ScreenShot
| Created | 2023.04.16 16:20 | Machine | s1_win7_x6403 |
| Filename | build-0x739.exe | ||
| Type | PE32+ executable (GUI) x86-64, for MS Windows | ||
| AI Score |
|
Behavior Score |
|
| ZERO API | file : malware | ||
| VT API (file) | 43 detected (Stelega, GenericKD, Artemis, unsafe, V62k, malicious, confidence, 100%, ABRisk, LWEA, Attribute, HighConfidence, high confidence, score, QQPass, QQRob, Dnhl, yiivp, Sabsik, Wacatac, Detected, R550345, ai score=87, R002H0DDE23, Luca, CLASSIC) | ||
| md5 | 59f7602b250387b31bfc481f3efb9517 | ||
| sha256 | 49771182f73d733abe396700d5f30b1f0b29f94044b0c8158a5c3a4564305523 | ||
| ssdeep | 49152:deFHZuHw5+sQ/A+g+aOxadb6wq0RxyU24hkpBFwzpJKl4OLHMqEPeYc70Kjvw0:deMa+RsL5VxObM/Kjvw0 | ||
| imphash | e150b9efb9d2a6e9763fe1ee5bd9c0e4 | ||
| impfuzzy | 96:otHAXP0r1herxcms4ZaKav5fcg+PdWKOeRWPbH1cHhUWiaCNrd9B0xpjeJ:olA/0mZs4ZaKaOWMWDKH6WCPuxpjeJ | ||
Network IP location
Signature (1cnts)
| Level | Description |
|---|---|
| danger | File has been identified by 43 AntiVirus engines on VirusTotal as malicious |
Rules (8cnts)
| Level | Name | Description | Collection |
|---|---|---|---|
| warning | Generic_Malware_Zero | Generic Malware | binaries (upload) |
| watch | Antivirus | Contains references to security software | binaries (upload) |
| watch | Malicious_Library_Zero | Malicious_Library | binaries (upload) |
| watch | Malicious_Packer_Zero | Malicious Packer | binaries (upload) |
| watch | UPX_Zero | UPX packed file | binaries (upload) |
| info | IsPE64 | (no description) | binaries (upload) |
| info | OS_Processor_Check_Zero | OS Processor Check | binaries (upload) |
| info | PE_Header_Zero | PE File Signature | binaries (upload) |
Network (0cnts) ?
| Request | CC | ASN Co | IP4 | Rule ? | ZERO ? |
|---|
Suricata ids
PE API
IAT(Import Address Table) Library
oleaut32.dll
0x14028e7a8 SysFreeString
0x14028e7b0 SafeArrayUnaccessData
0x14028e7b8 SysAllocStringLen
0x14028e7c0 SafeArrayGetUBound
0x14028e7c8 SafeArrayGetLBound
0x14028e7d0 VariantClear
0x14028e7d8 SafeArrayAccessData
0x14028e7e0 SafeArrayDestroy
kernel32.dll
0x14028e2f0 SetThreadStackGuarantee
0x14028e2f8 AddVectoredExceptionHandler
0x14028e300 GlobalFree
0x14028e308 SetHandleInformation
0x14028e310 GlobalAlloc
0x14028e318 Sleep
0x14028e320 GetModuleHandleA
0x14028e328 GetProcAddress
0x14028e330 GetCurrentThread
0x14028e338 GetStdHandle
0x14028e340 GetConsoleMode
0x14028e348 WriteConsoleW
0x14028e350 WaitForSingleObjectEx
0x14028e358 LoadLibraryA
0x14028e360 CreateMutexA
0x14028e368 GetCurrentProcess
0x14028e370 ReleaseMutex
0x14028e378 GetEnvironmentVariableW
0x14028e380 RtlLookupFunctionEntry
0x14028e388 GlobalUnlock
0x14028e390 FormatMessageW
0x14028e398 GlobalLock
0x14028e3a0 GetModuleFileNameW
0x14028e3a8 CreateFileW
0x14028e3b0 GetFileInformationByHandleEx
0x14028e3b8 GetFullPathNameW
0x14028e3c0 SetFilePointerEx
0x14028e3c8 FindNextFileW
0x14028e3d0 CreateDirectoryW
0x14028e3d8 FindFirstFileW
0x14028e3e0 GlobalSize
0x14028e3e8 GetTimeZoneInformation
0x14028e3f0 SystemTimeToFileTime
0x14028e3f8 SystemTimeToTzSpecificLocalTime
0x14028e400 GetEnvironmentStringsW
0x14028e408 FreeEnvironmentStringsW
0x14028e410 CompareStringOrdinal
0x14028e418 GetSystemDirectoryW
0x14028e420 GetWindowsDirectoryW
0x14028e428 CreateProcessW
0x14028e430 GetFileAttributesW
0x14028e438 DuplicateHandle
0x14028e440 GetCurrentProcessId
0x14028e448 CreateNamedPipeW
0x14028e450 CreateThread
0x14028e458 ReadFileEx
0x14028e460 SleepEx
0x14028e468 WriteFileEx
0x14028e470 FileTimeToSystemTime
0x14028e478 CancelIo
0x14028e480 ReadFile
0x14028e488 QueryPerformanceCounter
0x14028e490 QueryPerformanceFrequency
0x14028e498 HeapAlloc
0x14028e4a0 RtlCaptureContext
0x14028e4a8 CopyFileExW
0x14028e4b0 SleepConditionVariableSRW
0x14028e4b8 WakeAllConditionVariable
0x14028e4c0 WakeConditionVariable
0x14028e4c8 PostQueuedCompletionStatus
0x14028e4d0 GetSystemTimeAsFileTime
0x14028e4d8 GetProcessHeap
0x14028e4e0 GetFileInformationByHandle
0x14028e4e8 ReleaseSRWLockExclusive
0x14028e4f0 SwitchToThread
0x14028e4f8 SetLastError
0x14028e500 GetFinalPathNameByHandleW
0x14028e508 TryAcquireSRWLockExclusive
0x14028e510 GetQueuedCompletionStatusEx
0x14028e518 UnhandledExceptionFilter
0x14028e520 ReleaseSRWLockShared
0x14028e528 RtlVirtualUnwind
0x14028e530 FlushFileBuffers
0x14028e538 GetTickCount
0x14028e540 MapViewOfFile
0x14028e548 CreateFileMappingW
0x14028e550 FormatMessageA
0x14028e558 GetSystemTime
0x14028e560 WideCharToMultiByte
0x14028e568 FreeLibrary
0x14028e570 GetFileSize
0x14028e578 LockFileEx
0x14028e580 LocalFree
0x14028e588 UnlockFile
0x14028e590 HeapDestroy
0x14028e598 HeapCompact
0x14028e5a0 LoadLibraryW
0x14028e5a8 DeleteFileW
0x14028e5b0 DeleteFileA
0x14028e5b8 CreateFileA
0x14028e5c0 FlushViewOfFile
0x14028e5c8 OutputDebugStringW
0x14028e5d0 GetFileAttributesExW
0x14028e5d8 GetFileAttributesA
0x14028e5e0 GetDiskFreeSpaceA
0x14028e5e8 GetTempPathA
0x14028e5f0 MultiByteToWideChar
0x14028e5f8 HeapSize
0x14028e600 HeapValidate
0x14028e608 UnmapViewOfFile
0x14028e610 CreateMutexW
0x14028e618 UnlockFileEx
0x14028e620 SetEndOfFile
0x14028e628 GetFullPathNameA
0x14028e630 SetFilePointer
0x14028e638 LockFile
0x14028e640 OutputDebugStringA
0x14028e648 GetDiskFreeSpaceW
0x14028e650 WriteFile
0x14028e658 HeapCreate
0x14028e660 AreFileApisANSI
0x14028e668 InitializeCriticalSection
0x14028e670 EnterCriticalSection
0x14028e678 LeaveCriticalSection
0x14028e680 TryEnterCriticalSection
0x14028e688 DeleteCriticalSection
0x14028e690 GetCurrentThreadId
0x14028e698 AcquireSRWLockShared
0x14028e6a0 CreateIoCompletionPort
0x14028e6a8 GetCurrentDirectoryW
0x14028e6b0 SetUnhandledExceptionFilter
0x14028e6b8 GetExitCodeProcess
0x14028e6c0 WaitForSingleObject
0x14028e6c8 SetFileCompletionNotificationModes
0x14028e6d0 TerminateProcess
0x14028e6d8 IsProcessorFeaturePresent
0x14028e6e0 GetOverlappedResult
0x14028e6e8 WaitForMultipleObjects
0x14028e6f0 HeapReAlloc
0x14028e6f8 GetSystemInfo
0x14028e700 GetLastError
0x14028e708 GetTempPathW
0x14028e710 FindClose
0x14028e718 CloseHandle
0x14028e720 AcquireSRWLockExclusive
0x14028e728 HeapFree
0x14028e730 InitializeSListHead
0x14028e738 IsDebuggerPresent
0x14028e740 GetModuleHandleW
0x14028e748 CreateEventW
crypt32.dll
0x14028e228 CryptUnprotectData
0x14028e230 CertEnumCertificatesInStore
0x14028e238 CertAddCertificateContextToStore
0x14028e240 CertFreeCertificateContext
0x14028e248 CertFreeCertificateChain
0x14028e250 CertVerifyCertificateChainPolicy
0x14028e258 CertDuplicateCertificateChain
0x14028e260 CertCloseStore
0x14028e268 CertGetCertificateChain
0x14028e270 CertOpenStore
0x14028e278 CertDuplicateCertificateContext
0x14028e280 CertDuplicateStore
advapi32.dll
0x14028e050 CheckTokenMembership
0x14028e058 FreeSid
0x14028e060 GetUserNameW
0x14028e068 RegCloseKey
0x14028e070 RegCreateKeyExA
0x14028e078 RegOpenKeyExW
0x14028e080 RegSetValueExA
0x14028e088 RegQueryValueExW
0x14028e090 AllocateAndInitializeSid
0x14028e098 SystemFunction036
ole32.dll
0x14028e780 CoInitializeSecurity
0x14028e788 CoCreateInstance
0x14028e790 CoSetProxyBlanket
0x14028e798 CoInitializeEx
user32.dll
0x14028e848 EnumDisplaySettingsExW
0x14028e850 OpenClipboard
0x14028e858 GetClipboardData
0x14028e860 GetMonitorInfoW
0x14028e868 CloseClipboard
0x14028e870 SetClipboardData
0x14028e878 EnumDisplayMonitors
gdi32.dll
0x14028e290 CreateDCW
0x14028e298 GetDeviceCaps
0x14028e2a0 DeleteDC
0x14028e2a8 CreateCompatibleDC
0x14028e2b0 CreateCompatibleBitmap
0x14028e2b8 SelectObject
0x14028e2c0 SetStretchBltMode
0x14028e2c8 StretchBlt
0x14028e2d0 GetDIBits
0x14028e2d8 GetObjectW
0x14028e2e0 DeleteObject
crypt.dll
0x14028e218 BCryptGenRandom
ws2_32.dll
0x14028e888 WSAStartup
0x14028e890 getaddrinfo
0x14028e898 WSAIoctl
0x14028e8a0 recv
0x14028e8a8 setsockopt
0x14028e8b0 shutdown
0x14028e8b8 getsockname
0x14028e8c0 WSAGetLastError
0x14028e8c8 getpeername
0x14028e8d0 closesocket
0x14028e8d8 ind
0x14028e8e0 WSASend
0x14028e8e8 getsockopt
0x14028e8f0 connect
0x14028e8f8 WSACleanup
0x14028e900 freeaddrinfo
0x14028e908 send
0x14028e910 WSASocketW
0x14028e918 ioctlsocket
ntdll.dll
0x14028e758 RtlNtStatusToDosError
0x14028e760 NtCreateFile
0x14028e768 NtDeviceIoControlFile
0x14028e770 NtCancelIoFileEx
secur32.dll
0x14028e7f0 DeleteSecurityContext
0x14028e7f8 FreeContextBuffer
0x14028e800 FreeCredentialsHandle
0x14028e808 EncryptMessage
0x14028e810 AcceptSecurityContext
0x14028e818 AcquireCredentialsHandleA
0x14028e820 InitializeSecurityContextW
0x14028e828 QueryContextAttributesW
0x14028e830 DecryptMessage
0x14028e838 ApplyControlToken
VCRUNTIME140.dll
0x14028e000 __current_exception_context
0x14028e008 __current_exception
0x14028e010 __C_specific_handler
0x14028e018 strrchr
0x14028e020 __CxxFrameHandler3
0x14028e028 memmove
0x14028e030 memset
0x14028e038 memcmp
0x14028e040 memcpy
api-ms-win-crt-string-l1-1-0.dll
0x14028e1c8 strncmp
0x14028e1d0 strcspn
0x14028e1d8 strlen
0x14028e1e0 strcmp
api-ms-win-crt-utility-l1-1-0.dll
0x14028e200 qsort
0x14028e208 _rotl64
api-ms-win-crt-heap-l1-1-0.dll
0x14028e0a8 malloc
0x14028e0b0 free
0x14028e0b8 realloc
0x14028e0c0 _set_new_mode
0x14028e0c8 _msize
api-ms-win-crt-time-l1-1-0.dll
0x14028e1f0 _localtime64_s
api-ms-win-crt-math-l1-1-0.dll
0x14028e0e8 log
0x14028e0f0 __setusermatherr
0x14028e0f8 _dclass
api-ms-win-crt-runtime-l1-1-0.dll
0x14028e108 _endthreadex
0x14028e110 _seh_filter_exe
0x14028e118 _set_app_type
0x14028e120 _beginthreadex
0x14028e128 _cexit
0x14028e130 _c_exit
0x14028e138 _register_thread_local_exe_atexit_callback
0x14028e140 _configure_narrow_argv
0x14028e148 _initialize_onexit_table
0x14028e150 _register_onexit_function
0x14028e158 _initialize_narrow_environment
0x14028e160 _get_initial_narrow_environment
0x14028e168 _crt_atexit
0x14028e170 _initterm
0x14028e178 _initterm_e
0x14028e180 __p___argc
0x14028e188 terminate
0x14028e190 _exit
0x14028e198 exit
0x14028e1a0 __p___argv
api-ms-win-crt-stdio-l1-1-0.dll
0x14028e1b0 _set_fmode
0x14028e1b8 __p__commode
api-ms-win-crt-locale-l1-1-0.dll
0x14028e0d8 _configthreadlocale
EAT(Export Address Table) is none
oleaut32.dll
0x14028e7a8 SysFreeString
0x14028e7b0 SafeArrayUnaccessData
0x14028e7b8 SysAllocStringLen
0x14028e7c0 SafeArrayGetUBound
0x14028e7c8 SafeArrayGetLBound
0x14028e7d0 VariantClear
0x14028e7d8 SafeArrayAccessData
0x14028e7e0 SafeArrayDestroy
kernel32.dll
0x14028e2f0 SetThreadStackGuarantee
0x14028e2f8 AddVectoredExceptionHandler
0x14028e300 GlobalFree
0x14028e308 SetHandleInformation
0x14028e310 GlobalAlloc
0x14028e318 Sleep
0x14028e320 GetModuleHandleA
0x14028e328 GetProcAddress
0x14028e330 GetCurrentThread
0x14028e338 GetStdHandle
0x14028e340 GetConsoleMode
0x14028e348 WriteConsoleW
0x14028e350 WaitForSingleObjectEx
0x14028e358 LoadLibraryA
0x14028e360 CreateMutexA
0x14028e368 GetCurrentProcess
0x14028e370 ReleaseMutex
0x14028e378 GetEnvironmentVariableW
0x14028e380 RtlLookupFunctionEntry
0x14028e388 GlobalUnlock
0x14028e390 FormatMessageW
0x14028e398 GlobalLock
0x14028e3a0 GetModuleFileNameW
0x14028e3a8 CreateFileW
0x14028e3b0 GetFileInformationByHandleEx
0x14028e3b8 GetFullPathNameW
0x14028e3c0 SetFilePointerEx
0x14028e3c8 FindNextFileW
0x14028e3d0 CreateDirectoryW
0x14028e3d8 FindFirstFileW
0x14028e3e0 GlobalSize
0x14028e3e8 GetTimeZoneInformation
0x14028e3f0 SystemTimeToFileTime
0x14028e3f8 SystemTimeToTzSpecificLocalTime
0x14028e400 GetEnvironmentStringsW
0x14028e408 FreeEnvironmentStringsW
0x14028e410 CompareStringOrdinal
0x14028e418 GetSystemDirectoryW
0x14028e420 GetWindowsDirectoryW
0x14028e428 CreateProcessW
0x14028e430 GetFileAttributesW
0x14028e438 DuplicateHandle
0x14028e440 GetCurrentProcessId
0x14028e448 CreateNamedPipeW
0x14028e450 CreateThread
0x14028e458 ReadFileEx
0x14028e460 SleepEx
0x14028e468 WriteFileEx
0x14028e470 FileTimeToSystemTime
0x14028e478 CancelIo
0x14028e480 ReadFile
0x14028e488 QueryPerformanceCounter
0x14028e490 QueryPerformanceFrequency
0x14028e498 HeapAlloc
0x14028e4a0 RtlCaptureContext
0x14028e4a8 CopyFileExW
0x14028e4b0 SleepConditionVariableSRW
0x14028e4b8 WakeAllConditionVariable
0x14028e4c0 WakeConditionVariable
0x14028e4c8 PostQueuedCompletionStatus
0x14028e4d0 GetSystemTimeAsFileTime
0x14028e4d8 GetProcessHeap
0x14028e4e0 GetFileInformationByHandle
0x14028e4e8 ReleaseSRWLockExclusive
0x14028e4f0 SwitchToThread
0x14028e4f8 SetLastError
0x14028e500 GetFinalPathNameByHandleW
0x14028e508 TryAcquireSRWLockExclusive
0x14028e510 GetQueuedCompletionStatusEx
0x14028e518 UnhandledExceptionFilter
0x14028e520 ReleaseSRWLockShared
0x14028e528 RtlVirtualUnwind
0x14028e530 FlushFileBuffers
0x14028e538 GetTickCount
0x14028e540 MapViewOfFile
0x14028e548 CreateFileMappingW
0x14028e550 FormatMessageA
0x14028e558 GetSystemTime
0x14028e560 WideCharToMultiByte
0x14028e568 FreeLibrary
0x14028e570 GetFileSize
0x14028e578 LockFileEx
0x14028e580 LocalFree
0x14028e588 UnlockFile
0x14028e590 HeapDestroy
0x14028e598 HeapCompact
0x14028e5a0 LoadLibraryW
0x14028e5a8 DeleteFileW
0x14028e5b0 DeleteFileA
0x14028e5b8 CreateFileA
0x14028e5c0 FlushViewOfFile
0x14028e5c8 OutputDebugStringW
0x14028e5d0 GetFileAttributesExW
0x14028e5d8 GetFileAttributesA
0x14028e5e0 GetDiskFreeSpaceA
0x14028e5e8 GetTempPathA
0x14028e5f0 MultiByteToWideChar
0x14028e5f8 HeapSize
0x14028e600 HeapValidate
0x14028e608 UnmapViewOfFile
0x14028e610 CreateMutexW
0x14028e618 UnlockFileEx
0x14028e620 SetEndOfFile
0x14028e628 GetFullPathNameA
0x14028e630 SetFilePointer
0x14028e638 LockFile
0x14028e640 OutputDebugStringA
0x14028e648 GetDiskFreeSpaceW
0x14028e650 WriteFile
0x14028e658 HeapCreate
0x14028e660 AreFileApisANSI
0x14028e668 InitializeCriticalSection
0x14028e670 EnterCriticalSection
0x14028e678 LeaveCriticalSection
0x14028e680 TryEnterCriticalSection
0x14028e688 DeleteCriticalSection
0x14028e690 GetCurrentThreadId
0x14028e698 AcquireSRWLockShared
0x14028e6a0 CreateIoCompletionPort
0x14028e6a8 GetCurrentDirectoryW
0x14028e6b0 SetUnhandledExceptionFilter
0x14028e6b8 GetExitCodeProcess
0x14028e6c0 WaitForSingleObject
0x14028e6c8 SetFileCompletionNotificationModes
0x14028e6d0 TerminateProcess
0x14028e6d8 IsProcessorFeaturePresent
0x14028e6e0 GetOverlappedResult
0x14028e6e8 WaitForMultipleObjects
0x14028e6f0 HeapReAlloc
0x14028e6f8 GetSystemInfo
0x14028e700 GetLastError
0x14028e708 GetTempPathW
0x14028e710 FindClose
0x14028e718 CloseHandle
0x14028e720 AcquireSRWLockExclusive
0x14028e728 HeapFree
0x14028e730 InitializeSListHead
0x14028e738 IsDebuggerPresent
0x14028e740 GetModuleHandleW
0x14028e748 CreateEventW
crypt32.dll
0x14028e228 CryptUnprotectData
0x14028e230 CertEnumCertificatesInStore
0x14028e238 CertAddCertificateContextToStore
0x14028e240 CertFreeCertificateContext
0x14028e248 CertFreeCertificateChain
0x14028e250 CertVerifyCertificateChainPolicy
0x14028e258 CertDuplicateCertificateChain
0x14028e260 CertCloseStore
0x14028e268 CertGetCertificateChain
0x14028e270 CertOpenStore
0x14028e278 CertDuplicateCertificateContext
0x14028e280 CertDuplicateStore
advapi32.dll
0x14028e050 CheckTokenMembership
0x14028e058 FreeSid
0x14028e060 GetUserNameW
0x14028e068 RegCloseKey
0x14028e070 RegCreateKeyExA
0x14028e078 RegOpenKeyExW
0x14028e080 RegSetValueExA
0x14028e088 RegQueryValueExW
0x14028e090 AllocateAndInitializeSid
0x14028e098 SystemFunction036
ole32.dll
0x14028e780 CoInitializeSecurity
0x14028e788 CoCreateInstance
0x14028e790 CoSetProxyBlanket
0x14028e798 CoInitializeEx
user32.dll
0x14028e848 EnumDisplaySettingsExW
0x14028e850 OpenClipboard
0x14028e858 GetClipboardData
0x14028e860 GetMonitorInfoW
0x14028e868 CloseClipboard
0x14028e870 SetClipboardData
0x14028e878 EnumDisplayMonitors
gdi32.dll
0x14028e290 CreateDCW
0x14028e298 GetDeviceCaps
0x14028e2a0 DeleteDC
0x14028e2a8 CreateCompatibleDC
0x14028e2b0 CreateCompatibleBitmap
0x14028e2b8 SelectObject
0x14028e2c0 SetStretchBltMode
0x14028e2c8 StretchBlt
0x14028e2d0 GetDIBits
0x14028e2d8 GetObjectW
0x14028e2e0 DeleteObject
crypt.dll
0x14028e218 BCryptGenRandom
ws2_32.dll
0x14028e888 WSAStartup
0x14028e890 getaddrinfo
0x14028e898 WSAIoctl
0x14028e8a0 recv
0x14028e8a8 setsockopt
0x14028e8b0 shutdown
0x14028e8b8 getsockname
0x14028e8c0 WSAGetLastError
0x14028e8c8 getpeername
0x14028e8d0 closesocket
0x14028e8d8 ind
0x14028e8e0 WSASend
0x14028e8e8 getsockopt
0x14028e8f0 connect
0x14028e8f8 WSACleanup
0x14028e900 freeaddrinfo
0x14028e908 send
0x14028e910 WSASocketW
0x14028e918 ioctlsocket
ntdll.dll
0x14028e758 RtlNtStatusToDosError
0x14028e760 NtCreateFile
0x14028e768 NtDeviceIoControlFile
0x14028e770 NtCancelIoFileEx
secur32.dll
0x14028e7f0 DeleteSecurityContext
0x14028e7f8 FreeContextBuffer
0x14028e800 FreeCredentialsHandle
0x14028e808 EncryptMessage
0x14028e810 AcceptSecurityContext
0x14028e818 AcquireCredentialsHandleA
0x14028e820 InitializeSecurityContextW
0x14028e828 QueryContextAttributesW
0x14028e830 DecryptMessage
0x14028e838 ApplyControlToken
VCRUNTIME140.dll
0x14028e000 __current_exception_context
0x14028e008 __current_exception
0x14028e010 __C_specific_handler
0x14028e018 strrchr
0x14028e020 __CxxFrameHandler3
0x14028e028 memmove
0x14028e030 memset
0x14028e038 memcmp
0x14028e040 memcpy
api-ms-win-crt-string-l1-1-0.dll
0x14028e1c8 strncmp
0x14028e1d0 strcspn
0x14028e1d8 strlen
0x14028e1e0 strcmp
api-ms-win-crt-utility-l1-1-0.dll
0x14028e200 qsort
0x14028e208 _rotl64
api-ms-win-crt-heap-l1-1-0.dll
0x14028e0a8 malloc
0x14028e0b0 free
0x14028e0b8 realloc
0x14028e0c0 _set_new_mode
0x14028e0c8 _msize
api-ms-win-crt-time-l1-1-0.dll
0x14028e1f0 _localtime64_s
api-ms-win-crt-math-l1-1-0.dll
0x14028e0e8 log
0x14028e0f0 __setusermatherr
0x14028e0f8 _dclass
api-ms-win-crt-runtime-l1-1-0.dll
0x14028e108 _endthreadex
0x14028e110 _seh_filter_exe
0x14028e118 _set_app_type
0x14028e120 _beginthreadex
0x14028e128 _cexit
0x14028e130 _c_exit
0x14028e138 _register_thread_local_exe_atexit_callback
0x14028e140 _configure_narrow_argv
0x14028e148 _initialize_onexit_table
0x14028e150 _register_onexit_function
0x14028e158 _initialize_narrow_environment
0x14028e160 _get_initial_narrow_environment
0x14028e168 _crt_atexit
0x14028e170 _initterm
0x14028e178 _initterm_e
0x14028e180 __p___argc
0x14028e188 terminate
0x14028e190 _exit
0x14028e198 exit
0x14028e1a0 __p___argv
api-ms-win-crt-stdio-l1-1-0.dll
0x14028e1b0 _set_fmode
0x14028e1b8 __p__commode
api-ms-win-crt-locale-l1-1-0.dll
0x14028e0d8 _configthreadlocale
EAT(Export Address Table) is none