setup[.]zip | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

setup.zip
Size

201.8MB
MD5

0a504a456d852134006e317fa4b2b58c
SHA1

9523798d294aabf86f64db732a4314b04c1a0265
SHA256

c5f1dfbf8d4b1d8d5c43f668292056d5b670fea174e6e79d3cc2ba341d66a21f
SHA512

d46c71ca8eda42ae6eff316da7bc9aec6e14002dd2e7e400131b40e231949876c4f525ff5281d1fa8c956e4fe905c9b4fe3c45641a858a85246ed2a772896a29
SSDEEP

3145728:atfMyBMh3TS7IAMPwPhEjdtewveo6tfMyBMh3TS7IAMPwPhEjdtewveoCFW0sRlk:XZhlqEJ8wvH3ZhlqEJ8wvHMW5Rl5Y7

Score

1^/10

Malware Config

Signatures

Files

setup.zip
.zip
data/Sony Video Capture - ShuttlePRO v2.pref
data/Sony Video Capture - ShuttlePRO.pref
data/Sony Video Capture - ShuttleXpress.pref
data/chrome_elf.dll
.dll windows x64

f60cb3472f2fe179e07b6763acb881e7

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1f:e3:f6:eb:95:90:46:c3:a2:10:dd:19:fd:39:1d:5a:42:62:83:8f:51:7b:ea:8e:10:3e:59:6e:be:ab:60:94
Signer

Actual PE Digest

1f:e3:f6:eb:95:90:46:c3:a2:10:dd:19:fd:39:1d:5a:42:62:83:8f:51:7b:ea:8e:10:3e:59:6e:be:ab:60:94

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:37
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
CloseHandle
CompareStringW
CreateDirectoryW
CreateEventW
CreateFileW
CreateMutexW
CreateNamedPipeW
CreateProcessW
CreateRemoteThread
CreateThread
DeleteCriticalSection
DeleteFileW
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FileTimeToSystemTime
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetComputerNameExW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetDriveTypeW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetFileAttributesW
GetFileInformationByHandle
GetFileSizeEx
GetFileTime
GetFileType
GetFullPathNameW
GetLastError
GetLocalTime
GetLocaleInfoW
GetLongPathNameW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessId
GetProductInfo
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempPathW
GetThreadId
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetVersionExW
InitOnceExecuteOnce
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
LockFileEx
MultiByteToWideChar
OpenProcess
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
RaiseException
ReadConsoleW
ReadFile
ReadProcessMemory
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
RemoveDirectoryW
ResetEvent
RtlCaptureContext
RtlCaptureStackBackTrace
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetConsoleCtrlHandler
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetNamedPipeHandleState
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SleepEx
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TransactNamedPipe
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UnlockFileEx
UnregisterWaitEx
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualProtectEx
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WerRegisterRuntimeExceptionModule
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteProcessMemory
lstrcmpiA
lstrcmpiW
lstrlenA

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Exports

Exports

ClearReportsBetween_ExportThunk
CrashForException_ExportThunk
DisableHook
DrainLog
DumpHungProcessWithPtype_ExportThunk
DumpProcessWithoutCrash
GetApplyHookResult
GetBlockedModulesCount
GetCrashReports_ExportThunk
GetCrashpadDatabasePath_ExportThunk
GetHandleVerifier
GetInstallDetailsPayload
GetUniqueBlockedModulesCount
GetUserDataDirectoryThunk
InjectDumpForHungInput_ExportThunk
IsBrowserProcess
IsExtensionPointDisableSet
IsThirdPartyInitialized
RegisterLogNotification
RequestSingleCrashUpload_ExportThunk
SetMetricsClientId
SetUploadConsent_ExportThunk
SignalChromeElf
SignalInitializeCrashReporting

Sections

.text
Size: 989KB - Virtual size: 989KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crthunk
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oldntma
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.retplne
Size: 512B - Virtual size: 92B

.tls
Size: 512B - Virtual size: 297B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 68B

CPADinfo
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/d3dcompiler_47.dll
.dll windows x64

dc71769f237c0a3ba38879380c54a4e6

Code Sign

33:00:00:03:df:fb:6a:e3:f4:27:ec:b6:a3:00:00:00:00:03:df
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15-12-2020 21:24

Not After

02-12-2021 21:24

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06-07-2010 20:40

Not After

06-07-2025 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2d:f8:dd:06:41:e0:b2:af:59:69:78:fa:5a:2b:28:9b:e2:27:f3:64:44:dd:1d:c6:3e:05:f0:29:0b:70:4c:49
Signer

Actual PE Digest

2d:f8:dd:06:41:e0:b2:af:59:69:78:fa:5a:2b:28:9b:e2:27:f3:64:44:dd:1d:c6:3e:05:f0:29:0b:70:4c:49

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

07-02-2023 20:39
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

WriteFile
FreeLibrary
Sleep
TlsAlloc
TlsSetValue
HeapDestroy
TlsGetValue
TlsFree
GetFullPathNameW
GetFullPathNameA
GetEnvironmentVariableA
VirtualFree
VirtualAlloc
GetSystemInfo
GetProcAddress
LoadLibraryExW
SetLastError
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetCurrentThreadId
GetStdHandle
GetFileType
GetStartupInfoW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
ExitProcess
GetModuleHandleW
GetModuleHandleExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
SetFilePointerEx
GetStringTypeW
SetStdHandle
ReadFile
FreeEnvironmentStringsW
SetEnvironmentVariableW
RaiseException
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
GetModuleFileNameW
ReadConsoleW
HeapSize
HeapReAlloc
WriteConsoleW
QueryPerformanceCounter
GetCurrentProcessId
InitializeSListHead
RtlUnwindEx
InterlockedFlushSList
EncodePointer
InitializeCriticalSectionEx
RtlPcToFileHeader
LocalAlloc
LocalFree
GetFileSizeEx
GetLastError
CreateFileW
HeapFree
GetProcessHeap
UnmapViewOfFile
GetFileSize
CreateFileMappingW
MapViewOfFile
GetFileAttributesW
SetFileAttributesW
DeleteFileW
SetEndOfFile
DeviceIoControl
MapViewOfFileEx
CreateFileMappingA
ExpandEnvironmentStringsW
HeapAlloc
OutputDebugStringA
CloseHandle
LeaveCriticalSection
EnterCriticalSection
lstrcmpiA
HeapCreate
GetModuleFileNameA
CreateFileA
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
FindClose
FindFirstFileExW
FindNextFileW
GetCommandLineA
GetCommandLineW
GetDriveTypeW
GetCurrentDirectoryW
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
MultiByteToWideChar
GetEnvironmentStringsW
DisableThreadLibraryCalls

advapi32

CryptDestroyHash
CryptAcquireContextW
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
CryptGetHashParam
CryptCreateHash
CryptHashData
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
CryptReleaseContext

rpcrt4

UuidCreate

Exports

Exports

D3DAssemble
D3DCompile
D3DCompile2
D3DCompileFromFile
D3DCompressShaders
D3DCreateBlob
D3DCreateFunctionLinkingGraph
D3DCreateLinker
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DDisassemble11Trace
D3DDisassembleRegion
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DGetTraceInstructionOffsets
D3DLoadModule
D3DPreprocess
D3DReadFileToBlob
D3DReflect
D3DReflectLibrary
D3DReturnFailure1
D3DSetBlobPart
D3DStripShader
D3DWriteBlobToFile
DebugSetMute

Sections

.text
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 912KB - Virtual size: 911KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/d9.dll
.dll windows x64

5a679853ec15590620034b9797c1828f

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1e:83:05:c1:f4:78:53:9a:c9:aa:05:f1:6c:7f:f2:10:bd:22:19:25:ba:45:49:3c:eb:fb:15:81:1f:a4:7d:7b
Signer

Actual PE Digest

1e:83:05:c1:f4:78:53:9a:c9:aa:05:f1:6c:7f:f2:10:bd:22:19:25:ba:45:49:3c:eb:fb:15:81:1f:a4:7d:7b

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:36
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

winmm

midiInAddBuffer
midiInClose
midiInGetDevCapsW
midiInGetNumDevs
midiInOpen
midiInPrepareHeader
midiInReset
midiInStart
midiInUnprepareHeader
midiOutClose
midiOutGetDevCapsW
midiOutGetNumDevs
midiOutLongMsg
midiOutOpen
midiOutPrepareHeader
midiOutReset
midiOutShortMsg
midiOutUnprepareHeader
timeBeginPeriod
timeEndPeriod
timeGetDevCaps
timeGetTime
waveInGetNumDevs
waveOutClose
waveOutGetNumDevs
waveOutOpen
waveOutPause
waveOutPrepareHeader
waveOutReset
waveOutRestart
waveOutUnprepareHeader
waveOutWrite

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AddVectoredExceptionHandler
AllocConsole
AreFileApisANSI
AssignProcessToJobObject
AttachConsole
CallbackMayRunLong
CancelIo
CancelIoEx
CheckRemoteDebuggerPresent
ClearCommError
CloseHandle
CloseThreadpool
CloseThreadpoolWork
CompareStringW
ConnectNamedPipe
ContinueDebugEvent
CopyFileW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreateHardLinkW
CreateIoCompletionPort
CreateJobObjectW
CreateMemoryResourceNotification
CreateMutexW
CreateNamedPipeW
CreateProcessW
CreateRemoteThread
CreateSemaphoreA
CreateSemaphoreW
CreateThread
CreateThreadpool
CreateThreadpoolWork
CreateToolhelp32Snapshot
DebugActiveProcess
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeleteProcThreadAttributeList
DeviceIoControl
DisconnectNamedPipe
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumResourceNamesW
EnumSystemLocalesEx
EnumSystemLocalesW
EscapeCommFunction
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindCloseChangeNotification
FindFirstChangeNotificationW
FindFirstFileA
FindFirstFileExA
FindFirstFileExW
FindFirstFileW
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceW
FindVolumeClose
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FlushInstructionCache
FlushViewOfFile
FoldStringW
FormatMessageA
FormatMessageW
FreeConsole
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommModemStatus
GetCommState
GetCommandLineA
GetCommandLineW
GetComputerNameExA
GetComputerNameExW
GetComputerNameW
GetConsoleDisplayMode
GetConsoleMode
GetConsoleOutputCP
GetCurrencyFormatEx
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentProcessorNumber
GetCurrentThread
GetCurrentThreadId
GetDateFormatEx
GetDateFormatW
GetDiskFreeSpaceA
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetDriveTypeW
GetDynamicTimeZoneInformation
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileSizeEx
GetFileTime
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameA
GetFullPathNameW
GetGeoInfoW
GetLastError
GetLocalTime
GetLocaleInfoEx
GetLocaleInfoW
GetLogicalDriveStringsW
GetLogicalProcessorInformation
GetLogicalProcessorInformationEx
GetLongPathNameW
GetMaximumProcessorCount
GetMaximumProcessorGroupCount
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetNamedPipeHandleStateW
GetNativeSystemInfo
GetNumberFormatEx
GetOEMCP
GetOverlappedResult
GetPriorityClass
GetPrivateProfileStringW
GetProcAddress
GetProcessAffinityMask
GetProcessHandleCount
GetProcessHeap
GetProcessHeaps
GetProcessId
GetProcessTimes
GetProductInfo
GetQueuedCompletionStatus
GetShortPathNameW
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemPowerStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTempPathW
GetThreadContext
GetThreadGroupAffinity
GetThreadId
GetThreadPreferredUILanguages
GetThreadPriority
GetThreadPriorityBoost
GetThreadTimes
GetTickCount
GetTimeFormatEx
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetUserDefaultLocaleName
GetUserDefaultUILanguage
GetUserGeoID
GetVersionExW
GetVolumeInformationW
GetVolumeNameForVolumeMountPointW
GetVolumePathNameW
GetVolumePathNamesForVolumeNameW
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatusEx
GlobalSize
GlobalUnlock
HeapAlloc
HeapCompact
HeapCreate
HeapDestroy
HeapFree
HeapLock
HeapReAlloc
HeapSetInformation
HeapSize
HeapUnlock
HeapValidate
HeapWalk
InitOnceBeginInitialize
InitOnceComplete
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
InterlockedPopEntrySList
InterlockedPushEntrySList
IsDebuggerPresent
IsProcessInJob
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32EmptyWorkingSet
K32EnumProcessModules
K32GetMappedFileNameW
K32GetModuleFileNameExW
K32GetModuleInformation
K32GetPerformanceInfo
K32GetProcessMemoryInfo
K32QueryWorkingSetEx
LCIDToLocaleName
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocaleNameToLCID
LockFile
LockFileEx
LockResource
MapViewOfFile
MapViewOfFileEx
Module32FirstW
Module32NextW
MoveFileExW
MoveFileW
MultiByteToWideChar
OpenProcess
OpenThread
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
PostQueuedCompletionStatus
PowerClearRequest
PowerCreateRequest
PowerSetRequest
Process32FirstW
Process32NextW
ProcessIdToSessionId
PurgeComm
QueryDosDeviceW
QueryFullProcessImageNameW
QueryInformationJobObject
QueryPerformanceCounter
QueryPerformanceFrequency
QueryProcessCycleTime
QueryThreadCycleTime
QueryUnbiasedInterruptTime
RaiseException
RaiseFailFastException
ReadConsoleW
ReadFile
ReadProcessMemory
RegisterWaitForSingleObject
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
RemoveDirectoryW
ReplaceFileW
ResetEvent
ResolveLocaleName
ResumeThread
RtlAddFunctionTable
RtlCaptureContext
RtlCaptureStackBackTrace
RtlDeleteFunctionTable
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetCommState
SetCommTimeouts
SetConsoleCtrlHandler
SetConsoleTextAttribute
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFileInformationByHandle
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleInformation
SetInformationJobObject
SetLastError
SetNamedPipeHandleState
SetPriorityClass
SetStdHandle
SetThreadAffinityMask
SetThreadContext
SetThreadExecutionState
SetThreadPriority
SetThreadPriorityBoost
SetThreadpoolThreadMaximum
SetThreadpoolThreadMinimum
SetUnhandledExceptionFilter
SizeofResource
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SubmitThreadpoolWork
SuspendThread
SwitchToThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateJobObject
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
TryAcquireSRWLockShared
TryEnterCriticalSection
TzSpecificLocalTimeToSystemTime
UnhandledExceptionFilter
UnlockFile
UnlockFileEx
UnmapViewOfFile
UnregisterWait
UnregisterWaitEx
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualAllocEx
VirtualFree
VirtualFreeEx
VirtualProtect
VirtualProtectEx
VirtualQuery
VirtualQueryEx
WTSGetActiveConsoleSessionId
WaitForDebugEvent
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WaitForThreadpoolWorkCallbacks
WaitNamedPipeA
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteProcessMemory
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW

dbghelp

StackWalk64
SymCleanup
SymFromAddr
SymFunctionTableAccess64
SymGetLineFromAddr64
SymGetModuleBase64
SymGetSearchPathW
SymInitialize
SymSetOptions
SymSetSearchPathW

oleaut32

LoadRegTypeLi
LoadTypeLi
SafeArrayAccessData
SafeArrayCreateVector
SafeArrayDestroy
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayPutElement
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
SysStringLen
VarBstrCmp
VarUI4FromStr
VariantClear
VariantCopy
VariantInit
VariantTimeToSystemTime

ws2_32

WSACleanup
WSACloseEvent
WSACreateEvent
WSADuplicateSocketW
WSAEnumNameSpaceProvidersW
WSAEnumNetworkEvents
WSAEventSelect
WSAGetLastError
WSAGetOverlappedResult
WSAIoctl
WSALookupServiceBeginW
WSALookupServiceEnd
WSALookupServiceNextW
WSARecvFrom
WSAResetEvent
WSASend
WSASendTo
WSASetEvent
WSASetServiceW
WSASocketW
WSAStartup
WSAWaitForMultipleEvents
WSCEnumProtocols
WSCGetProviderPath
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyname
gethostname
getpeername
getsockname
getsockopt
htonl
htons
inet_ntop
ioctlsocket
listen
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

iphlpapi

CancelIPChangeNotify
FreeMibTable
GetAdaptersAddresses
GetAdaptersInfo
GetIfTable2
GetInterfaceInfo
IpReleaseAddress
IpRenewAddress
NotifyAddrChange

userenv

CreateEnvironmentBlock
DestroyEnvironmentBlock
RegisterGPNotification
UnregisterGPNotification

secur32

AcquireCredentialsHandleA
AcquireCredentialsHandleW
CompleteAuthToken
DeleteSecurityContext
FreeContextBuffer
FreeCredentialsHandle
GetUserNameExW
InitializeSecurityContextA
InitializeSecurityContextW
LsaConnectUntrusted
LsaDeregisterLogonProcess
LsaFreeReturnBuffer
LsaLogonUser
QueryContextAttributesW
QuerySecurityPackageInfoW

uiautomationcore

UiaGetReservedMixedAttributeValue
UiaGetReservedNotSupportedValue
UiaHostProviderFromHwnd
UiaRaiseAutomationEvent
UiaRaiseAutomationPropertyChangedEvent
UiaRaiseStructureChangedEvent
UiaReturnRawElementProvider

wintrust

CryptCATAdminAcquireContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminEnumCatalogFromHash
CryptCATAdminReleaseCatalogContext
CryptCATAdminReleaseContext
CryptCATCatalogInfoFromContext
WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
WinVerifyTrust

crypt32

CertAddCertificateContextToStore
CertAddEncodedCertificateToStore
CertAddStoreToCollection
CertCloseStore
CertCompareCertificateName
CertControlStore
CertCreateCTLContext
CertCreateCertificateChainEngine
CertDuplicateCertificateContext
CertFindCertificateInStore
CertFindChainInStore
CertFindExtension
CertFreeCTLContext
CertFreeCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateContext
CertGetCertificateChain
CertGetCertificateContextProperty
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertGetIssuerCertificateFromStore
CertGetNameStringW
CertOpenStore
CertOpenSystemStoreW
CertSetCertificateContextProperty
CertVerifyCertificateChainPolicy
CertVerifyTimeValidity
CryptAcquireCertificatePrivateKey
CryptDecodeObjectEx
CryptInstallOIDFunctionAddress
CryptMsgClose
CryptMsgGetParam
CryptProtectData
CryptQueryObject
CryptUnprotectData
CryptVerifyCertificateSignatureEx

winhttp

WinHttpCloseHandle
WinHttpGetIEProxyConfigForCurrentUser
WinHttpGetProxyForUrl
WinHttpOpen
WinHttpSetStatusCallback
WinHttpSetTimeouts

chrome_elf

ClearReportsBetween_ExportThunk
CrashForException_ExportThunk
DisableHook
DrainLog
DumpHungProcessWithPtype_ExportThunk
DumpProcessWithoutCrash
GetApplyHookResult
GetBlockedModulesCount
GetCrashReports_ExportThunk
GetInstallDetailsPayload
GetUniqueBlockedModulesCount
GetUserDataDirectoryThunk
InjectDumpForHungInput_ExportThunk
IsExtensionPointDisableSet
IsThirdPartyInitialized
RegisterLogNotification
RequestSingleCrashUpload_ExportThunk
SetMetricsClientId
SetUploadConsent_ExportThunk

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

dwrite

DWriteCreateFactory

winspool.drv

ClosePrinter
DeviceCapabilitiesW
DocumentPropertiesW
EnumPrintersW
ord203
GetPrinterDriverW
GetPrinterW
OpenPrinterW

dhcpcsvc

DhcpCApiInitialize
DhcpRequestParams

Exports

Exports

ChromeMain
CrashForExceptionInNonABICompliantCodeRange
GetHandleVerifier
IsSandboxedProcess
RelaunchChromeBrowserWithNewCommandLineIfNeeded
TfLiteXNNPackDelegateCreate
TfLiteXNNPackDelegateDelete
TfLiteXNNPackDelegateGetThreadPool
TfLiteXNNPackDelegateOptionsDefault
TfLiteXNNPackDelegateWeightsCacheCreate
TfLiteXNNPackDelegateWeightsCacheCreateWithSize
TfLiteXNNPackDelegateWeightsCacheDelete
TfLiteXNNPackDelegateWeightsCacheFinalizeHard
TfLiteXNNPackDelegateWeightsCacheFinalizeSoft
_ovly_debug_event
nacl_global_xlate_base
nacl_thread_ids
nacl_user

Sections

.text
Size: 169.3MB - Virtual size: 169.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23.3MB - Virtual size: 23.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 795KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 200B

.rodata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 713B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 116B

CPADinfo
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LZMADEC
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

malloc_h
Size: 512B - Virtual size: 227B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 297KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/dddd.dll
.dll windows x64

5a679853ec15590620034b9797c1828f

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1e:83:05:c1:f4:78:53:9a:c9:aa:05:f1:6c:7f:f2:10:bd:22:19:25:ba:45:49:3c:eb:fb:15:81:1f:a4:7d:7b
Signer

Actual PE Digest

1e:83:05:c1:f4:78:53:9a:c9:aa:05:f1:6c:7f:f2:10:bd:22:19:25:ba:45:49:3c:eb:fb:15:81:1f:a4:7d:7b

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:36
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

winmm

midiInAddBuffer
midiInClose
midiInGetDevCapsW
midiInGetNumDevs
midiInOpen
midiInPrepareHeader
midiInReset
midiInStart
midiInUnprepareHeader
midiOutClose
midiOutGetDevCapsW
midiOutGetNumDevs
midiOutLongMsg
midiOutOpen
midiOutPrepareHeader
midiOutReset
midiOutShortMsg
midiOutUnprepareHeader
timeBeginPeriod
timeEndPeriod
timeGetDevCaps
timeGetTime
waveInGetNumDevs
waveOutClose
waveOutGetNumDevs
waveOutOpen
waveOutPause
waveOutPrepareHeader
waveOutReset
waveOutRestart
waveOutUnprepareHeader
waveOutWrite

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
AddVectoredExceptionHandler
AllocConsole
AreFileApisANSI
AssignProcessToJobObject
AttachConsole
CallbackMayRunLong
CancelIo
CancelIoEx
CheckRemoteDebuggerPresent
ClearCommError
CloseHandle
CloseThreadpool
CloseThreadpoolWork
CompareStringW
ConnectNamedPipe
ContinueDebugEvent
CopyFileW
CreateDirectoryW
CreateEventA
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreateHardLinkW
CreateIoCompletionPort
CreateJobObjectW
CreateMemoryResourceNotification
CreateMutexW
CreateNamedPipeW
CreateProcessW
CreateRemoteThread
CreateSemaphoreA
CreateSemaphoreW
CreateThread
CreateThreadpool
CreateThreadpoolWork
CreateToolhelp32Snapshot
DebugActiveProcess
DebugBreak
DecodePointer
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeleteProcThreadAttributeList
DeviceIoControl
DisconnectNamedPipe
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumResourceNamesW
EnumSystemLocalesEx
EnumSystemLocalesW
EscapeCommFunction
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindCloseChangeNotification
FindFirstChangeNotificationW
FindFirstFileA
FindFirstFileExA
FindFirstFileExW
FindFirstFileW
FindFirstVolumeW
FindNextFileA
FindNextFileW
FindNextVolumeW
FindResourceW
FindVolumeClose
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FlushInstructionCache
FlushViewOfFile
FoldStringW
FormatMessageA
FormatMessageW
FreeConsole
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommModemStatus
GetCommState
GetCommandLineA
GetCommandLineW
GetComputerNameExA
GetComputerNameExW
GetComputerNameW
GetConsoleDisplayMode
GetConsoleMode
GetConsoleOutputCP
GetCurrencyFormatEx
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentProcessorNumber
GetCurrentThread
GetCurrentThreadId
GetDateFormatEx
GetDateFormatW
GetDiskFreeSpaceA
GetDiskFreeSpaceExW
GetDiskFreeSpaceW
GetDriveTypeW
GetDynamicTimeZoneInformation
GetEnvironmentStringsW
GetEnvironmentVariableA
GetEnvironmentVariableW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileSizeEx
GetFileTime
GetFileType
GetFinalPathNameByHandleW
GetFullPathNameA
GetFullPathNameW
GetGeoInfoW
GetLastError
GetLocalTime
GetLocaleInfoEx
GetLocaleInfoW
GetLogicalDriveStringsW
GetLogicalProcessorInformation
GetLogicalProcessorInformationEx
GetLongPathNameW
GetMaximumProcessorCount
GetMaximumProcessorGroupCount
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetNamedPipeHandleStateW
GetNativeSystemInfo
GetNumberFormatEx
GetOEMCP
GetOverlappedResult
GetPriorityClass
GetPrivateProfileStringW
GetProcAddress
GetProcessAffinityMask
GetProcessHandleCount
GetProcessHeap
GetProcessHeaps
GetProcessId
GetProcessTimes
GetProductInfo
GetQueuedCompletionStatus
GetShortPathNameW
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemPowerStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTempPathW
GetThreadContext
GetThreadGroupAffinity
GetThreadId
GetThreadPreferredUILanguages
GetThreadPriority
GetThreadPriorityBoost
GetThreadTimes
GetTickCount
GetTimeFormatEx
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultLangID
GetUserDefaultLocaleName
GetUserDefaultUILanguage
GetUserGeoID
GetVersionExW
GetVolumeInformationW
GetVolumeNameForVolumeMountPointW
GetVolumePathNameW
GetVolumePathNamesForVolumeNameW
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAlloc
GlobalFree
GlobalLock
GlobalMemoryStatusEx
GlobalSize
GlobalUnlock
HeapAlloc
HeapCompact
HeapCreate
HeapDestroy
HeapFree
HeapLock
HeapReAlloc
HeapSetInformation
HeapSize
HeapUnlock
HeapValidate
HeapWalk
InitOnceBeginInitialize
InitOnceComplete
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
InitializeProcThreadAttributeList
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
InterlockedPopEntrySList
InterlockedPushEntrySList
IsDebuggerPresent
IsProcessInJob
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32EmptyWorkingSet
K32EnumProcessModules
K32GetMappedFileNameW
K32GetModuleFileNameExW
K32GetModuleInformation
K32GetPerformanceInfo
K32GetProcessMemoryInfo
K32QueryWorkingSetEx
LCIDToLocaleName
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
LocaleNameToLCID
LockFile
LockFileEx
LockResource
MapViewOfFile
MapViewOfFileEx
Module32FirstW
Module32NextW
MoveFileExW
MoveFileW
MultiByteToWideChar
OpenProcess
OpenThread
OutputDebugStringA
OutputDebugStringW
PeekNamedPipe
PostQueuedCompletionStatus
PowerClearRequest
PowerCreateRequest
PowerSetRequest
Process32FirstW
Process32NextW
ProcessIdToSessionId
PurgeComm
QueryDosDeviceW
QueryFullProcessImageNameW
QueryInformationJobObject
QueryPerformanceCounter
QueryPerformanceFrequency
QueryProcessCycleTime
QueryThreadCycleTime
QueryUnbiasedInterruptTime
RaiseException
RaiseFailFastException
ReadConsoleW
ReadFile
ReadProcessMemory
RegisterWaitForSingleObject
ReleaseMutex
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ReleaseSemaphore
RemoveDirectoryW
ReplaceFileW
ResetEvent
ResolveLocaleName
ResumeThread
RtlAddFunctionTable
RtlCaptureContext
RtlCaptureStackBackTrace
RtlDeleteFunctionTable
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetCommState
SetCommTimeouts
SetConsoleCtrlHandler
SetConsoleTextAttribute
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileAttributesW
SetFileInformationByHandle
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleInformation
SetInformationJobObject
SetLastError
SetNamedPipeHandleState
SetPriorityClass
SetStdHandle
SetThreadAffinityMask
SetThreadContext
SetThreadExecutionState
SetThreadPriority
SetThreadPriorityBoost
SetThreadpoolThreadMaximum
SetThreadpoolThreadMinimum
SetUnhandledExceptionFilter
SizeofResource
Sleep
SleepConditionVariableCS
SleepConditionVariableSRW
SubmitThreadpoolWork
SuspendThread
SwitchToThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateJobObject
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
TryAcquireSRWLockShared
TryEnterCriticalSection
TzSpecificLocalTimeToSystemTime
UnhandledExceptionFilter
UnlockFile
UnlockFileEx
UnmapViewOfFile
UnregisterWait
UnregisterWaitEx
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualAllocEx
VirtualFree
VirtualFreeEx
VirtualProtect
VirtualProtectEx
VirtualQuery
VirtualQueryEx
WTSGetActiveConsoleSessionId
WaitForDebugEvent
WaitForMultipleObjects
WaitForSingleObject
WaitForSingleObjectEx
WaitForThreadpoolWorkCallbacks
WaitNamedPipeA
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
WriteProcessMemory
lstrcmpiA
lstrcmpiW
lstrlenA
lstrlenW

dbghelp

StackWalk64
SymCleanup
SymFromAddr
SymFunctionTableAccess64
SymGetLineFromAddr64
SymGetModuleBase64
SymGetSearchPathW
SymInitialize
SymSetOptions
SymSetSearchPathW

oleaut32

LoadRegTypeLi
LoadTypeLi
SafeArrayAccessData
SafeArrayCreateVector
SafeArrayDestroy
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayPutElement
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
SysStringLen
VarBstrCmp
VarUI4FromStr
VariantClear
VariantCopy
VariantInit
VariantTimeToSystemTime

ws2_32

WSACleanup
WSACloseEvent
WSACreateEvent
WSADuplicateSocketW
WSAEnumNameSpaceProvidersW
WSAEnumNetworkEvents
WSAEventSelect
WSAGetLastError
WSAGetOverlappedResult
WSAIoctl
WSALookupServiceBeginW
WSALookupServiceEnd
WSALookupServiceNextW
WSARecvFrom
WSAResetEvent
WSASend
WSASendTo
WSASetEvent
WSASetServiceW
WSASocketW
WSAStartup
WSAWaitForMultipleEvents
WSCEnumProtocols
WSCGetProviderPath
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostbyname
gethostname
getpeername
getsockname
getsockopt
htonl
htons
inet_ntop
ioctlsocket
listen
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

iphlpapi

CancelIPChangeNotify
FreeMibTable
GetAdaptersAddresses
GetAdaptersInfo
GetIfTable2
GetInterfaceInfo
IpReleaseAddress
IpRenewAddress
NotifyAddrChange

userenv

CreateEnvironmentBlock
DestroyEnvironmentBlock
RegisterGPNotification
UnregisterGPNotification

secur32

AcquireCredentialsHandleA
AcquireCredentialsHandleW
CompleteAuthToken
DeleteSecurityContext
FreeContextBuffer
FreeCredentialsHandle
GetUserNameExW
InitializeSecurityContextA
InitializeSecurityContextW
LsaConnectUntrusted
LsaDeregisterLogonProcess
LsaFreeReturnBuffer
LsaLogonUser
QueryContextAttributesW
QuerySecurityPackageInfoW

uiautomationcore

UiaGetReservedMixedAttributeValue
UiaGetReservedNotSupportedValue
UiaHostProviderFromHwnd
UiaRaiseAutomationEvent
UiaRaiseAutomationPropertyChangedEvent
UiaRaiseStructureChangedEvent
UiaReturnRawElementProvider

wintrust

CryptCATAdminAcquireContext
CryptCATAdminCalcHashFromFileHandle
CryptCATAdminEnumCatalogFromHash
CryptCATAdminReleaseCatalogContext
CryptCATAdminReleaseContext
CryptCATCatalogInfoFromContext
WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain
WTHelperProvDataFromStateData
WinVerifyTrust

crypt32

CertAddCertificateContextToStore
CertAddEncodedCertificateToStore
CertAddStoreToCollection
CertCloseStore
CertCompareCertificateName
CertControlStore
CertCreateCTLContext
CertCreateCertificateChainEngine
CertDuplicateCertificateContext
CertFindCertificateInStore
CertFindChainInStore
CertFindExtension
CertFreeCTLContext
CertFreeCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateContext
CertGetCertificateChain
CertGetCertificateContextProperty
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertGetIssuerCertificateFromStore
CertGetNameStringW
CertOpenStore
CertOpenSystemStoreW
CertSetCertificateContextProperty
CertVerifyCertificateChainPolicy
CertVerifyTimeValidity
CryptAcquireCertificatePrivateKey
CryptDecodeObjectEx
CryptInstallOIDFunctionAddress
CryptMsgClose
CryptMsgGetParam
CryptProtectData
CryptQueryObject
CryptUnprotectData
CryptVerifyCertificateSignatureEx

winhttp

WinHttpCloseHandle
WinHttpGetIEProxyConfigForCurrentUser
WinHttpGetProxyForUrl
WinHttpOpen
WinHttpSetStatusCallback
WinHttpSetTimeouts

chrome_elf

ClearReportsBetween_ExportThunk
CrashForException_ExportThunk
DisableHook
DrainLog
DumpHungProcessWithPtype_ExportThunk
DumpProcessWithoutCrash
GetApplyHookResult
GetBlockedModulesCount
GetCrashReports_ExportThunk
GetInstallDetailsPayload
GetUniqueBlockedModulesCount
GetUserDataDirectoryThunk
InjectDumpForHungInput_ExportThunk
IsExtensionPointDisableSet
IsThirdPartyInitialized
RegisterLogNotification
RequestSingleCrashUpload_ExportThunk
SetMetricsClientId
SetUploadConsent_ExportThunk

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

dwrite

DWriteCreateFactory

winspool.drv

ClosePrinter
DeviceCapabilitiesW
DocumentPropertiesW
EnumPrintersW
ord203
GetPrinterDriverW
GetPrinterW
OpenPrinterW

dhcpcsvc

DhcpCApiInitialize
DhcpRequestParams

Exports

Exports

ChromeMain
CrashForExceptionInNonABICompliantCodeRange
GetHandleVerifier
IsSandboxedProcess
RelaunchChromeBrowserWithNewCommandLineIfNeeded
TfLiteXNNPackDelegateCreate
TfLiteXNNPackDelegateDelete
TfLiteXNNPackDelegateGetThreadPool
TfLiteXNNPackDelegateOptionsDefault
TfLiteXNNPackDelegateWeightsCacheCreate
TfLiteXNNPackDelegateWeightsCacheCreateWithSize
TfLiteXNNPackDelegateWeightsCacheDelete
TfLiteXNNPackDelegateWeightsCacheFinalizeHard
TfLiteXNNPackDelegateWeightsCacheFinalizeSoft
_ovly_debug_event
nacl_global_xlate_base
nacl_thread_ids
nacl_user

Sections

.text
Size: 169.3MB - Virtual size: 169.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23.3MB - Virtual size: 23.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 795KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 200B

.rodata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 713B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 116B

CPADinfo
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

LZMADEC
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

malloc_h
Size: 512B - Virtual size: 227B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 297KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/eventlog_provider.dll
.dll windows x64

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f0:68:3e:7f:46:11:fa:aa:8c:7d:00:91:3b:a0:33:f6:1d:fc:c7:58:95:4c:74:c5:49:63:c7:cd:be:bf:00:7d
Signer

Actual PE Digest

f0:68:3e:7f:46:11:fa:aa:8c:7d:00:91:3b:a0:33:f6:1d:fc:c7:58:95:4c:74:c5:49:63:c7:cd:be:bf:00:7d

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:37
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Exports

Exports

?fn@@YA_NXZ

Sections

.text
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 92B

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/libEGL.dll
.dll windows x64

592e6e55d4fe33d1bd84e3b3016fe3b2

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5a:a9:9d:69:20:13:7a:54:80:18:2d:ea:99:a4:ea:e1:7b:ed:80:b7:82:3d:8f:67:eb:27:21:7c:60:51:7f:6a
Signer

Actual PE Digest

5a:a9:9d:69:20:13:7a:54:80:18:2d:ea:99:a4:ea:e1:7b:ed:80:b7:82:3d:8f:67:eb:27:21:7c:60:51:7f:6a

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:37
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryExW
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglClientWaitSyncKHR
eglCopyBuffers
eglCopyMetalSharedEventANGLE
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreateNativeClientBufferANDROID
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurface
eglCreatePlatformWindowSurfaceEXT
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureANGLE
eglCreateSync
eglCreateSyncKHR
eglCreateWindowSurface
eglDebugMessageControlKHR
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglDestroySyncKHR
eglDupNativeFenceFDANDROID
eglExportVkImageANGLE
eglForceGPUSwitchANGLE
eglGetCompositorTimingANDROID
eglGetCompositorTimingSupportedANDROID
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetFrameTimestampSupportedANDROID
eglGetFrameTimestampsANDROID
eglGetMscRateANGLE
eglGetNativeClientBufferANDROID
eglGetNextFrameIdANDROID
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncAttribKHR
eglGetSyncValuesCHROMIUM
eglHandleGPUSwitchANGLE
eglInitialize
eglLabelObjectKHR
eglLockSurfaceKHR
eglMakeCurrent
eglPostSubBufferNV
eglPrepareSwapBuffersANGLE
eglPresentationTimeANDROID
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDebugKHR
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribANGLE
eglQueryDisplayAttribEXT
eglQueryDmaBufFormatsEXT
eglQueryDmaBufModifiersEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQueryStringiANGLE
eglQuerySurface
eglQuerySurface64KHR
eglQuerySurfacePointerANGLE
eglReacquireHighPowerGPUANGLE
eglReleaseDeviceANGLE
eglReleaseHighPowerGPUANGLE
eglReleaseTexImage
eglReleaseThread
eglSetBlobCacheFuncsANDROID
eglSetDamageRegionKHR
eglSignalSyncKHR
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageKHR
eglSwapBuffersWithFrameTokenANGLE
eglSwapInterval
eglTerminate
eglUnlockSurfaceKHR
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync
eglWaitSyncKHR

Sections

.text
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 92B

.tls
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 56B

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/libGLESv2.dll
.dll windows x64

b3384e5182b61c941805b07b7dc28efe

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f3:0f:19:f6:6c:8a:6a:f7:12:6a:3b:a2:55:e5:3d:c0:39:bb:8c:f9:10:45:2a:fe:21:95:c1:29:15:00:ed:b0
Signer

Actual PE Digest

f3:0f:19:f6:6c:8a:6a:f7:12:6a:3b:a2:55:e5:3d:c0:39:bb:8c:f9:10:45:2a:fe:21:95:c1:29:15:00:ed:b0

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:37
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

CreateWindowExA
CreateWindowExW
DefWindowProcW
DestroyWindow
GetClassInfoW
GetClientRect
GetDC
GetWindowThreadProcessId
InvalidateRect
IsIconic
IsWindow
LoadCursorW
RegisterClassW
ReleaseDC
UnregisterClassA
WindowFromDC

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
CreateThread
DeleteCriticalSection
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitOnceExecuteOnce
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualProtect
VirtualQuery
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

dxgi

CreateDXGIFactory
CreateDXGIFactory1

gdi32

ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SetPixelFormat
SwapBuffers

Exports

Exports

??0PlatformMethods@angle@@QEAA@XZ
??4PlatformMethods@angle@@QEAAAEAU01@$$QEAU01@@Z
??4PlatformMethods@angle@@QEAAAEAU01@AEBU01@@Z
ANGLEGetDisplayPlatform
ANGLEResetDisplayPlatform
EGL_BindAPI
EGL_BindTexImage
EGL_ChooseConfig
EGL_ClientWaitSync
EGL_ClientWaitSyncKHR
EGL_CopyBuffers
EGL_CopyMetalSharedEventANGLE
EGL_CreateContext
EGL_CreateDeviceANGLE
EGL_CreateImage
EGL_CreateImageKHR
EGL_CreateNativeClientBufferANDROID
EGL_CreatePbufferFromClientBuffer
EGL_CreatePbufferSurface
EGL_CreatePixmapSurface
EGL_CreatePlatformPixmapSurface
EGL_CreatePlatformPixmapSurfaceEXT
EGL_CreatePlatformWindowSurface
EGL_CreatePlatformWindowSurfaceEXT
EGL_CreateStreamKHR
EGL_CreateStreamProducerD3DTextureANGLE
EGL_CreateSync
EGL_CreateSyncKHR
EGL_CreateWindowSurface
EGL_DebugMessageControlKHR
EGL_DestroyContext
EGL_DestroyImage
EGL_DestroyImageKHR
EGL_DestroyStreamKHR
EGL_DestroySurface
EGL_DestroySync
EGL_DestroySyncKHR
EGL_DupNativeFenceFDANDROID
EGL_ExportVkImageANGLE
EGL_ForceGPUSwitchANGLE
EGL_GetCompositorTimingANDROID
EGL_GetCompositorTimingSupportedANDROID
EGL_GetConfigAttrib
EGL_GetConfigs
EGL_GetCurrentContext
EGL_GetCurrentDisplay
EGL_GetCurrentSurface
EGL_GetDisplay
EGL_GetError
EGL_GetFrameTimestampSupportedANDROID
EGL_GetFrameTimestampsANDROID
EGL_GetMscRateANGLE
EGL_GetNativeClientBufferANDROID
EGL_GetNextFrameIdANDROID
EGL_GetPlatformDisplay
EGL_GetPlatformDisplayEXT
EGL_GetProcAddress
EGL_GetSyncAttrib
EGL_GetSyncAttribKHR
EGL_GetSyncValuesCHROMIUM
EGL_HandleGPUSwitchANGLE
EGL_Initialize
EGL_LabelObjectKHR
EGL_LockSurfaceKHR
EGL_MakeCurrent
EGL_PostSubBufferNV
EGL_PrepareSwapBuffersANGLE
EGL_PresentationTimeANDROID
EGL_ProgramCacheGetAttribANGLE
EGL_ProgramCachePopulateANGLE
EGL_ProgramCacheQueryANGLE
EGL_ProgramCacheResizeANGLE
EGL_QueryAPI
EGL_QueryContext
EGL_QueryDebugKHR
EGL_QueryDeviceAttribEXT
EGL_QueryDeviceStringEXT
EGL_QueryDisplayAttribANGLE
EGL_QueryDisplayAttribEXT
EGL_QueryDmaBufFormatsEXT
EGL_QueryDmaBufModifiersEXT
EGL_QueryStreamKHR
EGL_QueryStreamu64KHR
EGL_QueryString
EGL_QueryStringiANGLE
EGL_QuerySurface
EGL_QuerySurface64KHR
EGL_QuerySurfacePointerANGLE
EGL_ReacquireHighPowerGPUANGLE
EGL_ReleaseDeviceANGLE
EGL_ReleaseHighPowerGPUANGLE
EGL_ReleaseTexImage
EGL_ReleaseThread
EGL_SetBlobCacheFuncsANDROID
EGL_SetDamageRegionKHR
EGL_SignalSyncKHR
EGL_StreamAttribKHR
EGL_StreamConsumerAcquireKHR
EGL_StreamConsumerGLTextureExternalAttribsNV
EGL_StreamConsumerGLTextureExternalKHR
EGL_StreamConsumerReleaseKHR
EGL_StreamPostD3DTextureANGLE
EGL_SurfaceAttrib
EGL_SwapBuffers
EGL_SwapBuffersWithDamageKHR
EGL_SwapBuffersWithFrameTokenANGLE
EGL_SwapInterval
EGL_Terminate
EGL_UnlockSurfaceKHR
EGL_WaitClient
EGL_WaitGL
EGL_WaitNative
EGL_WaitSync
EGL_WaitSyncKHR
GL_AcquireTexturesANGLE
GL_ActiveShaderProgram
GL_ActiveShaderProgramEXT
GL_ActiveTexture
GL_AlphaFunc
GL_AlphaFuncx
GL_AttachShader
GL_BeginPerfMonitorAMD
GL_BeginPixelLocalStorageANGLE
GL_BeginQuery
GL_BeginQueryEXT
GL_BeginTransformFeedback
GL_BindAttribLocation
GL_BindBuffer
GL_BindBufferBase
GL_BindBufferRange
GL_BindFragDataLocationEXT
GL_BindFragDataLocationIndexedEXT
GL_BindFramebuffer
GL_BindFramebufferOES
GL_BindImageTexture
GL_BindProgramPipeline
GL_BindProgramPipelineEXT
GL_BindRenderbuffer
GL_BindRenderbufferOES
GL_BindSampler
GL_BindTexture
GL_BindTransformFeedback
GL_BindUniformLocationCHROMIUM
GL_BindVertexArray
GL_BindVertexArrayOES
GL_BindVertexBuffer
GL_BlendBarrier
GL_BlendBarrierKHR
GL_BlendColor
GL_BlendEquation
GL_BlendEquationSeparate
GL_BlendEquationSeparatei
GL_BlendEquationSeparateiEXT
GL_BlendEquationSeparateiOES
GL_BlendEquationi
GL_BlendEquationiEXT
GL_BlendEquationiOES
GL_BlendFunc
GL_BlendFuncSeparate
GL_BlendFuncSeparatei
GL_BlendFuncSeparateiEXT
GL_BlendFuncSeparateiOES
GL_BlendFunci
GL_BlendFunciEXT
GL_BlendFunciOES
GL_BlitFramebuffer
GL_BlitFramebufferANGLE
GL_BlitFramebufferNV
GL_BufferData
GL_BufferStorageEXT
GL_BufferStorageExternalEXT
GL_BufferStorageMemEXT
GL_BufferSubData
GL_CheckFramebufferStatus
GL_CheckFramebufferStatusOES
GL_Clear
GL_ClearBufferfi
GL_ClearBufferfv
GL_ClearBufferiv
GL_ClearBufferuiv
GL_ClearColor
GL_ClearColorx
GL_ClearDepthf
GL_ClearDepthx
GL_ClearStencil
GL_ClientActiveTexture
GL_ClientWaitSync
GL_ClipControlEXT
GL_ClipPlanef
GL_ClipPlanex
GL_Color4f
GL_Color4ub
GL_Color4x
GL_ColorMask
GL_ColorMaski
GL_ColorMaskiEXT
GL_ColorMaskiOES
GL_ColorPointer
GL_CompileShader
GL_CompressedCopyTextureCHROMIUM
GL_CompressedTexImage2D
GL_CompressedTexImage2DRobustANGLE
GL_CompressedTexImage3D
GL_CompressedTexImage3DOES
GL_CompressedTexImage3DRobustANGLE
GL_CompressedTexSubImage2D
GL_CompressedTexSubImage2DRobustANGLE
GL_CompressedTexSubImage3D
GL_CompressedTexSubImage3DOES
GL_CompressedTexSubImage3DRobustANGLE
GL_CopyBufferSubData
GL_CopyImageSubData
GL_CopyImageSubDataEXT
GL_CopyImageSubDataOES
GL_CopySubTexture3DANGLE
GL_CopySubTextureCHROMIUM
GL_CopyTexImage2D
GL_CopyTexSubImage2D
GL_CopyTexSubImage3D
GL_CopyTexSubImage3DOES
GL_CopyTexture3DANGLE
GL_CopyTextureCHROMIUM
GL_CoverageModulationCHROMIUM
GL_CreateMemoryObjectsEXT
GL_CreateProgram
GL_CreateShader
GL_CreateShaderProgramv
GL_CreateShaderProgramvEXT
GL_CullFace
GL_CurrentPaletteMatrixOES
GL_DebugMessageCallback
GL_DebugMessageCallbackKHR
GL_DebugMessageControl
GL_DebugMessageControlKHR
GL_DebugMessageInsert
GL_DebugMessageInsertKHR
GL_DeleteBuffers
GL_DeleteFencesNV
GL_DeleteFramebuffers
GL_DeleteFramebuffersOES
GL_DeleteMemoryObjectsEXT
GL_DeletePerfMonitorsAMD
GL_DeleteProgram
GL_DeleteProgramPipelines
GL_DeleteProgramPipelinesEXT
GL_DeleteQueries
GL_DeleteQueriesEXT
GL_DeleteRenderbuffers
GL_DeleteRenderbuffersOES
GL_DeleteSamplers
GL_DeleteSemaphoresEXT
GL_DeleteShader
GL_DeleteSync
GL_DeleteTextures
GL_DeleteTransformFeedbacks
GL_DeleteVertexArrays
GL_DeleteVertexArraysOES
GL_DepthFunc
GL_DepthMask
GL_DepthRangef
GL_DepthRangex
GL_DetachShader
GL_Disable
GL_DisableClientState
GL_DisableExtensionANGLE
GL_DisableVertexAttribArray
GL_Disablei
GL_DisableiEXT
GL_DisableiOES
GL_DiscardFramebufferEXT
GL_DispatchCompute
GL_DispatchComputeIndirect
GL_DrawArrays
GL_DrawArraysIndirect
GL_DrawArraysInstanced
GL_DrawArraysInstancedANGLE
GL_DrawArraysInstancedBaseInstanceANGLE
GL_DrawArraysInstancedBaseInstanceEXT
GL_DrawArraysInstancedEXT
GL_DrawBuffers
GL_DrawBuffersEXT
GL_DrawElements
GL_DrawElementsBaseVertex
GL_DrawElementsBaseVertexEXT
GL_DrawElementsBaseVertexOES
GL_DrawElementsIndirect
GL_DrawElementsInstanced
GL_DrawElementsInstancedANGLE
GL_DrawElementsInstancedBaseInstanceEXT
GL_DrawElementsInstancedBaseVertex
GL_DrawElementsInstancedBaseVertexBaseInstanceANGLE
GL_DrawElementsInstancedBaseVertexBaseInstanceEXT
GL_DrawElementsInstancedBaseVertexEXT
GL_DrawElementsInstancedBaseVertexOES
GL_DrawElementsInstancedEXT
GL_DrawRangeElements
GL_DrawRangeElementsBaseVertex
GL_DrawRangeElementsBaseVertexEXT
GL_DrawRangeElementsBaseVertexOES
GL_DrawTexfOES
GL_DrawTexfvOES
GL_DrawTexiOES
GL_DrawTexivOES
GL_DrawTexsOES
GL_DrawTexsvOES
GL_DrawTexxOES
GL_DrawTexxvOES
GL_EGLImageTargetRenderbufferStorageOES
GL_EGLImageTargetTexStorageEXT
GL_EGLImageTargetTexture2DOES
GL_EGLImageTargetTextureStorageEXT
GL_Enable
GL_EnableClientState
GL_EnableVertexAttribArray
GL_Enablei
GL_EnableiEXT
GL_EnableiOES
GL_EndPerfMonitorAMD
GL_EndPixelLocalStorageANGLE
GL_EndQuery
GL_EndQueryEXT
GL_EndTransformFeedback
GL_FenceSync
GL_Finish
GL_FinishFenceNV
GL_Flush
GL_FlushMappedBufferRange
GL_FlushMappedBufferRangeEXT
GL_Fogf
GL_Fogfv
GL_Fogx
GL_Fogxv
GL_FramebufferFetchBarrierEXT
GL_FramebufferMemorylessPixelLocalStorageANGLE
GL_FramebufferParameteri
GL_FramebufferParameteriMESA
GL_FramebufferPixelLocalClearValuefvANGLE
GL_FramebufferPixelLocalClearValueivANGLE
GL_FramebufferPixelLocalClearValueuivANGLE
GL_FramebufferRenderbuffer
GL_FramebufferRenderbufferOES
GL_FramebufferTexture
GL_FramebufferTexture2D
GL_FramebufferTexture2DMultisampleEXT
GL_FramebufferTexture2DOES
GL_FramebufferTexture3DOES
GL_FramebufferTextureEXT
GL_FramebufferTextureLayer
GL_FramebufferTextureMultiviewOVR
GL_FramebufferTextureOES
GL_FramebufferTexturePixelLocalStorageANGLE
GL_FrontFace
GL_Frustumf
GL_Frustumx
GL_GenBuffers
GL_GenFencesNV
GL_GenFramebuffers
GL_GenFramebuffersOES
GL_GenPerfMonitorsAMD
GL_GenProgramPipelines
GL_GenProgramPipelinesEXT
GL_GenQueries
GL_GenQueriesEXT
GL_GenRenderbuffers
GL_GenRenderbuffersOES
GL_GenSamplers
GL_GenSemaphoresEXT
GL_GenTextures
GL_GenTransformFeedbacks
GL_GenVertexArrays
GL_GenVertexArraysOES
GL_GenerateMipmap
GL_GenerateMipmapOES
GL_GetActiveAttrib
GL_GetActiveUniform
GL_GetActiveUniformBlockName
GL_GetActiveUniformBlockiv
GL_GetActiveUniformBlockivRobustANGLE
GL_GetActiveUniformsiv
GL_GetAttachedShaders
GL_GetAttribLocation
GL_GetBooleani_v
GL_GetBooleani_vRobustANGLE
GL_GetBooleanv
GL_GetBooleanvRobustANGLE
GL_GetBufferParameteri64v
GL_GetBufferParameteri64vRobustANGLE
GL_GetBufferParameteriv
GL_GetBufferParameterivRobustANGLE
GL_GetBufferPointerv
GL_GetBufferPointervOES
GL_GetBufferPointervRobustANGLE
GL_GetClipPlanef
GL_GetClipPlanex
GL_GetCompressedTexImageANGLE
GL_GetDebugMessageLog
GL_GetDebugMessageLogKHR
GL_GetError
GL_GetFenceivNV
GL_GetFixedv
GL_GetFloatv
GL_GetFloatvRobustANGLE
GL_GetFragDataIndexEXT
GL_GetFragDataLocation
GL_GetFramebufferAttachmentParameteriv
GL_GetFramebufferAttachmentParameterivOES
GL_GetFramebufferAttachmentParameterivRobustANGLE
GL_GetFramebufferParameteriv
GL_GetFramebufferParameterivMESA
GL_GetFramebufferParameterivRobustANGLE
GL_GetFramebufferPixelLocalStorageParameterfvANGLE
GL_GetFramebufferPixelLocalStorageParameterivANGLE
GL_GetGraphicsResetStatus
GL_GetGraphicsResetStatusEXT
GL_GetInteger64i_v
GL_GetInteger64i_vRobustANGLE
GL_GetInteger64v
GL_GetInteger64vEXT
GL_GetInteger64vRobustANGLE
GL_GetIntegeri_v
GL_GetIntegeri_vRobustANGLE
GL_GetIntegerv
GL_GetIntegervRobustANGLE
GL_GetInternalformativ
GL_GetInternalformativRobustANGLE
GL_GetLightfv
GL_GetLightxv
GL_GetMaterialfv
GL_GetMaterialxv
GL_GetMemoryObjectParameterivEXT
GL_GetMultisamplefv
GL_GetMultisamplefvANGLE
GL_GetMultisamplefvRobustANGLE
GL_GetObjectLabel
GL_GetObjectLabelEXT
GL_GetObjectLabelKHR
GL_GetObjectPtrLabel
GL_GetObjectPtrLabelKHR
GL_GetPerfMonitorCounterDataAMD
GL_GetPerfMonitorCounterInfoAMD
GL_GetPerfMonitorCounterStringAMD
GL_GetPerfMonitorCountersAMD
GL_GetPerfMonitorGroupStringAMD
GL_GetPerfMonitorGroupsAMD
GL_GetPointerv
GL_GetPointervKHR
GL_GetPointervRobustANGLERobustANGLE
GL_GetProgramBinary
GL_GetProgramBinaryOES
GL_GetProgramInfoLog
GL_GetProgramInterfaceiv
GL_GetProgramInterfaceivRobustANGLE
GL_GetProgramPipelineInfoLog
GL_GetProgramPipelineInfoLogEXT
GL_GetProgramPipelineiv
GL_GetProgramPipelineivEXT
GL_GetProgramResourceIndex
GL_GetProgramResourceLocation
GL_GetProgramResourceLocationIndexEXT
GL_GetProgramResourceName
GL_GetProgramResourceiv
GL_GetProgramiv
GL_GetProgramivRobustANGLE
GL_GetQueryObjecti64vEXT
GL_GetQueryObjecti64vRobustANGLE
GL_GetQueryObjectivEXT
GL_GetQueryObjectivRobustANGLE
GL_GetQueryObjectui64vEXT
GL_GetQueryObjectui64vRobustANGLE
GL_GetQueryObjectuiv
GL_GetQueryObjectuivEXT
GL_GetQueryObjectuivRobustANGLE
GL_GetQueryiv
GL_GetQueryivEXT
GL_GetQueryivRobustANGLE
GL_GetRenderbufferImageANGLE
GL_GetRenderbufferParameteriv
GL_GetRenderbufferParameterivOES
GL_GetRenderbufferParameterivRobustANGLE
GL_GetSamplerParameterIiv
GL_GetSamplerParameterIivEXT
GL_GetSamplerParameterIivOES
GL_GetSamplerParameterIivRobustANGLE
GL_GetSamplerParameterIuiv
GL_GetSamplerParameterIuivEXT
GL_GetSamplerParameterIuivOES
GL_GetSamplerParameterIuivRobustANGLE
GL_GetSamplerParameterfv
GL_GetSamplerParameterfvRobustANGLE
GL_GetSamplerParameteriv
GL_GetSamplerParameterivRobustANGLE
GL_GetSemaphoreParameterui64vEXT
GL_GetShaderInfoLog
GL_GetShaderPrecisionFormat
GL_GetShaderSource
GL_GetShaderiv
GL_GetShaderivRobustANGLE
GL_GetString
GL_GetStringi
GL_GetSynciv

Sections

.text
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 92B

.tls
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 68B

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/mojo_core.dll
.dll windows x64

8171e9aca280155d683da31fc1a12d16

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9f:07:1c:cb:fc:0c:ea:94:eb:40:03:ec:e1:3a:f3:46:0c:2d:f2:ba:b2:88:c1:e8:e8:dc:da:be:76:e5:34:34
Signer

Actual PE Digest

9f:07:1c:cb:fc:0c:ea:94:eb:40:03:ec:e1:3a:f3:46:0c:2d:f2:ba:b2:88:c1:e8:e8:dc:da:be:76:e5:34:34

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:37
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
CancelIo
CloseHandle
CompareStringW
ConnectNamedPipe
CreateEventW
CreateFileMappingW
CreateFileW
CreateIoCompletionPort
CreateNamedPipeW
CreateThread
DeleteCriticalSection
DeleteFileW
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessHeap
GetProductInfo
GetQueuedCompletionStatus
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadId
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetVersionExW
InitOnceExecuteOnce
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32GetModuleInformation
K32QueryWorkingSetEx
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LocalFree
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
PostQueuedCompletionStatus
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ResetEvent
RtlCaptureContext
RtlCaptureStackBackTrace
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UnmapViewOfFile
UnregisterWaitEx
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrlenA

advapi32

ConvertStringSecurityDescriptorToSecurityDescriptorW
EventRegister
EventUnregister
EventWrite
InitializeAcl
InitializeSecurityDescriptor
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SetSecurityDescriptorDacl
SystemFunction036

dbghelp

SymCleanup
SymFromAddr
SymGetLineFromAddr64
SymGetSearchPathW
SymInitialize
SymSetOptions
SymSetSearchPathW

shell32

CommandLineToArgvW

user32

CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageW
GetQueueStatus
GetWindowLongPtrW
KillTimer
MsgWaitForMultipleObjectsEx
PeekMessageW
PostMessageW
PostQuitMessage
RegisterClassExW
SetTimer
SetWindowLongPtrW
TranslateMessage
UnregisterClassW

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

ole32

CoInitializeEx
CoRegisterInitializeSpy
CoRevokeInitializeSpy
CoUninitialize

Exports

Exports

GetHandleVerifier
MojoGetSystemThunks

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 92B

.tls
Size: 512B - Virtual size: 297B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 68B

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/resources.pak
data/sfvstwrap.dll
.dll regsvr32 windows x64

37a811334a224344f6a186d1def2cdb9

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

7f:7a:98:21:56:28:d3:ac:30:a9:ea:87:35:c1:ba:22
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

03-03-2017 00:00

Not After

01-04-2020 23:59

Subject

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7f:7a:98:21:56:28:d3:ac:30:a9:ea:87:35:c1:ba:22
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

03-03-2017 00:00

Not After

01-04-2020 23:59

Subject

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12-01-2016 00:00

Not After

11-01-2031 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23-12-2017 00:00

Not After

22-03-2029 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e5:23:8a:ba:28:6e:54:fb:f2:69:3d:80:01:af:92:ec:b6:f0:be:15:a2:0a:04:0e:28:ba:48:f8:85:62:15:66
Signer

Actual PE Digest

e5:23:8a:ba:28:6e:54:fb:f2:69:3d:80:01:af:92:ec:b6:f0:be:15:a2:0a:04:0e:28:ba:48:f8:85:62:15:66

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

15-08-2018 14:57
Valid: false

3e:a3:35:12:ce:47:a0:63:17:b0:2b:df:dc:4c:76:94:87:fb:fd:9d
Signer

Actual PE Digest

3e:a3:35:12:ce:47:a0:63:17:b0:2b:df:dc:4c:76:94:87:fb:fd:9d

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

15-08-2018 14:57
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msimg32

TransparentBlt

gdiplus

GdipCreatePen1
GdipSetPenMode
GdipSetPenColor
GdipCreateFromHDC
GdipDeletePen
GdipDeleteGraphics
GdipSetSmoothingMode
GdipDrawLine
GdipDrawArcI

msacm32

acmFormatDetailsW
acmFormatTagDetailsW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

winmm

timeSetEvent
sndPlaySoundW
timeGetTime

ole32

CLSIDFromString
CoRevokeClassObject
CoRegisterClassObject
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
OleUninitialize
CreateStreamOnHGlobal
GetHGlobalFromStream
CoRegisterInitializeSpy
CoRevokeInitializeSpy
StringFromGUID2
CoFreeUnusedLibraries
CoFreeLibrary
CoLoadLibrary
CoRegisterPSClsid
CoInitializeEx
CoCreateInstance
CoInitialize
CoGetClassObject
CoWaitForMultipleHandles

oleaut32

SysAllocStringLen
SysAllocString
SysFreeString

msvfw32

DrawDibEnd
DrawDibDraw
DrawDibRealize
DrawDibSetPalette
DrawDibClose
DrawDibOpen

shell32

SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetFolderPathW
ShellExecuteW
SHGetSpecialFolderPathW
SHGetFileInfoW
SHGetMalloc

kernel32

FindFirstFileW
FindNextFileW
CloseHandle
WaitForSingleObject
CreateThread
GetCurrentThreadId
OpenProcess
GetModuleHandleW
lstrcmpW
WideCharToMultiByte
CreateFileW
GetFileSize
OutputDebugStringA
GetLastError
SetLastError
InitializeCriticalSection
DeleteCriticalSection
SetEvent
ResetEvent
ReleaseMutex
CreateMutexW
CreateEventW
WaitForMultipleObjects
CreateFileMappingW
MapViewOfFile
GetModuleFileNameW
GetModuleHandleExW
LoadLibraryW
CreateActCtxW
ActivateActCtx
DeactivateActCtx
FindActCtxSectionStringW
QueryActCtxW
RaiseException
Sleep
GetCurrentProcessId
SuspendThread
ResumeThread
CreateProcessW
GetThreadContext
SetThreadContext
GetTickCount
FreeLibrary
GetProcAddress
lstrcmpA
DeleteFileW
MultiByteToWideChar
LockResource
DecodePointer
DuplicateHandle
InitializeCriticalSectionEx
GetCurrentProcess
ReadProcessMemory
WriteProcessMemory
UnmapViewOfFile
IsDebuggerPresent
OutputDebugStringW
FindResourceExW
LoadResource
SizeofResource
FindResourceW
MulDiv
lstrlenA
EnumResourceLanguagesW
GetLocaleInfoW
SetThreadLocale
GetUserDefaultUILanguage
GetSystemDefaultLCID
GetNumberFormatW
CreateDirectoryW
FileTimeToLocalFileTime
GetDiskFreeSpaceExW
GetFileInformationByHandle
GetFullPathNameW
GetLongPathNameW
ReadFile
RemoveDirectoryW
SetFileAttributesW
SetFilePointer
GetTempPathW
DeviceIoControl
GetLocalTime
FileTimeToDosDateTime
CopyFileW
MoveFileExW
VirtualQuery
GetModuleFileNameA
IsBadReadPtr
VerSetConditionMask
SetErrorMode
GetSystemInfo
GetNativeSystemInfo
VerifyVersionInfoW
FormatMessageW
GetACP
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GlobalReAlloc
GlobalSize
LoadLibraryExW
WriteFile
GetCurrentDirectoryW
FileTimeToSystemTime
GetDateFormatW
GetTimeFormatW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
LocalAlloc
LocalFree
SetEndOfFile
FreeResource
QueryPerformanceCounter
QueryPerformanceFrequency
GetWindowsDirectoryW
GetVolumeInformationW
GetSystemTime
SetFilePointerEx
SetCurrentDirectoryW
GetFileTime
TerminateProcess
WritePrivateProfileSectionW
SetDllDirectoryW
lstrcmpiA
FindClose
CompareFileTime
lstrcmpiW
GlobalFree
GlobalHandle
GlobalLock
GlobalUnlock
GlobalAlloc
DisableThreadLibraryCalls
LeaveCriticalSection
EnterCriticalSection
GetFileAttributesW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
WaitForSingleObjectEx
GetStartupInfoW
GetSystemTimeAsFileTime
InitializeSListHead
CreateSemaphoreW
GetCurrentThread
SetThreadPriority
VirtualFree
VirtualAlloc
ReleaseSemaphore
GetThreadPriority
GetVersionExW
lstrcpynW
lstrlenW
lstrcpynA

advapi32

RegSetValueExW
RegCreateKeyW
RegCreateKeyExW
RegEnumKeyW
RegFlushKey
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegCloseKey
RegDeleteValueW

user32

DialogBoxIndirectParamW
LoadAcceleratorsW
CreateAcceleratorTableW
LoadMenuW
LoadMenuIndirectW
GetMenuStringW
GetMenuState
EnableMenuItem
GetSubMenu
GetMenuItemID
GetMenuItemCount
ModifyMenuW
DeleteMenu
GetMenuItemInfoW
SetProcessDefaultLayout
LoadBitmapW
LoadCursorW
LoadIconW
LoadImageW
CharNextW
DrawTextW
wsprintfA
SetCursor
GetMonitorInfoW
EnumDisplayMonitors
GetDlgItemTextW
GetWindowTextLengthW
GetCursorPos
WinHelpW
GetMessagePos
GetMessageTime
DefWindowProcW
RegisterClassW
GetKeyState
GetCapture
SetCapture
ReleaseCapture
BeginPaint
EndPaint
SetCursorPos
CreateCaret
DestroyCaret
HideCaret
ShowCaret
SetCaretPos
ClientToScreen
GetSysColor
GetSysColorBrush
FillRect
EndDialog
GetSystemMetrics
GetSystemMenu
MessageBoxW
GetClassNameW
GetLastActivePopup
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
CreateDialogIndirectParamW
GetAsyncKeyState
SetParent
FindWindowExW
SystemParametersInfoW
GetClassInfoW
GetWindowPlacement
SetWindowPlacement
IsIconic
SetForegroundWindow
FindWindowW
EnumWindows
MonitorFromRect
SetRect
DrawEdge
DrawTextExW
FrameRect
GrayStringW
DrawFocusRect
DestroyCursor
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
SetActiveWindow
IntersectRect
GetWindowDC
MapVirtualKeyW
TranslateAcceleratorW
GetMenu
DrawMenuBar
InsertMenuItemW
SetMenuItemInfoW
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetKeyNameTextW
CreateDialogParamW
CreateWindowExW
PostMessageW
IsDialogMessageW
MsgWaitForMultipleObjects
GetActiveWindow
CharNextA
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
wsprintfW
GetDesktopWindow
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
EnableWindow
KillTimer
SetTimer
GetDlgCtrlID
GetDlgItem
MoveWindow
ShowWindow
DestroyWindow
SendMessageW
LoadStringW
UnregisterClassW
ReleaseDC
GetDC
GetWindow
EnumThreadWindows
GetParent
MapWindowPoints
ScreenToClient
GetWindowRect
GetWindowTextW
SetWindowTextW
InvalidateRect
UpdateWindow
IsWindowEnabled
GetFocus
SetFocus
IsDlgButtonChecked
CheckDlgButton
SetDlgItemTextW
BringWindowToTop
IsWindowVisible
SetWindowPos
DialogBoxParamW
IsChild
DrawFrameControl
MsgWaitForMultipleObjectsEx
PostThreadMessageW
CallWindowProcW
RegisterWindowMessageW
GetQueueStatus
IsWindow
LoadStringA

gdi32

SetTextColor
GetObjectW
ExtTextOutW
PatBlt
CreateFontW
CreatePen
MaskBlt
GetTextMetricsW
SetBkColor
GetStockObject
CreateSolidBrush
CreateBitmap
BitBlt
CreateBitmapIndirect
CreateDCW
SelectPalette
Rectangle
Polygon
MoveToEx
LineTo
GetPixel
TextOutW
SetStretchBltMode
StretchBlt
IntersectClipRect
GetTextExtentPointW
CreatePalette
SetBrushOrgEx
SetBkMode
SaveDC
RestoreDC
CreateDIBSection
PlgBlt
ExcludeClipRect
GetClipBox
CreateDIBitmap
GetTextFaceW
SetDCBrushColor
GetTextCharset
GetNearestColor
GetDCBrushColor
GetBkColor
CreatePatternBrush
GetTextExtentPoint32W
GetDeviceCaps
CreateFontIndirectW
StretchDIBits
SelectObject
DeleteObject
DeleteDC
SetDCPenColor
CreateCompatibleDC
RealizePalette
CreateCompatibleBitmap

shlwapi

StrCpyNW
StrCmpLogicalW
PathCombineW
StrStrIW
PathAppendW

msvcp140

?_Xout_of_range@std@@YAXPEBD@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xbad_alloc@std@@YAXXZ

errorreport

ErrorReport_StartTrapBypass
ErrorReport_EndTrapBypass
ErrorReport_UnmanagedException
ErrorReport_StopMonitoringProcess
ErrorReport_AddFile
ErrorReport_StartMonitoringProcess

vcruntime140

__vcrt_InitializeCriticalSectionEx
__std_terminate
memcmp
wcschr
wcsrchr
__intrinsic_setjmp
__std_type_info_destroy_list
__CxxFrameHandler3
longjmp
memmove
wcsstr
memcpy
memset
_purecall
__C_specific_handler

api-ms-win-crt-runtime-l1-1-0

_configure_narrow_argv
_initialize_narrow_environment
_beginthreadex
_initialize_onexit_table
_fpreset
_invalid_parameter_noinfo
_register_onexit_function
_execute_onexit_table
_invalid_parameter_noinfo_noreturn
_initterm
_crt_atexit
abort
_errno
terminate
_initterm_e
_crt_at_quick_exit
_cexit
_seh_filter_dll

api-ms-win-crt-string-l1-1-0

wcspbrk
wcsnlen
towlower
strncpy_s
iswalpha
iswdigit
iswspace
strcpy
iswxdigit
towupper
strcat
isspace
wcsncat_s
wcstok_s
wcstok
toupper
iswprint
wcsncpy_s

api-ms-win-crt-heap-l1-1-0

_recalloc
realloc
malloc
_msize
calloc
free

api-ms-win-crt-filesystem-l1-1-0

_wrename
_wsplitpath_s
_wsplitpath
_wremove
_wmakepath_s

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s
__stdio_common_vsnprintf_s
fread
__stdio_common_vswprintf
fwrite
__acrt_iob_func
__stdio_common_vfprintf_s
__stdio_common_vswscanf
ftell
fflush
fclose
__stdio_common_vsnwprintf_s
__stdio_common_vswprintf_s
__stdio_common_vfwprintf_s
_wfopen_s
_wfsopen

api-ms-win-crt-convert-l1-1-0

wcstod
_wtol
_wtoi64
_wtoi
wcstol
strtod

api-ms-win-crt-multibyte-l1-1-0

_mbsstr
_mbbtype

api-ms-win-crt-locale-l1-1-0

_getmbcp

api-ms-win-crt-math-l1-1-0

exp
log
cos
atan2
sin
sqrt
pow
floor
_isnan

api-ms-win-crt-time-l1-1-0

_gmtime64_s

vcomp140

_vcomp_barrier
_vcomp_for_static_simple_init
_vcomp_fork
_vcomp_for_static_end

Exports

Exports

??0CLog@@QEAA@AEBV0@@Z
??0CLog@@QEAA@XZ
??0CMappingOfSfMemoryToken@@QEAA@AEBU_sfmemorytoken@@K@Z
??0CMonitored_CoInitializeEx@@QEAA@$$QEAV0@@Z
??0CMonitored_CoInitializeEx@@QEAA@AEBV0@@Z
??0CMonitored_CoInitializeEx@@QEAA@XZ
??0COutOfProcessMemoryToken@@QEAA@AEAU_sfmemorytoken@@KH@Z
??0CSfLinkProjectInfo@@QEAA@XZ
??0CSfMenuManager@@QEAA@AEBV0@@Z
??0CSfMenuManager@@QEAA@XZ
??0CSfSkinContext@@QEAA@PEAUHSFLANG__@@PEAUHINSTANCE__@@K@Z
??0CSfXML_Document@@QEAA@XZ
??0_sfwaveformat_wfxcopyhelper@@QEAA@AEBU_sfwaveformat@@@Z
??0_sfwaveformat_wfxecopyhelper@@QEAA@AEBU_sfwaveformat@@@Z
??1CLog@@UEAA@XZ
??1CMappingOfSfMemoryToken@@QEAA@XZ
??1COutOfProcessMemoryToken@@QEAA@XZ
??1CSfLinkProjectInfo@@QEAA@XZ
??1CSfMenuManager@@UEAA@XZ
??1CSfSkinContext@@QEAA@XZ
??1CSfXML_Document@@QEAA@XZ
??4CLog@@QEAAAEAV0@AEBV0@@Z
??4CMappingOfSfMemoryToken@@QEAAAEAV0@AEBV0@@Z
??4CMonitored_CoInitializeEx@@QEAAAEAV0@$$QEAV0@@Z
??4CMonitored_CoInitializeEx@@QEAAAEAV0@AEBV0@@Z
??4COutOfProcessMemoryToken@@QEAAAEAV0@AEBV0@@Z
??4CSfLinkProjectInfo@@QEAAAEAV0@AEBV0@@Z
??4CSfMenuManager@@QEAAAEAV0@AEBV0@@Z
??4CSfXML_Document@@QEAAAEAV0@AEBV0@@Z
??4CXMLPrefs@@QEAAAEAV0@AEBV0@@Z
??8_sfwaveformat@@QEBA_NAEBU0@@Z
??8_sfwaveformat@@QEBA_NAEBUtWAVEFORMATEX@@@Z
??_7CLog@@6B@
??_7CMonitored_CoInitializeEx@@6B@
??_7CSfMenuManager@@6B@
?AcceleratorToString@CSfMenuManager@@AEAAJU_sfhotkey@@PEA_WH@Z
?AddButtons@CSfMenuManager@@IEAAXPEAUHMENU__@@H@Z
?AddRef@CMonitored_CoInitializeEx@@UEAAKXZ
?AllocAppTemplateData@CSfLinkProjectInfo@@QEAAPEAXK@Z
?AllocAttribute@CSfXML_Document@@AEAAJPEAUtagSFXML_ELEMENT@@PEAPEAUtagSFXML_ATTRIBUTE@@@Z
?AllocCommandLine@CSfLinkProjectInfo@@QEAAPEA_WK@Z
?AllocContent@CSfXML_Document@@AEAAJPEAUtagSFXML_ELEMENT@@W4tagXML_CONTENT_TYPE@@PEAPEAUtagSFXML_CONTENT@@@Z
?AllocCreatorAppInfo@CSfLinkProjectInfo@@QEAAPEA_WK@Z
?AllocCreatorAppWindowClassName@CSfLinkProjectInfo@@QEAAPEA_WK@Z
?AllocProjectData@CSfLinkProjectInfo@@QEAAPEAXK@Z
?AllocProjectPath@CSfLinkProjectInfo@@QEAAPEA_WK@Z
?AllocTemplateData@CSfLinkProjectInfo@@QEAAPEAXK@Z
?AllocTemplateName@CSfLinkProjectInfo@@QEAAPEA_WK@Z
?BitsPerSample@_sfwaveformat@@QEBAGXZ
?BuildAndWriteRawIxmlChunk@@YAJPEAXPEAU_tagSFBWF_Chunk@@_N@Z
?BuildRawBwfIxmlChunkGlobal@@YAJPEAU_tagSFBWF_Chunk@@PEAPEAEPEAIW4SFMETA_BWFINFO_TYPE@@3J@Z
?BytesPerSample@_sfwaveformat@@QEBAGXZ
?Close@CMappingOfSfMemoryToken@@QEAAXXZ
?CloseFile@CSfXML_Document@@QEAAXXZ
?CloseMemory@CSfXML_Document@@QEAAXXZ
?CoInitialize@CMonitored_CoInitializeEx@@QEAAJPEAX@Z
?CoInitializeEx@CMonitored_CoInitializeEx@@QEAAJPEAXK@Z
?CoUninitialize@CMonitored_CoInitializeEx@@QEAAXXZ
?DataSize@CMappingOfSfMemoryToken@@QEAAJXZ
?Dispose@CMappingOfSfMemoryToken@@QEAAXXZ
?Draw3DCheckmark@CSfMenuManager@@IEAAHPEAUHDC__@@AEBUtagRECT@@HPEAUHBITMAP__@@@Z
?DrawButton@CSfMenuManager@@IEAAXPEAUHDC__@@PEAU_IMAGELIST@@11HPEBUtagRECT@@PEAUtagDRAWITEMSTRUCT@@@Z
?DrawMenuArrow@CSfMenuManager@@IEAAXPEAUHDC__@@AEAUtagRECT@@HH@Z
?DrawMenuItem@CSfMenuManager@@IEAAXPEAUHDC__@@PEAUtagRECT@@PEAUtagDRAWITEMSTRUCT@@@Z
?DrawMenuText@CSfMenuManager@@IEAAXPEAUHDC__@@AEAUtagRECT@@PEB_WKH@Z
?DuplicateHandleFromProcessId@@YAJ_KKPEAPEAX@Z
?DuplicateHandleToProcessId@@YAJPEAXKPEAPEAX@Z
?ExtractIxmlContent@@YAJPEAXKPEAU_tagSFBWF_Chunk@@@Z
?FindChild@CSfXML_Document@@QEAAJPEAUtagSFXML_CONTENT@@PEB_WPEAPEAU2@@Z
?FindContentClose@CSfXML_Document@@QEAAJPEAX@Z
?FindContentFirst@CSfXML_Document@@QEAAPEAXPEAUtagSFXML_ELEMENT@@PEAPEAUtagSFXML_CONTENT@@@Z
?FindContentNext@CSfXML_Document@@QEAAJPEAXPEAPEAUtagSFXML_CONTENT@@@Z
?FitSpacersToMenuHeight@CSfMenuManager@@AEAAXPEAUHMENU__@@H@Z
?FormatTag@_sfwaveformat@@QEBAGXZ
?FreeAttribute@CSfXML_Document@@AEAAXPEAUtagSFXML_ATTRIBUTE@@@Z
?FreeButtons@CSfMenuManager@@IEAAXPEAUHMENU__@@H@Z
?FreeContent@CSfXML_Document@@AEAAXPEAUtagSFXML_CONTENT@@@Z
?FreeElement@CSfXML_Document@@AEAAXPEAUtagSFXML_ELEMENT@@@Z
?FreeMemory@CSfLinkProjectInfo@@QEAAXXZ
?FreeString@CSfXML_Document@@AEAAXPEA_W@Z
?GetAppTemplateData@CSfLinkProjectInfo@@QEAAPEAXXZ
?GetAppTemplateDataPtr@CSfLinkProjectInfo@@QEAAPEAPEAXXZ
?GetAppTemplateDataSize@CSfLinkProjectInfo@@QEAAKXZ
?GetAppTemplateDataSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetAttribute@CSfXML_Document@@QEAAJPEAUtagSFXML_ELEMENT@@PEB_WPEAPEAUtagSFXML_ATTRIBUTE@@@Z
?GetAttributeString@CSfXML_Document@@QEAAJPEAUtagSFXML_ELEMENT@@PEB_WPEA_WI@Z
?GetCharDataContent@CSfXML_Document@@QEAAJPEAUtagSFXML_ELEMENT@@PEAPEAUtagSFXML_CONTENT@@@Z
?GetChildContentString@CSfXML_Document@@QEAAJPEAUtagSFXML_CONTENT@@PEB_WPEA_WI@Z
?GetCommandLinePtr@CSfLinkProjectInfo@@QEAAPEAPEA_WXZ
?GetCommandLineSize@CSfLinkProjectInfo@@QEAAKXZ
?GetCommandLineSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetCommandLineW@CSfLinkProjectInfo@@QEAAHPEA_WH@Z
?GetCommandLineW@CSfLinkProjectInfo@@QEAAPEA_WXZ
?GetContentString@CSfXML_Document@@QEAAJPEAUtagSFXML_ELEMENT@@PEA_WI@Z
?GetContentStringReqLen@CSfXML_Document@@QEAAJPEAUtagSFXML_ELEMENT@@PEAI@Z
?GetCreatorAppInfo@CSfLinkProjectInfo@@QEAAHPEA_WH@Z
?GetCreatorAppInfo@CSfLinkProjectInfo@@QEAAPEA_WXZ
?GetCreatorAppInfoPtr@CSfLinkProjectInfo@@QEAAPEAPEA_WXZ
?GetCreatorAppInfoSize@CSfLinkProjectInfo@@QEAAKXZ
?GetCreatorAppInfoSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetCreatorAppWindowClassName@CSfLinkProjectInfo@@QEAAHPEA_WH@Z
?GetCreatorAppWindowClassName@CSfLinkProjectInfo@@QEAAPEA_WXZ
?GetCreatorAppWindowClassNamePtr@CSfLinkProjectInfo@@QEAAPEAPEA_WXZ
?GetCreatorAppWindowClassNameSize@CSfLinkProjectInfo@@QEAAKXZ
?GetCreatorAppWindowClassNameSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetEncodingInterface@CSfXML_Document@@AEAAJXZ
?GetIxmlCodingHistoryValueGlobal@@YAPEA_WPEAU_tagSFBWF_Chunk@@@Z
?GetIxmlInfoIndexForMetaIdxGlobal@@YAPEAU_tagIxml_Info@@PEAU_tagSFBWF_Chunk@@W4SFMETA_BWFINFO_TYPE@@@Z
?GetIxmlUnknownTagRoot@@YAPEAVLISTUNKNOWN@@PEAU_tagSFBWF_Chunk@@@Z
?GetLogFileName@CLog@@QEBAPEB_WXZ
?GetMemoryToken@COutOfProcessMemoryToken@@QEAAJAEAU_sfmemorytoken@@@Z
?GetMenuFont@CSfMenuManager@@IEAAPEAUHFONT__@@H@Z
?GetNodeLevelGlobal@@YAHPEAU_tagSFBWF_Chunk@@@Z
?GetPointer@CMappingOfSfMemoryToken@@QEAAJPEAPEAX@Z
?GetProjectData@CSfLinkProjectInfo@@QEAAJKPEAXPEAK@Z
?GetProjectData@CSfLinkProjectInfo@@QEAAPEAXXZ
?GetProjectDataPtr@CSfLinkProjectInfo@@QEAAPEAPEAXXZ
?GetProjectDataSize@CSfLinkProjectInfo@@QEAAKXZ
?GetProjectDataSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetProjectPath@CSfLinkProjectInfo@@QEAAHPEA_WH@Z
?GetProjectPath@CSfLinkProjectInfo@@QEAAPEA_WXZ
?GetProjectPathPtr@CSfLinkProjectInfo@@QEAAPEAPEA_WXZ
?GetProjectPathSize@CSfLinkProjectInfo@@QEAAKXZ
?GetProjectPathSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetRendererGuid@CSfLinkProjectInfo@@QEAAPEAU_GUID@@XZ
?GetTblIxmlBools@@YAPEAU_tagIxmlBools@@PEAH@Z
?GetTblIxmlInfo@@YAPEAU_tagIxml_Info@@PEAH@Z
?GetTblIxmlSpeedFPS@@YAPEAU_tagSpeedFPSenums@@PEAH@Z
?GetTblIxmlSpeedTimeCode@@YAPEAU_tagSpeedTimeCode@@PEAH@Z
?GetTblIxmlSyncPtFuncts@@YAPEAU_tagSyncPointFunctions@@PEAH@Z
?GetTblIxmlSyncPtTypes@@YAPEAU_tagSyncPointTypes@@PEAH@Z
?GetTblIxmlTrackFuncts@@YAPEAU_tagTrackFunctions@@PEAH@Z
?GetTemplateData@CSfLinkProjectInfo@@QEAAPEAXXZ
?GetTemplateDataPtr@CSfLinkProjectInfo@@QEAAPEAPEAXXZ
?GetTemplateDataSize@CSfLinkProjectInfo@@QEAAKXZ
?GetTemplateDataSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetTemplateName@CSfLinkProjectInfo@@QEAAHPEA_WH@Z
?GetTemplateName@CSfLinkProjectInfo@@QEAAPEA_WXZ
?GetTemplateNamePtr@CSfLinkProjectInfo@@QEAAPEAPEA_WXZ
?GetTemplateNameSize@CSfLinkProjectInfo@@QEAAKXZ
?GetTemplateNameSizePtr@CSfLinkProjectInfo@@QEAAPEAKXZ
?GetVersion@CSfLinkProjectInfo@@QEAAKXZ
?Hotkey2Class_Initialize@@YAHPEAUHINSTANCE__@@PEB_W@Z
?Hotkey2Class_Terminate@@YAHPEAUHINSTANCE__@@PEB_W@Z
?Hotkey2Inst_Init@@YAHPEAUtSFHOTKEY2INST@@JPEAUtagRECT@@PEAUHWND__@@IPEAX@Z
?Hotkey2_GetKeyDescription@@YAPEB_WPEA_WIGG@Z
?Hotkey2_GetKeyName@@YAIPEA_WIGGG@Z
?Init@CLog@@QEAAJPEB_WW4LOGFLAGS@1@HH@Z
?Init@CSfLinkProjectInfo@@QEAAXXZ
?Init@_sfwaveformat@@QEAAXKAEBUtWAVEFORMATEX@@@Z
?Init@_sfwaveformat@@QEAAXKW4SFSAMPLETYPE@@IKK@Z
?Init@_sfwaveformat_wfxplus@@QEAAXPEBUtWAVEFORMATEX@@W4SFWAVEFORMAT_COPY_DEST@@@Z
?InitAsWfx@_sfwaveformat@@QEAAXGKGGKK@Z
?Initialize@CMonitored_CoInitializeEx@@AEAAXXZ
?InsertColumnSpacers@CSfMenuManager@@AEAAHPEAUHMENU__@@@Z
?InsertSpacerMenuItem@CSfMenuManager@@AEAAHPEAUHMENU__@@H@Z
?IsCompressed@_sfwaveformat@@QEBA_NXZ
?IsInSfQueue@@YAHPEAUtSFQHEAD@@PEAUtSFQELM@@@Z
?IsKnownIxmlNodeGlobal@@YA_NPEA_W@Z
?IsLikelyCursorFilePtr@@YA_NPEBEI@Z
?IsLikelyCursorRESPtr@@YA_NPEBEI@Z
?IsSFLANGSTRINGID@@YA_NPEAUHSFLANG__@@PEB_W@Z
?IsSfGroupCursorPtr@@YA_NPEBEI@Z
?IsSpacerMenuItem@CSfMenuManager@@AEAAHPEAUtagMENUITEMINFOW@@@Z
?IsTypeMP2FindSyncByte@@YAHPEAXIPEB_W@Z
?MenuGetSysColor@CSfMenuManager@@AEAAKH@Z
?MenuGetSysColorBrush@CSfMenuManager@@AEAAPEAUHBRUSH__@@H@Z
?MenuMan_DeInit@CSfMenuManager@@QEAAXXZ
?MenuMan_GetAcceleratorInfo@CSfMenuManager@@MEAAHIPEAU_sfhotkey@@@Z
?MenuMan_GetImage@CSfMenuManager@@MEAAHPEAUHMENU__@@IPEAHPEAPEAU_IMAGELIST@@221@Z
?MenuMan_GetImageIndex@CSfMenuManager@@MEAAHI@Z
?MenuMan_HandleMessage@CSfMenuManager@@QEAAHPEAUHWND__@@I_K_JPEA_J@Z
?MenuMan_Init@CSfMenuManager@@QEAAJXZ
?MenuMan_InitMenuState@CSfMenuManager@@MEAAXPEAUHWND__@@PEAUHMENU__@@@Z
?MenuMan_SetFlags@CSfMenuManager@@QEAAII@Z
?MenuMan_SetInfo@CSfMenuManager@@QEAAXPEBU_sfmenuman_info@@@Z
?MenuMan_TranslateAccelerator@CSfMenuManager@@QEAAHPEAUHWND__@@PEAUHACCEL__@@PEAUtagMSG@@@Z
?OleInitialize@CMonitored_CoInitializeEx@@QEAAJPEAX@Z
?OleUninitialize@CMonitored_CoInitializeEx@@QEAAXXZ
?OnDrawItem@CSfMenuManager@@IEAAHPEAUtagDRAWITEMSTRUCT@@@Z
?OnMeasureItem@CSfMenuManager@@IEAAHPEAUtagMEASUREITEMSTRUCT@@@Z
?OpenFile@CLog@@AEAAJXZ
?OpenFile@CSfXML_Document@@QEAAJPEA_W@Z
?OpenMemory@CSfXML_Document@@QEAAJPEBX_J@Z
?ParseAttributes@CSfXML_Document@@AEAAJXZ
?ParseCDATA@CSfXML_Document@@AEAAJXZ
?ParseCharData@CSfXML_Document@@AEAAJXZ
?ParseComment@CSfXML_Document@@AEAAJXZ
?ParseEndTag@CSfXML_Document@@AEAAJXZ
?ParseFile@CSfXML_Document@@QEAAJXZ
?ParseLT@CSfXML_Document@@AEAAJXZ
?ParseMarkupDeclaration@CSfXML_Document@@AEAAJXZ
?ParsePI@CSfXML_Document@@AEAAJXZ
?ParseStartTag@CSfXML_Document@@AEAAJXZ
?ParseXMLDeclaration@CSfXML_Document@@AEAAJXZ
?Pointer@CMappingOfSfMemoryToken@@QEAAPEAXXZ
?PostInitialize@CMonitored_CoInitializeEx@@UEAAJJKK@Z
?PostUninitialize@CMonitored_CoInitializeEx@@UEAAJK@Z
?PreInitialize@CMonitored_CoInitializeEx@@UEAAJKK@Z
?PreUninitialize@CMonitored_CoInitializeEx@@UEAAJK@Z
?ProjectLinkReadMeta_LoadInfo@@YAJPEAUISfReadMeta@@PEAVCSfLinkProjectInfo@@PEAH@Z
?ProjectLinkRiff64_LoadInfo@@YAJPEAXPEAVCSfLinkProjectInfo@@PEAH@Z
?ProjectLinkRiff64_openAndWriteInfo@@YAJPEA_WPEAUISfReadMeta@@@Z
?ProjectLinkRiff_LoadInfo@@YAJPEAXPEAVCSfLinkProjectInfo@@PEAH@Z
?ProjectLinkRiff_openAndWriteInfo@@YAJPEA_WPEAUISfReadMeta@@H@Z
?QueryInterface@CMonitored_CoInitializeEx@@UEAAJAEBU_GUID@@PEAPEAX@Z
?ReadFilePropsFromFormatChunk64@@YAJPEAXPEAK11@Z
?ReadFilePropsFromFormatChunk@@YAJPEAXPEAK11@Z
?RefreshMenus@CSfMenuManager@@IEAAXPEAUHMENU__@@@Z
?Release@CMonitored_CoInitializeEx@@UEAAKXZ
?SFFileIO_CreateInstance@@YAJPEAPEAUISfFileIOMgrForApp@@K@Z
?SFFileIO_CreateInstance@@YAJPEAPEAUISfFileIOMgrForApp@@KPEAPEB_WJ@Z
?SFFileIO_CreateInstance@@YAJPEAPEAUISfFileIOMgrForApp@@KPEAU_SFFIO_KEYED_INFO@@@Z
?SFFileIO_CreateSurrogateManagerInstance@@YAJPEAPEAUISfFileIOMgrForApp@@KPEAU_SFFIO_INITIALIZATION_METRICS@@PEB_W@Z
?SFFileIO_IsSurrogateProcessId@@YAHK@Z
?SFSMPTE_DeccrementByFrame@@YAXPEAU_smpteval@@K@Z
?SFSMPTE_SmpteLikeToNanos@@YA_JNPEAU_smpteval@@@Z
?SetAppTemplateData@CSfLinkProjectInfo@@QEAAJPEAXK@Z
?SetAppTemplateDataToBuffer@CSfLinkProjectInfo@@QEAAXPEAXK@Z
?SetCommandLine@CSfLinkProjectInfo@@QEAAJPEB_W@Z
?SetCommandLineToBuffer@CSfLinkProjectInfo@@QEAAXPEA_WK@Z
?SetCreatorAppInfo@CSfLinkProjectInfo@@QEAAJPEB_W@Z
?SetCreatorAppInfoToBuffer@CSfLinkProjectInfo@@QEAAXPEA_WK@Z
?SetCreatorAppWindowClassName@CSfLinkProjectInfo@@QEAAJPEB_W@Z
?SetCreatorAppWindowClassNameToBuffer@CSfLinkProjectInfo@@QEAAXPEA_WK@Z
?SetIxmlCodingHistoryValueGlobal@@YAXPEAU_tagSFBWF_Chunk@@PEA_W@Z
?SetNodeLevelGlobal@@YAXPEAU_tagSFBWF_Chunk@@H@Z
?SetProjectData@CSfLinkProjectInfo@@QEAAJKPEAXK@Z
?SetProjectDataToBuffer@CSfLinkProjectInfo@@QEAAXPEAXK@Z
?SetProjectPath@CSfLinkProjectInfo@@QEAAJPEB_W@Z
?SetProjectPathToBuffer@CSfLinkProjectInfo@@QEAAXPEA_WK@Z
?SetRendererGuid@CSfLinkProjectInfo@@QEAAJU_GUID@@@Z
?SetTemplateData@CSfLinkProjectInfo@@QEAAJPEAXK@Z
?SetTemplateDataToBuffer@CSfLinkProjectInfo@@QEAAXPEAXK@Z
?SetTemplateName@CSfLinkProjectInfo@@QEAAJPEB_W@Z
?SetTemplateNameToBuffer@CSfLinkProjectInfo@@QEAAXPEA_WK@Z
?SetVersion@CSfLinkProjectInfo@@QEAAJK@Z
?SfAlignControlToOtherControl@@YAHPEAUHWND__@@I0IKPEAUtagRECT@@@Z
?SfAudio_AllocAndCopyWfx@@YAPEAUtWAVEFORMATEX@@AEBU_sfwaveformat@@W4SFWAVEFORMAT_COPY_DEST@@@Z
?SfAudio_AllocAndCopyWfx@@YAPEAUtWAVEFORMATEX@@PEBU_sfwaveformat@@W4SFWAVEFORMAT_COPY_DEST@@@Z
?SfAudio_ConvertToCanonicalWaveFormatTag@@YAII@Z
?SfAudio_Copy@@YAJPEBU_sfwaveformat@@PEAX0PEBXJM@Z
?SfAudio_Copy@@YAJPEBU_sfwaveformat@@PEAXPEBUtWAVEFORMATEX@@PEBXJM@Z
?SfAudio_Copy@@YAJPEBUtWAVEFORMATEX@@PEAXPEBU_sfwaveformat@@PEBXJM@Z
?SfAudio_CopyWfExt@@YAXPEAUWAVEFORMATEXTENSIBLE@@PEBUtWAVEFORMATEX@@W4SFWAVEFORMAT_COPY_DEST@@@Z
?SfAudio_CopyWfx@@YAXPEAUtWAVEFORMATEX@@IPEBU1@W4SFWAVEFORMAT_COPY_DEST@@@Z
?SfAudio_ExtractChannel@@YAJPEAXJPEBXW4SFSAMPLETYPE@@IJ@Z
?SfAudio_FillSilence@@YAJPEBU_sfwaveformat@@PEAXK@Z
?SfAudio_GeneralCopySfWaveFormat@@YAPEAU_sfwaveformat@@PEAU1@IAEBU1@W4SFWAVEFORMAT_COPY_DEST@@@Z
?SfAudio_GeneralCopyWfx@@YAPEAUtWAVEFORMATEX@@PEAU1@IAEBU_sfwaveformat@@W4SFWAVEFORMAT_COPY_DEST@@@Z
?SfAudio_GetAttribsText@@YAJPEBU_sfwaveformat@@PEA_WI@Z
?SfAudio_GetBitDepthText@@YAPEB_WPEBU_sfwaveformat@@PEA_WIH@Z
?SfAudio_GetBitDepthText@@YAPEB_WW4SFSAMPLETYPE@@PEA_WIH@Z
?SfAudio_GetChannelsText@@YAPEB_WIKPEA_WI@Z
?SfAudio_GetCompressionTypeName@@YAJIPEA_WIH@Z
?SfAudio_GetCopyChannelsFunction@@YAP6AXPEAXKKPEBXKKJ@ZPEBU_sfwaveformat@@PEBUtWAVEFORMATEX@@@Z
?SfAudio_GetCopyChannelsFunction@@YAP6AXPEAXKKPEBXKKJ@ZPEBUtWAVEFORMATEX@@PEBU_sfwaveformat@@@Z
?SfAudio_GetCopyFunction@@YAP6AXPEAXPEBXJM@ZPEBU_sfwaveformat@@PEBUtWAVEFORMATEX@@@Z
?SfAudio_GetCopyFunction@@YAP6AXPEAXPEBXJM@ZPEBUtWAVEFORMATEX@@PEBU_sfwaveformat@@@Z
?SfAudio_GetFormatTagExtensible@@YAHPEAUWAVEFORMATEXTENSIBLE@@PEAK@Z
?SfAudio_GetFormatText@@YAJPEBU_sfwaveformat@@PEA_WIK@Z
?SfAudio_GetSampleTypeText@@YAPEB_WPEBU_sfwaveformat@@PEA_WI@Z
?SfAudio_GetSampleTypeText@@YAPEB_WW4SFSAMPLETYPE@@PEA_WI@Z
?SfAudio_GetWaveFormatTag@@YAGPEBUtWAVEFORMATEX@@@Z
?SfAudio_InitWfx@@YAXPEAUtWAVEFORMATEX@@KW4SFSAMPLETYPE@@K@Z
?SfAudio_InitWfxFlex@@YAXPEAUtWAVEFORMATEX@@KKKKKI@Z
?SfAudio_IsCompressed@@YAHPEBUtWAVEFORMATEX@@@Z
?SfAudio_IsCompressedExtensible@@YAHPEAUWAVEFORMATEXTENSIBLE@@@Z
?SfAudio_MuteChannel@@YAJPEAXPEBU_sfwaveformat@@JJ@Z
?SfAudio_MuteChannel@@YAJPEAXW4SFSAMPLETYPE@@HJJ@Z
?SfCallFilePropGeneral_DlgProc@@YA_JPEAUHWND__@@I_K_J@Z
?SfCreateDialogTemplate@@YAPEBUDLGTEMPLATE@@PEAUHSFLANG__@@PEBU_sfdlghdrcreate@@QEBU_sfdlgctrlcreate@@@Z
?SfCreateDialogTemplateEx@@YAPEBUDLGTEMPLATE@@PEAUHSFLANG__@@PEBU_sfdlghdrcreateex@@QEBU_sfdlgctrlcreateex@@PEAG@Z
?SfCreateStreamFromFile@@YAJPEAXPEAPEAUIStream@@@Z
?SfCreateStreamFromMemory@@YAJPEAXKKPEAPEAUIStream@@H@Z
?SfCreateStreamFromMemory@@YAJPEAXT_ULARGE_INTEGER@@1PEAPEAUIStream@@H@Z
?SfDialogTemplateFromRCID@@YAJPEAUHSFLANG__@@PEB_WPEAPEBUDLGTEMPLATE@@@Z
?SfDibFromPng@@YAJPEAPEAUtagBITMAPINFOHEADER@@PEBXJ@Z
?SfDrawThemeBackground@tXPTHEME@@QEBAJW4SFXPTHEME_CONTROL@@PEAUHDC__@@HHPEBUtagRECT@@2@Z
?SfDrawThemeIcon@tXPTHEME@@QEBAJW4SFXPTHEME_CONTROL@@PEAUHDC__@@HHPEBUtagRECT@@PEAU_IMAGELIST@@H@Z
?SfDrawThemeText@tXPTHEME@@QEBAJW4SFXPTHEME_CONTROL@@PEAUHDC__@@HHPEB_WHKKPEBUtagRECT@@@Z
?SfErrorHandler_AddErrorTable@@YAJPEAUHSFLANG__@@PEAU_sferror_table_rcid@@I@Z
?SfErrorHandler_AddErrorTable@@YAJPEAU_sferror_table@@I@Z
?SfErrorHandler_DumpHex@@YAIPEADIPEAXI@Z
?SfErrorHandler_DumpHexDWords@@YAIPEADIPEFAKJ@Z
?SfErrorHandler_GetErrorMessage@@YAPEA_W_KJPEB_W@Z
?SfFMMeta64_UpdateMetaStream@@YAJPEA_WKPEAUISfReadMeta@@W4SFFIO_TYPESOFMETADATA@@2@Z
?SfFMMeta64_fillBeatMarkersFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillBeatmapInfoFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillBeatmapMarkersFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillCDTracksFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillCuesFromFile@@YAJPEAXKPEAUtSFLIST@@1@Z
?SfFMMeta64_fillDetectedBeatsFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillDisplistFromFile@@YAJPEAXPEAPEAXPEAK@Z
?SfFMMeta64_fillKeyframeLocFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillPlaylistFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillSamplerinfoFromFile@@YAJPEAXPEAPEAXPEAK@Z
?SfFMMeta64_fillScottFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillStretchInfo2FromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_fillSummaryFromFile@@YAJPEAXPEAUtSFLIST@@1@Z
?SfFMMeta64_fillTriggerlistFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta64_openAndWriteMetaStream@@YAJPEA_WHKPEAUISfReadMeta@@W4SFFIO_TYPESOFMETADATA@@2@Z
?SfFMMeta_AttachFileToExternList@@YAJPEAXPEB_W@Z
?SfFMMeta_ChangeAttachedFilename@@YAJPEB_W0@Z
?SfFMMeta_CreateMetaName@@YAJPEB_WPEA_WJH@Z
?SfFMMeta_DeleteMetaChunks@@YAJPEA_W@Z
?SfFMMeta_DeleteMetaChunksEx@@YAJPEA_WW4SFFIO_TYPESOFMETADATA@@H@Z
?SfFMMeta_IsFilePathToXDSVolume@@YAHQEB_W@Z
?SfFMMeta_IsMetaFile@@YAHPEB_W0@Z
?SfFMMeta_LookForMarkers@@YAJPEA_W@Z
?SfFMMeta_UpdateMetaStream2@@YAJPEA_WKPEAUISfReadMeta@@W4SFFIO_TYPESOFMETADATA@@2@Z
?SfFMMeta_UpdateMetaStream@@YAJPEA_WHKPEAUISfReadMeta@@@Z
?SfFMMeta_UpdateMetaStreamEx@@YAJPEA_WHKPEAUISfReadMeta@@W4SFFIO_TYPESOFMETADATA@@@Z
?SfFMMeta_WriteMetaStream@@YAJPEA_WHKPEAUISfReadMeta@@@Z
?SfFMMeta_WriteMetaStreamEx@@YAJPEA_WHKPEAUISfReadMeta@@W4SFFIO_TYPESOFMETADATA@@@Z
?SfFMMeta_fillBeatMarkersFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillBeatmapInfoFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillBeatmapMarkersFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillCDInfoFromFile@@YAJPEAXPEAPEAXPEAKH@Z
?SfFMMeta_fillCDTracksFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillCuesFromFileEx@@YAJPEAXKPEAUtSFLIST@@1@Z
?SfFMMeta_fillDetectedBeatsFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillDisplistFromFile@@YAJPEAXPEAPEAXPEAK@Z
?SfFMMeta_fillKeyframeLocFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillPlaylistFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillSamplerinfoFromFileEx@@YAJPEAXPEAPEAXPEAKHK@Z
?SfFMMeta_fillScottFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillStretchInfo2FromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillSummaryFromFileEx@@YAJPEAXPEAUtSFLIST@@1@Z
?SfFMMeta_fillTriggerlistFromFile@@YAJPEAXPEAUtSFLIST@@@Z
?SfFMMeta_fillXDCAMmetaFromFileEx@@YAJPEAXPEAUtSFLIST@@1@Z
?SfFMMeta_isXDCAMavi@@YAHPEAX@Z
?SfFMMeta_openAndWriteMetaStream@@YAJPEA_WHHKPEAUISfReadMeta@@@Z
?SfFMMeta_openAndWriteMetaStreamEx@@YAJPEA_WHKPEAUISfReadMeta@@W4SFFIO_TYPESOFMETADATA@@2@Z
?SfFileProperties@@YAHPEAUHWND__@@PEAUtPSFFILEPROPINFO@@K@Z
?SfFindAtom@@YAHPEAXK_K1PEA_K2@Z
?SfFindDialogTemplateInResPool@@YAPEBUDLGTEMPLATE@@PEBU_SFRESPOOL@@PEAIPEB_WK@Z
?SfFindResourceInResPool@@YAPEAXPEBU_SFRESPOOL@@PEAIPEB_W2KPEAK@Z
?SfFioFindLockedReader@@YAJPEB_WPEAUISfFileIOMgrForApp@@PEAPEAUISfReadFileClass@@@Z
?SfFioFindUninitializedReader@@YAJPEB_WPEAUISfFileIOMgrForApp@@PEAPEAUISfReadFileClass@@@Z
?SfFioMgr_EditTemplate@@YAJPEAUISfFileIOMgrForApp@@PEAU_FIOEDITTEMPLATE@@@Z
?SfFioValidateTemplate@@YAJPEAUHWND__@@PEAUISfFileIOMgrForApp@@KHPEAUtagSFTEMPLATExV2@@W4SFFIO_TEMPLATEVALIDATE@@W4SF_FIO_VALIDATETEMPLATE_CONTEXT@@PEAH5HH@Z
?SfFio_AddTemplatesToListFromIStream@@YAJPEAUtSFLIST@@PEAUIStream@@@Z
?SfFio_BuildMoniker@@YAJPEA_WIPEB_W11@Z
?SfFio_BuildUniqueExtensionList@@YAJPEAUISfFileIOMgrForApp@@PEAUtSFLIST@@KKPEBU_GUID@@KK@Z
?SfFio_BuildUniqueExtensionList@@YAJPEAUtSFLIST@@PEAUISfFioFilterBuilder2@@PEBU_GUID@@KK@Z
?SfFio_ConstrainValueToTable@@YAKKPEBKIHPEAH@Z
?SfFio_ConvertToV2ifV1@@YAJPEAUISfReadFile@@JPEAU_SFFILESTREAMFORMATINFOv2@@I@Z
?SfFio_CopyAndFreeBstrArray@@YAJPEAPEA_WKPEAPEB_WPEB_W@Z
?SfFio_CopyBstrArray@@YAJPEAPEA_WKPEAPEB_WPEB_W@Z
?SfFio_CopyTemplate@@YAJPEAPEAUtagSFTEMPLATExV2@@PEBU1@@Z
?SfFio_CountSetBits@@YAJK@Z
?SfFio_CreatePrivateTemplateCache@@YAJPEAUISfFileIOManager@@PEAUISfRenderFileClass@@PEAPEAVCSfPrivateTemplateCache@@@Z
?SfFio_CreatePrivateTemplateCache@@YAJPEAUISfRenderFileClass@@PEAPEAVCSfPrivateTemplateCache@@@Z
?SfFio_DeleteAppLastUsedTemplate@@YAJPEAUISfRenderFileClass@@PEB_W@Z
?SfFio_DisclosePluginProblems@@YAXPEAUISfReadFileClass@@PEAUHWND__@@@Z
?SfFio_DisclosePluginProblems@@YAXPEAUISfRenderFileClass@@PEAUHWND__@@@Z
?SfFio_FillBstrArrayFromStringResourceMap@@YAJPEAUHSFLANG__@@PEBW4SFFIO_FILECLASS_INFO_TEXT@@KPEAPEA_WPEBUFILECLASS_INFO_STRING_MAP@@KPEB_W@Z
?SfFio_FillBstrArrayFromStringResources@@YAJPEAUHSFLANG__@@PEAPEB_WKPEAPEA_W@Z
?SfFio_FillStreamFormatInfo@@YAJPEAUISfReadStream@@W4SFFILESTREAMTYPE@@PEAU_SFFILESTREAMFORMATINFOv2@@@Z
?SfFio_FreeBstrArray@@YAJPEAPEA_WK@Z
?SfFio_GenerateTemplate@@YAJPEAPEAUtagSFTEMPLATExV2@@PEAPEAUISfReadStream@@IPEAKI@Z
?SfFio_GenerateTemplate@@YAJPEAPEAUtagSFTEMPLATExV2@@PEAPEBU_SFFILESTREAMFORMATINFOv2@@1IIPEB_W2@Z
?SfFio_GetBitratesForRangeOfPresets@@YAJPEAUISfRenderFileClass@@JJKPEA_J@Z
?SfFio_GetDefaultRendererExtension@@YAJPEAUISfRenderFileClass@@PEA_WI@Z
?SfFio_GetFilteredTemplateList@@YAJPEAUISfFileIOMgrForApp@@PEAUISfRenderFileClass@@PEAPEAUtSFLIST@@KP6A_NPEBUtagSFTEMPLATExV2@@PEAX@Z4H@Z
?SfFio_GetGlobalTemplateCache@@YAJPEAUISfFileIOManager@@PEAUISfRenderFileClass@@PEAPEAVCSfGlobalTemplateCache@@@Z
?SfFio_GetMetric@@YAJPEAUISfFileIOManager@@HJJJ@Z
?SfFio_GetMetric@@YAKPEAUISfFileIOManager@@HK@Z
?SfFio_GetMetric@@YAKPEAUISfFileIOManager@@HKKK@Z
?SfFio_GetMetricBool@@YAHPEAUISfFileIOManager@@HH@Z
?SfFio_GetPluginPath@@YAJPEAUISfRenderFileClass@@PEA_WI@Z
?SfFio_GetRendererExtensionsList@@YAJPEAUISfRenderFileClass@@PEA_WI@Z
?SfFio_GetRendererOpenDialogFilterString@@YAJPEAUISfRenderFileClass@@PEA_WIH@Z
?SfFio_GetTemplateBitrate@@YAJPEBUtagSFTEMPLATExV2@@KPEA_J@Z
?SfFio_GetTemplateByGuid@@YAPEAUtagSFTEMPLATExV2@@PEAUISfRenderFileClass@@AEBU_GUID@@@Z
?SfFio_GetTemplateByName@@YAPEAUtagSFTEMPLATExV2@@PEAUISfRenderFileClass@@PEB_W@Z
?SfFio_GetTemplateByName@@YAPEAUtagSFTEMPLATExV2@@PEAUtSFLIST@@PEB_W@Z
?SfFio_GetTemplateByNameNoCopy@@YAPEAUtagSFTEMPLATExV2@@PEAUtSFLIST@@PEB_WPEAJ@Z
?SfFio_GetTemplateDataCRC32@@YAKPEBUtagSFTEMPLATExV2@@H@Z
?SfFio_GetTemplateInfo@@YAJPEBUtagSFTEMPLATExV2@@KPEAXIW4SFFIO_TEMPLATE_INFO@@@Z
?SfFio_GetTemplateList@@YAJPEAUISfFileIOMgrForApp@@KPEAPEAUtSFLIST@@@Z
?SfFio_GetTemplateList@@YAJPEAUISfRenderFileClass@@PEAPEAUtSFLIST@@@Z
?SfFio_InitBasicAudioTemplate@@YAJAEAUtagSFTEMPLATExV2@@PEBU_sfwaveformat@@@Z
?SfFio_InitBasicTemplate@@YAJAEAUtagSFTEMPLATExV2@@JPEBU_sfwaveformat@@JPEBUtagBITMAPINFOHEADER@@NW4SFINTERLACETYPE@@NN@Z
?SfFio_InitGUIDFromTemplateMD5DataHash@@YAJPEAU_GUID@@PEBUtagSFTEMPLATExV2@@H@Z
?SfFio_IsPluginAccessible@@YAHPEAUISfReadFileClass@@@Z
?SfFio_IsPluginAccessible@@YAHPEAUISfRenderFileClass@@@Z
?SfFio_IsTemplateAPreset@@YAKPEAUISfRenderFileClass@@PEAUtagSFTEMPLATExV2@@PEAJ@Z
?SfFio_IsUpliftedV1Template@@YAHPEBUtagSFTEMPLATExV2@@@Z
?SfFio_LoadAppLastUsedTemplate@@YAJPEAUISfRenderFileClass@@PEB_WPEAPEAUtagSFTEMPLATExV2@@@Z
?SfFio_LoadRawUserTemplate@@YAJPEAUISfRenderFileClass@@PEB_WPEAPEAUtagSFTEMPLATExV2@@@Z
?SfFio_LoadTemplateData@@YAJPEAPEAUtagSFTEMPLATExV2@@PEAUIStream@@KPEAUISfRenderFileClass@@@Z
?SfFio_LoadTemplateData@@YAJPEAPEAUtagSFTEMPLATExV2@@PEAX@Z
?SfFio_LoadTemplateDataV1@@YAJPEAUSFTEMPLATExV1@@PEAUIStream@@KH@Z
?SfFio_MakeProjectDefaultTemplate@@YAJPEAUISfRenderFileClass@@PEBUtagSFTEMPLATExV2@@PEAPEAU2@@Z
?SfFio_MakeTemplate@@YAJPEAPEAUtagSFTEMPLATExV2@@KPEBU1@KIPEB_W2@Z
?SfFio_MakeTemplateDescription@@YAJPEBUtagSFTEMPLATExV2@@KPEA_WI@Z
?SfFio_MakeTemplateListIStream@@YAJPEAUtSFLIST@@PEAPEAUIStream@@@Z
?SfFio_MapInfoIdToStringId@@YAPEB_WW4SFFIO_FILECLASS_INFO_TEXT@@PEBUFILECLASS_INFO_STRING_MAP@@K@Z
?SfFio_MediaInfo_Close@@YAJPEAXPEAUISfFileIOManager@@@Z
?SfFio_MediaInfo_GetAudioProperty@@YAJPEAXPEAUISfFileIOManager@@PEB_WPEADK@Z
?SfFio_MediaInfo_GetVideoProperty@@YAJPEAXPEAUISfFileIOManager@@PEB_WPEADK@Z
?SfFio_MediaInfo_Open@@YAJPEAUISfFileIOManager@@PEB_WPEAPEAX@Z
?SfFio_ParseMoniker@@YAJPEB_WPEA_WI1I@Z
?SfFio_PostSaveDialog@@YAJPEAUISfRenderFileClass@@PEAUHWND__@@PEA_WHPEAPEAUtagSFTEMPLATExV2@@@Z
?SfFio_ReleaseGlobalTemplateCache@@YAJPEAVCSfGlobalTemplateCache@@@Z
?SfFio_ReleaseTemplate@@YAXPEAUISfFileIOMgrForApp@@PEAUtagSFTEMPLATExV2@@@Z
?SfFio_ReleaseTemplate@@YAXPEAUISfRenderFileClass@@PEAUtagSFTEMPLATExV2@@@Z
?SfFio_ReleaseTemplate@@YAXPEAUtagSFTEMPLATExV2@@@Z
?SfFio_ReleaseTemplateList@@YAJPEAUISfFileIOMgrForApp@@KPEAUtSFLIST@@@Z
?SfFio_ReleaseTemplateList@@YAJPEAUISfFileIOMgrForApp@@PEAUISfRenderFileClass@@PEAUtSFLIST@@@Z
?SfFio_ReleaseTemplateList@@YAJPEAUtSFLIST@@@Z
?SfFio_SaveAppLastUsedTemplate@@YAJPEAUISfRenderFileClass@@PEBUtagSFTEMPLATExV2@@PEB_WH@Z
?SfFio_SetMetric@@YAJPEAUISfFileIOManager@@HK@Z
?SfFio_SetPluginCandidateDLLs@@YAJPEAPEAUtSFLIST@@PEAPEB_WJ@Z
?SfFio_SetPluginCandidateDLLs@@YAJPEAPEAUtSFLIST@@PEAU1@@Z
?SfFio_SetStreamFormatInfo@@YAXPEAU_SFFILESTREAMFORMATINFOv2@@PEBU_sfwaveformat@@PEBUtSFAUDIOEXTENSION@@_J@Z
?SfFio_SetStreamFormatInfo@@YAXPEAU_SFFILESTREAMFORMATINFOv2@@PEBUtWAVEFORMATEX@@PEBUtSFAUDIOEXTENSION@@_J@Z
?SfFio_SetStreamFormatInfo@@YAXPEAU_SFFILESTREAMFORMATINFOv2@@PEBUtagBITMAPINFOHEADER@@PEBUtSFVIDEOEXTENSION@@_J@Z
?SfFio_SetTemplate@@YAJAEAPEAUtagSFTEMPLATExV2@@PEBU1@K@Z
?SfFio_SkipDescriptionInTemplateNotesText@@YAPEB_WPEB_W@Z
?SfFixTrashedW64@@YAJPEAXPEAU_sfwaveformat@@_J@Z
?SfFixTrashedWav@@YAJPEAXPEAU_sfwaveformat@@K@Z
?SfFourCCToStringCPU@@YAXHPEA_W@Z
?SfGetDialogSize@@YAHPEAUHSFLANG__@@PEBU_sfdlghdrcreate@@PEAUtagSIZE@@@Z
?SfGetDialogSizeEx@@YAHPEAUHSFLANG__@@PEBU_sfdlghdrcreateex@@PEAUtagSIZE@@@Z
?SfGetDllVersion@@YA_JPEB_W@Z
?SfGetFileNameForWriteDlg@@YAJPEAUHWND__@@PEB_WPEA_WI1PEAHPEAUHSFMETRIC__@@K2KHH1@Z
?SfGetFileNameForWriteDlgEx@@YAJPEAUHWND__@@PEB_WPEA_WI1PEAHPEAUHSFMETRIC__@@K2KHP6A_K0I_K_J@Z1PEAUHINSTANCE__@@PEAXKH1@Z
?SfGetProjectLinkInfo@@YAJPEA_WIPEAUtSFLAUNCHAPPINFO@@PEAVCSfLinkProjectInfo@@PEAH@Z
?SfGetShellLink@@YAJPEAPEAUIShellLinkW@@@Z
?SfGetString@@YAPEB_WPEAUHSFLANG__@@I@Z
?SfGetString@@YAPEB_WPEAUHSFLANG__@@PEBQEB_W@Z
?SfGetStringSmart@@YAPEB_WPEAUHSFLANG__@@PEB_W@Z
?SfGetThemeBackgroundContentRect@tXPTHEME@@QEBAJW4SFXPTHEME_CONTROL@@PEAUHDC__@@HHPEBUtagRECT@@PEAU4@@Z
?SfGetThemeBackgroundExtentRect@tXPTHEME@@QEBAJW4SFXPTHEME_CONTROL@@PEAUHDC__@@HHPEBUtagRECT@@PEAU4@@Z
?SfGetThemeFont@tXPTHEME@@QEAAJW4SFXPTHEME_CONTROL@@PEAUHDC__@@HHHPEAUtagLOGFONTW@@@Z
?SfGetThemeTextExtent@tXPTHEME@@QEAAJW4SFXPTHEME_CONTROL@@PEAUHDC__@@HHPEB_WHKPEBUtagRECT@@PEAU4@@Z
?SfInitializeWav64@@YAJPEB_WPEAU_sfwaveformat@@K@Z
?SfInitializeWav64WithJunk@@YAJPEB_WPEAU_sfwaveformat@@K_J@Z
?SfInitializeWav@@YAJPEB_WPEAU_sfwaveformat@@K@Z
?SfInitializeWavWithJunk@@YAJPEB_WPEAU_sfwaveformat@@KK@Z
?SfInsertW64Header@@YAJPEAXPEAU_sfwaveformat@@_J2@Z
?SfInsertWavHeader@@YAJPEAXPEAU_sfwaveformat@@KK@Z
?SfIsKnownSonyApp@@YAHPEB_W@Z
?SfIsLnkFile@@YAHPEB_WPEA_WIKPEAUtSFSHORTCUTINFO@@@Z
?SfIsQuicklyIdentifiableMediaFileFormat@@YAHPEAUIStream@@KPEAW4SFFILEID_IDENTIFIED_TYPE@@@Z
?SfIsQuicklyIdentifiableMediaFileFormat@@YAHPEAXKKPEAW4SFFILEID_IDENTIFIED_TYPE@@@Z
?SfIsQuicklyIdentifiableMediaFileFormat@@YAHPEAXKPEAW4SFFILEID_IDENTIFIED_TYPE@@@Z
?SfIsQuicklyIdentifiableMediaFileFormat@@YAHPEAXPEB_WKPEAW4SFFILEID_IDENTIFIED_TYPE@@@Z
?SfIsQuicklyIdentifiableMediaFileFormat@@YAHPEB_WKPEAW4SFFILEID_IDENTIFIED_TYPE@@@Z
?SfIsQuicklyIdentifiableMediaFileFormat@@YAJPEAUSFFILEIDINFO@@PEAH@Z
?SfIsThemeBackgroundPartiallyTransparent@tXPTHEME@@QEBAHW4SFXPTHEME_CONTROL@@HH@Z
?SfLaunchApp_ProjLink@@YAJPEAUHWND__@@PEAUtSFLAUNCHAPPINFO@@@Z
?SfLaunch_GetAppPathForExt@@YAJPEB_WPEA_WK@Z
?SfList_ConvertToInPlace@@YAJPEAPEAUtSFLIST@@PEAU1@@Z
?SfLoadPngDib@@YAJPEAUHSFLANG__@@PEB_WKPEAPEAUtagBITMAPINFOHEADER@@@Z
?SfLoadString@@YAHPEAUHSFLANG__@@IPEA_WH@Z
?SfLoadString@@YAHPEAUHSFLANG__@@PEBQEB_WPEA_WH@Z
?SfMapDialogTemplate@@YAJPEBUDLGTEMPLATE@@JPEAPEAU_sfdlghdrcreateex@@@Z
?SfMsgBoxSetHook@@YAHP6AH_KPEAUHWND__@@PEB_W2I@ZK@Z
?SfOverlay_GetCompositor@@YAPEBUtSFOVERLAY@@H@Z
?SfOverlay_GetCompositor@@YAPEBUtSFOVERLAY@@PEAU_GUID@@@Z
?SfOverlay_GetCompositorCount@@YAHXZ
?SfOverlay_GetCompositorGUID@@YAHHPEAU_GUID@@@Z
?SfOverlay_GetCompositorIndex@@YAHPEAU_GUID@@@Z
?SfPerfGetCpuClocks@@YA_KXZ
?SfPerfMapHintAlgorithm@@YAHW4SfPerfHintAlgorithm@@@Z
?SfPerfMapStatus@@YAJH@Z
?SfPerfStatusToHRESULT@@YAJW4SfPerfStatus@@@Z
?SfPerf_Initialize@@YAJXZ
?SfPerfsConj_64fc_I@@YAJPEAXH@Z
?SfPerfsDeinterleave_32f@@YAJPEBMHHPEAPEAM@Z
?SfPerfsFFTFree_C_32fc@@YAJPEAX@Z
?SfPerfsFFTFree_R_64f@@YAJPEAX@Z
?SfPerfsFFTFwd_CToC_32fc@@YAJPEBXPEAX0PEAE@Z
?SfPerfsFFTFwd_RToPerm_64f_I@@YAJPEANPEBXPEAE@Z
?SfPerfsFFTGetBufSize_C_32fc@@YAJPEBXPEAH@Z
?SfPerfsFFTGetBufSize_R_64f@@YAJPEAXPEAH@Z
?SfPerfsFFTInitAlloc_C_32fc@@YAJPEAPEAXHHW4SfPerfHintAlgorithm@@@Z
?SfPerfsFFTInitAlloc_R_64f@@YAJPEAPEAXHHW4SfPerfHintAlgorithm@@@Z
?SfPerfsFFTInv_CToC_32fc@@YAJPEBXPEAX0PEAE@Z
?SfPerfsFFTInv_PermToR_64f_I@@YAJPEANPEBXPEAE@Z
?SfPerfsFree@@YAXPEAX@Z
?SfPerfsMalloc_32f@@YAPEAMH@Z
?SfPerfsMalloc_8u@@YAPEAEH@Z
?SfPerfsMinMax_32f@@YAJPEBMHPEAM1@Z
?SfPerfsMinMax_64f@@YAJPEBNHPEAN1@Z
?SfPerfsMul_64fc_I@@YAJPEBXPEAXH@Z
?SfPerfsRandUniform_Direct_32f@@YAJPEAMHMMPEAI@Z
?SfPerfsSqrt_32f@@YAJPEBMPEAMH@Z
?SfPicture_CreateMeta@@YAPEAXW4_PICTUREMETADATATYPE_@@PEA_W1KPEAE@Z
?SfPicture_GetDescription@@YAPEB_WPEAX@Z
?SfPicture_GetDescriptionByteCount@@YAKPEAX@Z
?SfPicture_GetMetaSizeNeeded@@YAKPEA_W0K@Z
?SfPicture_GetMimeType@@YAPEB_WPEAX@Z
?SfPicture_GetMimeTypeByteCount@@YAKPEAX@Z
?SfPicture_GetPictureData@@YAPEAEPEAX@Z
?SfPicture_GetPictureDataSize@@YAKPEAX@Z

Sections

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5.5MB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 756KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

sflang_t
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

strings
Size: 756KB - Virtual size: 755KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/so4_blacklist_vp15.xml
.xml
data/so4mediainfolib.DLL
.dll windows x64

c3fe59629fa4fcce666c8895f97bd5bb

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

7f:7a:98:21:56:28:d3:ac:30:a9:ea:87:35:c1:ba:22
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

03-03-2017 00:00

Not After

01-04-2020 23:59

Subject

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7f:7a:98:21:56:28:d3:ac:30:a9:ea:87:35:c1:ba:22
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

03-03-2017 00:00

Not After

01-04-2020 23:59

Subject

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12-01-2016 00:00

Not After

11-01-2031 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23-12-2017 00:00

Not After

22-03-2029 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

bd:8d:de:ee:10:26:99:71:0c:e7:ff:9c:2a:a2:d5:3e:ef:f5:14:1d:ca:5d:9f:d1:1c:5c:32:11:5d:19:64:27
Signer

Actual PE Digest

bd:8d:de:ee:10:26:99:71:0c:e7:ff:9c:2a:a2:d5:3e:ef:f5:14:1d:ca:5d:9f:d1:1c:5c:32:11:5d:19:64:27

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

15-08-2018 14:57
Valid: false

07:b6:c8:23:be:fb:7b:dc:4f:85:8d:d4:c1:6d:21:0b:02:8d:2e:01
Signer

Actual PE Digest

07:b6:c8:23:be:fb:7b:dc:4f:85:8d:d4:c1:6d:21:0b:02:8d:2e:01

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

15-08-2018 14:57
Valid: false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

LocalFree
FormatMessageA
MultiByteToWideChar
WideCharToMultiByte
CreateFileW
GetFileAttributesW
GetFileSizeEx
GetFileTime
ReadFile
SetFilePointer
SetFilePointerEx
WriteFile
CloseHandle
CopyFileW
GetTimeZoneInformation
Sleep
GetProcAddress
LoadLibraryW
GetFullPathNameW
FindNextFileW
FindFirstFileW
FindClose
ResumeThread
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer

user32

wsprintfW

msvcr120

__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
__crtCapturePreviousContext
__crtCaptureCurrentContext
__crtTerminateProcess
__crtUnhandledException
__crt_debugger_hook
_vsnprintf_s
?terminate@@YAXXZ
_initterm_e
_initterm
_malloc_crt
_amsg_exit
__CppXcptFilter
_onexit
__C_specific_handler
__dllonexit
_calloc_crt
_unlock
_lock
malloc
free
qsort
floorf
log
atan2f
strrchr
powf
strncmp
_vscprintf
vfprintf
isspace
isdigit
isalpha
log10f
log10
ceil
logf
ceilf
pow
atoi
atof
strcmp
strchr
memcmp
_time64
strftime
getenv
_set_FMA3_enable
memset
tolower
toupper
_gmtime64
wcsncpy
strncpy
memcpy
__CxxFrameHandler3
_CxxThrowException
strerror
_purecall
fclose
fflush
setvbuf
fsetpos
fgetpos
_fseeki64
fwrite
_unlock_file
_lock_file
strcpy_s
??0bad_cast@std@@QEAA@AEBV01@@Z
??1bad_cast@std@@UEAA@XZ
??0bad_cast@std@@QEAA@PEBD@Z
?what@exception@std@@UEBAPEBDXZ
ungetc
fputc
fgetc
??0exception@std@@QEAA@XZ
??_V@YAXPEAX@Z
??2@YAPEAX_K@Z
??_U@YAPEAX_K@Z
??0exception@std@@QEAA@AEBV01@@Z
memchr
memcpy_s
memmove
??3@YAXPEAX@Z
??1exception@std@@UEAA@XZ
??0exception@std@@QEAA@AEBQEBD@Z
_beginthreadex

msvcp120

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7ios_base@std@@6B@
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Ios_base_dtor@ios_base@std@@CAXPEAV12@@Z
?_Xoverflow_error@std@@YAXPEBD@Z
?xsputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEB_W_J@Z
?xsgetn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JPEA_W_J@Z
?uflow@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAGXZ
?sync@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAA_JXZ
?setbuf@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAPEAV12@PEA_W_J@Z
?imbue@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@MEAAXAEBVlocale@2@@Z
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAAXXZ
?setprecision@std@@YA?AU?$_Smanip@_J@1@_J@Z
?setbase@std@@YA?AU?$_Smanip@H@1@H@Z
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAO@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAN@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAM@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEA_K@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEA_J@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAI@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAH@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@M@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
?_Pninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?pbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXH@Z
?gbump@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAXH@Z
?pptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
?gptr@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBAPEA_WXZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
?setf@ios_base@std@@QEAAHHH@Z
?_Orphan_all@_Container_base0@std@@QEAAXXZ
??Bid@locale@std@@QEAA_KXZ
?_Incref@facet@locale@std@@UEAAXXZ
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
?always_noconv@codecvt_base@std@@QEBA_NXZ
?in@?$codecvt@_WDH@std@@QEBAHAEAHPEBD1AEAPEBDPEA_W3AEAPEA_W@Z
?out@?$codecvt@_WDH@std@@QEBAHAEAHPEB_W1AEAPEB_WPEAD3AEAPEAD@Z
??0?$codecvt@_WDH@std@@QEAA@_K@Z
?_Getcat@?$codecvt@_WDH@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?fail@ios_base@std@@QEBA_NXZ
?exceptions@ios_base@std@@QEAAXH@Z
??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
??_7_Facet_base@std@@6B@
??_7facet@locale@std@@6B@
?_Init@locale@std@@CAPEAV_Locimp@12@_N@Z
?_New_Locimp@_Locimp@locale@std@@CAPEAV123@AEBV123@@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
??_7codecvt_base@std@@6B@
??_7?$codecvt@_WDH@std@@6B@
?_Syserror_map@std@@YAPEBDH@Z
?_Winerror_map@std@@YAPEBDH@Z
?_Xout_of_range@std@@YAXPEBD@Z
?_Throw_C_error@std@@YAXH@Z
_Mtx_init
_Mtx_lock
_Mtx_unlock
_Mtx_destroy
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_BADOFF@std@@3_JB
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPEBD@Z
?id@?$ctype@D@std@@2V0locale@2@A
?_Xbad_alloc@std@@YAXXZ
?id@?$codecvt@_WDH@std@@2V0locale@2@A
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Getcat@?$codecvt@DDH@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEBA?AVlocale@2@XZ
?unshift@?$codecvt@DDH@std@@QEBAHAEAHPEAD1AEAPEAD@Z
?out@?$codecvt@DDH@std@@QEBAHAEAHPEBD1AEAPEBDPEAD3AEAPEAD@Z
?in@?$codecvt@DDH@std@@QEBAHAEAHPEBD1AEAPEBDPEAD3AEAPEAD@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHH@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
?getloc@ios_base@std@@QEBA?AVlocale@2@XZ

Exports

Exports

SO4MEDIAINFOLIB_CloseFile
SO4MEDIAINFOLIB_GetProperty
SO4MEDIAINFOLIB_Initialize
SO4MEDIAINFOLIB_IsBlacklisted
SO4MEDIAINFOLIB_OpenFile
SO4MEDIAINFOLIB_Uninitialize

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/sonymvd2pro_xp.dll
.dll windows x86

a79ff13dfa79d976bfaea0da4ba97641

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr71

__CppXcptFilter
_except_handler3
_adjust_fdiv
__dllonexit
_onexit
_initterm
time
_beginthreadex
malloc
free
__CxxFrameHandler
??2@YAPAXI@Z
??3@YAXPAX@Z

kernel32

CreateEventA
CloseHandle
WaitForSingleObject
SetEvent
SetThreadPriority
SetThreadAffinityMask
GetCurrentThread
DisableThreadLibraryCalls

Exports

Exports

_Mpeg2DecAFrame@8
_Mpeg2DecDiscon@4
_Mpeg2DecExit@4
_Mpeg2DecExitForMultiThread@4
_Mpeg2DecInit@4
_Mpeg2DecInitForMultiThread@8
_Mpeg2DecLookPictureHeader@8
_Mpeg2DecLookSequenceHeader@8
_Mpeg2DecReset@4
_Mpeg2DecRestart@4
_Mpeg2DecSetThreads@20
_Mpeg2DecXpAFrameWithRefFrame@28
_Mpeg2DecXpExit@4
_Mpeg2DecXpGetFormat@8
_Mpeg2DecXpInit@8
_Mpeg2DecXpRestart@4
_Mpeg2DecXpSetThreads@20

Sections

.text
Size: 588KB - Virtual size: 587KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/vdlxipp61_x64.dll
.dll windows x64

29f0f58b93ab26e0ddd0ec622a41ad67

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

7f:7a:98:21:56:28:d3:ac:30:a9:ea:87:35:c1:ba:22
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

03-03-2017 00:00

Not After

01-04-2020 23:59

Subject

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7f:7a:98:21:56:28:d3:ac:30:a9:ea:87:35:c1:ba:22
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

03-03-2017 00:00

Not After

01-04-2020 23:59

Subject

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12-01-2016 00:00

Not After

11-01-2031 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23-12-2017 00:00

Not After

22-03-2029 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

11:03:9c:86:31:d1:cc:21:56:ec:05:d1:e9:22:a9:c7:44:1f:13:f3:ec:09:3a:5e:fb:2c:4c:59:fd:d3:6b:cb
Signer

Actual PE Digest

11:03:9c:86:31:d1:cc:21:56:ec:05:d1:e9:22:a9:c7:44:1f:13:f3:ec:09:3a:5e:fb:2c:4c:59:fd:d3:6b:cb

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

15-08-2018 14:51
Valid: false

6c:da:38:1f:15:b6:af:fd:f2:30:43:9b:dd:ce:ad:b0:50:9b:52:3c
Signer

Actual PE Digest

6c:da:38:1f:15:b6:af:fd:f2:30:43:9b:dd:ce:ad:b0:50:9b:52:3c

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=MAGIX Software GmbH,O=MAGIX Software GmbH,L=Berlin,ST=Berlin,C=DE

15-08-2018 14:51
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetCurrentThreadId
FlsSetValue
GetCommandLineA
EncodePointer
DecodePointer
FlsGetValue
FlsFree
SetLastError
GetLastError
FlsAlloc
HeapFree
Sleep
GetModuleHandleW
GetProcAddress
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
HeapCreate
HeapDestroy
RtlUnwindEx
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
HeapReAlloc
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize
RaiseException

Exports

Exports

ippGetCpuFreqMhz
ippGetCpuType
ippGetNumCoresOnDie
ippSetNumThreads
ippiAddRotateShift
ippiAdd_32f_AC4IR
ippiAdd_32f_C1IR
ippiAdd_32f_C3IR
ippiAdd_32f_C4IR
ippiAndC_16u_C1IR
ippiAnd_8u_C1IR
ippiBGRToHLS_8u_P3R
ippiBGRToYCbCr_JPEG_8u_C3P3R
ippiCMYKToYCCK_JPEG_8u_C4P4R
ippiColorToGray_16u_AC4C1R
ippiColorToGray_16u_C3C1R
ippiColorToGray_8u_AC4C1R
ippiColorToGray_8u_C3C1R
ippiConvert_16s32f_C1R
ippiConvert_16s32f_C3R
ippiConvert_16s32f_C4R
ippiConvert_16s8u_C1R
ippiConvert_16s8u_C3R
ippiConvert_16s8u_C4R
ippiConvert_16u32f_C1R
ippiConvert_16u32f_C3R
ippiConvert_16u32f_C4R
ippiConvert_16u8u_C1R
ippiConvert_16u8u_C3R
ippiConvert_16u8u_C4R
ippiConvert_32f16s_AC4R
ippiConvert_32f16s_C1R
ippiConvert_32f16s_C3R
ippiConvert_32f16s_C4R
ippiConvert_32f16u_C1R
ippiConvert_32f16u_C3R
ippiConvert_32f16u_C4R
ippiConvert_32f8s_C1R
ippiConvert_32f8s_C3R
ippiConvert_32f8s_C4R
ippiConvert_32f8u_AC4R
ippiConvert_32f8u_C1R
ippiConvert_32f8u_C3R
ippiConvert_32f8u_C4R
ippiConvert_32s8s_C1R
ippiConvert_32s8s_C3R
ippiConvert_32s8s_C4R
ippiConvert_32s8u_C1R
ippiConvert_32s8u_C3R
ippiConvert_32s8u_C4R
ippiConvert_8s32f_C1R
ippiConvert_8s32f_C3R
ippiConvert_8s32f_C4R
ippiConvert_8s32s_C1R
ippiConvert_8s32s_C3R
ippiConvert_8s32s_C4R
ippiConvert_8u16s_C1R
ippiConvert_8u16s_C3R
ippiConvert_8u16s_C4R
ippiConvert_8u16u_C1R
ippiConvert_8u16u_C3R
ippiConvert_8u16u_C4R
ippiConvert_8u32f_C1R
ippiConvert_8u32f_C3R
ippiConvert_8u32f_C4R
ippiConvert_8u32s_C1R
ippiConvert_8u32s_C3R
ippiConvert_8u32s_C4R
ippiCopy_16s_AC4C3R
ippiCopy_16s_AC4MR
ippiCopy_16s_AC4R
ippiCopy_16s_C1C3R
ippiCopy_16s_C1C4R
ippiCopy_16s_C1MR
ippiCopy_16s_C1R
ippiCopy_16s_C3AC4R
ippiCopy_16s_C3C1R
ippiCopy_16s_C3CR
ippiCopy_16s_C3MR
ippiCopy_16s_C3P3R
ippiCopy_16s_C3R
ippiCopy_16s_C4C1R
ippiCopy_16s_C4CR
ippiCopy_16s_C4MR
ippiCopy_16s_C4P4R
ippiCopy_16s_C4R
ippiCopy_16s_P3C3R
ippiCopy_16s_P4C4R
ippiCopy_32f_AC4C3R
ippiCopy_32f_AC4MR
ippiCopy_32f_AC4R
ippiCopy_32f_C1C3R
ippiCopy_32f_C1C4R
ippiCopy_32f_C1MR
ippiCopy_32f_C1R
ippiCopy_32f_C3AC4R
ippiCopy_32f_C3C1R
ippiCopy_32f_C3CR
ippiCopy_32f_C3MR
ippiCopy_32f_C3P3R
ippiCopy_32f_C3R
ippiCopy_32f_C4C1R
ippiCopy_32f_C4CR
ippiCopy_32f_C4MR
ippiCopy_32f_C4P4R
ippiCopy_32f_C4R
ippiCopy_32f_P3C3R
ippiCopy_32f_P4C4R
ippiCopy_8u_AC4C3R
ippiCopy_8u_AC4MR
ippiCopy_8u_AC4R
ippiCopy_8u_C1C3R
ippiCopy_8u_C1C4R
ippiCopy_8u_C1MR
ippiCopy_8u_C1R
ippiCopy_8u_C3AC4R
ippiCopy_8u_C3C1R
ippiCopy_8u_C3CR
ippiCopy_8u_C3MR
ippiCopy_8u_C3P3R
ippiCopy_8u_C3R
ippiCopy_8u_C4C1R
ippiCopy_8u_C4CR
ippiCopy_8u_C4MR
ippiCopy_8u_C4P4R
ippiCopy_8u_C4R
ippiCopy_8u_P3C3R
ippiCopy_8u_P4C4R
ippiCountInRange_8u_C1R
ippiDCTQuantFwd8x8LS_JPEG_8u16s_C1R
ippiDCTQuantInv8x8LS_JPEG_16s8u_C1R
ippiDecodeHuffman8x8_JPEG_1u16s_C1
ippiDecodeHuffmanSpecGetBufSize_JPEG_8u
ippiDecodeHuffmanSpecInit_JPEG_8u
ippiDecodeHuffmanStateGetBufSize_JPEG_8u
ippiDecodeHuffmanStateInit_JPEG_8u
ippiDilate3x3_8u_C1IR
ippiDilate3x3_8u_C3IR
ippiDilate3x3_8u_C4IR
ippiDivC_32f_C1IR
ippiDivC_32f_C3IR
ippiEncodeHuffman8x8_JPEG_16s1u_C1
ippiEncodeHuffmanRawTableInit_JPEG_8u
ippiEncodeHuffmanSpecGetBufSize_JPEG_8u
ippiEncodeHuffmanSpecInit_JPEG_8u
ippiEncodeHuffmanStateGetBufSize_JPEG_8u
ippiEncodeHuffmanStateInit_JPEG_8u
ippiErode3x3_8u_C1IR
ippiErode3x3_8u_C3IR
ippiErode3x3_8u_C4IR
ippiFilter32f_8u_C1R
ippiFilter32f_8u_C3R
ippiFilter32f_8u_C4R
ippiFilterBox_16s_AC4R
ippiFilterBox_16s_C1R
ippiFilterBox_16s_C3R
ippiFilterBox_16s_C4R
ippiFilterBox_32f_AC4R
ippiFilterBox_32f_C1R
ippiFilterBox_32f_C3R
ippiFilterBox_32f_C4R
ippiFilterBox_8u_AC4R
ippiFilterBox_8u_C1R
ippiFilterBox_8u_C3R
ippiFilterBox_8u_C4R
ippiFilterColumn32f_8u_C1R
ippiFilterColumn32f_8u_C3R
ippiFilterColumn32f_8u_C4R
ippiFilterGauss_16s_AC4R
ippiFilterGauss_16s_C1R
ippiFilterGauss_16s_C3R
ippiFilterGauss_16s_C4R
ippiFilterGauss_32f_AC4R
ippiFilterGauss_32f_C1R
ippiFilterGauss_32f_C3R
ippiFilterGauss_32f_C4R
ippiFilterGauss_8u_AC4R
ippiFilterGauss_8u_C1R
ippiFilterGauss_8u_C3R
ippiFilterGauss_8u_C4R
ippiFilterHipass_16s_AC4R
ippiFilterHipass_16s_C1R
ippiFilterHipass_16s_C3R
ippiFilterHipass_16s_C4R
ippiFilterHipass_32f_AC4R
ippiFilterHipass_32f_C1R
ippiFilterHipass_32f_C3R
ippiFilterHipass_32f_C4R
ippiFilterHipass_8u_AC4R
ippiFilterHipass_8u_C1R
ippiFilterHipass_8u_C3R
ippiFilterHipass_8u_C4R
ippiFilterLaplace_16s_AC4R
ippiFilterLaplace_16s_C1R
ippiFilterLaplace_16s_C3R
ippiFilterLaplace_16s_C4R
ippiFilterLaplace_32f_AC4R
ippiFilterLaplace_32f_C1R
ippiFilterLaplace_32f_C3R
ippiFilterLaplace_32f_C4R
ippiFilterLaplace_8u_AC4R
ippiFilterLaplace_8u_C1R
ippiFilterLaplace_8u_C3R
ippiFilterLaplace_8u_C4R
ippiFilterMax_16s_AC4R
ippiFilterMax_16s_C1R
ippiFilterMax_16s_C3R
ippiFilterMax_16s_C4R
ippiFilterMax_8u_AC4R
ippiFilterMax_8u_C1R
ippiFilterMax_8u_C3R
ippiFilterMax_8u_C4R
ippiFilterMedianColor_16s_AC4R
ippiFilterMedianColor_16s_C3R
ippiFilterMedianColor_8u_AC4R
ippiFilterMedianColor_8u_C3R
ippiFilterMedian_16s_AC4R
ippiFilterMedian_16s_C1R
ippiFilterMedian_16s_C3R
ippiFilterMedian_16s_C4R
ippiFilterMedian_8u_AC4R
ippiFilterMedian_8u_C1R
ippiFilterMedian_8u_C3R
ippiFilterMedian_8u_C4R
ippiFilterMin_16s_AC4R
ippiFilterMin_16s_C1R
ippiFilterMin_16s_C3R
ippiFilterMin_16s_C4R
ippiFilterMin_8u_AC4R
ippiFilterMin_8u_C1R
ippiFilterMin_8u_C3R
ippiFilterMin_8u_C4R
ippiFilterPrewittHoriz_16s_AC4R
ippiFilterPrewittHoriz_16s_C1R
ippiFilterPrewittHoriz_16s_C3R
ippiFilterPrewittHoriz_16s_C4R
ippiFilterPrewittHoriz_32f_AC4R
ippiFilterPrewittHoriz_32f_C1R
ippiFilterPrewittHoriz_32f_C3R
ippiFilterPrewittHoriz_32f_C4R
ippiFilterPrewittHoriz_8u_AC4R
ippiFilterPrewittHoriz_8u_C1R
ippiFilterPrewittHoriz_8u_C3R
ippiFilterPrewittHoriz_8u_C4R
ippiFilterPrewittVert_16s_AC4R
ippiFilterPrewittVert_16s_C1R
ippiFilterPrewittVert_16s_C3R
ippiFilterPrewittVert_16s_C4R
ippiFilterPrewittVert_32f_AC4R
ippiFilterPrewittVert_32f_C1R
ippiFilterPrewittVert_32f_C3R
ippiFilterPrewittVert_32f_C4R
ippiFilterPrewittVert_8u_AC4R
ippiFilterPrewittVert_8u_C1R
ippiFilterPrewittVert_8u_C3R
ippiFilterPrewittVert_8u_C4R
ippiFilterRow32f_8u_C1R
ippiFilterRow32f_8u_C3R
ippiFilterRow32f_8u_C4R
ippiFilterSharpen_16s_AC4R
ippiFilterSharpen_16s_C1R
ippiFilterSharpen_16s_C3R
ippiFilterSharpen_16s_C4R
ippiFilterSharpen_32f_AC4R
ippiFilterSharpen_32f_C1R
ippiFilterSharpen_32f_C3R
ippiFilterSharpen_32f_C4R
ippiFilterSharpen_8u_AC4R
ippiFilterSharpen_8u_C1R
ippiFilterSharpen_8u_C3R
ippiFilterSharpen_8u_C4R
ippiFilterSobelHoriz_16s_AC4R
ippiFilterSobelHoriz_16s_C1R
ippiFilterSobelHoriz_16s_C3R
ippiFilterSobelHoriz_16s_C4R
ippiFilterSobelHoriz_32f_AC4R
ippiFilterSobelHoriz_32f_C1R
ippiFilterSobelHoriz_32f_C3R
ippiFilterSobelHoriz_32f_C4R
ippiFilterSobelHoriz_8u_AC4R
ippiFilterSobelHoriz_8u_C1R
ippiFilterSobelHoriz_8u_C3R
ippiFilterSobelHoriz_8u_C4R
ippiFilterSobelVert_16s_AC4R
ippiFilterSobelVert_16s_C1R
ippiFilterSobelVert_16s_C3R
ippiFilterSobelVert_16s_C4R
ippiFilterSobelVert_32f_AC4R
ippiFilterSobelVert_32f_C1R
ippiFilterSobelVert_32f_C3R
ippiFilterSobelVert_32f_C4R
ippiFilterSobelVert_8u_AC4R
ippiFilterSobelVert_8u_C1R
ippiFilterSobelVert_8u_C3R
ippiFilterSobelVert_8u_C4R
ippiFilter_16s_AC4R
ippiFilter_16s_C1R
ippiFilter_16s_C3R
ippiFilter_16s_C4R
ippiFilter_32f_AC4R
ippiFilter_32f_C1R
ippiFilter_32f_C3R
ippiFilter_32f_C4R
ippiFilter_8u_AC4R
ippiFilter_8u_C1R
ippiFilter_8u_C3R
ippiFilter_8u_C4R
ippiFree
ippiGetAffineBound
ippiGetAffineQuad
ippiGetAffineTransform
ippiGetBilinearBound
ippiGetBilinearQuad
ippiGetBilinearTransform
ippiGetHuffmanStatistics8x8_JPEG_16s_C1
ippiGetPerspectiveBound
ippiGetPerspectiveQuad
ippiGetPerspectiveTransform
ippiHLSToBGR_8u_P3R
ippiHLSToRGB_16u_C3R
ippiHLSToRGB_32f_C3R
ippiHLSToRGB_8u_C3R
ippiHSVToRGB_16u_C3R
ippiHSVToRGB_8u_C3R
ippiHistogramEven_8u_C1R
ippiLShiftC_16u_AC4IR
ippiLShiftC_16u_C1IR
ippiLShiftC_16u_C3IR
ippiLUVToRGB_16u_C3R
ippiLUVToRGB_32f_C3R
ippiLUVToRGB_8u_C3R
ippiMalloc_32s_C1
ippiMirror_16u_AC4IR
ippiMirror_16u_C1IR
ippiMirror_16u_C1R
ippiMirror_16u_C3IR
ippiMirror_16u_C3R
ippiMirror_16u_C4IR
ippiMirror_16u_C4R
ippiMirror_32s_C1IR
ippiMirror_32s_C1R
ippiMirror_32s_C3IR
ippiMirror_32s_C3R
ippiMirror_32s_C4IR
ippiMirror_32s_C4R
ippiMirror_8u_AC4IR
ippiMirror_8u_C1IR
ippiMirror_8u_C1R
ippiMirror_8u_C3IR
ippiMirror_8u_C3R
ippiMirror_8u_C4IR
ippiMirror_8u_C4R
ippiMulC_32f_C4IR
ippiMulC_8u_AC4IRSfs
ippiMulC_8u_C1RSfs
ippiMulC_8u_C3IRSfs
ippiOr_16u_C1IR
ippiQuantFwdTableInit_JPEG_8u16u
ippiRGBToHLS_16u_AC4R
ippiRGBToHLS_16u_C3R
ippiRGBToHLS_32f_AC4R
ippiRGBToHLS_32f_C3R
ippiRGBToHLS_8u_AC4R
ippiRGBToHLS_8u_C3R
ippiRGBToHSV_16u_AC4R
ippiRGBToHSV_16u_C3R
ippiRGBToHSV_8u_AC4R
ippiRGBToHSV_8u_C3R
ippiRGBToLUV_16u_AC4R
ippiRGBToLUV_16u_C3R
ippiRGBToLUV_32f_AC4R
ippiRGBToLUV_32f_C3R
ippiRGBToLUV_8u_AC4R
ippiRGBToLUV_8u_C3R
ippiRGBToXYZ_16u_AC4R
ippiRGBToXYZ_16u_C3R
ippiRGBToXYZ_32f_AC4R
ippiRGBToXYZ_32f_C3R
ippiRGBToXYZ_8u_AC4R
ippiRGBToXYZ_8u_C3R
ippiRGBToYCbCr_8u_AC4R
ippiRGBToYCbCr_8u_C3R
ippiRGBToYCbCr_8u_P3R
ippiRGBToYCbCr_JPEG_8u_C3P3R
ippiRGBToYUV_8u_AC4R
ippiRGBToYUV_8u_C3R
ippiRGBToYUV_8u_P3R
ippiRGBToY_JPEG_8u_C3C1R
ippiRShiftC_16s_AC4R
ippiRShiftC_16s_C1R
ippiRShiftC_16s_C3R
ippiRShiftC_16s_C4R
ippiRShiftC_16u_AC4R
ippiRShiftC_16u_C1R
ippiRShiftC_16u_C3R
ippiRShiftC_16u_C4R
ippiRShiftC_32s_AC4R
ippiRShiftC_32s_C1R
ippiRShiftC_32s_C3R
ippiRShiftC_32s_C4R
ippiRShiftC_8s_AC4R
ippiRShiftC_8s_C1R
ippiRShiftC_8s_C3R
ippiRShiftC_8s_C4R
ippiRShiftC_8u_AC4R
ippiRShiftC_8u_C1R
ippiRShiftC_8u_C3R
ippiRShiftC_8u_C4R
ippiReduceBits_8u_AC4R
ippiReduceBits_8u_C1R
ippiReduceBits_8u_C3R
ippiRemap_32f_AC4R
ippiRemap_32f_C1R
ippiRemap_32f_C3R
ippiRemap_32f_C4R
ippiRemap_32f_P3R
ippiRemap_32f_P4R
ippiRemap_8u_AC4R
ippiRemap_8u_C1R
ippiRemap_8u_C3R
ippiRemap_8u_C4R
ippiRemap_8u_P3R
ippiRemap_8u_P4R
ippiResize_16u_AC4R
ippiResize_16u_C1R
ippiResize_16u_C3R
ippiResize_16u_C4R
ippiResize_16u_P3R
ippiResize_16u_P4R
ippiResize_32f_AC4R
ippiResize_32f_C1R
ippiResize_32f_C3R
ippiResize_32f_C4R
ippiResize_32f_P3R
ippiResize_32f_P4R
ippiResize_8u_AC4R
ippiResize_8u_C1R
ippiResize_8u_C3R
ippiResize_8u_C4R
ippiResize_8u_P3R
ippiResize_8u_P4R
ippiRotate_16u_AC4R
ippiRotate_16u_C1R
ippiRotate_16u_C3R
ippiRotate_16u_C4R
ippiRotate_16u_P3R
ippiRotate_16u_P4R
ippiRotate_32f_AC4R
ippiRotate_32f_C1R
ippiRotate_32f_C3R
ippiRotate_32f_C4R
ippiRotate_32f_P3R
ippiRotate_32f_P4R
ippiRotate_8u_AC4R
ippiRotate_8u_C1R
ippiRotate_8u_C3R
ippiRotate_8u_C4R
ippiRotate_8u_P3R
ippiRotate_8u_P4R
ippiSampleDownRowH2V1_Box_JPEG_8u_C1
ippiSampleDownRowH2V2_Box_JPEG_8u_C1
ippiSampleUpRowH2V1_Triangle_JPEG_8u_C1
ippiSampleUpRowH2V2_Triangle_JPEG_8u_C1
ippiScale_16u8u_C3R
ippiScale_8u16u_C1R
ippiSet_16s_AC4MR
ippiSet_16s_AC4R
ippiSet_16s_C1MR
ippiSet_16s_C1R
ippiSet_16s_C3CR
ippiSet_16s_C3MR
ippiSet_16s_C3R
ippiSet_16s_C4CR
ippiSet_16s_C4MR
ippiSet_16s_C4R
ippiSet_32f_AC4MR
ippiSet_32f_AC4R
ippiSet_32f_C1MR
ippiSet_32f_C1R
ippiSet_32f_C3CR
ippiSet_32f_C3MR
ippiSet_32f_C3R
ippiSet_32f_C4CR
ippiSet_32f_C4MR
ippiSet_32f_C4R
ippiSet_8u_AC4MR
ippiSet_8u_AC4R
ippiSet_8u_C1MR
ippiSet_8u_C1R
ippiSet_8u_C3CR
ippiSet_8u_C3MR
ippiSet_8u_C3R
ippiSet_8u_C4CR
ippiSet_8u_C4MR
ippiSet_8u_C4R
ippiShear_32f_AC4R
ippiShear_32f_C1R
ippiShear_32f_C3R
ippiShear_32f_C4R
ippiShear_32f_P3R

Sections

.text
Size: 12.4MB - Virtual size: 12.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 708KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 183KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 332KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE

data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/vk_swiftshader.dll
.dll windows x64

c6d5499631d983c25f3393a4b4b13399

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

92:4e:98:07:eb:0c:f9:67:b3:22:8b:3c:67:6d:d9:35:41:55:fe:97:0e:d1:ae:d7:41:5e:a0:78:55:ea:9d:48
Signer

Actual PE Digest

92:4e:98:07:eb:0c:f9:67:b3:22:8b:3c:67:6d:d9:35:41:55:fe:97:0e:d1:ae:d7:41:5e:a0:78:55:ea:9d:48

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:37
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
ConvertFiberToThread
ConvertThreadToFiberEx
CreateEventW
CreateFiberEx
CreateFileW
CreateRemoteThreadEx
CreateThread
DeleteCriticalSection
DeleteFiber
DeleteFileW
DeleteProcThreadAttributeList
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FlushInstructionCache
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileAttributesW
GetFileInformationByHandle
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetLogicalProcessorInformationEx
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeProcThreadAttributeList
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryExW
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
RemoveDirectoryW
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetConsoleTextAttribute
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
SwitchToFiber
SwitchToThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UpdateProcThreadAttribute
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

user32

GetClientRect
GetDC
IsWindow
ReleaseDC

gdi32

StretchDIBits

Exports

Exports

vkAcquireNextImage2KHR
vkAcquireNextImageKHR
vkAllocateCommandBuffers
vkAllocateDescriptorSets
vkAllocateMemory
vkBeginCommandBuffer
vkBindBufferMemory
vkBindBufferMemory2
vkBindImageMemory
vkBindImageMemory2
vkCmdBeginQuery
vkCmdBeginRenderPass
vkCmdBeginRenderPass2
vkCmdBeginRendering
vkCmdBindDescriptorSets
vkCmdBindIndexBuffer
vkCmdBindPipeline
vkCmdBindVertexBuffers
vkCmdBindVertexBuffers2
vkCmdBlitImage
vkCmdBlitImage2
vkCmdClearAttachments
vkCmdClearColorImage
vkCmdClearDepthStencilImage
vkCmdCopyBuffer
vkCmdCopyBuffer2
vkCmdCopyBufferToImage
vkCmdCopyBufferToImage2
vkCmdCopyImage
vkCmdCopyImage2
vkCmdCopyImageToBuffer
vkCmdCopyImageToBuffer2
vkCmdCopyQueryPoolResults
vkCmdDispatch
vkCmdDispatchBase
vkCmdDispatchIndirect
vkCmdDraw
vkCmdDrawIndexed
vkCmdDrawIndexedIndirect
vkCmdDrawIndexedIndirectCount
vkCmdDrawIndirect
vkCmdDrawIndirectCount
vkCmdEndQuery
vkCmdEndRenderPass
vkCmdEndRenderPass2
vkCmdEndRendering
vkCmdExecuteCommands
vkCmdFillBuffer
vkCmdNextSubpass
vkCmdNextSubpass2
vkCmdPipelineBarrier
vkCmdPipelineBarrier2
vkCmdPushConstants
vkCmdResetEvent
vkCmdResetEvent2
vkCmdResetQueryPool
vkCmdResolveImage
vkCmdResolveImage2
vkCmdSetBlendConstants
vkCmdSetCullMode
vkCmdSetDepthBias
vkCmdSetDepthBiasEnable
vkCmdSetDepthBounds
vkCmdSetDepthBoundsTestEnable
vkCmdSetDepthCompareOp
vkCmdSetDepthTestEnable
vkCmdSetDepthWriteEnable
vkCmdSetDeviceMask
vkCmdSetEvent
vkCmdSetEvent2
vkCmdSetFrontFace
vkCmdSetLineWidth
vkCmdSetPrimitiveRestartEnable
vkCmdSetPrimitiveTopology
vkCmdSetRasterizerDiscardEnable
vkCmdSetScissor
vkCmdSetScissorWithCount
vkCmdSetStencilCompareMask
vkCmdSetStencilOp
vkCmdSetStencilReference
vkCmdSetStencilTestEnable
vkCmdSetStencilWriteMask
vkCmdSetViewport
vkCmdSetViewportWithCount
vkCmdUpdateBuffer
vkCmdWaitEvents
vkCmdWaitEvents2
vkCmdWriteTimestamp
vkCmdWriteTimestamp2
vkCreateBuffer
vkCreateBufferView
vkCreateCommandPool
vkCreateComputePipelines
vkCreateDescriptorPool
vkCreateDescriptorSetLayout
vkCreateDescriptorUpdateTemplate
vkCreateDevice
vkCreateEvent
vkCreateFence
vkCreateFramebuffer
vkCreateGraphicsPipelines
vkCreateImage
vkCreateImageView
vkCreateInstance
vkCreatePipelineCache
vkCreatePipelineLayout
vkCreatePrivateDataSlot
vkCreateQueryPool
vkCreateRenderPass
vkCreateRenderPass2
vkCreateSampler
vkCreateSamplerYcbcrConversion
vkCreateSemaphore
vkCreateShaderModule
vkCreateSwapchainKHR
vkCreateWin32SurfaceKHR
vkDestroyBuffer
vkDestroyBufferView
vkDestroyCommandPool
vkDestroyDescriptorPool
vkDestroyDescriptorSetLayout
vkDestroyDescriptorUpdateTemplate
vkDestroyDevice
vkDestroyEvent
vkDestroyFence
vkDestroyFramebuffer
vkDestroyImage
vkDestroyImageView
vkDestroyInstance
vkDestroyPipeline
vkDestroyPipelineCache
vkDestroyPipelineLayout
vkDestroyPrivateDataSlot
vkDestroyQueryPool
vkDestroyRenderPass
vkDestroySampler
vkDestroySamplerYcbcrConversion
vkDestroySemaphore
vkDestroyShaderModule
vkDestroySurfaceKHR
vkDestroySwapchainKHR
vkDeviceWaitIdle
vkEndCommandBuffer
vkEnumerateDeviceExtensionProperties
vkEnumerateDeviceLayerProperties
vkEnumerateInstanceExtensionProperties
vkEnumerateInstanceLayerProperties
vkEnumerateInstanceVersion
vkEnumeratePhysicalDeviceGroups
vkEnumeratePhysicalDevices
vkFlushMappedMemoryRanges
vkFreeCommandBuffers
vkFreeDescriptorSets
vkFreeMemory
vkGetBufferDeviceAddress
vkGetBufferMemoryRequirements
vkGetBufferMemoryRequirements2
vkGetBufferOpaqueCaptureAddress
vkGetDescriptorSetLayoutSupport
vkGetDeviceBufferMemoryRequirements
vkGetDeviceGroupPeerMemoryFeatures
vkGetDeviceGroupPresentCapabilitiesKHR
vkGetDeviceGroupSurfacePresentModesKHR
vkGetDeviceImageMemoryRequirements
vkGetDeviceImageSparseMemoryRequirements
vkGetDeviceMemoryCommitment
vkGetDeviceMemoryOpaqueCaptureAddress
vkGetDeviceProcAddr
vkGetDeviceQueue
vkGetDeviceQueue2
vkGetEventStatus
vkGetFenceStatus
vkGetImageMemoryRequirements
vkGetImageMemoryRequirements2
vkGetImageSparseMemoryRequirements
vkGetImageSparseMemoryRequirements2
vkGetImageSubresourceLayout
vkGetInstanceProcAddr
vkGetPhysicalDeviceExternalBufferProperties
vkGetPhysicalDeviceExternalFenceProperties
vkGetPhysicalDeviceExternalSemaphoreProperties
vkGetPhysicalDeviceFeatures
vkGetPhysicalDeviceFeatures2
vkGetPhysicalDeviceFormatProperties
vkGetPhysicalDeviceFormatProperties2
vkGetPhysicalDeviceImageFormatProperties
vkGetPhysicalDeviceImageFormatProperties2
vkGetPhysicalDeviceMemoryProperties
vkGetPhysicalDeviceMemoryProperties2
vkGetPhysicalDevicePresentRectanglesKHR
vkGetPhysicalDeviceProperties
vkGetPhysicalDeviceProperties2
vkGetPhysicalDeviceQueueFamilyProperties
vkGetPhysicalDeviceQueueFamilyProperties2
vkGetPhysicalDeviceSparseImageFormatProperties
vkGetPhysicalDeviceSparseImageFormatProperties2
vkGetPhysicalDeviceSurfaceCapabilities2KHR
vkGetPhysicalDeviceSurfaceCapabilitiesKHR
vkGetPhysicalDeviceSurfaceFormats2KHR
vkGetPhysicalDeviceSurfaceFormatsKHR
vkGetPhysicalDeviceSurfacePresentModesKHR
vkGetPhysicalDeviceSurfaceSupportKHR
vkGetPhysicalDeviceToolProperties
vkGetPhysicalDeviceWin32PresentationSupportKHR
vkGetPipelineCacheData
vkGetPrivateData
vkGetQueryPoolResults
vkGetRenderAreaGranularity
vkGetSemaphoreCounterValue
vkGetSwapchainImagesKHR
vkInvalidateMappedMemoryRanges
vkMapMemory
vkMergePipelineCaches
vkQueueBindSparse
vkQueuePresentKHR
vkQueueSubmit
vkQueueSubmit2
vkQueueWaitIdle
vkResetCommandBuffer
vkResetCommandPool
vkResetDescriptorPool
vkResetEvent
vkResetFences
vkResetQueryPool
vkSetEvent
vkSetPrivateData
vkSignalSemaphore
vkTrimCommandPool
vkUnmapMemory
vkUpdateDescriptorSetWithTemplate
vkUpdateDescriptorSets
vkWaitForFences
vkWaitSemaphores
vk_icdGetInstanceProcAddr
vk_icdNegotiateLoaderICDInterfaceVersion

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 734KB - Virtual size: 733KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 99KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 92B

.tls
Size: 512B - Virtual size: 81B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 56B

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
data/vulkan-1.dll
.dll windows x64

49ed29c3ff417b26c7cd92ecc9b7dcb3

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29-04-2021 00:00

Not After

28-04-2036 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02-07-2021 00:00

Not After

10-07-2024 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21-09-2022 00:00

Not After

21-11-2033 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23-03-2022 00:00

Not After

22-03-2037 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-08-2022 00:00

Not After

09-11-2031 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ed:38:fe:e4:42:a0:07:ce:26:ae:d9:eb:c6:29:ab:cc:09:49:82:e4:48:a1:35:4d:0b:81:e8:f1:d8:11:e0:50
Signer

Actual PE Digest

ed:38:fe:e4:42:a0:07:ce:26:ae:d9:eb:c6:29:ab:cc:09:49:82:e4:48:a1:35:4d:0b:81:e8:f1:d8:11:e0:50

Digest Algorithm

sha256

PE Digest Matches

true

Signature Validations

Trusted

true

Verification

Signing Certificate

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

04-01-2023 04:37
Valid: true

Chain 1

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Chain 2

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FileTimeToSystemTime
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetFileAttributesExW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemDirectoryW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

advapi32

GetSidSubAuthority
GetSidSubAuthorityCount
GetTokenInformation
OpenProcessToken
RegCloseKey
RegEnumValueA
RegOpenKeyExA
RegQueryValueExA

cfgmgr32

CM_Get_Child
CM_Get_DevNode_Registry_PropertyW
CM_Get_DevNode_Status
CM_Get_Device_IDW
CM_Get_Device_ID_ListW
CM_Get_Device_ID_List_SizeW
CM_Get_Sibling
CM_Locate_DevNodeW
CM_Open_DevNode_Key

Exports

Exports

vkAcquireNextImage2KHR
vkAcquireNextImageKHR
vkAllocateCommandBuffers
vkAllocateDescriptorSets
vkAllocateMemory
vkBeginCommandBuffer
vkBindBufferMemory
vkBindBufferMemory2
vkBindImageMemory
vkBindImageMemory2
vkCmdBeginQuery
vkCmdBeginRenderPass
vkCmdBeginRenderPass2
vkCmdBeginRendering
vkCmdBindDescriptorSets
vkCmdBindIndexBuffer
vkCmdBindPipeline
vkCmdBindVertexBuffers
vkCmdBindVertexBuffers2
vkCmdBlitImage
vkCmdBlitImage2
vkCmdClearAttachments
vkCmdClearColorImage
vkCmdClearDepthStencilImage
vkCmdCopyBuffer
vkCmdCopyBuffer2
vkCmdCopyBufferToImage
vkCmdCopyBufferToImage2
vkCmdCopyImage
vkCmdCopyImage2
vkCmdCopyImageToBuffer
vkCmdCopyImageToBuffer2
vkCmdCopyQueryPoolResults
vkCmdDispatch
vkCmdDispatchBase
vkCmdDispatchIndirect
vkCmdDraw
vkCmdDrawIndexed
vkCmdDrawIndexedIndirect
vkCmdDrawIndexedIndirectCount
vkCmdDrawIndirect
vkCmdDrawIndirectCount
vkCmdEndQuery
vkCmdEndRenderPass
vkCmdEndRenderPass2
vkCmdEndRendering
vkCmdExecuteCommands
vkCmdFillBuffer
vkCmdNextSubpass
vkCmdNextSubpass2
vkCmdPipelineBarrier
vkCmdPipelineBarrier2
vkCmdPushConstants
vkCmdResetEvent
vkCmdResetEvent2
vkCmdResetQueryPool
vkCmdResolveImage
vkCmdResolveImage2
vkCmdSetBlendConstants
vkCmdSetCullMode
vkCmdSetDepthBias
vkCmdSetDepthBiasEnable
vkCmdSetDepthBounds
vkCmdSetDepthBoundsTestEnable
vkCmdSetDepthCompareOp
vkCmdSetDepthTestEnable
vkCmdSetDepthWriteEnable
vkCmdSetDeviceMask
vkCmdSetEvent
vkCmdSetEvent2
vkCmdSetFrontFace
vkCmdSetLineWidth
vkCmdSetPrimitiveRestartEnable
vkCmdSetPrimitiveTopology
vkCmdSetRasterizerDiscardEnable
vkCmdSetScissor
vkCmdSetScissorWithCount
vkCmdSetStencilCompareMask
vkCmdSetStencilOp
vkCmdSetStencilReference
vkCmdSetStencilTestEnable
vkCmdSetStencilWriteMask
vkCmdSetViewport
vkCmdSetViewportWithCount
vkCmdUpdateBuffer
vkCmdWaitEvents
vkCmdWaitEvents2
vkCmdWriteTimestamp
vkCmdWriteTimestamp2
vkCreateBuffer
vkCreateBufferView
vkCreateCommandPool
vkCreateComputePipelines
vkCreateDescriptorPool
vkCreateDescriptorSetLayout
vkCreateDescriptorUpdateTemplate
vkCreateDevice
vkCreateDisplayModeKHR
vkCreateDisplayPlaneSurfaceKHR
vkCreateEvent
vkCreateFence
vkCreateFramebuffer
vkCreateGraphicsPipelines
vkCreateHeadlessSurfaceEXT
vkCreateImage
vkCreateImageView
vkCreateInstance
vkCreatePipelineCache
vkCreatePipelineLayout
vkCreatePrivateDataSlot
vkCreateQueryPool
vkCreateRenderPass
vkCreateRenderPass2
vkCreateSampler
vkCreateSamplerYcbcrConversion
vkCreateSemaphore
vkCreateShaderModule
vkCreateSharedSwapchainsKHR
vkCreateSwapchainKHR
vkCreateWin32SurfaceKHR
vkDestroyBuffer
vkDestroyBufferView
vkDestroyCommandPool
vkDestroyDescriptorPool
vkDestroyDescriptorSetLayout
vkDestroyDescriptorUpdateTemplate
vkDestroyDevice
vkDestroyEvent
vkDestroyFence
vkDestroyFramebuffer
vkDestroyImage
vkDestroyImageView
vkDestroyInstance
vkDestroyPipeline
vkDestroyPipelineCache
vkDestroyPipelineLayout
vkDestroyPrivateDataSlot
vkDestroyQueryPool
vkDestroyRenderPass
vkDestroySampler
vkDestroySamplerYcbcrConversion
vkDestroySemaphore
vkDestroyShaderModule
vkDestroySurfaceKHR
vkDestroySwapchainKHR
vkDeviceWaitIdle
vkEndCommandBuffer
vkEnumerateDeviceExtensionProperties
vkEnumerateDeviceLayerProperties
vkEnumerateInstanceExtensionProperties
vkEnumerateInstanceLayerProperties
vkEnumerateInstanceVersion
vkEnumeratePhysicalDeviceGroups
vkEnumeratePhysicalDevices
vkFlushMappedMemoryRanges
vkFreeCommandBuffers
vkFreeDescriptorSets
vkFreeMemory
vkGetBufferDeviceAddress
vkGetBufferMemoryRequirements
vkGetBufferMemoryRequirements2
vkGetBufferOpaqueCaptureAddress
vkGetDescriptorSetLayoutSupport
vkGetDeviceBufferMemoryRequirements
vkGetDeviceGroupPeerMemoryFeatures
vkGetDeviceGroupPresentCapabilitiesKHR
vkGetDeviceGroupSurfacePresentModesKHR
vkGetDeviceImageMemoryRequirements
vkGetDeviceImageSparseMemoryRequirements
vkGetDeviceMemoryCommitment
vkGetDeviceMemoryOpaqueCaptureAddress
vkGetDeviceProcAddr
vkGetDeviceQueue
vkGetDeviceQueue2
vkGetDisplayModeProperties2KHR
vkGetDisplayModePropertiesKHR
vkGetDisplayPlaneCapabilities2KHR
vkGetDisplayPlaneCapabilitiesKHR
vkGetDisplayPlaneSupportedDisplaysKHR
vkGetEventStatus
vkGetFenceStatus
vkGetImageMemoryRequirements
vkGetImageMemoryRequirements2
vkGetImageSparseMemoryRequirements
vkGetImageSparseMemoryRequirements2
vkGetImageSubresourceLayout
vkGetInstanceProcAddr
vkGetPhysicalDeviceDisplayPlaneProperties2KHR
vkGetPhysicalDeviceDisplayPlanePropertiesKHR
vkGetPhysicalDeviceDisplayProperties2KHR
vkGetPhysicalDeviceDisplayPropertiesKHR
vkGetPhysicalDeviceExternalBufferProperties
vkGetPhysicalDeviceExternalFenceProperties
vkGetPhysicalDeviceExternalSemaphoreProperties
vkGetPhysicalDeviceFeatures
vkGetPhysicalDeviceFeatures2
vkGetPhysicalDeviceFormatProperties
vkGetPhysicalDeviceFormatProperties2
vkGetPhysicalDeviceImageFormatProperties
vkGetPhysicalDeviceImageFormatProperties2
vkGetPhysicalDeviceMemoryProperties
vkGetPhysicalDeviceMemoryProperties2
vkGetPhysicalDevicePresentRectanglesKHR
vkGetPhysicalDeviceProperties
vkGetPhysicalDeviceProperties2
vkGetPhysicalDeviceQueueFamilyProperties
vkGetPhysicalDeviceQueueFamilyProperties2
vkGetPhysicalDeviceSparseImageFormatProperties
vkGetPhysicalDeviceSparseImageFormatProperties2
vkGetPhysicalDeviceSurfaceCapabilities2KHR
vkGetPhysicalDeviceSurfaceCapabilitiesKHR
vkGetPhysicalDeviceSurfaceFormats2KHR
vkGetPhysicalDeviceSurfaceFormatsKHR
vkGetPhysicalDeviceSurfacePresentModesKHR
vkGetPhysicalDeviceSurfaceSupportKHR
vkGetPhysicalDeviceToolProperties
vkGetPhysicalDeviceWin32PresentationSupportKHR
vkGetPipelineCacheData
vkGetPrivateData
vkGetQueryPoolResults
vkGetRenderAreaGranularity
vkGetSemaphoreCounterValue
vkGetSwapchainImagesKHR
vkInvalidateMappedMemoryRanges
vkMapMemory
vkMergePipelineCaches
vkQueueBindSparse
vkQueuePresentKHR
vkQueueSubmit
vkQueueSubmit2
vkQueueWaitIdle
vkResetCommandBuffer
vkResetCommandPool
vkResetDescriptorPool
vkResetEvent
vkResetFences
vkResetQueryPool
vkSetEvent
vkSetPrivateData
vkSignalSemaphore
vkTrimCommandPool
vkUnmapMemory
vkUpdateDescriptorSetWithTemplate
vkUpdateDescriptorSets
vkWaitForFences
vkWaitSemaphores

Sections

.text
Size: 593KB - Virtual size: 593KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 237KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 92B

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.voltbl
Size: 512B - Virtual size: 56B

_RDATA
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
setup.exe
.exe windows x64

4cea7ae85c87ddc7295d39ff9cda31d1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

advapi32

GetTokenInformation
RegDeleteValueA
RegOpenKeyExA
RegQueryInfoKeyA
FreeSid
OpenProcessToken
RegSetValueExA
RegCreateKeyExA
LookupPrivilegeValueA
AllocateAndInitializeSid
RegQueryValueExA
EqualSid
RegCloseKey
AdjustTokenPrivileges

kernel32

_lopen
_llseek
CompareStringA
GetLastError
GetFileAttributesA
GetSystemDirectoryA
LoadLibraryA
DeleteFileA
GlobalAlloc
GlobalFree
CloseHandle
WritePrivateProfileStringA
IsDBCSLeadByte
GetWindowsDirectoryA
SetFileAttributesA
GetProcAddress
GlobalLock
LocalFree
RemoveDirectoryA
FreeLibrary
_lclose
CreateDirectoryA
GetPrivateProfileIntA
GetPrivateProfileStringA
GlobalUnlock
ReadFile
SizeofResource
WriteFile
GetDriveTypeA
LoadLibraryExA
SetFileTime
SetFilePointer
FindResourceA
CreateMutexA
GetVolumeInformationA
WaitForSingleObject
GetCurrentDirectoryA
FreeResource
GetVersion
SetCurrentDirectoryA
GetTempPathA
LocalFileTimeToFileTime
CreateFileA
SetEvent
TerminateThread
GetVersionExA
LockResource
GetSystemInfo
CreateThread
ResetEvent
LoadResource
ExitProcess
GetModuleHandleW
CreateProcessA
FormatMessageA
GetTempFileNameA
DosDateTimeToFileTime
CreateEventA
GetExitCodeProcess
ExpandEnvironmentStringsA
LocalAlloc
lstrcmpA
FindNextFileA
GetCurrentProcess
FindFirstFileA
GetModuleFileNameA
GetShortPathNameA
Sleep
GetStartupInfoW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
EnumResourceLanguagesA
GetDiskFreeSpaceA
MulDiv
FindClose

gdi32

GetDeviceCaps

user32

ShowWindow
MsgWaitForMultipleObjects
SetWindowPos
GetDC
GetWindowRect
DispatchMessageA
GetSystemMetrics
CallWindowProcA
SetWindowTextA
MessageBoxA
SendDlgItemMessageA
SendMessageA
GetDlgItem
DialogBoxIndirectParamA
GetWindowLongPtrA
SetWindowLongPtrA
SetForegroundWindow
ReleaseDC
EnableWindow
CharNextA
LoadStringA
CharPrevA
EndDialog
MessageBeep
ExitWindowsEx
SetDlgItemTextA
CharUpperA
GetDesktopWindow
PeekMessageA
GetDlgItemTextA

msvcrt

?terminate@@YAXXZ
_commode
_fmode
_acmdln
__C_specific_handler
memset
__setusermatherr
_ismbblead
_cexit
_exit
exit
__set_app_type
__getmainargs
_amsg_exit
_XcptFilter
memcpy_s
_vsnprintf
_initterm
memcpy

comctl32

ord17

cabinet

ord20
ord21
ord23
ord22

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 600KB - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f60cb3472f2fe179e07b6763acb881e7

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5Certificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

1f:e3:f6:eb:95:90:46:c3:a2:10:dd:19:fd:39:1d:5a:42:62:83:8f:51:7b:ea:8e:10:3e:59:6e:be:ab:60:94Signer

Signature Validations

Verification

04-01-2023 04:37 Valid: true

Chain 1

Chain 2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

version

Exports

Exports

Sections

.text Size: 989KB - Virtual size: 989KB

.rdata Size: 167KB - Virtual size: 166KB

.data Size: 64KB - Virtual size: 110KB

.pdata Size: 37KB - Virtual size: 37KB

.00cfg Size: 512B - Virtual size: 40B

.crthunk Size: 512B - Virtual size: 64B

.gxfg Size: 11KB - Virtual size: 11KB

.oldntma Size: 512B - Virtual size: 8B

.retplne Size: 512B - Virtual size: 92B

.tls Size: 512B - Virtual size: 297B

.voltbl Size: 512B - Virtual size: 68B

CPADinfo Size: 512B - Virtual size: 56B

_RDATA Size: 512B - Virtual size: 244B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 5KB

dc71769f237c0a3ba38879380c54a4e6

Code Sign

33:00:00:03:df:fb:6a:e3:f4:27:ec:b6:a3:00:00:00:00:03:dfCertificate

Extended Key Usages

61:0c:52:4c:00:00:00:00:00:03Certificate

Key Usages

2d:f8:dd:06:41:e0:b2:af:59:69:78:fa:5a:2b:28:9b:e2:27:f3:64:44:dd:1d:c6:3e:05:f0:29:0b:70:4c:49Signer

Signature Validations

Verification

07-02-2023 20:39 Valid: false

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

rpcrt4

Exports

Exports

Sections

.text Size: 3.5MB - Virtual size: 3.5MB

.rdata Size: 912KB - Virtual size: 911KB

.data Size: 64KB - Virtual size: 100KB

.pdata Size: 128KB - Virtual size: 127KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 36KB - Virtual size: 34KB

5a679853ec15590620034b9797c1828f

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

1f:e3:f6:eb:95:90:46:c3:a2:10:dd:19:fd:39:1d:5a:42:62:83:8f:51:7b:ea:8e:10:3e:59:6e:be:ab:60:94
Signer

04-01-2023 04:37
Valid: true

.text
Size: 989KB - Virtual size: 989KB

.rdata
Size: 167KB - Virtual size: 166KB

.data
Size: 64KB - Virtual size: 110KB

.pdata
Size: 37KB - Virtual size: 37KB

.00cfg
Size: 512B - Virtual size: 40B

.crthunk
Size: 512B - Virtual size: 64B

.gxfg
Size: 11KB - Virtual size: 11KB

.oldntma
Size: 512B - Virtual size: 8B

.retplne
Size: 512B - Virtual size: 92B

.tls
Size: 512B - Virtual size: 297B

.voltbl
Size: 512B - Virtual size: 68B

CPADinfo
Size: 512B - Virtual size: 56B

_RDATA
Size: 512B - Virtual size: 244B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 5KB

33:00:00:03:df:fb:6a:e3:f4:27:ec:b6:a3:00:00:00:00:03:df
Certificate

61:0c:52:4c:00:00:00:00:00:03
Certificate

2d:f8:dd:06:41:e0:b2:af:59:69:78:fa:5a:2b:28:9b:e2:27:f3:64:44:dd:1d:c6:3e:05:f0:29:0b:70:4c:49
Signer

07-02-2023 20:39
Valid: false

.text
Size: 3.5MB - Virtual size: 3.5MB

.rdata
Size: 912KB - Virtual size: 911KB

.data
Size: 64KB - Virtual size: 100KB

.pdata
Size: 128KB - Virtual size: 127KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 36KB - Virtual size: 34KB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

1e:83:05:c1:f4:78:53:9a:c9:aa:05:f1:6c:7f:f2:10:bd:22:19:25:ba:45:49:3c:eb:fb:15:81:1f:a4:7d:7b
Signer

04-01-2023 04:36
Valid: true

.text
Size: 169.3MB - Virtual size: 169.3MB

.rdata
Size: 23.3MB - Virtual size: 23.3MB

.data
Size: 795KB - Virtual size: 3.2MB

.pdata
Size: 5.1MB - Virtual size: 5.1MB

.00cfg
Size: 512B - Virtual size: 40B

.gxfg
Size: 17KB - Virtual size: 17KB

.retplne
Size: 512B - Virtual size: 200B

.rodata
Size: 4KB - Virtual size: 4KB

.tls
Size: 1024B - Virtual size: 713B

.voltbl
Size: 512B - Virtual size: 116B

CPADinfo
Size: 512B - Virtual size: 56B

LZMADEC
Size: 4KB - Virtual size: 4KB

_RDATA
Size: 512B - Virtual size: 244B

malloc_h
Size: 512B - Virtual size: 227B

.rsrc
Size: 297KB - Virtual size: 296KB

.reloc
Size: 1.4MB - Virtual size: 1.4MB

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate