Extracted

• 1380-63-0x0000000000400000-0x0000000000478000-memory.dmp

  .exe windows x86

  59095c7cacb1d079e92fe30a5fb5351e

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  msvbvm60

  __vbaVarTstGt

  __vbaVarSub

  __vbaNextEachAry

  _CIcos

  _adj_fptan

  __vbaStrI4

  __vbaHresultCheck

  __vbaVarMove

  __vbaVarVargNofree

  __vbaCyMul

  __vbaAryMove

  __vbaFreeVar

  __vbaLenBstr

  __vbaStrVarMove

  __vbaEnd

  __vbaPut3

  __vbaFreeVarList

  _adj_fdiv_m64

  __vbaFpCDblR8

  ord698

  __vbaVarIndexStore

  __vbaNextEachVar

  __vbaFreeObjList

  ord516

  __vbaStrErrVarCopy

  __vbaVarIndexLoadRef

  _adj_fprem1

  ord518

  ord626

  __vbaCopyBytes

  __vbaStrCat

  ord660

  __vbaLsetFixstr

  __vbaStrDate

  __vbaRecDestruct

  __vbaSetSystemError

  __vbaHresultCheckObj

  __vbaLenBstrB

  ord556

  __vbaLenVar

  ord558

  _adj_fdiv_m32

  ord666

  __vbaAryDestruct

  __vbaVarXor

  __vbaVarIndexLoadRefLock

  __vbaLateMemSt

  ord593

  __vbaForEachCollObj

  __vbaExitProc

  __vbaVarForInit

  ord594

  __vbaObjSet

  __vbaOnError

  _adj_fdiv_m16i

  __vbaObjSetAddref

  _adj_fdivr_m16i

  __vbaVarIndexLoad

  ord598

  __vbaBoolVar

  ord520

  ord708

  __vbaBoolVarNull

  __vbaRefVarAry

  __vbaVarTstLt

  _CIsin

  __vbaErase

  ord631

  ord709

  ord525

  ord632

  __vbaVarCmpGt

  __vbaVarZero

  __vbaNextEachCollObj

  __vbaChkstk

  ord526

  __vbaFileClose

  EVENT_SINK_AddRef

  __vbaGenerateBoundsError

  __vbaGet3

  __vbaStrCmp

  ord529

  __vbaPutOwner3

  __vbaAryConstruct2

  __vbaVarTstEq

  __vbaDateR8

  ord560

  __vbaI2I4

  __vbaObjVar

  DllFunctionCall

  __vbaVarLateMemSt

  __vbaVarOr

  __vbaFpUI1

  ord564

  __vbaLbound

  __vbaRedimPreserve

  _adj_fpatan

  __vbaFixstrConstruct

  __vbaR8Cy

  __vbaRedim

  __vbaUI1ErrVar

  EVENT_SINK_Release

  __vbaNew

  ord601

  __vbaUI1I2

  _CIsqrt

  __vbaObjIs

  __vbaVarAnd

  EVENT_SINK_QueryInterface

  ord710

  __vbaStr2Vec

  __vbaVarMul

  __vbaStrUI1

  __vbaUI1I4

  __vbaExceptHandler

  __vbaPrintFile

  ord712

  __vbaStrToUnicode

  ord606

  _adj_fprem

  _adj_fdivr_m64

  __vbaVarDiv

  ord607

  ord608

  ord716

  ord531

  __vbaFPException

  ord717

  ord532

  __vbaInStrVar

  __vbaUbound

  __vbaStrVarVal

  __vbaGetOwner3

  __vbaVarCat

  __vbaDateVar

  __vbaI2Var

  ord537

  ord644

  ord645

  _CIlog

  __vbaErrorOverflow

  __vbaFileOpen

  ord648

  __vbaNew2

  __vbaInStr

  __vbaVar2Vec

  ord570

  __vbaVarLateMemCallLdRf

  __vbaVarInt

  _adj_fdiv_m32i

  ord572

  _adj_fdivr_m32i

  ord573

  __vbaVarSetObj

  __vbaStrCopy

  ord681

  __vbaVarNot

  __vbaFreeStrList

  _adj_fdivr_m32

  __vbaPowerR8

  _adj_fdiv_r

  ord685

  ord100

  ord579

  __vbaVarTstNe

  __vbaVarSetVar

  __vbaI4Var

  __vbaForEachAry

  __vbaVarCmpEq

  __vbaVarAdd

  __vbaLateMemCall

  __vbaAryLock

  __vbaVarDup

  __vbaStrToAnsi

  __vbaFpI2

  ord616

  __vbaVarCopy

  __vbaVarLateMemCallLd

  __vbaFpI4

  __vbaLateMemCallLd

  ord617

  _CIatan

  __vbaAryCopy

  __vbaStrMove

  __vbaStrVarCopy

  __vbaForEachVar

  ord619

  _allmul

  _CItan

  __vbaAryUnlock

  __vbaUI1Var

  __vbaVarForNext

  _CIexp

  __vbaMidStmtBstr

  __vbaI4ErrVar

  ord580

  __vbaFreeStr

  __vbaFreeObj

  __vbaRecAssign

  ord581

  Sections

  .text

  Size: 304KB - Virtual size: 302KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 168KB - Virtual size: 164KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ