94274d8e366721a4c19327d65ddd7e6809ca2532780975a296c11bfd4670424a[.]zip[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

94274d8e366721a4c19327d65ddd7e6809ca2532780975a296c11bfd4670424a.zip.zip
Size

6.2MB
MD5

42b6d5d6c099a4583ab7fc821e92f459
SHA1

c896ae7b7b6e408c55181906b7d6e2eb7ca24cb3
SHA256

438f05d18e755e2f89f4f48e2c115cb8b5913100430abeb5823e73421be18c00
SHA512

d90feb3d010671a60bb078567328ac323bae11ceaac53f94d5698abf654d5c324ec8c87219cfb325faf216f975301bafead06b878d302352d2541830c32f854d
SSDEEP

196608:H9gDLp8R3avPc8WqFwOssHBk2De6iTlHXD4EcE:eE3avUPqF7ssH22DwxHXD4EcE

Score

3^/10

Malware Config

Signatures

Unsigned PE 15 IoCs

Checks for missing Authenticode signature.

resource
unpack003/AVSynchronizer.dll1
unpack003/AudioOut.dll1
unpack003/AviConverter.dll
unpack003/DBRepair.exe1
unpack003/DataBroker.dll1
unpack003/InstallAux.dll1
unpack003/Launcher_LO.exe
unpack003/Monitor_LO.exe
unpack003/Playback_LO.exe
unpack003/STEnglish.dll
unpack003/ServerUtl.dll1
unpack003/SrvDepResource.dll1
unpack003/database.dll1
unpack003/parsedatapacket.dll1
unpack002/Surveillance System(1.1.00023)_/setup.exe

Files

94274d8e366721a4c19327d65ddd7e6809ca2532780975a296c11bfd4670424a.zip.zip
.zip

Password: infected
94274d8e366721a4c19327d65ddd7e6809ca2532780975a296c11bfd4670424a.zip
.zip
Surveillance System(1.1.00023)_/PROGRA~1.cab
.cab
AVSynchronizer.dll1
.dll windows:4 windows x86

b0f28193f380f581ebae3a90f35c6329

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvfw32

DrawDibOpen
DrawDibDraw
DrawDibClose

kernel32

SetStdHandle
SetEnvironmentVariableA
CompareStringW
CompareStringA
VirtualQuery
GetSystemInfo
VirtualProtect
SetFilePointer
FlushFileBuffers
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
HeapSize
GetCPInfo
GetOEMCP
GetACP
GetCurrentThreadId
LocalFree
LocalAlloc
LoadLibraryA
GetProcAddress
GetLastError
GetVersion
CreateEventA
CreateThread
SetEvent
CloseHandle
WaitForSingleObject
GetExitCodeThread
TerminateThread
FreeLibrary
GetModuleHandleA
WriteFile
GetEnvironmentStringsW
FreeEnvironmentStringsW
Sleep
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetModuleFileNameA
GetCurrentProcessId
GetTimeZoneInformation
WideCharToMultiByte
SetLastError
IsBadWritePtr
GetTickCount
SleepEx
LeaveCriticalSection
EnterCriticalSection
SetThreadPriority
InitializeCriticalSection
DeleteCriticalSection
LockResource
SizeofResource
LoadResource
FindResourceA
QueryPerformanceFrequency
QueryPerformanceCounter
GetLocalTime
TlsSetValue
GetCurrentThread
TlsAlloc
TlsFree
TlsGetValue
CreateSemaphoreA
ReleaseSemaphore
lstrcpynA
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
ExitProcess
RtlUnwind
GetCommandLineA
GetVersionExA
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc

user32

ReleaseDC
GetDC
InvalidateRect
DefWindowProcA
GetWindowLongA
SetWindowLongA
CreateWindowExA
GetDesktopWindow
RegisterClassExA
DestroyWindow
GetMonitorInfoA
MonitorFromWindow
GetClientRect
GetParent
IntersectRect
GetSystemMetrics
SetRect
OffsetRect
SystemParametersInfoA
GetThreadDesktop
OpenInputDesktop
GetUserObjectInformationA
CloseDesktop
GetWindowRect
CallWindowProcA
IsWindowVisible
ValidateRect
FillRect

gdi32

SetPixel
SetBrushOrgEx
SetStretchBltMode
StretchDIBits
StretchBlt
CreateSolidBrush
GetObjectA
CreateCompatibleDC
CreateCompatibleBitmap
GetDIBits
SelectObject
DeleteDC
BitBlt
CreateRectRgn
SelectClipRgn
DeleteObject

parsedatapacket

_DataPacket_GetEveryAudioInfo@8

winmm

mmioGetInfo
mmioOpenA
timeEndPeriod
timeBeginPeriod
timeGetDevCaps
mmioAscend
mmioRead
mmioDescend
mmioCreateChunk
mmioSeek
mmioSetInfo
mmioAdvance
mmioClose
mmioWrite

dsound

ord1

Exports

Exports

_AudioOut_CreateStaticBuffer@24
_AudioOut_CreateStreamBuffer@36
_AudioOut_DeleteBuffer@4
_AudioOut_GetBufferOptions@8
_AudioOut_GetBufferSize@8
_AudioOut_GetBufferStatus@8
_AudioOut_GetOutPutFormat@8
_AudioOut_GetVersionInfo@16
_AudioOut_GetWAVInfo@4
_AudioOut_Initial@12
_AudioOut_PauseBuffer@4
_AudioOut_PlayBuffer@4
_AudioOut_Release@4
_AudioOut_ResetBuffer@4
_AudioOut_SetBufferOptions@20
_AudioOut_SetBufferProperty@8
_AudioOut_SetOutPutFormat@16
_AudioOut_StopBuffer@4
_AvSynchronizer_ChooseAudioCompressor@16
_AvSynchronizer_ChooseChannelAudioCompressor@16
_AvSynchronizer_ChooseChannelVideoCompressor@16
_AvSynchronizer_ChooseVideoCompressor@16
_AvSynchronizer_CreateAVIChannel@12
_AvSynchronizer_CreateChannel@104
_AvSynchronizer_CreateDecoderChannel@12
_AvSynchronizer_CreateLiveAVIChannel@12
_AvSynchronizer_CreatePlaybackChannel@116
_AvSynchronizer_DecodeAudio@16
_AvSynchronizer_DecodeVideo@16
_AvSynchronizer_DeleteAVIChannel@8
_AvSynchronizer_DeleteChannel@8
_AvSynchronizer_DeleteDecoderChannel@8
_AvSynchronizer_FreePicture@4
_AvSynchronizer_GetAudioCompressorParam@8
_AvSynchronizer_GetCapabilities@12
_AvSynchronizer_GetChannelAudioCompressorParam@8
_AvSynchronizer_GetChannelDrawingMode@8
_AvSynchronizer_GetChannelVideoCompressorParam@8
_AvSynchronizer_GetCurrentSnapShot@12
_AvSynchronizer_GetFlags@8
_AvSynchronizer_GetVersionInfo@16
_AvSynchronizer_GetVideoCompressorParam@8
_AvSynchronizer_Initial@32
_AvSynchronizer_InitialEx@36
_AvSynchronizer_InputAVIMedia@8
_AvSynchronizer_InputDecodedAVIMedia@12
_AvSynchronizer_InputEncodedMediaFrame@8
_AvSynchronizer_InputPlaybackMediaFrame@8
_AvSynchronizer_InputToBeDecodedMediaFrame@8
_AvSynchronizer_Release@4
_AvSynchronizer_SetAudioCompressorParam@8
_AvSynchronizer_SetChannelAudioCompressorParam@8
_AvSynchronizer_SetChannelOption@16
_AvSynchronizer_SetChannelVideoCompressorParam@8
_AvSynchronizer_SetFlags@8
_AvSynchronizer_SetVideoCompressorParam@8
_AvSynchronizer_ShowCaption@0
_AvSynchronizer_StartAVIChannel@8
_AvSynchronizer_StartChannel@8
_AvSynchronizer_StopAVIChannel@4
_AvSynchronizer_StopChannel@4
_AvSynchronizer_UpdateChannelSettings@44
_AvSynchronizer_UpdatePlaybackChannelSettings@56
_AvSynchronizer_UseAVIConversion@4
_AvSynchronizer_UseAac4Decoder@0
_AvSynchronizer_UseAllCodecs@0
_AvSynchronizer_UseAudioOut@0
_AvSynchronizer_UseG7221Decoder@0
_AvSynchronizer_UseG729ADecoder@0
_AvSynchronizer_UseGamrDecoder@0
_AvSynchronizer_UseH263Decoder@0
_AvSynchronizer_UseMJpegDecoder@0
_AvSynchronizer_UseMJpegEncoder@0
_AvSynchronizer_UseMPeg4SPDecoder@0
_GB_Continue@4
_GB_EndOfStream@4
_GB_FlushAlign@4
_GB_FlushBits@8
_GB_FlushBytes@8
_GB_FlushPool@4
_GB_GetAlignSymbol@4
_GB_GetBits@12
_GB_GetBytes@12
_GB_GetDecBytes@4
_GB_GetFullness@4
_GB_GetStuffing@4
_GB_GetSymbol@4
_GB_GetVersionInfo@16
_GB_Initial@8
_GB_PutBytes@12
_GB_QueryMemSize@4
_GB_Release@4
_GB_SetNewBuf@12
_GB_SetSymbol@4
_GB_Stop@4
_GB_UpdateByteCount@4
_Mp4VDec_EndOfData@4
_Mp4VDec_FeedData@12
_Mp4VDec_GetDecFrame@4
_Mp4VDec_GetVersionInfo@16
_Mp4VDec_Initial@8
_Mp4VDec_OneFrame@8
_Mp4VDec_QueryFilledBufferSpace@4
_Mp4VDec_QueryMemSize@4
_Mp4VDec_Quit@4
_Mp4VDec_Release@4
_Mp4VDec_SetOptions@8

Sections

.text
Size: 316KB - Virtual size: 313KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AudioOut.dll1
.dll windows:4 windows x86

49c617f8ee007b0b1da7324d297235fc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

dsound

ord1

winmm

mmioOpenA
mmioWrite
mmioClose
mmioAdvance
mmioSetInfo
mmioSeek
mmioCreateChunk
mmioGetInfo
mmioDescend
mmioRead
mmioAscend

kernel32

VirtualQuery
GetSystemInfo
VirtualProtect
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
Sleep
SleepEx
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
SetThreadPriority
CreateThread
CreateEventA
InitializeCriticalSection
DeleteCriticalSection
TerminateThread
GetExitCodeThread
SetEvent
CloseHandle
LockResource
SizeofResource
LoadResource
FindResourceA
ExitProcess
HeapFree
HeapAlloc
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
TlsFree
SetLastError
TlsGetValue
GetLastError
TlsAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
WriteFile
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
HeapSize
GetLocaleInfoA

Exports

Exports

_AudioOut_CreateStaticBuffer@24
_AudioOut_CreateStreamBuffer@36
_AudioOut_DeleteBuffer@4
_AudioOut_GetBufferOptions@8
_AudioOut_GetBufferSize@8
_AudioOut_GetBufferStatus@8
_AudioOut_GetOutPutFormat@8
_AudioOut_GetVersionInfo@16
_AudioOut_GetWAVInfo@4
_AudioOut_Initial@12
_AudioOut_PauseBuffer@4
_AudioOut_PlayBuffer@4
_AudioOut_Release@4
_AudioOut_ResetBuffer@4
_AudioOut_SetBufferOptions@20
_AudioOut_SetOutPutFormat@16
_AudioOut_StopBuffer@4

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AviConverter.dll
.dll windows:4 windows x86

d81e9388e5df12ba65207f90f794630d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

VirtualProtect
GetSystemInfo
HeapSize
LCMapStringW
VirtualQuery
RtlUnwind
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
LCMapStringA
InitializeCriticalSection
GetLastError
LoadLibraryA
ExitProcess
HeapAlloc
HeapFree
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
DeleteFileA
TlsFree
SetLastError
TlsGetValue
TlsAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
WriteFile
GetACP
GetOEMCP
GetCPInfo

user32

ReleaseDC
GetDC

gdi32

DeleteObject
DeleteDC
CreateDIBSection
GetDIBits
SelectObject
CreateCompatibleDC

msvfw32

ICCompressorChoose
ICSeqCompressFrame
ICSeqCompressFrameEnd
ICCompressorFree
ICClose
ICOpen
ICSeqCompressFrameStart
DrawDibClose
DrawDibDraw
DrawDibOpen
ICSendMessage

avifil32

AVIFileExit
AVIStreamWrite
AVIFileRelease
AVIFileCreateStreamA
AVIStreamRelease
AVIStreamSetFormat
AVIFileInit
AVIFileOpenA

msacm32

acmStreamOpen
acmStreamClose
acmStreamUnprepareHeader
acmStreamConvert
acmFormatChooseA
acmStreamPrepareHeader
acmStreamSize

Exports

Exports

AVIConverter_ChooseAudioCompressor
AVIConverter_ChooseChannelAudioCompressor
AVIConverter_ChooseChannelVideoCompressor
AVIConverter_ChooseVideoCompressor
AVIConverter_CreateChannel
AVIConverter_CreateLiveChannel
AVIConverter_DeleteChannel
AVIConverter_GetAudioCompressorParam
AVIConverter_GetChannelAudioCompressorParam
AVIConverter_GetChannelVideoCompressorParam
AVIConverter_GetVideoCompressorParam
AVIConverter_Initial
AVIConverter_InputDecodedMedia
AVIConverter_InputMedia
AVIConverter_Release
AVIConverter_SetAudioCompressorParam
AVIConverter_SetChannelAudioCompressorParam
AVIConverter_SetChannelOption
AVIConverter_SetChannelVideoCompressorParam
AVIConverter_SetVideoCompressorParam
AVIConverter_StartChannel
AVIConverter_StopChannel
_AVIWriter_ChooseAudioCompressor@16
_AVIWriter_ChooseVideoCompressor@16
_AVIWriter_Close@4
_AVIWriter_CreateAStream@8
_AVIWriter_CreateVStream@16
_AVIWriter_GetAudioCompressorParam@8
_AVIWriter_GetVideoCompressorParam@28
_AVIWriter_Initial@4
_AVIWriter_Open@8
_AVIWriter_Release@4
_AVIWriter_SetAudioCompressorParam@8
_AVIWriter_SetVideoCompressorParam@28
_AVIWriter_WriteAudioFrame@12
_AVIWriter_WriteVideoFrame@12

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CommCtl32.dll
.dll .ps1 windows:4 windows x86
DBRepair.exe1
.exe windows:4 windows x86

1f0f5a5e81062428d4f0fb1f0baa7bcb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

database

_MediaDB_RepairDatabase@8

kernel32

TerminateProcess
RaiseException
HeapReAlloc
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
VirtualProtect
GetSystemInfo
VirtualQuery
SetStdHandle
SetEnvironmentVariableA
GetStartupInfoA
HeapFree
HeapAlloc
ExitProcess
RtlUnwind
GetTickCount
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
SetErrorMode
FileTimeToSystemTime
GetOEMCP
GetCPInfo
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GlobalFlags
InterlockedIncrement
WritePrivateProfileStringA
InterlockedDecrement
GetLastError
SetLastError
MulDiv
FormatMessageA
LocalFree
lstrcpynA
GlobalGetAtomNameA
GlobalFindAtomA
lstrcatA
lstrcmpW
GlobalUnlock
GlobalFree
FreeResource
CloseHandle
GlobalAddAtomA
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
LoadLibraryA
lstrlenA
lstrcmpiA
CompareStringW
CompareStringA
GetVersion
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
SetHandleCount

user32

MessageBeep
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
CopyAcceleratorTableA
SetRect
IsRectEmpty
CharNextA
GetSysColorBrush
ReleaseCapture
LoadCursorA
SetCapture
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DestroyMenu
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
IsChild
GetWindowTextA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
GetSysColor
AdjustWindowRectEx
EqualRect
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetFocus
PostThreadMessageA
RegisterClipboardFormatA
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
SetCursor
PostQuitMessage
wsprintfA
PostMessageA
CharUpperA
GetSystemMetrics
LoadIconA
EnableWindow
GetClientRect
IsIconic
GetSystemMenu
SendMessageA
AppendMenuA
DrawIcon
GetForegroundWindow

gdi32

GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetMapMode
TextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
DeleteObject
Escape
GetStockObject
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
CreateBitmap
SetMapMode
RestoreDC
SaveDC
ExtTextOutA
GetDeviceCaps
GetObjectA
SetBkColor
SetTextColor
GetClipBox
SelectObject

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

SHBrowseForFolderA
SHGetMalloc
SHGetPathFromIDListA

comctl32

ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CreateILockBytesOnHGlobal
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject

oleaut32

SysAllocString
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocStringByteLen
SysStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
DataBroker.dll1
.dll windows:4 windows x86

3202b7740ee668ffa2a692f2e272e2d1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

bind
htonl
ntohl
__WSAFDIsSet
recvfrom
gethostname
gethostbyname
getprotobyname
inet_ntoa
shutdown
setsockopt
htons
sendto
connect
WSAStartup
WSACleanup
socket
ioctlsocket
getservbyname
select
send
WSAGetLastError
recv
inet_addr
getsockname
closesocket

wininet

InternetCreateUrlA
HttpOpenRequestA
HttpQueryInfoA
InternetQueryDataAvailable
InternetReadFile
InternetAttemptConnect
InternetQueryOptionA
HttpSendRequestA
InternetConnectA
InternetOpenA
InternetSetOptionA
InternetCloseHandle

srvdepresource

_SrvDepResource_GetParamForServerByFriendlyName@8

parsedatapacket

_DataPacket_Parse@4

kernel32

QueryPerformanceFrequency
SetEnvironmentVariableA
CompareStringW
CompareStringA
FlushFileBuffers
SetStdHandle
ReadFile
VirtualQuery
GetSystemInfo
VirtualProtect
HeapSize
SetFilePointer
GetOEMCP
GetACP
GetLocaleInfoA
GetCPInfo
LoadLibraryA
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetTimeZoneInformation
WriteFile
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
HeapReAlloc
VirtualAlloc
TlsSetValue
GetCurrentThreadId
GetCurrentThread
TlsAlloc
TlsFree
CloseHandle
InterlockedCompareExchange
ResumeThread
SetThreadPriority
WaitForSingleObject
TlsGetValue
SwitchToThread
CreateThread
TerminateThread
GetExitCodeThread
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateEventA
SetEvent
Sleep
QueryPerformanceCounter
GetTickCount
GetLocalTime
CreateSemaphoreA
ReleaseSemaphore
ExitProcess
HeapAlloc
RtlUnwind
HeapFree
GetCommandLineA
GetVersionExA
GetSystemTimeAsFileTime
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
GetCurrentProcessId
GetModuleFileNameA
SetLastError
GetLastError
HeapDestroy
HeapCreate
VirtualFree

Exports

Exports

_DataBroker_CheckIfLive@4
_DataBroker_Connect@4
_DataBroker_CreateConnection@8
_DataBroker_CreateInput@8
_DataBroker_CreateInputEx@8
_DataBroker_DeleteConnection@8
_DataBroker_DeleteInput@4
_DataBroker_DeleteInputEx@8
_DataBroker_Disconnect@4
_DataBroker_ForceIFrame@4
_DataBroker_GetMediaReceivedBytes@12
_DataBroker_GetVersionInfo@16
_DataBroker_Initial@28
_DataBroker_InputPacket@16
_DataBroker_InputPacketEx@16
_DataBroker_InputTxPacket@12
_DataBroker_JumpMediaStreaming@8
_DataBroker_PauseMediaStreaming@4
_DataBroker_Release@4
_DataBroker_ResumeMediaStreaming@4
_DataBroker_SetCodecPriority@12
_DataBroker_SetConnectionExtraOption@16
_DataBroker_SetConnectionNetPacketCallback@16
_DataBroker_SetConnectionOptions@8
_DataBroker_SetConnectionOptionsEx@16
_DataBroker_SetConnectionUrlsExtra@28
_DataBroker_SetInputExtraOption@16
_DataBroker_SetInputOptions@8
_DataBroker_SetOptions@8
_DataBroker_StartTxConnection@4
_DataBroker_StopTxConnection@4
_DataBroker_Use2K@0
_DataBroker_Use3K@0
_DataBroker_Use5K@0
_DataBroker_Use7K@0

Sections

.text
Size: 180KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
InstallAux.dll1
.dll windows:4 windows x86

8c993e3f608f3861a99815f6d9325e00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LocalAlloc
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
InterlockedDecrement
lstrcatA
lstrcpyA
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
SetErrorMode
InterlockedIncrement
lstrcmpA
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GlobalFlags
SetLastError
GetCPInfo
GetOEMCP
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
ExitProcess
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
RtlUnwind
GetCommandLineA
RaiseException
HeapReAlloc
HeapSize
QueryPerformanceCounter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
IsBadReadPtr
IsBadCodePtr
VirtualProtect
GetSystemInfo
VirtualQuery
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
lstrcmpiA
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SleepEx
GetCurrentProcessId
OpenProcess
GetLastError
TerminateProcess
GetTickCount
BeginUpdateResourceA
UpdateResourceA
EndUpdateResourceA
SetFileTime
LoadLibraryA
FindResourceA
FreeLibrary
SizeofResource
LoadResource
LockResource
CompareFileTime
GetVersionExA
CreateFileA
GetFileTime
GetSystemDirectoryA
CreateMutexA
OpenMutexA
CloseHandle
ReleaseMutex
GetCurrentThreadId
CreateProcessA
GetVersion
WaitForSingleObject

user32

TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
PostQuitMessage
SetWindowTextA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
GetClientRect
GetMenu
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
LoadCursorA
GetSystemMetrics
GetDC
SendMessageA
CallNextHookEx
GetClassNameA
SetWindowsHookExA
UnhookWindowsHookEx
SetTimer
GetWindowTextA
PostMessageA
ReleaseDC
GetSysColor
GetSysColorBrush
UnregisterClassA
DispatchMessageA
DestroyMenu
KillTimer
GetDlgCtrlID
GetWindow
ShowWindow
SetForegroundWindow
ClientToScreen
AdjustWindowRectEx
GetSubMenu
GetKeyState
PeekMessageA
ValidateRect
GetMenuState
GetMenuItemID
GetMenuItemCount
SetMenuItemBitmaps

advapi32

SetNamedSecurityInfoA

comctl32

ord17

shlwapi

PathFindFileNameA
PathFindExtensionA

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

DeleteDC
GetStockObject
TextOutA
ScaleWindowExtEx
RectVisible
PtVisible
GetDeviceCaps
CreateBitmap
GetClipBox
SetTextColor
SetBkColor
DeleteObject
ExtTextOutA
SaveDC
RestoreDC
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
SetMapMode
Escape

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

oleaut32

VariantClear
VariantChangeType
VariantInit

Exports

Exports

EndHiddenDlg
EndLimitPasswordTextLen
IS_VerifySerialNumber
InitializeRootPassword
ReadPreviousVerInfo
RunServiceCommand
StartHiddenDlg
StartLimitPasswordTextLen
StopPreviousService
UpdateInstallDate

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 840B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Launcher_LO.exe
.exe windows:4 windows x86

4a1dcad4ed5e91eeaf98af5e42fd3de9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
CompareStringW
CompareStringA
MultiByteToWideChar
lstrlenA
WinExec
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetCurrentThreadId
OpenProcess
TerminateProcess
BeginUpdateResourceA
UpdateResourceA
EndUpdateResourceA
SetFileTime
CompareFileTime
CreateFileA
GetFileTime
GetSystemDirectoryA
GetVersion
CreateMutexA
OpenMutexA
ReleaseMutex
GetCommandLineA
GetModuleHandleA
FreeConsole
LoadLibraryA
GetProcAddress
GetCurrentProcessId
FreeLibrary
SetConsoleCtrlHandler
SetProcessShutdownParameters
CreateEventA
CloseHandle
CreateThread
GetTickCount
WaitForSingleObject
LocalAlloc
SleepEx
SetEvent
Sleep
GetLastError
FormatMessageA
LocalFree
GetModuleFileNameA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
FreeResource
GlobalFree
GlobalUnlock
GlobalLock
lstrcpynA
GlobalAlloc
MulDiv
SetLastError
lstrcpyA
lstrcmpW
lstrcatA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
InterlockedDecrement
SetErrorMode
EnumResourceLanguagesA
ConvertDefaultLocale
lstrcmpA
GetCurrentThread
GlobalFlags
InterlockedIncrement
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
RtlUnwind
HeapFree
HeapAlloc
RaiseException
GetSystemTimeAsFileTime
ExitProcess
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
SetStdHandle
VirtualProtect
GetSystemInfo
VirtualQuery
GetLocaleInfoW
SetEnvironmentVariableA
GetACP
InterlockedExchange

user32

GetWindowTextA
GetWindowTextLengthA
SetFocus
GetFocus
SendDlgItemMessageA
RemovePropA
GetPropA
SetPropA
GetClassInfoExA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
GetCapture
WinHelpA
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
MoveWindow
LoadBitmapA
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
wsprintfA
GetForegroundWindow
ValidateRect
TranslateAcceleratorA
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
ReleaseCapture
ReuseDDElParam
UnpackDDElParam
GetSysColorBrush
ShowOwnedPopups
GetDlgItem
IsWindowEnabled
IsWindowVisible
UpdateWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMenuItemInfoA
GetMenu
AdjustWindowRectEx
GetMessagePos
PeekMessageA
MapWindowPoints
GetCursorPos
TrackPopupMenu
SetMenuDefaultItem
SetActiveWindow
GetMenuItemID
SystemParametersInfoA
PostQuitMessage
RegisterWindowMessageA
DialogBoxParamA
EndPaint
BeginPaint
PostThreadMessageA
LoadIconA
wvsprintfA
EnumThreadWindows
GetClassNameA
ShowWindow
MessageBoxA
GetMessageA
TranslateMessage
DispatchMessageA
PostMessageA
EndDialog
ModifyMenuA
GetSubMenu
TrackPopupMenuEx
DestroyMenu
LoadMenuA
DestroyCursor
IsWindow
SetCursor
GetWindowLongA
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
InvalidateRect
ClientToScreen
GetClientRect
GetWindowRect
DrawFocusRect
FrameRect
FillRect
OffsetRect
InflateRect
CopyRect
LoadCursorA
SetClassLongA
GetSysColor
EqualRect
DeferWindowPos
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
IntersectRect
DrawStateA
DestroyIcon
SetForegroundWindow
KillTimer
SetTimer
LoadStringA
EnableWindow
SendMessageA
GetParent
GetKeyState
GetMessageTime
IsIconic
GetWindowPlacement
PtInRect
GetWindow
GetWindowDC
ReleaseDC
GetDC
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMenuState
GetMenuItemCount
GetDesktopWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow

gdi32

LineTo
MoveToEx
GetClipBox
SetMapMode
GetObjectA
CreateCompatibleBitmap
CreateBitmap
CreateCompatibleDC
SelectObject
SetBkColor
BitBlt
SetTextColor
DeleteDC
GetStockObject
DeleteObject
CreateSolidBrush
SetBkMode
RestoreDC
SaveDC
GetDeviceCaps
GetTextExtentPoint32A
CreateFontIndirectA
CreatePen
CreatePatternBrush
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetPixel

advapi32

DeleteService
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
SetServiceStatus
CloseServiceHandle
QueryServiceStatus
ControlService
OpenServiceA
OpenSCManagerA
StartServiceA
CreateServiceA
UnlockServiceDatabase
ChangeServiceConfigA
QueryServiceLockStatusA
LockServiceDatabase
RegisterServiceCtrlHandlerA
StartServiceCtrlDispatcherA
SetNamedSecurityInfoA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

shell32

DragQueryFileA
DragFinish
ShellExecuteExA
Shell_NotifyIconA

oleaut32

VariantClear
SystemTimeToVariantTime
VariantChangeType
VariantInit

comctl32

ImageList_Destroy
_TrackMouseEvent
ord17
ImageList_Draw
ImageList_GetImageInfo

shlwapi

PathFindExtensionA
PathFindFileNameA

oleacc

LresultFromObject
CreateStdAccessibleObject

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

Sections

.text
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Monitor_LO.exe
.exe windows:4 windows x86

d2cfb179eeaf5f0f71c55463c5d05967

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

avsynchronizer

_AvSynchronizer_GetCurrentSnapShot@12
_AvSynchronizer_FreePicture@4
_AvSynchronizer_StartChannel@8
_AvSynchronizer_InputEncodedMediaFrame@8
_AudioOut_Initial@12
_AudioOut_GetWAVInfo@4
_AudioOut_CreateStreamBuffer@36
_AudioOut_PlayBuffer@4
_AvSynchronizer_CreateChannel@104
_AvSynchronizer_Initial@32
_AvSynchronizer_GetCapabilities@12
_AvSynchronizer_UpdateChannelSettings@44
_AvSynchronizer_Release@4
_AvSynchronizer_DeleteChannel@8
_AvSynchronizer_StopChannel@4
_AudioOut_Release@4
_AudioOut_DeleteBuffer@4
_AudioOut_StopBuffer@4

databroker

_DataBroker_CreateConnection@8
_DataBroker_Disconnect@4
_DataBroker_ForceIFrame@4
_DataBroker_Connect@4
_DataBroker_SetConnectionOptions@8
_DataBroker_SetOptions@8
_DataBroker_Release@4
_DataBroker_Initial@28
_DataBroker_DeleteConnection@8

database

_MediaDB_Initial@12
_MediaDB_CloseCurrentFile@4
_MediaDB_GetLocationSize@12
_MediaDB_RepairLocation@12
_MediaDB_CreateLocation@12
_MediaDB_OpenLocation@12
_MediaDB_DeleteOldestSequenceEx@12
_MediaDB_PreBufferOneDataPacketEx@12
_MediaDB_InputOneDataPacketEx@16
_MediaDB_FlushPreBufferEx@8
_MediaDB_Release@4
_MediaDBBackup_GetLastBackupTime@12
_MediaDB_GetTimeSegmentNumber@8
_MediaDB_GetLocationList@12
_MediaDB_GetLocationNum@8
_MediaDB_DeleteLocation@8
_MediaDBBackup_Initial@8
_MediaDBBackup_Release@4
_MediaDBBackup_Execute@4
_MediaDBBackup_SetBackupInfoCallback@12
_MediaDBBackup_SetOptions@20
_MediaDBBackup_Stop@4
_MediaDB_CloseLocation@4
_MediaDB_RepairDatabase@8
_MediaDB_SetPreBufferSecond@8

serverutl

_ServerUtl_AbortNetworkOper@4
_ServerUtl_HttpOperationRead@24
_ServerUtl_SetDevicePropertyHttp@44
_ServerUtl_SendPTZCommand@20
_ServerUtl_Initial@8
_ServerUtl_Release@4
_ServerUtl_CreateDeviceEx@16
_ServerUtl_SetDevicePropertyLite@44
_ServerUtl_DeleteDevice@4
_ServerUtl_MoveCamera@20

srvdepresource

_SrvDepResource_GetParamForServer@8
_SrvDepResource_GetMappingFriendlyName@8

ws2_32

htons
gethostbyname
inet_addr
select
connect
setsockopt
ioctlsocket
socket
send
recv
WSACleanup
WSAStartup
closesocket

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

wininet

InternetSetOptionA

kernel32

GlobalUnlock
GlobalSize
WaitForSingleObjectEx
GlobalReAlloc
MulDiv
FreeResource
GetModuleHandleA
lstrcpyA
lstrcmpW
lstrcatA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
SetLastError
LocalFree
FormatMessageA
CopyFileA
InterlockedDecrement
lstrcmpA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
GetProfileIntA
InterlockedIncrement
GlobalFlags
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GlobalLock
FileTimeToSystemTime
WritePrivateProfileStringA
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
FileTimeToLocalFileTime
GetFileAttributesA
SetErrorMode
RtlUnwind
ExitProcess
GetSystemTimeAsFileTime
RaiseException
HeapFree
HeapAlloc
RemoveDirectoryA
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
GetCommandLineA
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
QueryPerformanceCounter
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetTimeZoneInformation
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
VirtualProtect
GetSystemInfo
VirtualQuery
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
lstrcmpiA
CompareStringW
lstrlenW
CompareStringA
OutputDebugStringA
lstrcpynA
WaitForMultipleObjectsEx
GetCurrentDirectoryA
WaitForMultipleObjects
SetProcessShutdownParameters
GetCurrentProcess
CreateEventA
WinExec
Sleep
GetExitCodeThread
TerminateThread
GlobalFree
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetCurrentProcessId
OpenProcess
GetLastError
TerminateProcess
BeginUpdateResourceA
UpdateResourceA
EndUpdateResourceA
SetFileTime
CompareFileTime
GetFileTime
GetSystemDirectoryA
GetVersion
CloseHandle
CreateMutexA
OpenMutexA
ReleaseMutex
GetModuleFileNameA
GetDiskFreeSpaceExA
GetLocalTime
CreateDirectoryA
lstrlenA
FreeLibrary
LoadLibraryA
GetProcAddress
MultiByteToWideChar
GetTickCount
SleepEx
WaitForSingleObject
CreateThread
SetEvent
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
LocalAlloc
GlobalAlloc
CreateFileA
WriteFile
GetOEMCP

user32

SetWindowTextA
GetMenuCheckMarkDimensions
CheckMenuItem
GetMenuState
SetMenuItemBitmaps
wsprintfA
GetWindowDC
BeginPaint
EndPaint
PostQuitMessage
ValidateRect
TranslateMessage
GetMessageA
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatA
CharNextA
GetSysColorBrush
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
PostThreadMessageA
TrackPopupMenu
GetScrollPos
ShowScrollBar
UpdateWindow
GetMenu
GetMenuItemID
GetMenuItemCount
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
RegisterClassA
UnregisterClassA
CallWindowProcA
SetWindowPos
GetWindowPlacement
GetWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
EndDialog
IsRectEmpty
GetMessagePos
IsClipboardFormatAvailable
GetClassInfoA
DefWindowProcA
InvertRect
IntersectRect
SetRect
IsWindowVisible
SetWindowsHookExA
CallNextHookEx
GetDoubleClickTime
IsDialogMessageA
CharUpperA
ClipCursor
RedrawWindow
EnumDisplaySettingsA
SetWindowLongA
MoveWindow
ChangeDisplaySettingsA
SystemParametersInfoA
GrayStringA
DrawTextExA
TabbedTextOutA
PeekMessageA
DrawEdge
GetFocus
wvsprintfA
GetDlgCtrlID
ExitWindowsEx
LoadIconA
ChildWindowFromPointEx
IsIconic
GetSystemMenu
ModifyMenuA
InsertMenuA
EnableMenuItem
AppendMenuA
CreatePopupMenu
DrawIcon
MessageBoxA
SetForegroundWindow
ShowWindow
LockWindowUpdate
DrawTextA
ReleaseDC
GetDC
LoadBitmapA
GetCursorPos
ReleaseCapture
GetDesktopWindow
SetCapture
GetCapture
ScreenToClient
PtInRect
EnumThreadWindows
GetKeyState
GetSubMenu
TrackPopupMenuEx
DestroyMenu
DestroyCursor
LoadImageA
GetIconInfo
SetCursor
GetWindowLongA
WindowFromPoint
GetParent
GetNextDlgTabItem
GetActiveWindow
InvalidateRect
ClientToScreen
RegisterWindowMessageA
WinHelpA
GetClientRect
SendMessageA
DrawFocusRect
FrameRect
FillRect
OffsetRect
InflateRect
CopyRect
LoadCursorA
SetClassLongA
GetSysColor
DrawStateA
DestroyIcon
GetSystemMetrics
KillTimer
SetTimer
GetWindowRect
PostMessageA
IsWindow
EnableWindow
LoadStringA
SetDlgItemTextA
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
GetMessageTime
MapWindowPoints
UnhookWindowsHookEx
GetClassNameA

gdi32

GetTextExtentPoint32A
Rectangle
CreateFontIndirectA
GetPixel
CreateSolidBrush
GetDeviceCaps
CreatePen
SetPixel
CreateRectRgn
GetBkColor
GetViewportOrgEx
GetWindowOrgEx
PtVisible
RectVisible
ExtTextOutA
Escape
CreateCompatibleBitmap
MoveToEx
GetTextMetricsA
GetCurrentObject
CreateFontA
PatBlt
GetClipBox
SaveDC
RestoreDC
SetMapMode
SetTextAlign
SelectClipRgn
TextOutA
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CopyMetaFileA
CreateRectRgnIndirect
GetMapMode
DPtoLP
GetTextColor
GetRgnBox
CreateBitmap
CreateCompatibleDC
SelectObject
SetBkColor
BitBlt
SetTextColor
DeleteDC
GetStockObject
DeleteObject
SetBkMode
EndDoc
EndPage
StretchBlt
SetBrushOrgEx
SetStretchBltMode
StartDocA
StartPage
GetViewportExtEx
CreateDIBSection
GetObjectA
LineTo

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA
PrintDlgA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegOpenKeyA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RevertToSelf
ImpersonateLoggedOnUser
SetNamedSecurityInfoA
LogonUserA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

shell32

SHGetPathFromIDListA
SHGetDesktopFolder
SHGetMalloc
SHBrowseForFolderA
ShellExecuteExA

comctl32

ImageList_Create
ImageList_Destroy
_TrackMouseEvent
ord17
ImageList_Draw
ImageList_GetImageInfo
ImageList_AddMasked

shlwapi

PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA

oledlg

ord8

ole32

CoGetClassObject
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject
ReleaseStgMedium
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
DoDragDrop
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleDuplicateData

oleaut32

VariantClear
SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
SafeArrayDestroy
SafeArrayCreateVector
SysAllocString
VariantInit
VariantChangeType
SysStringLen
SysAllocStringByteLen
OleCreateFontIndirect
SysAllocStringLen
VarUdateFromDate
SystemTimeToVariantTime
SysFreeString
VariantCopy

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 500KB - Virtual size: 499KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 916KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Playback_LO.exe
.exe windows:4 windows x86

4c4294b3892cc98efc4a320a931f0127

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

database

_MediaDB_GetTimeSegmentNumber@8
_MediaDB_OpenLocation@12
_MediaDB_FindFirstTimeInterval@8
_MediaDB_GetLocationNum@8
_MediaDB_SetEvenQueryOptions@8
_MediaDBRet_Initial@4
_MediaDBRet_MatchTime@24
_MediaDBRet_MatchFirstI@28
_MediaDBRet_OutputOneDataPacket@20
_MediaDB_CloseLocation@4
_MediaDB_Release@4
_MediaDB_FindFirstEventInterval@8
_MediaDB_FindNextEventInterval@8
_MediaDB_CreateEventQuery@20
_MediaDB_GetEventIntervalNum@8
_MediaDB_CreateTimeQuery@16
_MediaDB_Initial@12
_MediaDB_GetTimeIntervalNum@8
_MediaDB_DeleteQuery@4
_MediaDBRet_Release@4
_MediaDB_FindNextTimeInterval@8
_MediaDB_GetLocationList@12
_MediaDB_GetTimeSegmentInterval@12

avsynchronizer

_AvSynchronizer_FreePicture@4
_AvSynchronizer_GetCurrentSnapShot@12
_AvSynchronizer_GetVideoCompressorParam@8
_AvSynchronizer_ChooseVideoCompressor@16
_AvSynchronizer_GetAudioCompressorParam@8
_AvSynchronizer_ChooseAudioCompressor@16
_AvSynchronizer_DeleteChannel@8
_AvSynchronizer_DeleteAVIChannel@8
_AvSynchronizer_InputAVIMedia@8
_AvSynchronizer_StartAVIChannel@8
_AvSynchronizer_StopAVIChannel@4
_AvSynchronizer_CreateAVIChannel@12
_AvSynchronizer_UpdatePlaybackChannelSettings@56
_AvSynchronizer_SetVideoCompressorParam@8
_AvSynchronizer_SetAudioCompressorParam@8
_AvSynchronizer_StartChannel@8
_AvSynchronizer_StopChannel@4
_AvSynchronizer_CreatePlaybackChannel@116
_AvSynchronizer_InitialEx@36
_AvSynchronizer_InputPlaybackMediaFrame@8
_AvSynchronizer_Release@4

parsedatapacket

_DataPacket_Parse@4

msvfw32

DrawDibOpen
DrawDibClose

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

lstrcmpA
GetCurrentThread
FileTimeToSystemTime
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
InterlockedIncrement
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
ConvertDefaultLocale
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesA
ExitProcess
RtlUnwind
RaiseException
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetStartupInfoA
GetCommandLineA
HeapReAlloc
HeapSize
QueryPerformanceCounter
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
VirtualProtect
GetSystemInfo
VirtualQuery
SetEnvironmentVariableA
EnumResourceLanguagesA
InterlockedDecrement
FormatMessageA
lstrcpynA
LocalFree
GlobalLock
GlobalUnlock
MulDiv
SetLastError
FreeResource
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
lstrcpyA
GetModuleHandleA
lstrcmpiA
CompareStringW
CompareStringA
OutputDebugStringA
WaitForMultipleObjects
ResetEvent
SetThreadPriority
GetFileSize
CreateEventA
CreateThread
WaitForMultipleObjectsEx
GetExitCodeThread
TerminateThread
GetModuleFileNameA
WinExec
Sleep
SetEvent
GetTempPathA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SleepEx
GetCurrentProcessId
OpenProcess
GetLastError
TerminateProcess
GetTickCount
WaitForSingleObject
BeginUpdateResourceA
UpdateResourceA
EndUpdateResourceA
SetFileTime
CompareFileTime
GetFileTime
GetSystemDirectoryA
GetVersion
CreateMutexA
OpenMutexA
ReleaseMutex
CreateDirectoryA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetCurrentThreadId
lstrlenA
DeleteCriticalSection
FreeLibrary
LoadLibraryA
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
LocalAlloc
GlobalAlloc
CreateFileA
WriteFile
CloseHandle
GlobalFree

user32

CreateDialogIndirectParamA
wsprintfA
TranslateMessage
GetMessageA
PostQuitMessage
MapDialogRect
SetWindowContextHelpId
GetSysColorBrush
CharNextA
SetRect
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
PostThreadMessageA
GetMenuState
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
RegisterWindowMessageA
WinHelpA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
UpdateWindow
GetMenu
GetMenuItemID
EndDialog
AdjustWindowRectEx
EqualRect
RegisterClassA
UnregisterClassA
GetDlgCtrlID
CallWindowProcA
SetWindowPos
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
CharUpperA
GetClassInfoA
DefWindowProcA
GetDoubleClickTime
IsWindowVisible
IsRectEmpty
EnumDisplaySettingsA
SetWindowLongA
MoveWindow
ChangeDisplaySettingsA
GetDlgItem
GetSystemMetrics
LoadIconA
RedrawWindow
IsIconic
DrawIcon
GetKeyState
GetDC
ReleaseDC
ClipCursor
ValidateRect
InvertRect
DrawEdge
GetFocus
MessageBoxA
wvsprintfA
SetForegroundWindow
ShowWindow
GetCursorPos
ReleaseCapture
GetDesktopWindow
SetCapture
GetCapture
ScreenToClient
LoadBitmapA
PtInRect
LoadStringA
EnumThreadWindows
GetClassNameA
KillTimer
SetTimer
PostMessageA
GetSubMenu
TrackPopupMenuEx
DestroyMenu
DestroyCursor
LoadImageA
GetIconInfo
IsWindow
SetCursor
GetWindowLongA
EnableWindow
WindowFromPoint
GetParent
GetNextDlgTabItem
GetActiveWindow
InvalidateRect
ClientToScreen
GetClientRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
IsWindowEnabled
SetWindowTextA
IsDialogMessageA
GetWindowRect
SendMessageA
DrawFocusRect
FrameRect
FillRect
OffsetRect
InflateRect
CopyRect
LoadCursorA
SetClassLongA
GetSysColor
DrawStateA
DestroyIcon
SetDlgItemTextA
GetMenuItemCount
LockWindowUpdate

gdi32

GetDeviceCaps
CreateFontIndirectA
GetBkColor
PatBlt
GetTextMetricsA
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
StartDocA
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
CreateRectRgnIndirect
GetMapMode
DPtoLP
GetTextColor
GetRgnBox
MoveToEx
LineTo
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetClipBox
StartPage
CreateDIBSection
SetStretchBltMode
SetBrushOrgEx
StretchBlt
EndPage
EndDoc
TextOutA
GetTextExtentPoint32A
CreateEllipticRgn
CombineRgn
PtInRegion
SetPixel
CreatePen
GetPixel
CreateSolidBrush
CreateCompatibleBitmap
CreateBitmap
CreateCompatibleDC
SelectObject
SetBkColor
BitBlt
SetTextColor
DeleteDC
GetStockObject
DeleteObject
GetObjectA

comdlg32

GetFileTitleA
PrintDlgA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

SetNamedSecurityInfoA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegQueryValueExA

shell32

SHGetPathFromIDListA
SHGetDesktopFolder
SHGetMalloc
SHBrowseForFolderA
ShellExecuteExA

comctl32

_TrackMouseEvent
ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
CLSIDFromString
CLSIDFromProgID
CoUninitialize

oleaut32

SysAllocStringByteLen
SysStringLen
SysFreeString
SysAllocStringLen
VariantInit
VariantChangeType
SystemTimeToVariantTime
VariantCopy
SafeArrayDestroy
SysAllocString
OleCreateFontIndirect
VariantClear

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 276KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 232KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
STEnglish.dll
.dll windows:4 windows x86

11ab3d66f36dbc434471ad0b4d9f3fdd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCPInfo
GetOEMCP
ExitProcess
HeapAlloc
HeapFree
RtlUnwind
GetCommandLineA
TerminateProcess
RaiseException
HeapSize
HeapReAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
VirtualProtect
GetSystemInfo
VirtualQuery
SetStdHandle
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GlobalFlags
InterlockedIncrement
WritePrivateProfileStringA
SetErrorMode
lstrcatA
InterlockedDecrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GetLastError
SetLastError
GlobalFree
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
CloseHandle
GlobalAddAtomA
FindResourceA
LoadResource
LockResource
SizeofResource
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
LoadLibraryA
lstrlenA
lstrcmpiA
GetVersion
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
IsBadWritePtr
InterlockedExchange

user32

RegisterClassA
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
IsIconic
GetWindowPlacement
CopyRect
SetWindowPos
ShowWindow
GetDlgItem
LoadCursorA
GetSystemMetrics
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
DestroyMenu
SetWindowTextA
GetClassInfoA
UnregisterClassA
UnhookWindowsHookEx
GetMenuItemID
GetMenuItemCount
GetSubMenu
SetMenuItemBitmaps
GetFocus
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
RegisterWindowMessageA
WinHelpA
GetCursorPos
ValidateRect
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
SendMessageA
SetCursor
PostMessageA
PostQuitMessage
wsprintfA
GetClassNameA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
AdjustWindowRectEx
GetWindowTextA
SetWindowLongA

gdi32

DeleteObject
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
DeleteDC
GetStockObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
ScaleWindowExtEx
CreateBitmap
GetDeviceCaps
SaveDC

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA

comctl32

ord17

shlwapi

PathFindExtensionA
PathFindFileNameA

oleaut32

VariantInit
VariantChangeType
VariantClear

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
ServerUtl.dll1
.dll windows:4 windows x86

b50dfca7fc64046ba23836f3324db523

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

WSAStartup
WSACleanup
socket
setsockopt
closesocket
inet_addr
sendto
WSAGetLastError
recvfrom
inet_ntoa

kernel32

HeapFree
GetFileAttributesA
PeekNamedPipe
GetFileInformationByHandle
SetCurrentDirectoryA
GetCurrentDirectoryA
RemoveDirectoryA
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateDirectoryA
GetTempPathA
GetCurrentProcessId
GetTickCount
DeleteFileA
SetEnvironmentVariableA
CompareStringW
CompareStringA
HeapSize
SetEndOfFile
GetTimeZoneInformation
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
CreateFileA
FlushFileBuffers
LoadLibraryA
GetOEMCP
GetACP
GetStringTypeW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
Sleep
CreateEventA
CloseHandle
SetEvent
ResetEvent
WaitForSingleObject
TlsSetValue
GetCurrentThreadId
GetCurrentThread
TlsAlloc
TlsFree
InterlockedCompareExchange
ResumeThread
SetThreadPriority
TlsGetValue
CreateThread
TerminateThread
GetExitCodeThread
GetLocalTime
QueryPerformanceFrequency
QueryPerformanceCounter
SleepEx
GetLastError
WaitForSingleObjectEx
FindFirstFileA
FindClose
FindNextFileA
ExitProcess
GetFullPathNameA
HeapAlloc
GetCommandLineA
GetVersionExA
RtlUnwind
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
SetLastError
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetFilePointer
WriteFile
ReadFile
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetStdHandle
GetLocaleInfoA
GetCPInfo
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA

wininet

InternetConnectA
InternetFindNextFileA
FtpFindFirstFileA
FtpDeleteFileA
FtpRemoveDirectoryA
FtpSetCurrentDirectoryA
FtpCreateDirectoryA
FtpOpenFileA
InternetWriteFile
FtpGetFileA
FtpCommandA
InternetGetLastResponseInfoA
InternetReadFileExA
HttpOpenRequestA
HttpSendRequestA
HttpQueryInfoA
InternetCloseHandle
InternetSetOptionA
InternetOpenA
InternetSetStatusCallback

srvdepresource

_SrvDepResource_GetParamForServer@8
_SrvDepResource_GetParamForServerByFriendlyName@8
_SrvDepResource_GetMappingFriendlyName@8

Exports

Exports

_ServerUtl_AbortNetworkOper@4
_ServerUtl_AbortUpgrade@4
_ServerUtl_CreateDevice@8
_ServerUtl_CreateDeviceEx@16
_ServerUtl_DeleteDevice@4
_ServerUtl_GetDIStatus@24
_ServerUtl_GetDeviceModel@8
_ServerUtl_GetFirmVersionInfo@8
_ServerUtl_GetMotionDetectionInfo@20
_ServerUtl_GetSysInfo@20
_ServerUtl_GetSysInfoByID@16
_ServerUtl_GetSysInfoSecEntry@16
_ServerUtl_GetVersionInfo@16
_ServerUtl_HttpOperation@16
_ServerUtl_HttpOperationRead@24
_ServerUtl_Initial@8
_ServerUtl_InitialEx@16
_ServerUtl_MoveCamera@20
_ServerUtl_OpenDevice@8
_ServerUtl_Release@4
_ServerUtl_SendPTZCommand@20
_ServerUtl_SetDOLevel@16
_ServerUtl_SetDeviceProperty@48
_ServerUtl_SetDevicePropertyHttp@44
_ServerUtl_SetDevicePropertyLite@44
_ServerUtl_SetMotionDetectionInfo@16
_ServerUtl_SetParam@12
_ServerUtl_SetSysInfo@20
_ServerUtl_SetSysInfoByID@16
_ServerUtl_UartRead@28
_ServerUtl_UartWrite@16
_ServerUtl_UpdateLocalConfig@8
_ServerUtl_UpdateRemoteConfig@8
_ServerUtl_Upgrade@8

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SrvDepResource.dll1
.dll windows:4 windows x86

5e8db68d762b1397f5758cf3edfc9f26

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitProcess
HeapFree
HeapAlloc
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
TlsFree
SetLastError
TlsGetValue
GetLastError
TlsAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
WriteFile
LoadLibraryA
InitializeCriticalSection
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
HeapSize
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
VirtualProtect
GetSystemInfo
VirtualQuery

Exports

Exports

_SrvDepResource_EnumerateSupportingMode@8
_SrvDepResource_FreeFriendlyNameList@4
_SrvDepResource_GetMappingFriendlyName@8
_SrvDepResource_GetParamForServer@8
_SrvDepResource_GetParamForServerByFriendlyName@8
_SrvDepResource_GetVersionInfo@16

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
database.dll1
.dll windows:4 windows x86

2cb8ed9bd0217ad362ded3307b3d7080

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

parsedatapacket

_DataPacket_Parse@4

kernel32

CloseHandle
GetCurrentDirectoryA
CreateFileA
TlsFree
HeapFree
HeapAlloc
ExitProcess
GetLastError
DeleteFileA
GetSystemTimeAsFileTime
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
MoveFileA
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
SetFilePointer
EnterCriticalSection
LeaveCriticalSection
ReadFile
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
HeapReAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetModuleFileNameA
WideCharToMultiByte
GetTimeZoneInformation
WriteFile
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetLastError
TlsGetValue
TlsAlloc
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetStdHandle
FlushFileBuffers
InitializeCriticalSection
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
SetEndOfFile
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize
CompareStringA
CompareStringW
SetEnvironmentVariableA
VirtualProtect
GetSystemInfo
VirtualQuery
RemoveDirectoryA
CreateDirectoryA
GetDriveTypeA
GetFileAttributesA
GetFullPathNameA

Exports

Exports

_MediaDBBackup_Execute@4
_MediaDBBackup_GetLastBackupTime@12
_MediaDBBackup_Initial@8
_MediaDBBackup_Release@4
_MediaDBBackup_SetBackupInfoCallback@12
_MediaDBBackup_SetOptions@20
_MediaDBBackup_Stop@4
_MediaDBRet_ExtractFromInterval@24
_MediaDBRet_Initial@4
_MediaDBRet_MatchFirstI@28
_MediaDBRet_MatchTime@24
_MediaDBRet_MatchTimeInterval@28
_MediaDBRet_OutputOneDataPacket@20
_MediaDBRet_Release@4
_MediaDB_AddBookmark@12
_MediaDB_CloseCurrentFile@4
_MediaDB_CloseLocation@4
_MediaDB_CreateBookmarkQuery@20
_MediaDB_CreateEventQuery@20
_MediaDB_CreateLocation@12
_MediaDB_CreateTimeQuery@16
_MediaDB_DeleteBookmark@16
_MediaDB_DeleteEvent@16
_MediaDB_DeleteLocation@8
_MediaDB_DeleteOldestSequence@8
_MediaDB_DeleteOldestSequenceEx@12
_MediaDB_DeleteQuery@4
_MediaDB_DeleteTimeInterval@12
_MediaDB_EditBookmark@20
_MediaDB_FindFirstBookmark@8
_MediaDB_FindFirstEventInterval@8
_MediaDB_FindFirstTimeInterval@8
_MediaDB_FindNextBookmark@8
_MediaDB_FindNextEventInterval@8
_MediaDB_FindNextTimeInterval@8
_MediaDB_FlushPreBuffer@4
_MediaDB_FlushPreBufferEx@8
_MediaDB_GetBookmarkNum@8
_MediaDB_GetEventIntervalNum@8
_MediaDB_GetEventIntervalNumEx@16
_MediaDB_GetLocationList@12
_MediaDB_GetLocationNum@8
_MediaDB_GetLocationSize@12
_MediaDB_GetTimeIntervalNum@8
_MediaDB_GetTimeIntervalSize@20
_MediaDB_GetTimeSegmentInterval@12
_MediaDB_GetTimeSegmentNumber@8
_MediaDB_GetVersionInfo@16
_MediaDB_Initial@12
_MediaDB_InputOneDataPacket@8
_MediaDB_InputOneDataPacketEx@16
_MediaDB_InputOneMediaFile@8
_MediaDB_OpenLocation@12
_MediaDB_PreBufferOneDataPacket@8
_MediaDB_PreBufferOneDataPacketEx@12
_MediaDB_Release@4
_MediaDB_RepairDatabase@8
_MediaDB_RepairLocation@12
_MediaDB_RestoreEvent@16
_MediaDB_SetEvenQueryOptions@8
_MediaDB_SetPreBufferSecond@8

Sections

.text
Size: 224KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
parsedatapacket.dll1
.dll windows:4 windows x86

4751fff539bebb80e02d886d9e252799

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetSystemTimeAsFileTime
ExitProcess
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
WideCharToMultiByte
GetTimeZoneInformation
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
TlsFree
SetLastError
TlsGetValue
GetLastError
TlsAlloc
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
RtlUnwind
HeapSize
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
SetEnvironmentVariableA
VirtualProtect
GetSystemInfo
VirtualQuery

Exports

Exports

_DataPacket_GetEveryAudioInfo@8
_DataPacket_Parse@4

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Surveillance System(1.1.00023)_/ReleaseNote.txt
Surveillance System(1.1.00023)_/SOUNDF~1.cab
.cab
Surveillance System(1.1.00023)_/Surveillance System.msi
.msi
Surveillance System(1.1.00023)_/setup.exe
.exe windows:4 windows x86

3df1cad47b0f4f27a8eb25481d61d147

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerLanguageNameA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

ord17

kernel32

QueryPerformanceFrequency
InterlockedDecrement
InterlockedIncrement
lstrcatA
WriteFile
CreateEventA
CompareStringW
GetVersionExA
Sleep
CompareStringA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetFilePointer
GetProcAddress
LoadLibraryA
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
LockResource
SetFileAttributesA
FreeLibrary
FindResourceA
CreateProcessA
GetModuleFileNameA
lstrcmpA
GetSystemDefaultLCID
GlobalHandle
SetLastError
SetCurrentDirectoryA
DeleteFileA
lstrlenW
WaitForSingleObject
GetSystemInfo
IsValidCodePage
FlushFileBuffers
LocalFree
FormatMessageA
GetDiskFreeSpaceA
_lclose
OpenFile
GetDriveTypeA
CreateDirectoryA
GetFileAttributesA
RemoveDirectoryA
GetExitCodeProcess
GetCurrentProcess
GetCurrentThread
GetLocaleInfoA
lstrcpyA
GetPrivateProfileStringA
lstrlenA
CreateFileA
GetFileSize
GlobalAlloc
CloseHandle
GlobalLock
ReadFile
GlobalUnlock
GlobalFree
GetLastError
WideCharToMultiByte
CopyFileA
MultiByteToWideChar
CreateThread
GetExitCodeThread
GetTickCount
lstrcmpiA
ExpandEnvironmentStringsA
GetPrivateProfileIntA
GetTempPathA
SetErrorMode
GetWindowsDirectoryA
GetTempFileNameA
WritePrivateProfileStringA
GetPrivateProfileSectionA
MoveFileA
LoadResource
SizeofResource
SetHandleCount
RaiseException
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetOEMCP
GetEnvironmentStringsW
GetStdHandle
GetACP
GetCPInfo
SetUnhandledExceptionFilter
DeleteCriticalSection
InitializeCriticalSection
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapSize
HeapReAlloc
LeaveCriticalSection
EnterCriticalSection
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
TerminateProcess
ExitProcess
SetStdHandle
HeapAlloc
HeapFree
RtlUnwind
SystemTimeToFileTime
QueryPerformanceCounter
ResetEvent
SetEvent
lstrcpynA
SearchPathA
FindFirstFileA
VirtualProtect
VirtualQuery
FindClose
IsBadReadPtr
GetStringTypeA
GetStringTypeW
LCMapStringW
LCMapStringA
IsBadCodePtr
GetFileType

user32

MessageBoxA
ReleaseDC
GetDC
DispatchMessageA
TranslateMessage
GetMessageA
CreateWindowExA
RegisterClassA
LoadCursorA
LoadIconA
SetTimer
PostQuitMessage
KillTimer
PostMessageA
DefWindowProcA
PeekMessageA
MsgWaitForMultipleObjects
wsprintfA
GetDesktopWindow
DialogBoxParamA
ShowWindow
GetDlgItem
EndDialog
GetWindowDC
SetWindowPos
ClientToScreen
GetClientRect
SetWindowLongA
EndPaint
BeginPaint
GetWindowLongA
WaitForInputIdle
CreateDialogParamA
CharNextA
SendDlgItemMessageA
ExitWindowsEx
CharPrevA
LoadStringA
wvsprintfA
GetClassInfoA
UpdateWindow
SetCursor
GetDlgItemTextA
EnableWindow
GetParent
GetWindowTextLengthA
GetWindowTextA
MoveWindow
GetWindowPlacement
DrawIcon
GetDlgCtrlID
SetWindowTextA
FillRect
GetSysColor
GetSysColorBrush
IsDialogMessageA
SendMessageA
GetWindowRect
FindWindowA
IntersectRect
SubtractRect
IsWindow
DestroyWindow
SetRect
GetSystemMetrics
DestroyIcon
CharLowerBuffA

gdi32

RealizePalette
GetDeviceCaps
CreatePalette
GetSystemPaletteEntries
GetStockObject
DeleteObject
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
CreateSolidBrush
CreateFontIndirectA
GetObjectA
SetTextColor
SetBkMode
GetTextExtentPointA
TranslateCharsetInfo
CreateDIBitmap
SelectPalette

advapi32

EqualSid
RegQueryValueA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
OpenThreadToken
GetTokenInformation
AllocateAndInitializeSid
RegCreateKeyExA
FreeSid
RegOpenKeyExA
RegDeleteValueA
RegSetValueExA
RegEnumValueA
RegDeleteKeyA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

ole32

CreateItemMoniker
CoCreateGuid
StringFromCLSID
StgIsStorageFile
StgOpenStorage
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize
GetRunningObjectTable

oleaut32

SysReAllocStringLen
SysFreeString
SysAllocString
SysAllocStringLen
SysStringLen
VariantClear
VariantChangeType

Sections

.text
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

b0f28193f380f581ebae3a90f35c6329

Headers

File Characteristics

Imports

msvfw32

kernel32

user32

gdi32

parsedatapacket

winmm

dsound

Exports

Exports

Sections

.text Size: 316KB - Virtual size: 313KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 60KB - Virtual size: 63KB

.rsrc Size: 4KB - Virtual size: 968B

.reloc Size: 12KB - Virtual size: 8KB

49c617f8ee007b0b1da7324d297235fc

Headers

File Characteristics

Imports

dsound

winmm

kernel32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 920B

.reloc Size: 4KB - Virtual size: 3KB

d81e9388e5df12ba65207f90f794630d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvfw32

avifil32

msacm32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 34KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 824B

.reloc Size: 4KB - Virtual size: 3KB

1f0f5a5e81062428d4f0fb1f0baa7bcb

Headers

File Characteristics

Imports

database

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

oleacc

Sections

.text Size: 140KB - Virtual size: 138KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 8KB - Virtual size: 21KB

.text
Size: 316KB - Virtual size: 313KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 60KB - Virtual size: 63KB

.rsrc
Size: 4KB - Virtual size: 968B

.reloc
Size: 12KB - Virtual size: 8KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 920B

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 36KB - Virtual size: 34KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 824B

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 140KB - Virtual size: 138KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 40KB - Virtual size: 37KB

.text
Size: 180KB - Virtual size: 178KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 12KB - Virtual size: 14KB

.rsrc
Size: 4KB - Virtual size: 776B

.reloc
Size: 12KB - Virtual size: 8KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 8KB - Virtual size: 19KB

.rsrc
Size: 4KB - Virtual size: 840B

.reloc
Size: 16KB - Virtual size: 15KB

.text
Size: 252KB - Virtual size: 251KB

.rdata
Size: 60KB - Virtual size: 56KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 24KB - Virtual size: 20KB