57d932b2c5e912a4564f2a38b976e82d

Sharing

Copy URL Twitter E-mail

General

Target

57d932b2c5e912a4564f2a38b976e82d
Size

18.1MB
MD5

57d932b2c5e912a4564f2a38b976e82d
SHA1

93106c30ea22e19456c5d21582aa667b9b1d4f93
SHA256

3970ac6a2a274236ce6e807cfaee16a1b28e6d9e8fa209b169d58c732cb4025f
SHA512

1f46636270d0c73c5659595d6c6beec14befc05eeb4e37d19317104c52cfd60b8151d8dc08399becafda157a5fe5576bf4a21ad9e76a2a16aceb0388977e958f
SSDEEP

393216:yz55vNU3cpCKiMWbs6pi6F50M9IA7yWgZHOnpmGf8uraj5bN:E55vN5pGQ2F50MCAWWmHSp3TW9bN

Score

3^/10

Malware Config

Signatures

Unsigned PE 20 IoCs

Checks for missing Authenticode signature.

resource
unpack002/BJB-TXL.exe
unpack002/CMDLGCHS.DLL
unpack002/FLXGDCHS.DLL
unpack002/GAPI32.DLL
unpack002/MSCMCCHS.DLL
unpack002/MSJET35.DLL
unpack002/MSJINT35.DLL
unpack002/MSJTER35.DLL
unpack002/MSRD2X35.DLL
unpack002/MSREPL35.DLL
unpack002/MSVCRT40.DLL
unpack002/RCHTXCHS.DLL
unpack002/RICHED32.DLL
unpack002/SETUP1.EXE
unpack002/ST6UNST.EXE
unpack002/VB5DB.DLL
unpack002/VB6CHS.DLL
unpack002/VB6STKIT.DLL
unpack001/BJBTXL/BJB-TXL.exe
unpack001/BJBTXL/setup.exe

Files

57d932b2c5e912a4564f2a38b976e82d
.rar
BJBTXL/BJB-TXL.CAB
.cab
BJB-TXL.exe
.exe windows:4 windows x86 arch:x86

a0715e5ba415add7167d8b09208ecb1e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarTstGt
__vbaVarSub
__vbaStrI2
_CIcos
_adj_fptan
__vbaStrI4
__vbaVarMove
__vbaFreeVar
ord588
__vbaLenBstr
__vbaStrVarMove
__vbaLateIdCall
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
ord516
_adj_fprem1
ord518
__vbaVarCmpNe
__vbaStrCat
ord552
__vbaLsetFixstr
ord553
ord660
__vbaSetSystemError
__vbaHresultCheckObj
__vbaLenVar
_adj_fdiv_m32
__vbaVarTstLe
__vbaAryDestruct
__vbaVarCmpGe
__vbaVarForInit
__vbaExitProc
ord300
__vbaOnError
ord595
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
ord598
__vbaFpR4
ord306
ord520
__vbaBoolVar
__vbaFpR8
__vbaVarTstLt
__vbaBoolVarNull
_CIsin
__vbaVarCmpGt
ord632
__vbaChkstk
__vbaFileClose
EVENT_SINK_AddRef
__vbaGenerateBoundsError
ord528
ord529
__vbaStrCmp
__vbaVarTstEq
__vbaR4Str
__vbaI2I4
DllFunctionCall
__vbaVarOr
__vbaCastObjVar
__vbaStrR4
_adj_fpatan
__vbaR4Var
__vbaFixstrConstruct
__vbaLateIdCallLd
__vbaRedim
__vbaStrR8
EVENT_SINK_Release
__vbaUI1I2
_CIsqrt
__vbaVarAnd
EVENT_SINK_QueryInterface
__vbaVarMul
__vbaExceptHandler
__vbaStrToUnicode
__vbaPrintFile
_adj_fprem
_adj_fdivr_m64
__vbaI2Str
__vbaVarDiv
ord608
__vbaVarCmpLe
__vbaFPException
__vbaInStrVar
__vbaStrVarVal
__vbaVarCat
ord535
__vbaI2Var
_CIlog
__vbaErrorOverflow
__vbaFileOpen
__vbaInStr
__vbaNew2
__vbaR8Str
__vbaVarInt
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaI4Str
__vbaVarCmpLt
__vbaFreeStrList
_adj_fdivr_m32
__vbaPowerR8
_adj_fdiv_r
ord100
__vbaVarTstNe
__vbaI4Var
__vbaVarCmpEq
ord610
__vbaVarAdd
ord612
__vbaVarDup
__vbaStrToAnsi
__vbaFpI2
__vbaVarMod
__vbaVarTstGe
__vbaFpI4
__vbaVarCopy
ord617
_CIatan
__vbaCastObj
__vbaStrMove
__vbaR8IntI4
__vbaStrVarCopy
ord619
ord542
_allmul
__vbaLateIdSt
ord545
_CItan
ord546
__vbaVarForNext
_CIexp
__vbaFreeObj
__vbaFreeStr
ord581

Sections

.text
Size: 14.4MB - Virtual size: 14.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CMDLGCHS.DLL
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
COMDLG32.OCX
.dll regsvr32 windows:4 windows x86 arch:x86

988f29c1eb8054253091352741683c76

Code Sign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

HeapReAlloc
GetLastError
LockResource
GetWindowsDirectoryA
InterlockedDecrement
InterlockedIncrement
IsDBCSLeadByte
CompareStringA
CompareStringW
lstrcmpA
GetLocaleInfoA
GetVersion
GetModuleFileNameA
GetFileAttributesA
IsBadWritePtr
DisableThreadLibraryCalls
GlobalAlloc
lstrcmpiA
LoadLibraryA
GetProcAddress
lstrcatA
lstrlenA
lstrcpyA
WriteProfileStringA
GlobalLock
GlobalUnlock
LoadResource
FindResourceA
lstrcpynA
LeaveCriticalSection
DeleteCriticalSection
FreeLibrary
HeapFree
WideCharToMultiByte
lstrlenW
HeapAlloc
GetProfileStringA
EnterCriticalSection
GetProcessHeap
GetCurrentThreadId
MultiByteToWideChar
InitializeCriticalSection
GlobalFree

user32

SetWindowRgn
IntersectRect
EqualRect
PtInRect
IsDialogMessageA
IsChild
GetKeyState
CreateDialogIndirectParamA
MessageBeep
PostMessageA
ClientToScreen
wsprintfA
SendMessageTimeoutA
CharNextA
GetActiveWindow
GetWindowThreadProcessId
LoadCursorA
MessageBoxA
GetWindowLongA
GetWindowRect
CreateWindowExA
SetWindowLongA
ShowWindow
DialogBoxParamA
EnableWindow
GetDesktopWindow
GetWindow
IsWindowEnabled
OffsetRect
GetParent
GetDlgItem
SendMessageA
SetFocus
SetParent
SetDlgItemInt
EndPaint
SetActiveWindow
IsWindowVisible
WinHelpA
GetDlgItemInt
EndDialog
GetDlgItemTextA
DestroyWindow
SetDlgItemTextA
GetWindowTextA
GetNextDlgTabItem
SendDlgItemMessageA
RegisterClassA
GetDC
ReleaseDC
LoadIconA
DrawIcon
DestroyIcon
GetSystemMetrics
RegisterWindowMessageA
LoadStringA
DefWindowProcA
UnregisterClassA
GetClientRect
BeginPaint
RegisterClipboardFormatA
SetWindowPos
MoveWindow

ole32

CreateOleAdviseHolder
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
ReleaseStgMedium

advapi32

RegEnumKeyExA
RegQueryValueA
RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

oleaut32

LoadRegTypeLi
OleCreatePropertyFrame
SetErrorInfo
UnRegisterTypeLi
LoadTypeLi
LoadTypeLibEx
OleLoadPicture
VariantChangeType
RegisterTypeLi
VariantInit
GetErrorInfo
VariantClear
SysStringLen
SysAllocStringLen
OleTranslateColor
SysFreeString
SysAllocString
CreateErrorInfo

comdlg32

CommDlgExtendedError
PrintDlgA
ChooseFontA
ChooseColorA
GetOpenFileNameA
GetSaveFileNameA

gdi32

GetDIBits
CreateCompatibleDC
CreateBitmap
GetSystemPaletteEntries
StretchDIBits
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SetMapMode
LPtoDP
SetViewportExtEx
GetViewportExtEx
CreateRectRgnIndirect
GetWindowExtEx
CreateDCA
GetObjectA
EnumFontFamiliesA
DeleteDC
DeleteObject
GetDeviceCaps
SelectObject

Exports

Exports

DLLGetDocumentation
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DBGRID32.OCX
.dll regsvr32 windows:4 windows x86 arch:x86

6a64e5b2d788fc5ccfe5529f5f992734

Code Sign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

IsBadWritePtr
GetLastError
SetFilePointer
lstrlenA
MultiByteToWideChar
IsBadReadPtr
IsBadCodePtr
FlushFileBuffers
CloseHandle
EnterCriticalSection
GetModuleFileNameA
LoadLibraryA
GetLocaleInfoA
GetEnvironmentStringsW
SetUnhandledExceptionFilter
WriteFile
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetCPInfo
GetOEMCP
GetACP
GetFileType
GetStartupInfoA
GetStdHandle
HeapCreate
SetHandleCount
HeapDestroy
HeapSize
GetStringTypeW
GetStringTypeA
TerminateProcess
HeapReAlloc
GetCurrentProcess
GetModuleHandleA
ExitProcess
GetVersion
HeapAlloc
GetProcAddress
GetCommandLineA
GlobalAlloc
HeapFree
RtlUnwind
GlobalFree
GlobalLock
GlobalUnlock
FreeLibrary
MulDiv
DeleteCriticalSection
WideCharToMultiByte
GetPrivateProfileIntA
InitializeCriticalSection
LockResource
FindResourceA
LoadResource
GetWindowsDirectoryA
FreeResource
lstrcmpA
LCMapStringA
CompareStringA
LCMapStringW
SetStdHandle
lstrcpyA
GetFileAttributesA
ReadFile
SetEndOfFile
CreateFileA
GetLocaleInfoW
CompareStringW
LeaveCriticalSection
IsDBCSLeadByte
GetTickCount
SizeofResource
GetUserDefaultLCID
OutputDebugStringA

ole32

CreateDataAdviseHolder
CoCreateInstance
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleCreateDefaultHandler
StgCreateDocfileOnILockBytes
CoGetMalloc
StgCreateDocfile
CoTaskMemAlloc
StringFromIID
CreateOleAdviseHolder

oleaut32

VariantClear
VariantInit
SysStringByteLen
GetErrorInfo
OleCreatePropertyFrame
SysAllocStringByteLen
SafeArrayAccessData
SafeArrayUnaccessData
DispGetIDsOfNames
SafeArrayCreate
SysAllocString
VariantChangeType
SysStringLen
VariantCopyInd
SysFreeString
VariantCopy
OleTranslateColor
SafeArrayPutElement
SafeArrayGetLBound
LoadRegTypeLi
SafeArrayGetElement
SafeArrayGetUBound
SafeArrayGetDim
OleCreateFontIndirect
OleCreatePictureIndirect
SafeArrayDestroy

gdi32

CloseMetaFile
SetWindowOrgEx
SetMapMode
SetWindowExtEx
StretchBlt
SetViewportOrgEx
CreateMetaFileA
SetViewportExtEx
CreateCompatibleBitmap
GetStockObject
SaveDC
LPtoDP
RestoreDC
GetTextMetricsA
CreateFontIndirectA
GetTextExtentPointA
MoveToEx
IntersectClipRect
LineTo
GetViewportOrgEx
CreatePen
SetBkMode
CreateHatchBrush
SetROP2
Rectangle
PatBlt
GetROP2
GetDeviceCaps
CreateCompatibleDC
CreateDCA
SelectObject
DeleteDC
BitBlt
SetBkColor
CreateSolidBrush
GetObjectA
DeleteObject
GetBkMode
SetTextColor
GetTextFaceA
GetNearestColor
GetTextColor
GetBkColor
SetBrushOrgEx
CreateBitmapIndirect
GetTextExtentPoint32A
ExtTextOutA
UnrealizeObject

user32

ClientToScreen
AppendMenuA
CreatePopupMenu
SetWindowTextA
EnableWindow
InvalidateRect
SendDlgItemMessageA
RegisterClipboardFormatA
FrameRect
GetKeyState
GetFocus
SetFocus
CreateWindowExA
GetClassLongA
SetWindowLongA
GetSystemMetrics
SendMessageA
CallWindowProcA
PostMessageA
MessageBeep
MessageBoxA
PeekMessageA
DispatchMessageA
GetDC
ReleaseDC
SetDlgItemTextA
LoadBitmapA
GetDlgItem
GetWindowRect
ScreenToClient
EndDialog
DefWindowProcA
DialogBoxParamA
LoadStringA
wsprintfA
CharNextA
TrackPopupMenu
DestroyCursor
RegisterClassA
SetCursor
IsDlgButtonChecked
RegisterWindowMessageA
DestroyMenu
LoadCursorA
EnableMenuItem
wvsprintfA
IsClipboardFormatAvailable
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClipboardData
DestroyWindow
ShowWindow
MoveWindow
IsWindow
CopyRect
IntersectRect
SetScrollPos
SetWindowPos
GetWindowLongA
InflateRect
GetParent
GetClassInfoA
GetClassNameA
GetDialogBaseUnits
CreateDialogIndirectParamA
IsDialogMessageA
GetWindow
CheckDlgButton
GetWindowTextLengthA
ClipCursor
GetClipCursor
GetCursorPos
UnregisterClassA
GetSysColor
GetScrollRange
GetClientRect
PtInRect
GetScrollPos
ScrollWindowEx
SetScrollRange
FillRect
IsWindowVisible
EndPaint
BeginPaint
SetCapture
GetDesktopWindow
ShowCaret
DrawFocusRect
HideCaret
DrawTextA
IsRectEmpty
ShowScrollBar
GetUpdateRect
SubtractRect
SetCursorPos
ReleaseCapture

advapi32

RegOpenKeyA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyA
RegSetValueA
RegCloseKey

Exports

Exports

??0BufferComparator@@QAE@ABV0@@Z
??0BufferComparator@@QAE@XZ
??4BufferComparator@@QAEAAV0@ABV0@@Z
??_7BufferComparator@@6B@
?compareBuffers@BufferComparator@@UAEHPBXH0H@Z
DLLGetDocumentation
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
__preptrap@4
_ex_atraise@4
_ex_clear@0
_ex_code@0
_ex_disable@0
_ex_enable@4
_ex_message@0
_ex_mraise@8
_ex_msystem@4
_ex_name@4
_ex_prop@0
_ex_raise@4
_ex_system@0
_ex_trapf@12
_msgi_lookup@12

Sections

.text
Size: 356KB - Virtual size: 356KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FLXGDCHS.DLL
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GAPI32.DLL
.dll windows:4 windows x86 arch:x86

624c84a04948cdb010eaf9695c0efffd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

ole32

StgCreateDocfile

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

GlobalSize
GlobalFree
GlobalHandle
GlobalUnlock
GetACP
GetSystemDefaultLangID
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
GetCPInfo
EnterCriticalSection
GlobalLock
GlobalAlloc
GetWindowsDirectoryA
GetVersionExA
CreateMutexA
CloseHandle
ReleaseMutex
ExitThread
WaitForSingleObject
GetProcAddress
FreeLibrary
LoadLibraryA
MultiByteToWideChar
lstrcatA
lstrcmpA
LockResource
LoadResource
FindResourceA
lstrcpyA
CreateThread
GlobalReAlloc
lstrlenA

user32

SystemParametersInfoA
SendMessageA
RegisterClipboardFormatA
GetWindowLongA
GetKeyboardLayout
DefWindowProcA
ClientToScreen
MessageBoxA
PeekMessageA
PostMessageA
ReleaseDC
GetDC
EnableMenuItem
CreatePopupMenu
LoadStringA
AppendMenuA
DestroyMenu

gdi32

GetObjectA
DeleteObject
GetStockObject
GetDeviceCaps
EnumFontFamiliesA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

Exports

Exports

??0CHAROP@@QAE@XZ
??0CONV@@QAE@XZ
??0IME@@QAE@PAXP6GH0IIJQAUCOMPOSITIONtag@@0@ZK@Z
??0LANG@@QAE@GG@Z
??0LANG@@QAE@XZ
??0PUNCT@@QAE@XZ
??1CHAROP@@QAE@XZ
??1CONV@@QAE@XZ
??1IME@@QAE@XZ
??1LANG@@QAE@XZ
??1PUNCT@@QAE@XZ
??2CHAROP@@SGPAXI@Z
??2CONV@@SGPAXI@Z
??2IME@@SGPAXI@Z
??2LANG@@SGPAXI@Z
??2PUNCT@@SGPAXI@Z
??3CHAROP@@SGXPAX@Z
??3CONV@@SGXPAX@Z
??3IME@@SGXPAX@Z
??3LANG@@SGXPAX@Z
??3PUNCT@@SGXPAX@Z
?CbSzLen@CHAROP@@QAGKPBD@Z
?CchSzLen@CHAROP@@QAGKPBD@Z
?FAddPunct@PUNCT@@QAGHFPBD@Z
?FAlign@CHAROP@@QAGHPBD0@Z
?FAssociate@IME@@QAGHPAX@Z
?FCheck@LANG@@QAGHGPBD@Z
?FFlushComposition@IME@@QAGHH@Z
?FFree@IME@@QAGHXZ
?FGetActiveStatus@IME@@QAGHXZ
?FGetConversionStatus@IME@@QAGHPAK0@Z
?FGetLangInfo@LANG@@QAGHGPAX@Z
?FGetLangInfo@LANG@@QAGHPAULANGINFOtag@@@Z
?FGetOpenStatus@IME@@QAGHXZ
?FGetOpenStatusWindow@IME@@QAGHXZ
?FInitPunct@PUNCT@@QAGHFPBD@Z
?FLeadByte@CHAROP@@QAGHD@Z
?FLeadByte@CHAROP@@QAGHPBD@Z
?FMessage@IME@@QAGJIIJPAX@Z
?FPunct@PUNCT@@QAGHFPBD@Z
?FRegDecodeProc@CONV@@QAGHGP6GHPBDK@ZP6GK00PAKPADK2@Z0@Z
?FRegDecodeProc@CONV@@QAGHGPBDP6GK00PAKPADK1@Z0@Z
?FRegDecodeProcEx@CONV@@QAGHGPBDP6GH0K@ZP6GK00PAKPADK2@Z0@Z
?FRegEncodeProc@CONV@@QAGHGPAGP6GKPBDPAKPADK2@Z1@Z
?FRemoveDecodeProc@CONV@@QAGHP6GKPBD0PAKPADK1@Z@Z
?FRemoveEncodeProc@CONV@@QAGHP6GKPBDPAKPADK1@Z@Z
?FRemovePunct@PUNCT@@QAGHFPBD@Z
?FSetActiveStatus@IME@@QAGHH@Z
?FSetComposition@IME@@QAGHKPBXK0K@Z
?FSetConversionStatus@IME@@QAGHKK@Z
?FSetFont@IME@@QAGHPAUtagLOGFONTA@@@Z
?FSetFont@IME@@QAGHPAX@Z
?FSetLangInfo@LANG@@QAGHGPAX@Z
?FSetOpenStatus@IME@@QAGHH@Z
?FSetOpenStatusWindow@IME@@QAGHH@Z
?FSetWndProc@IME@@QAGHP6GHPAXIIJQAUCOMPOSITIONtag@@0@Z@Z
?FSetWordBreakProc@PUNCT@@QAGHP6GHXZ@Z
?FValidString@CHAROP@@QAGHPBD@Z
?FWordRegister@IME@@QAGHPBD0@Z
?GetLastError@CONV@@QAGKXZ
?IWordBreakProc@PUNCT@@QAGHPBDHHH@Z
?LpGetComposition@IME@@QAGPAUCOMPOSITIONtag@@XZ
?LpGetCriticalSection@IME@@QAGPAU_RTL_CRITICAL_SECTION@@XZ
?LpGetWndProc@IME@@QAGP6GHPAXIIJQAUCOMPOSITIONtag@@0@ZXZ
?LpGetWordBreakProc@PUNCT@@QAGP6GHXZXZ
?NCheckMessage@IME@@QAGHIIJ@Z
?NGetDecodeProcList@CONV@@QAGHPAUDEODEPROCLISTtag@@H@Z
?NGetDecodeProcNum@CONV@@QAGHXZ
?NGetEncodeProcList@CONV@@QAGHPAUENCODEPROCLISTtag@@H@Z
?NGetEncodeProcNum@CONV@@QAGHXZ
?ResetDecodingStatus@CONV@@QAGXXZ
?ResetEncodingStatus@CONV@@QAGXXZ
?SetCandidatePos@IME@@QAGXUtagPOINT@@PAUtagRECT@@1PAUtagSIZE@@@Z
?SzAlign@CHAROP@@QAGPADPBD0@Z
?SzCombine@CHAROP@@QAGPADPADG@Z
?SzCombine@CHAROP@@QAGPADPADPBD@Z
?SzConvToDBCS@CHAROP@@QAGPADPADPBD@Z
?SzConvToSBCS@CHAROP@@QAGPADPADPBD@Z
?SzCopy@CHAROP@@QAGPADPADG@Z
?SzCopy@CHAROP@@QAGPADPADPBD@Z
?SzDecode@CONV@@QAGPADPADKPBDPAK2@Z
?SzEncode@CONV@@QAGPADPADKPBDPAK2@Z
?SzFind@CHAROP@@QAGPADPBD0@Z
?SzFind@CHAROP@@QAGPADPBDG@Z
?SzFindBack@CHAROP@@QAGPADPBD00@Z
?SzFindBack@CHAROP@@QAGPADPBD0G@Z
?SzLower@CHAROP@@QAGPADPADPBD@Z
?SzNext@CHAROP@@QAGPADPBD@Z
?SzPrev@CHAROP@@QAGPADPBD0@Z
?SzUpper@CHAROP@@QAGPADPADPBD@Z
?UlCharType@CHAROP@@QAGKPBD@Z
?UlGetComposition@IME@@QAGKGPAXK@Z
?UlGetLang@LANG@@QAGKXZ
?UlGetMask@PUNCT@@QAGKH@Z
?UlGetMode@IME@@QAGKXZ
?UlSetLang@LANG@@QAGKGG@Z
?UlSetMask@PUNCT@@QAGKHK@Z
?UlSetMode@IME@@QAGKK@Z
?UsCharSize@CHAROP@@QAGGPBD@Z
?UsDecChar@CHAROP@@QAGGG@Z
?UsGetBreakOption@PUNCT@@QAGGXZ
?UsGetPunct@PUNCT@@QAGGFPADG@Z
?UsIncChar@CHAROP@@QAGGG@Z
?UsPunct@PUNCT@@QAGGPBD@Z
?UsSetBreakOption@PUNCT@@QAGGG@Z
CbGSzLen@4
CbVSzLen@8
CchGSzLen@4
CchVSzLen@8
EntryFunc@12
FDeinitIME@4
FEucCodeE@8
FEucCodeS@8
FFlushIMEComposition@8
FGAddPunct@8
FGAlign@8
FGCheckLang@8
FGGetDefFont@8
FGGetLangInfo@8
FGGetLangInfos@4
FGInitPunct@8
FGLeadByte@4
FGLeadBytep@4
FGPunct@8
FGRemovePunct@8
FGSetLangInfo@8
FGSetWordBreakProc@4
FGSyncSys@0
FGValidString@4
FGetActiveIMEStatus@4
FGetConversionStatus@12
FGetOpenIMEStatus@4
FGetOpenIMEStatusWindow@4
FIMEMessage@20
FIMEWordRegister@12
FInitIME@12
FRedefCommand@8
FRegisterHelpID@12
FSJISCode@8
FSetActiveIMEStatus@8
FSetConversionStatus@12
FSetIMEFont@8
FSetIMEFontH@8
FSetIMEWndProc@8
FSetOpenIMEStatus@8
FSetOpenIMEStatusWindow@8
FTerminatorCode@8
FVAddPunct@12
FVAlign@12
FVCheckLang@12
FVFreeCharObject@4
FVFreeConvObject@4
FVFreeLangObject@4
FVFreePunctObject@4
FVGetLangInfo@12
FVGetLangInfos@8
FVInitPunct@12
FVLeadByte@8
FVLeadBytep@8
FVPunct@12
FVRegDecodeProc@20
FVRegDecodeProcEx@20
FVRegEncodeProc@20
FVRemoveDecodeProc@8
FVRemoveEncodeProc@8
FVRemovePunct@12
FVSetLangInfo@12
FVSetWordBreakProc@8
FVValidString@8
FValidateLogfont@12
FreeAllIMEObject@0
HConvDlg@8
HConvDlgTemplate@4
HFreeDlg@4
HFreeDlgTemplate@4
IGetValidFontSize@8
IVWordBreakProc@20
IWordBreakProc@16
LpConvDlgTemplate@4
LpConvLockDlg@8
LpConvPropSheet@4
LpFreeDlg@4
LpFreeDlgTemplate@4
LpFreePropSheet@4
LpGetIMEComposition@4
LpGetIMECriticalSection@4
LpGetIMEWndProc@4
LpVCreateCharObject@0
LpVCreateConvObject@0
LpVCreateLangObject@0
LpVCreatePunctObject@0
LpVGetWordBreakProc@4
NCheckIMEMessage@16
NDetectCodeFromESC@4
NDetectCodeFromSz@4
NGetFontInfo@12
NGetIMEType@0
NVGetDecodeProcList@12
NVGetDecodeProcNum@4
NVGetEncodeProcList@12
NVGetEncodeProcNum@4
REDEFCALL_New@20
REDEFCALL_Release@4
RedefOnCommand@8
SetIMECandidatePos@24
SzGAlign@8
SzGCombine@8
SzGCombineCh@8
SzGConvToDBCS@8
SzGConvToSBCS@8
SzGCopy@8
SzGCopyCh@8
SzGFind@8
SzGFindBack@12
SzGFindBackCh@12
SzGFindCh@8
SzGLower@8
SzGNext@4
SzGPrev@8
SzGUpper@8
SzVAlign@12
SzVCombine@12
SzVCombineCh@12
SzVConvToDBCS@12
SzVConvToSBCS@12
SzVCopy@12
SzVCopyCh@12
SzVDecode@24
SzVEncode@24
SzVFind@12
SzVFindBack@16
SzVFindBackCh@16
SzVFindCh@12
SzVLower@12
SzVNext@8
SzVPrev@12
SzVUpper@12
UlDecodeEUC_JIS@24
UlDecodeGB2312_1980@24
UlDecodeISO8859_1@24
UlDecodeISO8859_7@24
UlDecodeJISX0201_1976@24
UlDecodeJISX0208_1978@24
UlDecodeJISX0208_1983@24
UlDecodeJISX0208_NEC@24
UlDecodeJISX0212_1990@24
UlDecodeKSC5601_1987@24
UlDecodeTerminator@24
UlEncodeEUC_JIS@20
UlEncodeGB2312_1980@20
UlEncodeISO8859_1@20
UlEncodeISO8859_7@20
UlEncodeJISX0201K_1976@20
UlEncodeJISX0201R_1976@20
UlEncodeJISX0201_1976@20
UlEncodeJISX0208S_1978@20
UlEncodeJISX0208S_1983@20
UlEncodeJISX0208S_NEC@20
UlEncodeJISX0208_1978@20
UlEncodeJISX0208_1983@20
UlEncodeJISX0208_NEC@20
UlEncodeJISX0212S_1990@20
UlEncodeJISX0212_1990@20
UlEncodeKSC5601_1987@20
UlEncodeTerminator@20
UlGCharType@4
UlGGetLang@0
UlGGetPunctMask@4
UlGSetLang@8
UlGSetPunctMask@8
UlGetIMEComposition@16
UlGetIMEMode@4
UlSetIMEMode@8
UlVCharType@8
UlVGetLang@4
UlVGetPunctMask@8
UlVSetLang@12
UlVSetPunctMask@12
UsGCharSize@4
UsGDecChar@4
UsGGetBreakOption@0
UsGGetPunct@12
UsGIncChar@4
UsGPunct@4
UsGSetBreakOption@4
UsVCharSize@8
UsVDecChar@8
UsVGetBreakOption@4
UsVGetPunct@16
UsVIncChar@8
UsVPunct@8
UsVSetBreakOption@8
VGetLastError@4
VResetDecodingStatus@4
VResetEncodingStatus@4

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
JieR1.lib
MMSZ.lib
MSCMCCHS.DLL
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSCOMCTL.OCX
.dll regsvr32 windows:4 windows x86 arch:x86

2b2ee4e06ab7ae589a670cad99121b44

Code Sign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

CreateThread
LocalReAlloc
GetProfileIntA
RtlMoveMemory
LocalSize
FreeResource
GetCurrentProcessId
MulDiv
GetTickCount
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
GlobalReAlloc
IsBadReadPtr
Sleep
WaitForSingleObject
GlobalHandle
GetThreadLocale
LocalFree
LocalAlloc
GlobalAddAtomA
SetFilePointer
SetStdHandle
FlushFileBuffers
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentProcess
TerminateProcess
ExitProcess
RtlUnwind
GetCommandLineA
CompareStringW
GlobalSize
CreateFileA
GetFileSize
GlobalUnlock
GlobalLock
ReadFile
CloseHandle
GlobalFree
IsDBCSLeadByte
GetModuleHandleA
FindResourceA
LoadResource
LockResource
GetLastError
GetFileAttributesA
GetVersion
DisableThreadLibraryCalls
GetProcAddress
GetLocaleInfoA
LoadLibraryA
GetWindowsDirectoryA
lstrcatA
GetModuleFileNameA
IsBadWritePtr
lstrcmpiA
GetLocalTime
GetTimeFormatA
GetDateFormatA
lstrcmpA
GlobalAlloc
GetVersionExA
GetCurrentThreadId
MultiByteToWideChar
CompareStringA
lstrcpyA
InterlockedExchange
lstrlenA
GetSystemDefaultLCID
lstrcpynA
HeapAlloc
DeleteCriticalSection
FreeLibrary
HeapFree
WideCharToMultiByte
lstrlenW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
InterlockedIncrement
InterlockedDecrement
HeapReAlloc

user32

DrawFocusRect
AdjustWindowRect
DrawFrameControl
TrackPopupMenu
GetMessageA
AdjustWindowRectEx
CopyRect
GetKeyNameTextA
ShowCaret
SetCaretPos
GrayStringA
HideCaret
DestroyCaret
CreateCaret
SetWindowTextA
SetScrollInfo
DrawTextExA
InvertRect
SetRectEmpty
GetShellWindow
SetKeyboardState
GetKeyboardState
GetScrollInfo
GetKeyboardLayout
DestroyCursor
GetUpdateRgn
GetUpdateRect
GetWindowRgn
ValidateRect
CallMsgFilterA
LockWindowUpdate
IsZoomed
GetDesktopWindow
GetIconInfo
GetCursor
GetForegroundWindow
InvalidateRgn
EndDeferWindowPos
EnumChildWindows
GetDoubleClickTime
FindWindowA
GetMessageTime
GetWindowThreadProcessId
RemovePropA
SendNotifyMessageA
SetScrollPos
SetScrollRange
GetWindowTextLengthA
EnableScrollBar
ChildWindowFromPoint
GetDlgItemInt
EndDialog
GetActiveWindow
GetWindow
GetPropA
GetCursorPos
WindowFromPoint
GetClassNameA
GetDlgCtrlID
IsWindow
SetPropA
IsWindowEnabled
IsWindowVisible
UnregisterClassA
CharNextA
MessageBoxA
SetActiveWindow
CheckRadioButton
SetFocus
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
CheckDlgButton
GetDlgItem
GetDCEx
DrawIconEx
CreateIconIndirect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetClipboardFormatNameA
SetCursorPos
RegisterClipboardFormatA
MessageBeep
RegisterWindowMessageA
PeekMessageA
PostMessageW
PeekMessageW
VkKeyScanA
SetParent
CharUpperA
GetDlgItemTextA
SetCursor
CreateDialogIndirectParamA
GetNextDlgTabItem
IsDialogMessageA
ScrollWindowEx
SendDlgItemMessageA
SetWindowRgn
IntersectRect
EqualRect
MoveWindow
BeginPaint
EndPaint
DeferWindowPos
BeginDeferWindowPos
CharNextExA
SetTimer
KillTimer
DrawIcon
DestroyIcon
MapWindowPoints
CreatePopupMenu
AppendMenuA
TrackPopupMenuEx
DestroyMenu
WinHelpA
PtInRect
DefWindowProcA
GetWindowDC
SetRect
LoadCursorA
IsRectEmpty
ClientToScreen
GetWindowRect
MapVirtualKeyA
DestroyWindow
CreateWindowExA
GetSysColorBrush
GetAsyncKeyState
EnableWindow
PostMessageA
TranslateMessage
DispatchMessageA
wsprintfA
DialogBoxParamA
UpdateWindow
GetWindowLongA
SetWindowLongA
GetDC
ReleaseDC
GetParent
OffsetRect
UnionRect
GetFocus
IsChild
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetMessagePos
ScreenToClient
SetWindowPos
SetCapture
GetWindowTextA
WindowFromDC
GetClientRect
CallWindowProcA
DrawEdge
GetSysColor
FrameRect
InflateRect
FillRect
DrawTextA
GetKeyState
GetCapture
ReleaseCapture
GetClassInfoA
RegisterClassA
InvalidateRect
LoadIconA
GetSystemMetrics
CopyImage
SendMessageA
LoadStringA
RedrawWindow
ShowWindow
CreateAcceleratorTableA

ole32

ReleaseStgMedium
DoDragDrop
RegisterDragDrop
RevokeDragDrop
CreateStreamOnHGlobal
OleLoadFromStream
OleSaveToStream
CreateOleAdviseHolder
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance

advapi32

RegDeleteKeyA
RegOpenKeyA
RegQueryValueA
RegQueryValueExA
RegEnumKeyExA
RegCreateKeyA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA

oleaut32

SafeArrayRedim
SafeArrayPutElement
SafeArrayGetElement
SafeArrayCreate
SafeArrayDestroy
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
GetErrorInfo
OleCreateFontIndirect
OleCreatePropertyFrame
LoadTypeLibEx
UnRegisterTypeLi
RegisterTypeLi
CreateErrorInfo
SetErrorInfo
LoadRegTypeLi
LoadTypeLi
VariantChangeTypeEx
SysStringByteLen
SysAllocStringByteLen
OleLoadPicture
SysAllocStringLen
VariantCopy
OleTranslateColor
VariantChangeType
OleCreatePictureIndirect
VariantCopyInd
SysStringLen
SysFreeString
VariantInit
VariantClear
SysAllocString
SafeArrayCopy

comdlg32

GetOpenFileNameA

gdi32

Arc
GetTextExtentPointA
GetCharWidthA
OffsetWindowOrgEx
ExtTextOutW
GetTextExtentPointW
Polyline
GetTextAlign
SetTextAlign
OffsetRgn
GetTextColor
CombineRgn
GetTextMetricsA
MoveToEx
LineTo
Ellipse
DeleteObject
SelectObject
CreateSolidBrush
SetViewportOrgEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
SetMapMode
GetDeviceCaps
CreateFontIndirectA
GetObjectA
SelectClipRgn
ExcludeClipRect
RectVisible
GetClipBox
IntersectClipRect
GetClipRgn
CreateRectRgnIndirect
RealizePalette
SelectPalette
PatBlt
CreateCompatibleBitmap
CreateBitmap
CreateCompatibleDC
GetTextExtentPoint32A
TextOutA
SetTextColor
SetBkMode
Rectangle
CreatePen
SetBkColor
GetStockObject
GetViewportExtEx
GetWindowExtEx
LPtoDP
DeleteDC
CreateDCA
CreateRectRgn
StretchBlt
CreateICA
CopyMetaFileA
CopyEnhMetaFileA
GetPaletteEntries
GetDIBits
CreateDIBitmap
GetBitmapBits
CreatePalette
GetNearestColor
CreatePatternBrush
CreateDIBSection
CreateHalftonePalette
BitBlt
SetDIBColorTable
GetDIBColorTable
GetPixel
StretchDIBits
SetBrushOrgEx
GetBkColor
ExtTextOutA
RestoreDC
SaveDC
CreateFontA

Exports

Exports

DLLGetDocumentation
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 685KB - Virtual size: 684KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 279KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSFLXGRD.OCX
.dll regsvr32 windows:4 windows x86 arch:x86

e87e749ebc55d5130c2bb4db48b707d0

Code Sign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

VirtualAlloc
GetStringTypeA
GetStringTypeW
GlobalFree
LCMapStringA
LCMapStringW
GlobalLock
GlobalSize
GetVersionExA
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCurrentProcess
TerminateProcess
ExitProcess
GetCommandLineA
GetFileAttributesA
GetVersion
DisableThreadLibraryCalls
FindResourceA
LoadResource
LockResource
GetLastError
GetProcAddress
GetLocaleInfoA
LoadLibraryA
GetWindowsDirectoryA
HeapReAlloc
GetModuleFileNameA
InterlockedDecrement
MultiByteToWideChar
GetProfileStringA
FreeLibrary
DeleteCriticalSection
InitializeCriticalSection
lstrcmpiA
lstrcpynA
InterlockedIncrement
GlobalUnlock
GlobalAlloc
lstrcmpA
HeapAlloc
lstrcatA
HeapFree
WideCharToMultiByte
lstrlenW
lstrcpyA
lstrlenA
MulDiv
GetProcessHeap
LeaveCriticalSection
EnterCriticalSection
lstrcpyW
IsDBCSLeadByte
InterlockedExchange

user32

SendMessageA
GetDlgItemInt
RegisterWindowMessageA
PeekMessageA
IsDlgButtonChecked
DrawTextExA
GetFocus
GetSysColor
GetSystemMetrics
PostMessageW
PostMessageA
SetWindowLongA
CheckDlgButton
LoadStringA
SendDlgItemMessageA
InvalidateRect
GetActiveWindow
DialogBoxParamA
EndDialog
GetDlgItemTextA
GetWindowRect
MoveWindow
SetDlgItemTextA
PeekMessageW
GetClipboardFormatNameA
MapWindowPoints
SetCursorPos
RegisterClipboardFormatA
UnregisterClassA
CreateDialogIndirectParamA
IsChild
IsWindowEnabled
GetNextDlgTabItem
IsDialogMessageA
WinHelpA
ShowWindow
SetWindowRgn
IntersectRect
EqualRect
GetParent
ClientToScreen
GetWindow
BeginPaint
GetDlgItem
wsprintfA
DestroyWindow
CreateWindowExA
FillRect
GetWindowLongA
SetFocus
DrawTextA
SetDlgItemInt
SetWindowPos
ReleaseCapture
KillTimer
DrawFocusRect
SetTimer
SetCapture
SetCursor
GetKeyState
DefWindowProcA
EnableWindow
GetCursorPos
ScreenToClient
PtInRect
DrawEdge
FrameRect
InflateRect
LoadCursorA
RegisterClassA
GetDC
ReleaseDC
CharNextA
SetRect
UpdateWindow
IsWindow
GetScrollRange
ScrollWindow
OffsetRect
SetScrollRange
GetClientRect
SetScrollPos
IsWindowVisible
SetParent
MessageBoxA
MessageBeep
EndPaint

ole32

CreateOleAdviseHolder
ReleaseStgMedium
DoDragDrop
RegisterDragDrop
RevokeDragDrop
CoCreateInstance
OleLoadFromStream
OleSaveToStream
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc

advapi32

RegEnumKeyExA
RegQueryValueA
RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

oleaut32

SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayCreate
SafeArrayDestroy
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
VariantCopyInd
VariantCopy
LoadTypeLibEx
UnRegisterTypeLi
RegisterTypeLi
CreateErrorInfo
SetErrorInfo
LoadTypeLi
LoadRegTypeLi
OleCreatePropertyFrame
VariantClear
SysAllocString
GetErrorInfo
SysAllocStringLen
SysStringLen
VariantInit
VariantChangeType
OleCreatePictureIndirect
SysFreeString
OleTranslateColor
SafeArrayRedim
OleCreateFontIndirect

gdi32

SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
LPtoDP
SetWindowOrgEx
GetNearestColor
CreatePalette
GetBitmapBits
CreateDIBitmap
SelectPalette
RealizePalette
GetDIBits
GetPaletteEntries
CopyEnhMetaFileA
CopyMetaFileA
CreateDCA
CreatePen
DeleteObject
CreateSolidBrush
SelectObject
GetObjectA
DeleteDC
StretchBlt
GetStockObject
CreateCompatibleBitmap
CreateCompatibleDC
GetTextMetricsA
RestoreDC
ExcludeClipRect
SaveDC
LineTo
MoveToEx
SetTextColor
SetBkMode
GetCurrentPositionEx
SetViewportExtEx
SetWindowExtEx
DPtoLP
SetMapMode
GetTextColor
CreateBitmap
EnumFontFamiliesExA
GetDeviceCaps
GetTextExtentPoint32A
CreateFontIndirectA
CreateRectRgnIndirect

Exports

Exports

DLLGetDocumentation
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSJET35.DLL
.dll regsvr32 windows:4 windows x86 arch:x86

5a8f0c2c86e4873e3c76638a66d64d75

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLocalTime
GetTempFileNameA
GetTempPathA
DeleteFileA
GetVersionExA
Sleep
GetComputerNameA
FindClose
FindFirstFileA
GetLastError
GetShortPathNameA
lstrcpyA
GetFullPathNameA
lstrlenA
IsBadStringPtrA
GetDriveTypeA
GetFileAttributesA
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
CloseHandle
ReadFile
SetFilePointer
WriteFile
FlushFileBuffers
GetFileSize
SetEndOfFile
GetFileType
LockFile
UnlockFile
GetFileInformationByHandle
CreateFileA
CompareStringA
LCMapStringA
GetSystemInfo
GlobalMemoryStatus
SetThreadPriority
HeapAlloc
GetProcessHeap
HeapFree
ResumeThread
GetProcAddress
GetTickCount
ResetEvent
WaitForSingleObject
GetCurrentThreadId
CreateThread
lstrcmpiA
HeapReAlloc
GetTimeZoneInformation
GetSystemTime
GetCommandLineA
GetModuleHandleA
GetVersion
ExitProcess
GetSystemDefaultLangID
GetStringTypeW
HeapCreate
HeapDestroy
LCMapStringW
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
TerminateProcess
GetCurrentProcess
HeapSize
RtlUnwind
SetHandleCount
GetStdHandle
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetStdHandle
CompareStringW
SetEnvironmentVariableA
LoadLibraryA
GetUserDefaultLCID
GetLocaleInfoA
VirtualFree
VirtualQuery
VirtualAlloc
GetModuleFileNameA
DisableThreadLibraryCalls
IsDBCSLeadByte
SetEvent
CreateEventA
GetStringTypeA

user32

IsCharAlphaA
CharUpperA
wvsprintfA
wsprintfA
CharPrevA
IsCharAlphaNumericA

advapi32

RegEnumKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegCreateKeyA
RegSetValueExA
RegOpenKeyExA
RegEnumValueA
RegQueryInfoKeyA

ole32

CoCreateGuid

oleaut32

LHashValOfNameSys
VariantChangeType
SysFreeString
VarI4FromStr
VarR4FromStr
VarR8FromStr
VarCyFromStr
VarI2FromStr
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
VariantClear
VarBstrFromI2
VarDateFromStr
VarBstrFromDate
VarBstrFromCy
VarBstrFromR8
VarBstrFromR4
VarBstrFromI4

Exports

Exports

DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 977KB - Virtual size: 977KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSJINT35.DLL
.dll windows:4 windows x86 arch:x86

8ca2a6bee2fbfbab8621d081d904b4da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

GetCPInfo
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapCreate
HeapDestroy
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
DisableThreadLibraryCalls
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
HeapAlloc
HeapFree
LoadLibraryA

user32

LoadStringA

Exports

Exports

CchLszOfId2
_WEP@4

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

WEP_TEXT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSJTER35.DLL
.dll windows:4 windows x86 arch:x86

3bca76fb5ba89dcc243aedc87ac45dff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msjint35

ord2

kernel32

HeapDestroy
HeapCreate
IsDBCSLeadByte
DisableThreadLibraryCalls
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
MultiByteToWideChar
WideCharToMultiByte
GetStringTypeA
GetStringTypeW
ExitProcess
TerminateProcess
GetCurrentProcess
LoadLibraryA
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
HeapFree
HeapAlloc

Exports

Exports

JetErrFormattedMessage
JetErrIDAForError
JetErrIDARawMessage
JetErrRawMessage

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 580B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSRD2X35.DLL
.dll regsvr32 windows:4 windows x86 arch:x86

a781de574e0567285ee1233bf6a57cc0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msjet35

ord177

kernel32

CloseHandle
GetFileSize
ReadFile
SetFilePointer
WriteFile
FlushFileBuffers
GetLastError
GetFileType
DeleteFileA
LockFile
UnlockFile
GetComputerNameA
GetFullPathNameA
GetTempFileNameA
SetEndOfFile
GetTempPathA
GetTickCount
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
GetCurrentThreadId
GetModuleFileNameA
LoadLibraryA
GlobalSize
CreateFileA
GetCurrentProcessId
IsDBCSLeadByte
EnterCriticalSection
LeaveCriticalSection
GetLocalTime
DisableThreadLibraryCalls
GetCommandLineA
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GlobalAlloc
GlobalReAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetProcAddress

advapi32

RegDeleteKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyA
RegCreateKeyA
RegSetValueExA

Exports

Exports

DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 220KB - Virtual size: 219KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSREPL35.DLL
.dll windows:4 windows x86 arch:x86

23bbd416b06ed5ae477309380d72aabe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

msjet35

ord1101
ord136
ord108
ord156
ord177
ord908
ord140
ord138
ord157
ord167
ord107
ord130
ord129
ord912

msjter35

ord5
ord3
ord4

kernel32

GlobalUnlock
CreateFileMappingA
GlobalLock
OpenProcess
CompareStringW
CompareStringA
GetModuleFileNameA
LoadLibraryA
FreeLibrary
GetProcAddress
GetLocalTime
GetTempFileNameA
GetTempPathA
DeleteFileA
GetVersionExA
IsDBCSLeadByte
Sleep
FindClose
FindNextFileA
FindFirstFileA
GetComputerNameA
GetLastError
GetShortPathNameA
lstrcpyA
GetFullPathNameA
lstrlenA
IsBadStringPtrA
GetDriveTypeA
GetFileAttributesA
WideCharToMultiByte
MultiByteToWideChar
CreateFileA
MoveFileA
GetFileSize
ReadFile
WriteFile
FlushFileBuffers
SetFilePointer
SetEndOfFile
CloseHandle
GetStringTypeA
GetStringTypeW
CreateProcessA
GlobalAlloc
GlobalFree
HeapReAlloc
CreateMutexA
OpenMutexA
WaitForSingleObject
ReleaseMutex
CreateEventA
OpenEventA
MapViewOfFile
SetEnvironmentVariableA
OpenFileMappingA
UnmapViewOfFile
FlushViewOfFile
SetEvent
ResetEvent
WaitForMultipleObjects
GetCurrentProcessId
CreateThread
GetStdHandle
GetEnvironmentVariableA
lstrcatA
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTime
GetCommandLineA
GetModuleHandleA
GetVersion
HeapCreate
HeapDestroy
LCMapStringA
LCMapStringW
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetFileType
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
RtlUnwind

user32

CharPrevA
IsCharAlphaA
PeekMessageA
wsprintfA
CharUpperA

advapi32

RegSetValueExA
RegFlushKey
RegCreateKeyExA
RegQueryInfoKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueExA
RegCloseKey

ole32

IIDFromString
CoCreateGuid
StringFromGUID2

Sections

.text
Size: 355KB - Virtual size: 355KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MSVCRT40.DLL
.dll windows:4 windows x86 arch:x86

57259dcda30c27e977785c33a8441434

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

IsValidLocale
RtlUnwind
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameA
GetModuleFileNameW
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
ResumeThread
GetLastError
CreateThread
TlsSetValue
ExitThread
CloseHandle
GetCurrentThreadId
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
FindClose
FindNextFileA
FindFirstFileA
FindNextFileW
FindFirstFileW
HeapFree
HeapAlloc
HeapCreate
HeapDestroy
ReadFile
SetFilePointer
SetHandleCount
GetFileType
GetStartupInfoA
CreateFileA
SetStdHandle
SetEndOfFile
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
Sleep
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
SetEnvironmentVariableW
RaiseException
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
GetLocaleInfoW
GetTimeZoneInformation
HeapReAlloc
HeapSize
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
Beep
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
GetExitCodeProcess
WaitForSingleObject
FreeLibrary
CreateProcessA
CreateProcessW
HeapValidate
HeapUnlock
HeapWalk
HeapLock
HeapCompact
ReadConsoleA
SetConsoleMode
GetConsoleMode
WriteConsoleA
DuplicateHandle
GetFileInformationByHandle
PeekNamedPipe
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
LockFile
UnlockFile
CreatePipe
CreateFileW
GetLocalTime
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetLocalTime
GetSystemTime

Exports

Exports

$I10_OUTPUT
??0Iostream_init@@QAE@AAVios@@H@Z
??0Iostream_init@@QAE@XZ
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??0filebuf@@QAE@ABV0@@Z
??0filebuf@@QAE@H@Z
??0filebuf@@QAE@HPADH@Z
??0filebuf@@QAE@XZ
??0fstream@@QAE@ABV0@@Z
??0fstream@@QAE@H@Z
??0fstream@@QAE@HPADH@Z
??0fstream@@QAE@PBDHH@Z
??0fstream@@QAE@XZ
??0ifstream@@QAE@ABV0@@Z
??0ifstream@@QAE@H@Z
??0ifstream@@QAE@HPADH@Z
??0ifstream@@QAE@PBDHH@Z
??0ifstream@@QAE@XZ
??0ios@@IAE@ABV0@@Z
??0ios@@IAE@XZ
??0ios@@QAE@PAVstreambuf@@@Z
??0iostream@@IAE@ABV0@@Z
??0iostream@@IAE@XZ
??0iostream@@QAE@PAVstreambuf@@@Z
??0istream@@IAE@ABV0@@Z
??0istream@@IAE@XZ
??0istream@@QAE@PAVstreambuf@@@Z
??0istream_withassign@@QAE@ABV0@@Z
??0istream_withassign@@QAE@PAVstreambuf@@@Z
??0istream_withassign@@QAE@XZ
??0istrstream@@QAE@ABV0@@Z
??0istrstream@@QAE@PAD@Z
??0istrstream@@QAE@PADH@Z
??0logic_error@@QAE@ABQBD@Z
??0logic_error@@QAE@ABV0@@Z
??0ofstream@@QAE@ABV0@@Z
??0ofstream@@QAE@H@Z
??0ofstream@@QAE@HPADH@Z
??0ofstream@@QAE@PBDHH@Z
??0ofstream@@QAE@XZ
??0ostream@@IAE@ABV0@@Z
??0ostream@@IAE@XZ
??0ostream@@QAE@PAVstreambuf@@@Z
??0ostream_withassign@@QAE@ABV0@@Z
??0ostream_withassign@@QAE@PAVstreambuf@@@Z
??0ostream_withassign@@QAE@XZ
??0ostrstream@@QAE@ABV0@@Z
??0ostrstream@@QAE@PADHH@Z
??0ostrstream@@QAE@XZ
??0stdiobuf@@QAE@ABV0@@Z
??0stdiobuf@@QAE@PAU_iobuf@@@Z
??0stdiostream@@QAE@ABV0@@Z
??0stdiostream@@QAE@PAU_iobuf@@@Z
??0streambuf@@IAE@PADH@Z
??0streambuf@@IAE@XZ
??0streambuf@@QAE@ABV0@@Z
??0strstream@@QAE@ABV0@@Z
??0strstream@@QAE@PADHH@Z
??0strstream@@QAE@XZ
??0strstreambuf@@QAE@ABV0@@Z
??0strstreambuf@@QAE@H@Z
??0strstreambuf@@QAE@P6APAXJ@ZP6AXPAX@Z@Z
??0strstreambuf@@QAE@PADH0@Z
??0strstreambuf@@QAE@XZ
??1Iostream_init@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1filebuf@@UAE@XZ
??1fstream@@UAE@XZ
??1ifstream@@UAE@XZ
??1ios@@UAE@XZ
??1iostream@@UAE@XZ
??1istream@@UAE@XZ
??1istream_withassign@@UAE@XZ
??1istrstream@@UAE@XZ
??1logic_error@@UAE@XZ
??1ofstream@@UAE@XZ
??1ostream@@UAE@XZ
??1ostream_withassign@@UAE@XZ
??1ostrstream@@UAE@XZ
??1stdiobuf@@UAE@XZ
??1stdiostream@@UAE@XZ
??1streambuf@@UAE@XZ
??1strstream@@UAE@XZ
??1strstreambuf@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4Iostream_init@@QAEAAV0@ABV0@@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??4filebuf@@QAEAAV0@ABV0@@Z
??4fstream@@QAEAAV0@AAV0@@Z
??4ifstream@@QAEAAV0@ABV0@@Z
??4ios@@IAEAAV0@ABV0@@Z
??4iostream@@IAEAAV0@AAV0@@Z
??4iostream@@IAEAAV0@PAVstreambuf@@@Z
??4istream@@IAEAAV0@ABV0@@Z
??4istream@@IAEAAV0@PAVstreambuf@@@Z
??4istream_withassign@@QAEAAV0@ABV0@@Z
??4istream_withassign@@QAEAAVistream@@ABV1@@Z
??4istream_withassign@@QAEAAVistream@@PAVstreambuf@@@Z
??4istrstream@@QAEAAV0@ABV0@@Z
??4logic_error@@QAEAAV0@ABV0@@Z
??4ofstream@@QAEAAV0@ABV0@@Z
??4ostream@@IAEAAV0@ABV0@@Z
??4ostream@@IAEAAV0@PAVstreambuf@@@Z
??4ostream_withassign@@QAEAAV0@ABV0@@Z
??4ostream_withassign@@QAEAAVostream@@ABV1@@Z
??4ostream_withassign@@QAEAAVostream@@PAVstreambuf@@@Z
??4ostrstream@@QAEAAV0@ABV0@@Z
??4stdiobuf@@QAEAAV0@ABV0@@Z
??4stdiostream@@QAEAAV0@AAV0@@Z
??4streambuf@@QAEAAV0@ABV0@@Z
??4strstream@@QAEAAV0@AAV0@@Z
??4strstreambuf@@QAEAAV0@ABV0@@Z
??5istream@@QAEAAV0@AAC@Z
??5istream@@QAEAAV0@AAD@Z
??5istream@@QAEAAV0@AAE@Z
??5istream@@QAEAAV0@AAF@Z
??5istream@@QAEAAV0@AAG@Z
??5istream@@QAEAAV0@AAH@Z
??5istream@@QAEAAV0@AAI@Z
??5istream@@QAEAAV0@AAJ@Z
??5istream@@QAEAAV0@AAK@Z
??5istream@@QAEAAV0@AAM@Z
??5istream@@QAEAAV0@AAN@Z
??5istream@@QAEAAV0@AAO@Z
??5istream@@QAEAAV0@P6AAAV0@AAV0@@Z@Z
??5istream@@QAEAAV0@P6AAAVios@@AAV1@@Z@Z
??5istream@@QAEAAV0@PAC@Z
??5istream@@QAEAAV0@PAD@Z
??5istream@@QAEAAV0@PAE@Z
??5istream@@QAEAAV0@PAVstreambuf@@@Z
??6ostream@@QAEAAV0@C@Z
??6ostream@@QAEAAV0@D@Z
??6ostream@@QAEAAV0@E@Z
??6ostream@@QAEAAV0@F@Z
??6ostream@@QAEAAV0@G@Z
??6ostream@@QAEAAV0@H@Z
??6ostream@@QAEAAV0@I@Z
??6ostream@@QAEAAV0@J@Z
??6ostream@@QAEAAV0@K@Z
??6ostream@@QAEAAV0@M@Z
??6ostream@@QAEAAV0@N@Z
??6ostream@@QAEAAV0@O@Z
??6ostream@@QAEAAV0@P6AAAV0@AAV0@@Z@Z
??6ostream@@QAEAAV0@P6AAAVios@@AAV1@@Z@Z
??6ostream@@QAEAAV0@PAVstreambuf@@@Z
??6ostream@@QAEAAV0@PBC@Z
??6ostream@@QAEAAV0@PBD@Z
??6ostream@@QAEAAV0@PBE@Z
??6ostream@@QAEAAV0@PBX@Z
??7ios@@QBEHXZ
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??Bios@@QBEPAXXZ
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_7filebuf@@6B@
??_7fstream@@6B@
??_7ifstream@@6B@
??_7ios@@6B@
??_7iostream@@6B@
??_7istream@@6B@
??_7istream_withassign@@6B@
??_7istrstream@@6B@
??_7logic_error@@6B@
??_7ofstream@@6B@
??_7ostream@@6B@
??_7ostream_withassign@@6B@
??_7ostrstream@@6B@
??_7stdiobuf@@6B@
??_7stdiostream@@6B@
??_7streambuf@@6B@
??_7strstream@@6B@
??_7strstreambuf@@6B@
??_8fstream@@7Bistream@@@
??_8fstream@@7Bostream@@@
??_8ifstream@@7B@
??_8iostream@@7Bistream@@@
??_8iostream@@7Bostream@@@
??_8istream@@7B@
??_8istream_withassign@@7B@
??_8istrstream@@7B@
??_8ofstream@@7B@
??_8ostream@@7B@
??_8ostream_withassign@@7B@
??_8ostrstream@@7B@
??_8stdiostream@@7Bistream@@@
??_8stdiostream@@7Bostream@@@
??_8strstream@@7Bistream@@@
??_8strstream@@7Bostream@@@
??_Dfstream@@QAEXXZ
??_Difstream@@QAEXXZ
??_Diostream@@QAEXXZ
??_Distream@@QAEXXZ
??_Distream_withassign@@QAEXXZ
??_Distrstream@@QAEXXZ
??_Dofstream@@QAEXXZ
??_Dostream@@QAEXXZ
??_Dostream_withassign@@QAEXXZ
??_Dostrstream@@QAEXXZ
??_Dstdiostream@@QAEXXZ
??_Dstrstream@@QAEXXZ
??_EIostream_init@@QAEPAXI@Z
??_E__non_rtti_object@@UAEPAXI@Z
??_Ebad_cast@@UAEPAXI@Z
??_Ebad_typeid@@UAEPAXI@Z
??_Eexception@@UAEPAXI@Z
??_Efilebuf@@UAEPAXI@Z
??_Efstream@@UAEPAXI@Z
??_Eifstream@@UAEPAXI@Z
??_Eios@@UAEPAXI@Z
??_Eiostream@@UAEPAXI@Z
??_Eistream@@UAEPAXI@Z
??_Eistream_withassign@@UAEPAXI@Z
??_Eistrstream@@UAEPAXI@Z
??_Elogic_error@@UAEPAXI@Z
??_Eofstream@@UAEPAXI@Z
??_Eostream@@UAEPAXI@Z
??_Eostream_withassign@@UAEPAXI@Z
??_Eostrstream@@UAEPAXI@Z
??_Estdiobuf@@UAEPAXI@Z
??_Estdiostream@@UAEPAXI@Z
??_Estreambuf@@UAEPAXI@Z
??_Estrstream@@UAEPAXI@Z
??_Estrstreambuf@@UAEPAXI@Z
??_GIostream_init@@QAEPAXI@Z
??_G__non_rtti_object@@UAEPAXI@Z
??_Gbad_cast@@UAEPAXI@Z
??_Gbad_typeid@@UAEPAXI@Z
??_Gexception@@UAEPAXI@Z
??_Gfilebuf@@UAEPAXI@Z
??_Gfstream@@UAEPAXI@Z
??_Gifstream@@UAEPAXI@Z
??_Gios@@UAEPAXI@Z
??_Giostream@@UAEPAXI@Z
??_Gistream@@UAEPAXI@Z
??_Gistream_withassign@@UAEPAXI@Z
??_Gistrstream@@UAEPAXI@Z
??_Glogic_error@@UAEPAXI@Z
??_Gofstream@@UAEPAXI@Z
??_Gostream@@UAEPAXI@Z
??_Gostream_withassign@@UAEPAXI@Z
??_Gostrstream@@UAEPAXI@Z
??_Gstdiobuf@@UAEPAXI@Z
??_Gstdiostream@@UAEPAXI@Z
??_Gstreambuf@@UAEPAXI@Z
??_Gstrstream@@UAEPAXI@Z
??_Gstrstreambuf@@UAEPAXI@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?adjustfield@ios@@2JB
?allocate@streambuf@@IAEHXZ
?attach@filebuf@@QAEPAV1@H@Z
?attach@fstream@@QAEXH@Z
?attach@ifstream@@QAEXH@Z
?attach@ofstream@@QAEXH@Z
?bad@ios@@QBEHXZ
?base@streambuf@@IBEPADXZ
?basefield@ios@@2JB
?before@type_info@@QBEHABV1@@Z
?binary@filebuf@@2HB
?bitalloc@ios@@SAJXZ
?blen@streambuf@@IBEHXZ
?cerr@@3Vostream_withassign@@A
?cin@@3Vistream_withassign@@A
?clear@ios@@QAEXH@Z
?clog@@3Vostream_withassign@@A
?close@filebuf@@QAEPAV1@XZ
?close@fstream@@QAEXXZ
?close@ifstream@@QAEXXZ
?close@ofstream@@QAEXXZ
?clrlock@ios@@QAAXXZ
?clrlock@streambuf@@QAEXXZ
?cout@@3Vostream_withassign@@A
?dbp@streambuf@@QAEXXZ
?dec@@YAAAVios@@AAV1@@Z
?delbuf@ios@@QAEXH@Z
?delbuf@ios@@QBEHXZ
?doallocate@streambuf@@MAEHXZ
?doallocate@strstreambuf@@MAEHXZ
?eatwhite@istream@@QAEXXZ
?eback@streambuf@@IBEPADXZ
?ebuf@streambuf@@IBEPADXZ
?egptr@streambuf@@IBEPADXZ
?endl@@YAAAVostream@@AAV1@@Z
?ends@@YAAAVostream@@AAV1@@Z
?eof@ios@@QBEHXZ
?epptr@streambuf@@IBEPADXZ
?fLockcInit@ios@@0HA
?fail@ios@@QBEHXZ
?fd@filebuf@@QBEHXZ
?fd@fstream@@QBEHXZ
?fd@ifstream@@QBEHXZ
?fd@ofstream@@QBEHXZ
?fill@ios@@QAEDD@Z
?fill@ios@@QBEDXZ
?flags@ios@@QAEJJ@Z
?flags@ios@@QBEJXZ
?floatfield@ios@@2JB
?flush@@YAAAVostream@@AAV1@@Z
?flush@ostream@@QAEAAV1@XZ
?freeze@strstreambuf@@QAEXH@Z
?gbump@streambuf@@IAEXH@Z
?gcount@istream@@QBEHXZ
?get@istream@@IAEAAV1@PADHH@Z
?get@istream@@QAEAAV1@AAC@Z
?get@istream@@QAEAAV1@AAD@Z
?get@istream@@QAEAAV1@AAE@Z
?get@istream@@QAEAAV1@AAVstreambuf@@D@Z
?get@istream@@QAEAAV1@PACHD@Z
?get@istream@@QAEAAV1@PADHD@Z
?get@istream@@QAEAAV1@PAEHD@Z
?get@istream@@QAEHXZ
?getdouble@istream@@AAEHPADH@Z
?getint@istream@@AAEHPAD@Z
?getline@istream@@QAEAAV1@PACHD@Z
?getline@istream@@QAEAAV1@PADHD@Z
?getline@istream@@QAEAAV1@PAEHD@Z
?good@ios@@QBEHXZ
?gptr@streambuf@@IBEPADXZ
?hex@@YAAAVios@@AAV1@@Z
?ignore@istream@@QAEAAV1@HH@Z
?in_avail@streambuf@@QBEHXZ
?init@ios@@IAEXPAVstreambuf@@@Z
?ipfx@istream@@QAEHH@Z
?is_open@filebuf@@QBEHXZ
?is_open@fstream@@QBEHXZ
?is_open@ifstream@@QBEHXZ
?is_open@ofstream@@QBEHXZ
?isfx@istream@@QAEXXZ
?iword@ios@@QBEAAJH@Z
?lock@ios@@QAAXXZ
?lock@streambuf@@QAEXXZ
?lockbuf@ios@@QAAXXZ
?lockc@ios@@KAXXZ
?lockptr@ios@@IAEPAU_CRT_CRITICAL_SECTION@@XZ
?lockptr@streambuf@@IAEPAU_CRT_CRITICAL_SECTION@@XZ
?name@type_info@@QBEPBDXZ
?oct@@YAAAVios@@AAV1@@Z
?open@filebuf@@QAEPAV1@PBDHH@Z
?open@fstream@@QAEXPBDHH@Z
?open@ifstream@@QAEXPBDHH@Z
?open@ofstream@@QAEXPBDHH@Z
?openprot@filebuf@@2HB
?opfx@ostream@@QAEHXZ
?osfx@ostream@@QAEXXZ
?out_waiting@streambuf@@QBEHXZ
?overflow@filebuf@@UAEHH@Z
?overflow@stdiobuf@@UAEHH@Z
?overflow@strstreambuf@@UAEHH@Z
?pbackfail@stdiobuf@@UAEHH@Z
?pbackfail@streambuf@@UAEHH@Z
?pbase@streambuf@@IBEPADXZ
?pbump@streambuf@@IAEXH@Z
?pcount@ostrstream@@QBEHXZ
?pcount@strstream@@QBEHXZ
?peek@istream@@QAEHXZ
?pptr@streambuf@@IBEPADXZ
?precision@ios@@QAEHH@Z
?precision@ios@@QBEHXZ
?put@ostream@@QAEAAV1@C@Z
?put@ostream@@QAEAAV1@D@Z
?put@ostream@@QAEAAV1@E@Z
?putback@istream@@QAEAAV1@D@Z
?pword@ios@@QBEAAPAXH@Z
?raw_name@type_info@@QBEPBDXZ
?rdbuf@fstream@@QBEPAVfilebuf@@XZ
?rdbuf@ifstream@@QBEPAVfilebuf@@XZ
?rdbuf@ios@@QBEPAVstreambuf@@XZ
?rdbuf@istrstream@@QBEPAVstrstreambuf@@XZ
?rdbuf@ofstream@@QBEPAVfilebuf@@XZ
?rdbuf@ostrstream@@QBEPAVstrstreambuf@@XZ
?rdbuf@stdiostream@@QBEPAVstdiobuf@@XZ
?rdbuf@strstream@@QBEPAVstrstreambuf@@XZ
?rdstate@ios@@QBEHXZ
?read@istream@@QAEAAV1@PACH@Z
?read@istream@@QAEAAV1@PADH@Z
?read@istream@@QAEAAV1@PAEH@Z
?sbumpc@streambuf@@QAEHXZ
?seekg@istream@@QAEAAV1@J@Z
?seekg@istream@@QAEAAV1@JW4seek_dir@ios@@@Z
?seekoff@filebuf@@UAEJJW4seek_dir@ios@@H@Z
?seekoff@stdiobuf@@UAEJJW4seek_dir@ios@@H@Z
?seekoff@streambuf@@UAEJJW4seek_dir@ios@@H@Z
?seekoff@strstreambuf@@UAEJJW4seek_dir@ios@@H@Z
?seekp@ostream@@QAEAAV1@J@Z
?seekp@ostream@@QAEAAV1@JW4seek_dir@ios@@@Z
?seekpos@streambuf@@UAEJJH@Z
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?setb@streambuf@@IAEXPAD0H@Z
?setbuf@filebuf@@UAEPAVstreambuf@@PADH@Z
?setbuf@fstream@@QAEPAVstreambuf@@PADH@Z
?setbuf@ifstream@@QAEPAVstreambuf@@PADH@Z
?setbuf@ofstream@@QAEPAVstreambuf@@PADH@Z
?setbuf@streambuf@@UAEPAV1@PADH@Z
?setbuf@strstreambuf@@UAEPAVstreambuf@@PADH@Z
?setf@ios@@QAEJJ@Z
?setf@ios@@QAEJJJ@Z
?setg@streambuf@@IAEXPAD00@Z
?setlock@ios@@QAAXXZ
?setlock@streambuf@@QAEXXZ
?setmode@filebuf@@QAEHH@Z
?setmode@fstream@@QAEHH@Z
?setmode@ifstream@@QAEHH@Z
?setmode@ofstream@@QAEHH@Z
?setp@streambuf@@IAEXPAD0@Z
?setrwbuf@stdiobuf@@QAEHHH@Z
?sgetc@streambuf@@QAEHXZ
?sgetn@streambuf@@QAEHPADH@Z
?sh_none@filebuf@@2HB
?sh_read@filebuf@@2HB
?sh_write@filebuf@@2HB
?snextc@streambuf@@QAEHXZ
?sputbackc@streambuf@@QAEHD@Z
?sputc@streambuf@@QAEHH@Z
?sputn@streambuf@@QAEHPBDH@Z
?stdiofile@stdiobuf@@QAEPAU_iobuf@@XZ
?stossc@streambuf@@QAEXXZ
?str@istrstream@@QAEPADXZ
?str@ostrstream@@QAEPADXZ
?str@strstream@@QAEPADXZ
?str@strstreambuf@@QAEPADXZ
?sunk_with_stdio@ios@@0HA
?sync@filebuf@@UAEHXZ
?sync@istream@@QAEHXZ
?sync@stdiobuf@@UAEHXZ
?sync@streambuf@@UAEHXZ
?sync@strstreambuf@@UAEHXZ
?sync_with_stdio@ios@@SAXXZ
?tellg@istream@@QAEJXZ
?tellp@ostream@@QAEJXZ
?terminate@@YAXXZ
?text@filebuf@@2HB
?tie@ios@@QAEPAVostream@@PAV2@@Z
?tie@ios@@QBEPAVostream@@XZ
?unbuffered@streambuf@@IAEXH@Z
?unbuffered@streambuf@@IBEHXZ
?underflow@filebuf@@UAEHXZ
?underflow@stdiobuf@@UAEHXZ
?underflow@strstreambuf@@UAEHXZ
?unexpected@@YAXXZ
?unlock@ios@@QAAXXZ
?unlock@streambuf@@QAEXXZ
?unlockbuf@ios@@QAAXXZ
?unlockc@ios@@KAXXZ
?unsetf@ios@@QAEJJ@Z
?what@exception@@UBEPBDXZ
?width@ios@@QAEHH@Z
?width@ios@@QBEHXZ
?write@ostream@@QAEAAV1@PBCH@Z
?write@ostream@@QAEAAV1@PBDH@Z
?write@ostream@@QAEAAV1@PBEH@Z
?writepad@ostream@@AAEAAV1@PBD0@Z
?ws@@YAAAVistream@@AAV1@@Z
?x_curindex@ios@@0HA
?x_lockc@ios@@0U_CRT_CRITICAL_SECTION@@A
?x_maxbit@ios@@0JA
?x_statebuf@ios@@0PAJA
?xalloc@ios@@SAHXZ
?xsgetn@streambuf@@UAEHPADH@Z
?xsputn@streambuf@@UAEHPBDH@Z
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CxxThrowException

Sections

.text
Size: 243KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 916B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
QQ1.lib
RCHTXCHS.DLL
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RICHED32.DLL
.dll windows:4 windows x86 arch:x86

32c903521d208fd36af5670d0a38a2b9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

ole32

OleCreateFromData
OleSetContainedObject
StringFromCLSID
GetClassFile
ProgIDFromCLSID
CLSIDFromProgID
CoIsOle1Class
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgCreateDocfile
CoTreatAsClass
ReadFmtUserTypeStg
SetConvertStg
WriteFmtUserTypeStg
OleCreateDefaultHandler
OleConvertOLESTREAMToIStorage
OleConvertIStorageToOLESTREAMEx
OleConvertIStorageToOLESTREAM
CoTaskMemFree
OleDuplicateData
OleDraw
CoGetMalloc
OleGetClipboard
CreateBindCtx
CoDisconnectObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
OleCreateLinkToFile
GetHGlobalFromStream
OleIsCurrentClipboard
OleLoad
DoDragDrop
OleSave
ReadClassStg
WriteClassStg
OleSetClipboard
CreateStreamOnHGlobal
OleCreateStaticFromData
ReleaseStgMedium
OleCreateLinkFromData

kernel32

MultiByteToWideChar
HeapFree
HeapCreate
HeapSize
HeapReAlloc
CompareStringA
IsBadCodePtr
DeleteCriticalSection
FreeLibrary
DisableThreadLibraryCalls
GetVersionExA
InitializeCriticalSection
LoadLibraryA
GetProcAddress
WideCharToMultiByte
GlobalHandle
GetProfileIntA
GlobalSize
GlobalAlloc
HeapAlloc
GlobalLock
GlobalUnlock
GlobalFree
IsBadReadPtr
GetTickCount
lstrlenA
lstrcmpiA
lstrcatA
lstrcmpA
MulDiv
InterlockedDecrement
GetUserDefaultLangID
lstrcpyA
InterlockedIncrement
GetProfileSectionA
EnterCriticalSection
GetLocaleInfoA
GetACP
LeaveCriticalSection
GetUserDefaultLCID

user32

IntersectRect
TrackPopupMenu
DestroyMenu
SetClipboardData
CopyRect
EmptyClipboard
wsprintfA
DestroyCaret
SetCaretBlinkTime
OpenClipboard
GetKeyState
GetUpdateRect
GetKeyboardLayoutList
GetKeyboardLayout
ReleaseDC
GetDC
DefWindowProcA
LoadCursorA
SetWindowLongA
SetScrollRange
GetWindowLongA
GetParent
GetSysColor
PtInRect
SetFocus
UpdateWindow
SetCapture
PeekMessageA
GetAsyncKeyState
GetSystemMetrics
SetCursor
SendMessageA
GetMessageExtraInfo
GetDoubleClickTime
GetCursorPos
InflateRect
MapWindowPoints
ScreenToClient
ShowCursor
ReleaseCapture
MessageBeep
PostMessageA
GetDlgItem
EndPaint
BeginPaint
GetClientRect
GetWindowRect
GetCursor
IsIconic
LockWindowUpdate
GetCapture
ShowCaret
ValidateRect
HideCaret
GetCaretBlinkTime
CreateCaret
KillTimer
SetTimer
InvalidateRect
RegisterClipboardFormatA
CloseClipboard
wvsprintfA
SetMessageExtraInfo
DestroyWindow
CreateWindowExA
SetWindowWord
LoadBitmapA
SetActiveWindow
SetWindowPos
GetWindowWord
SetScrollPos
OffsetRect
WindowFromPoint
ShowScrollBar
GetScrollRange
SetScrollInfo
GetUpdateRgn
ScrollWindowEx
SystemParametersInfoA
SetCaretPos
EnableScrollBar
CharLowerBuffA
IsWindow
ActivateKeyboardLayout
GetFocus
IsChild
IsWindowVisible
RedrawWindow
RegisterClassA
UnregisterClassA
ClientToScreen
FrameRect
LoadStringA
SetRectEmpty
SetCursorPos
DestroyCursor
GetMessagePos
GetMessageTime
InvertRect

gdi32

SetMapMode
CreateRectRgnIndirect
BitBlt
SelectObject
DeleteObject
GetObjectA
GetStockObject
CreateCompatibleDC
CreateHalftonePalette
DeleteDC
GetMapMode
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
SetViewportOrgEx
SetViewportExtEx
UpdateColors
ExcludeClipRect
GetBkMode
GetClipBox
GetCharWidthA
CreatePen
CreateBrushIndirect
SetBkColor
SetTextColor
GetDeviceCaps
Rectangle
LineTo
MoveToEx
RectVisible
GetCharABCWidthsA
TranslateCharsetInfo
CombineRgn
RestoreDC
GetTextExtentPoint32A
GetOutlineTextMetricsA
GetTextMetricsA
SaveDC
CreateFontIndirectA
EnumFontFamiliesA
EnumFontFamiliesExA
ExtTextOutA
PtInRegion
SetWindowExtEx
SetWindowOrgEx
SetTextAlign
SetBkMode
RealizePalette
SelectPalette
CloseMetaFile
SetROP2
IntersectClipRect
CreateRectRgn
GetMetaFileBitsEx
InvertRgn
OffsetRgn
EnumMetaFile
CreateBitmap
SetMetaFileBitsEx
DeleteMetaFile
PatBlt
CreatePatternBrush
CreateMetaFileA

shell32

DragQueryFileA
DragQueryPoint
DragAcceptFiles
DragFinish

gapi32

SzGConvToSBCS@8
UlGetIMEMode@4
SetIMECandidatePos@24
FGCheckLang@8
IVWordBreakProc@20
SzGNext@4
NCheckIMEMessage@16
FIMEMessage@20
UsVGetPunct@16
FVInitPunct@12
FSetIMEFont@8
LpGetIMECriticalSection@4
FGAlign@8
FGLeadByte@4
UlSetIMEMode@8
FFlushIMEComposition@8
FDeinitIME@4
FVFreePunctObject@4
UlGGetLang@0
LpVCreatePunctObject@0
UsVGetBreakOption@4
UsVSetBreakOption@8
FInitIME@12
FGGetDefFont@8
SzGAlign@8

Sections

.text
Size: 178KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 677B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mpchwb
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RICHTX32.OCX
.dll regsvr32 windows:4 windows x86 arch:x86

f879ec87b93340bacfa917edf4e1aee5

Code Sign

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

shell32

DragAcceptFiles
DragFinish
DragQueryFileA

oledlg

ord1

kernel32

GlobalSize
GlobalUnlock
lstrcmpA
GetVersionExA
GlobalLock
FindResourceA
GlobalAlloc
GlobalFree
GetProcAddress
LoadResource
LockResource
HeapReAlloc
GetLocaleInfoA
GetWindowsDirectoryA
lstrcpynA
GetModuleFileNameA
lstrcatA
DisableThreadLibraryCalls
GetFileAttributesA
GetVersion
GetAtomNameA
FindAtomA
AddAtomA
IsBadWritePtr
DeleteAtom
InterlockedIncrement
FreeLibrary
LoadLibraryA
InterlockedDecrement
GetProcessHeap
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
WriteFile
GetLastError
ReadFile
LeaveCriticalSection
CreateFileA
lstrcpyA
HeapAlloc
lstrlenA
HeapFree
WideCharToMultiByte
lstrlenW
SetFilePointer
MultiByteToWideChar
IsDBCSLeadByte
CloseHandle
lstrcmpiA

user32

GetClipboardFormatNameA
PeekMessageW
ScreenToClient
PostMessageW
PeekMessageA
RegisterWindowMessageA
IsDlgButtonChecked
SetDlgItemInt
SetDlgItemTextA
CheckDlgButton
ReleaseCapture
LoadCursorA
SetCursor
SetFocus
CreateDialogIndirectParamA
SetCursorPos
MapWindowPoints
FillRect
PostMessageA
InvalidateRect
ValidateRect
SetRect
GetSysColor
InflateRect
GetClassInfoA
EnableMenuItem
TrackPopupMenu
GetWindow
GetWindowTextA
CharNextA
MessageBoxA
SendDlgItemMessageA
GetDlgItem
DispatchMessageA
TranslateMessage
WindowFromDC
IsChild
IsWindowEnabled
GetNextDlgTabItem
IsDialogMessageA
WinHelpA
MoveWindow
SetParent
BeginPaint
EndPaint
GetMenuItemCount
IsWindowVisible
DeleteMenu
IntersectRect
ShowWindow
SetWindowRgn
GetDlgItemTextA
EqualRect
GetDlgItemInt
SetWindowPos
GetWindowRect
SetWindowLongA
DestroyWindow
GetActiveWindow
UnregisterClassA
RemoveMenu
LoadMenuA
GetSubMenu
GetParent
DestroyMenu
GetFocus
IsWindow
DefWindowProcA
GetClientRect
RegisterClassA
LoadStringA
RegisterClipboardFormatA
GetCapture
GetCursorPos
EnableWindow
EndDialog
wsprintfA
GetKeyState
MessageBeep
CallWindowProcA
GetDC
GetSystemMetrics
ReleaseDC
UpdateWindow
SendMessageA
DialogBoxParamA
GetWindowLongA
CreateWindowExA
ClientToScreen
OffsetRect
PtInRect

ole32

DoDragDrop
RegisterDragDrop
CreateOleAdviseHolder
OleCreateFromFile
CLSIDFromProgID
OleCreate
OleSetContainedObject
StringFromCLSID
OleGetIconOfClass
CoGetMalloc
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleSaveToStream
OleLoadFromStream
RevokeDragDrop
CoTaskMemRealloc
ReleaseStgMedium
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree

advapi32

RegEnumKeyExA
RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegCloseKey
RegOpenKeyExA

oleaut32

SafeArrayCopy
SafeArrayDestroy
SafeArrayGetLBound
SafeArrayGetElement
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetUBound
VariantCopy
CreateErrorInfo
VariantCopyInd
OleCreatePropertyFrame
LoadTypeLibEx
SetErrorInfo
LoadTypeLi
RegisterTypeLi
UnRegisterTypeLi
SafeArrayPutElement
GetErrorInfo
SafeArrayCreate
LoadRegTypeLi
OleLoadPicture
OleCreatePictureIndirect
SysAllocStringLen
SysFreeString
OleCreateFontIndirect
SysStringLen
SysAllocString
VariantInit
VariantChangeType
VariantClear
OleTranslateColor
SafeArrayRedim

comdlg32

GetOpenFileNameA
CommDlgExtendedError

gdi32

GetNearestColor
CreateSolidBrush
DeleteObject
EnumFontFamiliesExA
StretchBlt
PatBlt
GetObjectType
GetBitmapBits
CreateDIBitmap
CreatePalette
SelectPalette
RealizePalette
GetObjectA
GetPaletteEntries
GetStockObject
GetDIBits
CopyEnhMetaFileA
CopyMetaFileA
CreateBitmap
LPtoDP
GetWindowExtEx
CreateDCA
CreateRectRgnIndirect
SetBkColor
GetViewportExtEx
GetClipBox
SetWindowExtEx
IntersectClipRect
SelectObject
CreateCompatibleBitmap
SetViewportExtEx
EndDoc
EndPage
DeleteDC
StartDocA
DPtoLP
StartPage
SetViewportOrgEx
SetMapMode
SetWindowOrgEx
GetMapMode
GetDeviceCaps
CreateICA
CreateCompatibleDC

Exports

Exports

DLLGetDocumentation
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SETUP1.EXE
.exe windows:4 windows x86 arch:x86

4d509ffe740b37c7b6ce748642da3704

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarTextTstLe
__vbaVarSub
__vbaStrI2
_CIcos
_adj_fptan
__vbaVarMove
__vbaStrI4
__vbaVarVargNofree
__vbaFreeVar
__vbaLineInputStr
__vbaGosubReturn
ord588
__vbaStrVarMove
__vbaLenBstr
ord589
ord697
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
ord516
_adj_fprem1
__vbaRecAnsiToUni
ord518
ord519
__vbaCopyBytes
__vbaResume
__vbaStrCat
__vbaLsetFixstr
ord660
__vbaVarTextTstEq
__vbaSetSystemError
__vbaRecDestruct
__vbaNameFile
__vbaHresultCheckObj
__vbaLenVar
_adj_fdiv_m32
ord667
__vbaAryDestruct
__vbaLateMemSt
ord669
__vbaForEachCollObj
__vbaBoolStr
__vbaExitProc
__vbaFileCloseAll
ord595
__vbaCyAdd
__vbaOnError
__vbaObjSet
_adj_fdiv_m16i
ord597
__vbaObjSetAddref
_adj_fdivr_m16i
ord598
__vbaStrFixstr
__vbaBoolVar
ord520
__vbaForEachCollVar
__vbaStrTextCmp
ord523
__vbaBoolVarNull
_CIsin
ord631
__vbaErase
__vbaVarCmpGt
__vbaLateMemStAd
__vbaNextEachCollObj
ord632
ord525
__vbaVarZero
__vbaChkstk
__vbaGosubFree
__vbaFileClose
ord526
EVENT_SINK_AddRef
ord527
ord528
__vbaGenerateBoundsError
__vbaStrCmp
__vbaCyI2
ord529
__vbaCyI4
__vbaObjVar
__vbaNextEachCollVar
__vbaPrintObj
__vbaI2I4
DllFunctionCall
__vbaVarOr
__vbaVarLateMemSt
__vbaLbound
__vbaRedimPreserve
_adj_fpatan
__vbaR4Var
__vbaLateIdCallLd
__vbaRedim
__vbaRecUniToAnsi
EVENT_SINK_Release
__vbaNew
ord600
__vbaVarTextTstNe
__vbaUI1I2
_CIsqrt
__vbaVarAnd
EVENT_SINK_QueryInterface
__vbaFpCmpCy
__vbaVarTextCmpEq
__vbaVarMul
__vbaExceptHandler
__vbaPrintFile
__vbaStrToUnicode
ord606
_adj_fprem
_adj_fdivr_m64
__vbaGosub
ord607
__vbaI2Str
__vbaVarDiv
ord530
ord608
ord531
__vbaFPException
__vbaInStrVar
ord532
ord717
__vbaStrVarVal
__vbaUbound
ord533
ord534
__vbaVarCat
__vbaDateVar
__vbaI2Var
ord644
ord537
ord645
_CIlog
ord646
__vbaErrorOverflow
__vbaFileOpen
ord647
ord648
__vbaInStr
__vbaNew2
ord571
__vbaCyMulI2
_adj_fdiv_m32i
ord572
_adj_fdivr_m32i
ord573
__vbaStrCopy
ord681
__vbaFreeStrList
ord576
__vbaDerefAry1
__vbaVarTextTstGt
_adj_fdivr_m32
__vbaPowerR8
ord577
_adj_fdiv_r
ord578
ord685
ord100
ord579
__vbaI4Var
__vbaAryLock
__vbaLateMemCall
__vbaVarAdd
__vbaVarDup
__vbaStrToAnsi
ord613
__vbaFpI2
ord616
__vbaFpI4
__vbaVarCopy
__vbaVarLateMemCallLd
ord617
__vbaLateMemCallLd
_CIatan
ord618
__vbaStrMove
__vbaCastObj
__vbaStrVarCopy
ord619
ord650
_allmul
__vbaLenVarB
__vbaLateIdSt
ord651
__vbaVarTextCmpNe
_CItan
ord546
__vbaAryUnlock
__vbaFPInt
_CIexp
__vbaMidStmtBstr
ord580
__vbaFreeStr
__vbaFreeObj
ord581

Sections

.text
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ST6UNST.EXE
.exe windows:4 windows x86 arch:x86

2c2a74fe0776f6aac245ba9e8eeec7c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
ReadFile
LocalFree
SetFilePointer
LocalAlloc
GlobalDeleteAtom
Sleep
GlobalAddAtomA
GlobalFree
GlobalAlloc
IsDBCSLeadByte
GlobalLock
GlobalFindAtomA
CompareStringA
WideCharToMultiByte
WriteFile
CloseHandle
GetWindowsDirectoryA
OpenProcess
GetVersion
FreeLibrary
RemoveDirectoryA
GetLastError
DeleteFileA
FindFirstFileA
FindClose
lstrlenA
lstrcpyA
lstrcatA
lstrcmpA
lstrcpynA
MultiByteToWideChar
CreateProcessA
WaitForSingleObject
SetErrorMode
GetCurrentDirectoryA
OutputDebugStringA
LoadLibraryA
GetProcAddress
GetFileAttributesA
GlobalUnlock
VirtualAlloc
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
IsBadCodePtr
FreeEnvironmentStringsW
FreeEnvironmentStringsA
lstrcmpiA
GetModuleFileNameA
UnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
HeapFree
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
TerminateProcess
ExitProcess
SetCurrentDirectoryA
SetEnvironmentVariableA
RtlUnwind
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

user32

PackDDElParam
SendMessageA
DispatchMessageA
DefWindowProcA
CharNextA
DestroyWindow
UnregisterClassA
CreateWindowExA
RegisterClassA
wsprintfA
UnpackDDElParam
LoadStringA
LoadIconA
LoadCursorA
MessageBoxA
wvsprintfA
TranslateMessage
GetMessageA
SetCursor
ShowCursor
SetDlgItemTextA
SetWindowLongA
EndDialog
GetDlgItem
SetFocus
DialogBoxParamA
UpdateWindow
SetWindowTextA
InvalidateRect
CharUpperA
CharPrevA
BeginPaint
GetClientRect
DrawTextA
SetRect
EndPaint
PostQuitMessage
GetSystemMenu
EnableMenuItem
CreateDialogParamA
GetWindowRect
GetSystemMetrics
SetWindowPos
ShowWindow
PostMessageA
PeekMessageA
FillRect
SetClassLongA

gdi32

CreateSolidBrush
SetROP2
Rectangle
SelectObject
SetTextColor
SetBkMode
GetStockObject
GetTextMetricsA
ExtTextOutA
CreateFontIndirectA
DeleteObject

advapi32

RegOpenKeyA
RegEnumValueA
RegEnumKeyA
RegDeleteKeyA
RegCloseKey
RegDeleteValueA
RegQueryValueExA
RegSetValueExA
RegCreateKeyA

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

OleInitialize
OleUninitialize

oleaut32

LoadTypeLi

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Txmt1.lib
VB5DB.DLL
.dll windows:4 windows x86 arch:x86

2824fcddda9a05ec563c0e7037537798

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

EnterCriticalSection
GetLastError
OpenFile
_llseek
GetTempFileNameA
GetTempPathA
_lwrite
_lread
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
DeleteFileA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
WriteFile
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
_lclose
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
FlushFileBuffers
CloseHandle
SetStdHandle
SetFilePointer

ole32

CoGetMalloc

oleaut32

SysAllocString
SysAllocStringByteLen
SysFreeString
SafeArrayDestroy
VariantInit
SafeArrayUnaccessData
SafeArrayAccessData
VariantClear
CreateErrorInfo
SysStringLen
VariantChangeType
SysAllocStringLen
VariantCopy
SafeArrayCreate
SetErrorInfo

Exports

Exports

DnaNewCRCRecordset

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VB6CHS.DLL
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Sections

.rdata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
VB6STKIT.DLL
.dll windows:4 windows x86 arch:x86

9f4b76d42cbc350286ec870347345155

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

TranslateMessage
CharNextA
wsprintfA
CharPrevA
LoadStringA
PeekMessageA
MessageBoxA
DispatchMessageA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation

ole32

CoCreateInstance
StringFromGUID2
OleInitialize
OleUninitialize

oleaut32

RegisterTypeLi
LoadTypeLi

kernel32

GetFileAttributesA
CompareStringW
GetStringTypeW
DeleteFileA
GetStringTypeA
GetLocaleInfoA
GetTimeZoneInformation
LCMapStringW
GetEnvironmentStringsW
LCMapStringA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetEnvironmentStrings
GetACP
GetCPInfo
HeapReAlloc
GetLocaleInfoW
FlushFileBuffers
SetEnvironmentVariableA
GetOEMCP
GetVersion
GetLastError
lstrcatA
lstrcpyA
lstrcmpiA
lstrlenA
CopyFileA
OpenFile
Sleep
lstrcpynA
WriteFile
CloseHandle
SetFilePointer
CreateFileA
FreeLibrary
GetProcAddress
LoadLibraryA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetErrorMode
LocalFree
LocalUnlock
LocalLock
LocalAlloc
SetFileTime
GetFileTime
GetWindowsDirectoryA
MultiByteToWideChar
CompareStringA
WideCharToMultiByte
GetModuleFileNameA
VirtualAlloc
HeapCreate
VirtualFree
TlsSetValue
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
FindClose
FindFirstFileA
GetFileType
SetFileAttributesA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
ExitProcess
TerminateProcess
GetCurrentProcess
HeapAlloc
HeapFree
ReadFile
GetCommandLineA
GetCurrentThreadId
DeleteCriticalSection
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetEndOfFile
SetHandleCount
GetStdHandle
GetStartupInfoA
GetFullPathNameA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
SetStdHandle
InterlockedDecrement
InterlockedIncrement
HeapDestroy

Exports

Exports

AbortAction
AddActionNote
ChangeActionKey
CommitAction
DLLSelfRegister
DisableLogging
EnableLogging
ExtractFileFromCab
GetClsidFromActXFile
LogConfig
LogError
LogNote
LogWarning
NewAction
RegisterTLB
SyncShell
_SetTime@8
fCreateShellLink
fRemoveShellLink
fWithinAction

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
BJBTXL/BJB-TXL.exe
.exe windows:4 windows x86 arch:x86

a0715e5ba415add7167d8b09208ecb1e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

__vbaVarTstGt
__vbaVarSub
__vbaStrI2
_CIcos
_adj_fptan
__vbaStrI4
__vbaVarMove
__vbaFreeVar
ord588
__vbaLenBstr
__vbaStrVarMove
__vbaLateIdCall
__vbaEnd
__vbaFreeVarList
_adj_fdiv_m64
__vbaFreeObjList
ord516
_adj_fprem1
ord518
__vbaVarCmpNe
__vbaStrCat
ord552
__vbaLsetFixstr
ord553
ord660
__vbaSetSystemError
__vbaHresultCheckObj
__vbaLenVar
_adj_fdiv_m32
__vbaVarTstLe
__vbaAryDestruct
__vbaVarCmpGe
__vbaVarForInit
__vbaExitProc
ord300
__vbaOnError
ord595
__vbaObjSet
_adj_fdiv_m16i
__vbaObjSetAddref
_adj_fdivr_m16i
ord598
__vbaFpR4
ord306
ord520
__vbaBoolVar
__vbaFpR8
__vbaVarTstLt
__vbaBoolVarNull
_CIsin
__vbaVarCmpGt
ord632
__vbaChkstk
__vbaFileClose
EVENT_SINK_AddRef
__vbaGenerateBoundsError
ord528
ord529
__vbaStrCmp
__vbaVarTstEq
__vbaR4Str
__vbaI2I4
DllFunctionCall
__vbaVarOr
__vbaCastObjVar
__vbaStrR4
_adj_fpatan
__vbaR4Var
__vbaFixstrConstruct
__vbaLateIdCallLd
__vbaRedim
__vbaStrR8
EVENT_SINK_Release
__vbaUI1I2
_CIsqrt
__vbaVarAnd
EVENT_SINK_QueryInterface
__vbaVarMul
__vbaExceptHandler
__vbaStrToUnicode
__vbaPrintFile
_adj_fprem
_adj_fdivr_m64
__vbaI2Str
__vbaVarDiv
ord608
__vbaVarCmpLe
__vbaFPException
__vbaInStrVar
__vbaStrVarVal
__vbaVarCat
ord535
__vbaI2Var
_CIlog
__vbaErrorOverflow
__vbaFileOpen
__vbaInStr
__vbaNew2
__vbaR8Str
__vbaVarInt
_adj_fdiv_m32i
_adj_fdivr_m32i
__vbaStrCopy
__vbaI4Str
__vbaVarCmpLt
__vbaFreeStrList
_adj_fdivr_m32
__vbaPowerR8
_adj_fdiv_r
ord100
__vbaVarTstNe
__vbaI4Var
__vbaVarCmpEq
ord610
__vbaVarAdd
ord612
__vbaVarDup
__vbaStrToAnsi
__vbaFpI2
__vbaVarMod
__vbaVarTstGe
__vbaFpI4
__vbaVarCopy
ord617
_CIatan
__vbaCastObj
__vbaStrMove
__vbaR8IntI4
__vbaStrVarCopy
ord619
ord542
_allmul
__vbaLateIdSt
ord545
_CItan
ord546
__vbaVarForNext
_CIexp
__vbaFreeObj
__vbaFreeStr
ord581

Sections

.text
Size: 14.4MB - Virtual size: 14.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
BJBTXL/SETUP.LST
BJBTXL/TP1/A1.jpg
BJBTXL/TP1/A2.jpg
BJBTXL/TP1/A3.jpg
BJBTXL/TP1/B1.jpg
BJBTXL/TP1/B2.jpg
BJBTXL/TP1/B3.jpg
BJBTXL/TP1/Thumbs.db
BJBTXL/TP2/3-8.jpg
.jpg
BJBTXL/TP2/3-9.jpg
.jpg
BJBTXL/TP2/4-11.jpg
.jpg
BJBTXL/TP2/4-8.jpg
.jpg
BJBTXL/TP2/4-9.jpg
.jpg
BJBTXL/TP2/Q.jpg
.jpg
BJBTXL/setup.exe
.exe windows:4 windows x86 arch:x86

e0645631469507a53fff2b011b90023d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetStockObject
SetTextColor
CreateFontIndirectA
DeleteObject
GetDeviceCaps
SetBkColor
SelectObject
GetTextMetricsA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetMalloc

user32

MessageBoxA
UpdateWindow
UnregisterClassA
GetWindowLongA
PeekMessageA
CharNextA
DispatchMessageA
DestroyWindow
PostMessageA
PackDDElParam
CharPrevA
SetWindowTextA
BeginPaint
GetClientRect
EndPaint
DrawTextA
OffsetRect
IsWindow
PostQuitMessage
FindWindowA
GetSystemMetrics
ShowCursor
GetDC
ShowWindow
MoveWindow
ReleaseDC
BringWindowToTop
GetMessageA
TranslateMessage
wvsprintfA
SetFocus
InvalidateRect
LoadStringA
LoadCursorA
LoadIconA
UnpackDDElParam
ExitWindowsEx
wsprintfA
CreateWindowExA
DefWindowProcA
RegisterClassA
SendMessageA

comdlg32

GetOpenFileNameA

advapi32

AdjustTokenPrivileges
RegEnumKeyExA
OpenProcessToken
RegCloseKey
LookupPrivilegeValueA
RegSetValueExA
RegCreateKeyA
RegQueryInfoKeyA
RegOpenKeyExA
RegQueryValueExA

ole32

CoUninitialize
OleInitialize
OleUninitialize
CoCreateInstance
CoInitialize

oleaut32

SysAllocStringLen
VariantChangeTypeEx
VariantClear
VariantTimeToSystemTime
RegisterTypeLi
LoadTypeLi

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
VerInstallFileA

kernel32

OpenFile
GlobalFree
CloseHandle
GetCPInfo
SetFilePointer
LCMapStringA
GetCurrentProcessId
LCMapStringW
VirtualFree
HeapCreate
VirtualAlloc
SetStdHandle
GetStdHandle
HeapDestroy
SetEndOfFile
GetCommandLineA
SetHandleCount
SetCurrentDirectoryA
GetCurrentDirectoryA
GetStartupInfoA
GetLocalTime
GetSystemTime
SetEnvironmentVariableA
HeapFree
HeapAlloc
GetTimeZoneInformation
ExitProcess
FileTimeToLocalFileTime
TerminateProcess
GetFileType
FileTimeToSystemTime
GetFileAttributesA
RemoveDirectoryA
GetVersion
GetWindowsDirectoryA
GetSystemDirectoryA
GetVersionExA
HeapReAlloc
CreateFileA
LocalFree
SystemTimeToFileTime
LocalFileTimeToFileTime
CreateDirectoryA
GetModuleHandleA
GetDriveTypeA
SetFileTime
LoadLibraryA
GetProcAddress
GetExitCodeProcess
FlushFileBuffers
CompareStringW
GetStringTypeW
GetStringTypeA
RtlUnwind
GetEnvironmentStringsW
GetEnvironmentStrings
LocalAlloc
GlobalDeleteAtom
_lread
_lwrite
_lclose
GetFileSize
GetPrivateProfileStringA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetOEMCP
GetACP
lstrcatA
lstrcpyA
lstrlenA
lstrcmpiA
OutputDebugStringA
SetFileAttributesA
CopyFileA
GetModuleFileNameA
FindClose
Sleep
IsDBCSLeadByte
WriteFile
FindFirstFileA
GetFullPathNameA
FreeLibrary
SetErrorMode
LocalLock
MoveFileExA
GlobalAddAtomA
CreateProcessA
GlobalAlloc
lstrcpynA
GlobalUnlock
GlobalLock
GlobalFindAtomA
CompareStringA
GetShortPathNameA
GetTempPathA
MoveFileA
DeleteFileA
ReadFile
GetTempFileNameA
GetLastError
GetCurrentProcess
MultiByteToWideChar
WideCharToMultiByte
LocalUnlock

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
BJBTXL/~WRL0545.tmp
.doc windows office2003
BJBTXL/使用说明.doc
.doc windows office2003
BJBTXL/新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

a0715e5ba415add7167d8b09208ecb1e

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 14.4MB - Virtual size: 14.4MB

.data Size: 4KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 3KB

Headers

File Characteristics

Sections

.rsrc Size: 26KB - Virtual size: 26KB

.reloc Size: 512B - Virtual size: 12B

988f29c1eb8054253091352741683c76

Code Sign

Signer

Headers

File Characteristics

Imports

kernel32

user32

ole32

advapi32

oleaut32

comdlg32

gdi32

Exports

Exports

Sections

.text Size: 69KB - Virtual size: 68KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 51KB - Virtual size: 51KB

.reloc Size: 5KB - Virtual size: 5KB

6a64e5b2d788fc5ccfe5529f5f992734

Code Sign

Signer

Headers

File Characteristics

Imports

kernel32

ole32

oleaut32

gdi32

user32

advapi32

Exports

Exports

Sections

.text Size: 356KB - Virtual size: 356KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 11KB - Virtual size: 22KB

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 84KB - Virtual size: 84KB

.reloc Size: 21KB - Virtual size: 20KB

Headers

File Characteristics

Sections

.rsrc Size: 33KB - Virtual size: 33KB

.reloc Size: 512B - Virtual size: 12B

624c84a04948cdb010eaf9695c0efffd

Headers

File Characteristics

Imports

ole32

version

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 51KB

.data Size: 16KB - Virtual size: 16KB

.text
Size: 14.4MB - Virtual size: 14.4MB

.data
Size: 4KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 26KB - Virtual size: 26KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 69KB - Virtual size: 68KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 51KB - Virtual size: 51KB

.reloc
Size: 5KB - Virtual size: 5KB

.text
Size: 356KB - Virtual size: 356KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 11KB - Virtual size: 22KB

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 84KB - Virtual size: 84KB

.reloc
Size: 21KB - Virtual size: 20KB

.rsrc
Size: 33KB - Virtual size: 33KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 52KB - Virtual size: 51KB

.data
Size: 16KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 120KB - Virtual size: 120KB

.reloc
Size: 512B - Virtual size: 12B

.text
Size: 685KB - Virtual size: 684KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 279KB - Virtual size: 278KB

.reloc
Size: 38KB - Virtual size: 38KB

.text
Size: 129KB - Virtual size: 129KB

.data
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 80KB - Virtual size: 80KB

.reloc
Size: 8KB - Virtual size: 7KB

.text
Size: 977KB - Virtual size: 977KB

.data
Size: 15KB - Virtual size: 214KB

.rsrc
Size: 1024B - Virtual size: 908B

.reloc
Size: 26KB - Virtual size: 25KB