobalMemoryStatus
lstrlenA
HeapAlloc
HeapFree
GetProcessHeap
GetSystemTime
SystemTimeToFileTime
GetFullPathNameA
GetModuleHandleW
FlushInstructionCache
ReleaseMutex
CreateMutexW
IsBadWritePtr
GlobalAlloc
GlobalUnlock
GlobalLock
WideCharToMultiByte
DeleteFileA
MultiByteToWideChar
GetCurrentDirectoryW
DecodePointer
InitializeCriticalSectionAndSpinCount
SetEvent
SetFileAttributesA
GetCommandLineA
InitializeCriticalSectionEx
CreateDirectoryA
FindFirstFileA
FindNextFileA
GetFileSize
ResetEvent
WaitForMultipleObjects
GetExitCodeThread
GetLocalTime
CopyFileA
ReadFile
GetCommandLineW
OutputDebugStringA
ExitProcess
ResumeThread
FindClose
WriteFile
ConnectNamedPipe
CreateNamedPipeW
CreateMutexA
CreateProcessW
K32GetProcessMemoryInfo
GetDiskFreeSpaceA
OutputDebugStringW
SignalObjectAndWait
SetThreadPriority
SetThreadPriorityBoost
GetPrivateProfileStringW
WritePrivateProfileStringW
SetCurrentDirectoryA
GetTickCount
IsDebuggerPresent
GetVersion
DuplicateHandle
SuspendThread
GetPrivateProfileIntA
OpenFile
ReleaseSemaphore
CreateSemaphoreW
RaiseException
SetLastError
QueueUserAPC
LoadLibraryExW
LoadResource
SizeofResource
FindResourceW
MulDiv
lstrcmpW
lstrcmpiW
QueryPerformanceCounter
QueryPerformanceFrequency
Module32FirstW
Module32NextW
SetFilePointer
IsDBCSLeadByteEx
WinExec
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
CreateEventW
LocalAlloc
GlobalFree
GetWindowsDirectoryA
IsDBCSLeadByte
GlobalReAlloc
GlobalSize
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
FormatMessageA
LoadLibraryExA
VirtualFree
VirtualAlloc
InterlockedPushEntrySList
GetFileAttributesA
ExitThread
InterlockedPopEntrySList
EncodePointer
GetStartupInfoW
GetCurrentDirectoryA
GetSystemTimeAsFileTime
InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SleepConditionVariableSRW
user32
ChangeDisplaySettingsW
LoadIconW
SetCursor
MessageBoxA
EndPaint
BeginPaint
GetForegroundWindow
PeekMessageW
DispatchMessageW
TranslateMessage
SetWindowTextW
SetCursorPos
SetWindowLongW
AdjustWindowRectEx
InvalidateRect
GetAsyncKeyState
GetMenuBarInfo
EnumChildWindows
SetActiveWindow
GetActiveWindow
IsWindow
UnregisterClassW
IntersectRect
GetClassNameW
FindWindowW
GetWindowLongW
GetWindowTextW
IsWindowEnabled
GetCapture
IsIconic
IsWindowVisible
SetWindowPos
ShowWindow
GetClientRect
PostMessageW
ClientToScreen
GetKeyState
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
ScreenToClient
GetCursorPos
PostQuitMessage
EnumWindows
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
FindWindowA
PtInRect
IsRectEmpty
GetWindowRect
GetWindow
GetWindowThreadProcessId
GetTopWindow
GetClassNameA
GetWindowTextA
GetGUIThreadInfo
SetCapture
ReleaseCapture
wsprintfW
DefWindowProcW
RegisterClassExW
CreateWindowExW
SetRect
MoveWindow
GetSystemMetrics
UpdateWindow
SetForegroundWindow
AdjustWindowRect
LoadCursorW
MessageBoxW
RegisterWindowMessageW
GetMessageW
CallWindowProcW
GetClassInfoExW
IsChild
DestroyWindow
GetDlgItem
CharNextW
SetFocus
GetFocus
keybd_event
SetTimer
KillTimer
CreateAcceleratorTableW
DestroyAcceleratorTable
GetDC
InvalidateRgn
RedrawWindow
GetWindowTextLengthW
GetSysColor
FillRect
SetWindowLongA
GetDesktopWindow
GetParent
GetAncestor
IsZoomed
LoadCursorFromFileA
DestroyCursor
RegisterClipboardFormatW
WindowFromDC
CreateWindowExA
EnumThreadWindows
GetWindowDC
IsWindowUnicode
SetCaretPos
GetClipboardData
EnumDisplaySettingsW
SendMessageW
CreateCaret
GetKeyboardLayout
ReleaseDC
gdi32
ExtTextOutW
CreateDIBSection
SetTextAlign
SetTextColor
SetBkColor
GetObjectW
SelectObject
GetDeviceCaps
DeleteObject
DeleteDC
CreateSolidBrush
CreateFontW
CreateCompatibleBitmap
GetStockObject
BitBlt
SetPixel
TextOutA
GetTextExtentPoint32W
GetDIBits
CreateFontIndirectW
PtInRegion
CreatePolygonRgn
EnumFontFamiliesExW
GetGlyphOutlineW
CreateEllipticRgn
CreateCompatibleDC
SetMapMode
advapi32
CloseServiceHandle
OpenProcessToken
OpenThreadToken
AdjustTokenPrivileges
LookupPrivilegeValueW
GetUserNameW
CreateServiceA
DeleteService
OpenSCManagerW
OpenServiceA
StartServiceW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegSetValueExW
shell32
ShellExecuteExA
Shell_NotifyIconW
ShellExecuteW
SHOpenFolderAndSelectItems
ole32
CoGetClassObject
CreateStreamOnHGlobal
CLSIDFromString
CoInitialize
CoUninitialize
OleLockRunning
CoCreateInstance
CLSIDFromProgID
StringFromGUID2
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
OleInitialize
OleUninitialize
PropVariantClear
oleaut32
SysFreeString
DispCallFunc
LoadRegTypeLi
LoadTypeLi
VarUI4FromStr
VariantCopy
VariantClear
VariantInit
SysStringLen
SysAllocStringLen
SysAllocString
OleCreateFontIndirect
elementskill
?SetLevel@ElementSkill@GNET@@SAHIH@Z
?SetAbility@ElementSkill@GNET@@SAHIH@Z
?GetComboSkActivated@ElementSkill@GNET@@SAXABUComboSkillState@2@AAV?$vector@U?$pair@IH@std@@V?$allocator@U?$pair@IH@std@@@2@@std@@@Z
?Condition@ElementSkill@GNET@@SAHIAAUUseRequirement@2@H@Z
?GetVersion@ElementSkill@GNET@@SAHXZ
?LoadSkillData@ElementSkill@GNET@@SAXPAX@Z
?LearnCondition@ElementSkill@GNET@@SAHIAAULearnRequirement@2@H@Z
?NextSkill@ElementSkill@GNET@@SAII@Z
?GetInherentSkills@ElementSkill@GNET@@SAABV?$vector@IV?$allocator@I@std@@@std@@H@Z
?GetComboSkPreSkill@ElementSkill@GNET@@SAHI@Z
?InitStaticData@ElementSkill@GNET@@SAXXZ
?GoblinCondition@ElementSkill@GNET@@SAHIAAUGoblinUseRequirement@2@H@Z
?GetMaxAbility@ElementSkill@GNET@@SAHIH@Z
?GetAbility@ElementSkill@GNET@@SAHI@Z
?GetRequiredRealmLevel@ElementSkill@GNET@@SAHIH@Z
?GetRequiredLevel@ElementSkill@GNET@@SAHIH@Z
?IsOverridden@ElementSkill@GNET@@SA_NI@Z
?GetType@ElementSkill@GNET@@SADI@Z
?IsGoblinSkill@ElementSkill@GNET@@SA_NI@Z
?Query@TeamState@GNET@@SAPBV12@H@Z
?GetRequiredMoney@ElementSkill@GNET@@SAHIH@Z
?GetRequiredSp@ElementSkill@GNET@@SAHIH@Z
?GetAbilityPercent@ElementSkill@GNET@@SAHI@Z
?Create@ElementSkill@GNET@@SAPAV12@IH@Z
?Destroy@ElementSkill@GNET@@QAEXXZ
?GetIcon@ElementSkill@GNET@@SAPBDI@Z
?GoblinLearn@ElementSkill@GNET@@SAHIAAUGoblinRequirement@2@H@Z
?GetEffect@ElementSkill@GNET@@SAPBDI@Z
?Query@VisibleState@GNET@@SAPBV12@HH@Z
?GetName@ElementSkill@GNET@@SAPB_WI@Z
?GetCommonCoolDown@ElementSkill@GNET@@SAHI@Z
?GetExecuteTime@ElementSkill@GNET@@SAHIH@Z
?GetRequiredBook@ElementSkill@GNET@@SAHIH@Z
?GetNativeName@ElementSkill@GNET@@SAPBDI@Z
?PetLearn@ElementSkill@GNET@@SAHIAAUPetRequirement@2@H@Z
?IsMovingSkill@ElementSkill@GNET@@SA_NI@Z
msvcp140
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPB_W_J@Z
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEPAV12@PA_W_J@Z
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEXABVlocale@2@@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE_W_W@Z
?fill@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBE_WXZ
?rdbuf@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_streambuf@_WU?$char_traits@_W@std@@@2@XZ
?tie@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QBEPAV?$basic_ostream@_WU?$char_traits@_W@std@@@2@XZ
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEPA_WXZ
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?setp@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W0@Z
?epptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?setg@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXPA_W00@Z
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEXH@Z
?egptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?pbase@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?eback@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IBEPA_WXZ
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAE_JPB_W_J@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?width@ios_base@std@@QAE_J_J@Z
?width@ios_base@std@@QBE_JXZ
?setf@ios_base@std@@QAEHHH@Z
?setf@ios_base@std@@QAEHH@Z
?good@ios_base@std@@QBE_NXZ
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?widen@?$ctype@_W@std@@QBE_WD@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
??Bid@locale@std@@QAEIXZ
?_W_Getmonths@_Locinfo@std@@QBEPBGXZ
?_W_Getdays@_Locinfo@std@@QBEPBGXZ
?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ
_Mbrtowc
?uncaught_exception@std@@YA_NXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xbad_alloc@std@@YAXXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Xlength_error@std@@YAXPBD@Z
_Mtx_destroy_in_situ
_Mtx_init_in_situ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?flags@ios_base@std@@QBEHXZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
_Mtx_lock
_Mtx_unlock
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Cnd_wait
_Cnd_broadcast
_Cnd_signal
_Cnd_register_at_thread_exit
_Cnd_unregister_at_thread_exit
?_Throw_Cpp_error@std@@YAXH@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAEGXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAEXXZ
?id@?$ctype@_W@std@@2V0locale@2@A
?always_noconv@codecvt_base@std@@QBE_NXZ
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_function_call@std@@YAXXZ
_Thrd_join
_Thrd_id
_Cnd_do_broadcast_at_thread_exit
??Bios_base@std@@QBE_NXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
_Xtime_get_ticks
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
_Thrd_hardware_concurrency
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MAE_JPA_W_J@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Pnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBE_JXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAPAD0PAH001@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
iphlpapi
GetAdaptersAddresses
mpg123
mpg123_decode
mpg123_init
mpg123_new
mpg123_close
mpg123_open_feed
mpg123_format
mpg123_format_none
mpg123_strerror
urlmon
URLDownloadToFileW
opus
opus_encode
opus_encoder_create
opus_decoder_create
opus_decode
vcruntime140
memcpy
__CxxFrameHandler3
strrchr
__std_terminate
strstr
strchr
_setjmp3
__std_exception_copy
__std_type_info_destroy_list
_except_handler4_common
memset
__current_exception_context
__current_exception
longjmp
__std_type_info_name
wcschr
wcsrchr
wcsstr
_local_unwind4
memchr
memmove
__RTDynamicCast
__std_exception_destroy
_CxxThrowException
_purecall
api-ms-win-crt-utility-l1-1-0
rand
qsort
srand
api-ms-win-crt-math-l1-1-0
_libm_sse2_exp_precise
_libm_sse2_log_precise
_libm_sse2_asin_precise
_libm_sse2_cos_precise
_CIfmod
_libm_sse2_acos_precise
modf
ldexp
_except1
_CIatan2
_libm_sse2_sqrt_precise
__libm_sse2_log10
frexp
_libm_sse2_atan_precise
__setusermatherr
__libm_sse2_exp
ceil
_libm_sse2_log10_precise
_CIcosh
_libm_sse2_pow_precise
_CIsinh
_libm_sse2_tan_precise
_CItanh
_isnan
__libm_sse2_asin
__libm_sse2_atan2
__libm_sse2_cos
__libm_sse2_sinf
floor
__libm_sse2_pow
_libm_sse2_sin_precise
__libm_sse2_asinf
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_sin
__libm_sse2_log
__libm_sse2_atan
__libm_sse2_tan
__libm_sse2_cosf
__libm_sse2_tanf
__libm_sse2_powf
api-ms-win-crt-stdio-l1-1-0
fputc
fgetpos
fgetc
__stdio_common_vswprintf_s
_set_fmode
feof
_get_stream_buffer_pointers
__stdio_common_vswprintf
ftell
fgetws
__p__commode
fgetwc
fseek
__stdio_common_vfprintf
getc
ferror
freopen
__acrt_iob_func
fgets
_chsize
fread
_fileno
fflush
tmpnam
fopen
__stdio_common_vfwprintf
__stdio_common_vswscanf
fwrite
__stdio_common_vsscanf
clearerr
__stdio_common_vsprintf
_pclose
_popen
fclose
__stdio_common_vfscanf
tmpfile
fputs
ungetc
setvbuf
_fseeki64
fsetpos
api-ms-win-crt-time-l1-1-0
asctime
_gmtime64
_localtime32
_time32
_gmtime32
_localtime32_s
_localtime64
_mktime32
strftime
_mktime64
clock
_difftime64
_time64
api-ms-win-crt-string-l1-1-0
strncpy
strcpy_s
_strnicmp
_strupr
islower
ispunct
isxdigit
isupper
toupper
strpbrk
_wcsicmp
_strlwr
_wcslwr
strtok
strcspn
isspace
wcscspn
wcsncmp
tolower
isdigit
iswdigit
strcoll
_stricmp
wcsncat
strncat
isalpha
wcsncpy
strncmp
isalnum
iscntrl
_strdup
wcsncpy_s
_wcsupr
api-ms-win-crt-filesystem-l1-1-0
_stat32
_lock_file
_splitpath
_rmdir
_findfirst32
_findnext32
_findclose
_mkdir
rename
_findnext64i32
_wremove
_findfirst64i32
_unlock_file
_stat64i32
remove
_fstat64i32
_access
api-ms-win-crt-convert-l1-1-0
atof
strtoul
strtol
strtod
_itoa
_wtoi
atol
_itow
atoi
api-ms-win-crt-runtime-l1-1-0
system
_beginthreadex
_beginthread
_invalid_parameter_noinfo_noreturn
_cexit
_controlfp_s
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
strerror
_seh_filter_dll
terminate
abort
exit
_register_thread_local_exe_atexit_callback
_c_exit
_exit
_initterm_e
perror
_initterm
_resetstkoflw
_get_wide_winmain_command_line
_errno
_initialize_wide_environment
_seh_filter_exe
_set_app_type
_invalid_parameter_noinfo
_configure_wide_argv
api-ms-win-crt-heap-l1-1-0
calloc
_recalloc
_set_new_mode
_callnewh
malloc
realloc
free
api-ms-win-crt-locale-l1-1-0
setlocale
_configthreadlocale
localeconv
glu32
gluTessEndPolygon
gluTessEndContour
gluTessCallback
gluTessBeginContour
gluTessBeginPolygon
gluDeleteTess
gluTessVertex
gluTessProperty
gluNewTess
dsound
ord11
ftdriver
?CreateFTManager@@YAPAVIFTManager@@HHH@Z
api-ms-win-crt-environment-l1-1-0
getenv
Sections
.text Size: 10.3MB - Virtual size: 10.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 218KB - Virtual size: 422KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 146KB - Virtual size: 146KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 583KB - Virtual size: 582KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ