UNBAN[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

UNBAN.zip
Size

35.9MB
MD5

e121dbf20467ae1929b45abe78fbe714
SHA1

c974193f0434b2597e8fa4fb0c27bf448708feb5
SHA256

63735ab7c166ba703679f9917a14c549ca7b1da1d29033b924ee04d1a8eb51b8
SHA512

7a9dcee6eb179b372216a0a013e2f5d76c78dd6d0b671e0d3421ec3e6e86e9c111ae6ab044ad8275c6f50d0d06d46a8bc07326783a619c9c1898359fd60a6a5d
SSDEEP

786432:uzQDXXuNOdLNMWDkCkCYyxhmFUqu+8zgGPui7k9yA2c4/M3XuLcasscJB+Til:uzQDn1NNMWAtTyOpp8lmCXcK/caxcJBL

Score

10^/10

vmprotect themida pyinstaller

Malware Config

Signatures

Nirsoft 1 IoCs

resource	yara_rule
static1/unpack001/UNBAN/UTILS/3/1/DevManView.exe	Nirsoft

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
static1/unpack001/UNBAN/cleaner/Simple apple cleaner ( best if you dont have deep traces ).exe	themida

VMProtect packed file 1 IoCs

Detects executables packed with VMProtect commercial packer.

vmprotect

resource	yara_rule
static1/unpack001/UNBAN/UTILS/1/KernelMapper.exe	vmprotect

Detects Pyinstaller 1 IoCs

pyinstaller

resource	yara_rule
static1/unpack001/UNBAN/serialChecker.exe	pyinstaller

Unsigned PE 13 IoCs

Checks for missing Authenticode signature.

resource
unpack001/UNBAN/UTILS/1/Run Me.exe
unpack001/UNBAN/UTILS/1/Test Perm Spoof.exe
unpack001/UNBAN/_internal/PyQt5/Qt5/bin/opengl32sw.dll
unpack001/UNBAN/_internal/PyQt5/QtCore.pyd
unpack001/UNBAN/_internal/PyQt5/sip.cp311-win_amd64.pyd
unpack001/UNBAN/_internal/Pythonwin/win32ui.pyd
unpack001/UNBAN/_internal/pywin32_system32/pythoncom311.dll
unpack001/UNBAN/_internal/pywin32_system32/pywintypes311.dll
unpack001/UNBAN/_internal/win32/_win32sysloader.pyd
unpack001/UNBAN/_internal/win32/win32api.pyd
unpack001/UNBAN/_internal/win32/win32trace.pyd
unpack001/UNBAN/cleaner/Simple apple cleaner ( best if you dont have deep traces ).exe
unpack001/UNBAN/serialChecker.exe

Files

UNBAN.zip
.zip
UNBAN/Test.bat
UNBAN/UTILS/1/KernelMapper.exe
.exe windows:6 windows x64 arch:x64

ea1e0cf1f5ea982ff2181b84e3e9ef79

Code Sign

a7:5f:24:b1:7f:ae:1a:87:ec:14:59:be:25:7a:3b:6c
Certificate

Issuer

CN=EasyAntiCheat Oy,O=Certigo US.

Not Before

27/10/2021, 04:00

Not After

29/11/2024, 04:59

Subject

CN=EasyAntiCheat Oy,O=Certigo US.

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

c4:33:42:1e:c0:f0:cf:63:d0:24:46:15:36:0d:66:ce:e9:1a:09:66
Signer

Actual PE Digest

c4:33:42:1e:c0:f0:cf:63:d0:24:46:15:36:0d:66:ce:e9:1a:09:66

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetVersionExA
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
GetProcessAffinityMask
SetProcessAffinityMask
SetThreadAffinityMask
Sleep
ExitProcess
FreeLibrary
LoadLibraryA
GetModuleHandleA
GetProcAddress

shell32

ShellExecuteA

user32

DefWindowProcA
GetUserObjectInformationW
GetProcessWindowStation
GetUserObjectInformationW

advapi32

ControlService

wtsapi32

WTSSendMessageW

Exports

Exports

�"��=a��s��,j��*ж��7��-҉��@+_��fn�BLV��[�p�t�h��"4-��F�H��}��+�Ĵ0��6�� V��3��SM��Q��m�﹨�q�Us�w��W��\��\��(�ݡ�( i%e��m�͙v�qY��Ny�8OG��P(:=��$�]��E��j�C��8Y��⦔;�$2T��[��ʯ��K��)��M��K��|*�)� �u{�{��%/�6yG}Y��Y��؞[��3^L�R ��+_�]f�U2�,'�x�� (_�9��,�To�� %Gc� u?�,��yW��<'�Ѯ��9R�S�O�S��Ę��ED4��ǯь�˒��^��c�$D��B�g)��gqNo"��46�2��V�X�ĥ��&��g��1��<��E��V�}XA�vP�6��HІkBz$V�$��:��1��;� �(6�'OB��Cr��R�d�4��h�[��;a�۱�p"`�(̞h�s�,kwc�]_9hȚNz i�[+��7��^�{ں�I)��k�,��OD.Oe0�S��??&r�C/��Zs��^R�n�`�y��w��t�*�BGV�Y��fŮ��SV��j�a+�:a��*��A��Mї8"�=/�U�:8;�e3BUO<�?��F�؆0�$�� ;�&B[��OY��yb��W��1V�^��Պ��3�UP��a|��GhH��Q�FS7��}޺�m�)�r�?�z��S�� f@��|�l��x�?i��ş�4Yٓ��]��L��Jp�8�j[��cR!�ޚA��j��\+�;�� S ��ml��Y1�q��y�#�X�?��_\U��o��E��溼j�J(f�� d�?��5"s# c ��Zr��| �R�x�t��?�t�Z?��3)��zen�� `u��wO�^�A�<��6�EFZ�Ha.[2#淵�*�/f8c#l˶\y�1��o��z�� 8AWB܁q�!�[4�=��Bi0#��2?�6��t$��p��j,��5�$��p��qݞv�s��hRM�H�!k�K,kVsȱ�D%�� X`�sL��f��m!}�è_��f��݃�w(uc� �;�i!j��i d?��6ʶ"}��p�H!��$c�~%! �6l �=�g*��~Z%�1�X��Lv@6�L�:��N8�p�ldԆ� Z�{d`�K6}|�Gs��0t� �}��d{c^�~n��s�4M]ĚĚѮB9iY�_[�ނp�{=�P.(�[r��i��$Gh��o�`��r?6a'!n5z��H�aa��]o�*��D��?�ބ!̏LBr.Vк��s��_��D�!5��O��̼��k8��<&��f��Eo��tO�$�N��h`ƒ<�b�m��:�]��G�PD��ʙ\��"��j;D�C�t>�J5sCf��O��gJ�#f��e��I"t��Z�Q�f:�K�0M�� $�U ^��]�� ~��<��W��4М�虏�p��{�$��pxnY�vs��IA�N�9�7�Y�\E"n%,i�P��&&�vp�9-hX�t)��MȔ�Ƹ'7�(\�vR�޵��/f�0��f>��C��-ރ��C��?��Y "$@�B�N�e��I ��lrH*�< +��^K��r�R�|Tх��"�-t��.ҠĲԣ$�٨Mcs��N�97��8e��Ӥ��m""��~��0'��,�4�&�kJ�A>�� ũ �r�#+�ٶ�&�Q��# �U�Zb�-�Y�A��,I�9��*�:�\��>��[b��֦��0}&�B�%&�D��32`��0q�:~��Y��u��N�@O��qc�R�T�Z�o ��C��qeٳ?QI/DX��G1��8G��[��6��z�#�N�I)H��R��aF0c��i��4�X��TD�Q��+��h�� Ga��4Ib�!q�vE(Ah<�R*�~�@9AV��D�/�� Ev��밒#� �H��ᨛ��`�&� >bQ?��2vZ��7�Я��B�sDr�ٍ ��d~�-&�v^��:��x}�A�l��3��"w��r'Ŭp:q�(�s�K��-{f�xw��~Us!�� B�Fǘ��[.^1�7��c�[<kD6��HT��Q�mׇ�&�:N�ЮZ��ʔp��F��O��,j��m(�2��Ҡ(y�c�$7]»� ۡ��4�p�I1�J0��)`��S 5b"�?�s24�E�4��䗖��<��)�沺��w��U��:j�^i�W|��3�V'e:�܉��|��rB蚖#9�0��m�3Y��G(�|D �&��m� U��Ԯ�s��K�0}��$�3+%h#�d�:��eADի��Jd�Y��/�xh��m!r��78m��,�(W��[Y;b��OP��b��xx{|�[��AG��}�ꌚ�-�26K[Ut��9�L_z��`��}�B��v��Ŀ7�t�6��m$��q�;��l�)�wI�s�2�?��B��}ګ29xʮ��n��:��YS�jC��w�7��u��e>��S�4e*?X��3|K�9[�M@�FiC�\W�hN%��sOr-m�n6e��]l|W��X��Eb4��M��fJ#�G�7 d��.�y��f9��A�0H�[�|7x��/��/F .��՗l�tRv�� |�%��K/H+��dK"��z�O��N�

Sections

.text
Size: - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp1
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
UNBAN/UTILS/1/Run Me.exe
.exe windows:6 windows x64 arch:x64

08755f1c09cd6042e818084b464b05c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Sassy\Desktop\ConsoleApplication1\x64\Release\ConsoleApplication1.pdb

Imports

msvcp140

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?uncaught_exception@std@@YA_NXZ
?good@ios_base@std@@QEBA_NXZ

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__current_exception_context
__current_exception
__C_specific_handler
__std_terminate
__std_exception_copy
__std_exception_destroy
memcpy
memset
_CxxThrowException
memmove

api-ms-win-crt-utility-l1-1-0

srand
rand

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_register_onexit_function
_crt_atexit
_register_thread_local_exe_atexit_callback
system
_invalid_parameter_noinfo_noreturn
_c_exit
_exit
_cexit
__p___argv
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
__p___argc
_set_app_type
_seh_filter_exe
terminate
exit

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-heap-l1-1-0

_callnewh
free
_set_new_mode
malloc

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

kernel32

RtlCaptureContext
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
GetSystemTimeAsFileTime

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 852B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/UTILS/1/Test Perm Spoof.exe
.exe windows:6 windows x64 arch:x64

397657181a170cedf5596488efef5ae5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Sassy\Desktop\ConsoleApplication1\x64\Release\ConsoleApplication1.pdb

Imports

kernel32

FreeConsole
GetConsoleWindow
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
RtlCaptureContext

user32

MessageBoxW
ShowWindow

msvcp140

?_Xout_of_range@std@@YAXPEBD@Z
?_Xlength_error@std@@YAXPEBD@Z

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__C_specific_handler
__current_exception
__std_exception_destroy
memcpy
_CxxThrowException
__current_exception_context
memmove
memset
__std_exception_copy

api-ms-win-crt-runtime-l1-1-0

_initialize_onexit_table
_register_onexit_function
_crt_atexit
__p___argv
terminate
_c_exit
exit
system
_initterm_e
_cexit
_invalid_parameter_noinfo_noreturn
_register_thread_local_exe_atexit_callback
_initterm
_get_initial_narrow_environment
_configure_narrow_argv
__p___argc
_set_app_type
_seh_filter_exe
_exit
_initialize_narrow_environment

api-ms-win-crt-utility-l1-1-0

rand
srand

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-heap-l1-1-0

_set_new_mode
free
malloc
_callnewh

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/UTILS/1/amifldrv64.sys
.sys windows:6 windows x64 arch:x64

363922cc73591e60f2af113182414230

Code Sign

61:20:4d:b4:00:00:00:00:00:27
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/04/2011, 19:45

Not After

15/04/2021, 19:55

Subject

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

09:f4:3c:81:c1:eb:27:87:6e:e1:ae:fe:aa:5a:0f:5d
Certificate

Issuer

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

24/06/2014, 00:00

Not After

30/08/2017, 12:00

Subject

SERIALNUMBER=780491,CN=American Megatrends\, Inc.,O=American Megatrends\, Inc.,POSTALCODE=30093,STREET=5555 Oakbrook Parkway Suite 200,L=Norcross,ST=Georgia,C=US,1.3.6.1.4.1.311.60.2.1.2=#130747656f72676961,1.3.6.1.4.1.311.60.2.1.3=#13025553,2.5.4.15=#131450726976617465204f7267616e697a6174696f6e

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2014, 00:00

Not After

22/10/2024, 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

Issuer

CN=DigiCert High Assurance EV Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

18/04/2012, 12:00

Not After

18/04/2027, 12:00

Subject

CN=DigiCert EV Code Signing CA (SHA2),OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2021, 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

6a:eb:58:7e:dc:d0:12:89:ab:c8:43:16:ae:88:95:9c:23:56:63:fe
Signer

Actual PE Digest

6a:eb:58:7e:dc:d0:12:89:ab:c8:43:16:ae:88:95:9c:23:56:63:fe

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\amibios\utility\amiflashdriver\flashdriverwin64\Release\amd64\amifldrv64.pdb

Imports

ntoskrnl.exe

ZwMapViewOfSection
RtlInitUnicodeString
ZwUnmapViewOfSection
ZwClose
ObReferenceObjectByHandle
ZwOpenSection
MmUnmapLockedPages
MmMapLockedPages
MmFreeContiguousMemory
MmBuildMdlForNonPagedPool
IoFreeMdl
MmGetPhysicalAddress
MmMapIoSpace
PsGetVersion
MmIsAddressValid
IoAllocateMdl
MmAllocateContiguousMemory
DbgPrint
IoDeleteSymbolicLink
IoDeleteDevice
IofCompleteRequest
IoCreateSymbolicLink
IoCreateDevice
KeBugCheckEx
MmMapLockedPagesSpecifyCache
MmUnmapIoSpace

hal

HalTranslateBusAddress

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 572B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 1024B - Virtual size: 1010B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
UNBAN/UTILS/2/Run Me.bat
.bat .vbs
UNBAN/UTILS/2/Volumeid64.exe
.exe windows:5 windows x64 arch:x64

735aed1002ee8ff1be0e1dee668e8b0d

Code Sign

33:00:00:00:9b:e0:74:37:cb:3d:4d:8d:2e:00:00:00:00:00:9b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

30/03/2016, 19:21

Not After

30/06/2017, 19:21

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:728D-C45F-F9EB,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/06/2015, 17:42

Not After

04/09/2016, 17:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:64:47:84:94:86:db:41:19:38:00:00:00:00:00:64
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

28/10/2015, 20:31

Not After

28/01/2017, 20:31

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

65:97:9c:4b:c0:56:29:3c:65:68:1d:c8:51:cc:90:6a:97:43:fe:d9:91:a6:db:5c:b9:5c:47:8e:bf:73:7b:f7
Signer

Actual PE Digest

65:97:9c:4b:c0:56:29:3c:65:68:1d:c8:51:cc:90:6a:97:43:fe:d9:91:a6:db:5c:b9:5c:47:8e:bf:73:7b:f7

Digest Algorithm

sha256

PE Digest Matches

true

25:f3:81:49:d7:50:ad:69:9f:da:99:18:45:e2:bd:84:7c:66:4c:a4
Signer

Actual PE Digest

25:f3:81:49:d7:50:ad:69:9f:da:99:18:45:e2:bd:84:7c:66:4c:a4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

FormatMessageA
GetDriveTypeA
CreateFileA
GetVolumeInformationA
GetVersionExA
LCMapStringW
CloseHandle
GetStringTypeW
OutputDebugStringW
SetFilePointer
DeviceIoControl
ReadFile
WriteFile
GetLastError
GetCommandLineW
GetVersion
LoadLibraryA
GetModuleHandleA
GetStdHandle
LocalFree
LocalAlloc
GetProcAddress
GetModuleFileNameW
GetModuleFileNameA
GetFileType
ReadConsoleW
WriteConsoleW
SetFilePointerEx
HeapReAlloc
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
EnterCriticalSection
LeaveCriticalSection
SetStdHandle
HeapAlloc
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
WideCharToMultiByte
HeapFree
GetConsoleMode
ReadConsoleInputA
SetConsoleMode
GetCommandLineA
DeleteCriticalSection
FlushFileBuffers
GetConsoleCP
RtlUnwindEx
IsDebuggerPresent
IsProcessorFeaturePresent
GetStartupInfoW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCurrentThreadId
GetProcessHeap
LoadLibraryExW
CreateFileW
QueryPerformanceCounter
GetCurrentProcessId
HeapSize

user32

SendMessageA
DialogBoxIndirectParamA
EndDialog
GetDlgItem
SetWindowTextA
SetCursor
LoadCursorA
InflateRect
GetSysColorBrush

gdi32

StartPage
EndDoc
StartDocA
SetMapMode
GetDeviceCaps
EndPage

comdlg32

PrintDlgA

advapi32

RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyA
RegCloseKey
RegSetValueExA

version

GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoW
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeA

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/UTILS/3/1/DevManView.cfg
UNBAN/UTILS/3/1/DevManView.exe
.exe windows:4 windows x86 arch:x86

57395b1a198f2bee9d5195fd70610b18

Code Sign

f7:a0:a7:30:c8:7d:94:cd:83:02:e3:ea:7f:66:1b:b7
Certificate

Issuer

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/09/2019, 00:00

Not After

09/09/2023, 23:59

Subject

CN=Nir Sofer,O=Nir Sofer,POSTALCODE=7135117,STREET=Dakar 21\, Unit 82,L=Lod,C=IL

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

1d:a2:48:30:6f:9b:26:18:d0:82:e0:96:7d:33:d3:6a
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/11/2018, 00:00

Not After

31/12/2030, 23:59

Subject

CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

71:7e:99:ae:53:fc:c8:b0:bb:1d:e0:d6:0b:75:e7:29:7d:85:05:ed:b5:18:31:92:6d:7f:4b:80:3a:9d:4f:3f
Signer

Actual PE Digest

71:7e:99:ae:53:fc:c8:b0:bb:1d:e0:d6:0b:75:e7:29:7d:85:05:ed:b5:18:31:92:6d:7f:4b:80:3a:9d:4f:3f

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Projects\VS2005\DevManView\Release\DevManView.pdb

Imports

msvcrt

__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__p__fmode
_wcmdln
exit
_cexit
_XcptFilter
_exit
_c_exit
_onexit
__dllonexit
__set_app_type
_controlfp
_except_handler3
__wgetmainargs
_wcslwr
strlen
qsort
towupper
free
wcscmp
modf
memcmp
_memicmp
wcstoul
_ultow
malloc
??2@YAPAXI@Z
??3@YAXPAX@Z
wcschr
_itow
wcsrchr
_wcsicmp
wcslen
memcpy
_wcsnicmp
_purecall
_wtoi
wcscpy
memset
wcscat
_snwprintf
wcsncat

comctl32

ord17
ImageList_Create
ImageList_SetImageCount
ImageList_AddMasked
CreateStatusWindowW
CreateToolbarEx
ImageList_SetOverlayImage
ImageList_ReplaceIcon

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

Process32FirstW
GetCurrentThreadId
WinExec
EnumResourceTypesW
GetModuleHandleA
GetStartupInfoW
OpenProcess
CreateToolhelp32Snapshot
FreeLibrary
GetProcAddress
LoadLibraryExW
GetLastError
CompareFileTime
GetModuleFileNameW
SystemTimeToFileTime
LoadLibraryW
FileTimeToSystemTime
CloseHandle
ExpandEnvironmentStringsW
GetDriveTypeW
GetLogicalDrives
GetTickCount
CreateFileW
QueryDosDeviceW
DeviceIoControl
GlobalLock
SizeofResource
FormatMessageW
GetDateFormatW
GetTempFileNameW
GetVersionExW
GetFileSize
GetWindowsDirectoryW
GetModuleHandleW
FileTimeToLocalFileTime
GetTimeFormatW
GetFileAttributesW
ReadFile
LocalFree
LockResource
WriteFile
lstrcpyW
FindResourceW
lstrlenW
LoadResource
GlobalAlloc
SystemTimeToTzSpecificLocalTime
GlobalUnlock
GetSystemDirectoryW
GetTempPathW
WideCharToMultiByte
WritePrivateProfileStringW
GetPrivateProfileIntW
EnumResourceNamesW
GetPrivateProfileStringW
GetStdHandle
Sleep
DeleteFileW
SetErrorMode
CreateProcessW
GetCurrentProcessId
ExitProcess
GetCurrentProcess
ReadProcessMemory
Process32NextW

user32

SetCursor
ReleaseDC
LoadCursorW
GetSysColorBrush
ShowWindow
ChildWindowFromPoint
GetDC
GetWindowRect
GetDlgItemInt
SetWindowPos
SendDlgItemMessageW
EndDialog
EndPaint
GetDlgItem
InvalidateRect
GetWindow
GetWindowPlacement
DrawFrameControl
SetDlgItemInt
SetWindowTextW
BeginPaint
UpdateWindow
GetClientRect
SetDlgItemTextW
GetDlgItemTextW
GetSystemMetrics
DeferWindowPos
CreateWindowExW
RegisterClassW
MessageBoxW
SetMenu
LoadAcceleratorsW
PostMessageW
DefWindowProcW
TranslateAcceleratorW
SendMessageW
SetWindowPlacement
LoadImageW
DestroyIcon
LoadIconW
SetWindowLongW
GetWindowLongW
SetFocus
GetParent
KillTimer
SetTimer
EndDeferWindowPos
BeginDeferWindowPos
OpenClipboard
MoveWindow
GetMenuStringW
GetMenuItemCount
CloseClipboard
CheckMenuItem
GetCursorPos
GetSysColor
SetClipboardData
EnableWindow
MapWindowPoints
GetMenu
GetSubMenu
EmptyClipboard
InsertMenuItemW
EnableMenuItem
GetClassNameW
GetDesktopWindow
GetWindowTextW
LoadMenuW
ModifyMenuW
GetMenuItemInfoW
GetDlgCtrlID
DialogBoxParamW
DestroyMenu
CreateDialogParamW
DestroyWindow
EnumChildWindows
LoadStringW
GetKeyState
SetMenuItemInfoW
CreatePopupMenu
InsertMenuW
DeleteMenu
RemoveMenu
RegisterWindowMessageW
TrackPopupMenu
PostQuitMessage
GetMessageW
DispatchMessageW
IsDialogMessageW
TranslateMessage
DrawTextExW
GetMonitorInfoW
MonitorFromWindow
GetWindowThreadProcessId
EnumWindows
AttachThreadInput
SetForegroundWindow

gdi32

SetBkMode
DeleteObject
GetTextExtentPoint32W
SetBkColor
SelectObject
SetTextColor
CreateFontIndirectW
GetDeviceCaps
GetStockObject

comdlg32

FindTextW
GetOpenFileNameW
GetSaveFileNameW

advapi32

QueryServiceStatus
StartServiceW
OpenServiceW
ChangeServiceConfigW
ControlService
CloseServiceHandle
OpenSCManagerW
RegLoadKeyW
RegCloseKey
RegUnLoadKeyW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegSetKeySecurity
RegConnectRegistryW
RegGetKeySecurity

shell32

ExtractIconExW
ShellExecuteW
SHGetFileInfoW
Shell_NotifyIconW

ole32

CoUninitialize
CoInitialize
CoCreateInstance

Sections

.text
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
UNBAN/UTILS/3/1/DeviceCleanupCmd.exe
.exe windows:5 windows x64 arch:x64

6aa5e2f8804f69cfa4766d009271c7d7

Code Sign

5b:16:02:a6:5c:10:8c:b5:47:a1:5f:08:9a:33:5c:5b
Certificate

Issuer

CN=Uwe Sieber,O=www.uwe-sieber.de,1.2.840.113549.1.9.1=#0c126d61696c407577652d7369656265722e6465

Not Before

08/09/2011, 13:43

Not After

30/12/2099, 22:00

Subject

CN=Uwe Sieber,O=www.uwe-sieber.de,1.2.840.113549.1.9.1=#0c126d61696c407577652d7369656265722e6465

Extended Key Usages

ExtKeyUsageCodeSigning

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

8c:77:a0:00:8f:f4:d1:b0:c6:3d:9f:3a:48:83:8d:6b
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

23/10/2020, 00:00

Not After

22/01/2032, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #2,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

58:67:b5:7d:83:db:6e:07:36:99:78:ca:39:7f:ce:60:56:48:84:60
Signer

Actual PE Digest

58:67:b5:7d:83:db:6e:07:36:99:78:ca:39:7f:ce:60:56:48:84:60

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

u:\1Source\VC\DeviceCleanupCmd113\Release_x64\DeviceCleanupCmd.pdb

Imports

kernel32

lstrcatA
QueryDosDeviceW
lstrcmpiW
lstrcpyW
GetTickCount
CloseHandle
LocalFree
GetLastError
OpenProcess
GetCurrentProcess
DeleteCriticalSection
GetCurrentProcessId
GetConsoleWindow
ReadConsoleInputW
FlushConsoleInputBuffer
Sleep
GetNumberOfConsoleInputEvents
SetConsoleTextAttribute
LeaveCriticalSection
EnterCriticalSection
GetConsoleScreenBufferInfo
GetStdHandle
lstrlenA
WriteFile
GetFileType
PeekConsoleInputW
lstrcpyA
InitializeCriticalSection
GetConsoleMode
SetConsoleMode
GetConsoleOutputCP
GetACP
SetConsoleCtrlHandler
HeapAlloc
HeapFree
lstrlenW
GetCommandLineW
GetSystemDirectoryA
FreeLibrary
SetFileAttributesA
GetFileAttributesA
GetWindowsDirectoryA
GetProcAddress
ExitProcess
GetProcessHeap
lstrcatW
SetConsoleWindowInfo
SetConsoleScreenBufferSize
GetModuleFileNameW
GetModuleHandleA
GetVersionExW
SetLastError
LoadLibraryW
GetSystemDirectoryW
LoadLibraryA
SystemTimeToFileTime
GetSystemTime
LocalAlloc
RaiseException

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/UTILS/3/1/DriveCleanup.exe
.exe windows:5 windows x64 arch:x64

53e2fdd9f0e671e26681569046be0658

Code Sign

5b:16:02:a6:5c:10:8c:b5:47:a1:5f:08:9a:33:5c:5b
Certificate

Issuer

CN=Uwe Sieber,O=www.uwe-sieber.de,1.2.840.113549.1.9.1=#0c126d61696c407577652d7369656265722e6465

Not Before

08/09/2011, 13:43

Not After

30/12/2099, 22:00

Subject

CN=Uwe Sieber,O=www.uwe-sieber.de,1.2.840.113549.1.9.1=#0c126d61696c407577652d7369656265722e6465

Extended Key Usages

ExtKeyUsageCodeSigning

30:0f:6f:ac:dd:66:98:74:7c:a9:46:36:a7:78:2d:b9
Certificate

Issuer

CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US

Not Before

02/05/2019, 00:00

Not After

18/01/2038, 23:59

Subject

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

90:39:7f:9a:d2:4a:3a:13:f2:bd:91:5f:08:38:a9:43
Certificate

Issuer

CN=Sectigo RSA Time Stamping CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

11/05/2022, 00:00

Not After

10/08/2033, 23:59

Subject

CN=Sectigo RSA Time Stamping Signer #3,O=Sectigo Limited,ST=Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

90:b6:1d:5f:95:2d:18:09:ab:52:d7:fa:1f:88:13:c0:74:82:aa:17
Signer

Actual PE Digest

90:b6:1d:5f:95:2d:18:09:ab:52:d7:fa:1f:88:13:c0:74:82:aa:17

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

u:\1Source\VC\DriveCleanup163\Release_x64\DriveCleanup.pdb

Imports

kernel32

FreeLibrary
SetConsoleTextAttribute
GetStdHandle
CloseHandle
GetCurrentProcess
lstrcmpW
GetModuleFileNameW
GetConsoleWindow
SetConsoleScreenBufferSize
GetConsoleScreenBufferInfo
lstrlenW
LocalFree
GetLastError
Process32NextW
OpenProcess
Process32FirstW
CreateToolhelp32Snapshot
GetWindowsDirectoryW
GetTickCount
lstrcpyW
Sleep
lstrcmpiW
GetNumberOfConsoleInputEvents
FlushConsoleInputBuffer
PeekConsoleInputW
GetFileType
GetCurrentProcessId
SetConsoleMode
SetConsoleCtrlHandler
ReadConsoleInputW
HeapAlloc
HeapFree
WriteConsoleW
WriteFile
WideCharToMultiByte
GetOEMCP
GetCommandLineW
ExitProcess
GetProcessHeap
lstrlenA
lstrcatW
MultiByteToWideChar
DeviceIoControl
CreateFileW
FindVolumeClose
FindNextVolumeW
FindFirstVolumeW
GetVolumeInformationW
GetDriveTypeW
GetVolumeNameForVolumeMountPointW
LocalAlloc
GetProcAddress
GetModuleHandleA
LoadLibraryA
lstrcatA
GetSystemDirectoryA
GetVersionExW
FormatMessageW
RaiseException

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/UTILS/3/1/Run Me.bat
UNBAN/UTILS/3/2/1. Xbox hosts, fivem.bat
UNBAN/UTILS/3/2/2. Windows Cleanup.bat
UNBAN/UTILS/3/2/3. Epic games.bat
UNBAN/UTILS/3/2/4. Identifers.bat
UNBAN/UTILS/3/2/6 Spoof Mac.bat
.bat .vbs
UNBAN/UTILS/3/2/7. Run Last.bat
UNBAN/_internal/PyQt5/Qt5/bin/MSVCP140.dll
.dll windows:6 windows x64 arch:x64

01c801a34c4715440ef1f25ad689b315

Code Sign

33:00:00:01:3a:28:a9:62:84:34:04:3a:68:00:00:00:00:01:3a
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/10/2019, 23:17

Not After

21/01/2021, 23:17

Subject

CN=Microsoft Time-Stamp Service,OU=Microsoft Ireland Operations Limited+OU=Thales TSS ESN:AB41-4B27-F026,O=Microsoft Corporation,L=Redmond,ST=WA,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

57:cc:9a:c9:6d:2f:ee:a5:2d:2e:45:79:ac:66:f4:df:12:bb:66:ab:ea:8c:89:1d:b9:fb:d6:73:11:6f:70:92
Signer

Actual PE Digest

57:cc:9a:c9:6d:2f:ee:a5:2d:2e:45:79:ac:66:f4:df:12:bb:66:ab:ea:8c:89:1d:b9:fb:d6:73:11:6f:70:92

Digest Algorithm

sha256

PE Digest Matches

true

ae:7d:7d:9b:75:39:ec:be:c9:de:ff:e6:d3:dd:23:a7:df:98:21:0d
Signer

Actual PE Digest

ae:7d:7d:9b:75:39:ec:be:c9:de:ff:e6:d3:dd:23:a7:df:98:21:0d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\agent\_work\1\s\\binaries\amd64ret\bin\amd64\\msvcp140.amd64.pdb

Imports

vcruntime140

__C_specific_handler
__current_exception_context
memcmp
__uncaught_exceptions
__uncaught_exception
memchr
memmove
__std_terminate
_purecall
memset
memcpy
_CxxThrowException
__AdjustPointer
__current_exception
__std_exception_destroy
__std_type_info_destroy_list
__std_exception_copy

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-heap-l1-1-0

_callnewh
realloc
calloc
malloc
free

api-ms-win-crt-runtime-l1-1-0

abort
_invalid_parameter_noinfo_noreturn
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
terminate
_endthreadex
_seh_filter_dll
_set_new_handler
_execute_onexit_table
_crt_atexit
_cexit
_initterm_e
_configure_narrow_argv
_initterm
_errno
_beginthreadex

api-ms-win-crt-string-l1-1-0

isxdigit
isupper
wcscpy_s
wcsnlen
__strncnt
tolower
strcspn
iswdigit
isdigit
iswxdigit
islower
isspace
isalnum
iswspace
_wcsdup
iswalnum

api-ms-win-crt-locale-l1-1-0

___mb_cur_max_func
_lock_locales
___lc_locale_name_func
___lc_collate_cp_func
localeconv
___lc_codepage_func
setlocale
__pctype_func
_unlock_locales

api-ms-win-crt-stdio-l1-1-0

ungetwc
fseek
_fsopen
_wfsopen
__acrt_iob_func
_get_stream_buffer_pointers
fclose
__stdio_common_vsprintf_s
fflush
fputs
fgetc
fgetpos
fputc
fgetwc
fread
fputwc
fwrite
fsetpos
ungetc
setvbuf
_fseeki64

api-ms-win-crt-filesystem-l1-1-0

_lock_file
_wrename
_wchdir
_wremove
_wrmdir
_unlock_file

api-ms-win-crt-time-l1-1-0

_W_Getdays
_Getmonths
_W_Gettnames
_Wcsftime
_Strftime
_W_Getmonths
_Gettnames
_Getdays

api-ms-win-crt-environment-l1-1-0

_wgetcwd

api-ms-win-crt-math-l1-1-0

log
pow
powf
ldexp
logf
frexp

api-ms-win-crt-convert-l1-1-0

strtof
btowc
strtod

api-ms-win-crt-utility-l1-1-0

rand_s

kernel32

RtlCaptureStackBackTrace
RaiseException
MultiByteToWideChar
GetCPInfo
WideCharToMultiByte
LoadLibraryExA
CompareStringW
LCMapStringW
GetLocaleInfoW
CreateDirectoryW
CreateFileW
FindClose
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetFileAttributesExW
GetFileInformationByHandle
SetEndOfFile
FreeLibrary
VirtualQuery
VirtualProtect
GetSystemInfo
InitializeSListHead
GetCurrentProcessId
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetProcAddress
GetModuleHandleW
GetTickCount
GetSystemTimeAsFileTime
CreateEventW
InitializeCriticalSectionAndSpinCount
SetLastError
IsProcessorFeaturePresent
RtlPcToFileHeader
GetStringTypeW
QueryPerformanceFrequency
QueryPerformanceCounter
GetModuleHandleExW
QueueUserWorkItem
DeleteCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetNativeSystemInfo
GetExitCodeThread
GetCurrentThreadId
SwitchToThread
Sleep
WaitForSingleObjectEx
FormatMessageA
LocalFree
DecodePointer
EncodePointer
CreateHardLinkW
CopyFileW
GetLastError
CloseHandle
AreFileApisANSI
GetTempPathW
SetFileTime
SetFilePointerEx
SetFileAttributesW

Exports

Exports

??$_Getvals@_W@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IEAAX_WAEBV_Locinfo@1@@Z
??$_Getvals@_W@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IEAAX_WAEBV_Locinfo@1@@Z
??$_Getvals@_W@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IEAAX_WAEBV_Locinfo@1@@Z
??0?$_Yarn@D@std@@QEAA@AEBV01@@Z
??0?$_Yarn@D@std@@QEAA@PEBD@Z
??0?$_Yarn@D@std@@QEAA@XZ
??0?$_Yarn@G@std@@QEAA@AEBV01@@Z
??0?$_Yarn@G@std@@QEAA@PEBG@Z
??0?$_Yarn@G@std@@QEAA@XZ
??0?$_Yarn@_W@std@@QEAA@AEBV01@@Z
??0?$_Yarn@_W@std@@QEAA@PEB_W@Z
??0?$_Yarn@_W@std@@QEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IEAA@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QEAA@W4_Uninitialized@1@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAA@W4_Uninitialized@1@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAA@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAA@W4_Uninitialized@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IEAA@$$QEAV01@@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAA@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z
??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAA@W4_Uninitialized@1@_N@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@AEBV01@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAA@AEBV01@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAA@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAA@XZ
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@AEBV01@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@W4_Uninitialized@1@@Z
??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAA@XZ
??0?$codecvt@DDU_Mbstatet@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$codecvt@DDU_Mbstatet@@@std@@QEAA@_K@Z
??0?$codecvt@GDU_Mbstatet@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$codecvt@GDU_Mbstatet@@@std@@QEAA@_K@Z
??0?$codecvt@_SDU_Mbstatet@@@std@@QEAA@AEBV_Locinfo@1@KW4_Codecvt_mode@1@_K@Z
??0?$codecvt@_SDU_Mbstatet@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$codecvt@_SDU_Mbstatet@@@std@@QEAA@_K@Z
??0?$codecvt@_UDU_Mbstatet@@@std@@QEAA@AEBV_Locinfo@1@KW4_Codecvt_mode@1@_K@Z
??0?$codecvt@_UDU_Mbstatet@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$codecvt@_UDU_Mbstatet@@@std@@QEAA@_K@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$codecvt@_WDU_Mbstatet@@@std@@QEAA@_K@Z
??0?$ctype@D@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$ctype@D@std@@QEAA@PEBF_N_K@Z
??0?$ctype@G@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$ctype@G@std@@QEAA@_K@Z
??0?$ctype@_W@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$ctype@_W@std@@QEAA@_K@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@_K@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@_K@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@_K@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@_K@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@_K@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@_K@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IEAA@PEBD_K@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@_K@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IEAA@PEBD_K@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@_K@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IEAA@PEBD_K@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@_K@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAA@_K@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IEAA@PEBD_K@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAA@_K@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IEAA@PEBD_K@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@AEBV_Locinfo@1@_K@Z
??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAA@_K@Z
??0Init@ios_base@std@@QEAA@XZ
??0_Facet_base@std@@QEAA@AEBV01@@Z
??0_Facet_base@std@@QEAA@XZ
??0_Init_locks@std@@QEAA@XZ
??0_Locimp@locale@std@@AEAA@AEBV012@@Z
??0_Locimp@locale@std@@AEAA@_N@Z
??0_Locinfo@std@@QEAA@HPEBD@Z
??0_Locinfo@std@@QEAA@PEBD@Z
??0_Lockit@std@@QEAA@H@Z
??0_Lockit@std@@QEAA@XZ
??0_Timevec@std@@QEAA@AEBV01@@Z
??0_Timevec@std@@QEAA@PEAX@Z
??0_UShinit@std@@QEAA@XZ
??0_Winit@std@@QEAA@XZ
??0codecvt_base@std@@QEAA@_K@Z
??0ctype_base@std@@QEAA@_K@Z
??0facet@locale@std@@IEAA@_K@Z
??0id@locale@std@@QEAA@_K@Z
??0ios_base@std@@IEAA@XZ
??0task_continuation_context@Concurrency@@AEAA@XZ
??0time_base@std@@QEAA@_K@Z
??1?$_Yarn@D@std@@QEAA@XZ
??1?$_Yarn@G@std@@QEAA@XZ
??1?$_Yarn@_W@std@@QEAA@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UEAA@XZ
??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UEAA@XZ
??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_istream@GU?$char_traits@G@std@@@std@@UEAA@XZ
??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UEAA@XZ
??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UEAA@XZ
??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UEAA@XZ
??1?$codecvt@DDU_Mbstatet@@@std@@MEAA@XZ
??1?$codecvt@GDU_Mbstatet@@@std@@MEAA@XZ
??1?$codecvt@_SDU_Mbstatet@@@std@@MEAA@XZ
??1?$codecvt@_UDU_Mbstatet@@@std@@MEAA@XZ
??1?$codecvt@_WDU_Mbstatet@@@std@@MEAA@XZ
??1?$ctype@D@std@@MEAA@XZ
??1?$ctype@G@std@@MEAA@XZ
??1?$ctype@_W@std@@MEAA@XZ
??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MEAA@XZ
??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MEAA@XZ
??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MEAA@XZ
??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MEAA@XZ
??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MEAA@XZ
??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MEAA@XZ
??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MEAA@XZ
??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MEAA@XZ
??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MEAA@XZ
??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MEAA@XZ
??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MEAA@XZ
??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MEAA@XZ
??1Init@ios_base@std@@QEAA@XZ
??1_Facet_base@std@@UEAA@XZ
??1_Init_locks@std@@QEAA@XZ
??1_Locimp@locale@std@@MEAA@XZ
??1_Locinfo@std@@QEAA@XZ
??1_Lockit@std@@QEAA@XZ
??1_Timevec@std@@QEAA@XZ
??1_UShinit@std@@QEAA@XZ
??1_Winit@std@@QEAA@XZ
??1codecvt_base@std@@UEAA@XZ
??1ctype_base@std@@UEAA@XZ
??1facet@locale@std@@MEAA@XZ
??1ios_base@std@@UEAA@XZ
??1time_base@std@@UEAA@XZ
??4?$_Iosb@H@std@@QEAAAEAV01@$$QEAV01@@Z
??4?$_Iosb@H@std@@QEAAAEAV01@AEBV01@@Z
??4?$_Yarn@D@std@@QEAAAEAV01@AEBV01@@Z
??4?$_Yarn@D@std@@QEAAAEAV01@PEBD@Z
??4?$_Yarn@G@std@@QEAAAEAV01@AEBV01@@Z
??4?$_Yarn@G@std@@QEAAAEAV01@PEBG@Z
??4?$_Yarn@_W@std@@QEAAAEAV01@AEBV01@@Z
??4?$_Yarn@_W@std@@QEAAAEAV01@PEB_W@Z
??4?$basic_iostream@DU?$char_traits@D@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_iostream@GU?$char_traits@G@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_istream@GU?$char_traits@G@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_ostream@GU?$char_traits@G@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IEAAAEAV01@$$QEAV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAAEAV01@AEBV01@@Z
??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAAEAV01@AEBV01@@Z
??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAAEAV01@AEBV01@@Z
??4Init@ios_base@std@@QEAAAEAV012@AEBV012@@Z
??4_Crt_new_delete@std@@QEAAAEAU01@$$QEAU01@@Z
??4_Crt_new_delete@std@@QEAAAEAU01@AEBU01@@Z
??4_Facet_base@std@@QEAAAEAV01@AEBV01@@Z
??4_Init_locks@std@@QEAAAEAV01@AEBV01@@Z
??4_Timevec@std@@QEAAAEAV01@AEBV01@@Z
??4_UShinit@std@@QEAAAEAV01@AEBV01@@Z
??4_Winit@std@@QEAAAEAV01@AEBV01@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAF@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAO@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAPEAX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEA_J@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEA_K@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@DU?$char_traits@D@std@@@1@AEAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAF@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAG@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAH@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAI@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAJ@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAK@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAM@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAN@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAO@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEAPEAX@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEA_J@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEA_K@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@AEA_N@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@GU?$char_traits@G@std@@@1@AEAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAF@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAG@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAH@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAI@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAJ@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAK@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAM@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAN@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAO@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEAPEAX@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEA_J@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEA_K@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@AEA_N@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AEAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@DU?$char_traits@D@std@@@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@PEBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@M@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@GU?$char_traits@G@std@@@1@AEAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@PEBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAAEAV01@_N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@F@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@G@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@I@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@M@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@N@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@O@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AEAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@PEAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@PEBX@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_J@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_K@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAAEAV01@_N@Z
??7ios_base@std@@QEBA_NXZ
??Bid@locale@std@@QEAA_KXZ
??Bios_base@std@@QEBA_NXZ
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@
??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@
??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@
??_7?$codecvt@DDU_Mbstatet@@@std@@6B@
??_7?$codecvt@GDU_Mbstatet@@@std@@6B@
??_7?$codecvt@_SDU_Mbstatet@@@std@@6B@
??_7?$codecvt@_UDU_Mbstatet@@@std@@6B@
??_7?$codecvt@_WDU_Mbstatet@@@std@@6B@
??_7?$ctype@D@std@@6B@
??_7?$ctype@G@std@@6B@
??_7?$ctype@_W@std@@6B@
??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@
??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@
??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@
??_7_Facet_base@std@@6B@
??_7_Locimp@locale@std@@6B@
??_7codecvt_base@std@@6B@
??_7ctype_base@std@@6B@
??_7facet@locale@std@@6B@
??_7ios_base@std@@6B@
??_7time_base@std@@6B@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@
??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@
??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@
??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@
??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@
??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QEAAXXZ
??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QEAAXXZ
??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QEAAXXZ
??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QEAAXXZ
??_F?$codecvt@DDU_Mbstatet@@@std@@QEAAXXZ
??_F?$codecvt@GDU_Mbstatet@@@std@@QEAAXXZ
??_F?$codecvt@_SDU_Mbstatet@@@std@@QEAAXXZ
??_F?$codecvt@_UDU_Mbstatet@@@std@@QEAAXXZ
??_F?$codecvt@_WDU_Mbstatet@@@std@@QEAAXXZ
??_F?$ctype@D@std@@QEAAXXZ
??_F?$ctype@G@std@@QEAAXXZ
??_F?$ctype@_W@std@@QEAAXXZ
??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAAXXZ
??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAAXXZ
??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAAXXZ
??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAAXXZ
??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAAXXZ
??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAAXXZ
??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAAXXZ
??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAAXXZ
??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAAXXZ
??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QEAAXXZ
??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QEAAXXZ
??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QEAAXXZ
??_F_Locinfo@std@@QEAAXXZ
??_F_Timevec@std@@QEAAXXZ
??_Fcodecvt_base@std@@QEAAXXZ
??_Fctype_base@std@@QEAAXXZ
??_Ffacet@locale@std@@QEAAXXZ
??_Fid@locale@std@@QEAAXXZ
??_Ftime_base@std@@QEAAXXZ
?CaptureCallstack@platform@details@Concurrency@@YA_KPEAPEAX_K1@Z
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?GetNextAsyncId@platform@details@Concurrency@@YAIXZ
?ReportUnhandledError@_ExceptionHolder@details@Concurrency@@AEAAXXZ
?_Addcats@_Locinfo@std@@QEAAAEAV12@HPEBD@Z
?_Addfac@_Locimp@locale@std@@AEAAXPEAVfacet@23@_K@Z
?_Addstd@ios_base@std@@SAXPEAV12@@Z
?_Assign@_ContextCallback@details@Concurrency@@AEAAXPEAX@Z
?_Atexit@@YAXP6AXXZ@Z
?_BADOFF@std@@3_JB
?_C_str@?$_Yarn@D@std@@QEBAPEBDXZ
?_C_str@?$_Yarn@G@std@@QEBAPEBGXZ
?_C_str@?$_Yarn@_W@std@@QEBAPEB_WXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z
?_Callfns@ios_base@std@@AEAAXW4event@12@@Z
?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ
?_Clocptr@_Locimp@locale@std@@0PEAV123@EA
?_Decref@facet@locale@std@@UEAAPEAV_Facet_base@3@XZ
?_Donarrow@?$ctype@G@std@@IEBADGD@Z
?_Donarrow@?$ctype@_W@std@@IEBAD_WD@Z
?_Dowiden@?$ctype@G@std@@IEBAGD@Z
?_Dowiden@?$ctype@_W@std@@IEBA_WD@Z
?_Empty@?$_Yarn@D@std@@QEBA_NXZ
?_Empty@?$_Yarn@G@std@@QEBA_NXZ
?_Empty@?$_Yarn@_W@std@@QEBA_NXZ
?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@AEBAPEADPEADDH@Z
?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@AEBAPEADPEADDH@Z
?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@AEBAPEADPEADDH@Z
?_Findarr@ios_base@std@@AEAAAEAU_Iosarray@12@H@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEBDHH@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEBGHH@Z
?_Fiopen@std@@YAPEAU_iobuf@@PEB_WHH@Z
?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@AEBA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AEAVios_base@2@DPEBD_K@Z
?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@AEBA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AEAVios_base@2@GPEBD_K@Z
?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@AEBA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AEAVios_base@2@_WPEBD_K@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$codecvt@GDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$codecvt@_SDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$codecvt@_UDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$codecvt@_WDU_Mbstatet@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$ctype@G@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$ctype@_W@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?_Getcat@facet@locale@std@@SA_KPEAPEBV123@PEBV23@@Z
?_Getcoll@_Locinfo@std@@QEBA?AU_Collvec@@XZ
?_Getctype@_Locinfo@std@@QEBA?AU_Ctypevec@@XZ
?_Getcvt@_Locinfo@std@@QEBA?AU_Cvtvec@@XZ
?_Getdateorder@_Locinfo@std@@QEBAHXZ
?_Getdays@_Locinfo@std@@QEBAPEBDXZ
?_Getfalse@_Locinfo@std@@QEBAPEBDXZ
?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AEAVios_base@2@PEAH@Z
?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AEAVios_base@2@PEAH@Z
?_Getffld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AEAVios_base@2@PEAH@Z
?_Getffldx@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AEAVios_base@2@PEAH@Z
?_Getffldx@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AEAVios_base@2@PEAH@Z
?_Getffldx@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1AEAVios_base@2@PEAH@Z
?_Getfmt@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IEBA?AV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@V32@0AEAVios_base@2@AEAHPEAUtm@@PEBD@Z
?_Getfmt@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IEBA?AV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@V32@0AEAVios_base@2@AEAHPEAUtm@@PEBD@Z
?_Getfmt@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IEBA?AV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@0AEAVios_base@2@AEAHPEAUtm@@PEBD@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?_Getifld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1HAEBVlocale@2@@Z
?_Getifld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1HAEBVlocale@2@@Z
?_Getifld@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@AEBAHPEADAEAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@1HAEBVlocale@2@@Z
?_Getint@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@AEBAHAEAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@0HHAEAHAEBV?$ctype@D@2@@Z
?_Getint@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@AEBAHAEAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@0HHAEAHAEBV?$ctype@G@2@@Z
?_Getint@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@AEBAHAEAV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@2@0HHAEAHAEBV?$ctype@_W@2@@Z
?_Getlconv@_Locinfo@std@@QEBAPEBUlconv@@XZ
?_Getmonths@_Locinfo@std@@QEBAPEBDXZ
?_Getname@_Locinfo@std@@QEBAPEBDXZ
?_Getptr@_Timevec@std@@QEBAPEAXXZ
?_Gettnames@_Locinfo@std@@QEBA?AV_Timevec@2@XZ
?_Gettrue@_Locinfo@std@@QEBAPEBDXZ
?_Gnavail@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBA_JXZ
?_Gnavail@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEBA_JXZ
?_Gnavail@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEBA_JXZ
?_Gndec@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gndec@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAPEAGXZ
?_Gndec@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gninc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAPEAGXZ
?_Gninc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?_Gnpreinc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Gnpreinc@?$basic_streambuf@GU?$char_traits@G@std@@@std@@IEAAPEAGXZ
?_Gnpreinc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IEAAPEA_WXZ
?_Id_cnt@id@locale@std@@0HA
?_Ifmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@AEBAPEADPEADPEBDH@Z
?_Ifmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@AEBAPEADPEADPEBDH@Z
?_Ifmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@AEBAPEADPEADPEBDH@Z
?_Incref@facet@locale@std@@UEAAXXZ
?_Index@ios_base@std@@0HA

Sections

.text
Size: 336KB - Virtual size: 335KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/MSVCP140_1.dll
.dll windows:6 windows x64 arch:x64

a1d1434dddb062f5f5d6615852def52b

Code Sign

33:00:00:01:46:32:e2:e1:e5:ca:2c:4e:1f:00:00:00:00:01:46
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

13/11/2019, 21:42

Not After

11/02/2021, 21:42

Subject

CN=Microsoft Time-Stamp Service,OU=Microsoft America Operations+OU=Thales TSS ESN:3E7A-E359-A25D,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7e:55:4f:cd:cd:14:f7:a3:42:57:e6:7b:24:d0:d3:a0:30:8c:e4:96:c0:8e:aa:16:b2:e9:14:ba:04:2f:0a:a8
Signer

Actual PE Digest

7e:55:4f:cd:cd:14:f7:a3:42:57:e6:7b:24:d0:d3:a0:30:8c:e4:96:c0:8e:aa:16:b2:e9:14:ba:04:2f:0a:a8

Digest Algorithm

sha256

PE Digest Matches

true

7c:21:5a:8d:5c:3f:ad:15:77:ee:7d:97:ce:6e:63:45:b6:1e:75:ed
Signer

Actual PE Digest

7c:21:5a:8d:5c:3f:ad:15:77:ee:7d:97:ce:6e:63:45:b6:1e:75:ed

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\agent\_work\1\s\\binaries\amd64ret\bin\amd64\\msvcp140_1.amd64.pdb

Imports

msvcp140

?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Xbad_alloc@std@@YAXXZ

vcruntime140

memset
__C_specific_handler
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__std_type_info_destroy_list

api-ms-win-crt-runtime-l1-1-0

terminate
_cexit
_execute_onexit_table
_initterm
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initialize_onexit_table

api-ms-win-crt-heap-l1-1-0

free
_aligned_free
_callnewh
_aligned_malloc
malloc

kernel32

RtlVirtualUnwind
GetCurrentProcessId
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
RtlLookupFunctionEntry
RtlCaptureContext
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId

Exports

Exports

_Aligned_get_default_resource
_Aligned_new_delete_resource
_Aligned_set_default_resource
_Unaligned_get_default_resource
_Unaligned_new_delete_resource
_Unaligned_set_default_resource
null_memory_resource

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/Qt5Core.dll
.dll windows:6 windows x64 arch:x64

6d44a16d5801e1cdb9b3ba4cb45314b0

Code Sign

07:e2:ef:84:3d:0d:6f:58:cb:bb:06:e3:e8:b3:d3:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/10/2020, 00:00

Not After

31/12/2023, 12:00

Subject

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

46:3a:07:66:0a:f3:fc:83:ea:78:15:11:fd:cb:33:18:e0:4f:0a:8b:e5:54:d3:c7:7a:ee:3a:c9:64:52:81:92
Signer

Actual PE Digest

46:3a:07:66:0a:f3:fc:83:ea:78:15:11:fd:cb:33:18:e0:4f:0a:8b:e5:54:d3:c7:7a:ee:3a:c9:64:52:81:92

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\qt\work\qt\qtbase\lib\Qt5Core.pdb

Imports

mpr

WNetGetUniversalNameW

userenv

GetUserProfileDirectoryW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

netapi32

NetApiBufferFree
NetShareEnum

ws2_32

WSACleanup
WSAAsyncSelect
gethostname
WSAStartup

advapi32

RegCreateKeyExW
GetSidSubAuthorityCount
GetSidSubAuthority
BuildTrusteeWithSidW
GetNamedSecurityInfoW
GetEffectiveRightsFromAclW
LookupAccountSidW
MapGenericMask
GetTokenInformation
GetLengthSid
FreeSid
DuplicateToken
CopySid
AllocateAndInitializeSid
AccessCheck
OpenProcessToken
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
SystemFunction036
RegEnumKeyExW
RegQueryInfoKeyW
RegFlushKey
RegDeleteKeyW
RegDeleteValueW
RegEnumValueW
RegSetValueExW

kernel32

VirtualFree
ReleaseMutex
CreateMutexW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
GetNativeSystemInfo
GetModuleFileNameW
GetModuleHandleExW
OutputDebugStringW
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetConsoleWindow
GetModuleHandleW
GetProcAddress
CloseHandle
DuplicateHandle
GetLastError
SetEvent
WaitForSingleObject
CreateEventW
Sleep
WaitForMultipleObjects
SwitchToThread
CreateThread
GetCurrentThread
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
TerminateThread
ResumeThread
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemInfo
WaitForSingleObjectEx
ResetEvent
GetStartupInfoW
CompareStringEx
GetDateFormatW
GetTimeFormatW
GetLocaleInfoW
GetCurrencyFormatW
GetUserDefaultLCID
GetUserPreferredUILanguages
CompareStringW
LCMapStringW
GetSystemTime
GetLocalTime
GetTimeZoneInformation
GetGeoInfoW
GetUserGeoID
CreateFileW
GetFileAttributesExW
FindCloseChangeNotification
FindFirstChangeNotificationW
FindNextChangeNotification
GetDriveTypeW
GetStdHandle
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetFilePointer
ConnectNamedPipe
CreateNamedPipeW
GetExitCodeProcess
CreateProcessW
GetProcessId
FlushFileBuffers
GetFileType
GetLogicalDrives
GetVolumeInformationW
ReadFile
SetEndOfFile
SetFilePointerEx
WriteFile
SetErrorMode
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
OpenProcess
FreeLibrary
LoadLibraryA
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
FindClose
FindFirstFileW
GetFileAttributesW
GetFileInformationByHandle
GetFullPathNameW
GetLongPathNameW
RemoveDirectoryW
SetFileTime
GetTempPathW
GetVolumePathNamesForVolumeNameW
DeviceIoControl
LocalFree
CopyFileW
MoveFileW
MoveFileExW
TzSpecificLocalTimeToSystemTime
FileTimeToSystemTime
SystemTimeToFileTime
GetFileInformationByHandleEx
FindFirstFileExW
FindNextFileW
GetDiskFreeSpaceExW
GetVolumePathNameW
GetVolumeNameForVolumeMountPointW
ReadFileEx
PeekNamedPipe
CancelIoEx
SleepEx
WriteFileEx
GetSystemDirectoryW
LoadLibraryW
GetCommandLineW
GetCurrentProcessId
FormatMessageW
QueryPerformanceCounter
QueryPerformanceFrequency
GetTickCount64
UnregisterWaitEx
RegisterWaitForSingleObject
VirtualQuery
OpenFileMappingW
ReleaseSemaphore
CreateSemaphoreW
MultiByteToWideChar
WideCharToMultiByte
VirtualAlloc

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemFree
CoCreateGuid

shell32

SHCreateItemFromParsingName
SHFileOperationW
CommandLineToArgvW
SHGetKnownFolderPath

user32

SetTimer
KillTimer
GetWindowLongPtrW
SetWindowLongPtrW
SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
CharNextExA
MsgWaitForMultipleObjectsEx
MessageBoxW
RegisterDeviceNotificationW
UnregisterDeviceNotification
GetQueueStatus
DestroyWindow
CreateWindowExW
UnregisterClassW
RegisterClassW
DefWindowProcW
PeekMessageW
DispatchMessageW
TranslateMessage
GetWindowThreadProcessId
EnumWindows
PostThreadMessageW
PostMessageW

winmm

timeKillEvent
timeSetEvent

msvcp140

?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Syserror_map@std@@YAPEBDH@Z
?_Xbad_function_call@std@@YAXXZ
?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z
??0_Lockit@std@@QEAA@H@Z
??1_Lockit@std@@QEAA@XZ
?_Xbad_alloc@std@@YAXXZ
?id@?$ctype@D@std@@2V0locale@2@A
?_Getcat@?$ctype@D@std@@SA_KPEAPEBVfacet@locale@2@PEBV42@@Z
?tolower@?$ctype@D@std@@QEBADD@Z
?_Getgloballocale@locale@std@@CAPEAV_Locimp@12@XZ
?classic@locale@std@@SAAEBV12@XZ
??Bid@locale@std@@QEAA_KXZ
?_Xlength_error@std@@YAXPEBD@Z

msvcp140_1

_Aligned_get_default_resource

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
__current_exception_context
__current_exception
strrchr
__std_exception_copy
__std_exception_destroy
_CxxThrowException
wcschr
memcpy
memmove
memset
_purecall
__std_terminate
memcmp
memchr
strchr

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-runtime-l1-1-0

exit
abort
_errno
_initialize_narrow_environment
_initterm
_initialize_onexit_table
_register_onexit_function
_configure_narrow_argv
_execute_onexit_table
_seh_filter_dll
_endthreadex
_initterm_e
_crt_atexit
__p___argv
__p___argc
terminate
_invalid_parameter_noinfo_noreturn
_cexit
strerror

api-ms-win-crt-heap-l1-1-0

_callnewh
realloc
calloc
free
malloc

api-ms-win-crt-environment-l1-1-0

__p__environ
_wgetdcwd
_putenv_s
getenv_s
_wgetenv_s

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswprintf
_fileno
_write
_get_osfhandle
_open_osfhandle
_read
_close
fwrite
_fseeki64
fread
fgets
feof
fclose
_ftelli64
_open
_lseeki64
_wopen
__stdio_common_vsprintf
fflush
__stdio_common_vfprintf
fputs
__stdio_common_vsnprintf_s
__acrt_iob_func

api-ms-win-crt-time-l1-1-0

_mktime64
_tzset
_get_timezone
_get_tzname
_localtime64_s

api-ms-win-crt-math-l1-1-0

ceil
floor
floorf
sin
cos
atan2
hypot
ceilf
log10
_fdclass
round
_dclass
acos
asin
pow
sqrt

api-ms-win-crt-string-l1-1-0

strcpy_s
strncpy
strcmp
strncpy_s
strncmp

api-ms-win-crt-utility-l1-1-0

rand
srand
rand_s

api-ms-win-crt-convert-l1-1-0

wcstombs

api-ms-win-crt-filesystem-l1-1-0

_getdrive
_waccess
_wchmod

Exports

Exports

??$qbswap@$01@@YAPEAXPEBX_JPEAX@Z
??$qbswap@$03@@YAPEAXPEBX_JPEAX@Z
??$qbswap@$07@@YAPEAXPEBX_JPEAX@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@$$QEAV0@@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@AEBV0@@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@V?$initializer_list@VQItemSelectionRange@@@std@@@Z
??0?$QList@VQItemSelectionRange@@@@QEAA@XZ
??0?$QVector@VQPoint@@@@QEAA@$$QEAV0@@Z
??0?$QVector@VQPoint@@@@QEAA@AEBV0@@Z
??0?$QVector@VQPoint@@@@QEAA@H@Z
??0?$QVector@VQPoint@@@@QEAA@HAEBVQPoint@@@Z
??0?$QVector@VQPoint@@@@QEAA@U?$QArrayDataPointerRef@VQPoint@@@@@Z
??0?$QVector@VQPoint@@@@QEAA@V?$initializer_list@VQPoint@@@std@@@Z
??0?$QVector@VQPoint@@@@QEAA@XZ
??0?$QVector@VQPointF@@@@QEAA@$$QEAV0@@Z
??0?$QVector@VQPointF@@@@QEAA@AEBV0@@Z
??0?$QVector@VQPointF@@@@QEAA@H@Z
??0?$QVector@VQPointF@@@@QEAA@HAEBVQPointF@@@Z
??0?$QVector@VQPointF@@@@QEAA@U?$QArrayDataPointerRef@VQPointF@@@@@Z
??0?$QVector@VQPointF@@@@QEAA@V?$initializer_list@VQPointF@@@std@@@Z
??0?$QVector@VQPointF@@@@QEAA@XZ
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@$$QEAV0@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@AEBV0@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@H@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@HAEBVQXmlStreamAttribute@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@U?$QArrayDataPointerRef@VQXmlStreamAttribute@@@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@V?$initializer_list@VQXmlStreamAttribute@@@std@@@Z
??0?$QVector@VQXmlStreamAttribute@@@@QEAA@XZ
??0Connection@QMetaObject@@AEAA@PEAX@Z
??0Connection@QMetaObject@@QEAA@$$QEAV01@@Z
??0Connection@QMetaObject@@QEAA@AEBV01@@Z
??0Connection@QMetaObject@@QEAA@XZ
??0ConverterState@QTextCodec@@QEAA@V?$QFlags@W4ConversionFlag@QTextCodec@@@@@Z
??0ExceptionHolder@QtPrivate@@QEAA@AEBV01@@Z
??0ExceptionHolder@QtPrivate@@QEAA@PEAVQException@@@Z
??0ExceptionStore@QtPrivate@@QEAA@$$QEAV01@@Z
??0ExceptionStore@QtPrivate@@QEAA@AEBV01@@Z
??0ExceptionStore@QtPrivate@@QEAA@XZ
??0QAbstractAnimation@@IEAA@AEAVQAbstractAnimationPrivate@@PEAVQObject@@@Z
??0QAbstractAnimation@@QEAA@PEAVQObject@@@Z
??0QAbstractAnimationTimer@@QEAA@XZ
??0QAbstractDynamicMetaObject@@QEAA@AEBU0@@Z
??0QAbstractDynamicMetaObject@@QEAA@XZ
??0QAbstractEventDispatcher@@IEAA@AEAVQAbstractEventDispatcherPrivate@@PEAVQObject@@@Z
??0QAbstractEventDispatcher@@QEAA@PEAVQObject@@@Z
??0QAbstractEventDispatcherPrivate@@QEAA@XZ
??0QAbstractFileEngine@@IEAA@AEAVQAbstractFileEnginePrivate@@@Z
??0QAbstractFileEngine@@IEAA@XZ
??0QAbstractFileEngineHandler@@QEAA@AEBV0@@Z
??0QAbstractFileEngineHandler@@QEAA@XZ
??0QAbstractFileEngineIterator@@QEAA@V?$QFlags@W4Filter@QDir@@@@AEBVQStringList@@@Z
??0QAbstractItemModel@@IEAA@AEAVQAbstractItemModelPrivate@@PEAVQObject@@@Z
??0QAbstractItemModel@@QEAA@PEAVQObject@@@Z
??0QAbstractItemModelPrivate@@QEAA@XZ
??0QAbstractListModel@@IEAA@AEAVQAbstractItemModelPrivate@@PEAVQObject@@@Z
??0QAbstractListModel@@QEAA@PEAVQObject@@@Z
??0QAbstractMetaCallEvent@@QEAA@AEBV0@@Z
??0QAbstractMetaCallEvent@@QEAA@PEBVQObject@@HPEAVQSemaphore@@@Z
??0QAbstractNativeEventFilter@@QEAA@XZ
??0QAbstractProxyModel@@IEAA@AEAVQAbstractProxyModelPrivate@@PEAVQObject@@@Z
??0QAbstractProxyModel@@QEAA@PEAVQObject@@@Z
??0QAbstractProxyModelPrivate@@QEAA@XZ
??0QAbstractState@@IEAA@AEAVQAbstractStatePrivate@@PEAVQState@@@Z
??0QAbstractState@@IEAA@PEAVQState@@@Z
??0QAbstractTableModel@@IEAA@AEAVQAbstractItemModelPrivate@@PEAVQObject@@@Z
??0QAbstractTableModel@@QEAA@PEAVQObject@@@Z
??0QAbstractTransition@@IEAA@AEAVQAbstractTransitionPrivate@@PEAVQState@@@Z
??0QAbstractTransition@@QEAA@PEAVQState@@@Z
??0QAbstractTransitionPrivate@@QEAA@XZ
??0QAnimationDriver@@IEAA@AEAVQAnimationDriverPrivate@@PEAVQObject@@@Z
??0QAnimationDriver@@QEAA@PEAVQObject@@@Z
??0QAnimationDriverPrivate@@QEAA@XZ
??0QAnimationGroup@@IEAA@AEAVQAnimationGroupPrivate@@PEAVQObject@@@Z
??0QAnimationGroup@@QEAA@PEAVQObject@@@Z
??0QArrayData@@QEAA@XZ
??0QAssociativeIterable@@QEAA@VQAssociativeIterableImpl@QtMetaTypePrivate@@@Z
??0QBasicMutex@@QEAA@XZ
??0QBasicTimer@@QEAA@$$QEAV0@@Z
??0QBasicTimer@@QEAA@AEBV0@@Z
??0QBasicTimer@@QEAA@XZ
??0QBinaryJsonValue@@AEAA@PEAVMutableData@QBinaryJsonPrivate@@PEAVBase@2@AEBVValue@2@@Z
??0QBinaryJsonValue@@QEAA@$$QEAV0@@Z
??0QBinaryJsonValue@@QEAA@AEBVQBinaryJsonArray@@@Z
??0QBinaryJsonValue@@QEAA@AEBVQBinaryJsonObject@@@Z
??0QBinaryJsonValue@@QEAA@N@Z
??0QBinaryJsonValue@@QEAA@VQString@@@Z
??0QBinaryJsonValue@@QEAA@W4Type@QJsonValue@@@Z
??0QBinaryJsonValue@@QEAA@_N@Z
??0QBitArray@@QEAA@$$QEAV0@@Z
??0QBitArray@@QEAA@AEBV0@@Z
??0QBitArray@@QEAA@H_N@Z
??0QBitArray@@QEAA@XZ
??0QBitRef@@AEAA@AEAVQBitArray@@H@Z
??0QBuffer@@QEAA@PEAVQByteArray@@PEAVQObject@@@Z
??0QBuffer@@QEAA@PEAVQObject@@@Z
??0QByteArray@@QEAA@$$QEAV0@@Z
??0QByteArray@@QEAA@AEBV0@@Z
??0QByteArray@@QEAA@HD@Z
??0QByteArray@@QEAA@HW4Initialization@Qt@@@Z
??0QByteArray@@QEAA@PEBDH@Z
??0QByteArray@@QEAA@UQByteArrayDataPtr@@@Z
??0QByteArray@@QEAA@XZ
??0QByteArrayMatcher@@QEAA@AEBV0@@Z
??0QByteArrayMatcher@@QEAA@AEBVQByteArray@@@Z
??0QByteArrayMatcher@@QEAA@PEBDH@Z
??0QByteArrayMatcher@@QEAA@XZ
??0QByteRef@@AEAA@AEAVQByteArray@@H@Z
??0QCalendar@@QEAA@VQLatin1String@@@Z
??0QCalendar@@QEAA@VQStringView@@@Z
??0QCalendar@@QEAA@W4System@0@@Z
??0QCalendar@@QEAA@XZ
??0QCalendarBackend@@IEAA@AEBVQString@@W4System@QCalendar@@@Z
??0QCalendarBackend@@QEAA@AEBV0@@Z
??0QCborArray@@AEAA@AEAVQCborContainerPrivate@@@Z
??0QCborArray@@QEAA@AEBV0@@Z
??0QCborArray@@QEAA@V?$initializer_list@VQCborValue@@@std@@@Z
??0QCborArray@@QEAA@XZ
??0QCborMap@@AEAA@AEAVQCborContainerPrivate@@@Z
??0QCborMap@@QEAA@AEBV0@@Z
??0QCborMap@@QEAA@V?$initializer_list@U?$QPair@VQCborValue@@V1@@@@std@@@Z
??0QCborMap@@QEAA@XZ
??0QCborStreamReader@@QEAA@AEBVQByteArray@@@Z
??0QCborStreamReader@@QEAA@PEAVQIODevice@@@Z
??0QCborStreamReader@@QEAA@PEBD_J@Z
??0QCborStreamReader@@QEAA@PEBE_J@Z
??0QCborStreamReader@@QEAA@XZ
??0QCborStreamWriter@@QEAA@PEAVQByteArray@@@Z
??0QCborStreamWriter@@QEAA@PEAVQIODevice@@@Z
??0QCborValue@@QEAA@$$QEAV0@@Z
??0QCborValue@@QEAA@$$QEAVQCborArray@@@Z
??0QCborValue@@QEAA@$$QEAVQCborMap@@@Z
??0QCborValue@@QEAA@$$T@Z
??0QCborValue@@QEAA@AEBV0@@Z
??0QCborValue@@QEAA@AEBVQByteArray@@@Z
??0QCborValue@@QEAA@AEBVQCborArray@@@Z
??0QCborValue@@QEAA@AEBVQCborMap@@@Z
??0QCborValue@@QEAA@AEBVQDateTime@@@Z
??0QCborValue@@QEAA@AEBVQRegularExpression@@@Z
??0QCborValue@@QEAA@AEBVQString@@@Z
??0QCborValue@@QEAA@AEBVQUrl@@@Z
??0QCborValue@@QEAA@AEBVQUuid@@@Z
??0QCborValue@@QEAA@H@Z
??0QCborValue@@QEAA@I@Z
??0QCborValue@@QEAA@N@Z
??0QCborValue@@QEAA@PEBD@Z
??0QCborValue@@QEAA@VQLatin1String@@@Z
??0QCborValue@@QEAA@VQStringView@@@Z
??0QCborValue@@QEAA@W4QCborKnownTags@@AEBV0@@Z
??0QCborValue@@QEAA@W4QCborSimpleType@@@Z
??0QCborValue@@QEAA@W4QCborTag@@AEBV0@@Z
??0QCborValue@@QEAA@W4Type@0@@Z
??0QCborValue@@QEAA@XZ
??0QCborValue@@QEAA@_J@Z
??0QCborValue@@QEAA@_N@Z
??0QCborValueRef@@AEAA@PEAVQCborContainerPrivate@@_J@Z
??0QCborValueRef@@AEAA@XZ
??0QChar@@QEAA@D@Z
??0QChar@@QEAA@E@Z
??0QChar@@QEAA@EE@Z
??0QChar@@QEAA@F@Z
??0QChar@@QEAA@G@Z
??0QChar@@QEAA@H@Z
??0QChar@@QEAA@I@Z
??0QChar@@QEAA@UQLatin1Char@@@Z
??0QChar@@QEAA@W4SpecialCharacter@0@@Z
??0QChar@@QEAA@XZ
??0QChar@@QEAA@_S@Z
??0QChar@@QEAA@_W@Z
??0QCharRef@@AEAA@AEAVQString@@H@Z
??0QChildEvent@@QEAA@AEBV0@@Z
??0QChildEvent@@QEAA@W4Type@QEvent@@PEAVQObject@@@Z
??0QCollator@@QEAA@$$QEAV0@@Z
??0QCollator@@QEAA@AEBV0@@Z
??0QCollator@@QEAA@AEBVQLocale@@@Z
??0QCollator@@QEAA@XZ
??0QCollatorSortKey@@IEAA@PEAVQCollatorSortKeyPrivate@@@Z
??0QCollatorSortKey@@QEAA@AEBV0@@Z
??0QCommandLineOption@@QEAA@AEBV0@@Z
??0QCommandLineOption@@QEAA@AEBVQString@@000@Z
??0QCommandLineOption@@QEAA@AEBVQString@@@Z
??0QCommandLineOption@@QEAA@AEBVQStringList@@@Z
??0QCommandLineOption@@QEAA@AEBVQStringList@@AEBVQString@@11@Z
??0QCommandLineParser@@QEAA@XZ
??0QConcatenateTablesProxyModel@@QEAA@PEAVQObject@@@Z
??0QContiguousCacheData@@QEAA@XZ
??0QCoreApplication@@IEAA@AEAVQCoreApplicationPrivate@@@Z
??0QCoreApplication@@QEAA@AEAHPEAPEADH@Z
??0QCoreApplicationPrivate@@QEAA@AEAHPEAPEADI@Z
??0QCryptographicHash@@QEAA@W4Algorithm@0@@Z
??0QDaemonThread@@QEAA@PEAVQObject@@@Z
??0QDataStream@@QEAA@AEBVQByteArray@@@Z
??0QDataStream@@QEAA@PEAVQByteArray@@V?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
??0QDataStream@@QEAA@PEAVQIODevice@@@Z
??0QDataStream@@QEAA@XZ
??0QDate@@AEAA@_J@Z
??0QDate@@QEAA@HHH@Z
??0QDate@@QEAA@HHHVQCalendar@@@Z
??0QDate@@QEAA@XZ
??0QDateTime@@QEAA@$$QEAV0@@Z
??0QDateTime@@QEAA@AEBV0@@Z
??0QDateTime@@QEAA@AEBVQDate@@@Z
??0QDateTime@@QEAA@AEBVQDate@@AEBVQTime@@AEBVQTimeZone@@@Z
??0QDateTime@@QEAA@AEBVQDate@@AEBVQTime@@W4TimeSpec@Qt@@@Z
??0QDateTime@@QEAA@AEBVQDate@@AEBVQTime@@W4TimeSpec@Qt@@H@Z
??0QDateTime@@QEAA@XZ
??0QDateTimeParser@@QEAA@AEBV0@@Z
??0QDateTimeParser@@QEAA@W4Type@QMetaType@@W4Context@0@AEBVQCalendar@@@Z
??0QDeadlineTimer@@QEAA@W4ForeverConstant@0@W4TimerType@Qt@@@Z
??0QDeadlineTimer@@QEAA@W4TimerType@Qt@@@Z
??0QDeadlineTimer@@QEAA@_JW4TimerType@Qt@@@Z
??0QDebug@@QEAA@$$QEAV0@@Z
??0QDebug@@QEAA@AEBV0@@Z
??0QDebug@@QEAA@PEAVQIODevice@@@Z
??0QDebug@@QEAA@PEAVQString@@@Z
??0QDebug@@QEAA@W4QtMsgType@@@Z
??0QDebugStateSaver@@QEAA@AEAVQDebug@@@Z
??0QDeferredDeleteEvent@@QEAA@AEBV0@@Z
??0QDeferredDeleteEvent@@QEAA@XZ
??0QDir@@IEAA@AEAVQDirPrivate@@@Z
??0QDir@@QEAA@AEBV0@@Z
??0QDir@@QEAA@AEBVQString@@0V?$QFlags@W4SortFlag@QDir@@@@V?$QFlags@W4Filter@QDir@@@@@Z
??0QDir@@QEAA@AEBVQString@@@Z
??0QDirIterator@@QEAA@AEBVQDir@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QEAA@AEBVQString@@AEBVQStringList@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QEAA@AEBVQString@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDirIterator@@QEAA@AEBVQString@@V?$QFlags@W4IteratorFlag@QDirIterator@@@@@Z
??0QDynamicMetaObjectData@@QEAA@AEBU0@@Z
??0QDynamicMetaObjectData@@QEAA@XZ
??0QDynamicPropertyChangeEvent@@QEAA@AEBV0@@Z
??0QDynamicPropertyChangeEvent@@QEAA@AEBVQByteArray@@@Z
??0QEasingCurve@@QEAA@$$QEAV0@@Z
??0QEasingCurve@@QEAA@AEBV0@@Z
??0QEasingCurve@@QEAA@W4Type@0@@Z
??0QElapsedTimer@@QEAA@XZ
??0QEvent@@QEAA@AEBV0@@Z
??0QEvent@@QEAA@W4Type@0@@Z
??0QEventDispatcherWin32@@IEAA@AEAVQEventDispatcherWin32Private@@PEAVQObject@@@Z
??0QEventDispatcherWin32@@QEAA@PEAVQObject@@@Z
??0QEventDispatcherWin32Private@@QEAA@XZ
??0QEventLoop@@QEAA@PEAVQObject@@@Z
??0QEventLoopLocker@@QEAA@PEAVQEventLoop@@@Z
??0QEventLoopLocker@@QEAA@PEAVQThread@@@Z
??0QEventLoopLocker@@QEAA@XZ
??0QEventTransition@@IEAA@AEAVQEventTransitionPrivate@@PEAVQObject@@W4Type@QEvent@@PEAVQState@@@Z
??0QEventTransition@@IEAA@AEAVQEventTransitionPrivate@@PEAVQState@@@Z
??0QEventTransition@@QEAA@PEAVQObject@@W4Type@QEvent@@PEAVQState@@@Z
??0QEventTransition@@QEAA@PEAVQState@@@Z
??0QEventTransitionPrivate@@QEAA@XZ
??0QException@@QEAA@AEBV0@@Z
??0QException@@QEAA@XZ
??0QFSFileEngine@@IEAA@AEAVQFSFileEnginePrivate@@@Z
??0QFSFileEngine@@QEAA@AEBVQString@@@Z
??0QFSFileEngine@@QEAA@XZ
??0QFactoryInterface@@QEAA@AEBU0@@Z
??0QFactoryInterface@@QEAA@XZ
??0QFactoryLoader@@QEAA@PEBDAEBVQString@@W4CaseSensitivity@Qt@@@Z
??0QFile@@IEAA@AEAVQFilePrivate@@PEAVQObject@@@Z
??0QFile@@QEAA@AEBVQString@@@Z
??0QFile@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QFile@@QEAA@PEAVQObject@@@Z
??0QFile@@QEAA@XZ
??0QFileDevice@@IEAA@AEAVQFileDevicePrivate@@PEAVQObject@@@Z
??0QFileDevice@@IEAA@PEAVQObject@@@Z
??0QFileDevice@@IEAA@XZ
??0QFileInfo@@QEAA@AEBV0@@Z
??0QFileInfo@@QEAA@AEBVQDir@@AEBVQString@@@Z
??0QFileInfo@@QEAA@AEBVQFile@@@Z
??0QFileInfo@@QEAA@AEBVQString@@@Z
??0QFileInfo@@QEAA@PEAVQFileInfoPrivate@@@Z
??0QFileInfo@@QEAA@XZ
??0QFileSelector@@QEAA@PEAVQObject@@@Z
??0QFileSelectorPrivate@@QEAA@XZ
??0QFileSystemWatcher@@QEAA@AEBVQStringList@@PEAVQObject@@@Z
??0QFileSystemWatcher@@QEAA@PEAVQObject@@@Z
??0QFinalState@@IEAA@AEAVQFinalStatePrivate@@PEAVQState@@@Z
??0QFinalState@@QEAA@PEAVQState@@@Z
??0QFinalStatePrivate@@QEAA@XZ
??0QFutureInterfaceBase@@QEAA@AEBV0@@Z
??0QFutureInterfaceBase@@QEAA@W4State@0@@Z
??0QFutureWatcherBase@@QEAA@PEAVQObject@@@Z
??0QGenericArgument@@QEAA@PEBDPEBX@Z
??0QGenericReturnArgument@@QEAA@PEBDPEAX@Z
??0QGregorianCalendar@@QEAA@$$QEAV0@@Z
??0QGregorianCalendar@@QEAA@AEBV0@@Z
??0QGregorianCalendar@@QEAA@XZ
??0QHashData@@QEAA@XZ
??0QHijriCalendar@@IEAA@AEBVQString@@W4System@QCalendar@@@Z
??0QHijriCalendar@@QEAA@$$QEAV0@@Z
??0QHijriCalendar@@QEAA@AEBV0@@Z
??0QHistoryState@@QEAA@PEAVQState@@@Z
??0QHistoryState@@QEAA@W4HistoryType@0@PEAVQState@@@Z
??0QIODevice@@IEAA@AEAVQIODevicePrivate@@PEAVQObject@@@Z
??0QIODevice@@QEAA@PEAVQObject@@@Z
??0QIODevice@@QEAA@XZ
??0QIODevicePrivate@@QEAA@XZ
??0QIdentityProxyModel@@IEAA@AEAVQIdentityProxyModelPrivate@@PEAVQObject@@@Z
??0QIdentityProxyModel@@QEAA@PEAVQObject@@@Z
??0QIslamicCivilCalendar@@QEAA@$$QEAV0@@Z
??0QIslamicCivilCalendar@@QEAA@AEBV0@@Z
??0QIslamicCivilCalendar@@QEAA@XZ
??0QItemSelection@@QEAA@$$QEAV0@@Z
??0QItemSelection@@QEAA@AEBV0@@Z
??0QItemSelection@@QEAA@AEBVQModelIndex@@0@Z
??0QItemSelection@@QEAA@XZ
??0QItemSelectionModel@@IEAA@AEAVQItemSelectionModelPrivate@@PEAVQAbstractItemModel@@@Z
??0QItemSelectionModel@@QEAA@PEAVQAbstractItemModel@@@Z
??0QItemSelectionModel@@QEAA@PEAVQAbstractItemModel@@PEAVQObject@@@Z
??0QItemSelectionRange@@QEAA@$$QEAV0@@Z
??0QItemSelectionRange@@QEAA@AEBV0@@Z
??0QItemSelectionRange@@QEAA@AEBVQModelIndex@@0@Z
??0QItemSelectionRange@@QEAA@AEBVQModelIndex@@@Z
??0QItemSelectionRange@@QEAA@XZ
??0QJalaliCalendar@@QEAA@$$QEAV0@@Z
??0QJalaliCalendar@@QEAA@AEBV0@@Z
??0QJalaliCalendar@@QEAA@XZ
??0QJsonArray@@AEAA@PEAVQCborContainerPrivate@@@Z
??0QJsonArray@@QEAA@$$QEAV0@@Z
??0QJsonArray@@QEAA@AEBV0@@Z
??0QJsonArray@@QEAA@V?$initializer_list@VQJsonValue@@@std@@@Z
??0QJsonArray@@QEAA@XZ
??0QJsonDocument@@AEAA@AEBVQCborValue@@@Z
??0QJsonDocument@@QEAA@$$QEAV0@@Z
??0QJsonDocument@@QEAA@AEBV0@@Z
??0QJsonDocument@@QEAA@AEBVQJsonArray@@@Z
??0QJsonDocument@@QEAA@AEBVQJsonObject@@@Z
??0QJsonDocument@@QEAA@XZ
??0QJsonObject@@AEAA@PEAVQCborContainerPrivate@@@Z
??0QJsonObject@@QEAA@$$QEAV0@@Z
??0QJsonObject@@QEAA@AEBV0@@Z
??0QJsonObject@@QEAA@V?$initializer_list@U?$QPair@VQString@@VQJsonValue@@@@@std@@@Z
??0QJsonObject@@QEAA@XZ
??0QJsonValue@@QEAA@$$QEAV0@@Z
??0QJsonValue@@QEAA@AEBV0@@Z
??0QJsonValue@@QEAA@AEBVQJsonArray@@@Z
??0QJsonValue@@QEAA@AEBVQJsonObject@@@Z
??0QJsonValue@@QEAA@AEBVQString@@@Z
??0QJsonValue@@QEAA@H@Z
??0QJsonValue@@QEAA@N@Z
??0QJsonValue@@QEAA@PEBD@Z
??0QJsonValue@@QEAA@VQLatin1String@@@Z
??0QJsonValue@@QEAA@W4Type@0@@Z
??0QJsonValue@@QEAA@_J@Z
??0QJsonValue@@QEAA@_N@Z
??0QJsonValueRef@@QEAA@PEAVQJsonArray@@H@Z
??0QJsonValueRef@@QEAA@PEAVQJsonObject@@H@Z
??0QJulianCalendar@@QEAA@$$QEAV0@@Z
??0QJulianCalendar@@QEAA@AEBV0@@Z
??0QJulianCalendar@@QEAA@XZ
??0QLibrary@@QEAA@AEBVQString@@0PEAVQObject@@@Z
??0QLibrary@@QEAA@AEBVQString@@HPEAVQObject@@@Z
??0QLibrary@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QLibrary@@QEAA@PEAVQObject@@@Z
??0QLibraryInfo@@AEAA@XZ
??0QLine@@QEAA@AEBVQPoint@@0@Z
??0QLine@@QEAA@HHHH@Z
??0QLine@@QEAA@XZ
??0QLineF@@QEAA@AEBVQLine@@@Z
??0QLineF@@QEAA@AEBVQPointF@@0@Z
??0QLineF@@QEAA@NNNN@Z
??0QLineF@@QEAA@XZ
??0QLocale@@AEAA@AEAVQLocalePrivate@@@Z
??0QLocale@@QEAA@AEBV0@@Z
??0QLocale@@QEAA@AEBVQString@@@Z
??0QLocale@@QEAA@W4Language@0@W4Country@0@@Z
??0QLocale@@QEAA@W4Language@0@W4Script@0@W4Country@0@@Z
??0QLocale@@QEAA@XZ
??0QLocalePrivate@@QEAA@XZ
??0QLockFile@@QEAA@AEBVQString@@@Z
??0QLoggingCategory@@QEAA@PEBD@Z
??0QLoggingCategory@@QEAA@PEBDW4QtMsgType@@@Z
??0QMapDataBase@@QEAA@XZ
??0QMessageAuthenticationCode@@QEAA@W4Algorithm@QCryptographicHash@@AEBVQByteArray@@@Z
??0QMessageLogger@@QEAA@PEBDH00@Z
??0QMessageLogger@@QEAA@PEBDH0@Z
??0QMessageLogger@@QEAA@XZ
??0QMetaCallEvent@@QEAA@AEBV0@@Z
??0QMetaCallEvent@@QEAA@GGP6AXPEAVQObject@@W4Call@QMetaObject@@HPEAPEAX@ZPEBV1@H2PEAVQSemaphore@@@Z
??0QMetaCallEvent@@QEAA@GGP6AXPEAVQObject@@W4Call@QMetaObject@@HPEAPEAX@ZPEBV1@HH@Z
??0QMetaCallEvent@@QEAA@PEAVQSlotObjectBase@QtPrivate@@PEBVQObject@@HH@Z
??0QMetaCallEvent@@QEAA@PEAVQSlotObjectBase@QtPrivate@@PEBVQObject@@HPEAPEAXPEAVQSemaphore@@@Z
??0QMetaClassInfo@@QEAA@XZ
??0QMetaEnum@@QEAA@XZ
??0QMetaEnumBuilder@@AEAA@PEBVQMetaObjectBuilder@@H@Z
??0QMetaEnumBuilder@@QEAA@XZ
??0QMetaMethod@@QEAA@XZ
??0QMetaMethodBuilder@@AEAA@PEBVQMetaObjectBuilder@@H@Z
??0QMetaMethodBuilder@@QEAA@XZ
??0QMetaObjectBuilder@@QEAA@PEBUQMetaObject@@V?$QFlags@W4AddMember@QMetaObjectBuilder@@@@@Z
??0QMetaObjectBuilder@@QEAA@XZ
??0QMetaProperty@@QEAA@XZ
??0QMetaPropertyBuilder@@AEAA@PEBVQMetaObjectBuilder@@H@Z
??0QMetaPropertyBuilder@@QEAA@XZ
??0QMetaStringTable@@QEAA@$$QEAV0@@Z
??0QMetaStringTable@@QEAA@AEBV0@@Z
??0QMetaStringTable@@QEAA@AEBVQByteArray@@@Z
??0QMetaType@@AEAA@AEBV0@@Z
??0QMetaType@@AEAA@W4ExtensionFlag@0@PEBVQMetaTypeInterface@@P6APEAXHPEAXPEBX@ZP6AXH2@ZP6AXAEAVQDataStream@@3@ZP6AX62@ZP6APEAX23@ZP6AX2@ZIIHPEBUQMetaObject@@@Z
??0QMetaType@@QEAA@H@Z
??0QMilankovicCalendar@@QEAA@$$QEAV0@@Z
??0QMilankovicCalendar@@QEAA@AEBV0@@Z
??0QMilankovicCalendar@@QEAA@XZ
??0QMimeData@@QEAA@XZ
??0QMimeDatabase@@QEAA@XZ
??0QMimeType@@QEAA@AEBV0@@Z
??0QMimeType@@QEAA@AEBVQMimeTypePrivate@@@Z
??0QMimeType@@QEAA@XZ
??0QModelIndex@@AEAA@HHPEAXPEBVQAbstractItemModel@@@Z
??0QModelIndex@@AEAA@HH_KPEBVQAbstractItemModel@@@Z
??0QModelIndex@@QEAA@XZ
??0QMutex@@QEAA@W4RecursionMode@0@@Z
??0QMutex@@QEAA@XZ
??0QMutexLocker@@QEAA@PEAVQBasicMutex@@@Z
??0QMutexLocker@@QEAA@PEAVQRecursiveMutex@@@Z
??0QNonContiguousByteDevice@@IEAA@XZ
??0QObject@@IEAA@AEAVQObjectPrivate@@PEAV0@@Z
??0QObject@@QEAA@PEAV0@@Z
??0QObjectCleanupHandler@@QEAA@XZ
??0QObjectData@@QEAA@XZ
??0QObjectPrivate@@QEAA@H@Z
??0QObjectUserData@@QEAA@XZ
??0QOperatingSystemVersion@@QEAA@W4OSType@0@HHH@Z
??0QParallelAnimationGroup@@IEAA@AEAVQParallelAnimationGroupPrivate@@PEAVQObject@@@Z
??0QParallelAnimationGroup@@QEAA@PEAVQObject@@@Z
??0QPauseAnimation@@QEAA@HPEAVQObject@@@Z
??0QPauseAnimation@@QEAA@PEAVQObject@@@Z
??0QPersistentModelIndex@@QEAA@$$QEAV0@@Z
??0QPersistentModelIndex@@QEAA@AEBV0@@Z
??0QPersistentModelIndex@@QEAA@AEBVQModelIndex@@@Z
??0QPersistentModelIndex@@QEAA@XZ
??0QPluginLoader@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QPluginLoader@@QEAA@PEAVQObject@@@Z
??0QPoint@@QEAA@HH@Z
??0QPoint@@QEAA@XZ
??0QPointF@@QEAA@AEBVQPoint@@@Z
??0QPointF@@QEAA@NN@Z
??0QPointF@@QEAA@XZ
??0QProcess@@QEAA@PEAVQObject@@@Z
??0QProcessEnvironment@@QEAA@AEBV0@@Z
??0QProcessEnvironment@@QEAA@XZ
??0QPropertyAnimation@@QEAA@PEAVQObject@@@Z
??0QPropertyAnimation@@QEAA@PEAVQObject@@AEBVQByteArray@@0@Z
??0QRandomGenerator@@QEAA@AEAVseed_seq@std@@@Z
??0QRandomGenerator@@QEAA@AEBV0@@Z
??0QRandomGenerator@@QEAA@PEBI0@Z
??0QReadLocker@@QEAA@PEAVQReadWriteLock@@@Z
??0QReadWriteLock@@QEAA@W4RecursionMode@0@@Z
??0QRect@@QEAA@AEBVQPoint@@0@Z
??0QRect@@QEAA@AEBVQPoint@@AEBVQSize@@@Z
??0QRect@@QEAA@HHHH@Z
??0QRect@@QEAA@XZ
??0QRectF@@QEAA@AEBVQPointF@@0@Z
??0QRectF@@QEAA@AEBVQPointF@@AEBVQSizeF@@@Z
??0QRectF@@QEAA@AEBVQRect@@@Z
??0QRectF@@QEAA@NNNN@Z
??0QRectF@@QEAA@XZ
??0QRecursiveMutex@@QEAA@XZ
??0QRegExp@@QEAA@AEBV0@@Z
??0QRegExp@@QEAA@AEBVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z
??0QRegExp@@QEAA@XZ
??0QRegularExpression@@AEAA@AEAUQRegularExpressionPrivate@@@Z
??0QRegularExpression@@QEAA@AEBV0@@Z
??0QRegularExpression@@QEAA@AEBVQString@@V?$QFlags@W4PatternOption@QRegularExpression@@@@@Z
??0QRegularExpression@@QEAA@XZ
??0QRegularExpressionMatch@@AEAA@AEAUQRegularExpressionMatchPrivate@@@Z
??0QRegularExpressionMatch@@QEAA@AEBV0@@Z
??0QRegularExpressionMatch@@QEAA@XZ
??0QRegularExpressionMatchIterator@@AEAA@AEAUQRegularExpressionMatchIteratorPrivate@@@Z
??0QRegularExpressionMatchIterator@@QEAA@AEBV0@@Z
??0QRegularExpressionMatchIterator@@QEAA@XZ
??0QResource@@QEAA@AEBVQString@@AEBVQLocale@@@Z
??0QRomanCalendar@@IEAA@AEBVQString@@W4System@QCalendar@@@Z
??0QRomanCalendar@@QEAA@$$QEAV0@@Z
??0QRomanCalendar@@QEAA@AEBV0@@Z
??0QRunnable@@QEAA@AEBV0@@Z
??0QRunnable@@QEAA@XZ
??0QSaveFile@@QEAA@AEBVQString@@@Z
??0QSaveFile@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QSaveFile@@QEAA@PEAVQObject@@@Z
??0QSemaphore@@QEAA@H@Z
??0QSequentialAnimationGroup@@IEAA@AEAVQSequentialAnimationGroupPrivate@@PEAVQObject@@@Z
??0QSequentialAnimationGroup@@QEAA@PEAVQObject@@@Z
??0QSequentialIterable@@QEAA@VQSequentialIterableImpl@QtMetaTypePrivate@@@Z
??0QSettings@@QEAA@AEBVQString@@0PEAVQObject@@@Z
??0QSettings@@QEAA@AEBVQString@@W4Format@0@PEAVQObject@@@Z
??0QSettings@@QEAA@PEAVQObject@@@Z
??0QSettings@@QEAA@W4Format@0@W4Scope@0@AEBVQString@@2PEAVQObject@@@Z
??0QSettings@@QEAA@W4Scope@0@AEBVQString@@1PEAVQObject@@@Z
??0QSettings@@QEAA@W4Scope@0@PEAVQObject@@@Z
??0QSharedData@@QEAA@AEBV0@@Z
??0QSharedData@@QEAA@XZ
??0QSharedMemory@@QEAA@AEBVQString@@PEAVQObject@@@Z
??0QSharedMemory@@QEAA@PEAVQObject@@@Z
??0QSignalMapper@@QEAA@PEAVQObject@@@Z
??0QSignalTransition@@QEAA@PEAVQState@@@Z
??0QSignalTransition@@QEAA@PEBVQObject@@PEBDPEAVQState@@@Z
??0QSize@@QEAA@HH@Z
??0QSize@@QEAA@XZ
??0QSizeF@@QEAA@AEBVQSize@@@Z
??0QSizeF@@QEAA@NN@Z
??0QSizeF@@QEAA@XZ

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qtmimed
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/VCRUNTIME140.dll
.dll windows:6 windows x64 arch:x64

44c3854843f7a3fccdf8ddbbea66f302

Code Sign

33:00:00:01:45:3b:a0:80:0c:d8:e0:71:47:00:00:00:00:01:45
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

13/11/2019, 21:42

Not After

11/02/2021, 21:42

Subject

CN=Microsoft Time-Stamp Service,OU=Microsoft America Operations+OU=Thales TSS ESN:7BF1-E3EA-B808,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ef:0a:8e:b6:4e:47:c9:07:90:99:99:e3:8b:2f:e6:23:d3:69:d9:ce:8b:b3:b5:5f:9d:25:67:e1:44:5b:d4:38
Signer

Actual PE Digest

ef:0a:8e:b6:4e:47:c9:07:90:99:99:e3:8b:2f:e6:23:d3:69:d9:ce:8b:b3:b5:5f:9d:25:67:e1:44:5b:d4:38

Digest Algorithm

sha256

PE Digest Matches

true

b3:ce:03:03:36:c9:2f:39:8c:be:15:39:45:b4:f7:55:4d:62:f8:a4
Signer

Actual PE Digest

b3:ce:03:03:36:c9:2f:39:8c:be:15:39:45:b4:f7:55:4d:62:f8:a4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\agent\_work\1\s\\binaries\amd64ret\bin\amd64\\vcruntime140.amd64.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

terminate
abort

api-ms-win-crt-heap-l1-1-0

calloc
malloc
free

api-ms-win-crt-string-l1-1-0

strcpy_s
strncmp
wcsncmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

atol

kernel32

SetLastError
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
RtlLookupFunctionEntry
RtlUnwindEx
GetModuleHandleW
RtlUnwind
EncodePointer
RaiseException
RtlPcToFileHeader
InterlockedPushEntrySList
InterlockedFlushSList
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetLastError
LoadLibraryExW
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
GetModuleFileNameW

Exports

Exports

_CreateFrameInfo
_CxxThrowException
_FindAndUnlinkFrame
_IsExceptionObjectToBeDestroyed
_SetWinRTOutOfMemoryExceptionCallback
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__C_specific_handler
__C_specific_handler_noexcept
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__GetPlatformExceptionInfo
__NLG_Dispatch2
__NLG_Return2
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__TypeMatch
__current_exception
__current_exception_context
__intrinsic_setjmp
__intrinsic_setjmpex
__processing_throw
__report_gsfailure
__std_exception_copy
__std_exception_destroy
__std_terminate
__std_type_info_compare
__std_type_info_destroy_list
__std_type_info_hash
__std_type_info_name
__telemetry_main_invoke_trigger
__telemetry_main_return_trigger
__unDName
__unDNameEx
__uncaught_exception
__uncaught_exceptions
__vcrt_GetModuleFileNameW
__vcrt_GetModuleHandleW
__vcrt_InitializeCriticalSectionEx
__vcrt_LoadLibraryExW
_get_purecall_handler
_get_unexpected
_is_exception_typeof
_local_unwind
_purecall
_set_purecall_handler
_set_se_translator
longjmp
memchr
memcmp
memcpy
memmove
memset
set_unexpected
strchr
strrchr
strstr
unexpected
wcschr
wcsrchr
wcsstr

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/VCRUNTIME140_1.dll
.dll windows:6 windows x64 arch:x64

ae0bde6314fa2027b54ce04898f6ab69

Code Sign

33:00:00:01:46:32:e2:e1:e5:ca:2c:4e:1f:00:00:00:00:01:46
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

13/11/2019, 21:42

Not After

11/02/2021, 21:42

Subject

CN=Microsoft Time-Stamp Service,OU=Microsoft America Operations+OU=Thales TSS ESN:3E7A-E359-A25D,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:01:52:9b:40:9f:50:56:99:75:88:00:00:00:00:01:52
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/05/2019, 21:37

Not After

02/05/2020, 21:37

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

79:14:93:0b:62:93:73:f3:2f:5a:db:bd:59:28:cd:7f:bc:0b:6f:43:23:3d:3b:f8:5b:08:98:cd:27:bd:fc:ca
Signer

Actual PE Digest

79:14:93:0b:62:93:73:f3:2f:5a:db:bd:59:28:cd:7f:bc:0b:6f:43:23:3d:3b:f8:5b:08:98:cd:27:bd:fc:ca

Digest Algorithm

sha256

PE Digest Matches

true

14:79:fa:34:a3:71:74:9f:4f:55:80:31:85:02:ef:b3:83:cc:ef:fa
Signer

Actual PE Digest

14:79:fa:34:a3:71:74:9f:4f:55:80:31:85:02:ef:b3:83:cc:ef:fa

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\agent\_work\1\s\\binaries\amd64ret\bin\amd64\\vcruntime140_1.amd64.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

terminate
abort

api-ms-win-crt-heap-l1-1-0

malloc
calloc
free

api-ms-win-crt-string-l1-1-0

strcpy_s
wcsncmp

vcruntime140

__processing_throw
__C_specific_handler
memmove
__current_exception

kernel32

IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
RtlUnwindEx
RtlLookupFunctionEntry
LoadLibraryExW
GetProcAddress
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
EncodePointer
RaiseException
RtlPcToFileHeader
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetLastError
SetLastError
TlsAlloc

Exports

Exports

__CxxFrameHandler4
__NLG_Dispatch2
__NLG_Return2

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/d3dcompiler_47.dll
.dll windows:6 windows x64 arch:x64

2ce80dc262aecd9b9f45ee13d6b30c08

Code Sign

33:00:00:00:34:24:31:40:c9:a0:c1:79:8d:00:00:00:00:00:34
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27/03/2013, 20:08

Not After

27/06/2014, 20:08

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:B8EC-30A4-7144,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/01/2013, 22:33

Not After

24/04/2014, 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:16:11:04:b4:88:38:8c:be:c3:00:00:00:00:00:16
Certificate

Issuer

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

30/08/2012, 17:49

Not After

30/11/2013, 17:49

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0c:52:4c:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

06/07/2010, 20:40

Not After

06/07/2025, 20:50

Subject

CN=Microsoft Code Signing PCA 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ab:03:c2:89:51:77:ec:8e:32:be:09:f8:2b:0a:85:88:db:5f:d4:2a:86:a6:ad:00:10:29:d8:39:4f:b2:07
Signer

Actual PE Digest

08:ab:03:c2:89:51:77:ec:8e:32:be:09:f8:2b:0a:85:88:db:5f:d4:2a:86:a6:ad:00:10:29:d8:39:4f:b2:07

Digest Algorithm

sha256

PE Digest Matches

true

31:17:9e:ab:c5:82:ed:f0:dc:03:42:34:e2:18:08:28:16:db:fd:78
Signer

Actual PE Digest

31:17:9e:ab:c5:82:ed:f0:dc:03:42:34:e2:18:08:28:16:db:fd:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D3DCompiler_47.pdb

Imports

msvcrt

__dllonexit
_unlock
_lock
?terminate@@YAXXZ
??1type_info@@UEAA@XZ
__C_specific_handler
_initterm
_amsg_exit
_XcptFilter
_strtoui64
sscanf
_isnan
strtoul
_vsnprintf
isxdigit
atof
setlocale
_strdup
_mbstrlen
_vsnwprintf
strnlen
modf
strrchr
strncpy_s
memcpy_s
isalnum
_finite
_clearfp
_controlfp
strcpy_s
malloc
_strnicmp
_fpclass
strncmp
isspace
strstr
strchr
free
sprintf_s
_stricmp
_purecall
memmove
qsort
isalpha
toupper
atoi
isdigit
_onexit
??2@YAPEAX_K@Z
getenv
??3@YAXPEAX@Z
wcsncmp
wcsncpy_s
_wcsicmp
memcpy
memset
fclose
strcat_s
bsearch
_CxxThrowException
memcmp
_snwprintf_s
wcschr
iswdigit
__unDName
fread
fseek
_wfsopen
vsprintf_s
wcstol
_wcsnicmp
_wsplitpath_s
towlower
wcscpy_s
??_U@YAPEAX_K@Z
??_V@YAXPEAX@Z
swprintf_s
wcsncat_s
wcsrchr
_wfullpath
_wmakepath_s
_time64
_chsize
_close
_read
_write
_lseeki64
_get_osfhandle
_open_osfhandle
_wcsdup
wcscat_s
ftell
_mbscmp
_memicmp
_wgetenv
tolower
_wsopen
__CxxFrameHandler3
acos
asin
atan
atan2
ceil
cos
cosh
exp
floor
floorf
fmod
log
pow
sin
sinh
sqrt
strcmp
tan
tanh

advapi32

CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextW
RegOpenKeyExW
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegQueryValueExW

kernel32

LocalFree
LocalAlloc
GetVersion
GetTickCount
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
SetLastError
CreateFileMappingW
UnmapViewOfFile
GetFileSize
CreateFileA
GetSystemInfo
VirtualAlloc
VirtualFree
GetProcAddress
LoadLibraryExW
GetEnvironmentVariableA
GetFullPathNameA
GetFullPathNameW
TlsFree
TlsGetValue
TlsSetValue
TlsAlloc
Sleep
LCMapStringW
GetFileAttributesW
SetFileAttributesW
CopyFileExW
DeleteFileW
GetFileType
DeviceIoControl
ExpandEnvironmentStringsW
InitializeCriticalSectionAndSpinCount
SetFilePointer
FlushViewOfFile
MapViewOfFileEx
GetModuleFileNameA
MapViewOfFile
DisableThreadLibraryCalls
CreateFileW
GetLastError
GetFileSizeEx
ReadFile
CloseHandle
WriteFile
WideCharToMultiByte
FreeLibrary
lstrcmpiA
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
HeapCreate
HeapDestroy
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetProcessHeap
HeapFree

rpcrt4

UuidCreate

Exports

Exports

D3DAssemble
D3DCompile
D3DCompile2
D3DCompileFromFile
D3DCompressShaders
D3DCreateBlob
D3DCreateFunctionLinkingGraph
D3DCreateLinker
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DDisassemble11Trace
D3DDisassembleRegion
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DGetTraceInstructionOffsets
D3DLoadModule
D3DPreprocess
D3DReadFileToBlob
D3DReflect
D3DReflectLibrary
D3DReturnFailure1
D3DSetBlobPart
D3DStripShader
D3DWriteBlobToFile
DebugSetMute

Sections

.text
Size: 3.7MB - Virtual size: 3.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/libEGL.dll
.dll windows:6 windows x64 arch:x64

2571158206a6160a4e001934364aa256

Code Sign

07:e2:ef:84:3d:0d:6f:58:cb:bb:06:e3:e8:b3:d3:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/10/2020, 00:00

Not After

31/12/2023, 12:00

Subject

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

28:69:e7:97:2d:69:76:ea:0d:87:ac:b4:4f:4d:93:22:98:f5:ff:58:40:e6:0c:09:38:06:4e:23:7b:f5:0d:e8
Signer

Actual PE Digest

28:69:e7:97:2d:69:76:ea:0d:87:ac:b4:4f:4d:93:22:98:f5:ff:58:40:e6:0c:09:38:06:4e:23:7b:f5:0d:e8

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\qt\work\qt\qtbase\lib\libEGL.pdb

Imports

libglesv2

?DestroySync@egl@@YAIPEAX0@Z
?ClientWaitSync@egl@@YAHPEAX0H_K@Z
?GetSyncAttrib@egl@@YAIPEAX0HPEA_J@Z
?CreateImage@egl@@YAPEAXPEAX0I0PEB_J@Z
?DestroyImage@egl@@YAIPEAX0@Z
?GetPlatformDisplay@egl@@YAPEAXIPEAXPEB_J@Z
?CreatePlatformWindowSurface@egl@@YAPEAXPEAX00PEB_J@Z
?CreatePlatformPixmapSurface@egl@@YAPEAXPEAX00PEB_J@Z
?WaitSync@egl@@YAIPEAX0H@Z
?QuerySurfacePointerANGLE@egl@@YAIPEAX0HPEAPEAX@Z
?PostSubBufferNV@egl@@YAIPEAX0HHHH@Z
?GetPlatformDisplayEXT@egl@@YAPEAXIPEAXPEBH@Z
?QueryDisplayAttribEXT@egl@@YAIPEAXHPEA_J@Z
?QueryDeviceAttribEXT@egl@@YAIPEAXHPEA_J@Z
?QueryDeviceStringEXT@egl@@YAPEBDPEAXH@Z
?CreateImageKHR@egl@@YAPEAXPEAX0I0PEBH@Z
?DestroyImageKHR@egl@@YAIPEAX0@Z
?CreateSync@egl@@YAPEAXPEAXIPEB_J@Z
?ReleaseDeviceANGLE@egl@@YAIPEAX@Z
?CreateStreamKHR@egl@@YAPEAXPEAXPEBH@Z
?DestroyStreamKHR@egl@@YAIPEAX0@Z
?StreamAttribKHR@egl@@YAIPEAX0IH@Z
?QueryStreamKHR@egl@@YAIPEAX0IPEAH@Z
?QueryStreamu64KHR@egl@@YAIPEAX0IPEA_K@Z
?StreamConsumerGLTextureExternalKHR@egl@@YAIPEAX0@Z
?StreamConsumerAcquireKHR@egl@@YAIPEAX0@Z
?StreamConsumerReleaseKHR@egl@@YAIPEAX0@Z
?StreamConsumerGLTextureExternalAttribsNV@egl@@YAIPEAX0PEB_J@Z
?CreateStreamProducerD3DTextureNV12ANGLE@egl@@YAIPEAX0PEB_J@Z
?StreamPostD3DTextureNV12ANGLE@egl@@YAIPEAX00PEB_J@Z
?GetSyncValuesCHROMIUM@egl@@YAIPEAX0PEA_K11@Z
?SwapBuffersWithDamageEXT@egl@@YAIPEAX0PEAHH@Z
?ProgramCacheGetAttribANGLE@egl@@YAHPEAXI@Z
?ProgramCacheQueryANGLE@egl@@YAXPEAXH0PEAH01@Z
?ProgramCachePopulateANGLE@egl@@YAXPEAXPEBXH1H@Z
?ProgramCacheResizeANGLE@egl@@YAHPEAXHI@Z
?GetCurrentContext@egl@@YAPEAXXZ
?WaitClient@egl@@YAIXZ
?ReleaseThread@egl@@YAIXZ
?CreatePbufferFromClientBuffer@egl@@YAPEAXPEAXI00PEBH@Z
?QueryAPI@egl@@YAIXZ
?BindAPI@egl@@YAII@Z
?SwapInterval@egl@@YAIPEAXH@Z
?SurfaceAttrib@egl@@YAIPEAX0HH@Z
?ReleaseTexImage@egl@@YAIPEAX0H@Z
?BindTexImage@egl@@YAIPEAX0H@Z
?WaitNative@egl@@YAIH@Z
?WaitGL@egl@@YAIXZ
?Terminate@egl@@YAIPEAX@Z
?SwapBuffers@egl@@YAIPEAX0@Z
?QuerySurface@egl@@YAIPEAX0HPEAH@Z
?QueryString@egl@@YAPEBDPEAXH@Z
?QueryContext@egl@@YAIPEAX0HPEAH@Z
?MakeCurrent@egl@@YAIPEAX000@Z
?Initialize@egl@@YAIPEAXPEAH1@Z
?GetProcAddress@egl@@YAP6AXXZPEBD@Z
?GetError@egl@@YAHXZ
?GetDisplay@egl@@YAPEAXPEAUHDC__@@@Z
?GetCurrentSurface@egl@@YAPEAXH@Z
?GetCurrentDisplay@egl@@YAPEAXXZ
?GetConfigs@egl@@YAIPEAXPEAPEAXHPEAH@Z
?GetConfigAttrib@egl@@YAIPEAX0HPEAH@Z
?DestroySurface@egl@@YAIPEAX0@Z
?DestroyContext@egl@@YAIPEAX0@Z
?CreateWindowSurface@egl@@YAPEAXPEAX0PEAUHWND__@@PEBH@Z
?CreatePixmapSurface@egl@@YAPEAXPEAX0PEAUHBITMAP__@@PEBH@Z
?CreatePbufferSurface@egl@@YAPEAXPEAX0PEBH@Z
?CreateContext@egl@@YAPEAXPEAX00PEBH@Z
?CopyBuffers@egl@@YAIPEAX0PEAUHBITMAP__@@@Z
?CreateDeviceANGLE@egl@@YAPEAXHPEAXPEB_J@Z
?ChooseConfig@egl@@YAIPEAXPEBHPEAPEAXHPEAH@Z

kernel32

QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
memset

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_cexit
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_seh_filter_dll

Exports

Exports

eglBindAPI
eglBindTexImage
eglChooseConfig
eglClientWaitSync
eglCopyBuffers
eglCreateContext
eglCreateDeviceANGLE
eglCreateImage
eglCreateImageKHR
eglCreatePbufferFromClientBuffer
eglCreatePbufferSurface
eglCreatePixmapSurface
eglCreatePlatformPixmapSurface
eglCreatePlatformWindowSurface
eglCreateStreamKHR
eglCreateStreamProducerD3DTextureNV12ANGLE
eglCreateSync
eglCreateWindowSurface
eglDestroyContext
eglDestroyImage
eglDestroyImageKHR
eglDestroyStreamKHR
eglDestroySurface
eglDestroySync
eglGetConfigAttrib
eglGetConfigs
eglGetCurrentContext
eglGetCurrentDisplay
eglGetCurrentSurface
eglGetDisplay
eglGetError
eglGetPlatformDisplay
eglGetPlatformDisplayEXT
eglGetProcAddress
eglGetSyncAttrib
eglGetSyncValuesCHROMIUM
eglInitialize
eglMakeCurrent
eglPostSubBufferNV
eglProgramCacheGetAttribANGLE
eglProgramCachePopulateANGLE
eglProgramCacheQueryANGLE
eglProgramCacheResizeANGLE
eglQueryAPI
eglQueryContext
eglQueryDeviceAttribEXT
eglQueryDeviceStringEXT
eglQueryDisplayAttribEXT
eglQueryStreamKHR
eglQueryStreamu64KHR
eglQueryString
eglQuerySurface
eglQuerySurfacePointerANGLE
eglReleaseDeviceANGLE
eglReleaseTexImage
eglReleaseThread
eglStreamAttribKHR
eglStreamConsumerAcquireKHR
eglStreamConsumerGLTextureExternalAttribsNV
eglStreamConsumerGLTextureExternalKHR
eglStreamConsumerReleaseKHR
eglStreamPostD3DTextureNV12ANGLE
eglSurfaceAttrib
eglSwapBuffers
eglSwapBuffersWithDamageEXT
eglSwapInterval
eglTerminate
eglWaitClient
eglWaitGL
eglWaitNative
eglWaitSync

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/libGLESv2.dll
.dll windows:6 windows x64 arch:x64

f703387b50fa5341f52a2bbf457da55a

Code Sign

07:e2:ef:84:3d:0d:6f:58:cb:bb:06:e3:e8:b3:d3:20
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

06/10/2020, 00:00

Not After

31/12/2023, 12:00

Subject

CN=The Qt Company Oy,O=The Qt Company Oy,L=Oulu,C=FI

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2013, 12:00

Not After

22/10/2028, 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f8:fd:a6:a2:aa:e5:0b:a5:01:93:a6:ea:a8:4a:dc:8d:5e:60:5d:9b:fb:fc:25:e2:18:80:9e:77:97:14:77:b5
Signer

Actual PE Digest

f8:fd:a6:a2:aa:e5:0b:a5:01:93:a6:ea:a8:4a:dc:8d:5e:60:5d:9b:fb:fc:25:e2:18:80:9e:77:97:14:77:b5

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\Users\qt\work\qt\qtbase\lib\libGLESv2.pdb

Imports

user32

DestroyWindow
CreateWindowExW
GetClientRect
IsIconic
IsWindow
InvalidateRect
GetWindowThreadProcessId
SetWindowLongPtrW
RemovePropW
GetPropW
SetPropW
CallWindowProcW
WindowFromDC

d3d9

D3DPERF_EndEvent
D3DPERF_SetMarker
D3DPERF_GetStatus
Direct3DCreate9
D3DPERF_BeginEvent

msvcp140

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAXAEBVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAPEAV12@PEAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAAHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MEAA_JPEBD_J@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAVios_base@1@AEAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@K@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAI@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_K@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
?_Xbad_function_call@std@@YAXXZ
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@PEBD_J@Z
?_Xoverflow_error@std@@YAXPEBD@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QEAA@PEAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?__ExceptionPtrCreate@@YAXPEAX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z
?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrToBool@@YA_NPEBX@Z
?__ExceptionPtrRethrow@@YAXPEBX@Z
?_Execute_once@std@@YAHAEAUonce_flag@1@P6AHPEAX1PEAPEAX@Z1@Z
?_Syserror_map@std@@YAPEBDH@Z
_Mtx_init_in_situ
_Mtx_destroy_in_situ
_Mtx_lock
_Mtx_unlock
_Cnd_init_in_situ
_Cnd_destroy_in_situ
_Cnd_wait
_Cnd_broadcast
_Cnd_register_at_thread_exit
_Cnd_unregister_at_thread_exit
?_Throw_C_error@std@@YAXH@Z
?_XGetLastError@std@@YAXXZ
?_Schedule_chore@details@Concurrency@@YAHPEAU_Threadpool_chore@12@@Z
?_Release_chore@details@Concurrency@@YAXPEAU_Threadpool_chore@12@@Z
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?_CallInContext@_ContextCallback@details@Concurrency@@QEBAXV?$function@$$A6AXXZ@std@@_N@Z
?_Reset@_ContextCallback@details@Concurrency@@AEAAXXZ
?_Capture@_ContextCallback@details@Concurrency@@AEAAXXZ
??0task_continuation_context@Concurrency@@AEAA@XZ
?_LogScheduleTask@_TaskEventLogger@details@Concurrency@@QEAAX_N@Z
?_LogCancelTask@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogTaskExecutionCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogWorkItemStarted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_LogWorkItemCompleted@_TaskEventLogger@details@Concurrency@@QEAAXXZ
?_Throw_future_error@std@@YAXAEBVerror_code@1@@Z
?_Rethrow_future_exception@std@@YAXVexception_ptr@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@M@Z
?classic@locale@std@@SAAEBV12@XZ
?imbue@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAA?AVlocale@2@AEBV32@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAM@Z
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pbase@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD00@Z
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEBAPEADXZ
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAXPEAD0@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@AEAH@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UEAA@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@I@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IEAA@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UEAA@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAAPEADXZ
?_Xbad_alloc@std@@YAXXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAA@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IEAA@XZ
?_Raise_handler@std@@3P6AXAEBVexception@stdext@@@ZEA
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?_Xlength_error@std@@YAXPEBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@_J@Z

kernel32

GetProcAddress
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
InitializeSListHead
GetSystemTimeAsFileTime
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
CloseHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetModuleHandleW
VerifyVersionInfoW
VerSetConditionMask
QueryPerformanceFrequency
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
SetLastError
GetLastError
LoadLibraryW
FreeLibrary
Sleep
GetTempFileNameA
GetTempPathA
GetCurrentProcess

vcruntime140

__std_exception_destroy
__std_exception_copy
__C_specific_handler
__current_exception_context
_CxxThrowException
_purecall
__std_terminate
__current_exception
memcpy
memmove
memset
memchr
memcmp
strstr
__std_type_info_destroy_list

vcruntime140_1

__CxxFrameHandler4

api-ms-win-crt-heap-l1-1-0

realloc
free
malloc
_callnewh

api-ms-win-crt-math-l1-1-0

sinf
logf
floorf
sinhf
tanf
expf
coshf
cosf
atanf
asinf
acosf
tanhf
exp2f
atanhf
asinhf
acoshf
_fdsign
atan2f
pow
_fdclass
modff
ldexp
log
sqrtf
ceilf
roundf
ceil
round
truncf
powf

api-ms-win-crt-runtime-l1-1-0

_cexit
_initterm_e
_crt_atexit
_initialize_onexit_table
_initterm
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_invalid_parameter_noinfo_noreturn
terminate
exit
_invoke_watson
_execute_onexit_table
_errno
_register_onexit_function

api-ms-win-crt-string-l1-1-0

strncpy
strcmp
strncmp
isdigit

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
fwrite
fopen
fclose
__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

strtoul
wcstombs
mbstowcs_s
atoi

api-ms-win-crt-environment-l1-1-0

_wgetenv

Exports

Exports

??0PlatformMethods@angle@@QEAA@XZ
??4PlatformMethods@angle@@QEAAAEAU01@$$QEAU01@@Z
??4PlatformMethods@angle@@QEAAAEAU01@AEBU01@@Z
?BeginQueryEXT@gl@@YAXII@Z
?BindAPI@egl@@YAII@Z
?BindFragmentInputLocationCHROMIUM@gl@@YAXIHPEBD@Z
?BindTexImage@egl@@YAIPEAX0H@Z
?BindUniformLocationCHROMIUM@gl@@YAXIHPEBD@Z
?BindVertexArrayOES@gl@@YAXI@Z
?BlitFramebufferANGLE@gl@@YAXHHHHHHHHII@Z
?ChooseConfig@egl@@YAIPEAXPEBHPEAPEAXHPEAH@Z
?ClientWaitSync@egl@@YAHPEAX0H_K@Z
?CompressedCopyTextureCHROMIUM@gl@@YAXII@Z
?CompressedTexImage2DRobustANGLE@gl@@YAXIHIHHHHHPEBX@Z
?CompressedTexImage3DRobustANGLE@gl@@YAXIHIHHHHHHPEBX@Z
?CompressedTexSubImage2DRobustANGLE@gl@@YAXIHHHHHIHHPEBX@Z
?CompressedTexSubImage3DRobustANGLE@gl@@YAXIHHHHHHHIHHPEBX@Z
?CopyBuffers@egl@@YAIPEAX0PEAUHBITMAP__@@@Z
?CopySubTextureCHROMIUM@gl@@YAXIHIIHHHHHHHEEE@Z
?CopyTextureCHROMIUM@gl@@YAXIHIIHHIEEE@Z
?CoverFillPathCHROMIUM@gl@@YAXII@Z
?CoverFillPathInstancedCHROMIUM@gl@@YAXHIPEBXIIIPEBM@Z
?CoverStrokePathCHROMIUM@gl@@YAXII@Z
?CoverStrokePathInstancedCHROMIUM@gl@@YAXHIPEBXIIIPEBM@Z
?CoverageModulationCHROMIUM@gl@@YAXI@Z
?CreateContext@egl@@YAPEAXPEAX00PEBH@Z
?CreateDeviceANGLE@egl@@YAPEAXHPEAXPEB_J@Z
?CreateImage@egl@@YAPEAXPEAX0I0PEB_J@Z
?CreateImageKHR@egl@@YAPEAXPEAX0I0PEBH@Z
?CreatePbufferFromClientBuffer@egl@@YAPEAXPEAXI00PEBH@Z
?CreatePbufferSurface@egl@@YAPEAXPEAX0PEBH@Z
?CreatePixmapSurface@egl@@YAPEAXPEAX0PEAUHBITMAP__@@PEBH@Z
?CreatePlatformPixmapSurface@egl@@YAPEAXPEAX00PEB_J@Z
?CreatePlatformWindowSurface@egl@@YAPEAXPEAX00PEB_J@Z
?CreateStreamKHR@egl@@YAPEAXPEAXPEBH@Z
?CreateStreamProducerD3DTextureNV12ANGLE@egl@@YAIPEAX0PEB_J@Z
?CreateSync@egl@@YAPEAXPEAXIPEB_J@Z
?CreateWindowSurface@egl@@YAPEAXPEAX0PEAUHWND__@@PEBH@Z
?DebugMessageCallbackKHR@gl@@YAXP6AXIIIIHPEBDPEBX@Z1@Z
?DebugMessageControlKHR@gl@@YAXIIIHPEBIE@Z
?DebugMessageInsertKHR@gl@@YAXIIIIHPEBD@Z
?DeleteFencesNV@gl@@YAXHPEBI@Z
?DeletePathsCHROMIUM@gl@@YAXIH@Z
?DeleteQueriesEXT@gl@@YAXHPEBI@Z
?DeleteVertexArraysOES@gl@@YAXHPEBI@Z
?DestroyContext@egl@@YAIPEAX0@Z
?DestroyImage@egl@@YAIPEAX0@Z
?DestroyImageKHR@egl@@YAIPEAX0@Z
?DestroyStreamKHR@egl@@YAIPEAX0@Z
?DestroySurface@egl@@YAIPEAX0@Z
?DestroySync@egl@@YAIPEAX0@Z
?DiscardFramebufferEXT@gl@@YAXIHPEBI@Z
?DrawArraysInstancedANGLE@gl@@YAXIHHH@Z
?DrawBuffersEXT@gl@@YAXHPEBI@Z
?DrawElementsInstancedANGLE@gl@@YAXIHIPEBXH@Z
?EGLImageTargetRenderbufferStorageOES@gl@@YAXIPEAX@Z
?EGLImageTargetTexture2DOES@gl@@YAXIPEAX@Z
?EndQueryEXT@gl@@YAXI@Z
?FinishFenceNV@gl@@YAXI@Z
?FlushMappedBufferRangeEXT@gl@@YAXI_J0@Z
?FramebufferTextureMultiviewLayeredANGLE@gl@@YAXIIIHHH@Z
?FramebufferTextureMultiviewSideBySideANGLE@gl@@YAXIIIHHPEBH@Z
?GenFencesNV@gl@@YAXHPEAI@Z
?GenPathsCHROMIUM@gl@@YAIH@Z
?GenQueriesEXT@gl@@YAXHPEAI@Z
?GenVertexArraysOES@gl@@YAXHPEAI@Z
?GetActiveUniformBlockivRobustANGLE@gl@@YAXIIIHPEAH0@Z
?GetBooleani_vRobustANGLE@gl@@YAXIIHPEAHPEAE@Z
?GetBooleanvRobustANGLE@gl@@YAXIHPEAHPEAE@Z
?GetBufferParameteri64vRobustANGLE@gl@@YAXIIHPEAHPEA_J@Z
?GetBufferParameterivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetBufferPointervOES@gl@@YAXIIPEAPEAX@Z
?GetBufferPointervRobustANGLE@gl@@YAXIIHPEAHPEAPEAX@Z
?GetConfigAttrib@egl@@YAIPEAX0HPEAH@Z
?GetConfigs@egl@@YAIPEAXPEAPEAXHPEAH@Z
?GetCurrentContext@egl@@YAPEAXXZ
?GetCurrentDisplay@egl@@YAPEAXXZ
?GetCurrentSurface@egl@@YAPEAXH@Z
?GetDebugMessageLogKHR@gl@@YAIIHPEAI000PEAHPEAD@Z
?GetDisplay@egl@@YAPEAXPEAUHDC__@@@Z
?GetError@egl@@YAHXZ
?GetFenceivNV@gl@@YAXIIPEAH@Z
?GetFloatvRobustANGLE@gl@@YAXIHPEAHPEAM@Z
?GetFramebufferAttachmentParameterivRobustANGLE@gl@@YAXIIIHPEAH0@Z
?GetFramebufferParameterivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetGraphicsResetStatusEXT@gl@@YAIXZ
?GetInteger64i_vRobustANGLE@gl@@YAXIIHPEAHPEA_J@Z
?GetInteger64vRobustANGLE@gl@@YAXIHPEAHPEA_J@Z
?GetIntegeri_vRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetIntegervRobustANGLE@gl@@YAXIHPEAH0@Z
?GetInternalformativRobustANGLE@gl@@YAXIIIHPEAH0@Z
?GetMultisamplefvRobustANGLE@gl@@YAXIIHPEAHPEAM@Z
?GetObjectLabelKHR@gl@@YAXIIHPEAHPEAD@Z
?GetObjectPtrLabelKHR@gl@@YAXPEBXHPEAHPEAD@Z
?GetPathParameterfCHROMIUM@gl@@YAXIIPEAM@Z
?GetPathParameteriCHROMIUM@gl@@YAXIIPEAH@Z
?GetPlatformDisplay@egl@@YAPEAXIPEAXPEB_J@Z
?GetPlatformDisplayEXT@egl@@YAPEAXIPEAXPEBH@Z
?GetPointervKHR@gl@@YAXIPEAPEAX@Z
?GetPointervRobustANGLERobustANGLE@gl@@YAXIHPEAHPEAPEAX@Z
?GetProcAddress@egl@@YAP6AXXZPEBD@Z
?GetProgramBinaryOES@gl@@YAXIHPEAHPEAIPEAX@Z
?GetProgramInterfaceivRobustANGLE@gl@@YAXIIIHPEAH0@Z
?GetProgramivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetQueryObjecti64vEXT@gl@@YAXIIPEA_J@Z
?GetQueryObjecti64vRobustANGLE@gl@@YAXIIHPEAHPEA_J@Z
?GetQueryObjectivEXT@gl@@YAXIIPEAH@Z
?GetQueryObjectivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetQueryObjectui64vEXT@gl@@YAXIIPEA_K@Z
?GetQueryObjectui64vRobustANGLE@gl@@YAXIIHPEAHPEA_K@Z
?GetQueryObjectuivEXT@gl@@YAXIIPEAI@Z
?GetQueryObjectuivRobustANGLE@gl@@YAXIIHPEAHPEAI@Z
?GetQueryivEXT@gl@@YAXIIPEAH@Z
?GetQueryivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetRenderbufferParameterivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetSamplerParameterIivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetSamplerParameterIuivRobustANGLE@gl@@YAXIIHPEAHPEAI@Z
?GetSamplerParameterfvRobustANGLE@gl@@YAXIIHPEAHPEAM@Z
?GetSamplerParameterivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetShaderivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetSyncAttrib@egl@@YAIPEAX0HPEA_J@Z
?GetSyncValuesCHROMIUM@egl@@YAIPEAX0PEA_K11@Z
?GetTexLevelParameterfvRobustANGLE@gl@@YAXIHIHPEAHPEAM@Z
?GetTexLevelParameterivRobustANGLE@gl@@YAXIHIHPEAH0@Z
?GetTexParameterIivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetTexParameterIuivRobustANGLE@gl@@YAXIIHPEAHPEAI@Z
?GetTexParameterfvRobustANGLE@gl@@YAXIIHPEAHPEAM@Z
?GetTexParameterivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetTranslatedShaderSourceANGLE@gl@@YAXIHPEAHPEAD@Z
?GetUniformfvRobustANGLE@gl@@YAXIHHPEAHPEAM@Z
?GetUniformivRobustANGLE@gl@@YAXIHHPEAH0@Z
?GetUniformuivRobustANGLE@gl@@YAXIHHPEAHPEAI@Z
?GetVertexAttribIivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetVertexAttribIuivRobustANGLE@gl@@YAXIIHPEAHPEAI@Z
?GetVertexAttribPointervRobustANGLE@gl@@YAXIIHPEAHPEAPEAX@Z
?GetVertexAttribfvRobustANGLE@gl@@YAXIIHPEAHPEAM@Z
?GetVertexAttribivRobustANGLE@gl@@YAXIIHPEAH0@Z
?GetnUniformfvEXT@gl@@YAXIHHPEAM@Z
?GetnUniformfvRobustANGLE@gl@@YAXIHHPEAHPEAM@Z
?GetnUniformivEXT@gl@@YAXIHHPEAH@Z
?GetnUniformivRobustANGLE@gl@@YAXIHHPEAH0@Z
?GetnUniformuivRobustANGLE@gl@@YAXIHHPEAHPEAI@Z
?Initialize@egl@@YAIPEAXPEAH1@Z
?InsertEventMarkerEXT@gl@@YAXHPEBD@Z
?IsFenceNV@gl@@YAEI@Z
?IsPathCHROMIUM@gl@@YAEI@Z
?IsQueryEXT@gl@@YAEI@Z
?IsVertexArrayOES@gl@@YAEI@Z
?MakeCurrent@egl@@YAIPEAX000@Z
?MapBufferOES@gl@@YAPEAXII@Z
?MapBufferRangeEXT@gl@@YAPEAXI_J0I@Z
?MatrixLoadIdentityCHROMIUM@gl@@YAXI@Z
?MatrixLoadfCHROMIUM@gl@@YAXIPEBM@Z
?ObjectLabelKHR@gl@@YAXIIHPEBD@Z
?ObjectPtrLabelKHR@gl@@YAXPEBXHPEBD@Z
?PathCommandsCHROMIUM@gl@@YAXIHPEBEHIPEBX@Z
?PathParameterfCHROMIUM@gl@@YAXIIM@Z
?PathParameteriCHROMIUM@gl@@YAXIIH@Z
?PathStencilFuncCHROMIUM@gl@@YAXIHI@Z
?PopDebugGroupKHR@gl@@YAXXZ
?PopGroupMarkerEXT@gl@@YAXXZ
?PostSubBufferNV@egl@@YAIPEAX0HHHH@Z
?ProgramBinaryOES@gl@@YAXIIPEBXH@Z
?ProgramCacheGetAttribANGLE@egl@@YAHPEAXI@Z
?ProgramCachePopulateANGLE@egl@@YAXPEAXPEBXH1H@Z
?ProgramCacheQueryANGLE@egl@@YAXPEAXH0PEAH01@Z
?ProgramCacheResizeANGLE@egl@@YAHPEAXHI@Z
?ProgramPathFragmentInputGenCHROMIUM@gl@@YAXIHIHPEBM@Z
?PushDebugGroupKHR@gl@@YAXIIHPEBD@Z
?PushGroupMarkerEXT@gl@@YAXHPEBD@Z
?QueryAPI@egl@@YAIXZ
?QueryContext@egl@@YAIPEAX0HPEAH@Z
?QueryCounterEXT@gl@@YAXII@Z
?QueryDeviceAttribEXT@egl@@YAIPEAXHPEA_J@Z
?QueryDeviceStringEXT@egl@@YAPEBDPEAXH@Z
?QueryDisplayAttribEXT@egl@@YAIPEAXHPEA_J@Z
?QueryStreamKHR@egl@@YAIPEAX0IPEAH@Z
?QueryStreamu64KHR@egl@@YAIPEAX0IPEA_K@Z
?QueryString@egl@@YAPEBDPEAXH@Z
?QuerySurface@egl@@YAIPEAX0HPEAH@Z
?QuerySurfacePointerANGLE@egl@@YAIPEAX0HPEAPEAX@Z
?ReadPixelsRobustANGLE@gl@@YAXHHHHIIHPEAH00PEAX@Z
?ReadnPixelsEXT@gl@@YAXHHHHIIHPEAX@Z
?ReadnPixelsRobustANGLE@gl@@YAXHHHHIIHPEAH00PEAX@Z
?ReleaseDeviceANGLE@egl@@YAIPEAX@Z
?ReleaseTexImage@egl@@YAIPEAX0H@Z
?ReleaseThread@egl@@YAIXZ
?RenderbufferStorageMultisampleANGLE@gl@@YAXIHIHH@Z
?RequestExtensionANGLE@gl@@YAXPEBD@Z
?SamplerParameterIivRobustANGLE@gl@@YAXIIHPEBH@Z
?SamplerParameterIuivRobustANGLE@gl@@YAXIIHPEBI@Z
?SamplerParameterfvRobustANGLE@gl@@YAXIIHPEBM@Z
?SamplerParameterivRobustANGLE@gl@@YAXIIHPEBH@Z
?SetFenceNV@gl@@YAXII@Z
?StencilFillPathCHROMIUM@gl@@YAXIII@Z
?StencilFillPathInstancedCHROMIUM@gl@@YAXHIPEBXIIIIPEBM@Z
?StencilStrokePathCHROMIUM@gl@@YAXIHI@Z
?StencilStrokePathInstancedCHROMIUM@gl@@YAXHIPEBXIHIIPEBM@Z
?StencilThenCoverFillPathCHROMIUM@gl@@YAXIIII@Z
?StencilThenCoverFillPathInstancedCHROMIUM@gl@@YAXHIPEBXIIIIIPEBM@Z
?StencilThenCoverStrokePathCHROMIUM@gl@@YAXIHII@Z
?StencilThenCoverStrokePathInstancedCHROMIUM@gl@@YAXHIPEBXIHIIIPEBM@Z
?StreamAttribKHR@egl@@YAIPEAX0IH@Z
?StreamConsumerAcquireKHR@egl@@YAIPEAX0@Z
?StreamConsumerGLTextureExternalAttribsNV@egl@@YAIPEAX0PEB_J@Z
?StreamConsumerGLTextureExternalKHR@egl@@YAIPEAX0@Z
?StreamConsumerReleaseKHR@egl@@YAIPEAX0@Z
?StreamPostD3DTextureNV12ANGLE@egl@@YAIPEAX00PEB_J@Z
?SurfaceAttrib@egl@@YAIPEAX0HH@Z
?SwapBuffers@egl@@YAIPEAX0@Z
?SwapBuffersWithDamageEXT@egl@@YAIPEAX0PEAHH@Z
?SwapInterval@egl@@YAIPEAXH@Z
?Terminate@egl@@YAIPEAX@Z
?TestFenceNV@gl@@YAEI@Z
?TexImage2DRobustANGLE@gl@@YAXIHHHHHIIHPEBX@Z
?TexImage3DRobustANGLE@gl@@YAXIHHHHHHIIHPEBX@Z
?TexParameterIivRobustANGLE@gl@@YAXIIHPEBH@Z
?TexParameterIuivRobustANGLE@gl@@YAXIIHPEBI@Z
?TexParameterfvRobustANGLE@gl@@YAXIIHPEBM@Z
?TexParameterivRobustANGLE@gl@@YAXIIHPEBH@Z
?TexStorage2DEXT@gl@@YAXIHIHH@Z
?TexSubImage2DRobustANGLE@gl@@YAXIHHHHHIIHPEBX@Z
?TexSubImage3DRobustANGLE@gl@@YAXIHHHHHHHIIHPEBX@Z
?UnmapBufferOES@gl@@YAEI@Z
?VertexAttribDivisorANGLE@gl@@YAXII@Z
?WaitClient@egl@@YAIXZ
?WaitGL@egl@@YAIXZ
?WaitNative@egl@@YAIH@Z
?WaitSync@egl@@YAIPEAX0H@Z
ANGLEGetDisplayPlatform
ANGLEResetDisplayPlatform
glActiveShaderProgram
glActiveTexture
glAttachShader
glBeginQuery
glBeginQueryEXT
glBeginTransformFeedback
glBindAttribLocation
glBindBuffer
glBindBufferBase
glBindBufferRange
glBindFragmentInputLocationCHROMIUM
glBindFramebuffer
glBindImageTexture
glBindProgramPipeline
glBindRenderbuffer
glBindSampler
glBindTexture
glBindTransformFeedback
glBindUniformLocationCHROMIUM
glBindVertexArray
glBindVertexArrayOES
glBindVertexBuffer
glBlendColor
glBlendEquation
glBlendEquationSeparate
glBlendFunc
glBlendFuncSeparate
glBlitFramebuffer
glBlitFramebufferANGLE
glBufferData
glBufferSubData
glCheckFramebufferStatus
glClear
glClearBufferfi
glClearBufferfv
glClearBufferiv
glClearBufferuiv
glClearColor
glClearDepthf
glClearStencil
glClientWaitSync
glColorMask
glCompileShader
glCompressedTexImage2D
glCompressedTexImage3D
glCompressedTexSubImage2D
glCompressedTexSubImage3D
glCopyBufferSubData
glCopyTexImage2D
glCopyTexSubImage2D
glCopyTexSubImage3D
glCoverFillPathCHROMIUM
glCoverFillPathInstancedCHROMIUM
glCoverStrokePathCHROMIUM
glCoverStrokePathInstancedCHROMIUM
glCoverageModulationCHROMIUM
glCreateProgram
glCreateShader
glCreateShaderProgramv
glCullFace
glDebugMessageCallbackKHR
glDebugMessageControlKHR
glDebugMessageInsertKHR
glDeleteBuffers
glDeleteFencesNV
glDeleteFramebuffers
glDeletePathsCHROMIUM
glDeleteProgram
glDeleteProgramPipelines
glDeleteQueries
glDeleteQueriesEXT
glDeleteRenderbuffers
glDeleteSamplers
glDeleteShader
glDeleteSync
glDeleteTextures
glDeleteTransformFeedbacks
glDeleteVertexArrays
glDeleteVertexArraysOES
glDepthFunc
glDepthMask
glDepthRangef
glDetachShader
glDisable
glDisableVertexAttribArray
glDiscardFramebufferEXT
glDispatchCompute
glDispatchComputeIndirect
glDrawArrays
glDrawArraysIndirect
glDrawArraysInstanced
glDrawArraysInstancedANGLE
glDrawBuffers
glDrawBuffersEXT
glDrawElements
glDrawElementsIndirect
glDrawElementsInstanced
glDrawElementsInstancedANGLE
glDrawRangeElements
glEGLImageTargetRenderbufferStorageOES
glEGLImageTargetTexture2DOES
glEnable
glEnableVertexAttribArray
glEndQuery
glEndQueryEXT
glEndTransformFeedback
glFenceSync
glFinish
glFinishFenceNV
glFlush
glFlushMappedBufferRange
glFlushMappedBufferRangeEXT
glFramebufferParameteri
glFramebufferRenderbuffer
glFramebufferTexture2D
glFramebufferTextureLayer
glFramebufferTextureMultiviewLayeredANGLE
glFramebufferTextureMultiviewSideBySideANGLE
glFrontFace
glGenBuffers
glGenFencesNV
glGenFramebuffers
glGenPathsCHROMIUM
glGenProgramPipelines
glGenQueries
glGenQueriesEXT
glGenRenderbuffers
glGenSamplers
glGenTextures
glGenTransformFeedbacks
glGenVertexArrays
glGenVertexArraysOES
glGenerateMipmap
glGetActiveAttrib
glGetActiveUniform
glGetActiveUniformBlockName
glGetActiveUniformBlockiv
glGetActiveUniformsiv
glGetAttachedShaders
glGetAttribLocation
glGetBooleani_v
glGetBooleanv
glGetBufferParameteri64v
glGetBufferParameteriv
glGetBufferPointerv
glGetBufferPointervOES
glGetDebugMessageLogKHR
glGetError
glGetFenceivNV
glGetFloatv
glGetFragDataLocation
glGetFramebufferAttachmentParameteriv
glGetFramebufferParameteriv
glGetGraphicsResetStatusEXT
glGetInteger64i_v
glGetInteger64v
glGetIntegeri_v
glGetIntegerv
glGetInternalformativ
glGetMultisamplefv
glGetObjectLabelKHR
glGetObjectPtrLabelKHR
glGetPathParameterfvCHROMIUM
glGetPathParameterivCHROMIUM
glGetPointervKHR
glGetProgramBinary
glGetProgramBinaryOES
glGetProgramInfoLog
glGetProgramInterfaceiv
glGetProgramPipelineInfoLog
glGetProgramPipelineiv
glGetProgramResourceIndex
glGetProgramResourceLocation
glGetProgramResourceName
glGetProgramResourceiv
glGetProgramiv
glGetQueryObjecti64vEXT
glGetQueryObjectivEXT
glGetQueryObjectui64vEXT
glGetQueryObjectuiv
glGetQueryObjectuivEXT
glGetQueryiv
glGetQueryivEXT
glGetRenderbufferParameteriv
glGetSamplerParameterfv
glGetSamplerParameteriv
glGetShaderInfoLog
glGetShaderPrecisionFormat
glGetShaderSource
glGetShaderiv
glGetString
glGetStringi
glGetSynciv
glGetTexLevelParameterfv
glGetTexLevelParameteriv
glGetTexParameterfv
glGetTexParameteriv
glGetTransformFeedbackVarying
glGetTranslatedShaderSourceANGLE
glGetUniformBlockIndex
glGetUniformIndices
glGetUniformLocation
glGetUniformfv
glGetUniformiv
glGetUniformuiv
glGetVertexAttribIiv
glGetVertexAttribIuiv
glGetVertexAttribPointerv
glGetVertexAttribfv
glGetVertexAttribiv
glGetnUniformfvEXT
glGetnUniformivEXT
glHint
glInsertEventMarkerEXT
glInvalidateFramebuffer
glInvalidateSubFramebuffer
glIsBuffer
glIsEnabled
glIsFenceNV
glIsFramebuffer
glIsPathCHROMIUM
glIsProgram
glIsProgramPipeline
glIsQuery
glIsQueryEXT
glIsRenderbuffer
glIsSampler
glIsShader
glIsSync
glIsTexture
glIsTransformFeedback
glIsVertexArray
glIsVertexArrayOES
glLineWidth
glLinkProgram
glMapBufferOES
glMapBufferRange
glMapBufferRangeEXT
glMatrixLoadIdentityCHROMIUM
glMatrixLoadfCHROMIUM
glMemoryBarrier
glMemoryBarrierByRegion
glObjectLabelKHR
glObjectPtrLabelKHR
glPathCommandsCHROMIUM
glPathParameterfCHROMIUM
glPathParameteriCHROMIUM
glPathStencilFuncCHROMIUM
glPauseTransformFeedback
glPixelStorei
glPolygonOffset
glPopDebugGroupKHR
glPopGroupMarkerEXT
glProgramBinary
glProgramBinaryOES
glProgramParameteri
glProgramPathFragmentInputGenCHROMIUM
glProgramUniform1f
glProgramUniform1fv
glProgramUniform1i
glProgramUniform1iv
glProgramUniform1ui
glProgramUniform1uiv
glProgramUniform2f
glProgramUniform2fv
glProgramUniform2i
glProgramUniform2iv
glProgramUniform2ui
glProgramUniform2uiv

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 638KB - Virtual size: 637KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/bin/opengl32sw.dll
.dll windows:6 windows x64 arch:x64

7c204a15e246f025a7513db5a566a6e9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\work\mesa\git\mesa\build\windows-x86_64\gallium\targets\libgl-gdi\opengl32.pdb

Imports

imagehlp

SymSetOptions
SymFunctionTableAccess64
SymGetModuleBase64
SymGetLineFromAddr64
SymInitialize
SymGetSymFromAddr64
StackWalk64
EnumerateLoadedModules64

shell32

SHGetFolderPathW
CommandLineToArgvW

advapi32

CryptAcquireContextW
CryptReleaseContext
CryptGenRandom
SystemFunction036

gdi32

SetPixelFormat
GetPixelFormat
StretchDIBits

user32

GetWindowRect
CallNextHookEx
ClientToScreen
ReleaseDC
GetClientRect
SetWindowsHookExA
UnhookWindowsHookEx
GetDC
WindowFromDC
LoadCursorA
AdjustWindowRectEx
DestroyWindow
RegisterClassA
DefWindowProcA
CreateWindowExA
LoadIconA

kernel32

IsValidCodePage
GetOEMCP
FindFirstFileExW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
WriteConsoleW
OutputDebugStringW
FindNextFileA
FindFirstFileExA
GetProcessHeap
GetTimeZoneInformation
FlushFileBuffers
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
GetDateFormatW
HeapQueryInformation
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
TlsSetValue
Thread32Next
Thread32First
GetCurrentThreadId
CreateToolhelp32Snapshot
TlsAlloc
CloseHandle
GetCurrentProcessId
TlsGetValue
TlsFree
SetLastError
OutputDebugStringA
LoadLibraryA
GetProcAddress
FreeLibrary
SwitchToThread
ReleaseSemaphore
WaitForSingleObject
CreateSemaphoreA
SetErrorMode
GlobalMemoryStatusEx
GetConsoleWindow
IsDebuggerPresent
Sleep
QueryPerformanceFrequency
QueryPerformanceCounter
GetSystemInfo
GetCurrentProcess
GetSystemTimeAsFileTime
GetProcessTimes
VirtualFree
VirtualAlloc
TryEnterCriticalSection
GetLastError
LoadLibraryW
LocalFree
FormatMessageA
FlushInstructionCache
VirtualProtect
VirtualQuery
GetEnvironmentVariableW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
DeleteFileW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
GetFileInformationByHandle
GetFileType
RemoveDirectoryW
SetFileTime
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
GetModuleFileNameW
MoveFileExW
CreateHardLinkW
MultiByteToWideChar
WideCharToMultiByte
SetUnhandledExceptionFilter
GetModuleHandleA
SetConsoleCtrlHandler
GetModuleHandleW
GetStdHandle
GetCommandLineW
GetNativeSystemInfo
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
GetConsoleMode
SearchPathW
DuplicateHandle
TerminateProcess
GetExitCodeProcess
CreateProcessW
CreateJobObjectW
AssignProcessToJobObject
SetInformationJobObject
GetCurrentThread
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
IsProcessorFeaturePresent
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
InitializeSListHead
GetStartupInfoW
FormatMessageW
EncodePointer
DecodePointer
InitializeCriticalSectionAndSpinCount
GetTickCount
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
RtlUnwindEx
LoadLibraryExW
InterlockedPushEntrySList
InterlockedFlushSList
RtlPcToFileHeader
RaiseException
ExitProcess
GetModuleHandleExW
CreateThread
ExitThread
ResumeThread
FreeLibraryAndExitThread
SetEndOfFile
SetStdHandle
HeapValidate
HeapWalk
GetModuleFileNameA
SetFilePointerEx
ReadFile
ReadConsoleW
WriteFile
GetConsoleCP
HeapAlloc
HeapReAlloc
HeapFree
GetACP
HeapSize

Exports

Exports

DrvCopyContext
DrvCreateContext
DrvCreateLayerContext
DrvDeleteContext
DrvDescribeLayerPlane
DrvDescribePixelFormat
DrvGetLayerPaletteEntries
DrvGetProcAddress
DrvPresentBuffers
DrvRealizeLayerPalette
DrvReleaseContext
DrvSetCallbackProcs
DrvSetContext
DrvSetLayerPaletteEntries
DrvSetPixelFormat
DrvShareLists
DrvSwapBuffers
DrvSwapLayerBuffers
DrvValidateVersion
glAccum
glActiveTexture
glActiveTextureARB
glAlphaFunc
glAlphaFuncx
glAreTexturesResident
glAreTexturesResidentEXT
glArrayElement
glArrayElementEXT
glAttachObjectARB
glAttachShader
glBegin
glBeginConditionalRender
glBeginConditionalRenderNV
glBeginQuery
glBeginQueryARB
glBeginQueryIndexed
glBeginTransformFeedback
glBindAttribLocation
glBindAttribLocationARB
glBindBuffer
glBindBufferARB
glBindBufferBase
glBindBufferRange
glBindBuffersBase
glBindBuffersRange
glBindFragDataLocation
glBindFragDataLocationEXT
glBindFragDataLocationIndexed
glBindFramebuffer
glBindFramebufferEXT
glBindImageTexture
glBindImageTextures
glBindProgramARB
glBindRenderbuffer
glBindRenderbufferEXT
glBindSampler
glBindSamplers
glBindTexture
glBindTextureEXT
glBindTextures
glBindTransformFeedback
glBindVertexArray
glBindVertexBuffer
glBindVertexBuffers
glBitmap
glBlendColor
glBlendColorEXT
glBlendEquation
glBlendEquationEXT
glBlendEquationSeparate
glBlendEquationSeparateiARB
glBlendEquationiARB
glBlendFunc
glBlendFuncSeparate
glBlendFuncSeparateEXT
glBlendFuncSeparateiARB
glBlendFunciARB
glBlitFramebuffer
glBufferData
glBufferDataARB
glBufferStorage
glBufferSubData
glBufferSubDataARB
glCallList
glCallLists
glCheckFramebufferStatus
glCheckFramebufferStatusEXT
glClampColor
glClampColorARB
glClear
glClearAccum
glClearBufferData
glClearBufferSubData
glClearBufferfi
glClearBufferfv
glClearBufferiv
glClearBufferuiv
glClearColor
glClearColorIiEXT
glClearColorIuiEXT
glClearColorx
glClearDepth
glClearDepthf
glClearDepthx
glClearIndex
glClearStencil
glClearTexImage
glClearTexSubImage
glClientActiveTexture
glClientActiveTextureARB
glClientWaitSync
glClipPlane
glClipPlanef
glClipPlanex
glColor3b
glColor3bv
glColor3d
glColor3dv
glColor3f
glColor3fv
glColor3i
glColor3iv
glColor3s
glColor3sv
glColor3ub
glColor3ubv
glColor3ui
glColor3uiv
glColor3us
glColor3usv
glColor4b
glColor4bv
glColor4d
glColor4dv
glColor4f
glColor4fv
glColor4i
glColor4iv
glColor4s
glColor4sv
glColor4ub
glColor4ubv
glColor4ui
glColor4uiv
glColor4us
glColor4usv
glColor4x
glColorMask
glColorMaskIndexedEXT
glColorMaski
glColorMaterial
glColorP3ui
glColorP3uiv
glColorP4ui
glColorP4uiv
glColorPointer
glColorPointerEXT
glColorSubTable
glColorTable
glColorTableParameterfv
glColorTableParameteriv
glCompileShader
glCompileShaderARB
glCompressedTexImage1D
glCompressedTexImage1DARB
glCompressedTexImage2D
glCompressedTexImage2DARB
glCompressedTexImage3D
glCompressedTexImage3DARB
glCompressedTexSubImage1D
glCompressedTexSubImage1DARB
glCompressedTexSubImage2D
glCompressedTexSubImage2DARB
glCompressedTexSubImage3D
glCompressedTexSubImage3DARB
glConvolutionFilter1D
glConvolutionFilter2D
glConvolutionParameterf
glConvolutionParameterfv
glConvolutionParameteri
glConvolutionParameteriv
glCopyBufferSubData
glCopyColorSubTable
glCopyColorTable
glCopyConvolutionFilter1D
glCopyConvolutionFilter2D
glCopyImageSubData
glCopyPixels
glCopyTexImage1D
glCopyTexImage2D
glCopyTexSubImage1D
glCopyTexSubImage2D
glCopyTexSubImage3D
glCopyTexSubImage3DEXT
glCreateProgram
glCreateProgramObjectARB
glCreateShader
glCreateShaderObjectARB
glCullFace
glDebugMessageCallback
glDebugMessageCallbackARB
glDebugMessageControl
glDebugMessageControlARB
glDebugMessageInsert
glDebugMessageInsertARB
glDeleteBuffers
glDeleteBuffersARB
glDeleteFramebuffers
glDeleteFramebuffersEXT
glDeleteLists
glDeleteObjectARB
glDeleteProgram
glDeleteProgramsARB
glDeleteQueries
glDeleteQueriesARB
glDeleteRenderbuffers
glDeleteRenderbuffersEXT
glDeleteSamplers
glDeleteShader
glDeleteSync
glDeleteTextures
glDeleteTexturesEXT
glDeleteTransformFeedbacks
glDeleteVertexArrays
glDepthFunc
glDepthMask
glDepthRange
glDepthRangeArrayv
glDepthRangeIndexed
glDepthRangef
glDepthRangex
glDetachObjectARB
glDetachShader
glDisable
glDisableClientState
glDisableIndexedEXT
glDisableVertexAttribArray
glDisableVertexAttribArrayARB
glDisablei
glDispatchCompute
glDispatchComputeIndirect
glDrawArrays
glDrawArraysEXT
glDrawArraysIndirect
glDrawArraysInstanced
glDrawArraysInstancedARB
glDrawArraysInstancedBaseInstance
glDrawArraysInstancedEXT
glDrawBuffer
glDrawBuffers
glDrawBuffersARB
glDrawBuffersATI
glDrawElements
glDrawElementsBaseVertex
glDrawElementsIndirect
glDrawElementsInstanced
glDrawElementsInstancedARB
glDrawElementsInstancedBaseInstance
glDrawElementsInstancedBaseVertex
glDrawElementsInstancedBaseVertexBaseInstance
glDrawElementsInstancedEXT
glDrawPixels
glDrawRangeElements
glDrawRangeElementsBaseVertex
glDrawRangeElementsEXT
glDrawTransformFeedback
glDrawTransformFeedbackInstanced
glDrawTransformFeedbackStream
glDrawTransformFeedbackStreamInstanced
glEdgeFlag
glEdgeFlagPointer
glEdgeFlagPointerEXT
glEdgeFlagv
glEnable
glEnableClientState
glEnableIndexedEXT
glEnableVertexAttribArray
glEnableVertexAttribArrayARB
glEnablei
glEnd
glEndConditionalRender
glEndConditionalRenderNV
glEndList
glEndQuery
glEndQueryARB
glEndQueryIndexed
glEndTransformFeedback
glEvalCoord1d
glEvalCoord1dv
glEvalCoord1f
glEvalCoord1fv
glEvalCoord2d
glEvalCoord2dv
glEvalCoord2f
glEvalCoord2fv
glEvalMesh1
glEvalMesh2
glEvalPoint1
glEvalPoint2
glFeedbackBuffer
glFenceSync
glFinish
glFlush
glFlushMappedBufferRange
glFogCoordPointer
glFogCoordPointerEXT
glFogCoordd
glFogCoorddEXT
glFogCoorddv
glFogCoorddvEXT
glFogCoordf
glFogCoordfEXT
glFogCoordfv
glFogCoordfvEXT
glFogf
glFogfv
glFogi
glFogiv
glFogx
glFogxv
glFramebufferRenderbuffer
glFramebufferRenderbufferEXT
glFramebufferTexture
glFramebufferTexture1D
glFramebufferTexture1DEXT
glFramebufferTexture2D
glFramebufferTexture2DEXT
glFramebufferTexture3D
glFramebufferTexture3DEXT
glFramebufferTextureLayer
glFramebufferTextureLayerEXT
glFrontFace
glFrustum
glFrustumf
glFrustumx
glGenBuffers
glGenBuffersARB
glGenFramebuffers
glGenFramebuffersEXT
glGenLists
glGenProgramsARB
glGenQueries
glGenQueriesARB
glGenRenderbuffers
glGenRenderbuffersEXT
glGenSamplers
glGenTextures
glGenTexturesEXT
glGenTransformFeedbacks
glGenVertexArrays
glGenerateMipmap
glGenerateMipmapEXT
glGetActiveAtomicCounterBufferiv
glGetActiveAttrib
glGetActiveAttribARB
glGetActiveUniform
glGetActiveUniformARB
glGetActiveUniformBlockName
glGetActiveUniformBlockiv
glGetActiveUniformName
glGetActiveUniformsiv
glGetAttachedObjectsARB
glGetAttachedShaders
glGetAttribLocation
glGetAttribLocationARB
glGetBooleanIndexedvEXT
glGetBooleani_v
glGetBooleanv
glGetBufferParameteri64v
glGetBufferParameteriv
glGetBufferParameterivARB
glGetBufferPointerv
glGetBufferPointervARB
glGetBufferSubData
glGetBufferSubDataARB
glGetClipPlane
glGetClipPlanef
glGetClipPlanex
glGetColorTable
glGetColorTableParameterfv
glGetColorTableParameteriv
glGetCompressedTexImage
glGetCompressedTexImageARB
glGetConvolutionFilter
glGetConvolutionParameterfv
glGetConvolutionParameteriv
glGetDebugMessageLog
glGetDebugMessageLogARB
glGetDoublei_v
glGetDoublev
glGetError
glGetFixedv
glGetFloati_v
glGetFloatv
glGetFragDataIndex
glGetFragDataLocation
glGetFragDataLocationEXT
glGetFramebufferAttachmentParameteriv
glGetFramebufferAttachmentParameterivEXT
glGetGraphicsResetStatusARB
glGetHandleARB
glGetHistogram
glGetHistogramParameterfv
glGetHistogramParameteriv
glGetInfoLogARB
glGetInteger64i_v
glGetInteger64v
glGetIntegerIndexedvEXT
glGetIntegeri_v
glGetIntegerv
glGetLightfv
glGetLightiv
glGetLightxv
glGetMapdv
glGetMapfv
glGetMapiv
glGetMaterialfv
glGetMaterialiv
glGetMaterialxv
glGetMinmax
glGetMinmaxParameterfv
glGetMinmaxParameteriv
glGetMultisamplefv
glGetObjectLabel
glGetObjectParameterfvARB
glGetObjectParameterivARB
glGetObjectPtrLabel
glGetPixelMapfv
glGetPixelMapuiv
glGetPixelMapusv
glGetPointerv
glGetPointervEXT
glGetPolygonStipple
glGetProgramBinary
glGetProgramEnvParameterdvARB
glGetProgramEnvParameterfvARB
glGetProgramInfoLog
glGetProgramLocalParameterdvARB
glGetProgramLocalParameterfvARB
glGetProgramStringARB
glGetProgramiv
glGetProgramivARB
glGetQueryIndexediv
glGetQueryObjectiv
glGetQueryObjectivARB
glGetQueryObjectuiv
glGetQueryObjectuivARB
glGetQueryiv
glGetQueryivARB
glGetRenderbufferParameteriv
glGetRenderbufferParameterivEXT
glGetSamplerParameterIiv
glGetSamplerParameterIuiv
glGetSamplerParameterfv
glGetSamplerParameteriv
glGetSeparableFilter
glGetShaderInfoLog
glGetShaderPrecisionFormat
glGetShaderSource
glGetShaderSourceARB
glGetShaderiv
glGetString
glGetStringi
glGetSynciv
glGetTexEnvfv
glGetTexEnviv
glGetTexEnvxv
glGetTexGendv
glGetTexGenfv
glGetTexGeniv
glGetTexImage
glGetTexLevelParameterfv
glGetTexLevelParameteriv
glGetTexParameterIiv
glGetTexParameterIivEXT
glGetTexParameterIuiv
glGetTexParameterIuivEXT
glGetTexParameterfv
glGetTexParameteriv
glGetTexParameterxv
glGetTransformFeedbackVarying
glGetUniformBlockIndex
glGetUniformIndices
glGetUniformLocation
glGetUniformLocationARB
glGetUniformfv
glGetUniformfvARB
glGetUniformiv
glGetUniformivARB
glGetUniformuiv
glGetUniformuivEXT
glGetVertexAttribIiv
glGetVertexAttribIivEXT
glGetVertexAttribIuiv
glGetVertexAttribIuivEXT
glGetVertexAttribPointerv
glGetVertexAttribPointervARB
glGetVertexAttribdv
glGetVertexAttribdvARB
glGetVertexAttribfv

Sections

.text
Size: 14.1MB - Virtual size: 14.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5.0MB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 462KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 668KB - Virtual size: 667KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/Qt5/translations/qt_ar.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_bg.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_ca.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_cs.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_da.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_de.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_en.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_es.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_fa.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_fi.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_fr.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_gd.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_gl.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_he.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_ar.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_bg.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_ca.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_cs.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_da.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_de.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_en.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_es.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_fr.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_gl.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_hu.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_it.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_ja.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_ko.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_pl.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_ru.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_sk.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_sl.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_tr.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_uk.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_zh_CN.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_help_zh_TW.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_hu.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_it.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_ja.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_ko.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_lt.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_lv.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_pl.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_pt.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_ru.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_sk.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_sl.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_sv.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_tr.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_uk.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_zh_CN.qm
UNBAN/_internal/PyQt5/Qt5/translations/qt_zh_TW.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_ar.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_bg.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_ca.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_cs.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_da.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_de.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_en.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_es.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_fi.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_fr.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_gd.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_he.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_hu.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_it.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_ja.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_ko.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_lv.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_pl.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_ru.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_sk.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_tr.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_uk.qm
UNBAN/_internal/PyQt5/Qt5/translations/qtbase_zh_TW.qm
UNBAN/_internal/PyQt5/QtCore.pyd
.dll windows:6 windows x64 arch:x64

5fa8e8e1a536a452c5c43ec429304b40

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

qt5core

?insertColumns@QSortFilterProxyModel@@UEAA_NHHAEBVQModelIndex@@@Z
?removeRows@QSortFilterProxyModel@@UEAA_NHHAEBVQModelIndex@@@Z
?removeColumns@QSortFilterProxyModel@@UEAA_NHHAEBVQModelIndex@@@Z
?fetchMore@QSortFilterProxyModel@@UEAAXAEBVQModelIndex@@@Z
?canFetchMore@QSortFilterProxyModel@@UEBA_NAEBVQModelIndex@@@Z
?flags@QSortFilterProxyModel@@UEBA?AV?$QFlags@W4ItemFlag@Qt@@@@AEBVQModelIndex@@@Z
?buddy@QSortFilterProxyModel@@UEBA?AVQModelIndex@@AEBV2@@Z
?match@QSortFilterProxyModel@@UEBA?AV?$QList@VQModelIndex@@@@AEBVQModelIndex@@HAEBVQVariant@@HV?$QFlags@W4MatchFlag@Qt@@@@@Z
?span@QSortFilterProxyModel@@UEBA?AVQSize@@AEBVQModelIndex@@@Z
?sort@QSortFilterProxyModel@@UEAAXHW4SortOrder@Qt@@@Z
?mimeTypes@QSortFilterProxyModel@@UEBA?AVQStringList@@XZ
?supportedDropActions@QSortFilterProxyModel@@UEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ
?staticMetaObject@QTimer@@2UQMetaObject@@B
?staticMetaObject@QTranslator@@2UQMetaObject@@B
?staticMetaObject@QTransposeProxyModel@@2UQMetaObject@@B
?staticMetaObject@QSocketNotifier@@2UQMetaObject@@B
?staticMetaObject@QWinEventNotifier@@2UQMetaObject@@B
?staticMetaObject@QThread@@2UQMetaObject@@B
?shared_null@QHashData@@2U1@B
?Windows7@QOperatingSystemVersion@@2V1@B
?Windows8@QOperatingSystemVersion@@2V1@B
?Windows8_1@QOperatingSystemVersion@@2V1@B
?Windows10@QOperatingSystemVersion@@2V1@B
?OSXMavericks@QOperatingSystemVersion@@2V1@B
?OSXYosemite@QOperatingSystemVersion@@2V1@B
?OSXElCapitan@QOperatingSystemVersion@@2V1@B
?MacOSSierra@QOperatingSystemVersion@@2V1@B
?MacOSHighSierra@QOperatingSystemVersion@@2V1@B
?MacOSMojave@QOperatingSystemVersion@@2V1@B
?MacOSCatalina@QOperatingSystemVersion@@2V1@B
?MacOSBigSur@QOperatingSystemVersion@@2V1@B
?AndroidJellyBean@QOperatingSystemVersion@@2V1@B
?AndroidJellyBean_MR1@QOperatingSystemVersion@@2V1@B
?AndroidJellyBean_MR2@QOperatingSystemVersion@@2V1@B
?AndroidKitKat@QOperatingSystemVersion@@2V1@B
?AndroidLollipop@QOperatingSystemVersion@@2V1@B
?AndroidLollipop_MR1@QOperatingSystemVersion@@2V1@B
?AndroidMarshmallow@QOperatingSystemVersion@@2V1@B
?AndroidNougat@QOperatingSystemVersion@@2V1@B
?AndroidNougat_MR1@QOperatingSystemVersion@@2V1@B
?AndroidOreo@QOperatingSystemVersion@@2V1@B
?staticMetaObject@QParallelAnimationGroup@@2UQMetaObject@@B
?mapSelectionToSource@QAbstractProxyModel@@UEBA?AVQItemSelection@@AEBV2@@Z
?mapSelectionFromSource@QAbstractProxyModel@@UEBA?AVQItemSelection@@AEBV2@@Z
?submit@QAbstractProxyModel@@UEAA_NXZ
?revert@QAbstractProxyModel@@UEAAXXZ
?data@QAbstractProxyModel@@UEBA?AVQVariant@@AEBVQModelIndex@@H@Z
?itemData@QAbstractProxyModel@@UEBA?AV?$QMap@HVQVariant@@@@AEBVQModelIndex@@@Z
?flags@QAbstractProxyModel@@UEBA?AV?$QFlags@W4ItemFlag@Qt@@@@AEBVQModelIndex@@@Z
?setData@QAbstractProxyModel@@UEAA_NAEBVQModelIndex@@AEBVQVariant@@H@Z
?setItemData@QAbstractProxyModel@@UEAA_NAEBVQModelIndex@@AEBV?$QMap@HVQVariant@@@@@Z
?buddy@QAbstractProxyModel@@UEBA?AVQModelIndex@@AEBV2@@Z
?canFetchMore@QAbstractProxyModel@@UEBA_NAEBVQModelIndex@@@Z
?fetchMore@QAbstractProxyModel@@UEAAXAEBVQModelIndex@@@Z
?hasChildren@QAbstractProxyModel@@UEBA_NAEBVQModelIndex@@@Z
?sibling@QAbstractProxyModel@@UEBA?AVQModelIndex@@HHAEBV2@@Z
?mimeData@QAbstractProxyModel@@UEBAPEAVQMimeData@@AEBV?$QList@VQModelIndex@@@@@Z
?canDropMimeData@QAbstractProxyModel@@UEBA_NPEBVQMimeData@@W4DropAction@Qt@@HHAEBVQModelIndex@@@Z
?dropMimeData@QAbstractProxyModel@@UEAA_NPEBVQMimeData@@W4DropAction@Qt@@HHAEBVQModelIndex@@@Z
?mimeTypes@QAbstractProxyModel@@UEBA?AVQStringList@@XZ
?supportedDragActions@QAbstractProxyModel@@UEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ
?supportedDropActions@QAbstractProxyModel@@UEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ
?staticMetaObject@QPauseAnimation@@2UQMetaObject@@B
?metaObject@QPropertyAnimation@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QPropertyAnimation@@UEAAPEAXPEBD@Z
?qt_metacall@QPropertyAnimation@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?event@QPropertyAnimation@@MEAA_NPEAVQEvent@@@Z
?updateCurrentValue@QPropertyAnimation@@MEAAXAEBVQVariant@@@Z
?updateState@QPropertyAnimation@@MEAAXW4State@QAbstractAnimation@@0@Z
?staticMetaObject@QVariantAnimation@@2UQMetaObject@@B
?metaObject@QSettings@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QSettings@@UEAAPEAXPEBD@Z
?qt_metacall@QSettings@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?staticMetaObject@QPropertyAnimation@@2UQMetaObject@@B
?event@QSettings@@MEAA_NPEAVQEvent@@@Z
?metaObject@QWinEventNotifier@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QWinEventNotifier@@UEAAPEAXPEBD@Z
?qt_metacall@QWinEventNotifier@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?event@QWinEventNotifier@@MEAA_NPEAVQEvent@@@Z
?metaObject@QTranslator@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QTranslator@@UEAAPEAXPEBD@Z
?qt_metacall@QTranslator@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?translate@QTranslator@@UEBA?AVQString@@PEBD00H@Z
?isEmpty@QTranslator@@UEBA_NXZ
?metaObject@QTemporaryFile@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QTemporaryFile@@UEAAPEAXPEBD@Z
?qt_metacall@QTemporaryFile@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?open@QTemporaryFile@@MEAA_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?fileName@QTemporaryFile@@UEBA?AVQString@@XZ
?metaObject@QState@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QState@@UEAAPEAXPEBD@Z
?qt_metacall@QState@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?onEntry@QState@@MEAAXPEAVQEvent@@@Z
?onExit@QState@@MEAAXPEAVQEvent@@@Z
?event@QState@@MEAA_NPEAVQEvent@@@Z
?headerData@QAbstractItemModel@@UEBA?AVQVariant@@HW4Orientation@Qt@@H@Z
?setHeaderData@QAbstractItemModel@@UEAA_NHW4Orientation@Qt@@AEBVQVariant@@H@Z
?mimeTypes@QAbstractItemModel@@UEBA?AVQStringList@@XZ
?mimeData@QAbstractItemModel@@UEBAPEAVQMimeData@@AEBV?$QList@VQModelIndex@@@@@Z
?canDropMimeData@QAbstractItemModel@@UEBA_NPEBVQMimeData@@W4DropAction@Qt@@HHAEBVQModelIndex@@@Z
?supportedDragActions@QAbstractItemModel@@UEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ
?insertColumns@QAbstractItemModel@@UEAA_NHHAEBVQModelIndex@@@Z
?removeColumns@QAbstractItemModel@@UEAA_NHHAEBVQModelIndex@@@Z
?moveRows@QAbstractItemModel@@UEAA_NAEBVQModelIndex@@HH0H@Z
?moveColumns@QAbstractItemModel@@UEAA_NAEBVQModelIndex@@HH0H@Z
?fetchMore@QAbstractItemModel@@UEAAXAEBVQModelIndex@@@Z
?canFetchMore@QAbstractItemModel@@UEBA_NAEBVQModelIndex@@@Z
?buddy@QAbstractItemModel@@UEBA?AVQModelIndex@@AEBV2@@Z
?match@QAbstractItemModel@@UEBA?AV?$QList@VQModelIndex@@@@AEBVQModelIndex@@HAEBVQVariant@@HV?$QFlags@W4MatchFlag@Qt@@@@@Z
?span@QAbstractItemModel@@UEBA?AVQSize@@AEBVQModelIndex@@@Z
?roleNames@QAbstractItemModel@@UEBA?AV?$QHash@HVQByteArray@@@@XZ
?submit@QAbstractItemModel@@UEAA_NXZ
?revert@QAbstractItemModel@@UEAAXXZ
?staticMetaObject@QSaveFile@@2UQMetaObject@@B
?metaObject@QVariantAnimation@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QVariantAnimation@@UEAAPEAXPEBD@Z
?qt_metacall@QVariantAnimation@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?duration@QVariantAnimation@@UEBAHXZ
?event@QVariantAnimation@@MEAA_NPEAVQEvent@@@Z
?updateCurrentTime@QVariantAnimation@@MEAAXH@Z
?updateState@QVariantAnimation@@MEAAXW4State@QAbstractAnimation@@0@Z
?updateCurrentValue@QVariantAnimation@@MEAAXAEBVQVariant@@@Z
?interpolated@QVariantAnimation@@MEBA?AVQVariant@@AEBV2@0N@Z
?metaObject@QTransposeProxyModel@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QTransposeProxyModel@@UEAAPEAXPEBD@Z
?qt_metacall@QTransposeProxyModel@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?setSourceModel@QTransposeProxyModel@@UEAAXPEAVQAbstractItemModel@@@Z
?rowCount@QTransposeProxyModel@@UEBAHAEBVQModelIndex@@@Z
?columnCount@QTransposeProxyModel@@UEBAHAEBVQModelIndex@@@Z
?headerData@QTransposeProxyModel@@UEBA?AVQVariant@@HW4Orientation@Qt@@H@Z
?setHeaderData@QTransposeProxyModel@@UEAA_NHW4Orientation@Qt@@AEBVQVariant@@H@Z
?setItemData@QTransposeProxyModel@@UEAA_NAEBVQModelIndex@@AEBV?$QMap@HVQVariant@@@@@Z
?span@QTransposeProxyModel@@UEBA?AVQSize@@AEBVQModelIndex@@@Z
?itemData@QTransposeProxyModel@@UEBA?AV?$QMap@HVQVariant@@@@AEBVQModelIndex@@@Z
?mapFromSource@QTransposeProxyModel@@UEBA?AVQModelIndex@@AEBV2@@Z
?mapToSource@QTransposeProxyModel@@UEBA?AVQModelIndex@@AEBV2@@Z
?parent@QTransposeProxyModel@@UEBA?AVQModelIndex@@AEBV2@@Z
?index@QTransposeProxyModel@@UEBA?AVQModelIndex@@HHAEBV2@@Z
?insertRows@QTransposeProxyModel@@UEAA_NHHAEBVQModelIndex@@@Z
?removeRows@QTransposeProxyModel@@UEAA_NHHAEBVQModelIndex@@@Z
?moveRows@QTransposeProxyModel@@UEAA_NAEBVQModelIndex@@HH0H@Z
?insertColumns@QTransposeProxyModel@@UEAA_NHHAEBVQModelIndex@@@Z
?removeColumns@QTransposeProxyModel@@UEAA_NHHAEBVQModelIndex@@@Z
?moveColumns@QTransposeProxyModel@@UEAA_NAEBVQModelIndex@@HH0H@Z
?sort@QTransposeProxyModel@@UEAAXHW4SortOrder@Qt@@@Z
?metaObject@QPluginLoader@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QPluginLoader@@UEAAPEAXPEBD@Z
?qt_metacall@QPluginLoader@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?staticMetaObject@QPluginLoader@@2UQMetaObject@@B
?metaObject@QTimeLine@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QTimeLine@@UEAAPEAXPEBD@Z
?qt_metacall@QTimeLine@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?staticMetaObject@QSequentialAnimationGroup@@2UQMetaObject@@B
?valueForTime@QTimeLine@@UEBANH@Z
?timerEvent@QTimeLine@@MEAAXPEAVQTimerEvent@@@Z
?metaObject@QSaveFile@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QSaveFile@@UEAAPEAXPEBD@Z
?qt_metacall@QSaveFile@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?fileName@QSaveFile@@UEBA?AVQString@@XZ
?open@QSaveFile@@UEAA_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?writeData@QSaveFile@@MEAA_JPEBD_J@Z
?close@QSaveFile@@EEAAXXZ
?staticMetaObject@QSettings@@2UQMetaObject@@B
?resolveEntity@QXmlStreamEntityResolver@@UEAA?AVQString@@AEBV2@0@Z
?resolveUndeclaredEntity@QXmlStreamEntityResolver@@UEAA?AVQString@@AEBV2@@Z
?metaObject@QStringListModel@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QStringListModel@@UEAAPEAXPEBD@Z
?qt_metacall@QStringListModel@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?rowCount@QStringListModel@@UEBAHAEBVQModelIndex@@@Z
?sibling@QStringListModel@@UEBA?AVQModelIndex@@HHAEBV2@@Z
?data@QStringListModel@@UEBA?AVQVariant@@AEBVQModelIndex@@H@Z
?setData@QStringListModel@@UEAA_NAEBVQModelIndex@@AEBVQVariant@@H@Z
?flags@QStringListModel@@UEBA?AV?$QFlags@W4ItemFlag@Qt@@@@AEBVQModelIndex@@@Z
?insertRows@QStringListModel@@UEAA_NHHAEBVQModelIndex@@@Z
?removeRows@QStringListModel@@UEAA_NHHAEBVQModelIndex@@@Z
?moveRows@QStringListModel@@UEAA_NAEBVQModelIndex@@HH0H@Z
?itemData@QStringListModel@@UEBA?AV?$QMap@HVQVariant@@@@AEBVQModelIndex@@@Z
?setItemData@QStringListModel@@UEAA_NAEBVQModelIndex@@AEBV?$QMap@HVQVariant@@@@@Z
?sort@QStringListModel@@UEAAXHW4SortOrder@Qt@@@Z
?supportedDropActions@QStringListModel@@UEBA?AV?$QFlags@W4DropAction@Qt@@@@XZ
?metaObject@QThreadPool@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QThreadPool@@UEAAPEAXPEBD@Z
?qt_metacall@QThreadPool@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?metaObject@QPauseAnimation@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QPauseAnimation@@UEAAPEAXPEBD@Z
?qt_metacall@QPauseAnimation@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?duration@QPauseAnimation@@UEBAHXZ
?event@QPauseAnimation@@MEAA_NPEAVQEvent@@@Z
?updateCurrentTime@QPauseAnimation@@MEAAXH@Z
?shared_null@QListData@@2UData@1@B
?staticMetaObject@QSharedMemory@@2UQMetaObject@@B
?staticMetaObject@QProcess@@2UQMetaObject@@B
?shared_null@QMapDataBase@@2U1@B
?staticMetaObject@QSignalMapper@@2UQMetaObject@@B
?metaObject@QProcess@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QProcess@@UEAAPEAXPEBD@Z
?qt_metacall@QProcess@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?open@QProcess@@UEAA_NV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?waitForReadyRead@QProcess@@UEAA_NH@Z
?waitForBytesWritten@QProcess@@UEAA_NH@Z
?bytesAvailable@QProcess@@UEBA_JXZ
?bytesToWrite@QProcess@@UEBA_JXZ
?isSequential@QProcess@@UEBA_NXZ
?canReadLine@QProcess@@UEBA_NXZ
?close@QProcess@@UEAAXXZ
?atEnd@QProcess@@UEBA_NXZ
?setupChildProcess@QProcess@@MEAAXXZ
?readData@QProcess@@MEAA_JPEAD_J@Z
?writeData@QProcess@@MEAA_JPEBD_J@Z
?staticMetaObject@QSignalTransition@@2UQMetaObject@@B
?staticMetaObject@QSortFilterProxyModel@@2UQMetaObject@@B
?pos@QIODevice@@UEBA_JXZ
?size@QIODevice@@UEBA_JXZ
?seek@QIODevice@@UEAA_N_J@Z
?reset@QIODevice@@UEAA_NXZ
?bytesAvailable@QIODevice@@UEBA_JXZ
?bytesToWrite@QIODevice@@UEBA_JXZ
?canReadLine@QIODevice@@UEBA_NXZ
?waitForReadyRead@QIODevice@@UEAA_NH@Z
?waitForBytesWritten@QIODevice@@UEAA_NH@Z
?readLineData@QIODevice@@MEAA_JPEAD_J@Z
?close@QFileDevice@@UEAAXXZ
?isSequential@QFileDevice@@UEBA_NXZ
?pos@QFileDevice@@UEBA_JXZ
?seek@QFileDevice@@UEAA_N_J@Z
?atEnd@QFileDevice@@UEBA_NXZ
?size@QFileDevice@@UEBA_JXZ
?resize@QFileDevice@@UEAA_N_J@Z
?permissions@QFileDevice@@UEBA?AV?$QFlags@W4Permission@QFileDevice@@@@XZ
?setPermissions@QFileDevice@@UEAA_NV?$QFlags@W4Permission@QFileDevice@@@@@Z
?readData@QFileDevice@@MEAA_JPEAD_J@Z
?writeData@QFileDevice@@MEAA_JPEBD_J@Z
?readLineData@QFileDevice@@MEAA_JPEAD_J@Z
?staticMetaObject@QState@@2UQMetaObject@@B
?metaObject@QParallelAnimationGroup@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QParallelAnimationGroup@@UEAAPEAXPEBD@Z
?qt_metacall@QParallelAnimationGroup@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?duration@QParallelAnimationGroup@@UEBAHXZ
?event@QParallelAnimationGroup@@MEAA_NPEAVQEvent@@@Z
?updateCurrentTime@QParallelAnimationGroup@@MEAAXH@Z
?updateState@QParallelAnimationGroup@@MEAAXW4State@QAbstractAnimation@@0@Z
?updateDirection@QParallelAnimationGroup@@MEAAXW4Direction@QAbstractAnimation@@@Z
?staticMetaObject@QStateMachine@@2UQMetaObject@@B
?size@QFile@@UEBA_JXZ
?resize@QFile@@UEAA_N_J@Z
?permissions@QFile@@UEBA?AV?$QFlags@W4Permission@QFileDevice@@@@XZ
?setPermissions@QFile@@UEAA_NV?$QFlags@W4Permission@QFileDevice@@@@@Z
?WindowsVersion@QSysInfo@@2W4WinVersion@1@B
?metaObject@QSequentialAnimationGroup@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QSequentialAnimationGroup@@UEAAPEAXPEBD@Z
?qt_metacall@QSequentialAnimationGroup@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?duration@QSequentialAnimationGroup@@UEBAHXZ
?event@QSequentialAnimationGroup@@MEAA_NPEAVQEvent@@@Z
?updateCurrentTime@QSequentialAnimationGroup@@MEAAXH@Z
?updateState@QSequentialAnimationGroup@@MEAAXW4State@QAbstractAnimation@@0@Z
?updateDirection@QSequentialAnimationGroup@@MEAAXW4Direction@QAbstractAnimation@@@Z
?index@QAbstractListModel@@UEBA?AVQModelIndex@@HHAEBV2@@Z
?dropMimeData@QAbstractListModel@@UEAA_NPEBVQMimeData@@W4DropAction@Qt@@HHAEBVQModelIndex@@@Z
?parent@QAbstractListModel@@EEBA?AVQModelIndex@@AEBV2@@Z
?columnCount@QAbstractListModel@@EEBAHAEBVQModelIndex@@@Z
?hasChildren@QAbstractListModel@@EEBA_NAEBVQModelIndex@@@Z
?metaObject@QTimer@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QTimer@@UEAAPEAXPEBD@Z
?qt_metacall@QTimer@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?timerEvent@QTimer@@MEAAXPEAVQTimerEvent@@@Z
?metaObject@QStateMachine@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QStateMachine@@UEAAPEAXPEBD@Z
?qt_metacall@QStateMachine@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?eventFilter@QStateMachine@@UEAA_NPEAVQObject@@PEAVQEvent@@@Z
?onEntry@QStateMachine@@MEAAXPEAVQEvent@@@Z
?onExit@QStateMachine@@MEAAXPEAVQEvent@@@Z
?beginSelectTransitions@QStateMachine@@MEAAXPEAVQEvent@@@Z
?endSelectTransitions@QStateMachine@@MEAAXPEAVQEvent@@@Z
?beginMicrostep@QStateMachine@@MEAAXPEAVQEvent@@@Z
?endMicrostep@QStateMachine@@MEAAXPEAVQEvent@@@Z
?event@QStateMachine@@MEAA_NPEAVQEvent@@@Z
?metaObject@QThread@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QThread@@UEAAPEAXPEBD@Z
?qt_metacall@QThread@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?event@QThread@@UEAA_NPEAVQEvent@@@Z
?run@QThread@@MEAAXXZ
?metaObject@QSharedMemory@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QSharedMemory@@UEAAPEAXPEBD@Z
?qt_metacall@QSharedMemory@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?metaObject@QSignalMapper@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QSignalMapper@@UEAAPEAXPEBD@Z
?qt_metacall@QSignalMapper@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?metaObject@QSignalTransition@@UEBAPEBUQMetaObject@@XZ
?qt_metacast@QSignalTransition@@UEAAPEAXPEBD@Z
?qt_metacall@QSignalTransition@@UEAAHW4Call@QMetaObject@@HPEAPEAX@Z
?eventTest@QSignalTransition@@MEAA_NPEAVQEvent@@@Z
?staticMetaObject@QStringListModel@@2UQMetaObject@@B
?onTransition@QSignalTransition@@MEAAXPEAVQEvent@@@Z
?event@QSignalTransition@@MEAA_NPEAVQEvent@@@Z
?staticMetaObject@QTemporaryFile@@2UQMetaObject@@B
?event@QObject@@UEAA_NPEAVQEvent@@@Z
?eventFilter@QObject@@UEAA_NPEAV1@PEAVQEvent@@@Z
?timerEvent@QObject@@MEAAXPEAVQTimerEvent@@@Z
?childEvent@QObject@@MEAAXPEAVQChildEvent@@@Z
?customEvent@QObject@@MEAAXPEAVQEvent@@@Z
?connectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
?disconnectNotify@QObject@@MEAAXAEBVQMetaMethod@@@Z
qVersion
?qSharedBuild@@YA_NXZ
?qEnvironmentVariable@@YA?AVQString@@PEBD@Z
?qEnvironmentVariable@@YA?AVQString@@PEBDAEBV1@@Z
?qsrand@@YAXI@Z
?qrand@@YAHXZ
?windowsVersion@QSysInfo@@SA?AW4WinVersion@1@XZ
?buildCpuArchitecture@QSysInfo@@SA?AVQString@@XZ
?currentCpuArchitecture@QSysInfo@@SA?AVQString@@XZ
?buildAbi@QSysInfo@@SA?AVQString@@XZ
?kernelType@QSysInfo@@SA?AVQString@@XZ
?kernelVersion@QSysInfo@@SA?AVQString@@XZ
?productType@QSysInfo@@SA?AVQString@@XZ
?productVersion@QSysInfo@@SA?AVQString@@XZ
?prettyProductName@QSysInfo@@SA?AVQString@@XZ
?machineHostName@QSysInfo@@SA?AVQString@@XZ
??0QMessageLogger@@QEAA@PEBDH0@Z
?debug@QMessageLogger@@QEBAXPEBDZZ
?info@QMessageLogger@@QEBAXPEBDZZ
?warning@QMessageLogger@@QEBAXPEBDZZ
?critical@QMessageLogger@@QEBAXPEBDZZ
?fatal@QMessageLogger@@QEBAXPEBDZZ
?qErrnoWarning@@YAXHPEBDZZ
?qErrnoWarning@@YAXPEBDZZ
?qInstallMessageHandler@@YAP6AXW4QtMsgType@@AEBVQMessageLogContext@@AEBVQString@@@ZP6AX012@Z@Z
?qSetMessagePattern@@YAXAEBVQString@@@Z
?qFormatLogMessage@@YA?AVQString@@W4QtMsgType@@AEBVQMessageLogContext@@AEBV1@@Z
?qIsInf@@YA_NN@Z
?qIsNaN@@YA_NN@Z
?qIsFinite@@YA_NN@Z
?qSNaN@@YANXZ
?qQNaN@@YANXZ
?qInf@@YANXZ
?qFloatDistance@@YA_KNN@Z
?allocate@QArrayData@@SAPEAU1@_K00V?$QFlags@W4AllocationOption@QArrayData@@@@@Z
?deallocate@QArrayData@@SAXPEAU1@_K1@Z
?sharedNull@QArrayData@@SAPEAU1@XZ
?qChecksum@@YAGPEBDI@Z
?qChecksum@@YAGPEBDIW4ChecksumType@Qt@@@Z
??0QByteArray@@QEAA@XZ
??0QByteArray@@QEAA@AEBV0@@Z
??1QByteArray@@QEAA@XZ
??4QByteArray@@QEAAAEAV0@AEBV0@@Z
?constData@QByteArray@@QEBAPEBDXZ
?qUncompress@@YA?AVQByteArray@@PEBEH@Z
?qCompress@@YA?AVQByteArray@@PEBEHH@Z
??0QString@@QEAA@XZ
??0QString@@QEAA@AEBV0@@Z
??1QString@@QEAA@XZ
??4QString@@QEAAAEAV0@AEBV0@@Z
??0QString@@QEAA@$$QEAV0@@Z
??8@YA_NAEBVQString@@0@Z
??0QStringRef@@QEAA@XZ
?toString@QStringRef@@QEBA?AVQString@@XZ
?qHash@@YAIAEBVQString@@I@Z
?className@QMetaObject@@QEBAPEBDXZ
?superClass@QMetaObject@@QEBAPEBU1@XZ
?inherits@QMetaObject@@QEBA_NPEBU1@@Z
?methodOffset@QMetaObject@@QEBAHXZ
?enumeratorOffset@QMetaObject@@QEBAHXZ
?propertyOffset@QMetaObject@@QEBAHXZ
?classInfoOffset@QMetaObject@@QEBAHXZ
?constructorCount@QMetaObject@@QEBAHXZ
?methodCount@QMetaObject@@QEBAHXZ
?enumeratorCount@QMetaObject@@QEBAHXZ
?propertyCount@QMetaObject@@QEBAHXZ
?classInfoCount@QMetaObject@@QEBAHXZ
?indexOfConstructor@QMetaObject@@QEBAHPEBD@Z
?indexOfMethod@QMetaObject@@QEBAHPEBD@Z
?indexOfSignal@QMetaObject@@QEBAHPEBD@Z
?indexOfSlot@QMetaObject@@QEBAHPEBD@Z
?indexOfEnumerator@QMetaObject@@QEBAHPEBD@Z
?indexOfProperty@QMetaObject@@QEBAHPEBD@Z
?indexOfClassInfo@QMetaObject@@QEBAHPEBD@Z
?constructor@QMetaObject@@QEBA?AVQMetaMethod@@H@Z
?method@QMetaObject@@QEBA?AVQMetaMethod@@H@Z
?enumerator@QMetaObject@@QEBA?AVQMetaEnum@@H@Z
?property@QMetaObject@@QEBA?AVQMetaProperty@@H@Z
?classInfo@QMetaObject@@QEBA?AVQMetaClassInfo@@H@Z
?userProperty@QMetaObject@@QEBA?AVQMetaProperty@@XZ
?checkConnectArgs@QMetaObject@@SA_NPEBD0@Z
?checkConnectArgs@QMetaObject@@SA_NAEBVQMetaMethod@@0@Z
?normalizedSignature@QMetaObject@@SA?AVQByteArray@@PEBD@Z
?normalizedType@QMetaObject@@SA?AVQByteArray@@PEBD@Z
?invokeMethod@QMetaObject@@SA_NPEAVQObject@@PEBDW4ConnectionType@Qt@@VQGenericReturnArgument@@VQGenericArgument@@444444444@Z
??1Connection@QMetaObject@@QEAA@XZ
??0Connection@QMetaObject@@QEAA@XZ
??0Connection@QMetaObject@@QEAA@AEBV01@@Z
??4Connection@QMetaObject@@QEAAAEAV01@AEBV01@@Z
??0QPoint@@QEAA@XZ
?manhattanLength@QPoint@@QEBAHXZ
??XQPoint@@QEAAAEAV0@N@Z
??_0QPoint@@QEAAAEAV0@N@Z
??0QPointF@@QEAA@XZ
?manhattanLength@QPointF@@QEBANXZ
?isNull@QPointF@@QEBA_NXZ
?toPoint@QPointF@@QEBA?AVQPoint@@XZ
??0?$QVector@VQPointF@@@@QEAA@XZ
??0?$QVector@VQPointF@@@@QEAA@AEBV0@@Z
??1?$QVector@VQPointF@@@@QEAA@XZ
??4?$QVector@VQPointF@@@@QEAAAEAV0@AEBV0@@Z
?at@?$QVector@VQPointF@@@@QEBAAEBVQPointF@@H@Z
?append@?$QVector@VQPointF@@@@QEAAXAEBVQPointF@@@Z
?detach@QListData@@QEAAPEAUData@1@H@Z
?detach_grow@QListData@@QEAAPEAUData@1@PEAHH@Z
?dispose@QListData@@SAXPEAUData@1@@Z
?append@QListData@@QEAAPEAPEAXXZ
?qHash@@YAIAEBVQRegExp@@I@Z
??0QRegExp@@QEAA@XZ
??0QRegExp@@QEAA@AEBVQString@@W4CaseSensitivity@Qt@@W4PatternSyntax@0@@Z
??0QRegExp@@QEAA@AEBV0@@Z
??1QRegExp@@QEAA@XZ
??4QRegExp@@QEAAAEAV0@AEBV0@@Z
?swap@QRegExp@@QEAAXAEAV1@@Z
??8QRegExp@@QEBA_NAEBV0@@Z
?isEmpty@QRegExp@@QEBA_NXZ
?isValid@QRegExp@@QEBA_NXZ
?pattern@QRegExp@@QEBA?AVQString@@XZ
?setPattern@QRegExp@@QEAAXAEBVQString@@@Z
?caseSensitivity@QRegExp@@QEBA?AW4CaseSensitivity@Qt@@XZ
?setCaseSensitivity@QRegExp@@QEAAXW4CaseSensitivity@Qt@@@Z
?patternSyntax@QRegExp@@QEBA?AW4PatternSyntax@1@XZ
?setPatternSyntax@QRegExp@@QEAAXW4PatternSyntax@1@@Z
?isMinimal@QRegExp@@QEBA_NXZ
?setMinimal@QRegExp@@QEAAX_N@Z
?exactMatch@QRegExp@@QEBA_NAEBVQString@@@Z
?indexIn@QRegExp@@QEBAHAEBVQString@@HW4CaretMode@1@@Z
?lastIndexIn@QRegExp@@QEBAHAEBVQString@@HW4CaretMode@1@@Z
?matchedLength@QRegExp@@QEBAHXZ
?captureCount@QRegExp@@QEBAHXZ
?capturedTexts@QRegExp@@QEAA?AVQStringList@@XZ
?cap@QRegExp@@QEAA?AVQString@@H@Z
?pos@QRegExp@@QEAAHH@Z
?errorString@QRegExp@@QEAA?AVQString@@XZ
?escape@QRegExp@@SA?AVQString@@AEBV2@@Z
?dynamicMetaObject@QObjectData@@QEBAPEAUQMetaObject@@XZ
?thread@QObject@@QEBAPEAVQThread@@XZ
?connect@QObject@@SA?AVConnection@QMetaObject@@PEBV1@PEBD01W4ConnectionType@Qt@@@Z
?disconnect@QObject@@SA_NPEBV1@PEBD01@Z
?parent@QObject@@QEBAPEAV1@XZ
?inherits@QObject@@QEBA_NPEBD@Z
?deleteLater@QObject@@QEAAXXZ
?sender@QObject@@IEBAPEAV1@XZ
?senderSignalIndex@QObject@@IEBAHXZ
?receivers@QObject@@IEBAHPEBD@Z
?isSignalConnected@QObject@@IEBA_NAEBVQMetaMethod@@@Z
?currentThreadId@QThread@@SAPEAXXZ
?currentThread@QThread@@SAPEAV1@XZ
?idealThreadCount@QThread@@SAHXZ
?yieldCurrentThread@QThread@@SAXXZ
??0QThread@@QEAA@PEAVQObject@@@Z
??1QThread@@UEAA@XZ
?setPriority@QThread@@QEAAXW4Priority@1@@Z
?priority@QThread@@QEBA?AW4Priority@1@XZ
?isFinished@QThread@@QEBA_NXZ
?isRunning@QThread@@QEBA_NXZ
?requestInterruption@QThread@@QEAAXXZ
?isInterruptionRequested@QThread@@QEBA_NXZ
?setStackSize@QThread@@QEAAXI@Z
?stackSize@QThread@@QEBAIXZ
?exit@QThread@@QEAAXH@Z
?eventDispatcher@QThread@@QEBAPEAVQAbstractEventDispatcher@@XZ
?setEventDispatcher@QThread@@QEAAXPEAVQAbstractEventDispatcher@@@Z
?loopLevel@QThread@@QEBAHXZ
?start@QThread@@QEAAXW4Priority@1@@Z
?terminate@QThread@@QEAAXXZ
?quit@QThread@@QEAAXXZ
?wait@QThread@@QEAA_NVQDeadlineTimer@@@Z
?wait@QThread@@QEAA_NK@Z
?sleep@QThread@@SAXK@Z
?msleep@QThread@@SAXK@Z
?usleep@QThread@@SAXK@Z
?exec@QThread@@IEAAHXZ
?setTerminationEnabled@QThread@@KAX_N@Z
?allocateNode@QHashData@@QEAAPEAXH@Z
?detach_helper@QHashData@@QEAAPEAU1@P6AXPEAUNode@1@PEAX@ZP6AX0@ZHH@Z
?rehash@QHashData@@QEAAXH@Z
?free_helper@QHashData@@QEAAXP6AXPEAUNode@1@@Z@Z
?nextNode@QHashData@@SAPEAUNode@1@PEAU21@@Z
??0QDateTime@@QEAA@XZ
??0QDateTime@@QEAA@AEBV0@@Z
??0QDateTime@@QEAA@$$QEAV0@@Z
??1QDateTime@@QEAA@XZ
??4QDateTime@@QEAAAEAV0@AEBV0@@Z
?nextNode@QMapNodeBase@@QEBAPEBU1@XZ
?recalcMostLeftNode@QMapDataBase@@QEAAXXZ
?createNode@QMapDataBase@@QEAAPEAUQMapNodeBase@@HHPEAU2@_N@Z
?freeTree@QMapDataBase@@QEAAXPEAUQMapNodeBase@@H@Z
?createData@QMapDataBase@@SAPEAU1@XZ
?freeData@QMapDataBase@@SAXPEAU1@@Z
?setOpenMode@QIODevice@@IEAAXV?$QFlags@W4OpenModeFlag@QIODevice@@@@@Z
?setErrorString@QIODevice@@IEAAXAEBVQString@@@Z
??0QVariant@@QEAA@XZ
??1QVariant@@QEAA@XZ
??0QVariant@@QEAA@W4Type@0@@Z
??0QVariant@@QEAA@AEBV0@@Z
??4QVariant@@QEAAAEAV0@AEBV0@@Z
??0QVariant@@QEAA@$$QEAV0@@Z

python3

PyTuple_Type
PyList_Type
PyObject_Repr
PyObject_RichCompareBool
PyByteArray_Size
PyByteArray_AsString
PyBytes_FromString
PyLong_FromVoidPtr
PyLong_AsLongLong
PyLong_AsUnsignedLongLongMask
PyTuple_New
PyTuple_Size
PyTuple_GetItem
PyTuple_SetItem
_PyObject_CallFunction_SizeT
PyLong_AsUnsignedLongLong
PyLong_Type
PyBool_Type
PyUnicode_Type
PyFloat_Type
PyDict_Type
PyCapsule_New
PyObject_GetAttr
PyObject_SetAttr
PyList_Insert
PyCFunction_NewEx
PyArg_ParseTupleAndKeywords
PyMapping_Items
PyUnicode_Concat
PyObject_GetAttrString
PyUnicode_AsEncodedString
PyUnicode_AsUTF8String
PyErr_Fetch
PyErr_Restore
PyErr_Print
PySys_GetObject
PySys_SetObject
PyObject_CallMethod
_Py_FalseStruct
_Py_TrueStruct
PyType_FromSpec
PyType_GenericNew
PyObject_Hash
PyCallable_Check
PyObject_Free
PyArg_ParseTuple
PyObject_IsInstance
PyExc_AttributeError
PyDict_Copy
PyObject_CallMethodObjArgs
PyType_GenericAlloc
PyType_GetSlot
PyObject_GenericGetAttr
PyObject_GC_UnTrack
PyType_Type
PyObject_CallFunction
Py_IsInitialized
PyObject_CallFunctionObjArgs
PyUnicode_CompareWithASCIIString
PyDict_SetItemString
PyObject_Call
PySequence_Tuple
PyExc_KeyError
PyTuple_GetSlice
PyWeakref_NewRef
PyWeakref_GetObject
PyErr_GivenExceptionMatches
PyObject_Dir
PyByteArray_Type
PyList_Size
PyList_New
PyFloat_AsDouble
PyFloat_FromDouble
PyBool_FromLong
PyLong_FromUnsignedLongLong
PyLong_FromLongLong
PyLong_AsVoidPtr
PyLong_AsLong
PyLong_FromUnsignedLong
PyLong_FromLong
PyUnicode_DecodeASCII
PyUnicode_FromFormat
PyUnicode_FromString
PyBytes_AsString
PyBytes_Size
PyBytes_FromStringAndSize
_Py_Dealloc
PyType_GetFlags
PyType_IsSubtype
PyExc_ValueError
PyExc_TypeError
PyExc_RuntimeError
PyExc_OverflowError
PySlice_Type
_Py_NotImplementedStruct
_Py_NoneStruct
PyCapsule_Type
PySequence_GetItem
PySequence_Size
PySequence_Check
PyIter_Next
PyObject_GetIter
PyObject_CallObject
PyImport_ImportModule
PyEval_RestoreThread
PyEval_SaveThread
PyModule_Create2
_Py_BuildValue_SizeT
PyErr_Format
PyErr_ExceptionMatches
Py_FatalError
PyObject_GC_Del
PyErr_Clear
PyOS_InputHook
PyErr_Occurred
PyErr_SetString
PyGILState_Release
PyGILState_Ensure
PyCapsule_GetPointer
PyModule_GetDict
PySet_Add
PySet_New
PyDict_GetItemString
PyDict_Next
PyDict_SetItem
PyDict_New
PyList_SetSlice
PyList_Append
PyList_SetItem
PyDict_DelItem
PyList_GetItem

kernel32

CloseHandle
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
SetEvent
ResetEvent
WaitForSingleObjectEx
CreateEventW
GetModuleHandleW
GetProcAddress
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
EnterCriticalSection

vcruntime140

memcmp
memcpy
memset
strchr
__C_specific_handler
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__std_type_info_destroy_list

api-ms-win-crt-runtime-l1-1-0

_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit
_cexit
_initterm
_initterm_e
_seh_filter_dll

api-ms-win-crt-stdio-l1-1-0

_kbhit

api-ms-win-crt-string-l1-1-0

toupper
strncmp

api-ms-win-crt-heap-l1-1-0

free
malloc
_callnewh

Exports

Exports

PyInit_QtCore

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 615KB - Virtual size: 615KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 289KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/PyQt5/sip.cp311-win_amd64.pyd
.dll windows:6 windows x64 arch:x64

04ef69d8906f92a14be505228b53196e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

python311

_PyArg_ParseTupleAndKeywords_SizeT
PyObject_IsInstance
PyMem_Free
PyIndex_Check
PyExc_NotImplementedError
PyNumber_AsSsize_t
_PyObject_New
PyExc_IndexError
PySequence_Size
PyBaseObject_Type
PyObject_SetAttr
PyOS_snprintf
PyThreadState_Get
PySlice_AdjustIndices
PyExc_Exception
PyErr_SetObject
_Py_BuildValue_SizeT
_PyObject_CallFunction_SizeT
PyErr_WarnEx
PyFunction_Type
PyExc_DeprecationWarning
PyImport_ImportModule
PyErr_NormalizeException
PySequence_GetItem
PyLong_FromSsize_t
PyObject_GenericGetAttr
PyExc_RuntimeError
PyUnicode_AppendAndDel
PySlice_Unpack
PyLong_FromUnsignedLongLong
PyDict_Contains
PySys_GetObject
PyUnicode_AsLatin1String
PyBytes_FromString
PyMem_RawMalloc
PyGILState_Release
PyTuple_New
PyDict_Size
PyLong_FromLongLong
PyBuffer_FillInfo
PyUnicode_New
PyUnicode_FromWideChar
PyDictProxy_New
PyUnicode_AsASCIIString
PyDict_Next
PyDescr_NewMethod
PyBool_Type
PyTuple_Type
PyFloat_Type
PyLong_Type
PyImport_GetModuleDict
PyFloat_FromDouble
PyCapsule_GetPointer
PyObject_CheckBuffer
PyObject_CallFunctionObjArgs
PyLong_AsLong
PyUnicode_AsUTF8
PyObject_GetBuffer
PyList_New
PyModule_Create2
PyType_Ready
PyList_Append
PyWrapperDescr_Type
PyCapsule_New
PyDict_SetItem
PyLong_FromUnsignedLong
PyLong_FromVoidPtr
PyUnicode_AsWideChar
PyCapsule_Import
PyErr_NoMemory
PyDict_GetItemString
PyDict_GetItem
PyUnicode_DecodeLatin1
PyProperty_Type
PyBytes_FromStringAndSize
_Py_NotImplementedStruct
PyImport_Import
PyGILState_Ensure
PyUnicode_Compare
PyUnicode_Tailmatch
PyEval_GetFrame
PyObject_IsTrue
PyUnicode_AsUTF8String
PyTuple_Pack
_PyUnicode_Ready
PyCallable_Check
PyFrame_GetBack
PyUnicode_DecodeASCII
PyExc_SystemError
PyMem_RawFree
PyType_Modified
PyObject_Print
PyErr_Print
PyUnicode_FromString
PyBuffer_Release
PyObject_Call
Py_AtExit
PyUnicode_CompareWithASCIIString
PyType_Type
PyUnicode_FromStringAndSize
PyThread_get_thread_ident
PyLong_AsSsize_t
PyLong_AsVoidPtr
PyCapsule_Type
PyFloat_AsDouble
PyErr_SetNone
PySlice_Type
PyExc_BufferError
PyExc_NameError
PyObject_CallObject
PyObject_GetAttrString
PyErr_Fetch
PyErr_Restore
PyMethod_Type
PyTuple_GetSlice
PyWeakref_GetObject
PyMethod_New
PyErr_GivenExceptionMatches
PyBool_FromLong
PyWeakref_NewRef
PyCFunction_Type
PyType_IsSubtype
_Py_TrueStruct
PyExc_TypeError
PyErr_Clear
PyErr_ExceptionMatches
PyLong_AsUnsignedLongMask
PyExc_OverflowError
_Py_FalseStruct
PyLong_AsUnsignedLongLongMask
PyLong_AsLongLong
PyLong_AsUnsignedLongLong
PyDict_New
PyErr_Occurred
PyLong_AsUnsignedLong
PyType_GenericAlloc
PyUnicode_FromFormat
PyExc_AttributeError
PyObject_GetAttr
PyObject_GC_UnTrack
PyCMethod_New
_PyArg_ParseTuple_SizeT
_Py_Dealloc
PyErr_Format
PyExc_ValueError
PyDict_SetItemString
PyErr_SetString
_Py_NoneStruct
PyModule_GetDict
PyLong_FromLong

kernel32

GetSystemTimeAsFileTime
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
strchr
memmove
memset

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vfprintf

api-ms-win-crt-utility-l1-1-0

bsearch

api-ms-win-crt-runtime-l1-1-0

_cexit
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table

api-ms-win-crt-string-l1-1-0

strcmp

Exports

Exports

PyInit_sip

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 656B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/Pythonwin/mfc140u.dll
.dll windows:6 windows x64 arch:x64

7eedc677241d2accda18e4d0e39e2103

Code Sign

33:00:00:02:56:06:f5:9e:81:98:70:24:97:00:00:00:00:02:56
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/09/2021, 18:33

Not After

01/09/2022, 18:33

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

57:6c:0b:5b:52:5b:20:30:78:f4:0d:c3:18:6f:21:48:af:b2:46:79:4e:05:8c:84:04:b0:02:2d:6b:a9:d8:41
Signer

Actual PE Digest

57:6c:0b:5b:52:5b:20:30:78:f4:0d:c3:18:6f:21:48:af:b2:46:79:4e:05:8c:84:04:b0:02:2d:6b:a9:d8:41

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

d:\a01\_work\12\s\\binaries\amd64ret\bin\amd64\\mfc140u.amd64.pdb

Imports

advapi32

RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegEnumValueW
RegQueryValueExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyExW
RegEnumKeyW
RegQueryValueW
RegSetValueW
GetFileSecurityW
SetFileSecurityW
IsTextUnicode
RegQueryValueExA
RegOpenKeyExA

kernel32

InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsDebuggerPresent
IsProcessorFeaturePresent
ExpandEnvironmentStringsA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
LockResource
FormatMessageA
OutputDebugStringW
LoadLibraryExA
GetSystemInfo
TerminateProcess
LoadResource
FindResourceW
GetLastError
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
SetLastError
DeactivateActCtx
LoadLibraryW
GetProcAddress
ActivateActCtx
FindActCtxSectionStringW
CreateActCtxW
GetModuleFileNameW
GetModuleHandleExW
QueryActCtxW
OutputDebugStringA
MultiByteToWideChar
lstrcpyW
GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentThreadId
InitializeCriticalSection
DeleteFileW
GetModuleHandleW
MulDiv
VerSetConditionMask
VerifyVersionInfoW
FreeLibrary
CloseHandle
GetTempPathW
CreateFileW
SetFilePointer
Sleep
GetCurrentDirectoryW
lstrcmpW
GetSystemDirectoryW
LoadLibraryExW
DecodePointer
EncodePointer
GlobalFree
GetTickCount
GetWindowsDirectoryW
lstrcmpiW
SetThreadPriority
LocalAlloc
LocalFree
TlsAlloc
TlsFree
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalReAlloc
TlsSetValue
GetFileSize
GetFileAttributesW
GlobalSize
VirtualQuery
GetEnvironmentVariableA
GetEnvironmentVariableW
GlobalFlags
GlobalFindAtomW
GetSystemTime
LocalUnlock
LocalLock
GlobalGetAtomNameW
GetAtomNameW
SuspendThread
ResumeThread
SetEvent
CopyFileW
WaitForMultipleObjects
CreateEventW
ReleaseMutex
CreateMutexW
ReleaseSemaphore
CreateSemaphoreW
WaitForSingleObject
FormatMessageW
SetFileAttributesW
LocalFileTimeToFileTime
GetFileAttributesExW
GetFileSizeEx
FindNextFileW
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetShortPathNameW
GetStringTypeExW
GetThreadLocale
FindClose
FindFirstFileW
GetVolumeInformationW
MoveFileW
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GetProfileIntW
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetFileTime
GetFullPathNameW
GetDiskFreeSpaceW
GetTempFileNameW
VirtualProtect
RaiseException
lstrcpyA
CompareStringW
IsDBCSLeadByte
GetUserDefaultLCID
FindResourceExW
WritePrivateProfileStringW
SearchPathW
GetLocaleInfoW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetCurrentThread
GetVersionExW
WideCharToMultiByte
GetPrivateProfileStringW
lstrcmpA
CompareStringA
GlobalDeleteAtom
SetErrorMode
GetCurrentProcessId
GlobalAddAtomW
GetPrivateProfileIntW
SizeofResource

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__current_exception_context
__current_exception
memcmp
wcsrchr
__C_specific_handler
wcsstr
wcschr
_purecall
memmove
memset
memcpy
__std_terminate
__std_type_info_destroy_list
_CxxThrowException

api-ms-win-crt-runtime-l1-1-0

_resetstkoflw
_beginthreadex
_endthreadex
__p___argc
_initterm_e
_initterm
terminate
_beginthread
abort
_invalid_parameter_noinfo
_errno
_cexit
_crt_atexit
_execute_onexit_table
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_endthread
__doserrno
__p___wargv

api-ms-win-crt-string-l1-1-0

_wcsrev
wcscoll
strcpy_s
wcslen
_wcslwr_s
toupper
wcsnlen
wmemcpy_s
wcscmp
iswspace
_wcsupr_s
_wcsicmp
wcspbrk
wcscspn
wcsspn
_wcsicoll
wcsncmp
wcscpy_s
iswdigit
iswalpha
iswalnum
iswprint
towupper
towlower
wcscat_s
_wcsdup
strlen
_strnicmp
wcsncpy_s
strnlen
_wcsnicmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vswprintf_s
__stdio_common_vswprintf
fgetws
fputws
fwrite
clearerr_s
ferror
feof
fread
ftell
_open_osfhandle
_fileno
_get_osfhandle
__stdio_common_vswscanf
fflush
fclose
__stdio_common_vsprintf_s
__stdio_common_vsnwprintf_s
__stdio_common_vsprintf
fseek

api-ms-win-crt-utility-l1-1-0

rand_s
labs
ldiv
abs

api-ms-win-crt-heap-l1-1-0

_recalloc
malloc
_msize
_expand
realloc
free
calloc

api-ms-win-crt-convert-l1-1-0

wcstoul
_itow_s
wcstol
_wtoi
_ltow_s
_ultow_s
_wtol
wcstod

api-ms-win-crt-math-l1-1-0

exp
ceil
sqrt
atan2
cos
sin
_fdopen
floor
fabs

api-ms-win-crt-time-l1-1-0

clock
_localtime64_s
_mktime64
_time64

api-ms-win-crt-filesystem-l1-1-0

_wmakepath_s
_wsplitpath_s
_wfullpath

api-ms-win-crt-multibyte-l1-1-0

_mbsupr_s
_mbscspn
_mbsicmp
_mbsrchr
_mbscmp
_mbsstr
_mbscoll
_ismbcspace
_mbspbrk
_mbsspn
_mbsicoll
_mbsrev
_mbslwr_s
_mbsinc
_mbschr

user32

TranslateAcceleratorW
GetSystemMetrics
DestroyMenu
LoadMenuW
GetSubMenu
PostThreadMessageW
GetClassInfoW
DefWindowProcW
GetWindow
GetMenuItemCount
GetCursorPos
IsIconic
GetForegroundWindow
DrawIcon
GetMonitorInfoW
MonitorFromPoint
SystemParametersInfoW
ValidateRect
SetLayeredWindowAttributes
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
GetUpdateRect
UnionRect
SetWindowPos
LockWindowUpdate
GetKeyState
BeginDeferWindowPos
EndDeferWindowPos
AppendMenuW
CreatePopupMenu
IntersectRect
SetScrollPos
EnableMenuItem
GetNextDlgTabItem
GetSystemMenu
IsMenu
IsZoomed
ModifyMenuW
DeleteMenu
SetWindowRgn
DestroyAcceleratorTable
GetTopWindow
DestroyWindow
MonitorFromRect
EnumDisplayMonitors
GetSysColor
GetClassLongPtrW
IsClipboardFormatAvailable
DestroyCursor
CreateAcceleratorTableW
CopyAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyW
CharUpperW
SetWindowTextW
GetMenuState
CheckMenuItem
SetFocus
GetMenuItemInfoW
DrawFrameControl
SubtractRect
GetLastActivePopup
GetMessageW
UpdateLayeredWindow
EnableScrollBar
GetScrollPos
GetMenuDefaultItem
SetMenuDefaultItem
HideCaret
InvertRect
EnumChildWindows
GetWindowTextW
GetDoubleClickTime
GetDC
ReleaseDC
GetWindowRgn
FrameRect
ShowScrollBar
IsWindowEnabled
InsertMenuW
GetActiveWindow
RegisterClipboardFormatW
GetComboBoxInfo
CharUpperBuffW
DrawEdge
PostQuitMessage
UnregisterClassW
ShowOwnedPopups
GetWindowThreadProcessId
MessageBoxW
LoadAcceleratorsW
SetMenuItemBitmaps
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetWindowLongPtrW
CallWindowProcW
SetActiveWindow
CreateMenu
MoveWindow
InvalidateRgn
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
GetWindowTextLengthW
GetTabbedTextExtentW
GetDlgItem
CreateDialogIndirectParamW
EndDialog
GetPropW
RemovePropW
SetPropW
MapDialogRect
GetMessageTime
GetMessagePos
GetDialogBaseUnits
GetDCEx
RemoveMenu
MsgWaitForMultipleObjectsEx
CharNextW
SetWindowContextHelpId
IsDialogMessageW
ClipCursor
SendNotifyMessageW
InSendMessage
GetMenuStringW
WindowFromDC
SetScrollRange
AdjustWindowRectEx
CountClipboardFormats
GetMenu
SetMenu
GetClassInfoExW
GetWindowLongPtrW
CreateWindowExW
SetWindowPlacement
TrackPopupMenuEx
RegisterClassW
WinHelpW
GetScrollRange
SetScrollInfo
GetScrollInfo
ScrollWindow
MonitorFromWindow
BeginPaint
EndPaint
SendDlgItemMessageA
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
GetMenuBarInfo
GetWindowDC
DefFrameProcW
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextW
SendDlgItemMessageW
SetDlgItemInt
SetDlgItemTextW
IsDlgButtonChecked
ScrollWindowEx
RealChildWindowFromPoint
CharToOemBuffA
OemToCharBuffA
IsWindowVisible
GetClientRect
KillTimer
SetRectEmpty
GetWindowRect
SendMessageW
InvalidateRect
IsWindow
SetRect
EnableWindow
IsCharLowerW
GetKeyNameTextW
GetKeyboardLayout
MapVirtualKeyExW
GetCapture
DrawStateW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetAsyncKeyState
GetDesktopWindow
WaitMessage
DispatchMessageW
TranslateMessage
PeekMessageW
SetForegroundWindow
LoadCursorW
GetFocus
IsChild
TrackPopupMenu
LoadIconW
GetNextDlgGroupItem
DrawFocusRect
SetCursor
GetWindowLongW
LoadImageW
CopyImage
GetIconInfo
FillRect
NotifyWinEvent
CopyRect
LoadBitmapW
MapWindowPoints
MessageBeep
SetCursorPos
WindowFromPoint
ClientToScreen
SetCapture
ReleaseCapture
CopyIcon
BringWindowToTop
RegisterWindowMessageW
DestroyIcon
GetClassNameW
SetParent
ShowWindow
GetWindowPlacement
IsRectEmpty
GetDlgCtrlID
PostMessageW
DeferWindowPos
EqualRect
GetSysColorBrush
SetClassLongPtrW
GetParent
DrawIconEx
InflateRect
OffsetRect
PtInRect
UpdateWindow
SetTimer
TrackMouseEvent
SetWindowLongW
ScreenToClient
GetMenuItemID
RedrawWindow

gdi32

PtVisible
GetViewportOrgEx
DeleteMetaFile
CloseMetaFile
CreateMetaFileW
LPtoDP
GetCharWidthW
CreateFontW
StretchDIBits
RoundRect
CreateEllipticRgn
CreateHatchBrush
ExtTextOutW
Polyline
SetDIBColorTable
GetDIBits
SelectPalette
StretchBlt
SetBkColor
CreateBitmap
EnumFontFamiliesExW
CreateRoundRectRgn
SetRectRgn
FillRgn
GetBoundsRect
CombineRgn
CreateRectRgn
PatBlt
DeleteDC
GetCurrentObject
EndDoc
EndPage
StartPage
ExtFloodFill
SetPaletteEntries
CreateDIBitmap
CreatePatternBrush
CreatePen
EnumFontFamiliesW
GetTextCharsetInfo
GetDeviceCaps
CreateFontIndirectW
GetBkColor
SetPixel
Ellipse
CreateDIBSection
OffsetRgn
CreateRectRgnIndirect
GetRgnBox
BitBlt
SetPixelV
CreateCompatibleBitmap
FrameRgn
PtInRegion
CreatePolygonRgn
GetPixel
GetSystemPaletteEntries
GetNearestPaletteIndex
RealizePalette
CreatePalette
GetPaletteEntries
GetStockObject
TextOutW
Polygon
GetTextColor
GetObjectType
DeleteObject
SelectObject
CreateCompatibleDC
GetObjectW
CreateSolidBrush
GetTextExtentPoint32W
GetTextMetricsW
GetClipBox
Escape
GetTextAlign
GetCurrentPositionEx
MoveToEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SaveDC
RestoreDC
GetROP2
GetBkMode
GetPolyFillMode
GetStretchBltMode
GetNearestColor
GetTextFaceW
GetWindowExtEx
GetViewportExtEx
SetTextColor
SetMapMode
SetWindowExtEx
ScaleWindowExtEx
GetWindowOrgEx
SetWindowOrgEx
IntersectClipRect
CreateDCW
SetBrushOrgEx
SetAbortProc
StartDocW
DPtoLP
AbortDoc
CopyMetaFileW
UnrealizeObject
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
OffsetWindowOrgEx
SelectClipRgn
ExcludeClipRect
OffsetClipRgn
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetLayout
SetLayout
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
SelectClipPath
GetClipRgn
ExtSelectClipRgn
PlayMetaFileRecord
PlayMetaFile
EnumMetaFile
ExtCreatePen
CreateDIBPatternBrushPt
GetMapMode
RectVisible
Rectangle

ole32

CoCreateGuid
OleRegGetMiscStatus
OleRegEnumVerbs
CreateFileMoniker
OleRun
CoTaskMemAlloc
CoDisconnectObject
OleIsRunning
CoTaskMemFree
CoCreateInstance
CoRegisterMessageFilter
CoTreatAsClass
SetConvertStg
WriteFmtUserTypeStg
OleDuplicateData
WriteClassStg
GetRunningObjectTable
OleTranslateAccelerator
IsAccelerator
OleSetClipboard
CreateBindCtx
PropVariantClear
OleQueryLinkFromData
OleQueryCreateFromData
OleSetMenuDescriptor
CreateGenericComposite
CreateItemMoniker
GetClassFile
OleRegGetUserType
CreateDataCache
CoFreeUnusedLibraries
OleInitialize
OleGetClipboard
WriteClassStm
OleGetIconOfClass
GetHGlobalFromILockBytes
CoRegisterClassObject
ReadClassStg
OleLoad
OleSave
OleDraw
CreateStreamOnHGlobal
RevokeDragDrop
OleCreate
OleCreateLinkToFile
RegisterDragDrop
CoLockObjectExternal
DoDragDrop
CoGetMalloc
StgOpenStorage
StgIsStorageFile
OleCreateFromFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleSetContainedObject
StringFromCLSID
OleLockRunning
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
PropVariantCopy
CoInitializeEx
StringFromGUID2
ReadFmtUserTypeStg
OleLoadFromStream
StgCreateDocfileOnILockBytes
StgCreateDocfile
CreateILockBytesOnHGlobal
ReadClassStm
OleSaveToStream
CreateOleAdviseHolder
CoInitialize
CreateDataAdviseHolder
CoRevokeClassObject
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleFlushClipboard
CoUninitialize
ReleaseStgMedium
OleUninitialize
OleIsCurrentClipboard

oleaut32

SysAllocString
SysStringLen
SysFreeString
VariantChangeType
VariantClear
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
OleCreatePropertyFrame
VarParseNumFromStr
SafeArrayCreateVector
VarBstrFromDec
VarDecFromStr
VarDateFromStr
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromCy
VarCyFromStr
SysReAllocStringLen
SysAllocStringByteLen
SafeArrayRedim
SafeArrayCreate
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SysStringByteLen
SafeArrayDestroy
VariantCopy
VarBstrCmp
DispCallFunc
VariantInit
LoadRegTypeLi
RegisterTypeLi
LoadTypeLi
OleLoadPicture
OleCreatePictureIndirect
OleCreateFontIndirect
OleTranslateColor
SysAllocStringLen

shlwapi

PathFindFileNameW
PathRemoveExtensionW
StrFormatKBSizeW
PathIsUNCW
PathStripToRootW
UrlUnescapeW
PathRemoveFileSpecW
PathFindExtensionW

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

uxtheme

DrawThemeParentBackground
GetWindowTheme
DrawThemeBackground
GetThemeColor
OpenThemeData
CloseThemeData
GetCurrentThemeName
GetThemeSysColor
DrawThemeText
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
IsAppThemed

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 949KB - Virtual size: 949KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.didat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/Pythonwin/win32ui.pyd
.dll windows:6 windows x64 arch:x64

e957d5741b939d53017aad8c14728bbe

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\src\pywin32\build\temp.win-amd64-cpython-311\Release\win32ui.pdb

Imports

mfc140u

ord10727
ord11813
ord6000
ord13397
ord2697
ord8901
ord11085
ord10163
ord3951
ord3308
ord3307
ord3071
ord7366
ord9066
ord11898
ord10689
ord1386
ord6083
ord11623
ord11622
ord11624
ord11621
ord10858
ord10260
ord11022
ord8733
ord10710
ord10924
ord8668
ord6153
ord902
ord904
ord6556
ord7119
ord5165
ord5674
ord1503
ord7367
ord8880
ord9067
ord8916
ord2966
ord8944
ord2543
ord11899
ord1389
ord10189
ord3967
ord12899
ord12900
ord4876
ord6029
ord3145
ord6557
ord7120
ord3509
ord6313
ord1092
ord8066
ord5426
ord455
ord6002
ord13401
ord2698
ord10769
ord10691
ord13864
ord12706
ord8507
ord5240
ord4726
ord4656
ord4721
ord2270
ord3756
ord4722
ord6320
ord2903
ord1641
ord4954
ord296
ord8416
ord10806
ord7136
ord11902
ord6878
ord11770
ord8917
ord6630
ord2628
ord9739
ord9738
ord10835
ord8702
ord10811
ord11435
ord8604
ord8614
ord10199
ord10807
ord9217
ord9682
ord9677
ord9205
ord9215
ord9200
ord10968
ord10965
ord8003
ord5910
ord11804
ord6606
ord7169
ord6867
ord1065
ord9218
ord375
ord6826
ord5772
ord11787
ord8824
ord4085
ord6344
ord6907
ord1149
ord3745
ord3089
ord3092
ord528
ord6333
ord6896
ord5687
ord9068
ord10455
ord5581
ord7370
ord9034
ord9737
ord10834
ord8701
ord11802
ord10805
ord3741
ord12835
ord11979
ord5036
ord5100
ord10791
ord8613
ord14222
ord10847
ord11345
ord10914
ord10916
ord9949
ord10197
ord8002
ord933
ord6571
ord7134
ord1109
ord1086
ord10726
ord6861
ord1844
ord7177
ord2194
ord7928
ord6858
ord7068
ord1160
ord5957
ord12372
ord1633
ord8202
ord539
ord2921
ord285
ord5709
ord6542
ord6247
ord6810
ord12176
ord5463
ord6250
ord6813
ord12559
ord4357
ord2514
ord6819
ord5963
ord12378
ord1639
ord8208
ord545
ord7182
ord7147
ord5916
ord1454
ord6775
ord6905
ord8817
ord1053
ord4078
ord3056
ord6251
ord6814
ord1383
ord3266
ord3144
ord6555
ord7118
ord8828
ord1426
ord4097
ord4938
ord6785
ord6779
ord3166
ord6590
ord7153
ord1411
ord13579
ord6655
ord13535
ord6165
ord3269
ord3153
ord6579
ord7142
ord6821
ord12240
ord1111
ord3078
ord6303
ord6866
ord4724
ord5771
ord8823
ord1158
ord4084
ord3233
ord7780
ord5604
ord13309
ord5641
ord13307
ord5628
ord13299
ord3097
ord6343
ord6906
ord1402
ord8062
ord8060
ord13453
ord13580
ord13105
ord6667
ord6067
ord6656
ord5191
ord13577
ord6648
ord3149
ord6569
ord7132
ord5909
ord1442
ord3234
ord7785
ord8050
ord13301
ord5607
ord5636
ord5621
ord5643
ord5633
ord3171
ord6605
ord7168
ord6118
ord12746
ord4030
ord4499
ord13674
ord11744
ord8063
ord8501
ord7813
ord12738
ord8575
ord13757
ord13617
ord13555
ord13473
ord12967
ord12762
ord12761
ord3742
ord438
ord2473
ord6845
ord3517
ord1381
ord896
ord290
ord3656
ord3657
ord3685
ord3697
ord320
ord3598
ord3596
ord2715
ord7551
ord5241
ord7233
ord11854
ord1089
ord8731
ord10704
ord4343
ord7724
ord448
ord6285
ord6848
ord5004
ord5150
ord497
ord496
ord6877
ord3579
ord6624
ord13084
ord364
ord6820
ord3655
ord3678
ord3586
ord11823
ord3597
ord5750
ord10724
ord8730
ord10703
ord6260
ord3595
ord5978
ord5388
ord5379
ord5381
ord6090
ord489
ord6007
ord6006
ord6871
ord7364
ord2495
ord3965
ord894
ord6553
ord7116
ord2357
ord286
ord449
ord6849
ord2336
ord4946
ord14111
ord3510
ord6876
ord6883
ord6549
ord7112
ord6098
ord5212
ord5273
ord5125
ord5199
ord1504
ord4345
ord12392
ord12391
ord1905
ord4311
ord13698
ord6030
ord4875
ord912
ord13370
ord2659
ord7159
ord6566
ord7129
ord7378
ord11271
ord10764
ord11048
ord10690
ord8945
ord13919
ord13906
ord3172
ord4032
ord13994
ord14001
ord5487
ord5548
ord7635
ord1422
ord4000
ord3999
ord3948
ord1772
ord2639
ord12901
ord4877
ord3734
ord3760
ord13893
ord13895
ord3774
ord3523
ord9272
ord10217
ord9610
ord12164
ord7654
ord6044
ord13050
ord13557
ord3546
ord3529
ord3163
ord954
ord6586
ord7149
ord10770
ord11030
ord9751
ord8866
ord10093
ord11184
ord11763
ord8928
ord4443
ord3723
ord5189
ord11484
ord8904
ord7912
ord1129
ord9043
ord8521
ord11119
ord4353
ord2510
ord5726
ord13358
ord5727
ord13360
ord13351
ord5722
ord12142
ord5917
ord4873
ord4872
ord3081
ord1985
ord12360
ord3484
ord7251
ord8995
ord10446
ord10420
ord3714
ord11491
ord5744
ord11486
ord1767
ord11862
ord3811
ord8097
ord11788
ord7432
ord3098
ord546
ord6353
ord8902
ord10121
ord2821
ord12624
ord7712
ord5263
ord13064
ord13115
ord11660
ord11661
ord5968

kernel32

GetCommandLineW
SetThreadPriority
LoadLibraryExW
RtlCaptureContext
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
LeaveCriticalSection
EnterCriticalSection
QueryActCtxW
CreateActCtxW
FreeLibrary
LoadResource
FindResourceExW
GetModuleHandleW
GetProcAddress
CloseHandle
CreateFileW
LocalAlloc
WriteFile
DebugBreak
lstrcmpiW
GlobalFree
SetConsoleTitleW
GetTickCount
GetCurrentProcessId
GetCurrentThreadId
Sleep
GetConsoleTitleW
GetModuleFileNameW
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GetProcessHeap
DeleteCriticalSection
HeapDestroy
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionAndSpinCount
HeapFree
LoadLibraryW
GetModuleHandleExW
SetLastError
OutputDebugStringA
GlobalReAlloc
FormatMessageW
WideCharToMultiByte
LocalFree
CreateThread
OutputDebugStringW
ActivateActCtx
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
DeactivateActCtx
FindActCtxSectionStringW

user32

GetTopWindow
GetForegroundWindow
LockWindowUpdate
BringWindowToTop
DrawMenuBar
SetCapture
GetWindowDC
DlgDirSelectComboBoxExW
IsZoomed
ShowCaret
KillTimer
ReleaseCapture
GetDCEx
IsIconic
BeginPaint
EndPaint
CopyRect
MessageBoxW
ToAsciiEx
CallNextHookEx
GetKeyboardState
MapVirtualKeyExW
GetKeyboardLayout
SetWindowsHookExW
UpdateWindow
InvalidateRect
GetParent
PeekMessageW
ModifyMenuW
GetMenuItemID
GetMenuItemCount
DeleteMenu
CreatePopupMenu
IsMenu
GetMenuStringW
InsertMenuW
AppendMenuW
EnableMenuItem
CreateMenu
MapDialogRect
FillRect
DrawIcon
FrameRect
DrawFocusRect
DrawFrameControl
ClientToScreen
GetWindowLongPtrW
LoadBitmapW
GetWindow
GetWindowRect
SendMessageW
GetClassNameW
GetClientRect
IsWindow
EnableWindow
FindWindowW
wsprintfW
GetDC
ReleaseDC
GetMessageW
DefWindowProcW
LoadMenuW
PostMessageW
DestroyWindow
CreateWindowExW
UnregisterClassW
GetWindowPlacement
TrackPopupMenu
GetSubMenu
ShowWindow
DispatchMessageW
RegisterClassW
SetMenuDefaultItem
TranslateMessage
LoadIconW
LoadCursorW
PostQuitMessage
RegisterWindowMessageW
SetForegroundWindow
GetCursorPos
RedrawWindow
ChildWindowFromPointEx
ScreenToClient
HideCaret
SetActiveWindow
IsWindowVisible
GetFocus
GetMenu
FindWindowExW
DlgDirListW
ShowScrollBar
GetSystemMenu
GetLastActivePopup
DlgDirSelectExW
MapWindowPoints
EqualRect
IsChild
SetTimer
GetCapture
InvalidateRgn
GetWindowLongW
GetActiveWindow
DlgDirListComboBoxW

gdi32

CreateCompatibleDC
SelectObject
BitBlt
GetTextMetricsW
GetObjectType
GetObjectW
GetDIBits
GetBitmapBits
CreateCompatibleBitmap
CreateSolidBrush
CreateBrushIndirect
SetWorldTransform
GetViewportOrgEx
EndPage
DPtoLP
StartDocW
GetMapMode
GetBrushOrgEx
LPtoDP
CreateDIBitmap
Polygon
GetViewportExtEx
Rectangle
EndPath
GetTextExtentPoint32W
GetPixel
GetDeviceCaps
StrokeAndFillPath
StrokePath
GetWindowOrgEx
Polyline
PolyBezier
GetCurrentPositionEx
CreateDCW
Chord
EndDoc
BeginPath
AbortDoc
GetTextFaceW
SetGraphicsMode
StretchBlt
RealizePalette
StretchDIBits
DeleteDC
SelectPalette
SetDIBitsToDevice
Ellipse
CreatePalette
PatBlt
SetPixel
FillPath
Arc
StartPage
GetWindowExtEx
Pie
SetBrushOrgEx
GetNearestColor
SetViewportOrgEx
CreateRectRgn
CreateEllipticRgn
CombineRgn
GetRgnBox
CreatePenIndirect
CreateFontIndirectW
SetStretchBltMode

winspool.drv

OpenPrinterW
GetPrinterW
ClosePrinter

shell32

CommandLineToArgvW
Shell_NotifyIconW
DragAcceptFiles

comctl32

ImageList_AddMasked
ImageList_SetBkColor
ImageList_Add
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_GetBkColor
ImageList_ReplaceIcon

oleaut32

VariantClear
VariantInit
SysFreeString

python311

_Py_BuildValue_SizeT
_PyArg_ParseTuple_SizeT
PySequence_Size
PySequence_GetItem
PyExc_ValueError
PySequence_Check
PyBool_FromLong
PyObject_GenericGetAttr
PyMapping_Check
PyDict_SetItem
PyDict_GetItem
PyErr_WarnEx
PyExc_Warning
PyBytes_FromString
PyExc_IndexError
PyExc_SystemExit
PyEval_CallObjectWithKeywords
PyObject_GenericSetAttr
_Py_FatalErrorFunc
PyErr_SetObject
PyErr_GivenExceptionMatches
PyList_Insert
PyModule_AddIntConstant
PyErr_NormalizeException
PyExc_RuntimeError
PyUnicode_Concat
PyList_SetItem
PyRun_StringFlags
Py_Finalize
_Py_FalseStruct
PyModule_GetDict
PyObject_ClearWeakRefs
PyModule_Create2
PyImport_AddModule
PyType_Ready
PyErr_NewException
PyObject_IsInstance
PySys_SetArgv
_Py_NewReference
PyErr_Print
PyObject_Repr
PyType_Type
PyTraceBack_Print
PyUnicode_AsWideCharString
PyMem_Free
PyArg_ParseTupleAndKeywords
PyObject_Size
PyCFunction_Type
_Py_VaBuildValue_SizeT
PyMethod_Type
PyType_IsSubtype
PyLong_AsUnsignedLong
PyLong_FromUnsignedLong
PySequence_Tuple
PySys_GetObject
PyGILState_Release
PyErr_SetInterrupt
Py_BuildValue
PyGILState_Ensure
PyErr_SetString
PyExc_TypeError
_Py_NoneStruct
PyErr_Restore
_Py_Dealloc
PyErr_Fetch
PyLong_AsLong
PyExc_NotImplementedError
PyObject_GetAttrString
PyNumber_Long
PyEval_SaveThread
PyErr_Clear
PyArg_ParseTuple
PyEval_RestoreThread
PyExc_IOError
PyErr_SetFromErrno
PyErr_Occurred
PyLong_FromLong
PyList_New
PyList_Append
PyWeakref_NewRef
PyWeakref_GetObject
PyErr_Format
PyObject_Str
PyBytes_AsString
PyExc_MemoryError
PyTuple_New
PyDict_SetItemString
PyLong_FromVoidPtr
PyList_GetItem
PyTuple_Size
PyArg_Parse
PyTuple_GetItem
PyList_Size
PyUnicode_AsUTF8
PyCallable_Check
PyBytes_FromStringAndSize
PyErr_NoMemory
PyTuple_SetItem
PyDict_New
PyBytes_Size
PyExc_EOFError

pywintypes311

?init@PyWinBufferView@@QEAA_NPEAU_object@@_N1@Z
?ok@PyWinBufferView@@QEAA_NXZ
?ptr@PyWinBufferView@@QEAAPEAXXZ
?len@PyWinBufferView@@QEAAKXZ
??BPyWin_AutoFreeBstr@@QEAAPEA_WXZ
??0PyWin_AutoFreeBstr@@QEAA@PEA_W@Z
??1PyWin_AutoFreeBstr@@QEAA@XZ
?SetBstr@PyWin_AutoFreeBstr@@QEAAXPEA_W@Z
?PyWinObject_AsBstr@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinObject_AsMSG@@YAHPEAU_object@@PEAUtagMSG@@@Z
??0PyWinBufferView@@QEAA@XZ
??1PyWinBufferView@@QEAA@XZ
?PyWinObject_AsPARAM@@YAHPEAU_object@@PEAVPyWin_PARAMHolder@@@Z
?PyWinObject_FromHKEY@@YAPEAU_object@@PEAUHKEY__@@@Z
?GetPythonTraceback@@YAPEA_WPEAU_object@@00@Z
?PyWinObject_AsMultipleString@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinObject_FromMSG@@YAPEAU_object@@PEBUtagMSG@@@Z
?PyWinGlobals_Ensure@@YAHXZ
?PyWinCoreString_FromString@@YAPEAU_object@@PEBD_J@Z
?PyWinObject_FreeMultipleString@@YAXPEA_W@Z
?PyWinLong_AsVoidPtr@@YAHPEAU_object@@PEAPEAX@Z
?PyWinObject_AsSimplePARAM@@YAHPEAU_object@@PEA_K@Z
?PyWinLong_FromVoidPtr@@YAPEAU_object@@PEBX@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W@Z
?PyWinLong_FromHANDLE@@YAPEAU_object@@PEAX@Z
?PyWinObject_FreeWCHAR@@YAXPEA_W@Z
?PyWinObject_AsWCHAR@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinObject_FreeResourceId@@YAXPEA_W@Z
?PyWinObject_AsResourceId@@YAHPEAU_object@@PEAPEA_WH@Z
?PyWinObject_AsHANDLE@@YAHPEAU_object@@PEAPEAX@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W_J@Z

vcruntime140_1

__CxxFrameHandler4

vcruntime140

_CxxThrowException
memmove
__std_type_info_destroy_list
__current_exception_context
__current_exception
memset
__C_specific_handler
_purecall
__std_terminate
memcpy

api-ms-win-crt-heap-l1-1-0

_recalloc
free
malloc

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vfwprintf
__stdio_common_vsprintf
__acrt_iob_func
_wfopen
fclose
fwrite

api-ms-win-crt-convert-l1-1-0

_wtoi

api-ms-win-crt-string-l1-1-0

isdigit
wcsncpy
strncpy
_wcsdup
strcmp

api-ms-win-crt-runtime-l1-1-0

_cexit
_crt_at_quick_exit
_crt_atexit
_initterm_e
_register_onexit_function
_initialize_onexit_table
_invalid_parameter_noinfo
_configure_narrow_argv
_seh_filter_dll
_initialize_narrow_environment
_errno
_initterm
_execute_onexit_table
terminate

Exports

Exports

??0CProtectedWinApp@@QEAA@XZ
??0CPythonDocTemplate@@QEAA@I@Z
??0CVirtualHelper@@QEAA@AEBV0@@Z
??0CVirtualHelper@@QEAA@PEBDPEAXW4EnumVirtualErrorHandling@@@Z
??0PyCCmdTarget@@IEAA@XZ
??0PyCCmdTarget@@QEAA@AEBV0@@Z
??0PyCCommonDialog@@QEAA@$$QEAV0@@Z
??0PyCCommonDialog@@QEAA@AEBV0@@Z
??0PyCCommonDialog@@QEAA@XZ
??0PyCControlBar@@QEAA@$$QEAV0@@Z
??0PyCControlBar@@QEAA@AEBV0@@Z
??0PyCControlBar@@QEAA@XZ
??0PyCCtrlView@@IEAA@XZ
??0PyCCtrlView@@QEAA@$$QEAV0@@Z
??0PyCCtrlView@@QEAA@AEBV0@@Z
??0PyCCtrlView_Type@@QEAA@PEBDPEAVui_type@@PEAVui_type_CObject@@PEAUCRuntimeClass@@_J4PEAUPyMethodDef@@P6APEAVui_base_class@@XZ@Z
??0PyCDialog@@IEAA@XZ
??0PyCDialog@@QEAA@AEBV0@@Z
??0PyCDocTemplate@@IEAA@XZ
??0PyCDocTemplate@@QEAA@AEBV0@@Z
??0PyCDocument@@IEAA@XZ
??0PyCDocument@@QEAA@AEBV0@@Z
??0PyCEditView@@IEAA@XZ
??0PyCEditView@@QEAA@$$QEAV0@@Z
??0PyCEditView@@QEAA@AEBV0@@Z
??0PyCFormView@@QEAA@$$QEAV0@@Z
??0PyCFormView@@QEAA@AEBV0@@Z
??0PyCFormView@@QEAA@XZ
??0PyCFrameWnd@@IEAA@XZ
??0PyCFrameWnd@@QEAA@AEBV0@@Z
??0PyCImageList@@IEAA@XZ
??0PyCImageList@@QEAA@AEBV0@@Z
??0PyCListView@@IEAA@XZ
??0PyCListView@@QEAA@$$QEAV0@@Z
??0PyCListView@@QEAA@AEBV0@@Z
??0PyCMDIChildWnd@@IEAA@XZ
??0PyCMDIChildWnd@@QEAA@$$QEAV0@@Z
??0PyCMDIChildWnd@@QEAA@AEBV0@@Z
??0PyCMDIFrameWnd@@IEAA@XZ
??0PyCMDIFrameWnd@@QEAA@$$QEAV0@@Z
??0PyCMDIFrameWnd@@QEAA@AEBV0@@Z
??0PyCRichEditDoc@@QEAA@$$QEAV0@@Z
??0PyCRichEditDoc@@QEAA@AEBV0@@Z
??0PyCRichEditDoc@@QEAA@XZ
??0PyCRichEditView@@IEAA@XZ
??0PyCRichEditView@@QEAA@$$QEAV0@@Z
??0PyCRichEditView@@QEAA@AEBV0@@Z
??0PyCScrollView@@IEAA@XZ
??0PyCScrollView@@QEAA@AEBV0@@Z
??0PyCTreeView@@IEAA@XZ
??0PyCTreeView@@QEAA@$$QEAV0@@Z
??0PyCTreeView@@QEAA@AEBV0@@Z
??0PyCView@@IEAA@XZ
??0PyCView@@QEAA@AEBV0@@Z
??0PyCWnd@@IEAA@XZ
??0PyCWnd@@QEAA@AEBV0@@Z
??0PythonCreateContext@@QEAA@XZ
??0ui_assoc_CObject@@IEAA@XZ
??0ui_assoc_CObject@@QEAA@AEBV0@@Z
??0ui_assoc_object@@IEAA@XZ
??0ui_assoc_object@@QEAA@AEBV0@@Z
??0ui_base_class@@IEAA@XZ
??0ui_base_class@@QEAA@AEBV0@@Z
??0ui_dc_object@@IEAA@XZ
??0ui_dc_object@@QEAA@AEBV0@@Z
??0ui_prinfo_object@@IEAA@XZ
??0ui_prinfo_object@@QEAA@AEBV0@@Z
??0ui_type@@QEAA@PEBDPEAV0@_J2PEAUPyMethodDef@@P6APEAVui_base_class@@XZ@Z
??0ui_type_CObject@@QEAA@PEBDPEAVui_type@@PEAUCRuntimeClass@@_J3PEAUPyMethodDef@@P6APEAVui_base_class@@XZ@Z
??1CProtectedWinApp@@UEAA@XZ
??1CPythonDocTemplate@@UEAA@XZ
??1CVirtualHelper@@QEAA@XZ
??1PyCCmdTarget@@MEAA@XZ
??1PyCCommonDialog@@UEAA@XZ
??1PyCControlBar@@UEAA@XZ
??1PyCCtrlView@@UEAA@XZ
??1PyCCtrlView_Type@@QEAA@XZ
??1PyCDialog@@MEAA@XZ
??1PyCDocTemplate@@MEAA@XZ
??1PyCDocument@@MEAA@XZ
??1PyCEditView@@UEAA@XZ
??1PyCFormView@@UEAA@XZ
??1PyCFrameWnd@@MEAA@XZ
??1PyCImageList@@MEAA@XZ
??1PyCListView@@UEAA@XZ
??1PyCMDIChildWnd@@UEAA@XZ
??1PyCMDIFrameWnd@@UEAA@XZ
??1PyCRichEditDoc@@UEAA@XZ
??1PyCRichEditView@@UEAA@XZ
??1PyCScrollView@@MEAA@XZ
??1PyCTreeView@@UEAA@XZ
??1PyCView@@MEAA@XZ
??1PyCWnd@@MEAA@XZ
??1PythonCreateContext@@QEAA@XZ
??1ui_assoc_CObject@@MEAA@XZ
??1ui_assoc_object@@MEAA@XZ
??1ui_base_class@@MEAA@XZ
??1ui_dc_object@@MEAA@XZ
??1ui_prinfo_object@@MEAA@XZ
??1ui_type@@QEAA@XZ
??1ui_type_CObject@@QEAA@XZ
??4CVirtualHelper@@QEAAAEAV0@AEBV0@@Z
??4PyCCmdTarget@@QEAAAEAV0@AEBV0@@Z
??4PyCCommonDialog@@QEAAAEAV0@$$QEAV0@@Z
??4PyCCommonDialog@@QEAAAEAV0@AEBV0@@Z
??4PyCControlBar@@QEAAAEAV0@$$QEAV0@@Z
??4PyCControlBar@@QEAAAEAV0@AEBV0@@Z
??4PyCCtrlView@@QEAAAEAV0@$$QEAV0@@Z
??4PyCCtrlView@@QEAAAEAV0@AEBV0@@Z
??4PyCCtrlView_Type@@QEAAAEAV0@$$QEAV0@@Z
??4PyCCtrlView_Type@@QEAAAEAV0@AEBV0@@Z
??4PyCDialog@@QEAAAEAV0@AEBV0@@Z
??4PyCDocTemplate@@QEAAAEAV0@AEBV0@@Z
??4PyCDocument@@QEAAAEAV0@AEBV0@@Z
??4PyCEditView@@QEAAAEAV0@$$QEAV0@@Z
??4PyCEditView@@QEAAAEAV0@AEBV0@@Z
??4PyCFormView@@QEAAAEAV0@$$QEAV0@@Z
??4PyCFormView@@QEAAAEAV0@AEBV0@@Z
??4PyCFrameWnd@@QEAAAEAV0@AEBV0@@Z
??4PyCImageList@@QEAAAEAV0@AEBV0@@Z
??4PyCListView@@QEAAAEAV0@$$QEAV0@@Z
??4PyCListView@@QEAAAEAV0@AEBV0@@Z
??4PyCMDIChildWnd@@QEAAAEAV0@$$QEAV0@@Z
??4PyCMDIChildWnd@@QEAAAEAV0@AEBV0@@Z
??4PyCMDIFrameWnd@@QEAAAEAV0@$$QEAV0@@Z
??4PyCMDIFrameWnd@@QEAAAEAV0@AEBV0@@Z
??4PyCRichEditDoc@@QEAAAEAV0@$$QEAV0@@Z
??4PyCRichEditDoc@@QEAAAEAV0@AEBV0@@Z
??4PyCRichEditView@@QEAAAEAV0@$$QEAV0@@Z
??4PyCRichEditView@@QEAAAEAV0@AEBV0@@Z
??4PyCScrollView@@QEAAAEAV0@AEBV0@@Z
??4PyCTreeView@@QEAAAEAV0@$$QEAV0@@Z
??4PyCTreeView@@QEAAAEAV0@AEBV0@@Z
??4PyCView@@QEAAAEAV0@AEBV0@@Z
??4PyCWnd@@QEAAAEAV0@AEBV0@@Z
??4PythonCreateContext@@QEAAAEAV0@AEBV0@@Z
??4ui_assoc_CObject@@QEAAAEAV0@AEBV0@@Z
??4ui_assoc_object@@QEAAAEAV0@AEBV0@@Z
??4ui_base_class@@QEAAAEAV0@AEBV0@@Z
??4ui_dc_object@@QEAAAEAV0@AEBV0@@Z
??4ui_prinfo_object@@QEAAAEAV0@AEBV0@@Z
??4ui_type@@QEAAAEAV0@AEBV0@@Z
??4ui_type_CObject@@QEAAAEAV0@AEBV0@@Z
??_7CProtectedWinApp@@6B@
??_7CPythonDocTemplate@@6B@
??_7PyCCmdTarget@@6B@
??_7PyCCommonDialog@@6B@
??_7PyCControlBar@@6B@
??_7PyCCtrlView@@6B@
??_7PyCDialog@@6B@
??_7PyCDocTemplate@@6B@
??_7PyCDocument@@6B@
??_7PyCEditView@@6B@
??_7PyCFormView@@6B@
??_7PyCFrameWnd@@6B@
??_7PyCImageList@@6B@
??_7PyCListView@@6B@
??_7PyCMDIChildWnd@@6B@
??_7PyCMDIFrameWnd@@6B@
??_7PyCRichEditDoc@@6B@
??_7PyCRichEditView@@6B@
??_7PyCScrollView@@6B@
??_7PyCTreeView@@6B@
??_7PyCView@@6B@
??_7PyCWnd@@6B@
??_7ui_assoc_CObject@@6B@
??_7ui_assoc_object@@6B@
??_7ui_base_class@@6B@
??_7ui_dc_object@@6B@
??_7ui_prinfo_object@@6B@
?AttachObject@ui_assoc_object@@SAPEAU_object@@PEAU2@0@Z
?CheckCppObject@ui_assoc_CObject@@MEBA_NPEAVui_type@@@Z
?CheckCppObject@ui_assoc_object@@MEBA_NPEAVui_type@@@Z
?CreateControl@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?CreateNewDocument@CPythonDocTemplate@@UEAAPEAVCDocument@@XZ
?CreateNewFrame@CPythonDocTemplate@@UEAAPEAVCFrameWnd@@PEAVCDocument@@PEAV2@@Z
?CreateNewFrame@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?CreateStructFromPyObject@@YAHPEAUtagCREATESTRUCTW@@PEAU_object@@PEBDH@Z
?CreateWindowFromHandle@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?DictToLogFont@@YAHPEAU_object@@PEAUtagLOGFONTW@@@Z
?DoCreateDoc@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?DoCreateDocHelper@PyCDocTemplate@@SAPEAU_object@@PEAU2@0PEAUCRuntimeClass@@AEAVui_type_CObject@@@Z
?ExceptionHandler@@YAXHPEB_W0@Z
?FindOpenDocument@CProtectedWinApp@@QEAAPEAVCDocument@@PEB_W@Z
?FindOpenDocument@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?FindWindowExW@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?FindWindowW@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?GetActiveWindow@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?GetAssocObject@ui_assoc_object@@SAPEAV1@PEAX@Z
?GetAttachedObject@ui_assoc_object@@SAPEAU_object@@PEAU2@0@Z
?GetControlBar@PyCControlBar@@SAPEAVCControlBar@@PEAU_object@@@Z
?GetDC@ui_dc_object@@SAPEAVCDC@@PEAU_object@@@Z
?GetDoc@PyCDocument@@SAPEAVCDocument@@PEAU_object@@@Z
?GetDocManager@CProtectedWinApp@@QEAAPEAVCProtectedDocManager@@XZ
?GetDocString@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?GetDocumentList@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?GetFocus@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?GetForegroundWindow@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?GetGoodCppObject@ui_assoc_object@@IEBAPEAXPEAVui_type@@@Z
?GetGoodCppObject@ui_assoc_object@@SAPEAXAEAPEAU_object@@PEAVui_type@@@Z
?GetGoodCppObject@ui_prinfo_object@@MEBAPEAXPEAVui_type@@@Z
?GetGoodRet@ui_assoc_object@@QEAAPEAU_object@@XZ
?GetHandler@CVirtualHelper@@QEAAPEAU_object@@XZ
?GetImageList@PyCImageList@@SAPEAVCImageList@@PEAU_object@@@Z
?GetMainFrame@CProtectedWinApp@@QEAAPEAVCWnd@@XZ
?GetPrintInfo@ui_prinfo_object@@SAPEAUCPrintInfo@@PEAU_object@@@Z
?GetPythonGenericWnd@PyCWnd@@SAPEAVCWnd@@PEAU_object@@PEAVui_type_CObject@@@Z
?GetPythonObject@PythonCreateContext@@QEAAPEAU_object@@XZ
?GetRecentCount@CProtectedWinApp@@QEAAHXZ
?GetRecentFileName@CProtectedWinApp@@QEAA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@H@Z
?GetResourceID@CPythonDocTemplate@@QEAAIXZ
?GetResourceID@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?GetSharedMenu@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?GetTemplate@PyCDocTemplate@@SAPEAVCPythonDocTemplate@@PEAU_object@@@Z
?GetViewPtr@PyCScrollView@@SAPEAVCScrollView@@PEAU_object@@@Z
?GetViewPtr@PyCView@@SAPEAVCView@@PEAU_object@@@Z
?GetWndPtr@@YAPEAVCWnd@@PEAU_object@@@Z
?HaveHandler@CVirtualHelper@@QEAAHXZ
?HaveLoadStdProfileSettings@CProtectedWinApp@@QEAAHXZ
?InitialUpdateFrame@CPythonDocTemplate@@UEAAXPEAVCFrameWnd@@PEAVCDocument@@H@Z
?InitialUpdateFrame@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?LoadStdProfileSettings@CProtectedWinApp@@QEAAXI@Z
?LogFontToDict@@YAPEAU_object@@AEBUtagLOGFONTW@@@Z
?MakeCharFormatTuple@@YAPEAU_object@@PEAU_charformatw@@@Z
?MakeDlgListFromResource@@YAPEAU_object@@PEAX@Z
?MakeParaFormatTuple@@YAPEAU_object@@PEAU_paraformat@@@Z
?MakePyDocTemplateList@CProtectedWinApp@@QEAAPEAU_object@@XZ
?MakeResourceFromDlgList@@YAPEAXPEAU_object@@@Z
?MatchDocType@CPythonDocTemplate@@UEAA?AW4Confidence@CDocTemplate@@PEB_WAEAPEAVCDocument@@@Z
?OnFileNew@CProtectedWinApp@@QEAAXXZ
?OnFileOpen@CProtectedWinApp@@QEAAXXZ
?OpenDocumentFile@CPythonDocTemplate@@UEAAPEAVCDocument@@PEB_WH@Z
?OpenDocumentFile@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?ParseCharFormatTuple@@YAHPEAU_object@@PEAU_charformatw@@@Z
?ParseParaFormatTuple@@YAHPEAU_object@@PEAU_paraformat@@@Z
?PyObConstruct@PyCControlBar@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCCtrlView@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCDialog@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCDocTemplate@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCDocument@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCEditView@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCFormView@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCFrameWnd@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCImageList@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCListView@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCMDIChildWnd@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCMDIFrameWnd@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCRichEditDoc@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCRichEditView@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCScrollView@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCTreeView@@SAPEAVui_base_class@@XZ
?PyObConstruct@PyCWnd@@SAPEAVui_base_class@@XZ
?PyObConstruct@ui_dc_object@@SAPEAVui_base_class@@XZ
?PyObConstruct@ui_prinfo_object@@SAPEAVui_base_class@@XZ
?PyObjectFromCreateStruct@@YAPEAU_object@@PEAUtagCREATESTRUCTW@@@Z
?PyWinObject_AsLV_COLUMN@@YAHPEAU_object@@PEAUtagLVCOLUMNW@@@Z
?PyWinObject_AsLV_ITEM@@YAHPEAU_object@@PEAUtagLVITEMW@@@Z
?PyWinObject_AsTV_ITEM@@YAHPEAU_object@@PEAUtagTVITEMW@@@Z
?PyWinObject_FreeLV_COLUMN@@YAXPEAUtagLVCOLUMNW@@@Z
?PyWinObject_FreeLV_ITEM@@YAXPEAUtagLVITEMW@@@Z
?PyWinObject_FreeTV_ITEM@@YAXPEAUtagTVITEMW@@@Z
?PyWinObject_FromCWnd@@YAPEAU_object@@PEAVCWnd@@@Z
?PyWinObject_FromLV_COLUMN@@YAPEAU_object@@PEAUtagLVCOLUMNW@@@Z
?PyWinObject_FromLV_ITEM@@YAPEAU_object@@PEAUtagLVITEMW@@@Z
?PyWinObject_FromRECT@@YAPEAU_object@@AEBUtagRECT@@@Z
?PyWinObject_FromRECT@@YAPEAU_object@@PEAUtagRECT@@_N@Z
?PyWinObject_FromTV_ITEM@@YAPEAU_object@@PEAUtagTVITEMW@@@Z
?Python_OnCmdMsg@@YAHPEAVCCmdTarget@@IHPEAXPEAUAFX_CMDHANDLERINFO@@@Z
?Python_OnNotify@@YAHPEAVCWnd@@_K_JPEA_J@Z
?Python_addpath@@YAXPEB_W@Z
?Python_callback@@YAHPEAU_object@@0@Z
?Python_callback@@YAHPEAU_object@@@Z
?Python_callback@@YAHPEAU_object@@H@Z
?Python_callback@@YAHPEAU_object@@HH@Z
?Python_callback@@YAHPEAU_object@@PEBUtagMSG@@@Z
?Python_callback@@YAHPEAU_object@@_J@Z
?Python_callback@@YAHPEAU_object@@_K@Z
?Python_check_key_message@@YAHPEBUtagMSG@@@Z
?Python_check_message@@YAHPEBUtagMSG@@@Z
?Python_delete_assoc@@YAXPEAX@Z
?Python_do_callback@@YAPEAU_object@@PEAU1@0@Z
?Python_do_exchange@@YAXPEAVCDialog@@PEAVCDataExchange@@@Z
?ReleasePythonObject@PythonCreateContext@@QEAAXXZ
?RemoveDocTemplateFromApp@PyCDocTemplate@@SAHPEAVCDocTemplate@@@Z
?RemoveRecentFile@CProtectedWinApp@@QEAAXH@Z
?SetAssocInvalid@PyCDialog@@MEAAXXZ
?SetAssocInvalid@ui_assoc_object@@MEAAXXZ
?SetAssocInvalid@ui_dc_object@@MEAAXXZ
?SetAssocInvalid@ui_prinfo_object@@MEAAXXZ
?SetContainerInfo@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?SetDialogBkColor@CProtectedWinApp@@QEAAXKK@Z
?SetDocStrings@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?SetExceptionHandler@@YAP6AXHPEB_W0@ZP6AXH00@Z@Z
?SetMainFrame@CProtectedWinApp@@QEAAXPEAVCWnd@@@Z
?SetPythonObject@PythonCreateContext@@QEAAXPEAU_object@@@Z
?SetRegistryKey@CProtectedWinApp@@QEAAXPEB_W@Z
?UITypeFromCObject@@YAAEAVui_type_CObject@@PEAVCObject@@@Z
?UITypeFromHWnd@@YAAEAVui_type_CObject@@PEAUHWND__@@@Z
?UITypeFromName@@YAPEAVui_type_CObject@@PEBD@Z
?build_args@CVirtualHelper@@QEAAPEAU_object@@PEBDZZ
?call@CVirtualHelper@@QEAAHH@Z
?call@CVirtualHelper@@QEAAHHH@Z
?call@CVirtualHelper@@QEAAHHHH@Z
?call@CVirtualHelper@@QEAAHHK@Z
?call@CVirtualHelper@@QEAAHHPEAVCWnd@@0@Z
?call@CVirtualHelper@@QEAAHIHPEAXPEAUAFX_CMDHANDLERINFO@@@Z
?call@CVirtualHelper@@QEAAHJ@Z
?call@CVirtualHelper@@QEAAHKK@Z
?call@CVirtualHelper@@QEAAHPEAUCPrintInfo@@@Z
?call@CVirtualHelper@@QEAAHPEAU_object@@0@Z
?call@CVirtualHelper@@QEAAHPEAU_object@@0H@Z
?call@CVirtualHelper@@QEAAHPEAU_object@@@Z
?call@CVirtualHelper@@QEAAHPEAUtagCREATESTRUCTW@@@Z
?call@CVirtualHelper@@QEAAHPEAUtagCREATESTRUCTW@@PEAU_object@@@Z
?call@CVirtualHelper@@QEAAHPEAVCDC@@@Z
?call@CVirtualHelper@@QEAAHPEAVCDC@@PEAUCPrintInfo@@@Z
?call@CVirtualHelper@@QEAAHPEAVCDC@@PEAVCWnd@@H@Z
?call@CVirtualHelper@@QEAAHPEAVCDocument@@@Z
?call@CVirtualHelper@@QEAAHPEAVCView@@PEAU_object@@@Z
?call@CVirtualHelper@@QEAAHPEAVCWnd@@@Z
?call@CVirtualHelper@@QEAAHPEAVCWnd@@H@Z
?call@CVirtualHelper@@QEAAHPEAVCWnd@@HH@Z
?call@CVirtualHelper@@QEAAHPEBD@Z
?call@CVirtualHelper@@QEAAHPEBDH@Z
?call@CVirtualHelper@@QEAAHPEBUtagMSG@@@Z
?call@CVirtualHelper@@QEAAHPEB_W@Z
?call@CVirtualHelper@@QEAAHPEB_WH@Z
?call@CVirtualHelper@@QEAAHXZ
?call@CVirtualHelper@@QEAAH_K@Z
?call@CVirtualHelper@@QEAAH_K_J@Z
?call_args@CVirtualHelper@@QEAAHPEBDZZ
?check_key_stroke@PyCWnd@@QEAAH_K@Z
?cleanup@PyCDocTemplate@@MEAAXXZ
?cleanup@ui_base_class@@UEAAXXZ
?create@PyCControlBar@@SAPEAU_object@@PEAU2@0@Z
?create@PyCCtrlView@@SAPEAU_object@@PEAU2@0@Z
?create@PyCDialog@@SAPEAU_object@@PEAU2@0@Z
?create@PyCDocTemplate@@SAPEAU_object@@PEAU2@0@Z
?create@PyCEditView@@SAPEAU_object@@PEAU2@0@Z
?create@PyCFormView@@SAPEAU_object@@PEAU2@0@Z
?create@PyCListView@@SAPEAU_object@@PEAU2@0@Z
?create@PyCRichEditView@@SAPEAU_object@@PEAU2@0@Z
?create@PyCScrollView@@SAPEAU_object@@PEAU2@0@Z
?create@PyCTreeView@@SAPEAU_object@@PEAU2@0@Z
?createIndirect@PyCDialog@@SAPEAU_object@@PEAU2@0@Z
?create_compatible_dc@ui_dc_object@@SAPEAU_object@@PEAU2@0@Z
?create_dc@ui_dc_object@@SAPEAU_object@@PEAU2@0@Z
?create_printer_dc@ui_dc_object@@SAPEAU_object@@PEAU2@0@Z
?do_call@CVirtualHelper@@AEAAHPEAU_object@@@Z
?get_top_window@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?get_window@PyCWnd@@SAPEAU_object@@PEAU2@0@Z
?getattro@PyCControlBar@@UEAAPEAU_object@@PEAU2@@Z
?getattro@PyCDialog@@UEAAPEAU_object@@PEAU2@@Z
?getattro@ui_base_class@@UEAAPEAU_object@@PEAU2@@Z
?gui_call_object@@YAPEAU_object@@PEAU1@0@Z
?gui_print_error@@YAXXZ
?handleMgr@ui_assoc_object@@2VCAssocManager@@A
?is_uiobject@ui_base_class@@QEAAHPEAVui_type@@@Z
?is_uiobject@ui_base_class@@SAHAEAPEAU_object@@PEAVui_type@@@Z
?make@PyCWnd@@SAPEAV1@AEAVui_type_CObject@@PEAVCWnd@@PEAUHWND__@@@Z
?make@ui_assoc_object@@SAPEAV1@AEAVui_type@@PEAX_N@Z
?make@ui_base_class@@SAPEAV1@AEAVui_type@@@Z
?release_full@CVirtualHelper@@QEAAXXZ
?repr@PyCCmdTarget@@UEAA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?repr@PyCWnd@@UEAA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?repr@ui_assoc_object@@UEAA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?repr@ui_base_class@@UEAA?AV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@XZ
?retnone@CVirtualHelper@@QEAAHXZ
?retval@CVirtualHelper@@QEAAHAEAH@Z
?retval@CVirtualHelper@@QEAAHAEAJ@Z
?retval@CVirtualHelper@@QEAAHAEAPEAU_object@@@Z
?retval@CVirtualHelper@@QEAAHAEAPEAX@Z
?retval@CVirtualHelper@@QEAAHAEAUtagCREATESTRUCTW@@@Z
?retval@CVirtualHelper@@QEAAHAEAV?$CStringT@_WV?$StrTraitMFC_DLL@_WV?$ChTraitsCRT@_W@ATL@@@@@ATL@@@Z
?retval@CVirtualHelper@@QEAAHPEAUtagMSG@@@Z
?setattro@PyCControlBar@@UEAAHPEAU_object@@0@Z
?setattro@ui_base_class@@UEAAHPEAU_object@@0@Z
?sui_dealloc@ui_base_class@@SAXPEAU_object@@@Z
?sui_getattro@ui_base_class@@SAPEAU_object@@PEAU2@0@Z
?sui_repr@ui_base_class@@SAPEAU_object@@PEAU2@@Z
?sui_setattro@ui_base_class@@SAHPEAU_object@@00@Z
?type@PyCCmdTarget@@2Vui_type_CObject@@A
?type@PyCCommonDialog@@2Vui_type_CObject@@A
?type@PyCControlBar@@2Vui_type_CObject@@A
?type@PyCCtrlView@@2VPyCCtrlView_Type@@A
?type@PyCDialog@@2Vui_type_CObject@@A
?type@PyCDocTemplate@@2Vui_type_CObject@@A
?type@PyCDocument@@2Vui_type_CObject@@A
?type@PyCEditView@@2VPyCCtrlView_Type@@A
?type@PyCFormView@@2Vui_type_CObject@@A
?type@PyCFrameWnd@@2Vui_type_CObject@@A
?type@PyCImageList@@2Vui_type_CObject@@A
?type@PyCListView@@2VPyCCtrlView_Type@@A
?type@PyCMDIChildWnd@@2Vui_type_CObject@@A
?type@PyCMDIFrameWnd@@2Vui_type_CObject@@A
?type@PyCRichEditDoc@@2Vui_type_CObject@@A
?type@PyCRichEditView@@2VPyCCtrlView_Type@@A
?type@PyCScrollView@@2Vui_type_CObject@@A
?type@PyCTreeView@@2VPyCCtrlView_Type@@A
?type@PyCView@@2Vui_type_CObject@@A
?type@PyCWnd@@2Vui_type_CObject@@A
?type@ui_assoc_CObject@@2Vui_type_CObject@@A
?type@ui_assoc_object@@2Vui_type@@A
?type@ui_base_class@@2Vui_type@@A
?type@ui_dc_object@@2Vui_type_CObject@@A
?type@ui_prinfo_object@@2Vui_type@@A
?typemap@ui_type_CObject@@2PEAV?$CMap@PEAUCRuntimeClass@@PEAU1@PEAVui_type_CObject@@PEAV2@@@EA
?ui_module_error@@3PEAU_object@@EA
PyInit_win32ui
Win32uiApplicationInit

Sections

.text
Size: 639KB - Virtual size: 638KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 302KB - Virtual size: 301KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/VCRUNTIME140.dll
.dll windows:6 windows x64 arch:x64

7f07fd94e5bb907093556781cc464017

Code Sign

33:00:00:00:e5:ce:9e:eb:de:4d:48:35:f4:00:00:00:00:00:e5
Certificate

Issuer

CN=Microsoft Windows Third Party Component CA 2013,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/02/2023, 22:33

Not After

31/01/2024, 22:33

Subject

CN=Microsoft Windows Software Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:14:9d:fb:c3:1f:1f:63:c3:10:00:00:00:00:00:14
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/05/2013, 20:44

Not After

01/05/2028, 20:54

Subject

CN=Microsoft Windows Third Party Component CA 2013,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:03:3c:2b:0a:49:d9:d2:91:7e:ac:00:00:00:00:03:3c
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/02/2023, 20:10

Not After

31/01/2024, 20:10

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ad:55:39:9d:70:70:f4:f3:a5:2a:ec:30:c8:36:4c:bc:53:5e:94:67:76:ba:fe:fe:52:2a:4f:6f:df:53:c2:6b
Signer

Actual PE Digest

ad:55:39:9d:70:70:f4:f3:a5:2a:ec:30:c8:36:4c:bc:53:5e:94:67:76:ba:fe:fe:52:2a:4f:6f:df:53:c2:6b

Digest Algorithm

sha256

PE Digest Matches

true

ad:55:39:9d:70:70:f4:f3:a5:2a:ec:30:c8:36:4c:bc:53:5e:94:67:76:ba:fe:fe:52:2a:4f:6f:df:53:c2:6b
Signer

Actual PE Digest

ad:55:39:9d:70:70:f4:f3:a5:2a:ec:30:c8:36:4c:bc:53:5e:94:67:76:ba:fe:fe:52:2a:4f:6f:df:53:c2:6b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\_work\1\s\binaries\amd64ret\bin\amd64\\vcruntime140.amd64.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

terminate
abort

api-ms-win-crt-heap-l1-1-0

calloc
malloc
free

api-ms-win-crt-string-l1-1-0

strcpy_s
strncmp
wcsncmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf
__stdio_common_vsprintf_s

api-ms-win-crt-convert-l1-1-0

atol

kernel32

GetLastError
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
RtlLookupFunctionEntry
RtlUnwindEx
GetModuleHandleW
GetModuleFileNameW
RtlUnwind
EncodePointer
RaiseException
RtlPcToFileHeader
InterlockedPushEntrySList
InterlockedFlushSList
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetProcAddress
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW

Exports

Exports

_CreateFrameInfo
_CxxThrowException
_FindAndUnlinkFrame
_IsExceptionObjectToBeDestroyed
_SetWinRTOutOfMemoryExceptionCallback
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__C_specific_handler
__C_specific_handler_noexcept
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__GetPlatformExceptionInfo
__NLG_Dispatch2
__NLG_Return2
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__TypeMatch
__current_exception
__current_exception_context
__intrinsic_setjmp
__intrinsic_setjmpex
__processing_throw
__report_gsfailure
__std_exception_copy
__std_exception_destroy
__std_terminate
__std_type_info_compare
__std_type_info_destroy_list
__std_type_info_hash
__std_type_info_name
__telemetry_main_invoke_trigger
__telemetry_main_return_trigger
__unDName
__unDNameEx
__uncaught_exception
__uncaught_exceptions
__vcrt_GetModuleFileNameW
__vcrt_GetModuleHandleW
__vcrt_InitializeCriticalSectionEx
__vcrt_LoadLibraryExW
_get_purecall_handler
_get_unexpected
_is_exception_typeof
_local_unwind
_purecall
_set_purecall_handler
_set_se_translator
longjmp
memchr
memcmp
memcpy
memmove
memset
set_unexpected
strchr
strrchr
strstr
unexpected
wcschr
wcsrchr
wcsstr

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

fothk
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 504B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/VCRUNTIME140_1.dll
.dll windows:6 windows x64 arch:x64

72707e942878aac770fcc118ce3ec1c9

Code Sign

33:00:00:00:e7:1a:a6:e3:0b:5e:b4:0a:54:00:00:00:00:00:e7
Certificate

Issuer

CN=Microsoft Windows Third Party Component CA 2013,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

02/02/2023, 22:33

Not After

31/01/2024, 22:33

Subject

CN=Microsoft Windows Software Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:14:9d:fb:c3:1f:1f:63:c3:10:00:00:00:00:00:14
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

01/05/2013, 20:44

Not After

01/05/2028, 20:54

Subject

CN=Microsoft Windows Third Party Component CA 2013,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:03:3e:63:3a:86:bf:41:73:d7:e0:00:00:00:00:03:3e
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/02/2023, 20:10

Not After

31/01/2024, 20:10

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e6:29:3b:b1:94:74:09:ac:7a:35:37:0b:62:a8:e9:05:85:de:97:63:20:53:5f:54:3f:e1:42:99:0a:a9:b4:b5
Signer

Actual PE Digest

e6:29:3b:b1:94:74:09:ac:7a:35:37:0b:62:a8:e9:05:85:de:97:63:20:53:5f:54:3f:e1:42:99:0a:a9:b4:b5

Digest Algorithm

sha256

PE Digest Matches

true

e6:29:3b:b1:94:74:09:ac:7a:35:37:0b:62:a8:e9:05:85:de:97:63:20:53:5f:54:3f:e1:42:99:0a:a9:b4:b5
Signer

Actual PE Digest

e6:29:3b:b1:94:74:09:ac:7a:35:37:0b:62:a8:e9:05:85:de:97:63:20:53:5f:54:3f:e1:42:99:0a:a9:b4:b5

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\_work\1\s\binaries\amd64ret\bin\amd64\\vcruntime140_1.amd64.pdb

Imports

api-ms-win-crt-runtime-l1-1-0

terminate
abort

api-ms-win-crt-heap-l1-1-0

malloc
calloc
free

api-ms-win-crt-string-l1-1-0

strcpy_s
wcsncmp

vcruntime140

memcpy
__processing_throw
__C_specific_handler
memmove
__current_exception

kernel32

IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlCaptureContext
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
RtlUnwindEx
RtlLookupFunctionEntry
LoadLibraryExW
GetProcAddress
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
EncodePointer
RaiseException
RtlPcToFileHeader
GetLastError
DeleteCriticalSection
SetLastError

Exports

Exports

__CxxFrameHandler4
__NLG_Dispatch2
__NLG_Return2

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 324B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/_bz2.pyd
.dll windows:6 windows x64 arch:x64

d0a62ab71a2b2ca69c6aba1f0a37fcdd

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

bb:92:d5:e3:4b:80:56:61:b0:1a:6e:d7:a1:73:9d:ee:c6:08:cb:57:04:0a:86:0c:ef:70:e8:d9:36:82:17:e4
Signer

Actual PE Digest

bb:92:d5:e3:4b:80:56:61:b0:1a:6e:d7:a1:73:9d:ee:c6:08:cb:57:04:0a:86:0c:ef:70:e8:d9:36:82:17:e4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\_bz2.pdb

Imports

python311

_PyLong_AsInt
PyModule_GetState
PyExc_SystemError
PyMem_Realloc
PyType_FromModuleAndSpec
PyBytes_FromStringAndSize
PyModuleDef_Init
PyExc_OSError
PyErr_NoMemory
PyMem_Free
PyThread_free_lock
PyList_Append
PyExc_EOFError
_PyNumber_Index
PyObject_GetBuffer
PyMem_RawFree
PyBuffer_Release
PyThread_release_lock
PyEval_RestoreThread
PyMem_Malloc
_Py_Dealloc
PyList_New
PyModule_AddType
PyErr_Format
PyExc_ValueError
_PyArg_UnpackKeywords
PyErr_SetString
_PyArg_BadArgument
PyThread_acquire_lock
_PyArg_NoPositional
PyMem_RawMalloc
PyThread_allocate_lock
PyExc_MemoryError
PyErr_SetNone
PyBuffer_IsContiguous
PyExc_RuntimeError
PyEval_SaveThread
PyErr_Occurred
_PyArg_CheckPositional
PyLong_AsSsize_t
_PyArg_NoKeywords
PyType_GenericNew

vcruntime140

memmove
memcpy
__std_type_info_destroy_list
__C_specific_handler
memset

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vfprintf

api-ms-win-crt-runtime-l1-1-0

_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initialize_narrow_environment
_initialize_onexit_table
exit
_execute_onexit_table
_cexit
_initterm

api-ms-win-crt-heap-l1-1-0

free
malloc

kernel32

GetCurrentProcessId
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
RtlCaptureContext
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter

Exports

Exports

PyInit__bz2

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/_ctypes.pyd
.dll windows:6 windows x64 arch:x64

e716aa549ea6dfb7b233942c7f07ff87

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

77:3f:f8:d7:4e:d0:01:28:ef:16:1c:ae:4e:2e:4d:f0:21:48:0c:41:5c:6d:b4:3f:46:59:2e:5d:bc:cd:78:7e
Signer

Actual PE Digest

77:3f:f8:d7:4e:d0:01:28:ef:16:1c:ae:4e:2e:4d:f0:21:48:0c:41:5c:6d:b4:3f:46:59:2e:5d:bc:cd:78:7e

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\_ctypes.pdb

Imports

libffi-8

ffi_type_sint8
ffi_type_uint8
ffi_type_float
ffi_type_uint64
ffi_type_uint32
ffi_type_double
ffi_type_uint16
ffi_type_sint32
ffi_call
ffi_type_sint64
ffi_type_void
ffi_prep_cif
ffi_prep_closure
ffi_type_sint16
ffi_type_pointer

ole32

ProgIDFromCLSID

oleaut32

SysStringLen
SysFreeString
GetErrorInfo
SysAllocStringLen

kernel32

GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetSystemInfo
VirtualAlloc
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
LoadLibraryExW
FreeLibrary
LocalFree
QueryPerformanceCounter
FormatMessageW
DisableThreadLibraryCalls
GetProcAddress
SetLastError
GetLastError

python311

_PyObject_LookupAttrId
PyExc_ValueError
_Py_CheckRecursiveCall
PyDict_Next
PyErr_Format
PyDict_Type
PyModule_AddType
PyType_IsSubtype
PyExc_OverflowError
_Py_Dealloc
PyLong_AsUnsignedLongMask
PyTuple_GetItem
PySequence_GetSlice
PyDescr_NewGetSet
PyErr_ExceptionMatches
_PyUnicode_FromId
PyModule_AddObjectRef
PySequence_SetItem
_PyArg_ParseTuple_SizeT
PyObject_CallFunctionObjArgs
PyUnicode_AsUTF8
PyUnicode_FromFormat
PyObject_GetBuffer
PySys_Audit
PyList_New
PyModule_Create2
PyType_Ready
PyObject_GetAttrString
PyErr_NewException
PyErr_Clear
_PyDict_GetItemIdWithError
PyObject_GenericSetAttr
PyDict_SetItem
PyDict_New
_PyLong_Sign
PyObject_VectorcallMethod
PyObject_IsInstance
PyMem_Free
PyLong_FromVoidPtr
PyUnicode_AsWideChar
PyErr_NoMemory
_PyRuntime
PyLong_AsVoidPtr
PyObject_CallObject
PyIndex_Check
PyBytes_FromStringAndSize
PyDict_DelItem
PyNumber_AsSsize_t
_PyObject_MakeTpCall
PyUnicode_New
_PyWeakref_ProxyType
PyExc_TypeError
PyTuple_Pack
PyCallable_Check
PyMem_Malloc
PyExc_IndexError
PyArg_UnpackTuple
PyUnicode_FromString
PyBuffer_Release
PyType_Type
PySequence_Tuple
PyEval_RestoreThread
PyUnicode_FromStringAndSize
PyErr_WarnEx
PyExc_RuntimeWarning
PyOS_vsnprintf
PyImport_ImportModule
PyObject_GC_UnTrack
PySys_GetObject
PyGILState_Release
PyErr_WriteUnraisable
Py_Initialize
PyObject_GC_Del
PyLong_AsLong
PyObject_Vectorcall
Py_IsInitialized
PyFile_WriteString
PyObject_GC_Track
PyGILState_Ensure
_PyObject_GC_NewVar
PyErr_Print
PyMem_Calloc
PyErr_SetObject
PyObject_CallOneArg
PyLong_AsUnsignedLong
PyErr_SetString
PyCapsule_IsValid
PyBytes_AsString
PyErr_NormalizeException
PyUnicode_AppendAndDel
Py_BuildValue
PyErr_SetFromWindowsErr
PyUnicode_FromFormatV
PyFloat_FromDouble
PyObject_CallFunction
PyTuple_Type
PyObject_Free
PyCapsule_GetPointer
PyErr_Fetch
PyUnicode_AsWideCharString
_PyObject_GetAttrId
PyThreadState_GetDict
PyCapsule_New
PyUnicode_Type
_PyTraceback_Add
_PyUnicode_IsPrintable
PyExc_OSError
_PyObject_New
PyMem_Realloc
PyObject_Str
PyExc_FileNotFoundError
PyObject_Call
PyArg_ParseTuple
PyBool_FromLong
PyLong_FromUnsignedLongLong
PyFloat_AsDouble
PyLong_FromLongLong
PyLong_FromUnsignedLong
PyLong_AsUnsignedLongLongMask
PyFloat_Unpack4
PyFloat_Pack4
PyObject_IsTrue
PyFloat_Pack8
PyByteArray_Type
PyFloat_Unpack8
PyObject_GetAttr
PySequence_Fast
PyTuple_Size
_PyDict_SizeOf
_PyLong_AsInt
_Py_CheckFunctionResult
PyTuple_GetSlice
PyExc_AttributeError
PyMemoryView_FromObject
PyDict_SetItemString
PyTuple_New
_PyDict_ContainsId
_Py_NoneStruct
PyDict_Contains
PyDict_GetItemWithError
_PyDict_SetItemId
_PyErr_WriteUnraisableMsg
PyBuffer_IsContiguous
PyUnicode_Concat
PySlice_Unpack
PyLong_FromLong
PyObject_SetAttrString
PyExc_RuntimeError
PyEval_SaveThread
PyUnicode_AsUTF8AndSize
_PyWeakref_CallableProxyType
_PyUnicode_EqualToASCIIString
PyLong_FromSsize_t
PyWeakref_NewProxy
PyErr_Occurred
PyDict_Update
PySequence_GetItem
PySlice_Type
PyLong_AsSsize_t
_PyArg_NoKeywords
PyType_GenericNew
_PyObject_SetAttrId
_PyObject_CallFunction_SizeT
_Py_BuildValue_SizeT
PyExc_Exception
PySlice_AdjustIndices
PyDescr_NewClassMethod
PyUnicode_InternFromString
PyObject_SetAttr
PySequence_Size
Py_GenericAlias
PyType_GetName
PyUnicode_FromWideChar
PyObject_IsSubclass

vcruntime140

memcmp
__std_type_info_destroy_list
__C_specific_handler
strchr
memcpy
memset
memmove

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-runtime-l1-1-0

_errno
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_cexit

api-ms-win-crt-string-l1-1-0

iswctype

Exports

Exports

DllCanUnloadNow
DllGetClassObject
PyInit__ctypes

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/_decimal.pyd
.dll windows:6 windows x64 arch:x64

c8876e9e8ae3bb7e4abb8348fe33f03e

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5e:65:cc:e6:7b:8c:43:02:ab:b4:87:86:64:2d:06:88:5a:9b:19:d6:25:d9:cd:44:44:aa:05:1c:ae:32:13:7c
Signer

Actual PE Digest

5e:65:cc:e6:7b:8c:43:02:ab:b4:87:86:64:2d:06:88:5a:9b:19:d6:25:d9:cd:44:44:aa:05:1c:ae:32:13:7c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\_decimal.pdb

Imports

python311

PyList_GetItem
_PyUnicode_IsWhitespace
PyObject_CallMethod
PyObject_IsInstance
PyMem_Free
PyErr_NoMemory
PyObject_CallObject
PyComplex_Type
_Py_NotImplementedStruct
PyUnicode_Compare
PyArg_ParseTupleAndKeywords
_PyObject_New
PyExc_TypeError
PyMem_Realloc
PyModule_AddStringConstant
PyUnicode_AsUTF8String
PyTuple_Pack
PyObject_HashNotImplemented
_PyUnicode_Ready
PyMem_Malloc
PyList_AsTuple
_Py_TrueStruct
PyDict_New
_PyLong_GCD
PyUnicode_CompareWithASCIIString
PyType_Type
PyArg_ParseTuple
PyContextVar_New
PyFloat_FromString
PyExc_ArithmeticError
PyErr_Format
PyLong_FromUnsignedLong
PyExc_ValueError
PyContextVar_Set
PyObject_CallFunction
PyExc_ZeroDivisionError
PyErr_SetString
PyUnicode_FromWideChar
PyList_Size
PyDict_SetItem
_Py_HashPointer
PyObject_GenericSetAttr
_PyLong_New
PyTuple_Size
PyList_Append
PyErr_Clear
PyErr_NewException
PyUnicode_New
PyExc_AttributeError
PyObject_GetAttrString
PyType_Ready
PyModule_Create2
_PyUnicode_ToDecimalDigit
PyFloat_FromDouble
PyDict_Size
PyDict_SetItemString
PyList_New
PyUnicode_FromFormat
PyLong_AsLong
PyObject_CallFunctionObjArgs
PyModule_AddObject
PyComplex_AsCComplex
PyModule_AddObjectRef
PyObject_Free
_Py_Dealloc
PyExc_OverflowError
PyType_IsSubtype
PyLong_Type
PyTuple_New
PyFloat_Type
_Py_FalseStruct
PyUnicode_FromString
PyTuple_Type
_Py_NoneStruct
PyFloat_AsDouble
PyComplex_FromDoubles
PyDict_GetItemWithError
Py_BuildValue
PyContextVar_Get
PyLong_FromLong
PyExc_RuntimeError
PyUnicode_AsUTF8AndSize
PyObject_GenericGetAttr
PyUnicode_DecodeUTF8
PyLong_FromSsize_t
PyErr_Occurred
PyImport_ImportModule
PyExc_KeyError
PyLong_AsSsize_t
_Py_ascii_whitespace
PyType_GenericNew
PyModule_AddIntConstant
PyBool_FromLong
PyErr_SetObject
PyUnicode_InternFromString
PyObject_IsTrue
PyBaseObject_Type

vcruntime140

strchr
memmove
memcpy
__C_specific_handler
__std_type_info_destroy_list
memset

api-ms-win-crt-convert-l1-1-0

strtoll
mbstowcs

api-ms-win-crt-math-l1-1-0

log10
copysign
ceil
_dclass

api-ms-win-crt-stdio-l1-1-0

fputc
__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vsprintf

api-ms-win-crt-runtime-l1-1-0

abort
_initterm_e
_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm
_errno

api-ms-win-crt-string-l1-1-0

tolower
isupper
isdigit

api-ms-win-crt-locale-l1-1-0

localeconv

api-ms-win-crt-heap-l1-1-0

malloc
calloc
realloc
free

kernel32

RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
RtlCaptureContext

Exports

Exports

PyInit__decimal

Sections

.text
Size: 158KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/_hashlib.pyd
.dll windows:6 windows x64 arch:x64

02e7e9437b7e711286b4b21f873e174b

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0f:de:a7:7a:fa:7a:1b:7b:e6:79:a3:8e:ad:db:dd:c5:26:9a:55:20:2e:d5:de:68:5a:44:b5:d6:7f:0f:94:a9
Signer

Actual PE Digest

0f:de:a7:7a:fa:7a:1b:7b:e6:79:a3:8e:ad:db:dd:c5:26:9a:55:20:2e:d5:de:68:5a:44:b5:d6:7f:0f:94:a9

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\_hashlib.pdb

Imports

libcrypto-3

EVP_MD_do_all_provided
EVP_MD_CTX_free
EVP_DigestInit_ex
EVP_MD_CTX_get0_md
ERR_func_error_string
HMAC
EVP_DigestUpdate
EVP_MD_CTX_md
HMAC_Update
HMAC_CTX_new
EVP_MD_CTX_copy
EVP_PBE_scrypt
OBJ_nid2ln
ERR_clear_error
ERR_peek_last_error
HMAC_Init_ex
HMAC_CTX_free
EVP_MD_get_block_size
OBJ_nid2sn
EVP_MD_fetch
EVP_MD_free
HMAC_Final
ERR_reason_error_string
ERR_lib_error_string
EVP_DigestFinalXOF
EVP_MD_get_flags
EVP_DigestFinal
EVP_MD_CTX_new
PKCS5_PBKDF2_HMAC
EVP_MD_get_type
HMAC_CTX_get_md
EVP_default_properties_is_fips_enabled
EVP_MD_up_ref
EVP_MD_get_size
HMAC_CTX_copy
CRYPTO_memcmp

python311

PyErr_NewException
PyType_FromSpecWithBases
PyDict_SetItem
PyDict_New
PyThread_free_lock
PyMem_Free
PyFrozenSet_New
PyErr_NoMemory
PyModuleDef_Init
_Py_hashtable_set
PyBytes_FromStringAndSize
PyType_FromSpec
_PyObject_New
PyExc_TypeError
PyObject_IsTrue
_PyUnicode_Ready
PyMem_Malloc
PyModule_GetState
PyUnicode_FromString
_Py_strhex
PyBuffer_Release
_Py_hashtable_get
PyEval_RestoreThread
_Py_hashtable_new_full
PyObject_GetAttrString
PyObject_GetBuffer
PyUnicode_FromFormat
PyUnicode_AsUTF8
PyLong_AsLong
PyModule_AddObject
PyModule_AddObjectRef
PyThread_release_lock
PyObject_Free
_Py_Dealloc
PyExc_OverflowError
PyModule_AddType
PyErr_Format
_Py_hashtable_destroy
PyExc_ValueError
_PyArg_UnpackKeywords
PyErr_SetString
PyDictProxy_New
_PyArg_BadArgument
PySet_Add
PyThread_acquire_lock
_Py_NoneStruct
PyModule_GetDef
PyThread_allocate_lock
_Py_HashBytes
PyDict_GetItemWithError
PyBuffer_IsContiguous
PyLong_FromLong
PyEval_SaveThread
PyUnicode_AsUTF8AndSize
PyErr_Occurred
_PyArg_CheckPositional
PyLong_AsSsize_t
PyLong_AsUnsignedLong
_PyNumber_Index
PyBool_FromLong
PyExc_BufferError
PyErr_FormatV
_PyArg_Parse_SizeT
PyObject_CheckBuffer

vcruntime140

memcpy
__std_type_info_destroy_list
memset
__C_specific_handler

api-ms-win-crt-string-l1-1-0

strncmp

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_cexit

kernel32

IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime

Exports

Exports

PyInit__hashlib

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/_lzma.pyd
.dll windows:6 windows x64 arch:x64

c39c7a021b2adfc11bb34f105f70355e

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a6:23:7d:04:1c:1d:09:7b:79:6f:59:82:66:25:d0:2c:07:e3:0b:d6:53:b1:96:db:d9:6a:5f:0d:ed:56:b8:82
Signer

Actual PE Digest

a6:23:7d:04:1c:1d:09:7b:79:6f:59:82:66:25:d0:2c:07:e3:0b:d6:53:b1:96:db:d9:6a:5f:0d:ed:56:b8:82

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\_lzma.pdb

Imports

python311

PyDict_SetItem
PyDict_New
PyErr_NewExceptionWithDoc
PyThread_free_lock
PyMem_Free
PyErr_NoMemory
PyModuleDef_Init
PyBytes_FromStringAndSize
PyErr_SetString
PyType_FromModuleAndSpec
PyMem_Realloc
PyMapping_Check
_PyLong_AsInt
PyModule_GetState
PyExc_SystemError
PyMem_RawFree
PyBuffer_Release
PyEval_RestoreThread
_PyArg_BadArgument
PyThread_acquire_lock
PyLong_FromLongLong
PyTuple_New
_Py_NoneStruct
PyMem_RawMalloc
PyType_GetModuleState
PyMapping_GetItemString
PyList_Append
PyErr_Clear
PyExc_EOFError
PyList_New
PyObject_GetBuffer
PyModule_AddObject
PyThread_release_lock
PyErr_ExceptionMatches
_Py_Dealloc
PyExc_OverflowError
PyModule_AddType
PyErr_Format
_PyArg_ParseTupleAndKeywords_SizeT
PyExc_ValueError
PyMem_Malloc
_PyArg_UnpackKeywords
PyLong_AsUnsignedLongLong
PyThread_allocate_lock
PyLong_FromUnsignedLongLong
PyExc_MemoryError
PyErr_SetNone
PyBuffer_IsContiguous
PyEval_SaveThread
PyErr_Occurred
PySequence_GetItem
PyExc_KeyError
_PyArg_CheckPositional
PyLong_AsSsize_t
PyType_GenericNew
PyModule_AddIntConstant
_PyNumber_Index
PyBool_FromLong
PyUnicode_InternFromString
PyMem_Calloc
PyExc_TypeError
PySequence_Size

vcruntime140

memmove
memset
__std_type_info_destroy_list
__C_specific_handler
memcpy
memcmp

api-ms-win-crt-heap-l1-1-0

calloc
malloc
free

api-ms-win-crt-runtime-l1-1-0

_execute_onexit_table
_initialize_onexit_table
_configure_narrow_argv
_seh_filter_dll
_initterm_e
_initterm
_cexit
_initialize_narrow_environment

kernel32

GetCurrentProcessId
RtlLookupFunctionEntry
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
RtlCaptureContext
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind

Exports

Exports

PyInit__lzma

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 312B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/_socket.pyd
.dll .js windows:6 windows x64 arch:x64 polyglot

332065e5d19d708832b034da27e5571a

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

cb:ef:1e:2c:38:97:c6:39:88:53:be:4d:86:68:87:09:4c:23:a9:64:06:e6:78:5c:40:bd:c9:56:92:32:0b:61
Signer

Actual PE Digest

cb:ef:1e:2c:38:97:c6:39:88:53:be:4d:86:68:87:09:4c:23:a9:64:06:e6:78:5c:40:bd:c9:56:92:32:0b:61

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\_socket.pdb

Imports

ws2_32

accept
WSACleanup
setsockopt
WSAIoctl
closesocket
gethostbyname
select
ntohl
WSADuplicateSocketW
shutdown
listen
WSASetLastError
WSASocketW
inet_pton
getaddrinfo
WSAStartup
getpeername
getnameinfo
inet_addr
getsockname
gethostbyaddr
getprotobyname
getservbyport
send
socket
ntohs
connect
inet_ntoa
getservbyname
recvfrom
recv
getsockopt
htonl
inet_ntop
htons
ioctlsocket
sendto
freeaddrinfo
bind
WSAGetLastError

iphlpapi

ConvertInterfaceLuidToNameW
GetIfTable2Ex
if_nametoindex
if_indextoname
FreeMibTable

kernel32

RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent
SetHandleInformation
VerifyVersionInfoA
VerifyVersionInfoW
GetCurrentProcessId
VerSetConditionMask
GetLastError
GetComputerNameExW

python311

_PyTime_FromSeconds
PyModule_GetDict
PyObject_Free
PyErr_ExceptionMatches
PyModule_AddObjectRef
PyCapsule_GetPointer
PyModule_AddObject
_PyArg_ParseTuple_SizeT
PyErr_Fetch
PyLong_AsLong
_PyBytes_Resize
PyUnicode_AsUTF8
PyUnicode_FromFormat
PySys_Audit
PyList_New
PyModule_Create2
PyErr_NewException
_PyDict_Pop
PyErr_Clear
PyList_Append
PyTuple_Size
PyUnicode_FSConverter
PyCapsule_New
PyBytes_Size
PyObject_CallFinalizerFromDealloc
PyMem_Free
PyType_GenericAlloc
PyErr_NoMemory
PyExc_OSError
PyErr_CheckSignals
PyBytes_FromStringAndSize
PyByteArray_Size
_PyDeadline_Get
PyExc_TypeError
PyTuple_Pack
_PyUnicode_Ready
PyMem_Malloc
_PyTime_AsTimeval_clamp
_PyLong_AsInt
PyExc_ImportError
_Py_TrueStruct
PyUnicode_FromString
PyErr_SetExcFromWindowsErr
_PyDeadline_Init
PyBuffer_Release
PyByteArray_Type
Py_AtExit
PyType_Type
_PyTime_AsTimeval
PyEval_RestoreThread
PyErr_ResourceWarning
_Py_Dealloc
PyErr_Restore
PyType_IsSubtype
PyErr_SetFromErrno
PyLong_Type
_PyTime_AsSecondsDouble
_Py_FalseStruct
PyModule_AddStringConstant
PyErr_Format
_PyArg_ParseTupleAndKeywords_SizeT
PyLong_FromUnsignedLong
PyExc_ValueError
_PyArg_UnpackKeywords
PyErr_WriteUnraisable
PyErr_SetString
PyUnicode_FromWideChar
PyByteArray_AsString
PyUnicode_New
PyFloat_FromDouble
PyExc_TimeoutError
PyLong_FromLongLong
PyLong_AsLongLong
_Py_NoneStruct
PyUnicode_DecodeMBCS
PyErr_SetFromWindowsErr
PyLong_FromLong
PyEval_SaveThread
PyObject_GenericGetAttr
PyLong_FromSsize_t
PyExc_Warning
PyErr_Occurred
PyBytes_AsString
PyModule_AddIntConstant
PyLong_AsUnsignedLong
_Py_BuildValue_SizeT
PyUnicode_DecodeFSDefault
_PyTime_AsMilliseconds
PyErr_SetObject
_PyTime_FromSecondsObject
PyOS_snprintf
PyUnicode_AsEncodedString
PyExc_OverflowError

vcruntime140

memcpy
memset
__std_type_info_destroy_list
__C_specific_handler
strchr

api-ms-win-crt-runtime-l1-1-0

_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_seh_filter_dll
_initterm_e
_initterm
_configure_narrow_argv
_errno
_cexit

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsscanf
__stdio_common_vsprintf

api-ms-win-crt-string-l1-1-0

strcmp

Exports

Exports

PyInit__socket

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/base_library.zip
.zip
_collections_abc.pyc
_weakrefset.pyc
abc.pyc
codecs.pyc
collections/__init__.pyc
collections/abc.pyc
copyreg.pyc
encodings/__init__.pyc
encodings/aliases.pyc
encodings/ascii.pyc
encodings/base64_codec.pyc
encodings/big5.pyc
encodings/big5hkscs.pyc
encodings/bz2_codec.pyc
encodings/charmap.pyc
encodings/cp037.pyc
encodings/cp1006.pyc
encodings/cp1026.pyc
encodings/cp1125.pyc
encodings/cp1140.pyc
encodings/cp1250.pyc
encodings/cp1251.pyc
encodings/cp1252.pyc
encodings/cp1253.pyc
encodings/cp1254.pyc
encodings/cp1255.pyc
encodings/cp1256.pyc
encodings/cp1257.pyc
encodings/cp1258.pyc
encodings/cp273.pyc
encodings/cp424.pyc
encodings/cp437.pyc
encodings/cp500.pyc
encodings/cp720.pyc
encodings/cp737.pyc
encodings/cp775.pyc
encodings/cp850.pyc
encodings/cp852.pyc
encodings/cp855.pyc
encodings/cp856.pyc
encodings/cp857.pyc
encodings/cp858.pyc
encodings/cp860.pyc
encodings/cp861.pyc
encodings/cp862.pyc
encodings/cp863.pyc
encodings/cp864.pyc
encodings/cp865.pyc
encodings/cp866.pyc
encodings/cp869.pyc
encodings/cp874.pyc
encodings/cp875.pyc
encodings/cp932.pyc
encodings/cp949.pyc
encodings/cp950.pyc
encodings/euc_jis_2004.pyc
encodings/euc_jisx0213.pyc
encodings/euc_jp.pyc
encodings/euc_kr.pyc
encodings/gb18030.pyc
encodings/gb2312.pyc
encodings/gbk.pyc
encodings/hex_codec.pyc
encodings/hp_roman8.pyc
encodings/hz.pyc
encodings/idna.pyc
encodings/iso2022_jp.pyc
encodings/iso2022_jp_1.pyc
encodings/iso2022_jp_2.pyc
encodings/iso2022_jp_2004.pyc
encodings/iso2022_jp_3.pyc
encodings/iso2022_jp_ext.pyc
encodings/iso2022_kr.pyc
encodings/iso8859_1.pyc
encodings/iso8859_10.pyc
encodings/iso8859_11.pyc
encodings/iso8859_13.pyc
encodings/iso8859_14.pyc
encodings/iso8859_15.pyc
encodings/iso8859_16.pyc
encodings/iso8859_2.pyc
encodings/iso8859_3.pyc
encodings/iso8859_4.pyc
encodings/iso8859_5.pyc
encodings/iso8859_6.pyc
encodings/iso8859_7.pyc
encodings/iso8859_8.pyc
encodings/iso8859_9.pyc
encodings/johab.pyc
encodings/koi8_r.pyc
encodings/koi8_t.pyc
encodings/koi8_u.pyc
encodings/kz1048.pyc
encodings/latin_1.pyc
encodings/mac_arabic.pyc
encodings/mac_croatian.pyc
encodings/mac_cyrillic.pyc
encodings/mac_farsi.pyc
encodings/mac_greek.pyc
encodings/mac_iceland.pyc
encodings/mac_latin2.pyc
encodings/mac_roman.pyc
encodings/mac_romanian.pyc
encodings/mac_turkish.pyc
encodings/mbcs.pyc
encodings/oem.pyc
encodings/palmos.pyc
encodings/ptcp154.pyc
encodings/punycode.pyc
encodings/quopri_codec.pyc
encodings/raw_unicode_escape.pyc
encodings/rot_13.pyc
encodings/shift_jis.pyc
encodings/shift_jis_2004.pyc
encodings/shift_jisx0213.pyc
encodings/tis_620.pyc
encodings/undefined.pyc
encodings/unicode_escape.pyc
encodings/utf_16.pyc
encodings/utf_16_be.pyc
encodings/utf_16_le.pyc
encodings/utf_32.pyc
encodings/utf_32_be.pyc
encodings/utf_32_le.pyc
encodings/utf_7.pyc
encodings/utf_8.pyc
encodings/utf_8_sig.pyc
encodings/uu_codec.pyc
encodings/zlib_codec.pyc
enum.pyc
functools.pyc
genericpath.pyc
heapq.pyc
io.pyc
keyword.pyc
linecache.pyc
locale.pyc
ntpath.pyc
operator.pyc
os.pyc
posixpath.pyc
re/__init__.pyc
re/_casefix.pyc
re/_compiler.pyc
re/_constants.pyc
re/_parser.pyc
reprlib.pyc
sre_compile.pyc
sre_constants.pyc
sre_parse.pyc
stat.pyc
traceback.pyc
types.pyc
warnings.pyc
weakref.pyc
UNBAN/_internal/libcrypto-3.dll
.dll windows:6 windows x64 arch:x64

40bce6a23883072a66c68006f08e105c

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

50:39:c9:00:99:e0:d5:b2:c1:52:24:af:55:00:f6:71:45:e5:e7:5a:c4:fa:44:df:b7:98:1f:57:2c:eb:12:83
Signer

Actual PE Digest

50:39:c9:00:99:e0:d5:b2:c1:52:24:af:55:00:f6:71:45:e5:e7:5a:c4:fa:44:df:b7:98:1f:57:2c:eb:12:83

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\libcrypto-3.pdb

Imports

ws2_32

WSACleanup
WSAStartup
select
getsockopt
getsockname
bind
WSAGetLastError
WSASetLastError
getservbyname
getservbyport
gethostbyname
htonl
gethostbyaddr
ntohs
inet_ntoa
inet_addr
htons
closesocket
connect
listen
setsockopt
socket
shutdown
recv
send
recvfrom
sendto
accept
ioctlsocket

advapi32

RegisterEventSourceW
DeregisterEventSource
ReportEventW

user32

GetUserObjectInformationW
MessageBoxW
GetProcessWindowStation

bcrypt

BCryptGenRandom

kernel32

IsProcessorFeaturePresent
SetUnhandledExceptionFilter
RtlLookupFunctionEntry
RtlCaptureContext
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleHandleA
TerminateProcess
GetCurrentProcess
ReadConsoleW
ReadConsoleA
IsDebuggerPresent
GetConsoleMode
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetCurrentThreadId
AcquireSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockShared
ReleaseSRWLockExclusive
InitializeSRWLock
FindNextFileW
FindFirstFileW
GetStartupInfoW
InitializeSListHead
SetConsoleMode
UnhandledExceptionFilter
FindClose
VirtualLock
VirtualFree
VirtualProtect
VirtualAlloc
GetSystemInfo
RtlVirtualUnwind
ConvertFiberToThread
ConvertThreadToFiberEx
SwitchToFiber
DeleteFiber
CreateFiberEx
GetSystemDirectoryA
FreeLibrary
GetProcAddress
LoadLibraryA
FormatMessageA
Sleep
GetSystemTime
SystemTimeToFileTime
GetLastError
SetLastError
CloseHandle
LoadLibraryW
GetEnvironmentVariableW
GetStdHandle
GetFileType
WriteFile
GetModuleHandleW
MultiByteToWideChar
WideCharToMultiByte
GetACP
GetModuleHandleExW

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
wcsstr
memchr
strstr
strchr
memmove
strrchr
memcmp
memset
memcpy
__current_exception_context
__current_exception

api-ms-win-crt-stdio-l1-1-0

ftell
fseek
__stdio_common_vsprintf
__stdio_common_vfprintf
__stdio_common_vsscanf
fread
__stdio_common_vswprintf
_fileno
fgets
setvbuf
_wfopen
fopen
ferror
feof
fclose
fputs
clearerr
setbuf
__acrt_iob_func
__stdio_common_vsprintf_s
fflush
fwrite
_setmode

api-ms-win-crt-convert-l1-1-0

strtol
atoi
strtoul

api-ms-win-crt-string-l1-1-0

tolower
strspn
strcspn
strncmp
isspace
_strdup
strncpy_s
strcat_s
strcpy_s
isdigit
strncpy
strcmp

api-ms-win-crt-time-l1-1-0

_gmtime64_s
_time64

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-heap-l1-1-0

malloc
realloc
calloc
free

api-ms-win-crt-runtime-l1-1-0

_crt_at_quick_exit
perror
_initialize_onexit_table
_initterm
strerror_s
_initialize_narrow_environment
terminate
signal
raise
_exit
_configure_narrow_argv
_execute_onexit_table
_crt_atexit
_errno
_cexit
_register_onexit_function
_initterm_e
_seh_filter_dll

api-ms-win-crt-filesystem-l1-1-0

_fstat64i32
_chmod
_stat64i32

api-ms-win-crt-environment-l1-1-0

getenv

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
ADMISSIONS_free
ADMISSIONS_get0_admissionAuthority
ADMISSIONS_get0_namingAuthority
ADMISSIONS_get0_professionInfos
ADMISSIONS_it
ADMISSIONS_new
ADMISSIONS_set0_admissionAuthority
ADMISSIONS_set0_namingAuthority
ADMISSIONS_set0_professionInfos
ADMISSION_SYNTAX_free
ADMISSION_SYNTAX_get0_admissionAuthority
ADMISSION_SYNTAX_get0_contentsOfAdmissions
ADMISSION_SYNTAX_it
ADMISSION_SYNTAX_new
ADMISSION_SYNTAX_set0_admissionAuthority
ADMISSION_SYNTAX_set0_contentsOfAdmissions
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ige_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_wrap_key
ASIdOrRange_free
ASIdOrRange_it
ASIdOrRange_new
ASIdentifierChoice_free
ASIdentifierChoice_it
ASIdentifierChoice_new
ASIdentifiers_free
ASIdentifiers_it
ASIdentifiers_new
ASN1_ANY_it
ASN1_BIT_STRING_check
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_get_int64
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_set_int64
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_adj
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_dup
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_get_int64
ASN1_INTEGER_get_uint64
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_set_int64
ASN1_INTEGER_set_uint64
ASN1_INTEGER_to_BN
ASN1_ITEM_get
ASN1_ITEM_lookup
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PCTX_free
ASN1_PCTX_get_cert_flags
ASN1_PCTX_get_flags
ASN1_PCTX_get_nm_flags
ASN1_PCTX_get_oid_flags
ASN1_PCTX_get_str_flags
ASN1_PCTX_new
ASN1_PCTX_set_cert_flags
ASN1_PCTX_set_flags
ASN1_PCTX_set_nm_flags
ASN1_PCTX_set_oid_flags
ASN1_PCTX_set_str_flags
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SCTX_free
ASN1_SCTX_get_app_data
ASN1_SCTX_get_flags
ASN1_SCTX_get_item
ASN1_SCTX_get_template
ASN1_SCTX_new
ASN1_SCTX_set_app_data
ASN1_SEQUENCE_ANY_it
ASN1_SEQUENCE_it
ASN1_SET_ANY_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_clear_free
ASN1_STRING_cmp
ASN1_STRING_copy
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get0_data
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_adj
ASN1_TIME_check
ASN1_TIME_cmp_time_t
ASN1_TIME_compare
ASN1_TIME_diff
ASN1_TIME_dup
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_normalize
ASN1_TIME_print
ASN1_TIME_print_ex
ASN1_TIME_set
ASN1_TIME_set_string
ASN1_TIME_set_string_X509
ASN1_TIME_to_generalizedtime
ASN1_TIME_to_tm
ASN1_TYPE_cmp
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_pack_sequence
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_TYPE_unpack_sequence
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_adj
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_dup
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_add_stable_module
ASN1_bn_print
ASN1_buf_print
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_bio_ex
ASN1_item_d2i_ex
ASN1_item_d2i_fp
ASN1_item_d2i_fp_ex
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_i2d_mem_bio
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_new_ex
ASN1_item_pack
ASN1_item_print
ASN1_item_sign
ASN1_item_sign_ctx
ASN1_item_sign_ex
ASN1_item_unpack
ASN1_item_verify
ASN1_item_verify_ctx
ASN1_item_verify_ex
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_parse
ASN1_parse_dump
ASN1_put_eoc
ASN1_put_object
ASN1_sign
ASN1_str2mask
ASN1_tag2bit
ASN1_tag2str
ASN1_verify
ASRange_free
ASRange_it
ASRange_new
ASYNC_WAIT_CTX_clear_fd
ASYNC_WAIT_CTX_free
ASYNC_WAIT_CTX_get_all_fds
ASYNC_WAIT_CTX_get_callback
ASYNC_WAIT_CTX_get_changed_fds
ASYNC_WAIT_CTX_get_fd
ASYNC_WAIT_CTX_get_status
ASYNC_WAIT_CTX_new
ASYNC_WAIT_CTX_set_callback
ASYNC_WAIT_CTX_set_status
ASYNC_WAIT_CTX_set_wait_fd
ASYNC_block_pause
ASYNC_cleanup_thread
ASYNC_get_current_job
ASYNC_get_wait_ctx
ASYNC_init_thread
ASYNC_is_capable
ASYNC_pause_job
ASYNC_start_job
ASYNC_unblock_pause
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_ADDRINFO_address
BIO_ADDRINFO_family
BIO_ADDRINFO_free
BIO_ADDRINFO_next
BIO_ADDRINFO_protocol
BIO_ADDRINFO_socktype
BIO_ADDR_clear
BIO_ADDR_family
BIO_ADDR_free
BIO_ADDR_hostname_string
BIO_ADDR_new
BIO_ADDR_path_string
BIO_ADDR_rawaddress
BIO_ADDR_rawmake
BIO_ADDR_rawport
BIO_ADDR_service_string
BIO_accept
BIO_accept_ex
BIO_asn1_get_prefix
BIO_asn1_get_suffix
BIO_asn1_set_prefix
BIO_asn1_set_suffix
BIO_bind
BIO_callback_ctrl
BIO_clear_flags
BIO_closesocket
BIO_connect
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_debug_callback_ex
BIO_dgram_non_fatal_error
BIO_do_connect_retry
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_asn1
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_linebuffer
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_prefix
BIO_f_readbuffer
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_callback
BIO_get_callback_arg
BIO_get_callback_ex
BIO_get_data
BIO_get_ex_data
BIO_get_host_ip
BIO_get_init
BIO_get_line
BIO_get_new_index
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_get_shutdown
BIO_gethostbyname
BIO_gets
BIO_hex_string
BIO_indent
BIO_int_ctrl
BIO_listen
BIO_lookup
BIO_lookup_ex
BIO_meth_free
BIO_meth_get_callback_ctrl
BIO_meth_get_create
BIO_meth_get_ctrl
BIO_meth_get_destroy
BIO_meth_get_gets
BIO_meth_get_puts
BIO_meth_get_read
BIO_meth_get_read_ex
BIO_meth_get_write
BIO_meth_get_write_ex
BIO_meth_new
BIO_meth_set_callback_ctrl
BIO_meth_set_create
BIO_meth_set_ctrl
BIO_meth_set_destroy
BIO_meth_set_gets
BIO_meth_set_puts
BIO_meth_set_read
BIO_meth_set_read_ex
BIO_meth_set_write
BIO_meth_set_write_ex
BIO_method_name
BIO_method_type
BIO_new
BIO_new_CMS
BIO_new_NDEF
BIO_new_PKCS7
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_ex
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_from_core_bio
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_parse_hostserv
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_read_ex
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_core
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_log
BIO_s_mem
BIO_s_null
BIO_s_secmem
BIO_s_socket
BIO_set_callback
BIO_set_callback_arg
BIO_set_callback_ex
BIO_set_cipher
BIO_set_data
BIO_set_ex_data
BIO_set_flags
BIO_set_init
BIO_set_next
BIO_set_retry_reason
BIO_set_shutdown
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_error
BIO_sock_info
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket
BIO_socket_ioctl
BIO_socket_nbio
BIO_socket_wait
BIO_test_flags
BIO_up_ref
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_wait
BIO_write
BIO_write_ex
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_invert
BN_BLINDING_invert_ex

Sections

.text
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 373B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/libffi-8.dll
.dll windows:6 windows x64 arch:x64

3dc8b86d60f90a1851eee5f9dc191312

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0c:4d:69:72:4b:94:fa:3c:2a:4a:3d:29:07:80:3d:5a
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

21/09/2022, 00:00

Not After

21/11/2033, 23:59

Subject

CN=DigiCert Timestamp 2022 - 2,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

28:e0:f1:58:7c:1f:18:3e:64:76:e2:2b:70:a9:25:bf:ec:55:9c:6f:4b:32:d6:13:92:b3:26:65:9d:c4:0c:67
Signer

Actual PE Digest

28:e0:f1:58:7c:1f:18:3e:64:76:e2:2b:70:a9:25:bf:ec:55:9c:6f:4b:32:d6:13:92:b3:26:65:9d:c4:0c:67

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
GetSystemInfo
VirtualAlloc
VirtualFree
VirtualQuery
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
DisableThreadLibraryCalls
InitializeSListHead
IsDebuggerPresent

vcruntime140

__C_specific_handler
__std_type_info_destroy_list
memset
memcpy

api-ms-win-crt-runtime-l1-1-0

abort
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table
_cexit

Exports

Exports

ffi_call
ffi_call_go
ffi_closure_alloc
ffi_closure_free
ffi_get_struct_offsets
ffi_java_ptrarray_to_raw
ffi_java_raw_call
ffi_java_raw_size
ffi_java_raw_to_ptrarray
ffi_prep_cif
ffi_prep_cif_var
ffi_prep_closure
ffi_prep_closure_loc
ffi_prep_go_closure
ffi_prep_java_raw_closure
ffi_prep_java_raw_closure_loc
ffi_prep_raw_closure
ffi_prep_raw_closure_loc
ffi_ptrarray_to_raw
ffi_raw_call
ffi_raw_size
ffi_raw_to_ptrarray
ffi_type_double
ffi_type_float
ffi_type_pointer
ffi_type_sint16
ffi_type_sint32
ffi_type_sint64
ffi_type_sint8
ffi_type_uint16
ffi_type_uint32
ffi_type_uint64
ffi_type_uint8
ffi_type_void

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/python3.dll
.dll windows:6 windows x64 arch:x64

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

81:0e:0a:02:d5:b4:49:43:df:c0:74:51:bd:59:e5:5a:4b:f0:38:b5:62:1f:23:ac:18:58:1b:8c:60:20:54:7b
Signer

Actual PE Digest

81:0e:0a:02:d5:b4:49:43:df:c0:74:51:bd:59:e5:5a:4b:f0:38:b5:62:1f:23:ac:18:58:1b:8c:60:20:54:7b

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\python3.pdb

Exports

Exports

PyAIter_Check
PyArg_Parse
PyArg_ParseTuple
PyArg_ParseTupleAndKeywords
PyArg_UnpackTuple
PyArg_VaParse
PyArg_VaParseTupleAndKeywords
PyArg_ValidateKeywordArguments
PyBaseObject_Type
PyBool_FromLong
PyBool_Type
PyBuffer_FillContiguousStrides
PyBuffer_FillInfo
PyBuffer_FromContiguous
PyBuffer_GetPointer
PyBuffer_IsContiguous
PyBuffer_Release
PyBuffer_SizeFromFormat
PyBuffer_ToContiguous
PyByteArrayIter_Type
PyByteArray_AsString
PyByteArray_Concat
PyByteArray_FromObject
PyByteArray_FromStringAndSize
PyByteArray_Resize
PyByteArray_Size
PyByteArray_Type
PyBytesIter_Type
PyBytes_AsString
PyBytes_AsStringAndSize
PyBytes_Concat
PyBytes_ConcatAndDel
PyBytes_DecodeEscape
PyBytes_FromFormat
PyBytes_FromFormatV
PyBytes_FromObject
PyBytes_FromString
PyBytes_FromStringAndSize
PyBytes_Repr
PyBytes_Size
PyBytes_Type
PyCFunction_Call
PyCFunction_GetFlags
PyCFunction_GetFunction
PyCFunction_GetSelf
PyCFunction_New
PyCFunction_NewEx
PyCFunction_Type
PyCMethod_New
PyCallIter_New
PyCallIter_Type
PyCallable_Check
PyCapsule_GetContext
PyCapsule_GetDestructor
PyCapsule_GetName
PyCapsule_GetPointer
PyCapsule_Import
PyCapsule_IsValid
PyCapsule_New
PyCapsule_SetContext
PyCapsule_SetDestructor
PyCapsule_SetName
PyCapsule_SetPointer
PyCapsule_Type
PyClassMethodDescr_Type
PyCodec_BackslashReplaceErrors
PyCodec_Decode
PyCodec_Decoder
PyCodec_Encode
PyCodec_Encoder
PyCodec_IgnoreErrors
PyCodec_IncrementalDecoder
PyCodec_IncrementalEncoder
PyCodec_KnownEncoding
PyCodec_LookupError
PyCodec_NameReplaceErrors
PyCodec_Register
PyCodec_RegisterError
PyCodec_ReplaceErrors
PyCodec_StreamReader
PyCodec_StreamWriter
PyCodec_StrictErrors
PyCodec_Unregister
PyCodec_XMLCharRefReplaceErrors
PyComplex_FromDoubles
PyComplex_ImagAsDouble
PyComplex_RealAsDouble
PyComplex_Type
PyDescr_NewClassMethod
PyDescr_NewGetSet
PyDescr_NewMember
PyDescr_NewMethod
PyDictItems_Type
PyDictIterItem_Type
PyDictIterKey_Type
PyDictIterValue_Type
PyDictKeys_Type
PyDictProxy_New
PyDictProxy_Type
PyDictRevIterItem_Type
PyDictRevIterKey_Type
PyDictRevIterValue_Type
PyDictValues_Type
PyDict_Clear
PyDict_Contains
PyDict_Copy
PyDict_DelItem
PyDict_DelItemString
PyDict_GetItem
PyDict_GetItemString
PyDict_GetItemWithError
PyDict_Items
PyDict_Keys
PyDict_Merge
PyDict_MergeFromSeq2
PyDict_New
PyDict_Next
PyDict_SetItem
PyDict_SetItemString
PyDict_Size
PyDict_Type
PyDict_Update
PyDict_Values
PyEllipsis_Type
PyEnum_Type
PyErr_BadArgument
PyErr_BadInternalCall
PyErr_CheckSignals
PyErr_Clear
PyErr_Display
PyErr_ExceptionMatches
PyErr_Fetch
PyErr_Format
PyErr_FormatV
PyErr_GetExcInfo
PyErr_GetHandledException
PyErr_GivenExceptionMatches
PyErr_NewException
PyErr_NewExceptionWithDoc
PyErr_NoMemory
PyErr_NormalizeException
PyErr_Occurred
PyErr_Print
PyErr_PrintEx
PyErr_ProgramText
PyErr_ResourceWarning
PyErr_Restore
PyErr_SetExcFromWindowsErr
PyErr_SetExcFromWindowsErrWithFilename
PyErr_SetExcFromWindowsErrWithFilenameObject
PyErr_SetExcFromWindowsErrWithFilenameObjects
PyErr_SetExcInfo
PyErr_SetFromErrno
PyErr_SetFromErrnoWithFilename
PyErr_SetFromErrnoWithFilenameObject
PyErr_SetFromErrnoWithFilenameObjects
PyErr_SetFromWindowsErr
PyErr_SetFromWindowsErrWithFilename
PyErr_SetHandledException
PyErr_SetImportError
PyErr_SetImportErrorSubclass
PyErr_SetInterrupt
PyErr_SetInterruptEx
PyErr_SetNone
PyErr_SetObject
PyErr_SetString
PyErr_SyntaxLocation
PyErr_SyntaxLocationEx
PyErr_WarnEx
PyErr_WarnExplicit
PyErr_WarnFormat
PyErr_WriteUnraisable
PyEval_AcquireLock
PyEval_AcquireThread
PyEval_CallFunction
PyEval_CallMethod
PyEval_CallObjectWithKeywords
PyEval_EvalCode
PyEval_EvalCodeEx
PyEval_EvalFrame
PyEval_EvalFrameEx
PyEval_GetBuiltins
PyEval_GetFrame
PyEval_GetFuncDesc
PyEval_GetFuncName
PyEval_GetGlobals
PyEval_GetLocals
PyEval_InitThreads
PyEval_ReleaseLock
PyEval_ReleaseThread
PyEval_RestoreThread
PyEval_SaveThread
PyEval_ThreadsInitialized
PyExc_ArithmeticError
PyExc_AssertionError
PyExc_AttributeError
PyExc_BaseException
PyExc_BaseExceptionGroup
PyExc_BlockingIOError
PyExc_BrokenPipeError
PyExc_BufferError
PyExc_BytesWarning
PyExc_ChildProcessError
PyExc_ConnectionAbortedError
PyExc_ConnectionError
PyExc_ConnectionRefusedError
PyExc_ConnectionResetError
PyExc_DeprecationWarning
PyExc_EOFError
PyExc_EncodingWarning
PyExc_EnvironmentError
PyExc_Exception
PyExc_FileExistsError
PyExc_FileNotFoundError
PyExc_FloatingPointError
PyExc_FutureWarning
PyExc_GeneratorExit
PyExc_IOError
PyExc_ImportError
PyExc_ImportWarning
PyExc_IndentationError
PyExc_IndexError
PyExc_InterruptedError
PyExc_IsADirectoryError
PyExc_KeyError
PyExc_KeyboardInterrupt
PyExc_LookupError
PyExc_MemoryError
PyExc_ModuleNotFoundError
PyExc_NameError
PyExc_NotADirectoryError
PyExc_NotImplementedError
PyExc_OSError
PyExc_OverflowError
PyExc_PendingDeprecationWarning
PyExc_PermissionError
PyExc_ProcessLookupError
PyExc_RecursionError
PyExc_ReferenceError
PyExc_ResourceWarning
PyExc_RuntimeError
PyExc_RuntimeWarning
PyExc_StopAsyncIteration
PyExc_StopIteration
PyExc_SyntaxError
PyExc_SyntaxWarning
PyExc_SystemError
PyExc_SystemExit
PyExc_TabError
PyExc_TimeoutError
PyExc_TypeError
PyExc_UnboundLocalError
PyExc_UnicodeDecodeError
PyExc_UnicodeEncodeError
PyExc_UnicodeError
PyExc_UnicodeTranslateError
PyExc_UnicodeWarning
PyExc_UserWarning
PyExc_ValueError
PyExc_Warning
PyExc_WindowsError
PyExc_ZeroDivisionError
PyExceptionClass_Name
PyException_GetCause
PyException_GetContext
PyException_GetTraceback
PyException_SetCause
PyException_SetContext
PyException_SetTraceback
PyFile_FromFd
PyFile_GetLine
PyFile_WriteObject
PyFile_WriteString
PyFilter_Type
PyFloat_AsDouble
PyFloat_FromDouble
PyFloat_FromString
PyFloat_GetInfo
PyFloat_GetMax
PyFloat_GetMin
PyFloat_Type
PyFrame_GetCode
PyFrame_GetLineNumber
PyFrozenSet_New
PyFrozenSet_Type
PyGC_Collect
PyGC_Disable
PyGC_Enable
PyGC_IsEnabled
PyGILState_Ensure
PyGILState_GetThisThreadState
PyGILState_Release
PyGetSetDescr_Type
PyImport_AddModule
PyImport_AddModuleObject
PyImport_AppendInittab
PyImport_ExecCodeModule
PyImport_ExecCodeModuleEx
PyImport_ExecCodeModuleObject
PyImport_ExecCodeModuleWithPathnames
PyImport_GetImporter
PyImport_GetMagicNumber
PyImport_GetMagicTag
PyImport_GetModule
PyImport_GetModuleDict
PyImport_Import
PyImport_ImportFrozenModule
PyImport_ImportFrozenModuleObject
PyImport_ImportModule
PyImport_ImportModuleLevel
PyImport_ImportModuleLevelObject
PyImport_ImportModuleNoBlock
PyImport_ReloadModule
PyIndex_Check
PyInterpreterState_Clear
PyInterpreterState_Delete
PyInterpreterState_Get
PyInterpreterState_GetDict
PyInterpreterState_GetID
PyInterpreterState_New
PyIter_Check
PyIter_Next
PyIter_Send
PyListIter_Type
PyListRevIter_Type
PyList_Append
PyList_AsTuple
PyList_GetItem
PyList_GetSlice
PyList_Insert
PyList_New
PyList_Reverse
PyList_SetItem
PyList_SetSlice
PyList_Size
PyList_Sort
PyList_Type
PyLongRangeIter_Type
PyLong_AsDouble
PyLong_AsLong
PyLong_AsLongAndOverflow
PyLong_AsLongLong
PyLong_AsLongLongAndOverflow
PyLong_AsSize_t
PyLong_AsSsize_t
PyLong_AsUnsignedLong
PyLong_AsUnsignedLongLong
PyLong_AsUnsignedLongLongMask
PyLong_AsUnsignedLongMask
PyLong_AsVoidPtr
PyLong_FromDouble
PyLong_FromLong
PyLong_FromLongLong
PyLong_FromSize_t
PyLong_FromSsize_t
PyLong_FromString
PyLong_FromUnsignedLong
PyLong_FromUnsignedLongLong
PyLong_FromVoidPtr
PyLong_GetInfo
PyLong_Type
PyMap_Type
PyMapping_Check
PyMapping_GetItemString
PyMapping_HasKey
PyMapping_HasKeyString
PyMapping_Items
PyMapping_Keys
PyMapping_Length
PyMapping_SetItemString
PyMapping_Size
PyMapping_Values
PyMarshal_ReadObjectFromString
PyMarshal_WriteObjectToString
PyMem_Calloc
PyMem_Free
PyMem_Malloc
PyMem_Realloc
PyMemberDescr_Type
PyMember_GetOne
PyMember_SetOne
PyMemoryView_FromBuffer
PyMemoryView_FromMemory
PyMemoryView_FromObject
PyMemoryView_GetContiguous
PyMemoryView_Type
PyMethodDescr_Type
PyModuleDef_Init
PyModuleDef_Type
PyModule_AddFunctions
PyModule_AddIntConstant
PyModule_AddObject
PyModule_AddObjectRef
PyModule_AddStringConstant
PyModule_AddType
PyModule_Create2
PyModule_ExecDef
PyModule_FromDefAndSpec2
PyModule_GetDef
PyModule_GetDict
PyModule_GetFilename
PyModule_GetFilenameObject
PyModule_GetName
PyModule_GetNameObject
PyModule_GetState
PyModule_New
PyModule_NewObject
PyModule_SetDocString
PyModule_Type
PyNumber_Absolute
PyNumber_Add
PyNumber_And
PyNumber_AsSsize_t
PyNumber_Check
PyNumber_Divmod
PyNumber_Float
PyNumber_FloorDivide
PyNumber_InPlaceAdd
PyNumber_InPlaceAnd
PyNumber_InPlaceFloorDivide
PyNumber_InPlaceLshift
PyNumber_InPlaceMatrixMultiply
PyNumber_InPlaceMultiply
PyNumber_InPlaceOr
PyNumber_InPlacePower
PyNumber_InPlaceRemainder
PyNumber_InPlaceRshift
PyNumber_InPlaceSubtract
PyNumber_InPlaceTrueDivide
PyNumber_InPlaceXor
PyNumber_Index
PyNumber_Invert
PyNumber_Long
PyNumber_Lshift
PyNumber_MatrixMultiply
PyNumber_Multiply
PyNumber_Negative
PyNumber_Or
PyNumber_Positive
PyNumber_Power
PyNumber_Remainder
PyNumber_Rshift
PyNumber_Subtract
PyNumber_ToBase
PyNumber_TrueDivide
PyNumber_Xor
PyOS_CheckStack
PyOS_FSPath
PyOS_InputHook
PyOS_InterruptOccurred
PyOS_double_to_string
PyOS_getsig
PyOS_mystricmp
PyOS_mystrnicmp
PyOS_setsig
PyOS_snprintf
PyOS_string_to_double
PyOS_strtol
PyOS_strtoul
PyOS_vsnprintf
PyObject_ASCII
PyObject_AsCharBuffer
PyObject_AsFileDescriptor
PyObject_AsReadBuffer
PyObject_AsWriteBuffer
PyObject_Bytes
PyObject_Call
PyObject_CallFunction
PyObject_CallFunctionObjArgs
PyObject_CallMethod
PyObject_CallMethodObjArgs
PyObject_CallNoArgs
PyObject_CallObject
PyObject_Calloc
PyObject_CheckBuffer
PyObject_CheckReadBuffer
PyObject_ClearWeakRefs
PyObject_CopyData
PyObject_DelItem
PyObject_DelItemString
PyObject_Dir
PyObject_Format
PyObject_Free
PyObject_GC_Del
PyObject_GC_IsFinalized
PyObject_GC_IsTracked
PyObject_GC_Track
PyObject_GC_UnTrack
PyObject_GenericGetAttr
PyObject_GenericGetDict
PyObject_GenericSetAttr
PyObject_GenericSetDict
PyObject_GetAIter
PyObject_GetAttr
PyObject_GetAttrString
PyObject_GetBuffer
PyObject_GetItem
PyObject_GetIter
PyObject_HasAttr
PyObject_HasAttrString

Sections

.rdata
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
UNBAN/_internal/python311.dll
.dll windows:6 windows x64 arch:x64

3964207ef92d080d367881cd6d0578d9

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

9b:0d:46:f8:f5:50:b9:af:e5:31:12:10:f2:50:a6:1a:3b:df:bd:58:f1:c3:63:94:72:c8:17:24:62:33:e8:c3
Signer

Actual PE Digest

9b:0d:46:f8:f5:50:b9:af:e5:31:12:10:f2:50:a6:1a:3b:df:bd:58:f1:c3:63:94:72:c8:17:24:62:33:e8:c3

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\python311.pdb

Imports

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

ws2_32

getsockopt
send
WSAGetLastError

api-ms-win-core-path-l1-1-0

PathCchCombineEx
PathCchSkipRoot
PathCchFindExtension

bcrypt

BCryptGenRandom

advapi32

RegEnumKeyExW
RegDeleteKeyExW
RegQueryInfoKeyW
RegDeleteKeyW
RegQueryValueW
RegFlushKey
RegCreateKeyExW
RegSaveKeyW
RegSetValueExW
RegLoadKeyW
RegCreateKeyW
RegConnectRegistryW
RegDeleteValueW
RegEnumValueW
GetUserNameW
RegQueryValueExW
RegOpenKeyExW
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegSetValueW

kernel32

HeapAlloc
GetProcessHeap
IsDebuggerPresent
InitializeSListHead
GetCurrentProcessId
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
TlsGetValue
TlsFree
MultiByteToWideChar
GetModuleFileNameW
CompareStringOrdinal
GetFileAttributesW
GetLocaleInfoA
GetACP
RemoveVectoredExceptionHandler
SetErrorMode
RaiseException
AddVectoredExceptionHandler
GetCurrentProcess
SetEndOfFile
OpenFileMappingW
UnmapViewOfFile
DuplicateHandle
GetLastError
FlushViewOfFile
CloseHandle
GetSystemInfo
SetFilePointerEx
GetFileSize
CreateFileMappingW
MapViewOfFile
CreateDirectoryW
GetFileInformationByHandleEx
FindFirstFileW
Process32First
SetHandleInformation
GetConsoleScreenBufferInfo
SetLastError
GetHandleInformation
GetFullPathNameW
FindNextFileW
GetStdHandle
DeviceIoControl
TerminateProcess
RemoveDirectoryW
GetFinalPathNameByHandleW
SetFileTime
SetEnvironmentVariableW
CreatePipe
CreateHardLinkW
FindClose
GetVolumePathNameW
CreateFileW
OpenProcess
SetFileAttributesW
CreateToolhelp32Snapshot
GetFileInformationByHandle
GetFileAttributesExW
GetDiskFreeSpaceExW
DeleteFileW
Process32Next
LoadLibraryW
GetActiveProcessorCount
GetCurrentDirectoryW
SetCurrentDirectoryW
GetProcAddress
MoveFileExW
GetModuleHandleW
CreateSymbolicLinkW
GetSystemTimeAsFileTime
GetFileType
GetProcessTimes
GenerateConsoleCtrlEvent
SetEvent
CreateEventA
WaitForMultipleObjects
WaitForSingleObject
Sleep
GetTimeZoneInformation
GetCurrentThread
SetWaitableTimerEx
ResetEvent
GetThreadTimes
CreateWaitableTimerExW
TlsAlloc
GetConsoleMode
ReadConsoleW
WaitForSingleObjectEx
WriteConsoleW
GetNumberOfConsoleInputEvents
WideCharToMultiByte
GetStringTypeW
ReadFile
CancelIo
SetNamedPipeHandleState
WaitNamedPipeA
CreateNamedPipeA
WriteFile
InitializeProcThreadAttributeList
PeekNamedPipe
GetModuleHandleA
GetVersion
LCMapStringEx
UpdateProcThreadAttribute
DeleteProcThreadAttributeList
GetOverlappedResult
ExitProcess
CreateProcessW
VirtualQuery
ConnectNamedPipe
GetExitCodeProcess
VirtualFree
VirtualAlloc
ExpandEnvironmentStringsW
GetErrorMode
EnterCriticalSection
ReleaseSemaphore
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
CreateSemaphoreA
FormatMessageW
FreeLibrary
LoadLibraryExW
LocalFree
GetConsoleOutputCP
GetConsoleCP
OutputDebugStringW
GetSystemTimeAdjustment
GetTickCount64
QueryPerformanceFrequency
QueryPerformanceCounter
GetVersionExW
TlsSetValue
HeapFree
GetCurrentThreadId

vcruntime140

memchr
memcmp
memmove
memcpy
wcschr
wcsrchr
strchr
strrchr
__C_specific_handler
__std_type_info_destroy_list
memset

api-ms-win-crt-stdio-l1-1-0

_wfopen
puts
_chsize_s
setvbuf
__stdio_common_vswprintf
getc
_lseeki64
_wopen
rewind
_commit
ungetc
_locking
_kbhit
__acrt_iob_func
fclose
ftell
feof
fgets
_get_osfhandle
__stdio_common_vfprintf
fputs
fputc
fwrite
clearerr
_isatty
_fileno
_lseek
_dup2
fread
_close
__stdio_common_vsprintf
fflush
_open
_read
_dup
_write
_setmode
ferror
_open_osfhandle

api-ms-win-crt-environment-l1-1-0

__p__wenviron
getenv
_wputenv_s
_wgetcwd
_wgetenv
_wputenv

api-ms-win-crt-locale-l1-1-0

localeconv
setlocale

api-ms-win-crt-string-l1-1-0

wcscmp
strncpy
isdigit
strcmp
wcsnlen
wcstok_s
_wcsicmp
_stricmp
wcscpy_s
isalnum
tolower
toupper
wcscat_s
wcscoll
wcsncpy_s
wcsxfrm
isxdigit
strncmp
strcspn
wcsncmp

api-ms-win-crt-runtime-l1-1-0

_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_errno
_initterm_e
_cexit
_wsystem
_set_thread_local_invalid_parameter_handler
_initterm
_getpid
strerror
_beginthreadex
_endthreadex
__sys_errlist
__sys_nerr
exit
_set_abort_behavior
signal
__fpe_flt_rounds
abort
_exit
raise

api-ms-win-crt-convert-l1-1-0

strtol
mbstowcs
wcstombs
wcstol
strtoul

api-ms-win-crt-math-l1-1-0

exp2
tanh
erfc
sqrt
cbrt
cosh
erf
pow
log10
log
atan
fmod
sin
exp
floor
ceil
atan2
cos
acosh
_fdclass
sinh
asin
atanh
expm1
nextafter
_dclass
tan
acos
log1p
copysign
ldexp
hypot
fabs
_fdopen
asinh
frexp
modf
round

api-ms-win-crt-time-l1-1-0

_localtime64_s
clock
_tzset
__timezone
_mktime64
__daylight
strftime
_gmtime64_s
_time64

api-ms-win-crt-process-l1-1-0

_cwait
_wspawnve
_wexecv
_wexecve
_wspawnv

api-ms-win-crt-heap-l1-1-0

_heapmin
free
realloc
calloc
malloc

api-ms-win-crt-conio-l1-1-0

_ungetch
_getwch
_getche
_getch
_ungetwch
_putch
_putwch
_getwche

api-ms-win-crt-filesystem-l1-1-0

_umask
_wstat64i32

Exports

Exports

PyAIter_Check
PyArg_Parse
PyArg_ParseTuple
PyArg_ParseTupleAndKeywords
PyArg_UnpackTuple
PyArg_VaParse
PyArg_VaParseTupleAndKeywords
PyArg_ValidateKeywordArguments
PyAsyncGen_New
PyAsyncGen_Type
PyBaseObject_Type
PyBool_FromLong
PyBool_Type
PyBuffer_FillContiguousStrides
PyBuffer_FillInfo
PyBuffer_FromContiguous
PyBuffer_GetPointer
PyBuffer_IsContiguous
PyBuffer_Release
PyBuffer_SizeFromFormat
PyBuffer_ToContiguous
PyByteArrayIter_Type
PyByteArray_AsString
PyByteArray_Concat
PyByteArray_FromObject
PyByteArray_FromStringAndSize
PyByteArray_Resize
PyByteArray_Size
PyByteArray_Type
PyBytesIter_Type
PyBytes_AsString
PyBytes_AsStringAndSize
PyBytes_Concat
PyBytes_ConcatAndDel
PyBytes_DecodeEscape
PyBytes_FromFormat
PyBytes_FromFormatV
PyBytes_FromObject
PyBytes_FromString
PyBytes_FromStringAndSize
PyBytes_Repr
PyBytes_Size
PyBytes_Type
PyCFunction_Call
PyCFunction_GetFlags
PyCFunction_GetFunction
PyCFunction_GetSelf
PyCFunction_New
PyCFunction_NewEx
PyCFunction_Type
PyCMethod_New
PyCMethod_Type
PyCallIter_New
PyCallIter_Type
PyCallable_Check
PyCapsule_GetContext
PyCapsule_GetDestructor
PyCapsule_GetName
PyCapsule_GetPointer
PyCapsule_Import
PyCapsule_IsValid
PyCapsule_New
PyCapsule_SetContext
PyCapsule_SetDestructor
PyCapsule_SetName
PyCapsule_SetPointer
PyCapsule_Type
PyCell_Get
PyCell_New
PyCell_Set
PyCell_Type
PyClassMethodDescr_Type
PyClassMethod_New
PyClassMethod_Type
PyCode_Addr2Line
PyCode_Addr2Location
PyCode_GetCellvars
PyCode_GetCode
PyCode_GetFreevars
PyCode_GetVarnames
PyCode_New
PyCode_NewEmpty
PyCode_NewWithPosOnlyArgs
PyCode_Optimize
PyCode_Type
PyCodec_BackslashReplaceErrors
PyCodec_Decode
PyCodec_Decoder
PyCodec_Encode
PyCodec_Encoder
PyCodec_IgnoreErrors
PyCodec_IncrementalDecoder
PyCodec_IncrementalEncoder
PyCodec_KnownEncoding
PyCodec_LookupError
PyCodec_NameReplaceErrors
PyCodec_Register
PyCodec_RegisterError
PyCodec_ReplaceErrors
PyCodec_StreamReader
PyCodec_StreamWriter
PyCodec_StrictErrors
PyCodec_Unregister
PyCodec_XMLCharRefReplaceErrors
PyCompile_OpcodeStackEffect
PyCompile_OpcodeStackEffectWithJump
PyComplex_AsCComplex
PyComplex_FromCComplex
PyComplex_FromDoubles
PyComplex_ImagAsDouble
PyComplex_RealAsDouble
PyComplex_Type
PyConfig_Clear
PyConfig_InitIsolatedConfig
PyConfig_InitPythonConfig
PyConfig_Read
PyConfig_SetArgv
PyConfig_SetBytesArgv
PyConfig_SetBytesString
PyConfig_SetString
PyConfig_SetWideStringList
PyContextToken_Type
PyContextVar_Get
PyContextVar_New
PyContextVar_Reset
PyContextVar_Set
PyContextVar_Type
PyContext_Copy
PyContext_CopyCurrent
PyContext_Enter
PyContext_Exit
PyContext_New
PyContext_Type
PyCoro_New
PyCoro_Type
PyDescr_IsData
PyDescr_NewClassMethod
PyDescr_NewGetSet
PyDescr_NewMember
PyDescr_NewMethod
PyDescr_NewWrapper
PyDictItems_Type
PyDictIterItem_Type
PyDictIterKey_Type
PyDictIterValue_Type
PyDictKeys_Type
PyDictProxy_New
PyDictProxy_Type
PyDictRevIterItem_Type
PyDictRevIterKey_Type
PyDictRevIterValue_Type
PyDictValues_Type
PyDict_Clear
PyDict_Contains
PyDict_Copy
PyDict_DelItem
PyDict_DelItemString
PyDict_GetItem
PyDict_GetItemString
PyDict_GetItemWithError
PyDict_Items
PyDict_Keys
PyDict_Merge
PyDict_MergeFromSeq2
PyDict_New
PyDict_Next
PyDict_SetDefault
PyDict_SetItem
PyDict_SetItemString
PyDict_Size
PyDict_Type
PyDict_Update
PyDict_Values
PyEllipsis_Type
PyEnum_Type
PyErr_BadArgument
PyErr_BadInternalCall
PyErr_CheckSignals
PyErr_Clear
PyErr_Display
PyErr_ExceptionMatches
PyErr_Fetch
PyErr_Format
PyErr_FormatV
PyErr_GetExcInfo
PyErr_GetHandledException
PyErr_GivenExceptionMatches
PyErr_NewException
PyErr_NewExceptionWithDoc
PyErr_NoMemory
PyErr_NormalizeException
PyErr_Occurred
PyErr_Print
PyErr_PrintEx
PyErr_ProgramText
PyErr_ProgramTextObject
PyErr_RangedSyntaxLocationObject
PyErr_ResourceWarning
PyErr_Restore
PyErr_SetExcFromWindowsErr
PyErr_SetExcFromWindowsErrWithFilename
PyErr_SetExcFromWindowsErrWithFilenameObject
PyErr_SetExcFromWindowsErrWithFilenameObjects
PyErr_SetExcInfo
PyErr_SetFromErrno
PyErr_SetFromErrnoWithFilename
PyErr_SetFromErrnoWithFilenameObject
PyErr_SetFromErrnoWithFilenameObjects
PyErr_SetFromWindowsErr
PyErr_SetFromWindowsErrWithFilename
PyErr_SetHandledException
PyErr_SetImportError
PyErr_SetImportErrorSubclass
PyErr_SetInterrupt
PyErr_SetInterruptEx
PyErr_SetNone
PyErr_SetObject
PyErr_SetString
PyErr_SyntaxLocation
PyErr_SyntaxLocationEx
PyErr_SyntaxLocationObject
PyErr_WarnEx
PyErr_WarnExplicit
PyErr_WarnExplicitFormat
PyErr_WarnExplicitObject
PyErr_WarnFormat
PyErr_WriteUnraisable
PyEval_AcquireLock
PyEval_AcquireThread
PyEval_CallFunction
PyEval_CallMethod
PyEval_CallObjectWithKeywords
PyEval_EvalCode
PyEval_EvalCodeEx
PyEval_EvalFrame
PyEval_EvalFrameEx
PyEval_GetBuiltins
PyEval_GetFrame
PyEval_GetFuncDesc
PyEval_GetFuncName
PyEval_GetGlobals
PyEval_GetLocals
PyEval_InitThreads
PyEval_MergeCompilerFlags
PyEval_ReleaseLock
PyEval_ReleaseThread
PyEval_RestoreThread
PyEval_SaveThread
PyEval_SetProfile
PyEval_SetTrace
PyEval_ThreadsInitialized
PyExc_ArithmeticError
PyExc_AssertionError
PyExc_AttributeError
PyExc_BaseException
PyExc_BaseExceptionGroup
PyExc_BlockingIOError
PyExc_BrokenPipeError
PyExc_BufferError
PyExc_BytesWarning
PyExc_ChildProcessError
PyExc_ConnectionAbortedError
PyExc_ConnectionError
PyExc_ConnectionRefusedError
PyExc_ConnectionResetError
PyExc_DeprecationWarning
PyExc_EOFError
PyExc_EncodingWarning
PyExc_EnvironmentError
PyExc_Exception
PyExc_FileExistsError
PyExc_FileNotFoundError
PyExc_FloatingPointError
PyExc_FutureWarning
PyExc_GeneratorExit
PyExc_IOError
PyExc_ImportError
PyExc_ImportWarning
PyExc_IndentationError
PyExc_IndexError
PyExc_InterruptedError
PyExc_IsADirectoryError
PyExc_KeyError
PyExc_KeyboardInterrupt
PyExc_LookupError
PyExc_MemoryError
PyExc_ModuleNotFoundError
PyExc_NameError
PyExc_NotADirectoryError
PyExc_NotImplementedError
PyExc_OSError
PyExc_OverflowError
PyExc_PendingDeprecationWarning
PyExc_PermissionError
PyExc_ProcessLookupError
PyExc_RecursionError
PyExc_ReferenceError
PyExc_ResourceWarning
PyExc_RuntimeError
PyExc_RuntimeWarning
PyExc_StopAsyncIteration
PyExc_StopIteration
PyExc_SyntaxError
PyExc_SyntaxWarning
PyExc_SystemError
PyExc_SystemExit
PyExc_TabError
PyExc_TimeoutError
PyExc_TypeError
PyExc_UnboundLocalError
PyExc_UnicodeDecodeError
PyExc_UnicodeEncodeError
PyExc_UnicodeError
PyExc_UnicodeTranslateError
PyExc_UnicodeWarning
PyExc_UserWarning
PyExc_ValueError
PyExc_Warning
PyExc_WindowsError
PyExc_ZeroDivisionError
PyExceptionClass_Name
PyException_GetCause
PyException_GetContext
PyException_GetTraceback
PyException_SetCause
PyException_SetContext
PyException_SetTraceback
PyFile_FromFd
PyFile_GetLine
PyFile_NewStdPrinter
PyFile_OpenCode
PyFile_OpenCodeObject
PyFile_SetOpenCodeHook
PyFile_WriteObject
PyFile_WriteString
PyFilter_Type
PyFloat_AsDouble
PyFloat_FromDouble
PyFloat_FromString
PyFloat_GetInfo
PyFloat_GetMax
PyFloat_GetMin
PyFloat_Pack2
PyFloat_Pack4
PyFloat_Pack8
PyFloat_Type
PyFloat_Unpack2
PyFloat_Unpack4
PyFloat_Unpack8
PyFrame_FastToLocals
PyFrame_FastToLocalsWithError
PyFrame_GetBack
PyFrame_GetBuiltins
PyFrame_GetCode
PyFrame_GetGenerator
PyFrame_GetGlobals
PyFrame_GetLasti
PyFrame_GetLineNumber
PyFrame_GetLocals
PyFrame_LocalsToFast
PyFrame_New
PyFrame_Type
PyFrozenSet_New
PyFrozenSet_Type
PyFunction_GetAnnotations
PyFunction_GetClosure
PyFunction_GetCode
PyFunction_GetDefaults
PyFunction_GetGlobals
PyFunction_GetKwDefaults
PyFunction_GetModule
PyFunction_New
PyFunction_NewWithQualName
PyFunction_SetAnnotations
PyFunction_SetClosure
PyFunction_SetDefaults
PyFunction_SetKwDefaults
PyFunction_Type
PyGC_Collect
PyGC_Disable
PyGC_Enable
PyGC_IsEnabled
PyGILState_Check
PyGILState_Ensure
PyGILState_GetThisThreadState
PyGILState_Release
PyGen_New
PyGen_NewWithQualName
PyGen_Type
PyGetSetDescr_Type
PyHash_GetFuncDef
PyImport_AddModule
PyImport_AddModuleObject
PyImport_AppendInittab
PyImport_ExecCodeModule
PyImport_ExecCodeModuleEx
PyImport_ExecCodeModuleObject
PyImport_ExecCodeModuleWithPathnames
PyImport_ExtendInittab
PyImport_FrozenModules
PyImport_GetImporter
PyImport_GetMagicNumber
PyImport_GetMagicTag
PyImport_GetModule
PyImport_GetModuleDict
PyImport_Import
PyImport_ImportFrozenModule
PyImport_ImportFrozenModuleObject
PyImport_ImportModule
PyImport_ImportModuleLevel
PyImport_ImportModuleLevelObject
PyImport_ImportModuleNoBlock
PyImport_Inittab
PyImport_ReloadModule
PyIndex_Check
PyInstanceMethod_Function
PyInstanceMethod_New
PyInstanceMethod_Type
PyInterpreterState_Clear
PyInterpreterState_Delete
PyInterpreterState_Get
PyInterpreterState_GetDict
PyInterpreterState_GetID
PyInterpreterState_Head
PyInterpreterState_Main
PyInterpreterState_New
PyInterpreterState_Next
PyInterpreterState_ThreadHead
PyIter_Check
PyIter_Next
PyIter_Send
PyListIter_Type
PyListRevIter_Type
PyList_Append
PyList_AsTuple
PyList_GetItem
PyList_GetSlice
PyList_Insert
PyList_New
PyList_Reverse
PyList_SetItem
PyList_SetSlice
PyList_Size
PyList_Sort
PyList_Type
PyLongRangeIter_Type
PyLong_AsDouble
PyLong_AsLong
PyLong_AsLongAndOverflow
PyLong_AsLongLong
PyLong_AsLongLongAndOverflow
PyLong_AsSize_t
PyLong_AsSsize_t
PyLong_AsUnsignedLong
PyLong_AsUnsignedLongLong
PyLong_AsUnsignedLongLongMask
PyLong_AsUnsignedLongMask
PyLong_AsVoidPtr
PyLong_FromDouble
PyLong_FromLong
PyLong_FromLongLong
PyLong_FromSize_t
PyLong_FromSsize_t
PyLong_FromString
PyLong_FromUnicodeObject
PyLong_FromUnsignedLong
PyLong_FromUnsignedLongLong
PyLong_FromVoidPtr
PyLong_GetInfo
PyLong_Type
PyMap_Type
PyMapping_Check
PyMapping_GetItemString
PyMapping_HasKey
PyMapping_HasKeyString
PyMapping_Items
PyMapping_Keys
PyMapping_Length
PyMapping_SetItemString
PyMapping_Size
PyMapping_Values
PyMarshal_ReadLastObjectFromFile
PyMarshal_ReadLongFromFile
PyMarshal_ReadObjectFromFile
PyMarshal_ReadObjectFromString
PyMarshal_ReadShortFromFile
PyMarshal_WriteLongToFile
PyMarshal_WriteObjectToFile
PyMarshal_WriteObjectToString
PyMem_Calloc
PyMem_Free
PyMem_GetAllocator
PyMem_Malloc
PyMem_RawCalloc
PyMem_RawFree
PyMem_RawMalloc
PyMem_RawRealloc
PyMem_Realloc
PyMem_SetAllocator
PyMem_SetupDebugHooks

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.0MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PyRuntim
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/pywin32_system32/pythoncom311.dll
.dll windows:6 windows x64 arch:x64

1b264cd576a6b6117b47db03980bc455

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\src\pywin32\build\temp.win-amd64-cpython-311\Release\pythoncom.pdb

Imports

oleaut32

VariantCopyInd
SafeArrayGetElement
SafeArrayPutElement
SysStringLen
SafeArrayCreate
VariantChangeType
LHashValOfNameSys
UnRegisterTypeLi
LoadRegTypeLi
LoadTypeLi
RegisterTypeLi
QueryPathOfRegTypeLi
RegisterActiveObject
CreateTypeLi
CreateTypeLib2
GetActiveObject
RevokeActiveObject
SafeArrayGetDim
GetRecordInfoFromTypeInfo
SafeArrayGetUBound
SafeArrayGetLBound
GetRecordInfoFromGuids
SafeArrayGetRecordInfo
SafeArrayUnaccessData
SafeArrayAccessData
VariantInit
SysAllocString
VariantClear
SetErrorInfo
CreateErrorInfo
SysFreeString
GetErrorInfo
SafeArrayDestroy

ole32

CoInitialize
RevokeDragDrop
GetRunningObjectTable
CoGetObject
CoEnableCallCancellation
ProgIDFromCLSID
MkParseDisplayName
CoRevokeClassObject
OleFlushClipboard
CreateItemMoniker
CreateFileMoniker
CoFreeUnusedLibraries
CreatePointerMoniker
CoGetInterfaceAndReleaseStream
OleGetClipboard
OleLoadFromStream
CoMarshalInterThreadInterfaceInStream
CoUnmarshalInterface
RegisterDragDrop
CoResumeClassObjects
OleInitialize
CoDisableCallCancellation
CoReleaseMarshalData
CoUninitialize
OleIsCurrentClipboard
CoRegisterClassObject
OleSetClipboard
StringFromGUID2
DoDragDrop
CoMarshalInterface
CoTaskMemFree
OleLoad
CoTreatAsClass
CoCreateFreeThreadedMarshaler
CoCreateInstance
CreateBindCtx
CoCreateGuid
CoTaskMemAlloc
GetClassFile
OleSaveToStream
StgOpenStorageOnILockBytes
StgCreateDocfile
StgOpenStorage
ReadClassStg
CreateStreamOnHGlobal
WriteClassStm
CreateILockBytesOnHGlobal
WriteClassStg
CoGetCallContext
StgCreateDocfileOnILockBytes
PropVariantClear
StgIsStorageFile
ReadClassStm
ReleaseStgMedium

user32

TranslateMessage
PeekMessageW
DispatchMessageW
PostThreadMessageW
GetMessageW
wsprintfW

python311

PyExc_NotImplementedError
PyErr_WarnEx
_Py_FalseStruct
PyExc_PendingDeprecationWarning
PyLong_AsUnsignedLongMask
PyModule_Create2
PyErr_Format
PyErr_NewException
_Py_TrueStruct
Py_FrozenFlag
PyBytes_FromString
PyMapping_HasKey
PyDict_SetItem
PyLong_FromVoidPtr
PyRun_SimpleFileExFlags
PySys_SetObject
Py_Initialize
Py_IsInitialized
PyList_Append
PySys_SetArgv
PyUnicode_FromFormat
PyObject_GenericSetAttr
PyExc_IndexError
_PyArg_Parse_SizeT
PySequence_Tuple
PyLong_FromUnsignedLong
_PyBytes_Resize
PyFloat_AsDouble
PyLong_AsUnsignedLongLong
PyFloat_FromDouble
PyFloat_Type
PyType_IsSubtype
PyObject_IsTrue
PyLong_AsUnsignedLong
PyMem_Malloc
PyLong_FromSsize_t
PyObject_SetAttrString
PyLong_FromUnsignedLongLong
PyLong_FromLongLong
PyExc_OverflowError
PyMemoryView_Type
PyLong_AsDouble
_PyLong_Sign
PyObject_HasAttrString
PyObject_Str
PyByteArray_Type
PyNumber_Float
_PyLong_NumBits
PyEval_CallObjectWithKeywords
PyCapsule_IsValid
PyCapsule_GetPointer
PyCapsule_New
PyLong_Type
PyBytes_FromStringAndSize
PyDict_GetItemString
PyErr_NoMemory
PyObject_RichCompareBool
PyList_New
PyModule_GetDict
PyUnicode_Concat
PyUnicode_FromString
_Py_NotImplementedStruct
PyType_Ready
PyUnicode_AsUTF8
PyErr_ExceptionMatches
PyBool_FromLong
PyObject_Size
PyNumber_Check
PyTuple_SetItem
PySequence_Check
PyTuple_Size
PyTuple_GetItem
PyLong_FromDouble
_Py_VaBuildValue_SizeT
PyExc_AttributeError
PyLong_AsVoidPtr
PyDict_GetItem
PyMem_Free
PyObject_IsInstance
PyUnicode_AsWideCharString
_PyArg_ParseTupleAndKeywords_SizeT
PyExc_ValueError
PyLong_AsLongLong
_PyObject_CallFunction_SizeT
PyType_Type
PySeqIter_New
PyObject_IsSubclass
_Py_NewReference
PyExc_StopIteration
PyTuple_New
PyErr_SetNone
PyObject_GenericGetAttr
PySequence_GetItem
PySequence_Size
PyEval_RestoreThread
PyObject_Call
PyErr_Print
PyExc_TypeError
PyNumber_Long
PyGILState_Ensure
PyFile_WriteObject
PyDict_New
PyErr_Clear
_PyObject_CallMethod_SizeT
PyObject_GetAttrString
PyLong_AsLong
PyErr_Fetch
_PyArg_ParseTuple_SizeT
PyErr_SetString
PyDict_SetItemString
_Py_NoneStruct
PyGILState_Release
PySys_GetObject
PyExc_MemoryError
PyLong_FromLong
PyExc_RuntimeError
PyEval_SaveThread
PyErr_Occurred
PyErr_NormalizeException
PyImport_ImportModule
_Py_BuildValue_SizeT
PyErr_GivenExceptionMatches
PyErr_SetObject
PyObject_Repr
_Py_Dealloc
PyLong_AsSsize_t
PyErr_Restore

pywintypes311

?PyWinObject_AsDATE@@YAHPEAU_object@@PEAN@Z
?PyBuffer_New@@YAPEAU_object@@_J@Z
??0PyWinBufferView@@QEAA@XZ
?init@PyWinBufferView@@QEAA_NPEAU_object@@_N1@Z
?PyWinObject_AsLARGE_INTEGER@@YAHPEAU_object@@PEAT_LARGE_INTEGER@@@Z
?PyWinObject_FromDATE@@YAPEAU_object@@N@Z
?PyWinObject_FreeWCHARArray@@YAXPEAPEA_WK@Z
?PyWinObject_AsWCHARArray@@YAHPEAU_object@@PEAPEAPEA_WPEAKH@Z
?PyWinObject_FromLARGE_INTEGER@@YAPEAU_object@@AEBT_LARGE_INTEGER@@@Z
?PyWinObject_AsDWORDArray@@YAHPEAU_object@@PEAPEAKPEAKH@Z
?PyWinLong_FromHANDLE@@YAPEAU_object@@PEAX@Z
?PyWinObject_FreeTaskAllocatedWCHAR@@YAXPEA_W@Z
?PyWinObject_AsTaskAllocatedWCHAR@@YAHPEAU_object@@PEAPEA_WH@Z
?PyWin_ReleaseGlobalLock@@YAXXZ
?PyWin_AcquireGlobalLock@@YAXXZ
?PyWinCoreString_FromString@@YAPEAU_object@@PEBD_J@Z
?PyWinLong_AsVoidPtr@@YAHPEAU_object@@PEAPEAX@Z
?FreeAbsoluteSD@@YAXPEAX@Z
?PyWin_SetAPIError@@YAPEAU_object@@PEADJ@Z
?PyWinSequence_Tuple@@YAPEAU_object@@PEAU1@PEAK@Z
?_MakeAbsoluteSD@@YAHPEAXPEAPEAX@Z
?PyWinGlobals_Ensure@@YAHXZ
?PyWinMethod_NewIID@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewTime@@YAPEAU_object@@PEAU1@0@Z
?PyWinObject_AsSECURITY_DESCRIPTOR@@YAHPEAU_object@@PEAPEAXH@Z
?PyWinObject_AsHANDLE@@YAHPEAU_object@@PEAPEAX@Z
?PyWinObject_FromIID@@YAPEAU_object@@AEBU_GUID@@@Z
??1PyWinBufferView@@QEAA@XZ
?ok@PyWinBufferView@@QEAA_NXZ
?ptr@PyWinBufferView@@QEAAPEAXXZ
?len@PyWinBufferView@@QEAAKXZ
?PyWinObject_FreeWCHAR@@YAXPEA_W@Z
?PyWinObject_AsWCHAR@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
??BPyWin_AutoFreeBstr@@QEAAPEA_WXZ
?PyWinObject_FreeBstr@@YAXPEA_W@Z
??0PyWin_AutoFreeBstr@@QEAA@PEA_W@Z
??1PyWin_AutoFreeBstr@@QEAA@XZ
?SetBstr@PyWin_AutoFreeBstr@@QEAAXPEA_W@Z
?PyWinCoreString_FromString@@YAPEAU_object@@PEB_W_J@Z
?PyWinObject_FromULARGE_INTEGER@@YAPEAU_object@@AEBT_ULARGE_INTEGER@@@Z
?PyWinTime_Check@@YAHPEAU_object@@@Z
?PyWinObject_AsULARGE_INTEGER@@YAHPEAU_object@@PEAT_ULARGE_INTEGER@@@Z
?PyWinObject_AsFILETIME@@YAHPEAU_object@@PEAU_FILETIME@@@Z
?PyWinObject_AsIID@@YAHPEAU_object@@PEAU_GUID@@@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W_J@Z
?PyWinObject_FromFILETIME@@YAPEAU_object@@AEBU_FILETIME@@@Z
?PyWinObject_FromBstr@@YAPEAU_object@@QEA_WH@Z
?PyWinExc_COMError@@3PEAU_object@@EA
?GetPythonTraceback@@YAPEA_WPEAU_object@@00@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W@Z
?PyWin_GetErrorMessageModule@@YAPEAUHINSTANCE__@@K@Z
?PyWinObject_AsBstr@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
??0PyWinBufferView@@QEAA@PEAU_object@@_N1@Z

kernel32

FormatMessageW
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
VirtualAlloc
VirtualFree
VirtualProtect
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
DisableThreadLibraryCalls
GetCurrentThreadId
LoadLibraryW
GetModuleHandleW
GetProcAddress
OutputDebugStringW

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__current_exception
__C_specific_handler
__current_exception_context
__std_terminate
__std_exception_copy
__std_exception_destroy
memcpy
_CxxThrowException
memset
__std_type_info_destroy_list
_purecall

api-ms-win-crt-stdio-l1-1-0

fopen
__stdio_common_vswprintf
__acrt_iob_func
__stdio_common_vsprintf
fclose
__stdio_common_vfprintf
__stdio_common_vfwprintf

api-ms-win-crt-string-l1-1-0

wcsncpy
strcmp

api-ms-win-crt-heap-l1-1-0

malloc
_callnewh
free

api-ms-win-crt-utility-l1-1-0

qsort

api-ms-win-crt-runtime-l1-1-0

_initterm
_crt_at_quick_exit
_initterm_e
terminate
__p___wargv
_configure_narrow_argv
_seh_filter_dll
_cexit
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_atexit

Exports

Exports

??0CPyFactory@@QEAA@AEBU_GUID@@@Z
??0CPyFactory@@QEAA@AEBV0@@Z
??0PyComEnumProviderTypeObject@@QEAA@PEBDPEAVPyComTypeObject@@_JPEAUPyMethodDef@@P6APEAVPyIUnknown@@PEAUIUnknown@@@Z0@Z
??0PyComEnumTypeObject@@QEAA@PEBDPEAVPyComTypeObject@@_JPEAUPyMethodDef@@P6APEAVPyIUnknown@@PEAUIUnknown@@@Z@Z
??0PyComTypeObject@@QEAA@PEBDPEAV0@_JPEAUPyMethodDef@@P6APEAVPyIUnknown@@PEAUIUnknown@@@Z@Z
??0PyGOleWindow@@IEAA@PEAU_object@@@Z
??0PyGOleWindow@@QEAA@$$QEAV0@@Z
??0PyGOleWindow@@QEAA@AEBV0@@Z
??0PyGPersist@@IEAA@PEAU_object@@@Z
??0PyGPersist@@QEAA@$$QEAV0@@Z
??0PyGPersist@@QEAA@AEBV0@@Z
??0PyGatewayBase@@IEAA@PEAU_object@@@Z
??0PyGatewayBase@@QEAA@AEBV0@@Z
??0PyIBase@@IEAA@XZ
??0PyIBase@@QEAA@AEBV0@@Z
??0PyIBindCtx@@IEAA@PEAUIUnknown@@@Z
??0PyIBindCtx@@QEAA@AEBV0@@Z
??0PyIClassFactory@@IEAA@PEAUIUnknown@@@Z
??0PyIClassFactory@@QEAA@AEBV0@@Z
??0PyIConnectionPoint@@IEAA@PEAUIUnknown@@@Z
??0PyIConnectionPoint@@QEAA@AEBV0@@Z
??0PyIConnectionPointContainer@@IEAA@PEAUIUnknown@@@Z
??0PyIConnectionPointContainer@@QEAA@AEBV0@@Z
??0PyIDispatch@@IEAA@PEAUIUnknown@@@Z
??0PyIDispatch@@QEAA@AEBV0@@Z
??0PyIDispatchEx@@IEAA@PEAUIUnknown@@@Z
??0PyIDispatchEx@@QEAA@AEBV0@@Z
??0PyIEnumMoniker@@IEAA@PEAUIUnknown@@@Z
??0PyIEnumMoniker@@QEAA@AEBV0@@Z
??0PyIEnumVARIANT@@IEAA@PEAUIUnknown@@@Z
??0PyIEnumVARIANT@@QEAA@AEBV0@@Z
??0PyIMoniker@@IEAA@PEAUIUnknown@@@Z
??0PyIMoniker@@QEAA@AEBV0@@Z
??0PyIOleWindow@@IEAA@PEAUIUnknown@@@Z
??0PyIOleWindow@@QEAA@AEBV0@@Z
??0PyIPersist@@IEAA@PEAUIUnknown@@@Z
??0PyIPersist@@QEAA@AEBV0@@Z
??0PyIPersistStream@@IEAA@PEAUIUnknown@@@Z
??0PyIPersistStream@@QEAA@AEBV0@@Z
??0PyIPersistStreamInit@@IEAA@PEAUIUnknown@@@Z
??0PyIPersistStreamInit@@QEAA@AEBV0@@Z
??0PyIProvideClassInfo2@@IEAA@PEAUIUnknown@@@Z
??0PyIProvideClassInfo2@@QEAA@AEBV0@@Z
??0PyIProvideClassInfo@@IEAA@PEAUIUnknown@@@Z
??0PyIProvideClassInfo@@QEAA@AEBV0@@Z
??0PyIServiceProvider@@IEAA@PEAUIUnknown@@@Z
??0PyIServiceProvider@@QEAA@AEBV0@@Z
??0PyIStream@@IEAA@PEAUIUnknown@@@Z
??0PyIStream@@QEAA@AEBV0@@Z
??0PyITypeComp@@IEAA@PEAUIUnknown@@@Z
??0PyITypeComp@@QEAA@AEBV0@@Z
??0PyITypeInfo@@IEAA@PEAUIUnknown@@@Z
??0PyITypeInfo@@QEAA@AEBV0@@Z
??0PyITypeLib@@IEAA@PEAUIUnknown@@@Z
??0PyITypeLib@@QEAA@AEBV0@@Z
??0PyIUnknown@@IEAA@PEAUIUnknown@@@Z
??0PyIUnknown@@QEAA@AEBV0@@Z
??0PyOleArgNotFound@@QEAA@XZ
??0PyOleEmpty@@QEAA@XZ
??0PyOleMissing@@QEAA@XZ
??0PyOleNothing@@QEAA@XZ
??0PySTGMEDIUM@@QEAA@PEAUtagSTGMEDIUM@@@Z
??0PythonOleArgHelper@@QEAA@XZ
??1CPyFactory@@QEAA@XZ
??1PyComEnumProviderTypeObject@@QEAA@XZ
??1PyComEnumTypeObject@@QEAA@XZ
??1PyComTypeObject@@QEAA@XZ
??1PyGOleWindow@@UEAA@XZ
??1PyGPersist@@UEAA@XZ
??1PyGatewayBase@@MEAA@XZ
??1PyIBase@@MEAA@XZ
??1PyIBindCtx@@MEAA@XZ
??1PyIClassFactory@@MEAA@XZ
??1PyIConnectionPoint@@MEAA@XZ
??1PyIConnectionPointContainer@@MEAA@XZ
??1PyIDispatch@@MEAA@XZ
??1PyIDispatchEx@@MEAA@XZ
??1PyIEnumMoniker@@MEAA@XZ
??1PyIEnumVARIANT@@MEAA@XZ
??1PyIMoniker@@MEAA@XZ
??1PyIOleWindow@@MEAA@XZ
??1PyIPersist@@MEAA@XZ
??1PyIPersistStream@@MEAA@XZ
??1PyIPersistStreamInit@@MEAA@XZ
??1PyIProvideClassInfo2@@MEAA@XZ
??1PyIProvideClassInfo@@MEAA@XZ
??1PyIServiceProvider@@MEAA@XZ
??1PyIStream@@MEAA@XZ
??1PyITypeComp@@MEAA@XZ
??1PyITypeInfo@@MEAA@XZ
??1PyITypeLib@@MEAA@XZ
??1PyIUnknown@@MEAA@XZ
??1PySTGMEDIUM@@QEAA@XZ
??1PythonOleArgHelper@@QEAA@XZ
??4CPyFactory@@QEAAAEAV0@AEBV0@@Z
??4PyComEnumProviderTypeObject@@QEAAAEAV0@$$QEAV0@@Z
??4PyComEnumProviderTypeObject@@QEAAAEAV0@AEBV0@@Z
??4PyComEnumTypeObject@@QEAAAEAV0@$$QEAV0@@Z
??4PyComEnumTypeObject@@QEAAAEAV0@AEBV0@@Z
??4PyComTypeObject@@QEAAAEAV0@AEBV0@@Z
??4PyGOleWindow@@QEAAAEAV0@$$QEAV0@@Z
??4PyGOleWindow@@QEAAAEAV0@AEBV0@@Z
??4PyGPersist@@QEAAAEAV0@$$QEAV0@@Z
??4PyGPersist@@QEAAAEAV0@AEBV0@@Z
??4PyGatewayBase@@QEAAAEAV0@AEBV0@@Z
??4PyIBase@@QEAAAEAV0@AEBV0@@Z
??4PyIBindCtx@@QEAAAEAV0@AEBV0@@Z
??4PyIClassFactory@@QEAAAEAV0@AEBV0@@Z
??4PyIConnectionPoint@@QEAAAEAV0@AEBV0@@Z
??4PyIConnectionPointContainer@@QEAAAEAV0@AEBV0@@Z
??4PyIDispatch@@QEAAAEAV0@AEBV0@@Z
??4PyIDispatchEx@@QEAAAEAV0@AEBV0@@Z
??4PyIEnumMoniker@@QEAAAEAV0@AEBV0@@Z
??4PyIEnumVARIANT@@QEAAAEAV0@AEBV0@@Z
??4PyIMoniker@@QEAAAEAV0@AEBV0@@Z
??4PyIOleWindow@@QEAAAEAV0@AEBV0@@Z
??4PyIPersist@@QEAAAEAV0@AEBV0@@Z
??4PyIPersistStream@@QEAAAEAV0@AEBV0@@Z
??4PyIPersistStreamInit@@QEAAAEAV0@AEBV0@@Z
??4PyIProvideClassInfo2@@QEAAAEAV0@AEBV0@@Z
??4PyIProvideClassInfo@@QEAAAEAV0@AEBV0@@Z
??4PyIServiceProvider@@QEAAAEAV0@AEBV0@@Z
??4PyIStream@@QEAAAEAV0@AEBV0@@Z
??4PyITypeComp@@QEAAAEAV0@AEBV0@@Z
??4PyITypeInfo@@QEAAAEAV0@AEBV0@@Z
??4PyITypeLib@@QEAAAEAV0@AEBV0@@Z
??4PyIUnknown@@QEAAAEAV0@AEBV0@@Z
??4PyOleArgNotFound@@QEAAAEAV0@$$QEAV0@@Z
??4PyOleArgNotFound@@QEAAAEAV0@AEBV0@@Z
??4PyOleEmpty@@QEAAAEAV0@$$QEAV0@@Z
??4PyOleEmpty@@QEAAAEAV0@AEBV0@@Z
??4PyOleMissing@@QEAAAEAV0@$$QEAV0@@Z
??4PyOleMissing@@QEAAAEAV0@AEBV0@@Z
??4PyOleNothing@@QEAAAEAV0@$$QEAV0@@Z
??4PyOleNothing@@QEAAAEAV0@AEBV0@@Z
??4PySTGMEDIUM@@QEAAAEAV0@AEBV0@@Z
??4PythonOleArgHelper@@QEAAAEAV0@AEBV0@@Z
??_7CPyFactory@@6B@
??_7PyGOleWindow@@6B@
??_7PyGOleWindow@@6BIDispatchEx@@@
??_7PyGOleWindow@@6BIInternalUnwrapPythonObject@@@
??_7PyGOleWindow@@6BISupportErrorInfo@@@
??_7PyGPersist@@6B@
??_7PyGPersist@@6BIDispatchEx@@@
??_7PyGPersist@@6BIInternalUnwrapPythonObject@@@
??_7PyGPersist@@6BISupportErrorInfo@@@
??_7PyGatewayBase@@6BIDispatchEx@@@
??_7PyGatewayBase@@6BIInternalUnwrapPythonObject@@@
??_7PyGatewayBase@@6BISupportErrorInfo@@@
??_7PyIBase@@6B@
??_7PyIBindCtx@@6B@
??_7PyIClassFactory@@6B@
??_7PyIConnectionPoint@@6B@
??_7PyIConnectionPointContainer@@6B@
??_7PyIDispatch@@6B@
??_7PyIDispatchEx@@6B@
??_7PyIEnumMoniker@@6B@
??_7PyIEnumVARIANT@@6B@
??_7PyIMoniker@@6B@
??_7PyIOleWindow@@6B@
??_7PyIPersist@@6B@
??_7PyIPersistStream@@6B@
??_7PyIPersistStreamInit@@6B@
??_7PyIProvideClassInfo2@@6B@
??_7PyIProvideClassInfo@@6B@
??_7PyIServiceProvider@@6B@
??_7PyIStream@@6B@
??_7PyITypeComp@@6B@
??_7PyITypeInfo@@6B@
??_7PyITypeLib@@6B@
??_7PyIUnknown@@6B@
??_FPySTGMEDIUM@@QEAAXXZ
?AddRef@CPyFactory@@UEAAKXZ
?AddRef@PyGOleWindow@@MEAAKXZ
?AddRef@PyGPersist@@MEAAKXZ
?AddRef@PyGatewayBase@@UEAAKXZ
?Advise@PyIConnectionPoint@@SAPEAU_object@@PEAU2@0@Z
?Bind@PyITypeComp@@QEAAPEAU_object@@PEA_WG@Z
?BindToObject@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?BindToStorage@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?BindType@PyITypeComp@@QEAAPEAU_object@@PEA_W@Z
?Clone@PyIEnumMoniker@@SAPEAU_object@@PEAU2@0@Z
?Clone@PyIEnumVARIANT@@SAPEAU_object@@PEAU2@0@Z
?Clone@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?Close@PySTGMEDIUM@@QEAAXXZ
?Commit@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?ComposeWith@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?ContextSensitiveHelp@PyGOleWindow@@MEAAJH@Z
?ContextSensitiveHelp@PyIOleWindow@@SAPEAU_object@@PEAU2@0@Z
?CopyTo@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?CopyTo@PySTGMEDIUM@@QEAAHPEAUtagSTGMEDIUM@@@Z
?CreateInstance@CPyFactory@@UEAAJPEAUIUnknown@@AEBU_GUID@@PEAPEAX@Z
?CreateInstance@PyIClassFactory@@SAPEAU_object@@PEAU2@0@Z
?CreateNewPythonInstance@CPyFactory@@IEAAJAEBU_GUID@@0PEAPEAU_object@@@Z
?DeleteMemberByDispID@PyGatewayBase@@UEAAJJ@Z
?DeleteMemberByDispID@PyIDispatchEx@@SAPEAU_object@@PEAU2@0@Z
?DeleteMemberByName@PyGatewayBase@@UEAAJPEA_WK@Z
?DeleteMemberByName@PyIDispatchEx@@SAPEAU_object@@PEAU2@0@Z
?DropOwnership@PySTGMEDIUM@@QEAAXXZ
?Enum@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?EnumConnectionPoints@PyIConnectionPointContainer@@SAPEAU_object@@PEAU2@0@Z
?EnumConnections@PyIConnectionPoint@@SAPEAU_object@@PEAU2@0@Z
?EnumObjectParam@PyIBindCtx@@SAPEAU_object@@PEAU2@0@Z
?FindConnectionPoint@PyIConnectionPointContainer@@SAPEAU_object@@PEAU2@0@Z
?GetBindOptions@PyIBindCtx@@SAPEAU_object@@PEAU2@0@Z
?GetClassID@PyGPersist@@MEAAJPEAU_GUID@@@Z
?GetClassID@PyIPersist@@SAPEAU_object@@PEAU2@0@Z
?GetClassInfoW@PyIProvideClassInfo@@SAPEAU_object@@PEAU2@0@Z
?GetConnectionInterface@PyIConnectionPoint@@SAPEAU_object@@PEAU2@0@Z
?GetConnectionPointContainer@PyIConnectionPoint@@SAPEAU_object@@PEAU2@0@Z
?GetContainingTypeLib@PyITypeInfo@@QEAAPEAU_object@@XZ
?GetDispID@PyGatewayBase@@UEAAJPEA_WKPEAJ@Z
?GetDispID@PyIDispatchEx@@SAPEAU_object@@PEAU2@0@Z
?GetDisplayName@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?GetDocumentation@PyITypeInfo@@QEAAPEAU_object@@J@Z
?GetDocumentation@PyITypeLib@@QEAAPEAU_object@@H@Z
?GetFuncDesc@PyITypeInfo@@QEAAPEAU_object@@H@Z
?GetGUID@PyIProvideClassInfo2@@SAPEAU_object@@PEAU2@0@Z
?GetI@PyIBindCtx@@SAPEAUIBindCtx@@PEAU_object@@@Z
?GetI@PyIClassFactory@@SAPEAUIClassFactory@@PEAU_object@@@Z
?GetI@PyIConnectionPoint@@SAPEAUIConnectionPoint@@PEAU_object@@@Z
?GetI@PyIConnectionPointContainer@@SAPEAUIConnectionPointContainer@@PEAU_object@@@Z
?GetI@PyIDispatch@@SAPEAUIDispatch@@PEAU_object@@@Z
?GetI@PyIDispatchEx@@SAPEAUIDispatchEx@@PEAU_object@@@Z
?GetI@PyIEnumMoniker@@SAPEAUIEnumMoniker@@PEAU_object@@@Z
?GetI@PyIEnumVARIANT@@SAPEAUIEnumVARIANT@@PEAU_object@@@Z
?GetI@PyIMoniker@@SAPEAUIMoniker@@PEAU_object@@@Z
?GetI@PyIOleWindow@@SAPEAUIOleWindow@@PEAU_object@@@Z
?GetI@PyIPersist@@SAPEAUIPersist@@PEAU_object@@@Z
?GetI@PyIPersistStream@@SAPEAUIPersistStream@@PEAU_object@@@Z
?GetI@PyIPersistStreamInit@@SAPEAUIPersistStreamInit@@PEAU_object@@@Z
?GetI@PyIProvideClassInfo2@@SAPEAUIProvideClassInfo2@@PEAU_object@@@Z
?GetI@PyIProvideClassInfo@@SAPEAUIProvideClassInfo@@PEAU_object@@@Z
?GetI@PyIServiceProvider@@SAPEAUIServiceProvider@@PEAU_object@@@Z
?GetI@PyIStream@@SAPEAUIStream@@PEAU_object@@@Z
?GetI@PyITypeComp@@SAPEAUITypeComp@@PEAU_object@@@Z
?GetI@PyITypeInfo@@SAPEAUITypeInfo@@PEAU_object@@@Z
?GetI@PyITypeLib@@SAPEAUITypeLib@@PEAU_object@@@Z
?GetI@PyIUnknown@@SAPEAUIUnknown@@PEAU_object@@@Z
?GetIDsOfNames@PyGatewayBase@@UEAAJAEBU_GUID@@PEAPEA_WIKPEAJ@Z
?GetIDsOfNames@PyIDispatch@@SAPEAU_object@@PEAU2@0@Z
?GetIID@PyGOleWindow@@MEAA?AU_GUID@@XZ
?GetIID@PyGPersist@@MEAA?AU_GUID@@XZ
?GetIID@PyGatewayBase@@UEAA?AU_GUID@@XZ
?GetImplTypeFlags@PyITypeInfo@@QEAAPEAU_object@@H@Z
?GetLibAttr@PyITypeLib@@QEAAPEAU_object@@XZ
?GetMemberName@PyGatewayBase@@UEAAJJPEAPEA_W@Z
?GetMemberName@PyIDispatchEx@@SAPEAU_object@@PEAU2@0@Z
?GetMemberProperties@PyGatewayBase@@UEAAJJKPEAK@Z
?GetMemberProperties@PyIDispatchEx@@SAPEAU_object@@PEAU2@0@Z
?GetNameSpaceParent@PyGatewayBase@@UEAAJPEAPEAUIUnknown@@@Z
?GetNames@PyITypeInfo@@QEAAPEAU_object@@J@Z
?GetNextDispID@PyGatewayBase@@UEAAJKJPEAJ@Z
?GetNextDispID@PyIDispatchEx@@SAPEAU_object@@PEAU2@0@Z
?GetObjectParam@PyIBindCtx@@SAPEAU_object@@PEAU2@0@Z
?GetRefTypeInfo@PyITypeInfo@@QEAAPEAU_object@@K@Z
?GetRefTypeOfImplType@PyITypeInfo@@QEAAPEAU_object@@H@Z
?GetRunningObjectTable@PyIBindCtx@@SAPEAU_object@@PEAU2@0@Z
?GetSizeMax@PyIPersistStream@@SAPEAU_object@@PEAU2@0@Z
?GetTypeAttr@PyITypeInfo@@QEAAPEAU_object@@XZ
?GetTypeComp@PyITypeInfo@@QEAAPEAU_object@@XZ
?GetTypeComp@PyITypeLib@@QEAAPEAU_object@@XZ
?GetTypeInfo@PyGatewayBase@@UEAAJIKPEAPEAUITypeInfo@@@Z
?GetTypeInfo@PyIDispatch@@SAPEAU_object@@PEAU2@0@Z
?GetTypeInfo@PyITypeLib@@QEAAPEAU_object@@H@Z
?GetTypeInfoCount@PyGatewayBase@@UEAAJPEAI@Z
?GetTypeInfoCount@PyIDispatch@@SAPEAU_object@@PEAU2@0@Z
?GetTypeInfoCount@PyITypeLib@@QEAAPEAU_object@@XZ
?GetTypeInfoOfGuid@PyITypeLib@@QEAAPEAU_object@@AEBU_GUID@@@Z
?GetTypeInfoType@PyITypeLib@@QEAAPEAU_object@@H@Z
?GetVarDesc@PyITypeInfo@@QEAAPEAU_object@@H@Z
?GetWindow@PyGOleWindow@@MEAAJPEAPEAUHWND__@@@Z
?GetWindow@PyIOleWindow@@SAPEAU_object@@PEAU2@0@Z
?Hash@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?InitNew@PyIPersistStreamInit@@SAPEAU_object@@PEAU2@0@Z
?InterfaceSupportsErrorInfo@PyGatewayBase@@UEAAJAEBU_GUID@@@Z
?Invoke@PyGatewayBase@@UEAAJJAEBU_GUID@@KGPEAUtagDISPPARAMS@@PEAUtagVARIANT@@PEAUtagEXCEPINFO@@PEAI@Z
?Invoke@PyIDispatch@@SAPEAU_object@@PEAU2@0@Z
?InvokeEx@PyGatewayBase@@UEAAJJKGPEAUtagDISPPARAMS@@PEAUtagVARIANT@@PEAUtagEXCEPINFO@@PEAUIServiceProvider@@@Z
?InvokeEx@PyIDispatchEx@@SAPEAU_object@@PEAU2@0@Z
?InvokeTypes@PyIDispatch@@SAPEAU_object@@PEAU2@0@Z
?InvokeViaPolicy@PyGatewayBase@@MEAAJPEBDPEAPEAU_object@@0ZZ
?IsDirty@PyIPersistStream@@SAPEAU_object@@PEAU2@0@Z
?IsEqual@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?IsSystemMoniker@PyIMoniker@@SAPEAU_object@@PEAU2@0@Z
?Load@PyIPersistStream@@SAPEAU_object@@PEAU2@0@Z
?LockRegion@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?LockServer@CPyFactory@@UEAAJH@Z
?LockServer@PyIClassFactory@@SAPEAU_object@@PEAU2@0@Z
?MakeBstrToObj@@YAPEAU_object@@QEA_W@Z
?MakeOLECHARToObj@@YAPEAU_object@@PEB_W@Z
?MakeOLECHARToObj@@YAPEAU_object@@PEB_WH@Z
?MakeObjToVariant@PythonOleArgHelper@@QEAAHPEAU_object@@PEAUtagVARIANT@@0@Z
?MakePythonArgumentTuples@@YAHPEAPEAU_object@@PEAPEAVPythonOleArgHelper@@01PEAUtagDISPPARAMS@@@Z
?MakeVariantToObj@PythonOleArgHelper@@QEAAPEAU_object@@PEAUtagVARIANT@@@Z
?Next@PyIEnumMoniker@@SAPEAU_object@@PEAU2@0@Z
?Next@PyIEnumVARIANT@@SAPEAU_object@@PEAU2@0@Z
?ParseTypeInformation@PythonOleArgHelper@@QEAAHPEAU_object@@@Z
?PyCom_BstrFromPyObject@@YAHPEAU_object@@PEAPEA_WH@Z
?PyCom_BuildInternalPyException@@YAPEAU_object@@PEAD@Z
?PyCom_BuildPyException@@YAPEAU_object@@JPEAUIUnknown@@AEBU_GUID@@@Z
?PyCom_BuildPyExceptionFromEXCEPINFO@@YAPEAU_object@@JPEAUtagEXCEPINFO@@I@Z
?PyCom_CheckIEnumNextResult@@YAJJAEBU_GUID@@@Z
?PyCom_DLLAddRef@@YAXXZ
?PyCom_DLLReleaseRef@@YAXXZ
?PyCom_EnableQuitMessage@@YAXK@Z
?PyCom_ExcepInfoFromPyException@@YAXPEAUtagEXCEPINFO@@@Z
?PyCom_ExcepInfoFromPyObject@@YAHPEAU_object@@PEAUtagEXCEPINFO@@PEAJ@Z
?PyCom_HandleIEnumNoSequence@@YAJAEBU_GUID@@@Z
?PyCom_InterfaceFromPyInstanceOrObject@@YAHPEAU_object@@AEBU_GUID@@PEAPEAXH@Z
?PyCom_IsGatewayRegistered@@YAHAEBU_GUID@@@Z
?PyCom_LogF@@YAXPEB_WZZ
?PyCom_LoggerException@@YAXPEAU_object@@PEB_WZZ
?PyCom_LoggerNonServerException@@YAXPEAU_object@@PEB_WZZ
?PyCom_LoggerWarning@@YAXPEAU_object@@PEB_WZZ
?PyCom_PyObjectAsSTATPROPSETSTG@@YAHPEAU_object@@PEAUtagSTATPROPSETSTG@@@Z
?PyCom_PyObjectAsSTATSTG@@YAHPEAU_object@@PEAUtagSTATSTG@@K@Z
?PyCom_PyObjectAsSTGOPTIONS@@YAHPEAU_object@@PEAPEAUtagSTGOPTIONS@@PEAVTmpWCHAR@@@Z
?PyCom_PyObjectFromExcepInfo@@YAPEAU_object@@PEBUtagEXCEPINFO@@@Z
?PyCom_PyObjectFromSAFEARRAY@@YAPEAU_object@@PEAUtagSAFEARRAY@@W4VARENUM@@@Z
?PyCom_PyObjectFromSTATPROPSETSTG@@YAPEAU_object@@PEAUtagSTATPROPSETSTG@@@Z
?PyCom_PyObjectFromSTATSTG@@YAPEAU_object@@PEAUtagSTATSTG@@@Z
?PyCom_RegisterClientType@@YAHPEAU_typeobject@@PEBU_GUID@@@Z
?PyCom_RegisterExtensionSupport@@YAHPEAU_object@@PEBUPyCom_InterfaceSupportInfo@@H@Z
?PyCom_RegisterGatewayObject@@YAJAEBU_GUID@@P6AJPEAU_object@@PEAVPyGatewayBase@@PEAPEAX0@ZPEBD@Z
?PyCom_SAFEARRAYFromPyObject@@YAHPEAU_object@@PEAPEAUtagSAFEARRAY@@W4VARENUM@@@Z
?PyCom_SetAndLogCOMErrorFromPyException@@YAJPEBDAEBU_GUID@@@Z
?PyCom_SetAndLogCOMErrorFromPyExceptionEx@@YAJPEAU_object@@PEBDAEBU_GUID@@@Z
?PyCom_SetCOMErrorFromPyException@@YAJAEBU_GUID@@@Z
?PyCom_SetCOMErrorFromSimple@@YAJJAEBU_GUID@@PEB_W@Z
?PyGatewayConstruct@PyGOleWindow@@SAJPEAU_object@@PEAVPyGatewayBase@@PEAPEAXAEBU_GUID@@@Z
?PyGatewayConstruct@PyGPersist@@SAJPEAU_object@@PEAVPyGatewayBase@@PEAPEAXAEBU_GUID@@@Z
?PyGatewayConstruct@PyGatewayBase@@SAJPEAU_object@@PEAV1@PEAPEAXAEBU_GUID@@@Z
?PyObConstruct@PyIBindCtx@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIClassFactory@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIConnectionPoint@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIConnectionPointContainer@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIDispatch@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIDispatchEx@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIEnumMoniker@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIEnumVARIANT@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIMoniker@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIOleWindow@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIPersist@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIPersistStream@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIPersistStreamInit@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIProvideClassInfo2@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIProvideClassInfo@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIServiceProvider@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIStream@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyITypeComp@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyITypeInfo@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyITypeLib@@SAPEAVPyIUnknown@@PEAUIUnknown@@@Z
?PyObConstruct@PyIUnknown@@SAPEAV1@PEAUIUnknown@@@Z
?PyObject_AsCurrency@@YAHPEAU_object@@PEATtagCY@@@Z
?PyObject_AsOLEMENUGROUPWIDTHS@@YAHPEAU_object@@PEAUtagOleMenuGroupWidths@@@Z
?PyObject_AsPROPVARIANT@@YAHPEAU_object@@PEAUtagPROPVARIANT@@@Z
?PyObject_FromCurrency@@YAPEAU_object@@AEATtagCY@@@Z
?PyObject_FromOLEMENUGROUPWIDTHS@@YAPEAU_object@@PEBUtagOleMenuGroupWidths@@@Z
?PyObject_FromPROPVARIANT@@YAPEAU_object@@PEAUtagPROPVARIANT@@@Z
?PyObject_FromPROPVARIANTs@@YAPEAU_object@@PEAUtagPROPVARIANT@@K@Z
?PyObject_FromSTGMEDIUM@@YAPEAVPySTGMEDIUM@@PEAUtagSTGMEDIUM@@@Z
?PyOleArgNotFoundType@@3U_typeobject@@A
?PyOleEmptyType@@3U_typeobject@@A
?PyOleMissingType@@3U_typeobject@@A
?PyOleNothingType@@3U_typeobject@@A
?QueryInterface@CPyFactory@@UEAAJAEBU_GUID@@PEAPEAX@Z
?QueryInterface@PyGOleWindow@@MEAAJAEBU_GUID@@PEAPEAX@Z
?QueryInterface@PyGPersist@@MEAAJAEBU_GUID@@PEAPEAX@Z
?QueryInterface@PyGatewayBase@@UEAAJAEBU_GUID@@PEAPEAX@Z
?QueryInterface@PyIUnknown@@SAPEAU_object@@PEAU2@0@Z
?QueryService@PyIServiceProvider@@SAPEAU_object@@PEAU2@0@Z
?Read@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?RegisterObjectParam@PyIBindCtx@@SAPEAU_object@@PEAU2@0@Z
?Release@CPyFactory@@UEAAKXZ
?Release@PyGOleWindow@@MEAAKXZ
?Release@PyGPersist@@MEAAKXZ
?Release@PyGatewayBase@@UEAAKXZ
?Reset@PyIEnumMoniker@@SAPEAU_object@@PEAU2@0@Z
?Reset@PyIEnumVARIANT@@SAPEAU_object@@PEAU2@0@Z
?Revert@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?RevokeObjectParam@PyIBindCtx@@SAPEAU_object@@PEAU2@0@Z
?SafeRelease@PyIUnknown@@SAXPEAV1@@Z
?Save@PyIPersistStream@@SAPEAU_object@@PEAU2@0@Z
?Seek@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?SetBindOptions@PyIBindCtx@@SAPEAU_object@@PEAU2@0@Z
?SetPythonCOMError@PyIConnectionPoint@@SAPEAU_object@@PEAU2@J@Z
?SetPythonCOMError@PyIConnectionPointContainer@@SAPEAU_object@@PEAU2@J@Z
?SetPythonCOMError@PyIDispatchEx@@SAPEAU_object@@PEAU2@J@Z
?SetSize@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?Skip@PyIEnumMoniker@@SAPEAU_object@@PEAU2@0@Z
?Skip@PyIEnumVARIANT@@SAPEAU_object@@PEAU2@0@Z
?Stat@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?ThisAsIID@PyGOleWindow@@MEAAPEAXU_GUID@@@Z
?ThisAsIID@PyGPersist@@MEAAPEAXU_GUID@@@Z
?ThisAsIID@PyGatewayBase@@UEAAPEAXU_GUID@@@Z
?Type@PySTGMEDIUM@@2U_typeobject@@A
?Unadvise@PyIConnectionPoint@@SAPEAU_object@@PEAU2@0@Z
?UnlockRegion@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?Unwrap@PyGatewayBase@@UEAAJPEAPEAU_object@@@Z
?Write@PyIStream@@SAPEAU_object@@PEAU2@0@Z
?cmp@PyIBase@@SAHPEAU_object@@0@Z
?compare@PyIBase@@UEAAHPEAU_object@@@Z
?compare@PyIUnknown@@UEAAHPEAU_object@@@Z
?dealloc@PyIBase@@SAXPEAU_object@@@Z
?deallocFunc@PySTGMEDIUM@@SAXPEAU_object@@@Z
?getattr@PyIBase@@UEAAPEAU_object@@PEAD@Z
?getattro@PyIBase@@SAPEAU_object@@PEAU2@0@Z
?getattro@PySTGMEDIUM@@SAPEAU_object@@PEAU2@0@Z
?is_interface_type@PyComTypeObject@@SAHPEAU_object@@@Z
?is_object@PyIBase@@QEAAHPEAVPyComTypeObject@@@Z
?is_object@PyIBase@@SAHPEAU_object@@PEAVPyComTypeObject@@@Z
?iter@PyComEnumProviderTypeObject@@SAPEAU_object@@PEAU2@@Z
?iter@PyComEnumTypeObject@@SAPEAU_object@@PEAU2@@Z
?iter@PyIBase@@UEAAPEAU_object@@XZ
?iternext@PyComEnumTypeObject@@SAPEAU_object@@PEAU2@@Z
?iternext@PyIBase@@UEAAPEAU_object@@XZ
?methods@PySTGMEDIUM@@2PAUPyMethodDef@@A
?repr@PyIBase@@SAPEAU_object@@PEAU2@@Z
?repr@PyIBase@@UEAAPEAU_object@@XZ
?repr@PyIUnknown@@UEAAPEAU_object@@XZ
?richcmp@PyIBase@@SAPEAU_object@@PEAU2@0H@Z
?setattr@PyIBase@@UEAAHPEADPEAU_object@@@Z
?setattro@PyIBase@@SAHPEAU_object@@00@Z
?szErrMsgObjectReleased@PyIUnknown@@2PEADEA
?type@PyIBindCtx@@2VPyComTypeObject@@A
?type@PyIClassFactory@@2VPyComTypeObject@@A
?type@PyIConnectionPoint@@2VPyComTypeObject@@A
?type@PyIConnectionPointContainer@@2VPyComTypeObject@@A
?type@PyIDispatch@@2VPyComTypeObject@@A
?type@PyIDispatchEx@@2VPyComTypeObject@@A
?type@PyIEnumMoniker@@2VPyComEnumTypeObject@@A
?type@PyIEnumVARIANT@@2VPyComEnumTypeObject@@A
?type@PyIMoniker@@2VPyComEnumProviderTypeObject@@A
?type@PyIOleWindow@@2VPyComTypeObject@@A
?type@PyIPersist@@2VPyComTypeObject@@A
?type@PyIPersistStream@@2VPyComTypeObject@@A
?type@PyIPersistStreamInit@@2VPyComTypeObject@@A
?type@PyIProvideClassInfo2@@2VPyComTypeObject@@A
?type@PyIProvideClassInfo@@2VPyComTypeObject@@A
?type@PyIServiceProvider@@2VPyComTypeObject@@A
?type@PyIStream@@2VPyComTypeObject@@A
?type@PyITypeComp@@2VPyComTypeObject@@A
?type@PyITypeInfo@@2VPyComTypeObject@@A
?type@PyITypeLib@@2VPyComTypeObject@@A
?type@PyIUnknown@@2VPyComTypeObject@@A
DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServerEx
DllUnregisterServerEx
PyCom_CoInitialize
PyCom_CoInitializeEx
PyCom_CoUninitialize
PyCom_InterfaceFromPyObject
PyCom_MakeOlePythonCall
PyCom_PyObjectFromIUnknown
PyCom_PyObjectFromVariant
PyCom_VariantFromPyObject
PyInit_pythoncom

Sections

.text
Size: 362KB - Virtual size: 362KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 201KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/pywin32_system32/pywintypes311.dll
.dll windows:6 windows x64 arch:x64

5b71a076f0c32bb52117188a36e3fec6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\src\pywin32\build\temp.win-amd64-cpython-311\Release\pywintypes.pdb

Imports

advapi32

IsValidAcl
GetAuditedPermissionsFromAclW
GetLengthSid
InitializeAcl
AddAuditAccessAce
AddAce
DeleteAce
SetEntriesInAclW
GetAce
GetExplicitEntriesFromAclW
GetEffectiveRightsFromAclW
RegCloseKey
SetSecurityDescriptorGroup
MakeAbsoluteSD
MakeSelfRelativeSD
GetSecurityDescriptorLength
InitializeSecurityDescriptor
IsValidSecurityDescriptor
IsValidSid
SetSecurityDescriptorSacl
GetSecurityDescriptorOwner
GetSecurityDescriptorControl
GetSecurityDescriptorGroup
SetSecurityDescriptorOwner
GetAclInformation
GetSecurityDescriptorDacl
SetSecurityDescriptorDacl
GetSecurityDescriptorSacl
GetSidIdentifierAuthority
InitializeSid
CopySid
GetSidSubAuthority
AllocateAndInitializeSid
GetSidSubAuthorityCount
EqualSid
IsTextUnicode

user32

wsprintfW

ole32

CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CoCreateGuid
CLSIDFromProgID
StringFromGUID2

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
SysStringLen
SysFreeString

python311

PyExc_Exception
PyErr_SetObject
PyModule_AddIntConstant
PyRun_StringFlags
PyMemoryView_FromObject
PyLong_FromUnsignedLong
PyThreadState_New
PyLong_AsUnsignedLongMask
PyModule_GetDict
PyObject_GetBuffer
PyModule_Create2
PyUnicode_Type
PyByteArray_FromStringAndSize
PyDict_GetItemString
PyLong_AsVoidPtr
PyObject_CallObject
PyThreadState_Clear
PyCallable_Check
PyThreadState_Swap
_Py_FatalErrorFunc
PyEval_AcquireThread
PyMemoryView_FromBuffer
PyThreadState_Delete
PyEval_ReleaseThread
PyUnicode_AsUTF8
PyExc_PendingDeprecationWarning
PyLong_FromLongLong
PyLong_AsLongLong
PyLong_AsUnsignedLongLong
PyLong_FromUnsignedLongLong
PyErr_Occurred
PyErr_WarnEx
PyBuffer_FillInfo
PyEval_RestoreThread
PyObject_Print
_Py_TrueStruct
PyUnicode_AsMBCSString
_Py_HashPointer
PyObject_GenericSetAttr
PyErr_Fetch
PyErr_Restore
_Py_FalseStruct
PyEval_SaveThread
PyBytes_FromStringAndSize
PyExc_AttributeError
PyExc_WindowsError
PyBytes_AsStringAndSize
PyArg_ParseTuple
PyBuffer_Release
PyExc_TypeError
_Py_NewReference
PyArg_ParseTupleAndKeywords
PyExc_NotImplementedError
PyTuple_SetItem
PySequence_Check
PyDict_New
PyDict_SetItem
PyMapping_Check
PyErr_Clear
PyObject_GetAttrString
PyTuple_GetItem
_Py_Dealloc
PyExc_OverflowError
PyErr_Format
PyExc_ValueError
PyErr_SetString
PyTuple_New
_Py_NoneStruct
PyExc_MemoryError
Py_BuildValue
PyLong_FromLong
PyObject_GenericGetAttr
PySequence_GetItem
PyMapping_Items
PySequence_Size
Py_MakePendingCalls
PyMem_Malloc
PyMem_Free
PyBytes_Size
PyList_Append
PyList_New
PyUnicode_AsWideCharString
PyUnicode_FromWideChar
PyUnicode_DecodeMBCS
PyBytes_AsString
PyEval_CallObjectWithKeywords
PyBool_FromLong
PyNumber_Long
PyNumber_Check
PyObject_HasAttrString
PyCapsule_Import
PyObject_CallMethod
PyTuple_Size
PyType_Ready
PyErr_BadArgument
PyLong_AsLong
PyType_IsSubtype
PyDict_SetItemString
PyImport_ImportModule
PySequence_Tuple
PyErr_NoMemory
_PyArg_ParseTuple_SizeT
PyBytes_FromString
_Py_NotImplementedStruct
_Py_BuildValue_SizeT
PyObject_Call

kernel32

LocalFree
CloseHandle
SetLastError
lstrlenW
FileTimeToSystemTime
SystemTimeToFileTime
MultiByteToWideChar
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
LocalAlloc
FormatMessageW
TlsAlloc
GetLastError
LoadLibraryW
GetProcAddress
DeleteCriticalSection
GetModuleHandleW
TlsGetValue
TlsFree
DosDateTimeToFileTime
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent

vcruntime140_1

__CxxFrameHandler4

vcruntime140

memset
__std_type_info_destroy_list
_CxxThrowException
__std_exception_destroy
memcpy
__C_specific_handler
__current_exception_context
__current_exception
__std_terminate
memcmp
__std_exception_copy

api-ms-win-crt-heap-l1-1-0

realloc
_callnewh
malloc
free

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vswprintf
__stdio_common_vfprintf

api-ms-win-crt-time-l1-1-0

_mktime64

api-ms-win-crt-string-l1-1-0

wcsncpy
strncpy
strcmp
_wcsdup

api-ms-win-crt-runtime-l1-1-0

_configure_narrow_argv
terminate
_initterm
_initterm_e
_seh_filter_dll
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_cexit
_crt_at_quick_exit
_crt_atexit
_execute_onexit_table

api-ms-win-crt-math-l1-1-0

floor

Exports

Exports

??0PyACL@@QEAA@HH@Z
??0PyACL@@QEAA@PEAU_ACL@@@Z
??0PyDEVMODEW@@QEAA@G@Z
??0PyDEVMODEW@@QEAA@PEAU_devicemodeW@@@Z
??0PyDEVMODEW@@QEAA@XZ
??0PyHANDLE@@QEAA@AEBV0@@Z
??0PyHANDLE@@QEAA@PEAX@Z
??0PyHKEY@@QEAA@$$QEAV0@@Z
??0PyHKEY@@QEAA@AEBV0@@Z
??0PyHKEY@@QEAA@PEAX@Z
??0PyIID@@QEAA@AEBU_GUID@@@Z
??0PyOVERLAPPED@@QEAA@PEBVsMyOverlapped@0@@Z
??0PyOVERLAPPED@@QEAA@XZ
??0PySECURITY_ATTRIBUTES@@QEAA@AEBU_SECURITY_ATTRIBUTES@@@Z
??0PySECURITY_ATTRIBUTES@@QEAA@XZ
??0PySECURITY_DESCRIPTOR@@QEAA@PEAX@Z
??0PySECURITY_DESCRIPTOR@@QEAA@_J@Z
??0PySID@@QEAA@PEAX@Z
??0PySID@@QEAA@_JPEAX@Z
??0PyWAVEFORMATEX@@QEAA@AEBUtWAVEFORMATEX@@@Z
??0PyWAVEFORMATEX@@QEAA@XZ
??0PyWinBufferView@@QEAA@PEAU_object@@_N1@Z
??0PyWinBufferView@@QEAA@XZ
??0PyWin_AutoFreeBstr@@QEAA@PEA_W@Z
??0sMyOverlapped@PyOVERLAPPED@@QEAA@AEBU_OVERLAPPED@@@Z
??0sMyOverlapped@PyOVERLAPPED@@QEAA@XZ
??1PyACL@@QEAA@XZ
??1PyDEVMODEW@@IEAA@XZ
??1PyHANDLE@@UEAA@XZ
??1PyHKEY@@UEAA@XZ
??1PyOVERLAPPED@@QEAA@XZ
??1PySECURITY_ATTRIBUTES@@QEAA@XZ
??1PySECURITY_DESCRIPTOR@@QEAA@XZ
??1PySID@@QEAA@XZ
??1PyWAVEFORMATEX@@QEAA@XZ
??1PyWinBufferView@@QEAA@XZ
??1PyWin_AutoFreeBstr@@QEAA@XZ
??4PyACL@@QEAAAEAV0@AEBV0@@Z
??4PyDEVMODEW@@QEAAAEAV0@AEBV0@@Z
??4PyHANDLE@@QEAAAEAV0@AEBV0@@Z
??4PyHKEY@@QEAAAEAV0@$$QEAV0@@Z
??4PyHKEY@@QEAAAEAV0@AEBV0@@Z
??4PyIID@@QEAAAEAV0@$$QEAV0@@Z
??4PyIID@@QEAAAEAV0@AEBV0@@Z
??4PyOVERLAPPED@@QEAAAEAV0@AEBV0@@Z
??4PySECURITY_ATTRIBUTES@@QEAAAEAV0@AEBV0@@Z
??4PySECURITY_DESCRIPTOR@@QEAAAEAV0@AEBV0@@Z
??4PySID@@QEAAAEAV0@AEBV0@@Z
??4PyWAVEFORMATEX@@QEAAAEAV0@AEBV0@@Z
??4PyWin_AutoFreeBstr@@QEAAAEAV0@AEBV0@@Z
??4sMyOverlapped@PyOVERLAPPED@@QEAAAEAV01@$$QEAV01@@Z
??4sMyOverlapped@PyOVERLAPPED@@QEAAAEAV01@AEBV01@@Z
??BPyHANDLE@@QEAAPEAXXZ
??BPyWin_AutoFreeBstr@@QEAAPEA_WXZ
??_7PyHANDLE@@6B@
??_7PyHKEY@@6B@
??_FPyIID@@QEAAXXZ
??_FPySECURITY_DESCRIPTOR@@QEAAXXZ
??_FPyWin_AutoFreeBstr@@QEAAXXZ
?AddAccessAllowedAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAccessAllowedAceEx@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAccessAllowedObjectAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAccessDeniedAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAccessDeniedAceEx@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAccessDeniedObjectAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAuditAccessAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAuditAccessAceEx@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddAuditAccessObjectAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?AddMandatoryAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?Clear@PyDEVMODEW@@SAPEAU_object@@PEAU2@0@Z
?Close@PyHANDLE@@SAPEAU_object@@PEAU2@0@Z
?Close@PyHANDLE@@UEAAHXZ
?Close@PyHKEY@@UEAAHXZ
?DeleteAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?Detach@PyHANDLE@@SAPEAU_object@@PEAU2@0@Z
?FreeAbsoluteSD@@YAXPEAX@Z
?GetACL@PyACL@@QEAAPEAU_ACL@@XZ
?GetAce@PyACL@@SAPEAU_object@@PEAU2@0@Z
?GetAceCount@PyACL@@SAPEAU_object@@PEAU2@0@Z
?GetAclRevision@PyACL@@SAPEAU_object@@PEAU2@0@Z
?GetAclSize@PyACL@@SAPEAU_object@@PEAU2@0@Z
?GetDEVMODE@PyDEVMODEW@@QEAAPEAU_devicemodeW@@XZ
?GetLength@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?GetLength@PySID@@SAPEAU_object@@PEAU2@0@Z
?GetOverlapped@PyOVERLAPPED@@QEAAPEAU_OVERLAPPED@@XZ
?GetPythonTraceback@@YAPEA_WPEAU_object@@00@Z
?GetSA@PySECURITY_ATTRIBUTES@@QEAAPEAU_SECURITY_ATTRIBUTES@@XZ
?GetSD@PySECURITY_DESCRIPTOR@@QEAAPEAXXZ
?GetSID@PySID@@QEAAPEAXXZ
?GetSecurityDescriptorControl@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?GetSecurityDescriptorDacl@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?GetSecurityDescriptorGroup@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?GetSecurityDescriptorOwner@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?GetSecurityDescriptorSacl@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?GetSidIdentifierAuthority@PySID@@SAPEAU_object@@PEAU2@0@Z
?GetSubAuthority@PySID@@SAPEAU_object@@PEAU2@0@Z
?GetSubAuthorityCount@PySID@@SAPEAU_object@@PEAU2@0@Z
?GetTypeName@PyHANDLE@@UEAAPEBDXZ
?GetTypeName@PyHKEY@@UEAAPEBDXZ
?Initialize@PyACL@@SAPEAU_object@@PEAU2@0@Z
?Initialize@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?Initialize@PySID@@SAPEAU_object@@PEAU2@0@Z
?IsEqual@PyIID@@QEAAHAEAV1@@Z
?IsEqual@PyIID@@QEAAHAEBU_GUID@@@Z
?IsEqual@PyIID@@QEAAHPEAU_object@@@Z
?IsSelfRelative@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?IsValid@PyACL@@SAPEAU_object@@PEAU2@0@Z
?IsValid@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?IsValid@PySID@@SAPEAU_object@@PEAU2@0@Z
?PyACLType@@3U_typeobject@@A
?PyBuffer_FromMemory@@YAPEAU_object@@PEAX_J@Z
?PyBuffer_New@@YAPEAU_object@@_J@Z
?PyDEVMODEWType@@3U_typeobject@@A
?PyGetAuditedPermissionsFromAcl@PyACL@@SAPEAU_object@@PEAU2@0@Z
?PyGetEffectiveRightsFromAcl@PyACL@@SAPEAU_object@@PEAU2@0@Z
?PyGetExplicitEntriesFromAcl@PyACL@@SAPEAU_object@@PEAU2@0@Z
?PyHANDLEType@@3U_typeobject@@A
?PyIIDType@@3U_typeobject@@A
?PyOVERLAPPEDType@@3U_typeobject@@A
?PyObject_FromWIN32_FIND_DATAW@@YAPEAU_object@@PEAU_WIN32_FIND_DATAW@@@Z
?PySECURITY_ATTRIBUTESType@@3U_typeobject@@A
?PySECURITY_DESCRIPTORType@@3U_typeobject@@A
?PySIDType@@3U_typeobject@@A
?PySetEntriesInAcl@PyACL@@SAPEAU_object@@PEAU2@0@Z
?PySocket_AsSOCKET@@YAHPEAU_object@@PEA_K@Z
?PyWAVEFORMATEXType@@3U_typeobject@@A
?PyWinCoreString_FromIID@@YAPEAU_object@@AEBU_GUID@@@Z
?PyWinCoreString_FromString@@YAPEAU_object@@PEBD_J@Z
?PyWinCoreString_FromString@@YAPEAU_object@@PEB_W_J@Z
?PyWinExc_ApiError@@3PEAU_object@@EA
?PyWinExc_COMError@@3PEAU_object@@EA
?PyWinGlobals_Ensure@@YAHXZ
?PyWinGlobals_Free@@YAXXZ
?PyWinInterpreterLock_Acquire@@YAXXZ
?PyWinInterpreterLock_Release@@YAXXZ
?PyWinLong_AsVoidPtr@@YAHPEAU_object@@PEAPEAX@Z
?PyWinLong_FromHANDLE@@YAPEAU_object@@PEAX@Z
?PyWinLong_FromVoidPtr@@YAPEAU_object@@PEBX@Z
?PyWinMethod_NewACL@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewHANDLE@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewIID@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewOVERLAPPED@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewSECURITY_ATTRIBUTES@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewSECURITY_DESCRIPTOR@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewSID@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewTime@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewTimeStamp@@YAPEAU_object@@PEAU1@0@Z
?PyWinMethod_NewWAVEFORMATEX@@YAPEAU_object@@PEAU1@0@Z
?PyWinObject_AsACL@@YAHPEAU_object@@PEAPEAU_ACL@@H@Z
?PyWinObject_AsBstr@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinObject_AsChars@@YAHPEAU_object@@PEAPEADHPEAK@Z
?PyWinObject_AsDATE@@YAHPEAU_object@@PEAN@Z
?PyWinObject_AsDEVMODE@@YAHPEAU_object@@PEAPEAU_devicemodeW@@H@Z
?PyWinObject_AsDWORDArray@@YAHPEAU_object@@PEAPEAKPEAKH@Z
?PyWinObject_AsFILETIME@@YAHPEAU_object@@PEAU_FILETIME@@@Z
?PyWinObject_AsHANDLE@@YAHPEAU_object@@PEAPEAX@Z
?PyWinObject_AsHKEY@@YAHPEAU_object@@PEAPEAUHKEY__@@@Z
?PyWinObject_AsIID@@YAHPEAU_object@@PEAU_GUID@@@Z
?PyWinObject_AsLARGE_INTEGER@@YAHPEAU_object@@PEAT_LARGE_INTEGER@@@Z
?PyWinObject_AsMSG@@YAHPEAU_object@@PEAUtagMSG@@@Z
?PyWinObject_AsMultipleString@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinObject_AsOVERLAPPED@@YAHPEAU_object@@PEAPEAU_OVERLAPPED@@H@Z
?PyWinObject_AsPARAM@@YAHPEAU_object@@PEAVPyWin_PARAMHolder@@@Z
?PyWinObject_AsPOINT@@YAHPEAU_object@@PEAUtagPOINT@@@Z
?PyWinObject_AsPyOVERLAPPED@@YAHPEAU_object@@PEAPEAVPyOVERLAPPED@@H@Z
?PyWinObject_AsRECT@@YAHPEAU_object@@PEAUtagRECT@@@Z
?PyWinObject_AsResourceId@@YAHPEAU_object@@PEAPEA_WH@Z
?PyWinObject_AsResourceIdA@@YAHPEAU_object@@PEAPEADH@Z
?PyWinObject_AsSECURITY_ATTRIBUTES@@YAHPEAU_object@@PEAPEAU_SECURITY_ATTRIBUTES@@H@Z
?PyWinObject_AsSECURITY_DESCRIPTOR@@YAHPEAU_object@@PEAPEAXH@Z
?PyWinObject_AsSID@@YAHPEAU_object@@PEAPEAXH@Z
?PyWinObject_AsSYSTEMTIME@@YAHPEAU_object@@PEAU_SYSTEMTIME@@@Z
?PyWinObject_AsSimplePARAM@@YAHPEAU_object@@PEA_K@Z
?PyWinObject_AsTaskAllocatedWCHAR@@YAHPEAU_object@@PEAPEA_WH@Z
?PyWinObject_AsULARGE_INTEGER@@YAHPEAU_object@@PEAT_ULARGE_INTEGER@@@Z
?PyWinObject_AsWAVEFORMATEX@@YAHPEAU_object@@PEAPEAUtWAVEFORMATEX@@H@Z
?PyWinObject_AsWCHAR@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinObject_AsWCHARArray@@YAHPEAU_object@@PEAPEAPEA_WPEAKH@Z
?PyWinObject_CloseHANDLE@@YAHPEAU_object@@@Z
?PyWinObject_CloseHKEY@@YAHPEAU_object@@@Z
?PyWinObject_FreeBstr@@YAXPEA_W@Z
?PyWinObject_FreeChars@@YAXPEAD@Z
?PyWinObject_FreeMultipleString@@YAXPEA_W@Z
?PyWinObject_FreeResourceId@@YAXPEA_W@Z
?PyWinObject_FreeResourceIdA@@YAXPEAD@Z
?PyWinObject_FreeTaskAllocatedWCHAR@@YAXPEA_W@Z
?PyWinObject_FreeWCHAR@@YAXPEA_W@Z
?PyWinObject_FreeWCHARArray@@YAXPEAPEA_WK@Z
?PyWinObject_FromBstr@@YAPEAU_object@@QEA_WH@Z
?PyWinObject_FromDATE@@YAPEAU_object@@N@Z
?PyWinObject_FromDEVMODE@@YAPEAU_object@@PEAU_devicemodeW@@@Z
?PyWinObject_FromFILETIME@@YAPEAU_object@@AEBU_FILETIME@@@Z
?PyWinObject_FromHANDLE@@YAPEAU_object@@PEAX@Z
?PyWinObject_FromHKEY@@YAPEAU_object@@PEAUHKEY__@@@Z
?PyWinObject_FromIID@@YAPEAU_object@@AEBU_GUID@@@Z
?PyWinObject_FromIO_COUNTERS@@YAPEAU_object@@PEAU_IO_COUNTERS@@@Z
?PyWinObject_FromLARGE_INTEGER@@YAPEAU_object@@AEBT_LARGE_INTEGER@@@Z
?PyWinObject_FromMSG@@YAPEAU_object@@PEBUtagMSG@@@Z
?PyWinObject_FromMultipleString@@YAPEAU_object@@PEAD@Z
?PyWinObject_FromMultipleString@@YAPEAU_object@@PEA_W@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W_J@Z
?PyWinObject_FromOVERLAPPED@@YAPEAU_object@@PEBU_OVERLAPPED@@@Z
?PyWinObject_FromRECT@@YAPEAU_object@@PEAUtagRECT@@@Z
?PyWinObject_FromSECURITY_ATTRIBUTES@@YAPEAU_object@@AEBU_SECURITY_ATTRIBUTES@@@Z
?PyWinObject_FromSECURITY_DESCRIPTOR@@YAPEAU_object@@PEAX@Z
?PyWinObject_FromSID@@YAPEAU_object@@PEAX@Z
?PyWinObject_FromSYSTEMTIME@@YAPEAU_object@@AEBU_SYSTEMTIME@@@Z
?PyWinObject_FromTimeStamp@@YAPEAU_object@@AEBT_LARGE_INTEGER@@@Z
?PyWinObject_FromULARGE_INTEGER@@YAPEAU_object@@AEBT_ULARGE_INTEGER@@@Z
?PyWinSequence_Tuple@@YAPEAU_object@@PEAU1@PEAK@Z
?PyWinThreadState_Clear@@YAXXZ
?PyWinThreadState_Ensure@@YAHXZ
?PyWinThreadState_Free@@YAXXZ
?PyWinTimeObject_Fromtime_t@@YAPEAU_object@@_J@Z
?PyWinTime_Check@@YAHPEAU_object@@@Z
?PyWin_AcquireGlobalLock@@YAXXZ
?PyWin_CopyString@@YAPEADPEBD@Z
?PyWin_CopyString@@YAPEA_WPEB_W@Z
?PyWin_GetErrorMessageModule@@YAPEAUHINSTANCE__@@K@Z
?PyWin_InterpreterState@@3PEAU_is@@EA
?PyWin_MakePendingCalls@@YAXXZ
?PyWin_NewUnicode@@YAPEAU_object@@PEAU1@0@Z
?PyWin_RegisterErrorMessageModule@@YAHKKPEAUHINSTANCE__@@@Z
?PyWin_ReleaseGlobalLock@@YAXXZ
?PyWin_SetAPIError@@YAPEAU_object@@PEADJ@Z
?PyWin_SetBasicCOMError@@YAPEAU_object@@J@Z
?SetACL@PyACL@@QEAAHPEAU_ACL@@@Z
?SetBstr@PyWin_AutoFreeBstr@@QEAAXPEA_W@Z
?SetSD@PySECURITY_DESCRIPTOR@@QEAAHPEAX@Z
?SetSecurityDescriptorControl@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?SetSecurityDescriptorDacl@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?SetSecurityDescriptorGroup@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?SetSecurityDescriptorOwner@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?SetSecurityDescriptorSacl@PySECURITY_DESCRIPTOR@@SAPEAU_object@@PEAU2@0@Z
?SetSubAuthority@PySID@@SAPEAU_object@@PEAU2@0@Z
?_MakeAbsoluteSD@@YAHPEAXPEAPEAX@Z
?asStr@PyHANDLE@@QEAAPEAU_object@@XZ
?binaryFailureFunc@PyHANDLE@@SAPEAU_object@@PEAU2@0@Z
?deallocFunc@PyACL@@SAXPEAU_object@@@Z
?deallocFunc@PyDEVMODEW@@SAXPEAU_object@@@Z
?deallocFunc@PyHANDLE@@SAXPEAU_object@@@Z
?deallocFunc@PyIID@@SAXPEAU_object@@@Z
?deallocFunc@PyOVERLAPPED@@SAXPEAU_object@@@Z
?deallocFunc@PySECURITY_ATTRIBUTES@@SAXPEAU_object@@@Z
?deallocFunc@PySECURITY_DESCRIPTOR@@SAXPEAU_object@@@Z
?deallocFunc@PySID@@SAXPEAU_object@@@Z
?deallocFunc@PyWAVEFORMATEX@@SAXPEAU_object@@@Z
?get_DeviceName@PyDEVMODEW@@SAPEAU_object@@PEAU2@PEAX@Z
?get_DriverData@PyDEVMODEW@@SAPEAU_object@@PEAU2@PEAX@Z
?get_FormName@PyDEVMODEW@@SAPEAU_object@@PEAU2@PEAX@Z
?get_handle@PyHANDLE@@SAPEAU_object@@PEAU2@PEAX@Z
?getattro@PyOVERLAPPED@@SAPEAU_object@@PEAU2@0@Z
?getattro@PySECURITY_ATTRIBUTES@@SAPEAU_object@@PEAU2@0@Z
?getbufferinfo@PySECURITY_DESCRIPTOR@@SAHPEAU_object@@PEAUPy_buffer@@H@Z
?getbufferinfo@PySID@@SAHPEAU_object@@PEAUPy_buffer@@H@Z
?getset@PyDEVMODEW@@2PAUPyGetSetDef@@A
?getset@PyHANDLE@@2PAUPyGetSetDef@@A
?hash@PyHANDLE@@QEAA_JXZ
?hash@PyIID@@QEAA_JXZ
?hashFunc@PyHANDLE@@SA_JPEAU_object@@@Z
?hashFunc@PyIID@@SA_JPEAU_object@@@Z
?hashFunc@PyOVERLAPPED@@SA_JPEAU_object@@@Z
?init@PyWinBufferView@@QEAA_NPEAU_object@@_N1@Z
?intFunc@PyHANDLE@@SAPEAU_object@@PEAU2@@Z
?len@PyWinBufferView@@QEAAKXZ
?longFunc@PyHANDLE@@SAPEAU_object@@PEAU2@@Z
?members@PyDEVMODEW@@2PAUPyMemberDef@@A
?members@PyOVERLAPPED@@2PAUPyMemberDef@@A
?members@PySECURITY_ATTRIBUTES@@2PAUPyMemberDef@@A
?members@PyWAVEFORMATEX@@2PAUPyMemberDef@@A
?methods@PyACL@@2PAUPyMethodDef@@A
?methods@PyDEVMODEW@@2PAUPyMethodDef@@A
?methods@PyHANDLE@@2PAUPyMethodDef@@A
?methods@PySECURITY_ATTRIBUTES@@2PAUPyMethodDef@@A
?methods@PySECURITY_DESCRIPTOR@@2PAUPyMethodDef@@A
?methods@PySID@@2PAUPyMethodDef@@A
?modify_in_place@PyDEVMODEW@@QEAAXXZ
?nonzeroFunc@PyHANDLE@@SAHPEAU_object@@@Z
?ok@PyWinBufferView@@QEAA_NXZ
?print@PyHANDLE@@QEAAHPEAU_iobuf@@H@Z
?printFunc@PyHANDLE@@SAHPEAU_object@@PEAU_iobuf@@H@Z
?ptr@PyWinBufferView@@QEAAPEAXXZ
?release@PyWinBufferView@@QEAAXXZ
?repr@PyIID@@QEAAPEAU_object@@XZ
?reprFunc@PyIID@@SAPEAU_object@@PEAU2@@Z
?richcompare@PyHANDLE@@QEAAPEAU_object@@PEAU2@H@Z
?richcompare@PyIID@@QEAAPEAU_object@@PEAU2@H@Z
?richcompare@PySID@@QEAAPEAU_object@@PEAU2@H@Z
?richcompareFunc@PyHANDLE@@SAPEAU_object@@PEAU2@0H@Z
?richcompareFunc@PyIID@@SAPEAU_object@@PEAU2@0H@Z
?richcompareFunc@PyOVERLAPPED@@SAPEAU_object@@PEAU2@0H@Z
?richcompareFunc@PySID@@SAPEAU_object@@PEAU2@0H@Z
?set_DeviceName@PyDEVMODEW@@SAHPEAU_object@@0PEAX@Z
?set_DriverData@PyDEVMODEW@@SAHPEAU_object@@0PEAX@Z
?set_FormName@PyDEVMODEW@@SAHPEAU_object@@0PEAX@Z
?setattro@PyOVERLAPPED@@SAHPEAU_object@@00@Z
?setattro@PySECURITY_ATTRIBUTES@@SAHPEAU_object@@00@Z
?str@PyIID@@QEAAPEAU_object@@XZ
?strFunc@PyHANDLE@@SAPEAU_object@@PEAU2@@Z
?strFunc@PyIID@@SAPEAU_object@@PEAU2@@Z
?strFunc@PySID@@SAPEAU_object@@PEAU2@@Z
?ternaryFailureFunc@PyHANDLE@@SAPEAU_object@@PEAU2@00@Z
?tp_new@PyDEVMODEW@@SAPEAU_object@@PEAU_typeobject@@PEAU2@1@Z
?unaryFailureFunc@PyHANDLE@@SAPEAU_object@@PEAU2@@Z
DllMain
PyInit_pywintypes

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/select.pyd
.dll windows:6 windows x64 arch:x64

fc4f7d736924aa67a1bd7b7b80894df9

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

19:74:32:0b:ce:65:84:0d:85:0a:79:5a:99:fc:a4:6a:3c:b8:5b:8f:dd:42:cf:b5:3e:7a:80:c1:4d:69:76:c0
Signer

Actual PE Digest

19:74:32:0b:ce:65:84:0d:85:0a:79:5a:99:fc:a4:6a:3c:b8:5b:8f:dd:42:cf:b5:3e:7a:80:c1:4d:69:76:c0

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\select.pdb

Imports

ws2_32

select
__WSAFDIsSet
WSAGetLastError

python311

PyModuleDef_Init
_PyDeadline_Get
PyExc_TypeError
PyTuple_Pack
PyModule_GetState
PyEval_RestoreThread
_PyTime_AsTimeval
_PyDeadline_Init
PyErr_CheckSignals
PyExc_OSError
PyObject_AsFileDescriptor
PyList_New
PySequence_Fast
PyModule_AddObjectRef
PyErr_ExceptionMatches
_Py_Dealloc
PyExc_ValueError
PyErr_SetString
_Py_NoneStruct
PyEval_SaveThread
PyErr_Occurred
_PyArg_CheckPositional
_PyTime_FromSecondsObject
PyUnicode_InternFromString
PyErr_SetExcFromWindowsErr
PyList_SetItem
_PyTime_AsTimeval_clamp

vcruntime140

memset
memcpy
__std_type_info_destroy_list
__C_specific_handler

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_errno
_initterm
_initterm_e
_seh_filter_dll

kernel32

GetCurrentProcessId
RtlLookupFunctionEntry
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
RtlCaptureContext
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind

Exports

Exports

PyInit_select

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/unicodedata.pyd
.dll windows:6 windows x64 arch:x64

bb6f6d951dbdd290ecf382ca57459172

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

e8:6b:06:c1:68:0e:92:70:3e:f5:9d:e1:95:88:36:44:23:a4:92:5c:f9:15:8c:17:45:ec:b1:43:56:b8:31:d4
Signer

Actual PE Digest

e8:6b:06:c1:68:0e:92:70:3e:f5:9d:e1:95:88:36:44:23:a4:92:5c:f9:15:8c:17:45:ec:b1:43:56:b8:31:d4

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

D:\a\1\b\bin\amd64\unicodedata.pdb

Imports

python311

PyCapsule_GetPointer
PyUnicode_FromStringAndSize
PyModule_AddObjectRef
_Py_Dealloc
PyUnicode_FromString
_Py_FalseStruct
PyModule_AddStringConstant
PyModule_AddType
PyModule_Type
_PyUnicode_Ready
_Py_TrueStruct
_PyUnicode_ToDigit
PyModule_AddObject
PyMem_Realloc
PyUnicode_Compare
PyType_FromSpec
PyObject_GC_Track
PyModuleDef_Init
PyUnicode_FromKindAndData
PyErr_NoMemory
PyMem_Free
PyCapsule_New
PyObject_GC_Del
_PyObject_GC_New
PyMem_Malloc
PyType_IsSubtype
PyErr_Format
PyExc_ValueError
PyErr_SetString
_PyArg_BadArgument
_PyUnicode_ToDecimalDigit
_PyUnicode_ToNumeric
PyFloat_FromDouble
_Py_ctype_toupper
PyUnicode_FromOrdinal
PyObject_GC_UnTrack
PyLong_FromLong
PyObject_GenericGetAttr
PyErr_Occurred
PyExc_KeyError
_PyArg_CheckPositional
PyOS_snprintf
PyUnicode_CompareWithASCIIString
_PyArg_Parse_SizeT

vcruntime140

__std_type_info_destroy_list
__C_specific_handler
memset
memcpy

api-ms-win-crt-string-l1-1-0

strncmp

api-ms-win-crt-stdio-l1-1-0

__stdio_common_vsprintf

api-ms-win-crt-runtime-l1-1-0

_cexit
_execute_onexit_table
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_seh_filter_dll
_initterm
_initterm_e

kernel32

IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext

Exports

Exports

PyInit_unicodedata

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/win32/_win32sysloader.pyd
.dll windows:6 windows x64 arch:x64

0cc37620e20a981eff1969afb8d54d95

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\src\pywin32\build\temp.win-amd64-cpython-311\Release\_win32sysloader.pdb

Imports

python311

PyArg_ParseTuple
PyMem_Free
PyModule_Create2
PyUnicode_AsWideCharString
PyUnicode_FromWideChar
_Py_NoneStruct

kernel32

InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter

vcruntime140

memset
__current_exception_context
__std_type_info_destroy_list
__C_specific_handler
__current_exception

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_crt_at_quick_exit
_register_onexit_function
_crt_atexit
_execute_onexit_table
_cexit
terminate
_initterm
_initterm_e
_seh_filter_dll
_configure_narrow_argv
_initialize_onexit_table

Exports

Exports

PyInit__win32sysloader

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 884B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/win32/win32api.pyd
.dll windows:6 windows x64 arch:x64

2000df8846b8f315bdc5cce6da06b275

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\src\pywin32\build\temp.win-amd64-cpython-311\Release\win32api.pdb

Imports

user32

ChangeDisplaySettingsW
GetCursorPos
SetCursorPos
ShowCursor
RegisterWindowMessageW
PostQuitMessage
PostThreadMessageW
SetCursor
mouse_event
ClipCursor
LoadCursorW
WinHelpW
GetSysColor
LoadKeyboardLayoutW
GetKeyboardLayout
GetKeyboardLayoutList
SetClassWord
ExitWindowsEx
GetKeyboardLayoutNameW
VkKeyScanW
SetSysColors
MapVirtualKeyExW
VkKeyScanExA
GetAsyncKeyState
GetKeyboardState
LoadStringW
VkKeyScanA
GetWindowLongPtrW
SetClassLongPtrW
MessageBeep
GetSystemMetrics
SendMessageW
SetWindowWord
ToAsciiEx
SetWindowLongPtrW
MessageBoxExW
keybd_event
GetFocus
MapVirtualKeyW
GetKeyState
EnumDisplaySettingsW
VkKeyScanExW
PostMessageW

advapi32

InitiateSystemShutdownW
RegNotifyChangeKeyValue
RegGetKeySecurity
RegEnumKeyW
RegQueryInfoKeyW
RegDeleteKeyW
RegQueryValueW
RegFlushKey
RegCreateKeyExW
RegSaveKeyW
RegEnumKeyExW
RegSetKeySecurity
RegSetValueExW
AbortSystemShutdownW
OpenProcessToken
RegUnLoadKeyW
RegLoadKeyW
RegOpenKeyExW
RegCreateKeyW
RegConnectRegistryW
RegDeleteValueW
GetUserNameW
OpenThreadToken
LookupAccountSidW
RegEnumValueW
RegQueryValueExW
RegSetValueW
GetTokenInformation

shell32

DragQueryFileW
ShellExecuteW
DragFinish
CommandLineToArgvW
FindExecutableW

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

python311

PyExc_SystemError
PyLong_FromLong
Py_BuildValue
_Py_NoneStruct
PyExc_WindowsError
PyErr_SetString
PyExc_ValueError
PyErr_Format
_Py_Dealloc
PyUnicode_AsUTF8
PyList_New
PyList_Append
PyObject_GenericSetAttr
PyExc_NotImplementedError
PyArg_ParseTupleAndKeywords
_Py_NewReference
PyExc_TypeError
PyArg_ParseTuple
PyExc_Exception
PyErr_SetObject
PyBool_FromLong
_Py_BuildValue_SizeT
PyLong_AsUnsignedLong
PyModule_AddIntConstant
PyBytes_AsString
PySequence_GetItem
PyErr_Occurred
PyEval_SaveThread
PyList_SetSlice
PyExc_MemoryError
PyLong_FromUnsignedLongLong
PyGILState_Release
PyTuple_New
PyDict_SetItemString
PyList_Size
PyUnicode_FromWideChar
PyLong_FromUnsignedLong
_PyArg_ParseTupleAndKeywords_SizeT
PyTuple_GetItem
PyModule_GetDict
_PyArg_ParseTuple_SizeT
PyLong_AsLong
PyUnicode_AsWideCharString
PyModule_Create2
PyType_Ready
PyErr_Clear
PyTuple_Size
PySequence_Check
PyMem_Free
PyTuple_SetItem
PyErr_NoMemory
PyObject_CallObject
PyBytes_FromStringAndSize
PyEval_RestoreThread
PySys_WriteStderr
PyObject_Call
PyUnicode_GetLength
PyThreadState_Swap
PyErr_Print
PyObject_GenericGetAttr
PyMem_Malloc
PyCallable_Check
PyObject_IsTrue
PyObject_IsSubclass
PyGILState_Ensure

pywintypes311

?PyWinObject_AsHANDLE@@YAHPEAU_object@@PEAPEAX@Z
?PyWinObject_AsDEVMODE@@YAHPEAU_object@@PEAPEAU_devicemodeW@@H@Z
?PyWinObject_FromHANDLE@@YAPEAU_object@@PEAX@Z
?PyWinObject_AsWCHAR@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W@Z
?PyWinObject_FromOLECHAR@@YAPEAU_object@@PEB_W_J@Z
?PyWinObject_FromDEVMODE@@YAPEAU_object@@PEAU_devicemodeW@@@Z
?PyWinObject_FreeWCHAR@@YAXPEA_W@Z
?PyWinObject_FromRECT@@YAPEAU_object@@PEAUtagRECT@@@Z
?PyWinObject_AsPOINT@@YAHPEAU_object@@PEAUtagPOINT@@@Z
?PyWin_SetAPIError@@YAPEAU_object@@PEADJ@Z
?PyWinObject_AsRECT@@YAHPEAU_object@@PEAUtagRECT@@@Z
?PyWinObject_AsSYSTEMTIME@@YAHPEAU_object@@PEAU_SYSTEMTIME@@@Z
?PyWinObject_FromSYSTEMTIME@@YAPEAU_object@@AEBU_SYSTEMTIME@@@Z
?PyWinLong_FromHANDLE@@YAPEAU_object@@PEAX@Z
?PyWinObject_FromFILETIME@@YAPEAU_object@@AEBU_FILETIME@@@Z
?PyWinObject_AsSECURITY_DESCRIPTOR@@YAHPEAU_object@@PEAPEAXH@Z
?PyWinObject_FromSECURITY_DESCRIPTOR@@YAPEAU_object@@PEAX@Z
?PyWinLong_FromVoidPtr@@YAPEAU_object@@PEBX@Z
?PyWinObject_FreeResourceIdA@@YAXPEAD@Z
?PyWin_NewUnicode@@YAPEAU_object@@PEAU1@0@Z
?PyWinObject_FreeMultipleString@@YAXPEA_W@Z
?PyWinObject_AsSECURITY_ATTRIBUTES@@YAHPEAU_object@@PEAPEAU_SECURITY_ATTRIBUTES@@H@Z
?PyWinGlobals_Ensure@@YAHXZ
?PyWin_GetErrorMessageModule@@YAPEAUHINSTANCE__@@K@Z
?PyObject_FromWIN32_FIND_DATAW@@YAPEAU_object@@PEAU_WIN32_FIND_DATAW@@@Z
?PyWinObject_FromMultipleString@@YAPEAU_object@@PEA_W@Z
?PyWinObject_CloseHKEY@@YAHPEAU_object@@@Z
?PyWinObject_AsResourceId@@YAHPEAU_object@@PEAPEA_WH@Z
?PyWinObject_FromHKEY@@YAPEAU_object@@PEAUHKEY__@@@Z
?PyWinObject_AsULARGE_INTEGER@@YAHPEAU_object@@PEAT_ULARGE_INTEGER@@@Z
?PyWinObject_AsHKEY@@YAHPEAU_object@@PEAPEAUHKEY__@@@Z
?PyWinObject_AsMultipleString@@YAHPEAU_object@@PEAPEA_WHPEAK@Z
?PyWinSequence_Tuple@@YAPEAU_object@@PEAU1@PEAK@Z
?init@PyWinBufferView@@QEAA_NPEAU_object@@_N1@Z
?PyWinInterpreterLock_Release@@YAXXZ
?PyWinObject_CloseHANDLE@@YAHPEAU_object@@@Z
?PyWinExc_ApiError@@3PEAU_object@@EA
?PyWinObject_FromULARGE_INTEGER@@YAPEAU_object@@AEBT_ULARGE_INTEGER@@@Z
?PyWinObject_FreeResourceId@@YAXPEA_W@Z
?PyWinThreadState_Ensure@@YAHXZ
?PyWinObject_AsPARAM@@YAHPEAU_object@@PEAVPyWin_PARAMHolder@@@Z
?PyWinLong_AsVoidPtr@@YAHPEAU_object@@PEAPEAX@Z
?PyWinThreadState_Free@@YAXXZ
?PyWinObject_AsResourceIdA@@YAHPEAU_object@@PEAPEADH@Z
?len@PyWinBufferView@@QEAAKXZ
?ptr@PyWinBufferView@@QEAAPEAXXZ
?ok@PyWinBufferView@@QEAA_NXZ
??1PyWinBufferView@@QEAA@XZ
??0PyWinBufferView@@QEAA@PEAU_object@@_N1@Z
??0PyWinBufferView@@QEAA@XZ
?PyWinInterpreterLock_Acquire@@YAXXZ

kernel32

GetLogicalDrives
GetVolumeInformationW
SetConsoleCtrlHandler
SizeofResource
GetConsoleTitleW
GetEnvironmentVariableW
GetSystemPowerStatus
WriteProfileStringW
GetTempPathW
GetPrivateProfileSectionW
FindClose
GetFileAttributesW
GetCurrentThreadId
GetVersionExW
GetSystemDirectoryW
SetThreadLocale
FindFirstFileW
SearchPathW
WritePrivateProfileStringW
CompareStringW
GetSystemDefaultLCID
SetLastError
GetProfileSectionW
SetLocalTime
GetCommandLineW
GetFullPathNameW
FindNextFileW
GetCurrentProcess
GetStdHandle
EnumResourceTypesW
SetTimeZoneInformation
ExpandEnvironmentStringsW
GetShortPathNameW
GetDiskFreeSpaceW
GetPrivateProfileIntW
TerminateProcess
GetProfileIntW
GetUserDefaultLangID
GetModuleFileNameW
GetThreadLocale
SetEnvironmentVariableW
SetSystemTime
EnumResourceNamesW
GetStartupInfoW
DuplicateHandle
GetSystemDefaultLangID
FindFirstChangeNotificationW
OpenProcess
GetVersion
SetFileAttributesW
GetLogicalDriveStringsW
EndUpdateResourceW
GetPrivateProfileStringW
FormatMessageW
GetTimeZoneInformation
GetTickCount64
GetLastError
OutputDebugStringW
GetUserDefaultLCID
GetDiskFreeSpaceExW
GetCurrentThread
FindCloseChangeNotification
LockResource
DeleteFileW
CloseHandle
EnumResourceLanguagesW
GetSystemInfo
WriteProfileSectionW
LoadLibraryW
FindResourceExW
LoadResource
GetLocalTime
SetStdHandle
UpdateResourceW
FindNextChangeNotification
GetWindowsDirectoryW
Beep
GetProcAddress
LocalFree
GetTimeFormatW
MoveFileExW
GetComputerNameW
GetCurrentProcessId
GetModuleHandleW
FreeLibrary
CopyFileW
GetProfileStringW
SleepEx
SetErrorMode
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
LoadLibraryExA
VirtualQuery
VirtualProtect
RaiseException
GenerateConsoleCtrlEvent
LoadLibraryExW
OpenThread
MoveFileW
SetConsoleTitleW
GetDateFormatW
DebugBreak
GlobalMemoryStatus
GetSystemTime
GetTempFileNameW
BeginUpdateResourceW
WritePrivateProfileSectionW
WinExec

vcruntime140_1

__CxxFrameHandler4

vcruntime140

__std_type_info_destroy_list
__std_terminate
__C_specific_handler
__std_exception_copy
__std_exception_destroy
__current_exception
__current_exception_context
memset
_CxxThrowException
memcpy

api-ms-win-crt-convert-l1-1-0

_itow

api-ms-win-crt-heap-l1-1-0

malloc
_callnewh
free

api-ms-win-crt-runtime-l1-1-0

_configure_narrow_argv
terminate
_initterm_e
_initterm
_initialize_onexit_table
_register_onexit_function
_execute_onexit_table
_crt_at_quick_exit
_crt_atexit
_cexit
_initialize_narrow_environment
_seh_filter_dll

api-ms-win-crt-string-l1-1-0

strcmp

Exports

Exports

?PyDISPLAY_DEVICEType@@3U_typeobject@@A
PyInit_win32api

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/_internal/win32/win32trace.pyd
.dll windows:6 windows x64 arch:x64

202ab14a040ab62999188829d5316eac

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\src\pywin32\build\temp.win-amd64-cpython-311\Release\win32trace.pdb

Imports

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

python311

PyObject_GenericGetAttr
_Py_BuildValue_SizeT
PyErr_SetObject
PySys_GetObject
_Py_NoneStruct
PyDict_SetItemString
PyErr_SetString
PyExc_ValueError
PySys_SetObject
_Py_Dealloc
PyModule_GetDict
PyObject_Free
_PyArg_ParseTuple_SizeT
PyModule_Create2
PyType_Ready
PyObject_GetAttrString
PyMem_Free
PyUnicode_DecodeLatin1
PyObject_CallObject
_PyObject_New
PyEval_RestoreThread
PyExc_MemoryError
PyEval_SaveThread

pywintypes311

?PyWin_SetAPIError@@YAPEAU_object@@PEADJ@Z
?PyWinExc_ApiError@@3PEAU_object@@EA
?PyWinGlobals_Ensure@@YAHXZ

kernel32

GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
MapViewOfFile
CreateFileMappingW
CloseHandle
SetEvent
GetLastError
CreateEventW
UnmapViewOfFile
ReleaseMutex
LocalAlloc
WaitForSingleObject
CreateMutexW

vcruntime140

wcschr
__C_specific_handler
__std_type_info_destroy_list
__current_exception
__current_exception_context
memset
memcpy

api-ms-win-crt-heap-l1-1-0

free
malloc

api-ms-win-crt-runtime-l1-1-0

_initterm
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_register_onexit_function
_execute_onexit_table
_cexit
terminate
_initialize_onexit_table
_crt_atexit
_initterm_e
_crt_at_quick_exit

Exports

Exports

PyInit_win32trace

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UNBAN/cleaner/Best Cleaner ( may break some windows features ).bat
UNBAN/cleaner/Simple apple cleaner ( best if you dont have deep traces ).exe
.exe windows:6 windows x64 arch:x64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Sections

Size: 54KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 12KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 5.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 16B - Virtual size: 4KB

IMAGE_SCN_MEM_READ
UNBAN/read me.txt
UNBAN/run.bat
UNBAN/serialChecker.exe
.exe windows:5 windows x64 arch:x64

bae3d3e8262d7ce7e9ee69cc1b630d3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

GetWindowThreadProcessId
ShowWindow

kernel32

GetModuleFileNameW
CreateSymbolicLinkW
GetProcAddress
GetCommandLineW
GetEnvironmentVariableW
SetEnvironmentVariableW
ExpandEnvironmentStringsW
CreateDirectoryW
GetTempPathW
WaitForSingleObject
Sleep
GetExitCodeProcess
CreateProcessW
SetDllDirectoryW
FreeLibrary
LoadLibraryExW
SetConsoleCtrlHandler
FindClose
FindFirstFileExW
CloseHandle
GetCurrentProcess
GetCurrentProcessId
LocalFree
FormatMessageW
MultiByteToWideChar
WideCharToMultiByte
GetConsoleWindow
HeapSize
GetLastError
WriteConsoleW
SetEndOfFile
GetStartupInfoW
TlsSetValue
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetModuleHandleW
RtlUnwindEx
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsFree
EncodePointer
RaiseException
RtlPcToFileHeader
GetCommandLineA
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetFullPathNameW
RemoveDirectoryW
FindNextFileW
SetStdHandle
DeleteFileW
ReadFile
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapFree
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
GetFileSizeEx
HeapAlloc
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
CompareStringW
LCMapStringW
GetCurrentDirectoryW
FlushFileBuffers
HeapReAlloc
GetFileAttributesExW
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetTimeZoneInformation

advapi32

ConvertSidToStringSidW
GetTokenInformation
OpenProcessToken
ConvertStringSecurityDescriptorToSecurityDescriptorW

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
main.pyc

Sharing

General

Malware Config

Signatures

Files

ea1e0cf1f5ea982ff2181b84e3e9ef79

Code Sign

a7:5f:24:b1:7f:ae:1a:87:ec:14:59:be:25:7a:3b:6cCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

c4:33:42:1e:c0:f0:cf:63:d0:24:46:15:36:0d:66:ce:e9:1a:09:66Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shell32

user32

advapi32

wtsapi32

Exports

Exports

Sections

.text Size: - Virtual size: 239KB

.rdata Size: - Virtual size: 114KB

.data Size: - Virtual size: 116KB

.pdata Size: - Virtual size: 9KB

.vmp0 Size: - Virtual size: 3.5MB

.vmp1 Size: 5.4MB - Virtual size: 5.4MB

.reloc Size: 512B - Virtual size: 180B

.rsrc Size: 1KB - Virtual size: 1KB

08755f1c09cd6042e818084b464b05c9

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcp140

vcruntime140_1

vcruntime140

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

kernel32

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 1KB

.pdata Size: 1024B - Virtual size: 852B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 512B - Virtual size: 88B

397657181a170cedf5596488efef5ae5

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

msvcp140

vcruntime140_1

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

a7:5f:24:b1:7f:ae:1a:87:ec:14:59:be:25:7a:3b:6c
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

c4:33:42:1e:c0:f0:cf:63:d0:24:46:15:36:0d:66:ce:e9:1a:09:66
Signer

.text
Size: - Virtual size: 239KB

.rdata
Size: - Virtual size: 114KB

.data
Size: - Virtual size: 116KB

.pdata
Size: - Virtual size: 9KB

.vmp0
Size: - Virtual size: 3.5MB

.vmp1
Size: 5.4MB - Virtual size: 5.4MB

.reloc
Size: 512B - Virtual size: 180B

.rsrc
Size: 1KB - Virtual size: 1KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 1024B - Virtual size: 852B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 88B

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 1KB

.pdata
Size: 1024B - Virtual size: 900B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 512B - Virtual size: 88B

61:20:4d:b4:00:00:00:00:00:27
Certificate

09:f4:3c:81:c1:eb:27:87:6e:e1:ae:fe:aa:5a:0f:5d
Certificate

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

03:f1:b4:e1:5f:3a:82:f1:14:96:78:b3:d7:d8:47:5c
Certificate

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

6a:eb:58:7e:dc:d0:12:89:ab:c8:43:16:ae:88:95:9c:23:56:63:fe
Signer

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 1024B - Virtual size: 572B

.data
Size: 512B - Virtual size: 272B

.pdata
Size: 512B - Virtual size: 192B

INIT
Size: 1024B - Virtual size: 1010B

33:00:00:00:9b:e0:74:37:cb:3d:4d:8d:2e:00:00:00:00:00:9b
Certificate

33:00:00:01:0a:2c:79:ae:d7:79:7b:a6:ac:00:01:00:00:01:0a
Certificate

61:33:26:1a:00:00:00:00:00:31
Certificate

61:16:68:34:00:00:00:00:00:1c
Certificate

33:00:00:00:64:47:84:94:86:db:41:19:38:00:00:00:00:00:64
Certificate

61:0e:90:d2:00:00:00:00:00:03
Certificate

65:97:9c:4b:c0:56:29:3c:65:68:1d:c8:51:cc:90:6a:97:43:fe:d9:91:a6:db:5c:b9:5c:47:8e:bf:73:7b:f7
Signer

25:f3:81:49:d7:50:ad:69:9f:da:99:18:45:e2:bd:84:7c:66:4c:a4
Signer

.text
Size: 79KB - Virtual size: 79KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 6KB - Virtual size: 15KB

.pdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB