Malware[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Malware.zip
Size

464KB
MD5

c11a169b860bbf491e0e70de4789b8c3
SHA1

17638e9fd92ed3afe5fac62b0a2e7cf2b2298f98
SHA256

f4802cf836fb00e8a4ea6062b91760c52a61972e1536024bc8d87cc3808cc4c6
SHA512

11ba3bfc4a138d9119875f462725d5cfff682957229ea8d39b86be92c3d9c4a209ec01a6f242ba65a83946c04c8d8a5747e0082189aa6ea5d9a152251188e510
SSDEEP

12288:8aV8+hYJGklb69DDjkHcDmtBedaz5y4enE:8EhwGub6Z3kHcDmtBZz5FSE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/pentaphylax.epopee

Files

Malware.zip
.zip
RunDLL-1.bat
pentaphylax.epopee
.dll windows x86

bb73b10792501019aba44f9a83c3b5da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange

Exports

Exports

Q?0DffPropSet@@QAE@ABV0@@Z
Q?0DffPropSet@@QAE@XZ
Q?0DffPropertyReader@@QAE@ABV0@@Z
Q?0DffPropertyReader@@QAE@ABVSvxMSDffManager@@@Z
Q?0DffRecordHeader@@QAE@XZ
Q?0DffRecordManager@@QAE@AAVSvStream@@@Z
Q?0DffRecordManager@@QAE@XZ
Q?0EscherConnectorListEntry@@QAE@ABU0@@Z
Q?0EscherConnectorListEntry@@QAE@ABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@ABUPoint@awt@345@AAV12345@12@Z
Q?0EscherEx@@QAE@ABV?$shared_ptr@VEscherExGlobal@@@boost@@AAVSvStream@@@Z
Q?0EscherExAtom@@QAE@AAVSvStream@@GGE@Z
Q?0EscherExClientAnchor_Base@@QAE@ABV0@@Z
Q?0EscherExClientAnchor_Base@@QAE@XZ
Q?0EscherExClientRecord_Base@@QAE@ABV0@@Z
Q?0EscherExClientRecord_Base@@QAE@XZ
Q?0EscherExContainer@@QAE@AAVSvStream@@GG@Z
Q?0EscherExGlobal@@QAE@ABV0@@Z
Q?0EscherExGlobal@@QAE@K@Z
Q?0EscherGraphicProvider@@QAE@ABV0@@Z
Q?0EscherGraphicProvider@@QAE@K@Z
Q?0EscherPersistTable@@QAE@ABV0@@Z
Q?0EscherPersistTable@@QAE@XZ
Q?0EscherPropertyContainer@@QAE@AAVEscherGraphicProvider@@PAVSvStream@@AAVRectangle@@@Z
Q?0EscherPropertyContainer@@QAE@XZ
Q?0EscherSolverContainer@@QAE@ABV0@@Z
Q?0EscherSolverContainer@@QAE@XZ
Q?0HeaderFooterEntry@@QAE@ABU0@@Z
Q?0HeaderFooterEntry@@QAE@PBUPptSlidePersistEntry@@@Z
Q?0MSCodec_Std97@msfilter@@QAE@XZ
Q?0MSCodec_Xor95@msfilter@@QAE@H@Z
Q?0MSCodec_XorWord95@msfilter@@QAE@XZ
Q?0MSCodec_XorXLS95@msfilter@@QAE@XZ
Q?0MSDffImportRecords@@QAE@GE@Z
Q?0MSDffImportRecords_SAR@@QAE@GE@Z
Q?0MSFilterTracer@@QAE@ABV0@@Z
Q?0MSFilterTracer@@QAE@ABVOUString@rtl@@PAV?$Sequence@UPropertyValue@beans@star@sun@com@@@uno@star@sun@com@@@Z
Q?0MacroResolvedInfo@vba@ooo@@QAE@ABU012@@Z
Q?0MacroResolvedInfo@vba@ooo@@QAE@PAVSfxObjectShell@@@Z
Q?0OCX_Control@@QAE@ABV0@@Z
Q?0OCX_Control@@QAE@VString@@PAV0@@Z
Q?0PPTFieldEntry@@QAE@XZ
Q?0PPTParagraphObj@@QAE@AAUPPTStyleTextPropReader@@ABUPPTStyleSheet@@KAAUPPTTextRulerInterpreter@@@Z
Q?0PPTParagraphObj@@QAE@AAV0@@Z
Q?0PPTParagraphObj@@QAE@ABUPPTStyleSheet@@KG@Z
Q?0PPTPortionObj@@QAE@AAUPPTCharPropSet@@ABUPPTStyleSheet@@KK@Z
Q?0PPTPortionObj@@QAE@AAV0@@Z
Q?0PPTPortionObj@@QAE@ABUPPTStyleSheet@@KK@Z
Q?0PPTTextObj@@AAE@XZ
Q?0PPTTextObj@@QAE@AAV0@@Z
Q?0PPTTextObj@@QAE@AAVSvStream@@AAVSdrPowerPointImport@@AAUPptSlidePersistEntry@@PAUDffObjData@@@Z
Q?0PowerPointImportParam@@QAE@AAVSvStream@@KPAVMSFilterTracer@@@Z
Q?0PowerPointImportParam@@QAE@ABU0@@Z
Q?0PptCurrentUserAtom@@QAE@ABU0@@Z
Q?0PptCurrentUserAtom@@QAE@XZ
Q?0PptDocumentAtom@@QAE@XZ
Q?0PptSlidePersistList@@QAE@XZ
Q?0SdrEscherImport@@QAE@AAUPowerPointImportParam@@ABVString@@@Z
Q?0SdrEscherImport@@QAE@ABV0@@Z
Q?0SdrPowerPointImport@@QAE@AAUPowerPointImportParam@@ABVString@@@Z
Q?0SdrPowerPointImport@@QAE@ABV0@@Z
Q?0SvxImportMSVBasic@@QAE@AAVSfxObjectShell@@AAVSotStorage@@EE@Z
Q?0SvxImportMSVBasic@@QAE@ABV0@@Z
Q?0SvxMSConvertOCXControls@@QAE@ABV0@@Z
Q?0SvxMSConvertOCXControls@@QAE@PAVSfxObjectShell@@PAVSwPaM@@@Z
Q?0SvxMSDffImportRec@@QAE@ABU0@@Z
Q?0SvxMSDffImportRec@@QAE@XZ
Q?0SvxMSDffManager@@QAE@AAVSvStream@@ABVString@@JPAV1@PAVSdrModel@@JKK2PAVMSFilterTracer@@@Z
Q?0SvxMSDffManager@@QAE@AAVSvStream@@ABVString@@PAVMSFilterTracer@@@Z
Q?0SvxMSDffManager@@QAE@ABV0@@Z
Q?0SvxMSDffShapeInfos@@QAE@GE@Z
Q?0SvxMSDffShapeInfos_SAR@@QAE@GE@Z
Q?0SvxMSDffShapeTxBxSort@@QAE@GE@Z
Q?0SvxMSDffShapeTxBxSort_SAR@@QAE@GE@Z
Q?0SvxMSDffSolverContainer@@QAE@ABU0@@Z
Q?0SvxMSDffSolverContainer@@QAE@XZ
Q?0SvxMSExportOLEObjects@@QAE@K@Z
Q?1DffPropSet@@QAE@XZ
Q?1DffPropertyReader@@QAE@XZ
Q?1DffRecordManager@@QAE@XZ
Q?1EscherConnectorListEntry@@QAE@XZ
Q?1EscherEx@@UAE@XZ
Q?1EscherExAtom@@QAE@XZ
Q?1EscherExClientAnchor_Base@@UAE@XZ
Q?1EscherExClientRecord_Base@@UAE@XZ
Q?1EscherExContainer@@QAE@XZ
Q?1EscherExGlobal@@UAE@XZ
Q?1EscherGraphicProvider@@QAE@XZ
Q?1EscherPersistTable@@UAE@XZ
Q?1EscherPropertyContainer@@QAE@XZ
Q?1EscherSolverContainer@@QAE@XZ
Q?1HeaderFooterEntry@@QAE@XZ
Q?1MSCodec_Std97@msfilter@@QAE@XZ
Q?1MSCodec_Xor95@msfilter@@UAE@XZ
Q?1MSCodec_XorWord95@msfilter@@UAE@XZ
Q?1MSCodec_XorXLS95@msfilter@@UAE@XZ
Q?1MSDffImportRecords@@QAE@XZ
Q?1MSDffImportRecords_SAR@@QAE@XZ
Q?1MSFilterTracer@@QAE@XZ
Q?1MacroResolvedInfo@vba@ooo@@QAE@XZ
Q?1OCX_Control@@UAE@XZ
Q?1PPTFieldEntry@@QAE@XZ
Q?1PPTParagraphObj@@QAE@XZ
Q?1PPTPortionObj@@QAE@XZ
Q?1PPTTextObj@@QAE@XZ
Q?1PowerPointImportParam@@QAE@XZ
Q?1PptCurrentUserAtom@@QAE@XZ
Q?1PptSlidePersistList@@QAE@XZ
Q?1SdrEscherImport@@UAE@XZ
Q?1SdrPowerPointImport@@UAE@XZ
Q?1SvxImportMSVBasic@@QAE@XZ
Q?1SvxMSConvertOCXControls@@UAE@XZ
Q?1SvxMSDffImportRec@@QAE@XZ
Q?1SvxMSDffManager@@UAE@XZ
Q?1SvxMSDffShapeInfos@@QAE@XZ
Q?1SvxMSDffShapeInfos_SAR@@QAE@XZ
Q?1SvxMSDffShapeTxBxSort@@QAE@XZ
Q?1SvxMSDffShapeTxBxSort_SAR@@QAE@XZ
Q?1SvxMSDffSolverContainer@@QAE@XZ
Q?4DffPropSet@@QAEAAV0@ABV0@@Z
Q?4DffRecordHeader@@QAEAAV0@ABV0@@Z
Q?4DffRecordManager@@QAEAAV0@ABV0@@Z
Q?4EscherConnectorListEntry@@QAEAAU0@ABU0@@Z
Q?4EscherExClientAnchor_Base@@QAEAAV0@ABV0@@Z
Q?4EscherExClientRecord_Base@@QAEAAV0@ABV0@@Z
Q?4EscherExGlobal@@QAEAAV0@ABV0@@Z
Q?4EscherGraphicProvider@@QAEAAV0@ABV0@@Z
Q?4EscherPersistTable@@QAEAAV0@ABV0@@Z
Q?4EscherPropertyContainer@@QAEAAV0@ABV0@@Z
Q?4EscherSolverContainer@@QAEAAV0@ABV0@@Z
Q?4HeaderFooterEntry@@QAEAAU0@ABU0@@Z
Q?4MSFilterTracer@@QAEAAV0@ABV0@@Z
Q?4MacroResolvedInfo@vba@ooo@@QAEAAU012@ABU012@@Z
Q?4OCX_Control@@QAEAAV0@ABV0@@Z
Q?4PPTFieldEntry@@QAEAAU0@ABU0@@Z
Q?4PPTTextObj@@QAEAAV0@AAV0@@Z
Q?4PptCurrentUserAtom@@QAEAAU0@ABU0@@Z
Q?4PptDocumentAtom@@QAEAAU0@ABU0@@Z
Q?4PptInteractiveInfoAtom@@QAEAAU0@ABU0@@Z
Q?4SvxMSConvertOCXControls@@QAEAAV0@ABV0@@Z
Q?4SvxMSDffImportRec@@QAEAAU0@ABU0@@Z
Q?4SvxMSDffSolverContainer@@QAEAAU0@ABU0@@Z
Q?4SvxMSExportOLEObjects@@QAEAAV0@ABV0@@Z
Q?5@YAAAVSvStream@@AAV0@AAUPptCurrentUserAtom@@@Z
Q?5@YAAAVSvStream@@AAV0@AAUPptInteractiveInfoAtom@@@Z
Q?5@YAAAVSvStream@@AAV0@AAUSvxMSDffSolverContainer@@@Z
Q?5@YAAAVSvStream@@AAV0@AAVDffRecordHeader@@@Z
Q?8SvxMSDffImportRec@@QBEEABU0@@Z
Q?AMSDffImportRecords@@QBEPAUSvxMSDffImportRec@@G@Z
Q?AMSDffImportRecords_SAR@@QBEPAUSvxMSDffImportRec@@G@Z
Q?ASvxMSDffShapeInfos@@QBEPAUSvxMSDffShapeInfo@@G@Z
Q?ASvxMSDffShapeInfos_SAR@@QBEPAUSvxMSDffShapeInfo@@G@Z
Q?ASvxMSDffShapeTxBxSort@@QBEPAUSvxMSDffShapeOrder@@G@Z
Q?ASvxMSDffShapeTxBxSort_SAR@@QBEPAUSvxMSDffShapeOrder@@G@Z
Q?MSvxMSDffImportRec@@QBEEABU0@@Z
Q?_7EscherEx@@6B@
Q?_7EscherExClientAnchor_Base@@6B@
Q?_7EscherExClientRecord_Base@@6B@
Q?_7EscherExGlobal@@6B@
Q?_7EscherPersistTable@@6B@
Q?_7MSCodec_Xor95@msfilter@@6B@
Q?_7MSCodec_XorWord95@msfilter@@6B@
Q?_7MSCodec_XorXLS95@msfilter@@6B@
Q?_7OCX_Control@@6B@
Q?_7SdrEscherImport@@6B@
Q?_7SdrPowerPointImport@@6B@
Q?_7SvxMSConvertOCXControls@@6B@
Q?_7SvxMSDffManager@@6B@
Q?_FEscherExGlobal@@QAEXXZ
Q?_FEscherGraphicProvider@@QAEXXZ
Q?_FHeaderFooterEntry@@QAEXXZ
Q?_FMSDffImportRecords@@QAEXXZ
Q?_FMSDffImportRecords_SAR@@QAEXXZ
Q?_FMacroResolvedInfo@vba@ooo@@QAEXXZ
Q?_FSvxMSDffShapeInfos@@QAEXXZ
Q?_FSvxMSDffShapeInfos_SAR@@QAEXXZ
Q?_FSvxMSDffShapeTxBxSort@@QAEXXZ
Q?_FSvxMSDffShapeTxBxSort_SAR@@QAEXXZ
QAddAtom@EscherEx@@UAEXKGHH@Z
QAddAttribute@MSFilterTracer@@QAEXABVOUString@rtl@@0@Z
QAddChildAnchor@EscherEx@@UAEXABVRectangle@@@Z
QAddClientAnchor@EscherEx@@UAEXABVRectangle@@@Z
QAddConnector@EscherSolverContainer@@QAEXABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@ABUPoint@awt@456@AAV23456@12@Z
QAddDummyShape@EscherEx@@QAEKXZ
QAddOpt@EscherPropertyContainer@@QAEXGABVOUString@rtl@@@Z
QAddOpt@EscherPropertyContainer@@QAEXGEKPAEK@Z
QAddOpt@EscherPropertyContainer@@QAEXGKE@Z
QAddSdrObject@EscherEx@@QAEKABVSdrObject@@@Z
QAddSdrPage@EscherEx@@QAEXABVSdrPage@@@Z
QAddShape@EscherEx@@UAEXKKK@Z
QAddShape@EscherSolverContainer@@QAEXABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@K@Z
QAddUnoShapes@EscherEx@@QAEXABV?$Reference@VXShapes@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QAppendPortion@PPTParagraphObj@@QAEXAAVPPTPortionObj@@@Z
QApplyAttributes@DffPropertyReader@@QBEXAAVSvStream@@AAVSfxItemSet@@@Z
QApplyAttributes@DffPropertyReader@@QBEXAAVSvStream@@AAVSfxItemSet@@AAUDffObjData@@@Z
QApplyCustomShapeGeometryAttributes@DffPropertyReader@@ABEXAAVSvStream@@AAVSfxItemSet@@ABUDffObjData@@@Z
QApplyCustomShapeTextAttributes@DffPropertyReader@@ABEXAAVSfxItemSet@@@Z
QApplyFillAttributes@DffPropertyReader@@ABEXAAVSvStream@@AAVSfxItemSet@@ABUDffObjData@@@Z
QApplyLineAttributes@DffPropertyReader@@ABEXAAVSfxItemSet@@W4MSO_SPT@@@Z
QApplyTextAnchorAttributes@SdrPowerPointImport@@IBEXAAVPPTTextObj@@AAVSfxItemSet@@@Z
QApplyTextObj@SdrPowerPointImport@@MBEPAVSdrObject@@PAVPPTTextObj@@PAVSdrTextObj@@PAVSdPage@@PAVSfxStyleSheet@@PAPAV6@@Z
QApplyTo@PPTParagraphObj@@QAEXAAVSfxItemSet@@AAV?$optional@F@boost@@AAVSdrPowerPointImport@@KPBV1@@Z
QApplyTo@PPTPortionObj@@QAEXAAVSfxItemSet@@AAVSdrPowerPointImport@@K@Z
QApplyTo@PPTPortionObj@@QAEXAAVSfxItemSet@@AAVSdrPowerPointImport@@KPBVPPTTextObj@@@Z
QBeginAtom@EscherEx@@UAEXXZ
QCalc_nBLIPPos@SvxMSDffManager@@MBEKKK@Z
QCheckAndCorrectExcelTextRotation@DffPropertyReader@@ABEXAAVSvStream@@AAVSfxItemSet@@AAUDffObjData@@@Z
QCheckForConvertToSOObj@SvxMSDffManager@@KA?AV?$Reference@VXEmbeddedObject@embed@star@sun@com@@@uno@star@sun@com@@KAAVSotStorage@@ABV?$Reference@VXStorage@embed@star@sun@com@@@3456@ABVGraphic@@ABVRectangle@@@Z
QCheckMonotypeSorts@SdrEscherImport@@IBEXXZ
QCheckTimesNewRoman@SdrEscherImport@@IBEXXZ
QCheckTxBxStoryChain@SvxMSDffManager@@AAEXXZ
QCheckWingdings@SdrEscherImport@@IBEXXZ
QClear@DffRecordManager@@QAEXXZ
QClearAttributes@MSFilterTracer@@QAEXXZ
QCloseContainer@EscherEx@@UAEXXZ
QCommit@EscherEx@@UAEXAAVEscherPropertyContainer@@ABVRectangle@@@Z
QCommit@EscherPropertyContainer@@QAEXAAVSvStream@@GG@Z
QConsume@DffRecordManager@@QAEXAAVSvStream@@EK@Z
QConvertCountryToLanguage@msfilter@@YAGG@Z
QConvertLanguageToCountry@msfilter@@YAGG@Z
QConvertToOle2@SvxMSDffManager@@SAEAAVSvStream@@KPBVGDIMetaFile@@ABVSotStorageRef@@@Z
QCopyStorage_Impl@SvxImportMSVBasic@@AAEEABVString@@0@Z
QCount@MSDffImportRecords@@QBEGXZ
QCount@PPTPortionObj@@QBEKXZ
QCount@PPTTextObj@@QBEKXZ
QCount@SvxMSDffShapeInfos@@QBEGXZ
QCount@SvxMSDffShapeTxBxSort@@QBEGXZ
QCreateBlipPropertiesforOLEControl@EscherPropertyContainer@@QAEEABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@ABV?$Reference@VXShape@drawing@star@sun@com@@@3456@@Z
QCreateConnectorProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@AAVEscherSolverContainer@@AAURectangle@awt@456@AAG3@Z
QCreateCustomShapeProperties@EscherPropertyContainer@@QAEXW4MSO_SPT@@ABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QCreateEmbeddedBitmapProperties@EscherPropertyContainer@@QAEEABVOUString@rtl@@W4BitmapMode@drawing@star@sun@com@@@Z
QCreateEmbeddedHatchProperties@EscherPropertyContainer@@QAEEABUHatch@drawing@star@sun@com@@ABVColor@@_N@Z
QCreateFillProperties@EscherPropertyContainer@@QAEXABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@EABV?$Reference@VXShape@drawing@star@sun@com@@@3456@@Z
QCreateFillProperties@EscherPropertyContainer@@QAEXABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@EE@Z
QCreateGradientProperties@EscherPropertyContainer@@QAEXABUGradient@awt@star@sun@com@@@Z
QCreateGradientProperties@EscherPropertyContainer@@QAEXABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@E@Z
QCreateGraphicProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@ABVString@@EEE@Z
QCreateGraphicProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@ABVGraphicObject@@@Z
QCreateLineProperties@EscherPropertyContainer@@QAEXABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@E@Z
QCreateMediaGraphicProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QCreateOLEGraphicProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QCreatePolygonProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@KEAAURectangle@awt@456@PAVPolygon@@@Z
QCreateSaltDigest@MSCodec_Std97@msfilter@@QAE_NQBEQAE@Z
QCreateSdrOLEFromStorage@SvxMSDffManager@@SAPAVSdrOle2Obj@@ABVString@@AAVSotStorageRef@@ABV?$Reference@VXStorage@embed@star@sun@com@@@uno@star@sun@com@@ABVGraphic@@ABVRectangle@@4PAVSvStream@@AAKK_J@Z
QCreateShadowProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@@Z
QCreateShapeProperties@EscherPropertyContainer@@QAEEABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QCreateTable@SdrPowerPointImport@@QAEPAVSdrObject@@PAV2@PAKPAUSvxMSDffSolverContainer@@@Z
QCreateTextProperties@EscherPropertyContainer@@QAEXABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@KEE@Z
QCurrent@DffRecordManager@@QAEPAVDffRecordHeader@@XZ
QDecode@MSCodec_Std97@msfilter@@QAE_NPBXKPAEK@Z
QDecode@MSCodec_XorWord95@msfilter@@UAEXPAEK@Z
QDecode@MSCodec_XorXLS95@msfilter@@UAEXPAEK@Z
QDeleteAndDestroy@MSDffImportRecords@@QAEXGG@Z
QDeleteAndDestroy@SvxMSDffShapeInfos@@QAEXGG@Z
QDeleteAndDestroy@SvxMSDffShapeTxBxSort@@QAEXGG@Z
QDoSeek@EscherEx@@MAEEK@Z
QEncode@MSCodec_Std97@msfilter@@QAE_NPBXKPAEK@Z
QEndAtom@EscherEx@@UAEXGHH@Z
QEndElement@MSFilterTracer@@QAEXABVOUString@rtl@@@Z
QEndSdrObjectPage@EscherEx@@QAEXXZ
QEndShape@EscherEx@@UAEXGK@Z
QEndTracing@MSFilterTracer@@QAEXXZ
QEnterAdditionalTextGroup@EscherEx@@UAEPAVEscherExHostAppData@@XZ
QEnterGroup@EscherEx@@QAEKPBVRectangle@@@Z
QEnterGroup@EscherEx@@UAEKABVString@@PBVRectangle@@@Z
QExchangeInShapeOrder@SvxMSDffManager@@QBEXPAVSdrObject@@KPAVSwFlyFrmFmt@@0@Z
QExport@OCX_Control@@UAEEAAVSotStorageRef@@ABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@ABUSize@awt@567@@Z
QExportBorder@OCX_Control@@IBEEGAAE@Z
QExportColor@OCX_Control@@IBEKK@Z
QExportOLEObject@SvxMSExportOLEObjects@@QAEXAAVEmbeddedObjectRef@svt@@AAVSotStorage@@@Z
QExportOLEObject@SvxMSExportOLEObjects@@QAEXABV?$Reference@VXEmbeddedObject@embed@star@sun@com@@@uno@star@sun@com@@AAVSotStorage@@@Z
QExportSpecEffect@OCX_Control@@IBEEF@Z
QFillSystemColors@OCX_Control@@SAXXZ
QFindPage@PptSlidePersistList@@QBEGK@Z
QFirst@DffRecordManager@@QAEPAVDffRecordHeader@@XZ
QFirst@PPTParagraphObj@@QAEPAVPPTPortionObj@@XZ
QFirst@PPTTextObj@@QAEPAVPPTParagraphObj@@XZ
QFix16ToAngle@DffPropertyReader@@QBEJJ@Z
QFlush@EscherEx@@UAEXPAVSvStream@@@Z
QForEach@MSDffImportRecords@@QAEXGGP6AEABQAUSvxMSDffImportRec@@PAX@Z1@Z
QForEach@MSDffImportRecords@@QAEXP6AEABQAUSvxMSDffImportRec@@PAX@Z1@Z
QForEach@MSDffImportRecords_SAR@@QAEXGGP6AEABQAUSvxMSDffImportRec@@PAX@Z1@Z
QForEach@MSDffImportRecords_SAR@@QAEXP6AEABQAUSvxMSDffImportRec@@PAX@Z1@Z
QForEach@SvxMSDffShapeInfos@@QAEXGGP6AEABQAUSvxMSDffShapeInfo@@PAX@Z1@Z
QForEach@SvxMSDffShapeInfos@@QAEXP6AEABQAUSvxMSDffShapeInfo@@PAX@Z1@Z
QForEach@SvxMSDffShapeInfos_SAR@@QAEXGGP6AEABQAUSvxMSDffShapeInfo@@PAX@Z1@Z
QForEach@SvxMSDffShapeInfos_SAR@@QAEXP6AEABQAUSvxMSDffShapeInfo@@PAX@Z1@Z
QForEach@SvxMSDffShapeTxBxSort@@QAEXGGP6AEABQAUSvxMSDffShapeOrder@@PAX@Z1@Z
QForEach@SvxMSDffShapeTxBxSort@@QAEXP6AEABQAUSvxMSDffShapeOrder@@PAX@Z1@Z
QForEach@SvxMSDffShapeTxBxSort_SAR@@QAEXGGP6AEABQAUSvxMSDffShapeOrder@@PAX@Z1@Z
QForEach@SvxMSDffShapeTxBxSort_SAR@@QAEXP6AEABQAUSvxMSDffShapeOrder@@PAX@Z1@Z
QForceFontCollection@SdrPowerPointImport@@IBEEXZ
QFullRead@OCX_Control@@QAEEPAVSotStorageStream@@@Z
QGenerateDrawingId@EscherExGlobal@@QAEKXZ
QGenerateShapeId@EscherEx@@QAEKXZ
QGenerateShapeId@EscherExGlobal@@QAEKK_N@Z
QGetAdjustmentValue@EscherPropertyContainer@@SAEABUEnhancedCustomShapeAdjustmentValue@drawing@star@sun@com@@JJAAJ@Z
QGetAktPageId@SdrPowerPointImport@@IAEKXZ
QGetAttrib@PPTParagraphObj@@QAEEKAAKK@Z
QGetAttrib@PPTPortionObj@@QAEEKAAKK@Z
QGetAutoForm@SvxMSDffManager@@IBEPAVSdrObject@@W4MSO_SPT@@@Z
QGetBLIP@SvxMSDffManager@@QBEEKAAVGraphic@@PAVRectangle@@@Z
QGetBLIPCount@SvxMSDffManager@@QBEGXZ
QGetBLIPDirect@SvxMSDffManager@@QBEEAAVSvStream@@AAVGraphic@@PAVRectangle@@@Z
QGetBackground@PPTTextObj@@QBEPBVSfxItemSet@@XZ
QGetBaseURI@EscherGraphicProvider@@QAEABVOUString@rtl@@XZ
QGetBlibID@EscherGraphicProvider@@QAEKAAVSvStream@@ABVByteString@@ABVRectangle@@PBU4awt@star@sun@com@@PBVGraphicAttr@@@Z
QGetBlibStoreContainerSize@EscherGraphicProvider@@QBEKPAVSvStream@@@Z
QGetCharSet@SdrEscherImport@@QBEGK@Z
QGetCheckboxNum@SvxMSConvertOCXControls@@QAEGXZ
QGetClosestPoint@EscherConnectorListEntry@@QAEKABVPolygon@@ABUPoint@awt@star@sun@com@@@Z
QGetColor@EscherEx@@QAEKABVColor@@E@Z
QGetColor@EscherEx@@QAEKKE@Z
QGetColorFromPalette@SdrEscherImport@@UBEHGAAVColor@@@Z
QGetColorFromPalette@SdrPowerPointImport@@UBEHGAAVColor@@@Z
QGetColorFromPalette@SvxMSDffManager@@MBEHGAAVColor@@@Z
QGetConnectorRule@EscherConnectorListEntry@@QAEKE@Z
QGetConvertFlags@SvxMSDffManager@@QBEKXZ
QGetCtrlData@SvxMSDffManager@@IAEXJ@Z
QGetCurrentIndex@PPTTextObj@@QBEKXZ
QGetCustomShapeType@EscherPropertyContainer@@SA?AW4MSO_SPT@@ABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@AAK@Z
QGetCustomShapeType@EscherPropertyContainer@@SA?AW4MSO_SPT@@ABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@AAKAAVOUString@rtl@@@Z
QGetData@MSDffImportRecords@@QBEPBQAUSvxMSDffImportRec@@XZ
QGetData@MSDffImportRecords_SAR@@QBEPBQAUSvxMSDffImportRec@@XZ
QGetData@SvxMSDffShapeInfos@@QBEPBQAUSvxMSDffShapeInfo@@XZ
QGetData@SvxMSDffShapeInfos_SAR@@QBEPBQAUSvxMSDffShapeInfo@@XZ
QGetData@SvxMSDffShapeTxBxSort@@QBEPBQAUSvxMSDffShapeOrder@@XZ
QGetData@SvxMSDffShapeTxBxSort_SAR@@QBEPBQAUSvxMSDffShapeOrder@@XZ
QGetDateTime@PPTFieldEntry@@SAXKAAW4SvxDateFormat@@AAW4SvxTimeFormat@@@Z
QGetDestinationInstance@PPTTextObj@@QBEKXZ
QGetDggAtomSize@EscherExGlobal@@QBEKXZ
QGetDigestFromSalt@MSCodec_Std97@msfilter@@QAEXQBEQAE@Z
QGetDocId@MSCodec_Std97@msfilter@@QAEXQAE@Z
QGetDocumentAtom@SdrPowerPointImport@@QBEABUPptDocumentAtom@@XZ
QGetDrawOutliner@SdrPowerPointImport@@IBEPAVSdrOutliner@@PAVSdrTextObj@@@Z
QGetDrawPage@SvxMSConvertOCXControls@@MAEABV?$Reference@VXDrawPage@drawing@star@sun@com@@@uno@star@sun@com@@XZ
QGetDrawingContainerData@SvxMSDffManager@@IAEXAAVSvStream@@KK@Z
QGetDrawingGroupContainerData@SvxMSDffManager@@IAEXAAVSvStream@@K@Z
QGetDrawingShapeCount@EscherExGlobal@@QBEKK@Z
QGetEditNum@SvxMSConvertOCXControls@@QAEGXZ
QGetEncryptKey@MSCodec_Std97@msfilter@@QAEXQBEQAE1@Z
QGetEncryptionData@MSCodec_Std97@msfilter@@QAE?AV?$Sequence@UNamedValue@beans@star@sun@com@@@uno@star@sun@com@@XZ
QGetEncryptionData@MSCodec_Xor95@msfilter@@QAE?AV?$Sequence@UNamedValue@beans@star@sun@com@@@uno@star@sun@com@@XZ
QGetFidclData@SvxMSDffManager@@AAEXJ@Z
QGetFlags@SvxMSExportOLEObjects@@QBEKXZ
QGetFontEnityAtom@SdrEscherImport@@QBEPAUPptFontEntityAtom@@K@Z
QGetFormComps@SvxMSConvertOCXControls@@IAEABV?$Reference@VXIndexContainer@container@star@sun@com@@@uno@star@sun@com@@XZ
QGetGlobalChildAnchor@SvxMSDffManager@@QAE?AVRectangle@@ABVDffRecordHeader@@AAVSvStream@@AAV2@@Z
QGetGradientColor@EscherPropertyContainer@@SAKPBUGradient@awt@star@sun@com@@K@Z
QGetGraphicProvider@EscherEx@@QAEAAVEscherGraphicProvider@@XZ
QGetGroupAnchors@SvxMSDffManager@@QAEXABVDffRecordHeader@@AAVSvStream@@AAVRectangle@@2ABV4@3@Z
QGetGroupLevel@EscherEx@@QBEKXZ
QGetHellLayerId@EscherEx@@QBEGXZ
QGetInDialog@OCX_Control@@QAE_NXZ
QGetInstance@PPTTextObj@@QBEKXZ
QGetLastShapeId@EscherExGlobal@@QBEKK@Z
QGetLineArrow@EscherPropertyContainer@@SAEEABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@AAW4ESCHER_LineEnd@@AAJ2@Z
QGetMSBasicStorageName@SvxImportMSVBasic@@SA?AVString@@XZ
QGetMaskForInstance@HeaderFooterEntry@@QAEKK@Z
QGetMasterPageId@SdrPowerPointImport@@IBEKGW4PptPageKind@@@Z
QGetMasterPageIndex@SdrPowerPointImport@@QBEGGW4PptPageKind@@@Z
QGetModel@SvxMSDffManager@@QBEPAVSdrModel@@XZ
QGetNotesPageId@SdrPowerPointImport@@IBEKG@Z
QGetNotesPageSize@PptDocumentAtom@@QBE?AVSize@@XZ
QGetOEPlaceHolderAtom@PPTTextObj@@QBEPAUPptOEPlaceholderAtom@@XZ
QGetOLEStorageName@SvxMSDffManager@@MBEEJAAVString@@AAVSotStorageRef@@AAV?$Reference@VXStorage@embed@star@sun@com@@@uno@star@sun@com@@@Z
QGetObject@MSDffImportRecords@@QBEPAUSvxMSDffImportRec@@G@Z
QGetObject@MSDffImportRecords_SAR@@QBEPAUSvxMSDffImportRec@@G@Z
QGetObject@SvxMSDffShapeInfos@@QBEPAUSvxMSDffShapeInfo@@G@Z
QGetObject@SvxMSDffShapeInfos_SAR@@QBEPAUSvxMSDffShapeInfo@@G@Z
QGetObject@SvxMSDffShapeTxBxSort@@QBEPAUSvxMSDffShapeOrder@@G@Z
QGetObject@SvxMSDffShapeTxBxSort_SAR@@QBEPAUSvxMSDffShapeOrder@@G@Z
QGetOpt@EscherPropertyContainer@@QBEEGAAK@Z
QGetOpt@EscherPropertyContainer@@QBEEGAAUEscherPropSortStruct@@@Z
QGetOpts@EscherPropertyContainer@@QBE?AV?$vector@UEscherPropSortStruct@@V?$allocator@UEscherPropSortStruct@@@std@@@std@@XZ
QGetPageCount@SdrPowerPointImport@@QBEGW4PptPageKind@@@Z
QGetPageKind@SdrPowerPointImport@@QBE?AW4PptPageKind@@XZ
QGetPageList@SdrPowerPointImport@@IBEPAVPptSlidePersistList@@W4PptPageKind@@@Z
QGetPageNum@SdrPowerPointImport@@QBEGXZ
QGetPageSize@PptDocumentAtom@@QBE?AVSize@@ABV2@@Z
QGetPageSize@SdrPowerPointImport@@QBE?AVSize@@XZ
QGetPersistOffset@EscherEx@@QAEKK@Z
QGetPictureStream@EscherExGlobal@@QAEPAVSvStream@@XZ
QGetPolyPolygon@EscherPropertyContainer@@SA?AVPolyPolygon@@ABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QGetPolyPolygon@EscherPropertyContainer@@SA?AVPolyPolygon@@ABVAny@uno@star@sun@com@@@Z
QGetPos@MSDffImportRecords@@QBEGABQAUSvxMSDffImportRec@@@Z
QGetPos@MSDffImportRecords_SAR@@QBEGABQAUSvxMSDffImportRec@@@Z
QGetPos@SvxMSDffShapeInfos@@QBEGABQAUSvxMSDffShapeInfo@@@Z
QGetPos@SvxMSDffShapeInfos_SAR@@QBEGABQAUSvxMSDffShapeInfo@@@Z
QGetPos@SvxMSDffShapeTxBxSort@@QBEGABQAUSvxMSDffShapeOrder@@@Z
QGetPos@SvxMSDffShapeTxBxSort_SAR@@QBEGABQAUSvxMSDffShapeOrder@@@Z
QGetPrefSize@EscherGraphicProvider@@QAEEKAAVSize@@AAVMapMode@@@Z
QGetProperty@MSFilterTracer@@QBE?AVAny@uno@star@sun@com@@ABVOUString@rtl@@PBV23456@@Z
QGetPropertyBool@DffPropSet@@QBE_NK_N@Z
QGetPropertyString@DffPropSet@@QBE?AVOUString@rtl@@KAAVSvStream@@@Z
QGetPropertyValue@DffPropSet@@QBEKKK@Z
QGetRecBegFilePos@DffRecordHeader@@QBEKXZ
QGetRecEndFilePos@DffRecordHeader@@QBEKXZ
QGetRecordHeader@DffRecordManager@@QAEPAVDffRecordHeader@@GW4DffSeekToContentMode@@@Z
QGetSaveWarningOfMSVBAStorage@SvxImportMSVBasic@@SAKAAVSfxObjectShell@@@Z
QGetSdrObject@EscherEx@@SAPBVSdrObject@@ABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QGetServiceFactory@SvxMSConvertOCXControls@@QAEABV?$Reference@VXMultiServiceFactory@lang@star@sun@com@@@uno@star@sun@com@@XZ
QGetShape@SvxMSDffManager@@QAEEKAAPAVSdrObject@@AAUSvxMSDffImportData@@@Z
QGetShapeContainerData@SvxMSDffManager@@IAEEAAVSvStream@@KKK@Z
QGetShapeGroupContainerData@SvxMSDffManager@@IAEEAAVSvStream@@KEK@Z
QGetShapeId@EscherSolverContainer@@QBEKABV?$Reference@VXShape@drawing@star@sun@com@@@uno@star@sun@com@@@Z
QGetShapeInfos@SvxMSDffManager@@QBEPBVSvxMSDffShapeInfos@@XZ
QGetShapeOrders@SvxMSDffManager@@QBEPBVSvxMSDffShapeOrders@@XZ
QGetShapeType@PPTTextObj@@QBE?AW4MSO_SPT@@XZ
QGetShapes@SvxMSConvertOCXControls@@IAEABV?$Reference@VXShapes@drawing@star@sun@com@@@uno@star@sun@com@@XZ
QGetSlideLayoutAtom@SdrEscherImport@@MBEPBUPptSlideLayoutAtom@@XZ
QGetSlideLayoutAtom@SdrPowerPointImport@@UBEPBUPptSlideLayoutAtom@@XZ
QGetSlidesPageSize@PptDocumentAtom@@QBE?AVSize@@XZ
QGetStream@EscherEx@@QBEAAVSvStream@@XZ
QGetStreamPos@EscherEx@@QBEKXZ
QGetSvxMSDffSettings@SvxMSDffManager@@QBEKXZ
QGetTextField@PPTPortionObj@@QAEPAVSvxFieldItem@@XZ
QGetTextFlags@PPTTextObj@@QBEKXZ
QGetTextSize@PPTParagraphObj@@QAEKXZ
QGetValueForEnhancedCustomShapeParameter@EscherPropertyContainer@@QAEJABUEnhancedCustomShapeParameter@drawing@star@sun@com@@ABV?$vector@JV?$allocator@J@std@@@std@@E@Z
QGetVertical@PPTTextObj@@QBEEXZ
QHasDggContainer@EscherExGlobal@@QBE_NXZ
QHasGraphics@EscherGraphicProvider@@QBEEXZ
QHasMasterPage@SdrPowerPointImport@@QBEEGW4PptPageKind@@@Z
QHasTabulator@PPTPortionObj@@QAEEXZ
QImplClear@PPTParagraphObj@@IAEXXZ
QImplClear@PPTTextObj@@AAEXXZ
QImplCreateEmbeddedBmp@EscherPropertyContainer@@AAEEABVByteString@@@Z
QImplCreateGraphicAttributes@EscherPropertyContainer@@AAEXABV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@KE@Z
QImplGetColor@EscherPropertyContainer@@AAEKKE@Z
QImplInit@EscherPropertyContainer@@AAEXXZ
QImplInsertBlib@EscherGraphicProvider@@IAEKPAVEscherBlibEntry@@@Z
QImplQueryPictureStream@EscherExGlobal@@EAEPAVSvStream@@XZ
QImport@OCX_Control@@UAEEAAV?$Reference@VXNameContainer@container@star@sun@com@@@uno@star@sun@com@@@Z
QImport@OCX_Control@@UAEEAAV?$Reference@VXPropertySet@beans@star@sun@com@@@uno@star@sun@com@@@Z
QImport@OCX_Control@@UAEEABV?$Reference@VXMultiServiceFactory@lang@star@sun@com@@@uno@star@sun@com@@AAV?$Reference@VXFormComponent@form@star@sun@com@@@3456@AAUSize@awt@456@@Z
QImport@SvxImportMSVBasic@@QAEHABVString@@0ABV?$vector@VString@@V?$allocator@VString@@@std@@@std@@EE@Z
QImport@SvxImportMSVBasic@@QAEHABVString@@0EE@Z
QImportBorder@OCX_Control@@IBEFGG@Z
QImportCode_Impl@SvxImportMSVBasic@@AAEEABVString@@0ABV?$vector@VString@@V?$allocator@VString@@@std@@@std@@EE@Z
QImportColor@OCX_Control@@IBEKK@Z
QImportExOleObjStg@SdrPowerPointImport@@IBEPAVSvMemoryStream@@KAAK@Z
QImportFontWork@SvxMSDffManager@@IBEPAVSdrObject@@AAVSvStream@@AAVSfxItemSet@@AAVRectangle@@@Z
QImportForms_Impl@SvxImportMSVBasic@@AAE_NABVString@@0@Z
QImportGradientColor@DffPropertyReader@@QBEXAAVSfxItemSet@@W4MSO_FillType@@NN@Z
QImportGraphic@SvxMSDffManager@@IBEPAVSdrObject@@AAVSvStream@@AAVSfxItemSet@@ABUDffObjData@@@Z
QImportGroup@SvxMSDffManager@@QAEPAVSdrObject@@ABVDffRecordHeader@@AAVSvStream@@PAXAAVRectangle@@ABV5@HPAJ@Z
QImportHeaderFooterContainer@SdrEscherImport@@QAEXAAVDffRecordHeader@@AAUHeaderFooterEntry@@@Z
QImportOLE@SdrPowerPointImport@@MBEPAVSdrObject@@JABVGraphic@@ABVRectangle@@1H_J@Z
QImportOLE@SvxMSDffManager@@MBEPAVSdrObject@@JABVGraphic@@ABVRectangle@@1H_J@Z
QImportObj@SvxMSDffManager@@QAEPAVSdrObject@@AAVSvStream@@PAXAAVRectangle@@ABV4@HPAJ@Z
QImportPage@SdrPowerPointImport@@QAEXPAVSdrPage@@PBUPptSlidePersistEntry@@@Z
QImportPageBackgroundObject@SdrPowerPointImport@@QAEPAVSdrObject@@ABVSdrPage@@AAKE@Z
QImportShape@SvxMSDffManager@@QAEPAVSdrObject@@ABVDffRecordHeader@@AAVSvStream@@PAXAAVRectangle@@ABV5@HPAJE@Z
QImportSpecEffect@OCX_Control@@IBEFE@Z
QInitCipher@MSCodec_Std97@msfilter@@QAE_NK@Z
QInitCipher@MSCodec_Xor95@msfilter@@QAEXXZ
QInitCodec@MSCodec_Std97@msfilter@@QAEEABV?$Sequence@UNamedValue@beans@star@sun@com@@@uno@star@sun@com@@@Z
QInitCodec@MSCodec_Xor95@msfilter@@QAEEABV?$Sequence@UNamedValue@beans@star@sun@com@@@uno@star@sun@com@@@Z
QInitKey@MSCodec_Std97@msfilter@@QAEXQBGQBE@Z
QInitKey@MSCodec_Xor95@msfilter@@QAEXQBE@Z
QInitSvxMSDffManager@SvxMSDffManager@@QAEXJPAVSvStream@@K@Z
QInitializePropSet@DffPropSet@@QBEXG@Z
QInsert@MSDffImportRecords@@QAEEABQAUSvxMSDffImportRec@@@Z
QInsert@MSDffImportRecords@@QAEEABQAUSvxMSDffImportRec@@AAG@Z
QInsert@MSDffImportRecords@@QAEXPBQAUSvxMSDffImportRec@@G@Z
QInsert@MSDffImportRecords@@QAEXPBV1@GG@Z
QInsert@MSDffImportRecords_SAR@@QAEXABQAUSvxMSDffImportRec@@G@Z
QInsert@MSDffImportRecords_SAR@@QAEXPBQAUSvxMSDffImportRec@@GG@Z
QInsert@MSDffImportRecords_SAR@@QAEXPBV1@GGG@Z
QInsert@SvxMSDffShapeInfos@@QAEEABQAUSvxMSDffShapeInfo@@@Z
QInsert@SvxMSDffShapeInfos@@QAEEABQAUSvxMSDffShapeInfo@@AAG@Z
QInsert@SvxMSDffShapeInfos@@QAEXPBQAUSvxMSDffShapeInfo@@G@Z
QInsert@SvxMSDffShapeInfos@@QAEXPBV1@GG@Z
QInsert@SvxMSDffShapeInfos_SAR@@QAEXABQAUSvxMSDffShapeInfo@@G@Z
QInsert@SvxMSDffShapeInfos_SAR@@QAEXPBQAUSvxMSDffShapeInfo@@GG@Z
QInsert@SvxMSDffShapeInfos_SAR@@QAEXPBV1@GGG@Z
QInsert@SvxMSDffShapeTxBxSort@@QAEEABQAUSvxMSDffShapeOrder@@@Z
QInsert@SvxMSDffShapeTxBxSort@@QAEEABQAUSvxMSDffShapeOrder@@AAG@Z
QInsert@SvxMSDffShapeTxBxSort@@QAEXPBQAUSvxMSDffShapeOrder@@G@Z
QInsert@SvxMSDffShapeTxBxSort@@QAEXPBV1@GG@Z
QInsert@SvxMSDffShapeTxBxSort_SAR@@QAEXABQAUSvxMSDffShapeOrder@@G@Z
QInsert@SvxMSDffShapeTxBxSort_SAR@@QAEXPBQAUSvxMSDffShapeOrder@@GG@Z
QInsert@SvxMSDffShapeTxBxSort_SAR@@QAEXPBV1@GGG@Z
QInsertAtCurrentPos@EscherEx@@QAEXK_N@Z
QInsertAtPersistOffset@EscherEx@@UAEEKK@Z
QInsertControl@SvxMSConvertOCXControls@@UAEEABV?$Reference@VXFormComponent@form@star@sun@com@@@uno@star@sun@com@@ABUSize@awt@456@PAV?$Reference@VXShape@drawing@star@sun@com@@@3456@E@Z
QInsertPersistOffset@EscherEx@@QAEXKK@Z
QIsComplex@DffPropSet@@QBEEK@Z
QIsContainer@DffRecordHeader@@QBEHXZ
QIsDefaultObject@EscherPropertyContainer@@SAEPAVSdrObjCustomShape@@W4MSO_SPT@@@Z
QIsEnabled@MSFilterTracer@@QBEEXZ
QIsFontAvailable@SdrEscherImport@@QBEEK@Z
QIsFontWork@EscherPropertyContainer@@QBEEXZ
QIsHardAttribute@DffPropSet@@QBEEK@Z
QIsNoteOrHandout@SdrPowerPointImport@@QBEEGW4PptPageKind@@@Z
QIsProperty@DffPropSet@@QBEEK@Z
QIsToDisplay@HeaderFooterEntry@@QAEKK@Z
QIsVerticalText@SdrPowerPointImport@@IBEEXZ
QLast@DffRecordManager@@QAEPAVDffRecordHeader@@XZ
QLeaveGroup@EscherEx@@UAEXXZ

Sections

.text
Size: 479KB - Virtual size: 479KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 258KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb73b10792501019aba44f9a83c3b5da

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 479KB - Virtual size: 479KB

.rdata Size: 258KB - Virtual size: 257KB

.data Size: 8KB - Virtual size: 9KB

.rsrc Size: 112KB - Virtual size: 108KB

.reloc Size: 44KB - Virtual size: 44KB

.text
Size: 479KB - Virtual size: 479KB

.rdata
Size: 258KB - Virtual size: 257KB

.data
Size: 8KB - Virtual size: 9KB

.rsrc
Size: 112KB - Virtual size: 108KB

.reloc
Size: 44KB - Virtual size: 44KB