General

Malware Config

Signatures

Files

• 85cb565aba61c39ecf383bb70128742d92e0f48997860fd6a15f2749d7bd7e69

  .7z
• VCE1.0.2（软件会提示升级，勿升级）/VCE题库打开软件Visual CertExam详细使用教程.pdf

  .pdf

  • http://bbs.hh010.com/

    Analyze
• VCE1.0.2（软件会提示升级，勿升级）/applauncher.exe

  .exe windows x86

  9f606b838db591a3d8f2d8f891756b8e

  
  

  Code Sign

  7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b

  Certificate

  Issuer

  CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

  Not Before

  21-12-2012 00:00

  Not After

  30-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50

  Certificate

  Issuer

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Not Before

  18-10-2012 00:00

  Not After

  29-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb

  Certificate

  Issuer

  CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

  Not Before

  24-08-2011 00:00

  Not After

  30-05-2020 10:48

  Subject

  CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  23:8b:de:3a:6f:d5:43:55:ae:4a:f3:1d:7d:5a:94

  Certificate

  Issuer

  CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

  Not Before

  14-08-2013 00:00

  Not After

  13-08-2016 23:59

  Subject

  CN=Global Simulators Ltd,O=Global Simulators Ltd,POSTALCODE=NW1 1JD,STREET=First Floor\, 41 Chalton Street,L=London,ST=London,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  01:0b:b5:5a:f6:47:71:63:1b:1a:06:6e:ec:99:cd:54:ab:f0:65:a5

  Signer

  Actual PE Digest

  01:0b:b5:5a:f6:47:71:63:1b:1a:06:6e:ec:99:cd:54:ab:f0:65:a5

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN=Global Simulators Ltd,O=Global Simulators Ltd,POSTALCODE=NW1 1JD,STREET=First Floor\, 41 Chalton Street,L=London,ST=London,C=GB

  24-03-2014 14:58

  Valid: false

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_BYTES_REVERSED_LO

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_BYTES_REVERSED_HI

  Imports

  user32

  MessageBoxA

  kernel32

  Sleep

  VirtualFree

  VirtualAlloc

  VirtualQuery

  GetSystemInfo

  GetVersion

  SetThreadLocale

  GetACP

  GetStartupInfoW

  GetProcAddress

  GetModuleHandleW

  GetModuleFileNameW

  GetCommandLineW

  FreeLibrary

  UnhandledExceptionFilter

  RtlUnwind

  RaiseException

  ExitProcess

  GetCurrentThreadId

  DeleteCriticalSection

  InitializeCriticalSection

  WriteFile

  GetStdHandle

  CloseHandle

  GetProcAddress

  RaiseException

  LoadLibraryA

  GetLastError

  TlsSetValue

  TlsGetValue

  LocalFree

  LocalAlloc

  GetModuleHandleW

  FreeLibrary

  Sleep

  GetVersionExW

  FreeLibrary

  shell32

  ShellExecuteW

  Sections

  .text

  Size: 21KB - Virtual size: 20KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .itext

  Size: 512B - Virtual size: 380B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 2KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .bss

  Size: - Virtual size: 10KB

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .idata

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .tls

  Size: - Virtual size: 8B

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 512B - Virtual size: 24B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 512B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

• VCE1.0.2（软件会提示升级，勿升级）/help/VCESHELP.HLP
• VCE1.0.2（软件会提示升级，勿升级）/help/VCESHelp.chm

  .chm
• VCE1.0.2（软件会提示升级，勿升级）/libcryptvce.dll

  .dll windows x86

  a8fc755e6471e674ded72eac4840dbbb

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  WideCharToMultiByte

  MultiByteToWideChar

  GetLastError

  GetVolumeInformationW

  QueryPerformanceCounter

  Sleep

  CloseHandle

  GetWindowsDirectoryW

  GetNativeSystemInfo

  GetVersionExW

  GetSystemTimeAsFileTime

  HeapAlloc

  HeapFree

  GetTimeFormatA

  GetDateFormatA

  GetCurrentThreadId

  DecodePointer

  GetCommandLineA

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  EncodePointer

  GetTimeZoneInformation

  GetProcAddress

  GetModuleHandleW

  ExitProcess

  WriteFile

  GetStdHandle

  GetModuleFileNameW

  HeapCreate

  HeapDestroy

  GetCPInfo

  InterlockedIncrement

  InterlockedDecrement

  GetACP

  GetOEMCP

  IsValidCodePage

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  SetLastError

  SetHandleCount

  InitializeCriticalSectionAndSpinCount

  GetFileType

  GetStartupInfoW

  DeleteCriticalSection

  GetModuleFileNameA

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetTickCount

  GetCurrentProcessId

  EnterCriticalSection

  LeaveCriticalSection

  RtlUnwind

  ReadFile

  GetConsoleCP

  GetConsoleMode

  SetFilePointer

  IsProcessorFeaturePresent

  LoadLibraryW

  LCMapStringW

  GetStringTypeW

  HeapReAlloc

  CreateFileA

  SetStdHandle

  FlushFileBuffers

  WriteConsoleW

  HeapSize

  SetEndOfFile

  GetProcessHeap

  CreateFileW

  CompareStringW

  SetEnvironmentVariableA

  RaiseException

  advapi32

  CryptReleaseContext

  CryptAcquireContextW

  CryptGenRandom

  Exports

  Exports

  FVCE30

  FVCE31

  FVCE32

  FVCE33

  GetSize

  chk_activation

  get_cert_info

  get_days

  get_mode

  get_version

  init_create_key

  init_read_key

  set_activation

  Sections

  .text

  Size: 204KB - Virtual size: 203KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 56KB - Virtual size: 55KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 14KB - Virtual size: 78KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 512B - Virtual size: 436B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 8KB - Virtual size: 7KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• VCE1.0.2（软件会提示升级，勿升级）/libeay32.dll

  .dll windows x86

  a1148764d1a362f64de08140ce887a04

  
  

  Code Sign

  7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b

  Certificate

  Issuer

  CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

  Not Before

  21-12-2012 00:00

  Not After

  30-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50

  Certificate

  Issuer

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Not Before

  18-10-2012 00:00

  Not After

  29-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  25:d2:78:c2:7b:ea:f6:58:d6:6d:d6:c1:42:08:2a:15

  Certificate

  Issuer

  CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

  Not Before

  08-08-2012 00:00

  Not After

  07-08-2013 23:59

  Subject

  CN=Avanset\, LLC,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Avanset\, LLC,L=Abakan,ST=Respublica Hakasia,C=RU

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7

  Certificate

  Issuer

  CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

  Not Before

  08-02-2010 00:00

  Not After

  07-02-2020 23:59

  Subject

  CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageClientAuth

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  66:fb:0e:e2:ad:70:04:3f:fb:b6:99:58:a9:0c:23:b4:48:2e:36:71

  Signer

  Actual PE Digest

  66:fb:0e:e2:ad:70:04:3f:fb:b6:99:58:a9:0c:23:b4:48:2e:36:71

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN=Avanset\, LLC,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Avanset\, LLC,L=Abakan,ST=Respublica Hakasia,C=RU

  22-01-2013 08:09

  Valid: false

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  ws2_32

  sendto

  recvfrom

  bind

  listen

  accept

  ntohl

  ioctlsocket

  WSACleanup

  WSAStartup

  gethostbyname

  getsockopt

  getservbyname

  ntohs

  htons

  htonl

  socket

  setsockopt

  connect

  send

  WSASetLastError

  recv

  WSAGetLastError

  shutdown

  closesocket

  gdi32

  CreateCompatibleDC

  GetDeviceCaps

  CreateCompatibleBitmap

  SelectObject

  GetObjectA

  BitBlt

  GetBitmapBits

  DeleteObject

  DeleteDC

  CreateDCA

  advapi32

  ReportEventA

  DeregisterEventSource

  RegisterEventSourceA

  user32

  MessageBoxA

  GetDesktopWindow

  GetProcessWindowStation

  GetUserObjectInformationW

  msvcr90

  sscanf

  getenv

  wcsstr

  _vsnprintf

  vfprintf

  __iob_func

  _exit

  raise

  free

  realloc

  malloc

  memcpy

  _localtime32

  _time32

  memset

  _gmtime32

  _strnicmp

  _stricmp

  strtoul

  _errno

  memmove

  _read

  _write

  isxdigit

  isdigit

  fprintf

  atoi

  sprintf

  strstr

  fputs

  fclose

  ferror

  fread

  fwrite

  fflush

  fopen

  _setmode

  _fileno

  ftell

  feof

  fseek

  fgets

  _wfopen

  strchr

  perror

  _ftime32

  qsort

  strcmp

  _stat32

  _chmod

  _fdopen

  _open

  strerror

  isalnum

  isspace

  tolower

  strncmp

  isupper

  strrchr

  exit

  strtol

  memchr

  signal

  _getch

  printf

  _except_handler4_common

  _encode_pointer

  _malloc_crt

  _encoded_null

  _decode_pointer

  _initterm

  _initterm_e

  _amsg_exit

  _adjust_fdiv

  __CppXcptFilter

  _crt_debugger_hook

  __clean_type_info_names_internal

  _unlock

  __dllonexit

  _lock

  _onexit

  _snprintf

  strncpy

  kernel32

  GetTickCount

  MultiByteToWideChar

  SetLastError

  CloseHandle

  QueryPerformanceCounter

  FreeLibrary

  FindClose

  FindFirstFileA

  FindNextFileA

  GetStdHandle

  GetCurrentProcessId

  GlobalMemoryStatus

  GetVersionExA

  FlushConsoleInputBuffer

  InterlockedExchange

  Sleep

  InterlockedCompareExchange

  TerminateProcess

  GetCurrentProcess

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  IsDebuggerPresent

  GetSystemTimeAsFileTime

  LoadLibraryA

  GetFileType

  GetVersion

  GetLastError

  GetCurrentThreadId

  GetModuleHandleA

  ExitProcess

  GetProcAddress

  Exports

  Exports

  ACCESS_DESCRIPTION_free

  ACCESS_DESCRIPTION_it

  ACCESS_DESCRIPTION_new

  AES_bi_ige_encrypt

  AES_cbc_encrypt

  AES_cfb128_encrypt

  AES_cfb1_encrypt

  AES_cfb8_encrypt

  AES_ctr128_encrypt

  AES_decrypt

  AES_ecb_encrypt

  AES_encrypt

  AES_ige_encrypt

  AES_ofb128_encrypt

  AES_options

  AES_set_decrypt_key

  AES_set_encrypt_key

  AES_unwrap_key

  AES_wrap_key

  ASN1_ANY_it

  ASN1_BIT_STRING_check

  ASN1_BIT_STRING_free

  ASN1_BIT_STRING_get_bit

  ASN1_BIT_STRING_it

  ASN1_BIT_STRING_name_print

  ASN1_BIT_STRING_new

  ASN1_BIT_STRING_num_asc

  ASN1_BIT_STRING_set

  ASN1_BIT_STRING_set_asc

  ASN1_BIT_STRING_set_bit

  ASN1_BMPSTRING_free

  ASN1_BMPSTRING_it

  ASN1_BMPSTRING_new

  ASN1_BOOLEAN_it

  ASN1_ENUMERATED_free

  ASN1_ENUMERATED_get

  ASN1_ENUMERATED_it

  ASN1_ENUMERATED_new

  ASN1_ENUMERATED_set

  ASN1_ENUMERATED_to_BN

  ASN1_FBOOLEAN_it

  ASN1_GENERALIZEDTIME_adj

  ASN1_GENERALIZEDTIME_check

  ASN1_GENERALIZEDTIME_free

  ASN1_GENERALIZEDTIME_it

  ASN1_GENERALIZEDTIME_new

  ASN1_GENERALIZEDTIME_print

  ASN1_GENERALIZEDTIME_set

  ASN1_GENERALIZEDTIME_set_string

  ASN1_GENERALSTRING_free

  ASN1_GENERALSTRING_it

  ASN1_GENERALSTRING_new

  ASN1_IA5STRING_free

  ASN1_IA5STRING_it

  ASN1_IA5STRING_new

  ASN1_INTEGER_cmp

  ASN1_INTEGER_dup

  ASN1_INTEGER_free

  ASN1_INTEGER_get

  ASN1_INTEGER_it

  ASN1_INTEGER_new

  ASN1_INTEGER_set

  ASN1_INTEGER_to_BN

  ASN1_NULL_free

  ASN1_NULL_it

  ASN1_NULL_new

  ASN1_OBJECT_create

  ASN1_OBJECT_free

  ASN1_OBJECT_it

  ASN1_OBJECT_new

  ASN1_OCTET_STRING_NDEF_it

  ASN1_OCTET_STRING_cmp

  ASN1_OCTET_STRING_dup

  ASN1_OCTET_STRING_free

  ASN1_OCTET_STRING_it

  ASN1_OCTET_STRING_new

  ASN1_OCTET_STRING_set

  ASN1_PCTX_free

  ASN1_PCTX_get_cert_flags

  ASN1_PCTX_get_flags

  ASN1_PCTX_get_nm_flags

  ASN1_PCTX_get_oid_flags

  ASN1_PCTX_get_str_flags

  ASN1_PCTX_new

  ASN1_PCTX_set_cert_flags

  ASN1_PCTX_set_flags

  ASN1_PCTX_set_nm_flags

  ASN1_PCTX_set_oid_flags

  ASN1_PCTX_set_str_flags

  ASN1_PRINTABLESTRING_free

  ASN1_PRINTABLESTRING_it

  ASN1_PRINTABLESTRING_new

  ASN1_PRINTABLE_free

  ASN1_PRINTABLE_it

  ASN1_PRINTABLE_new

  ASN1_PRINTABLE_type

  ASN1_SEQUENCE_ANY_it

  ASN1_SEQUENCE_it

  ASN1_SET_ANY_it

  ASN1_STRING_TABLE_add

  ASN1_STRING_TABLE_cleanup

  ASN1_STRING_TABLE_get

  ASN1_STRING_cmp

  ASN1_STRING_copy

  ASN1_STRING_data

  ASN1_STRING_dup

  ASN1_STRING_free

  ASN1_STRING_get_default_mask

  ASN1_STRING_length

  ASN1_STRING_length_set

  ASN1_STRING_new

  ASN1_STRING_print

  ASN1_STRING_print_ex

  ASN1_STRING_print_ex_fp

  ASN1_STRING_set

  ASN1_STRING_set0

  ASN1_STRING_set_by_NID

  ASN1_STRING_set_default_mask

  ASN1_STRING_set_default_mask_asc

  ASN1_STRING_to_UTF8

  ASN1_STRING_type

  ASN1_STRING_type_new

  ASN1_T61STRING_free

  ASN1_T61STRING_it

  ASN1_T61STRING_new

  ASN1_TBOOLEAN_it

  ASN1_TIME_adj

  ASN1_TIME_check

  ASN1_TIME_free

  ASN1_TIME_it

  ASN1_TIME_new

  ASN1_TIME_print

  ASN1_TIME_set

  ASN1_TIME_set_string

  ASN1_TIME_to_generalizedtime

  ASN1_TYPE_cmp

  ASN1_TYPE_free

  ASN1_TYPE_get

  ASN1_TYPE_get_int_octetstring

  ASN1_TYPE_get_octetstring

  ASN1_TYPE_new

  ASN1_TYPE_set

  ASN1_TYPE_set1

  ASN1_TYPE_set_int_octetstring

  ASN1_TYPE_set_octetstring

  ASN1_UNIVERSALSTRING_free

  ASN1_UNIVERSALSTRING_it

  ASN1_UNIVERSALSTRING_new

  ASN1_UNIVERSALSTRING_to_string

  ASN1_UTCTIME_adj

  ASN1_UTCTIME_check

  ASN1_UTCTIME_cmp_time_t

  ASN1_UTCTIME_free

  ASN1_UTCTIME_it

  ASN1_UTCTIME_new

  ASN1_UTCTIME_print

  ASN1_UTCTIME_set

  ASN1_UTCTIME_set_string

  ASN1_UTF8STRING_free

  ASN1_UTF8STRING_it

  ASN1_UTF8STRING_new

  ASN1_VISIBLESTRING_free

  ASN1_VISIBLESTRING_it

  ASN1_VISIBLESTRING_new

  ASN1_add_oid_module

  ASN1_bn_print

  ASN1_check_infinite_end

  ASN1_const_check_infinite_end

  ASN1_d2i_bio

  ASN1_d2i_fp

  ASN1_digest

  ASN1_dup

  ASN1_generate_nconf

  ASN1_generate_v3

  ASN1_get_object

  ASN1_i2d_bio

  ASN1_i2d_fp

  ASN1_item_d2i

  ASN1_item_d2i_bio

  ASN1_item_d2i_fp

  ASN1_item_digest

  ASN1_item_dup

  ASN1_item_ex_d2i

  ASN1_item_ex_free

  ASN1_item_ex_i2d

  ASN1_item_ex_new

  ASN1_item_free

  ASN1_item_i2d

  ASN1_item_i2d_bio

  ASN1_item_i2d_fp

  ASN1_item_ndef_i2d

  ASN1_item_new

  ASN1_item_pack

  ASN1_item_print

  ASN1_item_sign

  ASN1_item_sign_ctx

  ASN1_item_unpack

  ASN1_item_verify

  ASN1_mbstring_copy

  ASN1_mbstring_ncopy

  ASN1_object_size

  ASN1_pack_string

  ASN1_parse

  ASN1_parse_dump

  ASN1_primitive_free

  ASN1_primitive_new

  ASN1_put_eoc

  ASN1_put_object

  ASN1_seq_pack

  ASN1_seq_unpack

  ASN1_sign

  ASN1_tag2bit

  ASN1_tag2str

  ASN1_template_d2i

  ASN1_template_free

  ASN1_template_i2d

  ASN1_template_new

  ASN1_unpack_string

  ASN1_verify

  AUTHORITY_INFO_ACCESS_free

  AUTHORITY_INFO_ACCESS_it

  AUTHORITY_INFO_ACCESS_new

  AUTHORITY_KEYID_free

  AUTHORITY_KEYID_it

  AUTHORITY_KEYID_new

  BASIC_CONSTRAINTS_free

  BASIC_CONSTRAINTS_it

  BASIC_CONSTRAINTS_new

  BF_cbc_encrypt

  BF_cfb64_encrypt

  BF_decrypt

  BF_ecb_encrypt

  BF_encrypt

  BF_ofb64_encrypt

  BF_options

  BF_set_key

  BIGNUM_it

  BIO_accept

  BIO_asn1_get_prefix

  BIO_asn1_get_suffix

  BIO_asn1_set_prefix

  BIO_asn1_set_suffix

  BIO_callback_ctrl

  BIO_clear_flags

  BIO_copy_next_retry

  BIO_ctrl

  BIO_ctrl_get_read_request

  BIO_ctrl_get_write_guarantee

  BIO_ctrl_pending

  BIO_ctrl_reset_read_request

  BIO_ctrl_wpending

  BIO_debug_callback

  BIO_dgram_non_fatal_error

  BIO_dump

  BIO_dump_cb

  BIO_dump_fp

  BIO_dump_indent

  BIO_dump_indent_cb

  BIO_dump_indent_fp

  BIO_dup_chain

  BIO_f_asn1

  BIO_f_base64

  BIO_f_buffer

  BIO_f_cipher

  BIO_f_md

  BIO_f_nbio_test

  BIO_f_null

  BIO_f_reliable

  BIO_fd_non_fatal_error

  BIO_fd_should_retry

  BIO_find_type

  BIO_free

  BIO_free_all

  BIO_get_accept_socket

  BIO_get_callback

  BIO_get_callback_arg

  BIO_get_ex_data

  BIO_get_ex_new_index

  BIO_get_host_ip

  BIO_get_port

  BIO_get_retry_BIO

  BIO_get_retry_reason

  BIO_gethostbyname

  BIO_gets

  BIO_indent

  BIO_int_ctrl

  BIO_method_name

  BIO_method_type

  BIO_new

  BIO_new_CMS

  BIO_new_NDEF

  BIO_new_PKCS7

  BIO_new_accept

  BIO_new_bio_pair

  BIO_new_connect

  BIO_new_dgram

  BIO_new_fd

  BIO_new_file

  BIO_new_fp

  BIO_new_mem_buf

  BIO_new_socket

  BIO_next

  BIO_nread

  BIO_nread0

  BIO_number_read

  BIO_number_written

  BIO_nwrite

  BIO_nwrite0

  BIO_pop

  BIO_printf

  BIO_ptr_ctrl

  BIO_push

  BIO_puts

  BIO_read

  BIO_s_accept

  BIO_s_bio

  BIO_s_connect

  BIO_s_datagram

  BIO_s_fd

  BIO_s_file

  BIO_s_mem

  BIO_s_null

  BIO_s_socket

  BIO_set

  BIO_set_callback

  BIO_set_callback_arg

  BIO_set_cipher

  BIO_set_ex_data

  BIO_set_flags

  BIO_set_tcp_ndelay

  BIO_snprintf

  BIO_sock_cleanup

  BIO_sock_error

  BIO_sock_init

  BIO_sock_non_fatal_error

  BIO_sock_should_retry

  BIO_socket_ioctl

  BIO_socket_nbio

  BIO_test_flags

  BIO_vfree

  BIO_vprintf

  BIO_vsnprintf

  BIO_write

  BN_BLINDING_convert

  BN_BLINDING_convert_ex

  BN_BLINDING_create_param

  BN_BLINDING_free

  BN_BLINDING_get_flags

  BN_BLINDING_get_thread_id

  BN_BLINDING_invert

  BN_BLINDING_invert_ex

  BN_BLINDING_new

  BN_BLINDING_set_flags

  BN_BLINDING_set_thread_id

  BN_BLINDING_thread_id

  BN_BLINDING_update

  BN_CTX_end

  BN_CTX_free

  BN_CTX_get

  BN_CTX_init

  BN_CTX_new

  BN_CTX_start

  BN_GENCB_call

  BN_GF2m_add

  BN_GF2m_arr2poly

  BN_GF2m_mod

  BN_GF2m_mod_arr

  BN_GF2m_mod_div

  BN_GF2m_mod_div_arr

  BN_GF2m_mod_exp

  BN_GF2m_mod_exp_arr

  BN_GF2m_mod_inv

  BN_GF2m_mod_inv_arr

  BN_GF2m_mod_mul

  BN_GF2m_mod_mul_arr

  BN_GF2m_mod_solve_quad

  BN_GF2m_mod_solve_quad_arr

  BN_GF2m_mod_sqr

  BN_GF2m_mod_sqr_arr

  BN_GF2m_mod_sqrt

  BN_GF2m_mod_sqrt_arr

  BN_GF2m_poly2arr

  BN_MONT_CTX_copy

  BN_MONT_CTX_free

  BN_MONT_CTX_init

  BN_MONT_CTX_new

  BN_MONT_CTX_set

  BN_MONT_CTX_set_locked

  BN_RECP_CTX_free

  BN_RECP_CTX_init

  BN_RECP_CTX_new

  BN_RECP_CTX_set

  BN_X931_derive_prime_ex

  BN_X931_generate_Xpq

  BN_X931_generate_prime_ex

  BN_add

  BN_add_word

  BN_asc2bn

  BN_bin2bn

  BN_bn2bin

  BN_bn2dec

  BN_bn2hex

  BN_bn2mpi

  BN_bntest_rand

  BN_clear

  BN_clear_bit

  BN_clear_free

  BN_cmp

  BN_copy

  BN_dec2bn

  BN_div

  BN_div_recp

  BN_div_word

  BN_dup

  BN_exp

  BN_free

  BN_from_montgomery

  BN_gcd

  BN_generate_prime

  BN_generate_prime_ex

  BN_get0_nist_prime_192

  BN_get0_nist_prime_224

  BN_get0_nist_prime_256

  BN_get0_nist_prime_384

  BN_get0_nist_prime_521

  BN_get_params

  BN_get_word

  BN_hex2bn

  BN_init

  BN_is_bit_set

  BN_is_prime

  BN_is_prime_ex

  BN_is_prime_fasttest

  BN_is_prime_fasttest_ex

  BN_kronecker

  BN_lshift

  BN_lshift1

  BN_mask_bits

  BN_mod_add

  BN_mod_add_quick

  BN_mod_exp

  BN_mod_exp2_mont

  BN_mod_exp_mont

  BN_mod_exp_mont_consttime

  BN_mod_exp_mont_word

  BN_mod_exp_recp

  BN_mod_exp_simple

  BN_mod_inverse

  BN_mod_lshift

  BN_mod_lshift1

  BN_mod_lshift1_quick

  BN_mod_lshift_quick

  BN_mod_mul

  BN_mod_mul_montgomery

  BN_mod_mul_reciprocal

  BN_mod_sqr

  BN_mod_sqrt

  BN_mod_sub

  BN_mod_sub_quick

  BN_mod_word

  BN_mpi2bn

  BN_mul

  BN_mul_word

  BN_new

  BN_nist_mod_192

  BN_nist_mod_224

  BN_nist_mod_256

  BN_nist_mod_384

  BN_nist_mod_521

  BN_nnmod

  BN_num_bits

  BN_num_bits_word

  BN_options

  BN_print

  BN_print_fp

  BN_pseudo_rand

  BN_pseudo_rand_range

  BN_rand

  BN_rand_range

  BN_reciprocal

  BN_rshift

  BN_rshift1

  BN_set_bit

  BN_set_negative

  BN_set_params

  BN_set_word

  BN_sqr

  BN_sub

  BN_sub_word

  BN_swap

  BN_to_ASN1_ENUMERATED

  BN_to_ASN1_INTEGER

  BN_uadd

  BN_ucmp

  BN_usub

  BN_value_one

  BUF_MEM_free

  BUF_MEM_grow

  BUF_MEM_grow_clean

  BUF_MEM_new

  Sections

  .text

  Size: 766KB - Virtual size: 765KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 319KB - Virtual size: 318KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 23KB - Virtual size: 32KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 39KB - Virtual size: 38KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• VCE1.0.2（软件会提示升级，勿升级）/license.txt
• VCE1.0.2（软件会提示升级，勿升级）/player.exe

  .exe windows x86

  bfa925e8596e089993d52d495f256df2

  
  

  Code Sign

  7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b

  Certificate

  Issuer

  CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

  Not Before

  21-12-2012 00:00

  Not After

  30-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50

  Certificate

  Issuer

  CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

  Not Before

  18-10-2012 00:00

  Not After

  29-12-2020 23:59

  Subject

  CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb

  Certificate

  Issuer

  CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

  Not Before

  24-08-2011 00:00

  Not After

  30-05-2020 10:48

  Subject

  CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  23:8b:de:3a:6f:d5:43:55:ae:4a:f3:1d:7d:5a:94

  Certificate

  Issuer

  CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

  Not Before

  14-08-2013 00:00

  Not After

  13-08-2016 23:59

  Subject

  CN=Global Simulators Ltd,O=Global Simulators Ltd,POSTALCODE=NW1 1JD,STREET=First Floor\, 41 Chalton Street,L=London,ST=London,C=GB

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  ad:f8:7e:07:eb:82:20:3a:52:67:23:85:1d:1b:f4:da:3c:09:8e:53

  Signer

  Actual PE Digest

  ad:f8:7e:07:eb:82:20:3a:52:67:23:85:1d:1b:f4:da:3c:09:8e:53

  Digest Algorithm

  sha1

  PE Digest Matches

  false

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN=Global Simulators Ltd,O=Global Simulators Ltd,POSTALCODE=NW1 1JD,STREET=First Floor\, 41 Chalton Street,L=London,ST=London,C=GB

  15-05-2014 09:14

  Valid: false

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_BYTES_REVERSED_LO

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_BYTES_REVERSED_HI

  Imports

  oleaut32

  SysFreeString

  SysReAllocStringLen

  SysAllocStringLen

  SafeArrayPtrOfIndex

  SafeArrayPutElement

  SafeArrayGetElement

  SafeArrayUnaccessData

  SafeArrayAccessData

  SafeArrayGetUBound

  SafeArrayGetLBound

  SafeArrayCreate

  VariantChangeType

  VariantCopy

  VariantClear

  VariantInit

  GetErrorInfo

  GetActiveObject

  SysFreeString

  advapi32

  RegQueryValueExW

  RegOpenKeyExW

  RegCloseKey

  SetSecurityDescriptorDacl

  RegUnLoadKeyW

  RegSetValueExW

  RegSaveKeyW

  RegRestoreKeyW

  RegReplaceKeyW

  RegQueryValueExW

  RegQueryInfoKeyW

  RegOpenKeyExW

  RegLoadKeyW

  RegFlushKey

  RegEnumValueW

  RegEnumKeyExW

  RegDeleteValueW

  RegDeleteKeyW

  RegCreateKeyExW

  RegConnectRegistryW

  RegCloseKey

  LookupAccountSidW

  InitializeSecurityDescriptor

  GetAclInformation

  GetAce

  SetNamedSecurityInfoW

  SetEntriesInAclW

  GetNamedSecurityInfoW

  user32

  MessageBoxA

  CharNextW

  LoadStringW

  SetClassLongW

  GetClassLongW

  SetWindowLongW

  GetWindowLongW

  CreateWindowExW

  WindowFromPoint

  WinHelpW

  WaitMessage

  ValidateRect

  UpdateWindow

  UnregisterClassW

  UnionRect

  UnhookWindowsHookEx

  TranslateMessage

  TranslateMDISysAccel

  TrackPopupMenu

  ToAscii

  SystemParametersInfoW

  SubtractRect

  ShowWindow

  ShowScrollBar

  ShowOwnedPopups

  ShowCaret

  SetWindowRgn

  SetWindowsHookExW

  SetWindowTextW

  SetWindowPos

  SetWindowPlacement

  SetTimer

  SetScrollRange

  SetScrollPos

  SetScrollInfo

  SetRectEmpty

  SetRect

  SetPropW

  SetParent

  SetMenuItemInfoW

  SetMenu

  SetForegroundWindow

  SetFocus

  SetCursorPos

  SetCursor

  SetClipboardData

  SetCaretPos

  SetCapture

  SetActiveWindow

  SendNotifyMessageW

  SendMessageA

  SendMessageW

  SendDlgItemMessageW

  ScrollWindowEx

  ScrollWindow

  ScrollDC

  ScreenToClient

  RemovePropW

  RemoveMenu

  ReleaseDC

  ReleaseCapture

  RegisterWindowMessageW

  RegisterClipboardFormatW

  RegisterClassW

  RedrawWindow

  PtInRect

  PostQuitMessage

  PostMessageW

  PeekMessageA

  PeekMessageW

  OpenClipboard

  OffsetRect

  OemToCharA

  MsgWaitForMultipleObjectsEx

  MsgWaitForMultipleObjects

  MessageBoxW

  MessageBeep

  MapWindowPoints

  MapVirtualKeyW

  LockWindowUpdate

  LoadStringW

  LoadKeyboardLayoutW

  LoadIconW

  LoadCursorW

  LoadBitmapW

  KillTimer

  IsZoomed

  IsWindowVisible

  IsWindowUnicode

  IsWindowEnabled

  IsWindow

  IsRectEmpty

  IsIconic

  IsDialogMessageA

  IsDialogMessageW

  IsClipboardFormatAvailable

  IsChild

  IsCharAlphaNumericW

  InvalidateRect

  IntersectRect

  InsertMenuItemW

  InsertMenuW

  InflateRect

  HideCaret

  GetWindowThreadProcessId

  GetWindowTextW

  GetWindowRect

  GetWindowPlacement

  GetWindowDC

  GetUpdateRect

  GetTopWindow

  GetSystemMetrics

  GetSystemMenu

  GetSysColorBrush

  GetSysColor

  GetSubMenu

  GetScrollRange

  GetScrollPos

  GetScrollInfo

  GetScrollBarInfo

  GetPropW

  GetParent

  GetWindow

  GetMessageTime

  GetMessagePos

  GetMessageExtraInfo

  GetMessageW

  GetMenuStringW

  GetMenuState

  GetMenuItemInfoW

  GetMenuItemID

  GetMenuItemCount

  GetMenu

  GetLastActivePopup

  GetKeyboardState

  GetKeyboardLayoutNameW

  GetKeyboardLayoutList

  GetKeyboardLayout

  GetKeyState

  GetKeyNameTextW

  GetIconInfo

  GetForegroundWindow

  GetFocus

  GetDoubleClickTime

  GetDlgItem

  GetDlgCtrlID

  GetDesktopWindow

  GetDCEx

  GetDC

  GetCursorPos

  GetCursor

  GetClipboardFormatNameW

  GetClipboardData

  GetClientRect

  GetClassNameW

  GetClassInfoExW

  GetClassInfoW

  GetCapture

  GetAsyncKeyState

  GetActiveWindow

  FrameRect

  FindWindowExW

  FindWindowW

  FillRect

  EqualRect

  EnumWindows

  EnumThreadWindows

  EnumClipboardFormats

  EnumChildWindows

  EndPaint

  EndMenu

  EndDeferWindowPos

  EnableWindow

  EnableScrollBar

  EnableMenuItem

  EmptyClipboard

  DrawTextExW

  DrawTextW

  DrawMenuBar

  DrawIconEx

  DrawIcon

  DrawFrameControl

  DrawFocusRect

  DrawEdge

  DrawCaption

  DispatchMessageA

  DispatchMessageW

  DestroyWindow

  DestroyMenu

  DestroyIcon

  DestroyCursor

  DestroyCaret

  DeleteMenu

  DeferWindowPos

  DefWindowProcW

  DefMDIChildProcW

  DefFrameProcW

  CreatePopupMenu

  CreateMenu

  CreateIcon

  CreateCaret

  CreateAcceleratorTableW

  CountClipboardFormats

  CopyImage

  CopyIcon

  CloseClipboard

  ClientToScreen

  ChildWindowFromPoint

  CheckMenuItem

  CharUpperBuffW

  CharUpperW

  CharPrevW

  CharNextW

  CharLowerBuffW

  CharLowerW

  CallWindowProcW

  CallNextHookEx

  BringWindowToTop

  BeginPaint

  BeginDeferWindowPos

  AttachThreadInput

  CharLowerBuffA

  CharUpperBuffA

  AdjustWindowRectEx

  ActivateKeyboardLayout

  EnumDisplayMonitors

  GetMonitorInfoW

  MonitorFromPoint

  MonitorFromRect

  MonitorFromWindow

  kernel32

  Sleep

  VirtualFree

  VirtualAlloc

  lstrlenW

  lstrcpynW

  VirtualQuery

  QueryPerformanceCounter

  GetTickCount

  GetSystemInfo

  GetVersion

  CompareStringW

  IsDBCSLeadByteEx

  IsValidLocale

  SetThreadLocale

  GetSystemDefaultUILanguage

  GetUserDefaultUILanguage

  GetLocaleInfoW

  WideCharToMultiByte

  MultiByteToWideChar

  GetConsoleOutputCP

  GetConsoleCP

  GetACP

  LoadLibraryExW

  GetStartupInfoW

  GetProcAddress

  GetModuleHandleW

  GetModuleFileNameW

  GetCommandLineW

  FreeLibrary

  GetLastError

  UnhandledExceptionFilter

  RtlUnwind

  RaiseException

  ExitProcess

  ExitThread

  SwitchToThread

  GetCurrentThreadId

  CreateThread

  DeleteCriticalSection

  LeaveCriticalSection

  EnterCriticalSection

  InitializeCriticalSection

  FindFirstFileW

  FindClose

  SetCurrentDirectoryW

  GetCurrentDirectoryW

  WriteFile

  SetFilePointer

  SetEndOfFile

  ReadFile

  GetFileType

  GetFileSize

  CreateFileW

  GetStdHandle

  CloseHandle

  GetProcAddress

  RaiseException

  LoadLibraryA

  GetLastError

  TlsSetValue

  TlsGetValue

  LocalFree

  LocalAlloc

  GetModuleHandleW

  FreeLibrary

  lstrlenW

  lstrcmpW

  WritePrivateProfileStringW

  WriteFile

  WideCharToMultiByte

  WaitForSingleObject

  WaitForMultipleObjectsEx

  VirtualQueryEx

  VirtualQuery

  VirtualProtect

  VirtualFree

  VirtualAlloc

  UnmapViewOfFile

  TryEnterCriticalSection

  SwitchToThread

  SuspendThread

  Sleep

  SizeofResource

  SetThreadPriority

  SetThreadLocale

  SetLastError

  SetFilePointer

  SetEvent

  SetErrorMode

  SetEndOfFile

  SetCurrentDirectoryW

  ResumeThread

  ResetEvent

  RemoveDirectoryW

  ReadFile

  RaiseException

  QueryPerformanceFrequency

  QueryPerformanceCounter

  QueryDosDeviceW

  IsDebuggerPresent

  MultiByteToWideChar

  MulDiv

  MapViewOfFile

  LockResource

  LocalFree

  LocalAlloc

  LoadResource

  LoadLibraryW

  LeaveCriticalSection

  IsValidLocale

  InitializeCriticalSection

  HeapSize

  HeapFree

  HeapDestroy

  HeapCreate

  HeapAlloc

  GlobalUnlock

  GlobalSize

  GlobalReAlloc

  GlobalHandle

  GlobalLock

  GlobalGetAtomNameW

  GlobalFree

  GlobalFindAtomW

  GlobalDeleteAtom

  GlobalAlloc

  GlobalAddAtomW

  GetVolumeInformationW

  GetVersionExW

  GetVersion

  GetUserDefaultLCID

  GetTimeZoneInformation

  GetTickCount

  GetThreadPriority

  GetThreadLocale

  GetTempPathW

  GetSystemInfo

  GetSystemTimes

  GetStringTypeExA

  GetStringTypeExW

  GetStdHandle

  GetProcAddress

  GetPrivateProfileStringW

  GetModuleHandleW

  GetModuleFileNameW

  GetLogicalDriveStringsW

  GetLocaleInfoW

  GetLocalTime

  GetLastError

  GetFullPathNameW

  GetFileSize

  GetFileAttributesW

  GetExitCodeThread

  GetEnvironmentVariableW

  GetDriveTypeW

  GetDiskFreeSpaceW

  GetDateFormatW

  GetCurrentThreadId

  GetCurrentThread

  GetCurrentProcessId

  GetCurrentProcess

  GetComputerNameW

  GetCPInfoExW

  GetCPInfo

  GetACP

  FreeResource

  InterlockedIncrement

  InterlockedExchange

  InterlockedDecrement

  InterlockedCompareExchange

  FreeLibrary

  FormatMessageW

  FindResourceW

  FindNextFileW

  FindFirstFileW

  FindClose

  EnumSystemLocalesW

  EnumResourceNamesW

  EnumCalendarInfoW

  EnterCriticalSection

  DeleteFileW

  DeleteCriticalSection

  CreateThread

  CreateFileMappingW

  CreateFileW

  CreateEventW

  CreateDirectoryW

  CompareStringW

  CloseHandle

  Sleep

  GetSystemDefaultUILanguage

  gdi32

  UnrealizeObject

  TextOutA

  TextOutW

  StretchDIBits

  StretchBlt

  StartPage

  StartDocW

  SetWorldTransform

  SetWindowOrgEx

  SetWindowExtEx

  SetWinMetaFileBits

  SetViewportOrgEx

  SetViewportExtEx

  SetTextCharacterExtra

  SetTextColor

  SetTextAlign

  SetStretchBltMode

  SetROP2

  SetPixel

  SetMapMode

  SetGraphicsMode

  SetEnhMetaFileBits

  SetDIBits

  SetDIBColorTable

  SetBrushOrgEx

  SetBkMode

  SetBkColor

  SetAbortProc

  SelectPalette

  SelectObject

  SelectClipRgn

  SaveDC

  RoundRect

  RestoreDC

  ResizePalette

  Rectangle

  RectVisible

  RealizePalette

  Polyline

  Polygon

  PolyBezierTo

  PolyBezier

  PlayEnhMetaFile

  Pie

  PatBlt

  OffsetRgn

  OffsetClipRgn

  MoveToEx

  ModifyWorldTransform

  MaskBlt

  LineTo

  LineDDA

  LPtoDP

  IntersectClipRect

  GetWorldTransform

  GetWindowOrgEx

  GetWindowExtEx

  GetWinMetaFileBits

  GetViewportOrgEx

  GetViewportExtEx

  GetTextMetricsW

  GetTextExtentPointW

  GetTextExtentPoint32A

  GetTextExtentPoint32W

  GetTextExtentExPointA

  GetTextExtentExPointW

  GetTextColor

  GetTextCharacterExtra

  GetTextAlign

  GetSystemPaletteEntries

  GetStretchBltMode

  GetStockObject

  GetRgnBox

  GetPixel

  GetPaletteEntries

  GetOutlineTextMetricsW

  GetObjectType

  GetObjectW

  GetNearestPaletteIndex

  GetNearestColor

  GetMapMode

  GetGraphicsMode

  GetFontLanguageInfo

  GetEnhMetaFilePaletteEntries

  GetEnhMetaFileHeader

  GetEnhMetaFileDescriptionW

  GetEnhMetaFileBits

  GetDeviceCaps

  GetDIBits

  GetDIBColorTable

  GetCurrentPositionEx

  GetCurrentObject

  GetClipRgn

  GetClipBox

  GetBrushOrgEx

  GetBkColor

  GetBitmapBits

  GdiFlush

  FrameRgn

  FillRgn

  ExtTextOutA

  ExtTextOutW

  ExtFloodFill

  ExcludeClipRect

  EnumFontsW

  EnumFontFamiliesExW

  EnumEnhMetaFile

  EndPage

  EndDoc

  Ellipse

  DeleteObject

  DeleteEnhMetaFile

  DeleteDC

  CreateSolidBrush

  CreateRectRgnIndirect

  CreateRectRgn

  CreatePenIndirect

  CreatePen

  CreatePatternBrush

  CreatePalette

  CreateICW

  CreateHalftonePalette

  CreateFontIndirectW

  CreateEnhMetaFileW

  CreateDIBitmap

  CreateDIBSection

  CreateDCW

  CreateCompatibleDC

  CreateCompatibleBitmap

  CreateBrushIndirect

  CreateBitmap

  CopyEnhMetaFileW

  CombineRgn

  CloseEnhMetaFile

  Chord

  BitBlt

  ArcTo

  Arc

  AngleArc

  AbortDoc

  GetCharacterPlacementW

  GetCharacterPlacementA

  GetRandomRgn

  version

  VerQueryValueW

  GetFileVersionInfoSizeW

  GetFileVersionInfoW

  shfolder

  SHGetFolderPathW

  ole32

  CreateStreamOnHGlobal

  OleRegEnumVerbs

  IsAccelerator

  ReleaseStgMedium

  OleDraw

  OleSetMenuDescriptor

  OleFlushClipboard

  OleGetClipboard

  OleSetClipboard

  DoDragDrop

  RevokeDragDrop

  RegisterDragDrop

  OleUninitialize

  OleInitialize

  CreateDataAdviseHolder

  CoTaskMemFree

  CoTaskMemAlloc

  ProgIDFromCLSID

  StringFromCLSID

  CoCreateInstance

  CoGetClassObject

  CoUninitialize

  CoInitialize

  IsEqualGUID

  CoDisconnectObject

  comctl32

  InitializeFlatSB

  FlatSB_SetScrollProp

  FlatSB_SetScrollPos

  FlatSB_SetScrollInfo

  FlatSB_GetScrollPos

  FlatSB_GetScrollInfo

  _TrackMouseEvent

  ImageList_GetImageInfo

  ImageList_SetIconSize

  ImageList_GetIconSize

  ImageList_Write

  ImageList_Read

  ImageList_GetDragImage

  ImageList_DragShowNolock

  ImageList_DragMove

  ImageList_DragLeave

  ImageList_DragEnter

  ImageList_EndDrag

  ImageList_BeginDrag

  ImageList_Copy

  ImageList_LoadImageW

  ImageList_GetIcon

  ImageList_Remove

  ImageList_DrawEx

  ImageList_Replace

  ImageList_Draw

  ImageList_SetOverlayImage

  ImageList_GetBkColor

  ImageList_SetBkColor

  ImageList_ReplaceIcon

  ImageList_Add

  ImageList_SetImageCount

  ImageList_GetImageCount

  ImageList_Destroy

  ImageList_Create

  InitCommonControls

  msvcrt

  memset

  memcpy

  shell32

  ShellExecuteW

  Shell_NotifyIconW

  DragQueryFileW

  DragAcceptFiles

  SHGetPathFromIDListW

  SHBrowseForFolderW

  comdlg32

  PrintDlgW

  ChooseFontW

  ChooseColorW

  GetSaveFileNameW

  GetOpenFileNameW

  winspool.drv

  OpenPrinterW

  EnumPrintersW

  DocumentPropertiesW

  ClosePrinter

  GetDefaultPrinterW

  winmm

  timeGetTime

  timeEndPeriod

  timeBeginPeriod

  PlaySoundW

  libcryptvce

  get_cert_info

  FVCE33

  FVCE32

  FVCE31

  FVCE30

  GetSize

  get_mode

  set_activation

  init_read_key

  init_create_key

  get_version

  sqlite3

  sqlite3_create_collation

  sqlite3_bind_parameter_index

  sqlite3_bind_null

  sqlite3_bind_int64

  sqlite3_bind_int

  sqlite3_bind_double

  sqlite3_bind_text

  sqlite3_bind_blob

  sqlite3_backup_finish

  sqlite3_backup_step

  sqlite3_backup_init

  sqlite3_reset

  sqlite3_finalize

  sqlite3_column_int64

  sqlite3_column_type

  sqlite3_column_text

  sqlite3_column_double

  sqlite3_column_bytes

  sqlite3_column_blob

  sqlite3_step

  sqlite3_column_decltype

  sqlite3_column_name

  sqlite3_column_count

  sqlite3_prepare_v2

  sqlite3_prepare

  sqlite3_total_changes

  sqlite3_changes

  sqlite3_busy_timeout

  sqlite3_last_insert_rowid

  sqlite3_free

  sqlite3_errcode

  sqlite3_errmsg

  sqlite3_libversion

  sqlite3_close

  sqlite3_open

  Sections

  .text

  Size: 5.5MB - Virtual size: 5.5MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .itext

  Size: 11KB - Virtual size: 11KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 69KB - Virtual size: 68KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .bss

  Size: - Virtual size: 154KB

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .idata

  Size: 20KB - Virtual size: 19KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .didata

  Size: 3KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .tls

  Size: - Virtual size: 76B

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 512B - Virtual size: 24B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 437KB - Virtual size: 437KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1.1MB - Virtual size: 1.1MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

• VCE1.0.2（软件会提示升级，勿升级）/sqlite3.dll

  .dll windows x86

  1b1a70babde0a2663fcc833b56850660

  
  

  Code Sign

  79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed

  Certificate

  Issuer

  CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

  Not Before

  01-05-2012 00:00

  Not After

  31-12-2012 23:59

  Subject

  CN=Symantec Time Stamping Services Signer - G3,O=Symantec Corporation,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4

  Certificate

  Issuer

  CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

  Not Before

  04-12-2003 00:00

  Not After

  03-12-2013 23:59

  Subject

  CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  25:d2:78:c2:7b:ea:f6:58:d6:6d:d6:c1:42:08:2a:15

  Certificate

  Issuer

  CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

  Not Before

  08-08-2012 00:00

  Not After

  07-08-2013 23:59

  Subject

  CN=Avanset\, LLC,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Avanset\, LLC,L=Abakan,ST=Respublica Hakasia,C=RU

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7

  Certificate

  Issuer

  CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

  Not Before

  08-02-2010 00:00

  Not After

  07-02-2020 23:59

  Subject

  CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

  Extended Key Usages

  ExtKeyUsageClientAuth

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageCertSign

  KeyUsageCRLSign

  a2:6c:e3:63:21:66:42:49:80:c2:ef:a4:bf:47:88:ae:46:19:9a:df

  Signer

  Actual PE Digest

  a2:6c:e3:63:21:66:42:49:80:c2:ef:a4:bf:47:88:ae:46:19:9a:df

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Signature Validations

  Trusted

  false

  Verification

  Signing Certificate

  CN=Avanset\, LLC,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Avanset\, LLC,L=Abakan,ST=Respublica Hakasia,C=RU

  16-08-2012 07:24

  Valid: false

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetFullPathNameW

  GetFullPathNameA

  CreateFileA

  GetFileSize

  SetFilePointer

  MapViewOfFile

  UnmapViewOfFile

  SetEndOfFile

  FreeLibrary

  QueryPerformanceCounter

  InterlockedCompareExchange

  UnlockFile

  LockFile

  GetTickCount

  UnlockFileEx

  GetSystemTimeAsFileTime

  FormatMessageA

  WriteFile

  InitializeCriticalSection

  WideCharToMultiByte

  LoadLibraryW

  Sleep

  FormatMessageW

  GetVersionExW

  LeaveCriticalSection

  GetFileAttributesA

  GetFileAttributesW

  ReadFile

  CreateFileW

  MultiByteToWideChar

  FlushFileBuffers

  GetTempPathW

  GetLastError

  GetProcAddress

  LockFileEx

  EnterCriticalSection

  GetDiskFreeSpaceW

  LoadLibraryA

  CreateFileMappingW

  GetDiskFreeSpaceA

  GetSystemInfo

  GetFileAttributesExW

  DeleteCriticalSection

  CloseHandle

  DeleteFileW

  GetCurrentProcessId

  GetTempPathA

  LocalFree

  GetSystemTime

  AreFileApisANSI

  DeleteFileA

  HeapFree

  HeapAlloc

  HeapReAlloc

  GetCurrentThreadId

  DecodePointer

  GetCommandLineA

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  IsProcessorFeaturePresent

  HeapCreate

  HeapDestroy

  GetModuleHandleW

  ExitProcess

  GetStdHandle

  GetModuleFileNameW

  EncodePointer

  GetTimeZoneInformation

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  InterlockedIncrement

  SetLastError

  InterlockedDecrement

  SetHandleCount

  InitializeCriticalSectionAndSpinCount

  GetFileType

  GetStartupInfoW

  GetModuleFileNameA

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCPInfo

  GetACP

  GetOEMCP

  IsValidCodePage

  RtlUnwind

  HeapSize

  LCMapStringW

  GetStringTypeW

  CompareStringW

  SetEnvironmentVariableA

  Exports

  Exports

  sqlite3_aggregate_context

  sqlite3_aggregate_count

  sqlite3_auto_extension

  sqlite3_backup_finish

  sqlite3_backup_init

  sqlite3_backup_pagecount

  sqlite3_backup_remaining

  sqlite3_backup_step

  sqlite3_bind_blob

  sqlite3_bind_double

  sqlite3_bind_int

  sqlite3_bind_int64

  sqlite3_bind_null

  sqlite3_bind_parameter_count

  sqlite3_bind_parameter_index

  sqlite3_bind_parameter_name

  sqlite3_bind_text

  sqlite3_bind_text16

  sqlite3_bind_value

  sqlite3_bind_zeroblob

  sqlite3_blob_bytes

  sqlite3_blob_close

  sqlite3_blob_open

  sqlite3_blob_read

  sqlite3_blob_write

  sqlite3_busy_handler

  sqlite3_busy_timeout

  sqlite3_changes

  sqlite3_clear_bindings

  sqlite3_close

  sqlite3_collation_needed

  sqlite3_collation_needed16

  sqlite3_column_blob

  sqlite3_column_bytes

  sqlite3_column_bytes16

  sqlite3_column_count

  sqlite3_column_decltype

  sqlite3_column_decltype16

  sqlite3_column_double

  sqlite3_column_int

  sqlite3_column_int64

  sqlite3_column_name

  sqlite3_column_name16

  sqlite3_column_text

  sqlite3_column_text16

  sqlite3_column_type

  sqlite3_column_value

  sqlite3_commit_hook

  sqlite3_complete

  sqlite3_complete16

  sqlite3_context_db_handle

  sqlite3_create_collation

  sqlite3_create_collation16

  sqlite3_create_collation_v2

  sqlite3_create_function

  sqlite3_create_function16

  sqlite3_create_module

  sqlite3_create_module_v2

  sqlite3_data_count

  sqlite3_db_handle

  sqlite3_declare_vtab

  sqlite3_enable_load_extension

  sqlite3_enable_shared_cache

  sqlite3_errcode

  sqlite3_errmsg

  sqlite3_errmsg16

  sqlite3_exec

  sqlite3_expired

  sqlite3_extended_result_codes

  sqlite3_file_control

  sqlite3_finalize

  sqlite3_free

  sqlite3_free_table

  sqlite3_get_autocommit

  sqlite3_get_auxdata

  sqlite3_get_table

  sqlite3_global_recover

  sqlite3_interrupt

  sqlite3_last_insert_rowid

  sqlite3_libversion

  sqlite3_libversion_number

  sqlite3_limit

  sqlite3_load_extension

  sqlite3_malloc

  sqlite3_memory_alarm

  sqlite3_memory_highwater

  sqlite3_memory_used

  sqlite3_mprintf

  sqlite3_mutex_alloc

  sqlite3_mutex_enter

  sqlite3_mutex_free

  sqlite3_mutex_leave

  sqlite3_mutex_try

  sqlite3_open

  sqlite3_open16

  sqlite3_open_v2

  sqlite3_overload_function

  sqlite3_prepare

  sqlite3_prepare16

  sqlite3_prepare16_v2

  sqlite3_prepare_v2

  sqlite3_profile

  sqlite3_progress_handler

  sqlite3_randomness

  sqlite3_realloc

  sqlite3_release_memory

  sqlite3_reset

  sqlite3_reset_auto_extension

  sqlite3_result_blob

  sqlite3_result_double

  sqlite3_result_error

  sqlite3_result_error16

  sqlite3_result_error_code

  sqlite3_result_error_nomem

  sqlite3_result_error_toobig

  sqlite3_result_int

  sqlite3_result_int64

  sqlite3_result_null

  sqlite3_result_text

  sqlite3_result_text16

  sqlite3_result_text16be

  sqlite3_result_text16le

  sqlite3_result_value

  sqlite3_result_zeroblob

  sqlite3_rollback_hook

  sqlite3_set_authorizer

  sqlite3_set_auxdata

  sqlite3_sleep

  sqlite3_snprintf

  sqlite3_soft_heap_limit

  sqlite3_sql

  sqlite3_step

  sqlite3_test_control

  sqlite3_thread_cleanup

  sqlite3_threadsafe

  sqlite3_total_changes

  sqlite3_trace

  sqlite3_transfer_bindings

  sqlite3_update_hook

  sqlite3_user_data

  sqlite3_value_blob

  sqlite3_value_bytes

  sqlite3_value_bytes16

  sqlite3_value_double

  sqlite3_value_int

  sqlite3_value_int64

  sqlite3_value_numeric_type

  sqlite3_value_text

  sqlite3_value_text16

  sqlite3_value_text16be

  sqlite3_value_text16le

  sqlite3_value_type

  sqlite3_version

  sqlite3_vfs_find

  sqlite3_vfs_register

  sqlite3_vfs_unregister

  sqlite3_vmprintf

  Sections

  .text

  Size: 444KB - Virtual size: 443KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 44KB - Virtual size: 44KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 6KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 1024B - Virtual size: 696B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 13KB - Virtual size: 13KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ