e498b7a3b8c47519121d0f94bca46d9d4f4611a348377a1070cad78745e4f1b2

resource	yara_rule
sample	autoit_exe
static1/unpack001/Setup.exe	autoit_exe

.rar

ABCPY.INI

Setup.exe

.exe windows x86

870b8e75c7190e202e9c6c81dff1040c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

__WSAFDIsSet

setsockopt

ntohs

recvfrom

sendto

htons

select

listen

WSAStartup

bind

closesocket

connect

socket

send

WSACleanup

ioctlsocket

accept

WSAGetLastError

inet_addr

gethostbyname

gethostname

recv

version

VerQueryValueW

GetFileVersionInfoW

GetFileVersionInfoSizeW

winmm

timeGetTime

waveOutSetVolume

mciSendStringW

comctl32

ImageList_Remove

ImageList_SetDragCursorImage

ImageList_BeginDrag

ImageList_DragEnter

ImageList_DragLeave

ImageList_EndDrag

ImageList_DragMove

ImageList_ReplaceIcon

ImageList_Create

InitCommonControlsEx

ImageList_Destroy

mpr

WNetCancelConnection2W

WNetGetConnectionW

WNetAddConnection2W

WNetUseConnectionW

wininet

InternetReadFile

InternetCloseHandle

InternetOpenW

InternetSetOptionW

InternetCrackUrlW

HttpQueryInfoW

InternetConnectW

HttpOpenRequestW

HttpSendRequestW

FtpOpenFileW

FtpGetFileSize

InternetOpenUrlW

InternetQueryOptionW

InternetQueryDataAvailable

psapi

EnumProcesses

GetModuleBaseNameW

GetProcessMemoryInfo

EnumProcessModules

userenv

CreateEnvironmentBlock

DestroyEnvironmentBlock

UnloadUserProfile

LoadUserProfileW

kernel32

HeapAlloc

Sleep

GetCurrentThreadId

RaiseException

MulDiv

GetVersionExW

GetSystemInfo

MultiByteToWideChar

WideCharToMultiByte

GetModuleHandleW

QueryPerformanceCounter

VirtualFreeEx

OpenProcess

VirtualAllocEx

WriteProcessMemory

ReadProcessMemory

CreateFileW

SetFilePointerEx

ReadFile

WriteFile

FlushFileBuffers

TerminateProcess

CreateToolhelp32Snapshot

Process32FirstW

Process32NextW

SetFileTime

GetFileAttributesW

FindFirstFileW

FindClose

DeleteFileW

FindNextFileW

lstrcmpiW

MoveFileW

CopyFileW

CreateDirectoryW

RemoveDirectoryW

SetSystemPowerState

QueryPerformanceFrequency

FindResourceW

LoadResource

LockResource

SizeofResource

GetProcessHeap

OutputDebugStringW

GetLocalTime

CompareStringW

CompareStringA

InterlockedIncrement

InterlockedDecrement

DeleteCriticalSection

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

GetStdHandle

CreatePipe

InterlockedExchange

TerminateThread

GetTempPathW

GetTempFileNameW

VirtualFree

FormatMessageW

GetExitCodeProcess

SetErrorMode

GetPrivateProfileStringW

WritePrivateProfileStringW

GetPrivateProfileSectionW

WritePrivateProfileSectionW

GetPrivateProfileSectionNamesW

FileTimeToLocalFileTime

FileTimeToSystemTime

SystemTimeToFileTime

LocalFileTimeToFileTime

GetDriveTypeW

GetDiskFreeSpaceExW

GetDiskFreeSpaceW

GetVolumeInformationW

SetVolumeLabelW

CreateHardLinkW

DeviceIoControl

SetFileAttributesW

GetShortPathNameW

CreateEventW

SetEvent

GetEnvironmentVariableW

SetEnvironmentVariableW

GlobalLock

GlobalUnlock

GlobalAlloc

GetFileSize

GlobalFree

GlobalMemoryStatusEx

Beep

GetComputerNameW

GetWindowsDirectoryW

GetSystemDirectoryW

GetCurrentProcessId

GetCurrentThread

GetProcessIoCounters

CreateProcessW

SetPriorityClass

LoadLibraryW

VirtualAlloc

LoadLibraryExW

HeapFree

WaitForSingleObject

CreateThread

DuplicateHandle

GetLastError

CloseHandle

GetCurrentProcess

GetProcAddress

LoadLibraryA

FreeLibrary

GetModuleFileNameW

GetFullPathNameW

ExitProcess

ExitThread

GetSystemTimeAsFileTime

SetCurrentDirectoryW

IsDebuggerPresent

GetCurrentDirectoryW

ResumeThread

GetStartupInfoW

TlsGetValue

TlsAlloc

TlsSetValue

TlsFree

SetLastError

HeapSize

GetCPInfo

GetACP

GetOEMCP

IsValidCodePage

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetModuleFileNameA

HeapReAlloc

HeapCreate

SetHandleCount

GetFileType

GetStartupInfoA

SetStdHandle

GetConsoleCP

GetConsoleMode

LCMapStringW

LCMapStringA

RtlUnwind

SetFilePointer

GetTimeZoneInformation

GetTimeFormatA

GetDateFormatA

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCommandLineW

GetTickCount

GetStringTypeA

GetStringTypeW

GetLocaleInfoA

GetModuleHandleA

WriteConsoleA

GetConsoleOutputCP

WriteConsoleW

CreateFileA

SetEndOfFile

EnumResourceNamesW

SetEnvironmentVariableA

user32

SetWindowPos

GetCursorInfo

RegisterHotKey

ClientToScreen

GetKeyboardLayoutNameW

IsCharAlphaW

IsCharAlphaNumericW

IsCharLowerW

IsCharUpperW

GetMenuStringW

GetSubMenu

GetCaretPos

IsZoomed

MonitorFromPoint

GetMonitorInfoW

SetWindowLongW

SetLayeredWindowAttributes

FlashWindow

GetClassLongW

TranslateAcceleratorW

IsDialogMessageW

GetSysColor

InflateRect

DrawFocusRect

DrawTextW

FrameRect

DrawFrameControl

FillRect

PtInRect

DestroyAcceleratorTable

CreateAcceleratorTableW

SetCursor

GetWindowDC

GetSystemMetrics

GetActiveWindow

CharNextW

wsprintfW

RedrawWindow

DrawMenuBar

DestroyMenu

SetMenu

GetWindowTextLengthW

CreateMenu

IsDlgButtonChecked

DefDlgProcW

ReleaseCapture

SetCapture

WindowFromPoint

CreateIconFromResourceEx

mouse_event

ExitWindowsEx

SetActiveWindow

FindWindowExW

EnumThreadWindows

SetMenuDefaultItem

InsertMenuItemW

IsMenu

TrackPopupMenuEx

GetCursorPos

DeleteMenu

CheckMenuRadioItem

CopyImage

GetMenuItemCount

SetMenuItemInfoW

GetMenuItemInfoW

SetForegroundWindow

IsIconic

FindWindowW

SystemParametersInfoW

PeekMessageW

SendInput

GetAsyncKeyState

SetKeyboardState

GetKeyboardState

GetKeyState

VkKeyScanW

LoadStringW

DialogBoxParamW

MessageBeep

EndDialog

SendDlgItemMessageW

GetDlgItem

SetWindowTextW

CopyRect

ReleaseDC

GetDC

EndPaint

BeginPaint

GetClientRect

GetMenu

DestroyWindow

EnumWindows

GetDesktopWindow

IsWindow

IsWindowEnabled

IsWindowVisible

EnableWindow

InvalidateRect

GetWindowThreadProcessId

AttachThreadInput

GetFocus

GetWindowTextW

ScreenToClient

SendMessageTimeoutW

EnumChildWindows

CharUpperBuffW

GetClassNameW

GetParent

GetDlgCtrlID

SendMessageW

MapVirtualKeyW

PostMessageW

GetWindowRect

SetUserObjectSecurity

GetUserObjectSecurity

CloseDesktop

CloseWindowStation

OpenDesktopW

SetProcessWindowStation

GetProcessWindowStation

OpenWindowStationW

MessageBoxW

DefWindowProcW

MoveWindow

AdjustWindowRectEx

SetRect

SetClipboardData

EmptyClipboard

CountClipboardFormats

CloseClipboard

GetClipboardData

IsClipboardFormatAvailable

OpenClipboard

BlockInput

GetMessageW

LockWindowUpdate

DispatchMessageW

GetMenuItemID

TranslateMessage

SetFocus

PostQuitMessage

KillTimer

CreatePopupMenu

RegisterWindowMessageW

SetTimer

ShowWindow

CreateWindowExW

RegisterClassExW

LoadIconW

LoadCursorW

GetSysColorBrush

GetForegroundWindow

MessageBoxA

DestroyIcon

UnregisterHotKey

CharLowerBuffW

MonitorFromRect

keybd_event

LoadImageW

GetWindowLongW

gdi32

DeleteObject

GetObjectW

GetTextExtentPoint32W

ExtCreatePen

StrokeAndFillPath

StrokePath

EndPath

SetPixel

CloseFigure

CreateCompatibleBitmap

CreateCompatibleDC

SelectObject

StretchBlt

GetDIBits

LineTo

AngleArc

MoveToEx

Ellipse

PolyDraw

BeginPath

Rectangle

GetDeviceCaps

SetBkMode

RoundRect

SetBkColor

CreatePen

CreateSolidBrush

SetTextColor

CreateFontW

GetTextFaceW

GetStockObject

CreateDCW

GetPixel

DeleteDC

SetViewportOrgEx

comdlg32

GetSaveFileNameW

GetOpenFileNameW

advapi32

RegEnumValueW

RegDeleteValueW

RegDeleteKeyW

RegSetValueExW

RegCreateKeyExW

GetUserNameW

RegConnectRegistryW

RegEnumKeyExW

CloseServiceHandle

UnlockServiceDatabase

LockServiceDatabase

OpenSCManagerW

InitiateSystemShutdownExW

AdjustTokenPrivileges

RegCloseKey

RegQueryValueExW

RegOpenKeyExW

OpenThreadToken

OpenProcessToken

LookupPrivilegeValueW

DuplicateTokenEx

CreateProcessAsUserW

CreateProcessWithLogonW

InitializeSecurityDescriptor

InitializeAcl

GetLengthSid

SetSecurityDescriptorDacl

CopySid

LogonUserW

GetTokenInformation

GetAclInformation

GetAce

AddAce

GetSecurityDescriptorDacl

shell32

DragQueryPoint

ShellExecuteExW

SHGetFolderPathW

DragQueryFileW

SHEmptyRecycleBinW

SHBrowseForFolderW

SHFileOperationW

SHGetPathFromIDListW

SHGetDesktopFolder

SHGetMalloc

ExtractIconExW

Shell_NotifyIconW

ShellExecuteW

DragFinish

ole32

OleSetMenuDescriptor

MkParseDisplayName

OleSetContainedObject

CoInitialize

CoUninitialize

CoCreateInstance

CreateStreamOnHGlobal

CoTaskMemAlloc

CoTaskMemFree

CLSIDFromString

StringFromCLSID

IIDFromString

StringFromIID

OleInitialize

CreateBindCtx

CLSIDFromProgID

CoInitializeSecurity

CoCreateInstanceEx

CoSetProxyBlanket

OleUninitialize

oleaut32

SafeArrayAllocData

SafeArrayAllocDescriptorEx

SysAllocString

OleLoadPicture

SafeArrayGetVartype

SafeArrayDestroyData

SafeArrayAccessData

VarR8FromDec

VariantTimeToSystemTime

VariantClear

VariantCopy

VariantInit

SafeArrayDestroyDescriptor

LoadRegTypeLi

GetActiveObject

SafeArrayUnaccessData

Sections

.text
Size: 512KB - Virtual size: 512KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

VC10RT_x32/vc_red.cab

.cab

VC10RT_x64/vc_red.cab

.cab

cracked dll/amtlib.dll

.dll windows x86

4b0c57d946dfe01328f9273843e36c36

Code Sign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

01-05-2012 00:00

Not After

31-12-2012 23:59

Subject

CN=Symantec Time Stamping Services Signer - G3,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08-11-2006 00:00

Not After

07-11-2021 23:59

Subject

Extended Key Usages

ExtKeyUsageServerAuth

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

09:ac:06:4d:05:28:17:ff:4d:79:42:ea:69:76:c3:d8
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

20-09-2012 00:00

Not After

20-09-2013 23:59

Subject

CN=Adobe Systems\, Incorporated,OU=Acrobat XI+OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Adobe Systems\, Incorporated,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

1c:69:4e:39:52:8b:c9:ce:33:03:45:61:15:1a:f6:af:f7:34:17:ca
Signer

Actual PE Digest

1c:69:4e:39:52:8b:c9:ce:33:03:45:61:15:1a:f6:af:f7:34:17:ca

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Adobe Systems\, Incorporated,OU=Acrobat XI+OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Adobe Systems\, Incorporated,L=San Jose,ST=California,C=US

24-09-2012 03:23
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

winhttp

WinHttpGetProxyForUrl

WinHttpOpen

WinHttpGetIEProxyConfigForCurrentUser

WinHttpReceiveResponse

WinHttpQueryDataAvailable

WinHttpSetStatusCallback

WinHttpCrackUrl

WinHttpConnect

WinHttpOpenRequest

WinHttpAddRequestHeaders

WinHttpSetCredentials

WinHttpSendRequest

WinHttpReadData

WinHttpQueryHeaders

WinHttpCloseHandle

setupapi

CM_Get_DevNode_Status

SetupDiGetDeviceInstanceIdW

SetupDiGetDeviceRegistryPropertyW

SetupDiDestroyDeviceInfoList

SetupDiEnumDeviceInfo

SetupDiGetClassDevsW

iphlpapi

GetIfTable

kernel32

GetCurrentProcess

GetLastError

GetCurrentThread

SetLastError

FormatMessageW

FreeLibrary

LoadLibraryW

LocalFree

GetProcAddress

QueryPerformanceCounter

QueryPerformanceFrequency

GetEnvironmentVariableA

GetModuleFileNameW

CreateSemaphoreW

ReleaseSemaphore

WaitForSingleObject

InitializeCriticalSection

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

CreateThread

SetEvent

OpenEventW

GetTickCount

GetLocalTime

GetTimeZoneInformation

GetVersionExW

GetComputerNameExW

WideCharToMultiByte

MultiByteToWideChar

FreeEnvironmentStringsW

GetTempPathW

TryEnterCriticalSection

CloseHandle

ResumeThread

FindClose

FindNextFileW

FindFirstFileW

GlobalFree

WaitForMultipleObjects

CreateEventW

CreateProcessW

CreateDirectoryW

GetFileAttributesW

CreateFileW

SetFileAttributesW

IsDBCSLeadByteEx

GetFileSize

SetFilePointer

SetEndOfFile

UnlockFileEx

WriteFile

ReadFile

FlushFileBuffers

LockFileEx

LocalAlloc

InterlockedIncrement

InterlockedDecrement

lstrlenA

lstrlenW

GetModuleFileNameA

GetStartupInfoW

GetEnvironmentStringsW

GetConsoleCP

GetConsoleMode

FatalAppExitA

GetFileInformationByHandle

SwitchToThread

PeekNamedPipe

GetCurrentDirectoryW

SetCurrentDirectoryW

SetStdHandle

CreateFileA

GetFileAttributesA

GetFullPathNameA

GetUserDefaultLCID

GetLocaleInfoA

EnumSystemLocalesA

DeleteFileA

IsValidLocale

SetConsoleCtrlHandler

WriteConsoleW

GetProcessHeap

CompareStringW

SetEnvironmentVariableA

OutputDebugStringA

GetFileType

InitializeCriticalSectionAndSpinCount

SetHandleCount

GetLocaleInfoW

HeapSize

GetStdHandle

ExitProcess

IsValidCodePage

GetOEMCP

GetACP

HeapDestroy

HeapCreate

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

TerminateProcess

GetModuleHandleW

TlsFree

TlsSetValue

TlsGetValue

GetStringTypeW

InterlockedCompareExchange

InterlockedExchange

Sleep

EncodePointer

DecodePointer

RaiseException

RtlUnwind

GetSystemTimeAsFileTime

HeapFree

HeapReAlloc

HeapAlloc

GetFullPathNameW

GetCurrentThreadId

GetCommandLineA

GetCurrentProcessId

GetTimeFormatA

GetDateFormatA

FileTimeToSystemTime

FileTimeToLocalFileTime

GetDriveTypeW

FindFirstFileExW

SetFileTime

LocalFileTimeToFileTime

SystemTimeToFileTime

DeleteFileW

GetDriveTypeA

FindFirstFileExA

MoveFileA

LCMapStringW

GetCPInfo

IsProcessorFeaturePresent

TlsAlloc

user32

MessageBoxW

advapi32

RegDeleteKeyA

GetNamedSecurityInfoW

SetNamedSecurityInfoW

SetEntriesInAclW

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

RegQueryValueExA

RegOpenKeyA

RegCreateKeyA

SetSecurityInfo

RegOpenKeyExW

RegQueryValueExW

RegCreateKeyExW

RegSetValueExW

RegCloseKey

RegDeleteKeyW

SetTokenInformation

OpenThreadToken

OpenProcessToken

GetTokenInformation

AllocateAndInitializeSid

EqualSid

FreeSid

shell32

ShellExecuteA

SHGetFolderPathW

ole32

CoInitializeSecurity

CoCreateInstance

CoSetProxyBlanket

CoUninitialize

CoInitializeEx

oleaut32

CreateErrorInfo

SetErrorInfo

VariantInit

VariantChangeType

GetErrorInfo

SysAllocStringByteLen

VariantClear

SysStringLen

SysAllocString

SysFreeString

Exports

AMTGetCurrentLicenseState

AMTGetLibVersion

AMTGetParentLEIDLicenseStatus

AMTGetProductClearSerialNumber

AMTObtainProductLicense

AMTPlugPlugRequest

AMTPreObtainProductLicense

AMTPreValidateProductLicense

AMTReleaseProductLicense

AMTRetrieveAdobeID

AMTValidateProductLicense

GetAsnVersion

asnInst_InstallerProductInfo_constructor

asnInst_getAsnProductInfo

asnInst_getAsnProductInfoInMem

asn_exit

asn_info

asn_init

asn_makePrivate

asn_makePrivateEx

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

deployment/cs_CZ_Deployment.xml

.xml

deployment/cs_CZ_Deployment_x64.xml

.xml

deployment/cs_CZ_Hybrid_Deployment.xml

.xml

deployment/en_AE_Deployment.xml

.xml

deployment/en_AE_Deployment_x64.xml

.xml

deployment/en_AE_Hybrid_Deployment.xml

.xml

deployment/en_IL_Deployment.xml

.xml

deployment/en_IL_Deployment_x64.xml

.xml

deployment/en_IL_Hybrid_Deployment.xml

.xml

deployment/fr_MA_Deployment.xml

.xml

deployment/fr_MA_Deployment_x64.xml

.xml

deployment/fr_MA_Hybrid_Deployment.xml

.xml

deployment/hu_HU_Deployment.xml

.xml

deployment/hu_HU_Deployment_x64.xml

.xml

deployment/hu_HU_Hybrid_Deployment.xml

.xml

deployment/pl_PL_Deployment.xml

.xml

deployment/pl_PL_Deployment_x64.xml

.xml

deployment/pl_PL_Hybrid_Deployment.xml

.xml

deployment/ru_RU_Deployment.xml

.xml

deployment/ru_RU_Deployment_x64.xml

.xml

deployment/ru_RU_Hybrid_Deployment.xml

.xml

deployment/tr_TR_Deployment.xml

.xml

deployment/tr_TR_Deployment_x64.xml

.xml

deployment/tr_TR_Hybrid_Deployment.xml

.xml

deployment/uk_UA_Deployment.xml

.xml

deployment/uk_UA_Deployment_x64.xml

.xml

deployment/uk_UA_Hybrid_Deployment.xml

.xml

dll data/BRD.dll

.dll windows x86

74f3d48387c79e736335bdde49e0507a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringW

kernel32

GetEnvironmentVariableA

GetEnvironmentVariableW

GetModuleFileNameA

GetModuleHandleA

GetProcAddress

LoadLibraryA

SetEnvironmentVariableA

SetEnvironmentVariableW

VirtualProtect

GetModuleFileNameW

GetModuleHandleA

LoadLibraryA

LocalAlloc

LocalFree

GetModuleFileNameA

ExitProcess

winhttp

WinHttpSendRequest

Exports

42!ނLBuG�ML��O?T�ʙag2�09�ne�d��캈��5�2��7w��y��#<��#� ��}��!}�񦰛��U�W�Ѿ��@;��y��!��O5}�R$��B��U�㣠��jȱk_Աe��>M|=j��[�b�q{��4On��6��1��&+��@O��r0~1�c�Qb��t��gZ)��|��dm>�'Wْ��Ҏ?�Bf�e��g��~9�1��M��?��q%g��"@��w�7n�a]`�x��ۢ��ދ�FS� L��n��ɛ��h��U��ZDɚQ�S2qe�0��_Mr��&Z��i䳂��PRA �� k#�+��³��5 ��WBy�%�-��JUVl�I� ��I�x--��)��>��5�rsmw|��ky��2�^ ގq� VCe��Bp��ߛ�\IF��X��I>��!�LH�ޥ5�m�^�p|{�b�p�q;��2�n��}�E��P�M8S�z��.ߑ\-��:�ROO�c:0��-�/�v˭7;��v��6Q<K#��3 #�#�:��j��2��s��θ�4�\-$�MD�/Ҁ��4��Q3D�~��K�x�<De�3�bp�]ʮ�h�z n�ߢ��yɀ�f`��.P.+��V�6/&<�D�ߨ<��$��,eUY�;��6��B|�#[�GS�<��aM��e�C'��ݧ �ks��==��Z��8۔��`cͿn�,Tm�Ia��ڬ; ��2�E�`ngO��Ȥ<X[d�ʦ��-1W��A��Yz��=귀�Q�cƀL �b�4�!�v��v�d��-�砧r�6_o��M�(�s��V˙_l�Ma��@��I�e��U�K��}�j౬��r��T��\=D2d|n�tY�O��'N��C��+0M6��"��\�) �)��DG�_��EhJ/V"��^J��<�2����4�� b8��Z$#�1)X,�a��D7�ND�QoH�a�\Pk�}C��<'�gt��yW�܄#��F��@8,K��To^f�h=q�5w�7JE�bzF�03�Ӣ��h)nП!^i_��]�d!�$�/N�{"�Ff��S_��j�^� ��n~&��ao��9q䅶�~��ثPfsғ@G ��MDX�모��£��<��DG��6��7�H��`c�u��O��k��n�X j��=hc�� *�OwB_�Q�q<�$jc�%m�G��$L[&E"� w�<�R�]�Vr�a8#�E��ƽERa$��0��%[�D@dd�5A~�Fz�3i.��5U�^$ �m��ү��ƽ!� 1�O|b�� v"��}� ��Η��nO�W�Ɏf�B�N,f͋�#Nd�Ha[ ��q9,]��:�;��v��?3�$|��;�RۻeG��z��јÔ��!8>k,��{��gg�e8�_�F׆�A6��9 C��\D�噩H�3^;%��m�\+��\��<��S6�q7��e�+rZ!�κ��|��ٱ'�jy�[�Hg��`�� g��"2��¤�7rF%�a��)�w�-�jF4�Z��)��θ�F�o� ��C��Ek7��s�1�"��B�N E+�(ޏ\�6dg�+$��L�IG3~y�fn� f��ՆYL��?�X�1jg�e/j�mj�8��E��!�7�B��bI��~��u�M�qq�]G��^w�X,z $�w��*�w�gJ��N�GYJ��?��o!�؋�VV��ah1X�'uo/ȍ�d� �1p��3�J��?��b |�r��ǂt%F�1X3���� +��G�zi`��1_)�� J��7=�[�{G2&��A�.��Gĺ/�VZ=s#ǥ)��v��SO�3Jc��[߶ ��)�5D��t �r�F]*��e{e%ZHjvC��]��G�;�4��6Y�a�Wu*/��Gc��Iۭ�`��C:�L)�_�g�@�ԩG%A�#��uJ��d}�u�Kb�}�2Γ<<m|t�-K�|�F��[&в�}�V�/;��s�Y��VW�e^�ᙑ�)}x��R��J��%E`��L}�jM��t׌ڼM�� n1�z�(HDf�VwQ��pE�+�u:�'�8f��W� ��/s��%��T�9dO�#Oy��]�U�{��V�^�*L�� 8OMx�L6��[w3p�"��"EbQ�a#��E��E��`��4ڌG~:�h��.*D�)t� ��dt��K��{��"��؈�:�Zd�q%��?��ӛ*.}�כ�^ �;R��J��of|�yB\� ��dσ_�k!�3��ܦVO ^`�dH\��/au�9ard��2��qsySэr��ة��Kr��0X�o'\��/��"gNOv��E9;��} gt �cb�O��c�ē��yq�gg��M�k�d�φϱ��^��54^9��@��8��dG&]��&r�� [46��B�� CWwM&]��V�1��֞t��{��U��C�ȱ��!��>}u� �;%��.xĘx'Q��>wI��a�2ꥶiHV�X;��Z y�p�R��o�_�O�i��M9Y�|�v�2�۠��ܭ�u��(��*��c��/�IH��;��BEp�DT`��J�$l�8��j��4�ِ%6��r��&^R>Q0�@��8�_�D�?��,�X,r�٭��"�)#d,�x��ad-��o]�ӟqҮ_8��ޜ�T��-g:J�_�Li2�ДQe= ��k��S��L�W��/ ��˻��' ��Z֦_N�&Y�0

BRDFixer

Sections

.text
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.BRD0
Size: - Virtual size: 54KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.BRD1
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

dll data/DTCommonRes.dll

.dll windows x86

6df4ce90cb968c7078afb5b100772d94

Code Sign

11:21:35:64:05:60:9a:b9:5f:8d:db:13:16:4b:82:f9:6d:e5
Certificate

Issuer

CN=GlobalSign CodeSigning CA - G2,O=GlobalSign nv-sa,C=BE

Not Before

29-05-2012 17:52

Not After

30-05-2015 17:52

Subject

CN=Disc Soft Ltd,O=Disc Soft Ltd,L=Belize city,ST=Belize,C=BZ,1.2.840.113549.1.9.1=#0c1366696e707240646973632d736f66742e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:2f:4e:e1:35:5c
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

13-04-2011 10:00

Not After

13-04-2019 10:00

Subject

CN=GlobalSign CodeSigning CA - G2,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

01-05-2012 00:00

Not After

31-12-2012 23:59

Subject

CN=Symantec Time Stamping Services Signer - G3,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

74:bf:a8:bd:0e:6e:ca:04:1e:08:88:01:0e:cc:58:c3:cf:f9:4b:f7
Signer

Actual PE Digest

74:bf:a8:bd:0e:6e:ca:04:1e:08:88:01:0e:cc:58:c3:cf:f9:4b:f7

Digest Algorithm

sha1

PE Digest Matches

false

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Disc Soft Ltd,O=Disc Soft Ltd,L=Belize city,ST=Belize,C=BZ,1.2.840.113549.1.9.1=#0c1366696e707240646973632d736f66742e636f6d

23-10-2012 08:24
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetIconSize

_TrackMouseEvent

user32

IsWindowVisible

GetParent

SetWindowPos

MoveWindow

ScreenToClient

GetWindowRect

CreateWindowExW

ShowWindow

GetDlgItem

SetWindowTextW

DialogBoxParamW

EndPaint

GetSysColorBrush

FrameRect

LoadIconW

GetDesktopWindow

SetTimer

KillTimer

LoadMenuW

GetMonitorInfoW

EmptyClipboard

SetClipboardData

CloseClipboard

InvalidateRect

DestroyIcon

SetDlgItemTextW

LoadImageW

DrawIconEx

GetCaretPos

MessageBeep

IsWindowEnabled

CheckDlgButton

IsWindow

DialogBoxIndirectParamW

GetDlgItemTextW

SetCursor

SetFocus

MonitorFromWindow

CopyRect

PostMessageW

GetDC

ReleaseDC

MessageBoxW

OpenClipboard

EnableWindow

GetCapture

GetClipboardOwner

GetClipboardViewer

GetInputState

GetMessagePos

UnregisterClassA

GetWindowRgn

DestroyCursor

SubtractRect

MapVirtualKeyExW

IsCharLowerW

GetDoubleClickTime

CharUpperBuffW

CopyIcon

RegisterClipboardFormatW

IsClipboardFormatAvailable

SetMenuDefaultItem

WaitMessage

PostThreadMessageW

CreateMenu

IsMenu

UpdateLayeredWindow

UnionRect

MonitorFromPoint

TranslateMDISysAccel

DrawMenuBar

DefMDIChildProcW

DefFrameProcW

UnpackDDElParam

ReuseDDElParam

InsertMenuItemW

TranslateAcceleratorW

GetNextDlgGroupItem

GetIconInfo

EnableScrollBar

HideCaret

InvertRect

GetMenuDefaultItem

LockWindowUpdate

BringWindowToTop

SetCursorPos

SetRect

CreateAcceleratorTableW

LoadAcceleratorsW

GetKeyboardState

GetKeyboardLayout

ToUnicodeEx

CopyAcceleratorTableW

DrawFrameControl

DrawEdge

DrawStateW

SetClassLongW

NotifyWinEvent

WindowFromPoint

CreatePopupMenu

DestroyAcceleratorTable

SetParent

SetWindowRgn

IsZoomed

OffsetRect

IsRectEmpty

CharUpperW

DeleteMenu

IntersectRect

SetLayeredWindowAttributes

EnumDisplayMonitors

SetRectEmpty

CopyImage

RealChildWindowFromPoint

UnregisterClassW

LoadCursorW

UpdateWindow

GetWindowTextW

GetTopWindow

GetWindow

GetSystemMenu

EnableMenuItem

GetAsyncKeyState

GetDlgCtrlID

GetFocus

CallNextHookEx

SetWindowsHookExW

UnhookWindowsHookEx

GetKeyState

GetNextDlgTabItem

GetClassNameW

EnumChildWindows

RegisterWindowMessageW

LoadBitmapW

ClientToScreen

DrawTextW

GetWindowTextLengthW

GetSystemMetrics

CreateDialogParamW

GetMessageW

TranslateMessage

DispatchMessageW

GetUpdateRect

DestroyWindow

PostQuitMessage

IsIconic

DrawIcon

GetSysColor

CallWindowProcW

GetPropW

ReleaseCapture

InflateRect

DrawFocusRect

SetPropW

PtInRect

SetCapture

RemovePropW

GetCursorPos

GetWindowThreadProcessId

MapDialogRect

ShowOwnedPopups

GetWindowDC

GrayStringW

DrawTextExW

TabbedTextOutW

FillRect

DestroyMenu

GetMenuItemInfoW

MapVirtualKeyW

GetKeyNameTextW

CreateDialogIndirectParamW

SetMenuItemBitmaps

AllowSetForegroundWindow

DefWindowProcW

SystemParametersInfoW

GetDialogBaseUnits

GetMenuCheckMarkDimensions

ModifyMenuW

CheckMenuItem

IsDialogMessageW

SendDlgItemMessageW

SendDlgItemMessageA

WinHelpW

IsChild

GetClassLongW

GetForegroundWindow

GetLastActivePopup

SetActiveWindow

BeginDeferWindowPos

EndDeferWindowPos

PeekMessageW

MapWindowPoints

ScrollWindow

TrackPopupMenu

SetMenu

SetScrollRange

GetQueueStatus

GetProcessWindowStation

GetOpenClipboardWindow

GetMessageTime

GetScrollRange

SetScrollPos

GetScrollPos

ShowScrollBar

BeginPaint

GetClientRect

SendMessageW

EndDialog

SetForegroundWindow

GetActiveWindow

EnumWindows

SetWindowLongW

GetWindowLongW

RemoveMenu

GetSubMenu

GetMenuItemCount

InsertMenuW

GetMenuItemID

AppendMenuW

GetMenuStringW

GetMenuState

GetMenu

GetWindowPlacement

SetWindowPlacement

SetScrollInfo

GetScrollInfo

DeferWindowPos

EqualRect

AdjustWindowRectEx

RegisterClassW

GetClassInfoW

GetClassInfoExW

ValidateRect

RedrawWindow

ExitWindowsEx

kernel32

GetUserDefaultLCID

GetSystemTimeAsFileTime

GetSystemInfo

GetVolumeInformationW

VirtualUnlock

VirtualLock

LoadLibraryA

QueryPerformanceCounter

GetStartupInfoA

GetProcessWorkingSetSize

GetProcessTimes

GetThreadTimes

GlobalMemoryStatus

GlobalSize

CreateActCtxW

ReleaseActCtx

lstrcmpW

CompareStringW

GlobalDeleteAtom

GlobalFindAtomW

FreeResource

InterlockedExchange

GetSystemDefaultUILanguage

ConvertDefaultLocale

GetUserDefaultUILanguage

lstrcmpA

SetThreadPriority

ResumeThread

GetPrivateProfileIntW

VirtualProtect

GetFileAttributesExW

FileTimeToSystemTime

FileTimeToLocalFileTime

GetFileSizeEx

GetFileTime

LocalAlloc

TlsGetValue

GlobalReAlloc

GlobalHandle

TlsAlloc

TlsSetValue

LocalReAlloc

TlsFree

SetErrorMode

GlobalGetAtomNameW

GlobalFlags

GetSystemDirectoryW

lstrcpyW

lstrcmpiW

SetFilePointer

FlushFileBuffers

LockFile

UnlockFile

SetEndOfFile

GetFileSize

DuplicateHandle

GetFullPathNameW

GetWindowsDirectoryW

GetProfileIntW

SearchPathW

EncodePointer

DecodePointer

ExitThread

GetCommandLineA

RtlUnwind

HeapReAlloc

ExitProcess

HeapSize

HeapQueryInformation

VirtualAlloc

VirtualQuery

SetStdHandle

GetFileType

TerminateProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

IsProcessorFeaturePresent

GetCPInfo

GetLocaleInfoA

GetOEMCP

IsValidCodePage

HeapCreate

HeapDestroy

GetStdHandle

GetTimeZoneInformation

GetStringTypeW

LCMapStringW

SetHandleCount

GetStartupInfoW

GetModuleFileNameA

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetConsoleCP

GetConsoleMode

EnumSystemLocalesA

IsValidLocale

WriteConsoleW

SetEnvironmentVariableA

FindResourceExW

GetPrivateProfileStringW

WritePrivateProfileStringW

GetCurrentThread

MulDiv

FlushInstructionCache

GetCurrentProcess

GetModuleFileNameW

WaitNamedPipeW

CreateProcessW

GlobalAddAtomW

DeleteAtom

GetNumberFormatW

GetLocaleInfoW

InterlockedDecrement

InterlockedIncrement

InitializeCriticalSectionAndSpinCount

GetFileAttributesW

FindClose

FindNextFileW

GetCurrentThreadId

GetVersionExW

FindFirstFileW

RaiseException

CreateDirectoryW

DeleteFileW

HeapFree

GetProcessHeap

HeapAlloc

CreateEventA

CopyFileW

LocalFree

FormatMessageW

MoveFileExW

GetTempFileNameW

GetTempPathW

lstrlenW

GetLogicalDriveStringsW

MultiByteToWideChar

CreateFileW

GlobalFree

GlobalUnlock

GlobalLock

GlobalAlloc

ActivateActCtx

DeactivateActCtx

SetLastError

SetCurrentDirectoryW

GetCurrentDirectoryW

CreateThread

LeaveCriticalSection

EnterCriticalSection

DeleteCriticalSection

InitializeCriticalSection

GetModuleHandleW

GetProcAddress

LoadLibraryW

DisconnectNamedPipe

WriteFile

ReadFile

GetOverlappedResult

WaitForMultipleObjects

GetLastError

SetEvent

ConnectNamedPipe

GetCurrentProcessId

CreateNamedPipeW

Sleep

FreeLibrary

LoadLibraryExW

WideCharToMultiByte

FindResourceW

LoadResource

LockResource

SizeofResource

WaitForSingleObject

GetTickCount

CloseHandle

CreateEventW

ResetEvent

OpenEventA

InterlockedPopEntrySList

VirtualFree

InterlockedPushEntrySList

InterlockedCompareExchange

lstrlenA

GetACP

gdi32

SetPixelV

GetTextFaceW

SetPaletteEntries

ExtFloodFill

GetBoundsRect

FrameRgn

FillRgn

PtInRegion

GetViewportOrgEx

GetWindowOrgEx

LPtoDP

Rectangle

SetPixel

StretchBlt

SetDIBColorTable

GetRgnBox

OffsetRgn

GetSystemPaletteEntries

RealizePalette

GetNearestPaletteIndex

GetPaletteEntries

CreatePalette

Polygon

Ellipse

Polyline

CreateEllipticRgn

GetTextColor

GetBkColor

CreatePolygonRgn

CreateRoundRectRgn

EnumFontFamiliesExW

DPtoLP

CombineRgn

SetRectRgn

GetTextCharsetInfo

EnumFontFamiliesW

GetTextMetricsW

CreateCompatibleBitmap

CreateDIBitmap

CreateHatchBrush

GetObjectType

SelectPalette

CreatePatternBrush

ExtSelectClipRgn

ScaleWindowExtEx

SetWindowExtEx

OffsetWindowOrgEx

SetWindowOrgEx

ScaleViewportExtEx

SetViewportExtEx

OffsetViewportOrgEx

SetViewportOrgEx

Escape

TextOutW

RectVisible

PtVisible

GetPixel

GetWindowExtEx

GetViewportExtEx

CreateRectRgn

SelectClipRgn

SetLayout

GetLayout

SetTextAlign

MoveToEx

LineTo

IntersectClipRect

ExcludeClipRect

GetClipBox

SetMapMode

SetROP2

SetPolyFillMode

RestoreDC

SaveDC

BitBlt

CreateCompatibleDC

PatBlt

CreateRectRgnIndirect

CreateBitmap

CopyMetaFileW

SetDIBitsToDevice

SetDIBits

CreateDIBSection

GetBitmapBits

CreatePen

CreateSolidBrush

DeleteDC

CreateDCW

RoundRect

SetBkColor

ExtTextOutW

CreateFontW

SetTextColor

SetBkMode

CreateFontIndirectW

GetObjectW

GetDeviceCaps

DeleteObject

GetStockObject

GetTextExtentPoint32W

SelectObject

msimg32

AlphaBlend

TransparentBlt

comdlg32

GetFileTitleW

GetSaveFileNameW

GetOpenFileNameW

winspool.drv

OpenPrinterW

DocumentPropertiesW

ClosePrinter

advapi32

RegDeleteValueW

RegSetValueExW

RegCloseKey

RegOpenKeyExW

OpenProcessToken

OpenThreadToken

GetTokenInformation

LookupPrivilegeValueW

IsValidSid

AdjustTokenPrivileges

RegEnumValueW

RegQueryValueW

RegEnumKeyW

RegOpenKeyExA

RegQueryValueExA

CryptGenRandom

ConvertSidToStringSidW

RegEnumKeyExW

RegDeleteKeyW

RegQueryValueExW

RegCreateKeyExW

shell32

ord680

SHAppBarMessage

DragFinish

SHGetSpecialFolderLocation

SHGetDesktopFolder

SHGetFileInfoW

DuplicateIcon

SHGetSpecialFolderPathW

DragQueryFileW

SHGetPathFromIDListW

SHBrowseForFolderW

SHGetDiskFreeSpaceExW

ShellExecuteW

ShellExecuteExW

shlwapi

PathStripToRootW

PathFindExtensionW

PathRemoveFileSpecW

PathFindFileNameW

PathIsUNCW

ole32

RevokeDragDrop

CoLockObjectExternal

RegisterDragDrop

DoDragDrop

CreateStreamOnHGlobal

OleLockRunning

IsAccelerator

OleTranslateAccelerator

OleDestroyMenuDescriptor

OleCreateMenuDescriptor

CoInitializeEx

CoUninitialize

OleDuplicateData

CoTaskMemAlloc

ReleaseStgMedium

CoCreateInstance

CoTaskMemFree

CoInitialize

CoCreateGuid

OleGetClipboard

oleaut32

VariantInit

VariantChangeType

VariantClear

VarBstrCat

VarBstrFromDate

SystemTimeToVariantTime

VariantTimeToSystemTime

SysStringLen

SysStringByteLen

SysAllocStringByteLen

SysAllocStringLen

VarBstrCmp

SysAllocString

SysFreeString

oleacc

LresultFromObject

AccessibleObjectFromWindow

CreateStdAccessibleObject

gdiplus

GdipSetInterpolationMode

GdipCreateFromHDC

GdiplusShutdown

GdiplusStartup

GdipDrawImageRectI

GdipDisposeImage

GdipDeleteGraphics

GdipAlloc

GdipFree

GdipCloneImage

GdipGetImageWidth

GdipGetImageHeight

GdipGetImagePixelFormat

GdipGetImagePaletteSize

GdipGetImagePalette

GdipCreateBitmapFromStream

GdipCreateBitmapFromScan0

GdipCreateBitmapFromHBITMAP

GdipBitmapLockBits

GdipDrawImageI

GdipGetImageGraphicsContext

GdipBitmapUnlockBits

imm32

ImmReleaseContext

ImmGetContext

ImmGetOpenStatus

winmm

PlaySoundW

Exports

??0?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@QAE@XZ

??0?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@QAE@XZ

??_B?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@23@XZ@51

??_B?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCRequestSimple@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCRequestSimple@DTNet@@@23@XZ@51

??_B?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCResponseCommon@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCResponseCommon@DTNet@@@23@XZ@51

??_B?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@23@XZ@51

??_B?1??get_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@3@XZ@51

??_B?1??get_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@3@XZ@51

??_B?1??get_instance@?$singleton@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ@51

??_B?1??get_instance@?$singleton@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@3@XZ@51

??_B?1??get_instance@?$singleton@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ@51

??_B?1??get_instance@?$singleton@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@XZ@51

??_B?1??get_instance@?$singleton@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@XZ@51

??_B?1??get_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@3@XZ@51

??_B?1??get_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@3@XZ@51

??_B?1??get_instance@?$singleton@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@XZ@51

?CheckSPTDInstallation@DTProRes@@YGHPAUHWND__@@PAUIDaemonProEngine@@HHPA_N@Z

?DevicesListDialog@@YGJPAUHWND__@@KVCComBSTR@ATL@@AAV23@PAUIDaemonProEngine@@@Z

?EditBox@@YGHPAUHWND__@@PB_W1PA_WK2H@Z

?GetComputerNameDialog@@YGHPAUHWND__@@PAUIDaemonProEngine@@PA_WJH@Z

?GetUserNameAndPassword@@YGHPAUHWND__@@PAUIDaemonProEngine@@PA_W2@Z

?IsDeviceInfoShowed@@YGHXZ

?IsDeviceParametersShowed@@YGHXZ

?IsEraseDialogShowed@@YGHXZ

?MessageBoxChecked@@YGIPAUHWND__@@PB_W1PAH@Z

?MessageBoxExt@DTProRes@@YGIPAUHWND__@@PB_W1111I@Z

?ProcessingInProgress@@YGHXZ

?ReleaseDTProResObjects@@YGXXZ

?SelectImageCatalogFolder@@YGHPAUHWND__@@PAUIDaemonProEngine@@PAUITreeItems@@PAPAU3@@Z

?SetInvisibleWaitDialog@@YGX_N@Z

?ShowBurnImageDialog@@YGXPAUIDaemonProEngine@@PAUHWND__@@PA_WHPAVIAttachedProgress@@@Z

?ShowConvertImagesDialog@@YGXPAUIDaemonProEngine@@PAUHWND__@@PA_WPAVIAttachedProgress@@@Z

?ShowDeviceInfo@@YGXPAUHWND__@@PAUIPhysicalDevice@@PAUIDeviceInfo@@@Z

?ShowDeviceParameters@@YGXPAUHWND__@@PAUIVirtDeviceParam@@@Z

?ShowEraseDiskDialog@@YGXPAUIDaemonProEngine@@PAUHWND__@@PAUIPhysicalDevice@@@Z

?ShowGrabDiskDialog@@YGXPAUIDaemonProEngine@@PAUHWND__@@PAUIPhysicalDevice@@PAVIAttachedProgress@@@Z

?ShowStatSetupDlg@@YGXPAUHWND__@@PAUIDaemonProEngine@@@Z

?SplashHide@@YGXXZ

?SplashSetMessageText@@YGXPA_W@Z

?SplashShow@@YGPAUHWND__@@PAUIDaemonProEngine@@@Z

?get_const_instance@?$singleton@V?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@serialization@boost@@@serialization@boost@@SAABV?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@23@XZ

?get_const_instance@?$singleton@V?$extended_type_info_typeid@UCRequestSimple@DTNet@@@serialization@boost@@@serialization@boost@@SAABV?$extended_type_info_typeid@UCRequestSimple@DTNet@@@23@XZ

?get_const_instance@?$singleton@V?$extended_type_info_typeid@UCResponseCommon@DTNet@@@serialization@boost@@@serialization@boost@@SAABV?$extended_type_info_typeid@UCResponseCommon@DTNet@@@23@XZ

?get_const_instance@?$singleton@V?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@serialization@boost@@@serialization@boost@@SAABV?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@23@XZ

?get_const_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@boost@@@serialization@boost@@SAABV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@3@XZ

?get_const_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@SAABV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@3@XZ

?get_const_instance@?$singleton@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@SAABV?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ

?get_const_instance@?$singleton@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@serialization@boost@@SAABV?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@3@XZ

?get_const_instance@?$singleton@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@SAABV?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ

?get_const_instance@?$singleton@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@serialization@boost@@SAABV?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@XZ

?get_const_instance@?$singleton@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@serialization@boost@@SAABV?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@XZ

?get_const_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@SAABV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@3@XZ

?get_const_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@@serialization@boost@@SAABV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@3@XZ

?get_const_instance@?$singleton@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@serialization@boost@@SAABV?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@XZ

?get_instance@?$singleton@V?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@23@XZ

?get_instance@?$singleton@V?$extended_type_info_typeid@UCRequestSimple@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCRequestSimple@DTNet@@@23@XZ

?get_instance@?$singleton@V?$extended_type_info_typeid@UCResponseCommon@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCResponseCommon@DTNet@@@23@XZ

?get_instance@?$singleton@V?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@23@XZ

?get_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@3@XZ

?get_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@3@XZ

?get_instance@?$singleton@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ

?get_instance@?$singleton@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@3@XZ

?get_instance@?$singleton@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ

?get_instance@?$singleton@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@XZ

?get_instance@?$singleton@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@XZ

?get_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@3@XZ

?get_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@3@XZ

?get_instance@?$singleton@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@XZ

?get_mutable_instance@?$singleton@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@SAAAV?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ

?get_mutable_instance@?$singleton@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@serialization@boost@@SAAAV?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@3@XZ

?get_mutable_instance@?$singleton@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@SAAAV?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@XZ

?get_mutable_instance@?$singleton@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@serialization@boost@@SAAAV?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@XZ

?get_mutable_instance@?$singleton@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@serialization@boost@@SAAAV?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@XZ

?get_mutable_instance@?$singleton@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@serialization@boost@@SAAAV?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@XZ

?instance@?$singleton@V?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@serialization@boost@@@serialization@boost@@0AAV?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@23@A

?instance@?$singleton@V?$extended_type_info_typeid@UCRequestSimple@DTNet@@@serialization@boost@@@serialization@boost@@0AAV?$extended_type_info_typeid@UCRequestSimple@DTNet@@@23@A

?instance@?$singleton@V?$extended_type_info_typeid@UCResponseCommon@DTNet@@@serialization@boost@@@serialization@boost@@0AAV?$extended_type_info_typeid@UCResponseCommon@DTNet@@@23@A

?instance@?$singleton@V?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@serialization@boost@@@serialization@boost@@0AAV?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@23@A

?instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@boost@@@serialization@boost@@0AAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@3@A

?instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@0AAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@3@A

?instance@?$singleton@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@0AAV?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@A

?instance@?$singleton@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@serialization@boost@@0AAV?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@3@A

?instance@?$singleton@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@0AAV?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@3@A

?instance@?$singleton@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@serialization@boost@@0AAV?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@A

?instance@?$singleton@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@serialization@boost@@0AAV?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@A

?instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@0AAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@3@A

?instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@@serialization@boost@@0AAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@3@A

?instance@?$singleton@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@serialization@boost@@0AAV?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@A

?is_destroyed@?$singleton@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@SA_NXZ

?is_destroyed@?$singleton@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@serialization@boost@@SA_NXZ

?is_destroyed@?$singleton@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@SA_NXZ

?is_destroyed@?$singleton@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@serialization@boost@@SA_NXZ

?is_destroyed@?$singleton@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@serialization@boost@@SA_NXZ

?is_destroyed@?$singleton@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@serialization@boost@@SA_NXZ

?load_object_data@?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@boost@@UBEXAAVbasic_iarchive@234@PAXI@Z

?load_object_data@?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@boost@@UBEXAAVbasic_iarchive@234@PAXI@Z

?save_object_data@?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@UBEXAAVbasic_oarchive@234@PBX@Z

?save_object_data@?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@UBEXAAVbasic_oarchive@234@PBX@Z

?t@?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@34@XZ@4V?$singleton_wrapper@V?$extended_type_info_typeid@UCRequestHandShake@DTNet@@@serialization@boost@@@detail@34@A

?t@?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCRequestSimple@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCRequestSimple@DTNet@@@34@XZ@4V?$singleton_wrapper@V?$extended_type_info_typeid@UCRequestSimple@DTNet@@@serialization@boost@@@detail@34@A

?t@?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCResponseCommon@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCResponseCommon@DTNet@@@34@XZ@4V?$singleton_wrapper@V?$extended_type_info_typeid@UCResponseCommon@DTNet@@@serialization@boost@@@detail@34@A

?t@?1??get_instance@?$singleton@V?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@serialization@boost@@@serialization@boost@@CAAAV?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@34@XZ@4V?$singleton_wrapper@V?$extended_type_info_typeid@UCResponseHandShake@DTNet@@@serialization@boost@@@detail@34@A

?t@?1??get_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@4@XZ@4V?$singleton_wrapper@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseCommon@DTNet@@@detail@archive@boost@@@634@A

?t@?1??get_instance@?$singleton@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@4@XZ@4V?$singleton_wrapper@V?$iserializer@Vbinary_iarchive@archive@boost@@UCResponseHandShake@DTNet@@@detail@archive@boost@@@634@A

?t@?1??get_instance@?$singleton@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@4@XZ@4V?$singleton_wrapper@V?$map@Vbinary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@734@A

?t@?1??get_instance@?$singleton@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@4@XZ@4V?$singleton_wrapper@V?$map@Vbinary_oarchive@archive@boost@@@?A0xab0f94b0@detail@archive@boost@@@734@A

?t@?1??get_instance@?$singleton@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@serialization@boost@@CAAAV?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@4@XZ@4V?$singleton_wrapper@V?$map@Vnaked_binary_iarchive@archive@boost@@@?A0x0bea4b6d@detail@archive@boost@@@734@A

?t@?1??get_instance@?$singleton@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@XZ@4V?$singleton_wrapper@V?$multiset@PBVextended_type_info@serialization@boost@@Ukey_compare@detail@23@V?$allocator@PBVextended_type_info@serialization@boost@@@std@@@std@@@detail@34@A

?t@?1??get_instance@?$singleton@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@XZ@4V?$singleton_wrapper@V?$multiset@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@Utype_compare@234@V?$allocator@PBVextended_type_info_typeid_0@typeid_system@serialization@boost@@@std@@@std@@@detail@34@A

?t@?1??get_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@4@XZ@4V?$singleton_wrapper@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestHandShake@DTNet@@@detail@archive@boost@@@634@A

?t@?1??get_instance@?$singleton@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@@serialization@boost@@CAAAV?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@4@XZ@4V?$singleton_wrapper@V?$oserializer@Vbinary_oarchive@archive@boost@@UCRequestSimple@DTNet@@@detail@archive@boost@@@634@A

?t@?1??get_instance@?$singleton@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@serialization@boost@@CAAAV?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@XZ@4V?$singleton_wrapper@V?$set@PBVvoid_caster@void_cast_detail@serialization@boost@@Uvoid_caster_compare@234@V?$allocator@PBVvoid_caster@void_cast_detail@serialization@boost@@@std@@@std@@@detail@34@A

CheckForUpdateCommand

ShowLicenseDialogCommand

_AboutDialogShow@8

_CheckLicenseAsyncCommand@12

_CheckLicenseCommand@16

Sections

.BRD
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.BRD
Size: 393KB - Virtual size: 393KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.BRD
Size: 35KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.BRD
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.BRD
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.BRD
Size: 226KB - Virtual size: 225KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

reg key/FLRegKey.reg

reg key/R2R.nfo

resources/Dictionary/cs_CZ/stringTable.zdct

resources/Dictionary/da_DK/stringTable.zdct

resources/Dictionary/de_DE/stringTable.zdct

resources/Dictionary/en_AE/stringTable.zdct

resources/Dictionary/en_GB/stringTable.zdct

resources/Dictionary/en_IL/stringTable.zdct

resources/Dictionary/en_US/stringTable.zdct

resources/Dictionary/en_XM/stringTable.zdct

resources/Dictionary/es_ES/stringTable.zdct

resources/Dictionary/es_LA/stringTable.zdct

resources/Dictionary/es_MX/stringTable.zdct

resources/Dictionary/es_NA/stringTable.zdct

resources/Dictionary/fi_FI/stringTable.zdct

resources/Dictionary/fr_CA/stringTable.zdct

resources/Dictionary/fr_FR/stringTable.zdct

resources/Dictionary/fr_MA/stringTable.zdct

resources/Dictionary/fr_XM/stringTable.zdct

resources/Dictionary/hu_HU/stringTable.zdct

resources/Dictionary/it_IT/stringTable.zdct

resources/Dictionary/ja_JP/stringTable.zdct

resources/Dictionary/ko_KR/stringTable.zdct

resources/Dictionary/nb_NO/stringTable.zdct

resources/Dictionary/nl_NL/stringTable.zdct

resources/Dictionary/pl_PL/stringTable.zdct

resources/Dictionary/pt_BR/stringTable.zdct

resources/Dictionary/ru_RU/stringTable.zdct

resources/Dictionary/sv_SE/stringTable.zdct

resources/Dictionary/tr_TR/stringTable.zdct

resources/Dictionary/uk_UA/stringTable.zdct

resources/Dictionary/zh_CN/stringTable.zdct

resources/Dictionary/zh_TW/stringTable.zdct

resources/PIM.dll

.dll windows x86

a59c5df6d9c9538fa988eb452256661e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15-06-2007 00:00

Not After

14-06-2012 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04-12-2003 00:00

Not After

03-12-2013 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

15:e5:ac:0a:48:70:63:71:8e:39:da:52:30:1a:04:88
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15-12-2010 00:00

Not After

14-12-2012 23:59

Subject

CN=Adobe Systems Incorporated,OU=Information Systems+OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Adobe Systems Incorporated,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

6d:b0:33:b6:ad:fd:16:a5:9d:66:f9:35:53:3b:9a:a1:86:b3:ee:39
Signer

Actual PE Digest

6d:b0:33:b6:ad:fd:16:a5:9d:66:f9:35:53:3b:9a:a1:86:b3:ee:39

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Adobe Systems Incorporated,OU=Information Systems+OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Adobe Systems Incorporated,L=San Jose,ST=California,C=US

04-04-2012 00:54
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

msi

ord74

ord147

ord145

kernel32

LocalFree

InterlockedIncrement

InterlockedDecrement

WideCharToMultiByte

MultiByteToWideChar

GetDateFormatW

SetFilePointer

CreateDirectoryW

WriteFile

GetTimeFormatW

CreateFileW

GetTempPathW

GetLocalTime

FreeLibrary

LoadLibraryW

GetProcAddress

OpenProcess

Process32FirstW

Process32NextW

CreateToolhelp32Snapshot

FindFirstFileW

CreateProcessW

MoveFileExW

SetEvent

CopyFileW

GetVersionExW

GetModuleFileNameW

FindClose

ResetEvent

CreateEventW

RemoveDirectoryW

lstrcmpiW

FindNextFileW

GetDiskFreeSpaceExW

DeleteFileW

SetFileAttributesW

GetFileSize

ReadFile

FlushFileBuffers

SetLastError

lstrlenA

GetCurrentProcessId

SetFileTime

GetFileAttributesW

lstrlenW

lstrcatW

GetFileTime

LocalFileTimeToFileTime

GetFullPathNameW

GetFullPathNameA

CreateFileA

SetEndOfFile

QueryPerformanceCounter

UnlockFile

LockFile

GetTickCount

GetSystemTimeAsFileTime

FormatMessageA

InitializeCriticalSection

LeaveCriticalSection

GetFileAttributesA

LockFileEx

EnterCriticalSection

GetDiskFreeSpaceW

LoadLibraryA

GetDiskFreeSpaceA

DeleteCriticalSection

GetCurrentThreadId

GetTempPathA

GetSystemTime

AreFileApisANSI

DeleteFileA

GetACP

GetCurrentProcess

lstrcpyW

GetFileSizeEx

CompareStringW

GetProcessHeap

CloseHandle

ReleaseMutex

OpenSemaphoreW

GetLocaleInfoW

LocalAlloc

CreateSemaphoreW

GetLastError

ReleaseSemaphore

Sleep

WaitForSingleObject

CreateMutexW

SetEnvironmentVariableA

GetModuleHandleW

ExitProcess

DosDateTimeToFileTime

WriteConsoleW

SetStdHandle

GetStringTypeW

IsValidLocale

EnumSystemLocalesA

GetLocaleInfoA

GetUserDefaultLCID

HeapSize

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetModuleFileNameA

GetTimeZoneInformation

GetStartupInfoW

GetFileType

SetHandleCount

GetStdHandle

IsProcessorFeaturePresent

IsDebuggerPresent

SetUnhandledExceptionFilter

UnhandledExceptionFilter

TerminateProcess

GetCPInfo

LCMapStringW

RtlUnwind

RaiseException

GetConsoleMode

GetConsoleCP

InitializeCriticalSectionAndSpinCount

TlsFree

TlsSetValue

TlsGetValue

TlsAlloc

IsValidCodePage

GetOEMCP

HeapDestroy

EncodePointer

DecodePointer

HeapAlloc

HeapFree

MoveFileW

MoveFileA

HeapReAlloc

GetCommandLineA

HeapCreate

user32

wsprintfW

advapi32

SetEntriesInAclW

CreateWellKnownSid

GetNamedSecurityInfoW

SetNamedSecurityInfoW

FreeSid

AllocateAndInitializeSid

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

shell32

SHGetFolderPathW

SHGetSpecialFolderPathW

SHCreateDirectoryExW

SHGetFolderLocation

SHGetPathFromIDListW

ole32

CoCreateInstance

OleRun

CoInitialize

StringFromGUID2

CoCreateGuid

CLSIDFromProgID

CLSIDFromString

CoTaskMemFree

CoUninitialize

oleaut32

SysFreeString

VariantInit

VariantCopy

VariantClear

SysStringLen

SysAllocString

GetErrorInfo

shlwapi

PathIsDirectoryW

PathFindFileNameW

PathRemoveFileSpecW

PathRenameExtensionW

PathStripPathW

PathAppendW

PathRemoveBackslashW

PathFileExistsW

Exports

AAMIU_Uninstall

AAMIU_getDeploymentValidationStatus

AAMIU_preInstallPropertySet

pim_copyPkgsFromACFToCFPath

pim_createLibraryRef

pim_createLibraryRefWithType

pim_createOrUpdateAAMInventory

pim_freeLiraryRef

pim_getAppletRegistrationInfo

pim_getCurrentPIMCFPath

pim_getCurrentPackagesVersion

pim_getCurrentPathType

pim_getInstalledPackagesInfo

pim_getPathOfType

pim_getStandardACFPath

pim_getStandardUSFPath

pim_getStandardUSFTempPath

pim_getUpdateStatusAtPath

pim_getUpdateStatusAtPathCInterface

pim_haveEnoughDiskSpaceIfACFLatest

pim_haveEnoughDiskSpaceToInstallPackages

pim_haveEnoughDiskSpaceToInstallPackagesCInterface

pim_installPackage

pim_postInstallPackages

pim_registerProgressTicksCallback

pim_syncFromPathToACF

pim_syncFromPathToPath

pim_syncUSFToACF

pim_uninstallAAMFromAAMCleanerTool

pim_uninstallAAMUsingAAMCleanerTool

Sections

.text
Size: 848KB - Virtual size: 848KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

resources/updaterinventory.dll

.dll windows x86

1c126edb5a5bedf745bfca7fbbcddecc

Code Sign

04:00:00:00:00:01:20:19:c1:90:66
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18-03-2009 11:00

Not After

28-01-2028 12:00

Subject

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

Issuer

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Not Before

21-12-2009 09:32

Not After

22-12-2020 09:32

Subject

CN=GlobalSign Time Stamping Authority,O=GlobalSign NV,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08-11-2006 00:00

Not After

07-11-2021 23:59

Subject

Extended Key Usages

ExtKeyUsageServerAuth

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

15:e5:ac:0a:48:70:63:71:8e:39:da:52:30:1a:04:88
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

15-12-2010 00:00

Not After

14-12-2012 23:59

Subject

CN=Adobe Systems Incorporated,OU=Information Systems+OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Adobe Systems Incorporated,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

52:57:38:d4:ba:0f:cf:d9:9a:d8:88:a3:15:1d:77:78:77:1e:e7:17
Signer

Actual PE Digest

52:57:38:d4:ba:0f:cf:d9:9a:d8:88:a3:15:1d:77:78:77:1e:e7:17

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Adobe Systems Incorporated,OU=Information Systems+OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Adobe Systems Incorporated,L=San Jose,ST=California,C=US

24-03-2012 23:00
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DecodePointer

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCommandLineA

TerminateProcess

UnhandledExceptionFilter

SetUnhandledExceptionFilter

IsDebuggerPresent

IsProcessorFeaturePresent

Sleep

HeapSize

GetProcAddress

GetModuleHandleW

ExitProcess

RaiseException

HeapCreate

HeapDestroy

GetCPInfo

InterlockedIncrement

GetACP

GetOEMCP

IsValidCodePage

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

SetLastError

WriteFile

GetStdHandle

GetModuleFileNameW

GetLocaleInfoW

WideCharToMultiByte

GetTimeZoneInformation

SetHandleCount

InitializeCriticalSectionAndSpinCount

GetFileType

GetStartupInfoW

DeleteCriticalSection

GetModuleFileNameA

FreeEnvironmentStringsW

GetEnvironmentStringsW

QueryPerformanceCounter

GetTickCount

GetCurrentProcessId

HeapReAlloc

EncodePointer

EnterCriticalSection

FreeLibrary

InterlockedExchange

LoadLibraryW

RtlUnwind

LCMapStringW

GetStringTypeW

GetUserDefaultLCID

GetLocaleInfoA

EnumSystemLocalesA

IsValidLocale

SetFilePointer

GetConsoleCP

GetConsoleMode

SetStdHandle

WriteConsoleW

CreateFileW

FlushFileBuffers

CompareStringW

SetEnvironmentVariableA

GetLongPathNameW

GetTempPathW

DeleteFileW

CopyFileW

SetFileAttributesW

RemoveDirectoryW

GetVersionExW

CreateDirectoryW

CreateEventA

SetEvent

ReadFile

MultiByteToWideChar

LocalFree

LocalAlloc

GetLastError

GetProcessHeap

HeapFree

HeapAlloc

CreateThread

GetExitCodeThread

WaitForSingleObject

TerminateThread

InterlockedDecrement

CloseHandle

FindNextFileW

FindClose

GetCurrentProcess

FindFirstFileW

SetEndOfFile

LeaveCriticalSection

MoveFileW

ResetEvent

OpenEventA

InitializeCriticalSection

advapi32

SetNamedSecurityInfoW

CreateWellKnownSid

GetSecurityDescriptorDacl

RegOpenKeyExW

RegSetKeySecurity

SetEntriesInAclW

RegDeleteValueW

RegGetKeySecurity

SetSecurityDescriptorDacl

InitializeSecurityDescriptor

RegQueryValueExW

RegSetValueExW

RegCloseKey

RegCreateKeyExW

shell32

SHGetSpecialFolderLocation

SHGetPathFromIDListW

SHFileOperationW

SHGetMalloc

ole32

CoUninitialize

CoInitializeSecurity

CoInitialize

CoInitializeEx

CoTaskMemFree

CoCreateInstance

oleaut32

SysAllocString

VariantClear

SysFreeString

VariantInit

shlwapi

PathIsFileSpecW

PathRemoveFileSpecW

PathIsDirectoryW

PathFileExistsW

Exports

UpdaterInventoryAddToMCL

UpdaterInventoryAddToMCLWithIcon

UpdaterInventoryGetLibVersion

UpdaterInventoryIsHigherUpdatePresent

UpdaterInventoryRelease

UpdaterInventoryRemoveFromMCL

UpdaterInventorySuppressUpdates

Sections

.text
Size: 282KB - Virtual size: 282KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

transforms/1025.mst

transforms/1028.mst

transforms/1029.mst

transforms/1030.mst

transforms/1031.mst

transforms/1033.mst

transforms/1034.mst

transforms/1035.mst

transforms/1036.mst

transforms/1037.mst

transforms/1038.mst

transforms/1040.mst

transforms/1041.mst

transforms/1042.mst

transforms/1043.mst

transforms/1044.mst

transforms/1045.mst

transforms/1046.mst

transforms/1049.mst

transforms/1051.mst

transforms/1053.mst

transforms/1055.mst

transforms/1058.mst

transforms/1060.mst

transforms/2052.mst

transforms/6156.mst

Sharing

General

Malware Config

Signatures

Files

870b8e75c7190e202e9c6c81dff1040c

Headers

DLL Characteristics

File Characteristics

Imports

wsock32

version

winmm

comctl32

mpr

wininet

psapi

userenv

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 512KB - Virtual size: 512KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 26KB - Virtual size: 105KB

.rsrc Size: 6KB - Virtual size: 5KB

4b0c57d946dfe01328f9273843e36c36

Code Sign

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:edCertificate

Extended Key Usages

Key Usages

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fdCertificate

Extended Key Usages

Key Usages

09:ac:06:4d:05:28:17:ff:4d:79:42:ea:69:76:c3:d8Certificate

Extended Key Usages

Key Usages

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7Certificate

Extended Key Usages

Key Usages

1c:69:4e:39:52:8b:c9:ce:33:03:45:61:15:1a:f6:af:f7:34:17:caSigner

Signature Validations

Verification

24-09-2012 03:23 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

winhttp

setupapi

iphlpapi

kernel32

user32

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 212KB - Virtual size: 211KB

.data Size: 30KB - Virtual size: 53KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 61KB - Virtual size: 61KB

74f3d48387c79e736335bdde49e0507a

Headers

File Characteristics

Imports

user32

kernel32

winhttp

.text
Size: 512KB - Virtual size: 512KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 26KB - Virtual size: 105KB

.rsrc
Size: 6KB - Virtual size: 5KB

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

09:ac:06:4d:05:28:17:ff:4d:79:42:ea:69:76:c3:d8
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

1c:69:4e:39:52:8b:c9:ce:33:03:45:61:15:1a:f6:af:f7:34:17:ca
Signer

24-09-2012 03:23
Valid: false

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 212KB - Virtual size: 211KB

.data
Size: 30KB - Virtual size: 53KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 61KB - Virtual size: 61KB

.text
Size: - Virtual size: 1KB

.rdata
Size: - Virtual size: 532B

.data
Size: - Virtual size: 44B

.BRD0
Size: - Virtual size: 54KB

.tls
Size: 512B - Virtual size: 24B

.BRD1
Size: 103KB - Virtual size: 102KB

.reloc
Size: 512B - Virtual size: 200B

11:21:35:64:05:60:9a:b9:5f:8d:db:13:16:4b:82:f9:6d:e5
Certificate

04:00:00:00:00:01:2f:4e:e1:35:5c
Certificate

79:a2:a5:85:f9:d1:15:42:13:d9:b8:3e:f6:b6:8d:ed
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

74:bf:a8:bd:0e:6e:ca:04:1e:08:88:01:0e:cc:58:c3:cf:f9:4b:f7
Signer

23-10-2012 08:24
Valid: false

.BRD
Size: 1.5MB - Virtual size: 1.5MB

.BRD
Size: 393KB - Virtual size: 393KB

.BRD
Size: 35KB - Virtual size: 71KB

.BRD
Size: 512B - Virtual size: 2B

.BRD
Size: 3.3MB - Virtual size: 3.3MB

.BRD
Size: 226KB - Virtual size: 225KB

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

15:e5:ac:0a:48:70:63:71:8e:39:da:52:30:1a:04:88
Certificate

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate