E:\zhanlue\rcimage\bin\Win32\Release\pdb\2345PdfApp.pdb
Static task
static1
Behavioral task
behavioral1
Sample
cad57ae61c94db113ca64a4b599cf397c27d743c6fa66834d2a49bfa0cc630ad.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
cad57ae61c94db113ca64a4b599cf397c27d743c6fa66834d2a49bfa0cc630ad.dll
Resource
win10v2004-20240226-en
General
-
Target
cad57ae61c94db113ca64a4b599cf397c27d743c6fa66834d2a49bfa0cc630ad
-
Size
6.2MB
-
MD5
e127a96789e2d454ef123384081b927c
-
SHA1
b9309ee9649e1b86e6f4a3e2a4badfdfff4a68f9
-
SHA256
cad57ae61c94db113ca64a4b599cf397c27d743c6fa66834d2a49bfa0cc630ad
-
SHA512
f95409e537165a25af86b93f161c75c70435ee61a77773285f604e36f88bf9d65246445daaa6c1b531999638c7b22c7da0231b518b8599c3c991c7350691c3ae
-
SSDEEP
98304:lOU/MNxEYvE3YrqBUIu1FZTTnQdri6XkXhqxui1NCA0/4Ui0:3/ovE3YrqBUIu1FZTTQ+Xh5i18Ag
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cad57ae61c94db113ca64a4b599cf397c27d743c6fa66834d2a49bfa0cc630ad
Files
-
cad57ae61c94db113ca64a4b599cf397c27d743c6fa66834d2a49bfa0cc630ad.dll windows:5 windows x86 arch:x86
f8ab2ece537faeda20bcbfc9ef9125ef
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
PDB Paths
Imports
pdfium
FPDFAnnot_AppendAttachmentPoints
FPDFAnnot_SetColor
FPDFPage_CloseAnnot
FPDFLink_GetRect
FPDFLink_GetLinkAtPoint
FPDFAnnot_SetAP
FPDFAnnot_GetSubtype
FPDFAnnot_CountAttachmentPoints
FPDFLink_CountWebLinks
FPDFAction_GetURIPath
FPDFAnnot_GetAttachmentPoints
FPDFPage_CreateAnnot
FPDFAnnot_SetStringValue
FPDFPage_RemoveAnnot
FPDFAnnot_HasKey
FPDFText_GetCharIndexAtPos
FPDFLink_GetURL
FPDFText_CountChars
FPDFAnnot_SetFlags
FPDFAnnot_SetAP2
FPDFPage_CountObjects
FPDFFormObj_GetObject
FPDFPageObj_GetType
FPDFImageObj_GetImageMetadata
FPDFFormObj_CountObjects
FPDFPageObj_GetBounds
FPDFPage_GetObject
FPDFImageObj_GetBitmap
FPDF_DestroyLibrary
FPDFLink_CountRects
FPDFText_GetCharBox
FPDFPage_GetAnnotCount
FPDFAnnot_GetStringValue
FPDFLink_CloseWebLinks
FPDFText_ClosePage
FPDFAnnot_GetRect
FPDFText_LoadPage
FPDFPage_GetAnnotIndex
FPDFLink_LoadWebLinks
FPDFText_GetUnicode
FPDFLink_GetAction
FPDFLink_CountQuadPoints
FPDFPage_GetAnnot
FPDFLink_GetTextRange
FPDFLink_GetDest
FPDFAnnot_SetRect
FPDFLink_GetAnnotRect
FPDFLink_GetQuadPoints
FPDFLink_Enumerate
FPDF_GetLastError
FPDF_LoadDocument
FPDFDOC_ExitFormFillEnvironment
FPDF_CloseDocument
FPDFDOC_InitFormFillEnvironment
FPDF_LoadCustomDocument
FPDF_GetDocPermissions
FPDF_GetSecurityHandlerRevision
FPDF_SaveAsCopy
FPDF_ClosePage
FPDF_LoadPage
FPDFText_CountRects
FPDFText_GetRect
FPDF_GetPageSizeByIndexF
FPDF_GetPageCount
FPDF_PageToDevice
FPDFBitmap_FillRect
FPDF_RenderPageBitmap
FPDF_DeviceToPage
FPDFText_GetText
FPDF_FFLDraw
FPDFBitmap_Create
FPDFDest_GetLocationInPage
FPDFAction_GetDest
FPDFAction_GetType
FPDFBookmark_GetFirstChild
FPDFDest_GetDestPageIndex
FPDFBookmark_GetDest
FPDFBookmark_GetNextSibling
FPDFBookmark_GetTitle
FPDFBookmark_GetAction
FPDFBitmap_GetStride
FPDFBitmap_GetHeight
FPDFBitmap_GetBuffer
FPDFBitmap_GetWidth
FPDFBitmap_Destroy
FPDF_InitLibrary
shlwapi
SHDeleteKeyW
StrStrW
StrStrIW
crypt32
CertGetCertificateContextProperty
CertOpenStore
CertCloseStore
CertFindCertificateInStore
CertDuplicateCertificateContext
CertFreeCertificateContext
CertEnumCertificatesInStore
ws2_32
WSAGetLastError
WSACleanup
send
WSASetLastError
recv
closesocket
kernel32
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
DecodePointer
DeleteCriticalSection
ExpandEnvironmentStringsW
WaitForSingleObject
CreateFileW
GetVersionExW
GetPrivateProfileStringW
CloseHandle
CreateProcessW
GetExitCodeProcess
CreateEventW
SetEvent
SetLastError
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
GetTickCount
GetCommandLineW
LocalFree
ReadFile
WriteFile
SetFilePointer
SetEndOfFile
GetFileAttributesExW
WritePrivateProfileStringW
GetPrivateProfileIntW
MulDiv
SizeofResource
InterlockedExchange
GetLongPathNameW
InterlockedDecrement
GetModuleFileNameW
SetErrorMode
MultiByteToWideChar
LoadResource
FindResourceW
GetProcAddress
GetModuleHandleW
FreeLibrary
InterlockedIncrement
lstrcmpiW
LoadLibraryExW
SetUnhandledExceptionFilter
WaitForMultipleObjects
Sleep
GetModuleHandleExA
GlobalAlloc
GlobalLock
lstrcpyW
GlobalUnlock
InitializeCriticalSection
InterlockedCompareExchange
GlobalFree
LoadLibraryW
lstrlenW
lstrlenA
OutputDebugStringW
QueryPerformanceFrequency
DebugBreak
QueryPerformanceCounter
FreeResource
HeapFree
OpenProcess
HeapAlloc
GetProcessHeap
LockResource
GetSystemInfo
FindFirstFileW
FindNextFileW
FindClose
GetEnvironmentVariableW
ResumeThread
GetACP
WideCharToMultiByte
OpenFileMappingW
UnmapViewOfFile
CreateFileMappingW
MapViewOfFile
GetFileAttributesW
lstrcatW
ResetEvent
QueryDosDeviceW
GetCurrentProcess
SetFileTime
GetFileTime
CreateDirectoryW
GetFullPathNameW
GetTempPathW
SetFileAttributesW
DeleteFileW
GetCurrentDirectoryW
GetWindowsDirectoryW
MoveFileExW
CopyFileW
GetTempFileNameW
MoveFileW
InterlockedExchangeAdd
FormatMessageW
CreateMutexW
ReleaseMutex
OpenMutexW
GetCurrentProcessId
GetVolumeInformationW
GetDiskFreeSpaceW
LoadLibraryA
GetFileSizeEx
SystemTimeToFileTime
GlobalMemoryStatusEx
IsBadWritePtr
IsBadReadPtr
IsBadStringPtrW
GetLocalTime
TerminateProcess
TlsSetValue
TlsAlloc
TlsGetValue
TlsFree
GetStdHandle
GetFileType
SwitchToThread
ExitProcess
GetEnvironmentVariableA
lstrcmpA
GetModuleFileNameA
WaitForSingleObjectEx
CreateEventA
GetProcessAffinityMask
GetCurrentThread
GetNativeSystemInfo
SetFilePointerEx
GetModuleHandleExW
DeleteFiber
GetSystemTimeAsFileTime
ConvertFiberToThread
GetConsoleMode
SetConsoleMode
ReadConsoleA
ReadConsoleW
DeviceIoControl
FileTimeToSystemTime
GetLogicalDriveStringsW
UnhandledExceptionFilter
LoadLibraryExA
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
EncodePointer
IsDebuggerPresent
LocalAlloc
GetFileSize
user32
TranslateAcceleratorW
TrackPopupMenuEx
RemoveMenu
AppendMenuW
PostQuitMessage
SetForegroundWindow
LoadImageW
GetDlgItemTextW
GetCursor
DestroyCursor
LoadIconW
GetWindowTextLengthW
IntersectRect
GetSystemMetrics
GetMessagePos
GetScrollInfo
SetRect
ScrollWindow
UpdateWindow
BeginPaint
EndPaint
CallWindowProcW
UpdateLayeredWindow
GetFocus
LoadStringW
CreatePopupMenu
MessageBeep
LoadStringA
MonitorFromPoint
IsWindowEnabled
TrackMouseEvent
RedrawWindow
InsertMenuW
GetUpdateRect
IsMenu
RemovePropW
DeleteMenu
InflateRect
GetKeyNameTextW
DrawIconEx
GetKeyboardLayout
UnionRect
SetCursor
SetRectEmpty
GetCursorPos
LoadMenuW
GetMenuState
GetMenuItemCount
GetSubMenu
DestroyMenu
GetMenuStringW
ScreenToClient
GetLastActivePopup
GetWindowThreadProcessId
FindWindowW
wsprintfW
GetScrollPos
RegisterClipboardFormatW
MapVirtualKeyExW
GetCapture
SetCapture
ReleaseCapture
GetWindowLongW
GetWindow
MonitorFromWindow
EndDialog
GetMonitorInfoW
MapWindowPoints
GetPropW
CopyImage
OpenClipboard
CloseClipboard
EmptyClipboard
SetPropW
SetClipboardData
SetScrollInfo
ShowScrollBar
IsWindowVisible
MessageBoxW
CreateWindowExW
SetWindowTextW
RegisterClassExW
OffsetRect
ClientToScreen
MoveWindow
GetScrollBarInfo
GetClientRect
GetClassInfoExW
InvalidateRect
IsIconic
SetParent
GetMessageW
DefWindowProcW
DestroyWindow
DispatchMessageW
PeekMessageW
CharNextW
TranslateMessage
IsZoomed
SetActiveWindow
IsWindow
SetTimer
SetFocus
KillTimer
GetWindowTextW
SetWindowPos
SetWindowLongW
DialogBoxParamW
GetMenuItemInfoW
GetKeyState
CheckMenuRadioItem
SendMessageW
SetMenuItemInfoW
SetMenuDefaultItem
GetClassNameW
PostMessageW
GetActiveWindow
ShowWindow
GetDlgItem
GetParent
GetWindowRect
GetDC
EqualRect
FillRect
UnregisterClassW
CopyRect
IsRectEmpty
DrawTextW
GetDesktopWindow
SystemParametersInfoW
PtInRect
ReleaseDC
SetWindowPlacement
MonitorFromRect
WindowFromPoint
WaitMessage
GetForegroundWindow
IsCharAlphaNumericW
GetProcessWindowStation
AttachThreadInput
GetUserObjectInformationW
LoadCursorW
gdi32
SelectClipRgn
SetBrushOrgEx
SetArcDirection
SetWorldTransform
ExtTextOutW
CreateFontIndirectW
CreateSolidBrush
DeleteObject
SetBkColor
ExtCreatePen
CreateRectRgn
Rectangle
GetObjectW
GetTextExtentPointW
GetTextColor
StretchDIBits
GetCharWidth32W
GetFontData
GetGlyphOutlineW
GetOutlineTextMetricsW
GetFontUnicodeRanges
GetGlyphIndicesW
RestoreDC
SaveDC
SetTextAlign
ModifyWorldTransform
ExtCreateRegion
GetClipBox
GetClipRgn
GetGraphicsMode
IntersectClipRect
ExtSelectClipRgn
GetWorldTransform
GdiFlush
SetBkMode
SetTextColor
DeleteDC
StretchBlt
SetGraphicsMode
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
BitBlt
GetDeviceCaps
CreatePen
CreateDIBSection
SetMapMode
EnumFontFamiliesExW
GetTextExtentPoint32W
SetViewportOrgEx
MoveToEx
LineTo
SetDCBrushColor
GetStockObject
Polygon
CreateBitmap
CreateDIBitmap
SetDCPenColor
SetROP2
SetStretchBltMode
GetTextMetricsW
comdlg32
GetSaveFileNameW
GetOpenFileNameW
advapi32
CryptSignHashW
RegOpenKeyExW
CryptGenRandom
CryptEnumProvidersW
CryptDestroyHash
CryptCreateHash
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam
CryptSetHashParam
CryptDestroyKey
CryptReleaseContext
CryptAcquireContextW
GetSecurityInfo
ReportEventW
RegisterEventSourceW
RegSetValueExW
RegDeleteValueW
RegEnumKeyExW
RegCreateKeyExW
RegOpenCurrentUser
RegQueryValueExW
RegDeleteKeyW
RegQueryInfoKeyW
RegCloseKey
DeregisterEventSource
GetUserNameW
shell32
CommandLineToArgvW
ShellExecuteW
SHGetFolderPathW
SHGetSpecialFolderLocation
DragFinish
DragQueryFileW
SHChangeNotify
SHGetSpecialFolderPathW
SHGetPathFromIDListW
ShellExecuteExW
ole32
RevokeDragDrop
RegisterDragDrop
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CreateStreamOnHGlobal
oleaut32
VarUI4FromStr
msvcp140
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??1_Locinfo@std@@QAE@XZ
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?uncaught_exception@std@@YA_NXZ
?global@locale@std@@SA?AV12@ABV12@@Z
?_Init@locale@std@@CAPAV_Locimp@12@_N@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_New_Locimp@_Locimp@locale@std@@CAPAV123@_N@Z
?_Makeloc@_Locimp@locale@std@@CAPAV123@ABV_Locinfo@3@HPAV123@PBV23@@Z
?_Xruntime_error@std@@YAXPBD@Z
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?_Xbad_function_call@std@@YAXXZ
_Thrd_join
_Cnd_init
_Mtx_destroy
_Thrd_id
_Thrd_start
_Mtx_init
_Cnd_wait
_Cnd_destroy
_Cnd_do_broadcast_at_thread_exit
?_Throw_Cpp_error@std@@YAXH@Z
_Cnd_signal
_Mtx_unlock
_Mtx_init_in_situ
_Mtx_lock
_Mtx_destroy_in_situ
?_Throw_C_error@std@@YAXH@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
??0_Locinfo@std@@QAE@HPBD@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??_7_Facet_base@std@@6B@
_Wcscoll
?id@?$ctype@_W@std@@2V0locale@2@A
?_Xregex_error@std@@YAXW4error_type@regex_constants@1@@Z
?id@?$collate@_W@std@@2V0locale@2@A
??_7facet@locale@std@@6B@
_Wcsxfrm
?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?tolower@?$ctype@_W@std@@QBEPB_WPA_WPB_W@Z
?tolower@?$ctype@_W@std@@QBE_W_W@Z
?is@?$ctype@_W@std@@QBE_NF_W@Z
??1facet@locale@std@@MAE@XZ
??0facet@locale@std@@IAE@I@Z
?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ
?_Incref@facet@locale@std@@UAEXXZ
??1_Facet_base@std@@UAE@XZ
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
??0_Locinfo@std@@QAE@PBD@Z
_Mtx_current_owns
_Cnd_init_in_situ
_Cnd_timedwait
_Xtime_get_ticks
_Cnd_destroy_in_situ
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Xbad_alloc@std@@YAXXZ
?_Gninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??4?$_Yarn@D@std@@QAEAAV01@PBD@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
comctl32
_TrackMouseEvent
ImageList_Create
InitCommonControlsEx
msimg32
AlphaBlend
imm32
ImmAssociateContext
ImmGetVirtualKey
gdiplus
GdipGetClipBoundsI
GdipGetMatrixElements
GdipGetClip
GdipRestoreGraphics
GdipDeleteGraphics
GdipDeleteRegion
GdipTranslateWorldTransform
GdipDrawImagePointRectI
GdipFillRectangleI
GdipDeleteMatrix
GdipCloneBrush
GdipBitmapLockBits
GdipSetCompositingMode
GdipCreateRegion
GdipTransformPointsI
GdipGetWorldTransform
GdipCreateMatrix
GdipGetDC
GdipBitmapUnlockBits
GdipLoadImageFromStream
GdipSetPenColor
GdipSetSolidFillColor
GdipDrawLineI
GdipSetClipRectI
GdipSaveGraphics
GdipGetImageWidth
GdipGetImagePixelFormat
GdipCloneBitmapAreaI
GdipDrawImageRectI
GdipGraphicsClear
GdipCloneImage
GdipDisposeImage
GdipReleaseDC
GdipGetRegionHRgn
GdipSetSmoothingMode
GdipCreateBitmapFromHBITMAP
GdipSetImageAttributesColorKeys
GdipGetImageGraphicsContext
GdipCreateBitmapFromStream
GdipDrawImageRectRectI
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipGetImageHeight
GdipSetImageAttributesColorMatrix
GdipCreatePen1
GdipDrawRectangleI
GdipDrawImageRectRect
GdipFillRectangle
GdipDeletePen
GdipScaleWorldTransform
GdipDeleteBrush
GdipAlloc
GdipDisposeImageAttributes
GdipDeletePath
GdipAddPathRectangleI
GdipDrawPath
GdipCreatePath
GdipWindingModeOutline
GdipCreateSolidFill
GdipFillPath
GdipCreateHBITMAPFromBitmap
GdiplusStartup
GdipCreateImageAttributes
GdiplusShutdown
GdipLoadImageFromFile
GdipFree
GdipCreateFromHDC
GdipCreateBitmapFromResource
dbghelp
MiniDumpWriteDump
bcrypt
BCryptEncrypt
BCryptCloseAlgorithmProvider
BCryptDestroyHash
BCryptDeriveKeyPBKDF2
BCryptGetProperty
BCryptDestroyKey
BCryptFinishHash
BCryptGenRandom
BCryptOpenAlgorithmProvider
BCryptHashData
BCryptSetProperty
BCryptCreateHash
BCryptGenerateSymmetricKey
vcruntime140
memcpy
memset
__std_terminate
strrchr
memmove
longjmp
_setjmp3
memchr
_except_handler4_common
__std_type_info_destroy_list
_purecall
__RTtypeid
wcsstr
__std_type_info_compare
wcschr
__std_exception_destroy
__std_exception_copy
strstr
strchr
wcsrchr
__std_type_info_name
__RTDynamicCast
__CxxFrameHandler3
_CxxThrowException
api-ms-win-crt-heap-l1-1-0
realloc
calloc
_recalloc
malloc
free
_callnewh
api-ms-win-crt-time-l1-1-0
_gmtime64_s
_time64
_localtime64
_mktime64
api-ms-win-crt-runtime-l1-1-0
strerror
raise
_exit
_initterm_e
_initterm
_cexit
_crt_atexit
_execute_onexit_table
_invalid_parameter_noinfo_noreturn
_register_onexit_function
_initialize_onexit_table
_invalid_parameter_noinfo
_errno
_initialize_narrow_environment
terminate
_configure_narrow_argv
_resetstkoflw
_seh_filter_dll
abort
signal
exit
strerror_s
_beginthreadex
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vsprintf
_get_stream_buffer_pointers
_fseeki64
fread
fsetpos
ungetc
_setmode
fwrite
fgetc
fclose
fflush
fputc
_fileno
__stdio_common_vswprintf
__acrt_iob_func
__stdio_common_vfprintf
ftell
__stdio_common_vswprintf_s
fseek
__stdio_common_vsscanf
__stdio_common_vsprintf_s
_wfopen
fopen
fgets
rewind
fputs
__stdio_common_vswscanf
feof
_close
ferror
__stdio_common_vsnprintf_s
_write
_open
_read
setvbuf
_lseeki64
fgetpos
api-ms-win-crt-string-l1-1-0
isdigit
isspace
isalpha
_strdup
isxdigit
_wcsdup
iswspace
strcmp
_wcsupr
_strnicmp
isalnum
wcsncpy
_wcsicmp
strcspn
tolower
toupper
_wcsnicmp
strspn
towupper
towlower
_stricmp
strncpy_s
iswdigit
wcscat_s
wcscpy_s
wcsncpy_s
strncmp
strncpy
api-ms-win-crt-convert-l1-1-0
atof
_wtoi
_wtof
strtoul
atoi
strtod
strtol
wcstoul
api-ms-win-crt-filesystem-l1-1-0
_lock_file
_stat64i32
_unlock_file
_splitpath_s
api-ms-win-crt-utility-l1-1-0
rand
srand
qsort
api-ms-win-crt-math-l1-1-0
ldexp
frexp
_CIfmod
_libm_sse2_acos_precise
_dtest
modf
_libm_sse2_tan_precise
round
_libm_sse2_pow_precise
_libm_sse2_sin_precise
_libm_sse2_cos_precise
_hypot
_libm_sse2_sqrt_precise
floor
ceil
_CIatan2
_except1
api-ms-win-crt-locale-l1-1-0
localeconv
api-ms-win-crt-environment-l1-1-0
getenv
Exports
Exports
LoadPdfThumbnail
LoadPdfThumbnailFromStream
PdfReaderMain
Sections
.text Size: 4.9MB - Virtual size: 4.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 927KB - Virtual size: 926KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 54KB - Virtual size: 614KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 170KB - Virtual size: 169KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 193KB - Virtual size: 193KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ