415fe3027ac9fa42692552eb958a492b78a6ad11a50fb07f889df0d367600fee[.]zip[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

415fe3027ac9fa42692552eb958a492b78a6ad11a50fb07f889df0d367600fee.zip.zip
Size

34.1MB
MD5

30b0ed499e67d57d15f5a33fa4d51571
SHA1

ac2168a6f31ac5fa279d741697fdea6c8d3f5c69
SHA256

e881d1d4e62434f0e2155bc0d2f74da2162752be3bb4fc9803adf7a62b66f0c5
SHA512

8f98e950bdaa1a6ca88436d463be1e40ab844828b8b1b5a6c591b5c165f722d84087b43ce2254182eda156bd21bea3f465c3b2720a2513360d307f3520f99d16
SSDEEP

786432:7qjrL8/9mYAmneEEsMPYQsizZOHYK7f6RZWpROJtd3l:7IrL8/9TPE5YQDzZuYmyRESfl

Score

3^/10

Malware Config

Signatures

Unsigned PE 75 IoCs

Checks for missing Authenticode signature.

resource
unpack003/LAN\FET5A64B.sys
unpack003/LAN\FETND3.sys
unpack003/LAN\FETND4.sys
unpack003/LAN\FETND5AV.sys
unpack003/LAN\FETND5BV.sys
unpack003/LAN\NTUTIL.DLL
unpack003/LAN\WinSetup.exe
unpack003/LAN\WinUinst.exe
unpack003/LAN\vuins32.dll
unpack003/LAN\vuins64.dll
unpack003/LAN\winsetup\VETUP32.DLL
unpack003/LAN\winsetup\VETUP64.DLL
unpack003/LAN\winsetup\ntsim2.sys
unpack003/LAN\winsetup\ntsim2A.sys
unpack005/Modem\ssetup.exe
unpack005/Modem\x32\W2KXP\SmSerial.hda
unpack005/Modem\x32\W2KXP\SmSerial.sys
unpack005/Modem\x32\W2KXP\sm56brz.dll
unpack005/Modem\x32\W2KXP\sm56chs.dll
unpack005/Modem\x32\W2KXP\sm56cht.dll
unpack005/Modem\x32\W2KXP\sm56co.dll
unpack005/Modem\x32\W2KXP\sm56dnk.dll
unpack005/Modem\x32\W2KXP\sm56eng.dll
unpack005/Modem\x32\W2KXP\sm56esp.dll
unpack005/Modem\x32\W2KXP\sm56fra.dll
unpack005/Modem\x32\W2KXP\sm56ger.dll
unpack005/Modem\x32\W2KXP\sm56hlpr.exe
unpack005/Modem\x32\W2KXP\sm56ita.dll
unpack005/Modem\x32\W2KXP\sm56jpn.dll
unpack005/Modem\x32\W2KXP\sm56kor.dll
unpack005/Modem\x32\si.exe
unpack007/TouchPad/InstNT.exe
unpack007/TouchPad/Setup.exe
unpack007/TouchPad/SynCom.dll
unpack007/TouchPad/SynCtrl.dll
unpack007/TouchPad/SynISDLL.dll
unpack007/TouchPad/SynMood.exe
unpack007/TouchPad/SynTP.sys
unpack007/TouchPad/SynTPAPI.dll
unpack007/TouchPad/SynTPCOM.dll
unpack007/TouchPad/SynTPCo2.dll
unpack007/TouchPad/SynTPCpl.dll
unpack007/TouchPad/SynTPEnh.exe
unpack007/TouchPad/SynZMetr.exe
unpack007/TouchPad/Tutorial.exe
unpack008/Chipset/PCIENUM.SYS
unpack008/Chipset/SETUP.EXE
unpack008/Chipset/viaagp/AGPDrv9x.dll
unpack008/Chipset/viaagp/AGPDrvME.dll
unpack008/Chipset/viaagp/AGPDrvNT.dll
unpack008/Chipset/viaagp/DRIVER/Svr2003/viaagp1.sys
unpack008/Chipset/viaagp/DRIVER/Win2000/viaagp1.sys
unpack008/Chipset/viaagp/DRIVER/Win98_Me/VIAGART.sys
unpack008/Chipset/viaagp/DRIVER/WinXP/viaagp1.sys
unpack008/Chipset/viaagp/DRIVER/X64/VIAAGP1.sys
unpack008/Chipset/viaagp/Pnpx64.exe
unpack008/Chipset/viamach/INFDrv.dll
unpack008/Chipset/viamach/INFDrv9x.dll
unpack008/Chipset/viamach/Infx64.exe
unpack008/Chipset/viasetup.dll
unpack009/VGA/S3Cfg3D.dll
unpack009/VGA/S3Disply.dll
unpack009/VGA/S3Gamma2.dll
unpack009/VGA/S3Info2.dll
unpack009/VGA/S3Ovrlay.dll
unpack009/VGA/S3TrayP.exe
unpack009/VGA/S3gIGP.dll
unpack009/VGA/S3gIGPm.sys
unpack009/VGA/VModes.exe
unpack009/VGA/VTTimer.exe
unpack009/VGA/s3gIGPgl.dll
unpack009/VGA/s3gcil_inv.dll
unpack009/VGA/s3iset32.dll
unpack009/VGA/s3minset.exe
unpack002/AMILO La 1703/FTS___1018834.EXE

Files

415fe3027ac9fa42692552eb958a492b78a6ad11a50fb07f889df0d367600fee.zip.zip
.zip

Password: infected
415fe3027ac9fa42692552eb958a492b78a6ad11a50fb07f889df0d367600fee.zip
.zip
AMILO La 1703/FTS_LANDevicedriver__1007155.zip
.zip
LAN\DIAG.EXE
LAN\DIAG.TXT
LAN\FET5A64B.sys
.sys windows:5 windows x64

f8f3b8cc8b518f12d8ae6d670e589f92

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntoskrnl.exe

IoFreeMdl
KeReleaseSpinLock
KeAcquireSpinLockRaiseToDpc
MmMapLockedPagesSpecifyCache

hal

KeStallExecutionProcessor

ndis.sys

NdisTerminateWrapper
NdisOpenConfiguration
NdisMRegisterMiniport
NdisInitializeWrapper
NdisFreePacketPool
NdisReadPciSlotInformation
NdisWritePciSlotInformation
NdisMCancelTimer
NdisUnchainBufferAtFront
NdisMCompleteBufferPhysicalMapping
NdisMSynchronizeWithInterrupt
NdisSetEvent
NdisMStartBufferPhysicalMapping
NdisMAllocateSharedMemory
NdisMFreeSharedMemory
NdisAllocateMemoryWithTag
NdisAllocatePacket
NdisAllocateBuffer
NdisFreeMemory
NdisFreePacket
NdisAllocateBufferPool
NdisAllocatePacketPool
NdisFreeBufferPool
NdisSetTimer
NdisMQueryAdapterResources
NdisMUnmapIoSpace
NdisMDeregisterIoPortRange
NdisMFreeMapRegisters
NdisMDeregisterInterrupt
NdisMDeregisterAdapterShutdownHandler
NdisWaitEvent
NdisInitializeEvent
NdisMInitializeTimer
NdisMRegisterAdapterShutdownHandler
NdisMRegisterInterrupt
NdisMAllocateMapRegisters
NdisMInitializeScatterGatherDma
NdisMMapIoSpace
NdisMRegisterIoPortRange
NdisMSetAttributesEx
NdisReadNetworkAddress
NdisCloseConfiguration
NdisReadConfiguration

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 640B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 256B - Virtual size: 226B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\FETND.DOS
LAN\FETND3.sys
.sys windows:4 windows x86

837fe8d095926cfe98c9f52c8563e141

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

WRITE_REGISTER_UCHAR
WRITE_REGISTER_USHORT
WRITE_REGISTER_ULONG

hal

WRITE_PORT_UCHAR
READ_PORT_UCHAR
KeStallExecutionProcessor

ndis.sys

NdisAllocateBuffer
NdisMAllocateSharedMemory
NdisMFreeSharedMemory
NdisInitializeWrapper
NdisReadPciSlotInformation
NdisWritePciSlotInformation
NdisQueryBuffer
NDIS_BUFFER_TO_SPAN_PAGES
NdisQueryBufferOffset
NdisMCancelTimer
NdisMIndicateStatusComplete
NdisMIndicateStatus
NdisMSynchronizeWithInterrupt
EthFilterDprIndicateReceiveComplete
EthFilterDprIndicateReceive
NdisMSendComplete
NdisMCompleteBufferPhysicalMapping
NdisMStartBufferPhysicalMapping
NdisAllocateMemory
NdisAllocateBufferPool
NdisFreeMemory
NdisFreeBufferPool
NdisMRegisterIoPortRange
NdisFreeBuffer
NdisMRegisterMiniport
NdisSetTimer
NdisMInitializeTimer
NdisMRegisterAdapterShutdownHandler
NdisMRegisterInterrupt
NdisMAllocateMapRegisters
NdisMDeregisterIoPortRange
NdisMMapIoSpace
NdisMPciAssignResources
NdisMSetAttributes
NdisReadNetworkAddress
NdisCloseConfiguration
NdisReadConfiguration
NdisOpenConfiguration
NdisMUnmapIoSpace
NdisMFreeMapRegisters
NdisMDeregisterInterrupt
NdisMDeregisterAdapterShutdownHandler
NdisTerminateWrapper

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\FETND4.sys
.sys windows:4 windows x86

bf7f2209b01c1d3614a901457e6dedff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

WRITE_REGISTER_USHORT
WRITE_REGISTER_UCHAR
WRITE_REGISTER_ULONG

hal

WRITE_PORT_UCHAR
READ_PORT_UCHAR
KeStallExecutionProcessor

ndis.sys

NdisAllocatePacket
NdisFreeBuffer
NdisFreePacket
NdisReadPciSlotInformation
NdisWritePciSlotInformation
NdisQueryBuffer
NDIS_BUFFER_TO_SPAN_PAGES
NdisQueryBufferOffset
NdisMCancelTimer
NdisMIndicateStatusComplete
NdisMIndicateStatus
NdisMSynchronizeWithInterrupt
NdisUnchainBufferAtFront
NdisAdjustBufferLength
NdisMCompleteBufferPhysicalMapping
NdisMStartBufferPhysicalMapping
NdisAllocateMemory
NdisAllocateBufferPool
NdisAllocatePacketPool
NdisFreeMemory
NdisFreeBufferPool
NdisFreePacketPool
NdisMRegisterIoPortRange
NdisAllocateBuffer
NdisInitializeWrapper
NdisMSetAttributes
NdisMAllocateSharedMemory
NdisMFreeSharedMemory
NdisSetTimer
NdisMInitializeTimer
NdisMRegisterAdapterShutdownHandler
NdisMRegisterInterrupt
NdisMAllocateMapRegisters
NdisMDeregisterIoPortRange
NdisMMapIoSpace
NdisMPciAssignResources
NdisMUnmapIoSpace
NdisReadNetworkAddress
NdisCloseConfiguration
NdisReadConfiguration
NdisOpenConfiguration
NdisTerminateWrapper
NdisMFreeMapRegisters
NdisMDeregisterInterrupt
NdisMDeregisterAdapterShutdownHandler
NdisMRegisterMiniport

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 986B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\FETND5AV.sys
.sys windows:5 windows x86

203dddc8fe6c49715976e6604dd406f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

WRITE_REGISTER_ULONG
WRITE_REGISTER_USHORT
WRITE_REGISTER_UCHAR

hal

WRITE_PORT_UCHAR
READ_PORT_UCHAR
KeStallExecutionProcessor

ndis.sys

NdisTerminateWrapper
NdisMRegisterMiniport
NdisInitializeWrapper
NdisAllocateBufferPool
NdisReadPciSlotInformation
NdisWritePciSlotInformation
NdisQueryBuffer
NDIS_BUFFER_TO_SPAN_PAGES
NdisQueryBufferOffset
NdisMCancelTimer
NdisUnchainBufferAtFront
NdisAcquireSpinLock
NdisReleaseSpinLock
NdisAdjustBufferLength
NdisMCompleteBufferPhysicalMapping
NdisMSynchronizeWithInterrupt
NdisSetEvent
NdisMStartBufferPhysicalMapping
NdisMAllocateSharedMemory
NdisMFreeSharedMemory
NdisAllocateMemoryWithTag
NdisAllocatePacket
NdisAllocateBuffer
NdisFreeMemory
NdisFreePacket
NdisFreeBuffer
NdisAllocatePacketPool
NdisFreeBufferPool
NdisFreePacketPool
NdisSetTimer
NdisMQueryAdapterResources
NdisMUnmapIoSpace
NdisMDeregisterIoPortRange
NdisMFreeMapRegisters
NdisFreeSpinLock
NdisMDeregisterInterrupt
NdisMDeregisterAdapterShutdownHandler
NdisWaitEvent
NdisInitializeEvent
NdisMInitializeTimer
NdisMRegisterAdapterShutdownHandler
NdisMRegisterInterrupt
NdisAllocateSpinLock
NdisMAllocateMapRegisters
NdisMMapIoSpace
NdisMRegisterIoPortRange
NdisMSetAttributesEx
NdisReadNetworkAddress
NdisCloseConfiguration
NdisReadConfiguration
NdisOpenConfiguration

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\FETND5BV.sys
.sys windows:5 windows x86

2c73a6ebbd15111dc4b6af7c51aa8e44

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

WRITE_REGISTER_ULONG
WRITE_REGISTER_USHORT
WRITE_REGISTER_UCHAR

hal

WRITE_PORT_UCHAR
READ_PORT_UCHAR
KeStallExecutionProcessor

ndis.sys

NdisTerminateWrapper
NdisMRegisterMiniport
NdisInitializeWrapper
NdisAllocateBufferPool
NdisReadPciSlotInformation
NdisWritePciSlotInformation
NdisQueryBufferSafe
NDIS_BUFFER_TO_SPAN_PAGES
NdisQueryBufferOffset
NdisMCancelTimer
NdisUnchainBufferAtFront
NdisAcquireSpinLock
NdisReleaseSpinLock
NdisAdjustBufferLength
NdisMCompleteBufferPhysicalMapping
NdisMSynchronizeWithInterrupt
NdisSetEvent
NdisGetCurrentSystemTime
NdisMStartBufferPhysicalMapping
NdisMAllocateSharedMemory
NdisMFreeSharedMemory
NdisAllocateMemoryWithTag
NdisAllocatePacket
NdisAllocateBuffer
NdisFreeMemory
NdisFreePacket
NdisFreeBuffer
NdisAllocatePacketPool
NdisFreeBufferPool
NdisFreePacketPool
NdisSetTimer
NdisMQueryAdapterResources
NdisMUnmapIoSpace
NdisMDeregisterIoPortRange
NdisMFreeMapRegisters
NdisFreeSpinLock
NdisMDeregisterInterrupt
NdisMDeregisterAdapterShutdownHandler
NdisWaitEvent
NdisInitializeEvent
NdisMInitializeTimer
NdisMRegisterAdapterShutdownHandler
NdisMRegisterInterrupt
NdisAllocateSpinLock
NdisMAllocateMapRegisters
NdisMInitializeScatterGatherDma
NdisMMapIoSpace
NdisMRegisterIoPortRange
NdisMSetAttributesEx
NdisReadNetworkAddress
NdisCloseConfiguration
NdisReadConfiguration
NdisOpenConfiguration

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 328B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\FETNDA64.inf
LAN\FETNDH.HLP
LAN\FETNDIS.inf
LAN\FETODI.COM
LAN\NTUTIL.DLL
.dll windows:4 windows x86

11a22dd415d7d0f532d35e1534299d18

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
HeapReAlloc
GetACP
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
GetEnvironmentStrings
HeapAlloc
FreeEnvironmentStringsW
HeapSize
TlsGetValue
IsBadCodePtr
SetStdHandle
LockResource
FindResourceA
LoadResource
RaiseException
HeapFree
TerminateProcess
GetCommandLineA
RtlUnwind
ExitProcess
SetFilePointer
FlushFileBuffers
GetOEMCP
GetCurrentProcess
GetProcessVersion
GetCPInfo
SizeofResource
WritePrivateProfileStringA
SetUnhandledExceptionFilter
GetStringTypeA
GlobalFlags
lstrcpynA
SetErrorMode
LocalReAlloc
GetStringTypeW
TlsSetValue
ReadFile
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
MulDiv
SetLastError
LoadLibraryA
FreeLibrary
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleHandleA
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
GlobalUnlock
GlobalFree
IsBadReadPtr
LCMapStringW
GetModuleFileNameA
WinExec
CloseHandle
WriteFile
CreateFileA
GetLastError
lstrcatA
GetSystemDirectoryA
GetProfileStringA
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
GlobalLock

user32

SetWindowTextA
ShowWindow
IsDialogMessageA
ClientToScreen
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
GetDC
DrawTextA
UnregisterClassA
GetClassNameA
PtInRect
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyMenu
GrayStringA
InflateRect
GetClientRect
CopyRect
GetTopWindow
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
RemovePropA
GetDlgCtrlID
DefWindowProcA
GetClassLongA
SetPropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
EndDialog
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
SetCursor
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA
PostMessageA
PostQuitMessage
EnableWindow
SendMessageA
GetPropA
GetWindow
SetForegroundWindow
UnhookWindowsHookEx
ExcludeUpdateRgn
IsWindowUnicode
CharNextA
DefDlgProcA
InvalidateRect
DrawFocusRect
ShowCaret
HideCaret

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
RectVisible
TextOutA
PtVisible
Escape
PatBlt
ExtTextOutA
CreateCompatibleDC
BitBlt
CreateDIBitmap
GetTextExtentPointA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyExA
RegSetValueExA
CloseServiceHandle
RegCreateKeyExA
RegCloseKey
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA

comctl32

ord17

Exports

Exports

GetRevID
GetSubID
ShowProp

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\Release.pdf
.pdf
LAN\WIN.txt
LAN\WINNDI.DLL
LAN\WINNT.txt
LAN\WINX64.TXT
LAN\WinSetup.exe
.exe windows:4 windows x86

fa2d9759b6b0319a86893f8ebfd1c9b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetOEMCP
SetFilePointer
FlushFileBuffers
GetCPInfo
SetEndOfFile
GetProcessVersion
RtlUnwind
RaiseException
ExitProcess
HeapFree
HeapAlloc
GetStartupInfoA
HeapReAlloc
HeapSize
GetACP
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
VirtualProtect
GetSystemInfo
VirtualQuery
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoA
GetProcessHeap
WritePrivateProfileStringA
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
GlobalFlags
TlsAlloc
EnterCriticalSection
MulDiv
lstrcpynA
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GlobalAddAtomA
GetVersion
GlobalGetAtomNameA
ReleaseMutex
GlobalFindAtomA
CreateMutexA
GlobalDeleteAtom
GetCurrentThreadId
lstrcmpiA
GetCurrentThread
LockResource
GlobalLock
GlobalUnlock
FindResourceA
WideCharToMultiByte
GetWindowsDirectoryA
LoadResource
MultiByteToWideChar
InterlockedDecrement
FindClose
FindNextFileA
GetVersionExA
GetPrivateProfileSectionA
GetCommandLineA
GetModuleFileNameA
InterlockedIncrement
GetModuleHandleA
GetCurrentProcess
GetSystemDirectoryA
LocalFree
LocalAlloc
SetLastError
lstrlenA
WinExec
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CreateDirectoryA
GetDriveTypeA
GetShortPathNameA
SetErrorMode
FindFirstFileA
SetUnhandledExceptionFilter
HeapDestroy
lstrcmpA
LoadLibraryA
FreeLibrary
GetFileAttributesA
GetLastError
lstrcpyA
GetProcAddress
WriteFile
CreateFileA
ReadFile
DeleteFileA
SetFileAttributesA
lstrcatA
CloseHandle
DeviceIoControl
Sleep
GlobalAlloc
GlobalFree

user32

LoadIconA
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
GetClientRect
UpdateWindow
IsDialogMessageA
ShowWindow
GetClassNameA
PtInRect
ClientToScreen
ReleaseDC
GetDC
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
SetWindowTextA
GetSysColorBrush
DestroyMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
GetMenuCheckMarkDimensions
CopyRect
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
SetCursor
PostQuitMessage
PostMessageA
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
EnableWindow
ExitWindowsEx
SetForegroundWindow
CharNextA
GetDesktopWindow
GetWindowRect
CreateWindowExA
SendMessageA
DestroyWindow
LoadStringA
wsprintfA
MessageBoxA
GetTopWindow
WinHelpA
GetCapture
GetMenu
GetClassInfoA
RegisterClassA
GetMenuItemID
GetMenuItemCount
GetSubMenu
DefWindowProcA
GetClassLongA
IsIconic
EnableMenuItem
GetFocus
LoadBitmapA
UnregisterClassA

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteObject
SelectObject
GetDeviceCaps
GetStockObject
DeleteDC
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
ScaleWindowExtEx
PtVisible
TextOutA
ExtTextOutA
RectVisible
SetWindowExtEx
Escape

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegDeleteKeyA
RegCloseKey
RegSetValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA
ControlService
DeleteService
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
CloseServiceHandle

shell32

SHFileOperationA

comctl32

ord17

Sections

.text
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LAN\WinUinst.exe
.exe windows:4 windows x86

ce0fb7d975b3b40ff495aa5588d12bee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

SetErrorMode
GetOEMCP
SetFilePointer
FlushFileBuffers
SetEndOfFile
RtlUnwind
RaiseException
ExitProcess
HeapFree
HeapAlloc
GetStartupInfoA
HeapReAlloc
HeapSize
GetACP
GetCPInfo
GetProcessVersion
FindClose
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoA
GetProcessHeap
WritePrivateProfileStringA
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
GlobalFlags
TlsAlloc
EnterCriticalSection
MulDiv
lstrcpynA
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GlobalAddAtomA
GetVersion
GlobalGetAtomNameA
ReleaseMutex
GlobalFindAtomA
CreateMutexA
GlobalDeleteAtom
GetCurrentThreadId
lstrcmpiA
GetCurrentThread
LockResource
GlobalLock
GetWindowsDirectoryA
GlobalUnlock
FindResourceA
LoadResource
MultiByteToWideChar
InterlockedDecrement
SetUnhandledExceptionFilter
FindFirstFileA
LoadLibraryA
lstrcmpA
FindNextFileA
GetShortPathNameA
GetVersionExA
GetPrivateProfileSectionA
GetCommandLineA
GetModuleFileNameA
InterlockedIncrement
GetModuleHandleA
GetCurrentProcess
GetSystemDirectoryA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
LocalFree
LocalAlloc
SetLastError
lstrlenA
WinExec
CreateDirectoryA
LCMapStringW
LCMapStringA
GetFileAttributesA
FreeLibrary
GetProcAddress
GetLastError
lstrcpyA
ReadFile
WriteFile
CreateFileA
lstrcatA
DeleteFileA
SetFileAttributesA
Sleep
CloseHandle
DeviceIoControl
GlobalFree
GlobalAlloc
WideCharToMultiByte

user32

AdjustWindowRectEx
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
SetFocus
LoadIconA
IsDialogMessageA
SetWindowTextA
GetClassNameA
PtInRect
ClientToScreen
ReleaseDC
GetDC
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
ShowWindow
GetSysColorBrush
DestroyMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetClientRect
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IsIconic
GetWindowPlacement
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
CopyRect
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
SetCursor
PostQuitMessage
PostMessageA
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
SendMessageA
EnableWindow
ExitWindowsEx
GetDesktopWindow
SetForegroundWindow
LoadStringA
wsprintfA
MessageBoxA
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetDlgCtrlID
DefWindowProcA
SystemParametersInfoA
CheckMenuItem
SetMenuItemBitmaps
GetWindowRect
UnregisterClassA

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteObject
SelectObject
GetDeviceCaps
GetStockObject
DeleteDC
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
RectVisible
TextOutA
PtVisible
Escape
ExtTextOutA
ScaleWindowExtEx

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
RegEnumKeyExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyA
RegEnumKeyA
RegQueryValueExA
ControlService
DeleteService
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
CloseServiceHandle

shell32

SHFileOperationA

comctl32

ord17

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LAN\fetnda64.cat
LAN\netvt.cat
LAN\oemsetup.inf
.vbs
LAN\readme.txt
LAN\vuins16.dll
LAN\vuins32.dll
.dll windows:4 windows x86

9e979756388a3907887f52316b59b17f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentProcess
lstrcpyA
GetEnvironmentVariableA
GetShortPathNameA
GetModuleFileNameA
SetLastError
lstrlenA
SetPriorityClass
lstrcatA
SetFileAttributesA
DeleteFileA
FindClose
FindFirstFileA
GetWindowsDirectoryA
GetCommandLineA
CreateProcessA
GetCurrentThread
SetThreadPriority
GetLastError
FindNextFileA
GetOEMCP
GetStdHandle
SetHandleCount
LoadLibraryA
GetProcAddress
RtlUnwind
CreateFileA
SetEndOfFile
ExitProcess
TerminateProcess
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
ResumeThread
InterlockedDecrement
InterlockedIncrement
HeapFree
CloseHandle
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
HeapAlloc
SetFilePointer
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
FlushFileBuffers
ReadFile
LCMapStringA
LCMapStringW
VirtualAlloc
HeapReAlloc
SetStdHandle

user32

MessageBoxA
LoadStringA
CharNextA

advapi32

RegCloseKey
RegEnumValueA
RegQueryValueExA
RegEnumKeyA
RegOpenKeyExA

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList

shlwapi

SHDeleteKeyA

Exports

Exports

vuins32Ex

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\vuins64.dll
.dll windows:5 windows x64

02389b719ed5d59375686328e59d38f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

msvcrt

memcpy
sprintf
strtok
exit
_stricmp
isspace
fopen
fgets
_strnicmp
fclose
strstr
memmove
strncpy
memset

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiOpenDevRegKey
SetupDiEnumDeviceInfo
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList

kernel32

FindClose
lstrcatA
GetCommandLineA
GetLastError
lstrlenA
SetLastError
GetWindowsDirectoryA
SetFileAttributesA
DeleteFileA
FindNextFileA
GetModuleFileNameA
FindFirstFileA
GetShortPathNameA
GetEnvironmentVariableA
ResumeThread
CreateProcessA
SetThreadPriority
GetCurrentThread
SetPriorityClass
GetCurrentProcess
lstrcpyA

user32

CharNextA
LoadStringA
MessageBoxA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegEnumKeyA
RegEnumValueA

shlwapi

SHDeleteKeyA

Exports

Exports

vuins64Ex

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
LAN\winsetup.txt
LAN\winsetup\NTSetup.inf
.vbs
LAN\winsetup\VETUP16.DLL
LAN\winsetup\VETUP32.DLL
.dll windows:4 windows x86

9e0d4d26f443448850c6a708a5017721

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
FT_Exit12
FT_Exit24
SMapLS
SUnMapLS
SMapLS_IP_EBP_8
SUnMapLS_IP_EBP_8
SMapLS_IP_EBP_12
SUnMapLS_IP_EBP_12
SMapLS_IP_EBP_16
SUnMapLS_IP_EBP_16
SMapLS_IP_EBP_20
SUnMapLS_IP_EBP_20
ThunkConnect32
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FT_Thunk
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
RtlUnwind

Exports

Exports

VETUP_ThunkData32
VNW9XDetectNdiDevice32
VNW9XDetectSnmp32
VNW9XDetectTcpip32
VNW9XInstall32
VNW9XInstallSnmp32
VNW9XInstallTcpip32
VNW9XIpClose32
VNW9XIpFindFirstLine32
VNW9XIpFindNextLine32
VNW9XIpGetFieldCount32
VNW9XIpGetStringField32
VNW9XIpOpen32
VNW9XUninstall32
VNW9XVerifyDeviceClass32

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\winsetup\VETUP64.DLL
.dll windows:5 windows x64

91de426b2808e96276119ce7f09fdcfe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

ntdll

RtlUnwindEx

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList

kernel32

HeapFree
HeapAlloc
SetLastError
lstrlenA
GetLastError
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetLocaleInfoA
GetCPInfo
GetStringTypeW
Sleep
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA

newdev

UpdateDriverForPlugAndPlayDevicesA

Exports

Exports

VNRemove64
VNUpdateDriverForPlugAndPlayDevices64

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\winsetup\ntsim2.sys
.sys windows:5 windows x86

5559871aae01308501a0739e4ad0504c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

KeTickCount
IoCreateDevice
IoCreateSymbolicLink
IoDeleteDevice
IofCompleteRequest
RtlInitUnicodeString
IoDeleteSymbolicLink

hal

WRITE_PORT_ULONG
WRITE_PORT_USHORT
READ_PORT_USHORT
KeStallExecutionProcessor
WRITE_PORT_UCHAR
READ_PORT_UCHAR

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 256B - Virtual size: 159B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 384B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
LAN\winsetup\ntsim2A.sys
.sys windows:5 windows x64

f548cc0d719236861cb140c80a478dc8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntoskrnl.exe

IoDeleteDevice
RtlInitUnicodeString
IoCreateDevice
IoCreateSymbolicLink
IofCompleteRequest
IoDeleteSymbolicLink

hal

KeStallExecutionProcessor

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 796B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 290B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AMILO La 1703/FTS_ModemDevicedriver__1007154.zip
.zip
Modem\ssetup.exe
.exe windows:4 windows x86

f27421b1f5e3450549c90e92d0dd4b75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
GetExitCodeProcess
GetFullPathNameA
CloseHandle
lstrcmpiA
SetCurrentDirectoryA
WaitForSingleObject
GetVersionExA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
HeapAlloc
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\License.htm
.html
Modem\x32\W2KXP\Readme.htm
.html
Modem\x32\W2KXP\SmSerial.hda
.sys windows:5 windows x86

cfde0e822c65516d089b1069046f795e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

KeInitializeSpinLock
ExAllocatePoolWithTag
IoCreateUnprotectedSymbolicLink
_except_handler3
ZwDeleteKey
ZwEnumerateKey
ZwClose
ZwQueryValueKey
RtlAppendUnicodeStringToString
ZwOpenKey
RtlWriteRegistryValue
wcsstr
RtlIntegerToUnicodeString
InterlockedIncrement
InterlockedDecrement
IofCallDriver
PoCallDriver
IofCompleteRequest
KeResetEvent
KeSetEvent
InterlockedExchange
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
KeQueryInterruptTime
MmMapLockedPagesSpecifyCache
MmProbeAndLockPages
IoAllocateMdl
MmUnlockPages
KeQuerySystemTime
_alldiv
IoDeleteDevice
KeInitializeEvent
IoCreateSymbolicLink
IoDetachDevice
IoAttachDeviceToDeviceStack
IoIsWdmVersionAvailable
KeWaitForSingleObject
PoRequestPowerIrp
PoStartNextPowerIrp
IoCancelIrp
ExSetTimerResolution
PoSetPowerState
KeClearEvent
KeInsertQueueDpc
KeSetTimer
IoWriteErrorLogEntry
IoAllocateErrorLogEntry
IoFreeWorkItem
IoQueueWorkItem
IoAllocateWorkItem
_aulldiv
IoBuildSynchronousFsdRequest
_allmul
IoSetDeviceInterfaceState
IoRegisterDeviceInterface
KeSetImportanceDpc
KefAcquireSpinLockAtDpcLevel
KefReleaseSpinLockFromDpcLevel
RtlUnicodeStringToAnsiString
KeTickCount
KeBugCheckEx
KeInitializeTimer
KeInitializeDpc
RtlAppendUnicodeToString
IoCreateDevice
RtlCopyUnicodeString
RtlQueryRegistryValues
RtlInitUnicodeString
ExFreePool
KeCancelTimer
KeRemoveQueueDpc
strstr
RtlEqualUnicodeString
ZwSetValueKey
strchr
DbgPrint
IoBuildDeviceIoControlRequest
ObfDereferenceObject
ObReferenceObjectByPointer
IoGetDeviceObjectPointer
MmUnmapLockedPages
KeDelayExecutionThread
IoDeleteSymbolicLink

hal

KeQueryPerformanceCounter
KfAcquireSpinLock
KeGetCurrentIrql
KeStallExecutionProcessor
KfLowerIrql
KfRaiseIrql
KfReleaseSpinLock

wmilib.sys

WmiSystemControl

Sections

.text
Size: 635KB - Virtual size: 635KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_LTEXT
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_LDATA
Size: 128B - Virtual size: 48B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGESRP0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\SmSerial.sys
.sys windows:5 windows x86

0148712a35346b1497cd96f167cff104

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

ZwEnumerateKey
ZwClose
ZwQueryValueKey
RtlAppendUnicodeStringToString
ZwOpenKey
RtlWriteRegistryValue
wcsstr
RtlIntegerToUnicodeString
InterlockedIncrement
InterlockedDecrement
IofCallDriver
PoCallDriver
IofCompleteRequest
KeResetEvent
KeSetEvent
InterlockedExchange
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
KeQueryInterruptTime
MmMapLockedPagesSpecifyCache
MmProbeAndLockPages
IoAllocateMdl
MmUnlockPages
KeQuerySystemTime
_alldiv
IoDeleteDevice
KeRemoveQueueDpc
IoCreateSymbolicLink
IoDetachDevice
IoAttachDeviceToDeviceStack
IoIsWdmVersionAvailable
KeWaitForSingleObject
PoRequestPowerIrp
ZwDeleteKey
IoCancelIrp
ExSetTimerResolution
PoSetPowerState
KeClearEvent
ExAllocatePoolWithTag
IoConnectInterrupt
KeSynchronizeExecution
KeInsertQueueDpc
KeSetTimer
IoWriteErrorLogEntry
IoAllocateErrorLogEntry
IoFreeWorkItem
IoQueueWorkItem
IoAllocateWorkItem
_allmul
IoSetDeviceInterfaceState
IoRegisterDeviceInterface
IoGetDmaAdapter
KeSetImportanceDpc
KefAcquireSpinLockAtDpcLevel
KefReleaseSpinLockFromDpcLevel
RtlUnicodeStringToAnsiString
KeTickCount
KeBugCheckEx
KeInitializeSpinLock
KeInitializeEvent
KeInitializeTimer
KeInitializeDpc
RtlAppendUnicodeToString
IoCreateDevice
RtlCopyUnicodeString
_except_handler3
PoStartNextPowerIrp
IoCreateUnprotectedSymbolicLink
strstr
RtlEqualUnicodeString
ZwSetValueKey
MmMapIoSpace
MmUnmapIoSpace
strchr
_strnicmp
DbgPrint
IoBuildDeviceIoControlRequest
ObfDereferenceObject
ObReferenceObjectByPointer
IoGetDeviceObjectPointer
WRITE_REGISTER_ULONG
READ_REGISTER_ULONG
READ_REGISTER_UCHAR
WRITE_REGISTER_UCHAR
RtlQueryRegistryValues
RtlInitUnicodeString
ExFreePool
KeCancelTimer
IoDisconnectInterrupt
IoDeleteSymbolicLink

hal

READ_PORT_ULONG
WRITE_PORT_USHORT
READ_PORT_UCHAR
READ_PORT_USHORT
WRITE_PORT_ULONG
KeStallExecutionProcessor
KfLowerIrql
KfRaiseIrql
KeGetCurrentIrql
KfAcquireSpinLock
KfReleaseSpinLock
WRITE_PORT_UCHAR

wmilib.sys

WmiSystemControl

Sections

.text
Size: 700KB - Virtual size: 700KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_LTEXT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_LDATA
Size: 128B - Virtual size: 48B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGESRP0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\brazil.chm
.chm
Modem\x32\W2KXP\chinese.chm
.chm
Modem\x32\W2KXP\domestic.chm
.chm
Modem\x32\W2KXP\dutch.chm
.chm
Modem\x32\W2KXP\french.chm
.chm
Modem\x32\W2KXP\german.chm
.chm
Modem\x32\W2KXP\italian.chm
.chm
Modem\x32\W2KXP\japanese.chm
.chm
Modem\x32\W2KXP\korean.chm
.chm
Modem\x32\W2KXP\sm56.reg
Modem\x32\W2KXP\sm56brz.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56chs.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56cht.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56co.dll
.dll windows:4 windows x86

109018f365b6cc9d1368405ea9c6ecf7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiGetDeviceInstallParamsA
SetupDiDeleteDevRegKey

kernel32

GetCurrentProcess
WriteFile
SetFilePointer
FlushFileBuffers
GetFileAttributesA
SetFileAttributesA
RtlUnwind
RemoveDirectoryA
GetCommandLineA
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
RaiseException
GetOEMCP
HeapReAlloc
GetACP
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetCPInfo
GetProcessVersion
WritePrivateProfileStringA
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
TlsAlloc
FreeLibrary
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleHandleA
IsBadStringPtrA
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetVersionExA
CopyFileA
MoveFileExA
DeleteFileA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CloseHandle
lstrcpynA
LoadLibraryA
GetProcAddress
GetUserDefaultLCID
GetLocaleInfoA
GetWindowsDirectoryA
LocalAlloc
SetLastError
GetLastError
LocalFree
IsBadWritePtr
lstrlenA
HeapSize

user32

GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
LoadIconA
UnregisterClassA
LoadStringA
GetClassNameA
PtInRect
ClientToScreen
SetWindowTextA
GetDC
ReleaseDC
TabbedTextOutA
DrawTextA
GrayStringA
ShowWindow
LoadCursorA
GetSysColorBrush
DestroyMenu
GetTopWindow
GetCapture
CopyRect
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
MessageBoxA
WinHelpA
SendNotifyMessageA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
EnableWindow
SetCursor
SendMessageA
PostMessageA
PostQuitMessage
EnumWindows
GetMenuCheckMarkDimensions

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegEnumValueA
RegDeleteValueA
RegDeleteKeyA
RegQueryInfoKeyA
RegEnumKeyA
RegOpenKeyA
RegCloseKey
RegEnumKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA

shell32

SHGetSpecialFolderPathA

comctl32

ord17

Exports

Exports

SM56CoInstaller
SM56UnInstaller

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56dnk.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56eng.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56esp.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56fra.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56ger.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56hlpr.exe
.exe windows:4 windows x86

41c8abed43a54dc985ead569838358bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeKillEvent
timeSetEvent
timeGetDevCaps
timeBeginPeriod
timeEndPeriod

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
ExitThread
SetStdHandle
GetFileType
GetACP
TerminateProcess
HeapReAlloc
HeapSize
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
IsBadReadPtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetSystemDirectoryA
CreateEventA
CloseHandle
WaitForSingleObject
SetEvent
ResetEvent
GetLastError
DeviceIoControl
WaitForMultipleObjects
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalMemoryStatus
CreateThread
LockResource
LoadResource
FindResourceA
GetModuleHandleA
GetWindowsDirectoryA
CreateProcessA
CreateFileA
CopyFileA
Sleep
GetVersionExA
WritePrivateProfileStringA
SetErrorMode
SetFileAttributesA
GetFileTime
GetFileSize
GetFileAttributesA
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GlobalFlags
GetProcessVersion
SizeofResource
lstrcmpA
GetCurrentThread
MulDiv
SetLastError
ReleaseMutex
GetModuleFileNameA
GetThreadLocale
GetProcAddress
lstrcpynA
GetCurrentProcess
GetExitCodeProcess
CreatePipe
FreeLibrary
GetProfileStringA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
LoadLibraryA
SuspendThread
SetThreadPriority
ResumeThread
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
CreateMutexA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
IsBadWritePtr
lstrlenA
IsBadStringPtrA
FormatMessageA
LocalFree
IsBadCodePtr

user32

GetNextDlgGroupItem
MessageBeep
InvalidateRect
RegisterClipboardFormatA
PostThreadMessageA
InflateRect
DestroyMenu
GetDesktopWindow
PtInRect
GetClassNameA
GetSysColorBrush
SetWindowContextHelpId
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetDC
ReleaseDC
CharUpperA
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SetRect
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
ScreenToClient
GetClientRect
CopyRect
IsWindowVisible
GetTopWindow
IsChild
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
IsWindowUnicode
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindow
SetWindowLongA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetSystemMetrics
CreateDialogIndirectParamA
CopyAcceleratorTableA
CharNextA
GetWindowRect
MapDialogRect
SetWindowPos
ShowWindow
GetCapture
GetActiveWindow
SetActiveWindow
GetAsyncKeyState
GetWindowLongA
GetFocus
SetFocus
GetDlgItem
IsWindowEnabled
GetParent
GetForegroundWindow
UpdateWindow
RegisterWindowMessageA
LoadIconA
MessageBoxA
ExitWindowsEx
DestroyIcon
FindWindowA
SendNotifyMessageA
GetCursor
LoadCursorA
SetCursor
SetForegroundWindow
LoadStringA
SendMessageA
KillTimer
SetTimer
wsprintfA
CreateDialogParamA
PostMessageA
DestroyWindow
EnableWindow
PostQuitMessage
IsWindow
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA

gdi32

DeleteObject
GetDeviceCaps
IntersectClipRect
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
PatBlt
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetTextExtentPointA
BitBlt
CreateCompatibleDC
GetViewportExtEx
CreateDIBitmap

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteValueA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryInfoKeyA
RegEnumValueA
InitiateSystemShutdownA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
InitializeSecurityDescriptor

shell32

Shell_NotifyIconA

comctl32

PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoBuildVersion
CoCreateInstance
CoUninitialize
CoInitializeEx
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
CoRevokeClassObject

olepro32

ord253

oleaut32

SysStringLen
SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56ita.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56jpn.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56kor.dll
.dll windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Modem\x32\W2KXP\sm56nt5.cat
Modem\x32\W2KXP\smserial.inf
Modem\x32\W2KXP\spanish.chm
.chm
Modem\x32\si.exe
.exe windows:4 windows x86

20e620ef1d8193000dda81bbdc53b5fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupCopyOEMInfA

mfc42

ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord800
ord815
ord2818
ord540
ord561
ord825
ord641
ord765
ord2514
ord2764
ord4202
ord823
ord537
ord2621
ord5265
ord4376
ord4853
ord4998
ord6052
ord1775
ord3136
ord4425
ord3597
ord6055
ord4078
ord1776
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord1576
ord5277
ord3402
ord4627
ord3698
ord1146
ord1168
ord567
ord324
ord2302
ord4234
ord4710
ord2379
ord755
ord470
ord6215
ord1200
ord4465
ord3259
ord3147
ord2982
ord5714
ord5289
ord5307
ord4698
ord4079
ord2725
ord5302
ord5300
ord3346
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord4673
ord5280
ord2124

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
strstr
_mbsnbcat
_mbsnbcmp
_mbsstr
_setmbcp
strtol
__CxxFrameHandler
strncpy

kernel32

SetCurrentDirectoryA
GetFullPathNameA
lstrcmpA
GetCommandLineA
GetModuleHandleA
GetCurrentDirectoryA
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
SetLastError
lstrlenA
LocalAlloc
LocalFree
GetLastError
GetCurrentProcess
Sleep
GetStartupInfoA
GetProcAddress
GetVersionExA
GetPrivateProfileStringA
LoadLibraryA

user32

EnableWindow
GetWindowTextA
SendNotifyMessageA
EnumWindows
ExitWindowsEx
UpdateWindow
IsIconic
GetSystemMetrics
GetClientRect
SendMessageA
PostMessageA
LoadIconA
DrawIcon

advapi32

RegOpenKeyExA
RegDeleteValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Modem\x32\si.ini
AMILO La 1703/FTS_PowernowforAMDTurionSempronCPU__1007297.zip
.zip
PowerNow\setup.exe
.exe windows:4 windows x86

81638d02019c0bfcaaf23a9c69f2f12c

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

19:59:9b:e1:96:63:20:20:f0:23:c9:6f:2f:39:04:d6
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

14/02/2006, 00:00

Not After

11/04/2007, 23:59

Subject

CN=Advanced Micro Devices\, Inc.,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Developer Systems Support,O=Advanced Micro Devices\, Inc.,L=Austin,ST=Texas,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
WaitForSingleObject
CreateProcessA
GetCommandLineA
CloseHandle
UnmapViewOfFile
WriteFile
MapViewOfFile
DeleteFileA
GetTempFileNameA
GetTempPathA
CreateFileA
GetShortPathNameA
GetModuleFileNameA

user32

wsprintfA

Sections

.text
Size: 512B - Virtual size: 510B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 533B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
AMILO La 1703/FTS_SynapticsPS2PortTouchpad__1007581.ZIP
.zip
TouchPad/InstNT.exe
.exe windows:4 windows x86

e1242c13caf81003626333535da088d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

newdev

UpdateDriverForPlugAndPlayDevicesA

kernel32

FindNextFileA
FindFirstFileA
RemoveDirectoryA
FlushFileBuffers
LoadLibraryA
GetProcAddress
FreeLibrary
CreateProcessA
GetCurrentDirectoryA
GetModuleFileNameA
GetCurrentProcess
CloseHandle
GetLastError
FormatMessageA
LocalFree
GetWindowsDirectoryA
SetFileAttributesA
FindClose
GetFileAttributesA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetEndOfFile
SetFilePointer
CreateFileA
WriteFile
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
SetStdHandle
ReadFile
ExitProcess
TerminateProcess
RtlUnwind
HeapFree
DeleteFileA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapAlloc
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetACP

user32

WaitForInputIdle

advapi32

RegCreateKeyA
RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
PrivilegeCheck
RegCreateKeyExA
RegSetValueExA
RegCloseKey

setupapi

SetupGetInfInformationA
SetupQueryInfVersionInformationA
SetupCopyOEMInfA
SetupOpenInfFileA
SetupInstallFromInfSectionA
SetupDiGetClassDevsA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiOpenDevRegKey
SetupDiGetDeviceRegistryPropertyA
SetupDiSetDeviceRegistryPropertyA
SetupDiClassGuidsFromNameA
SetupDiEnumDeviceInfo

shlwapi

SHDeleteEmptyKeyA

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TouchPad/Setup.exe
.exe windows:4 windows x86

b4e0151a222ad217806d8344bc933b60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerInstallFileA

kernel32

CloseHandle
Sleep
lstrlenW
DeleteFileA
GetAtomNameA
RemoveDirectoryA
SetEvent
OpenEventA
AddAtomA
HeapDestroy
GetModuleHandleA
GetStartupInfoA
HeapCreate
ExitProcess
GetCommandLineA
HeapAlloc
CompareStringA
HeapFree
LockResource
LoadResource
CompareStringW
GetVersionExA
SetErrorMode
LocalFree
FormatMessageA
InterlockedDecrement
CreateProcessA
CreateFileA
CopyFileA
GetTempFileNameA
GetTempPathA
WaitForSingleObject
SetFileAttributesA
ReadFile
GetShortPathNameA
GetPrivateProfileStringA
GetFileAttributesA
CreateDirectoryA
GlobalLock
GlobalAlloc
MultiByteToWideChar
GetModuleFileNameA
RtlUnwind
WideCharToMultiByte
lstrlenA
GlobalUnlock
GlobalFree
GetLastError
SetLastError
lstrcpyA
lstrcatA
GetUserDefaultLangID
GetPrivateProfileIntA
FindResourceA
FindResourceExA
GetWindowsDirectoryA

user32

TranslateMessage
PeekMessageA
GetWindowLongA
EndDialog
GetDlgItem
SendMessageA
SetWindowLongA
DispatchMessageA
IsDialogMessageA
CreateDialogIndirectParamA
SetDlgItemTextA
GetDesktopWindow
GetClientRect
GetWindowRect
MoveWindow
CharNextA
CharUpperA
CharLowerA
ReleaseDC
LoadImageA
GetDC
EndPaint
CreateDialogParamA
BeginPaint
DialogBoxIndirectParamA
MessageBoxA
DestroyWindow
wsprintfA

gdi32

DeleteDC
SelectObject
RealizePalette
SelectPalette
UnrealizeObject
CreateCompatibleDC
GetObjectA
GetDeviceCaps
CreateHalftonePalette
CreatePalette
GetSystemPaletteEntries
GetDIBColorTable
BitBlt

advapi32

RegCreateKeyA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegOpenKeyA
RegQueryValueExA

ole32

CoCreateInstance
CoFreeAllLibraries
CoInitialize
CoUninitialize

oleaut32

SysAllocStringLen
SysStringLen
SysFreeString
SafeArrayGetLBound
VariantClear
SafeArrayGetElement
SysAllocString
SafeArrayGetUBound

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TouchPad/Setup.ini
TouchPad/SynCntxt.rtf
.rtf
TouchPad/SynCom.dll
.dll regsvr32 windows:4 windows x86

7abfc2a2de10cacaadf97ab52ef59140

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrlenA
GetShortPathNameA
GetModuleFileNameA
WideCharToMultiByte
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
HeapDestroy
GetProcAddress
LoadLibraryA
MultiByteToWideChar
lstrcatA
SetThreadPriority
CreateThread
CreateEventA
UnmapViewOfFile
OpenFileMappingA
SetLastError
LocalAlloc
GetTickCount
GetSystemDirectoryA
TerminateThread
WaitForSingleObjectEx
lstrlenW
InterlockedDecrement
InterlockedIncrement
HeapCreate
GetSystemInfo
DisableThreadLibraryCalls
OpenMutexA
CreateFileMappingA
MapViewOfFile
GetCurrentProcessId
GetLastError
LocalFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
SetEvent
HeapFree
HeapReAlloc
HeapAlloc
DebugBreak
DeviceIoControl
GetVersionExA
CreateFileA
WaitForSingleObject
Sleep
ReleaseMutex
CloseHandle
CreateMutexA
lstrcpyA

user32

PeekMessageA
GetWindowLongA
SetWindowLongA
GetMessageA
DispatchMessageA
wsprintfA
GetForegroundWindow
RegisterClassA
SetTimer
KillTimer
DestroyWindow
CharNextA
SendMessageA
PostMessageA
FindWindowA
CreateWindowExA
DefWindowProcA

gdi32

SetDIBits
GetDIBits
GetDeviceCaps
CreateDIBSection
BitBlt
GetBitmapBits
GetObjectA
GetPixel
CreateCompatibleDC
DeleteDC
DeleteObject
SelectObject
CreateCompatibleBitmap

advapi32

RegEnumValueA
RegQueryInfoKeyA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
InitializeSecurityDescriptor
RegCloseKey
SetSecurityDescriptorDacl

ole32

CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoCreateInstance
CoTaskMemRealloc

oleaut32

SysAllocString
LoadTypeLi
RegisterTypeLi
VarUI4FromStr
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
SynCreateAPI

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynCtrl.dll
.dll regsvr32 windows:4 windows x86

31031430bdcac771df02c71a46b4c471

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
InterlockedDecrement
InterlockedIncrement
HeapDestroy
GlobalLock
GlobalAlloc
GetCurrentThreadId
FlushInstructionCache
GetCurrentProcess
MulDiv
EnterCriticalSection
LeaveCriticalSection
DebugBreak
InitializeCriticalSection
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
GetLastError
FindResourceA
LoadResource
SizeofResource
FreeLibrary
WideCharToMultiByte
GetModuleFileNameA
GetShortPathNameA
lstrlenA
lstrlenW
HeapCreate
GetSystemInfo
DisableThreadLibraryCalls
MultiByteToWideChar
HeapFree
HeapReAlloc
HeapAlloc
GlobalUnlock

user32

CreateWindowExA
CallWindowProcA
GetWindowLongA
SetWindowLongA
BeginPaint
GetClientRect
InvalidateRect
GetDC
ReleaseDC
IntersectRect
EqualRect
OffsetRect
SetFocus
IsChild
GetFocus
ShowWindow
GetParent
CharNextA
DefWindowProcA
GetKeyState
PtInRect
EndPaint
UnionRect
RegisterClassExA
wsprintfA
SetWindowRgn
SetWindowPos
IsWindow
DestroyWindow
GetClassInfoExA
LoadCursorA

gdi32

CreateCompatibleDC
StretchBlt
TextOutA
SetTextAlign
Rectangle
CreateRectRgnIndirect
DeleteMetaFile
CloseMetaFile
RestoreDC
SetWindowExtEx
SetWindowOrgEx
SaveDC
CreateMetaFileA
GetDeviceCaps
DeleteDC

advapi32

RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
RegCreateKeyExA
RegDeleteKeyA

ole32

CreateOleAdviseHolder
OleLoadFromStream
WriteClassStm
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
OleSaveToStream

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VarUI4FromStr
SysAllocString
LoadTypeLi
RegisterTypeLi
VariantChangeType
SysStringByteLen
LoadRegTypeLi
SysStringLen
SysAllocStringByteLen
OleCreatePropertyFrame
SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayGetVartype
SafeArrayGetLBound

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynHid.inf
TouchPad/SynISDLL.dll
.dll windows:4 windows x86

7ed598ad6407806462cffd8468d5c25d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
DeviceIoControl
SetLastError
LocalFree
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
GetTickCount
GetSystemDirectoryA
CreateEventA
SetThreadPriority
CreateThread
TerminateThread
WaitForSingleObject
SetEvent
WaitForSingleObjectEx
InterlockedDecrement
InterlockedIncrement
OpenEventA
ResetEvent
FormatMessageW
LoadLibraryW
DeleteFileW
SetFileAttributesW
RemoveDirectoryW
ReadFile
CreateFileA
SetFilePointer
CreateFileW
GetWindowsDirectoryW
GetShortPathNameW
MoveFileExW
GetTempPathW
GetSystemDirectoryW
FindNextFileW
FindFirstFileW
GetModuleFileNameW
CopyFileW
CreateProcessW
CreateDirectoryW
OutputDebugStringW
SetEndOfFile
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
DeleteCriticalSection
InitializeCriticalSection
GetSystemInfo
FreeLibrary
ExpandEnvironmentStringsA
GetVersionExA
SetFileAttributesA
DeleteFileA
FindFirstFileA
GetLastError
FindNextFileA
FindClose
LoadLibraryA
GetProcAddress
WriteFile
HeapFree
RtlUnwind
GetCommandLineA
GetVersion
ExitProcess
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
TerminateProcess
GetCurrentProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
GetCPInfo
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter

user32

LoadStringW
MessageBoxW
wsprintfA
DefWindowProcA
DestroyWindow
RegisterClassA
CreateWindowExA
PostMessageA
PeekMessageA
LoadStringA

advapi32

RegDeleteValueA
RegQueryValueExW
RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegCreateKeyA
RegDeleteKeyA

Exports

Exports

ISAddStringSubstitution
ISDeleteIniFiles
ISFreeStringSubstitutionTable
ISIsBrokenDriverPresent
ISLaterSynapticsDriverInstalled
ISMultipleProcessor
ISParseIniFiles
ISParsePreInstIniFiles
ISSynapticsDriverPresent
ISValidateIniFiles
ISValidateOneIniFile
ISVerifyProcessorIsX64
ISVerifyVersion
ISVerifyVersion98
ISVerifyVersionWin2KOrAbove
ISVerifyWin64
SilentUninstall_CallerWillReboot
UnInstFinish
UnInstStart
UninstInitialize
UninstUnInitialize
deleteDirs
deleteDirsW
deleteFiles
deleteFilesW
standAloneUninstall

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 488KB - Virtual size: 484KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynMood.exe
.exe windows:4 windows x86

102744fa86927aca72254d137418e9ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
RaiseException
TerminateProcess
HeapReAlloc
HeapSize
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
WriteFile
GetCurrentProcess
SetErrorMode
GetOEMCP
GetCPInfo
GetProcessVersion
WritePrivateProfileStringA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
MulDiv
MultiByteToWideChar
WideCharToMultiByte
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleHandleA
LockResource
FindResourceA
LoadResource
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
lstrlenA
lstrcmpA
lstrcpynA
GetLastError
GetModuleFileNameA
InterlockedIncrement
InterlockedDecrement
WaitForSingleObjectEx
SetEvent
WaitForSingleObject
TerminateThread
CreateThread
SetThreadPriority
CreateEventA
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
GetTickCount
LocalAlloc
LocalFree
SetLastError
DeviceIoControl
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetVersionExA
InitializeCriticalSection
ExitProcess
UnmapViewOfFile
CloseHandle
GlobalUnlock
GlobalFree
CreateFileA
FreeEnvironmentStringsA

user32

CopyRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
IsDialogMessageA
SetWindowTextA
ShowWindow
LoadStringA
ClientToScreen
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
GetClassNameA
PtInRect
LoadCursorA
GetSysColorBrush
DestroyMenu
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextA
GetDlgCtrlID
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
SetCursor
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
wsprintfA
DefWindowProcA
DestroyWindow
RegisterClassA
CreateWindowExA
PeekMessageA
PostMessageA
EnableWindow
PostQuitMessage
InvalidateRect
IsIconic
GetSystemMetrics
DrawIcon
GetDC
ReleaseDC
SendMessageA
GetClientRect
SetTimer
LoadIconA
EnableMenuItem
UnregisterClassA

gdi32

GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreateBitmap
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetDeviceCaps
DeleteObject
CreatePalette
StretchDIBits
SelectPalette
RealizePalette

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

comctl32

ord17

Sections

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TouchPad/SynPD.inf
TouchPad/SynTP.sys
.sys windows:7 windows x86

17bd1941a5f6b300ab3ff338187231a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

usbd.sys

USBD_ParseConfigurationDescriptorEx
USBD_CreateConfigurationRequestEx

ntoskrnl.exe

IoAttachDeviceToDeviceStack
ObfDereferenceObject
IoGetDeviceObjectPointer
RtlInitUnicodeString
IoStartNextPacket
PoUnregisterSystemState
PoRegisterSystemState
IoReleaseRemoveLockEx
IofCompleteRequest
PoStartNextPowerIrp
IoAcquireRemoveLockEx
IofCallDriver
IoReleaseRemoveLockAndWaitEx
PoSetPowerState
PoCallDriver
IoCancelIrp
IoReleaseCancelSpinLock
IoReportResourceForDetection
IoFreeIrp
IoDeleteDevice
IoDetachDevice
IoDeleteSymbolicLink
IoRegisterShutdownNotification
RtlQueryRegistryValues
RtlCreateRegistryKey
RtlCheckRegistryKey
ZwClose
IoOpenDeviceRegistryKey
ZwQueryValueKey
KeInitializeEvent
KeInitializeMutex
KeInitializeSpinLock
KeReleaseMutex
KeClearEvent
KeWaitForSingleObject
KeSetEvent
IoBuildSynchronousFsdRequest
IoInitializeIrp
IoFreeWorkItem
IoAllocateIrp
IoQueueWorkItem
IoAllocateWorkItem
IoCreateSynchronizationEvent
IoCreateDevice
ObReferenceObjectByHandle
ExEventObjectType
IoUnregisterPlugPlayNotification
wcsstr
IoRegisterPlugPlayNotification
towlower
ZwEnumerateValueKey
ZwOpenKey
RtlFreeAnsiString
RtlUnicodeStringToAnsiString
memmove
MmMapIoSpace
KeSynchronizeExecution
KeInitializeDpc
KeInsertQueueDpc
ExFreePoolWithTag
IoFreeMdl
MmMapLockedPagesSpecifyCache
MmBuildMdlForNonPagedPool
IoAllocateMdl
_except_handler3
MmUnmapLockedPages
PoRequestPowerIrp
IoBuildDeviceIoControlRequest
swprintf
ZwCreateSection
ZwMapViewOfSection
ZwUnmapViewOfSection
IoCreateNotificationEvent
ExQueueWorkItem
KeSetTimer
KeCancelTimer
KeInitializeTimer
KeSetTimerEx
KeDelayExecutionThread
RtlCopyUnicodeString
RtlIntegerToUnicodeString
RtlFreeUnicodeString
RtlAnsiStringToUnicodeString
RtlInitAnsiString
RtlAppendUnicodeStringToString
ExAllocatePoolWithTag
ZwCreateFile
ZwWriteFile
RtlWriteRegistryValue
IoCreateSymbolicLink
IoInitializeRemoveLockEx
sprintf
KeQueryTimeIncrement
KeQuerySystemTime
_purecall
_allmul
_alldiv
IoIsWdmVersionAvailable

hal

KeStallExecutionProcessor
KfReleaseSpinLock
WRITE_PORT_UCHAR
READ_PORT_UCHAR
KfRaiseIrql
KfLowerIrql
KeGetCurrentIrql
KfAcquireSpinLock
KeQueryPerformanceCounter

Sections

.text
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 928B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynTPAPI.dll
.dll windows:4 windows x86

e70e6df067d96d4cd0bdced66d2780f7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
CloseHandle
CreateEventA
GetLastError
CreateMutexA
PulseEvent
TlsAlloc
FlushFileBuffers
TlsGetValue
TlsSetValue
LoadLibraryA
GetProcAddress
GetModuleFileNameA
EnterCriticalSection
LeaveCriticalSection
LoadLibraryExA
FreeLibrary
InitializeCriticalSection
DeleteCriticalSection
CreateProcessA
InterlockedDecrement
WaitForSingleObject
SetStdHandle
ReadFile
GetStringTypeW
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
LocalFree
RtlUnwind
HeapFree
GetCommandLineA
GetVersion
RaiseException
GetCurrentThreadId
TlsFree
SetLastError
HeapDestroy
HeapCreate
VirtualFree
ExitProcess
HeapAlloc
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetUnhandledExceptionFilter
InterlockedIncrement
SetFilePointer
IsBadReadPtr
IsBadCodePtr
GetStringTypeA

user32

GetWindowThreadProcessId
wsprintfA
LoadStringA
PtInRect
PostMessageA
IsWindow

advapi32

SetSecurityDescriptorDacl
RegDeleteValueA
RegEnumKeyA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyA
RegOpenKeyA
InitializeSecurityDescriptor

ole32

CoInitialize
CLSIDFromProgID
CoCreateInstance

oleaut32

SysAllocString
VariantClear
SysFreeString

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

CommitPlugIns
ConfigurePlugIn
DllGetVersion
ExitPlugIns
GetActionHandle
GetActivePlugIn
GetActivePlugInDefault
GetCustomZoneIDFromPoint
GetNumPlugIns
GetPlugInBitmapID
GetPlugInHandle
GetPlugInHelpCommand
GetPlugInHelpData
GetPlugInHelpFile
GetPlugInLongName
GetPlugInOrderID
GetPlugInShortName
GetPlugInValidZones
IsPlugInConfigurable
IsPlugInValidOnDevice
IsPlugInValidOnZone
RegisterActionHandle
RegisterPlugIn
RevertPlugIns
SendPlugInEvent
SetActivePlugIn
StartPlugIns
UpdateTPList

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynTPCOM.dll
.dll regsvr32 windows:4 windows x86

2a2f5304e7aed5376dc06b57694647ae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryA
TerminateThread
WaitForSingleObject
SetEvent
InterlockedDecrement
InterlockedIncrement
lstrcpyA
lstrlenA
DisableThreadLibraryCalls
GetSystemInfo
HeapCreate
lstrlenW
GetShortPathNameA
GetModuleFileNameA
WideCharToMultiByte
SizeofResource
LoadResource
FindResourceA
GetLastError
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
HeapDestroy
lstrcatA
SetLastError
DeviceIoControl
CloseHandle
CreateFileA
GetVersionExA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapReAlloc
HeapAlloc
MultiByteToWideChar
DebugBreak

user32

FindWindowA
SendMessageA
GetWindowRect
PeekMessageA
PostMessageA
GetDesktopWindow
LoadStringA
wvsprintfA
CharNextA
DestroyWindow

advapi32

RegOpenKeyA
RegCloseKey
RegSetValueExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegEnumValueA
RegDeleteValueA
RegCreateKeyExA
RegQueryInfoKeyA

ole32

CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance

oleaut32

SysAllocString
VarUI4FromStr
LoadTypeLi
RegisterTypeLi
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 913B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynTPCo2.dll
.dll windows:4 windows x86

55e3bd846e61f9519864df6b58dbfcfa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
DeleteCriticalSection
FindClose
EnterCriticalSection
FindFirstFileA
LeaveCriticalSection
CreateProcessA
GetLastError
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
SetFileAttributesA
CopyFileA
GetSystemDefaultLangID
FindNextFileA
ExpandEnvironmentStringsA
HeapFree
GetCommandLineA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
VirtualAlloc
HeapReAlloc
ExitProcess
RtlUnwind
CloseHandle
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetFilePointer
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
GetCPInfo
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
SetEndOfFile
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA

advapi32

RegDeleteKeyA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyA
RegOpenKeyA
RegDeleteValueA

Exports

Exports

PS2DeviceInstall
PerformGlobalInstallPostProcessing
SerDeviceInstall
USBDeviceInstall

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynTPCpl.dll
.dll regsvr32 windows:4 windows x86

86b6783121bff782013c9d37b418c922

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

HeapSize
HeapReAlloc
GetACP
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetStdHandle
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
TlsSetValue
TlsGetValue
TlsAlloc
InterlockedDecrement
CloseHandle
DeviceIoControl
CreateFileA
Sleep
GetProcAddress
LoadLibraryA
FreeLibrary
OpenEventA
CreateProcessA
lstrcatA
lstrcpyA
FindFirstFileA
GetSystemDirectoryA
DeleteFileA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
TerminateProcess
ExitProcess
HeapAlloc
GetCommandLineA
RaiseException
IsBadReadPtr
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapFree
RtlUnwind
GetShortPathNameA
SetEndOfFile
FlushFileBuffers
GetModuleFileNameA
WideCharToMultiByte
OutputDebugStringA
FindClose
FindNextFileA
FileTimeToSystemTime
GetLastError
GetVersionExA
CreateEventA
GetCurrentThreadId
LoadResource
InterlockedExchange
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
SetErrorMode
LocalReAlloc
GlobalReAlloc
TlsFree
GlobalHandle
LocalAlloc
FindResourceExA
GetProfileIntA
lstrcmpA
GetCurrentThread
GlobalAlloc
WaitForSingleObject
lstrcpynA
lstrlenW
MulDiv
SetLastError
LocalFree
VirtualProtect
GetVersion
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
MultiByteToWideChar
lstrlenA
InterlockedIncrement
GetLocaleInfoA
WinExec

user32

DestroyMenu
GetSysColorBrush
GetClassNameA
UnregisterClassA
SetCapture
GetDCEx
ReleaseCapture
SetRectEmpty
GetMessageA
TranslateMessage
ValidateRect
PostQuitMessage
GrayStringA
TabbedTextOutA
ClientToScreen
MapDialogRect
GetAsyncKeyState
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
LoadIconA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
IsWindowVisible
GetTopWindow
GetCapture
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindow
RegisterWindowMessageA
GetWindowPlacement
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
IsWindowEnabled
MoveWindow
GetWindowTextLengthA
IsDialogMessageA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemInt
CallWindowProcA
IntersectRect
LoadImageA
DestroyIcon
DrawEdge
UnionRect
PtInRect
InflateRect
EqualRect
GetNextDlgTabItem
SetTimer
GetFocus
UpdateWindow
KillTimer
GetCursorPos
ScreenToClient
SetRect
CreateWindowExA
SetForegroundWindow
LoadBitmapA
GetWindowLongA
CallNextHookEx
SetWindowsHookExA
IsWindow
UnhookWindowsHookEx
GetForegroundWindow
GetDesktopWindow
MessageBoxA
BeginPaint
GetClientRect
EndPaint
SetDlgItemTextA
GetDlgItem
SetWindowPos
GetDlgCtrlID
DefWindowProcA
CreateDialogParamA
DestroyWindow
LoadStringA
WinHelpA
InvalidateRect
SetWindowLongA
SetFocus
FindWindowExA
BroadcastSystemMessage
FindWindowA
SetCursor
GetKeyState
GetWindowTextA
GetParent
PostMessageA
LoadCursorA
GetWindowRect
CopyRect
GetSysColor
FillRect
DrawFocusRect
DrawTextA
SetDoubleClickTime
SwapMouseButton
GetDoubleClickTime
GetSystemMetrics
SystemParametersInfoA
MessageBeep
SetWindowTextA
ShowWindow
wsprintfA
EnableWindow
SendMessageA
GetDC
ReleaseDC
IsIconic

gdi32

SetTextColor
PatBlt
CreateRectRgnIndirect
SaveDC
RestoreDC
SetROP2
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
GetClipBox
CreateRectRgn
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetRectRgn
CombineRgn
UnrealizeObject
CreateDIBitmap
Chord
GetTextExtentPoint32A
StretchBlt
FloodFill
GetBkColor
SetPixel
GetCurrentObject
Ellipse
CreateHatchBrush
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreatePen
Rectangle
BitBlt
DeleteObject
DeleteDC
MoveToEx
LineTo
SetBkColor
SetBkMode
CreateBitmap
CreateSolidBrush
CreatePatternBrush
GetObjectA
CreateFontIndirectA
GetDeviceCaps
GetStockObject

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyA
RegCloseKey
RegQueryValueExA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegEnumValueA
RegEnumKeyA
RegSetValueA
RegOpenKeyA
RegCreateKeyExA
RegQueryValueA

shell32

ExtractIconA
ShellExecuteA

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
ImageList_Destroy
PropertySheetA

ole32

CoCreateGuid
StringFromGUID2
CoRegisterClassObject
CoCreateInstance
CoInitialize
CoRevokeClassObject
CoDisconnectObject
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CLSIDFromProgID

oleaut32

SysFreeString
LoadTypeLi
SysAllocStringByteLen
SysStringLen
SysStringByteLen
SysAllocString
SysAllocStringLen
VariantChangeType
VariantClear
VariantCopy

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllGetVersion
DllRegisterServer

Sections

.text
Size: 512KB - Virtual size: 511KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.3MB - Virtual size: 5.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TouchPad/SynTPEnh.exe
.exe windows:4 windows x86

ab7317a6126cb21b3366e3abd48f7797

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
WideCharToMultiByte
LocalFree
MultiByteToWideChar
OutputDebugStringA
FindClose
FindNextFileA
FindFirstFileA
FileTimeToSystemTime
DeviceIoControl
CreateFileA
CreateProcessA
DeleteFileA
OpenProcess
GetVersionExA
lstrcmpiA
GetSystemTime
SystemTimeToFileTime
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
ReadFile
SetStdHandle
SetFilePointer
GetStringTypeW
GetStringTypeA
IsBadCodePtr
OpenEventA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
WriteFile
FlushFileBuffers
GetFileType
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
LCMapStringW
LCMapStringA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
GetOEMCP
GetACP
GetCPInfo
SetLastError
HeapSize
HeapReAlloc
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RaiseException
HeapAlloc
HeapFree
GetLocalTime
GetTimeZoneInformation
RtlUnwind
CreateMutexA
WaitForSingleObject
ReleaseMutex
GetCurrentDirectoryA
SetCurrentDirectoryA
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
Beep
EnterCriticalSection
LeaveCriticalSection
LoadLibraryExA
FreeLibrary
lstrcmpA
GetSystemDefaultLangID
GetCurrentThreadId
GetLastError
GetTickCount
WinExec
Sleep
GetSystemPowerStatus
InterlockedIncrement
CreateThread
InterlockedDecrement
TerminateThread
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
TlsAlloc
TlsGetValue
IsBadReadPtr
TlsSetValue

user32

GetSysColor
WaitForInputIdle
GetGUIThreadInfo
SetRectEmpty
EnumDisplayDevicesA
UpdateWindow
GetClientRect
ClientToScreen
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
BeginPaint
EndPaint
IntersectRect
SetClassLongA
LoadCursorA
GetScrollInfo
DrawTextA
CreateIconIndirect
DestroyIcon
LoadIconA
RegisterClassA
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyCursor
SendMessageA
IsDlgButtonChecked
DestroyWindow
CheckDlgButton
PostQuitMessage
CreateDialogParamA
EnumDisplaySettingsA
SetRect
WindowFromPoint
TrackPopupMenu
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
GetDlgCtrlID
WinHelpA
IsWindow
SendMessageTimeoutA
EnumChildWindows
EqualRect
ClipCursor
CreateWindowExA
RegisterClassExA
LoadImageA
MoveWindow
ShowWindow
SetCursorPos
AppendMenuA
DestroyMenu
SetCursor
GetCursorPos
PtInRect
ScrollDC
GetWindowRect
SetWindowLongA
CreatePopupMenu
GetDoubleClickTime
GetAsyncKeyState
GetDC
ReleaseDC
InvalidateRect
SetWindowPos
GetKeyboardLayout
CallWindowProcA
EnableWindow
GetKeyState
MessageBoxA
SetWindowTextA
SetDlgItemTextA
GetDlgItem
SendDlgItemMessageA
GetWindowThreadProcessId
AttachThreadInput
SetFocus
EndDialog
GetDlgItemTextA
SetActiveWindow
DialogBoxParamA
SetForegroundWindow
GetWindowTextA
GetMenu
GetMenuItemRect
GetParent
GetSystemMenu
MessageBeep
PostMessageA
keybd_event
SendInput
FindWindowA
GetWindow
SystemParametersInfoA
wsprintfA
LoadStringA
LoadBitmapA
DrawEdge
GetDesktopWindow
SetTimer
KillTimer
FillRect
GetForegroundWindow
IsZoomed
IsIconic
IsWindowVisible
GetClassNameA
GetSystemMetrics
mouse_event
DefWindowProcA
GetWindowLongA

gdi32

Rectangle
MoveToEx
LineTo
SetBkColor
SetBkMode
CreatePatternBrush
CreateBrushIndirect
SelectClipRgn
Ellipse
GdiFlush
CreateBitmap
CreateSolidBrush
CreatePen
GetStockObject
GetObjectA
CreateCompatibleBitmap
CreateRectRgn
StretchBlt
CreateCompatibleDC
SelectObject
BitBlt
DeleteObject
DeleteDC

comdlg32

GetOpenFileNameA

advapi32

RegEnumKeyA
RegEnumValueA
RegSetValueExA
RegCreateKeyA
RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegQueryInfoKeyA

shell32

Shell_NotifyIconA
ShellExecuteA
DragQueryFileA
DragFinish
ShellExecuteExA

ole32

CoInitialize
CLSIDFromProgID
CoCreateInstance
StringFromGUID2
CoUninitialize
CoCreateGuid

oleaut32

SysFreeString
VariantClear
SysAllocString

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

winmm

PlaySoundA

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 504KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TouchPad/SynUnst.ini
TouchPad/SynZMetr.exe
.exe windows:4 windows x86

5ba9ff436ab57cb85d87281be20da78f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

RtlUnwind
GetStartupInfoA
GetCommandLineA
RaiseException
HeapAlloc
HeapFree
TerminateProcess
HeapSize
HeapReAlloc
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
WriteFile
GetCurrentProcess
SetErrorMode
SizeofResource
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
lstrcpynA
GetLastError
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
GlobalFree
GlobalAlloc
lstrcmpA
GetCurrentThread
GlobalLock
GlobalUnlock
MulDiv
GetProfileStringA
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
ExitProcess
GetModuleFileNameA
InterlockedIncrement
InterlockedDecrement
WaitForSingleObjectEx
SetEvent
WaitForSingleObject
TerminateThread
CreateThread
SetThreadPriority
CreateEventA
GetSystemDirectoryA
LoadLibraryA
GetProcAddress
FreeLibrary
GetTickCount
LocalAlloc
LocalFree
SetLastError
DeviceIoControl
CloseHandle
CreateFileA
LeaveCriticalSection
EnterCriticalSection
GetVersionExA
DeleteCriticalSection
InitializeCriticalSection

user32

SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
ShowWindow
IsWindowEnabled
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
SetCursor
GetCursorPos
ValidateRect
GetActiveWindow
TranslateMessage
GetMessageA
CreateDialogIndirectParamA
EndDialog
LoadStringA
DestroyMenu
GetClassNameA
PtInRect
GetSysColorBrush
MapWindowPoints
GetSysColor
DispatchMessageA
GetFocus
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
ScrollWindow
GetTopWindow
MessageBoxA
GetParent
GetCapture
WinHelpA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
SetWindowsHookExA
CallNextHookEx
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
PostQuitMessage
IsIconic
GetSystemMetrics
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
LoadIconA
wsprintfA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
InvalidateRect
DefDlgProcA
DefWindowProcA
DestroyWindow
CreateWindowExA
PeekMessageA
PostMessageA
EnableWindow
UpdateWindow
GetClientRect
LoadCursorA
SendDlgItemMessageA
RegisterClassA
UnregisterClassA
GetClassLongA
IsWindowUnicode
CharNextA
InflateRect

gdi32

CreateBitmap
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
MoveToEx
LineTo
GetObjectA
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
BitBlt
CreateCompatibleDC
SetBkColor
SetTextColor
GetClipBox
CreatePen
SelectObject
PatBlt
GetTextExtentPointA
CreateDIBitmap
GetStockObject

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegCloseKey

comctl32

ord17

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TouchPad/Tutorial.exe
.exe windows:4 windows x86

5c5da770a155fe848798067d876b576f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
HeapReAlloc
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
TerminateProcess
RaiseException
HeapFree
HeapAlloc
ExitProcess
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
WritePrivateProfileStringA
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
GetVersion
LocalAlloc
WideCharToMultiByte
InterlockedIncrement
MultiByteToWideChar
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
CloseHandle
GetModuleFileNameA
GlobalAlloc
lstrcmpA
GetCurrentThread
SetLastError
MulDiv
InterlockedDecrement
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
lstrcatA
lstrcpyA
lstrlenA
GlobalLock
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
SetUnhandledExceptionFilter

user32

IsDialogMessageA
SetWindowTextA
MoveWindow
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
FindWindowA
ClientToScreen
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
PostQuitMessage
ShowOwnedPopups
ValidateRect
TranslateMessage
GetClassNameA
GetSysColorBrush
LoadStringA
CreateDialogIndirectParamA
EndDialog
CharUpperA
DestroyIcon
GetSysColor
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
RegisterClassA
SetWindowPlacement
GetWindowTextA
DefWindowProcA
DestroyWindow
CreateWindowExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetLastActivePopup
BringWindowToTop
IsWindowVisible
IsIconic
EqualRect
CopyRect
GetDlgItem
SetWindowLongA
wsprintfA
SetWindowPos
GetDlgCtrlID
GetMenuItemCount
GetSubMenu
GetMenuItemID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
LoadMenuA
DestroyMenu
SetFocus
GetParent
GetActiveWindow
ShowWindow
GetWindowLongA
IsWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
PeekMessageA
PostMessageA
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
PtInRect
GetDC
ReleaseDC
GetSystemMetrics
GetMessageA
DispatchMessageA
InflateRect
GetMenu
DeleteMenu
DrawMenuBar
LoadBitmapA
EnableWindow
ReleaseCapture
SetTimer
GetCapture
SendDlgItemMessageA
SetWindowsHookExA
MapWindowPoints
KillTimer
SetCapture
GetClientRect
InvalidateRect
GetCursorPos
UpdateWindow
SetCursor
GetKeyState
ScreenToClient
LoadCursorA
GetClassInfoA
LoadIconA
SendMessageA
RegisterWindowMessageA
GetFocus
UnregisterClassA

gdi32

GetDeviceCaps
CreateDCA
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteObject
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetBkColor
SetTextColor
GetClipBox
GetBitmapBits
DPtoLP
GetCurrentObject
Rectangle
CreatePen
CreateSolidBrush
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
BitBlt
GetObjectA

comdlg32

GetFileTitleA
CommDlgExtendedError
PrintDlgA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyA
RegSetValueA
RegSetValueExA

shell32

DragFinish
SHGetFileInfoA
ExtractIconA
DragQueryFileA

comctl32

ord17

Sections

.text
Size: 132KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TouchPad/data1.cab
TouchPad/data1.hdr
TouchPad/data2.cab
TouchPad/ikernel.ex_
TouchPad/layout.bin
TouchPad/setup.inx
TouchPad/setup.iss
TouchPad/syntp.cat
AMILO La 1703/FTS_VIAChipsetDriver__1007596.ZIP
.zip
Chipset/0X0409.INI
Chipset/165x300.bmp
Chipset/500x60.bmp
Chipset/INSTMSIA.EXE
.exe windows:5 windows x86

1494de9b53e05fc1f40cb92afbdd6ce4

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

12/05/1997, 00:00

Not After

07/01/2004, 23:59

Subject

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

28/02/2001, 00:00

Not After

06/01/2004, 23:59

Subject

CN=VeriSign Time Stamping Service,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

61:06:2a:8d:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

29/03/2001, 21:27

Not After

29/05/2002, 21:37

Subject

CN=Microsoft Corporation,OU=Copyright (c) 2001 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

FreeSid
AllocateAndInitializeSid
EqualSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

LocalFree
LocalAlloc
GetLastError
GetCurrentProcess
GetModuleFileNameA
lstrlenA
GetSystemDirectoryA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
lstrcatA
lstrcpyA
_lclose
_llseek
_lopen
WritePrivateProfileStringA
GetWindowsDirectoryA
CreateDirectoryA
GetFileAttributesA
ExpandEnvironmentStringsA
IsDBCSLeadByte
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpiA
GetProcAddress
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
CloseHandle
LoadResource
SizeofResource
FindResourceA
ReadFile
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetCurrentDirectoryA
GetTempFileNameA
ExitProcess
CreateFileA
LoadLibraryExA
lstrcpynA
GetVolumeInformationA
FormatMessageA
GetCurrentDirectoryA
GetVersionExA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
GetSystemInfo
CreateMutexA
SetEvent
CreateEventA
CreateThread
ResetEvent
TerminateThread
GetDriveTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
LockResource
LoadLibraryA
GetDiskFreeSpaceA
MulDiv
EnumResourceLanguagesA
FreeLibrary
GlobalFree

gdi32

GetDeviceCaps

user32

ExitWindowsEx
wsprintfA
CharNextA
CharUpperA
CharPrevA
SetWindowLongA
GetWindowLongA
CallWindowProcA
DispatchMessageA
MsgWaitForMultipleObjects
PeekMessageA
SendMessageA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
SendDlgItemMessageA
GetDlgItem
SetForegroundWindow
SetWindowTextA
MessageBoxA
DialogBoxIndirectParamA
ShowWindow
EnableWindow
GetDlgItemTextA
EndDialog
GetDesktopWindow
MessageBeep
SetDlgItemTextA
LoadStringA
GetSystemMetrics

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Chipset/INSTMSIW.EXE
.exe windows:5 windows x86

1494de9b53e05fc1f40cb92afbdd6ce4

Code Sign

4a:19:d2:38:8c:82:59:1c:a5:5d:73:5f:15:5d:dc:a3
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

12/05/1997, 00:00

Not After

07/01/2004, 23:59

Subject

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

08:7a:6d:5c:6f:62:93:4f:ba:c4:fd:43:e1:14:18:9d
Certificate

Issuer

OU=VeriSign\, Inc.+OU=VeriSign Time Stamping Service Root+OU=NO LIABILITY ACCEPTED\, (c)97 VeriSign\, Inc.,O=VeriSign Trust Network

Not Before

28/02/2001, 00:00

Not After

06/01/2004, 23:59

Subject

CN=VeriSign Time Stamping Service,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)01,O=VeriSign\, Inc.

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

61:06:2a:8d:00:00:00:00:00:0b
Certificate

Issuer

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

29/03/2001, 21:27

Not After

29/05/2002, 21:37

Subject

CN=Microsoft Corporation,OU=Copyright (c) 2001 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0b:99:4f:c0:00:de:aa:11:d4:d8:40:9a:a8:be:e6
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/12/2000, 08:00

Not After

12/11/2005, 08:00

Subject

CN=Microsoft Code Signing PCA,OU=Copyright (c) 2000 Microsoft Corp.,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

FreeSid
AllocateAndInitializeSid
EqualSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

LocalFree
LocalAlloc
GetLastError
GetCurrentProcess
GetModuleFileNameA
lstrlenA
GetSystemDirectoryA
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
lstrcatA
lstrcpyA
_lclose
_llseek
_lopen
WritePrivateProfileStringA
GetWindowsDirectoryA
CreateDirectoryA
GetFileAttributesA
ExpandEnvironmentStringsA
IsDBCSLeadByte
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpiA
GetProcAddress
GlobalUnlock
GlobalLock
GlobalAlloc
FreeResource
CloseHandle
LoadResource
SizeofResource
FindResourceA
ReadFile
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetCurrentDirectoryA
GetTempFileNameA
ExitProcess
CreateFileA
LoadLibraryExA
lstrcpynA
GetVolumeInformationA
FormatMessageA
GetCurrentDirectoryA
GetVersionExA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
GetSystemInfo
CreateMutexA
SetEvent
CreateEventA
CreateThread
ResetEvent
TerminateThread
GetDriveTypeA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
LockResource
LoadLibraryA
GetDiskFreeSpaceA
MulDiv
EnumResourceLanguagesA
FreeLibrary
GlobalFree

gdi32

GetDeviceCaps

user32

ExitWindowsEx
wsprintfA
CharNextA
CharUpperA
CharPrevA
SetWindowLongA
GetWindowLongA
CallWindowProcA
DispatchMessageA
MsgWaitForMultipleObjects
PeekMessageA
SendMessageA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
SendDlgItemMessageA
GetDlgItem
SetForegroundWindow
SetWindowTextA
MessageBoxA
DialogBoxIndirectParamA
ShowWindow
EnableWindow
GetDlgItemTextA
EndDialog
GetDesktopWindow
MessageBeep
SetDlgItemTextA
LoadStringA
GetSystemMetrics

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Chipset/ISSCRIPT.MSI
.msi
Chipset/LICENSE.MLF
Chipset/PCIENUM.SYS
.sys windows:4 windows x86

a5d81ace76cf05809bb8a34078306493

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

RtlInitUnicodeString
ExAllocatePoolWithTag
RtlAssert
DbgBreakPoint
IoCreateSymbolicLink
IoDeleteDevice
IoCreateDevice
_purecall
ZwClose
IoDeleteSymbolicLink
ZwOpenKey
ZwCreateKey
memmove
IoAllocateIrp
IoFreeIrp
InterlockedExchange
IoUnregisterShutdownNotification
IoGetDeviceObjectPointer
IofCallDriver
KeSetEvent
KeInitializeEvent
KeWaitForSingleObject
IofCompleteRequest
ExFreePool
ObfDereferenceObject
DbgPrint

hal

KeGetCurrentIrql
HalGetBusData
HalSetBusDataByOffset
HalGetBusDataByOffset

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 192B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 32B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 864B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/Platform.msi
.msi
Chipset/Readme.htm
.html
Chipset/SETUP.EXE
.exe windows:4 windows x86

3df1cad47b0f4f27a8eb25481d61d147

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerLanguageNameA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

ord17

kernel32

QueryPerformanceFrequency
InterlockedDecrement
InterlockedIncrement
lstrcatA
WriteFile
CreateEventA
CompareStringW
GetVersionExA
Sleep
CompareStringA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
SetFilePointer
GetProcAddress
LoadLibraryA
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
LockResource
SetFileAttributesA
FreeLibrary
FindResourceA
CreateProcessA
GetModuleFileNameA
lstrcmpA
GetSystemDefaultLCID
GlobalHandle
SetLastError
SetCurrentDirectoryA
DeleteFileA
lstrlenW
WaitForSingleObject
GetSystemInfo
IsValidCodePage
FlushFileBuffers
LocalFree
FormatMessageA
GetDiskFreeSpaceA
_lclose
OpenFile
GetDriveTypeA
CreateDirectoryA
GetFileAttributesA
RemoveDirectoryA
GetExitCodeProcess
GetCurrentProcess
GetCurrentThread
GetLocaleInfoA
lstrcpyA
GetPrivateProfileStringA
lstrlenA
CreateFileA
GetFileSize
GlobalAlloc
CloseHandle
GlobalLock
ReadFile
GlobalUnlock
GlobalFree
GetLastError
WideCharToMultiByte
CopyFileA
MultiByteToWideChar
CreateThread
GetExitCodeThread
GetTickCount
lstrcmpiA
ExpandEnvironmentStringsA
GetPrivateProfileIntA
GetTempPathA
SetErrorMode
GetWindowsDirectoryA
GetTempFileNameA
WritePrivateProfileStringA
GetPrivateProfileSectionA
MoveFileA
LoadResource
SizeofResource
SetHandleCount
RaiseException
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetOEMCP
GetEnvironmentStringsW
GetStdHandle
GetACP
GetCPInfo
SetUnhandledExceptionFilter
DeleteCriticalSection
InitializeCriticalSection
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
HeapSize
HeapReAlloc
LeaveCriticalSection
EnterCriticalSection
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
TerminateProcess
ExitProcess
SetStdHandle
HeapAlloc
HeapFree
RtlUnwind
SystemTimeToFileTime
QueryPerformanceCounter
ResetEvent
SetEvent
lstrcpynA
SearchPathA
FindFirstFileA
VirtualProtect
VirtualQuery
FindClose
IsBadReadPtr
GetStringTypeA
GetStringTypeW
LCMapStringW
LCMapStringA
IsBadCodePtr
GetFileType

user32

MessageBoxA
ReleaseDC
GetDC
DispatchMessageA
TranslateMessage
GetMessageA
CreateWindowExA
RegisterClassA
LoadCursorA
LoadIconA
SetTimer
PostQuitMessage
KillTimer
PostMessageA
DefWindowProcA
PeekMessageA
MsgWaitForMultipleObjects
wsprintfA
GetDesktopWindow
DialogBoxParamA
ShowWindow
GetDlgItem
EndDialog
GetWindowDC
SetWindowPos
ClientToScreen
GetClientRect
SetWindowLongA
EndPaint
BeginPaint
GetWindowLongA
WaitForInputIdle
CreateDialogParamA
CharNextA
SendDlgItemMessageA
ExitWindowsEx
CharPrevA
LoadStringA
wvsprintfA
GetClassInfoA
UpdateWindow
SetCursor
GetDlgItemTextA
EnableWindow
GetParent
GetWindowTextLengthA
GetWindowTextA
MoveWindow
GetWindowPlacement
DrawIcon
GetDlgCtrlID
SetWindowTextA
FillRect
GetSysColor
GetSysColorBrush
IsDialogMessageA
SendMessageA
GetWindowRect
FindWindowA
IntersectRect
SubtractRect
IsWindow
DestroyWindow
SetRect
GetSystemMetrics
DestroyIcon
CharLowerBuffA

gdi32

RealizePalette
GetDeviceCaps
CreatePalette
GetSystemPaletteEntries
GetStockObject
DeleteObject
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
CreateSolidBrush
CreateFontIndirectA
GetObjectA
SetTextColor
SetBkMode
GetTextExtentPointA
TranslateCharsetInfo
CreateDIBitmap
SelectPalette

advapi32

EqualSid
RegQueryValueA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
OpenThreadToken
GetTokenInformation
AllocateAndInitializeSid
RegCreateKeyExA
FreeSid
RegOpenKeyExA
RegDeleteValueA
RegSetValueExA
RegEnumValueA
RegDeleteKeyA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken

ole32

CreateItemMoniker
CoCreateGuid
StringFromCLSID
StgIsStorageFile
StgOpenStorage
CoTaskMemFree
CoCreateInstance
CoUninitialize
CoInitialize
GetRunningObjectTable

oleaut32

SysReAllocStringLen
SysFreeString
SysAllocString
SysAllocStringLen
SysStringLen
VariantClear
VariantChangeType

Sections

.text
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Chipset/SETUP.MLF
Chipset/SETUP.SCF
Chipset/Setup.ini
Chipset/Setup.iss
Chipset/asia.slf
Chipset/english.slf
Chipset/europe1.slf
Chipset/europe2.slf
Chipset/europe3.slf
Chipset/europe4.slf
Chipset/viaagp/AGPDrv9x.dll
.dll windows:4 windows x86

05ab22ff664879d43abe2cb556b55623

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
CopyFileA
GetLastError
WinExec
DeleteFileA
SetFileAttributesA
GetFileAttributesA
GetWindowsDirectoryA
MultiByteToWideChar
LoadLibraryA
FreeLibrary
GetCommandLineA
GetVersion
InterlockedDecrement
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
HeapFree
CloseHandle
InitializeCriticalSection
DeleteCriticalSection
ExitProcess
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
HeapAlloc
LCMapStringA
LCMapStringW
VirtualAlloc
HeapReAlloc
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
SetFilePointer
GetStringTypeA
GetStringTypeW
GetProcAddress
RtlUnwind
SetEndOfFile

shell32

SHGetSpecialFolderPathA

setupapi

SetupDiClassGuidsFromNameA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList

Exports

Exports

FindAGP_9x
InstallAGP_9X
UninstallAGP_9x

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/AGPDrvME.dll
.dll windows:4 windows x86

abaaa3dfeb13b049f0cd3147197fd063

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
FreeLibrary
GetLastError
DeleteFileA
SetFileAttributesA
GetFileAttributesA
LocalFree
FindNextFileA
FindFirstFileA
LocalAlloc
GetWindowsDirectoryA
MultiByteToWideChar
GetCommandLineA
GetVersion
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCPInfo
GetACP
GetOEMCP
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
HeapAlloc
LCMapStringA
LCMapStringW
CloseHandle
SetFilePointer
GetStringTypeA
GetStringTypeW
VirtualAlloc
HeapReAlloc
GetProcAddress
LoadLibraryA
RtlUnwind
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
SetEndOfFile
WinExec

shell32

SHGetSpecialFolderPathA

newdev

UpdateDriverForPlugAndPlayDevicesA

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiClassGuidsFromNameA
SetupDiCallClassInstaller

advapi32

RegQueryValueExA
RegOpenKeyExA
RegEnumKeyA
RegOpenKeyA
RegCloseKey

Exports

Exports

FindAGP_ME
UninstallAGP_ME
UpdateAGP_ME

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/AGPDrvNT.dll
.dll windows:4 windows x86

f7c263851dac453a44378127cd312a68

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
GetLastError
DeleteFileA
SetFileAttributesA
GetFileAttributesA
LocalFree
FindNextFileA
FindFirstFileA
LocalAlloc
GetWindowsDirectoryA
MultiByteToWideChar
LoadLibraryA
FreeLibrary
GetCommandLineA
GetVersion
InterlockedDecrement
InterlockedIncrement
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
LCMapStringA
LCMapStringW
CloseHandle
SetFilePointer
VirtualAlloc
HeapReAlloc
GetProcAddress
GetStringTypeA
GetStringTypeW
RtlUnwind
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
SetEndOfFile
GetVersionExA

advapi32

RegQueryValueExA
RegOpenKeyA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey
RegEnumKeyA
RegSetValueExA

newdev

UpdateDriverForPlugAndPlayDevicesA

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiClassGuidsFromNameA
SetupDiCallClassInstaller

shell32

SHGetSpecialFolderPathA

Exports

Exports

FindAGP_NT5
UnAGP_XP
UninstallAGP_NT5
UpdateAGP_NT5

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/DRIVER/Svr2003/VIAAGP1.INF
Chipset/viaagp/DRIVER/Svr2003/viaagp1.cat
Chipset/viaagp/DRIVER/Svr2003/viaagp1.sys
.sys windows:5 windows x86

30627d005079f35b00cd5e7947b5efa5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

DbgPrint
MmUnmapIoSpace
MmMapIoSpace
KeNumberProcessors
_allshr
DbgBreakPoint
MmAllocateContiguousMemorySpecifyCache
MmGetPhysicalAddress
ZwEnumerateValueKey
ExFreePoolWithTag
ZwQueryKey
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
MmFreeContiguousMemory
IoDetachDevice
IoAttachDeviceToDeviceStack
IoCreateDevice
ZwClose
ZwOpenKey
RtlInitUnicodeString
IoBuildSynchronousFsdRequest
IofCompleteRequest
KeSetEvent
PoCallDriver
PoStartNextPowerIrp
MmFreePagesFromMdl
MmCreateMdl
MmAllocatePagesForMdl
KeInsertQueueDpc
KeClearEvent
KeSetTargetProcessorDpc
KeInitializeDpc
KeQueryActiveProcessors
IoDeleteDevice
ExAllocatePoolWithTag

hal

ExAcquireFastMutex
ExReleaseFastMutex
HalGetBusDataByOffset
HalSetBusDataByOffset

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 321B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/DRIVER/Win2000/VIAAGP1.INF
Chipset/viaagp/DRIVER/Win2000/viaagp1.cat
Chipset/viaagp/DRIVER/Win2000/viaagp1.sys
.sys windows:5 windows x86

30627d005079f35b00cd5e7947b5efa5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

DbgPrint
MmUnmapIoSpace
MmMapIoSpace
KeNumberProcessors
_allshr
DbgBreakPoint
MmAllocateContiguousMemorySpecifyCache
MmGetPhysicalAddress
ZwEnumerateValueKey
ExFreePoolWithTag
ZwQueryKey
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
MmFreeContiguousMemory
IoDetachDevice
IoAttachDeviceToDeviceStack
IoCreateDevice
ZwClose
ZwOpenKey
RtlInitUnicodeString
IoBuildSynchronousFsdRequest
IofCompleteRequest
KeSetEvent
PoCallDriver
PoStartNextPowerIrp
MmFreePagesFromMdl
MmCreateMdl
MmAllocatePagesForMdl
KeInsertQueueDpc
KeClearEvent
KeSetTargetProcessorDpc
KeInitializeDpc
KeQueryActiveProcessors
IoDeleteDevice
ExAllocatePoolWithTag

hal

ExAcquireFastMutex
ExReleaseFastMutex
HalGetBusDataByOffset
HalSetBusDataByOffset

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 321B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/DRIVER/Win95/VIAGART.VXD
Chipset/viaagp/DRIVER/Win95/viagart.inf
Chipset/viaagp/DRIVER/Win98_Me/VIAAGPS.REG
Chipset/viaagp/DRIVER/Win98_Me/VIAAGPV.REG
Chipset/viaagp/DRIVER/Win98_Me/VIAGART.INF
Chipset/viaagp/DRIVER/Win98_Me/VIAGART.sys
.dll windows:4 windows x86

9afdb1576b18bba2632389713c77129c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntoskrnl.exe

ExAllocatePoolWithTag
DbgPrint

pci

PCIWriteConfig
PCIAllocatePages
PCILinToPhys
PCIReadConfig
PCIGetHandleInfo

Exports

Exports

DriverEntry
PCIMP_GARTExit
PCIMP_GARTFlush
PCIMP_GARTFree
PCIMP_GARTInit
PCIMP_GARTMap
PCIMP_GARTReserve
PCIMP_GARTReset
PCIMP_GARTRestore
PCIMP_GARTSave
PCIMP_GARTUnMap

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 32B - Virtual size: 21B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 352B - Virtual size: 331B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 256B - Virtual size: 244B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 960B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 128B - Virtual size: 102B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/DRIVER/WinXP/VIAAGP1.INF
Chipset/viaagp/DRIVER/WinXP/viaagp1.cat
Chipset/viaagp/DRIVER/WinXP/viaagp1.sys
.sys windows:5 windows x86

30627d005079f35b00cd5e7947b5efa5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntoskrnl.exe

DbgPrint
MmUnmapIoSpace
MmMapIoSpace
KeNumberProcessors
_allshr
DbgBreakPoint
MmAllocateContiguousMemorySpecifyCache
MmGetPhysicalAddress
ZwEnumerateValueKey
ExFreePoolWithTag
ZwQueryKey
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
KeInitializeEvent
MmFreeContiguousMemory
IoDetachDevice
IoAttachDeviceToDeviceStack
IoCreateDevice
ZwClose
ZwOpenKey
RtlInitUnicodeString
IoBuildSynchronousFsdRequest
IofCompleteRequest
KeSetEvent
PoCallDriver
PoStartNextPowerIrp
MmFreePagesFromMdl
MmCreateMdl
MmAllocatePagesForMdl
KeInsertQueueDpc
KeClearEvent
KeSetTargetProcessorDpc
KeInitializeDpc
KeQueryActiveProcessors
IoDeleteDevice
ExAllocatePoolWithTag

hal

ExAcquireFastMutex
ExReleaseFastMutex
HalGetBusDataByOffset
HalSetBusDataByOffset

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 384B - Virtual size: 321B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/DRIVER/X64/VIAAGP1.sys
.sys windows:5 windows x64

1d7b3a68bf7e7d9ff07029326c1ae55f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntoskrnl.exe

MmFreeContiguousMemory
MmGetPhysicalAddress
MmAllocateContiguousMemorySpecifyCache
KeBugCheckEx
ObfDereferenceObject
ExRegisterCallback
ExCreateCallback
RtlInitUnicodeString
ExUnregisterCallback
ExReleaseFastMutex
ExAcquireFastMutex
IoFreeWorkItem
KeCancelTimer
IoQueueWorkItem
IoAllocateWorkItem
KeSetTimerEx
KeWaitForSingleObject
IofCallDriver
IoBuildSynchronousFsdRequest
KeInitializeEvent
ZwEnumerateValueKey
ExFreePoolWithTag
ExAllocatePoolWithTag
IoBuildDeviceIoControlRequest
IoDetachDevice
KeIpiGenericCall
IoAttachDeviceToDeviceStack
IoDeleteDevice
IoCreateDevice
KeInitializeDpc
KeInitializeTimer
ZwQueryValueKey
ZwClose
ZwOpenKey
RtlCopyUnicodeString
KeInvalidateAllCaches
MmFreePagesFromMdl
IoFreeMdl
IoAllocateMdl
MmAllocatePagesForMdl
IoWMIRegistrationControl
IofCompleteRequest
KeSetEvent
PoCallDriver
PoStartNextPowerIrp
DbgPrint
ZwQueryKey
DbgBreakPoint

wmilib.sys

WmiSystemControl
WmiCompleteRequest

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PAGE
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

INIT
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viaagp/DRIVER/X64/viaagp1.cat
Chipset/viaagp/DRIVER/X64/viaagp1.inf
Chipset/viaagp/Kompnt.cif
Chipset/viaagp/Pnpx64.exe
.exe windows:5 windows x64

38f46a185e2b9229e862173db685824c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

wcstok
_strupr
strncmp
_wcsnicmp
__set_app_type
_fmode
_commode
__setusermatherr
_initterm
__wgetmainargs
__winitenv
exit
_cexit
_exit
_c_exit
_XcptFilter
__C_specific_handler
memset
wcsncpy

kernel32

FreeLibrary
GetWindowsDirectoryW
LocalAlloc
LocalFree
GetFileAttributesW
SetFileAttributesW
DeleteFileW
LoadLibraryW
GetProcAddress
GetLastError
GetModuleFileNameW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

advapi32

RegEnumKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegSetValueExW
RegDeleteValueW
RegOpenKeyW

setupapi

SetupDiDestroyDeviceInfoList
SetupDiCallClassInstaller
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiClassGuidsFromNameW

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 168B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Chipset/viamach/Component.cif
Chipset/viamach/INFDrv.dll
.dll windows:4 windows x86

7ae0824a26b861e20911a706c26f57d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetWindowsDirectoryA
MultiByteToWideChar
LoadLibraryA
FreeLibrary
GetCommandLineA
GetVersion
InterlockedDecrement
InterlockedIncrement
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FindFirstFileA
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
LCMapStringA
LCMapStringW
CloseHandle
VirtualAlloc
HeapReAlloc
GetProcAddress
GetStringTypeA
GetStringTypeW
SetFilePointer
RtlUnwind
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
SetEndOfFile
FindNextFileA
GetFileAttributesA
SetFileAttributesA
DeleteFileA
GetLastError
WideCharToMultiByte
GetModuleFileNameA

newdev

UpdateDriverForPlugAndPlayDevicesA

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList

shlwapi

SHDeleteKeyA

advapi32

RegOpenKeyExA
RegCloseKey

shell32

SHGetSpecialFolderPathA

Exports

Exports

InstallINF_NT5

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viamach/INFDrv9x.dll
.dll windows:4 windows x86

18b95e26456edfa13a2fd216956c678e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleFileNameA
CopyFileA
GetLastError
DeleteFileA
SetFileAttributesA
GetFileAttributesA
GetWindowsDirectoryA
MultiByteToWideChar
LoadLibraryA
FreeLibrary
GetCommandLineA
GetVersion
InterlockedDecrement
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
HeapFree
CloseHandle
InitializeCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
LCMapStringA
LCMapStringW
VirtualAlloc
HeapReAlloc
SetStdHandle
FlushFileBuffers
ReadFile
CreateFileA
SetFilePointer
GetProcAddress
GetStringTypeA
GetStringTypeW
RtlUnwind
SetEndOfFile

shell32

SHGetSpecialFolderPathA

setupapi

SetupDiClassGuidsFromNameA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList

Exports

Exports

InstallINF_9X
UninstallINF_9x

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Chipset/viamach/Infx64.exe
.exe windows:5 windows x64

3abd8daf5f0f74a5f43a20450593184d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

_wcsnicmp
__set_app_type
_fmode
_commode
__setusermatherr
_initterm
__wgetmainargs
__winitenv
exit
_cexit
_exit
_c_exit
_XcptFilter
__C_specific_handler
wcsncpy

kernel32

FreeLibrary
LoadLibraryW
GetProcAddress
GetModuleFileNameW
GetLastError

setupapi

SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Chipset/viamach/driver/WINNT5/VIAMACH.INF
Chipset/viamach/driver/WINNT5/vmachx64.cat
Chipset/viamach/driver/WINNT5/vmachx86.cat
Chipset/viamach/driver/Win98/VIAMACH.INF
Chipset/viamach/driver/Win98SE/VIAMACH.INF
Chipset/viamach/driver/WinMe/VIAMACH.INF
Chipset/viamach/driver/win95/VIAMACH.INF
Chipset/viasetup.dll
.dll windows:4 windows x86

cf1d1e779ed55c49f1e0d2db2f74e18b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CompareStringW
FlushFileBuffers
GetCurrentProcess
CreateProcessA
WaitForSingleObject
OutputDebugStringA
ReadFile
GetModuleHandleA
GetModuleFileNameA
CreateFileA
CloseHandle
GetLastError
GetTickCount
GetVersionExA
GetProcessHeap
HeapAlloc
LocalAlloc
WinExec
LoadLibraryA
GetProcAddress
CompareStringA
FreeLibrary
GetLocaleInfoW
GetTimeZoneInformation
SetStdHandle
GetOEMCP
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
FatalAppExitA
Sleep
HeapFree
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
VirtualAlloc
HeapReAlloc
IsBadWritePtr
RtlUnwind
SetFilePointer
UnhandledExceptionFilter
GetACP
SetEnvironmentVariableA

user32

wsprintfA
ExitWindowsEx

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenSCManagerA
ControlService
StartServiceA
OpenServiceA
DeleteService
CreateServiceA
CloseServiceHandle
RegOpenKeyExA
AllocateAndInitializeSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
RegCloseKey
OpenProcessToken

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

Exports

Exports

AutoReboot
CheckChipExistRemove
CheckChipExist_9x
CheckCompHWExist
CheckPCIHWExist_NT4
CheckSMBIOS
Decrypt
FindExistingDevice
GetPCIConfigDataByIO
GetServicePackVersion
IsWOW64
ReEnumerateDev
RegSetSpecialKeySecurity
RunDosCommand
SetupLib_CreateProcess
Show_DbgMsg

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AMILO La 1703/FTS_VIAK8N890VGADevicedriver__1007593.ZIP
.zip
VGA/S3Cfg3D.cfg
VGA/S3Cfg3D.dll
.dll windows:4 windows x86

e2971f54820da9981860ee1c09062419

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsGetValue
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
TerminateProcess
InterlockedIncrement
InterlockedDecrement
GetUserDefaultLCID
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
FreeEnvironmentStringsW
ExitProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetCommandLineA
HeapReAlloc
HeapFree
RtlUnwind
HeapAlloc
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetFilePointer
GetOEMCP
GetLocaleInfoW
SetStdHandle
FlushFileBuffers
Sleep
DisableThreadLibraryCalls
IsBadReadPtr
FindFirstFileA
CreateFileA
CreateFileMappingA
MapViewOfFile
ReadFile
UnmapViewOfFile
CloseHandle
LoadResource
SizeofResource
LockResource
FreeResource
FindResourceA
FindResourceExA
GetStringTypeExA
GetACP
FreeLibrary
GetVersionExA
GetCurrentProcess
GetSystemDefaultLCID
GetPrivateProfileStringA
lstrcatA
GetLocaleInfoA
GetWindowsDirectoryA
SetThreadLocale
LoadLibraryA
GetSystemDirectoryA
GetModuleFileNameA
WideCharToMultiByte
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrlenA
GetModuleFileNameW
LoadLibraryW
OutputDebugStringA
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetLastError
SetLastError
lstrcpynA
lstrcmpiA
GetCPInfo
lstrcpyA

user32

GetDesktopWindow
CheckDlgButton
MessageBeep
GetSystemMenu
EnableMenuItem
SetForegroundWindow
LoadIconA
ShowWindow
DrawTextA
DrawEdge
GetWindow
GetCapture
UpdateWindow
DrawFocusRect
RemovePropA
CallWindowProcA
RegisterClipboardFormatA
GetFocus
FindWindowA
GetPropA
InflateRect
FillRect
LoadImageA
DialogBoxParamA
GetAsyncKeyState
IsDlgButtonChecked
ModifyMenuA
ClientToScreen
WinHelpA
DestroyWindow
CreateWindowExA
ChildWindowFromPoint
ChangeDisplaySettingsA
EnumDisplaySettingsA
OffsetRect
SystemParametersInfoA
GetSystemMetrics
MoveWindow
SetFocus
CheckMenuItem
DestroyMenu
TrackPopupMenu
GetWindowRect
DrawIcon
SetPropA
CharPrevA
GetWindowTextA
SetWindowPos
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
InvalidateRect
GetClassNameA
DeferWindowPos
SetWindowLongA
EnableWindow
CharNextA
SetWindowTextA
EndDialog
SetDlgItemTextA
PostMessageA
SetTimer
KillTimer
GetSysColor
IsWindowEnabled
CopyImage
GetWindowDC
GetDC
ReleaseDC
GetUpdateRect
CopyRect
BeginPaint
EndPaint
GetWindowLongA
IsWindowVisible
GetClientRect
GetParent
GetCursorPos
MapWindowPoints
PtInRect
SetCursor
SendMessageA
ReleaseCapture
SetCapture
DefWindowProcA
UnregisterClassA
RegisterClassA
LoadCursorA
wsprintfA
MessageBoxA
LoadMenuA
GetSubMenu
DeleteMenu
SendDlgItemMessageA
GetDlgItem

gdi32

SelectObject
SelectPalette
RealizePalette
DeleteObject
SetBkMode
Rectangle
CreatePen
CreateSolidBrush
SelectClipRgn
CreateRoundRectRgn
LineTo
MoveToEx
CreateBitmap
CreateRectRgn
GetNearestColor
CreatePolygonRgn
Ellipse
Polygon
GetDeviceCaps
DeleteDC
SetBkColor
GetPixel
PatBlt
CreatePatternBrush
GetCurrentObject
ExtSelectClipRgn
GetTextColor
RoundRect
CreateEllipticRgn
GetPaletteEntries
CreateDCA
ExtEscape
CreateFontA
RestoreDC
SetTextAlign
SaveDC
CreateDIBSection
ExtTextOutA
GetBkColor
FillRgn
SetBrushOrgEx
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
UpdateColors
StretchBlt
SetStretchBltMode
CreateDIBitmap
CreatePalette
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
SetTextColor
GetObjectA
GetStockObject

advapi32

RegEnumValueA
RegDeleteValueA
RegEnumKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegQueryInfoKeyA

shell32

FindExecutableA
ShellExecuteA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

msimg32

AlphaBlend

Exports

Exports

DllCanUnloadNow
DllGetClassObject
S3Cfg3d_Finalize
S3Cfg3d_GetMultiChromeState
S3Cfg3d_Initialize
S3Cfg3d_SetMultiChromeState
S3Util3_GetInfo
S3UtilityAddPages
S3UtilityInit
S3UtilityUnInit

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/S3CfgChs.hlp
VGA/S3CfgCht.hlp
VGA/S3CfgJpn.hlp
VGA/S3CfgKor.hlp
VGA/S3CfgTha.hlp
VGA/S3CfgWs2.hlp
VGA/S3CfgWst.hlp
VGA/S3Displ2.cfg
VGA/S3Displ3.cfg
VGA/S3Disply.cfg
VGA/S3Disply.dll
.dll windows:4 windows x86

ff984f815c8761f8a7a20ef1b288ea3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsGetValue
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
TerminateProcess
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetUserDefaultLCID
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
GetCPInfo
FreeEnvironmentStringsW
ExitProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetCommandLineA
HeapReAlloc
InterlockedIncrement
InterlockedDecrement
Sleep
HeapAlloc
HeapFree
RtlUnwind
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
GetStringTypeA
GetStringTypeW
SetFilePointer
GetOEMCP
SetStdHandle
GetLocaleInfoW
FlushFileBuffers
DisableThreadLibraryCalls
WideCharToMultiByte
FindFirstFileA
CreateFileMappingA
MapViewOfFile
ReadFile
UnmapViewOfFile
LoadResource
SizeofResource
LockResource
FreeResource
FindResourceA
FindResourceExA
GetStringTypeExA
GetACP
IsBadStringPtrA
IsBadReadPtr
MulDiv
GetModuleFileNameA
WinExec
lstrcmpA
GetVersionExA
GetCurrentProcess
GetSystemDirectoryA
LoadLibraryA
SetErrorMode
FreeLibrary
CreateFileA
DeviceIoControl
CloseHandle
GetSystemDefaultLCID
GetPrivateProfileStringA
GetLocaleInfoA
GetWindowsDirectoryA
SetThreadLocale
lstrcatA
lstrcpyA
lstrcmpiA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrlenA
lstrcpynA
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
LoadLibraryW
OutputDebugStringA
GetLastError
SetLastError

user32

MoveWindow
RegisterClipboardFormatA
GetDesktopWindow
ShowWindow
MessageBeep
GetSystemMenu
EnableMenuItem
SetForegroundWindow
LoadIconA
DrawIcon
ScreenToClient
ScrollWindow
UnionRect
GetScrollInfo
SetScrollInfo
SetRectEmpty
RegisterWindowMessageA
DrawTextA
DrawEdge
GetWindow
GetCapture
RemovePropA
CallWindowProcA
SetPropA
GetPropA
InflateRect
GetFocus
GetSysColorBrush
DrawFocusRect
InvalidateRgn
ModifyMenuA
SetCursorPos
ChangeDisplaySettingsExA
LoadMenuA
GetSubMenu
DeleteMenu
TrackPopupMenu
DestroyMenu
WinHelpA
FindWindowExA
BroadcastSystemMessage
ChildWindowFromPoint
ChangeDisplaySettingsA
OffsetRect
IntersectRect
SystemParametersInfoA
GetSystemMetrics
LoadImageA
CheckMenuRadioItem
DialogBoxParamA
GetAsyncKeyState
CheckRadioButton
EnumDisplaySettingsA
CharPrevA
GetWindowTextA
BeginDeferWindowPos
GetMenuItemInfoA
CheckMenuItem
LoadCursorA
RegisterClassA
UnregisterClassA
DefWindowProcA
FindWindowA
ClientToScreen
EnumChildWindows
EndDeferWindowPos
GetClassNameA
GetWindowRect
DeferWindowPos
SetWindowLongA
CreateWindowExA
DestroyWindow
InvalidateRect
UpdateWindow
MessageBoxA
InsertMenuA
CreatePopupMenu
FillRect
SetFocus
SetWindowPos
SetWindowTextA
EndDialog
GetDlgItemInt
IsDlgButtonChecked
GetDlgItem
PostMessageA
SetDlgItemInt
SendDlgItemMessageA
CheckDlgButton
EnableWindow
SetDlgItemTextA
SetTimer
wsprintfA
CharNextA
KillTimer
GetSysColor
IsWindowEnabled
CopyImage
GetWindowDC
GetDC
ReleaseDC
GetUpdateRect
CopyRect
BeginPaint
EndPaint
GetWindowLongA
IsWindowVisible
GetClientRect
GetParent
GetCursorPos
MapWindowPoints
PtInRect
SetCursor
SendMessageA
ReleaseCapture
SetCapture
ShowScrollBar

gdi32

StretchBlt
SetStretchBltMode
CreateDIBitmap
CreatePalette
GetObjectA
GetStockObject
CreateSolidBrush
LineTo
MoveToEx
RestoreDC
Ellipse
Rectangle
SaveDC
CreatePen
GetNearestColor
CreatePatternBrush
CreateBitmap
GetSystemPaletteEntries
GetDeviceCaps
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
SetBkMode
GetDCOrgEx
GetClipBox
GetRgnBox
UpdateColors
CreateEllipticRgn
CreatePolygonRgn
Polygon
GetCurrentObject
SelectClipRgn
GetClipRgn
SetBrushOrgEx
PtInRegion
CreateRoundRectRgn
CreateRectRgn
SetTextColor
SetBkColor
GetPixel
PatBlt
ExtSelectClipRgn
GetTextColor
RoundRect
GetPaletteEntries
CreateDCA
ExtEscape
CreateFontA
SetTextAlign
CreateDIBSection
ExtTextOutA
GetBkColor
FillRgn
BitBlt
DeleteObject
RealizePalette
SelectPalette
SelectObject
DeleteDC
CombineRgn
CreateCompatibleDC
CreateCompatibleBitmap

advapi32

RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA

shell32

FindExecutableA
ShellExecuteA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

msimg32

AlphaBlend

Exports

Exports

AddPropPage
DllCanUnloadNow
DllGetClassObject
FillTvPropInfo
S3Disp_CheckDeviceCombo
S3Disp_CheckDeviceUsable
S3Disp_FindLocaleTvStd
S3Disp_FindNewDevCombo
S3Disp_GetConnectionStatus
S3Disp_GetDisplayControl
S3Disp_GetDisplayType
S3Disp_QueryLargeDesktopSupport
S3Disp_SetDisplayControl
S3Dsp_Finalize
S3Dsp_GetCurrentTVPort
S3Dsp_GetCurrentTVStandard
S3Dsp_GetDevConnectionStatus
S3Dsp_GetDevEnabledStatus
S3Dsp_GetDevInfo
S3Dsp_GetDevResolution
S3Dsp_GetDevViewportOrigin
S3Dsp_GetOrientationState
S3Dsp_GetSAMMPrimaryDevice
S3Dsp_GetSupportDev
S3Dsp_GetSupportOrientation
S3Dsp_GetSupportTVCaps
S3Dsp_GetSupportTVPort
S3Dsp_GetSupportTVStandard
S3Dsp_GetTVCapsState
S3Dsp_GetVideoDev
S3Dsp_Initialize
S3Dsp_ResetVideoDev
S3Dsp_SetDevState
S3Dsp_SetOrientationState
S3Dsp_SetSAMMPrimaryDevice
S3Dsp_SetTVCapsState
S3Dsp_SetTVCapsToDefault
S3Dsp_SetVideoDev
S3Util3_GetInfo
S3UtilInvokeMenuCommand
S3UtilQueryMenu
S3UtilityAddPages
S3UtilityInit
S3UtilityUnInit

Sections

.text
Size: 284KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/S3DspChs.hlp
VGA/S3DspCht.hlp
VGA/S3DspJpn.hlp
VGA/S3DspKor.hlp
VGA/S3DspTha.hlp
VGA/S3DspWs2.hlp
VGA/S3DspWst.hlp
VGA/S3Gama_2.cfg
VGA/S3Gamma2.cfg
VGA/S3Gamma2.dll
.dll windows:4 windows x86

4c140b5cb16f794290a5a6af4a57dac5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsGetValue
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
TerminateProcess
RaiseException
GetUserDefaultLCID
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
GetEnvironmentStringsW
ExitProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetCommandLineA
Sleep
HeapFree
HeapAlloc
RtlUnwind
WriteFile
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetFilePointer
GetACP
GetOEMCP
SetStdHandle
LCMapStringA
LCMapStringW
GetLocaleInfoW
FlushFileBuffers
WideCharToMultiByte
FindFirstFileA
LoadResource
SizeofResource
LockResource
FreeResource
FindResourceA
FindResourceExA
GetModuleFileNameA
FreeLibrary
GetCurrentProcess
GetSystemDefaultLCID
GetPrivateProfileStringA
GetLocaleInfoA
GetWindowsDirectoryA
SetThreadLocale
lstrcmpA
GetVersionExA
ReadFile
UnmapViewOfFile
CreateFileA
CreateFileMappingA
MapViewOfFile
CloseHandle
LoadLibraryA
GetSystemDirectoryA
lstrcatA
lstrcpyA
lstrcmpiA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrlenA
lstrcpynA
GetModuleFileNameW
LoadLibraryW
OutputDebugStringA
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetLastError
GetCPInfo
SetLastError

user32

GetSystemMenu
EnableMenuItem
SetForegroundWindow
LoadIconA
DrawIcon
DrawEdge
GetWindow
GetCapture
DrawTextA
RemovePropA
CallWindowProcA
GetFocus
SetPropA
GetPropA
MessageBeep
SetFocus
GetAsyncKeyState
DrawFocusRect
InflateRect
FillRect
WinHelpA
DestroyWindow
ShowWindow
ChildWindowFromPoint
ChangeDisplaySettingsA
CharPrevA
GetWindowTextA
BeginDeferWindowPos
GetDesktopWindow
RegisterClipboardFormatA
FindWindowA
LoadImageA
LoadCursorA
RegisterClassA
UnregisterClassA
DefWindowProcA
EnumChildWindows
EndDeferWindowPos
GetClassNameA
DeferWindowPos
SetWindowLongA
CreateWindowExA
InvalidateRect
UpdateWindow
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowRect
GetSystemMetrics
CharNextA
MessageBoxA
SetWindowTextA
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
SetTimer
DialogBoxParamA
GetDlgItem
EnableWindow
wsprintfA
GetDlgItemTextA
EndDialog
PostMessageA
SetDlgItemTextA
SendDlgItemMessageA
KillTimer
GetWindowDC
GetSysColor
IsWindowEnabled
GetDC
ReleaseDC
CopyImage
GetUpdateRect
CopyRect
BeginPaint
EndPaint
GetWindowLongA
IsWindowVisible
GetClientRect
GetParent
GetCursorPos
MapWindowPoints
PtInRect
SetCursor
SendMessageA
ReleaseCapture
SetCapture
CreateDialogParamA

gdi32

GetTextExtentPoint32A
GetDeviceCaps
GetClipBox
GetDCOrgEx
CreatePalette
CreateDIBitmap
SetStretchBltMode
UpdateColors
GetCurrentObject
CreatePatternBrush
PatBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
GetObjectA
SelectPalette
RealizePalette
StretchBlt
DeleteObject
DeleteDC
SetTextColor
ExtTextOutA
GetTextMetricsA
SelectClipRgn
CreateRoundRectRgn
CreateBitmap
CreateRectRgn
GetNearestColor
CreatePolygonRgn
Ellipse
Polygon
GetPixel
ExtSelectClipRgn
GetTextColor
RoundRect
CreateEllipticRgn
GetPaletteEntries
CreateDCA
ExtEscape
CreateDIBSection
SetBrushOrgEx
RestoreDC
SaveDC
PtInRegion
CreateFontA
CreateFontIndirectA
GetStockObject
Polyline
LineTo
MoveToEx
Rectangle
CreatePen
SetBkMode
SetBkColor
CreateSolidBrush

advapi32

RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueExA
RegCloseKey
RegEnumValueA

shell32

DragFinish
ShellExecuteA
FindExecutableA
DragQueryFileA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
S3Gam_Finalize
S3Gam_Get_Brightness
S3Gam_Get_Contrast
S3Gam_Get_Gamma
S3Gam_Initialize
S3Gam_Reset_Brightness
S3Gam_Reset_Contrast
S3Gam_Reset_Gamma
S3Gam_Set_Brightness
S3Gam_Set_Contrast
S3Gam_Set_Gamma
S3Util3_GetInfo
S3UtilityAddPages
S3UtilityInit
S3UtilityUnInit

Sections

.text
Size: 180KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/S3Gm2Chs.hlp
VGA/S3Gm2Cht.hlp
VGA/S3Gm2Jpn.hlp
VGA/S3Gm2Kor.hlp
VGA/S3Gm2Tha.hlp
VGA/S3Gm2Ws2.hlp
VGA/S3Gm2Wst.hlp
VGA/S3In2Chs.hlp
VGA/S3In2Cht.hlp
VGA/S3In2Jpn.hlp
VGA/S3In2Kor.hlp
VGA/S3In2Tha.hlp
VGA/S3In2Ws2.hlp
VGA/S3In2Wst.hlp
VGA/S3Info2.cfg
VGA/S3Info2.dll
.dll windows:4 windows x86

1bc15c946d89545a55e76845e2158c08

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winmm

timeGetTime

kernel32

GetSystemInfo
VirtualProtect
HeapSize
SetFilePointer
InitializeCriticalSection
WriteFile
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
TlsGetValue
TlsSetValue
TlsFree
GetACP
TlsAlloc
GetCPInfo
VirtualQuery
InterlockedExchange
RtlUnwind
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
HeapCreate
HeapDestroy
GetCommandLineA
GetCurrentThreadId
TerminateProcess
ExitProcess
HeapAlloc
HeapFree
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
GetLocaleInfoW
GetOEMCP
QueryPerformanceCounter
CreateProcessA
GetModuleFileNameA
GetDateFormatA
GetTimeFormatA
GetNumberFormatA
GlobalMemoryStatus
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
UnmapViewOfFile
LoadResource
SizeofResource
LockResource
FreeResource
FindFirstFileA
CreateFileA
GetTickCount
CreateFileMappingA
MapViewOfFile
CloseHandle
ReadFile
FindResourceA
FindResourceExA
GetCurrentProcess
GetPrivateProfileStringA
GetWindowsDirectoryA
SetThreadLocale
GetSystemDefaultLCID
GetLocaleInfoA
FreeLibrary
LoadLibraryA
WideCharToMultiByte
GetSystemDirectoryA
lstrcatA
lstrcmpiA
lstrcpyA
GetVersionExA
OutputDebugStringA
GetModuleFileNameW
SetLastError
GetLastError
LoadLibraryW
lstrlenA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrcpynA
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
LCMapStringA
LCMapStringW
FlushFileBuffers

user32

GetCursor
DestroyWindow
DialogBoxParamA
CreateWindowExA
ExitWindowsEx
MoveWindow
FindWindowA
ShowWindow
CharLowerA
LoadImageA
SendDlgItemMessageA
DrawEdge
SetFocus
GetPropA
GetAsyncKeyState
GetCapture
UpdateWindow
DrawFocusRect
InflateRect
FillRect
DrawTextA
RemovePropA
GetFocus
SetPropA
RegisterClipboardFormatA
GetDesktopWindow
CallWindowProcA
GetWindowTextA
SetWindowPos
CharPrevA
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
InvalidateRect
GetClassNameA
DeferWindowPos
SetWindowLongA
CharNextA
SetWindowTextA
EndDialog
MessageBoxA
IsDlgButtonChecked
GetDlgItem
EnableWindow
CheckDlgButton
PostMessageA
SetTimer
SetDlgItemTextA
wsprintfA
OffsetRect
GetWindowRect
GetSystemMetrics
LoadCursorA
UnregisterClassA
RegisterClassA
DefWindowProcA
GetCursorPos
MapWindowPoints
PtInRect
SetCursor
ReleaseCapture
SetCapture
KillTimer
IsWindowVisible
GetSysColor
IsWindowEnabled
GetDC
GetWindowLongA
GetClientRect
GetUpdateRect
CopyRect
BeginPaint
GetParent
SendMessageA
EndPaint
CopyImage
GetWindowDC
ReleaseDC
WinHelpA

gdi32

GetTextMetricsA
GetTextExtentPoint32A
SetStretchBltMode
UpdateColors
CreateCompatibleBitmap
GetObjectA
StretchBlt
CreateCompatibleDC
GetCurrentObject
DeleteDC
SelectObject
CreatePatternBrush
PatBlt
BitBlt
DeleteObject
SelectPalette
RealizePalette
CreateDIBitmap
CreateFontIndirectA
CreateRoundRectRgn
CreateBitmap
GetDeviceCaps
SetTextColor
SetBkColor
GetPixel
ExtSelectClipRgn
Polygon
GetTextColor
RoundRect
SetBkMode
GetPaletteEntries
CreateDCA
ExtEscape
CreateDIBSection
SetBrushOrgEx
CreateFontA
GetStockObject
SelectClipRgn
CreatePolygonRgn
CreateSolidBrush
CreateRectRgn
CreatePen
GetNearestColor
Rectangle
CreatePalette
MoveToEx
LineTo

advapi32

OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA

shell32

FindExecutableA
ShellExecuteA

ole32

CoCreateInstance
CoInitialize
CoUninitialize

Exports

Exports

DllCanUnloadNow
DllGetClassObject
S3Util3_GetInfo
S3UtilityAddPages
S3UtilityInit
S3UtilityUnInit

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/S3OvlChs.hlp
VGA/S3OvlCht.hlp
VGA/S3OvlJpn.hlp
VGA/S3OvlKor.hlp
VGA/S3OvlTha.hlp
VGA/S3OvlWs2.hlp
VGA/S3OvlWst.hlp
VGA/S3Ovrlay.cfg
VGA/S3Ovrlay.dll
.dll windows:4 windows x86

2ac2bf7be28112f2763e1ab749570a65

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA
ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

kernel32

GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
RaiseException
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
Sleep
GetOEMCP
GetACP
TlsFree
TlsSetValue
TlsAlloc
GetSystemTimeAsFileTime
GetCPInfo
GetStdHandle
WriteFile
ExitProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
HeapCreate
HeapDestroy
GetProcessHeap
GetCommandLineA
GetCurrentThreadId
HeapReAlloc
RtlUnwind
InterlockedDecrement
InterlockedIncrement
HeapAlloc
HeapFree
InitializeCriticalSection
LCMapStringA
LCMapStringW
HeapSize
SetFilePointer
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
FormatMessageA
LocalFree
UnmapViewOfFile
LoadResource
SizeofResource
LockResource
FreeResource
FindFirstFileA
CreateFileA
CreateFileMappingA
MapViewOfFile
CloseHandle
ReadFile
FindResourceA
FindResourceExA
LoadLibraryA
OutputDebugStringA
GetModuleFileNameW
SetLastError
LoadLibraryW
GetLastError
GetVersion
GetFileAttributesW
GetModuleHandleW
GetVersionExA
GetCurrentProcess
GetSystemDirectoryA
WideCharToMultiByte
GetModuleFileNameA
GetPrivateProfileStringA
lstrcatA
GetWindowsDirectoryA
SetThreadLocale
lstrcpyA
GetSystemDefaultLCID
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
lstrcmpiA
lstrlenA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrcpynA
WriteConsoleW
FlushFileBuffers
TlsGetValue

user32

FindWindowA
MoveWindow
SetTimer
MessageBoxA
GetDlgItemTextA
CreateWindowExA
SetDlgItemTextA
GetDesktopWindow
LoadImageA
DestroyWindow
SystemParametersInfoA
DrawEdge
CallWindowProcA
SetFocus
SendDlgItemMessageA
GetPropA
GetAsyncKeyState
GetCapture
UpdateWindow
GetWindow
DrawFocusRect
OffsetRect
InflateRect
FillRect
DrawTextA
RemovePropA
GetFocus
SetPropA
ChildWindowFromPoint
GetSystemMetrics
IsDlgButtonChecked
CheckDlgButton
UnhookWindowsHookEx
RegisterClipboardFormatA
GetWindowTextA
CharNextA
CharPrevA
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
InvalidateRect
GetClassNameA
GetWindowRect
DeferWindowPos
SetWindowLongA
wsprintfA
DialogBoxParamA
WinHelpA
EndDialog
SetWindowTextA
ShowWindow
SetWindowPos
PostMessageA
GetDlgItem
EnableWindow
LoadCursorA
RegisterClassA
DefWindowProcA
GetCursorPos
MapWindowPoints
PtInRect
SetCursor
ReleaseCapture
SetCapture
KillTimer
IsWindowVisible
GetSysColor
IsWindowEnabled
GetDC
GetWindowLongA
GetClientRect
GetUpdateRect
CopyRect
BeginPaint
EndPaint
GetParent
SendMessageA
CopyImage
GetWindowDC
ReleaseDC
UnregisterClassA

gdi32

GetPixel
SetBkColor
SetTextColor
GetDeviceCaps
CreateBitmap
CreateRoundRectRgn
Polygon
Ellipse
MoveToEx
LineTo
Rectangle
GetNearestColor
CreatePen
CreateRectRgn
CreateSolidBrush
CreatePolygonRgn
SelectClipRgn
GetStockObject
CreateFontIndirectA
GetTextMetricsA
GetTextExtentPoint32A
SetStretchBltMode
UpdateColors
ExtSelectClipRgn
GetObjectA
StretchBlt
CreateCompatibleDC
GetCurrentObject
DeleteDC
SelectObject
CreatePatternBrush
PatBlt
BitBlt
DeleteObject
SelectPalette
RealizePalette
CreateDIBitmap
CreatePalette
ExtEscape
FillRgn
GetBkColor
SetBrushOrgEx
RestoreDC
SaveDC
PtInRegion
CreateFontA
Polyline
ExtTextOutA
GetTextColor
RoundRect
SetBkMode
CreateEllipticRgn
GetPaletteEntries
CreateDIBSection
CreateCompatibleBitmap
CreateDCA

advapi32

RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegEnumValueA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey

shell32

FindExecutableA
ShellExecuteA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
S3UtilityAddPages
S3UtilityInit
S3UtilityUnInit

Sections

.text
Size: 212KB - Virtual size: 208KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/S3Ovrly2.cfg
VGA/S3TPChs.hlp
VGA/S3TPCht.hlp
VGA/S3TPJpn.hlp
VGA/S3TPKor.hlp
VGA/S3TPTha.hlp
VGA/S3TPWs2.hlp
VGA/S3TPWst.hlp
VGA/S3TrayP.cfg
VGA/S3TrayP.exe
.exe windows:4 windows x86

90c9bf012f57e1ff065a9f9d6f50f223

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetUserDefaultLCID
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
GetCPInfo
HeapReAlloc
VirtualAlloc
UnhandledExceptionFilter
HeapCreate
HeapDestroy
GetEnvironmentVariableA
ExitProcess
GetVersion
GetStartupInfoA
HeapAlloc
HeapFree
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
WriteFile
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
GetLocaleInfoW
SetFilePointer
SetStdHandle
FlushFileBuffers
SetErrorMode
FindFirstFileA
CreateFileA
CreateFileMappingA
MapViewOfFile
ReadFile
UnmapViewOfFile
CloseHandle
LoadResource
SizeofResource
LockResource
FreeResource
FindResourceA
FindResourceExA
GetCurrentThreadId
CreateProcessA
FreeLibrary
GetLastError
GetVersionExA
GetCurrentProcess
GetSystemDirectoryA
LoadLibraryA
GetModuleHandleA
GetProcAddress
GetSystemDefaultLCID
GetPrivateProfileStringA
lstrcatA
GetLocaleInfoA
GetWindowsDirectoryA
SetThreadLocale
GetCommandLineA
lstrcpyA
GetModuleFileNameA
lstrcmpiA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrlenA
VirtualFree
lstrcpynA

user32

PostQuitMessage
SetFocus
SetTimer
GetForegroundWindow
GetAsyncKeyState
LoadMenuA
GetSubMenu
EnableMenuItem
AttachThreadInput
TrackPopupMenu
DestroyMenu
ModifyMenuA
DeleteMenu
DialogBoxParamA
SetForegroundWindow
RemovePropA
SetPropA
GetPropA
UpdateWindow
CreatePopupMenu
CheckMenuItem
InsertMenuItemA
GetWindow
MoveWindow
ExitWindowsEx
EnumWindows
ChangeDisplaySettingsA
EnumDisplaySettingsA
DrawIcon
GetSystemMetrics
WinHelpA
RegisterWindowMessageA
GetMessageA
TranslateMessage
DispatchMessageA
CreateWindowExA
LoadIconA
FindWindowA
CharPrevA
GetWindowTextA
SetWindowTextA
SetWindowPos
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
InvalidateRect
GetClassNameA
GetWindowRect
DeferWindowPos
SetWindowLongA
OffsetRect
DrawEdge
DrawIconEx
DrawStateA
DestroyIcon
SystemParametersInfoA
GetSystemMenu
MessageBeep
ShowWindow
DrawTextA
SetMenuItemInfoA
GetMenuItemCount
RegisterClassA
LoadCursorA
DefWindowProcA
SetCapture
ReleaseCapture
MessageBoxA
GetDesktopWindow
GetMenuItemInfoA
CheckMenuRadioItem
LoadImageA
InsertMenuA
CharNextA
GetDlgItem
CheckDlgButton
EnableWindow
CheckRadioButton
PostMessageA
GetDlgItemInt
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
FillRect
IsDlgButtonChecked
wsprintfA
KillTimer
GetSysColor
IsWindowEnabled
CopyImage
GetWindowDC
GetDC
ReleaseDC
GetUpdateRect
CopyRect
BeginPaint
EndPaint
GetWindowLongA
IsWindowVisible
GetClientRect
GetParent
GetCursorPos
MapWindowPoints
PtInRect
SetCursor
SendMessageA
GetWindowThreadProcessId

gdi32

CreateFontIndirectA
CreateSolidBrush
GetCurrentObject
MoveToEx
LineTo
Ellipse
CreatePen
GetTextExtentPoint32A
GetTextMetricsA
GetDeviceCaps
CreateDCA
CreateBitmap
SetTextColor
SetBkColor
GetPixel
GetObjectA
CreatePatternBrush
ExtSelectClipRgn
Polygon
CreateRectRgn
GetTextColor
SelectClipRgn
GetPaletteEntries
ExtEscape
CreateDIBSection
ExtTextOutA
Rectangle
SetBkMode
GetStockObject
CreatePalette
CreateDIBitmap
SetStretchBltMode
StretchBlt
UpdateColors
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SelectObject
SelectPalette
PatBlt
DeleteObject
RealizePalette

advapi32

RegSetValueExA
RegQueryValueExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegEnumKeyExA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
GetUserNameA
RegDeleteValueA

shell32

FindExecutableA
Shell_NotifyIconA

comctl32

PropertySheetA
CreatePropertySheetPageA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

winmm

timeGetTime

msimg32

AlphaBlend

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
VGA/S3TrayP2.cfg
VGA/S3gIGP.dll
.dll windows:5 windows x86

ec78044d3ad88b93812be7c2040dfd62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

win32k.sys

EngDeviceIoControl
WNDOBJ_vSetConsumer
EngFreeMem
EngDeleteDriverObj
EngAllocMem
WNDOBJ_bEnum
WNDOBJ_cEnumStart
EngCreateDriverObj
EngGetCurrentProcessId
EngCreateWnd
EngDeleteWnd
CLIPOBJ_bEnum
CLIPOBJ_cEnumStart
EngPaint
EngStretchBlt
EngCreatePalette
EngDeletePalette
PALOBJ_cGetColors
EngDeleteSurface
EngLockSurface
EngAssociateSurface
EngCreateBitmap
EngUnlockSurface
EngReleaseSemaphore
EngAcquireSemaphore
EngUnloadImage
EngFindImageProcAddress
EngLoadImage
EngMultiByteToUnicodeN
EngCreateDeviceSurface
EngDeleteSemaphore
EngRestoreFloatingPointState
EngSaveFloatingPointState
EngCopyBits
EngCreateSemaphore
EngDebugBreak
EngStrokePath
PATHOBJ_bEnum
PATHOBJ_vEnumStart
PATHOBJ_bEnumClipLines
PATHOBJ_vEnumStartClipLines
XLATEOBJ_piVector
BRUSHOBJ_pvAllocRbrush
BRUSHOBJ_pvGetRbrush
EngTransparentBlt
EngAlphaBlend
EngGradientFill
XLATEOBJ_cGetPalette
EngBitBlt
PATHOBJ_vGetBounds
EngFillPath
EngTextOut
STROBJ_bEnum
STROBJ_vEnumStart
EngLineTo
EngCreateDeviceBitmap
EngControlSprites
RtlUnwind
RtlUnicodeToMultiByteN

Sections

.text
Size: 768KB - Virtual size: 768KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/S3gIGPm.sys
.sys windows:5 windows x86

363b1694bd9ea5933298f148a82644ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

videoprt.sys

VideoPortGetRomImage
VideoPortSetRegistryParameters
VideoPortGetRegistryParameters
VideoPortFreeDeviceBase
VideoPortReadRegisterUshort
VideoPortGetDeviceBase
VideoPortVerifyAccessRanges
VideoPortReadPortUshort
VideoPortReadPortUchar
VideoPortWritePortBufferUshort
VideoPortWritePortUshort
VideoPortWritePortUchar
VideoPortMoveMemory
VideoPortReadPortUlong
VideoPortGetBusData
VideoPortGetAccessRanges
VideoPortWriteRegisterUchar
VideoPortWriteRegisterBufferUshort
VideoPortWriteRegisterUlong
VideoPortWriteRegisterUshort
VideoPortInt10
VideoPortStallExecution
VideoPortGetCurrentIrql
VideoPortDDCMonitorHelper
VideoPortCompareMemory
VideoPortUnmapMemory
VideoPortMapMemory
VideoPortQueryServices
VideoPortEnumerateChildren
VideoPortGetAssociatedDeviceExtension
VideoPortReleaseDeviceLock
VideoPortAcquireDeviceLock
VideoPortReadRegisterUchar
VideoPortReadRegisterUlong
VideoPortZeroMemory
VideoPortInitialize
VideoPortSetBusData
VideoPortWritePortUlong

ntoskrnl.exe

PsGetCurrentProcessId
ExFreePoolWithTag
ExAllocatePoolWithTag
KeReleaseMutex
ZwUnmapViewOfSection
ZwMapViewOfSection
ZwCreateSection
PsGetCurrentThreadId
KeCancelTimer
KeSetTimerEx
KeWaitForSingleObject
KeInitializeTimerEx
PsSetLoadImageNotifyRoutine
RtlWriteRegistryValue
MmAllocateContiguousMemorySpecifyCache
MmFreeContiguousMemorySpecifyCache
MmGetPhysicalAddress
MmIsAddressValid
KeInitializeDpc
MmAllocateContiguousMemory
KeInsertQueueDpc
MmFreeContiguousMemory
KeRemoveQueueDpc
DbgPrint
IoCreateSynchronizationEvent
KeClearEvent
KeSetEvent
MmAllocatePagesForMdl
MmFreePagesFromMdl
ObfDereferenceObject
ExRegisterCallback
ExCreateCallback
IoAllocateMdl
IoFreeMdl
MmProbeAndLockPages
MmUnlockPages
KeQuerySystemTime
MmMapLockedPagesSpecifyCache
MmUnmapLockedPages
KeDetachProcess
KeAttachProcess
PsLookupProcessByProcessId
MmMapIoSpace
MmUnmapIoSpace
MmBuildMdlForNonPagedPool
ObReferenceObjectByHandle
ZwOpenSection
ZwSetInformationFile
ZwQueryInformationFile
RtlFreeUnicodeString
ZwCreateFile
RtlAnsiStringToUnicodeString
RtlInitAnsiString
ZwOpenFile
ZwReadFile
ZwWriteFile
RtlUnwind
RtlRaiseException
KeInitializeMutex
RtlInitUnicodeString
ZwOpenKey
ZwQueryValueKey
ZwClose
PsSetCreateProcessNotifyRoutine
KdDebuggerNotPresent
KdDebuggerEnabled
KeBugCheckEx

hal

HalGetBusDataByOffset
HalGetBusData
KfAcquireSpinLock
KfReleaseSpinLock
HalSetBusDataByOffset

Sections

.text
Size: 295KB - Virtual size: 295KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGE
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

PAGE
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/S3iset32.txt
VGA/VModes.exe
.exe windows:4 windows x86

804f2c94c2f32ca65fefca4785088fee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
GetVersionExA
HeapReAlloc
lstrcpyA
GetModuleHandleA
LoadLibraryA
GetProcAddress
ExitProcess
TerminateProcess
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
GetVersion
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
LCMapStringW

user32

ChangeDisplaySettingsA
EnumDisplaySettingsA
MessageBoxA

advapi32

RegDeleteValueA
RegCloseKey
RegOpenKeyExA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
VGA/VTTimer.exe
.exe windows:4 windows x86

bef059057cc6986f7af4f3916c43d298

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

powrprof

SetActivePwrScheme
GetActivePwrScheme

kernel32

QueryPerformanceCounter
HeapSize
GetSystemInfo
VirtualProtect
GetLocaleInfoA
VirtualQuery
InterlockedExchange
GetCPInfo
GetOEMCP
GetTickCount
FreeLibrary
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
WideCharToMultiByte
GetVersionExA
LocalAlloc
GetACP
LocalFree
LoadLibraryA
GetProcAddress
WritePrivateProfileStringA
GetPrivateProfileStringA
GetSystemDirectoryA
lstrlenA
lstrcatA
GetSystemTimeAsFileTime
MulDiv
lstrcmpiA
lstrcpyA
GetCurrentThreadId
GetCurrentProcessId
GetStringTypeW
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree

user32

TranslateMessage
PostQuitMessage
DefWindowProcA
KillTimer
SetTimer
DestroyWindow
CreateWindowExA
LoadIconA
LoadCursorA
DispatchMessageA
UpdateWindow
ShowWindow
GetWindowLongA
SetWindowLongA
SystemParametersInfoA
wsprintfA
EnumDisplaySettingsA
ChangeDisplaySettingsA
FindWindowA
SendMessageA
GetMessageA
RegisterClassA

gdi32

GetDeviceCaps
CreateDCA
ExtEscape
DeleteDC
GetStockObject

advapi32

RegSetKeySecurity
RegEnumKeyExA
AllocateAndInitializeSid
SetEntriesInAclA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
FreeSid
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegOpenKeyExA

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
VGA/data1.cab
VGA/data1.hdr
VGA/data2.cab
VGA/dc0212x8.inf
VGA/engine32.cab
.cab
VGA/layout.bin
VGA/s3g700.cat
VGA/s3gIGPgl.dll
.dll windows:5 windows x86

631d3c8ac075a3b79f6b9379b81b6208

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ntdll

RtlUnwind

advapi32

RegQueryValueExW
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA

user32

GetWindowThreadProcessId
SetWindowsHookExA
CallNextHookEx
CreateWindowExA
GetMonitorInfoA
EnumDisplayMonitors
MonitorFromPoint
DestroyWindow
ReleaseDC
GetDC
UnregisterClassA
LoadIconA
LoadCursorA
RegisterClassA
DefWindowProcA
IsWindow
ClientToScreen
GetClientRect
GetWindowInfo
EnumDisplaySettingsA
UnhookWindowsHookEx
WindowFromDC
EnumDisplayDevicesA

gdi32

CreateCompatibleDC
GetCurrentObject
SetPixelFormat
GetPixelFormat
DeleteDC
GetObjectType
CreateDCA
ExtEscape
DescribePixelFormat

kernel32

CreateDirectoryA
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
lstrcmpiA
lstrcpyA
lstrcatA
RaiseException
Sleep
HeapAlloc
HeapFree
HeapSize
CreateFileA
OutputDebugStringA
WriteFile
SetLastError
GetVersionExA
FreeLibrary
GetProcAddress
LoadLibraryA
TlsSetValue
TlsGetValue
GetCurrentThreadId
GetCurrentProcessId
TlsAlloc
HeapCreate
HeapDestroy
TlsFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateMutexA
CloseHandle
WaitForSingleObject
ReleaseMutex
GetCommandLineA
GetProcessHeap
ExitProcess
GetModuleHandleA
GetLastError
ReadFile
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
VirtualFree
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
SetFilePointer
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetLocaleInfoA
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedExchange
VirtualQuery
LCMapStringA
LCMapStringW
SetStdHandle
VirtualProtect
GetSystemInfo
FlushFileBuffers
TerminateProcess
GetCurrentProcess

Exports

Exports

DllMain
DrvCopyContext
DrvCreateContext
DrvCreateLayerContext
DrvDeleteContext
DrvDescribeLayerPlane
DrvDescribePixelFormat
DrvGetLayerPaletteEntries
DrvGetProcAddress
DrvRealizeLayerPalette
DrvReleaseContext
DrvSetContext
DrvSetLayerPaletteEntries
DrvSetPixelFormat
DrvShareLists
DrvSwapBuffers
DrvSwapLayerBuffers
DrvValidateVersion

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 262KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 615KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/s3gcil_inv.dll
.dll windows:4 windows x86

ab39be32c0a9247958bff3ba67b1d813

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

win32k.sys

EngDeviceIoControl
EngFreeMem
EngAllocMem
EngAllocUserMem
EngFreeUserMem
EngQueryPerformanceCounter
EngQueryPerformanceFrequency
EngGetCurrentProcessId
EngGetCurrentThreadId
EngSaveFloatingPointState
EngRestoreFloatingPointState
RtlUnwind
RtlUnicodeToMultiByteN

Exports

Exports

cilSetCoreFunctionTables

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 262KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 511KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/s3iscfg.dat
VGA/s3iset32.dll
.dll windows:4 windows x86

2a4aabc7260093869851dd1662f9deda

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

lz32

LZOpenFileA
LZCopy
LZClose

kernel32

GetVersionExA
IsBadWritePtr
IsBadReadPtr
GetDateFormatA
GetTimeFormatA
GetLocalTime
GetModuleFileNameA
DisableThreadLibraryCalls
HeapFree
HeapAlloc
GetProcessHeap
WriteConsoleA
InitializeCriticalSection
FlushFileBuffers
SetStdHandle
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
WideCharToMultiByte
LCMapStringA
HeapCreate
HeapDestroy
GetCurrentProcess
VirtualAlloc
VirtualFree
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetOEMCP
GetACP
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
ExitProcess
GetCPInfo
RtlUnwind
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LeaveCriticalSection
EnterCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCommandLineA
GetCurrentThreadId
GetSystemDirectoryA
GetTempFileNameA
FindNextFileA
MoveFileExA
SetFileAttributesA
GetPrivateProfileIntA
GetTempPathA
SetThreadLocale
GetSystemDefaultLCID
GetLocaleInfoA
SetFilePointer
ReadFile
WriteFile
FindFirstFileA
FindClose
DeleteFileA
CloseHandle
DeviceIoControl
FindResourceA
LoadResource
SizeofResource
LockResource
_lcreat
_hwrite
_lclose
CreateFileA
OutputDebugStringA
GetWindowsDirectoryA
FormatMessageA
GetShortPathNameA
LoadLibraryA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetLastError
lstrcmpA
lstrcatA
FreeLibrary
GetModuleHandleA
GetProcAddress
lstrcmpiA
lstrlenA
Sleep
lstrcpyA
lstrcpynA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GetLocaleInfoW
HeapSize
HeapReAlloc
CreateThread
ResumeThread
ExitThread
InterlockedIncrement
InterlockedDecrement

user32

ExitWindowsEx
DialogBoxParamA
SetDlgItemTextA
EnableWindow
CharLowerA
GetSystemMetrics
SystemParametersInfoA
DestroyWindow
UnregisterClassA
SetTimer
LoadCursorA
LoadIconA
RegisterClassA
CreateWindowExA
GetWindow
FindWindowA
PostMessageA
MessageBoxA
KillTimer
EnumWindows
GetDlgItem
GetWindowTextA
SetWindowTextA
SetWindowPos
CharPrevA
GetDC
GetClientRect
ReleaseDC
BeginDeferWindowPos
EnumChildWindows
EndDeferWindowPos
InvalidateRect
GetClassNameA
GetWindowLongA
GetParent
GetWindowRect
MapWindowPoints
DeferWindowPos
SetWindowLongA
EndDialog
SendMessageA
SendDlgItemMessageA
CharNextA
ChangeDisplaySettingsA
wsprintfA
DefWindowProcA

gdi32

CreateICA
GetDeviceCaps
ExtEscape
DeleteDC
CreateDCA
GetObjectA
GetStockObject
CreateFontIndirectA
SelectObject
GetTextExtentPoint32A
DeleteObject
GetTextMetricsA

advapi32

RegQueryInfoKeyA
RegEnumValueA
AllocateAndInitializeSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
FreeSid
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyA
RegCreateKeyA
CreateServiceA
StartServiceA
OpenSCManagerA
OpenServiceA
ControlService
DeleteService
CloseServiceHandle
RegEnumKeyExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey

shell32

FindExecutableA
ShellExecuteA

Exports

Exports

GetCfgInt
GetCfgString
LogProgress
slCheckDxVersion
slCleanupFiles
slCreateUninstall
slFindInstalledDevice
slGetOSVer
slGetSystemFolderNames
slInVgaMode
slInit
slInitChildFileNames
slInstallDriver
slIsDevicePresent
slKillTimerHwnd
slMakeTimerHwnd
slShutdownSystem
slStartBypassTimer
slStartProgressLog
slStopBypassTimer
slUnInit
slUninstDisplay

Sections

.text
Size: 148KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VGA/s3minset.exe
.exe windows:4 windows x86

b6c4c2235e57858a60d4c998726ba56c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

lz32

LZCopy
LZOpenFileA
LZClose

kernel32

RemoveDirectoryA
Sleep
FreeLibrary
LoadLibraryA
GetCommandLineA
SetFilePointer
RaiseException
HeapSize
GetLocaleInfoW
RtlUnwind
InitializeCriticalSection
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
WriteFile
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
GetShortPathNameA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetOEMCP
GetACP
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
ExitProcess
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetProcessHeap
HeapAlloc
HeapFree
InterlockedDecrement
InterlockedIncrement
GetFileAttributesA
WritePrivateProfileStringA
lstrcmpA
FindNextFileA
MulDiv
WriteConsoleW
GetModuleFileNameA
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
ReadFile
GetVersionExA
GetCurrentProcess
GetSystemDirectoryA
MoveFileExA
GetTempPathA
GetTempFileNameA
DeleteFileA
CreateDirectoryA
FindFirstFileA
FindClose
CreateFileA
GetLastError
CloseHandle
GetPrivateProfileIntA
GetPrivateProfileStringA
lstrcatA
GetWindowsDirectoryA
SetThreadLocale
lstrcpynA
lstrcpyA
lstrcmpiA
GetSystemDefaultLCID
lstrlenA
GetLocaleInfoA
GetModuleHandleA
GetProcAddress
SetStdHandle
GetConsoleCP
GetConsoleMode
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
HeapDestroy

user32

IsDialogMessageA
TranslateMessage
DispatchMessageA
CreateWindowExA
LoadIconA
FindWindowA
PostQuitMessage
DefWindowProcA
GetSystemMenu
RemoveMenu
PostMessageA
MessageBoxA
BeginPaint
EndPaint
GetUpdateRect
SetDlgItemTextA
DestroyWindow
CreateDialogParamA
ShowWindow
SystemParametersInfoA
GetWindowDC
OffsetRect
GetMessageA
GetSysColor
CopyRect
UpdateWindow
LoadCursorA
RegisterClassA
GetSystemMetrics
SetWindowTextA
SetWindowPos
CharNextA
GetDC
GetClientRect
ReleaseDC
InvalidateRect
GetWindowLongA
GetWindowRect
SendMessageA
SetWindowLongA
wsprintfA
IsWindow
DrawTextA

gdi32

SetBrushOrgEx
CreateFontA
SelectPalette
RealizePalette
CreateDIBitmap
CreateDIBSection
CreatePalette
SetBkMode
GetTextColor
CreateRectRgn
Polygon
ExtSelectClipRgn
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SetStretchBltMode
StretchBlt
SetBkColor
BitBlt
SetTextColor
CreateSolidBrush
GetDeviceCaps
GetObjectA
GetStockObject
SelectObject
DeleteObject
CreatePatternBrush

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

shell32

FindExecutableA

Sections

.text
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
VGA/setup.exe
.exe windows:4 windows x86

d3a35c815738cd0a7a55b0310b01bacf

Code Sign

01
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

01/08/1996, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

1f:9a:e0
Certificate

Issuer

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Not Before

16/02/2004, 18:24

Not After

11/02/2005, 00:05

Subject

CN=InstallShield Software Corporation,OU=Research and Development,O=InstallShield Software Corporation,L=Schaumburg,ST=Illinois,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

0a
Certificate

Issuer

CN=Thawte Premium Server CA,OU=Certification Services Division,O=Thawte Consulting cc,L=Cape Town,ST=Western Cape,C=ZA,1.2.840.113549.1.9.1=#0c197072656d69756d2d736572766572407468617774652e636f6d

Not Before

06/08/2003, 00:00

Not After

05/08/2013, 23:59

Subject

CN=Thawte Code Signing CA,O=Thawte Consulting (Pty) Ltd.,C=ZA

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
VerInstallFileA

kernel32

LoadResource
FindResourceA
GetModuleHandleA
SetErrorMode
CreateDirectoryA
GetModuleFileNameA
CreateFileA
InterlockedIncrement
InterlockedDecrement
QueryPerformanceFrequency
CreateEventA
CloseHandle
WriteFile
Sleep
ReadFile
FreeLibrary
RemoveDirectoryA
FindClose
FindNextFileA
DeleteFileA
lstrcmpA
FindFirstFileA
GetTempPathA
LeaveCriticalSection
EnterCriticalSection
CreateThread
GetWindowsDirectoryA
GetTickCount
GetFileAttributesA
GetTempFileNameA
CreateMutexA
WaitForSingleObject
ReleaseMutex
InitializeCriticalSection
DeleteCriticalSection
lstrlenW
LockResource
OpenEventA
CreateProcessA
GetCurrentThreadId
HeapAlloc
GetSystemInfo
HeapCreate
GetFileSize
lstrcpynA
lstrcatA
WritePrivateProfileStringA
SetFilePointer
GetShortPathNameA
GetProcAddress
LoadLibraryA
GetSystemDefaultLangID
MoveFileA
FindResourceExA
HeapDestroy
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SizeofResource
GetVersion
GetStartupInfoA
ExitProcess
GetCommandLineA
DebugBreak
HeapReAlloc
HeapFree
VirtualQuery
VirtualProtect
SearchPathA
ResetEvent
QueryPerformanceCounter
SystemTimeToFileTime
GetCurrentProcess
GetCurrentThread
IsBadReadPtr
RtlUnwind
lstrcpyA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
GetVersionExA
CompareStringW
CompareStringA
WideCharToMultiByte
lstrlenA
GetLastError
SetLastError
lstrcmpiA
GetPrivateProfileIntA
GetPrivateProfileStringA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetEvent

user32

MoveWindow
KillTimer
DestroyWindow
GetWindowTextA
SetTimer
SetWindowRgn
GetDesktopWindow
DialogBoxIndirectParamA
SetActiveWindow
LoadStringA
SetWindowTextA
GetDlgItem
SendMessageA
SetDlgItemTextA
LoadIconA
GetWindowRect
SystemParametersInfoA
SetWindowPos
wsprintfA
MsgWaitForMultipleObjects
PeekMessageA
CharLowerBuffA
MessageBoxA
EndDialog
CharNextA
CharUpperA
PostThreadMessageA
CreateDialogIndirectParamA
SetForegroundWindow
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
GetDC
ReleaseDC
ShowWindow
ScreenToClient

gdi32

GetTextExtentPoint32A
LPtoDP
DeleteObject
CreateFontIndirectA
GetObjectA

advapi32

RegCreateKeyExA
GetTokenInformation
AllocateAndInitializeSid
OpenThreadToken
EqualSid
FreeSid
RegCloseKey
RegOpenKeyExA
RegSetValueExA
OpenProcessToken
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyA
RegQueryValueA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

ole32

CoCreateGuid
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
StringFromCLSID
CoTaskMemFree
StringFromGUID2
GetRunningObjectTable
CoTaskMemAlloc
CoMarshalInterThreadInterfaceInStream
CoReleaseMarshalData
CoInitialize
CoGetInterfaceAndReleaseStream
CoUninitialize

oleaut32

RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
SysFreeString
VariantCopy
SysAllocStringLen
SysAllocString
SysStringLen
VariantClear

lz32

LZOpenFileA
LZCopy
LZClose

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
VGA/setup.ibt
VGA/setup.ini
VGA/setup.inx
VGA/setup.iss
AMILO La 1703/FTS_VT8237AimbeddedVT1708AcodecHDADecksdefaul__1007672.ZIP
.zip
AMILO La 1703/FTS_WLANminiCardD2301__1007582.ZIP
.zip
AMILO La 1703/FTS___1018834.EXE
.exe windows:4 windows x86

78c751010579c51cdad3f096a3cbcc97

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA
FindExecutableA

user32

CharNextA
DefWindowProcA
GetWindowWord
SetWindowWord
BeginPaint
GetSysColor
GetClientRect
SetRect
EndPaint
RegisterClassA
OemToCharBuffA
LoadCursorA
GetLastActivePopup
ShowWindow
PostMessageA
EnableWindow
DestroyWindow
SetWindowTextA
SetForegroundWindow
SetActiveWindow
GetWindowRect
SetTimer
KillTimer
DialogBoxIndirectParamA
GetDlgItemTextA
EndDialog
SendMessageA
GetKeyState
PeekMessageA
TranslateMessage
DispatchMessageA
GetParent
SetDlgItemTextA
SendDlgItemMessageA
GetDlgItem
InvalidateRect
UpdateWindow
wsprintfA
MessageBoxA
SetCursor
GetSystemMetrics
SetWindowPos

kernel32

CreateDirectoryA
_lclose
_lopen
GlobalUnlock
RtlUnwind
GetCommandLineA
GetModuleHandleA
ExitProcess
GetACP
GetModuleFileNameA
SetErrorMode
GetVersion
LoadLibraryA
GetProcAddress
FreeLibrary
lstrcmpiA
GetWindowsDirectoryA
GetEnvironmentVariableA
LocalAlloc
LocalFree
GlobalHandle
lstrcpyA
GlobalFree
GlobalAlloc
GlobalLock
WinExec
_llseek
GetDriveTypeA
_lread
_lwrite
GetVolumeInformationA
FindClose
FindFirstFileA
GetCurrentDirectoryA
SetCurrentDirectoryA
lstrlenA
lstrcatA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
_lcreat

gdi32

GetBkColor
SetBkColor
SetTextColor
SetTextAlign
DeleteObject
GetTextExtentPoint32A
ExtTextOutA
CreateDCA
GetDeviceCaps
CreateFontIndirectA
DeleteDC
SelectObject

advapi32

RegQueryValueA

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_winzip_
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

f8f3b8cc8b518f12d8ae6d670e589f92

Headers

File Characteristics

Imports

ntoskrnl.exe

hal

ndis.sys

Sections

.text Size: 50KB - Virtual size: 50KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 640B - Virtual size: 596B

.pdata Size: 1024B - Virtual size: 984B

INIT Size: 2KB - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 256B - Virtual size: 226B

837fe8d095926cfe98c9f52c8563e141

Headers

File Characteristics

Imports

ntoskrnl.exe

hal

ndis.sys

Sections

.text Size: 28KB - Virtual size: 27KB

.data Size: 512B - Virtual size: 328B

INIT Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 960B

bf7f2209b01c1d3614a901457e6dedff

Headers

File Characteristics

Imports

ntoskrnl.exe

hal

ndis.sys

Sections

.text Size: 29KB - Virtual size: 29KB

.data Size: 512B - Virtual size: 328B

INIT Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 986B

203dddc8fe6c49715976e6604dd406f2

Headers

File Characteristics

Imports

ntoskrnl.exe

hal

ndis.sys

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 328B

INIT Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

2c73a6ebbd15111dc4b6af7c51aa8e44

Headers

File Characteristics

Imports

ntoskrnl.exe

hal

ndis.sys

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 328B

INIT Size: 2KB - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

11a22dd415d7d0f532d35e1534299d18

Headers

File Characteristics

Imports

kernel32

.text
Size: 50KB - Virtual size: 50KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 640B - Virtual size: 596B

.pdata
Size: 1024B - Virtual size: 984B

INIT
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 256B - Virtual size: 226B

.text
Size: 28KB - Virtual size: 27KB

.data
Size: 512B - Virtual size: 328B

INIT
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 960B

.text
Size: 29KB - Virtual size: 29KB

.data
Size: 512B - Virtual size: 328B

INIT
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 986B

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 328B

INIT
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 328B

INIT
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 12KB - Virtual size: 11KB

.reloc
Size: 16KB - Virtual size: 15KB

.text
Size: 120KB - Virtual size: 117KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 16KB - Virtual size: 36KB

Shared
Size: 4KB - Virtual size: 4B

.rsrc
Size: 68KB - Virtual size: 65KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 12KB - Virtual size: 34KB

Shared
Size: 4KB - Virtual size: 4B

.rsrc
Size: 68KB - Virtual size: 65KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 27KB

.rsrc
Size: 12KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB