6670e66c34dbad6a10ddcbc11106fcd582f3789181af3ac7b2b18d910fd1830a[.]zip[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

6670e66c34dbad6a10ddcbc11106fcd582f3789181af3ac7b2b18d910fd1830a.zip.zip
Size

8.8MB
MD5

948db18e8b19184229ba80fa3559a7d7
SHA1

2e0598ff7f6f2b9f11656194f802080405c5f78e
SHA256

df09d6bf4ebb843448d3f0cfa4408d7f1730da33d5d4c0a12ad0f05d1b917870
SHA512

02bd175b3ec4bec9463037c80be111da3c2b6f4e14dcf9d2ef3d554806c12653f2fb68feb5fede59bb18604333ebdbdc09d28980bebbd4fa017abeb61f28aba5
SSDEEP

196608:qZ+Y9nB7h6nSro/y4e74JZPw+fr8KldeivI4Aka4mo:HYQSro/yHkJZLfr8s

Score

3^/10

Malware Config

Signatures

Unsigned PE 8 IoCs

Checks for missing Authenticode signature.

resource
unpack002/iWRAP3_Update_Client/TestEngine.dll
unpack002/iWRAP3_Update_Client/TestFlash.dll
unpack002/iWRAP3_Update_Client/aiupdate.exe
unpack002/iWRAP3_Update_Client/drivers/parspi.sys
unpack002/iWRAP3_Update_Client/flash.dll
unpack002/iWRAP3_Update_Client/pshelp.dll
unpack002/iWRAP3_Update_Client/pttransport.dll
unpack002/iWRAP3_Update_Client/spilpt.dll

Files

6670e66c34dbad6a10ddcbc11106fcd582f3789181af3ac7b2b18d910fd1830a.zip.zip
.zip

Password: infected
6670e66c34dbad6a10ddcbc11106fcd582f3789181af3ac7b2b18d910fd1830a.zip
.zip
iWRAP3_Update_Client/README_WARNING.txt
iWRAP3_Update_Client/TestEngine.dll
.dll windows:4 windows x86

08ebc55728cf2a11a993b111d9e04048

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pttransport

pttrans_xap_reset_and_go
pttrans_xap_go
pttrans_bccmd_cmd
pttrans_write_block_verify
pttrans_read_block_verify
pttrans_bccmd_init
pttrans_close
pttrans_xap_stopped
pttrans_setvar
pttrans_write
pttrans_getvar
pttrans_xap_stop
pttrans_write_verify
pttrans_read_verify
pttrans_open
pttrans_lock
pttrans_unlock
pttrans_enumerate_strings

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
QueryPerformanceFrequency
MulDiv
QueryPerformanceCounter
CreateFileMappingW
MapViewOfFile
TlsAlloc
TlsGetValue
TlsSetValue
ReleaseMutex
GetCurrentProcessId
CreateMutexW
SetThreadPriority
GetTickCount
InterlockedDecrement
InitializeCriticalSection
OutputDebugStringA
CloseHandle
CreateFileA
GetLastError
GetVersionExW
PurgeComm
WriteFile
ReadFile
SetCommMask
Sleep
GetOverlappedResult
ResetEvent
WaitForMultipleObjects
SetEvent
CreateFileW
SetCommTimeouts
SetupComm
SetCommState
EscapeCommFunction
GetCommModemStatus
WaitCommEvent
CreateEventW
LeaveCriticalSection
EnterCriticalSection
DeviceIoControl
CreateThread
TerminateThread
WaitForSingleObject
DeleteCriticalSection

msvcr80

memmove_s
__RTDynamicCast
free
_purecall
malloc
fprintf
strncpy
abort
toupper
__iob_func
calloc
memmove
printf
_setjmp3
longjmp
mbstowcs
wcstombs
wcschr
wcsstr
_swprintf
_ftime64
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_unlock
__dllonexit
_lock
_onexit
?terminate@@YAXXZ
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_except_handler4_common
fseek
ftell
fread
memset
fopen
fclose
sprintf
fwrite
??_U@YAPAXI@Z
memcpy
_time64
??_V@YAXPAX@Z
strrchr
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??2@YAPAXI@Z
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
??3@YAXPAX@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
__CxxFrameHandler3
_stricmp

msvcp80

??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??$?HDU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??Y?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_WI@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
?allocate@?$allocator@D@std@@QAEPADI@Z
?deallocate@?$allocator@D@std@@QAEXPADI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ID@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?erase@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@II@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IABV12@@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Unlock@_Mutex@std@@QAEXXZ
?_Lock@_Mutex@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??$?8_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA_NABV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@0@Z

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyW

Exports

Exports

bccmdBC5MMGetBatteryVoltage
bccmdBc3BuckReg
bccmdBc3Led0
bccmdBc3Led1
bccmdBc3MicEn
bccmdBc3PsuTrim
bccmdBuildName
bccmdChargerDisable
bccmdChargerPsuTrim
bccmdChargerStatus
bccmdChargerSupressLed0
bccmdDirectChargerPsuTrim
bccmdEnableDeviceUnderTestMode
bccmdFmGetIfOffset
bccmdFmGetRssi
bccmdFmGetSnr
bccmdFmGetStatus
bccmdFmSetFreq
bccmdFmSetupAudio
bccmdFmSwitchPower
bccmdFmVerifyRDSPi
bccmdGetAio
bccmdGetAnaXtalFtrim
bccmdGetBuildId
bccmdGetChipRevision
bccmdGetChipVersion
bccmdGetExternalClockPeriod
bccmdGetFirmwareCheck
bccmdGetFirmwareCheckMask
bccmdGetInterfaceVersion
bccmdGetPio
bccmdGetRadiotestInterfaceVersion
bccmdLed0
bccmdLed1
bccmdMemoryGet
bccmdMemorySet
bccmdProvokeFault
bccmdPsuBuckReg
bccmdPsuMicEn
bccmdRouteClock
bccmdRssiAcl
bccmdSetAnaXtalFtrim
bccmdSetAuxDac
bccmdSetColdReset
bccmdSetEeprom
bccmdSetHoppingOn
bccmdSetMicBias
bccmdSetPio
bccmdSetSingleChan
bccmdSetWarmReset
closeTestEngine
dmEnableDeviceUnderTestMode
dmRegisterReq
dmSetEventFilterAutoacceptConnection
dmSlave
dmWriteInquiryScanActivity
dmWritePageScanActivity
dmWriteScanEnable
get_freq_offset
hciConnectionStatus
hciCreateConnection
hciCreateConnectionNoInquiry
hciCreateConnectionNoWait
hciCreateScoConnection
hciDisconnect
hciEnableDeviceUnderTestMode
hciExitSniff
hciGetAclBytesRead
hciGetAclData
hciGetAclFileName
hciGetAclState
hciGetConnectionHandle
hciGetInquiryResults
hciGetLinkQuality
hciInquiry
hciInquiryCancel
hciLinkKeyRequestNegativeReply
hciPinCodeRequestReply
hciReadAfhChannelMap
hciReadRemoteNameRequest
hciReadRemoteVersionInformation
hciReset
hciResetAclState
hciSendAclData
hciSendAclFile
hciSetAfhHostChannelClass
hciSetConnectionEncryption
hciSetEventFilterAutoacceptConnection
hciSlave
hciSniffMode
hciWaitForConnectionComplete
hciWaitForEncryptionChange
hciWaitForLinkKeyRequest
hciWaitForPinCodeRequest
hciWriteAuthenticationEnable
hciWriteInquiryScanActivity
hciWriteLinkPolicySettings
hciWritePageScanActivity
hciWriteScanEnable
hqGetBer
hqGetFaultReports
hqGetRadioStatus
hqGetRadioStatusArray
hqGetRssi
hqGetRxdata
hqGetSettle
openTestEngine
openTestEngineSpi
openTestEngineSpiTrans
psClear
psClearAll
psFactoryRestore
psFactoryRestoreAll
psFactorySet
psRead
psReadBdAddr
psReadHostInterface
psReadModuleId
psReadPioProtectMask
psReadPowerTable
psReadRadiotestFirstTrimTime
psReadRadiotestLoLvlTrimEnable
psReadRadiotestSubsequentTrimTime
psReadTxOffsetHalfMhz
psReadUsrValue
psReadVmDisable
psReadXtalFtrim
psSize
psWrite
psWriteBaudrate
psWriteBdAddr
psWriteDPlusPullup
psWriteHostInterface
psWriteModuleId
psWriteModuleSecurityCode
psWritePioProtectMask
psWritePowerTable
psWriteRadiotestFirstTrimTime
psWriteRadiotestLoLvlTrimEnable
psWriteRadiotestSubsequentTrimTime
psWriteTxOffsetHalfMhz
psWriteUsbAttributes
psWriteUsbMaxPower
psWriteUsrValue
psWriteVerify
psWriteVmDisable
psWriteXtalFtrim
radiotestBer1
radiotestBer2
radiotestBerLoopback
radiotestCfgBitError
radiotestCfgFreq
radiotestCfgIqTrim
radiotestCfgLoLvl
radiotestCfgPkt
radiotestCfgTxIf
radiotestCfgTxTrim
radiotestCfgUapLap
radiotestCfgXtalFtrim
radiotestCtsRtsLb
radiotestDeepSleep
radiotestLoopback
radiotestPause
radiotestPcmExtLb
radiotestPcmLb
radiotestPcmTimingIn
radiotestPcmTone
radiotestRadioStatus
radiotestRadioStatusArray
radiotestRxLoopback
radiotestRxdata1
radiotestRxdata2
radiotestRxstart1
radiotestRxstart2
radiotestSettle
radiotestStereoCodecLB
radiotestTxdata1
radiotestTxdata2
radiotestTxdata3
radiotestTxdata4
radiotestTxstart
teGetAvailableSpiPorts
teGetFaultDesc
teGetLastError
teGetVersion
teSupportsHq
vmRead
vmWrite

Sections

.text
Size: 212KB - Virtual size: 210KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/TestFlash.dll
.dll windows:4 windows x86

b1ea60d2a8ab8dc18a82bc085a441a41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

flash

?GetError@FlashImage@@QBE_NXZ
?UseImage@flash@@QAEXPAVFlashImage@@@Z
??0flash@@QAE@XZ
?SetXapCrystalSpeedMhz@flash@@QAE_NH@Z
?SetBroadcastDelays@flash@@QAEXI@Z
??1flash@@QAE@XZ
?GetFirmwareId@flash@@QAE_NPAKPAD01I@Z
?GetFirmwareId@FlashImage@@QAE_NPAKPAD01I@Z
?flash_get_burn_time@flash@@QAEIXZ
?flash_erase@flash@@QAEHXZ
??0FlashImage@@QAE@H@Z
?GetFailedDevices@flash@@QAEKXZ
?IsBusy@flash@@QAE_NXZ
?GetProgress@flash@@QAEHXZ
?GetProgressMax@flash@@QAEHXZ
?flash_broadcast_burn@flash@@QAEHK_N00@Z
?flash_burn@flash@@QAEHXZ
?GetErrorCode@flash@@QAE?AW4flash_error_t@@XZ
??1FlashImageSerial@@QAE@XZ
??1FlashImage@@QAE@XZ
?Serialise@FlashImageSerial@@SAPAV1@PAVFlashImage@@PBD@Z

pshelp

??1CPSHelper@@QAE@XZ
?SetStores@CPSHelper@@QAEXG@Z
?psbc_set_pres_or_raw_if_different@CPSHelper@@QAE_NGQBGG@Z
?psbc_get_pres_or_raw@CPSHelper@@QAE_NGQAPAGGQAG@Z
?GetStores@CPSHelper@@QAEGXZ
?psbc_get_pres_or_raw@CPSHelper@@QAE_NGQAGG0@Z
?psbc_clr@CPSHelper@@QAE_NG@Z
?psbc_factory_set@CPSHelper@@QAE_NXZ
?GetFirmwareId@CPSHelper@@QAE_NQAHPAGI@Z
??0CPSHelper@@QAE@PAVPsServer@@@Z
??0PsBccmd@@QAE@PAVbccmd_trans@@@Z
?read_mem@PsBccmd@@UAE_NVGenericPointer@@GPAG@Z
?psbc_size@PsBccmd@@UAE_NGQAG_N@Z
?psbc_set@PsBccmd@@UAE_NGQBGG_N@Z
?psbc_get@PsBccmd@@UAE_NGQAGG0_N@Z
?psbc_next@PsBccmd@@UAE_NGPAG_N@Z
?psbc_clr@PsBccmd@@UAE_NG_N@Z
?psbc_clrs@PsBccmd@@UAE_NG_N@Z
?psbc_known_key@PsBccmd@@UAE_NG_N@Z
?psbc_factory_set@PsBccmd@@UAE_NXZ
?psbc_factory_restore@PsBccmd@@UAE_N_N@Z
?psbc_clrb@PsBccmd@@UAE_NG@Z
?supports_stores@PsBccmd@@UAE_NXZ
?inquire_known_keys@PsServer@@UAE_NXZ
?get_error_handler@PsBccmd@@UAEPAVbccmd_trans_error_handler@@XZ
?reset_bc@PsBccmd@@UAE_NW4reset_t@@@Z
?open@PsBccmd@@UAE_NXZ
?close@PsBccmd@@UAE_NXZ
?set_error_handler@PsBccmd@@UAEXPAVbccmd_trans_error_handler@@@Z
?get_firmware_id@PsBccmd@@UAE_NQAHPAGI@Z
?key_exists@PsServer@@UAE_NG@Z
?keys_known@PsServer@@UAE_NXZ
?is_open@PsBccmd@@UAE_NXZ
?GetStores@PsServer@@UAEGXZ
?SetStores@PsServer@@UAEXG@Z
?NumBootmodes@PsBccmd@@UAEGXZ
?GetBootmode@PsServer@@UAEGXZ
?SetBootmode@PsServer@@UAEXG@Z
??1PsBccmd@@UAE@XZ

pttransport

pttrans_setvar
pttrans_xap_reset_and_go
pttrans_bccmd_init
pttrans_xap_stopped
pttrans_xap_go
pttrans_bccmd_cmd
pttrans_write_block_verify
pttrans_read_block_verify
pttrans_write
pttrans_getvar
pttrans_xap_stop
pttrans_write_verify
pttrans_read_verify
pttrans_lock
pttrans_unlock
pttrans_open
pttrans_enumerate_strings
pttrans_xap_reset_and_stop
pttrans_close

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
CloseHandle
WaitForSingleObject
TerminateThread
CreateMutexW
GetCurrentProcessId
ReleaseMutex
TlsSetValue
TlsGetValue
TlsAlloc
MapViewOfFile
GetLastError
CreateFileMappingW
CreateThread
QueryPerformanceCounter
MulDiv
QueryPerformanceFrequency
Sleep
InitializeCriticalSection

msvcp80

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Lock@_Mutex@std@@QAEXXZ
?_Unlock@_Mutex@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?uncaught_exception@std@@YA_NXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
?allocate@?$allocator@D@std@@QAEPADI@Z
?deallocate@?$allocator@D@std@@QAEXPADI@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

msvcr80

__clean_type_info_names_internal
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
_ftime64
_swprintf
??3@YAXPAX@Z
sprintf
??2@YAPAXI@Z
__CxxFrameHandler3
malloc
wcstombs
free
_purecall
_CxxThrowException
memcpy
_stricmp
??_V@YAXPAX@Z
memset
_invalid_parameter_noinfo

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Exports

Exports

clear_ps
close_ps
e2_device
factory_set
flClose
flErase
flGangProgramBlock
flGangProgramSpawn
flGetAvailableSpiPorts
flGetBitErrorField
flGetDownloadTime
flGetFirmwareIds
flGetLastError
flGetProgress
flGetVersion
flInit
flInitTrans
flProgramBlock
flProgramSpawn
flReadProgramFiles
flResetAndStart
flStopProcessor
get_firmware_id
open_ps
read_ps
set_stores
write_ps
write_ps_verify

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/aiupdate.exe
.exe windows:4 windows x86

0ebcdfd7d867fb6a5860472440477160

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

testengine

psSize
psClear
psWriteBdAddr
radiotestTxstart
radiotestCfgXtalFtrim
radiotestPause
psWriteXtalFtrim
psWriteVerify
psFactorySet
psWrite
bccmdSetWarmReset
psReadBdAddr
psReadXtalFtrim
bccmdGetFirmwareCheckMask
bccmdGetFirmwareCheck
psRead
bccmdGetBuildId
bccmdGetChipRevision
openTestEngineSpi
closeTestEngine

testflash

flStopProcessor
flReadProgramFiles
flErase
flProgramSpawn
flGetProgress
flGetLastError
flResetAndStart
flClose
flInit

kernel32

GlobalFlags
WritePrivateProfileStringA
GetProcessVersion
SizeofResource
GetCPInfo
GetOEMCP
GetFileAttributesA
GetFileSize
GetFileTime
SetErrorMode
GetTickCount
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
CreateThread
ExitThread
RaiseException
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
HeapReAlloc
HeapSize
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
TlsGetValue
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
FreeLibrary
GetProcAddress
LoadLibraryA
Sleep
GetCurrentDirectoryA
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
LocalFree
FormatMessageA
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
GlobalLock
GetModuleFileNameA
CloseHandle
WaitForSingleObject
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
CreateEventA
SetLastError
GetModuleHandleA
MulDiv
GlobalUnlock
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
LoadResource
FindResourceA
LockResource
GlobalFree
FindClose
GetLastError
InitializeCriticalSection
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcpynA
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
FindNextFileA
lstrcpyA
FindFirstFileA
GetFileType

user32

InvalidateRect
RegisterClipboardFormatA
PostThreadMessageA
GetClassNameA
GetDesktopWindow
LoadCursorA
CharUpperA
InflateRect
DestroyMenu
LoadStringA
MapDialogRect
SetWindowContextHelpId
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
GetTopWindow
IsChild
GetCapture
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
MessageBeep
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
EndDialog
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
DefDlgProcA
IsWindowUnicode
CharNextA
GetMenuItemCount
PtInRect
GetWindowRect
LoadIconA
GetSysColorBrush
SendMessageA
AppendMenuA
GetSystemMenu
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
UpdateWindow
PostMessageA
SetTimer
KillTimer
FlashWindow
EnableWindow
PostQuitMessage
SetCursor
MessageBoxA
GetWindowLongA
IsWindowEnabled
GetLastActivePopup
GetParent
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
WinHelpA

gdi32

GetTextExtentPointA
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
IntersectClipRect
DeleteObject
BitBlt
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
GetObjectA
GetMapMode
CreateFontIndirectA
DPtoLP
GetTextColor
GetBkColor
LPtoDP
CreateCompatibleDC
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetBkMode
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
CreateDIBitmap
CreateSolidBrush

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

SysStringLen
SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen

Sections

.text
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/drivers/install.bat
iWRAP3_Update_Client/drivers/parspi.reg
iWRAP3_Update_Client/drivers/parspi.sys
.sys windows:4 windows x86

92b4ab96bbbd95704ed240e833edcd3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

IoCreateUnprotectedSymbolicLink
ObfDereferenceObject
IoDeleteDevice
IoGetDeviceObjectPointer
ExFreePool
IoCreateDevice
RtlAppendUnicodeStringToString
ExAllocatePoolWithTag
RtlIntegerToUnicodeString
IoAllocateErrorLogEntry
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
IofCompleteRequest
IoReleaseCancelSpinLock
InterlockedExchange
IoAcquireCancelSpinLock
IoDeleteSymbolicLink
IoWriteErrorLogEntry
RtlInitUnicodeString
IoGetConfigurationInformation

hal

READ_PORT_UCHAR
WRITE_PORT_UCHAR

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 768B - Virtual size: 764B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 480B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 192B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/drivers/vcredist_x86.exe
.exe windows:5 windows x86

c63ba316533609531fac22f3877f847b

Code Sign

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

61:47:52:ba:00:00:00:00:00:04
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/09/2006, 01:53

Not After

16/09/2011, 02:03

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:D8A9-CFCC-579C,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:49:7c:ed:00:00:00:00:00:05
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/09/2006, 01:55

Not After

16/09/2011, 02:05

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:10D8-5847-CBF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

6a:0b:99:4f:c0:00:1d:ab:11:da:c4:02:a1:66:27:ba
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

04/04/2006, 17:44

Not After

26/04/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

61:46:9e:cb:00:04:00:00:00:65
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/04/2006, 19:43

Not After

04/10/2007, 19:53

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

bc:02:7c:76:1b:ab:4d:a5:a9:3e:ef:53:79:b8:ae:b4:89:fe:1d:3d
Signer

Actual PE Digest

bc:02:7c:76:1b:ab:4d:a5:a9:3e:ef:53:79:b8:ae:b4:89:fe:1d:3d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

FreeSid
AllocateAndInitializeSid
EqualSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

LocalFree
LocalAlloc
GetLastError
GetCurrentProcess
GetModuleFileNameA
lstrlenA
GetSystemDirectoryA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
lstrcatA
lstrcpyA
_lclose
_llseek
_lopen
WritePrivateProfileStringA
GetWindowsDirectoryA
CreateDirectoryA
GetFileAttributesA
ExpandEnvironmentStringsA
IsDBCSLeadByte
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpiA
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
FreeResource
LockResource
LoadResource
SizeofResource
FindResourceA
CloseHandle
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetCurrentDirectoryA
GetTempFileNameA
ExitProcess
CreateFileA
LoadLibraryExA
lstrcpynA
GetVolumeInformationA
FormatMessageA
GetCurrentDirectoryA
GetVersionExA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
GetSystemInfo
CreateMutexA
SetEvent
CreateEventA
CreateThread
ResetEvent
TerminateThread
GetDriveTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
SetUnhandledExceptionFilter
ReadFile
LoadLibraryA
GetDiskFreeSpaceA
MulDiv
EnumResourceLanguagesA
FreeLibrary
GlobalAlloc

gdi32

GetDeviceCaps

user32

ExitWindowsEx
wsprintfA
CharNextA
CharUpperA
CharPrevA
SetWindowLongA
GetWindowLongA
CallWindowProcA
DispatchMessageA
MsgWaitForMultipleObjects
PeekMessageA
SendMessageA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
SendDlgItemMessageA
GetDlgItem
SetForegroundWindow
SetWindowTextA
MessageBoxA
DialogBoxIndirectParamA
ShowWindow
EnableWindow
GetDlgItemTextA
EndDialog
GetDesktopWindow
MessageBeep
SetDlgItemTextA
LoadStringA
GetSystemMetrics

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/flash.dll
.dll windows:4 windows x86

490af3feae72362f2004f1dfedbd87c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pttransport

pttrans_xap_reset_and_go
pttrans_get_core_type
pttrans_xap_stopped
pttrans_xap_go
pttrans_write_verify
pttrans_write
pttrans_chip_select
pttrans_set_proc_type
pttrans_xap_reset_and_stop
pttrans_write_block
pttrans_write_block_verify
pttrans_read_block_verify
pttrans_read
pttrans_xap_stop
?pttrans_readgp_block@@YAHVGenericPointer@@GPAG@Z
pttrans_read_block
pttrans_bcmap_ram_to_prog
pttrans_setvar
pttrans_read_verify
pttrans_lock
pttrans_unlock

mfc80

ord581
ord1209
ord314
ord1177
ord1175
ord1201
ord1120
ord1167
ord1917
ord371
ord1098
ord1208
ord1206
ord1092
ord1037
ord1084
ord315
ord765
ord6754
ord764
ord762

msvcr80

_crt_debugger_hook
__clean_type_info_names_internal
_stricmp
memcpy
fread
strtol
isspace
_stat64i32
strrchr
strchr
memset
strncmp
fwrite
fprintf
fclose
_strdup
_purecall
vsprintf
strncpy
__CxxFrameHandler3
calloc
sprintf
free
malloc
??1exception@std@@UAE@XZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_onexit
_lock
__dllonexit
_unlock
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
_malloc_crt
_encode_pointer
_except_handler4_common
sscanf
_ftime64
_swprintf
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
_invalid_parameter_noinfo
??0exception@std@@QAE@XZ
fopen

kernel32

InterlockedExchange
GetThreadLocale
GetLocaleInfoA
GetACP
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
LocalAlloc
LocalFree
GetDateFormatA
GetTimeFormatA
Sleep
QueryPerformanceFrequency
MulDiv
QueryPerformanceCounter
CreateThread
CreateFileMappingW
MapViewOfFile
TlsAlloc
TlsGetValue
TlsSetValue
ReleaseMutex
GetCurrentProcessId
CreateMutexW
TerminateThread
EnterCriticalSection
LeaveCriticalSection
WaitForSingleObject
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
OutputDebugStringA
GetLastError
GetVersionExA

user32

SendMessageA

msvcp80

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

Exports

Exports

??0FlashImage@@QAE@H@Z
??0FlashImageSerial@@QAE@ABV0@@Z
??0FlashImageSerial@@QAE@PAVFlashImage@@@Z
??0FlashImageSerial_XBV@@QAE@ABV0@@Z
??0FlashImageSerial_XBV@@QAE@PAVFlashImage@@@Z
??0FlashImageSerial_XPVXDV@@QAE@ABV0@@Z
??0FlashImageSerial_XPVXDV@@QAE@PAVFlashImage@@@Z
??0FlashImageSerial_XUV@@QAE@ABV0@@Z
??0FlashImageSerial_XUV@@QAE@PAVFlashImage@@@Z
??0flash@@QAE@XZ
??1FlashImage@@QAE@XZ
??1FlashImageSerial@@QAE@XZ
??1FlashImageSerial_XBV@@QAE@XZ
??1FlashImageSerial_XPVXDV@@QAE@XZ
??1FlashImageSerial_XUV@@QAE@XZ
??1flash@@QAE@XZ
??4FlashImageSerial@@QAEAAV0@ABV0@@Z
??4FlashImageSerial_XBV@@QAEAAV0@ABV0@@Z
??4FlashImageSerial_XPVXDV@@QAEAAV0@ABV0@@Z
??4FlashImageSerial_XUV@@QAEAAV0@ABV0@@Z
??_7FlashImageSerial@@6B@
??_7FlashImageSerial_XBV@@6B@
??_7FlashImageSerial_XPVXDV@@6B@
??_7FlashImageSerial_XUV@@6B@
??_FFlashImage@@QAEXXZ
?ClearAll@FlashImage@@QAEXXZ
?ClearError@FlashImage@@QAEXXZ
?DeleteSerial@@YAXPAVFlashImageSerial@@@Z
?GetBroadcastDelays@flash@@QAEIXZ
?GetCurrentOperation@flash@@QAE?AW4flash_op_t@@XZ
?GetError@FlashImage@@QBE_NXZ
?GetErrorCode@flash@@QAE?AW4flash_error_t@@XZ
?GetErrorString@FlashImageSerial@@QAEPBDXZ
?GetErrorString@flash@@QAEPBDXZ
?GetFailedDevices@flash@@QAEKXZ
?GetFileType@FlashImageSerial_XBV@@UAE?AW4FlashFileType@@XZ
?GetFileType@FlashImageSerial_XPVXDV@@UAE?AW4FlashFileType@@XZ
?GetFileType@FlashImageSerial_XUV@@UAE?AW4FlashFileType@@XZ
?GetFirmwareId@FlashImage@@QAE_NPAKPAD01I@Z
?GetFirmwareId@flash@@QAE_NPAKPAD01I@Z
?GetFlashInfo@flash@@QAEXPAHPAW4flash_id_t@@PAJ2@Z
?GetFlashProgStart@FlashImage@@SAJXZ
?GetImage@FlashImageSerial@@QAEPAVFlashImage@@XZ
?GetLastError@FlashImageSerial@@QAE?AW4ErrorCode@1@XZ
?GetOperationString@flash@@QAEPBDW4flash_op_t@@@Z
?GetProgress@flash@@QAEHXZ
?GetProgressMax@flash@@QAEHXZ
?GetTotalSize@FlashImage@@QBEHXZ
?GetXapCrystalSpeedMhz@flash@@QAEHXZ
?IsBusy@flash@@QAE_NXZ
?IsUsed@FlashImage@@QBE_NH@Z
?IsWrapped@FlashImage@@QBE_NXZ
?ParseFile@FlashImageSerial@@IAE_NHPBD@Z
?ParseFile@FlashImageSerial@@QAEXHPAU_iobuf@@@Z
?ParseLine@FlashImageSerial@@IAEXHPBD@Z
?RamImage@FlashImageSerial@@QAE_NXZ
?Read@FlashImage@@QBEGH@Z
?ReadFile@FlashImageSerial_XBV@@QAE_NPBD@Z
?ReadFile@FlashImageSerial_XUV@@QAE_NPBD@Z
?ReadFiles@FlashImageSerial_XPVXDV@@QAE_NPBD0@Z
?RefreshFile@FlashImageSerial@@IAE_NPAUFlashFile@1@@Z
?RefreshFiles@FlashImageSerial@@QAE_NXZ
?Serialise@FlashImageSerial@@SAPAV1@PAVFlashImage@@PBD@Z
?SetAsErased@FlashImage@@QAEXHH_N@Z
?SetBroadcastDelays@flash@@QAEXI@Z
?SetCallbackFn@flash@@QAEXP6AXW4flash_error_level_t@@W4flash_error_t@@PBDPAX@Z3@Z
?SetCallbackWindow@flash@@QAEXPAUHWND__@@@Z
?SetCodeErased@FlashImage@@QAEXHH@Z
?SetDataErased@FlashImage@@QAEXHH@Z
?SetSlutPtr@FlashImage@@QAEXVGenericPointer@@@Z
?SetTestMode@flash@@QAEXW4boot_prog_test_mode_t@@@Z
?SetXapCrystalSpeedMhz@flash@@QAE_NH@Z
?SetupFlashFile@FlashImageSerial@@IAEPAUFlashFile@1@PBDH@Z
?Terminate@flash@@QAEXXZ
?UseImage@flash@@QAEXPAVFlashImage@@@Z
?UsingImage@flash@@QAE_NXZ
?Write@FlashImage@@QAEXHG@Z
?flash_broadcast_burn@flash@@QAEHK_N00@Z
?flash_burn@flash@@QAEHXZ
?flash_dump@flash@@QAEHPBDW4flash_dump_t@@@Z
?flash_erase@flash@@QAEHXZ
?flash_get_burn_time@flash@@QAEIXZ
?flash_identify@flash@@QAEHXZ
?flash_verify@flash@@QAEHXZ
?read_mem@FlashImage@@UAE_NVGenericPointer@@GPAG@Z
?read_mem@flash@@UAE_NVGenericPointer@@GPAG@Z

Sections

.text
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/images/ai-2.2.0-60.cyt.xdv
iWRAP3_Update_Client/images/ai-2.2.0-60.cyt.xpv
iWRAP3_Update_Client/images/ai-3.0.0-165.bc4.xdv
iWRAP3_Update_Client/images/ai-3.0.0-165.bc4.xpv
iWRAP3_Update_Client/images/ai-3.0.0-165.bc5.xdv
iWRAP3_Update_Client/images/ai-3.0.0-165.bc5.xpv
iWRAP3_Update_Client/images/wt11-a.ai-3.0.0-165.psrf
iWRAP3_Update_Client/images/wt11-a.ai-3.0.0-165.psri
iWRAP3_Update_Client/images/wt11-a.ai-3.0.0-165.spg
iWRAP3_Update_Client/images/wt11-e.ai-3.0.0-165.psrf
iWRAP3_Update_Client/images/wt11-e.ai-3.0.0-165.psri
iWRAP3_Update_Client/images/wt11-e.ai-3.0.0-165.spg
iWRAP3_Update_Client/images/wt11.ai-2.1.0-23.psrf
iWRAP3_Update_Client/images/wt11.ai-2.1.0-23.spg
iWRAP3_Update_Client/images/wt11.ai-2.2.0-60.psrf
iWRAP3_Update_Client/images/wt11.ai-2.2.0-60.spg
iWRAP3_Update_Client/images/wt11.ai-3.0.0-165.psrf
iWRAP3_Update_Client/images/wt11.ai-3.0.0-165.psri
iWRAP3_Update_Client/images/wt11.ai-3.0.0-165.spg
iWRAP3_Update_Client/images/wt12-a.ai-3.0.0-165.psrf
iWRAP3_Update_Client/images/wt12-a.ai-3.0.0-165.psri
iWRAP3_Update_Client/images/wt12-a.ai-3.0.0-165.spg
iWRAP3_Update_Client/images/wt12.ai-2.1.0-23.psrf
iWRAP3_Update_Client/images/wt12.ai-2.1.0-23.spg
iWRAP3_Update_Client/images/wt12.ai-2.2.0-60.psrf
iWRAP3_Update_Client/images/wt12.ai-2.2.0-60.spg
iWRAP3_Update_Client/images/wt1x.bgt_fw.xdv
iWRAP3_Update_Client/images/wt1x.bgt_fw.xpv
iWRAP3_Update_Client/images/wt32-a.ai-3.0.0-165.psrf
iWRAP3_Update_Client/images/wt32-a.ai-3.0.0-165.psri
iWRAP3_Update_Client/images/wt32-a.ai-3.0.0-165.spg
iWRAP3_Update_Client/images/wt32-e.ai-3.0.0-165.psrf
iWRAP3_Update_Client/images/wt32-e.ai-3.0.0-165.psri
iWRAP3_Update_Client/images/wt32-e.ai-3.0.0-165.spg
iWRAP3_Update_Client/pshelp.dll
.dll windows:4 windows x86

e32de769e5c88838c4bd738e13e132e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr80

__dllonexit
_onexit
_unlock
__clean_type_info_names_internal
??3@YAXPAX@Z
_crt_debugger_hook
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
_malloc_crt
_encode_pointer
?terminate@@YAXXZ
isspace
isxdigit
free
malloc
memset
memmove_s
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
_invalid_parameter_noinfo
??2@YAPAXI@Z
??_U@YAPAXI@Z
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
__CxxFrameHandler3
_purecall
??_V@YAXPAX@Z
_lock
_swprintf
memcpy
_vswprintf_c_l
_wcsicmp
_wcsdup
wcstombs

msvcp80

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??_D?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?overflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
?pbackfail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHH@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?underflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPADH@Z
?_Xsgetn_s@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPADIH@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHPBDH@Z
?seekoff@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@JHH@Z
?seekpos@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE?AV?$fpos@H@2@V32@H@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PADH@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@_Mutex@std@@QAEXXZ
?_Unlock@_Mutex@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
?uncaught_exception@std@@YA_NXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADH@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??_D?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDHH@Z
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z

kernel32

InterlockedCompareExchange
CreateThread
CreateFileMappingW
MapViewOfFile
TlsAlloc
TlsGetValue
TlsSetValue
ReleaseMutex
CreateMutexW
TerminateThread
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
CreateEventW
GetLastError
ResetEvent
SetEvent
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
InterlockedExchange

Exports

Exports

??0CPSHelper@@QAE@PAVPsServer@@@Z
??0CPSHelper@@QAE@XZ
??0PsBccmd@@QAE@ABV0@@Z
??0PsBccmd@@QAE@PAVbccmd_trans@@@Z
??0PsCache@@QAE@ABV0@@Z
??0PsCache@@QAE@XZ
??0PsServer@@QAE@ABV0@@Z
??0PsServer@@QAE@XZ
??1CPSHelper@@QAE@XZ
??1PsBccmd@@UAE@XZ
??1PsCache@@UAE@XZ
??1PsServer@@UAE@XZ
??4CEnhancedPowerSetting@@QAEAAV0@ABV0@@Z
??4CEnhancedPowerTable@@QAEAAV0@ABV0@@Z
??4CPSHelper@@QAEAAV0@ABV0@@Z
??4CPowerSetting@@QAEAAV0@ABV0@@Z
??4CPowerTable@@QAEAAV0@ABV0@@Z
??4PsBccmd@@QAEAAV0@ABV0@@Z
??4PsCache@@QAEAAV0@ABV0@@Z
??4PsServer@@QAEAAV0@ABV0@@Z
??MCEnhancedPowerSetting@@QBE_NABV0@@Z
??MCPowerSetting@@QBE_NABV0@@Z
??_7PsBccmd@@6B@
??_7PsCache@@6B@
??_7PsServer@@6B@
?CheckValid@CPSHelper@@QAE_NXZ
?ClearCache@PsCache@@QAEXGG@Z
?ClearCache@PsCache@@QAEXXZ
?GetBootmode@CPSHelper@@QAEGXZ
?GetBootmode@PsServer@@UAEGXZ
?GetFirmwareId@CPSHelper@@QAE_NQAHPAGI@Z
?GetKeyDetails@CPSHelper@@QAEPBUpskey_entry@@G@Z
?GetServer@CPSHelper@@QAEPAVPsServer@@XZ
?GetServer@PsCache@@QBEPAVPsServer@@XZ
?GetStores@CPSHelper@@QAEGXZ
?GetStores@PsServer@@UAEGXZ
?GetTrans@PsBccmd@@QAEPAVbccmd_trans@@XZ
?HasPresentationKeys@CPSHelper@@QAEHGPAPBUpskey_entry@@H@Z
?NoBootmode@PsServer@@SAGXZ
?NumBootmodes@PsBccmd@@UAEGXZ
?NumBootmodes@PsCache@@UAEGXZ
?PatchInThrowHandler@CPSHelper@@AAEXXZ
?PatchOutThrowHandler@CPSHelper@@AAEXXZ
?PauseThread@PsCache@@IAEXXZ
?Reconnect@CPSHelper@@QAE_NXZ
?ReleaseServer@PsCache@@QAEXXZ
?ResetBC@CPSHelper@@QAE_NW4reset_t@@@Z
?ResumeThread@PsCache@@IAEXXZ
?RunCommandStream@CPSHelper@@IAEXAAV?$basic_istream@DU?$char_traits@D@std@@@std@@AAV?$basic_ostream@DU?$char_traits@D@std@@@3@W4FileFormat@1@@Z
?SetBootmode@CPSHelper@@QAEXG@Z
?SetBootmode@PsServer@@UAEXG@Z
?SetServer@CPSHelper@@QAEXPAVPsServer@@@Z
?SetServer@PsCache@@QAEXPAVPsServer@@@Z
?SetStores@CPSHelper@@QAEXG@Z
?SetStores@PsServer@@UAEXG@Z
?SetTrans@PsBccmd@@QAEXPAVbccmd_trans@@@Z
?Sort@CEnhancedPowerTable@@QAEXXZ
?Sort@CPowerTable@@QAEXXZ
?StructureLen@CPSHelper@@QAEHW4pskey_structure@@@Z
?UseCache@PsCache@@QAEX_N@Z
?UseServer@PsCache@@QAEXXZ
?WriteDeleteKey@CPSHelper@@QAEXGPBUpskey_entry@@QBGGAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@W4FileFormat@1@@Z
?WriteKey@CPSHelper@@QAEXGPBUpskey_entry@@QBGGAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@W4FileFormat@1@@Z
?addElement@CEnhancedPowerTable@@QAEXAAVCEnhancedPowerSetting@@@Z
?addElement@CPowerTable@@QAEXAAVCPowerSetting@@@Z
?add_permissions@CPSHelper@@IAEGG@Z
?apply_canned@CPSHelper@@QAEXH@Z
?apply_canned@CPSHelper@@QAEXPBUcanned_operation@1@@Z
?apply_canned@CPSHelper@@QAEXPB_W@Z
?apply_file@CPSHelper@@QAEXPB_W@Z
?asUint32@CPowerSetting@@QBEKXZ
?canned@@3QBUcanned_entry@CPSHelper@@B
?close@PsBccmd@@UAE_NXZ
?close@PsCache@@UAE_NXZ
?copy_known_keys@PsServer@@QAEXPAV1@@Z
?deleteElement@CEnhancedPowerTable@@QAEXH@Z
?deleteElement@CPowerTable@@QAEXH@Z
?delete_child_on_destruct@PsCache@@QAEX_N@Z
?dump_ps@CPSHelper@@QAEXQB_WW4FileFormat@1@@Z
?findKey@CPSHelper@@IAEPBUpskey_entry@@G@Z
?fromRaw@CEnhancedPowerSetting@@QAEXPAG@Z
?fromRaw@CEnhancedPowerTable@@QAEXPAGH@Z
?fromRaw@CPowerTable@@QAEXPAGH@Z
?get@PsCache@@QAE_NGP6AXPAXABUCallbackResult@1@@Z0_N@Z
?getFromUint32@CPowerSetting@@QAEXK@Z
?get_connected@PsServer@@QAE_NXZ
?get_enum_list@CPSHelper@@QAEPBUstring_val_pair@@H@Z
?get_error_handler@PsBccmd@@UAEPAVbccmd_trans_error_handler@@XZ
?get_error_handler@PsCache@@UAEPAVbccmd_trans_error_handler@@XZ
?get_firmware_id@PsBccmd@@UAE_NQAHPAGI@Z
?get_firmware_id@PsCache@@UAE_NQAHPAGI@Z
?get_fragmented_string@CPSHelper@@QAE_NGQAG0@Z
?get_last_error_code@CPSHelper@@QAEHXZ
?get_last_error_string@CPSHelper@@QAEPB_WXZ
?get_num_canned_entries@CPSHelper@@ABEHXZ
?inquire_known_keys@PsCache@@UAE_NXZ
?inquire_known_keys@PsServer@@UAE_NXZ
?insertElement@CEnhancedPowerTable@@QAEXHAAVCEnhancedPowerSetting@@@Z
?insertElement@CPowerTable@@QAEXHAAVCPowerSetting@@@Z
?is_open@PsBccmd@@UAE_NXZ
?is_open@PsCache@@UAE_NXZ
?key_exists@PsCache@@UAE_NG@Z
?key_exists@PsServer@@UAE_NG@Z
?key_known@CPSHelper@@QAE_NG@Z
?key_next@PsServer@@QAEGG@Z
?keys_known@PsCache@@UAE_NXZ
?keys_known@PsServer@@UAE_NXZ
?open@PsBccmd@@UAE_NXZ
?open@PsCache@@UAE_NXZ
?perform_operation@CPSHelper@@IAE_NW4ps_file_op@1@_NHPAGHAAV?$basic_ostream@DU?$char_traits@D@std@@@std@@W4FileFormat@1@@Z
?psbc_clr@CPSHelper@@QAE_NG@Z
?psbc_clr@PsBccmd@@UAE_NG_N@Z
?psbc_clr@PsCache@@UAE_NG_N@Z
?psbc_clrb@CPSHelper@@QAE_NG@Z
?psbc_clrb@PsBccmd@@UAE_NG@Z
?psbc_clrb@PsCache@@UAE_NG@Z
?psbc_clrs@CPSHelper@@QAE_NG@Z
?psbc_clrs@PsBccmd@@UAE_NG_N@Z
?psbc_clrs@PsCache@@UAE_NG_N@Z
?psbc_factory_restore@CPSHelper@@QAE_N_N@Z
?psbc_factory_restore@PsBccmd@@UAE_N_N@Z
?psbc_factory_restore@PsCache@@UAE_N_N@Z
?psbc_factory_set@CPSHelper@@QAE_NXZ
?psbc_factory_set@PsBccmd@@UAE_NXZ
?psbc_factory_set@PsCache@@UAE_NXZ
?psbc_get@PsBccmd@@UAE_NGQAGG0_N@Z
?psbc_get@PsCache@@UAE_NGQAGG0_N@Z
?psbc_get_bits@CPSHelper@@QAE_NGQAGGG@Z
?psbc_get_enhanced_power_table@CPSHelper@@QAE_NGQAVCEnhancedPowerTable@@@Z
?psbc_get_power_table@CPSHelper@@QAE_NGQAVCPowerTable@@@Z
?psbc_get_pres_or_raw@CPSHelper@@QAE_NGQAGG0@Z
?psbc_get_pres_or_raw@CPSHelper@@QAE_NGQAPAGGQAG@Z
?psbc_get_presentation@CPSHelper@@QAE_NGQAG@Z
?psbc_get_raw@CPSHelper@@QAE_NGQAGG0@Z
?psbc_get_raw@CPSHelper@@QAE_NGQAPAGGQAG@Z
?psbc_get_uint16@CPSHelper@@QAE_NGQAG@Z
?psbc_get_uint32@CPSHelper@@QAE_NGQAK@Z
?psbc_known_key@CPSHelper@@QAE_NG@Z
?psbc_known_key@PsBccmd@@UAE_NG_N@Z
?psbc_known_key@PsCache@@UAE_NG_N@Z
?psbc_next@PsBccmd@@UAE_NGPAG_N@Z
?psbc_next@PsCache@@UAE_NGPAG_N@Z
?psbc_set@PsBccmd@@UAE_NGQBGG_N@Z
?psbc_set@PsCache@@UAE_NGQBGG_N@Z
?psbc_set_bits@CPSHelper@@QAE_NGGGG@Z
?psbc_set_enhanced_power_table@CPSHelper@@QAE_NGABVCEnhancedPowerTable@@@Z
?psbc_set_power_table@CPSHelper@@QAE_NGABVCPowerTable@@@Z
?psbc_set_pres_or_raw@CPSHelper@@QAE_NGQBGG@Z
?psbc_set_pres_or_raw_if_different@CPSHelper@@QAE_NGQBGG@Z
?psbc_set_presentation@CPSHelper@@QAE_NGG@Z
?psbc_set_raw@CPSHelper@@QAE_NGQBGG@Z
?psbc_set_uint16@CPSHelper@@QAE_NGG@Z
?psbc_set_uint32@CPSHelper@@QAE_NGK@Z
?psbc_size@CPSHelper@@QAE_NGPAG@Z
?psbc_size@PsBccmd@@UAE_NGQAG_N@Z
?psbc_size@PsCache@@UAE_NGQAG_N@Z
?read_mem@PsBccmd@@UAE_NVGenericPointer@@GPAG@Z
?read_mem@PsCache@@UAE_NVGenericPointer@@GPAG@Z
?reset_bc@PsBccmd@@UAE_NW4reset_t@@@Z
?reset_bc@PsCache@@UAE_NW4reset_t@@@Z
?run_query@CPSHelper@@QAEXQB_WPB_WW4FileFormat@1@@Z
?set_error_handler@PsBccmd@@UAEXPAVbccmd_trans_error_handler@@@Z
?set_error_handler@PsCache@@UAEXPAVbccmd_trans_error_handler@@@Z
?set_fragmented_string@CPSHelper@@QAE_NGQBGG@Z
?set_last_error_code@CPSHelper@@IAEXH@Z
?set_last_error_string@CPSHelper@@IAEXPB_W@Z
?supports_bootmodes@PsServer@@QAE_NXZ
?supports_stores@PsBccmd@@UAE_NXZ
?supports_stores@PsCache@@UAE_NXZ
?toRaw@CEnhancedPowerSetting@@QBEXPAG@Z
?toRaw@CEnhancedPowerTable@@QBEXPAGPAH@Z
?toRaw@CPowerTable@@QBEXPAGPAH@Z

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 820KB - Virtual size: 818KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/pttransport.dll
.dll windows:4 windows x86

d3f7c4b9fcfdd4554c6c81ccaec9bd7a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

OutputDebugStringA
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetModuleHandleA
FreeLibrary
CreateMutexW
CloseHandle
WaitForSingleObject
ReleaseMutex
GetCurrentProcessId
TlsSetValue
TlsGetValue
TlsAlloc
MapViewOfFile
GetLastError
CreateFileMappingW
TlsFree
QueryPerformanceCounter
MulDiv
QueryPerformanceFrequency
Sleep
GetCurrentThreadId
GetTickCount
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
GetSystemTimeAsFileTime

msvcp80

?str@?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?_Lock@_Mutex@std@@QAEXXZ
?_Unlock@_Mutex@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??_D?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

msvcr80

free
realloc
strstr
strchr
strrchr
strncmp
strtoul
memcpy
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
fprintf
??_V@YAXPAX@Z
fclose
_invalid_parameter_noinfo
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
memmove_s
fopen
_strdup
atoi
wcschr
_swprintf
_ftime64
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_unlock
__dllonexit
_lock
_onexit
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_except_handler4_common
malloc
sprintf
_mbsrchr
_stricmp
??2@YAPAXI@Z
??3@YAXPAX@Z
memset
__CxxFrameHandler3
strtol
getenv
strncpy

Exports

Exports

?pttrans_readgp@@YAHVGenericPointer@@PAG@Z
?pttrans_readgp_block@@YAHVGenericPointer@@GPAG@Z
?pttrans_readgp_block_verify@@YAHVGenericPointer@@GPAG@Z
?pttrans_readgp_verify@@YAHVGenericPointer@@PAG@Z
?pttrans_writegp@@YAHVGenericPointer@@G@Z
?pttrans_writegp_block@@YAHVGenericPointer@@GPAG@Z
?pttrans_writegp_block_verify@@YAHVGenericPointer@@GPAG@Z
?pttrans_writegp_verify@@YAHVGenericPointer@@G@Z
pttrans_bccmd_cmd
pttrans_bccmd_init
pttrans_bcmap_prog_to_ram
pttrans_bcmap_ram_to_prog
pttrans_chip_select
pttrans_close
pttrans_command
pttrans_enumerate
pttrans_enumerate_free
pttrans_enumerate_strings
pttrans_get_core_type
pttrans_get_last_error
pttrans_get_proc_type
pttrans_get_version
pttrans_getvar
pttrans_isopen
pttrans_lock
pttrans_makeread
pttrans_makesetvar
pttrans_makewrite
pttrans_open
pttrans_read
pttrans_read_block
pttrans_read_block_verify
pttrans_read_verify
pttrans_remote_cmd
pttrans_sequence
pttrans_set_core_type
pttrans_set_proc_type
pttrans_setvar
pttrans_unlock
pttrans_update_xap_state
pttrans_write
pttrans_write_block
pttrans_write_block_verify
pttrans_write_verify
pttrans_xap_go
pttrans_xap_go_irq_on_breakpoint
pttrans_xap_reset_and_go
pttrans_xap_reset_and_stop
pttrans_xap_stop
pttrans_xap_stopped

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
iWRAP3_Update_Client/spilpt.dll
.dll windows:4 windows x86

ee26742d2703aa467a0a356f23bee91a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
WriteFile
CreateFileA
GetVersionExA
DeviceIoControl
Sleep
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
InterlockedExchange
GetSystemTimeAsFileTime

msvcr80

_initterm
_initterm_e
_decode_pointer
_adjust_fdiv
__CppXcptFilter
_crt_debugger_hook
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_encoded_null
_malloc_crt
_encode_pointer
strtol
strtod
vsprintf
memset
malloc
free
_stricmp
sprintf
_amsg_exit

Exports

Exports

spifns_bluecore_xap_stopped
spifns_chip_select
spifns_close
spifns_command
spifns_enumerate_ports
spifns_get_last_error
spifns_getvar
spifns_getvarlist
spifns_init
spifns_sequence
spifns_set_debug_callback

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 750B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

08ebc55728cf2a11a993b111d9e04048

Headers

File Characteristics

Imports

pttransport

version

kernel32

msvcr80

msvcp80

setupapi

Exports

Exports

Sections

.text Size: 212KB - Virtual size: 210KB

.rdata Size: 64KB - Virtual size: 62KB

.data Size: 16KB - Virtual size: 17KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 48KB - Virtual size: 47KB

b1ea60d2a8ab8dc18a82bc085a441a41

Headers

File Characteristics

Imports

flash

pshelp

pttransport

kernel32

msvcp80

msvcr80

version

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 16KB - Virtual size: 12KB

0ebcdfd7d867fb6a5860472440477160

Headers

File Characteristics

Imports

testengine

testflash

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 184KB - Virtual size: 182KB

.rdata Size: 44KB - Virtual size: 41KB

.data Size: 24KB - Virtual size: 37KB

.rsrc Size: 16KB - Virtual size: 15KB

92b4ab96bbbd95704ed240e833edcd3b

Headers

File Characteristics

Imports

ntoskrnl.exe

hal

Sections

.text Size: 2KB - Virtual size: 2KB

INIT Size: 768B - Virtual size: 764B

.rsrc Size: 480B - Virtual size: 480B

.reloc Size: 192B - Virtual size: 168B

c63ba316533609531fac22f3877f847b

Code Sign

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40Certificate

.text
Size: 212KB - Virtual size: 210KB

.rdata
Size: 64KB - Virtual size: 62KB

.data
Size: 16KB - Virtual size: 17KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 48KB - Virtual size: 47KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 16KB - Virtual size: 12KB

.text
Size: 184KB - Virtual size: 182KB

.rdata
Size: 44KB - Virtual size: 41KB

.data
Size: 24KB - Virtual size: 37KB

.rsrc
Size: 16KB - Virtual size: 15KB

.text
Size: 2KB - Virtual size: 2KB

INIT
Size: 768B - Virtual size: 764B

.rsrc
Size: 480B - Virtual size: 480B

.reloc
Size: 192B - Virtual size: 168B

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

61:47:52:ba:00:00:00:00:00:04
Certificate

61:49:7c:ed:00:00:00:00:00:05
Certificate

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

6a:0b:99:4f:c0:00:1d:ab:11:da:c4:02:a1:66:27:ba
Certificate

61:46:9e:cb:00:04:00:00:00:65
Certificate

bc:02:7c:76:1b:ab:4d:a5:a9:3e:ef:53:79:b8:ae:b4:89:fe:1d:3d
Signer

.text
Size: 36KB - Virtual size: 35KB

.data
Size: 1024B - Virtual size: 6KB

.rsrc
Size: 2.6MB - Virtual size: 2.6MB

.text
Size: 40KB - Virtual size: 38KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 36KB - Virtual size: 41KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 60KB - Virtual size: 56KB

.rdata
Size: 820KB - Virtual size: 818KB

.data
Size: 28KB - Virtual size: 27KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 36KB - Virtual size: 32KB