22bf82fda566390a763a3289f4682818add5749d0fad0ef1d76ffe2e5322310b[.]zip[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

22bf82fda566390a763a3289f4682818add5749d0fad0ef1d76ffe2e5322310b.zip.zip
Size

6.8MB
MD5

9f06a000f4c9f07b64a33b01acc63ea8
SHA1

a4395ee060c507f0291c24327729d62e776abc20
SHA256

bd539d693a56e03833ae875d9fe0c28af63560809116d33062920719aaac121c
SHA512

0fa2a395ad31fcbfe83f856b3a134021bdeac4b860445c77e1727ca0968fc8bb0cfb19a9a0d5964d9320feaeea707535062a3c9017f95cbd63c265a0d42a8166
SSDEEP

196608:4Pv9jpbJicvXq3Y+fYttN0kfRNaXlaP0IXeketd0x1YMy/2:4H1pNuY+fYttLJCAXebAX

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack002/bin/7z.exe	upx

Unsigned PE 25 IoCs

Checks for missing Authenticode signature.

resource
unpack002/bin/7z.exe
unpack003/out.upx
unpack002/bin/iconv.dll
unpack002/bin/ispmgr.exe
unpack002/bin/libeay32.dll
unpack002/bin/libidn-11.dll
unpack002/bin/libmgr.dll
unpack002/bin/libmysql.dll
unpack002/bin/libxml2.dll
unpack002/bin/libxslt.dll
unpack002/bin/md5sum.exe
unpack002/bin/mgrctl.exe
unpack002/bin/openssl.exe
unpack002/bin/pthreadGC2.dll
unpack002/bin/ssleay32.dll
unpack002/bin/xmlcache.exe
unpack002/bin/xmlinstall.exe
unpack002/bin/zlib1.dll
unpack002/cgi/iismgr.exe
unpack002/var/addon/7-zip32.dll
unpack002/var/addon/filemgr.exe
unpack002/var/addon/iconv.dll
unpack002/var/addon/libidn-11.dll
unpack002/var/addon/libxml2.dll
unpack002/var/addon/zlib1.dll

Files

22bf82fda566390a763a3289f4682818add5749d0fad0ef1d76ffe2e5322310b.zip.zip
.zip

Password: infected
22bf82fda566390a763a3289f4682818add5749d0fad0ef1d76ffe2e5322310b.zip
.zip
bin/!inst.bat
bin/!inst_upd.bat
bin/7-zip.COPYING
bin/7z.exe
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 328KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 229KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 438KB - Virtual size: 437KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 808B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bin/fciv.exe
.exe windows:4 windows x86

27d678ab7f59de9d3b9c7dc6b25d4f62

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:0e:7d:a7:00:00:00:00:00:48
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/10/2003, 05:59

Not After

25/01/2005, 06:09

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ed:ee:70:88:a6:13:ca:0b:b5:fd:24:9d:c4:a9:f8:ec:02:56:b4:12
Signer

Actual PE Digest

ed:ee:70:88:a6:13:ca:0b:b5:fd:24:9d:c4:a9:f8:ec:02:56:b4:12

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
FindClose
FindNextFileA
lstrcmpiA
FindFirstFileA
GetFileAttributesA
GetModuleFileNameA
GetModuleHandleA
GetLocalTime
FormatMessageA
CreateFileMappingA
lstrlenA
SetFilePointer
GetACP
GetLocaleInfoA
GetVersionExA
GetSystemInfo
VirtualProtect
MapViewOfFile
UnmapViewOfFile
ReadFile
GetLastError
GetCurrentDirectoryA
InterlockedDecrement
InterlockedIncrement
LocalAlloc
CreateFileA
WriteFile
CloseHandle
WideCharToMultiByte
LocalFree
SetStdHandle
LCMapStringW
LCMapStringA
FlushFileBuffers
VirtualQuery
GetCPInfo
GetOEMCP
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
LoadLibraryA
MultiByteToWideChar
ExitProcess
RtlUnwind
RaiseException
GetCommandLineA
HeapFree
HeapAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
HeapReAlloc
GetProcAddress
TerminateProcess
GetCurrentProcess
HeapSize
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr

user32

wsprintfA

advapi32

ReportEventA
DeregisterEventSource
RegCreateKeyA
RegSetValueExA
RegCloseKey
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptDestroyHash
CryptReleaseContext
CryptAcquireContextA
RegisterEventSourceA

ole32

CoUninitialize
OleRun
CoCreateInstance
CoInitialize

oleaut32

SysStringLen
VariantClear
VariantInit
VariantCopy
SysFreeString
SysStringByteLen
GetErrorInfo
SysAllocString
SysAllocStringByteLen

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bin/iconv.COPYING
bin/iconv.dll
.dll windows:4 windows x86

2fecad82d36d88ec85ac574c16ce0ddd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

malloc
memcmp
free
qsort
strlen
sprintf
memcpy
strcmp
_initterm
_adjust_fdiv
memset
_errno
strchr
abort
_strdup

kernel32

GetModuleFileNameA
GetACP
Sleep

Exports

Exports

_libiconv_version
libiconv
libiconv_close
libiconv_open
libiconv_set_relocation_prefix
libiconvctl
libiconvlist
locale_charset

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 800KB - Virtual size: 799KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/ispmgr.exe
.exe windows:4 windows x86

afab8d2677baf01e8cbb4b10e7e00537

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

LogonUserW
CloseServiceHandle
SetNamedSecurityInfoW
OpenSCManagerW
OpenServiceW
ChangeServiceConfigW
GetNamedSecurityInfoW
SetEntriesInAclW
GetSecurityDescriptorOwner
GetSecurityDescriptorGroup
GetSecurityDescriptorDacl
GetAclInformation
GetAce
SetServiceStatus
StartServiceCtrlDispatcherW
RegisterServiceCtrlHandlerW
RegCloseKey
RegConnectRegistryW
RegOpenKeyExW
RegQueryValueExW
IsValidSid
ConvertSidToStringSidW
LookupAccountSidW
LookupAccountNameW
GetLengthSid
CopySid
AllocateAndInitializeSid
FreeSid
ConvertStringSidToSidW
CreateWellKnownSid
GetTokenInformation
QueryServiceConfig2W
QueryServiceStatusEx
ControlService
QueryServiceConfigW
DeleteService
StartServiceW
CreateServiceW
ChangeServiceConfig2W
EnumServicesStatusW
CredWriteW
CredDeleteW
CredReadW
CredProtectW
CredUnprotectW
LsaOpenPolicy
LsaNtStatusToWinError
LsaAddAccountRights
LsaClose
LsaRemoveAccountRights
CryptAcquireContextW
CryptGenKey
CryptDestroyKey
CryptReleaseContext
IsValidSecurityDescriptor
GetSecurityDescriptorControl
GetSecurityDescriptorLength
MakeSelfRelativeSD
ConvertSecurityDescriptorToStringSecurityDescriptorW
ConvertStringSecurityDescriptorToSecurityDescriptorW
MakeAbsoluteSD
InitializeSecurityDescriptor
SetSecurityInfo
GetSecurityInfo
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
InitializeAcl
AddAccessAllowedAce
IsValidAcl
SetSecurityDescriptorDacl
AddAccessDeniedAce
CreateProcessAsUserW
CreateProcessWithLogonW
ImpersonateLoggedOnUser
DeleteAce
IsTextUnicode
PrivilegeCheck
LookupPrivilegeValueW
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeDisplayNameW
GetUserNameW

httpapi

HttpTerminate
HttpInitialize
HttpQueryServiceConfiguration
HttpSetServiceConfiguration
HttpDeleteServiceConfiguration

libidn-11

idna_to_ascii_8z
idna_to_unicode_8z8z

libmysql

mysql_close
mysql_data_seek
mysql_errno
mysql_error
mysql_fetch_fields
mysql_fetch_row
mysql_field_count
mysql_free_result
mysql_init
mysql_insert_id
mysql_list_dbs
mysql_num_fields
mysql_query
mysql_real_connect
mysql_real_escape_string
mysql_select_db
mysql_store_result
mysql_use_result

zlib1

gzclose
gzdopen
gzwrite

libxslt

xsltApplyStylesheet
xsltFreeStylesheet
xsltParseStylesheetFile
xsltRegisterExtModuleFunction
xsltSaveResultToString

libxml2

valuePop
valuePush
xmlAddChild
xmlCheckUTF8
xmlCopyDoc
xmlCopyNode
xmlDocDumpFormatMemory
xmlDocDumpMemory
xmlDocGetRootElement
xmlDocSetRootElement
xmlFree
xmlFreeDoc
xmlFreeNode
xmlGetLastError
xmlGetProp
xmlGetUTF8Char
xmlHasProp
xmlNewChild
xmlNewDoc
xmlNewNode
xmlNewText
xmlNodeGetContent
xmlNodeSetContent
xmlNodeSetName
xmlParseDoc
xmlParseFile
xmlParseMemory
xmlSaveFile
xmlSchemaFree
xmlSchemaFreeParserCtxt
xmlSchemaFreeValidCtxt
xmlSchemaNewMemParserCtxt
xmlSchemaNewParserCtxt
xmlSchemaNewValidCtxt
xmlSchemaParse
xmlSchemaSetParserStructuredErrors
xmlSchemaSetValidStructuredErrors
xmlSchemaValidateDoc
xmlSetProp
xmlUnlinkNode
xmlUnsetProp
xmlXPathEvalExpression
xmlXPathFreeContext
xmlXPathFreeObject
xmlXPathNewCString
xmlXPathNewContext
xmlXPathNewFloat
xmlXPathPopString
xmlXPathRegisterNs
xmlXPatherror

pthreadgc2

pthread_getspecific
pthread_key_create
pthread_key_delete
pthread_setspecific

crypt32

CertAddCertificateContextToStore
CertAddEnhancedKeyUsageIdentifier
CertCloseStore
CertCreateSelfSignCertificate
CertDeleteCertificateFromStore
CertDuplicateCertificateContext
CertEnumCertificatesInStore
CertFreeCertificateContext
CertGetCertificateContextProperty
CertGetNameStringW
CertOpenStore
CertSetCertificateContextProperty
CertStrToNameW
CryptBinaryToStringA
CryptBinaryToStringW
CryptStringToBinaryA
CryptStringToBinaryW
PFXExportCertStoreEx
PFXImportCertStore
PFXIsPFXBlob

kernel32

AssignProcessToJobObject
CloseHandle
CompareStringW
CopyFileW
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreateJobObjectW
CreateMutexW
CreatePipe
CreateProcessA
CreateProcessW
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileW
DeviceIoControl
DuplicateHandle
EnterCriticalSection
ExpandEnvironmentStringsW
FileTimeToSystemTime
FindClose
FindFirstFileW
FindFirstVolumeW
FindNextFileW
FindNextVolumeW
FindVolumeClose
FormatMessageW
FreeLibrary
GetComputerNameExW
GetConsoleScreenBufferInfo
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDiskFreeSpaceExW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetLastError
GetLogicalDriveStringsW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetNativeSystemInfo
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetTempFileNameW
GetTickCount
GetTimeZoneInformation
GetVersionExW
GetVolumeInformationW
GetVolumePathNamesForVolumeNameW
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
LockFile
MapViewOfFile
MoveFileExW
MultiByteToWideChar
PeekNamedPipe
QueryDosDeviceW
QueryPerformanceCounter
ReadFile
ReleaseMutex
ReleaseSemaphore
RemoveDirectoryW
ResumeThread
SetConsoleTextAttribute
SetCurrentDirectoryW
SetEndOfFile
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetFilePointerEx
SetHandleInformation
SetInformationJobObject
SetLastError
SetUnhandledExceptionFilter
Sleep
SystemTimeToTzSpecificLocalTime
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
lstrcpynW
lstrlenW

msvcrt

_close
_dup2
_fdopen
_fileno
_getpid
_mkdir
_open
_read
_rmdir
_strdup
_unlink
_write
___lc_codepage_func
__argv
__dllonexit
__doserrno
__getmainargs
__initenv
__lconv_init
__mb_cur_max
__pioinfo
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_atoi64
_cexit
_chsize
_environ
_errno
_exit
_filelengthi64
_fileno
_findclose
_findfirst
_findnext
_fmode
_fstat
_fstat64
_fullpath
_i64toa
_i64tow
_initterm
_iob
_itow
_lock
_lseeki64
_onexit
_setmode
_snwprintf
_stat
_stricmp
_strnicmp
_unlock
_vsnprintf
_vsnwprintf
_write
_wtof
_wtoi
_wtol
abort
atof
atoi
calloc
ctime
exit
fclose
feof
ferror
fflush
fgetc
fgetpos
fgets
fopen
fprintf
fputc
fputs
fread
free
fseek
fsetpos
ftell
fwrite
getc
getenv
getwc
isalnum
isalpha
isspace
iswctype
iswdigit
localeconv
localtime
malloc
memchr
memcmp
memcpy
memmove
memset
mktime
printf
putc
puts
putwc
qsort
raise
rand
realloc
remove
rename
setlocale
setvbuf
signal
sprintf
srand
strchr
strcmp
strcoll
strcpy
strerror
strftime
strlen
strncmp
strncpy
strrchr
strtod
strtok
strtol
strtoul
strxfrm
time
tolower
toupper
towlower
towupper
ungetc
ungetwc
vfprintf
vprintf
wcschr
wcscoll
wcscpy
wcsftime
wcslen
wcsncat
wcsncmp
wcsncpy
wcsrchr
wcstoul
wcsxfrm

netapi32

NetApiBufferFree
NetLocalGroupAdd
NetLocalGroupAddMembers
NetLocalGroupDel
NetLocalGroupDelMembers
NetLocalGroupEnum
NetLocalGroupGetInfo
NetLocalGroupGetMembers
NetLocalGroupSetInfo
NetUserAdd
NetUserDel
NetUserEnum
NetUserGetInfo
NetUserGetLocalGroups
NetUserSetInfo

odbc32

SQLAllocHandle
SQLCloseCursor
SQLConnectW
SQLDescribeColW
SQLDisconnect
SQLDriverConnectW
SQLDriversW
SQLExecDirectW
SQLFetch
SQLFreeHandle
SQLGetData
SQLGetDiagRecW
SQLGetInfoW
SQLNumResultCols
SQLRowCount
SQLSetConnectAttrW
SQLSetEnvAttr
SQLSetStmtAttrW
SQLTablesW

ole32

CoCreateGuid
CoCreateInstance
CoInitializeEx
CoInitializeSecurity
CoTaskMemFree
CoUninitialize
StringFromGUID2

oleaut32

SysAllocString
SysFreeString
VariantChangeType
VariantClear
VariantInit

shell32

SHCreateDirectoryExW
SHFileOperationW
SHGetSpecialFolderPathW

shlwapi

PathCanonicalizeW
PathIsDirectoryEmptyW
PathUnExpandEnvStringsW

user32

CharLowerW
CharUpperW
MessageBoxA

wininet

HttpOpenRequestA
HttpQueryInfoW
HttpSendRequestW
InternetCloseHandle
InternetConnectA
InternetOpenA
InternetQueryOptionW
InternetReadFile
InternetSetOptionW

wsock32

WSACleanup
WSAGetLastError
WSAStartup
__WSAFDIsSet
accept
bind
closesocket
connect
gethostbyname
gethostname
htonl
htons
inet_addr
inet_ntoa
listen
ntohs
recv
select
send
setsockopt
shutdown
socket

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bin/libeay32.dll
.dll windows:4 windows x86

4df87f510b02928c902201c28885ce6b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

recvfrom
sendto
bind
listen
accept
ntohl
inet_ntoa
WSACancelBlockingCall
WSACleanup
WSAStartup
gethostbyname
getsockopt
getservbyname
ntohs
htons
htonl
socket
setsockopt
connect
send
WSASetLastError
recv
WSAGetLastError
shutdown
closesocket

gdi32

CreateCompatibleDC
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
GetObjectA
BitBlt
GetBitmapBits
DeleteObject
DeleteDC
CreateDCA

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

user32

MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW

kernel32

FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
CreateFileA
InitializeCriticalSection
GetEnvironmentStringsW
LCMapStringA
GetCurrentDirectoryA
GetFullPathNameA
RtlUnwind
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
CompareStringA
SetEnvironmentVariableA
CompareStringW
SetEndOfFile
LCMapStringW
GetSystemTimeAsFileTime
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
ExitProcess
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
GetLastError
GetVersion
GetFileType
GetStdHandle
GetCurrentThread
GetThreadTimes
FindNextFileA
FindFirstFileA
FindClose
FreeLibrary
LoadLibraryA
SetLastError
GetTickCount
QueryPerformanceCounter
GetCurrentProcessId
GlobalMemoryStatus
CloseHandle
GetVersionExA
FlushConsoleInputBuffer
EnterCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapFree
HeapReAlloc
HeapAlloc
MultiByteToWideChar
ReadFile
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
SetFileAttributesA
GetFileAttributesA
SetConsoleCtrlHandler
ReadConsoleInputA
SetConsoleMode
GetCommandLineA
GetProcessHeap
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
DeleteCriticalSection
SetHandleCount
GetStartupInfoA
Sleep
GetModuleFileNameA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapSize
GetTimeZoneInformation
SetFilePointer

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_cfbr_encrypt_block
AES_ctr128_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ige_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_wrap_key
ASN1_ANY_it
ASN1_BIT_STRING_asn1_meth
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_HEADER_free
ASN1_HEADER_new
ASN1_IA5STRING_asn1_meth
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SEQUENCE_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_cmp
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_encode
ASN1_STRING_free
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_check
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_to_generalizedtime
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_sign
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_pack_string
ASN1_parse
ASN1_parse_dump
ASN1_primitive_free
ASN1_primitive_new
ASN1_put_eoc
ASN1_put_object
ASN1_seq_pack
ASN1_seq_unpack
ASN1_sign
ASN1_tag2bit
ASN1_tag2str
ASN1_template_d2i
ASN1_template_free
ASN1_template_i2d
ASN1_template_new
ASN1_unpack_string
ASN1_verify
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_accept
BIO_callback_ctrl
BIO_clear_flags
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_callback
BIO_get_callback_arg
BIO_get_ex_data
BIO_get_ex_new_index
BIO_get_host_ip
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_gethostbyname
BIO_gets
BIO_indent
BIO_int_ctrl
BIO_method_name
BIO_method_type
BIO_new
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_socket
BIO_set
BIO_set_callback
BIO_set_callback_arg
BIO_set_cipher
BIO_set_ex_data
BIO_set_flags
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_cleanup
BIO_sock_error
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket_ioctl
BIO_socket_nbio
BIO_test_flags
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_get_thread_id
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_new
BN_BLINDING_set_flags
BN_BLINDING_set_thread_id
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_init
BN_CTX_new
BN_CTX_start
BN_GENCB_call
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_init
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_init
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_X931_derive_prime_ex
BN_X931_generate_Xpq
BN_X931_generate_prime_ex
BN_add
BN_add_word
BN_bin2bn
BN_bn2bin
BN_bn2dec
BN_bn2hex
BN_bn2mpi
BN_bntest_rand
BN_clear
BN_clear_bit
BN_clear_free
BN_cmp
BN_copy
BN_dec2bn
BN_div
BN_div_recp
BN_div_word
BN_dup
BN_exp
BN_free
BN_from_montgomery
BN_gcd
BN_generate_prime
BN_generate_prime_ex
BN_get0_nist_prime_192
BN_get0_nist_prime_224
BN_get0_nist_prime_256
BN_get0_nist_prime_384
BN_get0_nist_prime_521
BN_get_params
BN_get_word
BN_hex2bn
BN_init
BN_is_bit_set
BN_is_prime
BN_is_prime_ex
BN_is_prime_fasttest
BN_is_prime_fasttest_ex
BN_kronecker
BN_lshift
BN_lshift1
BN_mask_bits
BN_mod_add
BN_mod_add_quick
BN_mod_exp
BN_mod_exp2_mont
BN_mod_exp_mont
BN_mod_exp_mont_consttime
BN_mod_exp_mont_word
BN_mod_exp_recp
BN_mod_exp_simple
BN_mod_inverse
BN_mod_lshift
BN_mod_lshift1
BN_mod_lshift1_quick
BN_mod_lshift_quick
BN_mod_mul
BN_mod_mul_montgomery
BN_mod_mul_reciprocal
BN_mod_sqr
BN_mod_sqrt
BN_mod_sub
BN_mod_sub_quick
BN_mod_word
BN_mpi2bn
BN_mul
BN_mul_word
BN_new
BN_nist_mod_192
BN_nist_mod_224
BN_nist_mod_256
BN_nist_mod_384
BN_nist_mod_521
BN_nnmod
BN_num_bits
BN_num_bits_word
BN_options
BN_print
BN_print_fp
BN_pseudo_rand
BN_pseudo_rand_range
BN_rand
BN_rand_range
BN_reciprocal
BN_rshift
BN_rshift1
BN_set_bit
BN_set_negative
BN_set_params
BN_set_word
BN_sqr
BN_sub
BN_sub_word
BN_swap
BN_to_ASN1_ENUMERATED
BN_to_ASN1_INTEGER
BN_uadd
BN_ucmp
BN_usub
BN_value_one
BUF_MEM_free
BUF_MEM_grow
BUF_MEM_grow_clean
BUF_MEM_new
BUF_memdup
BUF_strdup
BUF_strlcat
BUF_strlcpy
BUF_strndup
CAST_cbc_encrypt
CAST_cfb64_encrypt
CAST_decrypt
CAST_ecb_encrypt
CAST_encrypt
CAST_ofb64_encrypt
CAST_set_key
CBIGNUM_it
CERTIFICATEPOLICIES_free
CERTIFICATEPOLICIES_it
CERTIFICATEPOLICIES_new
COMP_CTX_free
COMP_CTX_new
COMP_compress_block
COMP_expand_block
COMP_rle
COMP_zlib
COMP_zlib_cleanup
CONF_dump_bio
CONF_dump_fp
CONF_free
CONF_get1_default_config_file
CONF_get_number

Sections

.text
Size: 720KB - Virtual size: 718KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256KB - Virtual size: 255KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/libidn-11.dll
.dll windows:4 windows x86

61e67c3ba7cad886c84e3a1693d45d3e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

_strdup
__dllonexit
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
_unlock
abort
calloc
free
fwrite
getenv
malloc
memcpy
memmove
realloc
strcat
strcmp
strcpy
strlen
vfprintf

Exports

Exports

idn_free
idna_strerror
idna_to_ascii_4i
idna_to_ascii_4z
idna_to_ascii_8z
idna_to_ascii_lz
idna_to_unicode_44i
idna_to_unicode_4z4z
idna_to_unicode_8z4z
idna_to_unicode_8z8z
idna_to_unicode_8zlz
idna_to_unicode_lzlz
pr29_4
pr29_4z
pr29_8z
pr29_strerror
punycode_decode
punycode_encode
punycode_strerror
stringprep
stringprep_4i
stringprep_4zi
stringprep_check_version
stringprep_convert
stringprep_iscsi
stringprep_iscsi_prohibit
stringprep_kerberos5
stringprep_locale_charset
stringprep_locale_to_utf8
stringprep_nameprep
stringprep_plain
stringprep_profile
stringprep_profiles
stringprep_rfc3454_A_1
stringprep_rfc3454_B_1
stringprep_rfc3454_B_2
stringprep_rfc3454_B_3
stringprep_rfc3454_C_1_1
stringprep_rfc3454_C_1_2
stringprep_rfc3454_C_2_1
stringprep_rfc3454_C_2_2
stringprep_rfc3454_C_3
stringprep_rfc3454_C_4
stringprep_rfc3454_C_5
stringprep_rfc3454_C_6
stringprep_rfc3454_C_7
stringprep_rfc3454_C_8
stringprep_rfc3454_C_9
stringprep_rfc3454_D_1
stringprep_rfc3454_D_2
stringprep_saslprep
stringprep_saslprep_space_map
stringprep_strerror
stringprep_trace
stringprep_ucs4_nfkc_normalize
stringprep_ucs4_to_utf8
stringprep_unichar_to_utf8
stringprep_utf8_nfkc_normalize
stringprep_utf8_to_locale
stringprep_utf8_to_ucs4
stringprep_utf8_to_unichar
stringprep_xmpp_nodeprep
stringprep_xmpp_nodeprep_prohibit
stringprep_xmpp_resourceprep
tld_check_4
tld_check_4t
tld_check_4tz
tld_check_4z
tld_check_8z
tld_check_lz
tld_default_table
tld_get_4
tld_get_4z
tld_get_table
tld_get_z
tld_strerror

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 964B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/35
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/51
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/63
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/77
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/113
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/124
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/libmgr.dll
.dll windows:4 windows x86

c5bf56fc14bee783dd20366babe45814

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

advapi32

CreateProcessAsUserW
CreateProcessWithLogonW
LogonUserW
ImpersonateLoggedOnUser

libidn-11

idna_to_ascii_8z
idna_to_unicode_8z8z

pthreadgc2

pthread_getspecific
pthread_key_create
pthread_key_delete
pthread_setspecific

libxml2

xmlAddChild
xmlCheckUTF8
xmlCopyDoc
xmlCopyNode
xmlDocDumpFormatMemory
xmlDocGetRootElement
xmlDocSetRootElement
xmlFree
xmlFreeDoc
xmlFreeNode
xmlGetLastError
xmlGetProp
xmlGetUTF8Char
xmlNewChild
xmlNewDoc
xmlNewNode
xmlNodeGetContent
xmlNodeSetContent
xmlParseFile
xmlParseMemory
xmlSaveFile
xmlSchemaFree
xmlSchemaFreeParserCtxt
xmlSchemaFreeValidCtxt
xmlSchemaNewMemParserCtxt
xmlSchemaNewParserCtxt
xmlSchemaNewValidCtxt
xmlSchemaParse
xmlSchemaSetParserStructuredErrors
xmlSchemaSetValidStructuredErrors
xmlSchemaValidateDoc
xmlSetProp
xmlUnlinkNode
xmlXPathEvalExpression
xmlXPathFreeContext
xmlXPathFreeObject
xmlXPathNewContext
xmlXPathRegisterNs

kernel32

AssignProcessToJobObject
CloseHandle
CreateFileA
CreateFileW
CreateJobObjectW
CreatePipe
CreateProcessA
CreateProcessW
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFileW
EnterCriticalSection
ExpandEnvironmentStringsW
FormatMessageW
FreeLibrary
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesW
GetFileSizeEx
GetLastError
GetLogicalDriveStringsW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStdHandle
GetSystemTimeAsFileTime
GetTempFileNameW
GetTickCount
GetTimeZoneInformation
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LocalFree
LockFile
MoveFileExW
MultiByteToWideChar
PeekNamedPipe
QueryPerformanceCounter
ReadFile
ReleaseSemaphore
RemoveDirectoryW
ResumeThread
SetCurrentDirectoryW
SetEndOfFile
SetFileAttributesW
SetFilePointerEx
SetHandleInformation
SetInformationJobObject
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

_close
_fdopen
_fileno
_getpid
_mkdir
_open
_read
_rmdir
_strdup
_unlink
_write
___lc_codepage_func
__dllonexit
__doserrno
__mb_cur_max
__pioinfo
_amsg_exit
_errno
_filelengthi64
_fileno
_findclose
_findfirst
_findnext
_fstat
_fstat64
_fullpath
_i64tow
_initterm
_iob
_lock
_lseeki64
_onexit
_setmode
_stat
_strnicmp
_unlock
_vsnprintf
_write
abort
atoi
calloc
ctime
exit
fclose
fflush
fgetpos
fopen
fprintf
fputc
fputs
fread
free
fsetpos
fwrite
getc
getenv
getwc
isspace
iswctype
localeconv
localtime
malloc
memchr
memcpy
memmove
memset
mktime
putc
puts
putwc
rand
realloc
rename
setlocale
setvbuf
sprintf
srand
strcmp
strcoll
strcpy
strerror
strftime
strlen
strrchr
strtod
strtoul
strxfrm
time
tolower
toupper
towlower
towupper
ungetc
ungetwc
vfprintf
wcschr
wcscoll
wcsftime
wcslen
wcsncat
wcsrchr
wcsxfrm

shell32

SHCreateDirectoryExW
SHFileOperationW
SHGetSpecialFolderPathW

shlwapi

PathCanonicalizeW
PathIsDirectoryEmptyW
PathUnExpandEnvStringsW

wininet

HttpOpenRequestA
HttpQueryInfoW
HttpSendRequestW
InternetCloseHandle
InternetConnectA
InternetOpenA
InternetQueryOptionW
InternetReadFile
InternetSetOptionW

ws2_32

WSACleanup
WSAStartup
connect
htons
inet_addr
recv
send
socket

Exports

Exports

DebugFile
ErrorCallBack
IsCentos
IsFedora11
IsUbuntu
LogLevel
METHOD
MemDebugFlag
MgrAuthId
RpcDebugFlag
RpcTimeOut
Way
_Z10ConcatPathRKSsS0_b
_Z10CopyFolderRKSsS0_
_Z10FileCreatePKwS0_PKc
_Z10FileExistsRKSs
_Z10GetSubNodeP8_xmlNodePKc
_Z10GetWorkDirv
_Z10IsPathUnixPKw
_Z10IsPathUnixRK7AutoUTF
_Z10RemoteCallRKSsS0_
_Z10SetWorkDirSsi
_Z10create_dirPKwP20_SECURITY_ATTRIBUTES
_Z10delete_dirPKw
_Z10mgrExecStrPKcRKSs
_Z10mgrExecXmlPKcz
_Z10mgrGetPathRKSs
_Z11ExtractFilePKww
_Z11ExtractFileRK7AutoUTFw
_Z11ExtractPathPKww
_Z11ExtractPathRK7AutoUTFw
_Z11FetchStringRKSs
_Z11FileModTimeRKSs
_Z11GetFullPathRKSs
_Z11GetInputXmlv
_Z11GetMemUsageRjS_PKc
_Z11GetNodePropP8_xmlNodePKc
_Z11SetLogColorb
_Z11SubStrCountRKSsS0_
_Z11SystemInOutRKSsS0_RSs
_Z11delete_filePKw
_Z11file_existsPKw
_Z11mgrExecListPKcS0_St4listISsSaISsEE
_Z11mgrExecTextPKcz
_Z12BeginLogLinejPKci
_Z12CanonicalizePKw
_Z12CheckRunningRKSs
_Z12ConfGetValueRKSsS0_
_Z12ConfSetValueRKSsS0_S0_
_Z12EscapeDBNameSs
_Z12MakeGoodPathRSs
_Z12RemoveStringRKSsS0_
_Z12XPathPrepareRSs
_Z12convertToDecPKc
_Z12dir_is_emptyPKw
_Z12is_path_maskPKw
_Z13ConfDropValueRKSsS0_
_Z13CopyNotExistsRKSsS0_
_Z13EscapeCommandSs
_Z13FetchCallBackSsP12CurlCallBack
_Z13InitMgrClientRKSsS0_
_Z13SendOutputXmlR3xml
_Z13StrToTranslitRKSs
_Z13getquotedwordRSsRKSs
_Z13processExistsPKc
_Z13xmlRemoteCallRKSs
_Z14CompileCommandPKcbz
_Z14GetNodeContentP8_xmlNode
_Z14GetSpecialPathib
_Z14PunycodeDecodeRKSs
_Z14PunycodeEncodeRKSs
_Z14RemoveBadCharsRKSsSs
_Z14UnescapeDBNameSs
_Z14delete_recyclePKw
_Z15ReplaceBadCharsRKSsS0_Ss
_Z16GetWorkDirectoryv
_Z16ReadSimpleConfigRKSsRSt3mapISsSsSt4lessISsESaISt4pairIS_SsEEESs
_Z16SetWorkDirectoryPKw
_Z16ensure_dir_existPKw
_Z17CommandExecutableSs
_Z17GetSubNodeContentP8_xmlNodePKc
_Z17WriteSimpleConfigRKSsRSt3mapISsSsSt4lessISsESaISt4pairIS_SsEEESs
_Z17XPathItemValidateRKSs
_Z18ensure_path_prefixRK7AutoUTFPKw
_Z18get_path_from_maskRK7AutoUTF
_Z18remove_path_prefixRK7AutoUTFPKw
_Z18toHumanReadableFmtl
_Z19AddStringInPositionRKSsS0_S0_b
_Z3Strdi
_Z3Strx
_Z4CopyRKSsS0_
_Z4FindPKww
_Z4Lockib
_Z4to64Pcli
_Z5CryptSsPKc
_Z5chownPKcii
_Z5cryptPKcS0_
_Z5mkdirPKct
_Z5pwgenv
_Z6DoubleRKSs
_Z6ExpandPKw
_Z6SecurePKw
_Z6SecureRK7AutoUTF
_Z6SystemRKSs
_Z6UnLocki
_Z6fchmodii
_Z6fchowniii
_Z6is_dirPKw
_Z7AllTrimRSs
_Z7CompareRKSsS0_
_Z7DirnameRKSs
_Z7DoFetchSs
_Z7InitLogPKcb
_Z7InitWayv
_Z7LogLinePKcz
_Z7MgrEditRKSsS0_
_Z7MgrExecRKSs
_Z7MgrExecRKSsb
_Z7PathWinPKw
_Z7PathWinRK7AutoUTF
_Z7ReplaceRKSsS0_Ss
_Z7ReplaceRSt3mapISsSsSt4lessISsESaISt4pairIKSsSsEEESs
_Z7TryLockRKSs
_Z7getwordRSsRKSs
_Z7getwordRSsc
_Z7is_filePKw
_Z7mgrEditPKcS0_z
_Z7mgrExecPKcS0_z
_Z7mgrExitv
_Z7mgrtimev
_Z8BasenameRKSs
_Z8CloseLogv
_Z8FileWipePKw
_Z8GetErrorv
_Z8LeftTrimRSs
_Z8LeftTrimRSsc
_Z8PathUnixPKw
_Z8PathUnixRK7AutoUTF
_Z8QueryXmlRKSs
_Z8ReadFileRKSs
_Z8ReadLinkRKSs
_Z8RealPathRKSs
_Z8SetToStrRKSt3setISsSt4lessISsESaISsEESs
_Z8SlashDelPKw
_Z8SlashDelRK7AutoUTF
_Z8StrToSetRKSsRSt3setISsSt4lessISsESaISsEESs
_Z8SystemExRKSsS0_RSsbiiS0_
_Z8SystemInRKSsS0_
_Z8UnExpandPKw
_Z8UnExpandRK7AutoUTF
_Z8ValidatePKw
_Z8ValidateRK7AutoUTF
_Z8getAsDecPc
_Z8mgrExecvPKcS0_Pc
_Z8rgetwordRSsRKSs
_Z8rgetwordRSsc
_Z8sysSleepi
_Z9CreateDirRKSsiii
_Z9DecodeURLRKSs
_Z9EscapeURLRKSs
_Z9FetchFileSsSs
_Z9FileWritePKwPKvjb
_Z9GetDrivesv
_Z9ListToStrRKSt4listISsSaISsEESs
_Z9RemoveDirRKSs
_Z9RightTrimRSs
_Z9RightTrimRSsc
_Z9StrToListRKSsRSt4listISsSaISsEESs
_Z9SystemOutRKSsRSs
_Z9WriteFileRKSsS0_
_Z9XMLEscapeRSs
_Z9delete_shPKw
_Z9interruptb
_Z9read_filePKwRSs
_ZGVZN8WSockLib4InitEvE4init
_ZN10BadElementC1EPKcSs
_ZN10BadElementC2EPKcSs
_ZN10LimitErrorC1EPKc
_ZN10LimitErrorC2EPKc
_ZN10MoneyErrorC1Ev
_ZN10MoneyErrorC2Ev
_ZN10ValueErrorC1EPKc
_ZN10ValueErrorC2EPKc
_ZN10WSockErrorD0Ev
_ZN10WSockErrorD1Ev
_ZN10auto_closeIPvE5closeEv
_ZN10mgrRequest11ParseStringERKSs
_ZN10mgrRequest2OkEv
_ZN10mgrRequest3HasEPKc
_ZN10mgrRequest4AuthEv
_ZN10mgrRequest5ParamEPKc
_ZN10mgrRequestC1EP7_xmlDoc
_ZN10mgrRequestC1EPKcz
_ZN10mgrRequestC1Ev
_ZN10mgrRequestC2EP7_xmlDoc
_ZN10mgrRequestC2EPKcz
_ZN10mgrRequestC2Ev
_ZN10mgrRequestD1Ev
_ZN10mgrRequestD2Ev
_ZN10mgrRequestclEPKc
_ZN11AccessErrorC1ERKSs
_ZN11AccessErrorC1Ev
_ZN11AccessErrorC2ERKSs
_ZN11AccessErrorC2Ev
_ZN12RuntimeErrorD0Ev
_ZN12RuntimeErrorD1Ev
_ZN12xmlSchemaStrC1ERKSs
_ZN12xmlSchemaStrC2ERKSs
_ZN12xmlSchemaStrD0Ev
_ZN12xmlSchemaStrD1Ev
_ZN13ElementExistsC1ERKSs
_ZN13ElementExistsC2ERKSs
_ZN13InternalErrorC1ESs
_ZN13InternalErrorC2ESs
_ZN13InternalErrorD1Ev
_ZN13MgrConnection4ExecESs
_ZN13MgrConnection5LogonERKSsS1_
_ZN13MgrConnectionC1Ev
_ZN13MgrConnectionC2Ev
_ZN13xmlSchemaFileC1ERKSs
_ZN13xmlSchemaFileC2ERKSs
_ZN13xmlSchemaFileD0Ev
_ZN13xmlSchemaFileD1Ev
_ZN14mgrRequestList3EofEv
_ZN14mgrRequestList4LastEv
_ZN14mgrRequestList4NameEv
_ZN14mgrRequestList4NextEv
_ZN14mgrRequestList5FirstEv
_ZN14mgrRequestList5ValueEPKc
_ZN14mgrRequestList5ValueEv
_ZN14mgrRequestListC1EP7_xmlDoc
_ZN14mgrRequestListC1EP8_xmlNode
_ZN14mgrRequestListC1EPKcz
_ZN14mgrRequestListC1ERKSs
_ZN14mgrRequestListC2EP7_xmlDoc
_ZN14mgrRequestListC2EP8_xmlNode
_ZN14mgrRequestListC2EPKcz
_ZN14mgrRequestListC2ERKSs
_ZN3Dir10ForEachEntEPFbRS_E
_ZN3Dir10ReadAnyDirEv
_ZN3Dir11IsRegOrLinkEv
_ZN3Dir4ReadEv
_ZN3Dir4SizeEv
_ZN3Dir5IsDirEv
_ZN3Dir5IsRegEv
_ZN3Dir7ReadAnyEv
_ZN3Dir7ReadDirEv
_ZN3Dir8ReadFileEv
_ZN3DirC1ERKSs
_ZN3DirC1ERKSsb
_ZN3DirC2ERKSs
_ZN3DirC2ERKSsb
_ZN3DirD1Ev
_ZN3DirD2Ev
_ZN3xml10GoBookmarkEv
_ZN3xml10ReplaceXMLEP7_xmlDoc
_ZN3xml10ReplaceXMLERKS_
_ZN3xml10ReplaceXMLERKSs
_ZN3xml11AddChildTagEPKcSs
_ZN3xml11NewChildTagEPKcSs
_ZN3xml11RemoveNodesERKSs
_ZN3xml11SetBookmarkEv
_ZN3xml18ReplaceNodeContentERKSsS1_S1_
_ZN3xml4LoadERKSs
_ZN3xml4SeekERKSs
_ZN3xml4TellERKSs
_ZN3xml5ClearEv
_ZN3xml6NewTagEPKcSs
_ZN3xml6escapeERSs
_ZN3xml7CopyTagEP8_xmlNodeS1_
_ZN3xml7NewNodeEP8_xmlNodePKcSs
_ZN3xml7TagPropEP8_xmlNodePKcRKSs
_ZN3xml7TagPropEPKcRKSs
_ZN3xmlC1EP7_xmlDoc
_ZN3xmlC1ERKS_
_ZN3xmlC1ERKSs
_ZN3xmlC1ERKSsRKb
_ZN3xmlC1Ev
_ZN3xmlC2EP7_xmlDoc
_ZN3xmlC2ERKS_
_ZN3xmlC2ERKSs
_ZN3xmlC2ERKSsRKb
_ZN3xmlC2Ev
_ZN3xmlD0Ev
_ZN3xmlD1Ev
_ZN3xmlD2Ev
_ZN3xmlaSERKS_
_ZN4Date13SetFromTime_tEl
_ZN4Date6AddDayEi
_ZN4Date8AddMonthEi
_ZN4DateC1ESs
_ZN4DateC1Ev
_ZN4DateC2ESs
_ZN4DateC2Ev
_ZN4Exec10TIMEOUT_DXE
_ZN4Exec11ImpersonateEPv
_ZN4Exec11ImpersonateERK7AutoUTFS2_mS2_
_ZN4Exec3RunERK7AutoUTF
_ZN4Exec3RunERK7AutoUTFRSs
_ZN4Exec3RunERK7AutoUTFRSsRKSs
_ZN4Exec5LogonERK7AutoUTFS2_mS2_
_ZN4Exec7RunWaitERK7AutoUTFm
_ZN4Exec7TIMEOUTE
_ZN4Exec9RunAsUserERK7AutoUTFPv
_ZN4Exec9RunAsUserERK7AutoUTFRSsRKSsS2_S2_
_ZN4Exec9RunAsUserERK7AutoUTFS2_S2_
_ZN4TimeC1ESs
_ZN4TimeC1Ei
_ZN4TimeC1Ev
_ZN4TimeC2ESs
_ZN4TimeC2Ei
_ZN4TimeC2Ev
_ZN4UTF86strlenERKSs
_ZN4UTF88iteratorC1ERKSs
_ZN4UTF88iteratorC2ERKSs
_ZN4UTF88iteratorppEi
_ZN4UTF88nextcharEPKc
_ZN5Error3LogERKSs
_ZN5ErrorC1ENS_6errorsE
_ZN5ErrorC1ENS_6errorsERKSsS2_
_ZN5ErrorC1ERKS_
_ZN5ErrorC2ENS_6errorsE
_ZN5ErrorC2ENS_6errorsERKSsS2_
_ZN5ErrorD1Ev
_ZN5ErrorD2Ev
_ZN5Win6410WowDisableERPv
_ZN5Win647IsWOW64Ev
_ZN5Win649WowEnableERPv
_ZN5xpath4InitEP7_xmlDocSsRKSt3mapISsSsSt4lessISsESaISt4pairIKSsSsEEE
_ZN5xpath5ArrayEv
_ZN5xpath6DeleteEi
_ZN5xpathC1EP7_xmlDocSs
_ZN5xpathC1EP7_xmlDocSsSsSs
_ZN5xpathC2EP7_xmlDocSs
_ZN5xpathC2EP7_xmlDocSsSsSs
_ZN5xpathD1Ev
_ZN5xpathD2Ev
_ZN5xpathixEi
_ZN6SysApp6appcmdEv
_ZN6SysApp6dnscmdEv
_ZN6Thread11CritSectionC1ERNS_4LockEb
_ZN6Thread11CritSectionC2ERNS_4LockEb
_ZN6Thread11CritSectionD1Ev
_ZN6Thread11CritSectionD2Ev
_ZN6Thread4Lock6DoLockEv
_ZN6Thread4Lock6UnlockEv
_ZN6Thread4Lock7TryLockEv
_ZN6Thread4LockC1Ev
_ZN6Thread4LockC2Ev
_ZN6Thread4LockD1Ev
_ZN6Thread4LockD2Ev
_ZN6Thread6CreateEPFvPvES0_
_ZN6Thread7BaseKeyC1EPFvPvE
_ZN6Thread7BaseKeyC2EPFvPvE
_ZN6Thread7BaseKeyD1Ev
_ZN6Thread7BaseKeyD2Ev
_ZN6WinJob10AddProcessEPv
_ZN6WinJob10SetUiLimitEv
_ZN6WinJob10TIMEOUT_DXE
_ZN6WinJob12SetTimeLimitEj
_ZN6WinJob9RunAsUserERK7AutoUTFPv
_ZN6WinJob9RunAsUserERK7AutoUTFRSsRKSsPv
_ZN6WinJobC1ERK7AutoUTF
_ZN6WinJobC1Ev
_ZN6WinJobC2ERK7AutoUTF
_ZN6WinJobC2Ev
_ZN6WinJobD1Ev
_ZN6WinJobD2Ev
_ZN7CPErrorC1ERKSsS1_S1_S1_
_ZN7CPErrorC2ERKSsS1_S1_S1_
_ZN7Feature3AddEPKc
_ZN7Feature3HasEPKc
_ZN7Feature8AsStringEv
_ZN7FeatureC1Ev
_ZN7FeatureC2Ev
_ZN7SysPath3DnsEv
_ZN7SysPath4TempEv
_ZN7SysPath5Sys32Ev
_ZN7SysPath5UsersEv
_ZN7SysPath5WinntEv
_ZN7SysPath7InetSrvEv
_ZN7SysPath9SysNativeEv
_ZN7SysUser5existERKSs
_ZN7SysUserC1ERKSs
_ZN7SysUserC1ESs
_ZN7SysUserC2ERKSs
_ZN7SysUserC2ESs
_ZN8ApiErrorD0Ev
_ZN8ApiErrorD1Ev
_ZN8DateTime13SetFromTime_tEl
_ZN8DateTimeC1ESs
_ZN8DateTimeC1Ev
_ZN8DateTimeC2ESs
_ZN8DateTimeC2Ev
_ZN8LicErrorC1Ev
_ZN8LicErrorC2Ev
_ZN8MgrErrorC1ERKSs
_ZN8MgrErrorC2ERKSs
_ZN8MgrErrorD1Ev
_ZN8MgrQuery3EofEv
_ZN8MgrQuery3HasEPKc
_ZN8MgrQuery4NameEv
_ZN8MgrQuery4NextEv
_ZN8MgrQuery5FirstEv
_ZN8MgrQuery6GetIndEPKcRlS2_
_ZN8MgrQuery8AsStringEv
_ZN8MgrQueryC1EP13MgrConnectionSs
_ZN8MgrQueryC1ERKSs
_ZN8MgrQueryC2EP13MgrConnectionSs
_ZN8MgrQueryC2ERKSs
_ZN8MgrQueryD1Ev
_ZN8MgrQueryD2Ev
_ZN8MgrQueryixEPKc
_ZN8MgrQueryixERKSs
_ZN8MsgErrorC1EPKc
_ZN8MsgErrorC1EPKcRKSs
_ZN8MsgErrorC2EPKc
_ZN8MsgErrorC2EPKcRKSs
_ZN8SysGroupC1ERKSs
_ZN8SysGroupC1ESs
_ZN8SysGroupC2ERKSs
_ZN8SysGroupC2ESs
_ZN8WinErrorD0Ev
_ZN8WinErrorD1Ev
_ZN8WinFetchD1Ev
_ZN8WinFetchclESsRSs
_ZN9xmlschemaC1EP20_xmlSchemaParserCtxt
_ZN9xmlschemaC2EP20_xmlSchemaParserCtxt
_ZN9xmlschemaD0Ev
_ZN9xmlschemaD1Ev
_ZN9xmlschemaD2Ev
_ZNK3Dir5IsExtERKSs
_ZNK3xml4SaveERKSs
_ZNK3xml8AsStringEv
_ZNK4Date4AsTmEv
_ZNK4Date6IsNullEv
_ZNK4Date7DayDiffERKS_
_ZNK4Date8AsStringEv
_ZNK4Date8AsTime_tEv
_ZNK4Date9MonthDaysEv
_ZNK4Date9MonthDiffERKS_
_ZNK4Time5AsSecEv
_ZNK4Time8AsStringEv
_ZNK4UTF88iteratorixEi
_ZNK6Thread7BaseKey3GetEv
_ZNK6Thread7BaseKey3SetEPv
_ZNK8DateTime4AsTmEv
_ZNK8DateTime8AsStringEv
_ZNK8DateTime8AsTime_tEv
_ZNK8WinError3msgEv
_ZNK9xmlschema21SetParseErrorCallBackEPFvPvP9_xmlErrorES0_
_ZNK9xmlschema24SetValidateErrorCallBackEPFvPvP9_xmlErrorES0_
_ZNK9xmlschema8ValidateERK3xml
_ZNK9xmlschema8ValidateERKP7_xmlDoc
_ZNSt10_List_baseISsSaISsEE8_M_clearEv
_ZNSt12_Destroy_auxILb0EE9__destroyIPSsEEvT_S3_
_ZNSt20__uninitialized_copyILb0EE18uninitialized_copyIPSsS2_EET0_T_S4_S3_
_ZNSt4listISsSaISsEE9push_backERKSs
_ZNSt4pairIKSsSsEC1ERS0_S2_
_ZNSt4pairIKSsSsED1Ev
_ZNSt6vectorISsSaISsEE13_M_insert_auxEN9__gnu_cxx17__normal_iteratorIPSsS1_EERKSs
_ZNSt6vectorISsSaISsEED1Ev
_ZNSt8_Rb_treeISsSsSt9_IdentityISsESt4lessISsESaISsEE10_M_insert_EPKSt18_Rb_tree_node_baseS8_RKSs
_ZNSt8_Rb_treeISsSsSt9_IdentityISsESt4lessISsESaISsEE16_M_insert_uniqueERKSs
_ZNSt8_Rb_treeISsSt4pairIKSsN3xml7PosInfoEESt10_Select1stIS4_ESt4lessISsESaIS4_EE10_M_insert_EPKSt18_Rb_tree_node_baseSD_RKS4_
_ZNSt8_Rb_treeISsSt4pairIKSsN3xml7PosInfoEESt10_Select1stIS4_ESt4lessISsESaIS4_EE16_M_insert_uniqueERKS4_
_ZNSt8_Rb_treeISsSt4pairIKSsN3xml7PosInfoEESt10_Select1stIS4_ESt4lessISsESaIS4_EE17_M_insert_unique_ESt23_Rb_tree_const_iteratorIS4_ERKS4_
_ZNSt8_Rb_treeISsSt4pairIKSsN3xml7PosInfoEESt10_Select1stIS4_ESt4lessISsESaIS4_EE8_M_eraseEPSt13_Rb_tree_nodeIS4_E
_ZNSt8_Rb_treeISsSt4pairIKSsN3xml7PosInfoEESt10_Select1stIS4_ESt4lessISsESaIS4_EED1Ev
_ZNSt8_Rb_treeISsSt4pairIKSsSsESt10_Select1stIS2_ESt4lessISsESaIS2_EE10_M_insert_EPKSt18_Rb_tree_node_baseSB_RKS2_
_ZNSt8_Rb_treeISsSt4pairIKSsSsESt10_Select1stIS2_ESt4lessISsESaIS2_EE16_M_insert_uniqueERKS2_
_ZNSt8_Rb_treeISsSt4pairIKSsSsESt10_Select1stIS2_ESt4lessISsESaIS2_EE17_M_insert_unique_ESt23_Rb_tree_const_iteratorIS2_ERKS2_
_ZNSt8_Rb_treeISsSt4pairIKSsSsESt10_Select1stIS2_ESt4lessISsESaIS2_EE8_M_eraseEPSt13_Rb_tree_nodeIS2_E
_ZNSt8_Rb_treeISsSt4pairIKSsSsESt10_Select1stIS2_ESt4lessISsESaIS2_EED1Ev
_ZNSt8_Rb_treeIiiSt9_IdentityIiESt4lessIiESaIiEE16_M_insert_uniqueERKi
_ZNSt8_Rb_treeIiiSt9_IdentityIiESt4lessIiESaIiEE8_M_eraseEPSt13_Rb_tree_nodeIiE
_ZNSt8_Rb_treeIiiSt9_IdentityIiESt4lessIiESaIiEED1Ev
_ZSt9__find_ifISt16reverse_iteratorIPKwENSt3tr15_BindIFPFS2_S2_wES2_NS4_12_PlaceholderILi1EEEEEEET_SC_SC_T0_St26random_access_iterator_tag
_ZStplIcSt11char_traitsIcESaIcEESbIT_T0_T1_EPKS3_RKS6_
_ZStplIcSt11char_traitsIcESaIcEESbIT_T0_T1_ERKS6_PKS3_
_ZStplIcSt11char_traitsIcESaIcEESbIT_T0_T1_ERKS6_S8_
_ZTI10WSockError
_ZTI12RuntimeError
_ZTI12xmlSchemaStr
_ZTI13InternalError
_ZTI13xmlSchemaFile
_ZTI3xml
_ZTI5Error
_ZTI8ApiError
_ZTI8MgrError
_ZTI8WinError
_ZTI9xmlschema
_ZTS10WSockError
_ZTS12RuntimeError
_ZTS12xmlSchemaStr
_ZTS13InternalError
_ZTS13xmlSchemaFile
_ZTS3xml
_ZTS5Error
_ZTS8ApiError

Sections

.text
Size: 632KB - Virtual size: 632KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/libmysql.dll
.dll windows:4 windows x86

650eb6844f129a39ca12e08e40a85086

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
UnmapViewOfFile
WaitForSingleObject
SetEvent
MapViewOfFile
OpenFileMappingA
OpenEventA
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetWindowsDirectoryA
Sleep
DeleteCriticalSection
InitializeCriticalSection
InterlockedIncrement
GetTempFileNameA
GetTempPathA
GetFileAttributesExA
SetEndOfFile
SetFilePointer
CreateFileA
MoveFileA
GetTickCount
QueryPerformanceCounter
GetSystemTimeAsFileTime
QueryPerformanceFrequency
GetFileAttributesA
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
CreateEventA
ResetEvent
WaitForMultipleObjects
TryEnterCriticalSection
SetThreadPriority
ReadFile
WriteFile
FindClose
FindNextFileA
FindFirstFileA
GetCurrentThreadId
WaitNamedPipeA
SetNamedPipeHandleState
CloseHandle
GetLocaleInfoA
EnterCriticalSection
DeleteFileA
LeaveCriticalSection
GetConsoleOutputCP
WriteConsoleA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoW
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LoadLibraryW
RaiseException
ExitProcess
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
SetConsoleCtrlHandler
SetStdHandle
GetFileType
WideCharToMultiByte
GetTimeZoneInformation
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
GetDriveTypeA
HeapAlloc
HeapFree
HeapReAlloc
ExitThread
ResumeThread
CreateThread
FlushFileBuffers
WriteConsoleW
GetStdHandle
GetModuleFileNameW
GetCommandLineA
GetVersionExA
GetProcessHeap
FatalAppExitA
SetLastError
InterlockedDecrement
GetCurrentThread
FreeLibrary
InterlockedExchange
LoadLibraryA
SetHandleCount
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
RtlUnwind
MultiByteToWideChar
GetConsoleCP
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
VirtualFree
VirtualAlloc
HeapDestroy
HeapCreate
HeapSize
SetEnvironmentVariableW

advapi32

CryptReleaseContext
CryptAcquireContextA
RegOpenKeyExA
RegEnumValueA
RegCloseKey
CryptGenRandom

wsock32

WSASetLastError
getpeername
shutdown
closesocket
setsockopt
send
recv
inet_ntoa
select
__WSAFDIsSet
inet_addr
WSAStartup
WSACleanup
gethostbyname
getservbyname
ntohs
socket
WSAGetLastError
ioctlsocket
htons
connect

Exports

Exports

_dig_vec_lower
_dig_vec_upper
bmove_upp
client_errors
delete_dynamic
free_defaults
get_defaults_options
getopt_compare_strings
getopt_ull_limit_value
handle_options
init_dynamic_array
insert_dynamic
int2str
is_prefix
list_add
list_delete
load_defaults
modify_defaults_file
my_end
my_getopt_print_errors
my_init
my_malloc
my_memdup
my_no_flags_free
my_path
my_print_help
my_print_variables
my_realloc
my_strdup
myodbc_remove_escape
mysql_affected_rows
mysql_autocommit
mysql_change_user
mysql_character_set_name
mysql_close
mysql_commit
mysql_data_seek
mysql_debug
mysql_disable_reads_from_master
mysql_disable_rpl_parse
mysql_dump_debug_info
mysql_embedded
mysql_enable_reads_from_master
mysql_enable_rpl_parse
mysql_eof
mysql_errno
mysql_error
mysql_escape_string
mysql_fetch_field
mysql_fetch_field_direct
mysql_fetch_fields
mysql_fetch_lengths
mysql_fetch_row
mysql_field_count
mysql_field_seek
mysql_field_tell
mysql_free_result
mysql_get_character_set_info
mysql_get_client_info
mysql_get_client_version
mysql_get_host_info
mysql_get_parameters
mysql_get_proto_info
mysql_get_server_info
mysql_get_server_version
mysql_get_ssl_cipher
mysql_hex_string
mysql_info
mysql_init
mysql_insert_id
mysql_kill
mysql_list_dbs
mysql_list_fields
mysql_list_processes
mysql_list_tables
mysql_master_query
mysql_more_results
mysql_next_result
mysql_num_fields
mysql_num_rows
mysql_options
mysql_ping
mysql_query
mysql_read_query_result
mysql_real_connect
mysql_real_escape_string
mysql_real_query
mysql_refresh
mysql_rollback
mysql_row_seek
mysql_row_tell
mysql_rpl_parse_enabled
mysql_rpl_probe
mysql_rpl_query_type
mysql_select_db
mysql_send_query
mysql_server_end
mysql_server_init
mysql_set_character_set
mysql_set_local_infile_default
mysql_set_local_infile_handler
mysql_set_server_option
mysql_shutdown
mysql_slave_query
mysql_sqlstate
mysql_ssl_set
mysql_stat
mysql_stmt_affected_rows
mysql_stmt_attr_get
mysql_stmt_attr_set
mysql_stmt_bind_param
mysql_stmt_bind_result
mysql_stmt_close
mysql_stmt_data_seek
mysql_stmt_errno
mysql_stmt_error
mysql_stmt_execute
mysql_stmt_fetch
mysql_stmt_fetch_column
mysql_stmt_field_count
mysql_stmt_free_result
mysql_stmt_init
mysql_stmt_insert_id
mysql_stmt_num_rows
mysql_stmt_param_count
mysql_stmt_param_metadata
mysql_stmt_prepare
mysql_stmt_reset
mysql_stmt_result_metadata
mysql_stmt_row_seek
mysql_stmt_row_tell
mysql_stmt_send_long_data
mysql_stmt_sqlstate
mysql_stmt_store_result
mysql_store_result
mysql_thread_end
mysql_thread_id
mysql_thread_init
mysql_thread_safe
mysql_use_result
mysql_warning_count
set_dynamic
strcend
strcont
strdup_root
strfill
strinstr
strmake
strmov
strxmov

Sections

.text
Size: 788KB - Virtual size: 784KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/libxml2.COPYING
bin/libxml2.dll
.dll windows:4 windows x86

beb206990ace73d28461bedfc99714bd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

inet_ntoa
WSACleanup
__WSAFDIsSet
getsockopt
WSAGetLastError
WSAStartup
getsockname
bind
listen
gethostbyname
htons
socket
connect
send
select
recv
closesocket

iconv

libiconv
libiconv_open
libiconv_close

zlib1

inflateEnd
inflateInit2_
inflate
gzopen
gzdopen
gzread
gzwrite
gzclose
deflateEnd
crc32
deflateInit2_
deflate
gzrewind

kernel32

TlsSetValue
WaitForSingleObject
CloseHandle
CreateMutexA
GetModuleHandleA
GetModuleFileNameA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedCompareExchange
GetCurrentThreadId
TlsFree
Sleep
TlsAlloc
InterlockedIncrement
TlsGetValue
MultiByteToWideChar
GetProcAddress
FreeLibrary
LoadLibraryA
GetVersionExA
ReleaseMutex

msvcrt

_read
_close
_open
_adjust_fdiv
_initterm
_CIfmod
_CIpow
_write
_dup
vfprintf
fprintf
getenv
strncpy
_snprintf
_iob
fputc
fclose
fopen
sscanf
free
toupper
memmove
_errno
_getcwd
_vsnprintf
realloc
malloc
strchr
strncmp
strtol
fwrite
_wfopen
_stat
_wstat
fread
fflush
printf
floor
_isnan
_fpclass

Exports

Exports

UTF8ToHtml
UTF8Toisolat1
__docbDefaultSAXHandler
__htmlDefaultSAXHandler
__oldXMLWDcompatibility
__xmlBufferAllocScheme
__xmlDefaultBufferSize
__xmlDefaultSAXHandler
__xmlDefaultSAXLocator
__xmlDeregisterNodeDefaultValue
__xmlDoValidityCheckingDefaultValue
__xmlErrEncoding
__xmlGenericError
__xmlGenericErrorContext
__xmlGetWarningsDefaultValue
__xmlIndentTreeOutput
__xmlKeepBlanksDefaultValue
__xmlLastError
__xmlLineNumbersDefaultValue
__xmlLoadExtDtdDefaultValue
__xmlOutputBufferCreateFilenameValue
__xmlParserDebugEntities
__xmlParserInputBufferCreateFilenameValue
__xmlParserVersion
__xmlPedanticParserDefaultValue
__xmlRaiseError
__xmlRegisterNodeDefaultValue
__xmlSaveNoEmptyTags
__xmlSimpleError
__xmlStructuredError
__xmlSubstituteEntitiesDefaultValue
__xmlTreeIndentString
attribute
attributeDecl
cdataBlock
characters
checkNamespace
comment
docbCreateFileParserCtxt
docbCreatePushParserCtxt
docbDefaultSAXHandlerInit
docbEncodeEntities
docbFreeParserCtxt
docbParseChunk
docbParseDoc
docbParseDocument
docbParseFile
docbSAXParseDoc
docbSAXParseFile
elementDecl
emptyExp
endDocument
endElement
entityDecl
externalSubset
forbiddenExp
getColumnNumber
getEntity
getLineNumber
getNamespace
getParameterEntity
getPublicId
getSystemId
globalNamespace
hasExternalSubset
hasInternalSubset
htmlAttrAllowed
htmlAutoCloseTag
htmlCreateFileParserCtxt
htmlCreateMemoryParserCtxt
htmlCreatePushParserCtxt
htmlCtxtReadDoc
htmlCtxtReadFd
htmlCtxtReadFile
htmlCtxtReadIO
htmlCtxtReadMemory
htmlCtxtReset
htmlCtxtUseOptions
htmlDefaultSAXHandlerInit
htmlDocContentDumpFormatOutput
htmlDocContentDumpOutput
htmlDocDump
htmlDocDumpMemory
htmlDocDumpMemoryFormat
htmlElementAllowedHere
htmlElementStatusHere
htmlEncodeEntities
htmlEntityLookup
htmlEntityValueLookup
htmlFreeParserCtxt
htmlGetMetaEncoding
htmlHandleOmittedElem
htmlInitAutoClose
htmlIsAutoClosed
htmlIsBooleanAttr
htmlIsScriptAttribute
htmlNewDoc
htmlNewDocNoDtD
htmlNewParserCtxt
htmlNodeDump
htmlNodeDumpFile
htmlNodeDumpFileFormat
htmlNodeDumpFormatOutput
htmlNodeDumpOutput
htmlNodeStatus
htmlParseCharRef
htmlParseChunk
htmlParseDoc
htmlParseDocument
htmlParseElement
htmlParseEntityRef
htmlParseFile
htmlReadDoc
htmlReadFd
htmlReadFile
htmlReadIO
htmlReadMemory
htmlSAXParseDoc
htmlSAXParseFile
htmlSaveFile
htmlSaveFileEnc
htmlSaveFileFormat
htmlSetMetaEncoding
htmlTagLookup
ignorableWhitespace
initGenericErrorDefaultFunc
initdocbDefaultSAXHandler
inithtmlDefaultSAXHandler
initxmlDefaultSAXHandler
inputPop
inputPush
internalSubset
isStandalone
isolat1ToUTF8
namePop
namePush
namespaceDecl
nodePop
nodePush
notationDecl
processingInstruction
reference
resolveEntity
setDocumentLocator
setNamespace
startDocument
startElement
unparsedEntityDecl
valuePop
valuePush
xlinkGetDefaultDetect
xlinkGetDefaultHandler
xlinkIsLink
xlinkSetDefaultDetect
xlinkSetDefaultHandler
xmlACatalogAdd
xmlACatalogDump
xmlACatalogRemove
xmlACatalogResolve
xmlACatalogResolvePublic
xmlACatalogResolveSystem
xmlACatalogResolveURI
xmlAddAttributeDecl
xmlAddChild
xmlAddChildList
xmlAddDocEntity
xmlAddDtdEntity
xmlAddElementDecl
xmlAddEncodingAlias
xmlAddID
xmlAddNextSibling
xmlAddNotationDecl
xmlAddPrevSibling
xmlAddRef
xmlAddSibling
xmlAllocOutputBuffer
xmlAllocParserInputBuffer
xmlAttrSerializeTxtContent
xmlAutomataCompile
xmlAutomataGetInitState
xmlAutomataIsDeterminist
xmlAutomataNewAllTrans
xmlAutomataNewCountTrans
xmlAutomataNewCountTrans2
xmlAutomataNewCountedTrans
xmlAutomataNewCounter
xmlAutomataNewCounterTrans
xmlAutomataNewEpsilon
xmlAutomataNewNegTrans
xmlAutomataNewOnceTrans
xmlAutomataNewOnceTrans2
xmlAutomataNewState
xmlAutomataNewTransition
xmlAutomataNewTransition2
xmlAutomataSetFinalState
xmlBoolToText
xmlBufferAdd
xmlBufferAddHead
xmlBufferCCat
xmlBufferCat
xmlBufferContent
xmlBufferCreate
xmlBufferCreateSize
xmlBufferCreateStatic
xmlBufferDump
xmlBufferEmpty
xmlBufferFree
xmlBufferGrow
xmlBufferLength
xmlBufferResize
xmlBufferSetAllocationScheme
xmlBufferShrink
xmlBufferWriteCHAR
xmlBufferWriteChar
xmlBufferWriteQuotedString
xmlBuildQName
xmlBuildRelativeURI
xmlBuildURI
xmlByteConsumed
xmlC14NDocDumpMemory
xmlC14NDocSave
xmlC14NDocSaveTo
xmlC14NExecute
xmlCanonicPath
xmlCatalogAdd
xmlCatalogAddLocal
xmlCatalogCleanup
xmlCatalogConvert
xmlCatalogDump
xmlCatalogFreeLocal
xmlCatalogGetDefaults
xmlCatalogGetPublic
xmlCatalogGetSystem
xmlCatalogIsEmpty
xmlCatalogLocalResolve
xmlCatalogLocalResolveURI
xmlCatalogRemove
xmlCatalogResolve
xmlCatalogResolvePublic
xmlCatalogResolveSystem
xmlCatalogResolveURI
xmlCatalogSetDebug
xmlCatalogSetDefaultPrefer
xmlCatalogSetDefaults
xmlCharEncCloseFunc
xmlCharEncFirstLine
xmlCharEncInFunc
xmlCharEncOutFunc
xmlCharInRange
xmlCharStrdup
xmlCharStrndup
xmlCheckFilename
xmlCheckHTTPInput
xmlCheckLanguageID
xmlCheckUTF8
xmlCheckVersion
xmlCleanupCharEncodingHandlers
xmlCleanupEncodingAliases
xmlCleanupGlobals
xmlCleanupInputCallbacks
xmlCleanupMemory
xmlCleanupOutputCallbacks
xmlCleanupParser
xmlCleanupPredefinedEntities
xmlCleanupThreads
xmlClearNodeInfoSeq
xmlClearParserCtxt
xmlConvertSGMLCatalog
xmlCopyAttributeTable
xmlCopyChar
xmlCopyCharMultiByte
xmlCopyDoc
xmlCopyDocElementContent
xmlCopyDtd
xmlCopyElementContent
xmlCopyElementTable
xmlCopyEntitiesTable
xmlCopyEnumeration
xmlCopyError
xmlCopyNamespace
xmlCopyNamespaceList
xmlCopyNode
xmlCopyNodeList
xmlCopyNotationTable
xmlCopyProp
xmlCopyPropList
xmlCreateDocParserCtxt
xmlCreateEntitiesTable
xmlCreateEntityParserCtxt
xmlCreateEnumeration
xmlCreateFileParserCtxt
xmlCreateIOParserCtxt
xmlCreateIntSubset
xmlCreateMemoryParserCtxt
xmlCreatePushParserCtxt
xmlCreateURI
xmlCreateURLParserCtxt
xmlCtxtGetLastError
xmlCtxtReadDoc
xmlCtxtReadFd
xmlCtxtReadFile
xmlCtxtReadIO
xmlCtxtReadMemory
xmlCtxtReset
xmlCtxtResetLastError
xmlCtxtResetPush
xmlCtxtUseOptions
xmlCurrentChar
xmlDOMWrapAdoptNode
xmlDOMWrapCloneNode
xmlDOMWrapFreeCtxt
xmlDOMWrapNewCtxt
xmlDOMWrapReconcileNamespaces
xmlDOMWrapRemoveNode
xmlDebugCheckDocument
xmlDebugDumpAttr
xmlDebugDumpAttrList
xmlDebugDumpDTD
xmlDebugDumpDocument
xmlDebugDumpDocumentHead
xmlDebugDumpEntities
xmlDebugDumpNode
xmlDebugDumpNodeList
xmlDebugDumpOneNode
xmlDebugDumpString
xmlDecodeEntities
xmlDefaultSAXHandlerInit
xmlDelEncodingAlias
xmlDeregisterNodeDefault
xmlDetectCharEncoding
xmlDictCleanup
xmlDictCreate
xmlDictCreateSub
xmlDictExists
xmlDictFree
xmlDictLookup
xmlDictOwns
xmlDictQLookup
xmlDictReference
xmlDictSize
xmlDocCopyNode
xmlDocCopyNodeList
xmlDocDump
xmlDocDumpFormatMemory
xmlDocDumpFormatMemoryEnc
xmlDocDumpMemory
xmlDocDumpMemoryEnc
xmlDocFormatDump
xmlDocGetRootElement
xmlDocSetRootElement
xmlDumpAttributeDecl
xmlDumpAttributeTable
xmlDumpElementDecl
xmlDumpElementTable
xmlDumpEntitiesTable
xmlDumpEntityDecl
xmlDumpNotationDecl
xmlDumpNotationTable
xmlElemDump
xmlEncodeEntities
xmlEncodeEntitiesReentrant
xmlEncodeSpecialChars
xmlErrMemory
xmlExpCtxtNbCons
xmlExpCtxtNbNodes
xmlExpDump
xmlExpExpDerive
xmlExpFree
xmlExpFreeCtxt
xmlExpGetLanguage
xmlExpGetStart
xmlExpIsNillable
xmlExpMaxToken
xmlExpNewAtom
xmlExpNewCtxt
xmlExpNewOr
xmlExpNewRange
xmlExpNewSeq
xmlExpParse
xmlExpRef
xmlExpStringDerive
xmlExpSubsume
xmlFileClose
xmlFileMatch
xmlFileOpen
xmlFileRead
xmlFindCharEncodingHandler
xmlFree
xmlFreeAttributeTable
xmlFreeAutomata
xmlFreeCatalog
xmlFreeDoc
xmlFreeDocElementContent
xmlFreeDtd
xmlFreeElementContent
xmlFreeElementTable
xmlFreeEntitiesTable
xmlFreeEnumeration
xmlFreeIDTable
xmlFreeInputStream
xmlFreeMutex
xmlFreeNode
xmlFreeNodeList
xmlFreeNotationTable
xmlFreeNs
xmlFreeNsList
xmlFreeParserCtxt
xmlFreeParserInputBuffer
xmlFreePattern
xmlFreePatternList
xmlFreeProp
xmlFreePropList
xmlFreeRMutex
xmlFreeRefTable
xmlFreeStreamCtxt
xmlFreeTextReader
xmlFreeTextWriter
xmlFreeURI
xmlFreeValidCtxt
xmlGcMemGet
xmlGcMemSetup
xmlGetBufferAllocationScheme
xmlGetCharEncodingHandler
xmlGetCharEncodingName
xmlGetCompressMode
xmlGetDocCompressMode
xmlGetDocEntity
xmlGetDtdAttrDesc
xmlGetDtdElementDesc
xmlGetDtdEntity
xmlGetDtdNotationDesc
xmlGetDtdQAttrDesc
xmlGetDtdQElementDesc
xmlGetEncodingAlias
xmlGetExternalEntityLoader
xmlGetFeature
xmlGetFeaturesList
xmlGetGlobalState
xmlGetID
xmlGetIntSubset
xmlGetLastChild
xmlGetLastError
xmlGetLineNo
xmlGetNoNsProp
xmlGetNodePath
xmlGetNsList
xmlGetNsProp
xmlGetParameterEntity
xmlGetPredefinedEntity
xmlGetProp
xmlGetRefs
xmlGetThreadId
xmlGetUTF8Char
xmlHandleEntity
xmlHasFeature
xmlHasNsProp
xmlHasProp
xmlHashAddEntry
xmlHashAddEntry2
xmlHashAddEntry3
xmlHashCopy
xmlHashCreate
xmlHashCreateDict
xmlHashFree
xmlHashLookup
xmlHashLookup2
xmlHashLookup3
xmlHashQLookup
xmlHashQLookup2
xmlHashQLookup3
xmlHashRemoveEntry
xmlHashRemoveEntry2
xmlHashRemoveEntry3
xmlHashScan
xmlHashScan3
xmlHashScanFull
xmlHashScanFull3
xmlHashSize
xmlHashUpdateEntry
xmlHashUpdateEntry2
xmlHashUpdateEntry3
xmlIOFTPClose
xmlIOFTPMatch
xmlIOFTPOpen
xmlIOFTPRead
xmlIOHTTPClose
xmlIOHTTPMatch
xmlIOHTTPOpen
xmlIOHTTPOpenW
xmlIOHTTPRead
xmlIOParseDTD
xmlInitCharEncodingHandlers
xmlInitGlobals
xmlInitMemory
xmlInitNodeInfoSeq
xmlInitParser
xmlInitParserCtxt
xmlInitThreads
xmlInitializeCatalog
xmlInitializeGlobalState

Sections

.text
Size: 724KB - Virtual size: 724KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/libxslt.dll
.dll windows:4 windows x86

a8f75d4a1ff66998c4e2162345271c1f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libxml2

xmlHashCreate
xmlGetNsProp
xmlHashAddEntry2
xmlHashFree
xmlHashScanFull
xmlStringTextNoenc
xmlNewText
xmlSetNsProp
xmlStrdup
xmlHasNsProp
xmlSearchNs
xmlStrncasecmp
xmlValidateQName
xmlFreeDoc
xmlParseDocument
xmlParserGetDirectory
inputPush
xmlFreeParserCtxt
xmlLoadExternalEntity
xmlCtxtUseOptions
xmlDictReference
xmlDictFree
xmlNewParserCtxt
xmlXPathOrderDocElems
xmlDocGetRootElement
xmlXIncludeProcessFlags
xmlXPathRegisterFuncNS
xmlHashAddEntry
xmlHashLookup
xmlHashScan
xmlHashRemoveEntry
xmlHashRemoveEntry2
xmlAddChild
xmlNewComment
xmlXPathDebugDumpObject
xmlXPathFreeObject
xmlXPathFreeContext
xmlXPtrEval
xmlXPtrNewContext
xmlFreeURI
xmlSaveUri
xmlParseURI
valuePush
xmlXPathNewNodeSet
xmlBuildURI
xmlNodeGetBase
xmlXPathNodeSetMerge
xmlXPathObjectCopy
xmlXPathStringFunction
valuePop
xmlXPathWrapNodeSet
xmlXPathNsLookup
xmlSplitQName2
xmlXPathNewString
xmlGetDocEntity
xmlXPathConvertString
xmlXPathNumberFunction
xmlXPathErr
xmlXPathNewCString
xmlXPathCmpNodes
xmlStrstr
xmlXPathNewBoolean
xmlXPathFunctionLookupNS
xmlXPathRegisterFunc
xmlXPathFreeCompExpr
xmlXPathFreeNodeSet
xmlStrncat
xmlStrcat
xmlGetNsList
xmlXPathNodeSetAdd
xmlXPathNodeSetCreate
xmlXPathCastToString
xmlXPathCastNodeToString
xmlXPathCompiledEval
xmlSearchNsByHref
xmlNewNs
xmlStrncmp
xmlBufferCat
xmlCopyCharMultiByte
xmlBufferCCat
xmlIsDigitGroup
xmlCharInRange
xmlIsBaseCharGroup
xmlStrndup
xmlStringCurrentChar
xmlXPathIsNaN
xmlXPathIsInf
xmlXPathFreeParserContext
xmlXPathNextAncestor
xmlXPathNextPrecedingSibling
xmlXPathNewParserContext
xmlHashLookup2
xmlXPathEvalExpression
xmlBufferContent
xmlBufferCreate
xmlBufferAdd
xmlUTF8Strpos
xmlUTF8Strloc
xmlStrlen
xmlXPathCtxtCompile
xmlXPathNewContext
xmlRealloc
xmlXPathEval
xmlGetID
xmlIsExtenderGroup
xmlIsCombiningGroup
xmlXPathIsNodeType
xmlHashUpdateEntry3
xmlHashLookup3
xmlHashAddEntry3
xmlCreateURI
xmlXPathEvalPredicate
xmlFreeNode
xmlNodeGetContent
xmlNewDocNode
xmlXPathCompile
xmlStrchr
xmlNewNsProp
xmlFreeNodeList
xmlNewDocProp
__xmlGenericErrorContext
__xmlGenericError
xmlNodeAddContent
xmlStringText
xmlNewTextLen
xmlNewCDataBlock
xmlDictOwns
xmlNodeListGetString
xmlDocCopyNode
xmlNewDocText
xmlNewDocPI
xmlStrcasecmp
xmlUnlinkNode
xmlCreateIntSubset
xmlIsBlankNode
xmlDictQLookup
xmlNewDoc
htmlNewDoc
htmlNewDocNoDtD
xmlURIEscapeStr
xmlNewDocNodeEatName
xmlXPathCompiledEvalToBoolean
xmlXPathNodeSetAddUnique
xmlXPathRegisterFuncLookup
xmlXPathRegisterVariableLookup
xmlXPathContextSetCache
xmlXPathInit
xmlDictCreateSub
xmlFreeDtd
xmlGetIntSubset
xmlFreeRefTable
xmlFreeIDTable
xmlXPathNewValueTree
xmlNodeGetSpacePreserve
xmlNodeSetContent
xmlHashUpdateEntry
xmlAddPrevSibling
xmlValidateNCName
xmlXPathStringEvalNumber
xmlDictCreate
xmlGetDtdAttrDesc
xmlGetProp
xmlGetLineNo
xmlXPathConvertNumber
xmlStrcmp
xmlNodeDumpOutput
xmlGetCharEncodingName
xmlBufferWriteQuotedString
xmlOutputBufferWriteString
htmlDocContentDumpOutput
xmlOutputBufferFlush
htmlDocContentDumpFormatOutput
htmlSetMetaEncoding
xmlOutputBufferClose
xmlFindCharEncodingHandler
xmlOutputBufferCreateFilename
xmlOutputBufferCreateFile
xmlOutputBufferCreateFd
xmlAllocOutputBuffer
xmlSetProp
xmlNewChild
xmlDocSetRootElement
xmlStrEqual
xmlHashUpdateEntry2
xmlDictLookup
xmlFree
xmlBufferFree
xmlMalloc

msvcrt

_CIpow
sscanf
_mkdir
strncmp
vfprintf
_vsnprintf
free
_initterm
_adjust_fdiv
malloc
floor
_CIfmod
_snprintf
sprintf
_iob
fprintf
_stat

kernel32

GetFileAttributesA
QueryPerformanceCounter
Sleep
DisableThreadLibraryCalls
QueryPerformanceFrequency

Exports

Exports

xslAddCall
xslDebugStatus
xslDropCall
xslHandleDebugger
xsltAddKey
xsltAddStackElemList
xsltAddTemplate
xsltAllocateExtra
xsltAllocateExtraCtxt
xsltApplyAttributeSet
xsltApplyImports
xsltApplyOneTemplate
xsltApplyStripSpaces
xsltApplyStylesheet
xsltApplyStylesheetUser
xsltApplyTemplates
xsltAttrListTemplateProcess
xsltAttrTemplateProcess
xsltAttrTemplateValueProcess
xsltAttrTemplateValueProcessNode
xsltAttribute
xsltCalibrateAdjust
xsltCallTemplate
xsltCheckExtPrefix
xsltCheckRead
xsltCheckWrite
xsltChoose
xsltCleanupGlobals
xsltCleanupTemplates
xsltComment
xsltCompileAttr
xsltCompilePattern
xsltComputeSortResult
xsltCopy
xsltCopyNamespace
xsltCopyNamespaceList
xsltCopyOf
xsltCopyTextString
xsltCreateRVT
xsltDebug
xsltDebugDumpExtensions
xsltDebugGetDefaultTrace
xsltDebugSetDefaultTrace
xsltDecimalFormatGetByName
xsltDefaultSortFunction
xsltDoSortFunction
xsltDocDefaultLoader
xsltDocumentComp
xsltDocumentElem
xsltDocumentFunction
xsltDocumentSortFunction
xsltElement
xsltElementAvailableFunction
xsltEngineVersion
xsltEvalAVT
xsltEvalAttrValueTemplate
xsltEvalGlobalVariables
xsltEvalOneUserParam
xsltEvalStaticAttrValueTemplate
xsltEvalTemplateString
xsltEvalUserParams
xsltEvalXPathPredicate
xsltEvalXPathString
xsltEvalXPathStringNs
xsltExtElementLookup
xsltExtModuleElementLookup
xsltExtModuleElementPreComputeLookup
xsltExtModuleFunctionLookup
xsltExtModuleTopLevelLookup
xsltExtensionInstructionResultFinalize
xsltExtensionInstructionResultRegister
xsltFindDocument
xsltFindElemSpaceHandling
xsltFindTemplate
xsltForEach
xsltFormatNumberConversion
xsltFormatNumberFunction
xsltFreeAVTList
xsltFreeAttributeSetsHashes
xsltFreeCompMatchList
xsltFreeCtxtExts
xsltFreeDocumentKeys
xsltFreeDocuments
xsltFreeExts
xsltFreeGlobalVariables
xsltFreeKeys
xsltFreeNamespaceAliasHashes
xsltFreeRVTs
xsltFreeSecurityPrefs
xsltFreeStackElemList
xsltFreeStyleDocuments
xsltFreeStylePreComps
xsltFreeStylesheet
xsltFreeTemplateHashes
xsltFreeTransformContext
xsltFunctionAvailableFunction
xsltFunctionNodeSet
xsltGenerateIdFunction
xsltGenericDebug
xsltGenericDebugContext
xsltGenericError
xsltGenericErrorContext
xsltGetCNsProp
xsltGetDebuggerStatus
xsltGetDefaultSecurityPrefs
xsltGetExtData
xsltGetExtInfo
xsltGetKey
xsltGetNamespace
xsltGetNsProp
xsltGetPlainNamespace
xsltGetProfileInformation
xsltGetQNameURI
xsltGetQNameURI2
xsltGetSecurityPrefs
xsltGetSpecialNamespace
xsltGetTemplate
xsltGetUTF8Char
xsltGetXIncludeDefault
xsltIf
xsltInit
xsltInitAllDocKeys
xsltInitCtxtExts
xsltInitCtxtKey
xsltInitCtxtKeys
xsltInitElemPreComp
xsltIsBlank
xsltKeyFunction
xsltLibxmlVersion
xsltLibxsltVersion
xsltLoadDocument
xsltLoadStyleDocument
xsltLoadStylesheetPI
xsltLocalVariablePop
xsltLocalVariablePush
xsltMaxDepth
xsltMessage
xsltNamespaceAlias
xsltNeedElemSpaceHandling
xsltNewDocument
xsltNewElemPreComp
xsltNewSecurityPrefs
xsltNewStyleDocument
xsltNewStylesheet
xsltNewTransformContext
xsltNextImport
xsltNormalizeCompSteps
xsltNumber
xsltNumberFormat
xsltParseGlobalParam
xsltParseGlobalVariable
xsltParseStylesheetAttributeSet
xsltParseStylesheetCallerParam
xsltParseStylesheetDoc
xsltParseStylesheetFile
xsltParseStylesheetImport
xsltParseStylesheetImportedDoc
xsltParseStylesheetInclude
xsltParseStylesheetOutput
xsltParseStylesheetParam
xsltParseStylesheetProcess
xsltParseStylesheetVariable
xsltParseTemplateContent
xsltPreComputeExtModuleElement
xsltPrintErrorContext
xsltProcessingInstruction
xsltProfileStylesheet
xsltQuoteOneUserParam
xsltQuoteUserParams
xsltRegisterAllElement
xsltRegisterAllExtras
xsltRegisterAllFunctions
xsltRegisterExtElement
xsltRegisterExtFunction
xsltRegisterExtModule
xsltRegisterExtModuleElement
xsltRegisterExtModuleFull
xsltRegisterExtModuleFunction
xsltRegisterExtModuleTopLevel
xsltRegisterExtPrefix
xsltRegisterExtras
xsltRegisterLocalRVT
xsltRegisterPersistRVT
xsltRegisterTestModule
xsltRegisterTmpRVT
xsltReleaseRVT
xsltResolveStylesheetAttributeSet
xsltRunStylesheet
xsltRunStylesheetUser
xsltSaveProfiling
xsltSaveResultTo
xsltSaveResultToFd
xsltSaveResultToFile
xsltSaveResultToFilename
xsltSaveResultToString
xsltSecurityAllow
xsltSecurityForbid
xsltSetCtxtParseOptions
xsltSetCtxtSecurityPrefs
xsltSetCtxtSortFunc
xsltSetDebuggerCallbacks
xsltSetDebuggerStatus
xsltSetDefaultSecurityPrefs
xsltSetGenericDebugFunc
xsltSetGenericErrorFunc
xsltSetLoaderFunc
xsltSetSecurityPrefs
xsltSetSortFunc
xsltSetTransformErrorFunc
xsltSetXIncludeDefault
xsltShutdownCtxtExts
xsltShutdownExts
xsltSort
xsltSplitQName
xsltStyleGetExtData
xsltStylePreCompute
xsltSystemPropertyFunction
xsltTemplateProcess
xsltTestCompMatchList
xsltText
xsltTimestamp
xsltTransformError
xsltUninit
xsltUnparsedEntityURIFunction
xsltUnregisterExtModule
xsltUnregisterExtModuleElement
xsltUnregisterExtModuleFunction
xsltUnregisterExtModuleTopLevel
xsltValueOf
xsltVariableLookup
xsltXPathCompile
xsltXPathFunctionLookup
xsltXPathGetTransformContext
xsltXPathVariableLookup

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/md5sum.exe
.exe windows:4 windows x86

74dfe5058611c7bdd5067483cd452676

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
SetUnhandledExceptionFilter

msvcrt

_fstat
_getcwd
_isatty
_open
_read
_close
_strdup
_cexit
_errno
_fileno
_fmode
_fpreset
_iob
_setmode
__getmainargs
_stricmp
_strnicmp
_wcsicmp
atexit
bsearch
calloc
exit
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fputs
fread
free
getc
getenv
isalnum
isalpha
isdigit
isspace
__p__environ
isxdigit
malloc
memcpy
printf
putc
putchar
puts
qsort
realloc
setlocale
signal
strchr
strcmp
strerror
strncmp
tolower
vfprintf
__set_app_type

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 108B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bin/mgrctl.exe
.exe windows:4 windows x86

104a6d810d9d87ebd4d9d56d29d11793

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CloseHandle
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
FormatMessageW
FreeLibrary
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
HeapAlloc
HeapFree
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LocalFree
QueryPerformanceCounter
ReleaseSemaphore
SetConsoleTextAttribute
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WriteConsoleA
WriteConsoleW
WriteFile

msvcrt

_close
_write
__argv
__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_fmode
_initterm
_iob
_lock
_onexit
_stat
_unlock
_vsnprintf
_vsnwprintf
abort
calloc
exit
fprintf
fputc
fputs
free
fwrite
getenv
malloc
memchr
memcpy
memmove
memset
realloc
signal
sprintf
strchr
strcmp
strcpy
strerror
strlen
strncmp
vfprintf
vprintf
wcslen

wsock32

WSAStartup
connect
htons
inet_addr
recv
send
socket

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bin/mysqlclient.COPYING
bin/openssl.cnf
bin/openssl.exe
.exe windows:4 windows x86

7fc1375b391c7d9a69bcd321bb881060

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ssleay32

ord171
ord290
ord291
ord45
ord180
ord150
ord49
ord6
ord130
ord127
ord65
ord61
ord120
ord154
ord157
ord35
ord162
ord33
ord129
ord55
ord108
ord79
ord122
ord52
ord2
ord32
ord98
ord38
ord40
ord28
ord22
ord30
ord24
ord5
ord43
ord110
ord113
ord116
ord172
ord268
ord293
ord119
ord90
ord31
ord86
ord59
ord96
ord60
ord56
ord272
ord274
ord271
ord292
ord112
ord115
ord118
ord74
ord275
ord183
ord12
ord264
ord145
ord286
ord141
ord142
ord177
ord15
ord21
ord231
ord73
ord16
ord8
ord243
ord42
ord164
ord77
ord125
ord94
ord72
ord166
ord78
ord48
ord249
ord121
ord75
ord244
ord189
ord83
ord82
ord63
ord267
ord58

libeay32

ord912
ord1654
ord378
ord82
ord86
ord2411
ord222
ord680
ord585
ord657
ord909
ord626
ord3527
ord2105
ord2011
ord1915
ord2067
ord558
ord555
ord625
ord556
ord3676
ord52
ord78
ord93
ord246
ord629
ord21
ord168
ord827
ord2281
ord3488
ord2280
ord2276
ord2279
ord355
ord167
ord67
ord2427
ord109
ord916
ord723
ord1653
ord89
ord87
ord57
ord169
ord997
ord577
ord606
ord2217
ord576
ord1912
ord1914
ord3241
ord3243
ord2209
ord2704
ord2292
ord366
ord605
ord607
ord2286
ord421
ord877
ord423
ord2250
ord872
ord154
ord3237
ord2544
ord2117
ord610
ord608
ord2627
ord674
ord670
ord601
ord672
ord658
ord667
ord656
ord671
ord673
ord664
ord602
ord3724
ord313
ord403
ord769
ord248
ord419
ord3550
ord210
ord484
ord129
ord279
ord3686
ord161
ord150
ord486
ord283
ord1960
ord2832
ord2695
ord1508
ord316
ord1509
ord3570
ord3575
ord2877
ord3512
ord209
ord181
ord2111
ord600
ord3729
ord3422
ord3408
ord3663
ord151
ord281
ord31
ord835
ord732
ord654
ord401
ord397
ord304
ord333
ord76
ord2784
ord965
ord289
ord290
ord2572
ord2747
ord3245
ord363
ord3883
ord285
ord83
ord3820
ord3903
ord54
ord60
ord323
ord188
ord202
ord415
ord33
ord830
ord120
ord200
ord207
ord395
ord28
ord205
ord727
ord3713
ord1871
ord3687
ord213
ord2202
ord2203
ord3019
ord2915
ord4059
ord59
ord3836
ord255
ord2206
ord3823
ord330
ord361
ord3877
ord2743
ord315
ord2821
ord2936
ord269
ord3109
ord2630
ord2249
ord2291
ord896
ord899
ord894
ord230
ord665
ord24
ord513
ord1988
ord2060
ord1160
ord11
ord1167
ord88
ord816
ord1908
ord2126
ord1080
ord170
ord514
ord280
ord282
ord25
ord541
ord8
ord2131
ord164
ord119
ord573
ord579
ord565
ord571
ord14
ord580
ord362
ord575
ord584
ord13
ord23
ord364
ord567
ord566
ord578
ord349
ord352
ord1900
ord562
ord1901
ord171
ord173
ord175
ord9
ord1954
ord2027
ord3087
ord1205
ord2052
ord2608
ord3516
ord603
ord677
ord678
ord529
ord422
ord536
ord2823
ord2834
ord3031
ord2607
ord3004
ord2543
ord117
ord619
ord2798
ord2837
ord1973
ord2742
ord535
ord116
ord516
ord636
ord642
ord418
ord849
ord1229
ord444
ord398
ord746
ord438
ord445
ord402
ord760
ord622
ord863
ord3837
ord2391
ord1161
ord583
ord815
ord2009
ord537
ord588
ord627
ord1961
ord420
ord910
ord1985
ord854
ord227
ord253
ord1869
ord488
ord2034
ord55
ord490
ord493
ord491
ord492
ord497
ord3212
ord1968
ord416
ord2014
ord832
ord214
ord1935
ord417
ord220
ord3481
ord3424
ord3456
ord3585
ord3452
ord3473
ord3742
ord3400
ord3443
ord3714
ord3519
ord3556
ord3707
ord2683
ord2701
ord3379
ord3405
ord2693
ord2985
ord3528
ord2568
ord3555
ord3607
ord3494
ord3475
ord3617
ord3749
ord365
ord3711
ord3447
ord638
ord652
ord1020
ord1017
ord1015
ord1016
ord284
ord2051
ord1997
ord820
ord634
ord2066
ord2446
ord2405
ord3920
ord2404
ord2790
ord639
ord869
ord866
ord857
ord662
ord676
ord2074
ord653
ord2082
ord2140
ord2184
ord1928
ord1933
ord357
ord630
ord4054
ord2254
ord2996
ord3155
ord2927
ord318
ord299
ord118
ord2749
ord2682
ord2710
ord3113
ord2966
ord3034
ord3173
ord2827
ord2726
ord2902
ord370
ord107
ord3866
ord915
ord84
ord53
ord108
ord58
ord3330
ord3353
ord96
ord1010
ord2426
ord3020
ord85
ord368
ord2502
ord2493
ord501
ord45
ord884
ord3074
ord799
ord478
ord338
ord153
ord2
ord3644
ord3480
ord3666
ord3719
ord3374
ord465
ord219
ord216
ord469
ord498
ord495
ord256
ord2660
ord276
ord2656
ord266
ord2894
ord3067
ord961
ord992
ord40
ord471
ord879
ord3829
ord3171
ord785
ord796
ord477
ord1252
ord3669
ord3654
ord964
ord2438
ord3165
ord322
ord784
ord988
ord46
ord476
ord479
ord886
ord3024
ord2147
ord750
ord494
ord483
ord91
ord193
ord2979
ord2947
ord3013
ord3016
ord2916
ord2783
ord2723
ord2946
ord3045
ord2558
ord3102
ord3174
ord3140
ord3144
ord2857
ord2892
ord2913
ord3064
ord3126
ord2580
ord2585
ord2893
ord81
ord1291
ord1304
ord1279
ord1308
ord4
ord1959
ord714
ord774
ord2063
ord2408

wsock32

closesocket
shutdown
__WSAFDIsSet
select
WSAGetLastError
getsockname
WSACleanup
WSACancelBlockingCall
WSAStartup
connect
setsockopt
socket
htonl
accept
gethostbyaddr
gethostbyname
getservbyname
ntohs
bind
listen
htons

kernel32

GetNumberOfConsoleInputEvents
PeekConsoleInputA
GetFileAttributesA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapSize
HeapCreate
HeapDestroy
VirtualAlloc
VirtualFree
InitializeCriticalSection
LoadLibraryA
LCMapStringW
LCMapStringA
GetCurrentDirectoryA
GetFullPathNameA
LoadLibraryW
RtlUnwind
FlushFileBuffers
SetEndOfFile
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
DeleteCriticalSection
GetStartupInfoA
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
Sleep
FindNextFileA
GetProcessHeap
GetVersionExA
GetCommandLineA
HeapFree
HeapReAlloc
HeapAlloc
SetConsoleCtrlHandler
DeleteFileA
MoveFileA
GetTimeZoneInformation
GetSystemTimeAsFileTime
ExitProcess
GetModuleHandleA
GetProcAddress
FindFirstFileA
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetModuleFileNameW
GetStdHandle
WriteConsoleW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateFileA
GetFileType
EnterCriticalSection
LeaveCriticalSection
GetLastError
CloseHandle
SetFilePointer
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
MultiByteToWideChar
ReadFile
GetModuleFileNameA

Exports

Exports

OPENSSL_Applink

Sections

.text
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bin/pthreadGC2.dll
.dll windows:4 windows x86

3120cd5c4fccdef2106bb8ba1089b47a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
OpenProcess
QueryPerformanceCounter
ReleaseSemaphore
ResetEvent
ResumeThread
SetEvent
SetLastError
SetThreadContext
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject

msvcrt

__dllonexit
_amsg_exit
_beginthreadex
_endthreadex
_errno
_ftime
_initterm
_iob
_lock
_onexit
_setjmp3
_unlock
abort
calloc
exit
free
fwrite
malloc
memcpy
vfprintf

ws2_32

WSAGetLastError
WSASetLastError

Exports

Exports

pthreadCancelableTimedWait
pthreadCancelableWait
pthread_attr_destroy
pthread_attr_getdetachstate
pthread_attr_getinheritsched
pthread_attr_getschedparam
pthread_attr_getschedpolicy
pthread_attr_getscope
pthread_attr_getstackaddr
pthread_attr_getstacksize
pthread_attr_init
pthread_attr_setdetachstate
pthread_attr_setinheritsched
pthread_attr_setschedparam
pthread_attr_setschedpolicy
pthread_attr_setscope
pthread_attr_setstackaddr
pthread_attr_setstacksize
pthread_barrier_destroy
pthread_barrier_init
pthread_barrier_wait
pthread_barrierattr_destroy
pthread_barrierattr_getpshared
pthread_barrierattr_init
pthread_barrierattr_setpshared
pthread_cancel
pthread_cond_broadcast
pthread_cond_destroy
pthread_cond_init
pthread_cond_signal
pthread_cond_timedwait
pthread_cond_wait
pthread_condattr_destroy
pthread_condattr_getpshared
pthread_condattr_init
pthread_condattr_setpshared
pthread_create
pthread_delay_np
pthread_detach
pthread_equal
pthread_exit
pthread_getconcurrency
pthread_getschedparam
pthread_getspecific
pthread_getw32threadhandle_np
pthread_join
pthread_key_create
pthread_key_delete
pthread_kill
pthread_mutex_destroy
pthread_mutex_init
pthread_mutex_lock
pthread_mutex_timedlock
pthread_mutex_trylock
pthread_mutex_unlock
pthread_mutexattr_destroy
pthread_mutexattr_getkind_np
pthread_mutexattr_getpshared
pthread_mutexattr_gettype
pthread_mutexattr_init
pthread_mutexattr_setkind_np
pthread_mutexattr_setpshared
pthread_mutexattr_settype
pthread_num_processors_np
pthread_once
pthread_rwlock_destroy
pthread_rwlock_init
pthread_rwlock_rdlock
pthread_rwlock_timedrdlock
pthread_rwlock_timedwrlock
pthread_rwlock_tryrdlock
pthread_rwlock_trywrlock
pthread_rwlock_unlock
pthread_rwlock_wrlock
pthread_rwlockattr_destroy
pthread_rwlockattr_getpshared
pthread_rwlockattr_init
pthread_rwlockattr_setpshared
pthread_self
pthread_setcancelstate
pthread_setcanceltype
pthread_setconcurrency
pthread_setschedparam
pthread_setspecific
pthread_spin_destroy
pthread_spin_init
pthread_spin_lock
pthread_spin_trylock
pthread_spin_unlock
pthread_testcancel
pthread_timechange_handler_np
pthread_win32_process_attach_np
pthread_win32_process_detach_np
pthread_win32_test_features_np
pthread_win32_thread_attach_np
pthread_win32_thread_detach_np
ptw32_get_exception_services_code
ptw32_pop_cleanup
ptw32_push_cleanup
sched_get_priority_max
sched_get_priority_min
sched_getscheduler
sched_setscheduler
sched_yield
sem_close
sem_destroy
sem_getvalue
sem_init
sem_open
sem_post
sem_post_multiple
sem_timedwait
sem_trywait
sem_unlink
sem_wait

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/sitemgr.js
.js
bin/ssleay32.dll
.dll windows:4 windows x86

8ee9775c09ca9c2cce350b2a0161b9d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

libeay32

ord2572
ord3315
ord2927
ord2747
ord3724
ord313
ord495
ord3883
ord120
ord151
ord3178
ord3695
ord3550
ord3418
ord203
ord128
ord31
ord830
ord727
ord2760
ord282
ord572
ord3489
ord3719
ord216
ord206
ord497
ord4046
ord3682
ord2877
ord3711
ord205
ord486
ord484
ord763
ord577
ord907
ord87
ord170
ord481
ord3729
ord333
ord2915
ord1096
ord1097
ord3816
ord3888
ord3896
ord2589
ord1145
ord1144
ord1081
ord2292
ord3823
ord3846
ord622
ord627
ord657
ord653
ord623
ord3922
ord2898
ord3124
ord3925
ord2702
ord264
ord266
ord3288
ord3704
ord3758
ord3767
ord3647
ord3766
ord3365
ord3857
ord3460
ord3454
ord3754
ord3394
ord187
ord897
ord3414
ord3495
ord67
ord65
ord53
ord78
ord98
ord3826
ord3559
ord3399
ord636
ord914
ord3899
ord626
ord890
ord1004
ord3527
ord364
ord1010
ord2051
ord58
ord66
ord630
ord628
ord1041
ord1007
ord1005
ord1027
ord3378
ord3437
ord541
ord316
ord629
ord892
ord74
ord3866
ord248
ord1655
ord575
ord1025
ord246
ord1100
ord679
ord2524
ord3595
ord1023
ord3505
ord401
ord93
ord3396
ord3657
ord4045
ord2475
ord887
ord889
ord891
ord315
ord1147
ord189
ord314
ord956
ord280
ord2181
ord399
ord748
ord279
ord283
ord400
ord751
ord750
ord774
ord3205
ord37
ord35
ord824
ord822
ord8
ord1091
ord3700
ord3513
ord3623
ord32
ord718
ord7
ord716
ord703
ord680
ord2426
ord86
ord88
ord1101
ord293
ord322
ord2996
ord3155
ord325
ord329
ord318
ord304
ord292
ord299
ord955
ord2252
ord91
ord247
ord225
ord276
ord274
ord256
ord964
ord965
ord2784
ord909
ord912
ord635
ord285
ord498
ord219
ord3666
ord118
ord201
ord123
ord3663
ord3575
ord3608
ord3512
ord3459
ord2924
ord3480
ord3010
ord111
ord2578
ord3570
ord3644
ord2929
ord3422
ord110
ord866
ord3239
ord202
ord3879
ord109
ord89
ord3841
ord3874
ord961
ord2894
ord3067
ord323
ord3844
ord3244
ord2936
ord354
ord3245
ord3836
ord464
ord911
ord493
ord289
ord2201
ord167
ord52
ord85
ord169
ord168
ord3873
ord222
ord490
ord754
ord2411
ord910
ord2630
ord3109
ord269
ord188
ord181
ord654
ord290
ord281
ord2821
ord641
ord176
ord857
ord2206
ord252
ord903
ord1654
ord1653
ord904
ord901
ord2478
ord905

kernel32

CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CloseHandle
HeapSize
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LoadLibraryA
WriteFile
VirtualAlloc
HeapReAlloc
RtlUnwind
InitializeCriticalSection
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
InterlockedDecrement
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
ExitProcess
Sleep
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetModuleHandleA
GetProcAddress
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
GetCommandLineA
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
GetSystemTimeAsFileTime
GetLastError
SetLastError

Exports

Exports

BIO_f_ssl
BIO_new_buffer_ssl_connect
BIO_new_ssl
BIO_new_ssl_connect
BIO_ssl_copy_session_id
BIO_ssl_shutdown
DTLSv1_client_method
DTLSv1_method
DTLSv1_server_method
ERR_load_SSL_strings
SSL_CIPHER_description
SSL_CIPHER_get_bits
SSL_CIPHER_get_name
SSL_CIPHER_get_version
SSL_COMP_add_compression_method
SSL_COMP_get_compression_methods
SSL_COMP_get_name
SSL_CTX_add_client_CA
SSL_CTX_add_session
SSL_CTX_callback_ctrl
SSL_CTX_check_private_key
SSL_CTX_ctrl
SSL_CTX_flush_sessions
SSL_CTX_free
SSL_CTX_get_cert_store
SSL_CTX_get_client_CA_list
SSL_CTX_get_client_cert_cb
SSL_CTX_get_ex_data
SSL_CTX_get_ex_new_index
SSL_CTX_get_info_callback
SSL_CTX_get_quiet_shutdown
SSL_CTX_get_timeout
SSL_CTX_get_verify_callback
SSL_CTX_get_verify_depth
SSL_CTX_get_verify_mode
SSL_CTX_load_verify_locations
SSL_CTX_new
SSL_CTX_remove_session
SSL_CTX_sess_get_get_cb
SSL_CTX_sess_get_new_cb
SSL_CTX_sess_get_remove_cb
SSL_CTX_sess_set_get_cb
SSL_CTX_sess_set_new_cb
SSL_CTX_sess_set_remove_cb
SSL_CTX_sessions
SSL_CTX_set_cert_store
SSL_CTX_set_cert_verify_callback
SSL_CTX_set_cipher_list
SSL_CTX_set_client_CA_list
SSL_CTX_set_client_cert_cb
SSL_CTX_set_client_cert_engine
SSL_CTX_set_cookie_generate_cb
SSL_CTX_set_cookie_verify_cb
SSL_CTX_set_default_passwd_cb
SSL_CTX_set_default_passwd_cb_userdata
SSL_CTX_set_default_verify_paths
SSL_CTX_set_ex_data
SSL_CTX_set_generate_session_id
SSL_CTX_set_info_callback
SSL_CTX_set_msg_callback
SSL_CTX_set_purpose
SSL_CTX_set_quiet_shutdown
SSL_CTX_set_session_id_context
SSL_CTX_set_ssl_version
SSL_CTX_set_timeout
SSL_CTX_set_tmp_dh_callback
SSL_CTX_set_tmp_ecdh_callback
SSL_CTX_set_tmp_rsa_callback
SSL_CTX_set_trust
SSL_CTX_set_verify
SSL_CTX_set_verify_depth
SSL_CTX_use_PrivateKey
SSL_CTX_use_PrivateKey_ASN1
SSL_CTX_use_PrivateKey_file
SSL_CTX_use_RSAPrivateKey
SSL_CTX_use_RSAPrivateKey_ASN1
SSL_CTX_use_RSAPrivateKey_file
SSL_CTX_use_certificate
SSL_CTX_use_certificate_ASN1
SSL_CTX_use_certificate_chain_file
SSL_CTX_use_certificate_file
SSL_SESSION_cmp
SSL_SESSION_free
SSL_SESSION_get_ex_data
SSL_SESSION_get_ex_new_index
SSL_SESSION_get_id
SSL_SESSION_get_time
SSL_SESSION_get_timeout
SSL_SESSION_hash
SSL_SESSION_new
SSL_SESSION_print
SSL_SESSION_print_fp
SSL_SESSION_set_ex_data
SSL_SESSION_set_time
SSL_SESSION_set_timeout
SSL_accept
SSL_add_client_CA
SSL_add_dir_cert_subjects_to_stack
SSL_add_file_cert_subjects_to_stack
SSL_alert_desc_string
SSL_alert_desc_string_long
SSL_alert_type_string
SSL_alert_type_string_long
SSL_callback_ctrl
SSL_check_private_key
SSL_clear
SSL_connect
SSL_copy_session_id
SSL_ctrl
SSL_do_handshake
SSL_dup
SSL_dup_CA_list
SSL_free
SSL_get1_session
SSL_get_SSL_CTX
SSL_get_certificate
SSL_get_cipher_list
SSL_get_ciphers
SSL_get_client_CA_list
SSL_get_current_cipher
SSL_get_current_compression
SSL_get_current_expansion
SSL_get_default_timeout
SSL_get_error
SSL_get_ex_data
SSL_get_ex_data_X509_STORE_CTX_idx
SSL_get_ex_new_index
SSL_get_fd
SSL_get_finished
SSL_get_info_callback
SSL_get_peer_cert_chain
SSL_get_peer_certificate
SSL_get_peer_finished
SSL_get_privatekey
SSL_get_quiet_shutdown
SSL_get_rbio
SSL_get_read_ahead
SSL_get_rfd
SSL_get_servername
SSL_get_servername_type
SSL_get_session
SSL_get_shared_ciphers
SSL_get_shutdown
SSL_get_ssl_method
SSL_get_verify_callback
SSL_get_verify_depth
SSL_get_verify_mode
SSL_get_verify_result
SSL_get_version
SSL_get_wbio
SSL_get_wfd
SSL_has_matching_session_id
SSL_library_init
SSL_load_client_CA_file
SSL_load_error_strings
SSL_new
SSL_peek
SSL_pending
SSL_read
SSL_renegotiate
SSL_renegotiate_pending
SSL_rstate_string
SSL_rstate_string_long
SSL_set_SSL_CTX
SSL_set_accept_state
SSL_set_bio
SSL_set_cipher_list
SSL_set_client_CA_list
SSL_set_connect_state
SSL_set_ex_data
SSL_set_fd
SSL_set_generate_session_id
SSL_set_info_callback
SSL_set_msg_callback
SSL_set_purpose
SSL_set_quiet_shutdown
SSL_set_read_ahead
SSL_set_rfd
SSL_set_session
SSL_set_session_id_context
SSL_set_shutdown
SSL_set_ssl_method
SSL_set_tmp_dh_callback
SSL_set_tmp_ecdh_callback
SSL_set_tmp_rsa_callback
SSL_set_trust
SSL_set_verify
SSL_set_verify_depth
SSL_set_verify_result
SSL_set_wfd
SSL_shutdown
SSL_state
SSL_state_string
SSL_state_string_long
SSL_use_PrivateKey
SSL_use_PrivateKey_ASN1
SSL_use_PrivateKey_file
SSL_use_RSAPrivateKey
SSL_use_RSAPrivateKey_ASN1
SSL_use_RSAPrivateKey_file
SSL_use_certificate
SSL_use_certificate_ASN1
SSL_use_certificate_file
SSL_version
SSL_want
SSL_write
SSLv23_client_method
SSLv23_method
SSLv23_server_method
SSLv2_client_method
SSLv2_method
SSLv2_server_method
SSLv3_client_method
SSLv3_method
SSLv3_server_method
TLSv1_client_method
TLSv1_method
TLSv1_server_method
d2i_SSL_SESSION
i2d_SSL_SESSION
ssl2_ciphers
ssl3_ciphers

Sections

.text
Size: 192KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
bin/update.cmd
.cmd .vbs
bin/xmlcache.exe
.exe windows:4 windows x86

e7ed7a51ae741e3be70582283ad0f690

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libmgr

_Z10FileExistsRKSs
_Z10SetWorkDirSsi
_Z11GetNodePropP8_xmlNodePKc
_Z17WriteSimpleConfigRKSsRSt3mapISsSsSt4lessISsESaISt4pairIS_SsEEESs
_Z3Strx
_Z7ReplaceRKSsS0_Ss
_Z9CreateDirRKSsiii
_ZN3Dir8ReadFileEv
_ZN3DirC1ERKSs
_ZN3DirD1Ev
_ZN5xpathC1EP7_xmlDocSs
_ZN5xpathD1Ev
_ZN5xpathixEi

libxml2

xmlAddChild
xmlCopyNode
xmlDocCopyNode
xmlDocGetRootElement
xmlDocSetRootElement
xmlFree
xmlFreeDoc
xmlGetLastError
xmlGetProp
xmlNewDoc
xmlNewNode
xmlParseFile
xmlSaveFile
xmlSetProp
xmlUnlinkNode

kernel32

CloseHandle
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject

msvcrt

_strdup
_write
__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_fmode
_initterm
_iob
_lock
_onexit
_stat
_unlock
abort
calloc
exit
fprintf
fputc
fputs
free
fwrite
malloc
memchr
memcpy
memmove
memset
printf
realloc
signal
sprintf
strcmp
strcpy
strerror
strlen
vfprintf

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bin/xmlinstall.exe
.exe windows:4 windows x86

5a6eadc086ad43b266ad7c21ca44f06c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libxml2

xmlAddChild
xmlAddPrevSibling
xmlDocCopyNode
xmlDocGetRootElement
xmlDocSetRootElement
xmlFreeDoc
xmlGetLastError
xmlGetProp
xmlNewDoc
xmlNewDocText
xmlNewNode
xmlNodeSetContent
xmlParseFile
xmlSaveFormatFile
xmlUnlinkNode
xmlUnsetProp

kernel32

CloseHandle
CreateSemaphoreA
ExitProcess
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
InterlockedDecrement
InterlockedIncrement
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualProtect
VirtualQuery
WaitForSingleObject

msvcrt

_stat
_strdup
_unlink
_write
__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
atoi
exit
fprintf
fputc
fputs
free
fwrite
getenv
malloc
memchr
memcpy
memmove
memset
printf
puts
realloc
signal
sprintf
strcmp
strcpy
strerror
strlen

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 168B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
bin/zlib1.dll
.dll windows:4 windows x86

836a7d41d44b617141edbee32b493b8e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

fclose
free
_vsnprintf
fflush
fseek
fputc
malloc
strerror
clearerr
ftell
_errno
_fdopen
fopen
sprintf
_initterm
_adjust_fdiv
fread
fprintf
fwrite

kernel32

Sleep
DisableThreadLibraryCalls

Exports

Exports

adler32
compress
compress2
compressBound
crc32
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
get_crc_table
gzclearerr
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cgi/iismgr.exe
.exe windows:4 windows x86

38969a5160ff3bdda1040b1aa7ab2306

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

CloseServiceHandle
OpenSCManagerW
OpenServiceW
QueryServiceStatusEx
StartServiceW

kernel32

CloseHandle
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
FormatMessageW
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte

msvcrt

_read
_write
__dllonexit
__getmainargs
__initenv
__lconv_init
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_environ
_exit
_fmode
_initterm
_iob
_lock
_onexit
_unlock
_vsnprintf
abort
atoi
calloc
exit
fprintf
fputc
fputs
free
fwrite
getenv
malloc
memchr
memcpy
memmove
memset
printf
puts
raise
realloc
signal
sprintf
strcmp
strcpy
strerror
strlen
vfprintf
wcslen

user32

MessageBoxA

ws2_32

WSACleanup
WSAGetLastError
WSAStartup
WSAStringToAddressW
__WSAFDIsSet
closesocket
connect
htons
recv
select
send
socket

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
cgi/web.config
.xml
etc/ispmgr.xml
.xml .js
etc/ispmgr_eula_en.xml
etc/ispmgr_eula_fr.xml
etc/ispmgr_eula_ru.xml
etc/ispmgr_lic.txt
etc/ispmgr_msg_bg.xml
.xml
etc/ispmgr_msg_de.xml
.xml
etc/ispmgr_msg_en.xml
.xml
etc/ispmgr_msg_es.xml
.xml
etc/ispmgr_msg_fr.xml
.xml
etc/ispmgr_msg_nl.xml
.xml
etc/ispmgr_msg_pl.xml
.xml
etc/ispmgr_msg_ru.xml
.xml
etc/ispmgr_msg_ua.xml
.xml
var/addon/7-zip32.dll
.dll windows:4 windows x86

49ead5d6f5bdbe7ee2122e2b9c28c45f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFullPathNameW
GetExitCodeThread
WaitForSingleObject
GetProcAddress
GetModuleHandleA
MultiByteToWideChar
GetCurrentProcessId
ResumeThread
lstrcpynA
GetTickCount
FileTimeToDosDateTime
FileTimeToSystemTime
LockResource
SizeofResource
LoadResource
FindResourceA
SetFileApisToOEM
SetFileApisToANSI
AreFileApisANSI
GetLastError
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WideCharToMultiByte
FreeLibrary
LoadLibraryA
LocalFree
FormatMessageA
FormatMessageW
GetWindowsDirectoryA
GetWindowsDirectoryW
SetFileTime
CreateFileW
SetLastError
SetFileAttributesA
RemoveDirectoryA
MoveFileA
SetFileAttributesW
RemoveDirectoryW
MoveFileW
CreateDirectoryA
CreateDirectoryW
DeleteFileA
DeleteFileW
lstrlenA
GetVersionExA
CloseHandle
GetCurrentDirectoryA
SetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryW
SearchPathA
SearchPathW
GetTempPathA
GetTempPathW
GetTempFileNameA
GetTempFileNameW
FindClose
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
CreateFileA
GetFileSize
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
GetCurrentProcess
CompareFileTime
GetSystemInfo
GetStdHandle
WaitForMultipleObjects
LocalFileTimeToFileTime
DosDateTimeToFileTime
OpenEventA
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
SystemTimeToFileTime
GetSystemTime
QueryPerformanceCounter
GetCurrentThreadId
VirtualAlloc
VirtualFree
CreateEventA
SetEvent
ResetEvent
FileTimeToLocalFileTime
ReleaseSemaphore
InitializeCriticalSection
GetFullPathNameA
CreateSemaphoreA

user32

InvalidateRect
LoadIconA
CheckDlgButton
CharUpperA
CharUpperW
MoveWindow
EndDialog
EnumWindows
CharPrevExA
GetWindow
GetLastActivePopup
wsprintfA
SendDlgItemMessageA
LoadStringA
SetWindowTextA
ShowWindow
ScreenToClient
GetSystemMetrics
DestroyWindow
IsDlgButtonChecked
EnableWindow
DialogBoxParamA
RegisterWindowMessageA
DialogBoxParamW
DrawTextExW
GetDC
GetClientRect
GetDlgItem
DrawTextExA
ReleaseDC
GetWindowTextLengthA
GetWindowTextLengthW
GetDlgItemTextW
SetDlgItemTextA
GetDlgItemTextA
SetDlgItemTextW
GetDesktopWindow
CreateDialogParamW
CreateDialogParamA
SetWindowPos
GetWindowRect
SystemParametersInfoA
TranslateMessage
GetMessageA
IsDialogMessageA
SetWindowLongA
DispatchMessageA
PostMessageA
SendMessageA
GetWindowLongA
SendMessageW
CharLowerA
GetWindowThreadProcessId
CharLowerW

gdi32

SelectObject

shell32

SHGetFileInfoA

oleaut32

VariantCopy
VariantClear
SysFreeString
SysAllocString

msvcrt

_isatty
_fileno
_initterm
?terminate@@YAXXZ
_adjust_fdiv
__dllonexit
??1type_info@@UAE@XZ
_onexit
memcpy
_except_handler3
fclose
wcsncpy
_iob
wcslen
strncpy
_wcsicmp
memmove
malloc
free
swprintf
_wcsdup
memset
memcmp
sprintf
_beginthreadex
strlen
strcspn
_CxxThrowException
__CxxFrameHandler
_purecall

Exports

Exports

SevenZip
SevenZipCheckArchive
SevenZipClearOwnerWindow
SevenZipCloseArchive
SevenZipConfigDialog
SevenZipFindFirst
SevenZipFindNext
SevenZipGetArcAccessTimeEx
SevenZipGetArcCompressedSize
SevenZipGetArcCompressedSizeEx
SevenZipGetArcCreateTimeEx
SevenZipGetArcDate
SevenZipGetArcFileName
SevenZipGetArcFileSize
SevenZipGetArcFileSizeEx
SevenZipGetArcOSType
SevenZipGetArcOriginalSize
SevenZipGetArcOriginalSizeEx
SevenZipGetArcRatio
SevenZipGetArcTime
SevenZipGetArcWriteTimeEx
SevenZipGetArchiveType
SevenZipGetAttribute
SevenZipGetBackGroundMode
SevenZipGetCRC
SevenZipGetCompressedSize
SevenZipGetCompressedSizeEx
SevenZipGetCursorInterval
SevenZipGetCursorMode
SevenZipGetDate
SevenZipGetFileCount
SevenZipGetFileName
SevenZipGetMethod
SevenZipGetOSType
SevenZipGetOriginalSize
SevenZipGetOriginalSizeEx
SevenZipGetRatio
SevenZipGetRunning
SevenZipGetSubVersion
SevenZipGetTime
SevenZipGetVersion
SevenZipGetWriteTime
SevenZipGetWriteTimeEx
SevenZipIsSFXFile
SevenZipKillOwnerWindowEx
SevenZipKillOwnerWindowEx64
SevenZipOpenArchive
SevenZipQueryFunctionList
SevenZipSetBackGroundMode
SevenZipSetCursorInterval
SevenZipSetCursorMode
SevenZipSetOwnerWindow
SevenZipSetOwnerWindowEx
SevenZipSetOwnerWindowEx64
SevenZipSetUnicodeMode

Sections

.text
Size: 349KB - Virtual size: 349KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
var/addon/filemgr.exe
.exe windows:4 windows x86

6d75cc14023707d86b8f6decbd2fa449

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

7-zip32

ord1
ord200
ord22
ord12
ord23
ord24
ord21

advapi32

GetNamedSecurityInfoW
SetEntriesInAclW
SetNamedSecurityInfoW
GetSecurityDescriptorOwner
GetSecurityDescriptorGroup
GetSecurityDescriptorDacl
GetAclInformation
GetAce
CreateProcessAsUserW
CreateProcessWithLogonW
LogonUserW
ImpersonateLoggedOnUser
IsValidSecurityDescriptor
GetSecurityDescriptorControl
GetSecurityDescriptorLength
MakeSelfRelativeSD
ConvertSecurityDescriptorToStringSecurityDescriptorW
ConvertStringSecurityDescriptorToSecurityDescriptorW
MakeAbsoluteSD
InitializeSecurityDescriptor
SetSecurityInfo
GetSecurityInfo
CopySid
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
InitializeAcl
AddAccessAllowedAce
IsValidAcl
SetSecurityDescriptorDacl
AddAccessDeniedAce
IsValidSid
ConvertSidToStringSidW
LookupAccountSidW
LookupAccountNameW
GetLengthSid
AllocateAndInitializeSid
FreeSid
ConvertStringSidToSidW
CreateWellKnownSid
GetTokenInformation
DeleteAce
PrivilegeCheck
LookupPrivilegeValueW
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeDisplayNameW
GetUserNameW
IsTextUnicode

libidn-11

idna_to_ascii_8z
idna_to_unicode_8z8z

libxml2

xmlAddChild
xmlCheckUTF8
xmlCopyDoc
xmlCopyNode
xmlDocDump
xmlDocDumpFormatMemory
xmlDocGetRootElement
xmlDocSetRootElement
xmlFree
xmlFreeDoc
xmlFreeNode
xmlGetProp
xmlGetUTF8Char
xmlNewChild
xmlNewDoc
xmlNewNode
xmlNodeGetContent
xmlNodeSetContent
xmlParseFile
xmlParseMemory
xmlSaveFile
xmlSchemaFree
xmlSchemaFreeParserCtxt
xmlSchemaFreeValidCtxt
xmlSchemaNewMemParserCtxt
xmlSchemaNewParserCtxt
xmlSchemaNewValidCtxt
xmlSchemaParse
xmlSchemaSetParserStructuredErrors
xmlSchemaSetValidStructuredErrors
xmlSchemaValidateDoc
xmlSetProp
xmlUnlinkNode
xmlXPathEvalExpression
xmlXPathFreeContext
xmlXPathFreeObject
xmlXPathNewContext
xmlXPathRegisterNs

kernel32

AssignProcessToJobObject
CloseHandle
CompareStringW
CopyFileW
CreateFileA
CreateFileW
CreateJobObjectW
CreatePipe
CreateProcessA
CreateProcessW
CreateSemaphoreA
DeleteCriticalSection
DeleteFileW
DeviceIoControl
EnterCriticalSection
ExpandEnvironmentStringsW
FileTimeToSystemTime
FindClose
FindFirstFileW
FindFirstVolumeW
FindNextFileW
FindNextVolumeW
FindVolumeClose
FormatMessageW
FreeLibrary
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDiskFreeSpaceExW
GetDriveTypeW
GetExitCodeProcess
GetFileAttributesA
GetFileAttributesExW
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetLastError
GetLogicalDriveStringsW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetSystemTimeAsFileTime
GetTempFileNameW
GetTickCount
GetTimeZoneInformation
GetVersionExW
GetVolumePathNamesForVolumeNameW
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
LocalAlloc
LocalFree
LockFile
MoveFileExW
MultiByteToWideChar
PeekNamedPipe
QueryPerformanceCounter
ReadFile
ReleaseSemaphore
RemoveDirectoryW
ResumeThread
SetCurrentDirectoryW
SetEndOfFile
SetErrorMode
SetFileAttributesW
SetFilePointer
SetFilePointerEx
SetHandleInformation
SetInformationJobObject
SetLastError
SetUnhandledExceptionFilter
Sleep
SystemTimeToTzSpecificLocalTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

_close
_fdopen
_fileno
_getpid
_mkdir
_open
_read
_rmdir
_strdup
_unlink
_write
___lc_codepage_func
__dllonexit
__doserrno
__getmainargs
__initenv
__lconv_init
__mb_cur_max
__pioinfo
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_errno
_filelengthi64
_fileno
_findclose
_findfirst
_findnext
_fmode
_fstat
_fstat64
_fullpath
_i64tow
_initterm
_iob
_lock
_lseeki64
_onexit
_setmode
_snwprintf
_stat
_strnicmp
_unlock
_vsnprintf
_write
abort
atoi
calloc
ctime
exit
fclose
fflush
fgetpos
fopen
fprintf
fputc
fputs
fread
free
fsetpos
fwrite
getc
getenv
getwc
isspace
iswctype
localeconv
localtime
malloc
memchr
memcmp
memcpy
memmove
memset
mktime
printf
putc
puts
putwc
rand
realloc
rename
setlocale
setvbuf
signal
sprintf
srand
strcmp
strcoll
strcpy
strerror
strftime
strlen
strrchr
strtod
strtol
strtoul
strxfrm
time
tolower
toupper
towlower
towupper
ungetc
ungetwc
vfprintf
wcschr
wcscoll
wcscpy
wcsftime
wcslen
wcsncat
wcsncmp
wcsrchr
wcsxfrm

netapi32

NetApiBufferFree
NetLocalGroupAdd
NetLocalGroupAddMembers
NetLocalGroupDel
NetLocalGroupDelMembers
NetLocalGroupEnum
NetLocalGroupGetInfo
NetLocalGroupGetMembers
NetLocalGroupSetInfo
NetUserAdd
NetUserDel
NetUserEnum
NetUserGetInfo
NetUserGetLocalGroups
NetUserSetInfo

shell32

SHCreateDirectoryExW
SHFileOperationW
SHGetSpecialFolderPathW

shlwapi

PathCanonicalizeW
PathIsDirectoryEmptyW
PathUnExpandEnvStringsW

user32

CharLowerW
CharUpperW

Sections

.text
Size: 930KB - Virtual size: 930KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
var/addon/iconv.dll
.dll windows:4 windows x86

2fecad82d36d88ec85ac574c16ce0ddd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

malloc
memcmp
free
qsort
strlen
sprintf
memcpy
strcmp
_initterm
_adjust_fdiv
memset
_errno
strchr
abort
_strdup

kernel32

GetModuleFileNameA
GetACP
Sleep

Exports

Exports

_libiconv_version
libiconv
libiconv_close
libiconv_open
libiconv_set_relocation_prefix
libiconvctl
libiconvlist
locale_charset

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 800KB - Virtual size: 799KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
var/addon/libidn-11.dll
.dll windows:4 windows x86

61e67c3ba7cad886c84e3a1693d45d3e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery

msvcrt

_strdup
__dllonexit
_amsg_exit
_errno
_initterm
_iob
_lock
_onexit
_unlock
abort
calloc
free
fwrite
getenv
malloc
memcpy
memmove
realloc
strcat
strcmp
strcpy
strlen
vfprintf

Exports

Exports

idn_free
idna_strerror
idna_to_ascii_4i
idna_to_ascii_4z
idna_to_ascii_8z
idna_to_ascii_lz
idna_to_unicode_44i
idna_to_unicode_4z4z
idna_to_unicode_8z4z
idna_to_unicode_8z8z
idna_to_unicode_8zlz
idna_to_unicode_lzlz
pr29_4
pr29_4z
pr29_8z
pr29_strerror
punycode_decode
punycode_encode
punycode_strerror
stringprep
stringprep_4i
stringprep_4zi
stringprep_check_version
stringprep_convert
stringprep_iscsi
stringprep_iscsi_prohibit
stringprep_kerberos5
stringprep_locale_charset
stringprep_locale_to_utf8
stringprep_nameprep
stringprep_plain
stringprep_profile
stringprep_profiles
stringprep_rfc3454_A_1
stringprep_rfc3454_B_1
stringprep_rfc3454_B_2
stringprep_rfc3454_B_3
stringprep_rfc3454_C_1_1
stringprep_rfc3454_C_1_2
stringprep_rfc3454_C_2_1
stringprep_rfc3454_C_2_2
stringprep_rfc3454_C_3
stringprep_rfc3454_C_4
stringprep_rfc3454_C_5
stringprep_rfc3454_C_6
stringprep_rfc3454_C_7
stringprep_rfc3454_C_8
stringprep_rfc3454_C_9
stringprep_rfc3454_D_1
stringprep_rfc3454_D_2
stringprep_saslprep
stringprep_saslprep_space_map
stringprep_strerror
stringprep_trace
stringprep_ucs4_nfkc_normalize
stringprep_ucs4_to_utf8
stringprep_unichar_to_utf8
stringprep_utf8_nfkc_normalize
stringprep_utf8_to_locale
stringprep_utf8_to_ucs4
stringprep_utf8_to_unichar
stringprep_xmpp_nodeprep
stringprep_xmpp_nodeprep_prohibit
stringprep_xmpp_resourceprep
tld_check_4
tld_check_4t
tld_check_4tz
tld_check_4z
tld_check_8z
tld_check_lz
tld_default_table
tld_get_4
tld_get_4z
tld_get_table
tld_get_z
tld_strerror

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 964B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/35
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/51
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/63
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/77
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/113
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/124
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
var/addon/libxml2.dll
.dll windows:4 windows x86

beb206990ace73d28461bedfc99714bd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wsock32

inet_ntoa
WSACleanup
__WSAFDIsSet
getsockopt
WSAGetLastError
WSAStartup
getsockname
bind
listen
gethostbyname
htons
socket
connect
send
select
recv
closesocket

iconv

libiconv
libiconv_open
libiconv_close

zlib1

inflateEnd
inflateInit2_
inflate
gzopen
gzdopen
gzread
gzwrite
gzclose
deflateEnd
crc32
deflateInit2_
deflate
gzrewind

kernel32

TlsSetValue
WaitForSingleObject
CloseHandle
CreateMutexA
GetModuleHandleA
GetModuleFileNameA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedCompareExchange
GetCurrentThreadId
TlsFree
Sleep
TlsAlloc
InterlockedIncrement
TlsGetValue
MultiByteToWideChar
GetProcAddress
FreeLibrary
LoadLibraryA
GetVersionExA
ReleaseMutex

msvcrt

_read
_close
_open
_adjust_fdiv
_initterm
_CIfmod
_CIpow
_write
_dup
vfprintf
fprintf
getenv
strncpy
_snprintf
_iob
fputc
fclose
fopen
sscanf
free
toupper
memmove
_errno
_getcwd
_vsnprintf
realloc
malloc
strchr
strncmp
strtol
fwrite
_wfopen
_stat
_wstat
fread
fflush
printf
floor
_isnan
_fpclass

Exports

Exports

UTF8ToHtml
UTF8Toisolat1
__docbDefaultSAXHandler
__htmlDefaultSAXHandler
__oldXMLWDcompatibility
__xmlBufferAllocScheme
__xmlDefaultBufferSize
__xmlDefaultSAXHandler
__xmlDefaultSAXLocator
__xmlDeregisterNodeDefaultValue
__xmlDoValidityCheckingDefaultValue
__xmlErrEncoding
__xmlGenericError
__xmlGenericErrorContext
__xmlGetWarningsDefaultValue
__xmlIndentTreeOutput
__xmlKeepBlanksDefaultValue
__xmlLastError
__xmlLineNumbersDefaultValue
__xmlLoadExtDtdDefaultValue
__xmlOutputBufferCreateFilenameValue
__xmlParserDebugEntities
__xmlParserInputBufferCreateFilenameValue
__xmlParserVersion
__xmlPedanticParserDefaultValue
__xmlRaiseError
__xmlRegisterNodeDefaultValue
__xmlSaveNoEmptyTags
__xmlSimpleError
__xmlStructuredError
__xmlSubstituteEntitiesDefaultValue
__xmlTreeIndentString
attribute
attributeDecl
cdataBlock
characters
checkNamespace
comment
docbCreateFileParserCtxt
docbCreatePushParserCtxt
docbDefaultSAXHandlerInit
docbEncodeEntities
docbFreeParserCtxt
docbParseChunk
docbParseDoc
docbParseDocument
docbParseFile
docbSAXParseDoc
docbSAXParseFile
elementDecl
emptyExp
endDocument
endElement
entityDecl
externalSubset
forbiddenExp
getColumnNumber
getEntity
getLineNumber
getNamespace
getParameterEntity
getPublicId
getSystemId
globalNamespace
hasExternalSubset
hasInternalSubset
htmlAttrAllowed
htmlAutoCloseTag
htmlCreateFileParserCtxt
htmlCreateMemoryParserCtxt
htmlCreatePushParserCtxt
htmlCtxtReadDoc
htmlCtxtReadFd
htmlCtxtReadFile
htmlCtxtReadIO
htmlCtxtReadMemory
htmlCtxtReset
htmlCtxtUseOptions
htmlDefaultSAXHandlerInit
htmlDocContentDumpFormatOutput
htmlDocContentDumpOutput
htmlDocDump
htmlDocDumpMemory
htmlDocDumpMemoryFormat
htmlElementAllowedHere
htmlElementStatusHere
htmlEncodeEntities
htmlEntityLookup
htmlEntityValueLookup
htmlFreeParserCtxt
htmlGetMetaEncoding
htmlHandleOmittedElem
htmlInitAutoClose
htmlIsAutoClosed
htmlIsBooleanAttr
htmlIsScriptAttribute
htmlNewDoc
htmlNewDocNoDtD
htmlNewParserCtxt
htmlNodeDump
htmlNodeDumpFile
htmlNodeDumpFileFormat
htmlNodeDumpFormatOutput
htmlNodeDumpOutput
htmlNodeStatus
htmlParseCharRef
htmlParseChunk
htmlParseDoc
htmlParseDocument
htmlParseElement
htmlParseEntityRef
htmlParseFile
htmlReadDoc
htmlReadFd
htmlReadFile
htmlReadIO
htmlReadMemory
htmlSAXParseDoc
htmlSAXParseFile
htmlSaveFile
htmlSaveFileEnc
htmlSaveFileFormat
htmlSetMetaEncoding
htmlTagLookup
ignorableWhitespace
initGenericErrorDefaultFunc
initdocbDefaultSAXHandler
inithtmlDefaultSAXHandler
initxmlDefaultSAXHandler
inputPop
inputPush
internalSubset
isStandalone
isolat1ToUTF8
namePop
namePush
namespaceDecl
nodePop
nodePush
notationDecl
processingInstruction
reference
resolveEntity
setDocumentLocator
setNamespace
startDocument
startElement
unparsedEntityDecl
valuePop
valuePush
xlinkGetDefaultDetect
xlinkGetDefaultHandler
xlinkIsLink
xlinkSetDefaultDetect
xlinkSetDefaultHandler
xmlACatalogAdd
xmlACatalogDump
xmlACatalogRemove
xmlACatalogResolve
xmlACatalogResolvePublic
xmlACatalogResolveSystem
xmlACatalogResolveURI
xmlAddAttributeDecl
xmlAddChild
xmlAddChildList
xmlAddDocEntity
xmlAddDtdEntity
xmlAddElementDecl
xmlAddEncodingAlias
xmlAddID
xmlAddNextSibling
xmlAddNotationDecl
xmlAddPrevSibling
xmlAddRef
xmlAddSibling
xmlAllocOutputBuffer
xmlAllocParserInputBuffer
xmlAttrSerializeTxtContent
xmlAutomataCompile
xmlAutomataGetInitState
xmlAutomataIsDeterminist
xmlAutomataNewAllTrans
xmlAutomataNewCountTrans
xmlAutomataNewCountTrans2
xmlAutomataNewCountedTrans
xmlAutomataNewCounter
xmlAutomataNewCounterTrans
xmlAutomataNewEpsilon
xmlAutomataNewNegTrans
xmlAutomataNewOnceTrans
xmlAutomataNewOnceTrans2
xmlAutomataNewState
xmlAutomataNewTransition
xmlAutomataNewTransition2
xmlAutomataSetFinalState
xmlBoolToText
xmlBufferAdd
xmlBufferAddHead
xmlBufferCCat
xmlBufferCat
xmlBufferContent
xmlBufferCreate
xmlBufferCreateSize
xmlBufferCreateStatic
xmlBufferDump
xmlBufferEmpty
xmlBufferFree
xmlBufferGrow
xmlBufferLength
xmlBufferResize
xmlBufferSetAllocationScheme
xmlBufferShrink
xmlBufferWriteCHAR
xmlBufferWriteChar
xmlBufferWriteQuotedString
xmlBuildQName
xmlBuildRelativeURI
xmlBuildURI
xmlByteConsumed
xmlC14NDocDumpMemory
xmlC14NDocSave
xmlC14NDocSaveTo
xmlC14NExecute
xmlCanonicPath
xmlCatalogAdd
xmlCatalogAddLocal
xmlCatalogCleanup
xmlCatalogConvert
xmlCatalogDump
xmlCatalogFreeLocal
xmlCatalogGetDefaults
xmlCatalogGetPublic
xmlCatalogGetSystem
xmlCatalogIsEmpty
xmlCatalogLocalResolve
xmlCatalogLocalResolveURI
xmlCatalogRemove
xmlCatalogResolve
xmlCatalogResolvePublic
xmlCatalogResolveSystem
xmlCatalogResolveURI
xmlCatalogSetDebug
xmlCatalogSetDefaultPrefer
xmlCatalogSetDefaults
xmlCharEncCloseFunc
xmlCharEncFirstLine
xmlCharEncInFunc
xmlCharEncOutFunc
xmlCharInRange
xmlCharStrdup
xmlCharStrndup
xmlCheckFilename
xmlCheckHTTPInput
xmlCheckLanguageID
xmlCheckUTF8
xmlCheckVersion
xmlCleanupCharEncodingHandlers
xmlCleanupEncodingAliases
xmlCleanupGlobals
xmlCleanupInputCallbacks
xmlCleanupMemory
xmlCleanupOutputCallbacks
xmlCleanupParser
xmlCleanupPredefinedEntities
xmlCleanupThreads
xmlClearNodeInfoSeq
xmlClearParserCtxt
xmlConvertSGMLCatalog
xmlCopyAttributeTable
xmlCopyChar
xmlCopyCharMultiByte
xmlCopyDoc
xmlCopyDocElementContent
xmlCopyDtd
xmlCopyElementContent
xmlCopyElementTable
xmlCopyEntitiesTable
xmlCopyEnumeration
xmlCopyError
xmlCopyNamespace
xmlCopyNamespaceList
xmlCopyNode
xmlCopyNodeList
xmlCopyNotationTable
xmlCopyProp
xmlCopyPropList
xmlCreateDocParserCtxt
xmlCreateEntitiesTable
xmlCreateEntityParserCtxt
xmlCreateEnumeration
xmlCreateFileParserCtxt
xmlCreateIOParserCtxt
xmlCreateIntSubset
xmlCreateMemoryParserCtxt
xmlCreatePushParserCtxt
xmlCreateURI
xmlCreateURLParserCtxt
xmlCtxtGetLastError
xmlCtxtReadDoc
xmlCtxtReadFd
xmlCtxtReadFile
xmlCtxtReadIO
xmlCtxtReadMemory
xmlCtxtReset
xmlCtxtResetLastError
xmlCtxtResetPush
xmlCtxtUseOptions
xmlCurrentChar
xmlDOMWrapAdoptNode
xmlDOMWrapCloneNode
xmlDOMWrapFreeCtxt
xmlDOMWrapNewCtxt
xmlDOMWrapReconcileNamespaces
xmlDOMWrapRemoveNode
xmlDebugCheckDocument
xmlDebugDumpAttr
xmlDebugDumpAttrList
xmlDebugDumpDTD
xmlDebugDumpDocument
xmlDebugDumpDocumentHead
xmlDebugDumpEntities
xmlDebugDumpNode
xmlDebugDumpNodeList
xmlDebugDumpOneNode
xmlDebugDumpString
xmlDecodeEntities
xmlDefaultSAXHandlerInit
xmlDelEncodingAlias
xmlDeregisterNodeDefault
xmlDetectCharEncoding
xmlDictCleanup
xmlDictCreate
xmlDictCreateSub
xmlDictExists
xmlDictFree
xmlDictLookup
xmlDictOwns
xmlDictQLookup
xmlDictReference
xmlDictSize
xmlDocCopyNode
xmlDocCopyNodeList
xmlDocDump
xmlDocDumpFormatMemory
xmlDocDumpFormatMemoryEnc
xmlDocDumpMemory
xmlDocDumpMemoryEnc
xmlDocFormatDump
xmlDocGetRootElement
xmlDocSetRootElement
xmlDumpAttributeDecl
xmlDumpAttributeTable
xmlDumpElementDecl
xmlDumpElementTable
xmlDumpEntitiesTable
xmlDumpEntityDecl
xmlDumpNotationDecl
xmlDumpNotationTable
xmlElemDump
xmlEncodeEntities
xmlEncodeEntitiesReentrant
xmlEncodeSpecialChars
xmlErrMemory
xmlExpCtxtNbCons
xmlExpCtxtNbNodes
xmlExpDump
xmlExpExpDerive
xmlExpFree
xmlExpFreeCtxt
xmlExpGetLanguage
xmlExpGetStart
xmlExpIsNillable
xmlExpMaxToken
xmlExpNewAtom
xmlExpNewCtxt
xmlExpNewOr
xmlExpNewRange
xmlExpNewSeq
xmlExpParse
xmlExpRef
xmlExpStringDerive
xmlExpSubsume
xmlFileClose
xmlFileMatch
xmlFileOpen
xmlFileRead
xmlFindCharEncodingHandler
xmlFree
xmlFreeAttributeTable
xmlFreeAutomata
xmlFreeCatalog
xmlFreeDoc
xmlFreeDocElementContent
xmlFreeDtd
xmlFreeElementContent
xmlFreeElementTable
xmlFreeEntitiesTable
xmlFreeEnumeration
xmlFreeIDTable
xmlFreeInputStream
xmlFreeMutex
xmlFreeNode
xmlFreeNodeList
xmlFreeNotationTable
xmlFreeNs
xmlFreeNsList
xmlFreeParserCtxt
xmlFreeParserInputBuffer
xmlFreePattern
xmlFreePatternList
xmlFreeProp
xmlFreePropList
xmlFreeRMutex
xmlFreeRefTable
xmlFreeStreamCtxt
xmlFreeTextReader
xmlFreeTextWriter
xmlFreeURI
xmlFreeValidCtxt
xmlGcMemGet
xmlGcMemSetup
xmlGetBufferAllocationScheme
xmlGetCharEncodingHandler
xmlGetCharEncodingName
xmlGetCompressMode
xmlGetDocCompressMode
xmlGetDocEntity
xmlGetDtdAttrDesc
xmlGetDtdElementDesc
xmlGetDtdEntity
xmlGetDtdNotationDesc
xmlGetDtdQAttrDesc
xmlGetDtdQElementDesc
xmlGetEncodingAlias
xmlGetExternalEntityLoader
xmlGetFeature
xmlGetFeaturesList
xmlGetGlobalState
xmlGetID
xmlGetIntSubset
xmlGetLastChild
xmlGetLastError
xmlGetLineNo
xmlGetNoNsProp
xmlGetNodePath
xmlGetNsList
xmlGetNsProp
xmlGetParameterEntity
xmlGetPredefinedEntity
xmlGetProp
xmlGetRefs
xmlGetThreadId
xmlGetUTF8Char
xmlHandleEntity
xmlHasFeature
xmlHasNsProp
xmlHasProp
xmlHashAddEntry
xmlHashAddEntry2
xmlHashAddEntry3
xmlHashCopy
xmlHashCreate
xmlHashCreateDict
xmlHashFree
xmlHashLookup
xmlHashLookup2
xmlHashLookup3
xmlHashQLookup
xmlHashQLookup2
xmlHashQLookup3
xmlHashRemoveEntry
xmlHashRemoveEntry2
xmlHashRemoveEntry3
xmlHashScan
xmlHashScan3
xmlHashScanFull
xmlHashScanFull3
xmlHashSize
xmlHashUpdateEntry
xmlHashUpdateEntry2
xmlHashUpdateEntry3
xmlIOFTPClose
xmlIOFTPMatch
xmlIOFTPOpen
xmlIOFTPRead
xmlIOHTTPClose
xmlIOHTTPMatch
xmlIOHTTPOpen
xmlIOHTTPOpenW
xmlIOHTTPRead
xmlIOParseDTD
xmlInitCharEncodingHandlers
xmlInitGlobals
xmlInitMemory
xmlInitNodeInfoSeq
xmlInitParser
xmlInitParserCtxt
xmlInitThreads
xmlInitializeCatalog
xmlInitializeGlobalState

Sections

.text
Size: 724KB - Virtual size: 724KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
var/addon/zlib1.dll
.dll windows:4 windows x86

836a7d41d44b617141edbee32b493b8e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

fclose
free
_vsnprintf
fflush
fseek
fputc
malloc
strerror
clearerr
ftell
_errno
_fdopen
fopen
sprintf
_initterm
_adjust_fdiv
fread
fprintf
fwrite

kernel32

Sleep
DisableThreadLibraryCalls

Exports

Exports

adler32
compress
compress2
compressBound
crc32
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePrime
deflateReset
deflateSetDictionary
get_crc_table
gzclearerr
gzclose
gzdopen
gzeof
gzerror
gzflush
gzgetc
gzgets
gzopen
gzprintf
gzputc
gzputs
gzread
gzrewind
gzseek
gzsetparams
gztell
gzungetc
gzwrite
inflate
inflateBack
inflateBackEnd
inflateBackInit_
inflateCopy
inflateEnd
inflateInit2_
inflateInit_
inflateReset
inflateSetDictionary
inflateSync
inflateSyncPoint
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

Headers

File Characteristics

Sections

UPX0 Size: - Virtual size: 328KB

UPX1 Size: 229KB - Virtual size: 232KB

.rsrc Size: 1KB - Virtual size: 4KB

Headers

File Characteristics

Sections

.text Size: 438KB - Virtual size: 437KB

.rdata Size: 55KB - Virtual size: 55KB

.data Size: 27KB - Virtual size: 51KB

.rsrc Size: 1024B - Virtual size: 808B

27d678ab7f59de9d3b9c7dc6b25d4f62

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

Extended Key Usages

Key Usages

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88Certificate

Extended Key Usages

Key Usages

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40Certificate

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6Certificate

Extended Key Usages

Key Usages

61:0e:7d:a7:00:00:00:00:00:48Certificate

Extended Key Usages

Key Usages

ed:ee:70:88:a6:13:ca:0b:b5:fd:24:9d:c4:a9:f8:ec:02:56:b4:12Signer

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 4KB - Virtual size: 1KB

2fecad82d36d88ec85ac574c16ce0ddd

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 800KB - Virtual size: 799KB

.data Size: 4KB - Virtual size: 344B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 4KB

afab8d2677baf01e8cbb4b10e7e00537

Headers

File Characteristics

Imports

advapi32

httpapi

libidn-11

libmysql

zlib1

libxslt

libxml2

pthreadgc2

crypt32

kernel32

msvcrt

netapi32

odbc32

UPX0
Size: - Virtual size: 328KB

UPX1
Size: 229KB - Virtual size: 232KB

.rsrc
Size: 1KB - Virtual size: 4KB

.text
Size: 438KB - Virtual size: 437KB

.rdata
Size: 55KB - Virtual size: 55KB

.data
Size: 27KB - Virtual size: 51KB

.rsrc
Size: 1024B - Virtual size: 808B

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

61:0e:7d:a7:00:00:00:00:00:48
Certificate

ed:ee:70:88:a6:13:ca:0b:b5:fd:24:9d:c4:a9:f8:ec:02:56:b4:12
Signer

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 4KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 800KB - Virtual size: 799KB

.data
Size: 4KB - Virtual size: 344B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 2.4MB - Virtual size: 2.4MB

.data
Size: 26KB - Virtual size: 26KB

.rdata
Size: 168KB - Virtual size: 168KB

.bss
Size: - Virtual size: 2KB

.idata
Size: 17KB - Virtual size: 16KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 1024B - Virtual size: 700B

.text
Size: 720KB - Virtual size: 718KB

.rdata
Size: 256KB - Virtual size: 255KB

.data
Size: 64KB - Virtual size: 81KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 48KB - Virtual size: 45KB

.text
Size: 18KB - Virtual size: 17KB

.data
Size: 512B - Virtual size: 40B

.rdata
Size: 166KB - Virtual size: 165KB

.bss
Size: - Virtual size: 964B

.edata
Size: 2KB - Virtual size: 2KB

.idata
Size: 1KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 44B

.tls
Size: 512B - Virtual size: 32B

.reloc
Size: 1KB - Virtual size: 1KB

/4
Size: 1024B - Virtual size: 1024B

/19
Size: 4KB - Virtual size: 3KB

/35
Size: 4KB - Virtual size: 3KB

/51
Size: 49KB - Virtual size: 49KB

/63
Size: 9KB - Virtual size: 8KB

/77
Size: 12KB - Virtual size: 11KB

/89
Size: 5KB - Virtual size: 5KB

/102
Size: 2KB - Virtual size: 1KB

/113
Size: 23KB - Virtual size: 22KB

/124
Size: 2KB - Virtual size: 1KB