Static task
static1
General
-
Target
RQ25YU51NQ.exe
-
Size
9.6MB
-
MD5
78a14ff7ed23db9cd13d87bb5849aff3
-
SHA1
e069d98ff6c3189733db707e904615547aedc423
-
SHA256
0086298714f0540bb556155e4e00964cfb68f9f168b8ad79b065df64a97c2b58
-
SHA512
72bc2b1d9dda3d249852d3c01dfd1d28e775ce42e30c0ce0f8b4869d33673ffae55815316da10f923c580839d628b6bd2352c6f5a71f58df58161869375724b7
-
SSDEEP
196608:N6EvmBOo4E3o9B9El0WxP+A222fAN1qeR:0vt++VINlr
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource RQ25YU51NQ.exe
Files
-
RQ25YU51NQ.exe.exe windows:6 windows x64 arch:x64
Password: d
ca6fea5d68c2bdf3bd118dd7c76c5ac4
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
d3d11
D3D11CreateDeviceAndSwapChain
D3D11CreateDevice
opencv_world470
??1Device@ocl@cv@@QEAA@XZ
?name@Device@ocl@cv@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?type@Device@ocl@cv@@QEBAHXZ
?getPlatfomsInfo@ocl@cv@@YAXAEAV?$vector@VPlatformInfo@ocl@cv@@V?$allocator@VPlatformInfo@ocl@cv@@@std@@@std@@@Z
?haveOpenCL@ocl@cv@@YA_NXZ
?setUseOpenCL@ocl@cv@@YAX_N@Z
?getCudaEnabledDeviceCount@cuda@cv@@YAHXZ
?name@PlatformInfo@ocl@cv@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?deviceNumber@PlatformInfo@ocl@cv@@QEBAHXZ
?getDevice@PlatformInfo@ocl@cv@@QEBAXAEAVDevice@23@H@Z
??0Net@dnn4_v20221220@dnn@cv@@QEAA@XZ
?getBuildInformation@cv@@YAAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
??0Device@ocl@cv@@QEAA@XZ
?waitKey@cv@@YAHH@Z
?format@cv@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBDZZ
?minMaxLoc@cv@@YAXAEBV_InputArray@1@PEAN1PEAV?$Point_@H@1@20@Z
?rectangle@cv@@YAXAEBV_InputOutputArray@1@V?$Point_@H@1@1AEBV?$Scalar_@N@1@HHH@Z
?blobFromImage@dnn4_v20221220@dnn@cv@@YA?AVMat@3@AEBV_InputArray@3@NAEBV?$Size_@H@3@AEBV?$Scalar_@N@3@_N3H@Z
?readNetFromDarknet@dnn4_v20221220@dnn@cv@@YA?AVNet@123@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?NMSBoxes@dnn4_v20221220@dnn@cv@@YAXAEBV?$vector@V?$Rect_@H@cv@@V?$allocator@V?$Rect_@H@cv@@@std@@@std@@AEBV?$vector@MV?$allocator@M@std@@@5@MMAEAV?$vector@HV?$allocator@H@std@@@5@MH@Z
??1Net@dnn4_v20221220@dnn@cv@@QEAA@XZ
?empty@Net@dnn4_v20221220@dnn@cv@@QEBA_NXZ
?getLayerNames@Net@dnn4_v20221220@dnn@cv@@QEBA?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?forward@Net@dnn4_v20221220@dnn@cv@@QEAAXAEBV_OutputArray@4@AEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?setPreferableBackend@Net@dnn4_v20221220@dnn@cv@@QEAAXH@Z
?setPreferableTarget@Net@dnn4_v20221220@dnn@cv@@QEAAXH@Z
?setInput@Net@dnn4_v20221220@dnn@cv@@QEAAXAEBV_InputArray@4@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@NAEBV?$Scalar_@N@4@@Z
?getUnconnectedOutLayers@Net@dnn4_v20221220@dnn@cv@@QEBA?AV?$vector@HV?$allocator@H@std@@@std@@XZ
??0Exception@cv@@QEAA@HAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@00H@Z
??1Exception@cv@@UEAA@XZ
?what@Exception@cv@@UEBAPEBDXZ
?putText@cv@@YAXAEBV_InputOutputArray@1@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$Point_@H@1@HNV?$Scalar_@N@1@HH_N@Z
?noArray@cv@@YAAEBV_InputOutputArray@1@XZ
?destroyWindow@cv@@YAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0Mat@cv@@QEAA@AEBV01@AEBVRange@1@1@Z
?imshow@cv@@YAXAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV_InputArray@1@@Z
?cvtColor@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@HH@Z
??0Mat@cv@@QEAA@AEBV01@AEBV?$Rect_@H@1@@Z
??0Mat@cv@@QEAA@HHHPEAX_K@Z
??4Mat@cv@@QEAAAEAV01@$$QEAV01@@Z
?empty@Mat@cv@@QEBA_NXZ
??0Mat@cv@@QEAA@$$QEAV01@@Z
??0Mat@cv@@QEAA@HHH@Z
??0Mat@cv@@QEAA@XZ
??1Mat@cv@@QEAA@XZ
?release@Mat@cv@@QEAAXXZ
??1PlatformInfo@ocl@cv@@QEAA@XZ
d3dcompiler_47
D3DCompile
dxgi
CreateDXGIFactory1
hidapi
hid_init
hid_close
hid_read_timeout
hid_write
hid_free_enumeration
hid_open_path
hid_enumerate
sdl2
SDL_GameControllerOpen
SDL_IsGameController
SDL_SetMainReady
SDL_iconv_string
SDL_strlen
SDL_wcslen
SDL_memcpy
SDL_free
SDL_GameControllerGetJoystick
SDL_ShowSimpleMessageBox
SDL_GameControllerGetAxis
SDL_GameControllerName
SDL_GameControllerGetAttached
SDL_GameControllerClose
SDL_Quit
SDL_JoystickInstanceID
SDL_Init
SDL_NumJoysticks
SDL_GetError
kernel32
GlobalAlloc
GlobalFree
GlobalLock
WideCharToMultiByte
GlobalUnlock
GetModuleHandleA
GetLocaleInfoA
LoadLibraryA
QueryPerformanceFrequency
GetProcAddress
VerSetConditionMask
FreeLibrary
QueryPerformanceCounter
GetModuleFileNameA
GetLastError
Sleep
GetCurrentThread
Beep
GetModuleHandleW
GetConsoleWindow
LoadLibraryW
SetLastError
GetCommandLineW
GetCurrentProcess
OpenProcess
CreateToolhelp32Snapshot
Process32NextW
Process32FirstW
CloseHandle
ExitProcess
LocalFree
CreateProcessA
GetLocaleInfoEx
GetModuleFileNameW
ReleaseSRWLockExclusive
CreateFileW
ReadFile
WakeAllConditionVariable
PeekNamedPipe
WaitNamedPipeW
GetCurrentProcessId
SleepConditionVariableSRW
IsDebuggerPresent
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetFileSizeEx
CreateFileA
SetFileInformationByHandle
AreFileApisANSI
GetFileInformationByHandleEx
InitOnceComplete
InitOnceBeginInitialize
OutputDebugStringW
MultiByteToWideChar
WriteFile
GetCurrentDirectoryW
CreateDirectoryW
FindClose
AcquireSRWLockExclusive
WaitForMultipleObjects
GetFileType
lstrlenW
FindFirstFileW
FindFirstFileExW
FindNextFileW
GetFileAttributesExW
GetStdHandle
EnterCriticalSection
LeaveCriticalSection
SleepEx
GetSystemDirectoryA
VerifyVersionInfoA
GetTickCount
MoveFileExA
WaitForSingleObjectEx
GetFileAttributesA
GetEnvironmentVariableA
QueryFullProcessImageNameW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
VirtualProtect
CreateThread
DeleteCriticalSection
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetStartupInfoW
FormatMessageA
user32
SetWindowPos
GetWindowRect
DefWindowProcW
SetWindowLongW
SetClipboardData
GetClipboardData
EmptyClipboard
CloseClipboard
OpenClipboard
GetCursorPos
ReleaseDC
SetCursorPos
ReleaseCapture
IsWindowUnicode
PostQuitMessage
GetClientRect
SetCursor
CreateWindowExW
GetSystemMetrics
SetCapture
LoadCursorW
GetForegroundWindow
GetKeyboardLayout
TrackMouseEvent
ClientToScreen
UpdateWindow
DestroyWindow
GetCapture
ScreenToClient
GetDC
GetMessageExtraInfo
GetKeyState
GetAsyncKeyState
mouse_event
MessageBoxA
MessageBoxW
FindWindowA
TranslateMessage
UnregisterClassW
RegisterClassExW
ShowWindow
DispatchMessageW
PeekMessageW
gdi32
DeleteObject
DeleteDC
GetDIBits
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
BitBlt
advapi32
RegSetValueExW
RegCloseKey
AllocateAndInitializeSid
FreeSid
CheckTokenMembership
RegOpenKeyExW
RegQueryValueExW
LookupPrivilegeValueW
RevertToSelf
PrivilegeCheck
SetTokenInformation
OpenProcessToken
SetThreadToken
CreateProcessAsUserW
DuplicateTokenEx
GetTokenInformation
RegCreateKeyExW
AddAccessAllowedAce
GetLengthSid
InitializeAcl
IsValidSid
SetSecurityInfo
CopySid
ConvertSidToStringSidA
CryptAcquireContextA
CryptEncrypt
CryptImportKey
CryptDestroyKey
CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGenRandom
CryptGetHashParam
CryptReleaseContext
shell32
CommandLineToArgvW
ShellExecuteA
ole32
CoUninitialize
CoCreateInstance
CoSetProxyBlanket
CoInitializeSecurity
CoInitializeEx
oleaut32
SysAllocString
SysFreeString
VariantClear
imm32
ImmReleaseContext
ImmSetCandidateWindow
ImmGetContext
ImmSetCompositionWindow
dwmapi
DwmExtendFrameIntoClientArea
msvcp140
_Thrd_start
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAADD@Z
_Mtx_destroy
_Mtx_init_in_situ
_Mtx_destroy_in_situ
_Mtx_current_owns
_Cnd_init
_Cnd_destroy
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?swap@?$basic_istream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
?swap@?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAXAEAV12@@Z
_Cnd_timedwait
_Cnd_signal
?_Throw_C_error@std@@YAXH@Z
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
??7ios_base@std@@QEBA_NXZ
?setf@ios_base@std@@QEAAHHH@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
_Mtx_init
?id@?$ctype@D@std@@2V0locale@2@A
?_Xlength_error@std@@YAXPEBD@Z
_Query_perf_frequency
?_Xbad_alloc@std@@YAXXZ
_Query_perf_counter
??1_Lockit@std@@QEAA@XZ
??0_Lockit@std@@QEAA@H@Z
?uncaught_exceptions@std@@YAHXZ
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?_Xout_of_range@std@@YAXPEBD@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
_Xtime_get_ticks
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ
?width@ios_base@std@@QEAA_J_J@Z
?width@ios_base@std@@QEBA_JXZ
?good@ios_base@std@@QEBA_NXZ
??Bid@locale@std@@QEAA_KXZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEAD1AEAPEAD@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QEBAHAEAU_Mbstatet@@PEBD1AEAPEBDPEAD3AEAPEAD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??Bios_base@std@@QEBA_NXZ
?always_noconv@codecvt_base@std@@QEBA_NXZ
?_Throw_Cpp_error@std@@YAXH@Z
?_Xinvalid_argument@std@@YAXPEBD@Z
_Cnd_do_broadcast_at_thread_exit
_Thrd_id
_Thrd_join
?__ExceptionPtrAssign@@YAXPEAXPEBX@Z
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?_Schedule_chore@details@Concurrency@@YAHPEAU_Threadpool_chore@12@@Z
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QEAAX_N@Z
?_Release_chore@details@Concurrency@@YAXPEAU_Threadpool_chore@12@@Z
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ
?_Reset@_ContextCallback@details@Concurrency@@AEAAXXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z
??0task_continuation_context@Concurrency@@AEAA@XZ
_Cnd_unregister_at_thread_exit
?__ExceptionPtrCreate@@YAXPEAX@Z
_Cnd_init_in_situ
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?_Winerror_map@std@@YAHH@Z
?_Xbad_function_call@std@@YAXXZ
?_Random_device@std@@YAIXZ
?_Syserror_map@std@@YAPEBDH@Z
?__ExceptionPtrToBool@@YA_NPEBX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
_Mtx_lock
?__ExceptionPtrCurrentException@@YAXPEAX@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
_Cnd_register_at_thread_exit
_Cnd_wait
_Thrd_detach
_Mtx_unlock
_Cnd_broadcast
_Cnd_destroy_in_situ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEAD_J@Z
?fail@ios_base@std@@QEBA_NXZ
ws2_32
ntohs
sendto
htons
recvfrom
socket
gethostname
freeaddrinfo
getaddrinfo
inet_addr
select
__WSAFDIsSet
WSAStartup
ioctlsocket
listen
closesocket
htonl
bind
accept
WSAIoctl
WSASetLastError
setsockopt
ntohl
getsockopt
getsockname
WSACleanup
recv
getpeername
connect
WSAGetLastError
send
xinput1_4
ord2
ord7
iphlpapi
GetAdaptersInfo
wininet
InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle
normaliz
IdnToAscii
wldap32
ord60
ord46
ord50
ord41
ord22
ord26
ord27
ord32
ord33
ord35
ord79
ord30
ord200
ord301
ord217
ord143
ord211
ord45
crypt32
CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringA
CertFindExtension
CertAddCertificateContextToStore
CertFreeCertificateContext
CertOpenStore
CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
PFXImportCertStore
CryptStringToBinaryA
CryptDecodeObjectEx
shlwapi
PathFindFileNameW
rpcrt4
UuidToStringA
UuidCreate
RpcStringFreeA
psapi
GetModuleInformation
userenv
UnloadUserProfile
vcruntime140
__current_exception
__C_specific_handler
strrchr
memchr
_CxxThrowException
memmove
memset
memcmp
__CxxFrameHandler3
__std_exception_copy
__std_exception_destroy
strchr
strstr
__std_terminate
_purecall
__current_exception_context
memcpy
vcruntime140_1
__CxxFrameHandler4
api-ms-win-crt-stdio-l1-1-0
fputc
__acrt_iob_func
fflush
fwrite
_wfopen
fputs
_close
fclose
__stdio_common_vsprintf
_write
__stdio_common_vswprintf
fgetc
_popen
fgets
_pclose
fgetpos
setvbuf
feof
_read
fseek
__stdio_common_vfprintf
fopen
__p__commode
ungetc
ftell
_lseeki64
_set_fmode
fread
_open
_get_stream_buffer_pointers
_fseeki64
fsetpos
__stdio_common_vsscanf
api-ms-win-crt-utility-l1-1-0
rand
srand
qsort
api-ms-win-crt-string-l1-1-0
strcmp
_wcsicmp
tolower
strpbrk
_strdup
strspn
strcspn
isupper
strncmp
strcpy_s
strncpy
api-ms-win-crt-heap-l1-1-0
free
realloc
_callnewh
_set_new_mode
malloc
calloc
api-ms-win-crt-convert-l1-1-0
strtoull
strtoll
atoi
_wtoll
strtod
atof
strtoul
strtol
api-ms-win-crt-runtime-l1-1-0
_invalid_parameter_noinfo_noreturn
_invalid_parameter_noinfo
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_cexit
_seh_filter_exe
_set_app_type
_getpid
_get_initial_narrow_environment
_initterm
_initterm_e
_exit
_errno
__p___argc
__p___argv
_c_exit
_register_thread_local_exe_atexit_callback
exit
abort
quick_exit
terminate
system
strerror
__sys_nerr
_resetstkoflw
_beginthreadex
api-ms-win-crt-time-l1-1-0
_localtime64_s
_time64
_localtime64
_difftime64
strftime
_gmtime64
api-ms-win-crt-filesystem-l1-1-0
_lock_file
_fstat64
_unlock_file
_unlink
_access
_stat64
api-ms-win-crt-math-l1-1-0
_dsign
ceil
log2
sqrt
_dclass
sinf
powf
fmodf
cosf
ldexp
ceilf
atan2f
acosf
__setusermatherr
sqrtf
api-ms-win-crt-environment-l1-1-0
getenv
api-ms-win-crt-locale-l1-1-0
___lc_codepage_func
_configthreadlocale
localeconv
Sections
.text Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 446KB - Virtual size: 446KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3.8MB - Virtual size: 4.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.0Dev Size: 3.9MB - Virtual size: 3.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ