New Compressed (zipped) Folder[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

New Compressed (zipped) Folder.zip
Size

5.0MB
MD5

056173bbfc23626cf946ec103e2fda2c
SHA1

b1bcaf3dbd8c43d0dd15ec5d9034843dfd4851f5
SHA256

4b22dbf9788f52b0739e6f12f220e19ec195b44ff04f448f85938f4e4b44e284
SHA512

af63fcb09995e14f955cec46d00d9495b476d0e040c4ce989c12d45f41656047c30d9f45f52d379b0783a2c39df547ca896340fe5f12fb6867a686aaa3a81090
SSDEEP

98304:QmPP7ACkJfuD6mMUNQbTsjZ0tgUE4nh5b1I62U9pOmia9+RHy0D3s6JuXYzOxjPm:QmPcCylzUObYjZ06U95bn90miaK7zs6R

Score

3^/10

pdf link

Malware Config

Signatures

One or more HTTP URLs in PDF identified
Detects presence of HTTP links in PDF files.
pdf link

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/0bddc6655ba739d631907c6b5063348789dd75356258f5aa846907342e77bec4.exe
unpack001/1628647c9d28f39641d4d0be0192d09e5881164ef199f309f49488b0398460f3.exe
unpack001/dc83396015773f0d7abb3f7e7653cf048d44d267dc1332ddef21bc1ab302b6f7.exe
unpack001/e579ef01ba2f52a618ab1448543ea8646ea710cf168c64aff70f68e1c89f6cad.exe

NSIS installer 2 IoCs

installer

resource	yara_rule
static1/unpack001/e579ef01ba2f52a618ab1448543ea8646ea710cf168c64aff70f68e1c89f6cad.exe	nsis_installer_1
static1/unpack001/e579ef01ba2f52a618ab1448543ea8646ea710cf168c64aff70f68e1c89f6cad.exe	nsis_installer_2

Files

New Compressed (zipped) Folder.zip
.zip
0bddc6655ba739d631907c6b5063348789dd75356258f5aa846907342e77bec4.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
1628647c9d28f39641d4d0be0192d09e5881164ef199f309f49488b0398460f3.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 478KB - Virtual size: 478KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
3c18e64435871f8e9fd9c1d379f6cb76f4a5e8c5734386ff9ae10e35fb666112.url
522f6cd72ee97eb4d00c2b3ef4c93c4f3396f3c6c8f85dd58655a0edcd0b865d.url
7dfcedc537a858be0d598ef2f327d4fa2aeb3f4191a7f724fcad85a1c894ea53.url
Amministrazione.url
aa37c9834962ef744c594c5dc3c3c29f2636214a883539517ced0543743da548.pdf
.pdf
- https://qu.ax/kVDT.zipAll
b34314e52215dca5420839e5d93787567f3e6df391a058f77fbbeb50cc546a87.unknown
.png
cf6d2322e1a9ea3d1b05171942922d5627b202d15ed33b9673ace501ebb47f92.exe
.dll windows:6 windows x64 arch:x64

e6a5883a44ec58ac0a9e938d3f0cc874

Code Sign

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

5f:fb:e1:bc:42:2d:8b:c2:da:b2:b3:79:d6:4b:ea:1d
Certificate

Issuer

CN=Certum Code Signing 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

14/09/2023, 12:18

Not After

13/09/2026, 12:18

Subject

CN=The Document Foundation,OU=LibreOffice Build Team,O=The Document Foundation,L=Berlin,ST=Berlin,C=DE,1.2.840.113549.1.9.1=#0c1b696e666f40646f63756d656e74666f756e646174696f6e2e6f7267

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

Issuer

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Not Before

28/07/2022, 08:56

Not After

27/07/2033, 08:56

Subject

CN=Certum Timestamp 2022,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

Issuer

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

19/05/2021, 05:32

Not After

18/05/2036, 05:32

Subject

CN=Certum Timestamping 2021 CA,O=Asseco Data Systems S.A.,C=PL

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

31/05/2021, 06:43

Not After

17/09/2029, 06:43

Subject

CN=Certum Trusted Network CA 2,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

ea:6f:6b:d8:7a:9c:4c:3a:a7:29:a6:b8:37:b5:d5:43:b2:f5:c6:05:1c:51:85:4b:2b:25:73:c8:86:1d:25:4d
Signer

Actual PE Digest

ea:6f:6b:d8:7a:9c:4c:3a:a7:29:a6:b8:37:b5:d5:43:b2:f5:c6:05:1c:51:85:4b:2b:25:73:c8:86:1d:25:4d

Digest Algorithm

sha256

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

shell32

SHGetSpecialFolderPathW

ws2_32

send
WSAStartup
socket
WSAGetLastError
recv
connect
closesocket
shutdown
WSACleanup
ntohs
htonl
getsockname
bind
sendto
recvfrom
select
inet_addr
htons

user32

MessageBoxA

msvcp140

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAI@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
??Bios_base@std@@QEBA_NXZ
?fail@ios_base@std@@QEBA_NXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXH@Z
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?flags@ios_base@std@@QEBAHXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA_N_N@Z
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHXZ
?_Xlength_error@std@@YAXPEBD@Z
?good@ios_base@std@@QEBA_NXZ
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
?width@ios_base@std@@QEAA_J_J@Z
?width@ios_base@std@@QEBA_JXZ
?_Xout_of_range@std@@YAXPEBD@Z
?_Xinvalid_argument@std@@YAXPEBD@Z
?_Xbad_alloc@std@@YAXXZ
?rdstate@ios_base@std@@QEBAHXZ

kernel32

GetFileSize
ExpandEnvironmentStringsA
GetThreadLocale
GetConsoleOutputCP
GetACP
CreateFileW
GetFileType
GetNamedPipeInfo
FormatMessageA
DeleteFileW
SetLastError
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LocalAlloc
LocalFree
TryEnterCriticalSection
CreateDirectoryA
CreateFileA
SetFilePointerEx
GetTickCount
GetEnvironmentVariableA
SetEnvironmentVariableA
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
InitializeSListHead
DisableThreadLibraryCalls
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
Sleep
GetCurrentThreadId
SystemTimeToFileTime
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetModuleFileNameW
FreeLibrary
GetSystemTimeAsFileTime
CreateProcessW
GetTempPathA
GetPriorityClass
ResumeThread
SetThreadPriority
CreateThread
TerminateProcess
GetCurrentProcess
WaitForMultipleObjects
DeleteFileA
ReadFile
WriteFile
CloseHandle
DuplicateHandle
GetLastError
CreatePipe
SetEvent
ResetEvent
WaitForSingleObject
CreateEventA

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__current_exception_context
__current_exception
memchr
memmove
memset
strstr
_CxxThrowException
strrchr
strchr
__std_type_info_compare
__std_terminate
_purecall
__std_exception_destroy
__C_specific_handler
memcpy
__std_type_info_destroy_list
__std_exception_copy
memcmp

api-ms-win-crt-heap-l1-1-0

calloc
malloc
free
_callnewh
realloc

api-ms-win-crt-runtime-l1-1-0

_initterm
exit
strerror
_cexit
_errno
_initterm_e
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
terminate
_invalid_parameter_noinfo_noreturn
_getpid
_wassert
abort
_crt_at_quick_exit

api-ms-win-crt-stdio-l1-1-0

_dup
fwrite
_setmode
fflush
fread
__stdio_common_vsscanf
ftell
ferror
_isatty
__stdio_common_vfprintf
_open
fclose
__acrt_iob_func
fopen
_close
_fileno
_open_osfhandle
_write
_wopen
_read
fputc
_lseek
fseek
setvbuf
fputs
__stdio_common_vsprintf
_get_osfhandle

api-ms-win-crt-convert-l1-1-0

atoi
strtoul
strtol
strtoull

api-ms-win-crt-environment-l1-1-0

_putenv
getenv

api-ms-win-crt-string-l1-1-0

iscntrl
strpbrk
isprint
_strdup
strspn
isspace
strcspn
strncpy
strcmp
isdigit
isalpha
isalnum
strncmp
_stricmp

api-ms-win-crt-filesystem-l1-1-0

_stat64i32
_waccess
_access

api-ms-win-crt-time-l1-1-0

_time64
_localtime64

api-ms-win-crt-utility-l1-1-0

bsearch
qsort

advapi32

RegOpenKeyExA
GetUserNameW
CryptGenRandom
CryptReleaseContext
CryptAcquireContextA
RegQueryValueExA
RegCloseKey

Exports

Exports

??0Argument@Configuration@GpgME@@AEAA@AEBV?$shared_ptr@Ugpgme_conf_comp@@@std@@PEAUgpgme_conf_opt@@PEAUgpgme_conf_arg@@_N@Z
??0Argument@Configuration@GpgME@@QEAA@AEBV012@@Z
??0Argument@Configuration@GpgME@@QEAA@XZ
??0AssuanTransaction@GpgME@@QEAA@AEBV01@@Z
??0AssuanTransaction@GpgME@@QEAA@XZ
??0Component@Configuration@GpgME@@QEAA@AEBV012@@Z
??0Component@Configuration@GpgME@@QEAA@AEBV?$shared_ptr@Ugpgme_conf_comp@@@std@@@Z
??0Component@Configuration@GpgME@@QEAA@XZ
??0Context@GpgME@@AEAA@PEAUgpgme_context@@@Z
??0CreatedSignature@GpgME@@AEAA@AEBV?$shared_ptr@VPrivate@SigningResult@GpgME@@@std@@I@Z
??0CreatedSignature@GpgME@@QEAA@AEBV01@@Z
??0CreatedSignature@GpgME@@QEAA@XZ
??0Data@GpgME@@QEAA@AEBUNull@01@@Z
??0Data@GpgME@@QEAA@AEBV01@@Z
??0Data@GpgME@@QEAA@H@Z
??0Data@GpgME@@QEAA@PEAU_iobuf@@@Z
??0Data@GpgME@@QEAA@PEAU_iobuf@@J_K@Z
??0Data@GpgME@@QEAA@PEAUgpgme_data@@@Z
??0Data@GpgME@@QEAA@PEAVDataProvider@1@@Z
??0Data@GpgME@@QEAA@PEBD@Z
??0Data@GpgME@@QEAA@PEBDJ_K@Z
??0Data@GpgME@@QEAA@PEBD_K_N@Z
??0Data@GpgME@@QEAA@XZ
??0DataProvider@GpgME@@QEAA@AEBV01@@Z
??0DataProvider@GpgME@@QEAA@XZ
??0DecryptionResult@GpgME@@QEAA@AEBV01@@Z
??0DecryptionResult@GpgME@@QEAA@AEBVError@1@@Z
??0DecryptionResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@@Z
??0DecryptionResult@GpgME@@QEAA@PEAUgpgme_context@@H@Z
??0DecryptionResult@GpgME@@QEAA@XZ
??0DefaultAssuanTransaction@GpgME@@QEAA@AEBV01@@Z
??0DefaultAssuanTransaction@GpgME@@QEAA@XZ
??0EditInteractor@GpgME@@QEAA@XZ
??0EncryptionResult@GpgME@@QEAA@AEBV01@@Z
??0EncryptionResult@GpgME@@QEAA@AEBVError@1@@Z
??0EncryptionResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@@Z
??0EncryptionResult@GpgME@@QEAA@PEAUgpgme_context@@H@Z
??0EncryptionResult@GpgME@@QEAA@XZ
??0EngineInfo@GpgME@@QEAA@AEBV01@@Z
??0EngineInfo@GpgME@@QEAA@PEAU_gpgme_engine_info@@@Z
??0EngineInfo@GpgME@@QEAA@XZ
??0Error@GpgME@@QEAA@$$QEAV01@@Z
??0Error@GpgME@@QEAA@AEBV01@@Z
??0Error@GpgME@@QEAA@I@Z
??0Error@GpgME@@QEAA@XZ
??0EventLoopInteractor@GpgME@@IEAA@XZ
??0EventLoopInteractor@GpgME@@QEAA@AEBV01@@Z
??0Exception@GpgME@@QEAA@AEBV01@@Z
??0Exception@GpgME@@QEAA@AEBVError@1@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@W4Options@01@@Z
??0GpgAddExistingSubkeyEditInteractor@GpgME@@QEAA@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0GpgAddUserIDEditInteractor@GpgME@@QEAA@XZ
??0GpgAgentGetInfoAssuanTransaction@GpgME@@QEAA@AEBV01@@Z
??0GpgAgentGetInfoAssuanTransaction@GpgME@@QEAA@W4InfoItem@01@@Z
??0GpgGenCardKeyInteractor@GpgME@@QEAA@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0GpgRevokeKeyEditInteractor@GpgME@@QEAA@XZ
??0GpgSetExpiryTimeEditInteractor@GpgME@@QEAA@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
??0GpgSetOwnerTrustEditInteractor@GpgME@@QEAA@W4OwnerTrust@Key@1@@Z
??0GpgSignKeyEditInteractor@GpgME@@QEAA@XZ
??0Import@GpgME@@AEAA@AEBV?$shared_ptr@VPrivate@ImportResult@GpgME@@@std@@I@Z
??0Import@GpgME@@QEAA@AEBV01@@Z
??0Import@GpgME@@QEAA@XZ
??0ImportResult@GpgME@@QEAA@AEBV01@@Z
??0ImportResult@GpgME@@QEAA@AEBVError@1@@Z
??0ImportResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@@Z
??0ImportResult@GpgME@@QEAA@PEAUgpgme_context@@H@Z
??0ImportResult@GpgME@@QEAA@XZ
??0InvalidRecipient@GpgME@@AEAA@AEBV?$shared_ptr@VPrivate@EncryptionResult@GpgME@@@std@@I@Z
??0InvalidRecipient@GpgME@@QEAA@AEBV01@@Z
??0InvalidRecipient@GpgME@@QEAA@XZ
??0InvalidSigningKey@GpgME@@AEAA@AEBV?$shared_ptr@VPrivate@SigningResult@GpgME@@@std@@I@Z
??0InvalidSigningKey@GpgME@@QEAA@AEBV01@@Z
??0InvalidSigningKey@GpgME@@QEAA@XZ
??0Key@GpgME@@QEAA@AEBUNull@01@@Z
??0Key@GpgME@@QEAA@AEBV01@@Z
??0Key@GpgME@@QEAA@AEBV?$shared_ptr@U_gpgme_key@@@std@@@Z
??0Key@GpgME@@QEAA@PEAU_gpgme_key@@_N@Z
??0Key@GpgME@@QEAA@XZ
??0KeyGenerationResult@GpgME@@QEAA@AEBV01@@Z
??0KeyGenerationResult@GpgME@@QEAA@AEBVError@1@@Z
??0KeyGenerationResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@@Z
??0KeyGenerationResult@GpgME@@QEAA@PEAUgpgme_context@@H@Z
??0KeyGenerationResult@GpgME@@QEAA@XZ
??0KeyListModeSaver@Context@GpgME@@QEAA@PEAV12@@Z
??0KeyListResult@GpgME@@QEAA@AEBV01@@Z
??0KeyListResult@GpgME@@QEAA@AEBVError@1@@Z
??0KeyListResult@GpgME@@QEAA@AEBVError@1@AEBU_gpgme_op_keylist_result@@@Z
??0KeyListResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@@Z
??0KeyListResult@GpgME@@QEAA@PEAUgpgme_context@@H@Z
??0KeyListResult@GpgME@@QEAA@XZ
??0Notation@GpgME@@AEAA@AEBV?$shared_ptr@VPrivate@VerificationResult@GpgME@@@std@@II@Z
??0Notation@GpgME@@QEAA@AEBV01@@Z
??0Notation@GpgME@@QEAA@PEAU_gpgme_sig_notation@@@Z
??0Notation@GpgME@@QEAA@XZ
??0Option@Configuration@GpgME@@QEAA@AEBV012@@Z
??0Option@Configuration@GpgME@@QEAA@AEBV?$shared_ptr@Ugpgme_conf_comp@@@std@@PEAUgpgme_conf_opt@@@Z
??0Option@Configuration@GpgME@@QEAA@XZ
??0Recipient@DecryptionResult@GpgME@@QEAA@AEBV012@@Z
??0Recipient@DecryptionResult@GpgME@@QEAA@PEAU_gpgme_recipient@@@Z
??0Recipient@DecryptionResult@GpgME@@QEAA@XZ
??0Result@GpgME@@IEAA@AEBVError@1@@Z
??0Result@GpgME@@IEAA@H@Z
??0Result@GpgME@@IEAA@XZ
??0Result@GpgME@@QEAA@$$QEAV01@@Z
??0Result@GpgME@@QEAA@AEBV01@@Z
??0ScdGetInfoAssuanTransaction@GpgME@@QEAA@AEBV01@@Z
??0ScdGetInfoAssuanTransaction@GpgME@@QEAA@W4InfoItem@01@@Z
??0Signature@GpgME@@AEAA@AEBV?$shared_ptr@VPrivate@VerificationResult@GpgME@@@std@@I@Z
??0Signature@GpgME@@QEAA@AEBV01@@Z
??0Signature@GpgME@@QEAA@XZ
??0Signature@UserID@GpgME@@QEAA@AEBV012@@Z
??0Signature@UserID@GpgME@@QEAA@AEBV?$shared_ptr@U_gpgme_key@@@std@@PEAU_gpgme_user_id@@I@Z
??0Signature@UserID@GpgME@@QEAA@AEBV?$shared_ptr@U_gpgme_key@@@std@@PEAU_gpgme_user_id@@PEAU_gpgme_key_sig@@@Z
??0Signature@UserID@GpgME@@QEAA@XZ
??0SigningResult@GpgME@@QEAA@AEBV01@@Z
??0SigningResult@GpgME@@QEAA@AEBVError@1@@Z
??0SigningResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@@Z
??0SigningResult@GpgME@@QEAA@PEAUgpgme_context@@H@Z
??0SigningResult@GpgME@@QEAA@XZ
??0Subkey@GpgME@@QEAA@AEBV01@@Z
??0Subkey@GpgME@@QEAA@AEBV?$shared_ptr@U_gpgme_key@@@std@@I@Z
??0Subkey@GpgME@@QEAA@AEBV?$shared_ptr@U_gpgme_key@@@std@@PEAU_gpgme_subkey@@@Z
??0Subkey@GpgME@@QEAA@XZ
??0SwdbResult@GpgME@@QEAA@AEBV01@@Z
??0SwdbResult@GpgME@@QEAA@PEAU_gpgme_op_query_swdb_result@@@Z
??0SwdbResult@GpgME@@QEAA@XZ
??0TofuInfo@GpgME@@QEAA@AEBV01@@Z
??0TofuInfo@GpgME@@QEAA@PEAU_gpgme_tofu_info@@@Z
??0TofuInfo@GpgME@@QEAA@XZ
??0TrustItem@GpgME@@QEAA@AEBV01@@Z
??0TrustItem@GpgME@@QEAA@PEAU_gpgme_trust_item@@@Z
??0UserID@GpgME@@QEAA@AEBV01@@Z
??0UserID@GpgME@@QEAA@AEBV?$shared_ptr@U_gpgme_key@@@std@@I@Z
??0UserID@GpgME@@QEAA@AEBV?$shared_ptr@U_gpgme_key@@@std@@PEAU_gpgme_user_id@@@Z
??0UserID@GpgME@@QEAA@XZ
??0VerificationResult@GpgME@@QEAA@AEBV01@@Z
??0VerificationResult@GpgME@@QEAA@AEBVError@1@@Z
??0VerificationResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@@Z
??0VerificationResult@GpgME@@QEAA@PEAUgpgme_context@@H@Z
??0VerificationResult@GpgME@@QEAA@XZ
??0VfsMountResult@GpgME@@QEAA@AEBV01@@Z
??0VfsMountResult@GpgME@@QEAA@AEBVError@1@@Z
??0VfsMountResult@GpgME@@QEAA@PEAUgpgme_context@@AEBVError@1@1@Z
??0VfsMountResult@GpgME@@QEAA@XZ
??1Argument@Configuration@GpgME@@QEAA@XZ
??1AssuanTransaction@GpgME@@UEAA@XZ
??1Component@Configuration@GpgME@@QEAA@XZ
??1Context@GpgME@@UEAA@XZ
??1CreatedSignature@GpgME@@QEAA@XZ
??1Data@GpgME@@QEAA@XZ
??1DataProvider@GpgME@@UEAA@XZ
??1DecryptionResult@GpgME@@QEAA@XZ
??1DefaultAssuanTransaction@GpgME@@UEAA@XZ
??1EditInteractor@GpgME@@UEAA@XZ
??1EncryptionResult@GpgME@@QEAA@XZ
??1EngineInfo@GpgME@@QEAA@XZ
??1Error@GpgME@@QEAA@XZ
??1EventLoopInteractor@GpgME@@UEAA@XZ
??1Exception@GpgME@@UEAA@XZ
??1GpgAddExistingSubkeyEditInteractor@GpgME@@UEAA@XZ
??1GpgAddUserIDEditInteractor@GpgME@@UEAA@XZ
??1GpgAgentGetInfoAssuanTransaction@GpgME@@UEAA@XZ
??1GpgGenCardKeyInteractor@GpgME@@UEAA@XZ
??1GpgRevokeKeyEditInteractor@GpgME@@UEAA@XZ
??1GpgSetExpiryTimeEditInteractor@GpgME@@UEAA@XZ
??1GpgSetOwnerTrustEditInteractor@GpgME@@UEAA@XZ
??1GpgSignKeyEditInteractor@GpgME@@UEAA@XZ
??1Import@GpgME@@QEAA@XZ
??1ImportResult@GpgME@@QEAA@XZ
??1InvalidRecipient@GpgME@@QEAA@XZ
??1InvalidSigningKey@GpgME@@QEAA@XZ
??1Key@GpgME@@QEAA@XZ
??1KeyGenerationResult@GpgME@@QEAA@XZ
??1KeyListModeSaver@Context@GpgME@@QEAA@XZ
??1KeyListResult@GpgME@@QEAA@XZ
??1Notation@GpgME@@QEAA@XZ
??1Option@Configuration@GpgME@@QEAA@XZ
??1Recipient@DecryptionResult@GpgME@@QEAA@XZ
??1Result@GpgME@@QEAA@XZ
??1ScdGetInfoAssuanTransaction@GpgME@@UEAA@XZ
??1Signature@GpgME@@QEAA@XZ
??1Signature@UserID@GpgME@@QEAA@XZ
??1SigningResult@GpgME@@QEAA@XZ
??1Subkey@GpgME@@QEAA@XZ
??1SwdbResult@GpgME@@QEAA@XZ
??1TofuInfo@GpgME@@QEAA@XZ
??1TrustItem@GpgME@@UEAA@XZ
??1UserID@GpgME@@QEAA@XZ
??1VerificationResult@GpgME@@QEAA@XZ
??1VfsMountResult@GpgME@@QEAA@XZ
??4Argument@Configuration@GpgME@@QEAAAEBV012@AEBV012@@Z
??4AssuanTransaction@GpgME@@QEAAAEAV01@AEBV01@@Z
??4Component@Configuration@GpgME@@QEAAAEBV012@AEBV012@@Z
??4CreatedSignature@GpgME@@QEAAAEBV01@V01@@Z
??4Data@GpgME@@QEAAAEBV01@V01@@Z
??4DataProvider@GpgME@@QEAAAEAV01@AEBV01@@Z
??4DecryptionResult@GpgME@@QEAAAEBV01@V01@@Z
??4DefaultAssuanTransaction@GpgME@@QEAAAEAV01@AEBV01@@Z
??4EncryptionResult@GpgME@@QEAAAEBV01@V01@@Z
??4EngineInfo@GpgME@@QEAAAEBV01@V01@@Z
??4Error@GpgME@@QEAAAEAV01@$$QEAV01@@Z
??4Error@GpgME@@QEAAAEAV01@AEBV01@@Z
??4GpgAgentGetInfoAssuanTransaction@GpgME@@QEAAAEAV01@AEBV01@@Z
??4Import@GpgME@@QEAAAEBV01@V01@@Z
??4ImportResult@GpgME@@QEAAAEBV01@V01@@Z
??4InvalidRecipient@GpgME@@QEAAAEBV01@V01@@Z
??4InvalidSigningKey@GpgME@@QEAAAEBV01@V01@@Z
??4Key@GpgME@@QEAAAEBV01@V01@@Z
??4KeyGenerationResult@GpgME@@QEAAAEBV01@V01@@Z
??4KeyListModeSaver@Context@GpgME@@QEAAAEAV012@AEBV012@@Z
??4KeyListResult@GpgME@@QEAAAEBV01@V01@@Z
??4Notation@GpgME@@QEAAAEBV01@V01@@Z
??4Option@Configuration@GpgME@@QEAAAEBV012@AEBV012@@Z
??4Recipient@DecryptionResult@GpgME@@QEAAAEBV012@V012@@Z
??4Result@GpgME@@QEAAAEAV01@$$QEAV01@@Z
??4Result@GpgME@@QEAAAEAV01@AEBV01@@Z
??4ScdGetInfoAssuanTransaction@GpgME@@QEAAAEAV01@AEBV01@@Z
??4Signature@GpgME@@QEAAAEBV01@V01@@Z
??4Signature@UserID@GpgME@@QEAAAEBV012@V012@@Z
??4SigningResult@GpgME@@QEAAAEBV01@V01@@Z
??4Subkey@GpgME@@QEAAAEBV01@V01@@Z
??4SwdbResult@GpgME@@QEAAAEBV01@V01@@Z
??4TofuInfo@GpgME@@QEAAAEBV01@V01@@Z
??4TrustItem@GpgME@@QEAAAEBV01@V01@@Z
??4UserID@GpgME@@QEAAAEBV01@V01@@Z
??4VerificationResult@GpgME@@QEAAAEBV01@V01@@Z
??4VfsMountResult@GpgME@@QEAAAEBV01@V01@@Z
??6Configuration@GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV23@AEBVArgument@01@@Z
??6Configuration@GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV23@AEBVComponent@01@@Z
??6Configuration@GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV23@AEBVOption@01@@Z
??6Configuration@GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV23@W4Flag@01@@Z
??6Configuration@GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV23@W4Level@01@@Z
??6Configuration@GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV23@W4Type@01@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVCreatedSignature@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVDecryptionResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVEncryptionResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVError@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVImport@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVImportResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVInvalidRecipient@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVInvalidSigningKey@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVKey@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVNotation@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVRecipient@DecryptionResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVSignature@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVSigningResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVSubkey@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVSwdbResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVTofuInfo@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVUserID@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVVerificationResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@AEBVVfsMountResult@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4AuditLogFlags@Context@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4CertificateInclusion@Context@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4EncryptionFlags@Context@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4Engine@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4Flags@Notation@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4KeyListMode@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4PKAStatus@Signature@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4Protocol@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4SignatureMode@0@@Z
??6GpgME@@YAAEAV?$basic_ostream@DU?$char_traits@D@std@@@std@@AEAV12@W4Summary@Signature@0@@Z
??BArgument@Configuration@GpgME@@QEBAP8__safe_bool_dummy__@012@EAAXXZXZ
??BComponent@Configuration@GpgME@@QEBAP8__safe_bool_dummy__@012@EAAXXZXZ
??BError@GpgME@@QEBAP8__safe_bool_dummy__@01@EAAXXZXZ
??BOption@Configuration@GpgME@@QEBAP8__safe_bool_dummy__@012@EAAXXZXZ
??MSignature@UserID@GpgME@@QEAA_NAEBV012@@Z
??MSignature@UserID@GpgME@@QEBA_NAEBV012@@Z
??YKeyListResult@GpgME@@QEAAAEBV01@AEBV01@@Z
??_7AssuanTransaction@GpgME@@6B@
??_7Context@GpgME@@6B@
??_7DataProvider@GpgME@@6B@
??_7DefaultAssuanTransaction@GpgME@@6B@
??_7EditInteractor@GpgME@@6B@
??_7EventLoopInteractor@GpgME@@6B@
??_7Exception@GpgME@@6B@
??_7GpgAddExistingSubkeyEditInteractor@GpgME@@6B@
??_7GpgAddUserIDEditInteractor@GpgME@@6B@
??_7GpgAgentGetInfoAssuanTransaction@GpgME@@6B@
??_7GpgGenCardKeyInteractor@GpgME@@6B@
??_7GpgRevokeKeyEditInteractor@GpgME@@6B@
??_7GpgSetExpiryTimeEditInteractor@GpgME@@6B@
??_7GpgSetOwnerTrustEditInteractor@GpgME@@6B@
??_7GpgSignKeyEditInteractor@GpgME@@6B@
??_7ScdGetInfoAssuanTransaction@GpgME@@6B@
??_7TrustItem@GpgME@@6B@
??_FGpgSetExpiryTimeEditInteractor@GpgME@@QEAAXXZ
??_FTrustItem@GpgME@@QEAAXXZ
?actOn@EventLoopInteractor@GpgME@@IEAAXHW4Direction@12@@Z
?action@GpgAddExistingSubkeyEditInteractor@GpgME@@EEBAPEBDAEAVError@2@@Z
?action@GpgAddUserIDEditInteractor@GpgME@@EEBAPEBDAEAVError@2@@Z
?action@GpgGenCardKeyInteractor@GpgME@@EEBAPEBDAEAVError@2@@Z
?action@GpgRevokeKeyEditInteractor@GpgME@@EEBAPEBDAEAVError@2@@Z
?action@GpgSetExpiryTimeEditInteractor@GpgME@@EEBAPEBDAEAVError@2@@Z
?action@GpgSetOwnerTrustEditInteractor@GpgME@@EEBAPEBDAEAVError@2@@Z
?action@GpgSignKeyEditInteractor@GpgME@@EEBAPEBDAEAVError@2@@Z
?activeValue@Option@Configuration@GpgME@@QEBA?AVArgument@23@XZ
?addKeyListMode@Context@GpgME@@QEAAXI@Z
?addSignatureNotation@Context@GpgME@@QEAA?AVError@2@PEBD0I@Z
?addSignaturePolicyURL@Context@GpgME@@QEAA?AVError@2@PEBD_N@Z
?addSigningKey@Context@GpgME@@QEAA?AVError@2@AEBVKey@2@@Z
?addUid@Context@GpgME@@QEAA?AVError@2@AEBVKey@2@PEBD@Z
?addUid@Key@GpgME@@QEAA?AVError@2@PEBD@Z
?addrSpec@UserID@GpgME@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?addrSpecFromString@UserID@GpgME@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD@Z
?algoName@Subkey@GpgME@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?algorithm@Signature@UserID@GpgME@@QEBAIXZ
?algorithmAsString@Signature@UserID@GpgME@@QEBAPEBDXZ
?alternateType@Option@Configuration@GpgME@@QEBA?AW4Type@23@XZ
?applicationList@ScdGetInfoAssuanTransaction@GpgME@@QEBA?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
?argumentName@Option@Configuration@GpgME@@QEBAPEBDXZ
?armor@Context@GpgME@@QEBA_NXZ
?asString@Error@GpgME@@QEBAPEBDXZ
?assuanTransact@Context@GpgME@@QEAA?AVError@2@PEBD@Z
?assuanTransact@Context@GpgME@@QEAA?AVError@2@PEBDV?$unique_ptr@VAssuanTransaction@GpgME@@U?$default_delete@VAssuanTransaction@GpgME@@@std@@@std@@@Z
?backupFileName@GpgGenCardKeyInteractor@GpgME@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?boolValue@Argument@Configuration@GpgME@@QEBA_NXZ
?canAuthenticate@Key@GpgME@@QEBA_NXZ
?canAuthenticate@Subkey@GpgME@@QEBA_NXZ
?canCertify@Key@GpgME@@QEBA_NXZ
?canCertify@Subkey@GpgME@@QEBA_NXZ
?canEncrypt@Key@GpgME@@QEBA_NXZ
?canEncrypt@Subkey@GpgME@@QEBA_NXZ
?canReallySign@Key@GpgME@@QEBA_NXZ
?canSign@Key@GpgME@@QEBA_NXZ
?canSign@Subkey@GpgME@@QEBA_NXZ
?cancelPendingOperation@Context@GpgME@@QEAA?AVError@2@XZ
?cancelPendingOperationImmediately@Context@GpgME@@QEAA?AVError@2@XZ
?cardEdit@Context@GpgME@@QEAA?AVError@2@AEBVKey@2@V?$unique_ptr@VEditInteractor@GpgME@@U?$default_delete@VEditInteractor@GpgME@@@std@@@std@@AEAVData@2@@Z
?cardSerialNumber@Subkey@GpgME@@QEBAPEBDXZ
?certClass@Signature@UserID@GpgME@@QEBAIXZ
?chainID@Key@GpgME@@QEBAPEBDXZ
?checkEngine@GpgME@@YA?AVError@1@W4Engine@1@@Z
?checkEngine@GpgME@@YA?AVError@1@W4Protocol@1@@Z
?clearSignatureNotations@Context@GpgME@@QEAAXXZ
?clearSigningKeys@Context@GpgME@@QEAAXXZ
?code@Error@GpgME@@QEBAHXZ
?command@GpgAgentGetInfoAssuanTransaction@GpgME@@AEBAPEBDXZ
?command@ScdGetInfoAssuanTransaction@GpgME@@AEBAPEBDXZ
?comment@UserID@GpgME@@QEBAPEBDXZ
?commentUtf8@GpgAddUserIDEditInteractor@GpgME@@QEBAAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?create@Context@GpgME@@SA?AV?$unique_ptr@VContext@GpgME@@U?$default_delete@VContext@GpgME@@@std@@@std@@W4Protocol@2@@Z
?createForEngine@Context@GpgME@@SA?AV?$unique_ptr@VContext@GpgME@@U?$default_delete@VContext@GpgME@@@std@@@std@@W4Engine@2@PEAVError@2@@Z
?createForProtocol@Context@GpgME@@SAPEAV12@W4Protocol@2@@Z
?createIntArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@H@Z
?createIntListArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@AEBV?$vector@HV?$allocator@H@std@@@std@@@Z
?createKey@Context@GpgME@@QEAA?AVError@2@PEBD0KKAEBVKey@2@I@Z
?createKeyEx@Context@GpgME@@QEAA?AVKeyGenerationResult@2@PEBD0KKAEBVKey@2@I@Z
?createNoneArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@_N@Z
?createNoneListArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@I@Z
?createStringArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@Z
?createStringArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@PEBD@Z
?createStringListArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@AEBV?$vector@PEBDV?$allocator@PEBD@std@@@std@@@Z
?createStringListArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@AEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?createSubkey@Context@GpgME@@QEAA?AVError@2@AEBVKey@2@PEBDKKI@Z
?createUIntArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@I@Z
?createUIntListArgument@Option@Configuration@GpgME@@QEBA?AVArgument@23@AEBV?$vector@IV?$allocator@I@std@@@std@@@Z
?createVFS@Context@GpgME@@QEAA?AVError@2@PEBDAEBV?$vector@VKey@GpgME@@V?$allocator@VKey@GpgME@@@std@@@std@@@Z
?created@SwdbResult@GpgME@@QEBAKXZ
?createdSignature@SigningResult@GpgME@@QEBA?AVCreatedSignature@2@I@Z
?createdSignatures@SigningResult@GpgME@@QEBA?AV?$vector@VCreatedSignature@GpgME@@V?$allocator@VCreatedSignature@GpgME@@@std@@@std@@XZ
?creationTime@CreatedSignature@GpgME@@QEBA_JXZ
?creationTime@Signature@GpgME@@QEBA_JXZ
?creationTime@Signature@UserID@GpgME@@QEBA_JXZ
?creationTime@Subkey@GpgME@@QEBA_JXZ
?currentValue@Option@Configuration@GpgME@@QEBA?AVArgument@23@XZ
?data@DefaultAssuanTransaction@GpgME@@EEAA?AVError@2@PEBD_K@Z
?data@DefaultAssuanTransaction@GpgME@@QEBAAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?data@GpgAgentGetInfoAssuanTransaction@GpgME@@EEAA?AVError@2@PEBD_K@Z
?data@ScdGetInfoAssuanTransaction@GpgME@@EEAA?AVError@2@PEBD_K@Z
?decrypt@Context@GpgME@@QEAA?AVDecryptionResult@2@AEBVData@2@AEAV42@@Z
?decrypt@Context@GpgME@@QEAA?AVDecryptionResult@2@AEBVData@2@AEAV42@W4DecryptionFlags@12@@Z
?decryptAndVerify@Context@GpgME@@QEAA?AU?$pair@VDecryptionResult@GpgME@@VVerificationResult@2@@std@@AEBVData@2@AEAV52@@Z
?decryptAndVerify@Context@GpgME@@QEAA?AU?$pair@VDecryptionResult@GpgME@@VVerificationResult@2@@std@@AEBVData@2@AEAV52@W4DecryptionFlags@12@@Z
?decryptionResult@Context@GpgME@@QEBA?AVDecryptionResult@2@XZ
?defaultDescription@Option@Configuration@GpgME@@QEBAPEBDXZ
?defaultValue@Option@Configuration@GpgME@@QEBA?AVArgument@23@XZ
?deleteKey@Context@GpgME@@QEAA?AVError@2@AEBVKey@2@_N@Z
?description@Component@Configuration@GpgME@@QEBAPEBDXZ
?description@Option@Configuration@GpgME@@QEBAPEBDXZ
?description@TofuInfo@GpgME@@QEBAPEBDXZ
?detach@KeyListResult@GpgME@@AEAAXXZ
?dirInfo@GpgME@@YAPEBDPEBD@Z
?dirty@Option@Configuration@GpgME@@QEBA_NXZ
?edit@Context@GpgME@@QEAA?AVError@2@AEBVKey@2@V?$unique_ptr@VEditInteractor@GpgME@@U?$default_delete@VEditInteractor@GpgME@@@std@@@std@@AEAVData@2@@Z
?email@UserID@GpgME@@QEBAPEBDXZ
?emailUtf8@GpgAddUserIDEditInteractor@GpgME@@QEBAAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@XZ
?encodedError@Error@GpgME@@QEBAIXZ
?encoding@Data@GpgME@@QEBA?AW4Encoding@12@XZ
?encrCount@TofuInfo@GpgME@@QEBAGXZ
?encrFirst@TofuInfo@GpgME@@QEBAKXZ
?encrLast@TofuInfo@GpgME@@QEBAKXZ
?encrypt@Context@GpgME@@QEAA?AVEncryptionResult@2@AEBV?$vector@VKey@GpgME@@V?$allocator@VKey@GpgME@@@std@@@std@@AEBVData@2@AEAV62@W4EncryptionFlags@12@@Z
?encryptSymmetrically@Context@GpgME@@QEAA?AVError@2@AEBVData@2@AEAV42@@Z
?encryptionResult@Context@GpgME@@QEBA?AVEncryptionResult@2@XZ
?endKeyListing@Context@GpgME@@QEAA?AVKeyListResult@2@XZ
?endTrustItemListing@Context@GpgME@@QEAA?AVError@2@XZ
?engineInfo@Context@GpgME@@QEBA?AVEngineInfo@2@XZ
?engineInfo@GpgME@@YA?AVEngineInfo@1@W4Engine@1@@Z
?engineInfo@GpgME@@YA?AVEngineInfo@1@W4Protocol@1@@Z
?engineVersion@EngineInfo@GpgME@@QEBA?AUVersion@12@XZ
?error@Exception@GpgME@@QEBA?AVError@2@XZ
?error@Import@GpgME@@QEBA?AVError@2@XZ
?error@Result@GpgME@@QEBAAEBVError@2@XZ
?error@SwdbResult@GpgME@@QEBA_NXZ
?expirationTime@Signature@GpgME@@QEBA_JXZ
?expirationTime@Signature@UserID@GpgME@@QEBA_JXZ
?expirationTime@Subkey@GpgME@@QEBA_JXZ
?exportKeys@Context@GpgME@@QEAA?AVError@2@PEBDAEAVData@2@I@Z
?exportKeys@Context@GpgME@@QEAA?AVError@2@QEAPEBDAEAVData@2@I@Z
?exportPublicKeys@Context@GpgME@@QEAA?AVError@2@PEBDAEAVData@2@@Z
?exportPublicKeys@Context@GpgME@@QEAA?AVError@2@PEBDAEAVData@2@I@Z
?exportPublicKeys@Context@GpgME@@QEAA?AVError@2@QEAPEBDAEAVData@2@@Z
?exportPublicKeys@Context@GpgME@@QEAA?AVError@2@QEAPEBDAEAVData@2@I@Z
?exportSecretKeys@Context@GpgME@@QEAA?AVError@2@PEBDAEAVData@2@I@Z
?exportSecretKeys@Context@GpgME@@QEAA?AVError@2@QEAPEBDAEAVData@2@I@Z
?exportSecretSubkeys@Context@GpgME@@QEAA?AVError@2@PEBDAEAVData@2@I@Z
?exportSecretSubkeys@Context@GpgME@@QEAA?AVError@2@QEAPEBDAEAVData@2@I@Z
?fileName@Data@GpgME@@QEBAPEADXZ
?fileName@DecryptionResult@GpgME@@QEBAPEBDXZ
?fileName@EngineInfo@GpgME@@QEBAPEBDXZ
?fileName@VerificationResult@GpgME@@QEBAPEBDXZ
?fingerprint@CreatedSignature@GpgME@@QEBAPEBDXZ
?fingerprint@Import@GpgME@@QEBAPEBDXZ
?fingerprint@InvalidRecipient@GpgME@@QEBAPEBDXZ
?fingerprint@InvalidSigningKey@GpgME@@QEBAPEBDXZ
?fingerprint@KeyGenerationResult@GpgME@@QEBAPEBDXZ
?fingerprint@Signature@GpgME@@QEBAPEBDXZ
?fingerprint@Subkey@GpgME@@QEBAPEBDXZ
?firstStatusLine@DefaultAssuanTransaction@GpgME@@QEBA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PEBD@Z
?flags@Notation@GpgME@@QEBA?AW4Flags@12@XZ
?flags@Option@Configuration@GpgME@@QEBAIXZ
?fromCode@Error@GpgME@@SA?AV12@II@Z
?fromErrno@Error@GpgME@@SA?AV12@HI@Z
?fromSystemError@Error@GpgME@@SA?AV12@I@Z
?generateKey@Context@GpgME@@QEAA?AVKeyGenerationResult@2@PEBDAEAVData@2@@Z
?getAuditLog@Context@GpgME@@QEAA?AVError@2@AEAVData@2@I@Z
?getFlag@Context@GpgME@@QEBAPEBDPEBD@Z
?getGIOChannel@GpgME@@YAPEAU_GIOChannel@@H@Z
?getKeysFromRecipients@Context@GpgME@@AEAAPEAPEAU_gpgme_key@@AEBV?$vector@VKey@GpgME@@V?$allocator@VKey@GpgME@@@std@@@std@@@Z
?getQIODevice@GpgME@@YAPEAVQIODevice@@H@Z
?getSender@Context@GpgME@@QEAAPEBDXZ
?hasFeature@GpgME@@YA_NK@Z
?hasFeature@GpgME@@YA_NKK@Z
?hasSecret@Key@GpgME@@QEBA_NXZ
?hasSystemError@Error@GpgME@@SA_NXZ
?hashAlgorithm@CreatedSignature@GpgME@@QEBAIXZ
?hashAlgorithm@Signature@GpgME@@QEBAIXZ
?hashAlgorithmAsString@CreatedSignature@GpgME@@QEBAPEBDXZ
?hashAlgorithmAsString@Signature@GpgME@@QEBAPEBDXZ
?homeDirectory@EngineInfo@GpgME@@QEBAPEBDXZ
?id@UserID@GpgME@@QEBAPEBDXZ
?impl@Context@GpgME@@QEAAPEAVPrivate@12@XZ
?impl@Context@GpgME@@QEBAPEBVPrivate@12@XZ
?impl@Data@GpgME@@QEAAPEAVPrivate@12@XZ
?impl@Data@GpgME@@QEBAPEBVPrivate@12@XZ
?impl@Key@GpgME@@AEBAPEAU_gpgme_key@@XZ
?impl@TrustItem@GpgME@@AEBAPEAU_gpgme_trust_item@@XZ
?import@ImportResult@GpgME@@QEBA?AVImport@2@I@Z
?importKeys@Context@GpgME@@QEAA?AVImportResult@2@AEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?importKeys@Context@GpgME@@QEAA?AVImportResult@2@AEBV?$vector@VKey@GpgME@@V?$allocator@VKey@GpgME@@@std@@@std@@@Z
?importKeys@Context@GpgME@@QEAA?AVImportResult@2@AEBVData@2@@Z
?importResult@Context@GpgME@@QEBA?AVImportResult@2@XZ
?imports@ImportResult@GpgME@@QEBA?AV?$vector@VImport@GpgME@@V?$allocator@VImport@GpgME@@@std@@@std@@XZ
?includeCertificates@Context@GpgME@@QEBAHXZ
?init@DecryptionResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?init@EncryptionResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?init@ImportResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?init@KeyGenerationResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?init@KeyListResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?init@SigningResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?init@VerificationResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?init@VfsMountResult@GpgME@@AEAAXPEAUgpgme_context@@@Z
?initializeLibrary@GpgME@@YA?AVError@1@H@Z
?initializeLibrary@GpgME@@YAXXZ
?inquire@DefaultAssuanTransaction@GpgME@@EEAA?AVData@2@PEBD0AEAVError@2@@Z
?inquire@GpgAgentGetInfoAssuanTransaction@GpgME@@EEAA?AVData@2@PEBD0AEAVError@2@@Z
?inquire@ScdGetInfoAssuanTransaction@GpgME@@EEAA?AVData@2@PEBD0AEAVError@2@@Z
?installIOCallbacks@Context@GpgME@@AEAAXPEAUgpgme_io_cbs@@@Z
?installedVersion@SwdbResult@GpgME@@QEBA?AUVersion@EngineInfo@2@XZ
?instance@EventLoopInteractor@GpgME@@SAPEAV12@XZ
?intValue@Argument@Configuration@GpgME@@QEBAHI@Z
?intValues@Argument@Configuration@GpgME@@QEBA?AV?$vector@HV?$allocator@H@std@@@std@@XZ
?invalidEncryptionKey@EncryptionResult@GpgME@@QEBA?AVInvalidRecipient@2@I@Z
?invalidEncryptionKeys@EncryptionResult@GpgME@@QEBA?AV?$vector@VInvalidRecipient@GpgME@@V?$allocator@VInvalidRecipient@GpgME@@@std@@@std@@XZ
?invalidSigningKey@SigningResult@GpgME@@QEBA?AVInvalidSigningKey@2@I@Z
?invalidSigningKeys@SigningResult@GpgME@@QEBA?AV?$vector@VInvalidSigningKey@GpgME@@V?$allocator@VInvalidSigningKey@GpgME@@@std@@@std@@XZ
?isBad@Key@GpgME@@QEBA_NXZ
?isBad@Signature@UserID@GpgME@@QEBA_NXZ
?isBad@Subkey@GpgME@@QEBA_NXZ
?isBad@UserID@GpgME@@QEBA_NXZ
?isCanceled@Error@GpgME@@QEBA_NXZ
?isCardKey@Subkey@GpgME@@QEBA_NXZ
?isCritical@Notation@GpgME@@QEBA_NXZ
?isDeVs@DecryptionResult@GpgME@@QEBA_NXZ
?isDeVs@Key@GpgME@@QEBA_NXZ
?isDeVs@Signature@GpgME@@QEBA_NXZ
?isDeVs@Subkey@GpgME@@QEBA_NXZ
?isDisabled@Key@GpgME@@QEBA_NXZ
?isDisabled@Subkey@GpgME@@QEBA_NXZ
?isExpired@Key@GpgME@@QEBA_NXZ

Sections

.text
Size: 612KB - Virtual size: 612KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
d7611498ac3f820d16556e4743c1c2e028388d90608e610c1d06e838ff1114cf.unknown
.png
da37c1a83b8ccf9ca09c04b75406f57395928314594520fcc2696e493ab27db9.xlsx
.xlsx office2007
dc83396015773f0d7abb3f7e7653cf048d44d267dc1332ddef21bc1ab302b6f7.exe
.exe windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 608KB - Virtual size: 608KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
e262818591a54510401fead17928d0da8df02a29150ee319e86821a447505641.url
e579ef01ba2f52a618ab1448543ea8646ea710cf168c64aff70f68e1c89f6cad.exe
.exe windows:4 windows x86 arch:x86

b76363e9cb88bf9390860da8e50999d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
SetFileAttributesA
CompareFileTime
SearchPathA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
GetTempPathA
Sleep
lstrcmpiA
GetVersion
SetErrorMode
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
GetLastError
CreateDirectoryA
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrcatA
GetSystemDirectoryA
WaitForSingleObject
SetFileTime
CloseHandle
GlobalFree
lstrcmpA
ExpandEnvironmentStringsA
GetExitCodeProcess
GlobalAlloc
lstrlenA
GetCommandLineA
GetProcAddress
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
ReadFile
FindClose
GetPrivateProfileStringA
WritePrivateProfileStringA
WriteFile
MulDiv
MultiByteToWideChar
LoadLibraryExA
GetModuleHandleA
FreeLibrary

user32

SetCursor
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
EndDialog
ScreenToClient
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetForegroundWindow
GetWindowLongA
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
SetTimer
PostQuitMessage
SetWindowLongA
SendMessageTimeoutA
LoadImageA
wsprintfA
GetDlgItem
FindWindowExA
IsWindow
SetClipboardData
EmptyClipboard
OpenClipboard
EndPaint
CreateDialogParamA
DestroyWindow
ShowWindow
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHFileOperationA
ShellExecuteA

advapi32

RegDeleteValueA
SetFileSecurityA
RegOpenKeyExA
RegDeleteKeyA
RegEnumValueA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ord17

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
f6984e999b87eda435d684b71e81e6750dc885fd9ba3f59e1e20fefe8a55cae4.unknown
.png
proforma invoice.pdf
.pdf
- https://qu.ax/kVDT.zipAll

Sharing

General

Malware Config

Signatures

Files

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 313KB - Virtual size: 312KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 12B

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

File Characteristics

Imports

mscoree

Sections

.text Size: 478KB - Virtual size: 478KB

.rsrc Size: 77KB - Virtual size: 77KB

.reloc Size: 512B - Virtual size: 12B

e6a5883a44ec58ac0a9e938d3f0cc874

Code Sign

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39Certificate

Extended Key Usages

Key Usages

5f:fb:e1:bc:42:2d:8b:c2:da:b2:b3:79:d6:4b:ea:1dCertificate

Extended Key Usages

Key Usages

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30Certificate

Extended Key Usages

Key Usages

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87Certificate

Extended Key Usages

Key Usages

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27Certificate

Key Usages

ea:6f:6b:d8:7a:9c:4c:3a:a7:29:a6:b8:37:b5:d5:43:b2:f5:c6:05:1c:51:85:4b:2b:25:73:c8:86:1d:25:4dSigner

Headers

DLL Characteristics

File Characteristics

Imports

shell32

ws2_32

user32

msvcp140

kernel32

vcruntime140_1

vcruntime140

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-environment-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-utility-l1-1-0

advapi32

Exports

Exports

Sections

.text Size: 612KB - Virtual size: 612KB

.rdata Size: 206KB - Virtual size: 205KB

.data Size: 19KB - Virtual size: 50KB

.pdata Size: 44KB - Virtual size: 44KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

Headers

File Characteristics

Sections

CODE Size: 140KB - Virtual size: 140KB

DATA Size: 4KB - Virtual size: 4KB

BSS Size: 608KB - Virtual size: 608KB

.idata Size: 4KB - Virtual size: 4KB

.tls Size: 4KB - Virtual size: 4KB

.text
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 478KB - Virtual size: 478KB

.rsrc
Size: 77KB - Virtual size: 77KB

.reloc
Size: 512B - Virtual size: 12B

99:a3:80:0a:26:55:3b:65:ab:dc:6e:84:a6:b3:ea:39
Certificate

5f:fb:e1:bc:42:2d:8b:c2:da:b2:b3:79:d6:4b:ea:1d
Certificate

2b:d4:ae:70:b9:d0:63:5b:2a:e9:84:c8:d6:74:aa:30
Certificate

e7:ff:69:c7:3b:35:ce:4b:91:26:d8:74:7c:68:a5:87
Certificate

1b:b5:8f:25:2a:df:23:00:49:28:c9:ae:3d:7e:ed:27
Certificate

ea:6f:6b:d8:7a:9c:4c:3a:a7:29:a6:b8:37:b5:d5:43:b2:f5:c6:05:1c:51:85:4b:2b:25:73:c8:86:1d:25:4d
Signer

.text
Size: 612KB - Virtual size: 612KB

.rdata
Size: 206KB - Virtual size: 205KB

.data
Size: 19KB - Virtual size: 50KB

.pdata
Size: 44KB - Virtual size: 44KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB

CODE
Size: 140KB - Virtual size: 140KB

DATA
Size: 4KB - Virtual size: 4KB

BSS
Size: 608KB - Virtual size: 608KB

.idata
Size: 4KB - Virtual size: 4KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 24KB - Virtual size: 24KB

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 3.6MB

.ndata
Size: - Virtual size: 32KB

.rsrc
Size: 3KB - Virtual size: 3KB