Quickhash-GUI-Windows-v3[.]3[.]4[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

Quickhash-GUI-Windows-v3.3.4.zip
Size

11.2MB
MD5

3c73028471c282c62addc1a963cf80ed
SHA1

329b92f99e29a8311b0afc0167c0523cbb49b809
SHA256

bc6755ed67cdd99655d825ba574c1173b3a5343d279c3bb81cb4a3b2e58cdd2a
SHA512

766c8c5ec2464175b19d5d88d6300b5a59926aa783c9e80977792ea6e98ed7a57fea9aa5ce327d5d0445a069fb51be725669c9c4f7bd1ed0dea47e2223b169c9
SSDEEP

196608:xVGErRNHELcDgqAbH5eXRmjbRw43gTmuYaye0G1GgLgLHOA/aohJVzquzyzatx2k:LGc17D4wRMRwrKuUgELHOA/JzqivjDSO

Score

4^/10

pdf link

Malware Config

Signatures

HTTP links in PDF interactive object 1 IoCs

Detects HTTP links in interactive objects within PDF files.

pdf link

resource	yara_rule
static1/unpack001/UserManual.pdf	pdf_with_link_action

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Unsigned PE 12 IoCs

Checks for missing Authenticode signature.

resource
unpack001/x64/Quickhash-GUI.exe
unpack001/x64/libs/x64/libewf-x64.dll
unpack001/x64/libs/x64/libgcc_s_dw2-1.dll
unpack001/x64/libs/x64/libwinpthread-1.dll
unpack001/x64/libs/x64/sqlite3-win64.dll
unpack001/x64/libs/x64/zlib1.dll
unpack001/x86/Quickhash-GUI.exe
unpack001/x86/libs/x86/libewf-x86.dll
unpack001/x86/libs/x86/libgcc_s_dw2-1.dll
unpack001/x86/libs/x86/libwinpthread-1.dll
unpack001/x86/libs/x86/sqlite3-win32.dll
unpack001/x86/libs/x86/zlib1.dll

Files

Quickhash-GUI-Windows-v3.3.4.zip
.zip
UserManual.pdf
.pdf
- http://quickhash-gui.org/
- http://www.paypal.me/quickhashgui
- https://www.quickhash-gui.org/about-quickhash-gui/submit-testimonial/
- https://paypal.me/quickhashgui
- http://sourceforge.net/projects/quickhash
- http://www.quickhash-gui.org/
- https://www.microsoft.com/en-us/download/details.aspx?id=52685
- https://www.parrotsec.org/
- http://www.caine-live.net/
- http://www.deftlinux.net/
- http://csrc.nist.gov/groups/ST/hash/documents/Puniya_hashDesign.pdf
- http://code.google.com/p/smhasher/wiki/SMHasher
- https://github.com/Cyan4973
- https://github.com/Cyan4973/xxHash
- http://www.princeton.edu/~achaney/tmve/wiki100k/docs/Hash_collision.html
- http://en.wikipedia.org/wiki/SHA-2
- http://en.wikipedia.org/wiki/SHA-1
- http://en.wikipedia.org/wiki/MD5
- https://github.com/darealshinji
- https://github.com/tedsmith/quickhash/releases
- https://www.sqlite.org/copyright.html
- http://www.sqlite.org/
- https://github.com/libyal/libewf-legacy/blob/main/AUTHORS
- https://github.com/libyal/libewf-legacy
- https://github.com/Xor-el/HashLib4Pascal
- http://www.freepascal.org/
- http://www.lazarus.freepascal.org/
- http://www.gnu.org/licenses/
- https://quickhash-gui.org/githubfeed/
- https://sourceforge.net/projects/quickhash
- Show all
x64/Quickhash-GUI.exe
.exe windows:4 windows x64

b6e8f020a037dc6ec75c52398f3536ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStdHandle
GetConsoleMode
TlsGetValue
GetLastError
SetLastError
RaiseException
GetTickCount
ExitProcess
GetStartupInfoA
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetCurrentProcess
ReadProcessMemory
GetModuleFileNameA
GetModuleHandleA
WriteFile
ReadFile
CloseHandle
SetFilePointer
SetEndOfFile
GetSystemInfo
LoadLibraryW
LoadLibraryA
GetProcAddress
FreeLibrary
FormatMessageW
DeleteFileW
MoveFileW
CreateFileW
GetFileAttributesW
CreateDirectoryW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetFullPathNameW
SetEnvironmentVariableW
GetConsoleOutputCP
GetOEMCP
GetProcessHeap
HeapAlloc
HeapFree
TlsAlloc
TlsSetValue
CreateThread
ExitThread
LocalAlloc
LocalFree
Sleep
SuspendThread
ResumeThread
TerminateThread
WaitForSingleObject
SetThreadPriority
GetThreadPriority
GetCurrentThread
OpenThread
IsDebuggerPresent
CreateEventA
ResetEvent
SetEvent
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
GetEnvironmentStringsW
FreeEnvironmentStringsW
MultiByteToWideChar
WideCharToMultiByte
GetACP
GetConsoleCP
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
RtlUnwindEx
EnumResourceTypesA
EnumResourceNamesA
EnumResourceLanguagesA
FindResourceA
FindResourceExA
LoadResource
SizeofResource
LockResource
FreeResource
GlobalMemoryStatusEx
GetEnvironmentStringsA
FreeEnvironmentStringsA
FormatMessageA
GetLogicalDriveStringsA
LoadLibraryExA
GlobalAddAtomA
GetWindowsDirectoryA
GetComputerNameA
GetVersionExA
CompareStringA
GetLocaleInfoA
GetDateFormatA
EnumCalendarInfoA
EnumSystemLocalesA
EnumSystemCodePagesA
GetModuleFileNameW
GetCommandLineW
GetSystemDirectoryW
CreateProcessW
FindNextFileW
CompareStringW
GetLocaleInfoW
GetDateFormatW
FindFirstFileExW
CopyFileExW
GlobalAlloc
GlobalReAlloc
GlobalSize
GlobalLock
GlobalUnlock
GetProcessAffinityMask
TerminateProcess
GetExitCodeProcess
SetErrorMode
GlobalDeleteAtom
LockFile
UnlockFile
DeviceIoControl
FindClose
GetFileTime
SetFileTime
DuplicateHandle
MulDiv
GetLocalTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
FileTimeToSystemTime
FileTimeToDosDateTime
DosDateTimeToFileTime
CreatePipe
PeekNamedPipe
GetCPInfo
GetThreadLocale
SetThreadLocale
GetUserDefaultLCID

oleaut32

SysAllocStringLen
SysFreeString
SysReAllocStringLen
LoadTypeLib
RegisterTypeLib
UnRegisterTypeLib
SafeArrayCreate
SafeArrayRedim
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayPtrOfIndex
VariantChangeTypeEx
VariantClear
VariantCopy
VariantInit

user32

MessageBoxA
CharUpperBuffW
CharLowerBuffW
SendMessageA
PostMessageA
PostThreadMessageA
DefWindowProcA
CallWindowProcA
RegisterClassA
UnregisterClassA
GetClassInfoA
CreateWindowExA
SendDlgItemMessageA
RegisterClipboardFormatA
GetClipboardFormatNameA
CharToOemA
CharToOemBuffA
OemToCharBuffA
CharUpperA
CharUpperBuffA
CharLowerA
CharLowerBuffA
GetMenuItemInfoA
SetPropA
GetPropA
RemovePropA
EnumPropsA
GetWindowLongA
SetWindowLongA
GetClassLongA
GetClassLongPtrA
SetClassLongPtrA
GetClassNameA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
SystemParametersInfoA
DispatchMessageW
PeekMessageW
SendMessageW
PostMessageW
DefWindowProcW
CallWindowProcW
RegisterClassW
UnregisterClassW
GetClassInfoW
CreateWindowExW
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
DrawTextW
DrawStateW
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
MessageBoxW
GetWindowLongPtrW
SetWindowLongPtrW
DefFrameProcW
DefMDIChildProcW
TranslateMessage
PostQuitMessage
GetDoubleClickTime
IsWindow
IsMenu
DestroyWindow
ShowWindow
ShowWindowAsync
ShowOwnedPopups
MoveWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
IsIconic
BringWindowToTop
IsZoomed
GetDlgItem
OpenClipboard
CloseClipboard
SetClipboardData
GetClipboardData
CountClipboardFormats
EnumClipboardFormats
EmptyClipboard
IsClipboardFormatAvailable
SetFocus
GetActiveWindow
GetFocus
GetKeyState
GetCapture
SetCapture
ReleaseCapture
MsgWaitForMultipleObjects
SetTimer
KillTimer
EnableWindow
IsWindowEnabled
GetSystemMetrics
GetMenu
SetMenu
DrawMenuBar
GetSystemMenu
CreateMenu
CreatePopupMenu
DestroyMenu
EnableMenuItem
GetSubMenu
GetMenuItemCount
RemoveMenu
DeleteMenu
GetMenuItemRect
UpdateWindow
SetActiveWindow
GetForegroundWindow
SetForegroundWindow
WindowFromDC
GetDC
GetDCEx
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
GetUpdateRect
SetWindowRgn
InvalidateRect
InvalidateRgn
RedrawWindow
ScrollWindowEx
ShowScrollBar
EnableScrollBar
GetClientRect
GetWindowRect
AdjustWindowRectEx
MessageBeep
SetCursorPos
SetCursor
GetCursorPos
CreateCaret
DestroyCaret
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
ClientToScreen
ScreenToClient
MapWindowPoints
WindowFromPoint
GetSysColor
GetSysColorBrush
SetSysColors
DrawFocusRect
FillRect
FrameRect
SetRect
InflateRect
IntersectRect
OffsetRect
IsRectEmpty
PtInRect
GetDesktopWindow
GetParent
SetParent
EnumThreadWindows
GetTopWindow
GetWindowThreadProcessId
GetLastActivePopup
GetWindow
CallNextHookEx
DestroyCursor
DestroyIcon
CopyImage
CreateIconIndirect
GetIconInfo
SetScrollInfo
GetScrollInfo
TranslateMDISysAccel
DrawEdge
DrawFrameControl
TrackPopupMenuEx
ChildWindowFromPointEx
DrawIconEx
FlashWindowEx

ntdll

RtlGetNtVersionNumbers

gdi32

CreateFontIndirectA
EnumFontFamiliesA
GetCharABCWidthsA
GetTextExtentPointA
GetTextMetricsA
GetObjectA
ExtTextOutA
CreateFontIndirectW
EnumFontFamiliesExW
GetCharABCWidthsW
GetTextExtentPoint32W
GetTextExtentExPointW
GetObjectW
TextOutW
ExtTextOutW
GetRandomRgn
Arc
BitBlt
Chord
CombineRgn
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBitmap
CreateEllipticRgn
CreatePen
CreatePenIndirect
CreatePatternBrush
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EqualRgn
ExcludeClipRect
ExtCreateRegion
ExtFloodFill
FillRgn
GetROP2
GetBkColor
GetBitmapBits
GetClipBox
GetClipRgn
GetCurrentObject
GetDeviceCaps
GetDIBits
GetMapMode
GetObjectType
GetPixel
GetRegionData
GetRgnBox
GetStockObject
GetTextAlign
GetTextColor
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
IntersectClipRect
LineTo
MaskBlt
OffsetRgn
PatBlt
Pie
PaintRgn
PtInRegion
RectInRegion
RectVisible
Rectangle
RestoreDC
RealizePalette
RoundRect
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetPixel
SetPolyFillMode
StretchBlt
SetRectRgn
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextColor
SetTextAlign
CreateDIBSection
SetArcDirection
ExtCreatePen
MoveToEx
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
PolyBezier
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
SetBrushOrgEx
GetDCOrgEx

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shell32

DragQueryFileA
DragQueryFileW
ShellExecuteW
DragFinish
DragAcceptFiles
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW

ole32

CoRegisterClassObject
CoCreateGuid
CoTaskMemFree
OleInitialize
OleUninitialize
CoUninitialize
CoCreateInstance
CLSIDFromProgID
CoInitialize
CoTaskMemAlloc
GetErrorInfo

comctl32

InitCommonControls
ImageList_Create
ImageList_Destroy
ImageList_GetImageCount
ImageList_SetImageCount
ImageList_Add
ImageList_Replace
ImageList_AddMasked
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Remove
ImageList_Copy
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
_TrackMouseEvent

shlwapi

AssocQueryStringW

comdlg32

ChooseColorA
CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW
ChooseFontW

Sections

.text
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 182KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 239KB - Virtual size: 239KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 38KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 475KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
x64/libs/x64/README.txt
x64/libs/x64/libewf-Linux-x64.so
.elf linux x64
x64/libs/x64/libewf-x64.dll
.dll windows:4 windows x64

c00f9809df391570cfd5bc31b7739739

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateDirectoryA
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileW
CreateMutexA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeviceIoControl
DisableThreadLibraryCalls
EnterCriticalSection
ExitThread
FormatMessageA
GetCurrentDirectoryA
GetCurrentDirectoryW
GetFileAttributesA
GetFileAttributesW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoA
GetOverlappedResult
GetProcessHeap
HeapAlloc
HeapFree
HeapReAlloc
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEvent
SetFilePointerEx
SignalObjectAndWait
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

___lc_codepage_func
___mb_cur_max_func
__iob_func
_amsg_exit
_errno
_initterm
_localtime64
_lock
_mktime64
_strnicmp
_time64
_tzname
_unlock
_wcsnicmp
abort
calloc
fclose
fopen
fputc
free
fwrite
getenv
localeconv
malloc
memchr
memcmp
memcpy
memmove
memset
realloc
setlocale
strerror
strlen
strncmp
vfprintf
wcslen

libwinpthread-1

clock_gettime

zlib1

adler32
compress2
compressBound
uncompress

Exports

Exports

dvf_file_signature
evf_file_signature
libbfio_file_get_name
libbfio_file_get_name_size
libbfio_file_get_name_size_wide
libbfio_file_get_name_wide
libbfio_file_initialize
libbfio_file_io_handle_clone
libbfio_file_io_handle_close
libbfio_file_io_handle_exists
libbfio_file_io_handle_free
libbfio_file_io_handle_get_name
libbfio_file_io_handle_get_name_size
libbfio_file_io_handle_get_name_size_wide
libbfio_file_io_handle_get_name_wide
libbfio_file_io_handle_get_size
libbfio_file_io_handle_initialize
libbfio_file_io_handle_is_open
libbfio_file_io_handle_open
libbfio_file_io_handle_read_buffer
libbfio_file_io_handle_seek_offset
libbfio_file_io_handle_set_name
libbfio_file_io_handle_set_name_wide
libbfio_file_io_handle_write_buffer
libbfio_file_pool_append_handles_for_names
libbfio_file_pool_append_handles_for_names_wide
libbfio_file_pool_open
libbfio_file_pool_open_wide
libbfio_file_range_get
libbfio_file_range_get_name
libbfio_file_range_get_name_size
libbfio_file_range_get_name_size_wide
libbfio_file_range_get_name_wide
libbfio_file_range_initialize
libbfio_file_range_io_handle_clone
libbfio_file_range_io_handle_close
libbfio_file_range_io_handle_exists
libbfio_file_range_io_handle_free
libbfio_file_range_io_handle_get
libbfio_file_range_io_handle_get_name
libbfio_file_range_io_handle_get_name_size
libbfio_file_range_io_handle_get_name_size_wide
libbfio_file_range_io_handle_get_name_wide
libbfio_file_range_io_handle_get_size
libbfio_file_range_io_handle_initialize
libbfio_file_range_io_handle_is_open
libbfio_file_range_io_handle_open
libbfio_file_range_io_handle_read_buffer
libbfio_file_range_io_handle_seek_offset
libbfio_file_range_io_handle_set
libbfio_file_range_io_handle_set_name
libbfio_file_range_io_handle_set_name_wide
libbfio_file_range_io_handle_write_buffer
libbfio_file_range_set
libbfio_file_range_set_name
libbfio_file_range_set_name_wide
libbfio_file_set_name
libbfio_file_set_name_wide
libbfio_handle_clone
libbfio_handle_close
libbfio_handle_exists
libbfio_handle_free
libbfio_handle_get_access_flags
libbfio_handle_get_io_handle
libbfio_handle_get_number_of_offsets_read
libbfio_handle_get_offset
libbfio_handle_get_offset_read
libbfio_handle_get_size
libbfio_handle_initialize
libbfio_handle_is_open
libbfio_handle_open
libbfio_handle_read_buffer
libbfio_handle_read_buffer_at_offset
libbfio_handle_reopen
libbfio_handle_seek_offset
libbfio_handle_set_access_flags
libbfio_handle_set_open_on_demand
libbfio_handle_set_track_offsets_read
libbfio_handle_write_buffer
libbfio_handle_write_buffer_at_offset
libbfio_internal_handle_read_buffer
libbfio_internal_handle_seek_offset
libbfio_internal_handle_write_buffer
libbfio_internal_pool_append_handle_to_last_used_list
libbfio_internal_pool_close
libbfio_internal_pool_get_open_handle
libbfio_internal_pool_move_handle_to_front_of_last_used_list
libbfio_internal_pool_open
libbfio_internal_pool_open_handle
libbfio_internal_pool_remove_handle_from_last_used_list
libbfio_memory_range_get
libbfio_memory_range_initialize
libbfio_memory_range_io_handle_clone
libbfio_memory_range_io_handle_close
libbfio_memory_range_io_handle_exists
libbfio_memory_range_io_handle_free
libbfio_memory_range_io_handle_get
libbfio_memory_range_io_handle_get_size
libbfio_memory_range_io_handle_initialize
libbfio_memory_range_io_handle_is_open
libbfio_memory_range_io_handle_open
libbfio_memory_range_io_handle_read_buffer
libbfio_memory_range_io_handle_seek_offset
libbfio_memory_range_io_handle_set
libbfio_memory_range_io_handle_write_buffer
libbfio_memory_range_set
libbfio_pool_append_handle
libbfio_pool_clone
libbfio_pool_close
libbfio_pool_close_all
libbfio_pool_free
libbfio_pool_get_handle
libbfio_pool_get_maximum_number_of_open_handles
libbfio_pool_get_number_of_handles
libbfio_pool_get_offset
libbfio_pool_get_size
libbfio_pool_initialize
libbfio_pool_open
libbfio_pool_read_buffer
libbfio_pool_read_buffer_at_offset
libbfio_pool_remove_handle
libbfio_pool_reopen
libbfio_pool_resize
libbfio_pool_seek_offset
libbfio_pool_set_handle
libbfio_pool_set_maximum_number_of_open_handles
libbfio_pool_write_buffer
libbfio_pool_write_buffer_at_offset
libbfio_system_string_copy_from_narrow_string
libbfio_system_string_copy_from_wide_string
libbfio_system_string_copy_to_narrow_string
libbfio_system_string_copy_to_wide_string
libbfio_system_string_size_from_narrow_string
libbfio_system_string_size_from_wide_string
libbfio_system_string_size_to_narrow_string
libbfio_system_string_size_to_wide_string
libcdata_array_append_entry
libcdata_array_clear
libcdata_array_clone
libcdata_array_empty
libcdata_array_free
libcdata_array_get_entry_by_index
libcdata_array_get_entry_by_value
libcdata_array_get_number_of_entries
libcdata_array_initialize
libcdata_array_insert_entry
libcdata_array_prepend_entry
libcdata_array_remove_entry
libcdata_array_resize
libcdata_array_reverse
libcdata_array_set_entry_by_index
libcdata_btree_free
libcdata_btree_get_number_of_values
libcdata_btree_get_value_by_index
libcdata_btree_get_value_by_value
libcdata_btree_initialize
libcdata_btree_insert_value
libcdata_btree_node_append_value
libcdata_btree_node_flatten_node
libcdata_btree_node_get_sub_node_by_value
libcdata_btree_node_get_upper_node_by_value
libcdata_btree_node_insert_value
libcdata_btree_node_remove_sub_node
libcdata_btree_node_remove_value
libcdata_btree_node_replace_value
libcdata_btree_node_split
libcdata_btree_remove_value
libcdata_btree_replace_value
libcdata_btree_values_list_free
libcdata_btree_values_list_remove_element
libcdata_btree_values_list_replace_element_with_previous
libcdata_internal_array_clear
libcdata_internal_array_resize
libcdata_internal_list_insert_element_before_element
libcdata_internal_list_insert_element_find_element
libcdata_internal_list_set_first_element
libcdata_internal_list_set_last_element
libcdata_internal_range_list_append_element
libcdata_internal_range_list_append_value
libcdata_internal_range_list_check_range_overlap
libcdata_internal_range_list_free_element
libcdata_internal_range_list_get_element_at_offset
libcdata_internal_range_list_get_element_by_index
libcdata_internal_range_list_get_value_at_offset
libcdata_internal_range_list_get_value_by_index
libcdata_internal_range_list_insert_element_after_element
libcdata_internal_range_list_insert_range_before_element
libcdata_internal_range_list_insert_range_find_element
libcdata_internal_range_list_insert_range_merge
libcdata_internal_range_list_insert_range_revert_merge
libcdata_internal_range_list_insert_value_after_element
libcdata_internal_range_list_merge_overlapping_ranges
libcdata_internal_range_list_merge_range
libcdata_internal_range_list_remove_element
libcdata_internal_range_list_remove_range_value
libcdata_internal_range_list_remove_shrink_range
libcdata_internal_range_list_remove_split_range
libcdata_internal_range_list_set_first_element
libcdata_internal_range_list_set_last_element
libcdata_internal_tree_node_append_node
libcdata_internal_tree_node_insert_node_before_sub_node
libcdata_internal_tree_node_insert_node_find_sub_node
libcdata_internal_tree_node_set_first_sub_node
libcdata_internal_tree_node_set_last_sub_node
libcdata_list_append_element
libcdata_list_append_value
libcdata_list_clone
libcdata_list_element_free
libcdata_list_element_get_elements
libcdata_list_element_get_next_element
libcdata_list_element_get_parent_list
libcdata_list_element_get_previous_element
libcdata_list_element_get_value
libcdata_list_element_initialize
libcdata_list_element_set_elements
libcdata_list_element_set_next_element
libcdata_list_element_set_parent_list
libcdata_list_element_set_previous_element
libcdata_list_element_set_value
libcdata_list_empty
libcdata_list_free
libcdata_list_get_element_by_index
libcdata_list_get_first_element
libcdata_list_get_last_element
libcdata_list_get_number_of_elements
libcdata_list_get_value_by_index
libcdata_list_initialize
libcdata_list_insert_element
libcdata_list_insert_value
libcdata_list_prepend_element
libcdata_list_prepend_value
libcdata_list_remove_element
libcdata_range_list_clone
libcdata_range_list_empty
libcdata_range_list_free
libcdata_range_list_get_first_element
libcdata_range_list_get_last_element
libcdata_range_list_get_number_of_elements
libcdata_range_list_get_range_at_offset
libcdata_range_list_get_range_by_index
libcdata_range_list_get_spanning_range
libcdata_range_list_initialize
libcdata_range_list_insert_range
libcdata_range_list_insert_range_list
libcdata_range_list_range_is_present
libcdata_range_list_remove_range
libcdata_range_list_value_check_range_overlap
libcdata_range_list_value_clone
libcdata_range_list_value_free
libcdata_range_list_value_initialize
libcdata_range_list_value_merge
libcdata_tree_node_append_node
libcdata_tree_node_append_value
libcdata_tree_node_clone
libcdata_tree_node_empty
libcdata_tree_node_free
libcdata_tree_node_get_first_sub_node
libcdata_tree_node_get_last_sub_node
libcdata_tree_node_get_leaf_node_list
libcdata_tree_node_get_next_node
libcdata_tree_node_get_nodes
libcdata_tree_node_get_number_of_sub_nodes
libcdata_tree_node_get_parent_node
libcdata_tree_node_get_previous_node
libcdata_tree_node_get_sub_node_by_index
libcdata_tree_node_get_sub_nodes
libcdata_tree_node_get_value
libcdata_tree_node_initialize
libcdata_tree_node_insert_node
libcdata_tree_node_insert_value
libcdata_tree_node_remove_node
libcdata_tree_node_replace_node
libcdata_tree_node_set_next_node
libcdata_tree_node_set_nodes
libcdata_tree_node_set_parent_node
libcdata_tree_node_set_previous_node
libcdata_tree_node_set_sub_nodes
libcdata_tree_node_set_value
libcerror_error_backtrace_fprint
libcerror_error_backtrace_sprint
libcerror_error_fprint
libcerror_error_free
libcerror_error_initialize
libcerror_error_matches
libcerror_error_resize
libcerror_error_set
libcerror_error_sprint
libcerror_system_copy_string_from_error_number
libcerror_system_set_error
libcfile_file_close
libcfile_file_exists
libcfile_file_exists_wide
libcfile_file_free
libcfile_file_get_offset
libcfile_file_get_size
libcfile_file_initialize
libcfile_file_io_control_read
libcfile_file_io_control_read_with_error_code
libcfile_file_is_device
libcfile_file_is_open
libcfile_file_open
libcfile_file_open_wide
libcfile_file_open_wide_with_error_code
libcfile_file_open_with_error_code
libcfile_file_read_buffer
libcfile_file_read_buffer_with_error_code
libcfile_file_remove
libcfile_file_remove_wide
libcfile_file_remove_wide_with_error_code
libcfile_file_remove_with_error_code
libcfile_file_resize
libcfile_file_seek_offset
libcfile_file_set_access_behavior
libcfile_file_set_block_size
libcfile_file_write_buffer
libcfile_file_write_buffer_with_error_code
libcfile_internal_file_get_size
libcfile_internal_file_io_control_read_with_error_code
libcfile_internal_file_read_buffer_at_offset_with_error_code
libcfile_internal_file_set_block_size
libcfile_system_string_copy_from_narrow_string
libcfile_system_string_copy_from_wide_string
libcfile_system_string_copy_to_narrow_string
libcfile_system_string_copy_to_wide_string
libcfile_system_string_size_from_narrow_string
libcfile_system_string_size_from_wide_string
libcfile_system_string_size_to_narrow_string
libcfile_system_string_size_to_wide_string
libclocale_codepage
libclocale_codepage_copy_from_string
libclocale_codepage_copy_from_string_wide
libclocale_codepage_get
libclocale_codepage_set
libclocale_initialize
libclocale_locale_get_codepage
libclocale_locale_get_codepage_from_charset
libclocale_locale_get_decimal_point
libcnotify_print_data
libcnotify_print_data_as_character
libcnotify_print_data_as_characters
libcnotify_print_data_as_hexadecimal
libcnotify_print_error_backtrace
libcnotify_printf
libcnotify_stream
libcnotify_stream_close
libcnotify_stream_open
libcnotify_stream_opened_in_library
libcnotify_stream_set
libcnotify_verbose
libcnotify_verbose_set
libcpath_path_change_directory
libcpath_path_change_directory_wide
libcpath_path_get_current_working_directory
libcpath_path_get_current_working_directory_by_volume
libcpath_path_get_current_working_directory_by_volume_wide
libcpath_path_get_current_working_directory_wide
libcpath_path_get_full_path
libcpath_path_get_full_path_wide
libcpath_path_get_path_type
libcpath_path_get_path_type_wide
libcpath_path_get_sanitized_character
libcpath_path_get_sanitized_character_size
libcpath_path_get_sanitized_character_size_wide
libcpath_path_get_sanitized_character_wide
libcpath_path_get_sanitized_filename
libcpath_path_get_sanitized_filename_wide
libcpath_path_get_sanitized_path
libcpath_path_get_sanitized_path_wide
libcpath_path_get_volume_name
libcpath_path_get_volume_name_wide
libcpath_path_join
libcpath_path_join_wide
libcpath_path_make_directory
libcpath_path_make_directory_wide
libcpath_system_string_copy_from_narrow_string
libcpath_system_string_copy_from_wide_string
libcpath_system_string_copy_to_narrow_string
libcpath_system_string_copy_to_wide_string
libcpath_system_string_size_from_narrow_string
libcpath_system_string_size_from_wide_string
libcpath_system_string_size_to_narrow_string
libcpath_system_string_size_to_wide_string
libcsplit_narrow_split_string_free
libcsplit_narrow_split_string_get_number_of_segments
libcsplit_narrow_split_string_get_segment_by_index
libcsplit_narrow_split_string_get_string
libcsplit_narrow_split_string_initialize
libcsplit_narrow_split_string_set_segment_by_index
libcsplit_narrow_string_split
libcsplit_wide_split_string_free
libcsplit_wide_split_string_get_number_of_segments
libcsplit_wide_split_string_get_segment_by_index
libcsplit_wide_split_string_get_string
libcsplit_wide_split_string_initialize
libcsplit_wide_split_string_set_segment_by_index
libcsplit_wide_string_split
libcthreads_condition_broadcast
libcthreads_condition_free
libcthreads_condition_initialize
libcthreads_condition_signal
libcthreads_condition_wait
libcthreads_internal_thread_pool_pop
libcthreads_lock_free
libcthreads_lock_grab
libcthreads_lock_initialize
libcthreads_lock_release
libcthreads_mutex_free
libcthreads_mutex_grab
libcthreads_mutex_initialize
libcthreads_mutex_release
libcthreads_mutex_try_grab
libcthreads_queue_empty
libcthreads_queue_free
libcthreads_queue_initialize
libcthreads_queue_pop
libcthreads_queue_push
libcthreads_queue_push_sorted
libcthreads_queue_try_pop
libcthreads_queue_try_push
libcthreads_read_write_lock_free
libcthreads_read_write_lock_grab_for_read
libcthreads_read_write_lock_grab_for_write
libcthreads_read_write_lock_initialize
libcthreads_read_write_lock_release_for_read
libcthreads_read_write_lock_release_for_write
libcthreads_repeating_thread_create
libcthreads_repeating_thread_join
libcthreads_repeating_thread_push
libcthreads_repeating_thread_start_function_helper
libcthreads_thread_attributes_free
libcthreads_thread_attributes_initialize
libcthreads_thread_callback_function_helper
libcthreads_thread_create
libcthreads_thread_join
libcthreads_thread_pool_callback_function_helper
libcthreads_thread_pool_create
libcthreads_thread_pool_join
libcthreads_thread_pool_push
libcthreads_thread_pool_push_sorted
libewf_check_file_signature
libewf_check_file_signature_file_io_handle
libewf_check_file_signature_wide
libewf_checksum_calculate_adler32
libewf_chunk_data_free
libewf_chunk_data_initialize
libewf_chunk_data_pack
libewf_chunk_data_unpack
libewf_chunk_table_clone
libewf_chunk_table_correct
libewf_chunk_table_fill
libewf_chunk_table_fill_offsets
libewf_chunk_table_free
libewf_chunk_table_initialize
libewf_chunk_table_read_chunk
libewf_chunk_table_read_offsets
libewf_compress_data
libewf_convert_date_header2_value
libewf_convert_date_header_value
libewf_convert_date_xheader_value
libewf_date_time_localtime
libewf_date_time_values_copy_from_timestamp
libewf_date_time_values_copy_to_timestamp
libewf_date_time_values_copy_to_utf16_string
libewf_date_time_values_copy_to_utf8_string
libewf_debug_byte_stream_print
libewf_debug_dump_data
libewf_debug_utf16_stream_print
libewf_debug_utf8_stream_print
libewf_decompress_data
libewf_deflate_bit_stream_get_huffman_encoded_value
libewf_deflate_bit_stream_get_value
libewf_deflate_calculate_adler32
libewf_deflate_decode_huffman
libewf_deflate_decompress
libewf_deflate_decompress_zlib
libewf_deflate_fixed_huffman_distances_table
libewf_deflate_fixed_huffman_literals_table
libewf_deflate_fixed_huffman_tables_initialized
libewf_deflate_huffman_table_construct
libewf_deflate_initialize_dynamic_huffman_tables
libewf_deflate_initialize_fixed_huffman_tables
libewf_deflate_read_block
libewf_deflate_read_data_header
libewf_empty_block_test
libewf_error_backtrace_fprint
libewf_error_backtrace_sprint
libewf_error_fprint
libewf_error_free
libewf_error_sprint
libewf_file_entry_free
libewf_file_entry_get_access_time
libewf_file_entry_get_amount_of_sub_file_entries
libewf_file_entry_get_creation_time
libewf_file_entry_get_duplicate_media_data_offset
libewf_file_entry_get_entry_modification_time
libewf_file_entry_get_flags
libewf_file_entry_get_media_data_offset
libewf_file_entry_get_media_data_size
libewf_file_entry_get_modification_time
libewf_file_entry_get_name

Sections

.text
Size: 784KB - Virtual size: 783KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 606KB - Virtual size: 606KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 648B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 496KB - Virtual size: 496KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 233KB - Virtual size: 233KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x64/libs/x64/libgcc_s_dw2-1.dll
.dll windows:4 windows x86

3ad90f4d80969a4c993fca268c3faef1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateSemaphoreW
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
ReleaseSemaphore
SetLastError
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualProtect
VirtualQuery
WaitForSingleObject

msvcrt

__dllonexit
_errno
_iob
_msize
abort
calloc
fflush
fwrite
malloc
memcpy
memmove
memset
strlen
vfprintf
free
realloc

Exports

Exports

_Unwind_Backtrace
_Unwind_DeleteException
_Unwind_FindEnclosingFunction
_Unwind_Find_FDE
_Unwind_ForcedUnwind
_Unwind_GetCFA
_Unwind_GetDataRelBase
_Unwind_GetGR
_Unwind_GetIP
_Unwind_GetIPInfo
_Unwind_GetLanguageSpecificData
_Unwind_GetRegionStart
_Unwind_GetTextRelBase
_Unwind_RaiseException
_Unwind_Resume
_Unwind_Resume_or_Rethrow
_Unwind_SetGR
_Unwind_SetIP
__absvdi2
__absvsi2
__addtf3
__addvdi3
__addvsi3
__ashldi3
__ashrdi3
__bswapdi2
__bswapsi2
__clear_cache
__clrsbdi2
__clrsbsi2
__clzdi2
__clzsi2
__cmpdi2
__ctzdi2
__ctzsi2
__deregister_frame
__deregister_frame_info
__deregister_frame_info_bases
__divdc3
__divdi3
__divmoddi4
__divsc3
__divtc3
__divtf3
__divxc3
__emutls_get_address
__emutls_register_common
__enable_execute_stack
__eqtf2
__extenddftf2
__extendsftf2
__extendxftf2
__ffsdi2
__ffssi2
__fixdfdi
__fixsfdi
__fixtfdi
__fixtfsi
__fixunsdfdi
__fixunsdfsi
__fixunssfdi
__fixunssfsi
__fixunstfdi
__fixunstfsi
__fixunsxfdi
__fixunsxfsi
__fixxfdi
__floatdidf
__floatdisf
__floatditf
__floatdixf
__floatsitf
__floatundidf
__floatundisf
__floatunditf
__floatundixf
__floatunsitf
__gcc_personality_v0
__getf2
__gttf2
__letf2
__lshrdi3
__lttf2
__moddi3
__muldc3
__muldi3
__mulsc3
__multc3
__multf3
__mulvdi3
__mulvsi3
__mulxc3
__negdi2
__negtf2
__negvdi2
__negvsi2
__netf2
__paritydi2
__paritysi2
__popcountdi2
__popcountsi2
__powidf2
__powisf2
__powitf2
__powixf2
__register_frame
__register_frame_info
__register_frame_info_bases
__register_frame_info_table
__register_frame_info_table_bases
__register_frame_table
__subtf3
__subvdi3
__subvsi3
__trunctfdf2
__trunctfsf2
__trunctfxf2
__ucmpdi2
__udivdi3
__udivmoddi4
__umoddi3
__unordtf2

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 172B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 519KB - Virtual size: 518KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/80
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/91
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x64/libs/x64/libwinpthread-1.dll
.dll windows:4 windows x64

dc636c22184d3aa18115942984ec15d9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

AddVectoredExceptionHandler
CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FileTimeToSystemTime
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetHandleInformation
GetLastError
GetProcessAffinityMask
GetProcessTimes
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetThreadTimes
GetTickCount64
InitializeCriticalSection
IsDebuggerPresent
LeaveCriticalSection
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetEvent
SetLastError
SetProcessAffinityMask
SetSystemTime
SetThreadContext
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject

msvcrt

__C_specific_handler
__iob_func
_amsg_exit
_beginthreadex
_endthreadex
_errno
_initterm
_lock
_setjmp
_strdup
_ultoa
_unlock
abort
calloc
exit
fprintf
free
fwrite
longjmp
malloc
memmove
memset
printf
realloc
signal
strlen
strncmp
vfprintf

Exports

Exports

__pth_gpointer_locked
__pthread_clock_nanosleep
_pthread_cleanup_dest
_pthread_get_state
_pthread_invoke_cancel
_pthread_key_dest
_pthread_rel_time_in_ms
_pthread_set_state
_pthread_time_in_ms
_pthread_time_in_ms_from_timespec
_pthread_tryjoin
clock_getres
clock_gettime
clock_nanosleep
clock_settime
nanosleep
pthread_attr_destroy
pthread_attr_getdetachstate
pthread_attr_getinheritsched
pthread_attr_getschedparam
pthread_attr_getschedpolicy
pthread_attr_getscope
pthread_attr_getstack
pthread_attr_getstackaddr
pthread_attr_getstacksize
pthread_attr_init
pthread_attr_setdetachstate
pthread_attr_setinheritsched
pthread_attr_setschedparam
pthread_attr_setschedpolicy
pthread_attr_setscope
pthread_attr_setstack
pthread_attr_setstackaddr
pthread_attr_setstacksize
pthread_barrier_destroy
pthread_barrier_init
pthread_barrier_wait
pthread_barrierattr_destroy
pthread_barrierattr_getpshared
pthread_barrierattr_init
pthread_barrierattr_setpshared
pthread_cancel
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_timedwait_relative_np
pthread_cond_wait
pthread_condattr_destroy
pthread_condattr_getclock
pthread_condattr_getpshared
pthread_condattr_init
pthread_condattr_setclock
pthread_condattr_setpshared
pthread_create
pthread_create_wrapper
pthread_delay_np
pthread_detach
pthread_equal
pthread_exit
pthread_get_concurrency
pthread_getclean
pthread_getconcurrency
pthread_getevent
pthread_gethandle
pthread_getname_np
pthread_getschedparam
pthread_getspecific
pthread_join
pthread_key_create
pthread_key_delete
pthread_kill
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_timedlock
pthread_mutex_trylock
pthread_mutex_unlock
pthread_mutexattr_destroy
pthread_mutexattr_getprioceiling
pthread_mutexattr_getprotocol
pthread_mutexattr_getpshared
pthread_mutexattr_gettype
pthread_mutexattr_init
pthread_mutexattr_setprioceiling
pthread_mutexattr_setprotocol
pthread_mutexattr_setpshared
pthread_mutexattr_settype
pthread_num_processors_np
pthread_once
pthread_rwlock_destroy
pthread_rwlock_init
pthread_rwlock_rdlock
pthread_rwlock_timedrdlock
pthread_rwlock_timedwrlock
pthread_rwlock_tryrdlock
pthread_rwlock_trywrlock
pthread_rwlock_unlock
pthread_rwlock_wrlock
pthread_rwlockattr_destroy
pthread_rwlockattr_getpshared
pthread_rwlockattr_init
pthread_rwlockattr_setpshared
pthread_self
pthread_set_concurrency
pthread_set_num_processors_np
pthread_setcancelstate
pthread_setcanceltype
pthread_setconcurrency
pthread_setname_np
pthread_setschedparam
pthread_setspecific
pthread_spin_destroy
pthread_spin_init
pthread_spin_lock
pthread_spin_trylock
pthread_spin_unlock
pthread_testcancel
pthread_timechange_handler_np
pthread_tls_init
sched_get_priority_max
sched_get_priority_min
sched_getscheduler
sched_setscheduler
sched_yield
sem_close
sem_destroy
sem_getvalue
sem_init
sem_open
sem_post
sem_post_multiple
sem_timedwait
sem_trywait
sem_unlink
sem_wait

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 400B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x64/libs/x64/sqlite3-win64.dll
.dll windows:6 windows x64

830b2ceb4ee06de109d6dfcaad8a6c8d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

FlushFileBuffers
GetTickCount
QueryPerformanceCounter
MapViewOfFile
CreateFileMappingW
FormatMessageA
GetSystemTime
GetSystemTimeAsFileTime
WideCharToMultiByte
FreeLibrary
SystemTimeToFileTime
GetProcessHeap
GetCurrentProcessId
GetFileSize
LockFileEx
LocalFree
GetProcAddress
UnlockFile
HeapDestroy
HeapCompact
HeapAlloc
LoadLibraryW
GetSystemInfo
CloseHandle
HeapReAlloc
DeleteFileW
DeleteFileA
WaitForSingleObjectEx
LoadLibraryA
CreateFileA
FlushViewOfFile
OutputDebugStringW
GetFileAttributesExW
GetFileAttributesA
GetLastError
GetDiskFreeSpaceA
FormatMessageW
GetTempPathA
Sleep
MultiByteToWideChar
HeapSize
HeapValidate
UnmapViewOfFile
GetFileAttributesW
CreateFileW
WaitForSingleObject
CreateMutexW
GetTempPathW
UnlockFileEx
SetEndOfFile
GetFullPathNameA
SetFilePointer
LockFile
OutputDebugStringA
GetDiskFreeSpaceW
WriteFile
GetFullPathNameW
HeapFree
HeapCreate
ReadFile
AreFileApisANSI
RaiseException
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
GetCurrentThreadId
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
WriteConsoleW
RtlUnwindEx
InterlockedPushEntrySList
InterlockedFlushSList
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LoadLibraryExW
EncodePointer
RtlPcToFileHeader
CreateThread
ExitThread
ResumeThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetModuleFileNameW
GetTimeZoneInformation
GetCurrentThread
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStdHandle
GetFileType
SetConsoleCtrlHandler
GetStringTypeW
SetStdHandle
GetConsoleOutputCP
GetConsoleMode
GetFileSizeEx
SetFilePointerEx
ReadConsoleW
RtlUnwind

Exports

Exports

sqlite3_aggregate_context
sqlite3_aggregate_count
sqlite3_auto_extension
sqlite3_autovacuum_pages
sqlite3_backup_finish
sqlite3_backup_init
sqlite3_backup_pagecount
sqlite3_backup_remaining
sqlite3_backup_step
sqlite3_bind_blob
sqlite3_bind_blob64
sqlite3_bind_double
sqlite3_bind_int
sqlite3_bind_int64
sqlite3_bind_null
sqlite3_bind_parameter_count
sqlite3_bind_parameter_index
sqlite3_bind_parameter_name
sqlite3_bind_pointer
sqlite3_bind_text
sqlite3_bind_text16
sqlite3_bind_text64
sqlite3_bind_value
sqlite3_bind_zeroblob
sqlite3_bind_zeroblob64
sqlite3_blob_bytes
sqlite3_blob_close
sqlite3_blob_open
sqlite3_blob_read
sqlite3_blob_reopen
sqlite3_blob_write
sqlite3_busy_handler
sqlite3_busy_timeout
sqlite3_cancel_auto_extension
sqlite3_changes
sqlite3_changes64
sqlite3_clear_bindings
sqlite3_close
sqlite3_close_v2
sqlite3_collation_needed
sqlite3_collation_needed16
sqlite3_column_blob
sqlite3_column_bytes
sqlite3_column_bytes16
sqlite3_column_count
sqlite3_column_database_name
sqlite3_column_database_name16
sqlite3_column_decltype
sqlite3_column_decltype16
sqlite3_column_double
sqlite3_column_int
sqlite3_column_int64
sqlite3_column_name
sqlite3_column_name16
sqlite3_column_origin_name
sqlite3_column_origin_name16
sqlite3_column_table_name
sqlite3_column_table_name16
sqlite3_column_text
sqlite3_column_text16
sqlite3_column_type
sqlite3_column_value
sqlite3_commit_hook
sqlite3_compileoption_get
sqlite3_compileoption_used
sqlite3_complete
sqlite3_complete16
sqlite3_config
sqlite3_context_db_handle
sqlite3_create_collation
sqlite3_create_collation16
sqlite3_create_collation_v2
sqlite3_create_filename
sqlite3_create_function
sqlite3_create_function16
sqlite3_create_function_v2
sqlite3_create_module
sqlite3_create_module_v2
sqlite3_create_window_function
sqlite3_data_count
sqlite3_data_directory
sqlite3_database_file_object
sqlite3_db_cacheflush
sqlite3_db_config
sqlite3_db_filename
sqlite3_db_handle
sqlite3_db_mutex
sqlite3_db_name
sqlite3_db_readonly
sqlite3_db_release_memory
sqlite3_db_status
sqlite3_declare_vtab
sqlite3_deserialize
sqlite3_drop_modules
sqlite3_enable_load_extension
sqlite3_enable_shared_cache
sqlite3_errcode
sqlite3_errmsg
sqlite3_errmsg16
sqlite3_error_offset
sqlite3_errstr
sqlite3_exec
sqlite3_expanded_sql
sqlite3_expired
sqlite3_extended_errcode
sqlite3_extended_result_codes
sqlite3_file_control
sqlite3_filename_database
sqlite3_filename_journal
sqlite3_filename_wal
sqlite3_finalize
sqlite3_free
sqlite3_free_filename
sqlite3_free_table
sqlite3_get_autocommit
sqlite3_get_auxdata
sqlite3_get_table
sqlite3_global_recover
sqlite3_hard_heap_limit64
sqlite3_initialize
sqlite3_interrupt
sqlite3_is_interrupted
sqlite3_keyword_check
sqlite3_keyword_count
sqlite3_keyword_name
sqlite3_last_insert_rowid
sqlite3_libversion
sqlite3_libversion_number
sqlite3_limit
sqlite3_load_extension
sqlite3_log
sqlite3_malloc
sqlite3_malloc64
sqlite3_memory_alarm
sqlite3_memory_highwater
sqlite3_memory_used
sqlite3_mprintf
sqlite3_msize
sqlite3_mutex_alloc
sqlite3_mutex_enter
sqlite3_mutex_free
sqlite3_mutex_leave
sqlite3_mutex_try
sqlite3_next_stmt
sqlite3_open
sqlite3_open16
sqlite3_open_v2
sqlite3_os_end
sqlite3_os_init
sqlite3_overload_function
sqlite3_prepare
sqlite3_prepare16
sqlite3_prepare16_v2
sqlite3_prepare16_v3
sqlite3_prepare_v2
sqlite3_prepare_v3
sqlite3_preupdate_blobwrite
sqlite3_preupdate_count
sqlite3_preupdate_depth
sqlite3_preupdate_hook
sqlite3_preupdate_new
sqlite3_preupdate_old
sqlite3_profile
sqlite3_progress_handler
sqlite3_randomness
sqlite3_realloc
sqlite3_realloc64
sqlite3_release_memory
sqlite3_reset
sqlite3_reset_auto_extension
sqlite3_result_blob
sqlite3_result_blob64
sqlite3_result_double
sqlite3_result_error
sqlite3_result_error16
sqlite3_result_error_code
sqlite3_result_error_nomem
sqlite3_result_error_toobig
sqlite3_result_int
sqlite3_result_int64
sqlite3_result_null
sqlite3_result_pointer
sqlite3_result_subtype
sqlite3_result_text
sqlite3_result_text16
sqlite3_result_text16be
sqlite3_result_text16le
sqlite3_result_text64
sqlite3_result_value
sqlite3_result_zeroblob
sqlite3_result_zeroblob64
sqlite3_rollback_hook
sqlite3_rtree_geometry_callback
sqlite3_rtree_query_callback
sqlite3_serialize
sqlite3_set_authorizer
sqlite3_set_auxdata
sqlite3_set_last_insert_rowid
sqlite3_shutdown
sqlite3_sleep
sqlite3_snprintf
sqlite3_soft_heap_limit
sqlite3_soft_heap_limit64
sqlite3_sourceid
sqlite3_sql
sqlite3_status
sqlite3_status64
sqlite3_step
sqlite3_stmt_busy
sqlite3_stmt_explain
sqlite3_stmt_isexplain
sqlite3_stmt_readonly
sqlite3_stmt_status
sqlite3_str_append
sqlite3_str_appendall
sqlite3_str_appendchar
sqlite3_str_appendf
sqlite3_str_errcode
sqlite3_str_finish
sqlite3_str_length
sqlite3_str_new
sqlite3_str_reset
sqlite3_str_value
sqlite3_str_vappendf
sqlite3_strglob
sqlite3_stricmp
sqlite3_strlike
sqlite3_strnicmp
sqlite3_system_errno
sqlite3_table_column_metadata
sqlite3_temp_directory
sqlite3_test_control
sqlite3_thread_cleanup
sqlite3_threadsafe
sqlite3_total_changes
sqlite3_total_changes64
sqlite3_trace
sqlite3_trace_v2
sqlite3_transfer_bindings
sqlite3_txn_state
sqlite3_update_hook
sqlite3_uri_boolean
sqlite3_uri_int64
sqlite3_uri_key
sqlite3_uri_parameter
sqlite3_user_data
sqlite3_value_blob
sqlite3_value_bytes
sqlite3_value_bytes16
sqlite3_value_double
sqlite3_value_dup
sqlite3_value_encoding
sqlite3_value_free
sqlite3_value_frombind
sqlite3_value_int
sqlite3_value_int64
sqlite3_value_nochange
sqlite3_value_numeric_type
sqlite3_value_pointer
sqlite3_value_subtype
sqlite3_value_text
sqlite3_value_text16
sqlite3_value_text16be
sqlite3_value_text16le
sqlite3_value_type
sqlite3_version
sqlite3_vfs_find
sqlite3_vfs_register
sqlite3_vfs_unregister
sqlite3_vmprintf
sqlite3_vsnprintf
sqlite3_vtab_collation
sqlite3_vtab_config
sqlite3_vtab_distinct
sqlite3_vtab_in
sqlite3_vtab_in_first
sqlite3_vtab_in_next
sqlite3_vtab_nochange
sqlite3_vtab_on_conflict
sqlite3_vtab_rhs_value
sqlite3_wal_autocheckpoint
sqlite3_wal_checkpoint
sqlite3_wal_checkpoint_v2
sqlite3_wal_hook
sqlite3_win32_is_nt
sqlite3_win32_mbcs_to_utf8
sqlite3_win32_mbcs_to_utf8_v2
sqlite3_win32_set_directory
sqlite3_win32_set_directory16
sqlite3_win32_set_directory8
sqlite3_win32_sleep
sqlite3_win32_unicode_to_utf8
sqlite3_win32_utf8_to_mbcs
sqlite3_win32_utf8_to_mbcs_v2
sqlite3_win32_utf8_to_unicode
sqlite3_win32_write_debug
sqlite3changegroup_add
sqlite3changegroup_add_strm
sqlite3changegroup_delete
sqlite3changegroup_new
sqlite3changegroup_output
sqlite3changegroup_output_strm
sqlite3changeset_apply
sqlite3changeset_apply_strm
sqlite3changeset_apply_v2
sqlite3changeset_apply_v2_strm
sqlite3changeset_concat
sqlite3changeset_concat_strm
sqlite3changeset_conflict
sqlite3changeset_finalize
sqlite3changeset_fk_conflicts
sqlite3changeset_invert
sqlite3changeset_invert_strm
sqlite3changeset_new
sqlite3changeset_next
sqlite3changeset_old
sqlite3changeset_op
sqlite3changeset_pk
sqlite3changeset_start
sqlite3changeset_start_strm
sqlite3changeset_start_v2
sqlite3changeset_start_v2_strm
sqlite3rebaser_configure
sqlite3rebaser_create
sqlite3rebaser_delete
sqlite3rebaser_rebase
sqlite3rebaser_rebase_strm
sqlite3session_attach
sqlite3session_changeset
sqlite3session_changeset_size
sqlite3session_changeset_strm
sqlite3session_config
sqlite3session_create
sqlite3session_delete
sqlite3session_diff
sqlite3session_enable
sqlite3session_indirect
sqlite3session_isempty
sqlite3session_memory_used
sqlite3session_object_config
sqlite3session_patchset
sqlite3session_patchset_strm
sqlite3session_table_filter

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 356KB - Virtual size: 355KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 671B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x64/libs/x64/sqlite3-win64.dll:Zone.Identifier:$DATA
x64/libs/x64/zlib1.dll
.dll windows:4 windows x64

9434905d51e7bf5f119cc9e5ee85d0da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
GetLastError
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
MultiByteToWideChar
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

___lc_codepage_func
___mb_cur_max_func
__iob_func
_amsg_exit
_close
_errno
_initterm
_lock
_lseek
_open
_read
_unlock
_wopen
_write
abort
calloc
fputc
free
fwrite
localeconv
malloc
memchr
memcpy
memset
realloc
strerror
strlen
strncmp
vfprintf
wcslen
wcstombs

Exports

Exports

_dist_code
_length_code
_tr_align
_tr_flush_bits
_tr_flush_block
_tr_init
_tr_stored_block
_tr_tally
adler32
adler32_combine
adler32_combine64
adler32_z
compress
compress2
compressBound
crc32
crc32_combine
crc32_combine64
crc32_z
deflate
deflateBound
deflateCopy
deflateEnd
deflateGetDictionary
deflateInit2_
deflateInit_
deflateParams
deflatePending
deflatePrime
deflateReset
deflateResetKeep
deflateSetDictionary
deflateSetHeader
deflateTune
deflate_copyright
get_crc_table
gz_error
gzbuffer
gzclearerr
gzclose
gzclose_r
gzclose_w
gzdirect
gzdopen
gzeof
gzerror
gzflush
gzfread
gzfwrite
gzgetc
gzgetc_
gzgets
gzoffset
gzoffset64
gzopen
gzopen64
gzopen_w
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzseek64
gzsetparams
gztell
gztell64
gzungetc
gzvprintf
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCodesUsed
inflateCopy
inflateEnd
inflateGetDictionary
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateResetKeep
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
inflateValidate
inflate_copyright
inflate_fast
inflate_table
uncompress
uncompress2
zError
z_errmsg
zcalloc
zcfree
zlibCompileFlags
zlibVersion

Sections

.text
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x86/Quickhash-GUI.exe
.exe windows:4 windows x86

f1704232b1d7acec22db396e7173139e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStdHandle
GetConsoleMode
TlsGetValue
GetLastError
SetLastError
RaiseException
GetTickCount
ExitProcess
GetStartupInfoA
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetCurrentProcess
ReadProcessMemory
GetModuleFileNameA
GetModuleHandleA
WriteFile
ReadFile
CloseHandle
SetFilePointer
SetEndOfFile
GetSystemInfo
LoadLibraryW
LoadLibraryA
GetProcAddress
FreeLibrary
FormatMessageW
DeleteFileW
MoveFileW
CreateFileW
GetFileAttributesW
CreateDirectoryW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetFullPathNameW
SetEnvironmentVariableW
GetConsoleOutputCP
GetOEMCP
GetProcessHeap
HeapAlloc
HeapFree
TlsAlloc
TlsSetValue
CreateThread
ExitThread
LocalAlloc
LocalFree
Sleep
SuspendThread
ResumeThread
TerminateThread
WaitForSingleObject
SetThreadPriority
GetThreadPriority
GetCurrentThread
OpenThread
IsDebuggerPresent
CreateEventA
ResetEvent
SetEvent
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
GetEnvironmentStringsW
FreeEnvironmentStringsW
MultiByteToWideChar
WideCharToMultiByte
GetACP
GetConsoleCP
RtlUnwind
EnumResourceTypesA
EnumResourceNamesA
EnumResourceLanguagesA
FindResourceA
FindResourceExA
LoadResource
SizeofResource
LockResource
FreeResource
GlobalMemoryStatusEx
GetEnvironmentStringsA
FreeEnvironmentStringsA
FormatMessageA
GetLogicalDriveStringsA
LoadLibraryExA
GlobalAddAtomA
GetWindowsDirectoryA
GetComputerNameA
GetVersionExA
CompareStringA
GetLocaleInfoA
GetDateFormatA
EnumCalendarInfoA
EnumSystemLocalesA
EnumSystemCodePagesA
GetModuleFileNameW
GetCommandLineW
GetSystemDirectoryW
CreateProcessW
FindNextFileW
CompareStringW
GetLocaleInfoW
GetDateFormatW
FindFirstFileExW
CopyFileExW
GlobalAlloc
GlobalReAlloc
GlobalSize
GlobalLock
GlobalUnlock
VirtualFree
GetProcessAffinityMask
TerminateProcess
GetExitCodeProcess
SetErrorMode
GlobalDeleteAtom
LockFile
UnlockFile
DeviceIoControl
FindClose
GetFileTime
SetFileTime
DuplicateHandle
MulDiv
GetLocalTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
FileTimeToSystemTime
FileTimeToDosDateTime
DosDateTimeToFileTime
CreatePipe
PeekNamedPipe
GetCPInfo
GetThreadLocale
SetThreadLocale
GetUserDefaultLCID

oleaut32

SysAllocStringLen
SysFreeString
SysReAllocStringLen
LoadTypeLib
RegisterTypeLib
UnRegisterTypeLib
SafeArrayCreate
SafeArrayRedim
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayPtrOfIndex
VariantChangeTypeEx
VariantClear
VariantCopy
VariantInit

user32

MessageBoxA
CharUpperBuffW
CharLowerBuffW
SendMessageA
PostMessageA
PostThreadMessageA
DefWindowProcA
CallWindowProcA
RegisterClassA
UnregisterClassA
GetClassInfoA
CreateWindowExA
SendDlgItemMessageA
RegisterClipboardFormatA
GetClipboardFormatNameA
CharToOemA
CharToOemBuffA
OemToCharBuffA
CharUpperA
CharUpperBuffA
CharLowerA
CharLowerBuffA
GetMenuItemInfoA
SetPropA
GetPropA
RemovePropA
EnumPropsA
GetWindowLongA
SetWindowLongA
GetClassLongA
SetClassLongA
GetClassNameA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
SystemParametersInfoA
DispatchMessageW
PeekMessageW
SendMessageW
PostMessageW
DefWindowProcW
CallWindowProcW
RegisterClassW
UnregisterClassW
GetClassInfoW
CreateWindowExW
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
DrawTextW
DrawStateW
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
MessageBoxW
GetWindowLongW
SetWindowLongW
DefFrameProcW
DefMDIChildProcW
TranslateMessage
PostQuitMessage
GetDoubleClickTime
IsWindow
IsMenu
DestroyWindow
ShowWindow
ShowWindowAsync
ShowOwnedPopups
MoveWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
IsIconic
BringWindowToTop
IsZoomed
GetDlgItem
OpenClipboard
CloseClipboard
SetClipboardData
GetClipboardData
CountClipboardFormats
EnumClipboardFormats
EmptyClipboard
IsClipboardFormatAvailable
SetFocus
GetActiveWindow
GetFocus
GetKeyState
GetCapture
SetCapture
ReleaseCapture
MsgWaitForMultipleObjects
SetTimer
KillTimer
EnableWindow
IsWindowEnabled
GetSystemMetrics
GetMenu
SetMenu
DrawMenuBar
GetSystemMenu
CreateMenu
CreatePopupMenu
DestroyMenu
EnableMenuItem
GetSubMenu
GetMenuItemCount
RemoveMenu
DeleteMenu
GetMenuItemRect
UpdateWindow
SetActiveWindow
GetForegroundWindow
SetForegroundWindow
WindowFromDC
GetDC
GetDCEx
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
GetUpdateRect
SetWindowRgn
InvalidateRect
InvalidateRgn
RedrawWindow
ScrollWindowEx
ShowScrollBar
EnableScrollBar
GetClientRect
GetWindowRect
AdjustWindowRectEx
MessageBeep
SetCursorPos
SetCursor
GetCursorPos
CreateCaret
DestroyCaret
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
ClientToScreen
ScreenToClient
MapWindowPoints
WindowFromPoint
GetSysColor
GetSysColorBrush
SetSysColors
DrawFocusRect
FillRect
FrameRect
SetRect
InflateRect
IntersectRect
OffsetRect
IsRectEmpty
PtInRect
GetDesktopWindow
GetParent
SetParent
EnumThreadWindows
GetTopWindow
GetWindowThreadProcessId
GetLastActivePopup
GetWindow
CallNextHookEx
DestroyCursor
DestroyIcon
CopyImage
CreateIconIndirect
GetIconInfo
SetScrollInfo
GetScrollInfo
TranslateMDISysAccel
DrawEdge
DrawFrameControl
TrackPopupMenuEx
ChildWindowFromPointEx
DrawIconEx
FlashWindowEx

ntdll

RtlGetNtVersionNumbers

gdi32

CreateFontIndirectA
EnumFontFamiliesA
GetCharABCWidthsA
GetTextExtentPointA
GetTextMetricsA
GetObjectA
ExtTextOutA
CreateFontIndirectW
EnumFontFamiliesExW
GetCharABCWidthsW
GetTextExtentPoint32W
GetTextExtentExPointW
GetObjectW
TextOutW
ExtTextOutW
GetRandomRgn
Arc
BitBlt
Chord
CombineRgn
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBitmap
CreateEllipticRgn
CreatePen
CreatePenIndirect
CreatePatternBrush
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EqualRgn
ExcludeClipRect
ExtCreateRegion
ExtFloodFill
FillRgn
GetROP2
GetBkColor
GetBitmapBits
GetClipBox
GetClipRgn
GetCurrentObject
GetDeviceCaps
GetDIBits
GetMapMode
GetObjectType
GetPixel
GetRegionData
GetRgnBox
GetStockObject
GetTextAlign
GetTextColor
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
IntersectClipRect
LineTo
MaskBlt
OffsetRgn
PatBlt
Pie
PaintRgn
PtInRegion
RectInRegion
RectVisible
Rectangle
RestoreDC
RealizePalette
RoundRect
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetPixel
SetPolyFillMode
StretchBlt
SetRectRgn
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextColor
SetTextAlign
CreateDIBSection
SetArcDirection
ExtCreatePen
MoveToEx
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
PolyBezier
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
SetBrushOrgEx
GetDCOrgEx

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shell32

DragQueryFileA
DragQueryFileW
ShellExecuteW
DragFinish
DragAcceptFiles
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW

ole32

CoRegisterClassObject
CoCreateGuid
CoTaskMemFree
OleInitialize
OleUninitialize
CoUninitialize
CoCreateInstance
CLSIDFromProgID
CoInitialize
CoTaskMemAlloc
GetErrorInfo

comctl32

InitCommonControls
ImageList_Create
ImageList_Destroy
ImageList_GetImageCount
ImageList_SetImageCount
ImageList_Add
ImageList_Replace
ImageList_AddMasked
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Remove
ImageList_Copy
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
_TrackMouseEvent

shlwapi

AssocQueryStringW

comdlg32

ChooseColorA
CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW
ChooseFontW

Sections

.text
Size: 3.1MB - Virtual size: 3.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1011KB - Virtual size: 1011KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 35KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 475KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
x86/libs/x86/README.txt
x86/libs/x86/libewf-x86.dll
.dll windows:4 windows x86

557f977b3841d9952729d7ff6f11aaaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateDirectoryA
CreateDirectoryW
CreateEventA
CreateFileA
CreateFileW
CreateMutexA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileA
DeleteFileW
DeviceIoControl
DisableThreadLibraryCalls
EnterCriticalSection
ExitThread
FormatMessageA
FreeLibrary
GetCPInfo
GetCurrentDirectoryA
GetCurrentDirectoryW
GetFileAttributesA
GetFileAttributesW
GetFileSizeEx
GetFileType
GetLastError
GetLocaleInfoA
GetModuleHandleA
GetOverlappedResult
GetProcAddress
GetProcessHeap
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedExchange
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
ReadFile
ReleaseMutex
ReleaseSemaphore
ResetEvent
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEvent
SetFilePointerEx
SetLastError
SignalObjectAndWait
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

_strdup
_strnicmp
_wcsnicmp
__dllonexit
_errno
_iob
_tzname
abort
atoi
calloc
fclose
fflush
fopen
fprintf
fputc
fwrite
getenv
localeconv
localtime
malloc
memchr
memcmp
memcpy
memset
mktime
setlocale
strchr
strcmp
strlen
time
vfprintf
wcslen
free

zlib1

adler32
compress2
compressBound
uncompress

libgcc_s_dw2-1

__divdi3
__emutls_get_address
__moddi3
__udivdi3
__udivmoddi4
__umoddi3

Exports

Exports

dvf_file_signature
evf_file_signature
libbfio_file_get_name
libbfio_file_get_name_size
libbfio_file_get_name_size_wide
libbfio_file_get_name_wide
libbfio_file_initialize
libbfio_file_io_handle_clone
libbfio_file_io_handle_close
libbfio_file_io_handle_exists
libbfio_file_io_handle_free
libbfio_file_io_handle_get_name
libbfio_file_io_handle_get_name_size
libbfio_file_io_handle_get_name_size_wide
libbfio_file_io_handle_get_name_wide
libbfio_file_io_handle_get_size
libbfio_file_io_handle_initialize
libbfio_file_io_handle_is_open
libbfio_file_io_handle_open
libbfio_file_io_handle_read_buffer
libbfio_file_io_handle_seek_offset
libbfio_file_io_handle_set_name
libbfio_file_io_handle_set_name_wide
libbfio_file_io_handle_write_buffer
libbfio_file_pool_append_handles_for_names
libbfio_file_pool_append_handles_for_names_wide
libbfio_file_pool_open
libbfio_file_pool_open_wide
libbfio_file_range_get
libbfio_file_range_get_name
libbfio_file_range_get_name_size
libbfio_file_range_get_name_size_wide
libbfio_file_range_get_name_wide
libbfio_file_range_initialize
libbfio_file_range_io_handle_clone
libbfio_file_range_io_handle_close
libbfio_file_range_io_handle_exists
libbfio_file_range_io_handle_free
libbfio_file_range_io_handle_get
libbfio_file_range_io_handle_get_name
libbfio_file_range_io_handle_get_name_size
libbfio_file_range_io_handle_get_name_size_wide
libbfio_file_range_io_handle_get_name_wide
libbfio_file_range_io_handle_get_size
libbfio_file_range_io_handle_initialize
libbfio_file_range_io_handle_is_open
libbfio_file_range_io_handle_open
libbfio_file_range_io_handle_read_buffer
libbfio_file_range_io_handle_seek_offset
libbfio_file_range_io_handle_set
libbfio_file_range_io_handle_set_name
libbfio_file_range_io_handle_set_name_wide
libbfio_file_range_io_handle_write_buffer
libbfio_file_range_set
libbfio_file_range_set_name
libbfio_file_range_set_name_wide
libbfio_file_set_name
libbfio_file_set_name_wide
libbfio_handle_clone
libbfio_handle_close
libbfio_handle_exists
libbfio_handle_free
libbfio_handle_get_access_flags
libbfio_handle_get_io_handle
libbfio_handle_get_number_of_offsets_read
libbfio_handle_get_offset
libbfio_handle_get_offset_read
libbfio_handle_get_size
libbfio_handle_initialize
libbfio_handle_is_open
libbfio_handle_open
libbfio_handle_read_buffer
libbfio_handle_read_buffer_at_offset
libbfio_handle_reopen
libbfio_handle_seek_offset
libbfio_handle_set_access_flags
libbfio_handle_set_open_on_demand
libbfio_handle_set_track_offsets_read
libbfio_handle_write_buffer
libbfio_handle_write_buffer_at_offset
libbfio_internal_handle_read_buffer
libbfio_internal_handle_seek_offset
libbfio_internal_handle_write_buffer
libbfio_internal_pool_append_handle_to_last_used_list
libbfio_internal_pool_close
libbfio_internal_pool_get_open_handle
libbfio_internal_pool_move_handle_to_front_of_last_used_list
libbfio_internal_pool_open
libbfio_internal_pool_open_handle
libbfio_internal_pool_remove_handle_from_last_used_list
libbfio_memory_range_get
libbfio_memory_range_initialize
libbfio_memory_range_io_handle_clone
libbfio_memory_range_io_handle_close
libbfio_memory_range_io_handle_exists
libbfio_memory_range_io_handle_free
libbfio_memory_range_io_handle_get
libbfio_memory_range_io_handle_get_size
libbfio_memory_range_io_handle_initialize
libbfio_memory_range_io_handle_is_open
libbfio_memory_range_io_handle_open
libbfio_memory_range_io_handle_read_buffer
libbfio_memory_range_io_handle_seek_offset
libbfio_memory_range_io_handle_set
libbfio_memory_range_io_handle_write_buffer
libbfio_memory_range_set
libbfio_pool_append_handle
libbfio_pool_clone
libbfio_pool_close
libbfio_pool_close_all
libbfio_pool_free
libbfio_pool_get_handle
libbfio_pool_get_maximum_number_of_open_handles
libbfio_pool_get_number_of_handles
libbfio_pool_get_offset
libbfio_pool_get_size
libbfio_pool_initialize
libbfio_pool_open
libbfio_pool_read_buffer
libbfio_pool_read_buffer_at_offset
libbfio_pool_remove_handle
libbfio_pool_reopen
libbfio_pool_resize
libbfio_pool_seek_offset
libbfio_pool_set_handle
libbfio_pool_set_maximum_number_of_open_handles
libbfio_pool_write_buffer
libbfio_pool_write_buffer_at_offset
libbfio_system_string_copy_from_narrow_string
libbfio_system_string_copy_from_wide_string
libbfio_system_string_copy_to_narrow_string
libbfio_system_string_copy_to_wide_string
libbfio_system_string_size_from_narrow_string
libbfio_system_string_size_from_wide_string
libbfio_system_string_size_to_narrow_string
libbfio_system_string_size_to_wide_string
libcdata_array_append_entry
libcdata_array_clear
libcdata_array_clone
libcdata_array_empty
libcdata_array_free
libcdata_array_get_entry_by_index
libcdata_array_get_entry_by_value
libcdata_array_get_number_of_entries
libcdata_array_initialize
libcdata_array_insert_entry
libcdata_array_prepend_entry
libcdata_array_remove_entry
libcdata_array_resize
libcdata_array_reverse
libcdata_array_set_entry_by_index
libcdata_btree_free
libcdata_btree_get_number_of_values
libcdata_btree_get_value_by_index
libcdata_btree_get_value_by_value
libcdata_btree_initialize
libcdata_btree_insert_value
libcdata_btree_node_append_value
libcdata_btree_node_flatten_node
libcdata_btree_node_get_sub_node_by_value
libcdata_btree_node_get_upper_node_by_value
libcdata_btree_node_insert_value
libcdata_btree_node_remove_sub_node
libcdata_btree_node_remove_value
libcdata_btree_node_replace_value
libcdata_btree_node_split
libcdata_btree_remove_value
libcdata_btree_replace_value
libcdata_btree_values_list_free
libcdata_btree_values_list_remove_element
libcdata_btree_values_list_replace_element_with_previous
libcdata_internal_array_clear
libcdata_internal_array_resize
libcdata_internal_list_insert_element_before_element
libcdata_internal_list_insert_element_find_element
libcdata_internal_list_set_first_element
libcdata_internal_list_set_last_element
libcdata_internal_range_list_append_element
libcdata_internal_range_list_append_value
libcdata_internal_range_list_check_range_overlap
libcdata_internal_range_list_free_element
libcdata_internal_range_list_get_element_at_offset
libcdata_internal_range_list_get_element_by_index
libcdata_internal_range_list_get_value_at_offset
libcdata_internal_range_list_get_value_by_index
libcdata_internal_range_list_insert_element_after_element
libcdata_internal_range_list_insert_range_before_element
libcdata_internal_range_list_insert_range_find_element
libcdata_internal_range_list_insert_range_merge
libcdata_internal_range_list_insert_range_revert_merge
libcdata_internal_range_list_insert_value_after_element
libcdata_internal_range_list_merge_overlapping_ranges
libcdata_internal_range_list_merge_range
libcdata_internal_range_list_remove_element
libcdata_internal_range_list_remove_range_value
libcdata_internal_range_list_remove_shrink_range
libcdata_internal_range_list_remove_split_range
libcdata_internal_range_list_set_first_element
libcdata_internal_range_list_set_last_element
libcdata_internal_tree_node_append_node
libcdata_internal_tree_node_insert_node_before_sub_node
libcdata_internal_tree_node_insert_node_find_sub_node
libcdata_internal_tree_node_set_first_sub_node
libcdata_internal_tree_node_set_last_sub_node
libcdata_list_append_element
libcdata_list_append_value
libcdata_list_clone
libcdata_list_element_free
libcdata_list_element_get_elements
libcdata_list_element_get_next_element
libcdata_list_element_get_parent_list
libcdata_list_element_get_previous_element
libcdata_list_element_get_value
libcdata_list_element_initialize
libcdata_list_element_set_elements
libcdata_list_element_set_next_element
libcdata_list_element_set_parent_list
libcdata_list_element_set_previous_element
libcdata_list_element_set_value
libcdata_list_empty
libcdata_list_free
libcdata_list_get_element_by_index
libcdata_list_get_first_element
libcdata_list_get_last_element
libcdata_list_get_number_of_elements
libcdata_list_get_value_by_index
libcdata_list_initialize
libcdata_list_insert_element
libcdata_list_insert_value
libcdata_list_prepend_element
libcdata_list_prepend_value
libcdata_list_remove_element
libcdata_range_list_clone
libcdata_range_list_empty
libcdata_range_list_free
libcdata_range_list_get_first_element
libcdata_range_list_get_last_element
libcdata_range_list_get_number_of_elements
libcdata_range_list_get_range_at_offset
libcdata_range_list_get_range_by_index
libcdata_range_list_get_spanning_range
libcdata_range_list_initialize
libcdata_range_list_insert_range
libcdata_range_list_insert_range_list
libcdata_range_list_range_is_present
libcdata_range_list_remove_range
libcdata_range_list_value_check_range_overlap
libcdata_range_list_value_clone
libcdata_range_list_value_free
libcdata_range_list_value_initialize
libcdata_range_list_value_merge
libcdata_tree_node_append_node
libcdata_tree_node_append_value
libcdata_tree_node_clone
libcdata_tree_node_empty
libcdata_tree_node_free
libcdata_tree_node_get_first_sub_node
libcdata_tree_node_get_last_sub_node
libcdata_tree_node_get_leaf_node_list
libcdata_tree_node_get_next_node
libcdata_tree_node_get_nodes
libcdata_tree_node_get_number_of_sub_nodes
libcdata_tree_node_get_parent_node
libcdata_tree_node_get_previous_node
libcdata_tree_node_get_sub_node_by_index
libcdata_tree_node_get_sub_nodes
libcdata_tree_node_get_value
libcdata_tree_node_initialize
libcdata_tree_node_insert_node
libcdata_tree_node_insert_value
libcdata_tree_node_remove_node
libcdata_tree_node_replace_node
libcdata_tree_node_set_next_node
libcdata_tree_node_set_nodes
libcdata_tree_node_set_parent_node
libcdata_tree_node_set_previous_node
libcdata_tree_node_set_sub_nodes
libcdata_tree_node_set_value
libcerror_error_backtrace_fprint
libcerror_error_backtrace_sprint
libcerror_error_fprint
libcerror_error_free
libcerror_error_initialize
libcerror_error_matches
libcerror_error_resize
libcerror_error_set
libcerror_error_sprint
libcerror_system_copy_string_from_error_number
libcerror_system_set_error
libcfile_file_close
libcfile_file_exists
libcfile_file_exists_wide
libcfile_file_free
libcfile_file_get_offset
libcfile_file_get_size
libcfile_file_initialize
libcfile_file_io_control_read
libcfile_file_io_control_read_with_error_code
libcfile_file_is_device
libcfile_file_is_open
libcfile_file_open
libcfile_file_open_wide
libcfile_file_open_wide_with_error_code
libcfile_file_open_with_error_code
libcfile_file_read_buffer
libcfile_file_read_buffer_with_error_code
libcfile_file_remove
libcfile_file_remove_wide
libcfile_file_remove_wide_with_error_code
libcfile_file_remove_with_error_code
libcfile_file_resize
libcfile_file_seek_offset
libcfile_file_set_access_behavior
libcfile_file_set_block_size
libcfile_file_write_buffer
libcfile_file_write_buffer_with_error_code
libcfile_internal_file_get_size
libcfile_internal_file_io_control_read_with_error_code
libcfile_internal_file_read_buffer_at_offset_with_error_code
libcfile_internal_file_set_block_size
libcfile_system_string_copy_from_narrow_string
libcfile_system_string_copy_from_wide_string
libcfile_system_string_copy_to_narrow_string
libcfile_system_string_copy_to_wide_string
libcfile_system_string_size_from_narrow_string
libcfile_system_string_size_from_wide_string
libcfile_system_string_size_to_narrow_string
libcfile_system_string_size_to_wide_string
libclocale_codepage
libclocale_codepage_copy_from_string
libclocale_codepage_copy_from_string_wide
libclocale_codepage_get
libclocale_codepage_set
libclocale_initialize
libclocale_locale_get_codepage
libclocale_locale_get_codepage_from_charset
libclocale_locale_get_decimal_point
libcnotify_print_data
libcnotify_print_data_as_character
libcnotify_print_data_as_characters
libcnotify_print_data_as_hexadecimal
libcnotify_print_error_backtrace
libcnotify_printf
libcnotify_stream
libcnotify_stream_close
libcnotify_stream_open
libcnotify_stream_opened_in_library
libcnotify_stream_set
libcnotify_verbose
libcnotify_verbose_set
libcpath_path_change_directory
libcpath_path_change_directory_wide
libcpath_path_get_current_working_directory
libcpath_path_get_current_working_directory_by_volume
libcpath_path_get_current_working_directory_by_volume_wide
libcpath_path_get_current_working_directory_wide
libcpath_path_get_full_path
libcpath_path_get_full_path_wide
libcpath_path_get_path_type
libcpath_path_get_path_type_wide
libcpath_path_get_sanitized_character
libcpath_path_get_sanitized_character_size
libcpath_path_get_sanitized_character_size_wide
libcpath_path_get_sanitized_character_wide
libcpath_path_get_sanitized_filename
libcpath_path_get_sanitized_filename_wide
libcpath_path_get_sanitized_path
libcpath_path_get_sanitized_path_wide
libcpath_path_get_volume_name
libcpath_path_get_volume_name_wide
libcpath_path_join
libcpath_path_join_wide
libcpath_path_make_directory
libcpath_path_make_directory_wide
libcpath_system_string_copy_from_narrow_string
libcpath_system_string_copy_from_wide_string
libcpath_system_string_copy_to_narrow_string
libcpath_system_string_copy_to_wide_string
libcpath_system_string_size_from_narrow_string
libcpath_system_string_size_from_wide_string
libcpath_system_string_size_to_narrow_string
libcpath_system_string_size_to_wide_string
libcsplit_narrow_split_string_free
libcsplit_narrow_split_string_get_number_of_segments
libcsplit_narrow_split_string_get_segment_by_index
libcsplit_narrow_split_string_get_string
libcsplit_narrow_split_string_initialize
libcsplit_narrow_split_string_set_segment_by_index
libcsplit_narrow_string_split
libcsplit_wide_split_string_free
libcsplit_wide_split_string_get_number_of_segments
libcsplit_wide_split_string_get_segment_by_index
libcsplit_wide_split_string_get_string
libcsplit_wide_split_string_initialize
libcsplit_wide_split_string_set_segment_by_index
libcsplit_wide_string_split
libcthreads_condition_broadcast
libcthreads_condition_free
libcthreads_condition_initialize
libcthreads_condition_signal
libcthreads_condition_wait
libcthreads_internal_thread_pool_pop
libcthreads_lock_free
libcthreads_lock_grab
libcthreads_lock_initialize
libcthreads_lock_release
libcthreads_mutex_free
libcthreads_mutex_grab
libcthreads_mutex_initialize
libcthreads_mutex_release
libcthreads_mutex_try_grab
libcthreads_queue_empty
libcthreads_queue_free
libcthreads_queue_initialize
libcthreads_queue_pop
libcthreads_queue_push
libcthreads_queue_push_sorted
libcthreads_queue_try_pop
libcthreads_queue_try_push
libcthreads_read_write_lock_free
libcthreads_read_write_lock_grab_for_read
libcthreads_read_write_lock_grab_for_write
libcthreads_read_write_lock_initialize
libcthreads_read_write_lock_release_for_read
libcthreads_read_write_lock_release_for_write
libcthreads_repeating_thread_create
libcthreads_repeating_thread_join
libcthreads_repeating_thread_push
libcthreads_repeating_thread_start_function_helper@4
libcthreads_thread_attributes_free
libcthreads_thread_attributes_initialize
libcthreads_thread_callback_function_helper@4
libcthreads_thread_create
libcthreads_thread_join
libcthreads_thread_pool_callback_function_helper@4
libcthreads_thread_pool_create
libcthreads_thread_pool_join
libcthreads_thread_pool_push
libcthreads_thread_pool_push_sorted
libewf_check_file_signature
libewf_check_file_signature_file_io_handle
libewf_check_file_signature_wide
libewf_checksum_calculate_adler32
libewf_chunk_data_free
libewf_chunk_data_initialize
libewf_chunk_data_pack
libewf_chunk_data_unpack
libewf_chunk_table_clone
libewf_chunk_table_correct
libewf_chunk_table_fill
libewf_chunk_table_fill_offsets
libewf_chunk_table_free
libewf_chunk_table_initialize
libewf_chunk_table_read_chunk
libewf_chunk_table_read_offsets
libewf_compress_data
libewf_convert_date_header2_value
libewf_convert_date_header_value
libewf_convert_date_xheader_value
libewf_date_time_localtime
libewf_date_time_values_copy_from_timestamp
libewf_date_time_values_copy_to_timestamp
libewf_date_time_values_copy_to_utf16_string
libewf_date_time_values_copy_to_utf8_string
libewf_debug_byte_stream_print
libewf_debug_dump_data
libewf_debug_utf16_stream_print
libewf_debug_utf8_stream_print
libewf_decompress_data
libewf_deflate_bit_stream_get_huffman_encoded_value
libewf_deflate_bit_stream_get_value
libewf_deflate_calculate_adler32
libewf_deflate_decode_huffman
libewf_deflate_decompress
libewf_deflate_decompress_zlib
libewf_deflate_fixed_huffman_distances_table
libewf_deflate_fixed_huffman_literals_table
libewf_deflate_fixed_huffman_tables_initialized
libewf_deflate_huffman_table_construct
libewf_deflate_initialize_dynamic_huffman_tables
libewf_deflate_initialize_fixed_huffman_tables
libewf_deflate_read_block
libewf_deflate_read_data_header
libewf_empty_block_test
libewf_error_backtrace_fprint
libewf_error_backtrace_sprint
libewf_error_fprint
libewf_error_free
libewf_error_sprint
libewf_file_entry_free
libewf_file_entry_get_access_time
libewf_file_entry_get_amount_of_sub_file_entries
libewf_file_entry_get_creation_time
libewf_file_entry_get_duplicate_media_data_offset
libewf_file_entry_get_entry_modification_time
libewf_file_entry_get_flags
libewf_file_entry_get_media_data_offset
libewf_file_entry_get_media_data_size
libewf_file_entry_get_modification_time
libewf_file_entry_get_name

Sections

.text
Size: 818KB - Virtual size: 818KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 592KB - Virtual size: 592KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 478KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/80
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/91
Size: 415KB - Virtual size: 415KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x86/libs/x86/libgcc_s_dw2-1.dll
.dll windows:4 windows x86

3ad90f4d80969a4c993fca268c3faef1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateSemaphoreW
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
ReleaseSemaphore
SetLastError
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualProtect
VirtualQuery
WaitForSingleObject

msvcrt

__dllonexit
_errno
_iob
_msize
abort
calloc
fflush
fwrite
malloc
memcpy
memmove
memset
strlen
vfprintf
free
realloc

Exports

Exports

_Unwind_Backtrace
_Unwind_DeleteException
_Unwind_FindEnclosingFunction
_Unwind_Find_FDE
_Unwind_ForcedUnwind
_Unwind_GetCFA
_Unwind_GetDataRelBase
_Unwind_GetGR
_Unwind_GetIP
_Unwind_GetIPInfo
_Unwind_GetLanguageSpecificData
_Unwind_GetRegionStart
_Unwind_GetTextRelBase
_Unwind_RaiseException
_Unwind_Resume
_Unwind_Resume_or_Rethrow
_Unwind_SetGR
_Unwind_SetIP
__absvdi2
__absvsi2
__addtf3
__addvdi3
__addvsi3
__ashldi3
__ashrdi3
__bswapdi2
__bswapsi2
__clear_cache
__clrsbdi2
__clrsbsi2
__clzdi2
__clzsi2
__cmpdi2
__ctzdi2
__ctzsi2
__deregister_frame
__deregister_frame_info
__deregister_frame_info_bases
__divdc3
__divdi3
__divmoddi4
__divsc3
__divtc3
__divtf3
__divxc3
__emutls_get_address
__emutls_register_common
__enable_execute_stack
__eqtf2
__extenddftf2
__extendsftf2
__extendxftf2
__ffsdi2
__ffssi2
__fixdfdi
__fixsfdi
__fixtfdi
__fixtfsi
__fixunsdfdi
__fixunsdfsi
__fixunssfdi
__fixunssfsi
__fixunstfdi
__fixunstfsi
__fixunsxfdi
__fixunsxfsi
__fixxfdi
__floatdidf
__floatdisf
__floatditf
__floatdixf
__floatsitf
__floatundidf
__floatundisf
__floatunditf
__floatundixf
__floatunsitf
__gcc_personality_v0
__getf2
__gttf2
__letf2
__lshrdi3
__lttf2
__moddi3
__muldc3
__muldi3
__mulsc3
__multc3
__multf3
__mulvdi3
__mulvsi3
__mulxc3
__negdi2
__negtf2
__negvdi2
__negvsi2
__netf2
__paritydi2
__paritysi2
__popcountdi2
__popcountsi2
__powidf2
__powisf2
__powitf2
__powixf2
__register_frame
__register_frame_info
__register_frame_info_bases
__register_frame_info_table
__register_frame_info_table_bases
__register_frame_table
__subtf3
__subvdi3
__subvsi3
__trunctfdf2
__trunctfsf2
__trunctfxf2
__ucmpdi2
__udivdi3
__udivmoddi4
__umoddi3
__unordtf2

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 172B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 519KB - Virtual size: 518KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/80
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/91
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x86/libs/x86/libwinpthread-1.dll
.dll windows:4 windows x64

dc636c22184d3aa18115942984ec15d9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

AddVectoredExceptionHandler
CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FileTimeToSystemTime
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetHandleInformation
GetLastError
GetProcessAffinityMask
GetProcessTimes
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetThreadTimes
GetTickCount64
InitializeCriticalSection
IsDebuggerPresent
LeaveCriticalSection
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetEvent
SetLastError
SetProcessAffinityMask
SetSystemTime
SetThreadContext
SetThreadPriority
Sleep
SuspendThread
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject

msvcrt

__C_specific_handler
__iob_func
_amsg_exit
_beginthreadex
_endthreadex
_errno
_initterm
_lock
_setjmp
_strdup
_ultoa
_unlock
abort
calloc
exit
fprintf
free
fwrite
longjmp
malloc
memmove
memset
printf
realloc
signal
strlen
strncmp
vfprintf

Exports

Exports

__pth_gpointer_locked
__pthread_clock_nanosleep
_pthread_cleanup_dest
_pthread_get_state
_pthread_invoke_cancel
_pthread_key_dest
_pthread_rel_time_in_ms
_pthread_set_state
_pthread_time_in_ms
_pthread_time_in_ms_from_timespec
_pthread_tryjoin
clock_getres
clock_gettime
clock_nanosleep
clock_settime
nanosleep
pthread_attr_destroy
pthread_attr_getdetachstate
pthread_attr_getinheritsched
pthread_attr_getschedparam
pthread_attr_getschedpolicy
pthread_attr_getscope
pthread_attr_getstack
pthread_attr_getstackaddr
pthread_attr_getstacksize
pthread_attr_init
pthread_attr_setdetachstate
pthread_attr_setinheritsched
pthread_attr_setschedparam
pthread_attr_setschedpolicy
pthread_attr_setscope
pthread_attr_setstack
pthread_attr_setstackaddr
pthread_attr_setstacksize
pthread_barrier_destroy
pthread_barrier_init
pthread_barrier_wait
pthread_barrierattr_destroy
pthread_barrierattr_getpshared
pthread_barrierattr_init
pthread_barrierattr_setpshared
pthread_cancel
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_timedwait_relative_np
pthread_cond_wait
pthread_condattr_destroy
pthread_condattr_getclock
pthread_condattr_getpshared
pthread_condattr_init
pthread_condattr_setclock
pthread_condattr_setpshared
pthread_create
pthread_create_wrapper
pthread_delay_np
pthread_detach
pthread_equal
pthread_exit
pthread_get_concurrency
pthread_getclean
pthread_getconcurrency
pthread_getevent
pthread_gethandle
pthread_getname_np
pthread_getschedparam
pthread_getspecific
pthread_join
pthread_key_create
pthread_key_delete
pthread_kill
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_timedlock
pthread_mutex_trylock
pthread_mutex_unlock
pthread_mutexattr_destroy
pthread_mutexattr_getprioceiling
pthread_mutexattr_getprotocol
pthread_mutexattr_getpshared
pthread_mutexattr_gettype
pthread_mutexattr_init
pthread_mutexattr_setprioceiling
pthread_mutexattr_setprotocol
pthread_mutexattr_setpshared
pthread_mutexattr_settype
pthread_num_processors_np
pthread_once
pthread_rwlock_destroy
pthread_rwlock_init
pthread_rwlock_rdlock
pthread_rwlock_timedrdlock
pthread_rwlock_timedwrlock
pthread_rwlock_tryrdlock
pthread_rwlock_trywrlock
pthread_rwlock_unlock
pthread_rwlock_wrlock
pthread_rwlockattr_destroy
pthread_rwlockattr_getpshared
pthread_rwlockattr_init
pthread_rwlockattr_setpshared
pthread_self
pthread_set_concurrency
pthread_set_num_processors_np
pthread_setcancelstate
pthread_setcanceltype
pthread_setconcurrency
pthread_setname_np
pthread_setschedparam
pthread_setspecific
pthread_spin_destroy
pthread_spin_init
pthread_spin_lock
pthread_spin_trylock
pthread_spin_unlock
pthread_testcancel
pthread_timechange_handler_np
pthread_tls_init
sched_get_priority_max
sched_get_priority_min
sched_getscheduler
sched_setscheduler
sched_yield
sem_close
sem_destroy
sem_getvalue
sem_init
sem_open
sem_post
sem_post_multiple
sem_timedwait
sem_trywait
sem_unlink
sem_wait

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 400B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x86/libs/x86/sqlite3-win32.dll
.dll windows:4 windows x86

837f6fc59d52fc63fa6a16472c00dccd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

AreFileApisANSI
CloseHandle
CreateFileA
CreateFileMappingA
CreateFileMappingW
CreateFileW
CreateMutexW
DeleteCriticalSection
DeleteFileA
DeleteFileW
EnterCriticalSection
FlushFileBuffers
FlushViewOfFile
FormatMessageA
FormatMessageW
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDiskFreeSpaceA
GetDiskFreeSpaceW
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileSize
GetFullPathNameA
GetFullPathNameW
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetSystemInfo
GetSystemTime
GetSystemTimeAsFileTime
GetTempPathA
GetTempPathW
GetTickCount
GetVersionExA
GetVersionExW
HeapAlloc
HeapCompact
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
HeapValidate
InitializeCriticalSection
InterlockedCompareExchange
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LocalFree
LockFile
LockFileEx
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
OutputDebugStringW
QueryPerformanceCounter
ReadFile
SetEndOfFile
SetFilePointer
SetUnhandledExceptionFilter
Sleep
SystemTimeToFileTime
TerminateProcess
TlsGetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnlockFile
UnlockFileEx
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile

msvcrt

__dllonexit
__setusermatherr
_amsg_exit
_beginthreadex
_endthreadex
_errno
_initterm
_iob
_lock
_onexit
localtime
calloc
cosh
fprintf
free
fwrite
log10
malloc
memcmp
memmove
qsort
realloc
sinh
strcmp
strcspn
strlen
strncmp
strrchr
strspn
_unlock
abort
acos
asin
atan
tan
tanh
vfprintf

Exports

Exports

sqlite3_aggregate_context
sqlite3_aggregate_count
sqlite3_auto_extension
sqlite3_autovacuum_pages
sqlite3_backup_finish
sqlite3_backup_init
sqlite3_backup_pagecount
sqlite3_backup_remaining
sqlite3_backup_step
sqlite3_bind_blob
sqlite3_bind_blob64
sqlite3_bind_double
sqlite3_bind_int
sqlite3_bind_int64
sqlite3_bind_null
sqlite3_bind_parameter_count
sqlite3_bind_parameter_index
sqlite3_bind_parameter_name
sqlite3_bind_pointer
sqlite3_bind_text
sqlite3_bind_text16
sqlite3_bind_text64
sqlite3_bind_value
sqlite3_bind_zeroblob
sqlite3_bind_zeroblob64
sqlite3_blob_bytes
sqlite3_blob_close
sqlite3_blob_open
sqlite3_blob_read
sqlite3_blob_reopen
sqlite3_blob_write
sqlite3_busy_handler
sqlite3_busy_timeout
sqlite3_cancel_auto_extension
sqlite3_changes
sqlite3_changes64
sqlite3_clear_bindings
sqlite3_close
sqlite3_close_v2
sqlite3_collation_needed
sqlite3_collation_needed16
sqlite3_column_blob
sqlite3_column_bytes
sqlite3_column_bytes16
sqlite3_column_count
sqlite3_column_database_name
sqlite3_column_database_name16
sqlite3_column_decltype
sqlite3_column_decltype16
sqlite3_column_double
sqlite3_column_int
sqlite3_column_int64
sqlite3_column_name
sqlite3_column_name16
sqlite3_column_origin_name
sqlite3_column_origin_name16
sqlite3_column_table_name
sqlite3_column_table_name16
sqlite3_column_text
sqlite3_column_text16
sqlite3_column_type
sqlite3_column_value
sqlite3_commit_hook
sqlite3_compileoption_get
sqlite3_compileoption_used
sqlite3_complete
sqlite3_complete16
sqlite3_config
sqlite3_context_db_handle
sqlite3_create_collation
sqlite3_create_collation16
sqlite3_create_collation_v2
sqlite3_create_filename
sqlite3_create_function
sqlite3_create_function16
sqlite3_create_function_v2
sqlite3_create_module
sqlite3_create_module_v2
sqlite3_create_window_function
sqlite3_data_count
sqlite3_data_directory
sqlite3_database_file_object
sqlite3_db_cacheflush
sqlite3_db_config
sqlite3_db_filename
sqlite3_db_handle
sqlite3_db_mutex
sqlite3_db_name
sqlite3_db_readonly
sqlite3_db_release_memory
sqlite3_db_status
sqlite3_declare_vtab
sqlite3_deserialize
sqlite3_drop_modules
sqlite3_enable_load_extension
sqlite3_enable_shared_cache
sqlite3_errcode
sqlite3_errmsg
sqlite3_errmsg16
sqlite3_error_offset
sqlite3_errstr
sqlite3_exec
sqlite3_expanded_sql
sqlite3_expired
sqlite3_extended_errcode
sqlite3_extended_result_codes
sqlite3_file_control
sqlite3_filename_database
sqlite3_filename_journal
sqlite3_filename_wal
sqlite3_finalize
sqlite3_free
sqlite3_free_filename
sqlite3_free_table
sqlite3_get_autocommit
sqlite3_get_auxdata
sqlite3_get_table
sqlite3_global_recover
sqlite3_hard_heap_limit64
sqlite3_initialize
sqlite3_interrupt
sqlite3_is_interrupted
sqlite3_keyword_check
sqlite3_keyword_count
sqlite3_keyword_name
sqlite3_last_insert_rowid
sqlite3_libversion
sqlite3_libversion_number
sqlite3_limit
sqlite3_load_extension
sqlite3_log
sqlite3_malloc
sqlite3_malloc64
sqlite3_memory_alarm
sqlite3_memory_highwater
sqlite3_memory_used
sqlite3_mprintf
sqlite3_msize
sqlite3_mutex_alloc
sqlite3_mutex_enter
sqlite3_mutex_free
sqlite3_mutex_leave
sqlite3_mutex_try
sqlite3_next_stmt
sqlite3_open
sqlite3_open16
sqlite3_open_v2
sqlite3_os_end
sqlite3_os_init
sqlite3_overload_function
sqlite3_prepare
sqlite3_prepare16
sqlite3_prepare16_v2
sqlite3_prepare16_v3
sqlite3_prepare_v2
sqlite3_prepare_v3
sqlite3_preupdate_blobwrite
sqlite3_preupdate_count
sqlite3_preupdate_depth
sqlite3_preupdate_hook
sqlite3_preupdate_new
sqlite3_preupdate_old
sqlite3_profile
sqlite3_progress_handler
sqlite3_randomness
sqlite3_realloc
sqlite3_realloc64
sqlite3_release_memory
sqlite3_reset
sqlite3_reset_auto_extension
sqlite3_result_blob
sqlite3_result_blob64
sqlite3_result_double
sqlite3_result_error
sqlite3_result_error16
sqlite3_result_error_code
sqlite3_result_error_nomem
sqlite3_result_error_toobig
sqlite3_result_int
sqlite3_result_int64
sqlite3_result_null
sqlite3_result_pointer
sqlite3_result_subtype
sqlite3_result_text
sqlite3_result_text16
sqlite3_result_text16be
sqlite3_result_text16le
sqlite3_result_text64
sqlite3_result_value
sqlite3_result_zeroblob
sqlite3_result_zeroblob64
sqlite3_rollback_hook
sqlite3_rtree_geometry_callback
sqlite3_rtree_query_callback
sqlite3_serialize
sqlite3_set_authorizer
sqlite3_set_auxdata
sqlite3_set_last_insert_rowid
sqlite3_shutdown
sqlite3_sleep
sqlite3_snprintf
sqlite3_soft_heap_limit
sqlite3_soft_heap_limit64
sqlite3_sourceid
sqlite3_sql
sqlite3_status
sqlite3_status64
sqlite3_step
sqlite3_stmt_busy
sqlite3_stmt_explain
sqlite3_stmt_isexplain
sqlite3_stmt_readonly
sqlite3_stmt_status
sqlite3_str_append
sqlite3_str_appendall
sqlite3_str_appendchar
sqlite3_str_appendf
sqlite3_str_errcode
sqlite3_str_finish
sqlite3_str_length
sqlite3_str_new
sqlite3_str_reset
sqlite3_str_value
sqlite3_str_vappendf
sqlite3_strglob
sqlite3_stricmp
sqlite3_strlike
sqlite3_strnicmp
sqlite3_system_errno
sqlite3_table_column_metadata
sqlite3_temp_directory
sqlite3_test_control
sqlite3_thread_cleanup
sqlite3_threadsafe
sqlite3_total_changes
sqlite3_total_changes64
sqlite3_trace
sqlite3_trace_v2
sqlite3_transfer_bindings
sqlite3_txn_state
sqlite3_update_hook
sqlite3_uri_boolean
sqlite3_uri_int64
sqlite3_uri_key
sqlite3_uri_parameter
sqlite3_user_data
sqlite3_value_blob
sqlite3_value_bytes
sqlite3_value_bytes16
sqlite3_value_double
sqlite3_value_dup
sqlite3_value_encoding
sqlite3_value_free
sqlite3_value_frombind
sqlite3_value_int
sqlite3_value_int64
sqlite3_value_nochange
sqlite3_value_numeric_type
sqlite3_value_pointer
sqlite3_value_subtype
sqlite3_value_text
sqlite3_value_text16
sqlite3_value_text16be
sqlite3_value_text16le
sqlite3_value_type
sqlite3_version
sqlite3_vfs_find
sqlite3_vfs_register
sqlite3_vfs_unregister
sqlite3_vmprintf
sqlite3_vsnprintf
sqlite3_vtab_collation
sqlite3_vtab_config
sqlite3_vtab_distinct
sqlite3_vtab_in
sqlite3_vtab_in_first
sqlite3_vtab_in_next
sqlite3_vtab_nochange
sqlite3_vtab_on_conflict
sqlite3_vtab_rhs_value
sqlite3_wal_autocheckpoint
sqlite3_wal_checkpoint
sqlite3_wal_checkpoint_v2
sqlite3_wal_hook
sqlite3_win32_is_nt
sqlite3_win32_mbcs_to_utf8
sqlite3_win32_mbcs_to_utf8_v2
sqlite3_win32_set_directory
sqlite3_win32_set_directory16
sqlite3_win32_set_directory8
sqlite3_win32_sleep
sqlite3_win32_unicode_to_utf8
sqlite3_win32_utf8_to_mbcs
sqlite3_win32_utf8_to_mbcs_v2
sqlite3_win32_utf8_to_unicode
sqlite3_win32_write_debug
sqlite3changegroup_add
sqlite3changegroup_add_strm
sqlite3changegroup_delete
sqlite3changegroup_new
sqlite3changegroup_output
sqlite3changegroup_output_strm
sqlite3changeset_apply
sqlite3changeset_apply_strm
sqlite3changeset_apply_v2
sqlite3changeset_apply_v2_strm
sqlite3changeset_concat
sqlite3changeset_concat_strm
sqlite3changeset_conflict
sqlite3changeset_finalize
sqlite3changeset_fk_conflicts
sqlite3changeset_invert
sqlite3changeset_invert_strm
sqlite3changeset_new
sqlite3changeset_next
sqlite3changeset_old
sqlite3changeset_op
sqlite3changeset_pk
sqlite3changeset_start
sqlite3changeset_start_strm
sqlite3changeset_start_v2
sqlite3changeset_start_v2_strm
sqlite3rebaser_configure
sqlite3rebaser_create
sqlite3rebaser_delete
sqlite3rebaser_rebase
sqlite3rebaser_rebase_strm
sqlite3session_attach
sqlite3session_changeset
sqlite3session_changeset_size
sqlite3session_changeset_strm
sqlite3session_config
sqlite3session_create
sqlite3session_delete
sqlite3session_diff
sqlite3session_enable
sqlite3session_indirect
sqlite3session_isempty
sqlite3session_memory_used
sqlite3session_object_config
sqlite3session_patchset
sqlite3session_patchset_strm
sqlite3session_table_filter

Sections

.text
Size: 746KB - Virtual size: 746KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 1024B - Virtual size: 803B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
x86/libs/x86/sqlite3-win32.dll:Zone.Identifier:$DATA
x86/libs/x86/zlib1.dll
.dll windows:6 windows x86

b02deace97f4fdefd411c53a370bb300

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

vcruntime140

__std_type_info_destroy_list
memchr
memset
_except_handler4_common
memcpy

api-ms-win-crt-stdio-l1-1-0

_write
_lseeki64
_wopen
_read
_close
_open
__stdio_common_vsprintf

api-ms-win-crt-heap-l1-1-0

malloc
free

api-ms-win-crt-convert-l1-1-0

wcstombs

api-ms-win-crt-runtime-l1-1-0

_errno
strerror
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_cexit

kernel32

SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
UnhandledExceptionFilter

Exports

Exports

adler32
adler32_combine
adler32_z
compress
compress2
compressBound
crc32
crc32_combine
crc32_z
deflate
deflateBound
deflateCopy
deflateEnd
deflateGetDictionary
deflateInit2_
deflateInit_
deflateParams
deflatePending
deflatePrime
deflateReset
deflateResetKeep
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
gzbuffer
gzclearerr
gzclose
gzclose_r
gzclose_w
gzdirect
gzdopen
gzeof
gzerror
gzflush
gzfread
gzfwrite
gzgetc
gzgetc_
gzgets
gzoffset
gzoffset64
gzopen
gzopen64
gzopen_w
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzseek64
gzsetparams
gztell
gztell64
gzungetc
gzvprintf
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCodesUsed
inflateCopy
inflateEnd
inflateGetDictionary
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateResetKeep
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
inflateValidate
uncompress
uncompress2
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6e8f020a037dc6ec75c52398f3536ab

Headers

File Characteristics

Imports

kernel32

oleaut32

user32

ntdll

gdi32

version

shell32

ole32

comctl32

shlwapi

comdlg32

Sections

.text Size: 3.5MB - Virtual size: 3.5MB

.data Size: 182KB - Virtual size: 182KB

.rdata Size: 1.9MB - Virtual size: 1.9MB

.pdata Size: 239KB - Virtual size: 239KB

.bss Size: - Virtual size: 38KB

.CRT Size: 512B - Virtual size: 24B

.idata Size: 17KB - Virtual size: 16KB

.rsrc Size: 475KB - Virtual size: 474KB

c00f9809df391570cfd5bc31b7739739

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

libwinpthread-1

zlib1

Exports

Exports

Sections

.text Size: 784KB - Virtual size: 783KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 606KB - Virtual size: 606KB

.pdata Size: 19KB - Virtual size: 19KB

.xdata Size: 22KB - Virtual size: 22KB

.bss Size: - Virtual size: 5KB

.edata Size: 112KB - Virtual size: 112KB

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 88B

.tls Size: 512B - Virtual size: 16B

.reloc Size: 1024B - Virtual size: 648B

/4 Size: 9KB - Virtual size: 9KB

/19 Size: 1.4MB - Virtual size: 1.4MB

/31 Size: 78KB - Virtual size: 78KB

/45 Size: 496KB - Virtual size: 496KB

/57 Size: 233KB - Virtual size: 233KB

/70 Size: 78KB - Virtual size: 78KB

/81 Size: 1.6MB - Virtual size: 1.6MB

/92 Size: 9KB - Virtual size: 8KB

3ad90f4d80969a4c993fca268c3faef1

Headers

File Characteristics

Imports

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 88KB

.data Size: 512B - Virtual size: 36B

.rdata Size: 9KB - Virtual size: 9KB

/4 Size: 14KB - Virtual size: 13KB

.bss Size: - Virtual size: 172B

.edata Size: 3KB - Virtual size: 2KB

.idata Size: 1KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.reloc Size: 2KB - Virtual size: 2KB

/14 Size: 3KB - Virtual size: 3KB

.text
Size: 3.5MB - Virtual size: 3.5MB

.data
Size: 182KB - Virtual size: 182KB

.rdata
Size: 1.9MB - Virtual size: 1.9MB

.pdata
Size: 239KB - Virtual size: 239KB

.bss
Size: - Virtual size: 38KB

.CRT
Size: 512B - Virtual size: 24B

.idata
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 475KB - Virtual size: 474KB

.text
Size: 784KB - Virtual size: 783KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 606KB - Virtual size: 606KB

.pdata
Size: 19KB - Virtual size: 19KB

.xdata
Size: 22KB - Virtual size: 22KB

.bss
Size: - Virtual size: 5KB

.edata
Size: 112KB - Virtual size: 112KB

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 88B

.tls
Size: 512B - Virtual size: 16B

.reloc
Size: 1024B - Virtual size: 648B

/4
Size: 9KB - Virtual size: 9KB

/19
Size: 1.4MB - Virtual size: 1.4MB

/31
Size: 78KB - Virtual size: 78KB

/45
Size: 496KB - Virtual size: 496KB

/57
Size: 233KB - Virtual size: 233KB

/70
Size: 78KB - Virtual size: 78KB

/81
Size: 1.6MB - Virtual size: 1.6MB

/92
Size: 9KB - Virtual size: 8KB

.text
Size: 88KB - Virtual size: 88KB

.data
Size: 512B - Virtual size: 36B

.rdata
Size: 9KB - Virtual size: 9KB

/4
Size: 14KB - Virtual size: 13KB

.bss
Size: - Virtual size: 172B

.edata
Size: 3KB - Virtual size: 2KB

.idata
Size: 1KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B

.reloc
Size: 2KB - Virtual size: 2KB

/14
Size: 3KB - Virtual size: 3KB

/29
Size: 519KB - Virtual size: 518KB

/41
Size: 45KB - Virtual size: 44KB

/55
Size: 101KB - Virtual size: 100KB

/67
Size: 512B - Virtual size: 100B

/80
Size: 4KB - Virtual size: 4KB

/91
Size: 136KB - Virtual size: 135KB

/102
Size: 16KB - Virtual size: 16KB

.text
Size: 33KB - Virtual size: 33KB

.data
Size: 512B - Virtual size: 192B

.rdata
Size: 3KB - Virtual size: 2KB

.pdata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 2KB - Virtual size: 2KB

.bss
Size: - Virtual size: 400B

.edata
Size: 4KB - Virtual size: 4KB

.idata
Size: 3KB - Virtual size: 2KB

.CRT
Size: 512B - Virtual size: 96B

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 96B

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 356KB - Virtual size: 355KB

.data
Size: 33KB - Virtual size: 43KB

.pdata
Size: 98KB - Virtual size: 97KB

.idata
Size: 6KB - Virtual size: 5KB

.00cfg
Size: 512B - Virtual size: 373B

_RDATA
Size: 1024B - Virtual size: 671B

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 14KB - Virtual size: 13KB

.text
Size: 77KB - Virtual size: 77KB

.data
Size: 512B - Virtual size: 160B

.rdata
Size: 21KB - Virtual size: 21KB

.pdata
Size: 3KB - Virtual size: 2KB

.xdata
Size: 2KB - Virtual size: 2KB

.bss
Size: - Virtual size: 2KB

.edata
Size: 2KB - Virtual size: 2KB

.idata
Size: 2KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 88B

.tls
Size: 512B - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 176B