Setup_Loader v2[.]1[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

Setup_Loader v2.1.zip
Size

9.7MB
MD5

b7abb13ba4d441a09a0798793bc7bcab
SHA1

75623623eff10d77f1af44607d7c44933b7fe472
SHA256

c5958711c87358d92b505eda53dd9f167ac6dcbc0e509b34cbf1c69e2768f46e
SHA512

536cee8ac2f941b8721e3bb37169fa7e86a613889478def98e757f3a2f42fdc0a1f3fde91cd1901b299bffe9de34a3b769edcd0ba7b85ea617e1b2f450c94816
SSDEEP

196608:XSh69BgkKubPYIs+kkqciGjbvuSUHY8nzyqGZBAPChNwxD6Sr:CMKkKubAI8wmSUHLGruK02A

Score

3^/10

Malware Config

Signatures

Unsigned PE 5 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Setup_Loader v2.1/ImagingEngine.dll
unpack001/Setup_Loader v2.1/PhotoAcq.dll
unpack001/Setup_Loader v2.1/PhotoBase.dll
unpack001/Setup_Loader v2.1/PhotoViewer.dll
unpack001/Setup_Loader v2.1/Setup_Loader v2.1.exe

Files

Setup_Loader v2.1.zip
.zip

Password: 1717
Setup_Loader v2.1/7zxa.dll
.dll windows x64

Password: 1717

e84ea73d0d9b417a1bc1810c7b836d4f

Code Sign

48:1b:6a:07:26:d2:e8:3f:26:02:d4:82:5a:cd
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:1d:40:ae:3f:3a:1f:b2:bc:3d:83:95
Certificate

Issuer

CN=GlobalSign CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

25/08/2020, 13:42

Not After

26/08/2023, 13:42

Subject

CN=win.rar GmbH,O=win.rar GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

48:1b:6a:07:26:d2:e8:3f:26:02:d4:82:5a:cd
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

15/06/2016, 00:00

Not After

15/06/2024, 00:00

Subject

CN=GlobalSign CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageOCSPSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

73:1d:40:ae:3f:3a:1f:b2:bc:3d:83:95
Certificate

Issuer

CN=GlobalSign CodeSigning CA - SHA256 - G3,O=GlobalSign nv-sa,C=BE

Not Before

25/08/2020, 13:42

Not After

26/08/2023, 13:42

Subject

CN=win.rar GmbH,O=win.rar GmbH,L=Berlin,ST=Berlin,C=DE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

01:c2:9c:7a:f4:7a:a6:02:58:0e:af:32:b1:23:b1:1d
Certificate

Issuer

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Not Before

06/04/2022, 07:44

Not After

08/05/2033, 07:44

Subject

CN=Globalsign TSA for Advanced - G4,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Not Before

20/06/2018, 00:00

Not After

10/12/2034, 00:00

Subject

CN=GlobalSign Timestamping CA - SHA384 - G4,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

01:f2:40:42:40:ce:fd:22:db:e9:6c:71:fc
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

20/02/2019, 00:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R6,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:21:58:53:08:a2
Certificate

Issuer

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Not Before

18/03/2009, 10:00

Not After

18/03/2029, 10:00

Subject

CN=GlobalSign,OU=GlobalSign Root CA - R3,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0f:14:1e:17:cc:70:fc:60:fb:d6:1d:3b:30:73:05:c2:fd:e6:83:a8:20:82:ef:05:35:a3:c5:de:52:54:d0:e0
Signer

Actual PE Digest

0f:14:1e:17:cc:70:fc:60:fb:d6:1d:3b:30:73:05:c2:fd:e6:83:a8:20:82:ef:05:35:a3:c5:de:52:54:d0:e0

Digest Algorithm

sha256

PE Digest Matches

true

c4:0c:cb:37:b9:06:0e:be:9f:28:69:a3:48:76:a9:85:bb:f0:81:2a
Signer

Actual PE Digest

c4:0c:cb:37:b9:06:0e:be:9f:28:69:a3:48:76:a9:85:bb:f0:81:2a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

oleaut32

SysFreeString
SysAllocStringByteLen
SysStringLen
VariantClear
SysAllocStringLen

msvcrt

_onexit
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
__C_specific_handler
_beginthreadex
_purecall
memset
strlen
_initterm
malloc
__CxxFrameHandler
_CxxThrowException
memmove
memcpy
memcmp
free
__dllonexit

kernel32

GetProcessAffinityMask
GetCurrentProcess
GetSystemInfo
GlobalMemoryStatusEx
Sleep
InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreW
ResetEvent
SetEvent
CreateEventW
WaitForSingleObject
CloseHandle
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetLastError

Exports

Exports

CreateDecoder
CreateEncoder
CreateObject
GetHandlerProperty
GetHandlerProperty2
GetHashers
GetIsArc
GetMethodProperty
GetModuleProp
GetNumberOfFormats
GetNumberOfMethods
SetCaseSensitive
SetCodecs
SetLargePageMode

Sections

.text
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/ImagingEngine.dll
.dll windows x86

Password: 1717

e8b9ff48aa489aa7c98bab0f09e4ea68

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

memcmp
memmove
realloc
_errno
memset
floor
ceil
_controlfp
_strdup
setlocale
_vsnprintf
_stricmp
atoi
tolower
_fpclass
isalpha
isdigit
atof
isxdigit
isalnum
strchr
toupper
isspace
wcspbrk
_wcsicmp
_wcsnicmp
_beginthreadex
_vscwprintf
vswprintf_s
wcsrchr
_waccess
qsort
_clearfp
_finite
_isnan
_purecall
calloc
_control87
memmove_s
memcpy_s
_except_handler4_common
_onexit
__dllonexit
_unlock
_lock
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_initterm
malloc
free
_amsg_exit
_XcptFilter
swprintf_s
_ftol2_sse
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CxxThrowException
__CxxFrameHandler3
_ftol2
memcpy

kernel32

GetModuleHandleA
GetModuleHandleW
GetSystemInfo
GetFullPathNameA
GetFileSize
CreateFileMappingA
CreateFileA
LoadLibraryA
GetProcAddress
DecodePointer
IsProcessorFeaturePresent
GetProcessHeap
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
LeaveCriticalSection
EnterCriticalSection
SizeofResource
LockResource
LoadResource
FindResourceExW
QueryPerformanceFrequency
RaiseException
SetLastError
CloseHandle
CreateFileW
GetTempFileNameW
GetTempPathW
DeleteFileW
CreateFileMappingW
GetLastError
UnmapViewOfFile
MapViewOfFile
CreateEventW
ResumeThread
SetEvent
WaitForSingleObject
WideCharToMultiByte
lstrcmpiA
OutputDebugStringA
LoadLibraryW
GetModuleFileNameW
VirtualAlloc
VirtualFree
HeapFree
LoadLibraryExA
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTickCount
GetSystemTimeAsFileTime
QueryPerformanceCounter
Sleep
DisableThreadLibraryCalls
SystemTimeToFileTime
GetSystemTime
GetCurrentProcessId
GetCurrentThreadId
DeleteCriticalSection
InitializeCriticalSection
HeapAlloc
EncodePointer

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
UnregisterTraceGuids
RegisterTraceGuidsW
GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
TraceEvent
RegOpenKeyExA

photobase

?IsVistaOrGreater@OS@Base@@YG_NXZ
?New@BasePrivate@@YAPAXI_N@Z
?BaseAtlThrow@ATL@@YGXJ@Z
?Initialize@Base@@YGXXZ
??1Exception@Base@@UAE@XZ
?ThrowLastError@Base@@YGXXZ
?Throw@Base@@YGXJ@Z
?GetBaseStringManager@String@Base@@SGAAVCAtlStringMgr@ATL@@XZ
?GetAssertCallback@Base@@YGAAP6G_NPBDH0@ZXZ
?Delete@BasePrivate@@YAXPAX@Z

oleaut32

SysFreeString
SysAllocStringLen
SysAllocString

shlwapi

PathRemoveFileSpecW
PathFileExistsW

gdi32

CreateDCW
DeleteDC
SetRectRgn
GetRgnBox
CombineRgn
CreateRectRgn
CreateRectRgnIndirect
DeleteObject
GetRegionData
RectInRegion
CreateCompatibleDC
CreateDIBitmap
BitBlt
SelectObject
GetDeviceCaps
GetICMProfileW

user32

ReleaseCapture
UnregisterClassA
SetCapture
IsWindow
GetClassInfoExW
DestroyWindow
InvalidateRect
GetClientRect
GetWindowLongW
ScrollWindowEx
GetUpdateRgn
GetDC
LoadCursorW
RegisterClassExW
GetSystemMetrics
DefWindowProcW
CallWindowProcW
SetCursor
GetCursorPos
GetMonitorInfoW
InvalidateRgn
EnumDisplayMonitors
GetWindowRect
ScreenToClient
GetSysColor
EndPaint
BeginPaint
CreateWindowExW
ReleaseDC
SetWindowLongW

ole32

PropVariantClear
CoCreateInstance

mscms

TranslateBitmapBits
CreateMultiProfileTransform
IsColorProfileValid
CloseColorProfile
GetColorProfileFromHandle
GetColorProfileHeader
GetColorProfileElement
OpenColorProfileW
GetColorDirectoryW
DeleteColorTransform

d3d9

Direct3DCreate9

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/PhotoAcq.dll
.dll regsvr32 windows x86

Password: 1717

d66cc6b28170a96d69dea3b44eb1bb24

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

wcscspn
towupper
_beginthreadex
wcschr
iswprint
iswgraph
qsort
memset
_XcptFilter
_amsg_exit
_initterm
?terminate@@YAXXZ
_errno
??1type_info@@UAE@XZ
wcstok
bsearch
wcspbrk
wcstol
towlower
_vsnprintf
strchr
memcmp
floor
ceil
_ftol2_sse
_ftol2
__CxxFrameHandler3
_CxxThrowException
_CIsin
_CIlog
_CIexp
_CIcos
_except_handler4_common
_onexit
__dllonexit
_unlock
_lock
realloc
wcsspn
wcsstr
_vsnwprintf
wcscat_s
wcscpy_s
wcstoul
memmove
swprintf_s
_wcsicmp
calloc
wcsrchr
iswspace
_vscwprintf
vswprintf_s
memmove_s
_purecall
free
malloc
wcsncpy_s
memcpy_s
memcpy

advapi32

EventWrite
TreeResetNamedSecurityInfoW
InitializeAcl
RegQueryValueExW
EventUnregister
EventRegister
UnregisterTraceGuids
RegisterTraceGuidsW
GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
TraceEvent
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegQueryInfoKeyW
RegCloseKey
RegEnumValueW

gdi32

CreateBrushIndirect
SetROP2
GetRgnBox
GetTextMetricsW
EqualRgn
PtInRegion
CreateRectRgn
GetObjectA
GetDIBits
PatBlt
CreateCompatibleBitmap
GetBitmapBits
ExtCreateRegion
GetRegionData
OffsetRgn
GetClipRgn
CombineRgn
GetDeviceCaps
DeleteDC
SelectObject
CreateFontIndirectW
GetObjectW
CreateSolidBrush
CreateRectRgnIndirect
GetLayout
SetLayout
SaveDC
RestoreDC
CreateDIBSection
CreateCompatibleDC
CreateHalftonePalette
SelectPalette
RealizePalette
SetBrushOrgEx
SetStretchBltMode
StretchBlt
CreatePen
GetStockObject
SetDIBitsToDevice
Rectangle
BitBlt
DeleteObject
SetBkMode
SetTextColor
SetBkColor

gdiplus

GdipSetSmoothingMode
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipCreatePen1
GdipDeletePen
GdipFillPath
GdipDrawPath
GdipDeletePath
GdipCreateFromHWND
GdipGetSmoothingMode
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdipSetStringFormatTrimming
GdipGetStringFormatFlags
GdipSetStringFormatFlags
GdipSetStringFormatHotkeyPrefix
GdiplusShutdown
GdiplusStartup
GdipGetRenderingOrigin
GdipCreateCachedBitmap
GdipGetImageWidth
GdipDrawCachedBitmap
GdipSetLineSigmaBlend
GdipCreateLineBrush
GdipSetPageUnit
GdipGetPageUnit
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipGetStringFormatLineAlign
GdipSetStringFormatAlign
GdipGetStringFormatAlign
GdipCloneStringFormat
GdipGetMatrixElements
GdipCreateStringFormat
GdipDeleteStringFormat
GdipCreateBitmapFromGraphics
GdipDrawImageI
GdipSetStringFormatLineAlign
GdipDrawLineI
GdipGetFontStyle
GdipGetImageHeight
GdipDrawImageRectI
GdipGetFontHeight
GdipDeleteFont
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesWrapMode
GdipDrawImageRectRectI
GdipCreateFromHDC
GdipTranslateWorldTransform
GdipCreateBitmapFromHBITMAP
GdipCloneBitmapAreaI
GdipGetImagePixelFormat
GdipFillRectangleI
GdipSetStringFormatDigitSubstitution
GdipGetStringFormatDigitSubstitution
GdipDrawString
GdipMultiplyWorldTransform
GdipCreateMatrix2
GdipSetTextRenderingHint
GdipGetTextRenderingHint
GdipImageRotateFlip
GdipDrawPolygonI
GdipDeleteCachedBitmap
GdipCreateLineBrushFromRect
GdipCreateLineBrushFromRectI
GdipFillPolygonI
GdipRotateMatrix
GdipTranslateMatrix
GdipSetWorldTransform
GdipGetWorldTransform
GdipDeleteMatrix
GdipCreateMatrix
GdipSetInterpolationMode
GdipGetInterpolationMode
GdipCreateLineBrushI
GdipReleaseDC
GdipGetDC
GdipSetPixelOffsetMode
GdipGetPixelOffsetMode
GdipSetClipRectI
GdipSetClipRegion
GdipCreateBitmapFromScan0
GdipCreatePath
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdipCreateBitmapFromStream
GdipCreateFont
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipStringFormatGetGenericTypographic
GdipMeasureString
GdipGetFamily
GdipGetFontUnit
GdipGetFontSize
GdipGetLogFontW
GdipSetRenderingOrigin
GdipCreateHalftonePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipSetClipHrgn
GdipCreateHatchBrush
GdipCreatePen2
GdipSetPenMode
GdipDrawRectangleI
GdipCreateRegion
GdipDeleteRegion
GdipGetClip

kernel32

HeapSize
HeapReAlloc
HeapFree
HeapAlloc
GetProcessHeap
HeapDestroy
GetModuleHandleExW
GetLocalTime
ExpandEnvironmentStringsW
IsWow64Process
CreateProcessW
FindResourceW
SetFilePointer
GetFileSize
ReadFile
SetEndOfFile
QueryPerformanceFrequency
GlobalAddAtomW
GlobalDeleteAtom
lstrlenW
CompareStringOrdinal
CompareFileTime
GetPrivateProfileStringW
GetPrivateProfileIntW
TzSpecificLocalTimeToSystemTime
WaitForMultipleObjects
GlobalMemoryStatusEx
GetExitCodeThread
WaitForSingleObject
SetEvent
ResetEvent
GetDiskFreeSpaceExW
CancelSynchronousIo
GetCurrentThread
RemoveDirectoryW
MulDiv
SetFileTime
MoveFileW
GetSystemDirectoryW
GetFileAttributesExW
GetLongPathNameW
FindNextFileW
FindClose
FindFirstFileW
QueryPerformanceCounter
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
IsProcessorFeaturePresent
DecodePointer
EncodePointer
LoadLibraryExA
VirtualAlloc
GetCurrentProcess
VirtualFree
GetLastError
InitializeCriticalSection
DeleteCriticalSection
SizeofResource
LoadResource
FindResourceExW
FreeLibrary
GetProcAddress
SetLastError
GetModuleHandleA
GetModuleHandleW
LoadLibraryExW
LoadLibraryW
GetModuleFileNameW
OutputDebugStringA
lstrcmpiW
RaiseException
MultiByteToWideChar
GetCurrentThreadId
LockResource
LocalFree
FormatMessageW
FreeLibraryAndExitThread
CreateThread
CloseHandle
EnterCriticalSection
LeaveCriticalSection
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
ConvertDefaultLocale
GetLocaleInfoW
GetDateFormatW
GetTimeFormatW
GetSystemTimeAsFileTime
GetTickCount
Sleep
GetVersion
LocalAlloc
GetDriveTypeW
CreateFileW
DeviceIoControl
GetVolumeInformationW
GetLogicalDriveStringsW
GetCurrentProcessId
GetSystemTime
LoadLibraryA
CreateMutexW
DisableThreadLibraryCalls
GetThreadLocale
SetThreadLocale
SetErrorMode
MapViewOfFile
UnmapViewOfFile
ReleaseMutex
OpenFileMappingW
CreateFileMappingW
CreateEventW
CreateDirectoryW
GetFileAttributesW
WriteFile
GetTempPathW
GetTempFileNameW
CopyFileExW
MoveFileExW
DeleteFileW
SetFileAttributesW
CompareStringW
GetEnvironmentVariableW
GetFullPathNameW

ole32

CoInitialize
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CoAllowSetForegroundWindow
CreateBindCtx
ReleaseStgMedium
StringFromGUID2
CLSIDFromString
PropVariantClear
PropVariantCopy
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
CoUninitialize
CoInitializeEx
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
ObjectStublessClient24
CStdStubBuffer2_Connect
NdrProxyForwardingFunction7
NdrProxyForwardingFunction3
NdrProxyForwardingFunction21
NdrProxyForwardingFunction12
NdrProxyForwardingFunction9
NdrProxyForwardingFunction10
NdrProxyForwardingFunction5
NdrProxyForwardingFunction4
NdrProxyForwardingFunction13
CStdStubBuffer2_QueryInterface
NdrProxyForwardingFunction11
CStdStubBuffer2_Disconnect
NdrProxyForwardingFunction6
NdrProxyForwardingFunction19
ObjectStublessClient23
NdrProxyForwardingFunction16
ObjectStublessClient22
NdrProxyForwardingFunction8
CStdStubBuffer2_CountRefs
NdrProxyForwardingFunction20
NdrProxyForwardingFunction15
NdrProxyForwardingFunction14
NdrProxyForwardingFunction17
NdrProxyForwardingFunction18
ObjectStublessClient4
ObjectStublessClient21
HBITMAP_UserFree
ObjectStublessClient16
ObjectStublessClient10
ObjectStublessClient17
ObjectStublessClient9
ObjectStublessClient8
ObjectStublessClient6
HWND_UserMarshal
HICON_UserSize
ObjectStublessClient19
HBITMAP_UserUnmarshal
HICON_UserFree
ObjectStublessClient5
ObjectStublessClient13
HWND_UserSize
HBITMAP_UserMarshal
ObjectStublessClient7
ObjectStublessClient15
ObjectStublessClient20
HICON_UserMarshal
HWND_UserFree
ObjectStublessClient18
HWND_UserUnmarshal
ObjectStublessClient3
HBITMAP_UserSize
ObjectStublessClient11
ObjectStublessClient14
ObjectStublessClient12
HICON_UserUnmarshal

oleaut32

BSTR_UserSize
BSTR_UserFree
LPSAFEARRAY_UserSize
LPSAFEARRAY_UserFree
LPSAFEARRAY_UserUnmarshal
BSTR_UserUnmarshal
BSTR_UserMarshal
LPSAFEARRAY_UserMarshal
VarUI4FromStr
SysFreeString
SysAllocStringLen
VariantInit
VariantClear
UnRegisterTypeLi
LoadTypeLi
RegisterTypeLi
SysStringLen
VariantTimeToSystemTime
LoadRegTypeLi
SysStringByteLen
SysAllocStringByteLen
VariantCopy
SysAllocString

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleProxyW

propsys

PropVariantChangeType
VariantToPropVariant
InitVariantFromBuffer
PSFormatForDisplayAlloc
PSGetPropertyKeyFromName

rpcrt4

IUnknown_AddRef_Proxy
CStdStubBuffer_DebugServerQueryInterface
NdrOleFree
CStdStubBuffer_AddRef
IUnknown_Release_Proxy
CStdStubBuffer_CountRefs
CStdStubBuffer_QueryInterface
NdrOleAllocate
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Disconnect
IUnknown_QueryInterface_Proxy
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Connect
CStdStubBuffer_Invoke
NdrStubForwardingFunction
NdrStubCall2
NdrCStdStubBuffer2_Release
NdrDllUnregisterProxy
NdrDllRegisterProxy
NdrDllGetClassObject
NdrDllCanUnloadNow
NdrCStdStubBuffer_Release

setupapi

SetupDiCreateDeviceInfoList
SetupDiOpenDeviceInterfaceW
SetupDiGetDeviceInterfaceDetailW
SetupDiOpenDevRegKey
SetupDiDestroyDeviceInfoList

shell32

SHGetFileInfoW
ord155
SHBrowseForFolderW
SHChangeNotify
SHCreateItemWithParent
SHGetDesktopFolder
DragQueryFileW
CommandLineToArgvW
SHGetPathFromIDListW
ShellExecuteExW
ord645
ord644
ord2
SHParseDisplayName
ord4
SHBindToParent
SHGetSpecialFolderPathW
SHGetPropertyStoreForWindow
ord747
ord18
ord68
ord152

shlwapi

PathFileExistsW
StrRetToBSTR
StrCmpNIW
ord158
StrRetToBufW
PathFindExtensionW
PathAddBackslashW
StrStrW
PathIsRelativeW
PathIsRootW
SHRegGetValueW
PathIsDirectoryW
PathAppendW
PathFindFileNameW
PathRemoveExtensionW
PathParseIconLocationW
PathStripToRootW
PathSkipRootW
PathFindNextComponentW
PathRemoveBackslashW
SHCreateStreamOnFileEx
StrToInt64ExW
PathRemoveFileSpecW
StrCmpW
PathMatchSpecW
ord219
PathRenameExtensionW
ord168
ord176
AssocGetPerceivedType
StrCSpnW
SHStrDupW

sti

StiCreateInstanceW

user32

IsDlgButtonChecked
SystemParametersInfoW
SetDlgItemTextW
DrawTextW
ReleaseDC
GetDC
MessageBeep
GetLastActivePopup
CharUpperBuffW
CharUpperW
IsWindowVisible
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
InvalidateRect
SendDlgItemMessageW
MoveWindow
DestroyWindow
CreateDialogParamW
RegisterClassExW
GetClassInfoExW
CreateWindowExW
MonitorFromWindow
GetWindowPlacement
IsDialogMessageW
IsRectEmpty
RedrawWindow
SetWindowPlacement
AllowSetForegroundWindow
WindowFromDC
GetClassLongW
DrawFrameControl
GetForegroundWindow
GetAncestor
GetCapture
GetMessagePos
TrackMouseEvent
CreateCaret
UnhookWinEvent
HideCaret
SetCaretPos
ShowCaret
DestroyCaret
UnionRect
NotifyWinEvent
SetCapture
SetRect
ReleaseCapture
SetTimer
KillTimer
GetKeyState
RegisterWindowMessageA
SetRectEmpty
MonitorFromPoint
GetScrollPos
SetScrollPos
ClientToScreen
ScrollWindowEx
GetScrollBarInfo
SetScrollInfo
GetScrollInfo
AdjustWindowRectEx
SetFocus
GetFocus
IsChild
GetNextDlgTabItem
IsZoomed
InflateRect
PtInRect
LoadMenuW
UpdateWindow
ScreenToClient
GetSubMenu
TrackPopupMenuEx
SetMenuItemInfoW
DeleteMenu
GetMenuItemCount
GetDlgCtrlID
BeginPaint
EndPaint
RegisterWindowMessageW
GetSystemMenu
EnableMenuItem
CopyImage
FillRect
UnregisterClassA
ShowWindow
CharNextW
PostThreadMessageW
GetMessageW
TranslateMessage
DispatchMessageW
CopyIcon
GetSystemMetrics
LoadImageW
DestroyIcon
SetWindowLongW
GetWindowLongW
DefWindowProcW
CallWindowProcW
SendMessageW
PostMessageW
GetActiveWindow
RegisterDeviceNotificationW
UnregisterDeviceNotification
GetWindowTextW
GetWindowTextLengthW
IsWindow
GetSysColor
GetWindowRect
MapWindowPoints
IntersectRect
GetSysColorBrush
GetClientRect
OffsetRect
LoadCursorW
SetCursor
GetCursor
GetDlgItem
GetPropW
SetForegroundWindow
EnumWindows
SetPropW
SetWindowTextW
RemovePropW
GetParent
IsWindowEnabled
EnableWindow
EndDialog
DialogBoxParamW
MapDialogRect
SetProcessDPIAware
GetDesktopWindow
MonitorFromRect
GetMonitorInfoW
SetWindowPos
PeekMessageW
MsgWaitForMultipleObjects
CreatePopupMenu
DestroyMenu
GetWindow
GetClassNameW
SetWinEventHook
MessageBoxW

winmm

PlaySoundW

photobase

?AddToStream@Sqm@@YGXKPBG@Z
?Initialize@Base@@YGXXZ
?IsEnabled@Sqm@@YG_NXZ
?ThrowLastError@Base@@YGXXZ
?GetBaseStringManager@String@Base@@SGAAVCAtlStringMgr@ATL@@XZ
??BException@Base@@QBEJXZ
??1Exception@Base@@UAE@XZ
?Throw@Base@@YGXJ@Z
?BaseAtlThrow@ATL@@YGXJ@Z
?New@BasePrivate@@YAPAXI_N@Z
?Delete@BasePrivate@@YAXPAX@Z
??0Exception@Base@@IAE@J@Z
??0Exception@Base@@QAE@ABV01@@Z
?AddToStream@Sqm@@YGXKK@Z
?AddToStream@Sqm@@YGXKKK@Z
?GdiplusStatusToHresult@Base@@YGJH@Z

dwmapi

DwmIsCompositionEnabled

uxtheme

OpenThemeData
GetThemeMargins
GetThemePartSize
DrawThemeBackground
GetThemeColor
SetWindowTheme
GetThemeFont
CloseThemeData

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Exports

Exports

AutoplayComServerW
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
PhotoAndVideoAcquireW

Sections

.text
Size: 639KB - Virtual size: 639KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 927KB - Virtual size: 927KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/PhotoBase.dll
.dll windows x86

Password: 1717

b522f2361c64f38a3fdb27655e349318

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

malloc
_onexit
__dllonexit
_unlock
_lock
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_initterm
_amsg_exit
_XcptFilter
_except_handler4_common
memmove_s
memcpy_s
_msize
realloc
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
free
floor
ceil
_ftol2
__CxxFrameHandler3
_CxxThrowException
calloc
memset

kernel32

GetModuleFileNameW
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
Sleep
LeaveCriticalSection
EnterCriticalSection
QueryPerformanceCounter
QueryPerformanceFrequency
FreeLibrary
OutputDebugStringA
LoadLibraryW
GetProcAddress
DisableThreadLibraryCalls
GetSystemInfo
GetLastError
InitializeCriticalSection
DeleteCriticalSection
GetVersionExW
SetLastError
GetModuleHandleA
GetModuleHandleW

ole32

CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoGetMalloc

Exports

Exports

??0Exception@Base@@IAE@J@Z
??0Exception@Base@@QAE@ABV01@@Z
??0OutOfMemoryException@Base@@IAE@XZ
??0OutOfMemoryException@Base@@QAE@$$QAV01@@Z
??0OutOfMemoryException@Base@@QAE@ABV01@@Z
??1Exception@Base@@UAE@XZ
??1OutOfMemoryException@Base@@UAE@XZ
??4Exception@Base@@QAEAAV01@ABV01@@Z
??4OutOfMemoryException@Base@@QAEAAV01@$$QAV01@@Z
??4OutOfMemoryException@Base@@QAEAAV01@ABV01@@Z
??BException@Base@@QBEJXZ
??_7Exception@Base@@6B@
??_7OutOfMemoryException@Base@@6B@
?AddToAverage@Sqm@@YGXKK@Z
?AddToStream@Sqm@@YGXKK@Z
?AddToStream@Sqm@@YGXKKK@Z
?AddToStream@Sqm@@YGXKKKK@Z
?AddToStream@Sqm@@YGXKPBG@Z
?AddToStream@Sqm@@YGXKPBU_SQM_STREAM_ENTRY@@I@Z
?BaseAtlThrow@ATL@@YGXJ@Z
?BaseAtlThrowLastError@ATL@@YGXXZ
?DecrementNoAssertCount@Base@@YGXXZ
?DeferAddToAverage@Sqm@@YGXKK@Z
?DeferAddToMedian@Sqm@@YGXKK@Z
?DeferReportAverage@Sqm@@YGXK@Z
?DeferReportMax@Sqm@@YGXK@Z
?DeferReportMedian@Sqm@@YGXK@Z
?DeferReportMin@Sqm@@YGXK@Z
?DeferSetIfMax@Sqm@@YGXKK@Z
?DeferSetIfMin@Sqm@@YGXKK@Z
?Delete@BasePrivate@@YAXPAX@Z
?GdiplusStatusToHresult@Base@@YGJH@Z
?GetAssertCallback@Base@@YGAAP6G_NPBDH0@ZXZ
?GetBaseStringComManager@StringCom@Base@@SGAAVCAtlStringMgr@ATL@@XZ
?GetBaseStringManager@String@Base@@SGAAVCAtlStringMgr@ATL@@XZ
?GetProcessorCaps@CPU@Base@@YGXAATCPUCaps@12@@Z
?GetProcessorCount@CPU@Base@@YGHXZ
?Increment@Sqm@@YGXKK@Z
?IncrementNoAssertCount@Base@@YGXXZ
?Init@Exception@Base@@AAEXJ@Z
?Initialize@Base@@YGXXZ
?IsEnabled@Sqm@@YG_NXZ
?IsStreamTimerActive@Sqm@@YG_NKK@Z
?IsVistaOrGreater@OS@Base@@YG_NXZ
?New@BasePrivate@@YAPAXI_N@Z
?NoAssertCount@Base@@YGHXZ
?PauseTimer@Sqm@@YGXK@Z
?RecordHelpEntryPoint@Sqm@@YGXPBG@Z
?ReportError@BasePrivate@@YA_NPBDHPBG0PAD0JH0@Z
?Set@Sqm@@YGXKK@Z
?SetIfMax@Sqm@@YGXKK@Z
?SetIfMin@Sqm@@YGXKK@Z
?SetStreamTimerData@Sqm@@YGXKKPBU_SQM_STREAM_ENTRY@@I@Z
?StartStreamTimer@Sqm@@YGXKK@Z
?StartTimer@Sqm@@YGXK@Z
?StopStreamTimer@Sqm@@YGXKK@Z
?ThreadID@Exception@Base@@QBEKXZ
?Throw@Base@@YGXJ@Z
?ThrowLastError@Base@@YGXXZ
?VerifyPtr@BasePrivate@@YA_NPBX@Z
?s_nAssertsInhibited@AssertInhibitor@BasePrivate@@2HA
_BaseReportErrorA@12
_BaseReportErrorW@12

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/PhotoViewer.dll
.dll regsvr32 windows x86

Password: 1717

e695e30b0adc4d37b8c81a6e7c7b97ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

memcpy_s
??1type_info@@UAE@XZ
strchr
towlower
wcschr
wcspbrk
wcstol
wcstok
_wcslwr_s
wcscspn
wcsspn
_wtoi
strncpy_s
_beginthreadex
_wcsicmp
_vscwprintf
vswprintf_s
memmove
wcsstr
_wcsupr_s
swprintf_s
_vsnwprintf
_vsnprintf
rand
time
srand
wcsrchr
_CxxThrowException
__CxxFrameHandler3
_ftol2
_ftol2_sse
ceil
memcmp
_except_handler4_common
_onexit
__dllonexit
_unlock
_lock
realloc
_errno
?terminate@@YAXXZ
_initterm
_amsg_exit
_XcptFilter
calloc
memmove_s
memset
_purecall
wcscat_s
wcscpy_s
free
malloc
wcsncpy_s
_CIpow
memcpy

kernel32

Sleep
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetTickCount
CompareStringW
DisableThreadLibraryCalls
GetCurrentThreadId
MultiByteToWideChar
RaiseException
lstrcmpiW
LoadLibraryExW
FreeLibrary
DeleteCriticalSection
InitializeCriticalSection
FindResourceExW
LoadResource
LockResource
SizeofResource
OutputDebugStringA
GetModuleFileNameW
LoadLibraryW
GetLastError
GetProcAddress
GetModuleHandleW
GetModuleHandleA
SetThreadPriority
GetExitCodeThread
SetEvent
CreateFileW
SystemTimeToFileTime
CreateSemaphoreW
GetSystemTime
CreateThread
FindResourceW
CreateFileMappingW
SetLastError
LeaveCriticalSection
EnterCriticalSection
DeleteFileW
SetFileTime
GetFileTime
FileTimeToDosDateTime
GetLocalTime
GetTempFileNameW
GetTempPathW
MoveFileExW
GetFullPathNameW
GlobalAlloc
GlobalFree
GetFileAttributesExW
InitializeSRWLock
AcquireSRWLockShared
CloseHandle
ReleaseSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
TerminateProcess
InterlockedPopEntrySList
InterlockedPushEntrySList
FlushInstructionCache
IsProcessorFeaturePresent
DecodePointer
EncodePointer
VirtualAlloc
VirtualFree
VirtualQuery
GetSystemInfo
LoadLibraryExA
VirtualProtect
GetProcessHeap
HeapAlloc
GetModuleHandleExW
HeapFree
GetUserDefaultUILanguage
EnumUILanguagesW
GetLocaleInfoW
GetSystemDirectoryW
CompareStringOrdinal
LocalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
CopyFileW
LocalFree
CreateDirectoryW
MulDiv
SetThreadExecutionState
lstrlenW
GetVersionExW
InitOnceComplete
InitOnceBeginInitialize
PulseEvent
WaitForMultipleObjects
GlobalMemoryStatusEx
ReleaseSemaphore
CreateEventW
ReleaseMutex
WaitForSingleObject
CreateMutexW
LoadLibraryA

advapi32

RegQueryValueExW
TraceEvent
DuplicateEncryptionInfoFile
RegEnumValueW
RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
GetTraceLoggerHandle
GetTraceEnableLevel
GetTraceEnableFlags
RegisterTraceGuidsW
UnregisterTraceGuids
RegCloseKey

user32

GetWindow
GetForegroundWindow
GetClassLongW
GetSysColorBrush
NotifyWinEvent
GetNextDlgTabItem
SetRect
AdjustWindowRectEx
MonitorFromRect
SetWindowLongW
CreateWindowExW
GetWindowTextW
GetWindowTextLengthW
TrackMouseEvent
LoadCursorW
EnumChildWindows
ChildWindowFromPointEx
OffsetRect
EnumDisplayMonitors
IntersectRect
MessageBoxW
GetProcessDefaultLayout
MoveWindow
SetRectEmpty
GetAncestor
RegisterClipboardFormatW
InsertMenuW
EnableMenuItem
SetMenuItemInfoW
GetMenuItemID
InflateRect
EndMenu
CallNextHookEx
GetDlgCtrlID
UnhookWindowsHookEx
ClientToScreen
SetWindowsHookExW
SetMenuInfo
EnumDisplaySettingsW
EnumDisplayDevicesW
LoadMenuW
ShowCursor
LoadAcceleratorsW
SetMenu
GetCursor
CallWindowProcW
AnimateWindow
TranslateAcceleratorW
IsDialogMessageW
LoadImageW
LoadIconW
GetMessageW
AppendMenuW
RemoveMenu
SetWindowPos
MessageBeep
LoadStringA
LoadStringW
DestroyMenu
TrackPopupMenuEx
CreatePopupMenu
PtInRect
GetMessagePos
GetMenuItemInfoW
GetMenuItemCount
InsertMenuItemW
DispatchMessageW
TranslateMessage
PeekMessageW
MsgWaitForMultipleObjects
GetDesktopWindow
IsRectEmpty
WindowFromPoint
GetCursorPos
CloseGestureInfoHandle
GetGestureInfo
SetGestureConfig
ScreenToClient
ReleaseCapture
GetCapture
SetCursor
SetCapture
SetWindowTextW
EndPaint
BeginPaint
ReleaseDC
GetDC
GetSysColor
DeferWindowPos
GetParent
MapWindowPoints
KillTimer
UpdateWindow
InvalidateRect
FillRect
SetTimer
SetForegroundWindow
GetSystemMetrics
DeleteMenu
GetSubMenu
GetKeyState
IsChild
SetWindowPlacement
GetWindowPlacement
GetClassInfoExW
RegisterClassExW
PostMessageW
DefWindowProcW
IsWindowVisible
IsWindowEnabled
GetFocus
ShowWindow
EnableWindow
GetActiveWindow
GetMonitorInfoW
PostThreadMessageW
GetWindowLongW
WindowFromDC
GetNextDlgGroupItem
SystemParametersInfoW
GetClientRect
GetWindowRect
EndDeferWindowPos
UnregisterClassA
DestroyWindow
CharNextW
MonitorFromPoint
SetFocus
IsIconic
IsZoomed
PostQuitMessage
SendMessageW
BeginDeferWindowPos
IsWindow

oleaut32

VariantCopy
SysStringLen
LoadTypeLi
SysAllocString
VarUI4FromStr
SysFreeString
VariantInit
VariantClear
SysStringByteLen
SysAllocStringByteLen
LoadRegTypeLi
SysAllocStringLen

ole32

CoRegisterClassObject
CoAllowSetForegroundWindow
CoInitializeEx
CLSIDFromString
ReleaseStgMedium
PropVariantClear
OleSetClipboard
CoLockObjectExternal
OleFlushClipboard
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CreateBindCtx
OleUninitialize
OleInitialize
CoInitialize
OleGetClipboard
CoUninitialize
StringFromGUID2
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree
CoRevokeClassObject

shell32

SHCreateItemFromParsingName
SHChangeNotifySuspendResume
ord28
ord750
ord71
Shell_GetCachedImageIndexW
SHBindToObject
SHGetFileInfoW
SHParseDisplayName
SHBindToParent
ord100
SHOpenWithDialog
SHGetPropertyStoreForWindow
SHOpenFolderAndSelectItems
ord2
ord645
ord644
ord4
SHChangeNotify
SHCreateShellItemArrayFromDataObject
ord17
SHGetInstanceExplorer
SHAddToRecentDocs
SHGetIDListFromObject
SHGetItemFromDataObject
ord102
ord155
SHCreateItemWithParent
SHGetSpecialFolderPathW
SHCreateItemFromIDList
ord162

dwmapi

DwmIsCompositionEnabled
DwmSetWindowAttribute
DwmExtendFrameIntoClientArea

d3d9

Direct3DCreate9

oleacc

CreateStdAccessibleProxyW
AccessibleObjectFromWindow
LresultFromObject

shlwapi

PathFileExistsW
ord215
ord174
PathIsRelativeW
PathIsRootW
SHStrDupW
PathRenameExtensionW
PathIsDirectoryW
PathRemoveExtensionW
PathFindExtensionW
ord176
StrChrW
ord388
ord16
SHReleaseThreadRef
SHCreateStreamOnFileEx
ord157
PathRemoveFileSpecW
PathAppendW
PathAddBackslashW
PathFindFileNameW
PathMatchSpecW

api-ms-win-shcore-scaling-l1-1-1

SetProcessDpiAwareness

efswrt

EnterpriseDataGetStatus

gdiplus

GdipGetStringFormatAlign
GdipGetFontHeight
GdipFillPolygonI
GdipSetInterpolationMode
GdipDeleteFont
GdipSetStringFormatHotkeyPrefix
GdipCreateLineBrush
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipSetStringFormatTrimming
GdipStringFormatGetGenericTypographic
GdipCloneStringFormat
GdipSetPixelOffsetMode
GdipGetPixelOffsetMode
GdipSetStringFormatFlags
GdipGetStringFormatFlags
GdipSetStringFormatDigitSubstitution
GdipGetStringFormatDigitSubstitution
GdipMultiplyWorldTransform
GdipCreateMatrix2
GdipSetWorldTransform
GdipSetTextRenderingHint
GdipGetTextRenderingHint
GdipSetSolidFillColor
GdipSetPageUnit
GdipGetPageUnit
GdipDrawImageRectRect
GdipSetTextureTransform
GdipTranslateMatrix
GdipCreateTexture2
GdipDrawLineI
GdipSetPenMode
GdipGetPathGradientPointCount
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterPoint
GdipSetPathGradientCenterColor
GdipCreatePathGradientFromPath
GdipAddPathEllipseI
GdipStartPathFigure
GdipCreatePath
GdipSetLineSigmaBlend
GdipSetClipRegion
GdipGetClip
GdipDeleteRegion
GdipGetMatrixElements
GdipGetClipBoundsI
GdipCreateHBITMAPFromBitmap
GdipCreateHalftonePalette
GdipDeletePen
GdipCreatePen1
GdipCreateLineBrushFromRectI
GdipReleaseDC
GdipGetDC
GdipGetWorldTransform
GdipDeleteMatrix
GdipCreateMatrix
GdipTranslateWorldTransform
GdipCreateFromHDC
GdipSetStringFormatLineAlign
GdipDeletePath
GdipDrawString
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDrawImageRectRectI
GdipFillPath
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdipCreateBitmapFromScan0
GdipGetDpiY
GdipGetDpiX
GdipCreateFromHWND
GdipDeleteGraphics
GdipSetSmoothingMode
GdipGetSmoothingMode
GdipDrawImagePointsRectI
GdipSetImageAttributesWrapMode
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipFillRectangleI
GdipGetImageHeight
GdipGetImageWidth
GdipFillRectangle
GdipAlloc
GdipFree
GdipDeleteBrush
GdipCreateSolidFill
GdiplusShutdown
GdiplusStartup
GdipCreateRegion
GdipSetRenderingOrigin
GdipGetImagePixelFormat
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawPath
GdipSetClipHrgn
GdipCreateBitmapFromStream
GdipCreateFont
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCloneBrush
GdipSetClipRectI
GdipDrawRectangleI
GdipCreatePen2
GdipCreateHatchBrush
GdipMeasureString

gdi32

CreateRectRgnIndirect
CreateRectRgn
SetGraphicsMode
GetWorldTransform
CombineTransform
ModifyWorldTransform
SetWorldTransform
SetLayout
CreateSolidBrush
PatBlt
CreateDIBSection
ExtTextOutW
SetBkColor
CreateCompatibleDC
GetObjectA
BitBlt
SelectPalette
RealizePalette
GetObjectW
GetDIBits
DeleteObject
GetDeviceCaps
GetClipRgn
OffsetRgn
GetRegionData
ExtCreateRegion
DeleteDC
GetStockObject
GetLayout
SelectObject
SetDIBitsToDevice

uxtheme

IsAppThemed
CloseThemeData
OpenThemeData
GetThemeColor

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

wtsapi32

WTSUnRegisterSessionNotification
WTSRegisterSessionNotification

propsys

PropVariantToUInt32

windowscodecs

WICConvertBitmapSource
WICMapGuidToShortName

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
ImageView_COMServerW
ImageView_FullscreenW
imageview_fullscreenW

Sections

.text
Size: 544KB - Virtual size: 543KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 512B - Virtual size: 92B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 937KB - Virtual size: 936KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/Setup_Loader v2.1.exe
.exe windows x86

Password: 1717

9cbefe68f395e67356e2a5d8d1b285c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WriteFile
WriteConsoleW
WaitForMultipleObjects
WaitForSingleObject
VirtualQuery
VirtualFree
VirtualAlloc
SwitchToThread
SuspendThread
SetWaitableTimer
SetUnhandledExceptionFilter
SetProcessPriorityBoost
SetEvent
SetErrorMode
SetConsoleCtrlHandler
ResumeThread
PostQueuedCompletionStatus
LoadLibraryA
LoadLibraryW
SetThreadContext
GetThreadContext
GetSystemInfo
GetSystemDirectoryA
GetStdHandle
GetQueuedCompletionStatusEx
GetProcessAffinityMask
GetProcAddress
GetEnvironmentStringsW
GetConsoleMode
FreeEnvironmentStringsW
ExitProcess
DuplicateHandle
CreateWaitableTimerExW
CreateThread
CreateIoCompletionPort
CreateFileA
CreateEventA
CloseHandle
AddVectoredExceptionHandler

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 223KB - Virtual size: 410KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.symtab
Size: 512B - Virtual size: 4B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/libEGL.dll
.dll windows x64

Password: 1717

592e6e55d4fe33d1bd84e3b3016fe3b2

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02/07/2021, 00:00

Not After

10/07/2024, 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e8:ec:1c:f1:4e:74:f0:de:2a:1b:ef:4b:de:72:7f:ba:4f:75:15:fc:6a:7b:75:2a:38:a5:38:f6:33:d1:c4:10
Signer

Actual PE Digest

e8:ec:1c:f1:4e:74:f0:de:2a:1b:ef:4b:de:72:7f:ba:4f:75:15:fc:6a:7b:75:2a:38:a5:38:f6:33:d1:c4:10

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
DeleteCriticalSection
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemTimeAsFileTime
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryExW
LoadLibraryW
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
WaitForSingleObjectEx
WakeAllConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglClientWaitSyncKHR
eglCopyBuffers
eglCopyMetalSharedEventANGLE
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreateNativeClientBufferANDROID
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformPixmapSurfaceEXT
eglCreatePlatformWindowSurface
eglCreatePlatformWindowSurfaceEXT
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureANGLE
eglCreateSync
eglCreateSyncKHR
eglCreateWindowSurface
eglDebugMessageControlKHR
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglDestroySyncKHR
eglDupNativeFenceFDANDROID
eglExportVkImageANGLE
eglForceGPUSwitchANGLE
eglGetCompositorTimingANDROID
eglGetCompositorTimingSupportedANDROID
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetFrameTimestampSupportedANDROID
eglGetFrameTimestampsANDROID
eglGetMscRateANGLE
eglGetNativeClientBufferANDROID
eglGetNextFrameIdANDROID
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncAttribKHR
eglGetSyncValuesCHROMIUM
eglHandleGPUSwitchANGLE
eglInitialize
eglLabelObjectKHR
eglLockSurfaceKHR
eglMakeCurrent
eglPostSubBufferNV
eglPrepareSwapBuffersANGLE
eglPresentationTimeANDROID
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDebugKHR
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribANGLE
eglQueryDisplayAttribEXT
eglQueryDmaBufFormatsEXT
eglQueryDmaBufModifiersEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQueryStringiANGLE
eglQuerySurface
eglQuerySurface64KHR
eglQuerySurfacePointerANGLE
eglReacquireHighPowerGPUANGLE
eglReleaseDeviceANGLE
eglReleaseHighPowerGPUANGLE
eglReleaseTexImage
eglReleaseThread
eglSetBlobCacheFuncsANDROID
eglSetDamageRegionKHR
eglSignalSyncKHR
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageKHR
eglSwapBuffersWithFrameTokenANGLE
eglSwapInterval
eglTerminate
eglUnlockSurfaceKHR
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync
eglWaitSyncKHR
eglWaitUntilWorkScheduledANGLE

Sections

.text
Size: 323KB - Virtual size: 323KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 140B

.tls
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/libGLESv2.dll
.dll windows x64

Password: 1717

7e67cb770e0040254310165a1b309202

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02/07/2021, 00:00

Not After

10/07/2024, 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

89:75:73:79:99:45:2c:0c:32:53:8e:0e:5d:e7:dc:fa:f2:1a:8f:b0:73:a3:88:a4:be:2b:af:a2:cc:03:2a:89
Signer

Actual PE Digest

89:75:73:79:99:45:2c:0c:32:53:8e:0e:5d:e7:dc:fa:f2:1a:8f:b0:73:a3:88:a4:be:2b:af:a2:cc:03:2a:89

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

user32

CreateWindowExA
CreateWindowExW
DefWindowProcW
DestroyWindow
GetClassInfoW
GetClientRect
GetDC
GetWindowThreadProcessId
InvalidateRect
IsIconic
IsWindow
LoadCursorW
RegisterClassW
ReleaseDC
UnregisterClassA
WindowFromDC

kernel32

AcquireSRWLockExclusive
CloseHandle
CompareStringW
CreateEventW
CreateFileW
CreateThread
DeleteCriticalSection
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetEnvironmentVariableW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExA
GetModuleHandleExW
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitOnceExecuteOnce
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleW
ReadFile
ReleaseSRWLockExclusive
ResetEvent
RtlCaptureContext
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualProtect
VirtualQuery
WaitForSingleObjectEx
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile

dxgi

CreateDXGIFactory
CreateDXGIFactory1

gdi32

ChoosePixelFormat
DescribePixelFormat
GetPixelFormat
SetPixelFormat
SwapBuffers

Exports

Exports

??0PlatformMethods@angle@@QEAA@XZ
??4PlatformMethods@angle@@QEAAAEAU01@$$QEAU01@@Z
??4PlatformMethods@angle@@QEAAAEAU01@AEBU01@@Z
ANGLEGetDisplayPlatform
ANGLEResetDisplayPlatform
EGL_BindAPI
EGL_BindTexImage
EGL_ChooseConfig
EGL_ClientWaitSync
EGL_ClientWaitSyncKHR
EGL_CopyBuffers
EGL_CopyMetalSharedEventANGLE
EGL_CreateContext
EGL_CreateDeviceANGLE
EGL_CreateImage
EGL_CreateImageKHR
EGL_CreateNativeClientBufferANDROID
EGL_CreatePbufferFromClientBuffer
EGL_CreatePbufferSurface
EGL_CreatePixmapSurface
EGL_CreatePlatformPixmapSurface
EGL_CreatePlatformPixmapSurfaceEXT
EGL_CreatePlatformWindowSurface
EGL_CreatePlatformWindowSurfaceEXT
EGL_CreateStreamKHR
EGL_CreateStreamProducerD3DTextureANGLE
EGL_CreateSync
EGL_CreateSyncKHR
EGL_CreateWindowSurface
EGL_DebugMessageControlKHR
EGL_DestroyContext
EGL_DestroyImage
EGL_DestroyImageKHR
EGL_DestroyStreamKHR
EGL_DestroySurface
EGL_DestroySync
EGL_DestroySyncKHR
EGL_DupNativeFenceFDANDROID
EGL_ExportVkImageANGLE
EGL_ForceGPUSwitchANGLE
EGL_GetCompositorTimingANDROID
EGL_GetCompositorTimingSupportedANDROID
EGL_GetConfigAttrib
EGL_GetConfigs
EGL_GetCurrentContext
EGL_GetCurrentDisplay
EGL_GetCurrentSurface
EGL_GetDisplay
EGL_GetError
EGL_GetFrameTimestampSupportedANDROID
EGL_GetFrameTimestampsANDROID
EGL_GetMscRateANGLE
EGL_GetNativeClientBufferANDROID
EGL_GetNextFrameIdANDROID
EGL_GetPlatformDisplay
EGL_GetPlatformDisplayEXT
EGL_GetProcAddress
EGL_GetSyncAttrib
EGL_GetSyncAttribKHR
EGL_GetSyncValuesCHROMIUM
EGL_HandleGPUSwitchANGLE
EGL_Initialize
EGL_LabelObjectKHR
EGL_LockSurfaceKHR
EGL_MakeCurrent
EGL_PostSubBufferNV
EGL_PrepareSwapBuffersANGLE
EGL_PresentationTimeANDROID
EGL_ProgramCacheGetAttribANGLE
EGL_ProgramCachePopulateANGLE
EGL_ProgramCacheQueryANGLE
EGL_ProgramCacheResizeANGLE
EGL_QueryAPI
EGL_QueryContext
EGL_QueryDebugKHR
EGL_QueryDeviceAttribEXT
EGL_QueryDeviceStringEXT
EGL_QueryDisplayAttribANGLE
EGL_QueryDisplayAttribEXT
EGL_QueryDmaBufFormatsEXT
EGL_QueryDmaBufModifiersEXT
EGL_QueryStreamKHR
EGL_QueryStreamu64KHR
EGL_QueryString
EGL_QueryStringiANGLE
EGL_QuerySurface
EGL_QuerySurface64KHR
EGL_QuerySurfacePointerANGLE
EGL_ReacquireHighPowerGPUANGLE
EGL_ReleaseDeviceANGLE
EGL_ReleaseHighPowerGPUANGLE
EGL_ReleaseTexImage
EGL_ReleaseThread
EGL_SetBlobCacheFuncsANDROID
EGL_SetDamageRegionKHR
EGL_SignalSyncKHR
EGL_StreamAttribKHR
EGL_StreamConsumerAcquireKHR
EGL_StreamConsumerGLTextureExternalAttribsNV
EGL_StreamConsumerGLTextureExternalKHR
EGL_StreamConsumerReleaseKHR
EGL_StreamPostD3DTextureANGLE
EGL_SurfaceAttrib
EGL_SwapBuffers
EGL_SwapBuffersWithDamageKHR
EGL_SwapBuffersWithFrameTokenANGLE
EGL_SwapInterval
EGL_Terminate
EGL_UnlockSurfaceKHR
EGL_WaitClient
EGL_WaitGL
EGL_WaitNative
EGL_WaitSync
EGL_WaitSyncKHR
EGL_WaitUntilWorkScheduledANGLE
GL_AcquireTexturesANGLE
GL_ActiveShaderProgram
GL_ActiveShaderProgramEXT
GL_ActiveTexture
GL_AlphaFunc
GL_AlphaFuncx
GL_AttachShader
GL_BeginPerfMonitorAMD
GL_BeginPixelLocalStorageANGLE
GL_BeginQuery
GL_BeginQueryEXT
GL_BeginTransformFeedback
GL_BindAttribLocation
GL_BindBuffer
GL_BindBufferBase
GL_BindBufferRange
GL_BindFragDataLocationEXT
GL_BindFragDataLocationIndexedEXT
GL_BindFramebuffer
GL_BindFramebufferOES
GL_BindImageTexture
GL_BindProgramPipeline
GL_BindProgramPipelineEXT
GL_BindRenderbuffer
GL_BindRenderbufferOES
GL_BindSampler
GL_BindTexture
GL_BindTransformFeedback
GL_BindUniformLocationCHROMIUM
GL_BindVertexArray
GL_BindVertexArrayOES
GL_BindVertexBuffer
GL_BlendBarrier
GL_BlendBarrierKHR
GL_BlendColor
GL_BlendEquation
GL_BlendEquationSeparate
GL_BlendEquationSeparatei
GL_BlendEquationSeparateiEXT
GL_BlendEquationSeparateiOES
GL_BlendEquationi
GL_BlendEquationiEXT
GL_BlendEquationiOES
GL_BlendFunc
GL_BlendFuncSeparate
GL_BlendFuncSeparatei
GL_BlendFuncSeparateiEXT
GL_BlendFuncSeparateiOES
GL_BlendFunci
GL_BlendFunciEXT
GL_BlendFunciOES
GL_BlitFramebuffer
GL_BlitFramebufferANGLE
GL_BlitFramebufferNV
GL_BufferData
GL_BufferStorageEXT
GL_BufferStorageExternalEXT
GL_BufferStorageMemEXT
GL_BufferSubData
GL_CheckFramebufferStatus
GL_CheckFramebufferStatusOES
GL_Clear
GL_ClearBufferfi
GL_ClearBufferfv
GL_ClearBufferiv
GL_ClearBufferuiv
GL_ClearColor
GL_ClearColorx
GL_ClearDepthf
GL_ClearDepthx
GL_ClearStencil
GL_ClientActiveTexture
GL_ClientWaitSync
GL_ClipControlEXT
GL_ClipPlanef
GL_ClipPlanex
GL_Color4f
GL_Color4ub
GL_Color4x
GL_ColorMask
GL_ColorMaski
GL_ColorMaskiEXT
GL_ColorMaskiOES
GL_ColorPointer
GL_CompileShader
GL_CompressedCopyTextureCHROMIUM
GL_CompressedTexImage2D
GL_CompressedTexImage2DRobustANGLE
GL_CompressedTexImage3D
GL_CompressedTexImage3DOES
GL_CompressedTexImage3DRobustANGLE
GL_CompressedTexSubImage2D
GL_CompressedTexSubImage2DRobustANGLE
GL_CompressedTexSubImage3D
GL_CompressedTexSubImage3DOES
GL_CompressedTexSubImage3DRobustANGLE
GL_CopyBufferSubData
GL_CopyImageSubData
GL_CopyImageSubDataEXT
GL_CopyImageSubDataOES
GL_CopySubTexture3DANGLE
GL_CopySubTextureCHROMIUM
GL_CopyTexImage2D
GL_CopyTexSubImage2D
GL_CopyTexSubImage3D
GL_CopyTexSubImage3DOES
GL_CopyTexture3DANGLE
GL_CopyTextureCHROMIUM
GL_CoverageModulationCHROMIUM
GL_CreateMemoryObjectsEXT
GL_CreateProgram
GL_CreateShader
GL_CreateShaderProgramv
GL_CreateShaderProgramvEXT
GL_CullFace
GL_CurrentPaletteMatrixOES
GL_DebugMessageCallback
GL_DebugMessageCallbackKHR
GL_DebugMessageControl
GL_DebugMessageControlKHR
GL_DebugMessageInsert
GL_DebugMessageInsertKHR
GL_DeleteBuffers
GL_DeleteFencesNV
GL_DeleteFramebuffers
GL_DeleteFramebuffersOES
GL_DeleteMemoryObjectsEXT
GL_DeletePerfMonitorsAMD
GL_DeleteProgram
GL_DeleteProgramPipelines
GL_DeleteProgramPipelinesEXT
GL_DeleteQueries
GL_DeleteQueriesEXT
GL_DeleteRenderbuffers
GL_DeleteRenderbuffersOES
GL_DeleteSamplers
GL_DeleteSemaphoresEXT
GL_DeleteShader
GL_DeleteSync
GL_DeleteTextures
GL_DeleteTransformFeedbacks
GL_DeleteVertexArrays
GL_DeleteVertexArraysOES
GL_DepthFunc
GL_DepthMask
GL_DepthRangef
GL_DepthRangex
GL_DetachShader
GL_Disable
GL_DisableClientState
GL_DisableExtensionANGLE
GL_DisableVertexAttribArray
GL_Disablei
GL_DisableiEXT
GL_DisableiOES
GL_DiscardFramebufferEXT
GL_DispatchCompute
GL_DispatchComputeIndirect
GL_DrawArrays
GL_DrawArraysIndirect
GL_DrawArraysInstanced
GL_DrawArraysInstancedANGLE
GL_DrawArraysInstancedBaseInstanceANGLE
GL_DrawArraysInstancedBaseInstanceEXT
GL_DrawArraysInstancedEXT
GL_DrawBuffers
GL_DrawBuffersEXT
GL_DrawElements
GL_DrawElementsBaseVertex
GL_DrawElementsBaseVertexEXT
GL_DrawElementsBaseVertexOES
GL_DrawElementsIndirect
GL_DrawElementsInstanced
GL_DrawElementsInstancedANGLE
GL_DrawElementsInstancedBaseInstanceEXT
GL_DrawElementsInstancedBaseVertex
GL_DrawElementsInstancedBaseVertexBaseInstanceANGLE
GL_DrawElementsInstancedBaseVertexBaseInstanceEXT
GL_DrawElementsInstancedBaseVertexEXT
GL_DrawElementsInstancedBaseVertexOES
GL_DrawElementsInstancedEXT
GL_DrawRangeElements
GL_DrawRangeElementsBaseVertex
GL_DrawRangeElementsBaseVertexEXT
GL_DrawRangeElementsBaseVertexOES
GL_DrawTexfOES
GL_DrawTexfvOES
GL_DrawTexiOES
GL_DrawTexivOES
GL_DrawTexsOES
GL_DrawTexsvOES
GL_DrawTexxOES
GL_DrawTexxvOES
GL_EGLImageTargetRenderbufferStorageOES
GL_EGLImageTargetTexStorageEXT
GL_EGLImageTargetTexture2DOES
GL_EGLImageTargetTextureStorageEXT
GL_Enable
GL_EnableClientState
GL_EnableVertexAttribArray
GL_Enablei
GL_EnableiEXT
GL_EnableiOES
GL_EndPerfMonitorAMD
GL_EndPixelLocalStorageANGLE
GL_EndQuery
GL_EndQueryEXT
GL_EndTransformFeedback
GL_FenceSync
GL_Finish
GL_FinishFenceNV
GL_Flush
GL_FlushMappedBufferRange
GL_FlushMappedBufferRangeEXT
GL_Fogf
GL_Fogfv
GL_Fogx
GL_Fogxv
GL_FramebufferFetchBarrierEXT
GL_FramebufferMemorylessPixelLocalStorageANGLE
GL_FramebufferParameteri
GL_FramebufferParameteriMESA
GL_FramebufferPixelLocalClearValuefvANGLE
GL_FramebufferPixelLocalClearValueivANGLE
GL_FramebufferPixelLocalClearValueuivANGLE
GL_FramebufferPixelLocalStorageInterruptANGLE
GL_FramebufferPixelLocalStorageRestoreANGLE
GL_FramebufferRenderbuffer
GL_FramebufferRenderbufferOES
GL_FramebufferTexture
GL_FramebufferTexture2D
GL_FramebufferTexture2DMultisampleEXT
GL_FramebufferTexture2DOES
GL_FramebufferTexture3DOES
GL_FramebufferTextureEXT
GL_FramebufferTextureLayer
GL_FramebufferTextureMultiviewOVR
GL_FramebufferTextureOES
GL_FramebufferTexturePixelLocalStorageANGLE
GL_FrontFace
GL_Frustumf
GL_Frustumx
GL_GenBuffers
GL_GenFencesNV
GL_GenFramebuffers
GL_GenFramebuffersOES
GL_GenPerfMonitorsAMD
GL_GenProgramPipelines
GL_GenProgramPipelinesEXT
GL_GenQueries
GL_GenQueriesEXT
GL_GenRenderbuffers
GL_GenRenderbuffersOES
GL_GenSamplers
GL_GenSemaphoresEXT
GL_GenTextures
GL_GenTransformFeedbacks
GL_GenVertexArrays
GL_GenVertexArraysOES
GL_GenerateMipmap
GL_GenerateMipmapOES
GL_GetActiveAttrib
GL_GetActiveUniform
GL_GetActiveUniformBlockName
GL_GetActiveUniformBlockiv
GL_GetActiveUniformBlockivRobustANGLE
GL_GetActiveUniformsiv
GL_GetAttachedShaders
GL_GetAttribLocation
GL_GetBooleani_v
GL_GetBooleani_vRobustANGLE
GL_GetBooleanv
GL_GetBooleanvRobustANGLE
GL_GetBufferParameteri64v
GL_GetBufferParameteri64vRobustANGLE
GL_GetBufferParameteriv
GL_GetBufferParameterivRobustANGLE
GL_GetBufferPointerv
GL_GetBufferPointervOES
GL_GetBufferPointervRobustANGLE
GL_GetClipPlanef
GL_GetClipPlanex
GL_GetCompressedTexImageANGLE
GL_GetDebugMessageLog
GL_GetDebugMessageLogKHR
GL_GetError
GL_GetFenceivNV
GL_GetFixedv
GL_GetFloatv
GL_GetFloatvRobustANGLE
GL_GetFragDataIndexEXT
GL_GetFragDataLocation
GL_GetFramebufferAttachmentParameteriv
GL_GetFramebufferAttachmentParameterivOES
GL_GetFramebufferAttachmentParameterivRobustANGLE
GL_GetFramebufferParameteriv
GL_GetFramebufferParameterivMESA
GL_GetFramebufferParameterivRobustANGLE
GL_GetFramebufferPixelLocalStorageParameterfvANGLE
GL_GetFramebufferPixelLocalStorageParameterfvRobustANGLE
GL_GetFramebufferPixelLocalStorageParameterivANGLE
GL_GetFramebufferPixelLocalStorageParameterivRobustANGLE
GL_GetGraphicsResetStatus
GL_GetGraphicsResetStatusEXT
GL_GetInteger64i_v
GL_GetInteger64i_vRobustANGLE
GL_GetInteger64v
GL_GetInteger64vEXT
GL_GetInteger64vRobustANGLE
GL_GetIntegeri_v
GL_GetIntegeri_vRobustANGLE
GL_GetIntegerv
GL_GetIntegervRobustANGLE
GL_GetInternalformativ
GL_GetInternalformativRobustANGLE
GL_GetLightfv
GL_GetLightxv
GL_GetMaterialfv
GL_GetMaterialxv
GL_GetMemoryObjectParameterivEXT
GL_GetMultisamplefv
GL_GetMultisamplefvANGLE
GL_GetMultisamplefvRobustANGLE
GL_GetObjectLabel
GL_GetObjectLabelEXT
GL_GetObjectLabelKHR
GL_GetObjectPtrLabel
GL_GetObjectPtrLabelKHR
GL_GetPerfMonitorCounterDataAMD
GL_GetPerfMonitorCounterInfoAMD
GL_GetPerfMonitorCounterStringAMD
GL_GetPerfMonitorCountersAMD
GL_GetPerfMonitorGroupStringAMD
GL_GetPerfMonitorGroupsAMD
GL_GetPointerv
GL_GetPointervKHR
GL_GetPointervRobustANGLERobustANGLE
GL_GetProgramBinary
GL_GetProgramBinaryOES
GL_GetProgramInfoLog
GL_GetProgramInterfaceiv
GL_GetProgramInterfaceivRobustANGLE
GL_GetProgramPipelineInfoLog
GL_GetProgramPipelineInfoLogEXT
GL_GetProgramPipelineiv
GL_GetProgramPipelineivEXT
GL_GetProgramResourceIndex
GL_GetProgramResourceLocation
GL_GetProgramResourceLocationIndexEXT
GL_GetProgramResourceName
GL_GetProgramResourceiv
GL_GetProgramiv
GL_GetProgramivRobustANGLE
GL_GetQueryObjecti64vEXT
GL_GetQueryObjecti64vRobustANGLE
GL_GetQueryObjectivEXT
GL_GetQueryObjectivRobustANGLE
GL_GetQueryObjectui64vEXT
GL_GetQueryObjectui64vRobustANGLE
GL_GetQueryObjectuiv
GL_GetQueryObjectuivEXT
GL_GetQueryObjectuivRobustANGLE
GL_GetQueryiv
GL_GetQueryivEXT
GL_GetQueryivRobustANGLE
GL_GetRenderbufferImageANGLE
GL_GetRenderbufferParameteriv
GL_GetRenderbufferParameterivOES
GL_GetRenderbufferParameterivRobustANGLE
GL_GetSamplerParameterIiv
GL_GetSamplerParameterIivEXT
GL_GetSamplerParameterIivOES
GL_GetSamplerParameterIivRobustANGLE
GL_GetSamplerParameterIuiv
GL_GetSamplerParameterIuivEXT
GL_GetSamplerParameterIuivOES
GL_GetSamplerParameterIuivRobustANGLE
GL_GetSamplerParameterfv
GL_GetSamplerParameterfvRobustANGLE
GL_GetSamplerParameteriv
GL_GetSamplerParameterivRobustANGLE
GL_GetSemaphoreParameterui64vEXT
GL_GetShaderInfoLog
GL_GetShaderPrecisionFormat
GL_GetShaderSource

Sections

.text
Size: 5.3MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 225KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 140B

.tls
Size: 512B - Virtual size: 314B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/mojo_core.dll
.dll windows x64

9643926ac9417bf578d01afa19cb2c5a

Code Sign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:44:18:e2:de:de:36:dd:29:74:c3:44:3a:fb:5c:e5
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

02/07/2021, 00:00

Not After

10/07/2024, 23:59

Subject

CN=Google LLC,O=Google LLC,L=Mountain View,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

2b:a5:ad:46:75:84:b3:cd:1d:0f:95:02:07:e3:4a:1b:bf:50:56:e5:6b:be:f0:57:4e:e5:72:9f:50:a8:b1:a0
Signer

Actual PE Digest

2b:a5:ad:46:75:84:b3:cd:1d:0f:95:02:07:e3:4a:1b:bf:50:56:e5:6b:be:f0:57:4e:e5:72:9f:50:a8:b1:a0

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

AcquireSRWLockExclusive
AcquireSRWLockShared
CancelIo
CloseHandle
CompareStringW
ConnectNamedPipe
CreateEventW
CreateFileMappingW
CreateFileW
CreateIoCompletionPort
CreateNamedPipeW
CreateThread
DeleteCriticalSection
DeleteFileW
DuplicateHandle
EncodePointer
EnterCriticalSection
EnumSystemLocalesW
ExitProcess
ExitThread
ExpandEnvironmentStringsW
FindClose
FindFirstFileExW
FindNextFileW
FlsAlloc
FlsFree
FlsGetValue
FlsSetValue
FlushFileBuffers
FormatMessageA
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetACP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetConsoleMode
GetConsoleOutputCP
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDateFormatW
GetEnvironmentStringsW
GetFileSizeEx
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoW
GetLogicalProcessorInformation
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleExW
GetModuleHandleW
GetNativeSystemInfo
GetOEMCP
GetProcAddress
GetProcessHeap
GetProductInfo
GetQueuedCompletionStatus
GetStartupInfoW
GetStdHandle
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadId
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetVersionExW
InitOnceExecuteOnce
InitializeConditionVariable
InitializeCriticalSectionAndSpinCount
InitializeSListHead
InitializeSRWLock
InterlockedFlushSList
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
IsWow64Process
K32GetModuleInformation
K32QueryWorkingSetEx
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LocalFree
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
PostQueuedCompletionStatus
QueryPerformanceCounter
QueryPerformanceFrequency
QueryThreadCycleTime
RaiseException
ReadConsoleW
ReadFile
RegisterWaitForSingleObject
ReleaseSRWLockExclusive
ReleaseSRWLockShared
ResetEvent
RtlCaptureContext
RtlCaptureStackBackTrace
RtlLookupFunctionEntry
RtlPcToFileHeader
RtlUnwind
RtlUnwindEx
RtlVirtualUnwind
SetEnvironmentVariableW
SetEvent
SetFilePointerEx
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SleepConditionVariableSRW
SwitchToThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryAcquireSRWLockExclusive
UnhandledExceptionFilter
UnmapViewOfFile
UnregisterWaitEx
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WaitNamedPipeW
WakeAllConditionVariable
WakeConditionVariable
WideCharToMultiByte
WriteConsoleW
WriteFile
lstrlenA

advapi32

ConvertStringSecurityDescriptorToSecurityDescriptorW
EventRegister
EventSetInformation
EventUnregister
EventWrite
InitializeAcl
InitializeSecurityDescriptor
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SetSecurityDescriptorDacl
SystemFunction036

dbghelp

SymCleanup
SymFromAddr
SymGetLineFromAddr64
SymGetSearchPathW
SymInitialize
SymSetOptions
SymSetSearchPathW

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

user32

CreateWindowExW
DefWindowProcW
DestroyWindow
DispatchMessageW
GetQueueStatus
GetWindowLongPtrW
KillTimer
MsgWaitForMultipleObjectsEx
PeekMessageW
PostMessageW
PostQuitMessage
RegisterClassExW
SetTimer
SetWindowLongPtrW
TranslateMessage
UnregisterClassW

shell32

CommandLineToArgvW

ole32

CoInitializeEx
CoRegisterInitializeSpy
CoRevokeInitializeSpy
CoUninitialize

Exports

Exports

GetHandleVerifier
MojoGetSystemThunks

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gxfg
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.retplne
Size: 512B - Virtual size: 140B

.tls
Size: 1024B - Virtual size: 521B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

malloc_h
Size: 512B - Virtual size: 228B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Setup_Loader v2.1/read me.txt

Sharing

General

Malware Config

Signatures

Files

Password: 1717

Password: 1717

e84ea73d0d9b417a1bc1810c7b836d4f

Code Sign

48:1b:6a:07:26:d2:e8:3f:26:02:d4:82:5a:cdCertificate

Extended Key Usages

Key Usages

73:1d:40:ae:3f:3a:1f:b2:bc:3d:83:95Certificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5aCertificate

Extended Key Usages

Key Usages

48:1b:6a:07:26:d2:e8:3f:26:02:d4:82:5a:cdCertificate

Extended Key Usages

Key Usages

73:1d:40:ae:3f:3a:1f:b2:bc:3d:83:95Certificate

Extended Key Usages

Key Usages

01:c2:9c:7a:f4:7a:a6:02:58:0e:af:32:b1:23:b1:1dCertificate

Extended Key Usages

Key Usages

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74Certificate

Key Usages

01:f2:40:42:40:ce:fd:22:db:e9:6c:71:fcCertificate

Key Usages

04:00:00:00:00:01:21:58:53:08:a2Certificate

Key Usages

0f:14:1e:17:cc:70:fc:60:fb:d6:1d:3b:30:73:05:c2:fd:e6:83:a8:20:82:ef:05:35:a3:c5:de:52:54:d0:e0Signer

c4:0c:cb:37:b9:06:0e:be:9f:28:69:a3:48:76:a9:85:bb:f0:81:2aSigner

Headers

DLL Characteristics

File Characteristics

Imports

oleaut32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 155KB - Virtual size: 155KB

.rdata Size: 35KB - Virtual size: 34KB

.data Size: 512B - Virtual size: 19KB

.pdata Size: 10KB - Virtual size: 9KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 2KB - Virtual size: 1KB

Password: 1717

e8b9ff48aa489aa7c98bab0f09e4ea68

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

advapi32

photobase

oleaut32

shlwapi

gdi32

user32

ole32

mscms

d3d9

Exports

Exports

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.data Size: 10KB - Virtual size: 22KB

.idata Size: 6KB - Virtual size: 5KB

.rsrc Size: 1KB - Virtual size: 1KB

48:1b:6a:07:26:d2:e8:3f:26:02:d4:82:5a:cd
Certificate

73:1d:40:ae:3f:3a:1f:b2:bc:3d:83:95
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

48:1b:6a:07:26:d2:e8:3f:26:02:d4:82:5a:cd
Certificate

73:1d:40:ae:3f:3a:1f:b2:bc:3d:83:95
Certificate

01:c2:9c:7a:f4:7a:a6:02:58:0e:af:32:b1:23:b1:1d
Certificate

01:ec:1c:92:40:de:fd:2e:40:5d:7c:47:74
Certificate

01:f2:40:42:40:ce:fd:22:db:e9:6c:71:fc
Certificate

04:00:00:00:00:01:21:58:53:08:a2
Certificate

0f:14:1e:17:cc:70:fc:60:fb:d6:1d:3b:30:73:05:c2:fd:e6:83:a8:20:82:ef:05:35:a3:c5:de:52:54:d0:e0
Signer

c4:0c:cb:37:b9:06:0e:be:9f:28:69:a3:48:76:a9:85:bb:f0:81:2a
Signer

.text
Size: 155KB - Virtual size: 155KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 512B - Virtual size: 19KB

.pdata
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.data
Size: 10KB - Virtual size: 22KB

.idata
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 68KB - Virtual size: 68KB

.text
Size: 639KB - Virtual size: 639KB

.data
Size: 3KB - Virtual size: 6KB

.idata
Size: 20KB - Virtual size: 19KB

.rsrc
Size: 927KB - Virtual size: 927KB

.reloc
Size: 40KB - Virtual size: 40KB

.text
Size: 31KB - Virtual size: 30KB

.data
Size: 512B - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 1024B

.reloc
Size: 2KB - Virtual size: 1KB