f285dcf1afafdce7ea7afd1ed7715b34_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f285dcf1afafdce7ea7afd1ed7715b34_JaffaCakes118
Size

21.2MB
MD5

f285dcf1afafdce7ea7afd1ed7715b34
SHA1

a796133a750b5f7194a4b289cf5d158ab7a5beec
SHA256

bd8aa9c4c414598139ad2786f8565dcb609840d29023d926a5eabb2dfcfbed3d
SHA512

9631ee883e21fb564fc465f625840348f51c47bbf143318fcaf0bf0229da39b271a18d46a055c18dbf9cff418c954165a6daa58e3e48125bae83d950d1cf7a9b
SSDEEP

393216:qLTzO3slXeoac1uXsHZmBBF5bE21cBttCSczdxEIVmKIngvlvYqGDo7QMcVv9:qLTzGsXLREXsHZmBBDmtcbzdLVvvdEDn

Score

3^/10

Malware Config

Signatures

Unsigned PE 8 IoCs

Checks for missing Authenticode signature.

resource
unpack002/$PLUGINSDIR/InstallOptions.dll
unpack002/3rd/FLVSplitter.ax
unpack002/3rd/RealMediaSplitter.ax
unpack002/cv100.dll
unpack002/cxcore100.dll
unpack002/highgui100.dll
unpack002/libguide40.dll
unpack002/sqlite3.dll

NSIS installer 1 IoCs

installer

resource	yara_rule
static1/unpack001/WebcamMax-4.2.5.0.MultiLanguage.Setup.exe	nsis_installer_1

Files

f285dcf1afafdce7ea7afd1ed7715b34_JaffaCakes118
.rar
WebcamMax-4.2.5.0.MultiLanguage.Setup.exe
.exe windows:4 windows x86 arch:x86

97318da386948415d08cef4a9006d669

Code Sign

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

25/04/2007, 00:00

Not After

09/07/2019, 18:40

Subject

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning
ExtKeyUsageClientAuth

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

09/07/1999, 18:31

Not After

09/07/2019, 18:40

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0d
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

30/04/2007, 00:00

Not After

29/04/2012, 23:59

Subject

CN=WoSign Time Stamping Signer,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

bb:9e:58:72:c9:07:f4:bb:51:ed:8d:58:98:fc:db:f4
Certificate

Issuer

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Not Before

01/02/2008, 00:00

Not After

31/01/2013, 23:59

Subject

CN=eCode Sky Network Technology Co.\, Ltd.,O=eCode Sky Network Technology Co.\, Ltd.,POSTALCODE=100000,STREET=159\, Kehai Blvd.\,Fuzhang Park\, Tongzhou District\, Beijing,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
CreateFileA
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
CreateDialogParamA
DestroyWindow
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetPrivateProfileIntA
GlobalLock
GetModuleHandleA
lstrcmpiA
GetPrivateProfileStringA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalUnlock
GlobalAlloc

user32

MapWindowPoints
GetDlgCtrlID
CloseClipboard
GetClipboardData
OpenClipboard
PtInRect
SetWindowRgn
LoadIconA
LoadImageA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
EnableMenuItem
GetSystemMenu
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
LoadCursorA
SetCursor
DrawTextA
GetWindowLongA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
GetClientRect

gdi32

SetTextColor
CreateCompatibleDC
GetObjectA
GetDIBits
CreateRectRgn
CombineRgn
DeleteObject
SelectObject

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetPathFromIDListA
ShellExecuteA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/dlg.ini
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
3rd/FLVSplitter.ax
.dll regsvr32 windows:4 windows x86 arch:x86

15dabbb20517a65d9df817776f6e1f69

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

i:\Progs\guliverkli.svn\trunk\guliverkli\src\filters\parser\flvsplitter\Release\FLVSplitter.pdb

Imports

kernel32

WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetThreadLocale
GetFullPathNameA
LocalAlloc
GlobalAddAtomA
WritePrivateProfileStringA
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
SetErrorMode
GlobalFlags
GlobalGetAtomNameA
lstrcmpW
GlobalFindAtomA
GetCPInfo
GetOEMCP
HeapAlloc
ReadFile
HeapReAlloc
RtlUnwind
GetCommandLineA
GetProcessHeap
ExitProcess
SetStdHandle
GetFileType
HeapSize
HeapDestroy
HeapCreate
GetStdHandle
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetACP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetFileTime
GetFileSize
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentProcessId
GetModuleFileNameW
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GlobalDeleteAtom
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
SetLastError
DeleteFileA
Sleep
RaiseException
CreateFileA
GetVolumeInformationA
FindFirstFileA
FindClose
FindResourceA
LoadResource
LockResource
SizeofResource
DisableThreadLibraryCalls
CreateThread
GetVersionExA
GetTickCount
GetCurrentThread
SetThreadPriority
GetModuleHandleA
GetProcAddress
VirtualAlloc
GetCurrentThreadId
GetCurrentProcess
DuplicateHandle
VirtualFree
WaitForSingleObject
ResetEvent
SetEvent
CreateEventA
CloseHandle
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
InterlockedDecrement
FreeLibrary
InterlockedIncrement
GetModuleFileNameA
lstrlenA
CompareStringW
CompareStringA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
HeapFree

user32

DestroyMenu
LoadIconA
WinHelpA
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
CopyRect
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
GetWindowTextA
SetWindowTextA
LoadCursorA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnregisterClassA
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetSystemMetrics
GetWindowThreadProcessId
SendMessageA
GetParent
GetWindowLongA
ShowWindow
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
UnhookWindowsHookEx
PostMessageA
PostQuitMessage
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
DispatchMessageA
RegisterWindowMessageA
PeekMessageA
CharUpperA

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
GetStockObject
RestoreDC
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
SaveDC
DeleteObject
CreateBitmap
GetDeviceCaps
GetClipBox
SetMapMode
SetTextColor
SetBkColor
PtVisible

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegQueryValueA
RegEnumKeyA
RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
RegCreateKeyA
RegSetValueA
RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA

shlwapi

PathFindExtensionA
PathStripToRootA
PathIsUNCA
PathFindFileNameA

ole32

CLSIDFromString
CoTaskMemAlloc
CoInitialize
CoFreeUnusedLibraries
CoUninitialize
CoCreateInstance
StringFromGUID2
CoTaskMemFree

oleaut32

SysFreeString
VariantChangeType
SysAllocStringLen
VariantClear
VariantInit
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 196KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
3rd/Flash9.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

56f3e1d42b2d8c0bc3bf949df3491fe3

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

04/12/2003, 00:00

Not After

03/12/2008, 23:59

Subject

CN=VeriSign Time Stamping Services Signer,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

57:64:6e:2b:55:00:23:d4:90:53:4a:55:3e:ab:0d:0a
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2009, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6f:0a:f7:a3:21:3c:ca:db:a8:ad:c1:a7:1b:75:61:a4
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

10/12/2005, 00:00

Not After

10/12/2006, 23:59

Subject

CN=Adobe Systems Incorporated,OU=Digital ID Class 3 - Microsoft Software Validation v2+OU=Information Systems,O=Adobe Systems Incorporated,L=San Jose,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

42:7f:7e:f0:de:22:b6:23:cb:fb:ff:f7:7a:38:fd:18:55:d9:8e:3e
Signer

Actual PE Digest

42:7f:7e:f0:de:22:b6:23:cb:fb:ff:f7:7a:38:fd:18:55:d9:8e:3e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\flashfarm\depot\main\player\FlashPlayer\platform\win32\ActiveX\ReleaseMinSize\Flash.pdb

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

winmm

waveOutClose
timeBeginPeriod
waveOutGetDevCapsA
waveOutPrepareHeader
waveOutWrite
waveOutUnprepareHeader
timeGetTime
timeEndPeriod
timeSetEvent
waveOutOpen
waveOutReset
waveInOpen
waveInPrepareHeader
waveInReset
waveInUnprepareHeader
waveInClose
waveInStop
waveInAddBuffer
waveInStart
waveInGetNumDevs
waveOutGetNumDevs
waveInGetDevCapsA
timeKillEvent
timeGetDevCaps

wsock32

select
htons
ioctlsocket
inet_ntoa
ntohl
gethostname
htonl
gethostbyname
setsockopt

wininet

InternetConnectA
InternetReadFile
InternetCloseHandle
InternetOpenA
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA

crypt32

CertVerifySubjectCertificateContext
CertFindCertificateInStore
CertCreateCertificateContext
CryptGetMessageCertificates
CryptVerifyMessageSignature
CertCloseStore
CertFreeCertificateContext

rpcrt4

UuidToStringA
RpcStringFreeA

oleaut32

SafeArrayCreateVector
SafeArrayLock
SafeArrayUnlock
VarBstrCat
SysAllocStringByteLen
OleCreatePropertyFrame
SysStringLen
LoadRegTypeLi
VarUI4FromStr
SysFreeString
SysAllocStringLen
SysAllocString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VariantInit
VariantClear
SysStringByteLen
VariantChangeType

kernel32

GlobalFree
GlobalAlloc
lstrlenA
WideCharToMultiByte
lstrlenW
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
lstrcmpiA
CreateMutexA
CloseHandle
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleFileNameA
LocalFree
GetLastError
SetFileAttributesA
GetFileAttributesA
GlobalUnlock
GlobalLock
MulDiv
InterlockedIncrement
InterlockedDecrement
lstrcpynA
lstrcpyA
lstrcatA
GetCurrentThreadId
DisableThreadLibraryCalls
LockResource
LoadResource
FindResourceA
SizeofResource
LoadLibraryExA
GetModuleHandleA
SetErrorMode
GetTickCount
LCMapStringA
LCMapStringW
CreateProcessA
GetStartupInfoA
WaitForSingleObject
DeleteFileA
CreateFileA
GetSystemDirectoryA
VirtualQuery
GetSystemInfo
GetSystemDefaultLangID
GetUserDefaultLangID
CreateThread
ExitThread
GetFileAttributesW
FindResourceExA
FindResourceExW
GetTimeZoneInformation
GetSystemTime
SystemTimeToFileTime
ReadFile
WriteFile
SetFilePointer
GetFileSize
GetCurrentDirectoryA
FindClose
GetTempFileNameA
GetTempPathA
GetTempFileNameW
GetTempPathW
SetCurrentDirectoryA
FindFirstFileA
FindFirstFileW
FindNextFileA
FindNextFileW
DeleteFileW
MoveFileA
MoveFileW
RemoveDirectoryA
RemoveDirectoryW
CreateDirectoryA
CreateDirectoryW
CreateFileW
GetFileAttributesExA
GetFileAttributesExW
ReleaseMutex
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
IsDBCSLeadByteEx
GetProcessTimes
CreateEventA
SetEvent
TlsAlloc
SetThreadPriority
ResetEvent
WaitForMultipleObjects
VirtualFree
VirtualAlloc
GetThreadPriority
GetCurrentThread
IsDBCSLeadByte
GetCPInfo
MultiByteToWideChar
InterlockedCompareExchange
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
QueryPerformanceCounter
QueryPerformanceFrequency
VirtualProtect
ExitProcess
HeapSize
DebugBreak
HeapReAlloc
GetCurrentProcessId
GetSystemTimeAsFileTime
LocalAlloc
RtlUnwind

user32

GetWindowInfo
SetFocus
FillRect
GetKeyState
SetCapture
LoadStringA
CheckMenuItem
EnableMenuItem
MessageBoxA
ScreenToClient
GetCursorPos
WindowFromPoint
SetCursor
DestroyMenu
GetSubMenu
LoadMenuA
GetCapture
ReleaseCapture
GetFocus
MapVirtualKeyA
UpdateWindow
SetTimer
KillTimer
TrackPopupMenu
ClientToScreen
DeleteMenu
GetMenuItemID
SystemParametersInfoA
PtInRect
IsChild
GetParent
InsertMenuItemA
GetSystemMetrics
GetMenuItemInfoA
GetMenuItemCount
SetWindowTextA
SendMessageA
LoadIconA
GetDesktopWindow
GetWindowRect
EndDialog
DialogBoxIndirectParamA
CopyRect
DialogBoxParamA
DialogBoxParamW
WaitForInputIdle
RegisterClipboardFormatA
CloseClipboard
GetClipboardData
OpenClipboard
IsClipboardFormatAvailable
SetClipboardData
EmptyClipboard
PostThreadMessageA
GetQueueStatus
PeekMessageA
MsgWaitForMultipleObjects
RegisterWindowMessageA
DispatchMessageA
GetWindowLongA
DefWindowProcA
BeginPaint
GetClientRect
EndPaint
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
SetWindowPos
UnionRect
SetWindowLongA
CharNextA
GetTopWindow
ReleaseDC
GetDC
GetDoubleClickTime
EnumWindows
PostMessageA
IsWindowEnabled
GetWindow
GetClassNameA
GetWindowTextW
GetWindowTextA
UnregisterClassA
SendInput
GetKeyboardLayout
RegisterClassExA
LoadCursorA
wsprintfA
CreateWindowExA
CreateDialogParamA
SendDlgItemMessageA
SetDlgItemTextW
CheckDlgButton
WinHelpA
GetDialogBaseUnits
GetWindowTextLengthA
IsDlgButtonChecked
GetDlgItem
IsDialogMessageA
MoveWindow
ShowWindow
GetClassInfoExA
InvalidateRect
IsWindow
DestroyWindow
DialogBoxIndirectParamW
CallWindowProcA

gdi32

ExtTextOutA
ExtTextOutW
SetTextColor
GetClipRgn
CreateRectRgn
GetTextAlign
GetBkMode
SaveDC
SelectClipPath
FillPath
ExtCreatePen
StrokePath
EndDoc
StartDocA
CreatePalette
GetTextExtentPoint32A
GetCurrentObject
GetTextExtentPoint32W
DPtoLP
CreatePen
SetTextCharacterExtra
GetBkColor
SetBkColor
PolyBezierTo
LineTo
MoveToEx
SetPolyFillMode
EndPath
BeginPath
EndPage
GetTextColor
SelectClipRgn
IntersectClipRect
SetBkMode
EnumFontFamiliesA
GetObjectType
GetClipBox
GetSystemPaletteEntries
LPtoDP
SetViewportOrgEx
StretchDIBits
GetStockObject
Rectangle
CreateSolidBrush
CreateFontIndirectA
GetTextMetricsA
GetTextExtentPointA
CreateMetaFileA
SetWindowOrgEx
SetWindowExtEx
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
SetTextAlign
RestoreDC
GdiFlush
CreateCompatibleDC
DeleteObject
SelectObject
RealizePalette
SelectPalette
DeleteDC
BitBlt
GetObjectA
CreateDIBSection
GetDIBits
CreateCompatibleBitmap
GetDeviceCaps
TextOutA
StartPage

comdlg32

GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA
PrintDlgA

advapi32

RegOpenKeyExA
RegOpenKeyA
RegEnumKeyExA
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyA
RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegEnumKeyA

shell32

SHAppBarMessage
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA

ole32

WriteClassStm
OleSaveToStream
CoUninitialize
CoInitialize
CoFreeUnusedLibraries
OleLoadFromStream
OleRegGetUserType
CoTaskMemRealloc
StringFromGUID2
CoCreateInstance
CreateDataAdviseHolder
OleRegEnumVerbs
CoTaskMemFree
CoTaskMemAlloc
CreateBindCtx
CreateOleAdviseHolder
OleRegGetMiscStatus

shlwapi

PathFindExtensionA

urlmon

HlinkSimpleNavigateToMoniker
RegisterBindStatusCallback
CreateURLMoniker

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 172KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 208KB - Virtual size: 996KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
3rd/RealMediaSplitter.ax
.dll regsvr32 windows:4 windows x86 arch:x86

651a28cffd0b0a93b306e41f7806b0ee

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

i:\progs\guliverkli\src\filters\parser\realmediasplitter\release unicode\RealMediaSplitter.pdb

Imports

kernel32

LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetModuleHandleA
GetVersionExA
LoadLibraryA
CompareStringW
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GlobalFlags
CompareStringA
HeapFree
RtlUnwind
HeapAlloc
GetCommandLineA
GetProcessHeap
GetFullPathNameW
SetStdHandle
GetFileType
HeapSize
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapDestroy
HeapCreate
GetCPInfo
GetACP
GetOEMCP
GetStdHandle
LCMapStringA
LCMapStringW
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
GetFileTime
GetFileSize
GetFileAttributesW
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
SetLastError
DeleteFileW
Sleep
RaiseException
GetModuleFileNameW
GetVersion
CreateFileW
GetVolumeInformationW
FindFirstFileW
FindClose
GetCurrentProcessId
CreateThread
GetTickCount
SetThreadPriority
GetModuleHandleW
InterlockedExchange
VirtualAlloc
CreateSemaphoreW
GetCurrentThreadId
GetCurrentProcess
DuplicateHandle
VirtualFree
GetSystemInfo
ReleaseSemaphore
WaitForSingleObject
ResetEvent
SetEvent
CreateEventW
CloseHandle
lstrcpynW
InterlockedDecrement
InterlockedIncrement
lstrcmpW
DisableThreadLibraryCalls
GetVersionExW
GetLastError
lstrlenA
lstrlenW
GetModuleFileNameA
LoadLibraryW
GetProcAddress
FreeLibrary
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
HeapReAlloc

user32

SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
LoadIconW
WinHelpW
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
IsWindow
UnregisterClassA
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetWindow
ClientToScreen
GrayStringW
DrawTextW
TabbedTextOutW
SetWindowsHookExW
CallNextHookEx
GetKeyState
ValidateRect
GetWindowTextW
LoadCursorW
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
PostMessageW
PostQuitMessage
DestroyMenu
SetWindowTextW
CreateWindowExW
CharUpperW
GetSystemMetrics
GetWindowThreadProcessId
SendMessageW
GetParent
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxW
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
SetRect
DispatchMessageW
RegisterWindowMessageW
PeekMessageW
DrawTextExW
GetForegroundWindow

gdi32

SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreateBitmap
GetStockObject
ScaleViewportExtEx
RectVisible
PtVisible
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
SetBkColor
RestoreDC
SaveDC
GetDeviceCaps
DeleteObject
GetClipBox
SetMapMode
SetTextColor
TextOutW

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCreateKeyExW
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathRemoveFileSpecA
PathAddBackslashA

ole32

StringFromGUID2
CoCreateInstance
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString

oleaut32

SysAllocString
VariantChangeType
SysAllocStringLen
VariantClear
VariantInit
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_TEXT64
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAMTHWDM.inf
CAMTHWDM.sys
.sys windows:5 windows x86 arch:x86

02752d785074bafb0644664948d15866

Code Sign

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

25/04/2007, 00:00

Not After

09/07/2019, 18:40

Subject

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning
ExtKeyUsageClientAuth

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

09/07/1999, 18:31

Not After

09/07/2019, 18:40

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0d
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

30/04/2007, 00:00

Not After

29/04/2012, 23:59

Subject

CN=WoSign Time Stamping Signer,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

bb:9e:58:72:c9:07:f4:bb:51:ed:8d:58:98:fc:db:f4
Certificate

Issuer

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Not Before

01/02/2008, 00:00

Not After

31/01/2013, 23:59

Subject

CN=eCode Sky Network Technology Co.\, Ltd.,O=eCode Sky Network Technology Co.\, Ltd.,POSTALCODE=100000,STREET=159\, Kehai Blvd.\,Fuzhang Park\, Tongzhou District\, Beijing,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\work\webcammax\sourcevc\CamDriver\objfre_wxp_x86\i386\CAMTHWDM.pdb

Imports

ntoskrnl.exe

KeInitializeSpinLock
RtlCompareMemory
ExFreePool
ExAllocatePoolWithTag
MmMapLockedPages
memmove
IofCompleteRequest

hal

KeGetCurrentIrql
KfAcquireSpinLock
KfReleaseSpinLock

stream.sys

StreamClassDeviceNotification
StreamClassGetDmaBuffer
StreamClassRegisterAdapter
StreamClassStreamNotification
StreamClassQueryMasterClockSync
StreamClassScheduleTimer
StreamClassRegisterFilterWithNoKSPins
StreamClassGetPhysicalAddress

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 901KB - Virtual size: 901KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

PAGECONS
Size: 256B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 768B - Virtual size: 656B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
const.dat
cv100.dll
.dll windows:4 windows x86 arch:x86

22e52205ddda9ee647b91d530a1f82e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

cxcore100

cvStartWriteSeq
cvFlushSeqWriter
cvInitMatHeader
cvInvert
cvSubRS
cvMinMaxLoc
cvGetCols
cvConvertScale
cvCloneMat
cvScalarToRawData
cvCreateSparseMat
cvInitMatNDHeader
cvCreateData
cvInitSparseMatIterator
cvGetDims
cvPtrND
cvGetImage
cvSum
cvGetRawData
cvCopy
cvRelease
cvReleaseData
cvAdd
cvDiv
cvMul
cvInitNArrayIterator
cvNextNArraySlice
cvGetElemType
cvGetSize
cvPtr1D
cvLUT
cvGetFileNodeByName
cvRead
cvStartReadRawData
cvReadRawDataSlice
cvStartWriteStruct
cvWriteInt
cvWrite
cvWriteRawData
cvEndWriteStruct
??0CvType@@QAE@PBDP6AHPBX@ZP6AXPAPAX@ZP6APAXPAUCvFileStorage@@PAUCvFileNode@@@ZP6AX501UCvAttrList@@@ZP6APAX1@Z@Z
cvGEMM
cvSet
cvSolve
cvCartToPolar
cvLog
cvSub
cvCountNonZero
cvInitLineIterator
cvCreateMemStorage
cvMemStorageAlloc
cvAvgSdv
cvAvg
cvGetOptimalDFTSize
cvGetSubRect
cvSplit
cvDFT
cvMulSpectrums
cvReleaseMemStorage
cvReshape
cvCmpS
cvAndS
cvGetSeqElem
cvSetSeqReaderPos
cvSeqPush
cvSeqPop
cvSeqPopMulti
cvGetSeqReaderPos
cvCvtSeqToArray
cvCheckTermCriteria
cvMakeSeqHeaderForArray
cvClearSeq
cvSeqElemIdx
cvDrawContours
cvRectangle
cvGetNumThreads
cvGetThreadNum
cvFastArctan
cvSeqPushMulti
cvEigenVV
cvSetData
cvSliceLength
cvMulTransposed
cvSVD
cvCreateGraph
cvClearSet
cvRandArr
cvSetIdentity
cvTranspose
cvGetRows
cvNorm
cvCrossProduct
cvDotProduct
cvScaleAdd
cvLine
cvCircle
cvSVBkSb
cvDet
cvCheckArr
cvSolveCubic
cvSeqPartition
cvLoad
cvWriteComment
cvWriteReal
??0CvModule@@QAE@PAUCvModuleInfo@@@Z
cvCreateImage
?load@CvImage@@QAE_NPBD0H@Z
?read@CvImage@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvImage@@QAE_NPAUCvFileStorage@@PBDH@Z
cvCloneImage
cvSetImageROI
cvResetImageROI
cvSetImageCOI
cvCreateMatHeader
?load@CvMatrix@@QAE_NPBD0H@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBDH@Z
cvCreateSet
cvCreateChildMemStorage
cvInsertNodeIntoTree
cvEndWriteSeq
cvCreateSeqBlock
cvStartAppendToSeq
cvRestoreMemStoragePos
cvClearMemStorage
cvSetAdd
cvCreateSeq
cvSaveMemStoragePos
cvChangeSeqBlock
cvStartReadSeq
cvCbrt
cvPow
cvErrorFromIppStatus
cvAlloc
??1CvType@@QAE@XZ
??1CvModule@@QAE@XZ
cvSetZero
cvCreateMat
cvGetErrStatus
cvGetMat
cvError
cvFree_
cvReleaseMat
cvMerge
cvReleaseImage

libguide40

ord707
ord114
ord126
ord150
ord138
ord148
ord145
ord135
ord136
ord118
ord116
ord141

msvcrt

fopen
fclose
log
pow
sprintf
log10
atan2
acos
cos
??2@YAPAXI@Z
fread
??3@YAXPAX@Z
ftell
strncmp
sscanf
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv
exp
memcpy
memset
fseek

kernel32

DisableThreadLibraryCalls

Exports

Exports

??0CvBaseImageFilter@@QAE@ABV0@@Z
??0CvBaseImageFilter@@QAE@HHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
??0CvBaseImageFilter@@QAE@XZ
??0CvBoxFilter@@QAE@ABV0@@Z
??0CvBoxFilter@@QAE@HHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
??0CvBoxFilter@@QAE@XZ
??0CvImage@@QAE@ABV0@@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvImage@@QAE@PAU_IplImage@@@Z
??0CvImage@@QAE@PBD0H@Z
??0CvImage@@QAE@UCvSize@@HH@Z
??0CvImage@@QAE@XZ
??0CvLaplaceFilter@@QAE@ABV0@@Z
??0CvLaplaceFilter@@QAE@HHH_NHHUCvScalar@@@Z
??0CvLaplaceFilter@@QAE@XZ
??0CvLinearFilter@@QAE@ABV0@@Z
??0CvLinearFilter@@QAE@HHHPBUCvMat@@UCvPoint@@HUCvScalar@@@Z
??0CvLinearFilter@@QAE@XZ
??0CvMatrix@@QAE@ABV0@@Z
??0CvMatrix@@QAE@HHH@Z
??0CvMatrix@@QAE@HHHPAUCvMat@@PAXH@Z
??0CvMatrix@@QAE@HHHPAXH@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvMatrix@@QAE@PAUCvMat@@@Z
??0CvMatrix@@QAE@PBD0H@Z
??0CvMatrix@@QAE@XZ
??0CvMorphology@@QAE@ABV0@@Z
??0CvMorphology@@QAE@HHHHPAUCvMat@@UCvSize@@UCvPoint@@HUCvScalar@@@Z
??0CvMorphology@@QAE@XZ
??0CvSepFilter@@QAE@ABV0@@Z
??0CvSepFilter@@QAE@HHHPBUCvMat@@0UCvPoint@@HUCvScalar@@@Z
??0CvSepFilter@@QAE@XZ
??1CvBaseImageFilter@@UAE@XZ
??1CvBoxFilter@@UAE@XZ
??1CvImage@@QAE@XZ
??1CvLaplaceFilter@@UAE@XZ
??1CvLinearFilter@@UAE@XZ
??1CvMatrix@@QAE@XZ
??1CvMorphology@@UAE@XZ
??1CvSepFilter@@UAE@XZ
??4CvBaseImageFilter@@QAEAAV0@ABV0@@Z
??4CvBoxFilter@@QAEAAV0@ABV0@@Z
??4CvImage@@QAEAAV0@ABV0@@Z
??4CvLaplaceFilter@@QAEAAV0@ABV0@@Z
??4CvLinearFilter@@QAEAAV0@ABV0@@Z
??4CvMatrix@@QAEAAV0@ABV0@@Z
??4CvModule@@QAEAAU0@ABU0@@Z
??4CvMorphology@@QAEAAV0@ABV0@@Z
??4CvSepFilter@@QAEAAV0@ABV0@@Z
??4CvType@@QAEAAU0@ABU0@@Z
??BCvImage@@QAEPAU_IplImage@@XZ
??BCvImage@@QBEPBU_IplImage@@XZ
??BCvMatrix@@QAEPAUCvMat@@XZ
??BCvMatrix@@QBEPBUCvMat@@XZ
??_7CvBaseImageFilter@@6B@
??_7CvBoxFilter@@6B@
??_7CvLaplaceFilter@@6B@
??_7CvLinearFilter@@6B@
??_7CvMorphology@@6B@
??_7CvSepFilter@@6B@
?addref@CvMatrix@@QBEXXZ
?attach@CvImage@@QAEXPAU_IplImage@@_N@Z
?channels@CvImage@@QBEHXZ
?channels@CvMatrix@@QBEHXZ
?clear@CvBaseImageFilter@@UAEXXZ
?clear@CvImage@@QAEXXZ
?clear@CvLinearFilter@@UAEXXZ
?clear@CvMatrix@@QAEXXZ
?clear@CvMorphology@@UAEXXZ
?clear@CvSepFilter@@UAEXXZ
?clone@CvImage@@QAE?AV1@XZ
?clone@CvMatrix@@QAE?AV1@XZ
?coi@CvImage@@QBEHXZ
?cols@CvMatrix@@QBEHXZ
?create@CvImage@@QAEXUCvSize@@HH@Z
?create@CvMatrix@@QAEXHHH@Z
?data@CvImage@@QAEPAEXZ
?data@CvImage@@QBEPBEXZ
?data@CvMatrix@@QAEPAEXZ
?data@CvMatrix@@QBEPBEXZ
?depth@CvImage@@QBEHXZ
?depth@CvMatrix@@QBEHXZ
?detach@CvImage@@QAEXXZ
?fill_cyclic_buffer@CvBaseImageFilter@@MAEHPBEHHHH@Z
?fill_cyclic_buffer@CvMorphology@@MAEHPBEHHHH@Z
?get_anchor@CvBaseImageFilter@@QBE?AUCvPoint@@XZ
?get_dst_type@CvBaseImageFilter@@QBEHXZ
?get_element@CvMorphology@@QBEPBUCvMat@@XZ
?get_element_shape@CvMorphology@@QBEHXZ
?get_element_sparse_buf@CvMorphology@@QAEPAEXZ
?get_element_sparse_count@CvMorphology@@QBEHXZ
?get_kernel@CvLinearFilter@@QBEPBUCvMat@@XZ
?get_kernel_size@CvBaseImageFilter@@QBE?AUCvSize@@XZ
?get_kernel_sparse_buf@CvLinearFilter@@QAEPAEXZ
?get_kernel_sparse_count@CvLinearFilter@@QBEHXZ
?get_operation@CvMorphology@@QBEHXZ
?get_scale@CvBoxFilter@@QBENXZ
?get_src_type@CvBaseImageFilter@@QBEHXZ
?get_sum_buf@CvBoxFilter@@QAEPAEXZ
?get_sum_count_ptr@CvBoxFilter@@QAEPAHXZ
?get_width@CvBaseImageFilter@@QBEHXZ
?get_work_params@CvBaseImageFilter@@MAEXXZ
?get_work_params@CvLaplaceFilter@@MAEXXZ
?get_work_type@CvBaseImageFilter@@QBEHXZ
?get_x_filter_func@CvBaseImageFilter@@QBEP6AXPBEPAEPAX@ZXZ
?get_x_kernel@CvSepFilter@@QBEPBUCvMat@@XZ
?get_x_kernel_flags@CvSepFilter@@QBEHXZ
?get_y_filter_func@CvBaseImageFilter@@QBEP6AXPAPAEPAEHHPAX@ZXZ
?get_y_kernel@CvSepFilter@@QBEPBUCvMat@@XZ
?get_y_kernel_flags@CvSepFilter@@QBEHXZ
?height@CvImage@@QBEHXZ
?init@CvBaseImageFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvBoxFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvLaplaceFilter@@UAEXHHHPBUCvMat@@0UCvPoint@@HUCvScalar@@@Z
?init@CvLaplaceFilter@@UAEXHHH_NHHUCvScalar@@@Z
?init@CvLaplaceFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvLinearFilter@@UAEXHHHPBUCvMat@@UCvPoint@@HUCvScalar@@@Z
?init@CvLinearFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvMorphology@@UAEXHHHHPAUCvMat@@UCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvMorphology@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init@CvSepFilter@@UAEXHHHPBUCvMat@@0UCvPoint@@HUCvScalar@@@Z
?init@CvSepFilter@@UAEXHHH_NUCvSize@@UCvPoint@@HUCvScalar@@@Z
?init_binary_element@CvMorphology@@SAXPAUCvMat@@HUCvPoint@@@Z
?init_deriv@CvSepFilter@@UAEXHHHHHHH@Z
?init_gaussian@CvSepFilter@@UAEXHHHHN@Z
?init_gaussian_kernel@CvSepFilter@@SAXPAUCvMat@@N@Z
?init_scharr_kernel@CvSepFilter@@SAXPAUCvMat@@0HHH@Z
?init_sobel_kernel@CvSepFilter@@SAXPAUCvMat@@0HHH@Z
?is_basic_laplacian@CvLaplaceFilter@@QBE_NXZ
?is_normalized@CvBoxFilter@@QBE_NXZ
?is_normalized@CvLaplaceFilter@@QBE_NXZ
?is_valid@CvImage@@QAE_NXZ
?is_valid@CvMatrix@@QAE_NXZ
?make_y_border@CvBaseImageFilter@@MAEXHHH@Z
?origin@CvImage@@QBEHXZ
?pix_size@CvImage@@QBEHXZ
?pix_size@CvMatrix@@QBEHXZ
?process@CvBaseImageFilter@@UAEHPBUCvMat@@PAU2@UCvRect@@UCvPoint@@H@Z
?release@CvImage@@QAEXXZ
?release@CvMatrix@@QAEXXZ
?reset_roi@CvImage@@QAEXXZ
?roi@CvImage@@QBE?AUCvRect@@XZ
?roi_row@CvImage@@QAEPAEH@Z
?roi_row@CvImage@@QBEPBEH@Z
?roi_size@CvImage@@QBE?AUCvSize@@XZ
?row@CvMatrix@@QAEPAEH@Z
?row@CvMatrix@@QBEPBEH@Z
?rows@CvMatrix@@QBEHXZ
?set@CvMatrix@@QAEXPAUCvMat@@_N@Z
?set_coi@CvImage@@QAEXH@Z
?set_data@CvMatrix@@QAEXPAXH@Z
?set_roi@CvImage@@QAEXUCvRect@@@Z
?size@CvImage@@QBE?AUCvSize@@XZ
?size@CvMatrix@@QBE?AUCvSize@@XZ
?start_process@CvBaseImageFilter@@MAEXUCvSlice@@H@Z
?start_process@CvBoxFilter@@MAEXUCvSlice@@H@Z
?start_process@CvMorphology@@MAEXUCvSlice@@H@Z
?step@CvImage@@QBEHXZ
?step@CvMatrix@@QBEHXZ
?type@CvMatrix@@QBEHXZ
?width@CvImage@@QBEHXZ
cv2DRotationMatrix
cvAcc
cvAdaptiveThreshold
cvApproxChains
cvApproxPoly
cvArcLength
cvBoundingRect
cvBoxPoints
cvCalcArrBackProject
cvCalcArrBackProjectPatch
cvCalcArrHist
cvCalcBayesianProb
cvCalcEMD2
cvCalcGlobalOrientation
cvCalcImageHomography
cvCalcMotionGradient
cvCalcOpticalFlowBM
cvCalcOpticalFlowHS
cvCalcOpticalFlowLK
cvCalcOpticalFlowPyrLK
cvCalcPGH
cvCalcProbDensity
cvCalcSubdivVoronoi2D
cvCalibrateCamera2
cvCamShift
cvCanny
cvCheckContourConvexity
cvClearHist
cvClearSubdivVoronoi2D
cvCompareHist
cvComputeCorrespondEpilines
cvConDensInitSampleSet
cvConDensUpdateByTime
cvContourArea
cvContourFromContourTree
cvConvertPointsHomogenious
cvConvexHull2
cvConvexityDefects
cvCopyHist
cvCopyMakeBorder
cvCornerEigenValsAndVecs
cvCornerHarris
cvCornerMinEigenVal
cvCreateConDensation
cvCreateContourTree
cvCreateHist
cvCreateKalman
cvCreatePOSITObject
cvCreateStructuringElementEx
cvCreateSubdiv2D
cvCvtColor
cvDilate
cvDistTransform
cvDrawChessboardCorners
cvEndFindContours
cvEqualizeHist
cvErode
cvFilter2D
cvFindChessboardCorners
cvFindContours
cvFindCornerSubPix
cvFindDominantPoints
cvFindExtrinsicCameraParams2
cvFindFundamentalMat
cvFindHomography
cvFindNearestPoint2D
cvFindNextContour
cvFitEllipse2
cvFitLine
cvFloodFill
cvGetAffineTransform
cvGetCentralMoment
cvGetHuMoments
cvGetMinMaxHistValue
cvGetNormalizedCentralMoment
cvGetPerspectiveTransform
cvGetQuadrangleSubPix
cvGetRectSubPix
cvGetSpatialMoment
cvGoodFeaturesToTrack
cvHaarDetectObjects
cvHoughCircles
cvHoughLines2
cvInitSubdivDelaunay2D
cvInitUndistortMap
cvInpaint
cvIntegral
cvKalmanCorrect
cvKalmanPredict
cvLaplace
cvLoadHaarClassifierCascade
cvLogPolar
cvMakeHistHeaderForArray
cvMatchContourTrees
cvMatchShapes
cvMatchTemplate
cvMaxRect
cvMeanShift
cvMinAreaRect2
cvMinEnclosingCircle
cvMoments
cvMorphologyEx
cvMultiplyAcc
cvNormalizeHist
cvPOSIT
cvPointPolygonTest
cvPointSeqFromMat
cvPreCornerDetect
cvProjectPoints2
cvPyrDown
cvPyrMeanShiftFiltering
cvPyrSegmentation
cvPyrUp
cvReadChainPoint
cvReleaseConDensation
cvReleaseHaarClassifierCascade
cvReleaseHist
cvReleaseKalman
cvReleasePOSITObject
cvReleaseStructuringElement
cvRemap
cvResize
cvRodrigues2
cvRunHaarClassifierCascade
cvRunningAvg
cvSampleLine
cvSegmentMotion
cvSetHistBinRanges
cvSetImagesForHaarClassifierCascade
cvSmooth
cvSnakeImage
cvSobel
cvSquareAcc
cvStartFindContours
cvStartReadChainPoints
cvSubdiv2DLocate
cvSubdivDelaunay2DInsert
cvSubstituteContour
cvThreshHist
cvThreshold
cvUndistort2
cvUpdateMotionHistory
cvWarpAffine
cvWarpPerspective
cvWatershed

Sections

.text
Size: 708KB - Virtual size: 707KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cxcore100.dll
.dll windows:4 windows x86 arch:x86

439676c1d939e74212350577e38a17c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FreeLibrary
LoadLibraryA
QueryPerformanceCounter
TlsFree
GetSystemInfo
QueryPerformanceFrequency
TlsSetValue
TlsGetValue
GetProcAddress
TlsAlloc

user32

MessageBoxA
wsprintfA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

libguide40

ord705
ord707

msvcrt

memcpy
_adjust_fdiv
_initterm
_onexit
__dllonexit
??3@YAXPAX@Z
free
malloc
strncpy
sprintf
memmove
sin
exit
fprintf
_iob
??2@YAPAXI@Z
strrchr
cos
fputs
isdigit
isalnum
strchr
isalpha
strstr
fclose
strtol
strncmp
fgets
fopen
fseek
ftell
isspace
strtod
toupper
log
acos
pow
memset

Exports

Exports

??0CvImage@@QAE@ABV0@@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvImage@@QAE@PAU_IplImage@@@Z
??0CvImage@@QAE@PBD0H@Z
??0CvImage@@QAE@UCvSize@@HH@Z
??0CvImage@@QAE@XZ
??0CvMatrix@@QAE@ABV0@@Z
??0CvMatrix@@QAE@HHH@Z
??0CvMatrix@@QAE@HHHPAUCvMat@@PAXH@Z
??0CvMatrix@@QAE@HHHPAUCvMemStorage@@_N@Z
??0CvMatrix@@QAE@HHHPAXH@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvMatrix@@QAE@PAUCvMat@@@Z
??0CvMatrix@@QAE@PBD0H@Z
??0CvMatrix@@QAE@XZ
??0CvModule@@QAE@PAUCvModuleInfo@@@Z
??0CvType@@QAE@PBDP6AHPBX@ZP6AXPAPAX@ZP6APAXPAUCvFileStorage@@PAUCvFileNode@@@ZP6AX501UCvAttrList@@@ZP6APAX1@Z@Z
??1CvImage@@QAE@XZ
??1CvMatrix@@QAE@XZ
??1CvModule@@QAE@XZ
??1CvType@@QAE@XZ
??4CvImage@@QAEAAV0@ABV0@@Z
??4CvMatrix@@QAEAAV0@ABV0@@Z
??4CvModule@@QAEAAU0@ABU0@@Z
??4CvType@@QAEAAU0@ABU0@@Z
??BCvImage@@QAEPAU_IplImage@@XZ
??BCvImage@@QBEPBU_IplImage@@XZ
??BCvMatrix@@QAEPAUCvMat@@XZ
??BCvMatrix@@QBEPBUCvMat@@XZ
?addref@CvMatrix@@QBEXXZ
?attach@CvImage@@QAEXPAU_IplImage@@_N@Z
?channels@CvImage@@QBEHXZ
?channels@CvMatrix@@QBEHXZ
?clear@CvImage@@QAEXXZ
?clear@CvMatrix@@QAEXXZ
?clone@CvImage@@QAE?AV1@XZ
?clone@CvMatrix@@QAE?AV1@XZ
?coi@CvImage@@QBEHXZ
?cols@CvMatrix@@QBEHXZ
?create@CvImage@@QAEXUCvSize@@HH@Z
?create@CvMatrix@@QAEXHHH@Z
?data@CvImage@@QAEPAEXZ
?data@CvImage@@QBEPBEXZ
?data@CvMatrix@@QAEPAEXZ
?data@CvMatrix@@QBEPBEXZ
?depth@CvImage@@QBEHXZ
?depth@CvMatrix@@QBEHXZ
?detach@CvImage@@QAEXXZ
?first@CvModule@@2PAUCvModuleInfo@@A
?first@CvType@@2PAUCvTypeInfo@@A
?height@CvImage@@QBEHXZ
?is_valid@CvImage@@QAE_NXZ
?is_valid@CvMatrix@@QAE_NXZ
?last@CvModule@@2PAUCvModuleInfo@@A
?last@CvType@@2PAUCvTypeInfo@@A
?load@CvImage@@QAE_NPBD0H@Z
?load@CvMatrix@@QAE_NPBD0H@Z
?origin@CvImage@@QBEHXZ
?pix_size@CvImage@@QBEHXZ
?pix_size@CvMatrix@@QBEHXZ
?read@CvImage@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvImage@@QAE_NPAUCvFileStorage@@PBDH@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBD1@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBDH@Z
?release@CvImage@@QAEXXZ
?release@CvMatrix@@QAEXXZ
?reset_roi@CvImage@@QAEXXZ
?roi@CvImage@@QBE?AUCvRect@@XZ
?roi_row@CvImage@@QAEPAEH@Z
?roi_row@CvImage@@QBEPBEH@Z
?roi_size@CvImage@@QBE?AUCvSize@@XZ
?row@CvMatrix@@QAEPAEH@Z
?row@CvMatrix@@QBEPBEH@Z
?rows@CvMatrix@@QBEHXZ
?save@CvImage@@QAEXPBD0@Z
?save@CvMatrix@@QAEXPBD0@Z
?set@CvMatrix@@QAEXPAUCvMat@@_N@Z
?set_coi@CvImage@@QAEXH@Z
?set_data@CvMatrix@@QAEXPAXH@Z
?set_roi@CvImage@@QAEXUCvRect@@@Z
?show@CvImage@@QAEXPBD@Z
?show@CvMatrix@@QAEXPBD@Z
?size@CvImage@@QBE?AUCvSize@@XZ
?size@CvMatrix@@QBE?AUCvSize@@XZ
?step@CvImage@@QBEHXZ
?step@CvMatrix@@QBEHXZ
?type@CvMatrix@@QBEHXZ
?width@CvImage@@QBEHXZ
?write@CvImage@@QAEXPAUCvFileStorage@@PBD@Z
?write@CvMatrix@@QAEXPAUCvFileStorage@@PBD@Z
cvAbsDiff
cvAbsDiffS
cvAdd
cvAddS
cvAddWeighted
cvAlloc
cvAnd
cvAndS
cvAttrValue
cvAvg
cvAvgSdv
cvBackProjectPCA
cvCalcCovarMatrix
cvCalcPCA
cvCartToPolar
cvCbrt
cvChangeSeqBlock
cvCheckArr
cvCheckTermCriteria
cvCircle
cvClearGraph
cvClearMemStorage
cvClearND
cvClearSeq
cvClearSet
cvClipLine
cvClone
cvCloneGraph
cvCloneImage
cvCloneMat
cvCloneMatND
cvCloneSparseMat
cvCmp
cvCmpS
cvColorToScalar
cvConvertScale
cvConvertScaleAbs
cvCopy
cvCountNonZero
cvCreateChildMemStorage
cvCreateData
cvCreateGraph
cvCreateGraphScanner
cvCreateImage
cvCreateImageHeader
cvCreateMat
cvCreateMatHeader
cvCreateMatND
cvCreateMatNDHeader
cvCreateMemStorage
cvCreateSeq
cvCreateSeqBlock
cvCreateSet
cvCreateSparseMat
cvCrossProduct
cvCvtSeqToArray
cvDCT
cvDFT
cvDet
cvDiv
cvDotProduct
cvDrawContours
cvEigenVV
cvEllipse
cvEllipse2Poly
cvEndWriteSeq
cvEndWriteStruct
cvError
cvErrorFromIppStatus
cvErrorStr
cvExp
cvFastArctan
cvFillConvexPoly
cvFillPoly
cvFindGraphEdge
cvFindGraphEdgeByPtr
cvFindType
cvFirstType
cvFlip
cvFlushSeqWriter
cvFree_
cvGEMM
cvGet1D
cvGet2D
cvGet3D
cvGetCols
cvGetDiag
cvGetDimSize
cvGetDims
cvGetElemType
cvGetErrInfo
cvGetErrMode
cvGetErrStatus
cvGetFileNode
cvGetFileNodeByName
cvGetFileNodeName
cvGetHashedKey
cvGetImage
cvGetImageCOI
cvGetImageROI
cvGetMat
cvGetModuleInfo
cvGetND
cvGetNumThreads
cvGetOptimalDFTSize
cvGetRawData
cvGetReal1D
cvGetReal2D
cvGetReal3D
cvGetRealND
cvGetRootFileNode
cvGetRows
cvGetSeqElem
cvGetSeqReaderPos
cvGetSize
cvGetSubRect
cvGetTextSize
cvGetThreadNum
cvGetTickCount
cvGetTickFrequency
cvGraphAddEdge
cvGraphAddEdgeByPtr
cvGraphAddVtx
cvGraphRemoveEdge
cvGraphRemoveEdgeByPtr
cvGraphRemoveVtx
cvGraphRemoveVtxByPtr
cvGraphVtxDegree
cvGraphVtxDegreeByPtr
cvGuiBoxReport
cvInRange
cvInRangeS
cvInitFont
cvInitImageHeader
cvInitLineIterator
cvInitMatHeader
cvInitMatNDHeader
cvInitNArrayIterator
cvInitSparseMatIterator
cvInitTreeNodeIterator
cvInsertNodeIntoTree
cvInvert
cvKMeans2
cvLUT
cvLine
cvLoad
cvLog
cvMahalanobis
cvMakeSeqHeaderForArray
cvMax
cvMaxS
cvMemStorageAlloc
cvMemStorageAllocString
cvMerge
cvMin
cvMinMaxLoc
cvMinS
cvMixChannels
cvMul
cvMulSpectrums
cvMulTransposed
cvNextGraphItem
cvNextNArraySlice
cvNextTreeNode
cvNorm
cvNormalize
cvNot
cvNulDevReport
cvOpenFileStorage
cvOr
cvOrS
cvPerspectiveTransform
cvPolarToCart
cvPolyLine
cvPow
cvPrevTreeNode
cvProjectPCA
cvPtr1D
cvPtr2D
cvPtr3D
cvPtrND
cvPutText
cvRandArr
cvRandShuffle
cvRange
cvRawDataToScalar
cvRead
cvReadRawData
cvReadRawDataSlice
cvRectangle
cvRedirectError
cvReduce
cvRegisterModule
cvRegisterType
cvRelease
cvReleaseData
cvReleaseFileStorage
cvReleaseGraphScanner
cvReleaseImage
cvReleaseImageHeader
cvReleaseMat
cvReleaseMemStorage
cvReleaseSparseMat
cvRemoveNodeFromTree
cvRepeat
cvResetImageROI
cvReshape
cvReshapeMatND
cvRestoreMemStoragePos
cvSVBkSb
cvSVD
cvSave
cvSaveMemStoragePos
cvScalarToRawData
cvScaleAdd
cvSeqElemIdx
cvSeqInsert
cvSeqInsertSlice
cvSeqInvert
cvSeqPartition
cvSeqPop
cvSeqPopFront
cvSeqPopMulti
cvSeqPush
cvSeqPushFront
cvSeqPushMulti
cvSeqRemove
cvSeqRemoveSlice
cvSeqSearch
cvSeqSlice
cvSeqSort
cvSet
cvSet1D
cvSet2D
cvSet3D
cvSetAdd
cvSetData
cvSetErrMode
cvSetErrStatus
cvSetIPLAllocators
cvSetIdentity
cvSetImageCOI
cvSetImageIOFunctions
cvSetImageROI
cvSetMemoryManager
cvSetND
cvSetNumThreads
cvSetReal1D
cvSetReal2D
cvSetReal3D
cvSetRealND
cvSetRemove
cvSetSeqBlockSize
cvSetSeqReaderPos
cvSetZero
cvSliceLength
cvSolve
cvSolveCubic
cvSplit
cvStartAppendToSeq
cvStartNextStream
cvStartReadRawData
cvStartReadSeq
cvStartWriteSeq
cvStartWriteStruct
cvStdErrReport
cvSub
cvSubRS
cvSum
cvTrace
cvTransform
cvTranspose
cvTreeToNodeSeq
cvTypeOf
cvUnregisterType
cvUseOptimized
cvWrite
cvWriteComment
cvWriteFileNode
cvWriteInt
cvWriteRawData
cvWriteReal
cvWriteString
cvXor
cvXorS

Sections

.text
Size: 756KB - Virtual size: 753KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
highgui100.dll
.dll windows:4 windows x86 arch:x86

bac4aa1848f875f3a927622e36f29d4e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

cxcore100

cvConvertScale
cvCloneMat
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBDH@Z
?read@CvMatrix@@QAE_NPAUCvFileStorage@@PBD1@Z
?load@CvMatrix@@QAE_NPBD0H@Z
cvSetData
cvCreateMatHeader
cvInitMatHeader
cvSetImageCOI
cvResetImageROI
cvCloneImage
?read@CvImage@@QAE_NPAUCvFileStorage@@PBDH@Z
?read@CvImage@@QAE_NPAUCvFileStorage@@PBD1@Z
?load@CvImage@@QAE_NPBD0H@Z
cvSetImageIOFunctions
cvError
cvReleaseMat
cvGetMat
cvGetErrStatus
cvCreateMat
cvCopy
cvGetImageROI
cvSet
cvGetSize
cvSetImageROI
cvFlip
cvCreateImage
cvReleaseImage
cvAlloc
cvInitImageHeader
cvFree_

kernel32

CloseHandle
GetFileSize
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
CreateFileA
GlobalFree
GlobalAlloc
WideCharToMultiByte
GetTickCount
Sleep
CreateFileW
WriteFile
ReadFile
GlobalSize
LocalFree
LocalAlloc
DisableThreadLibraryCalls
SetFilePointer

user32

LoadIconA
LoadCursorA
RegisterClassA
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
SetWindowTextA
CallWindowProcA
SetCursor
EndPaint
BeginPaint
ReleaseCapture
SetCapture
GetKeyState
GetWindowLongA
OffsetRect
ScreenToClient
GetClassLongA
SetFocus
DefWindowProcA
SubtractRect
GetWindowRect
GetClientRect
InvalidateRect
SetWindowLongA
ShowWindow
CreateWindowExA
MoveWindow
DestroyWindow
IsWindow
SendMessageA
GetFocus
MessageBoxA

gdi32

SetStretchBltMode
CreateCompatibleDC
DeleteObject
CreateDIBSection
StretchDIBits
GetObjectA
GdiFlush
CombineRgn
CreateRectRgn
GetCurrentObject
SelectObject
FillRgn
DeleteDC
BitBlt
StretchBlt
SetDIBColorTable
GetStockObject
SetDIBitsToDevice

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegSetValueExA
RegCloseKey

comctl32

CreateToolbarEx

avifil32

AVIStreamRelease
AVIFileRelease
AVIStreamInfoA
AVIFileGetStream
AVIFileOpenA
AVIStreamGetFrame
AVIStreamWrite
AVIFileCreateStreamA
AVIMakeCompressedStream
AVIStreamSetFormat
AVISaveOptions
AVIFileInit
AVIStreamGetFrameOpen
AVIStreamGetFrameClose

msvfw32

ICDecompress
ICOpen
ICClose
ICSendMessage

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

msvcrt

isdigit
isspace
sprintf
exit
fflush
sscanf
getenv
free
tmpfile
_ftol
abort
memmove
ceil
floor
_CIpow
strrchr
tmpnam
vsprintf
_pctype
_isctype
__mb_cur_max
fputc
atoi
atof
qsort
realloc
vfprintf
strtok
gmtime
strtod
strncmp
bsearch
__dllonexit
_onexit
_initterm
_strdup
_adjust_fdiv
log
_iob
fprintf
_setjmp3
memset
memcpy
_open
_unlink
_setmode
_read
_write
_lseek
_close
_purecall
malloc
??3@YAXPAX@Z
fclose
fopen
??2@YAPAXI@Z
longjmp
fread
fseek
fwrite
strncpy
tolower
strchr
isalnum

Exports

Exports

??0CvImage@@QAE@ABV0@@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvImage@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvImage@@QAE@PAU_IplImage@@@Z
??0CvImage@@QAE@PBD0H@Z
??0CvImage@@QAE@UCvSize@@HH@Z
??0CvImage@@QAE@XZ
??0CvMatrix@@QAE@ABV0@@Z
??0CvMatrix@@QAE@HHH@Z
??0CvMatrix@@QAE@HHHPAUCvMat@@PAXH@Z
??0CvMatrix@@QAE@HHHPAXH@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBD1@Z
??0CvMatrix@@QAE@PAUCvFileStorage@@PBDH@Z
??0CvMatrix@@QAE@PAUCvMat@@@Z
??0CvMatrix@@QAE@PBD0H@Z
??0CvMatrix@@QAE@XZ
??0CvvImage@@QAE@ABV0@@Z
??0CvvImage@@QAE@XZ
??1CvImage@@QAE@XZ
??1CvMatrix@@QAE@XZ
??1CvvImage@@UAE@XZ
??4CvImage@@QAEAAV0@ABV0@@Z
??4CvMatrix@@QAEAAV0@ABV0@@Z
??4CvModule@@QAEAAU0@ABU0@@Z
??4CvType@@QAEAAU0@ABU0@@Z
??4CvvImage@@QAEAAV0@ABV0@@Z
??BCvImage@@QAEPAU_IplImage@@XZ
??BCvImage@@QBEPBU_IplImage@@XZ
??BCvMatrix@@QAEPAUCvMat@@XZ
??BCvMatrix@@QBEPBUCvMat@@XZ
??_7CvvImage@@6B@
?Bpp@CvvImage@@QAEHXZ
?CopyOf@CvvImage@@UAEXAAV1@H@Z
?CopyOf@CvvImage@@UAEXPAU_IplImage@@H@Z
?Create@CvvImage@@UAE_NHHHH@Z
?Destroy@CvvImage@@UAEXXZ
?DrawToHDC@CvvImage@@UAEXPAUHDC__@@PAUtagRECT@@@Z
?Fill@CvvImage@@UAEXH@Z
?GetImage@CvvImage@@QAEPAU_IplImage@@XZ
?Height@CvvImage@@QAEHXZ
?Load@CvvImage@@UAE_NPBDH@Z
?LoadRect@CvvImage@@UAE_NPBDHUCvRect@@@Z
?LoadRect@CvvImage@@UAE_NPBDHUtagRECT@@@Z
?Save@CvvImage@@UAE_NPBD@Z
?Show@CvvImage@@UAEXPAUHDC__@@HHHHHH@Z
?Show@CvvImage@@UAEXPBD@Z
?Width@CvvImage@@QAEHXZ
?addref@CvMatrix@@QBEXXZ
?attach@CvImage@@QAEXPAU_IplImage@@_N@Z
?channels@CvImage@@QBEHXZ
?channels@CvMatrix@@QBEHXZ
?clear@CvImage@@QAEXXZ
?clear@CvMatrix@@QAEXXZ
?clone@CvImage@@QAE?AV1@XZ
?clone@CvMatrix@@QAE?AV1@XZ
?coi@CvImage@@QBEHXZ
?cols@CvMatrix@@QBEHXZ
?create@CvImage@@QAEXUCvSize@@HH@Z
?create@CvMatrix@@QAEXHHH@Z
?data@CvImage@@QAEPAEXZ
?data@CvImage@@QBEPBEXZ
?data@CvMatrix@@QAEPAEXZ
?data@CvMatrix@@QBEPBEXZ
?depth@CvImage@@QBEHXZ
?depth@CvMatrix@@QBEHXZ
?detach@CvImage@@QAEXXZ
?height@CvImage@@QBEHXZ
?is_valid@CvImage@@QAE_NXZ
?is_valid@CvMatrix@@QAE_NXZ
?origin@CvImage@@QBEHXZ
?pix_size@CvImage@@QBEHXZ
?pix_size@CvMatrix@@QBEHXZ
?release@CvImage@@QAEXXZ
?release@CvMatrix@@QAEXXZ
?reset_roi@CvImage@@QAEXXZ
?roi@CvImage@@QBE?AUCvRect@@XZ
?roi_row@CvImage@@QAEPAEH@Z
?roi_row@CvImage@@QBEPBEH@Z
?roi_size@CvImage@@QBE?AUCvSize@@XZ
?row@CvMatrix@@QAEPAEH@Z
?row@CvMatrix@@QBEPBEH@Z
?rows@CvMatrix@@QBEHXZ
?set@CvMatrix@@QAEXPAUCvMat@@_N@Z
?set_coi@CvImage@@QAEXH@Z
?set_data@CvMatrix@@QAEXPAXH@Z
?set_roi@CvImage@@QAEXUCvRect@@@Z
?size@CvImage@@QBE?AUCvSize@@XZ
?size@CvMatrix@@QBE?AUCvSize@@XZ
?step@CvImage@@QBEHXZ
?step@CvMatrix@@QBEHXZ
?type@CvMatrix@@QBEHXZ
?width@CvImage@@QBEHXZ
cvConvertImage
cvCreateCameraCapture
cvCreateFileCapture
cvCreateTrackbar
cvCreateVideoWriter
cvDestroyAllWindows
cvDestroyWindow
cvGetCaptureProperty
cvGetTrackbarPos
cvGetWindowHandle
cvGetWindowName
cvGrabFrame
cvInitSystem
cvLoadImage
cvLoadImageM
cvMoveWindow
cvNamedWindow
cvQueryFrame
cvReleaseCapture
cvReleaseVideoWriter
cvResizeWindow
cvRetrieveFrame
cvSaveImage
cvSetCaptureProperty
cvSetMouseCallback
cvSetPostprocessFuncWin32
cvSetPreprocessFuncWin32
cvSetTrackbarPos
cvShowImage
cvStartWindowThread
cvWaitKey
cvWriteFrame

Sections

.text
Size: 508KB - Virtual size: 507KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libguide40.dll
.dll windows:4 windows x86 arch:x86

bc3d11d198ba339f839fd3b3cb12dc01

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapReAlloc
LocalFree
AllocConsole
GetStdHandle
GetEnvironmentVariableA
GetCurrentProcessId
CloseHandle
ResumeThread
SetThreadPriority
SetThreadAffinityMask
GetCurrentThread
CreateThread
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateEventA
WaitForSingleObject
ResetEvent
SetEvent
TerminateThread
QueryPerformanceCounter
GetLastError
SetThreadIdealProcessor
Sleep
DuplicateHandle
GetCurrentProcess
GetExitCodeThread
TlsSetValue
TlsGetValue
GetProcessAffinityMask
QueryPerformanceFrequency
LoadLibraryA
TlsAlloc
GetSystemInfo
GetProcAddress
TlsFree
SleepEx
VirtualQuery
ExitProcess
TerminateProcess
SetStdHandle
GetFileType
HeapAlloc
HeapFree
MultiByteToWideChar
FormatMessageA
SetConsoleCtrlHandler
GetCommandLineA
GetVersion
FlushFileBuffers
WriteFile
SetHandleCount
GetStartupInfoA
GetModuleHandleA
GetModuleFileNameA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
RtlUnwind
WideCharToMultiByte
SetEnvironmentVariableW
SetEnvironmentVariableA
GetCurrentThreadId
SetLastError
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetFilePointer
InterlockedDecrement
InterlockedIncrement
GetCPInfo
CompareStringA
CompareStringW
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
ReadFile

Exports

Exports

KMP_ALIGNED_SHARABLE_MALLOC
KMP_CALLOC
KMP_FREE
KMP_GET_BLOCKTIME
KMP_GET_LIBRARY
KMP_GET_NUM_KNOWN_THREADS
KMP_GET_STACKSIZE
KMP_GET_STACKSIZE_S
KMP_LOCK_COND_BROADCAST
KMP_LOCK_COND_SIGNAL
KMP_LOCK_COND_WAIT
KMP_MALLOC
KMP_NEST_LOCK_COND_BROADCAST
KMP_NEST_LOCK_COND_SIGNAL
KMP_NEST_LOCK_COND_WAIT
KMP_PRINT_BANNER
KMP_REALLOC
KMP_SET_AFFINITY
KMP_SET_BLOCKTIME
KMP_SET_LIBRARY
KMP_SET_LIBRARY_SERIAL
KMP_SET_LIBRARY_THROUGHPUT
KMP_SET_LIBRARY_TURNAROUND
KMP_SET_PARALLEL_NAME
KMP_SET_STACKSIZE
KMP_SET_STACKSIZE_S
KMP_SET_STATS
KMP_SET_WARNINGS_OFF
KMP_SET_WARNINGS_ON
KMP_SHARABLE_CALLOC
KMP_SHARABLE_FREE
KMP_SHARABLE_MALLOC
KMP_SHARABLE_REALLOC
OMP_DESTROY_LOCK
OMP_DESTROY_NEST_LOCK
OMP_GET_DYNAMIC
OMP_GET_MAX_THREADS
OMP_GET_NESTED
OMP_GET_NUM_PROCS
OMP_GET_NUM_THREADS
OMP_GET_THREAD_NUM
OMP_GET_WTICK
OMP_GET_WTIME
OMP_INIT_LOCK
OMP_INIT_NEST_LOCK
OMP_IN_PARALLEL
OMP_SET_DYNAMIC
OMP_SET_LOCK
OMP_SET_NESTED
OMP_SET_NEST_LOCK
OMP_SET_NUM_THREADS
OMP_TEST_LOCK
OMP_TEST_NEST_LOCK
OMP_UNSET_LOCK
OMP_UNSET_NEST_LOCK
VT_getthid
__kmp_acquire_bootstrap_lock
__kmp_acquire_lock
__kmp_dispatch_dxo_4
__kmp_dispatch_dxo_8
__kmp_fork_call
__kmp_invoke_microtask
__kmp_launch_monitor
__kmp_launch_worker
__kmp_reap_monitor
__kmp_reap_worker
__kmp_release
__kmp_release_bootstrap_lock
__kmp_release_lock
__kmp_test_lock
__kmp_wait_sleep
__kmp_wait_yield_4
__kmp_wait_yield_8
__kmpc_atomic_4
__kmpc_atomic_8
__kmpc_atomic_fixed4_add
__kmpc_atomic_fixed8_add
__kmpc_atomic_float4_add
__kmpc_atomic_float8_add
__kmpc_barrier
__kmpc_barrier_master
__kmpc_barrier_master_nowait
__kmpc_barrier_reduce_master
__kmpc_begin
__kmpc_bound_num_threads
__kmpc_bound_thread_num
__kmpc_copyprivate
__kmpc_critical
__kmpc_destroy_lock
__kmpc_destroy_nest_lock
__kmpc_dispatch_fini_4
__kmpc_dispatch_fini_8
__kmpc_dispatch_init_4
__kmpc_dispatch_init_8
__kmpc_dispatch_next_4
__kmpc_dispatch_next_8
__kmpc_end
__kmpc_end_barrier_master
__kmpc_end_barrier_reduce_master
__kmpc_end_critical
__kmpc_end_master
__kmpc_end_ordered
__kmpc_end_serialized_parallel
__kmpc_end_single
__kmpc_end_taskq
__kmpc_end_taskq_task
__kmpc_flush
__kmpc_for_static_fini
__kmpc_for_static_init_4
__kmpc_for_static_init_8
__kmpc_fork_call
__kmpc_global_num_threads
__kmpc_global_thread_num
__kmpc_in_parallel
__kmpc_in_ssp
__kmpc_init_lock
__kmpc_init_nest_lock
__kmpc_invoke_task_func
__kmpc_master
__kmpc_ok_to_fork
__kmpc_ordered
__kmpc_pop_num_threads
__kmpc_push_num_threads
__kmpc_reduce_master_nowait
__kmpc_serialized_parallel
__kmpc_set_lock
__kmpc_set_nest_lock
__kmpc_single
__kmpc_ssp_begin
__kmpc_ssp_distance_4
__kmpc_ssp_distance_8
__kmpc_ssp_end
__kmpc_ssp_fork
__kmpc_ssp_get_max_threads
__kmpc_ssp_init_thread
__kmpc_ssp_num_threads
__kmpc_ssp_post_4
__kmpc_ssp_post_8
__kmpc_ssp_set_event
__kmpc_ssp_set_max_threads
__kmpc_ssp_thread_num
__kmpc_ssp_wait_4
__kmpc_ssp_wait_8
__kmpc_task
__kmpc_task_buffer
__kmpc_taskq
__kmpc_taskq_task
__kmpc_test_lock
__kmpc_test_nest_lock
__kmpc_threadprivate
__kmpc_threadprivate_cached
__kmpc_threadprivate_register
__kmpc_threadprivate_register_vec
__kmpc_unset_lock
__kmpc_unset_nest_lock
kmp_aligned_sharable_malloc
kmp_calloc
kmp_free
kmp_get_blocktime
kmp_get_library
kmp_get_num_known_threads
kmp_get_stacksize
kmp_get_stacksize_s
kmp_lock_cond_broadcast
kmp_lock_cond_signal
kmp_lock_cond_wait
kmp_malloc
kmp_nest_lock_cond_broadcast
kmp_nest_lock_cond_signal
kmp_nest_lock_cond_wait
kmp_print_banner
kmp_realloc
kmp_set_affinity
kmp_set_blocktime
kmp_set_library
kmp_set_library_serial
kmp_set_library_throughput
kmp_set_library_turnaround
kmp_set_parallel_name
kmp_set_stacksize
kmp_set_stacksize_s
kmp_set_stats
kmp_set_warnings_off
kmp_set_warnings_on
kmp_sharable_calloc
kmp_sharable_free
kmp_sharable_malloc
kmp_sharable_realloc
kmpc_aligned_sharable_malloc
kmpc_calloc
kmpc_free
kmpc_get_banner
kmpc_get_poolmode
kmpc_get_poolsize
kmpc_get_poolstat
kmpc_malloc
kmpc_poolprint
kmpc_print_banner
kmpc_realloc
kmpc_set_affinity
kmpc_set_blocktime
kmpc_set_library
kmpc_set_parallel_name
kmpc_set_poolmode
kmpc_set_poolsize
kmpc_set_stacksize
kmpc_set_stacksize_s
kmpc_set_stats
kmpc_sharable_calloc
kmpc_sharable_free
kmpc_sharable_malloc
kmpc_sharable_realloc
omp_destroy_lock
omp_destroy_nest_lock
omp_get_dynamic
omp_get_max_threads
omp_get_nested
omp_get_num_procs
omp_get_num_threads
omp_get_thread_num
omp_get_wtick
omp_get_wtime
omp_in_parallel
omp_init_lock
omp_init_nest_lock
omp_set_dynamic
omp_set_lock
omp_set_nest_lock
omp_set_nested
omp_set_num_threads
omp_test_lock
omp_test_nest_lock
omp_unset_lock
omp_unset_nest_lock
ompc_set_dynamic
ompc_set_nested
ompc_set_num_threads
vtgthid

Sections

.text
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
opencvlicense.txt
res/Eraser.cur
res/Fill.cur
res/effect.png
.png
res/error.png
.png
res/eye_8.xml
.xml
res/haarcascade_frontalface_alt.xml
.xml
res/images/getmore.png
.png
res/images/header.png
.png
res/images/il_01.png
.png
res/images/il_02.png
.png
res/images/il_03.png
.png
res/images/il_04.png
.png
res/images/il_05.png
.png
res/images/il_06.png
.png
res/images/il_07.png
.png
res/images/il_08.png
.png
res/images/il_09.png
.png
res/images/il_10.png
.png
res/images/il_11.png
.png
res/images/il_12.png
.png
res/images/il_13.png
.png
res/images/il_14.png
.png
res/images/il_15.png
.png
res/images/il_16.png
.png
res/images/il_17.png
.png
res/images/il_18.png
.png
res/images/il_19.png
.png
res/images/il_20.png
.png
res/images/il_21.png
.png
res/images/il_22.png
.png
res/images/il_23.png
.png
res/images/il_24.png
.png
res/images/il_25.png
.png
res/images/il_26.png
.png
res/images/il_27.png
.png
res/images/il_28.png
.png
res/images/il_29.png
.png
res/images/il_30.png
.png
res/images/il_31.png
.png
res/images/il_32.png
.png
res/images/il_33.png
.png
res/images/il_34.png
.png
res/images/il_35.png
.png
res/images/il_36.png
.png
res/images/il_37.png
.png
res/images/il_38.png
.png
res/images/il_39.png
.png
res/images/il_40.png
.png
res/images/il_41.png
.png
res/images/il_42.png
.png
res/images/il_43.png
.png
res/images/il_44.png
.png
res/images/il_45.png
.png
res/images/il_46.png
.png
res/images/il_47.png
.png
res/images/il_48.png
.png
res/images/il_49.png
.png
res/images/il_50.png
.png
res/images/il_51.png
.png
res/images/il_52.png
.png
res/images/il_53.png
.png
res/images/il_54.png
.png
res/images/il_55.png
.png
res/images/il_56.png
.png
res/images/il_57.png
.png
res/images/il_58.png
.png
res/images/il_59.png
.png
res/images/il_60.png
.png
res/images/il_61.png
.png
res/images/il_62.png
.png
res/images/il_63.png
.png
res/images/il_64.png
.png
res/images/il_65.png
.png
res/images/il_66.png
.png
res/images/il_67.png
.png
res/images/il_68.png
.png
res/images/il_69.png
.png
res/images/il_70.png
.png
res/images/logo.png
.png
res/images/source1.png
.png
res/images/source2.png
.png
res/images/source3.png
.png
res/images/source4.png
.png
res/images/splash.png
.png
res/pen.cur
sqlite3.dll
.dll windows:4 windows x86 arch:x86

08c5dbd63927bf0ba5d656a5f06614bb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_DLL

Imports

kernel32

AreFileApisANSI
CloseHandle
CreateFileA
CreateFileW
DeleteCriticalSection
DeleteFileA
DeleteFileW
EnterCriticalSection
FlushFileBuffers
FormatMessageA
FreeLibrary
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFullPathNameA
GetFullPathNameW
GetLastError
GetProcAddress
GetSystemTime
GetSystemTimeAsFileTime
GetTempPathA
GetTempPathW
GetTickCount
GetVersionExA
InitializeCriticalSection
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryW
LockFile
LockFileEx
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
SetEndOfFile
SetFilePointer
Sleep
UnlockFile
WideCharToMultiByte
WriteFile

msvcrt

atoi
free
isalnum
isdigit
isspace
isxdigit
localtime
malloc
memcpy
memmove
memset
qsort
realloc
sprintf
strcmp
strcpy
strncmp
tolower
toupper

Exports

Exports

sqlite3_aggregate_context
sqlite3_aggregate_count
sqlite3_apis
sqlite3_auto_extension
sqlite3_bind_blob
sqlite3_bind_double
sqlite3_bind_int
sqlite3_bind_int64
sqlite3_bind_null
sqlite3_bind_parameter_count
sqlite3_bind_parameter_index
sqlite3_bind_parameter_name
sqlite3_bind_text
sqlite3_bind_text16
sqlite3_bind_value
sqlite3_bind_zeroblob
sqlite3_blob_bytes
sqlite3_blob_close
sqlite3_blob_open
sqlite3_blob_read
sqlite3_blob_write
sqlite3_busy_handler
sqlite3_busy_timeout
sqlite3_changes
sqlite3_clear_bindings
sqlite3_close
sqlite3_collation_needed
sqlite3_collation_needed16
sqlite3_column_blob
sqlite3_column_bytes
sqlite3_column_bytes16
sqlite3_column_count
sqlite3_column_decltype
sqlite3_column_decltype16
sqlite3_column_double
sqlite3_column_int
sqlite3_column_int64
sqlite3_column_name
sqlite3_column_name16
sqlite3_column_text
sqlite3_column_text16
sqlite3_column_type
sqlite3_column_value
sqlite3_commit_hook
sqlite3_complete
sqlite3_complete16
sqlite3_create_collation
sqlite3_create_collation16
sqlite3_create_collation_v2
sqlite3_create_function
sqlite3_create_function16
sqlite3_create_module
sqlite3_create_module_v2
sqlite3_data_count
sqlite3_db_handle
sqlite3_declare_vtab
sqlite3_enable_load_extension
sqlite3_enable_shared_cache
sqlite3_errcode
sqlite3_errmsg
sqlite3_errmsg16
sqlite3_exec
sqlite3_expired
sqlite3_extended_result_codes
sqlite3_file_control
sqlite3_finalize
sqlite3_free
sqlite3_free_table
sqlite3_get_autocommit
sqlite3_get_auxdata
sqlite3_get_table
sqlite3_global_recover
sqlite3_interrupt
sqlite3_last_insert_rowid
sqlite3_libversion
sqlite3_libversion_number
sqlite3_load_extension
sqlite3_malloc
sqlite3_memory_alarm
sqlite3_memory_highwater
sqlite3_memory_used
sqlite3_mprintf
sqlite3_mutex_alloc
sqlite3_mutex_enter
sqlite3_mutex_free
sqlite3_mutex_held
sqlite3_mutex_leave
sqlite3_mutex_notheld
sqlite3_mutex_try
sqlite3_open
sqlite3_open16
sqlite3_open_v2
sqlite3_overload_function
sqlite3_prepare
sqlite3_prepare16
sqlite3_prepare16_v2
sqlite3_prepare_v2
sqlite3_profile
sqlite3_progress_handler
sqlite3_realloc
sqlite3_release_memory
sqlite3_reset
sqlite3_reset_auto_extension
sqlite3_result_blob
sqlite3_result_double
sqlite3_result_error
sqlite3_result_error16
sqlite3_result_error_nomem
sqlite3_result_error_toobig
sqlite3_result_int
sqlite3_result_int64
sqlite3_result_null
sqlite3_result_text
sqlite3_result_text16
sqlite3_result_text16be
sqlite3_result_text16le
sqlite3_result_value
sqlite3_result_zeroblob
sqlite3_rollback_hook
sqlite3_set_authorizer
sqlite3_set_auxdata
sqlite3_sleep
sqlite3_snprintf
sqlite3_soft_heap_limit
sqlite3_sql
sqlite3_step
sqlite3_thread_cleanup
sqlite3_threadsafe
sqlite3_total_changes
sqlite3_trace
sqlite3_transfer_bindings
sqlite3_update_hook
sqlite3_user_data
sqlite3_value_blob
sqlite3_value_bytes
sqlite3_value_bytes16
sqlite3_value_double
sqlite3_value_int
sqlite3_value_int64
sqlite3_value_numeric_type
sqlite3_value_text
sqlite3_value_text16
sqlite3_value_text16be
sqlite3_value_text16le
sqlite3_value_type
sqlite3_version
sqlite3_vfs_find
sqlite3_vfs_register
sqlite3_vfs_unregister
sqlite3_vmprintf

Sections

.text
Size: 320KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 248B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 528B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stab
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.stabstr
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
wcminst.exe
.exe windows:4 windows x86 arch:x86

869c35cc0e5c596af7c5cd28d430b222

Code Sign

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

25/04/2007, 00:00

Not After

09/07/2019, 18:40

Subject

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning
ExtKeyUsageClientAuth

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

09/07/1999, 18:31

Not After

09/07/2019, 18:40

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0d
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

30/04/2007, 00:00

Not After

29/04/2012, 23:59

Subject

CN=WoSign Time Stamping Signer,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

bb:9e:58:72:c9:07:f4:bb:51:ed:8d:58:98:fc:db:f4
Certificate

Issuer

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Not Before

01/02/2008, 00:00

Not After

31/01/2013, 23:59

Subject

CN=eCode Sky Network Technology Co.\, Ltd.,O=eCode Sky Network Technology Co.\, Ltd.,POSTALCODE=100000,STREET=159\, Kehai Blvd.\,Fuzhang Park\, Tongzhou District\, Beijing,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\works\webcammax\OBJ\WebcamMaxHelp.sln\CAMTHINS.vcproj\Release\CAMTHINS.pdb

Imports

newdev

UpdateDriverForPlugAndPlayDevicesA

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiCallClassInstaller
SetupDiSetDeviceRegistryPropertyA
SetupDiCreateDeviceInfoA
SetupDiCreateDeviceInfoList
SetupDiGetINFClassA
SetupDiGetDeviceRegistryPropertyA

kernel32

GetVolumeInformationA
GetFullPathNameA
SetErrorMode
GetCPInfo
GetOEMCP
GetFileTime
GetTickCount
ExitProcess
RtlUnwind
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
GetCurrentProcess
GetCommandLineA
HeapReAlloc
TerminateProcess
HeapSize
QueryPerformanceCounter
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GlobalFlags
lstrcatA
WritePrivateProfileStringA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
InterlockedIncrement
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
InterlockedDecrement
FreeResource
GlobalAddAtomA
GetCurrentThread
GlobalDeleteAtom
lstrcmpA
GetModuleHandleA
ConvertDefaultLocale
EnumResourceLanguagesA
GlobalFree
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpynA
GetLongPathNameA
GetModuleFileNameA
SetFilePointer
GetFileSize
ReadFile
WriteFile
lstrcpyA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
GetCurrentThreadId
CreateFileA
CloseHandle
LoadLibraryA
GetProcAddress
FreeLibrary
CompareStringW
CompareStringA
lstrcmpiA
GetVersion
GetFileAttributesA
MultiByteToWideChar
FindFirstFileA
LocalAlloc
lstrlenA
GetLastError
FormatMessageA
LocalFree
SetLastError
CreateThread
GetCurrentProcessId
Sleep
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
WideCharToMultiByte
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetStartupInfoA

user32

PostThreadMessageA
SetRect
IsRectEmpty
CharNextA
RegisterWindowMessageA
WinHelpA
CreateWindowExA
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
IsChild
GetForegroundWindow
SetActiveWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetClientRect
GetMenu
AdjustWindowRectEx
EqualRect
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
CopyRect
ShowWindow
MoveWindow
SetWindowLongA
IsDialogMessageA
SendDlgItemMessageA
RegisterClipboardFormatA
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextA
TabbedTextOutA
GetDlgCtrlID
PtInRect
SetWindowTextA
wsprintfA
ReleaseCapture
GetCapture
SetCapture
ClientToScreen
LoadCursorA
GetSystemMetrics
GetSysColor
GetSysColorBrush
IsWindow
SetFocus
UnhookWindowsHookEx
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
SetMenuItemBitmaps
GetFocus
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
ValidateRect
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
SetCursor
PostQuitMessage
PostMessageA
GetMenuState
GetMenuItemID
GetMenuItemCount
DestroyMenu
GetSubMenu
GetClassNameA
GetDC
ReleaseDC
GetCursorPos
GetDesktopWindow
GetWindowRect
CharUpperA
GetWindowTextA
GetDlgItem
SendMessageA
FindWindowExA
GetWindowThreadProcessId
MessageBoxA
UnregisterClassA
CreateDialogIndirectParamA
EndDialog
MessageBeep
GetNextDlgTabItem
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
DrawTextExA
CopyAcceleratorTableA

gdi32

ExtSelectClipRgn
GetStockObject
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetWindowExtEx
GetViewportExtEx
GetObjectA
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetBkColor
RestoreDC
SaveDC
DeleteObject
CreateBitmap
GetDeviceCaps
DeleteDC
SelectObject
GetMapMode
GetClipBox
SetMapMode
SetTextColor

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegEnumKeyExA
RegEnumKeyA
RegDeleteKeyA
RegQueryValueA
RegOpenKeyA

comctl32

ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoInitialize
CoTaskMemFree
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject

oleaut32

SysFreeString
SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
VariantChangeType
VariantClear
VariantInit
OleCreateFontIndirect
SysAllocStringLen
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
wcmmon.exe
.exe windows:4 windows x86 arch:x86

Code Sign

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

25/04/2007, 00:00

Not After

09/07/2019, 18:40

Subject

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning
ExtKeyUsageClientAuth

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

09/07/1999, 18:31

Not After

09/07/2019, 18:40

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment
KeyUsageCertSign
KeyUsageCRLSign

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0d
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

30/04/2007, 00:00

Not After

29/04/2012, 23:59

Subject

CN=WoSign Time Stamping Signer,O=WoSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

bb:9e:58:72:c9:07:f4:bb:51:ed:8d:58:98:fc:db:f4
Certificate

Issuer

CN=WoSign Code Signing Authority,O=WoSign\, Inc.,C=US

Not Before

01/02/2008, 00:00

Not After

31/01/2013, 23:59

Subject

CN=eCode Sky Network Technology Co.\, Ltd.,O=eCode Sky Network Technology Co.\, Ltd.,POSTALCODE=100000,STREET=159\, Kehai Blvd.\,Fuzhang Park\, Tongzhou District\, Beijing,L=Beijing,ST=Beijing,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 376KB - Virtual size: 375KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 3KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
新云软件.url
.url

Sharing

General

Malware Config

Signatures

Files

97318da386948415d08cef4a9006d669

Code Sign

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04Certificate

Extended Key Usages

Key Usages

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1bCertificate

Extended Key Usages

Key Usages

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0dCertificate

Extended Key Usages

Key Usages

bb:9e:58:72:c9:07:f4:bb:51:ed:8d:58:98:fc:db:f4Certificate

Extended Key Usages

Key Usages

Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 108KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 34KB - Virtual size: 34KB

b1cd0d78f652ce5fc63f0879371af012

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 1012B

15dabbb20517a65d9df817776f6e1f69

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shlwapi

ole32

oleaut32

Exports

Exports

Sections

.text Size: 196KB - Virtual size: 192KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 36KB - Virtual size: 33KB

56f3e1d42b2d8c0bc3bf949df3491fe3

Code Sign

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4Certificate

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1b
Certificate

43:73:c5:9c:4f:32:a9:e5:b5:d3:de:f1:26:9a:12:0d
Certificate

bb:9e:58:72:c9:07:f4:bb:51:ed:8d:58:98:fc:db:f4
Certificate

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 108KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 34KB - Virtual size: 34KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 1012B

.text
Size: 196KB - Virtual size: 192KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 36KB - Virtual size: 33KB

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

0d:e9:2b:f0:d4:d8:29:88:18:32:05:09:5e:9a:76:88
Certificate

57:64:6e:2b:55:00:23:d4:90:53:4a:55:3e:ab:0d:0a
Certificate

6f:0a:f7:a3:21:3c:ca:db:a8:ad:c1:a7:1b:75:61:a4
Certificate

42:7f:7e:f0:de:22:b6:23:cb:fb:ff:f7:7a:38:fd:18:55:d9:8e:3e
Signer

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 172KB - Virtual size: 169KB

.data
Size: 208KB - Virtual size: 996KB

.rsrc
Size: 60KB - Virtual size: 57KB

.reloc
Size: 68KB - Virtual size: 65KB

.text
Size: 252KB - Virtual size: 251KB

_TEXT64
Size: 4KB - Virtual size: 1KB

.rdata
Size: 80KB - Virtual size: 76KB

.data
Size: 28KB - Virtual size: 42KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 40KB - Virtual size: 37KB

42:ce:8a:30:d3:56:02:f8:41:18:6c:6e:20:53:19:04
Certificate

44:be:0c:8b:50:00:24:b4:11:d3:36:2d:e0:b3:5f:1b
Certificate