Setup[.]zip | Triage

Setup.zip

.zip

Setup.exe

.exe windows x86

c1cc4e11cf032e0c26dcda8c169b90e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress

CreateFileW

RtlMoveMemory

GetModuleHandleW

WriteFile

msvbvm60

__vbaVarTstGt

__vbaVarSub

__vbaStrI2

_CIcos

_adj_fptan

__vbaVarMove

__vbaStrI4

__vbaVarVargNofree

__vbaFreeVar

__vbaAryMove

__vbaStrVarMove

__vbaLenBstr

__vbaFreeVarList

ord697

_adj_fdiv_m64

__vbaFreeObjList

_adj_fprem1

__vbaStrCat

__vbaSetSystemError

__vbaHresultCheckObj

_adj_fdiv_m32

__vbaAryVar

__vbaAryDestruct

ord595

__vbaObjSet

_adj_fdiv_m16i

__vbaObjSetAddref

_adj_fdivr_m16i

__vbaVarTstLt

__vbaRefVarAry

_CIsin

__vbaErase

ord525

ord632

__vbaChkstk

EVENT_SINK_AddRef

__vbaAryConstruct2

ord638

DllFunctionCall

_adj_fpatan

__vbaRedim

EVENT_SINK_Release

__vbaNew

ord601

_CIsqrt

EVENT_SINK_QueryInterface

__vbaStr2Vec

__vbaExceptHandler

__vbaStrToUnicode

ord606

_adj_fprem

_adj_fdivr_m64

__vbaFPException

__vbaUbound

__vbaStrVarVal

__vbaVarCat

ord644

_CIlog

__vbaR8Str

__vbaNew2

_adj_fdiv_m32i

_adj_fdivr_m32i

__vbaStrCopy

__vbaI4Str

__vbaFreeStrList

_adj_fdivr_m32

_adj_fdiv_r

ord100

__vbaI4Var

__vbaAryLock

__vbaVarAdd

__vbaVarDup

__vbaStrToAnsi

__vbaFpI4

__vbaVarCopy

ord617

_CIatan

__vbaStrMove

__vbaCastObj

__vbaAryCopy

__vbaStrVarCopy

_allmul

_CItan

ord653

__vbaAryUnlock

_CIexp

__vbaFreeStr

__vbaFreeObj

Sections

.text
Size: 656KB - Virtual size: 652KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 636KB - Virtual size: 635KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

data/apps11.txt

data/opentweaks_gamingProfile.tiw1

data/opentweaks_oobeProfile.tiw1

data/packages11.xml

data/plugins/Albacore.ViVe.dll

.dll windows x86

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorDllMain

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

data/plugins/Disable TPM 2.0 Check.ini

data/plugins/Enable AutoAdminLogon.ini

data/plugins/Enable Classic Context menus.ini

data/plugins/Join Domain.ini

data/plugins/Win10X Boot Animation.ini

data/plugins/aal_off.bat

data/plugins/aal_on.bat

data/plugins/tpm_off.bat

data/plugins/tpm_on.bat

data/scripts/Apps/Enable apps dark mode.ps1

data/scripts/Apps/Install apps.ps1

data/scripts/Apps/Reinstall all built-in apps.ps1

data/scripts/Apps/Remove OneDrive.ps1

.ps1

data/scripts/Apps/Remove default apps (Provisioned).ps1

data/scripts/Apps/Remove default apps (Recommended).ps1

data/scripts/Apps/Update Store apps.ps1

.ps1

data/scripts/Edge/Bypass Edge as default handler for web searches.ps1

.ps1

data/scripts/Edge/Run MSEdgeRedirect.ps1

.ps1

data/scripts/Energy/Ultimate Performance mode.ps1

data/scripts/Privacy/Disable Services.ps1

.ps1

data/scripts/Privacy/Remove telemetry of third-party apps.ps1

.ps1

data/scripts/Storage/Clean up Windows.ps1

.ps1

platforms/qwindows.dll

.dll windows x64

033d09d773d3e334541b49e065bca8a2

Code Sign

4a:53:8c:28
Certificate

Issuer

Not Before

07/07/2009, 17:25

Not After

07/12/2030, 17:55

Subject

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

87:82:52:60:00:00:00:00:51:d3:73:d9
Certificate

Issuer

Not Before

10/06/2015, 13:42

Not After

10/11/2030, 14:12

Subject

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

0b:93:16:ea:1b:22:3a:6d:52:c7:4b:f3:16:13:16:34
Certificate

Issuer

Not Before

01/12/2020, 12:42

Not After

01/12/2021, 12:42

Subject

SERIALNUMBER=2637805-2,CN=The Qt Company Oy,O=The Qt Company Oy,L=Espoo,C=FI,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024649

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

38:63:de:f8
Certificate

Issuer

Not Before

24/12/1999, 17:50

Not After

24/07/2029, 14:15

Subject

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

Issuer

Not Before

22/07/2015, 19:02

Not After

22/06/2029, 19:32

Subject

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

8d:ce:15:f3:a7:94:c5:87:00:00:00:00:55:92:33:f4
Certificate

Issuer

Not Before

22/07/2020, 15:33

Not After

29/12/2030, 16:29

Subject

CN=Entrust Timestamp Authority - TSA1,O=Entrust\, Inc.,L=Ottawa,ST=Ontario,C=CA

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

31:0d:c6:9d:35:cd:6a:97:e4:93:c6:27:cf:8b:da:8c:c9:be:de:99:5e:ac:f6:e8:ff:ff:d4:2f:c1:ae:e9:cd
Signer

Actual PE Digest

31:0d:c6:9d:35:cd:6a:97:e4:93:c6:27:cf:8b:da:8c:c9:be:de:99:5e:ac:f6:e8:ff:ff:d4:2f:c1:ae:e9:cd

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=2637805-2,CN=The Qt Company Oy,O=The Qt Company Oy,L=Espoo,C=FI,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024649

17/11/2021, 14:05
Valid: true

Chain 1

SERIALNUMBER=2637805-2,CN=The Qt Company Oy,O=The Qt Company Oy,L=Espoo,C=FI,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.3=#13024649

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

dwmapi

DwmIsCompositionEnabled

DwmEnableBlurBehindWindow

imm32

ImmSetCandidateWindow

ImmSetCompositionWindow

ImmNotifyIME

ImmGetOpenStatus

ImmGetCompositionStringW

ImmAssociateContextEx

ImmGetDefaultIMEWnd

ImmAssociateContext

ImmReleaseContext

ImmGetContext

ImmGetVirtualKey

oleaut32

SysAllocString

SafeArrayCreateVector

SafeArrayPutElement

shell32

SHGetFileInfoW

SHGetStockIconInfo

Shell_NotifyIconGetRect

Shell_NotifyIconW

ShellExecuteW

SHBrowseForFolderW

SHGetKnownFolderIDList

SHGetPathFromIDListW

SHGetMalloc

SHCreateItemFromParsingName

SHCreateItemFromIDList

ord727

wtsapi32

WTSFreeMemory

WTSQuerySessionInformationW

ole32

OleFlushClipboard

OleGetClipboard

OleSetClipboard

CoCreateInstance

CoInitialize

CoInitializeEx

CoUninitialize

DoDragDrop

ReleaseStgMedium

CoGetMalloc

OleUninitialize

OleInitialize

RevokeDragDrop

RegisterDragDrop

CoCreateGuid

CoLockObjectExternal

OleIsCurrentClipboard

CoTaskMemFree

gdi32

CreateRectRgn

SelectClipRgn

OffsetRgn

DeleteObject

CombineRgn

BitBlt

CreateCompatibleBitmap

CreateCompatibleDC

CreateDCW

DeleteDC

SelectObject

ExtTextOutW

SetWorldTransform

GetBitmapBits

SetTextAlign

SetTextColor

SetGraphicsMode

SetBkMode

GetCharABCWidthsI

GetTextExtentPoint32W

GetOutlineTextMetricsW

GetGlyphOutlineW

GetCharABCWidthsFloatW

GetCharABCWidthsW

GdiFlush

CreateDIBSection

GetTextFaceW

GetTextMetricsW

RemoveFontMemResourceEx

AddFontMemResourceEx

RemoveFontResourceExW

AddFontResourceExW

GetStockObject

GetFontData

EnumFontFamiliesExW

CreateFontIndirectW

SwapBuffers

GetPixelFormat

DescribePixelFormat

SetPixelFormat

ChoosePixelFormat

CreateBitmap

GetObjectW

GetDeviceCaps

user32

TrackPopupMenu

RemoveMenu

ModifyMenuW

AppendMenuW

InsertMenuW

DestroyMenu

CreatePopupMenu

CreateMenu

DrawMenuBar

SetMenu

LoadIconW

GetSysColor

FindWindowA

SetCaretPos

ShowCaret

HideCaret

DestroyCaret

CreateCaret

IsWindowEnabled

RegisterWindowMessageW

GetCursorInfo

GetIconInfo

CreateIconIndirect

CreateCursor

LoadCursorW

GetCursor

SetCursorPos

GetClipboardFormatNameW

RegisterClipboardFormatW

CloseTouchInputHandle

GetTouchInputInfo

GetAsyncKeyState

GetMessageExtraInfo

TrackMouseEvent

SetMenuItemInfoW

TrackPopupMenuEx

GetMenu

MapVirtualKeyW

ToUnicode

ToAscii

GetKeyboardState

GetKeyState

IsZoomed

PeekMessageW

GetKeyboardLayout

EnumDisplayMonitors

GetMonitorInfoW

MonitorFromWindow

LoadImageW

GetSysColorBrush

ChildWindowFromPointEx

WindowFromPoint

GetCursorPos

GetClientRect

GetFocus

RegisterClassExW

GetClassInfoW

UnregisterClassW

GetMenuItemInfoW

SystemParametersInfoW

MessageBeep

IsWindow

GetDoubleClickTime

GetAncestor

MonitorFromPoint

DestroyIcon

DestroyCursor

GetWindow

GetWindowThreadProcessId

SetParent

GetParent

GetDesktopWindow

SetWindowLongPtrW

GetWindowLongPtrW

SetWindowLongW

GetWindowLongW

ScreenToClient

ClientToScreen

GetCaretBlinkTime

SetCursor

AdjustWindowRectEx

GetWindowRect

SetWindowTextW

InvalidateRect

SetWindowRgn

GetUpdateRect

EndPaint

BeginPaint

ReleaseDC

GetDC

SetForegroundWindow

GetForegroundWindow

EnableMenuItem

GetSystemMenu

GetSystemMetrics

ReleaseCapture

SetCapture

GetCapture

IsTouchWindow

UnregisterTouchWindow

RegisterTouchWindow

SetFocus

IsIconic

IsWindowVisible

SetWindowPlacement

GetWindowPlacement

SetWindowPos

MoveWindow

FlashWindowEx

SetLayeredWindowAttributes

UpdateLayeredWindow

ShowWindow

DestroyWindow

IsChild

CreateWindowExW

DefWindowProcW

AttachThreadInput

PostMessageW

SendMessageW

GetWindowTextW

EnumWindows

RealGetWindowClassW

RegisterClassW

EnumDisplayDevicesW

ChangeWindowMessageFilterEx

IsHungAppWindow

SetClipboardViewer

ChangeClipboardChain

UpdateLayeredWindowIndirect

GetKeyboardLayoutList

advapi32

RegOpenKeyExW

RegCloseKey

RegQueryValueExW

qt5gui

?setOptions@QSurfaceFormat@@QEAAXV?$QFlags@W4FormatOption@QSurfaceFormat@@@@@Z

?options@QSurfaceFormat@@QEBA?AV?$QFlags@W4FormatOption@QSurfaceFormat@@@@XZ

?setSwapInterval@QSurfaceFormat@@QEAAXH@Z

??0QPlatformSystemTrayIcon@@QEAA@XZ

??1QPlatformSystemTrayIcon@@UEAA@XZ

?activated@QPlatformSystemTrayIcon@@QEAAXW4ActivationReason@1@@Z

?contextMenuRequested@QPlatformSystemTrayIcon@@QEAAXVQPoint@@PEBVQPlatformScreen@@@Z

?messageClicked@QPlatformSystemTrayIcon@@QEAAXXZ

?metaObject@QPlatformSystemTrayIcon@@UEBAPEBUQMetaObject@@XZ

?qt_metacall@QPlatformSystemTrayIcon@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?qt_metacast@QPlatformSystemTrayIcon@@UEAAPEAXPEBD@Z

?staticMetaObject@QPlatformSystemTrayIcon@@2UQMetaObject@@B

?surfaceForWindow@QVulkanInstance@@SAPEAUVkSurfaceKHR_T@@PEAVQWindow@@@Z

?presentQueued@QPlatformVulkanInstance@@UEAAXPEAVQWindow@@@Z

??0QInternalMimeData@@QEAA@XZ

??1QInternalMimeData@@UEAA@XZ

??1QPlatformClipboard@@UEAA@XZ

?emitChanged@QPlatformClipboard@@QEAAXW4Mode@QClipboard@@@Z

??6@YA?AVQDebug@@V0@AEBVQColor@@@Z

?invalidate@QColor@@AEAAXXZ

??6@YA?AVQDebug@@V0@AEBVQImage@@@Z

?formats@QInternalMimeData@@UEBA?AVQStringList@@XZ

?hasFormat@QInternalMimeData@@UEBA_NAEBVQString@@@Z

?metaObject@QInternalMimeData@@UEBAPEBUQMetaObject@@XZ

?qt_metacall@QInternalMimeData@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?qt_metacast@QInternalMimeData@@UEAAPEAXPEBD@Z

?retrieveData@QInternalMimeData@@MEBA?AVQVariant@@AEBVQString@@W4Type@2@@Z

??0QPixmap@@QEAA@HH@Z

??4QPixmap@@QEAAAEAV0@AEBV0@@Z

?width@QPixmap@@QEBAHXZ

?height@QPixmap@@QEBAHXZ

?devicePixelRatio@QPixmap@@QEBANXZ

?setDevicePixelRatio@QPixmap@@QEAAXN@Z

?isAccepted@QPlatformDropQtResponse@@QEBA_NXZ

?acceptedAction@QPlatformDropQtResponse@@QEBA?AW4DropAction@Qt@@XZ

?answerRect@QPlatformDragQtResponse@@QEBA?AVQRect@@XZ

??0QPlatformDrag@@QEAA@XZ

??1QPlatformDrag@@UEAA@XZ

?currentDrag@QPlatformDrag@@QEBAPEAVQDrag@@XZ

?updateAction@QPlatformDrag@@QEAAXW4DropAction@Qt@@@Z

?mimeData@QDrag@@QEBAPEAVQMimeData@@XZ

?staticMetaObject@QSurfaceFormat@@2UQMetaObject@@B

?hotSpot@QDrag@@QEBA?AVQPoint@@XZ

?dragCursor@QDrag@@QEBA?AVQPixmap@@W4DropAction@Qt@@@Z

?supportedActions@QDrag@@QEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ

?drawPixmap@QPainter@@QEAAXAEBVQPointF@@AEBVQPixmap@@@Z

?setFormat@QWindow@@QEAAXAEBVQSurfaceFormat@@@Z

?format@QWindow@@UEBA?AVQSurfaceFormat@@XZ

?setFlags@QWindow@@QEAAXV?$QFlags@W4WindowType@Qt@@@@@Z

?devicePixelRatio@QWindow@@QEBANXZ

?setFramePosition@QWindow@@QEAAXAEBVQPoint@@@Z

?resize@QWindow@@QEAAXAEBVQSize@@@Z

?show@QWindow@@QEAAXXZ

?update@QPaintDeviceWindow@@QEAAXXZ

??0QRasterWindow@@QEAA@PEAVQWindow@@@Z

??1QRasterWindow@@UEAA@XZ

?handleDrag@QWindowSystemInterface@@SA?AVQPlatformDragQtResponse@@PEAVQWindow@@PEBVQMimeData@@AEBVQPoint@@V?$QFlags@W4DropAction@Qt@@@@V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

?handleDrop@QWindowSystemInterface@@SA?AVQPlatformDropQtResponse@@PEAVQWindow@@PEBVQMimeData@@AEBVQPoint@@V?$QFlags@W4DropAction@Qt@@@@V?$QFlags@W4MouseButton@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

?self@QDragManager@@SAPEAV1@XZ

?source@QDragManager@@QEBAPEAVQObject@@XZ

?accessibleRoot@QWindow@@UEBAPEAVQAccessibleInterface@@XZ

?defaultAction@QPlatformDrag@@UEBA?AW4DropAction@Qt@@V?$QFlags@W4DropAction@Qt@@@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

?devType@QPaintDevice@@UEBAHXZ

?event@QPaintDeviceWindow@@MEAA_NPEAVQEvent@@@Z

?exposeEvent@QPaintDeviceWindow@@MEAAXPEAVQExposeEvent@@@Z

?focusInEvent@QWindow@@MEAAXPEAVQFocusEvent@@@Z

?focusObject@QWindow@@UEBAPEAVQObject@@XZ

?focusOutEvent@QWindow@@MEAAXPEAVQFocusEvent@@@Z

?hideEvent@QWindow@@MEAAXPEAVQHideEvent@@@Z

?initPainter@QPaintDevice@@MEBAXPEAVQPainter@@@Z

?keyPressEvent@QWindow@@MEAAXPEAVQKeyEvent@@@Z

?keyReleaseEvent@QWindow@@MEAAXPEAVQKeyEvent@@@Z

?metaObject@QRasterWindow@@UEBAPEBUQMetaObject@@XZ

?metric@QRasterWindow@@MEBAHW4PaintDeviceMetric@QPaintDevice@@@Z

?mouseDoubleClickEvent@QWindow@@MEAAXPEAVQMouseEvent@@@Z

?mouseMoveEvent@QWindow@@MEAAXPEAVQMouseEvent@@@Z

?mousePressEvent@QWindow@@MEAAXPEAVQMouseEvent@@@Z

?mouseReleaseEvent@QWindow@@MEAAXPEAVQMouseEvent@@@Z

?moveEvent@QWindow@@MEAAXPEAVQMoveEvent@@@Z

?nativeEvent@QWindow@@MEAA_NAEBVQByteArray@@PEAXPEAJ@Z

?ownsDragObject@QPlatformDrag@@UEBA_NXZ

?paintEngine@QPaintDeviceWindow@@EEBAPEAVQPaintEngine@@XZ

?qt_metacall@QRasterWindow@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?qt_metacast@QRasterWindow@@UEAAPEAXPEBD@Z

?redirected@QRasterWindow@@MEBAPEAVQPaintDevice@@PEAVQPoint@@@Z

?resizeEvent@QWindow@@MEAAXPEAVQResizeEvent@@@Z

?sharedPainter@QPaintDevice@@MEBAPEAVQPainter@@XZ

?showEvent@QWindow@@MEAAXPEAVQShowEvent@@@Z

?size@QWindow@@UEBA?AVQSize@@XZ

?surfaceHandle@QWindow@@EEBAPEAVQPlatformSurface@@XZ

?surfaceType@QWindow@@UEBA?AW4SurfaceType@QSurface@@XZ

?tabletEvent@QWindow@@MEAAXPEAVQTabletEvent@@@Z

?touchEvent@QWindow@@MEAAXPEAVQTouchEvent@@@Z

?wheelEvent@QWindow@@MEAAXPEAVQWheelEvent@@@Z

?handleTabletEvent@QWindowSystemInterface@@SAXPEAVQWindow@@KAEBVQPointF@@1HHV?$QFlags@W4MouseButton@Qt@@@@NHHNNH_JV?$QFlags@W4KeyboardModifier@Qt@@@@@Z

?handleTabletEnterProximityEvent@QWindowSystemInterface@@SAXKHH_J@Z

?handleTabletLeaveProximityEvent@QWindowSystemInterface@@SAXKHH_J@Z

??0QPlatformSessionManager@@QEAA@AEBVQString@@0@Z

??1QPlatformSessionManager@@UEAA@XZ

?discardCommand@QPlatformSessionManager@@UEBA?AVQStringList@@XZ

?isPhase2@QPlatformSessionManager@@UEBA_NXZ

?requestPhase2@QPlatformSessionManager@@UEAAXXZ

?restartCommand@QPlatformSessionManager@@UEBA?AVQStringList@@XZ

?restartHint@QPlatformSessionManager@@UEBA?AW4RestartHint@QSessionManager@@XZ

?sessionId@QPlatformSessionManager@@UEBA?AVQString@@XZ

?sessionKey@QPlatformSessionManager@@UEBA?AVQString@@XZ

?setDiscardCommand@QPlatformSessionManager@@UEAAXAEBVQStringList@@@Z

?setManagerProperty@QPlatformSessionManager@@UEAAXAEBVQString@@0@Z

?setManagerProperty@QPlatformSessionManager@@UEAAXAEBVQString@@AEBVQStringList@@@Z

?setRestartCommand@QPlatformSessionManager@@UEAAXAEBVQStringList@@@Z

?setRestartHint@QPlatformSessionManager@@UEAAXW4RestartHint@QSessionManager@@@Z

??0QPlatformAccessibility@@QEAA@XZ

??1QPlatformAccessibility@@UEAA@XZ

?setActive@QPlatformAccessibility@@QEAAX_N@Z

?cleanup@QPlatformAccessibility@@UEAAXXZ

?initialize@QPlatformAccessibility@@UEAAXXZ

?setRootObject@QPlatformAccessibility@@UEAAXPEAVQObject@@@Z

?platform_integration@QGuiApplicationPrivate@@2PEAVQPlatformIntegration@@EA

?uniqueId@QAccessible@@SAIPEAVQAccessibleInterface@@@Z

?textInterface@QAccessibleInterface@@QEAAPEAVQAccessibleTextInterface@@XZ

?valueInterface@QAccessibleInterface@@QEAAPEAVQAccessibleValueInterface@@XZ

?actionInterface@QAccessibleInterface@@QEAAPEAVQAccessibleActionInterface@@XZ

?tableInterface@QAccessibleInterface@@QEAAPEAVQAccessibleTableInterface@@XZ

?tableCellInterface@QAccessibleInterface@@QEAAPEAVQAccessibleTableCellInterface@@XZ

?setFocusAction@QAccessibleActionInterface@@SAAEBVQString@@XZ

?toggleAction@QAccessibleActionInterface@@SAAEBVQString@@XZ

?accessibleInterface@QAccessible@@SAPEAVQAccessibleInterface@@I@Z

?pressAction@QAccessibleActionInterface@@SAAEBVQString@@XZ

?visibility@QWindow@@QEBA?AW4Visibility@1@XZ

?isModal@QWindow@@QEBA_NXZ

?showMinimized@QWindow@@QEAAXXZ

?showMaximized@QWindow@@QEAAXXZ

?showNormal@QWindow@@QEAAXXZ

?close@QWindow@@QEAA_NXZ

?staticMetaObject@QPlatformIntegrationPlugin@@2UQMetaObject@@B

?qt_metacast@QPlatformIntegrationPlugin@@UEAAPEAXPEBD@Z

?qt_metacall@QPlatformIntegrationPlugin@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

??0QPlatformIntegrationPlugin@@QEAA@PEAVQObject@@@Z

??1QPlatformIntegrationPlugin@@UEAA@XZ

?create@QPlatformIntegrationPlugin@@UEAAPEAVQPlatformIntegration@@AEBVQString@@AEBVQStringList@@@Z

?boundingRect@QRegion@@QEBA?AVQRect@@XZ

??_4QRegion@@QEAAAEAV0@AEBVQRect@@@Z

??6@YA?AVQDebug@@V0@AEBVQRegion@@@Z

?save@QImage@@QEBA_NAEBVQString@@PEBDH@Z

?toPixelFormat@QImage@@SA?AVQPixelFormat@@W4Format@1@@Z

?frameMargins@QWindow@@QEBA?AVQMargins@@XZ

?frameGeometry@QWindow@@QEBA?AVQRect@@XZ

?lcQpaBackingStore@@YAAEBVQLoggingCategory@@XZ

??0QPlatformBackingStore@@QEAA@PEAVQWindow@@@Z

??1QPlatformBackingStore@@UEAA@XZ

?window@QPlatformBackingStore@@QEBAPEAVQWindow@@XZ

?setCompositionMode@QPainter@@QEAAXW4CompositionMode@1@@Z

?drawImage@QPainter@@QEAAXAEBVQRectF@@AEBVQImage@@0V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?fillRect@QPainter@@QEAAXAEBVQRect@@AEBVQColor@@@Z

?qt_scrollRectInImage@@YAXAEAVQImage@@AEBVQRect@@AEBVQPoint@@@Z

?composeAndFlush@QPlatformBackingStore@@UEAAXPEAVQWindow@@AEBVQRegion@@AEBVQPoint@@PEAVQPlatformTextureList@@_N@Z

?endPaint@QPlatformBackingStore@@UEAAXXZ

?graphicsBuffer@QPlatformBackingStore@@UEBAPEAVQPlatformGraphicsBuffer@@XZ

?toTexture@QPlatformBackingStore@@UEBAIAEBVQRegion@@PEAVQSize@@PEAV?$QFlags@W4TextureFlag@QPlatformBackingStore@@@@@Z

??0QRasterPlatformPixmap@@QEAA@W4PixelType@QPlatformPixmap@@@Z

??1QRasterPlatformPixmap@@UEAA@XZ

?buffer@QRasterPlatformPixmap@@UEAAPEAVQImage@@XZ

?copy@QRasterPlatformPixmap@@UEAAXPEBVQPlatformPixmap@@AEBVQRect@@@Z

?createCompatiblePlatformPixmap@QRasterPlatformPixmap@@UEBAPEAVQPlatformPixmap@@XZ

?devicePixelRatio@QRasterPlatformPixmap@@UEBANXZ

?fill@QRasterPlatformPixmap@@UEAAXAEBVQColor@@@Z

?fromData@QRasterPlatformPixmap@@UEAA_NPEBEIPEBDV?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?fromImage@QRasterPlatformPixmap@@UEAAXAEBVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?fromImageInPlace@QRasterPlatformPixmap@@UEAAXAEAVQImage@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?fromImageReader@QRasterPlatformPixmap@@UEAAXPEAVQImageReader@@V?$QFlags@W4ImageConversionFlag@Qt@@@@@Z

?hasAlphaChannel@QRasterPlatformPixmap@@UEBA_NXZ

?mask@QPlatformPixmap@@UEBA?AVQBitmap@@XZ

?metric@QRasterPlatformPixmap@@MEBAHW4PaintDeviceMetric@QPaintDevice@@@Z

?nativeResourceForScreen@QPlatformNativeInterface@@UEAAPEAXAEBVQByteArray@@PEAVQScreen@@@Z

?nativeResourceFunctionForBackingStore@QPlatformNativeInterface@@UEAAP6APEAXPEAVQBackingStore@@@ZAEBVQByteArray@@@Z

?nativeResourceFunctionForContext@QPlatformNativeInterface@@UEAAP6APEAXPEAVQOpenGLContext@@@ZAEBVQByteArray@@@Z

?nativeResourceFunctionForIntegration@QPlatformNativeInterface@@UEAAP6APEAXXZAEBVQByteArray@@@Z

?nativeResourceFunctionForScreen@QPlatformNativeInterface@@UEAAP6APEAXPEAVQScreen@@@ZAEBVQByteArray@@@Z

?nativeResourceFunctionForWindow@QPlatformNativeInterface@@UEAAP6APEAXPEAVQWindow@@@ZAEBVQByteArray@@@Z

?paintEngine@QRasterPlatformPixmap@@UEBAPEAVQPaintEngine@@XZ

?resize@QRasterPlatformPixmap@@UEAAXHH@Z

?scroll@QRasterPlatformPixmap@@UEAA_NHHAEBVQRect@@@Z

?setDevicePixelRatio@QRasterPlatformPixmap@@UEAAXN@Z

?setMask@QPlatformPixmap@@UEAAXAEBVQBitmap@@@Z

?toImage@QRasterPlatformPixmap@@UEBA?AVQImage@@AEBVQRect@@@Z

?toImage@QRasterPlatformPixmap@@UEBA?AVQImage@@XZ

?transformed@QPlatformPixmap@@UEBA?AVQPixmap@@AEBVQTransform@@W4TransformationMode@Qt@@@Z

?handle@QBackingStore@@QEBAPEAVQPlatformBackingStore@@XZ

?staticMetaObject@QPlatformInputContext@@2UQMetaObject@@B

?qt_metacast@QPlatformInputContext@@UEAAPEAXPEBD@Z

?qt_metacall@QPlatformInputContext@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?staticMetaObject@QPlatformMenuItem@@2UQMetaObject@@B

?staticMetaObject@QPlatformMenu@@2UQMetaObject@@B

?staticMetaObject@QPlatformMenuBar@@2UQMetaObject@@B

?qt_metacast@QPlatformMenuItem@@UEAAPEAXPEBD@Z

?qt_metacall@QPlatformMenuItem@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?qt_metacast@QPlatformMenu@@UEAAPEAXPEBD@Z

?qt_metacall@QPlatformMenu@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?qt_metacast@QPlatformMenuBar@@UEAAPEAXPEBD@Z

?qt_metacall@QPlatformMenuBar@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?staticMetaObject@QPlatformNativeInterface@@2UQMetaObject@@B

??4QFont@@QEAAAEAV0@$$QEAV0@@Z

?qt_metacast@QPlatformNativeInterface@@UEAAPEAXPEBD@Z

?qt_metacall@QPlatformNativeInterface@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?sendWindowSystemEvents@QWindowSystemInterface@@SA_NV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z

?family@QFont@@QEBA?AVQString@@XZ

?setFamily@QFont@@QEAAXAEBVQString@@@Z

?setPointSizeF@QFont@@QEAAXN@Z

?setWeight@QFont@@QEAAXH@Z

?setStyle@QFont@@QEAAXW4Style@1@@Z

?setUnderline@QFont@@QEAAX_N@Z

?setOverline@QFont@@QEAAX_N@Z

?setStrikeOut@QFont@@QEAAX_N@Z

??6@YA?AVQDebug@@V0@AEBVQFont@@@Z

??0QFontDatabase@@QEAA@XZ

?writingSystems@QFontDatabase@@QEBA?AV?$QList@W4WritingSystem@QFontDatabase@@@@AEBVQString@@@Z

?families@QFontDatabase@@QEBA?AVQStringList@@W4WritingSystem@1@@Z

?hasFamily@QFontDatabase@@QEBA_NAEBVQString@@@Z

??0QSupportedWritingSystems@@QEAA@XZ

??4QSupportedWritingSystems@@QEAAAEAV0@AEBV0@@Z

??1QSupportedWritingSystems@@QEAA@XZ

?setSupported@QSupportedWritingSystems@@QEAAXW4WritingSystem@QFontDatabase@@_N@Z

?supported@QSupportedWritingSystems@@QEBA_NW4WritingSystem@QFontDatabase@@@Z

?writingSystemsFromTrueTypeBits@QPlatformFontDatabase@@SA?AVQSupportedWritingSystems@@QEAI0@Z

?weightFromInteger@QPlatformFontDatabase@@SA?AW4Weight@QFont@@H@Z

?registerFont@QPlatformFontDatabase@@SAXAEBVQString@@00W4Weight@QFont@@W4Style@4@W4Stretch@4@_N4H4AEBVQSupportedWritingSystems@@PEAX@Z

?registerFontFamily@QPlatformFontDatabase@@SAXAEBVQString@@@Z

?registerAliasToFontFamily@QPlatformFontDatabase@@SAXAEBVQString@@0@Z

?staticMetaObject@QFont@@2UQMetaObject@@B

??0QImage@@QEAA@PEAEHHW4Format@0@P6AXPEAX@Z2@Z

?setDC@QRasterPaintEngine@@QEAAXPEAUHDC__@@@Z

?closeSubpath@QPainterPath@@QEAAXXZ

?moveTo@QPainterPath@@QEAAXAEBVQPointF@@@Z

?lineTo@QPainterPath@@QEAAXAEBVQPointF@@@Z

?cubicTo@QPainterPath@@QEAAXAEBVQPointF@@00@Z

?quadTo@QPainterPath@@QEAAXAEBVQPointF@@0@Z

?elementCount@QPainterPath@@QEBAHXZ

?elementAt@QPainterPath@@QEBA?AVElement@1@H@Z

??0QTransform@@QEAA@XZ

?type@QTransform@@QEBA?AW4TransformationType@1@XZ

?depth@QImage@@QEBAHXZ

?scanLine@QImage@@QEAAPEAEH@Z

??0glyph_metrics_t@@QEAA@XZ

?transformed@glyph_metrics_t@@QEBA?AU1@AEBVQTransform@@@Z

??1QFontEngine@@UEAA@XZ

?getSfntTable@QFontEngine@@QEBA?AVQByteArray@@I@Z

?addOutlineToPath@QFontEngine@@UEAAXNNAEBUQGlyphLayout@@PEAVQPainterPath@@V?$QFlags@W4RenderFlag@QTextItem@@@@@Z

?addBitmapFontToPath@QFontEngine@@QEAAXNNAEBUQGlyphLayout@@PEAVQPainterPath@@V?$QFlags@W4RenderFlag@QTextItem@@@@@Z

?xHeight@QFontEngine@@UEBA?AUQFixed@@XZ

?lineThickness@QFontEngine@@UEBA?AUQFixed@@XZ

?getGlyphBearings@QFontEngine@@UEAAXIPEAN0@Z

?getCMap@QFontEngine@@SAPEBEPEBEIPEA_NPEAH@Z

?getTrueTypeGlyphIndex@QFontEngine@@SAIPEBEHI@Z

?convertToPostscriptFontFamilyName@QFontEngine@@SA?AVQByteArray@@AEBV2@@Z

?hasUnreliableGlyphOutline@QFontEngine@@UEBA_NXZ

?loadKerningPairs@QFontEngine@@QEAAXUQFixed@@@Z

??0QFontEngine@@IEAA@W4Type@0@@Z

?lastRightBearing@QFontEngine@@IEAA?AUQFixed@@AEBUQGlyphLayout@@_N@Z

?calculatedCapHeight@QFontEngine@@IEBA?AUQFixed@@XZ

?alphaMapForGlyph@QFontEngine@@UEAA?AVQImage@@IUQFixed@@@Z

?alphaMapForGlyph@QFontEngine@@UEAA?AVQImage@@IUQFixed@@AEBVQTransform@@@Z

?bitmapForGlyph@QFontEngine@@UEAA?AVQImage@@IUQFixed@@AEBVQTransform@@AEBVQColor@@@Z

?canRender@QFontEngine@@UEBA_NPEBVQChar@@H@Z

?doKerning@QFontEngine@@UEBAXPEAUQGlyphLayout@@V?$QFlags@W4ShaperFlag@QFontEngine@@@@@Z

?expectsGammaCorrectedBlending@QFontEngine@@UEBA_NXZ

?getPointInOutline@QFontEngine@@UEAAHIHIPEAUQFixed@@0PEAI@Z

?glyphCount@QFontEngine@@UEBAHXZ

?glyphData@QFontEngine@@UEAAPEAUGlyph@1@IUQFixed@@W4GlyphFormat@1@AEBVQTransform@@@Z

?glyphMargin@QFontEngine@@UEAAHW4GlyphFormat@1@@Z

?hasInternalCaching@QFontEngine@@UEBA_NXZ

?removeGlyphFromCache@QFontEngine@@UEAAXI@Z

?setDefaultHintStyle@QFontEngine@@UEAAXW4HintStyle@1@@Z

?subPixelPositionForX@QFontEngine@@UEBA?AUQFixed@@U2@@Z

?supportsSubPixelPositions@QFontEngine@@UEBA_NXZ

?underlinePosition@QFontEngine@@UEBA?AUQFixed@@XZ

?alphaF@QColor@@QEBANXZ

?redF@QColor@@QEBANXZ

?greenF@QColor@@QEBANXZ

?blueF@QColor@@QEBANXZ

?setFillRule@QPainterPath@@QEAAXW4FillRule@Qt@@@Z

?scale@QTransform@@QEAAAEAV1@NN@Z

?emSquareSize@QFontEngine@@UEBA?AUQFixed@@XZ

?boundingBox@QFontEngine@@UEAA?AUglyph_metrics_t@@IAEBVQTransform@@@Z

?alphaMapForGlyph@QFontEngine@@UEAA?AVQImage@@I@Z

?alphaMapForGlyph@QFontEngine@@UEAA?AVQImage@@IAEBVQTransform@@@Z

?averageCharWidth@QFontEngine@@UEBA?AUQFixed@@XZ

?getUnscaledGlyph@QFontEngine@@UEAAXIPEAVQPainterPath@@PEAUglyph_metrics_t@@@Z

?minLeftBearing@QFontEngine@@UEBANXZ

?minRightBearing@QFontEngine@@UEBANXZ

?properties@QFontEngine@@UEBA?AUProperties@1@XZ

?supportsTransformation@QFontEngine@@UEBA_NAEBVQTransform@@@Z

?synthesized@QFontEngine@@UEBAHXZ

?rgba@QColor@@QEBAIXZ

?determinant@QTransform@@QEBANXZ

?setMatrix@QTransform@@QEAAXNNNNNNNNN@Z

?translate@QTransform@@QEAAAEAV1@NN@Z

?map@QTransform@@QEBA?AVQPointF@@AEBV2@@Z

?mapRect@QTransform@@QEBA?AVQRectF@@AEBV2@@Z

??0QImage@@QEAA@PEBEHHHW4Format@0@P6AXPEAX@Z2@Z

?copy@QImage@@QEBA?AV1@AEBVQRect@@@Z

?setColor@QImage@@QEAAXHI@Z

?transformed@QImage@@QEBA?AV1@AEBVQTransform@@W4TransformationMode@Qt@@@Z

?getGlyphPositions@QFontEngine@@QEAAXAEBUQGlyphLayout@@AEBVQTransform@@V?$QFlags@W4RenderFlag@QTextItem@@@@AEAV?$QVarLengthArray@I$0BAA@@@AEAV?$QVarLengthArray@UQFixedPoint@@$0BAA@@@@Z

?alphaRGBMapForGlyph@QFontEngine@@UEAA?AVQImage@@IUQFixed@@AEBVQTransform@@@Z

?harfbuzzFace@QFontEngine@@QEBAPEAXXZ

?qt_fontdata_from_index@@YA?AVQByteArray@@H@Z

?qt_addBitmapToPath@@YAXNNPEBEHHHPEAVQPainterPath@@@Z

??6@YA?AVQDebug@@V0@AEBUQVulkanLayer@@@Z

??6@YA?AVQDebug@@V0@AEBUQVulkanExtension@@@Z

?vkInstance@QVulkanInstance@@QEBAPEAUVkInstance_T@@XZ

?flags@QVulkanInstance@@QEBA?AV?$QFlags@W4Flag@QVulkanInstance@@@@XZ

?layers@QVulkanInstance@@QEBA?AV?$QList@VQByteArray@@@@XZ

?extensions@QVulkanInstance@@QEBA?AV?$QList@VQByteArray@@@@XZ

?apiVersion@QVulkanInstance@@QEBA?AVQVersionNumber@@XZ

??0QPlatformVulkanInstance@@QEAA@XZ

??1QPlatformVulkanInstance@@UEAA@XZ

?initialize@QPlatformOpenGLContext@@UEAAXXZ

?defaultFramebufferObject@QPlatformOpenGLContext@@UEBAIPEAVQPlatformSurface@@@Z

?parseOpenGLVersion@QPlatformOpenGLContext@@SA_NAEBVQByteArray@@AEAH1@Z

??1QPlatformOpenGLContext@@UEAA@XZ

??0QPlatformOpenGLContext@@QEAA@XZ

?shareHandle@QOpenGLContext@@QEBAPEAVQPlatformOpenGLContext@@XZ

?nativeHandle@QOpenGLContext@@QEBA?AVQVariant@@XZ

?setNativeHandle@QOpenGLContext@@QEAAXAEBVQVariant@@@Z

?setColorSpace@QSurfaceFormat@@QEAAXW4ColorSpace@1@@Z

?colorSpace@QSurfaceFormat@@QEBA?AW4ColorSpace@1@XZ

?swapInterval@QSurfaceFormat@@QEBAHXZ

?testOption@QSurfaceFormat@@QEBA_NW4FormatOption@1@@Z

?setOption@QSurfaceFormat@@QEAAXW4FormatOption@1@_N@Z

?setStereo@QSurfaceFormat@@QEAAX_N@Z

?minorVersion@QSurfaceFormat@@QEBAHXZ

?setMinorVersion@QSurfaceFormat@@QEAAXH@Z

?majorVersion@QSurfaceFormat@@QEBAHXZ

?setMajorVersion@QSurfaceFormat@@QEAAXH@Z

?renderableType@QSurfaceFormat@@QEBA?AW4RenderableType@1@XZ

?setRenderableType@QSurfaceFormat@@QEAAXW4RenderableType@1@@Z

?profile@QSurfaceFormat@@QEBA?AW4OpenGLContextProfile@1@XZ

?setProfile@QSurfaceFormat@@QEAAXW4OpenGLContextProfile@1@@Z

?swapBehavior@QSurfaceFormat@@QEBA?AW4SwapBehavior@1@XZ

?setSwapBehavior@QSurfaceFormat@@QEAAXW4SwapBehavior@1@@Z

?samples@QSurfaceFormat@@QEBAHXZ

?setSamples@QSurfaceFormat@@QEAAXH@Z

?alphaBufferSize@QSurfaceFormat@@QEBAHXZ

?setAlphaBufferSize@QSurfaceFormat@@QEAAXH@Z

?blueBufferSize@QSurfaceFormat@@QEBAHXZ

?setBlueBufferSize@QSurfaceFormat@@QEAAXH@Z

?greenBufferSize@QSurfaceFormat@@QEBAHXZ

?setGreenBufferSize@QSurfaceFormat@@QEAAXH@Z

?redBufferSize@QSurfaceFormat@@QEBAHXZ

?setRedBufferSize@QSurfaceFormat@@QEAAXH@Z

?stencilBufferSize@QSurfaceFormat@@QEBAHXZ

?setStencilBufferSize@QSurfaceFormat@@QEAAXH@Z

?depthBufferSize@QSurfaceFormat@@QEBAHXZ

?setDepthBufferSize@QSurfaceFormat@@QEAAXH@Z

??4QSurfaceFormat@@QEAAAEAV0@AEBV0@@Z

??0QSurfaceFormat@@QEAA@XZ

?gpuFeatures@QOpenGLConfig@@SA?AV?$QSet@VQString@@@@AEBUGpu@1@AEBVQString@@@Z

??0Gpu@QOpenGLConfig@@QEAA@AEBU01@@Z

??1Gpu@QOpenGLConfig@@QEAA@XZ

?fromDevice@Gpu@QOpenGLConfig@@SA?AU12@IIVQVersionNumber@@AEBVQByteArray@@@Z

?equals@Gpu@QOpenGLConfig@@QEBA_NAEBU12@@Z

?handle@QOpenGLContext@@QEBAPEAVQPlatformOpenGLContext@@XZ

?staticMetaObject@QFileDialogOptions@@2UQMetaObject@@B

?styleHint@QPlatformDialogHelper@@UEBA?AVQVariant@@W4StyleHint@1@@Z

?selectedMimeTypeFilter@QPlatformFileDialogHelper@@UEBA?AVQString@@XZ

?selectMimeTypeFilter@QPlatformFileDialogHelper@@UEAAXAEBVQString@@@Z

?qt_metacast@QPlatformFileDialogHelper@@UEAAPEAXPEBD@Z

?qt_metacall@QPlatformFileDialogHelper@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?metaObject@QPlatformFileDialogHelper@@UEBAPEBUQMetaObject@@XZ

?isSupportedUrl@QPlatformFileDialogHelper@@UEBA_NAEBVQUrl@@@Z

??1QPlatformFileDialogHelper@@UEAA@XZ

??0QPlatformFileDialogHelper@@QEAA@XZ

?filterSelected@QPlatformFileDialogHelper@@QEAAXAEBVQString@@@Z

?directoryEntered@QPlatformFileDialogHelper@@QEAAXAEBVQUrl@@@Z

?currentChanged@QPlatformFileDialogHelper@@QEAAXAEBVQUrl@@@Z

?options@QPlatformFileDialogHelper@@QEBAAEBV?$QSharedPointer@VQFileDialogOptions@@@@XZ

?initiallySelectedFiles@QFileDialogOptions@@QEBA?AV?$QList@VQUrl@@@@XZ

?initiallySelectedNameFilter@QFileDialogOptions@@QEBA?AVQString@@XZ

?initialDirectory@QFileDialogOptions@@QEBA?AVQUrl@@XZ

?isLabelExplicitlySet@QFileDialogOptions@@QEAA_NW4DialogLabel@1@@Z

?labelText@QFileDialogOptions@@QEBA?AVQString@@W4DialogLabel@1@@Z

?defaultSuffix@QFileDialogOptions@@QEBA?AVQString@@XZ

?nameFilters@QFileDialogOptions@@QEBA?AVQStringList@@XZ

?acceptMode@QFileDialogOptions@@QEBA?AW4AcceptMode@1@XZ

?fileMode@QFileDialogOptions@@QEBA?AW4FileMode@1@XZ

?options@QFileDialogOptions@@QEBA?AV?$QFlags@W4FileDialogOption@QFileDialogOptions@@@@XZ

?testOption@QFileDialogOptions@@QEBA_NW4FileDialogOption@1@@Z

?windowTitle@QFileDialogOptions@@QEBA?AVQString@@XZ

?reject@QPlatformDialogHelper@@QEAAXXZ

?accept@QPlatformDialogHelper@@QEAAXXZ

?tag@QPlatformMenuItem@@UEBA_KXZ

?tag@QPlatformMenu@@UEBA_KXZ

?showPopup@QPlatformMenu@@UEAAXPEBVQWindow@@AEBVQRect@@PEBVQPlatformMenuItem@@@Z

?setTag@QPlatformMenuItem@@UEAAX_K@Z

?setTag@QPlatformMenu@@UEAAX_K@Z

?setNativeContents@QPlatformMenuItem@@UEAAX_K@Z

?setMinimumWidth@QPlatformMenu@@UEAAXH@Z

?setMenuType@QPlatformMenu@@UEAAXW4MenuType@1@@Z

?setHasExclusiveGroup@QPlatformMenuItem@@UEAAX_N@Z

?setFont@QPlatformMenu@@UEAAXAEBVQFont@@@Z

?parentWindow@QPlatformMenuBar@@UEBAPEAVQWindow@@XZ

?dismiss@QPlatformMenu@@UEAAXXZ

?layoutDirection@QGuiApplication@@SA?AW4LayoutDirection@Qt@@XZ

?aboutToHide@QPlatformMenu@@QEAAXXZ

?aboutToShow@QPlatformMenu@@QEAAXXZ

??0QPlatformMenu@@QEAA@XZ

?activated@QPlatformMenuItem@@QEAAXXZ

??0QPlatformMenuItem@@QEAA@XZ

??6@YA?AVQDebug@@V0@AEBVQIcon@@@Z

?cacheKey@QIcon@@QEBA_JXZ

??4QIcon@@QEAAAEAV0@AEBV0@@Z

??0QIcon@@QEAA@XZ

??8QKeySequence@@QEBA_NAEBV0@@Z

??4QKeySequence@@QEAAAEAV0@AEBV0@@Z

?toString@QKeySequence@@QEBA?AVQString@@W4SequenceFormat@1@@Z

?isEmpty@QKeySequence@@QEBA_NXZ

??0QKeySequence@@QEAA@XZ

?write@QPixmapIconEngine@@UEBA_NAEAVQDataStream@@@Z

?virtual_hook@QPixmapIconEngine@@UEAAXHPEAX@Z

?standardButtonText@QPlatformTheme@@UEBA?AVQString@@H@Z

?standardButtonShortcut@QPlatformTheme@@UEBA?AVQKeySequence@@H@Z

?read@QPixmapIconEngine@@UEAA_NAEAVQDataStream@@@Z

?paint@QPixmapIconEngine@@UEAAXPEAVQPainter@@AEBVQRect@@W4Mode@QIcon@@W4State@5@@Z

?keyBindings@QPlatformTheme@@UEBA?AV?$QList@VQKeySequence@@@@W4StandardKey@QKeySequence@@@Z

?key@QPixmapIconEngine@@UEBA?AVQString@@XZ

?iconName@QIconEngine@@UEBA?AVQString@@XZ

?createIconEngine@QPlatformTheme@@UEBAPEAVQIconEngine@@AEBVQString@@@Z

?clone@QPixmapIconEngine@@UEBAPEAVQIconEngine@@XZ

?availableSizes@QIconEngine@@UEBA?AV?$QList@VQSize@@@@W4Mode@QIcon@@W4State@4@@Z

?addPixmap@QPixmapIconEngine@@UEAAXAEBVQPixmap@@W4Mode@QIcon@@W4State@4@@Z

?addFile@QPixmapIconEngine@@UEAAXAEBVQString@@AEBVQSize@@W4Mode@QIcon@@W4State@5@@Z

?qt_pixmapFromWinHICON@@YA?AVQPixmap@@PEAUHICON__@@@Z

??1QPixmapIconEngine@@UEAA@XZ

??0QPixmapIconEngine@@QEAA@XZ

?handleThemeChange@QWindowSystemInterface@@SAXPEAVQWindow@@@Z

?insert@QPixmapCache@@SA_NAEBVQString@@AEBVQPixmap@@@Z

?find@QPixmapCache@@SA_NAEBVQString@@AEAVQPixmap@@@Z

?desktopSettingsAware@QGuiApplication@@SA_NXZ

?setColorGroup@QPalette@@QEAAXW4ColorGroup@1@AEBVQBrush@@11111111@Z

?setBrush@QPalette@@QEAAXW4ColorGroup@1@W4ColorRole@1@AEBVQBrush@@@Z

?color@QPalette@@QEBAAEBVQColor@@W4ColorGroup@1@W4ColorRole@1@@Z

??0QPalette@@QEAA@AEBV0@@Z

??0QPalette@@QEAA@AEBVQColor@@000000@Z

?drawPixmap@QPainter@@QEAAXHHHHAEBVQPixmap@@@Z

??1QPainter@@QEAA@XZ

??0QPainter@@QEAA@PEAVQPaintDevice@@@Z

??8QBrush@@QEBA_NAEBV0@@Z

??0QIcon@@QEAA@PEAVQIconEngine@@@Z

?dark@QColor@@QEBA?AV1@H@Z

?light@QColor@@QEBA?AV1@H@Z

?setRgb@QColor@@QEAAXHHHH@Z

?blue@QColor@@QEBAHXZ

?green@QColor@@QEBAHXZ

?red@QColor@@QEBAHXZ

?setStyleHint@QFont@@QEAAXW4StyleHint@1@W4StyleStrategy@1@@Z

?pointSize@QFont@@QEBAHXZ

??1QFont@@QEAA@XZ

??0QFont@@QEAA@AEBV0@@Z

??0QFont@@QEAA@AEBVQString@@HH_N@Z

?standardPixmap@QPlatformTheme@@UEBA?AVQPixmap@@W4StandardPixmap@1@AEBVQSizeF@@@Z

?themeHint@QPlatformTheme@@UEBA?AVQVariant@@W4ThemeHint@1@@Z

??1QPlatformTheme@@UEAA@XZ

??0QPlatformTheme@@QEAA@XZ

?staticMetaObject@QInputMethod@@2UQMetaObject@@B

?isValid@QPlatformInputContext@@UEBA_NXZ

?isAnimating@QPlatformInputContext@@UEBA_NXZ

?inputDirection@QPlatformInputContext@@UEBA?AW4LayoutDirection@Qt@@XZ

?filterEvent@QPlatformInputContext@@UEAA_NPEBVQEvent@@@Z

?commit@QPlatformInputContext@@UEAAXXZ

?brush@QPalette@@QEBAAEBVQBrush@@W4ColorGroup@1@W4ColorRole@1@@Z

??1QPalette@@QEAA@XZ

?setUnderlineStyle@QTextCharFormat@@QEAAXW4UnderlineStyle@1@@Z

??0QTextCharFormat@@QEAA@XZ

??BQTextFormat@@QEBA?AVQVariant@@XZ

?setProperty@QTextFormat@@QEAAXHAEBVQVariant@@@Z

??1QTextFormat@@QEAA@XZ

??0QTextFormat@@QEAA@AEBV0@@Z

?color@QBrush@@QEBAAEBVQColor@@XZ

??BQBrush@@QEBA?AVQVariant@@XZ

??1QBrush@@QEAA@XZ

??0QBrush@@QEAA@AEBVQColor@@W4BrushStyle@Qt@@@Z

?inputMethod@QGuiApplication@@SAPEAVQInputMethod@@XZ

?queryKeyboardModifiers@QGuiApplication@@SA?AV?$QFlags@W4KeyboardModifier@Qt@@@@XZ

?palette@QGuiApplication@@SA?AVQPalette@@XZ

??0QInputMethodEvent@@QEAA@AEBVQString@@AEBV?$QList@VAttribute@QInputMethodEvent@@@@@Z

?inputMethodAccepted@QPlatformInputContext@@QEBA_NXZ

?emitLocaleChanged@QPlatformInputContext@@QEAAXXZ

?invokeAction@QPlatformInputContext@@UEAAXW4Action@QInputMethod@@H@Z

?update@QPlatformInputContext@@UEAAXV?$QFlags@W4InputMethodQuery@Qt@@@@@Z

?reset@QPlatformInputContext@@UEAAXXZ

??1QPlatformInputContext@@UEAA@XZ

??0QPlatformInputContext@@QEAA@XZ

?cursorRectangleChanged@QInputMethod@@QEAAXXZ

?queryFocusObject@QInputMethod@@SA?AVQVariant@@W4InputMethodQuery@Qt@@V2@@Z

?cursorRectangle@QInputMethod@@QEBA?AVQRectF@@XZ

?pointerEvent@QPlatformCursor@@UEAAXAEBVQMouseEvent@@@Z

?qt_createIconMask@@YAPEAUHBITMAP__@@AEBVQBitmap@@@Z

?qt_pixmapToWinHBITMAP@@YAPEAUHBITMAP__@@AEBVQPixmap@@H@Z

?scaleAndOrigin@QHighDpiScaling@@SA?AUScaleAndOrigin@1@PEBVQPlatformScreen@@PEAVQPoint@@@Z

??1QBitmap@@UEAA@XZ

qt5core

?fileName@QLibrary@@QEBA?AVQString@@XZ

?setFileName@QLibrary@@QEAAXAEBVQString@@@Z

?load@QLibrary@@QEAA_NXZ

?errorString@QLibrary@@QEBA?AVQString@@XZ

??1QLibrary@@UEAA@XZ

?setVector@SegmentStorage@QVersionNumber@@AEAAXHHHH@Z

?debug@QMessageLogger@@QEBA?AVQDebug@@P6AAEBVQLoggingCategory@@XZ@Z

?scaled@QSize@@QEBA?AV1@AEBV1@W4AspectRatioMode@Qt@@@Z

?isSymLink@QFileInfo@@QEBA_NXZ

?isExecutable@QFileInfo@@QEBA_NXZ

z_inflateValidate

z_inflateReset2

z_crc32

z_adler32

z_inflateInit2_

z_inflateReset

z_inflateEnd

z_inflate

?toByteArray@QUuid@@QEBA?AVQByteArray@@XZ

??0QPointF@@QEAA@XZ

?isNativePath@QFileInfo@@QEBA_NXZ

?firstNode@QHashData@@QEAAPEAUNode@1@XZ

?move@QListData@@QEAAXHH@Z

?qHash@@YAIAEBVQByteArray@@I@Z

?fromUtf8@QString@@SA?AV1@PEBDH@Z

?toUtf8@QString@@QEGBA?AVQByteArray@@XZ

?contains@QString@@QEBA_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?remove@QByteArray@@QEAAAEAV1@HH@Z

??BQByteArray@@QEBAPEBDXZ

??YQByteArray@@QEAAAEAV0@AEBV0@@Z

?lowSurrogate@QChar@@SAGI@Z

?highSurrogate@QChar@@SAGI@Z

?surrogateToUcs4@QChar@@SAIV1@0@Z

?requiresSurrogates@QChar@@SA_NI@Z

?isSurrogate@QChar@@QEBA_NXZ

?isLowSurrogate@QChar@@QEBA_NXZ

?isHighSurrogate@QChar@@QEBA_NXZ

?fatal@QMessageLogger@@QEBAXPEBDZZ

?allKeys@QSettings@@QEBA?AVQStringList@@XZ

?isRelativePath@QDir@@SA_NAEBVQString@@@Z

?system@QLocale@@SA?AV1@XZ

?appendLatin1To@QAbstractConcatenable@@KAXPEBDHPEAVQChar@@@Z

?trimmed@QStringRef@@QEBA?AV1@XZ

?toString@QStringRef@@QEBA?AVQString@@XZ

?split@QStringRef@@QEBA?AV?$QVector@VQStringRef@@@@VQChar@@W4SplitBehavior@QString@@W4CaseSensitivity@Qt@@@Z

??1QStringRef@@QEAA@XZ

??0QStringRef@@QEAA@PEBVQString@@@Z

??9QString@@QEBA_NVQLatin1String@@@Z

?remove@QString@@QEAAAEAV1@AEBVQRegularExpression@@@Z

?remove@QString@@QEAAAEAV1@AEBV1@W4CaseSensitivity@Qt@@@Z

?end@QByteArray@@QEBAPEBDXZ

??0QByteArray@@QEAA@HW4Initialization@Qt@@@Z

?createInternalHwnd@QEventDispatcherWin32@@IEAAXXZ

?encodeName@QFile@@SA?AVQByteArray@@AEBVQString@@@Z

?set@QThreadStorageData@@QEAAPEAPEAXPEAX@Z

?get@QThreadStorageData@@QEBAPEAPEAXXZ

??1QThreadStorageData@@QEAA@XZ

??0QThreadStorageData@@QEAA@P6AXPEAX@Z@Z

?open@QFile@@UEAA_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??1QFile@@UEAA@XZ

??0QFile@@QEAA@AEBVQString@@@Z

?close@QFileDevice@@UEAAXXZ

?readAll@QIODevice@@QEAA?AVQByteArray@@XZ

?willGrow@QHashData@@QEAA_NXZ

?freeNodeAndRebalance@QMapDataBase@@QEAAXPEAUQMapNodeBase@@@Z

?setParent@QMapNodeBase@@QEAAXPEAU1@@Z

?setColor@QMapNodeBase@@QEAAXW4Color@1@@Z

?color@QMapNodeBase@@QEBA?AW4Color@1@XZ

?end@QListData@@QEBAPEAPEAXXZ

?begin@QListData@@QEBAPEAPEAXXZ

?at@QListData@@QEBAPEAPEAXH@Z

?isEmpty@QListData@@QEBA_NXZ

?size@QListData@@QEBAHXZ

??0QString@@QEAA@UQStringDataPtr@@@Z

??0QString@@QEAA@HW4Initialization@Qt@@@Z

?number@QString@@SA?AV1@KH@Z

?constData@QString@@QEBAPEBVQChar@@XZ

?data@QString@@QEAAPEAVQChar@@XZ

?reserve@QString@@QEAAXH@Z

?isEmpty@QString@@QEBA_NXZ

?length@QString@@QEBAHXZ

?size@QString@@QEBAHXZ

?isEmpty@QByteArray@@QEBA_NXZ

?size@QByteArray@@QEBAHXZ

?sharedNull@QArrayData@@SAPEAU1@XZ

?data@QArrayData@@QEAAPEAXXZ

?unicode@QChar@@QEBAGXZ

??0QChar@@QEAA@H@Z

??0QChar@@QEAA@G@Z

?critical@QMessageLogger@@QEBAXPEBDZZ

?qt_metacall@QEventDispatcherWin32@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?qt_metacast@QEventDispatcherWin32@@UEAAPEAXPEBD@Z

?staticMetaObject@QEventDispatcherWin32@@2UQMetaObject@@B

?wakeUp@QEventDispatcherWin32@@UEAAXXZ

?unregisterTimers@QEventDispatcherWin32@@UEAA_NPEAVQObject@@@Z

?unregisterTimer@QEventDispatcherWin32@@UEAA_NH@Z

?unregisterSocketNotifier@QEventDispatcherWin32@@UEAAXPEAVQSocketNotifier@@@Z

?unregisterEventNotifier@QEventDispatcherWin32@@UEAAXPEAVQWinEventNotifier@@@Z

?startingUp@QEventDispatcherWin32@@UEAAXXZ

?remainingTime@QEventDispatcherWin32@@UEAAHH@Z

?registeredTimers@QEventDispatcherWin32@@UEBA?AV?$QList@UTimerInfo@QAbstractEventDispatcher@@@@PEAVQObject@@@Z

?registerTimer@QEventDispatcherWin32@@UEAAXHHW4TimerType@Qt@@PEAVQObject@@@Z

?registerSocketNotifier@QEventDispatcherWin32@@UEAAXPEAVQSocketNotifier@@@Z

?registerEventNotifier@QEventDispatcherWin32@@UEAA_NPEAVQWinEventNotifier@@@Z

?interrupt@QEventDispatcherWin32@@UEAAXXZ

?hasPendingEvents@QEventDispatcherWin32@@UEAA_NXZ

?flush@QEventDispatcherWin32@@UEAAXXZ

?event@QEventDispatcherWin32@@UEAA_NPEAVQEvent@@@Z

?closingDown@QEventDispatcherWin32@@UEAAXXZ

?data@QArrayData@@QEBAPEBXXZ

??0QLibrary@@QEAA@PEAVQObject@@@Z

?resolve@QLibrary@@QEAAP6AXXZPEBD@Z

??1QEventDispatcherWin32@@UEAA@XZ

?qUnregisterResourceData@@YA_NHPEBE00@Z

?qRegisterResourceData@@YA_NHPEBE00@Z

?arg@QString@@QEBA?AV1@HHHVQChar@@@Z

?arg@QString@@QEBA?AV1@_KHHVQChar@@@Z

?isSpace@QChar@@SA_NI@Z

?append@QListData@@QEAAPEAPEAXAEBU1@@Z

??BQCharRef@@QEBA?AVQChar@@XZ

?toDouble@QString@@QEBANPEA_N@Z

?cmp@QVariant@@QEBA_NAEBV1@@Z

?toDouble@QVariant@@QEBANPEA_N@Z

?applicationName@QCoreApplication@@SA?AVQString@@XZ

?parent@QObject@@QEBAPEAV1@XZ

?destroyed@QObject@@QEAAXPEAV1@@Z

?closingDown@QCoreApplication@@SA_NXZ

?startingUp@QCoreApplication@@SA_NXZ

??6QTextStream@@QEAAAEAV0@H@Z

?manhattanLength@QPointF@@QEBANXZ

?processEvents@QCoreApplication@@SAXV?$QFlags@W4ProcessEventsFlag@QEventLoop@@@@@Z

??_0QSize@@QEAAAEAV0@N@Z

?setObjectName@QObject@@QEAAXAEBVQString@@@Z

?msleep@QThread@@SAXK@Z

?hasColor@QMimeData@@QEBA_NXZ

?colorData@QMimeData@@QEBA?AVQVariant@@XZ

?hasHtml@QMimeData@@QEBA_NXZ

?append@QString@@QEAAAEAV1@VQChar@@@Z

?isNull@QVariant@@QEBA_NXZ

?startsWith@QByteArray@@QEBA_NPEBD@Z

?count@QByteArray@@QEBAHD@Z

?indexOf@QByteArray@@QEBAHPEBDH@Z

?location@QLibraryInfo@@SA?AVQString@@W4LibraryLocation@1@@Z

?locate@QStandardPaths@@SA?AVQString@@W4StandardLocation@1@AEBV2@V?$QFlags@W4LocateOption@QStandardPaths@@@@@Z

?isRelative@QFileInfo@@QEBA_NXZ

?decodeName@QFile@@SA?AVQString@@AEBVQByteArray@@@Z

?qt_QMetaEnum_flagDebugOperator@@YAXAEAVQDebug@@_KH@Z

?exec@QTextStreamManipulator@@QEAAXAEAVQTextStream@@@Z

??6QTextStream@@QEAAAEAV0@PEBD@Z

??6QTextStream@@QEAAAEAV0@AEBVQByteArray@@@Z

??6QTextStream@@QEAAAEAV0@AEBVQString@@@Z

??6QTextStream@@QEAAAEAV0@I@Z

??1QTextStream@@UEAA@XZ

??0QTextStream@@QEAA@PEAVQString@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??0QVariant@@QEAA@AEBV?$QMap@VQString@@VQVariant@@@@@Z

??0QVariant@@QEAA@VQLatin1String@@@Z

??0QVariant@@QEAA@I@Z

??6@YA?AVQDebug@@V0@AEBVQVersionNumber@@@Z

?toString@QVersionNumber@@QEBA?AVQString@@XZ

?qHash@@YAIAEBVQVersionNumber@@I@Z

?indexOf@QByteArray@@QEBAHDH@Z

??4QByteArray@@QEAAAEAV0@PEBD@Z

?debug@QMessageLogger@@QEBAXPEBDZZ

?qEnvironmentVariableIsSet@@YA_NPEBD@Z

??4QVariant@@QEAAAEAV0@AEBV0@@Z

??M@YA_NAEBVQString@@0@Z

?toLower@QByteArray@@QEGBA?AV1@XZ

?qstrcmp@@YAHAEBVQByteArray@@PEBD@Z

?hasFragment@QUrl@@QEBA_NXZ

?hasQuery@QUrl@@QEBA_NXZ

?number@QString@@SA?AV1@_KH@Z

?replace@QString@@QEAAAEAV1@VQLatin1String@@AEBV1@W4CaseSensitivity@Qt@@@Z

?insert@QString@@QEAAAEAV1@HVQChar@@@Z

?indexOf@QString@@QEBAHAEBV1@HW4CaseSensitivity@Qt@@@Z

?fileName@QTemporaryFile@@UEBA?AVQString@@XZ

?open@QTemporaryFile@@QEAA_NXZ

?setAutoRemove@QTemporaryFile@@QEAAX_N@Z

??1QTemporaryFile@@UEAA@XZ

??0QTemporaryFile@@QEAA@AEBVQString@@@Z

??BQUuid@@QEBA?AU_GUID@@XZ

?isNull@QUuid@@QEBA_NXZ

?fromString@QUuid@@SA?AV1@VQStringView@@@Z

?wait@QThread@@QEAA_NK@Z

?terminate@QThread@@QEAAXXZ

?isRunning@QThread@@QEBA_NXZ

??1QRegularExpression@@QEAA@XZ

??0QRegularExpression@@QEAA@AEBVQString@@V?$QFlags@W4PatternOption@QRegularExpression@@@@@Z

?qAddPostRoutine@@YAXP6AXXZ@Z

?isCriticalEnabled@QLoggingCategory@@QEBA_NXZ

??6@YA?AVQDebug@@V0@AEBVQUrl@@@Z

?path@QUrl@@QEBA?AVQString@@V?$QFlags@W4ComponentFormattingOption@QUrl@@@@@Z

?scheme@QUrl@@QEBA?AVQString@@XZ

?isEmpty@QUrl@@QEBA_NXZ

?errorString@QUrl@@QEBA?AVQString@@XZ

?isValid@QUrl@@QEBA_NXZ

?adjusted@QUrl@@QEBA?AV1@V?$QUrlTwoFlags@W4UrlFormattingOption@QUrl@@W4ComponentFormattingOption@2@@@@Z

??4QUrl@@QEAAAEAV0@$$QEAV0@@Z

??4QUrl@@QEAAAEAV0@AEBV0@@Z

??0QUrl@@QEAA@AEBV0@@Z

??0QUrl@@QEAA@XZ

?cleanPath@QDir@@SA?AVQString@@AEBV2@@Z

?tempPath@QDir@@SA?AVQString@@XZ

?remove@QFile@@SA_NAEBVQString@@@Z

?errorString@QIODevice@@QEBA?AVQString@@XZ

?setQObjectShared@ExternalRefCountData@QtSharedPointer@@QEAAXPEBVQObject@@_N@Z

??0QSharedData@@QEAA@XZ

?killTimer@QObject@@QEAAXH@Z

?startTimer@QObject@@QEAAHHW4TimerType@Qt@@@Z

?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ

?QStringList_join@QtPrivate@@YA?AVQString@@AEBVQStringList@@VQLatin1String@@@Z

?toWCharArray@QString@@QEBAHPEA_W@Z

?toLatin1@QString@@QEHAA?AVQByteArray@@XZ

?replace@QString@@QEAAAEAV1@AEBVQRegularExpression@@AEBV1@@Z

?remove@QString@@QEAAAEAV1@VQChar@@W4CaseSensitivity@Qt@@@Z

?remove@QString@@QEAAAEAV1@HH@Z

?prepend@QString@@QEAAAEAV1@AEBV1@@Z

?insert@QString@@QEAAAEAV1@HAEBV1@@Z

?trimmed@QString@@QEHAA?AV1@XZ

?endsWith@QString@@QEBA_NVQChar@@W4CaseSensitivity@Qt@@@Z

?startsWith@QString@@QEBA_NVQChar@@W4CaseSensitivity@Qt@@@Z

?data@QString@@QEBAPEBVQChar@@XZ

??4QString@@QEAAAEAV0@VQLatin1String@@@Z

?toBase64@QByteArray@@QEBA?AV1@XZ

?isLetterOrNumber@QChar@@SA_NI@Z

?category@QChar@@SA?AW4Category@1@I@Z

?activate@QMetaObject@@SAXPEAVQObject@@PEBU1@HPEAPEAX@Z

?critical@QMessageLogger@@QEBA?AVQDebug@@XZ

?staticMetaObject@QObject@@2UQMetaObject@@B

?canConvert@QVariant@@QEBA_NH@Z

??0QObject@@QEAA@PEAV0@@Z

?typeFlags@QMetaType@@SA?AV?$QFlags@W4TypeFlag@QMetaType@@@@H@Z

?staticMetaObject@QThread@@2UQMetaObject@@B

?qt_metacast@QThread@@UEAAPEAXPEBD@Z

?qt_metacall@QThread@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?metaObject@QThread@@UEBAPEBUQMetaObject@@XZ

?event@QThread@@UEAA_NPEAVQEvent@@@Z

?wakeAll@QWaitCondition@@QEAAXXZ

?wait@QWaitCondition@@QEAA_NPEAVQMutex@@K@Z

??1QWaitCondition@@QEAA@XZ

??0QWaitCondition@@QEAA@XZ

?unlock@QMutex@@QEAAXXZ

?finished@QThread@@QEAAXUQPrivateSignal@1@@Z

?start@QThread@@QEAAXW4Priority@1@@Z

??1QThread@@UEAA@XZ

??0QThread@@QEAA@PEAVQObject@@@Z

?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ

?isRoot@QFileInfo@@QEBA_NXZ

?isDir@QFileInfo@@QEBA_NXZ

?isFile@QFileInfo@@QEBA_NXZ

?suffix@QFileInfo@@QEBA?AVQString@@XZ

?fileName@QFileInfo@@QEBA?AVQString@@XZ

?absoluteFilePath@QFileInfo@@QEBA?AVQString@@XZ

?filePath@QFileInfo@@QEBA?AVQString@@XZ

?exists@QFileInfo@@QEBA_NXZ

??1QFileInfo@@QEAA@XZ

??0QFileInfo@@QEAA@AEBV0@@Z

??0QFileInfo@@QEAA@AEBVQString@@@Z

??6@YA?AVQDebug@@V0@AEBVQSize@@@Z

??0QVariant@@QEAA@AEBVQStringList@@@Z

??0QVariant@@QEAA@HPEBXI@Z

?deleteLater@QObject@@QEAAXXZ

?unregisterConverterFunction@QMetaType@@SAXHH@Z

?registerConverterFunction@QMetaType@@SA_NPEBUAbstractConverterFunction@QtPrivate@@HH@Z

?hasRegisteredConverterFunction@QMetaType@@SA_NHH@Z

?typeName@QMetaType@@SAPEBDH@Z

?number@QString@@SA?AV1@HH@Z

?compare@QString@@QEBAHVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?toUpper@QString@@QEHAA?AV1@XZ

?append@QByteArray@@QEAAAEAV1@PEBDH@Z

?endsWith@QByteArray@@QEBA_ND@Z

?qt_localeFromLCID@@YA?AVQLocale@@K@Z

?boundaryReasons@QTextBoundaryFinder@@QEBA?AV?$QFlags@W4BoundaryReason@QTextBoundaryFinder@@@@XZ

?toPreviousBoundary@QTextBoundaryFinder@@QEAAHXZ

?toNextBoundary@QTextBoundaryFinder@@QEAAHXZ

?setPosition@QTextBoundaryFinder@@QEAAXH@Z

?position@QTextBoundaryFinder@@QEBAHXZ

??0QTextBoundaryFinder@@QEAA@W4BoundaryType@0@AEBVQString@@@Z

??1QTextBoundaryFinder@@QEAA@XZ

??6@YA?AVQDebug@@V0@AEBVQLocale@@@Z

?language@QLocale@@QEBA?AW4Language@1@XZ

??4QLocale@@QEAAAEAV0@$$QEAV0@@Z

??0QLocale@@QEAA@AEBV0@@Z

??6@YA?AVQDebug@@V0@PEBVQObject@@@Z

?clear@QString@@QEAAXXZ

?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z

?qt_metacast@QObject@@UEAAPEAXPEBD@Z

?qt_metacall@QObject@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z

?metaObject@QObject@@UEBAPEBUQMetaObject@@XZ

?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z

?event@QObject@@UEAA_NPEAVQEvent@@@Z

?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z

?customEvent@QObject@@MEAAXPEAVQEvent@@@Z

?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z

?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z

??1QObject@@UEAA@XZ

?toSize@QSizeF@@QEBA?AVQSize@@XZ

?toString@QVariant@@QEBA?AVQString@@XZ

?type@QVariant@@QEBA?AW4Type@1@XZ

?shared_null@QMapDataBase@@2U1@B

?setByteOrder@QDataStream@@QEAAXW4ByteOrder@1@@Z

?status@QDataStream@@QEBA?AW4Status@1@XZ

??1QDataStream@@QEAA@XZ

??0QDataStream@@QEAA@PEAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

?close@QBuffer@@UEAAXXZ

?open@QBuffer@@UEAA_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z

??1QBuffer@@UEAA@XZ

??0QBuffer@@QEAA@PEAVQByteArray@@PEAVQObject@@@Z

?toNativeSeparators@QDir@@SA?AVQString@@AEBV2@@Z

?toLocalFile@QUrl@@QEBA?AVQString@@XZ

?fromLocalFile@QUrl@@SA?AV1@AEBVQString@@@Z

?toString@QUrl@@QEBA?AVQString@@V?$QUrlTwoFlags@W4UrlFormattingOption@QUrl@@W4ComponentFormattingOption@2@@@@Z

??0QUrl@@QEAA@AEBVQString@@W4ParsingMode@0@@Z

?indexOfIn@QStaticByteArrayMatcherBase@@IEBAHPEBDI0HH@Z

?hasImage@QMimeData@@QEBA_NXZ

?imageData@QMimeData@@QEBA?AVQVariant@@XZ

?html@QMimeData@@QEBA?AVQString@@XZ

?hasText@QMimeData@@QEBA_NXZ

?text@QMimeData@@QEBA?AVQString@@XZ

?write@QIODevice@@QEAA_JPEBD_J@Z

?read@QIODevice@@QEAA_JPEAD_J@Z

?isWritable@QIODevice@@QEBA_NXZ

??6@YA?AVQDebug@@V0@W4Type@QVariant@@@Z

??6@YA?AVQDebug@@V0@AEBVQVariant@@@Z

??4QVariant@@QEAAAEAV0@$$QEAV0@@Z

??0QVariant@@QEAA@$$QEAV0@@Z

??0QVariant@@QEAA@AEBVQUrl@@@Z

??0QVariant@@QEAA@AEBV?$QList@VQVariant@@@@@Z

??0QVariant@@QEAA@AEBVQString@@@Z

??0QVariant@@QEAA@AEBVQByteArray@@@Z

??0QVariant@@QEAA@AEBV0@@Z

??0QVariant@@QEAA@XZ

?freeData@QMapDataBase@@SAXPEAU1@@Z

?createData@QMapDataBase@@SAPEAU1@XZ

?freeTree@QMapDataBase@@QEAAXPEAUQMapNodeBase@@H@Z

?createNode@QMapDataBase@@QEAAPEAUQMapNodeBase@@HHPEAU2@_N@Z

?recalcMostLeftNode@QMapDataBase@@QEAAXXZ

?nextNode@QMapNodeBase@@QEBAPEBU1@XZ

?QStringList_contains@QtPrivate@@YA_NPEBVQStringList@@AEBVQString@@W4CaseSensitivity@Qt@@@Z

??4QCharRef@@QEAAAEAV0@VQChar@@@Z

?fromUtf8@QString@@SA?AV1@AEBVQByteArray@@@Z

?fromLocal8Bit@QString@@SA?AV1@PEBDH@Z

?toUtf8@QString@@QEHAA?AVQByteArray@@XZ

?replace@QString@@QEAAAEAV1@VQLatin1String@@0W4CaseSensitivity@Qt@@@Z

??YQString@@QEAAAEAV0@VQChar@@@Z

?startsWith@QString@@QEBA_NAEBV1@W4CaseSensitivity@Qt@@@Z

?midRef@QString@@QEBA?AVQStringRef@@HH@Z

?mid@QString@@QEBA?AV1@HH@Z

?lastIndexOf@QString@@QEBAHVQChar@@HW4CaseSensitivity@Qt@@@Z

?indexOf@QString@@QEBAHVQLatin1String@@HW4CaseSensitivity@Qt@@@Z

?indexOf@QString@@QEBAHVQChar@@HW4CaseSensitivity@Qt@@@Z

?unicode@QString@@QEBAPEBVQChar@@XZ

?truncate@QString@@QEAAXH@Z

?resize@QString@@QEAAXH@Z

??4QByteRef@@QEAAAEAV0@D@Z

?fromRawData@QByteArray@@SA?AV1@PEBDH@Z

?number@QByteArray@@SA?AV1@HH@Z

?toInt@QByteArray@@QEBAHPEA_NH@Z

?replace@QByteArray@@QEAAAEAV1@DPEBD@Z

?mid@QByteArray@@QEBA?AV1@HH@Z

?at@QByteArray@@QEBADH@Z

?clear@QByteArray@@QEAAXXZ

?detach@QByteArray@@QEAAXXZ

?data@QByteArray@@QEBAPEBDXZ

?data@QByteArray@@QEAAPEADXZ

?resize@QByteArray@@QEAAXH@Z

??4QByteArray@@QEAAAEAV0@$$QEAV0@@Z

??0QByteArray@@QEAA@$$QEAV0@@Z

??4QByteArray@@QEAAAEAV0@AEBV0@@Z

??0QByteArray@@QEAA@HD@Z

?hasUrls@QMimeData@@QEBA_NXZ

?urls@QMimeData@@QEBA?AV?$QList@VQUrl@@@@XZ

?isLocalFile@QUrl@@QEBA_NXZ

??1QUrl@@QEAA@XZ

?shared_null@QArrayData@@2QBU1@B

??6QTextStream@@QEAAAEAV0@D@Z

?allocate@QArrayData@@SAPEAU1@_K00V?$QFlags@W4AllocationOption@QArrayData@@@@@Z

??6QDebug@@QEAAAEAV0@_J@Z

??6@YA?AVQDebug@@V0@AEBVQPointF@@@Z

?qt_error_string@@YA?AVQString@@H@Z

?staticMetaObject@QEvent@@2UQMetaObject@@B

??1?$QVector@VQPointF@@@@QEAA@XZ

??0?$QVector@VQPointF@@@@QEAA@AEBV0@@Z

??0?$QVector@VQPointF@@@@QEAA@XZ

?moveCenter@QRectF@@QEAAXAEBVQPointF@@@Z

?inherits@QObject@@QEBA_NPEBD@Z

?hasShrunk@QHashData@@QEAAXXZ

?realloc@QListData@@QEAAXH@Z

?valueToKeys@QMetaEnum@@QEBA?AVQByteArray@@H@Z

?valueToKey@QMetaEnum@@QEBAPEBDH@Z

?sendEvent@QCoreApplication@@SA_NPEAVQObject@@PEAVQEvent@@@Z

??1QLocale@@QEAA@XZ

??0QLocale@@QEAA@XZ

?connectImpl@QObject@@CA?AVConnection@QMetaObject@@PEBV1@PEAPEAX01PEAVQSlotObjectBase@QtPrivate@@W4ConnectionType@Qt@@PEBHPEBU3@@Z

??1Connection@QMetaObject@@QEAA@XZ

?enumerator@QMetaObject@@QEBA?AVQMetaEnum@@H@Z

?indexOfEnumerator@QMetaObject@@QEBAHPEBD@Z

??0QString@@QEAA@VQChar@@@Z

??0QString@@QEAA@PEBVQChar@@H@Z

?toUpper@QChar@@SAII@Z

?toLower@QChar@@SAII@Z

?isLetter@QChar@@QEBA_NXZ

??0QChar@@QEAA@XZ

?reserve@QByteArray@@QEAAXH@Z

??0QByteArray@@QEAA@XZ

?value@QSettings@@QEBA?AVQVariant@@AEBVQString@@AEBV2@@Z

??1QSettings@@UEAA@XZ

??0QSettings@@QEAA@AEBVQString@@W4Format@0@PEAVQObject@@@Z

?qt_QMetaEnum_debugOperator@@YA?AVQDebug@@AEAV1@HPEBUQMetaObject@@PEBD@Z

??UQRect@@QEBA?AV0@AEBV0@@Z

?toInt@QVariant@@QEBAHPEA_N@Z

?toPoint@QPointF@@QEBA?AVQPoint@@XZ

??6@YA?AVQDebug@@V0@AEBVQPoint@@@Z

?manhattanLength@QPoint@@QEBAHXZ

?remove@QListData@@QEAAXH@Z

?prepend@QListData@@QEAAPEAPEAXXZ

?erase@QListData@@QEAAPEAPEAXPEAPEAX@Z

?fromWCharArray@QString@@SA?AV1@PEB_WH@Z

?is_app_running@QCoreApplicationPrivate@@2_NA

?self@QCoreApplication@@0PEAV1@EA

?Windows8_1@QOperatingSystemVersion@@2V1@B

?Windows8@QOperatingSystemVersion@@2V1@B

?shared_null@QHashData@@2U1@B

?load@QSystemLibrary@@SAPEAUHINSTANCE__@@PEB_W_N@Z

?createUuid@QUuid@@SA?AV1@XZ

?toString@QUuid@@QEBA?AVQString@@XZ

?filterNativeEvent@QAbstractEventDispatcher@@QEAA_NAEBVQByteArray@@PEAXPEAJ@Z

?instance@QAbstractEventDispatcher@@SAPEAV1@PEAVQThread@@@Z

?quit@QCoreApplication@@SAXXZ

?get@QObjectPrivate@@SAPEAV1@PEAVQObject@@@Z

??0QOperatingSystemVersion@@QEAA@W4OSType@0@HHH@Z

?setSize@QRect@@QEAAXAEBVQSize@@@Z

?setFilterRules@QLoggingCategory@@SAXAEBVQString@@@Z

??1QLoggingCategory@@QEAA@XZ

??0QLoggingCategory@@QEAA@PEBD@Z

?indexOfSignal@QMetaObject@@QEBAHPEBD@Z

?cast@QMetaObject@@QEBAPEAVQObject@@PEAV2@@Z

?nextNode@QHashData@@SAPEAUNode@1@PEAU21@@Z

?free_helper@QHashData@@QEAAXP6AXPEAUNode@1@@Z@Z

?rehash@QHashData@@QEAAXH@Z

?detach_helper@QHashData@@QEAAPEAU1@P6AXPEAUNode@1@PEAX@ZP6AX0@ZHH@Z

?freeNode@QHashData@@QEAAXPEAX@Z

?allocateNode@QHashData@@QEAAPEAXH@Z

?qHash@@YAIAEBVQString@@I@Z

?fromUtf16@QString@@SA?AV1@PEBGH@Z

?fromLocal8Bit@QString@@SA?AV1@AEBVQByteArray@@@Z

?fromLatin1@QString@@SA?AV1@PEBDH@Z

?append@QString@@QEAAAEAV1@VQLatin1String@@@Z

?append@QString@@QEAAAEAV1@AEBV1@@Z

?asprintf@QString@@SA?AV1@PEBDZZ

??0QString@@QEAA@$$QEAV0@@Z

??4QString@@QEAAAEAV0@AEBV0@@Z

??YQByteArray@@QEAAAEAV0@AEBVQString@@@Z

?append@QByteArray@@QEAAAEAV1@D@Z

??0QByteArray@@QEAA@AEBV0@@Z

?qErrnoWarning@@YAXHPEBDZZ

?qgetenv@@YA?AVQByteArray@@PEBD@Z

?shared_null@QListData@@2UData@1@B

?unlock@QMutexLocker@@QEAAXXZ

?lock@QMutex@@QEAAXXZ

??1QMutex@@QEAA@XZ

??0QMutex@@QEAA@W4RecursionMode@0@@Z

?testAttribute@QCoreApplication@@SA_NW4ApplicationAttribute@Qt@@@Z

?setAttribute@QCoreApplication@@SAXW4ApplicationAttribute@Qt@@_N@Z

?isWarningEnabled@QLoggingCategory@@QEBA_NXZ

??6QDebug@@QEAAAEAV0@VQLatin1String@@@Z

??6QDebug@@QEAAAEAV0@AEBVQStringRef@@@Z

??6QDebug@@QEAAAEAV0@_K@Z

??0QVariant@@QEAA@N@Z

??0QVariant@@QEAA@H@Z

?append@QListData@@QEAAPEAPEAXXZ

?detach_grow@QListData@@QEAAPEAUData@1@PEAHH@Z

?toInt@QStringRef@@QEBAHPEA_NH@Z

?isNull@QString@@QEBA_NXZ

??8QString@@QEBA_NVQLatin1String@@@Z

?endsWith@QString@@QEBA_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?startsWith@QString@@QEBA_NVQLatin1String@@W4CaseSensitivity@Qt@@@Z

?rightRef@QString@@QEBA?AVQStringRef@@H@Z

?at@QString@@QEBA?BVQChar@@H@Z

??0QString@@QEAA@VQLatin1String@@@Z

?registerNormalizedType@QMetaType@@SAHAEBVQByteArray@@P6AXPEAX@ZP6APEAX1PEBX@ZHV?$QFlags@W4TypeFlag@QMetaType@@@@PEBUQMetaObject@@@Z

?normalizedType@QMetaObject@@SA?AVQByteArray@@PEBD@Z

?warning@QMessageLogger@@QEBA?AVQDebug@@XZ

?Windows10@QOperatingSystemVersion@@2V1@B

?staticQtMetaObject@QObject@@1UQMetaObject@@B

?isDebugBuild@QLibraryInfo@@SA_NXZ

?compare@QOperatingSystemVersion@@CAHAEBV1@0@Z

?current@QOperatingSystemVersion@@SA?AV1@XZ

?isDebugEnabled@QLoggingCategory@@QEBA_NXZ

?qt_QMetaEnum_flagDebugOperator@@YA?AVQDebug@@AEAV1@_KPEBUQMetaObject@@PEBD@Z

??1QDebugStateSaver@@QEAA@XZ

??0QDebugStateSaver@@QEAA@AEAVQDebug@@@Z

??6QDebug@@QEAAAEAV0@P6AAEAVQTextStream@@AEAV1@@Z@Z

??6QDebug@@QEAAAEAV0@PEBX@Z

??6QDebug@@QEAAAEAV0@AEBVQByteArray@@@Z

??6QDebug@@QEAAAEAV0@AEBVQString@@@Z

??6QDebug@@QEAAAEAV0@PEBD@Z

??6QDebug@@QEAAAEAV0@N@Z

??6QDebug@@QEAAAEAV0@K@Z

??6QDebug@@QEAAAEAV0@J@Z

??6QDebug@@QEAAAEAV0@I@Z

msvcp140

?_Xlength_error@std@@YAXPEBD@Z

kernel32

GlobalAlloc

GlobalSize

SetErrorMode

GetCurrentProcessId

ExpandEnvironmentStringsW

CloseHandle

CreateProcessW

LoadLibraryA

LoadLibraryW

CheckRemoteDebuggerPresent

OpenProcess

GetUserDefaultLangID

ExitProcess

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

SetEvent

ResetEvent

WaitForSingleObjectEx

CreateEventW

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

IsDebuggerPresent

QueryPerformanceCounter

GetSystemTimeAsFileTime

DisableThreadLibraryCalls

GetCurrentThreadId

GetLastError

InitializeSListHead

GlobalLock

GlobalUnlock

GetLocaleInfoW

WTSGetActiveConsoleSessionId

FormatMessageW

GetProcAddress

GetModuleHandleW

vcruntime140

__std_type_info_destroy_list

__std_exception_destroy

__intrinsic_setjmp

__std_terminate

__C_specific_handler

memchr

longjmp

strrchr

strstr

memcmp

wcsstr

__CxxFrameHandler3

_CxxThrowException

memmove

memset

memcpy

_purecall

__std_exception_copy

api-ms-win-crt-stdio-l1-1-0

fflush

fclose

fopen

fread

fseek

ftell

__stdio_common_vsprintf

__stdio_common_vfprintf

__acrt_iob_func

api-ms-win-crt-string-l1-1-0

strncmp

strcmp

strncpy

wcsncmp

toupper

api-ms-win-crt-heap-l1-1-0

malloc

free

realloc

_callnewh

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table

_cexit

_invalid_parameter_noinfo_noreturn

_initterm_e

_execute_onexit_table

_initterm

_register_onexit_function

_initialize_narrow_environment

_seh_filter_dll

_crt_atexit

_configure_narrow_argv

api-ms-win-crt-math-l1-1-0

tan

sin

floor

lround

cos

atan

pow

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-convert-l1-1-0

strtol

api-ms-win-crt-environment-l1-1-0

getenv

Exports

FT_Activate_Size

FT_Add_Default_Modules

FT_Add_Module

FT_Angle_Diff

FT_Atan2

FT_Attach_File

FT_Attach_Stream

FT_Bitmap_Convert

FT_Bitmap_Copy

FT_Bitmap_Done

FT_Bitmap_Embolden

FT_Bitmap_Init

FT_Bitmap_New

FT_CeilFix

FT_Cos

FT_DivFix

FT_Done_Face

FT_Done_FreeType

FT_Done_Library

FT_Done_Size

FT_Face_GetCharVariantIndex

FT_Face_GetCharVariantIsDefault

FT_Face_GetCharsOfVariant

FT_Face_GetVariantSelectors

FT_Face_GetVariantsOfChar

FT_Face_Properties

FT_FloorFix

FT_Get_Advance

FT_Get_Advances

FT_Get_CMap_Format

FT_Get_CMap_Language_ID

FT_Get_Char_Index

FT_Get_Charmap_Index

FT_Get_First_Char

FT_Get_Font_Format

FT_Get_Glyph_Name

FT_Get_Kerning

FT_Get_Module

FT_Get_Name_Index

FT_Get_Next_Char

FT_Get_PS_Font_Info

FT_Get_PS_Font_Private

FT_Get_PS_Font_Value

FT_Get_Postscript_Name

FT_Get_Renderer

FT_Get_Sfnt_LangTag

FT_Get_Sfnt_Name

FT_Get_Sfnt_Name_Count

FT_Get_Sfnt_Table

FT_Get_SubGlyph_Info

FT_Get_Track_Kerning

FT_Get_TrueType_Engine_Type

FT_Get_X11_Font_Format

FT_GlyphSlot_Embolden

FT_GlyphSlot_Oblique

FT_GlyphSlot_Own_Bitmap

FT_Gzip_Uncompress

FT_Has_PS_Glyph_Names

FT_Init_FreeType

FT_Library_SetLcdFilter

FT_Library_SetLcdFilterWeights

FT_Library_Version

FT_List_Add

FT_List_Finalize

FT_List_Find

FT_List_Insert

FT_List_Iterate

FT_List_Remove

FT_List_Up

FT_Load_Char

FT_Load_Glyph

FT_Load_Sfnt_Table

FT_Matrix_Invert

FT_Matrix_Multiply

FT_MulDiv

FT_MulFix

FT_New_Face

FT_New_Library

FT_New_Memory_Face

FT_New_Size

FT_Open_Face

FT_Outline_Check

FT_Outline_Copy

FT_Outline_Decompose

FT_Outline_Done

FT_Outline_Done_Internal

FT_Outline_Embolden

FT_Outline_EmboldenXY

FT_Outline_Get_Bitmap

FT_Outline_Get_CBox

FT_Outline_Get_Orientation

FT_Outline_New

FT_Outline_New_Internal

FT_Outline_Render

FT_Outline_Reverse

FT_Outline_Transform

FT_Outline_Translate

FT_Property_Get

FT_Property_Set

FT_Reference_Face

FT_Reference_Library

FT_Remove_Module

FT_Render_Glyph

FT_Request_Size

FT_RoundFix

FT_Select_Charmap

FT_Select_Size

FT_Set_Char_Size

FT_Set_Charmap

FT_Set_Debug_Hook

FT_Set_Default_Properties

FT_Set_Pixel_Sizes

FT_Set_Renderer

FT_Set_Transform

FT_Sfnt_Table_Info

FT_Sin

FT_Stream_OpenGzip

FT_Stream_OpenLZW

FT_Tan

FT_Vector_From_Polar

FT_Vector_Length

FT_Vector_Polarize

FT_Vector_Rotate

FT_Vector_Transform

FT_Vector_Unit

TT_New_Context

TT_RunIns

qt_plugin_instance

qt_plugin_query_metadata

Sections

.text
Size: 967KB - Virtual size: 967KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 385KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.qtmetad
Size: 512B - Virtual size: 127B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

resources.pak

resources/app.asar

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-1.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-10.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-10_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-10_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-1_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-1_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-2.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-2_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-2_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-3.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-3_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-3_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-4.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-4_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-4_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-5.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-5_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-5_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-6.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-6_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-6_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-7.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-7_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-7_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-8.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-8_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-8_white.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-9.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-9_black.ico

resources/app.asar.unpacked/build/assets/images/menubar icons/win32/lock-9_white.ico

resources/relays.json

resources/talpid_openvpn_plugin.dll

.dll windows x64

c5236841ee8eecb9a2f11975c9a23816

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:bf:47:0c:61:f3:c3:cc:0b:53:fc:e7:24:c1:5e:82
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

21/04/2021, 00:00

Not After

25/04/2024, 23:59

Subject

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29/03/2022, 00:00

Not After

14/03/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

c4:cf:05:98:86:51:09:7a:fb:89:25:37:4a:ed:21:06:37:e8:86:f9:99:91:0f:ea:90:c2:f6:d9:9d:e4:3f:35
Signer

Actual PE Digest

c4:cf:05:98:86:51:09:7a:fb:89:25:37:4a:ed:21:06:37:e8:86:f9:99:91:0f:ea:90:c2:f6:d9:9d:e4:3f:35

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

13/06/2022, 12:54
Valid: true

Chain 1

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

bcrypt

BCryptGenRandom

ntdll

RtlCaptureContext

RtlUnwindEx

RtlNtStatusToDosError

NtDeviceIoControlFile

NtCancelIoFileEx

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlPcToFileHeader

kernel32

SetFilePointerEx

GetConsoleOutputCP

FlushFileBuffers

SetStdHandle

HeapSize

QueryPerformanceCounter

GetLastError

AcquireSRWLockExclusive

ReleaseSRWLockExclusive

GetProcessHeap

HeapAlloc

HeapFree

HeapReAlloc

GetStdHandle

GetConsoleMode

GetFileInformationByHandleEx

GetSystemTimeAsFileTime

EnterCriticalSection

LeaveCriticalSection

QueryPerformanceFrequency

SwitchToThread

GetQueuedCompletionStatusEx

ReadFile

GetOverlappedResult

PostQueuedCompletionStatus

CloseHandle

WriteFile

CancelIoEx

SetLastError

GetFinalPathNameByHandleW

Sleep

GetModuleHandleA

GetProcAddress

WriteConsoleW

WaitForSingleObjectEx

LoadLibraryA

CreateMutexA

GetCurrentProcess

ReleaseMutex

GetEnvironmentVariableW

GetModuleHandleW

FormatMessageW

InitializeCriticalSection

GetCurrentDirectoryW

GetCurrentThread

AcquireSRWLockShared

ReleaseSRWLockShared

SetThreadStackGuarantee

CreateFileW

CreateIoCompletionPort

SetConsoleMode

WaitForSingleObject

GetSystemInfo

CreateThread

GetConsoleScreenBufferInfo

SetConsoleTextAttribute

GetStringTypeW

GetFileType

GetCurrentProcessId

GetCurrentThreadId

InitializeSListHead

IsDebuggerPresent

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetStartupInfoW

IsProcessorFeaturePresent

RaiseException

InterlockedFlushSList

EncodePointer

DeleteCriticalSection

InitializeCriticalSectionAndSpinCount

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

FreeLibrary

LoadLibraryExW

ExitProcess

TerminateProcess

GetModuleHandleExW

GetModuleFileNameW

FindClose

FindFirstFileExW

FindNextFileW

IsValidCodePage

GetACP

GetOEMCP

GetCPInfo

GetCommandLineA

GetCommandLineW

MultiByteToWideChar

WideCharToMultiByte

GetEnvironmentStringsW

FreeEnvironmentStringsW

LCMapStringW

Exports

openvpn_plugin_close_v1

openvpn_plugin_func_v3

openvpn_plugin_open_v3

rust_eh_personality

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 933KB - Virtual size: 933KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

resources/windns.dll

.dll windows x64

9b617ea0db0b41a6cab86a4fd62d15b2

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:bf:47:0c:61:f3:c3:cc:0b:53:fc:e7:24:c1:5e:82
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

21/04/2021, 00:00

Not After

25/04/2024, 23:59

Subject

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29/03/2022, 00:00

Not After

14/03/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:a5:f2:ca:3e:76:4c:2e:ee:bf:aa:f1:96:c7:9f:ab:c7:6d:af:5e:fb:c2:a9:2b:67:86:40:7d:b6:5c:88:5a
Signer

Actual PE Digest

0c:a5:f2:ca:3e:76:4c:2e:ee:bf:aa:f1:96:c7:9f:ab:c7:6d:af:5e:fb:c2:a9:2b:67:86:40:7d:b6:5c:88:5a

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

13/06/2022, 12:40
Valid: true

Chain 1

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntdll

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlUnwindEx

RtlPcToFileHeader

iphlpapi

ConvertInterfaceLuidToIndex

GetAdaptersAddresses

kernel32

WriteConsoleW

CloseHandle

GetTickCount64

CreateProcessW

GetLastError

CreateEventW

WaitForSingleObject

CancelSynchronousIo

GetExitCodeThread

GetConsoleMode

SetEvent

WriteFile

GetExitCodeProcess

CreatePipe

SetHandleInformation

FormatMessageA

LocalFree

WideCharToMultiByte

MultiByteToWideChar

GetConsoleOutputCP

ReadFile

FlushFileBuffers

SetStdHandle

CreateFileW

GetProcessHeap

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCommandLineW

GetCommandLineA

GetOEMCP

GetACP

RaiseException

GetStringTypeW

InitializeSRWLock

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionEx

TryEnterCriticalSection

DeleteCriticalSection

GetCurrentThreadId

EncodePointer

DecodePointer

LCMapStringEx

QueryPerformanceCounter

GetSystemTimeAsFileTime

IsValidCodePage

GetModuleHandleW

GetProcAddress

GetCPInfo

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

IsDebuggerPresent

GetStartupInfoW

GetCurrentProcessId

InitializeSListHead

InterlockedFlushSList

SetLastError

InitializeCriticalSectionAndSpinCount

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

FreeLibrary

LoadLibraryExW

CreateThread

ExitThread

FreeLibraryAndExitThread

GetModuleHandleExW

ExitProcess

GetModuleFileNameW

HeapFree

HeapAlloc

GetStdHandle

GetFileType

LCMapStringW

GetLocaleInfoW

IsValidLocale

GetUserDefaultLCID

EnumSystemLocalesW

SetFilePointerEx

HeapReAlloc

FindClose

FindFirstFileExW

FindNextFileW

HeapSize

shell32

SHGetKnownFolderPath

ole32

CoTaskMemFree

ws2_32

InetPtonW

Exports

WinDns_Deinitialize

WinDns_Initialize

WinDns_Set

Sections

.text
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

resources/winfw.dll

.dll windows x64

b3c179a81944b80f8ae07c1a1c70198a

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:bf:47:0c:61:f3:c3:cc:0b:53:fc:e7:24:c1:5e:82
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

21/04/2021, 00:00

Not After

25/04/2024, 23:59

Subject

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29/03/2022, 00:00

Not After

14/03/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

44:20:47:0e:67:3d:f0:8b:c4:f3:31:30:a1:71:a5:86:b8:36:5f:b8:aa:77:35:68:58:d0:0b:55:69:35:0c:e8
Signer

Actual PE Digest

44:20:47:0e:67:3d:f0:8b:c4:f3:31:30:a1:71:a5:86:b8:36:5f:b8:aa:77:35:68:58:d0:0b:55:69:35:0c:e8

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

13/06/2022, 12:40
Valid: true

Chain 1

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntdll

RtlLookupFunctionEntry

RtlVirtualUnwind

RtlPcToFileHeader

RtlUnwindEx

RtlIpv6AddressToStringW

RtlIpv4AddressToStringW

RtlCaptureContext

kernel32

WideCharToMultiByte

GetLastError

MultiByteToWideChar

GetConsoleMode

LocalFree

FormatMessageA

CreateFileW

CloseHandle

GetConsoleOutputCP

WriteFile

WriteConsoleW

HeapSize

SetStdHandle

HeapReAlloc

SetFilePointerEx

GetProcessHeap

EnumSystemLocalesW

GetUserDefaultLCID

IsValidLocale

GetLocaleInfoW

LCMapStringW

FlushFileBuffers

FreeEnvironmentStringsW

GetEnvironmentStringsW

GetCommandLineW

GetCommandLineA

GetOEMCP

GetACP

IsValidCodePage

FindNextFileW

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

QueryPerformanceCounter

GetCurrentProcessId

GetCurrentThreadId

GetSystemTimeAsFileTime

InitializeSListHead

IsDebuggerPresent

GetStartupInfoW

GetModuleHandleW

RaiseException

GetStringTypeW

InitializeSRWLock

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionEx

TryEnterCriticalSection

DeleteCriticalSection

EncodePointer

DecodePointer

LCMapStringEx

FindFirstFileExW

GetProcAddress

GetCPInfo

InterlockedFlushSList

SetLastError

InitializeCriticalSectionAndSpinCount

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

FreeLibrary

LoadLibraryExW

ExitProcess

GetModuleHandleExW

GetModuleFileNameW

HeapFree

HeapAlloc

GetStdHandle

GetFileType

FindClose

ole32

StringFromCLSID

CoTaskMemFree

fwpuclnt

FwpmFilterDeleteByKey0

FwpmFilterDeleteById0

FwpmProviderDeleteByKey0

FwpmSubLayerDeleteByKey0

FwpmEngineOpen0

FwpmFreeMemory0

FwpmGetAppIdFromFileName0

FwpmSubLayerAdd0

FwpmProviderAdd0

FwpmFilterAdd0

FwpmTransactionCommit0

FwpmTransactionAbort0

FwpmTransactionBegin0

FwpmEngineClose0

ws2_32

ntohl

htonl

InetPtonW

iphlpapi

ConvertInterfaceAliasToLuid

ConvertInterfaceNameToLuidW

rpcrt4

UuidCreateSequential

Exports

WinFw_ApplyPolicyBlocked

WinFw_ApplyPolicyConnected

WinFw_ApplyPolicyConnecting

WinFw_Deinitialize

WinFw_Initialize

WinFw_InitializeBlocked

WinFw_Reset

Sections

.text
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

resources/winnet.dll

.dll windows x64

651a29b435f81b0e8ad2eacb78d8bf1c

Code Sign

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

0c:bf:47:0c:61:f3:c3:cc:0b:53:fc:e7:24:c1:5e:82
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

21/04/2021, 00:00

Not After

25/04/2024, 23:59

Subject

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

29/03/2022, 00:00

Not After

14/03/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ba:ff:cd:28:79:03:a9:1d:1e:8b:fb:0c:a7:55:fa:14:da:36:93:81:f9:1f:5b:cd:0b:b5:53:94:9c:d1:ac:9f
Signer

Actual PE Digest

ba:ff:cd:28:79:03:a9:1d:1e:8b:fb:0c:a7:55:fa:14:da:36:93:81:f9:1f:5b:cd:0b:b5:53:94:9c:d1:ac:9f

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

13/06/2022, 12:40
Valid: true

Chain 1

CN=Mullvad VPN AB,OU=App,O=Mullvad VPN AB,L=Göteborg,C=SE,1.2.840.113549.1.9.1=#0c0f617070406d756c6c7661642e6e6574

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntdll

RtlPcToFileHeader

RtlUnwindEx

RtlLookupFunctionEntry

RtlCaptureContext

RtlVirtualUnwind

RtlIpv6AddressToStringW

RtlIpv4AddressToStringW

iphlpapi

CreateUnicastIpAddressEntry

SetIpInterfaceEntry

GetIpInterfaceEntry

FreeMibTable

ConvertInterfaceAliasToLuid

GetIpInterfaceTable

NotifyIpInterfaceChange

CancelMibChangeNotify2

NotifyRouteChange2

ConvertInterfaceLuidToIndex

NotifyUnicastIpAddressChange

GetIfEntry2

GetIpForwardTable2

SetIpForwardEntry2

CreateIpForwardEntry2

DeleteIpForwardEntry2

InitializeIpForwardEntry

GetUnicastIpAddressTable

GetAdaptersAddresses

InitializeUnicastIpAddressEntry

kernel32

WriteConsoleW

FormatMessageA

LocalFree

WideCharToMultiByte

GetLastError

MultiByteToWideChar

CreateEventW

CloseHandle

SetEvent

WaitForSingleObject

GetTickCount64

ResetEvent

GetConsoleMode

HeapSize

CreateFileW

GetConsoleOutputCP

WriteFile

FlushFileBuffers

SetStdHandle

GetProcessHeap

FreeEnvironmentStringsW

RaiseException

InitializeSRWLock

ReleaseSRWLockExclusive

AcquireSRWLockExclusive

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionEx

TryEnterCriticalSection

DeleteCriticalSection

GetCurrentThreadId

GetStringTypeW

EncodePointer

DecodePointer

LCMapStringEx

QueryPerformanceCounter

GetSystemTimeAsFileTime

GetEnvironmentStringsW

GetModuleHandleW

GetProcAddress

GetCPInfo

InitializeSListHead

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetCurrentProcess

TerminateProcess

IsProcessorFeaturePresent

IsDebuggerPresent

GetStartupInfoW

GetCurrentProcessId

InterlockedPushEntrySList

InterlockedFlushSList

SetLastError

InitializeCriticalSectionAndSpinCount

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

FreeLibrary

LoadLibraryExW

CreateThread

ExitThread

FreeLibraryAndExitThread

GetModuleHandleExW

ExitProcess

GetModuleFileNameW

HeapAlloc

HeapFree

GetStdHandle

GetFileType

LCMapStringW

GetLocaleInfoW

IsValidLocale

GetUserDefaultLCID

EnumSystemLocalesW

SetFilePointerEx

HeapReAlloc

FindClose

FindFirstFileExW

FindNextFileW

IsValidCodePage

GetACP

GetOEMCP

GetCommandLineA

GetCommandLineW

Exports

WinNet_ActivateRouteManager

WinNet_AddDeviceIpAddresses

WinNet_AddRoute

WinNet_AddRoutes

WinNet_DeactivateRouteManager

WinNet_DeleteAppliedRoutes

WinNet_DeleteRoute

WinNet_DeleteRoutes

WinNet_EnsureBestMetric

WinNet_GetBestDefaultRoute

WinNet_InterfaceLuidToIpAddress

WinNet_RegisterDefaultRouteChangedCallback

WinNet_UnregisterDefaultRouteChangedCallback

Sections

.text
Size: 303KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

resources/wintun.dll

.dll windows x64

fb80e633863ed8c533980106499de45f

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:20:4d:b4:00:00:00:00:00:27
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:45

Not After

15/04/2021, 19:55

Subject

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

06:63:d5:fc:a7:28:88:2f:36:ff:1b:df:5d:85:f0:ba
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/12/2018, 00:00

Not After

14/12/2021, 12:00

Subject

SERIALNUMBER=4227913,CN=WireGuard LLC,O=WireGuard LLC,L=Boulder,ST=Colorado,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13044f68696f,1.3.6.1.4.1.311.60.2.1.3=#13025553

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

4c:10:de:e7:af:ba:16:25:93:1d:49:8c:07:df:03:56:ad:e6:c8:26:ad:03:25:f2:28:26:42:04:cb:66:3d:eb
Signer

Actual PE Digest

4c:10:de:e7:af:ba:16:25:93:1d:49:8c:07:df:03:56:ad:e6:c8:26:ad:03:25:f2:28:26:42:04:cb:66:3d:eb

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

SERIALNUMBER=4227913,CN=WireGuard LLC,O=WireGuard LLC,L=Boulder,ST=Colorado,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13044f68696f,1.3.6.1.4.1.311.60.2.1.3=#13025553

02/08/2021, 11:30
Valid: true

Chain 1

SERIALNUMBER=4227913,CN=WireGuard LLC,O=WireGuard LLC,L=Boulder,ST=Colorado,C=US,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e,1.3.6.1.4.1.311.60.2.1.2=#13044f68696f,1.3.6.1.4.1.311.60.2.1.3=#13025553

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntdll

RtlUnwindEx

RtlVirtualUnwind

RtlLookupFunctionEntry

RtlCaptureContext

RtlGetNtVersionNumbers

NtQueryKey

RtlNtStatusToDosError

NtQuerySystemInformation

RtlPcToFileHeader

kernel32

RaiseException

GetConsoleMode

GetConsoleOutputCP

WriteConsoleW

HeapCreate

GetCurrentProcess

LoadLibraryExA

CloseHandle

HeapDestroy

GetProcAddress

LocalFree

GetModuleHandleW

IsWow64Process

HeapFree

SetLastError

DeviceIoControl

RemoveDirectoryW

CreateFileW

Sleep

GetLastError

DeleteFileW

HeapAlloc

FormatMessageW

EnterCriticalSection

CreatePrivateNamespaceW

OpenPrivateNamespaceW

LeaveCriticalSection

InitializeCriticalSection

CreateBoundaryDescriptorW

CreateMutexW

WaitForSingleObject

ReleaseMutex

ClosePrivateNamespace

AddSIDToBoundaryDescriptor

NormalizeString

DeleteCriticalSection

DeleteBoundaryDescriptor

ExpandEnvironmentStringsW

CreateEventW

GetTickCount64

HeapReAlloc

CreateDirectoryW

SizeofResource

WriteFile

LockResource

LoadResource

FindResourceW

GetWindowsDirectoryW

VirtualFree

VirtualAlloc

InitializeCriticalSectionAndSpinCount

SetEvent

ReadFile

SetHandleInformation

GetCommandLineW

GetStdHandle

CreatePipe

GetExitCodeThread

CreateThread

CreateProcessW

FlushFileBuffers

HeapSize

SetStdHandle

SetFilePointerEx

GetProcessHeap

GetSystemInfo

VirtualProtect

VirtualQuery

FreeLibrary

UnhandledExceptionFilter

SetUnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

QueryPerformanceCounter

GetCurrentProcessId

GetCurrentThreadId

GetSystemTimeAsFileTime

InitializeSListHead

IsDebuggerPresent

GetStartupInfoW

InterlockedFlushSList

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

LoadLibraryExW

EncodePointer

ExitProcess

GetModuleHandleExW

GetModuleFileNameW

GetFileType

GetStringTypeW

FindClose

FindFirstFileExW

FindNextFileW

IsValidCodePage

GetACP

GetOEMCP

GetCPInfo

GetCommandLineA

MultiByteToWideChar

WideCharToMultiByte

GetEnvironmentStringsW

FreeEnvironmentStringsW

FlsAlloc

FlsGetValue

FlsSetValue

FlsFree

LCMapStringW

Exports

CreateAdapter

DeleteAdapter

DeletePoolDriver

WintunAllocateSendPacket

WintunCreateAdapter

WintunDeleteAdapter

WintunDeletePoolDriver

WintunEndSession

WintunEnumAdapters

WintunFreeAdapter

WintunGetAdapterLUID

WintunGetAdapterName

WintunGetReadWaitEvent

WintunGetRunningDriverVersion

WintunOpenAdapter

WintunReceivePacket

WintunReleaseReceivePacket

WintunSendPacket

WintunSetAdapterName

WintunSetLogger

WintunStartSession

Sections

.text
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.didat
Size: 1024B - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 500KB - Virtual size: 499KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

vcomp140.dll

.dll windows x64

b0dceb96b51d2648c4e665c9ec09b163

Code Sign

33:00:00:01:e2:f1:7d:92:02:0e:49:f8:7f:00:00:00:00:01:e2
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

6a:4d:9a:15:91:5d:9b:49:c6:84:93:9f:70:a4:88:da:bc:33:e6:9b:eb:78:5a:02:74:0d:26:6e:d7:b5:21:23
Signer

Actual PE Digest

6a:4d:9a:15:91:5d:9b:49:c6:84:93:9f:70:a4:88:da:bc:33:e6:9b:eb:78:5a:02:74:0d:26:6e:d7:b5:21:23

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

04/11/2022, 15:42
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

FormatMessageW

OutputDebugStringW

LocalAlloc

LocalFree

GetConsoleWindow

GetConsoleScreenBufferInfo

WriteConsoleW

WideCharToMultiByte

WriteFile

GetLastError

GetCurrentThreadId

HeapFree

GetProcessHeap

UnhandledExceptionFilter

CloseHandle

WaitForSingleObjectEx

SetEvent

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

HeapAlloc

TryEnterCriticalSection

QueryPerformanceCounter

InitializeCriticalSectionAndSpinCount

GetTickCount

TlsAlloc

TlsFree

TlsGetValue

TlsSetValue

Sleep

SwitchToThread

ExitProcess

GetStdHandle

CreateThread

QueueUserWorkItem

CreateEventW

LoadLibraryExW

FreeLibrary

GetProcAddress

VirtualAlloc

GetModuleHandleW

VirtualProtect

VirtualFree

GetNativeSystemInfo

QueryPerformanceFrequency

GetSystemTimeAdjustment

GetEnvironmentVariableW

lstrlenW

lstrcmpiW

GetStringTypeExW

ResetEvent

GetCurrentProcess

EncodePointer

DecodePointer

GetUserDefaultUILanguage

FindFirstFileW

FindNextFileW

FindClose

GetModuleFileNameW

FindResourceExW

LoadResource

GetCurrentProcessId

GetSystemTimeAsFileTime

RtlCaptureContext

RtlLookupFunctionEntry

RtlVirtualUnwind

SetUnhandledExceptionFilter

TerminateProcess

IsProcessorFeaturePresent

RtlUnwindEx

SetLastError

IsDebuggerPresent

GetModuleHandleExW

IsValidCodePage

GetACP

GetOEMCP

GetCPInfo

MultiByteToWideChar

LCMapStringW

SetFilePointerEx

GetStringTypeW

SetStdHandle

FlushFileBuffers

GetConsoleOutputCP

GetConsoleMode

RaiseException

CreateFileW

RtlPcToFileHeader

Exports

C2VectParallel

_vcomp_atomic_add_i1

_vcomp_atomic_add_i2

_vcomp_atomic_add_i4

_vcomp_atomic_add_i8

_vcomp_atomic_add_r4

_vcomp_atomic_add_r8

_vcomp_atomic_and_i1

_vcomp_atomic_and_i2

_vcomp_atomic_and_i4

_vcomp_atomic_and_i8

_vcomp_atomic_div_i1

_vcomp_atomic_div_i2

_vcomp_atomic_div_i4

_vcomp_atomic_div_i8

_vcomp_atomic_div_r4

_vcomp_atomic_div_r8

_vcomp_atomic_div_ui1

_vcomp_atomic_div_ui2

_vcomp_atomic_div_ui4

_vcomp_atomic_div_ui8

_vcomp_atomic_mul_i1

_vcomp_atomic_mul_i2

_vcomp_atomic_mul_i4

_vcomp_atomic_mul_i8

_vcomp_atomic_mul_r4

_vcomp_atomic_mul_r8

_vcomp_atomic_or_i1

_vcomp_atomic_or_i2

_vcomp_atomic_or_i4

_vcomp_atomic_or_i8

_vcomp_atomic_shl_i1

_vcomp_atomic_shl_i2

_vcomp_atomic_shl_i4

_vcomp_atomic_shl_i8

_vcomp_atomic_shr_i1

_vcomp_atomic_shr_i2

_vcomp_atomic_shr_i4

_vcomp_atomic_shr_i8

_vcomp_atomic_shr_ui1

_vcomp_atomic_shr_ui2

_vcomp_atomic_shr_ui4

_vcomp_atomic_shr_ui8

_vcomp_atomic_sub_i1

_vcomp_atomic_sub_i2

_vcomp_atomic_sub_i4

_vcomp_atomic_sub_i8

_vcomp_atomic_sub_r4

_vcomp_atomic_sub_r8

_vcomp_atomic_xor_i1

_vcomp_atomic_xor_i2

_vcomp_atomic_xor_i4

_vcomp_atomic_xor_i8

_vcomp_barrier

_vcomp_copyprivate_broadcast

_vcomp_copyprivate_receive

_vcomp_enter_critsect

_vcomp_flush

_vcomp_for_dynamic_init

_vcomp_for_dynamic_init_i8

_vcomp_for_dynamic_next

_vcomp_for_dynamic_next_i8

_vcomp_for_static_end

_vcomp_for_static_init

_vcomp_for_static_init_i8

_vcomp_for_static_simple_init

_vcomp_for_static_simple_init_i8

_vcomp_fork

_vcomp_get_thread_num

_vcomp_leave_critsect

_vcomp_master_barrier

_vcomp_master_begin

_vcomp_master_end

_vcomp_ordered_begin

_vcomp_ordered_end

_vcomp_ordered_loop_end

_vcomp_reduction_i1

_vcomp_reduction_i2

_vcomp_reduction_i4

_vcomp_reduction_i8

_vcomp_reduction_r4

_vcomp_reduction_r8

_vcomp_reduction_u1

_vcomp_reduction_u2

_vcomp_reduction_u4

_vcomp_reduction_u8

_vcomp_sections_init

_vcomp_sections_next

_vcomp_set_num_threads

_vcomp_single_begin

_vcomp_single_end

omp_destroy_lock

omp_destroy_nest_lock

omp_get_dynamic

omp_get_max_threads

omp_get_nested

omp_get_num_procs

omp_get_num_threads

omp_get_thread_num

omp_get_wtick

omp_get_wtime

omp_in_parallel

omp_init_lock

omp_init_nest_lock

omp_set_dynamic

omp_set_lock

omp_set_nest_lock

omp_set_nested

omp_set_num_threads

omp_test_lock

omp_test_nest_lock

omp_unset_lock

omp_unset_nest_lock

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

vcruntime140.dll

.dll windows x64

44c3854843f7a3fccdf8ddbbea66f302

Code Sign

33:00:00:01:e2:f1:7d:92:02:0e:49:f8:7f:00:00:00:00:01:e2
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 21:31

Not After

02/12/2021, 21:31

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

f7:83:e8:fe:9b:12:41:fc:30:39:3a:38:a0:12:16:d8:7c:73:43:56:72:48:ca:1e:25:f6:f1:cb:95:e8:ff:06
Signer

Actual PE Digest

f7:83:e8:fe:9b:12:41:fc:30:39:3a:38:a0:12:16:d8:7c:73:43:56:72:48:ca:1e:25:f6:f1:cb:95:e8:ff:06

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

04/11/2022, 15:42
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

api-ms-win-crt-runtime-l1-1-0

terminate

abort

api-ms-win-crt-heap-l1-1-0

calloc

malloc

free

api-ms-win-crt-string-l1-1-0

strcpy_s

strncmp

wcsncmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

atol

kernel32

SetLastError

IsProcessorFeaturePresent

TerminateProcess

GetCurrentProcess

SetUnhandledExceptionFilter

UnhandledExceptionFilter

RtlVirtualUnwind

RtlCaptureContext

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

QueryPerformanceCounter

RtlLookupFunctionEntry

RtlUnwindEx

GetModuleHandleW

RtlUnwind

EncodePointer

RaiseException

RtlPcToFileHeader

InterlockedPushEntrySList

InterlockedFlushSList

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

GetLastError

LoadLibraryExW

InitializeCriticalSectionAndSpinCount

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

FreeLibrary

GetProcAddress

GetModuleFileNameW

Exports

_CreateFrameInfo

_CxxThrowException

_FindAndUnlinkFrame

_IsExceptionObjectToBeDestroyed

_SetWinRTOutOfMemoryExceptionCallback

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__C_specific_handler

__C_specific_handler_noexcept

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__GetPlatformExceptionInfo

__NLG_Dispatch2

__NLG_Return2

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__TypeMatch

__current_exception

__current_exception_context

__intrinsic_setjmp

__intrinsic_setjmpex

__processing_throw

__report_gsfailure

__std_exception_copy

__std_exception_destroy

__std_terminate

__std_type_info_compare

__std_type_info_destroy_list

__std_type_info_hash

__std_type_info_name

__telemetry_main_invoke_trigger

__telemetry_main_return_trigger

__unDName

__unDNameEx

__uncaught_exception

__uncaught_exceptions

__vcrt_GetModuleFileNameW

__vcrt_GetModuleHandleW

__vcrt_InitializeCriticalSectionEx

__vcrt_LoadLibraryExW

_get_purecall_handler

_get_unexpected

_is_exception_typeof

_local_unwind

_purecall

_set_purecall_handler

_set_se_translator

longjmp

memchr

memcmp

memcpy

memmove

memset

set_unexpected

strchr

strrchr

strstr

unexpected

wcschr

wcsrchr

wcsstr

Sections

.text
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 416B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Sharing

Errors

General

Malware Config

Extracted

Signatures

Files

c1cc4e11cf032e0c26dcda8c169b90e8

Headers

File Characteristics

Imports

kernel32

msvbvm60

Sections

.text Size: 656KB - Virtual size: 652KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 636KB - Virtual size: 635KB

dae02f32a21e03ce65412f6e56942daa

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 13KB - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 1000B

.reloc Size: 512B - Virtual size: 12B

033d09d773d3e334541b49e065bca8a2

Code Sign

4a:53:8c:28Certificate

Key Usages

87:82:52:60:00:00:00:00:51:d3:73:d9Certificate

Extended Key Usages

Key Usages

0b:93:16:ea:1b:22:3a:6d:52:c7:4b:f3:16:13:16:34Certificate

Extended Key Usages

Key Usages

38:63:de:f8Certificate

Key Usages

58:da:13:ff:00:00:00:00:51:ce:0d:f7Certificate

Extended Key Usages

Key Usages

8d:ce:15:f3:a7:94:c5:87:00:00:00:00:55:92:33:f4Certificate

Extended Key Usages

Key Usages

31:0d:c6:9d:35:cd:6a:97:e4:93:c6:27:cf:8b:da:8c:c9:be:de:99:5e:ac:f6:e8:ff:ff:d4:2f:c1:ae:e9:cdSigner

Signature Validations

Verification

17/11/2021, 14:05 Valid: true

Chain 1

Headers

DLL Characteristics

File Characteristics

Imports

dwmapi

imm32

oleaut32

shell32

wtsapi32

ole32

gdi32

user32

advapi32

qt5gui

qt5core

msvcp140

kernel32

vcruntime140

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-environment-l1-1-0

Exports

Exports

Sections

.text Size: 967KB - Virtual size: 967KB

.text
Size: 656KB - Virtual size: 652KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 636KB - Virtual size: 635KB

.text
Size: 13KB - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 1000B

.reloc
Size: 512B - Virtual size: 12B

4a:53:8c:28
Certificate

87:82:52:60:00:00:00:00:51:d3:73:d9
Certificate

0b:93:16:ea:1b:22:3a:6d:52:c7:4b:f3:16:13:16:34
Certificate

38:63:de:f8
Certificate

58:da:13:ff:00:00:00:00:51:ce:0d:f7
Certificate

8d:ce:15:f3:a7:94:c5:87:00:00:00:00:55:92:33:f4
Certificate

31:0d:c6:9d:35:cd:6a:97:e4:93:c6:27:cf:8b:da:8c:c9:be:de:99:5e:ac:f6:e8:ff:ff:d4:2f:c1:ae:e9:cd
Signer

17/11/2021, 14:05
Valid: true

.text
Size: 967KB - Virtual size: 967KB

.rdata
Size: 385KB - Virtual size: 385KB

.data
Size: 9KB - Virtual size: 27KB

.pdata
Size: 57KB - Virtual size: 56KB

.qtmetad
Size: 512B - Virtual size: 127B

.rsrc
Size: 1024B - Virtual size: 840B

.reloc
Size: 7KB - Virtual size: 6KB

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

0c:bf:47:0c:61:f3:c3:cc:0b:53:fc:e7:24:c1:5e:82
Certificate

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

c4:cf:05:98:86:51:09:7a:fb:89:25:37:4a:ed:21:06:37:e8:86:f9:99:91:0f:ea:90:c2:f6:d9:9d:e4:3f:35
Signer

13/06/2022, 12:54
Valid: true

.text
Size: 2.2MB - Virtual size: 2.2MB

.rdata
Size: 933KB - Virtual size: 933KB

.data
Size: 3KB - Virtual size: 8KB

.pdata
Size: 98KB - Virtual size: 98KB

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 196KB - Virtual size: 196KB

.reloc
Size: 21KB - Virtual size: 21KB

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

0c:bf:47:0c:61:f3:c3:cc:0b:53:fc:e7:24:c1:5e:82
Certificate

0a:7a:4a:88:9e:c9:99:42:90:06:63:38:4d:86:97:9d
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0c:a5:f2:ca:3e:76:4c:2e:ee:bf:aa:f1:96:c7:9f:ab:c7:6d:af:5e:fb:c2:a9:2b:67:86:40:7d:b6:5c:88:5a
Signer

13/06/2022, 12:40
Valid: true