Static | ZeroBOX

Name	Virtual Address	Virtual Size	Size of Raw Data	Entropy
.text	0x00001000	0x0000cc5d	0x0000ce00	6.43860587575
.rdata	0x0000e000	0x00002572	0x00002600	5.69608581722
.data	0x00011000	0x00000f60	0x00000c00	1.40829080982
.reloc	0x00012000	0x000007f8	0x00000800	6.65052958748

!This program cannot be run in DOS mode.

`.rdata

@.data

.reloc

uS;W<sN

G4;F|r

)D$DPj

t"hTA

URPQQh

UQPXY]Y[

~$+~8+

G1^[<gt

~[Sj0W

`h````

xpxxxx

(null)

__setusermatherr

CorExitProcess

!"#$%&'()*+,-./0123456789:;<=>?@abcdefghijklmnopqrstuvwxyz[\]^_`abcdefghijklmnopqrstuvwxyz{|}~

!"#$%&'()*+,-./0123456789:;<=>?@ABCDEFGHIJKLMNOPQRSTUVWXYZ[\]^_`ABCDEFGHIJKLMNOPQRSTUVWXYZ{|}~

NAN(SNAN)

nan(snan)

NAN(IND)

nan(ind)

localeconv

AddDllDirectory

RtlWow64EnableFsRedirectionEx

[aOni*{

~ $s%r

@b;zO]

v2!L.2

1#QNAN

1#SNAN

P?::::::::::::::::

.text$mn

.text$x

.idata$5

.00cfg

.CRT$XCA

.CRT$XCAA

.CRT$XCZ

.CRT$XIA

.CRT$XIAA

.CRT$XIAC

.CRT$XIZ

.CRT$XLA

.CRT$XLZ

.CRT$XPA

.CRT$XPZ

.CRT$XTA

.CRT$XTZ

.YYLT2$IFA

.YYLT2$IFB

.YYLT2$IFC

.rdata

.rdata$T

.rdata$sxdata

.rdata$voltmd

.rdata$zzzdbg

.rtc$IAA

.rtc$IZZ

.rtc$TAA

.rtc$TZZ

.tls$ZZZ

.xdata$x

.idata$2

.idata$3

.idata$4

.idata$6

.YYLT1$DAA

.YYLT1$DAB

.YYLT1$DAC

VirtualFree

WriteFile

VirtualAlloc

WaitForSingleObject

CreateFileW

GetLastError

lstrcatW

CloseHandle

GetNativeSystemInfo

CreateThread

ExitProcess

lstrcmpiW

InitializeCriticalSection

CreateEventW

SetEvent

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

IsBadReadPtr

CancelIo

WaitForMultipleObjects

ExitThread

KERNEL32.dll

ShellExecuteW

SHELL32.dll

WSAEnumNetworkEvents

WSAWaitForMultipleEvents

WSAEventSelect

WSACreateEvent

WSAGetOverlappedResult

WSARecv

getaddrinfo

WSASocketW

WSASend

WSAIoctl

WS2_32.dll

timeGetTime

WINMM.dll

memset

_amsg_exit

msvcrt.dll

malloc

_initterm

__p__commode

_errno

__pctype_func

tolower

strtol

_XcptFilter

__set_app_type

__wgetmainargs

_wcmdln

_fmode

___lc_handle_func

?_set_new_mode@@YAHH@Z

_msize

_control87

?terminate@@YAXXZ

___lc_codepage_func

_CIlog10

realloc

_clearfp

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

QueryPerformanceCounter

GetCurrentProcessId

GetCurrentThreadId

GetSystemTimeAsFileTime

InitializeSListHead

IsDebuggerPresent

GetStartupInfoW

GetModuleHandleW

VirtualQuery

RtlUnwind

FreeLibrary

GetModuleHandleExW

GetProcAddress

MultiByteToWideChar

WideCharToMultiByte

memcpy

strrchr

memmove

__CxxFrameHandler

::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

%n:y:j:::::

D::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::

D::::::::::::::::::::::::::::::::::::::::::::::::::::::::w:S:Y:H:U:I:U:\:N:

:^:]:_:

:o:J:^:[:N:_:n:[:I:Q:::::::::::::::::::::::::::::::::::::::::::::::::::::w:S:Y:H:U:I:U:\:N:

:^:]:_:o:J:^:[:N:_:n:[:I:Q:w:[:Y:R:S:T:_:y:U:H:_:::::::::::::::::::::::::::::::::w:S:Y:H:U:I:U:\:N:

:^:]:_:o:J:^:[:N:_:n:[:I:Q:w:[:Y:R:S:T:_:y:U:H:_::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::M:S:T:^:S:H::f:I:C:I:N:_:W:

:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::W:J:Y:V:S:_:T:N:

:_:B:_:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::W:J:Y:V:S:_:T:N:

:^:V:V:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::W:J:Y:V:S:_:T:N:

:^:[:N:::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::::;:::Z

1,3W3r3

4+464Z4

:':@:F:W:

<2=m=]>

0000;0k0}0

:7:I:l:r:

<M<_<p<{<

>#>5>l>

13292K2x2

324G4\4|4

6'7N7T7s7

7$8C8I8f8

9#9_9}9

:<:H:Z:r:

="><>e>s>

>_?e?k?

5A5S5`5f5q5}5

7$7=7L7

8!9S9}9

:e;l;s;z;

<*<;<F<m<y<

> >'>.>5>?>F>M>T>[>

?0?X?d?v?

0)1>1C1H1i1n1{1

3#3+373@3E3K3U3_3o3

3%4X4~4

6!6.6D6~6

9$989=9P9q9

;;(;1;:;@;F;[;g;m;s;

<"<(<2<8<A<G<O<T<h<m<

0*111c1l1

2;7J7i7c8j8

<0@0D0H0L0P0T0X0\0`0d0h0

6 6$6(6

7&7,727I7[7a7

768;8M8i8q8

979H9^9g9

93:::J:f:s:

<5<G<Y<x<

1*131D1}1

1A2K2b2

5 555;5D5

474=4B4

8"838?8Q8c8q8w8

9$9+94999F9M9U9b9k9s9

9m:s:y:

=F>K>i>

:/<7<O<Y<

5&6+6=6[6o6u62:

L2P2X2

2@3D3H3L3

<$=(=H=h=

(null)

mscoree.dll

msvcrt.dll

@advapi32

kernel32

yntdll

C:\Windows\Temp\

Static Analysis

PE Compile Time

PE Imphash

Sections

Imports