AsProgrammer_2[.]0[.]3a[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

AsProgrammer_2.0.3a.zip
Size

12.3MB
MD5

e8c8f7da3f90c6fb8e66bb1b3e42583c
SHA1

a0677eee20edf1cca97e13a395b9ec4c22d322e7
SHA256

517d84b9cce3a8b6034fedc857940c094b409bd481cde442e5d90d8153f74867
SHA512

47b9153a9b34d616895a3c1fa24b1c63463d15b525ae78df1fbac31c8d2f8000e389a4e5d61a391988fe5f770b478a95fce2fc620084457ed9aa18accad02e18
SSDEEP

196608:H5njoBevqJ5lYXmfI4uYa6rLnqvOWlkIJU0jUkdaJeeBFesrCxKIugD+hewIsknd:ZnjL26kOeeHyiUkdSeMesrC0Iug8CFOE

Score

7^/10

upx

Malware Config

Signatures

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/usbasp-driver/zadig_vista+_2.2.exe	upx
static1/unpack001/usbasp-driver/zadig_xp_2.2.exe	upx

Unsigned PE 13 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AVRISPMK2-Driver/installer_x64.exe
unpack001/AVRISPMK2-Driver/installer_x86.exe
unpack001/AsProgrammer.exe
unpack001/CH341-Drivers/CH341Parallel_driver_support WIN7/CH341DLL.DLL
unpack001/CH341-Drivers/CH341Parallel_driver_support WIN7/CH341PAR.EXE
unpack001/CH341-Drivers/CH341Parallel_driver_support WIN7/CH341W64.SYS
unpack001/CH341-Drivers/CH341Parallel_driver_support WIN7/CH341WDM.SYS
unpack001/CH341-Drivers/CH341Parallel_driver_support WIN7/DRVSETUP64/DRVSETUP64.exe
unpack001/CH341-Drivers/CH341Serial_driver_support WIN7/CH341PT.DLL
unpack001/CH341-Drivers/CH341Serial_driver_support WIN7/CH341S64.SYS
unpack001/CH341-Drivers/CH341Serial_driver_support WIN7/CH341S98.SYS
unpack001/CH341-Drivers/CH341Serial_driver_support WIN7/CH341SER.SYS
unpack001/CH341DLL.DLL

Files

AsProgrammer_2.0.3a.zip
.zip
AVRISPMK2-Driver/AVRISP_mkII.inf
AVRISPMK2-Driver/amd64/libusb0.dll
.dll windows:6 windows x64 arch:x64

eae5e3d8124867fcc1b4265dbecb5d87

Code Sign

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28/01/1999, 13:00

Not After

27/01/2017, 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:20:19:c1:90:66
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/03/2009, 11:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

Issuer

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Not Before

21/12/2009, 09:32

Not After

22/12/2020, 09:32

Subject

CN=GlobalSign Time Stamping Authority,O=GlobalSign NV,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20/04/2011, 14:45

Not After

20/04/2014, 14:45

Subject

CN=Travis Lee Robinson,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22/01/2004, 10:00

Not After

27/01/2017, 10:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:00

Not After

23/05/2016, 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1b:71:60:84:eb:be:37:10:49:89:4a:8e:f2:01:03:8e:10:09:73:bb
Signer

Actual PE Digest

1b:71:60:84:eb:be:37:10:49:89:4a:8e:f2:01:03:8e:10:09:73:bb

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

z:\projects\libusb-win32-stage\ddk_make\output\amd64\libusb0.pdb

Imports

msvcrt

memcpy
__C_specific_handler
_amsg_exit
_initterm
_XcptFilter
memmove
_stricmp
realloc
_iob
memset
_getch
fclose
wcstombs
fputws
_strdup
fopen
printf
wcsstr
fgets
fgetws
_beginthread
fputs
_wcsnicmp
_endthread
_strlwr
strncmp
sscanf
mbstowcs
sprintf
_wcsicmp
_vsnprintf
fprintf
strncpy
strerror
getenv
atoi
_snprintf
strstr
malloc
free

setupapi

SetupDiOpenDevRegKey
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
CM_Get_Device_IDA
SetupFindNextLine
SetupDiGetDeviceRegistryPropertyA
SetupOpenInfFileA
SetupDiGetDeviceInstallParamsA
SetupDiRemoveDevice
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupCloseInfFile
CM_Get_DevNode_Status
SetupDiSetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupFindFirstLineA
SetupGetStringFieldA

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
GetVersion
LocalFree
GetVersionExA
GetModuleHandleA
SetEnvironmentVariableA
LockResource
LoadLibraryA
GetProcAddress
GetStdHandle
CreateSemaphoreA
SizeofResource
Sleep
WriteFile
GetCurrentProcess
LoadResource
FreeLibrary
FindResourceA
GetFullPathNameA
OutputDebugStringA
FormatMessageA
CloseHandle
DeviceIoControl
ResetEvent
GetLastError
GetOverlappedResult
CreateEventA
WaitForSingleObject
CreateFileA

advapi32

RegCloseKey
FreeSid
CheckTokenMembership
RegSetValueExA
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
RegDeleteValueA
AllocateAndInitializeSid

user32

GetMessageA
SetTimer
GetWindowRect
GetWindowLongPtrA
RegisterClassExA
PostQuitMessage
FillRect
GetClassInfoExA
GetParent
LoadIconA
GetClientRect
GetWindowTextLengthA
SendMessageA
DrawEdge
TranslateMessage
InflateRect
OffsetRect
MessageBoxA
InvalidateRect
CreateWindowExA
GetDlgItem
DefWindowProcA
RedrawWindow
GetDesktopWindow
GetSysColor
SetWindowPos
GetSysColorBrush
SetWindowLongPtrA
PostMessageA
DispatchMessageA
GetSystemMetrics
SetWindowTextA
UpdateWindow
EnableWindow
LoadCursorA
DestroyWindow

gdi32

CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
DeleteObject
DeleteDC
BitBlt
CreateSolidBrush

Exports

Exports

usb_bulk_read
usb_bulk_setup_async
usb_bulk_write
usb_cancel_async
usb_claim_interface
usb_clear_halt
usb_close
usb_control_msg
usb_device
usb_find_busses
usb_find_devices
usb_free_async
usb_get_busses
usb_get_descriptor
usb_get_descriptor_by_endpoint
usb_get_string
usb_get_string_simple
usb_get_version
usb_init
usb_install_driver_np
usb_install_driver_np_rundll
usb_install_needs_restart_np
usb_install_npA
usb_install_npW
usb_install_np_rundll
usb_install_service_np
usb_install_service_np_rundll
usb_interrupt_read
usb_interrupt_setup_async
usb_interrupt_write
usb_isochronous_setup_async
usb_open
usb_reap_async
usb_reap_async_nocancel
usb_release_interface
usb_reset
usb_reset_ex
usb_resetep
usb_set_altinterface
usb_set_configuration
usb_set_debug
usb_strerror
usb_submit_async
usb_touch_inf_file_np
usb_touch_inf_file_np_rundll
usb_uninstall_service_np
usb_uninstall_service_np_rundll

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AVRISPMK2-Driver/amd64/libusb0.sys
.sys windows:6 windows x64 arch:x64

f771fcc2fe54680d21562f599db14975

Code Sign

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28/01/1999, 13:00

Not After

27/01/2017, 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:20:19:c1:90:66
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/03/2009, 11:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

Issuer

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Not Before

21/12/2009, 09:32

Not After

22/12/2020, 09:32

Subject

CN=GlobalSign Time Stamping Authority,O=GlobalSign NV,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20/04/2011, 14:45

Not After

20/04/2014, 14:45

Subject

CN=Travis Lee Robinson,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22/01/2004, 10:00

Not After

27/01/2017, 10:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:00

Not After

23/05/2016, 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

28:55:7e:16:55:83:bb:28:b7:cb:c0:8b:c8:88:06:33:36:5a:48:4e
Signer

Actual PE Digest

28:55:7e:16:55:83:bb:28:b7:cb:c0:8b:c8:88:06:33:36:5a:48:4e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

z:\projects\libusb-win32-stage\ddk_make\output\amd64\libusb0.pdb

Imports

ntoskrnl.exe

_strlwr
RtlInitUnicodeString
IoOpenDeviceInterfaceRegistryKey
ZwSetValueKey
ObQueryNameString
ZwQueryValueKey
RtlGUIDFromString
ZwClose
ObReferenceObjectByHandle
ObfDereferenceObject
IoOpenDeviceRegistryKey
IoGetDeviceProperty
IoBuildDeviceIoControlRequest
IoDeleteSymbolicLink
_snwprintf
IoRegisterDeviceInterface
strstr
IoDeleteDevice
KeSetEvent
KeInitializeEvent
RtlUnicodeStringToAnsiString
IoCancelIrp
IofCompleteRequest
KeWaitForSingleObject
ExFreePoolWithTag
IoGetAttachedDeviceReference
IoAttachDeviceToDeviceStack
IoCreateSymbolicLink
IoCreateDevice
IofCallDriver
IoSetDeviceInterfaceState
IoDetachDevice
PoSetPowerState
RtlFreeUnicodeString
PoRequestPowerIrp
PoStartNextPowerIrp
PoCallDriver
IoBuildPartialMdl
IoFreeMdl
MmMapLockedPagesSpecifyCache
IoFreeIrp
IoAllocateIrp
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
IoAllocateMdl
_snprintf
_vsnprintf
DbgPrint
KeBugCheckEx
RtlFreeAnsiString
ExAllocatePoolWithTag

usbd.sys

USBD_CreateConfigurationRequestEx

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 186B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AVRISPMK2-Driver/avrisp_mkii.cat
AVRISPMK2-Driver/ia64/libusb0.dll
AVRISPMK2-Driver/ia64/libusb0.sys
AVRISPMK2-Driver/installer_x64.exe
.exe windows:6 windows x64 arch:x64

4bc24665f0071d2ba6abde0d1112c71a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

z:\projects\libusb-win32-stage\projects\additional\libwdi\libwdi\objfre_w2k_x86\amd64\installer_x64.pdb

Imports

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey
ConvertStringSidToSidA

kernel32

GetFullPathNameW
CreateFileA
GetFileSize
SetFilePointer
WaitForSingleObject
SetEvent
WriteFile
WideCharToMultiByte
Sleep
CreateEventA
ReadFile
GetOverlappedResult
MultiByteToWideChar
GetLastError
SetLastError
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetVersionExA
CloseHandle
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleW
SetUnhandledExceptionFilter
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
OutputDebugStringA
UnhandledExceptionFilter

msvcrt

_XcptFilter
_exit
_cexit
exit
_initterm
_amsg_exit
__setusermatherr
_commode
_fmode
__set_app_type
memcpy
memset
?terminate@@YAXXZ
__C_specific_handler
isleadbyte
_iob
_snprintf
_itoa
wctomb
__badioinfo
__pioinfo
_fileno
_lseeki64
_write
_isatty
strncat
strncmp
_endthread
free
calloc
__getmainargs
_errno
getenv
printf
_beginthread
malloc

newdev

UpdateDriverForPlugAndPlayDevicesW

ole32

CoCreateInstance
CoInitializeEx

setupapi

SetupCopyOEMInfW
SetupDiEnumDeviceInfo
SetupDiSetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 512B - Virtual size: 468B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AVRISPMK2-Driver/installer_x86.exe
.exe windows:6 windows x86 arch:x86

43bc0fb62f4c05267bccf23770c9a965

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

z:\projects\libusb-win32-stage\projects\additional\libwdi\libwdi\objfre_w2k_x86\i386\installer_x86.pdb

Imports

advapi32

RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegCreateKeyExA
ConvertStringSidToSidA
RegCloseKey

kernel32

WideCharToMultiByte
MultiByteToWideChar
SetLastError
GetLastError
GetFullPathNameW
GetProcAddress
LoadLibraryA
GetModuleHandleA
WriteFile
CloseHandle
GetOverlappedResult
WaitForSingleObject
ReadFile
CreateEventA
Sleep
GetFileSize
SetEvent
SetFilePointer
CreateFileA
GetVersionExA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
RtlUnwind
OutputDebugStringA
InterlockedCompareExchange
InterlockedExchange

msvcrt

__getmainargs
_cexit
_exit
_XcptFilter
exit
_initterm
_amsg_exit
__setusermatherr
_adjust_fdiv
_errno
__p__fmode
__set_app_type
?terminate@@YAXXZ
_controlfp
isleadbyte
_iob
_snprintf
_itoa
wctomb
__badioinfo
__pioinfo
_fileno
_lseeki64
_write
_isatty
free
calloc
memset
strncmp
_endthread
printf
_beginthread
memcpy
getenv
strncat
malloc
__p__commode

newdev

UpdateDriverForPlugAndPlayDevicesW

ole32

CoCreateInstance
CoInitializeEx

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiSetDeviceRegistryPropertyA
SetupCopyOEMInfW
SetupDiGetClassDevsA

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AVRISPMK2-Driver/license/libusb0/installer_license.txt
AVRISPMK2-Driver/x86/libusb0.sys
.sys windows:6 windows x86 arch:x86

bbd34d0dbb7e475d51fdadff6b7a0a6e

Code Sign

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28/01/1999, 13:00

Not After

27/01/2017, 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:20:19:c1:90:66
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/03/2009, 11:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

Issuer

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Not Before

21/12/2009, 09:32

Not After

22/12/2020, 09:32

Subject

CN=GlobalSign Time Stamping Authority,O=GlobalSign NV,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20/04/2011, 14:45

Not After

20/04/2014, 14:45

Subject

CN=Travis Lee Robinson,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22/01/2004, 10:00

Not After

27/01/2017, 10:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:00

Not After

23/05/2016, 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:d5:02:3d:7b:20:9a:7d:7b:2f:b6:25:b8:98:68:5f:20:71:f1:11
Signer

Actual PE Digest

07:d5:02:3d:7b:20:9a:7d:7b:2f:b6:25:b8:98:68:5f:20:71:f1:11

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

z:\projects\libusb-win32-stage\ddk_make\output\i386\libusb0.pdb

Imports

ntoskrnl.exe

IoGetDeviceProperty
ExFreePoolWithTag
ObfDereferenceObject
ObQueryNameString
ObReferenceObjectByHandle
RtlGUIDFromString
ZwQueryValueKey
ZwClose
ExAllocatePoolWithTag
RtlInitUnicodeString
IoOpenDeviceRegistryKey
memcpy
ZwSetValueKey
IoOpenDeviceInterfaceRegistryKey
RtlFreeAnsiString
strstr
RtlUnicodeStringToAnsiString
IofCompleteRequest
KeSetEvent
IofCallDriver
KeInitializeEvent
KeWaitForSingleObject
IoAttachDeviceToDeviceStack
IoRegisterDeviceInterface
IoDeleteSymbolicLink
IoDeleteDevice
_strlwr
IoCreateDevice
_snwprintf
IoGetAttachedDeviceReference
IoCancelIrp
IoBuildDeviceIoControlRequest
PoSetPowerState
IoDetachDevice
RtlFreeUnicodeString
IoSetDeviceInterfaceState
PoRequestPowerIrp
PoCallDriver
PoStartNextPowerIrp
IoFreeMdl
IoFreeIrp
IoReleaseCancelSpinLock
memmove
MmMapLockedPagesSpecifyCache
IoAcquireCancelSpinLock
IoBuildPartialMdl
IoAllocateMdl
IoAllocateIrp
DbgPrint
_snprintf
_vsnprintf
KeTickCount
KeBugCheckEx
IoCreateSymbolicLink
memset

usbd.sys

_USBD_CreateConfigurationRequestEx@8

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256B - Virtual size: 156B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AVRISPMK2-Driver/x86/libusb0_x86.dll
.dll windows:6 windows x86 arch:x86

16cfa198e44dfce3c5ad03895857845f

Code Sign

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28/01/1999, 13:00

Not After

27/01/2017, 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:20:19:c1:90:66
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/03/2009, 11:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

Issuer

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Not Before

21/12/2009, 09:32

Not After

22/12/2020, 09:32

Subject

CN=GlobalSign Time Stamping Authority,O=GlobalSign NV,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20/04/2011, 14:45

Not After

20/04/2014, 14:45

Subject

CN=Travis Lee Robinson,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22/01/2004, 10:00

Not After

27/01/2017, 10:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:00

Not After

23/05/2016, 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:c6:0d:0e:3c:28:01:a9:9d:d5:5e:f2:fb:ac:d4:89:c6:4a:2c:3d
Signer

Actual PE Digest

0a:c6:0d:0e:3c:28:01:a9:9d:d5:5e:f2:fb:ac:d4:89:c6:4a:2c:3d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

z:\projects\libusb-win32-stage\ddk_make\output\i386\libusb0.pdb

Imports

msvcrt

memmove
_stricmp
realloc
_iob
fprintf
mbstowcs
_getch
_beginthread
_endthread
wcstombs
sscanf
_strlwr
strncmp
_wcsnicmp
_wcsicmp
printf
fopen
fgetws
wcsstr
fclose
fputws
fgets
fputs
_strdup
sprintf
_vsnprintf
strncpy
strerror
_XcptFilter
_initterm
_amsg_exit
_adjust_fdiv
getenv
atoi
strstr
_snprintf
memcpy
memset
malloc
free

setupapi

SetupDiDestroyDeviceInfoList
CM_Get_Device_IDA
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiOpenDevRegKey
SetupOpenInfFileA
SetupDiGetDeviceRegistryPropertyA
SetupDiRemoveDevice
CM_Get_DevNode_Status
SetupDiSetDeviceRegistryPropertyA
SetupFindNextLine
SetupCloseInfFile
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupGetStringFieldA
SetupFindFirstLineA
SetupDiGetDeviceInstallParamsA

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlUnwind
InterlockedCompareExchange
InterlockedExchange
GetVersion
InterlockedIncrement
LocalFree
GetFullPathNameA
GetStdHandle
FindResourceA
SizeofResource
LoadResource
LockResource
WriteFile
GetModuleHandleA
GetCurrentProcess
SetEnvironmentVariableA
Sleep
LoadLibraryA
GetProcAddress
FreeLibrary
CreateSemaphoreA
GetVersionExA
OutputDebugStringA
FormatMessageA
WaitForSingleObject
CreateFileA
GetOverlappedResult
CloseHandle
ResetEvent
DeviceIoControl
GetLastError
CreateEventA

advapi32

RegEnumKeyExA
CheckTokenMembership
AllocateAndInitializeSid
RegCloseKey
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
FreeSid

user32

DrawEdge
SetTimer
GetParent
DestroyWindow
PostQuitMessage
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
RegisterClassExA
LoadCursorA
LoadIconA
GetClassInfoExA
FillRect
GetSysColorBrush
EnableWindow
SetWindowTextA
GetWindowLongA
SetWindowLongA
RedrawWindow
InvalidateRect
DefWindowProcA
PostMessageA
CreateWindowExA
GetSysColor
GetSystemMetrics
GetClientRect
OffsetRect
InflateRect
GetDlgItem
GetWindowTextLengthA
SendMessageA
GetDesktopWindow
GetWindowRect
SetWindowPos
MessageBoxA

gdi32

BitBlt
CreateSolidBrush
DeleteObject
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC

Exports

Exports

usb_bulk_read
usb_bulk_setup_async
usb_bulk_write
usb_cancel_async
usb_claim_interface
usb_clear_halt
usb_close
usb_control_msg
usb_device
usb_find_busses
usb_find_devices
usb_free_async
usb_get_busses
usb_get_descriptor
usb_get_descriptor_by_endpoint
usb_get_string
usb_get_string_simple
usb_get_version
usb_init
usb_install_driver_np
usb_install_driver_np_rundll
usb_install_needs_restart_np
usb_install_npA
usb_install_npW
usb_install_np_rundll
usb_install_service_np
usb_install_service_np_rundll
usb_interrupt_read
usb_interrupt_setup_async
usb_interrupt_write
usb_isochronous_setup_async
usb_open
usb_reap_async
usb_reap_async_nocancel
usb_release_interface
usb_reset
usb_reset_ex
usb_resetep
usb_set_altinterface
usb_set_configuration
usb_set_debug
usb_strerror
usb_submit_async
usb_touch_inf_file_np
usb_touch_inf_file_np_rundll
usb_uninstall_service_np
usb_uninstall_service_np_rundll

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
AsProgrammer.exe
.exe windows:4 windows x86 arch:x86

4d476f791a55b33d5aadd24f71892951

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetLastError
SetLastError
GetTickCount
ExitProcess
GetStartupInfoA
GetStdHandle
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetCurrentProcess
ReadProcessMemory
GetModuleFileNameA
GetModuleHandleA
WriteFile
ReadFile
CloseHandle
SetFilePointer
SetEndOfFile
FreeLibrary
GetSystemInfo
LoadLibraryA
GetProcAddress
DeleteFileW
MoveFileW
CreateFileW
GetFileAttributesW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetFullPathNameW
GetConsoleMode
GetConsoleOutputCP
GetOEMCP
GetProcessHeap
HeapAlloc
HeapFree
TlsAlloc
TlsGetValue
TlsSetValue
CreateThread
ExitThread
LocalAlloc
LocalFree
Sleep
SuspendThread
ResumeThread
TerminateThread
WaitForSingleObject
SetThreadPriority
GetThreadPriority
CreateEventA
ResetEvent
SetEvent
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
MultiByteToWideChar
WideCharToMultiByte
GetACP
GetConsoleCP
SetUnhandledExceptionFilter
EnumResourceTypesA
EnumResourceNamesA
EnumResourceLanguagesA
FindResourceA
FindResourceExA
LoadResource
SizeofResource
LockResource
FreeResource
GetEnvironmentStringsA
FreeEnvironmentStringsA
FormatMessageA
GlobalAddAtomA
GetWindowsDirectoryA
CreateFileA
GetVersionExA
CompareStringA
GetLocaleInfoA
GetDateFormatA
EnumCalendarInfoA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FormatMessageW
GetModuleFileNameW
GetCommandLineW
FindFirstFileW
FindNextFileW
CompareStringW
GetLocaleInfoW
GlobalAlloc
GlobalReAlloc
GlobalSize
GlobalLock
GlobalUnlock
VirtualFree
GetExitCodeProcess
GetExitCodeThread
GlobalDeleteAtom
FlushFileBuffers
FindClose
ClearCommBreak
ClearCommError
SetupComm
EscapeCommFunction
GetCommModemStatus
GetCommState
PurgeComm
SetCommBreak
SetCommMask
SetCommState
SetCommTimeouts
WaitCommEvent
MulDiv
GetLocalTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FileTimeToDosDateTime
PeekNamedPipe
QueryPerformanceCounter
QueryPerformanceFrequency
GetThreadLocale
SetThreadLocale
GetUserDefaultLCID
GetOverlappedResult

oleaut32

SysAllocStringLen
SysFreeString
SysReAllocStringLen
SafeArrayCreate
SafeArrayRedim
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayPtrOfIndex
VariantChangeTypeEx
VariantClear
VariantCopy
VariantInit

user32

MessageBoxA
CharUpperBuffW
CharLowerBuffW
PeekMessageA
SendMessageA
PostMessageA
DefWindowProcA
CallWindowProcA
RegisterClassA
UnregisterClassA
GetClassInfoA
CreateWindowExA
RegisterClipboardFormatA
GetClipboardFormatNameA
CharToOemA
CharUpperA
CharUpperBuffA
CharLowerA
CharLowerBuffA
GetMenuItemInfoA
SetPropA
GetPropA
RemovePropA
EnumPropsA
GetWindowLongA
SetWindowLongA
SetClassLongA
GetClassNameA
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
SystemParametersInfoA
DispatchMessageW
PeekMessageW
SendMessageW
PostMessageW
DefWindowProcW
CallWindowProcW
RegisterClassW
UnregisterClassW
GetClassInfoW
CreateWindowExW
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
DrawTextW
DrawStateW
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
MessageBoxW
GetWindowLongW
SetWindowLongW
TranslateMessage
PostQuitMessage
GetDoubleClickTime
IsWindow
IsMenu
DestroyWindow
ShowWindow
ShowWindowAsync
ShowOwnedPopups
MoveWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
IsIconic
BringWindowToTop
IsZoomed
OpenClipboard
CloseClipboard
SetClipboardData
GetClipboardData
CountClipboardFormats
EnumClipboardFormats
EmptyClipboard
IsClipboardFormatAvailable
SetFocus
GetActiveWindow
GetFocus
GetKeyState
GetCapture
SetCapture
ReleaseCapture
MsgWaitForMultipleObjects
SetTimer
KillTimer
EnableWindow
IsWindowEnabled
GetSystemMetrics
GetMenu
SetMenu
DrawMenuBar
GetSystemMenu
CreateMenu
CreatePopupMenu
DestroyMenu
EnableMenuItem
GetSubMenu
GetMenuItemCount
RemoveMenu
DeleteMenu
UpdateWindow
SetActiveWindow
GetForegroundWindow
SetForegroundWindow
WindowFromDC
GetDC
GetDCEx
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
GetUpdateRect
SetWindowRgn
InvalidateRect
InvalidateRgn
RedrawWindow
ScrollWindowEx
ShowScrollBar
EnableScrollBar
GetClientRect
GetWindowRect
AdjustWindowRectEx
MessageBeep
SetCursorPos
SetCursor
GetCursorPos
CreateCaret
GetCaretBlinkTime
DestroyCaret
HideCaret
ShowCaret
SetCaretPos
GetCaretPos
ClientToScreen
ScreenToClient
MapWindowPoints
WindowFromPoint
GetSysColor
GetSysColorBrush
SetSysColors
DrawFocusRect
FillRect
FrameRect
SetRect
InflateRect
IntersectRect
OffsetRect
GetDesktopWindow
GetParent
SetParent
EnumThreadWindows
GetTopWindow
GetWindowThreadProcessId
GetLastActivePopup
GetWindow
CallNextHookEx
DestroyCursor
DestroyIcon
CopyImage
CreateIconIndirect
GetIconInfo
SetScrollInfo
GetScrollInfo
DrawEdge
DrawFrameControl
TrackPopupMenuEx
ChildWindowFromPointEx
FlashWindowEx

advapi32

RegCreateKeyExA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegFlushKey

gdi32

CreateFontIndirectA
EnumFontFamiliesA
GetCharABCWidthsA
GetTextExtentPointA
GetTextMetricsA
GetObjectA
ExtTextOutA
CreateFontIndirectW
EnumFontFamiliesExW
GetCharABCWidthsW
GetTextExtentPoint32W
GetTextExtentExPointW
GetObjectW
TextOutW
ExtTextOutW
GetRandomRgn
Arc
BitBlt
Chord
CombineRgn
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBitmap
CreateEllipticRgn
CreatePen
CreatePenIndirect
CreatePatternBrush
CreateRectRgn
CreateRoundRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EqualRgn
ExcludeClipRect
ExtCreateRegion
ExtFloodFill
FillRgn
GetROP2
GetBkColor
GetBitmapBits
GetClipBox
GetClipRgn
GetCurrentObject
GetDeviceCaps
GetDIBits
GetMapMode
GetObjectType
GetPixel
GetRegionData
GetRgnBox
GetStockObject
GetTextAlign
GetTextColor
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
IntersectClipRect
LineTo
MaskBlt
OffsetRgn
PatBlt
Pie
PaintRgn
PtInRegion
RectInRegion
RectVisible
Rectangle
RestoreDC
RealizePalette
RoundRect
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetPixel
SetPolyFillMode
StretchBlt
SetRectRgn
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextColor
SetTextAlign
CreateDIBSection
SetArcDirection
ExtCreatePen
MoveToEx
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
PolyBezier
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
SetBrushOrgEx
GetDCOrgEx

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shell32

DragQueryFileA
DragQueryFileW
DragFinish
DragAcceptFiles
SHGetPathFromIDListW
SHBrowseForFolderW

ole32

OleInitialize
OleUninitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree

comctl32

InitCommonControls
ImageList_Create
ImageList_Destroy
ImageList_GetImageCount
ImageList_SetImageCount
ImageList_Add
ImageList_Replace
ImageList_AddMasked
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_Remove
ImageList_Copy
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_DragShowNolock
_TrackMouseEvent

comdlg32

CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW

ftd2xx

FT_Open
FT_Close
FT_Read
FT_Write
FT_Purge
FT_SetLatencyTimer
FT_SetBitMode

imm32

ImmGetContext
ImmReleaseContext
ImmGetCompositionStringW
ImmNotifyIME

libusb0

usb_open
usb_close
usb_bulk_write
usb_bulk_read
usb_control_msg
usb_set_configuration
usb_claim_interface
usb_release_interface
usb_strerror
usb_init
usb_find_busses
usb_find_devices
usb_get_busses

ch341dll

CH341OpenDevice
CH341CloseDevice
CH341GetStatus
CH341WriteData
CH341SetStream
CH341StreamI2C
CH341SetOutput
CH341Set_D5_D0
CH341StreamSPI4
CH341BitStreamSPI

Sections

.text
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 379KB - Virtual size: 379KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 599KB - Virtual size: 598KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 157KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CH341-Drivers/CH341Parallel_driver_support WIN7/CH341DLL.DLL
.dll windows:4 windows x86 arch:x86

8c17c46120b9339216e4036e6840553f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitThread
CloseHandle
Sleep
GetOverlappedResult
GetLastError
DeviceIoControl
ResetEvent
CreateEventA
CreateFileA
lstrcpyA
SetThreadPriority
CreateThread
LocalFree
LocalAlloc
GetModuleHandleA
lstrcmpiA

user32

RegisterClassA
UnregisterClassA
CreateWindowExA
UnregisterDeviceNotification
ShowWindow
RegisterDeviceNotificationA
DefWindowProcA
DestroyWindow
CharUpperBuffA

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

Exports

Exports

CH341AbortInter
CH341AbortRead
CH341AbortWrite
CH341BitStreamSPI
CH341CloseDevice
CH341CloseDeviceEx
CH341DriverCommand
CH341EppReadAddr
CH341EppReadData
CH341EppSetAddr
CH341EppWriteAddr
CH341EppWriteData
CH341FlushBuffer
CH341GetConfigDescr
CH341GetDeviceDescr
CH341GetDeviceName
CH341GetDeviceNameEx
CH341GetDrvVersion
CH341GetInput
CH341GetStatus
CH341GetVerIC
CH341GetVersion
CH341InitParallel
CH341MemReadAddr0
CH341MemReadAddr1
CH341MemWriteAddr0
CH341MemWriteAddr1
CH341OpenDevice
CH341OpenDeviceEx
CH341QueryBufDownload
CH341QueryBufUpload
CH341ReadData
CH341ReadData0
CH341ReadData1
CH341ReadEEPROM
CH341ReadI2C
CH341ReadInter
CH341ResetDevice
CH341ResetInter
CH341ResetRead
CH341ResetWrite
CH341SetBufDownload
CH341SetBufUpload
CH341SetDelaymS
CH341SetDeviceNotify
CH341SetDeviceNotifyEx
CH341SetExclusive
CH341SetIntRoutine
CH341SetOutput
CH341SetParaMode
CH341SetStream
CH341SetTimeout
CH341Set_D5_D0
CH341SetupSerial
CH341StreamI2C
CH341StreamSPI3
CH341StreamSPI4
CH341StreamSPI5
CH341WriteData
CH341WriteData0
CH341WriteData1
CH341WriteEEPROM
CH341WriteI2C
CH341WriteRead

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ShareArr
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Parallel_driver_support WIN7/CH341PAR.EXE
.exe windows:4 windows x86 arch:x86

0278afcdc04c5dc6179089061fc56304

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
GetFileAttributesA
GetWindowsDirectoryA
WinExec
GetCurrentDirectoryA
GetCurrentProcess
GetProcAddress
GetModuleHandleA
CreateThread
Sleep
GetLastError
LoadLibraryA
GetPrivateProfileSectionA
GetPrivateProfileStringA
DeleteFileA
CopyFileA
SetLastError
LocalAlloc
LocalFree
GetVersion
lstrlenA
CompareStringW
CompareStringA
FlushFileBuffers
SetStdHandle
HeapReAlloc
VirtualAlloc
GetTimeZoneInformation
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
SetFilePointer
WriteFile
GetSystemDirectoryA
CloseHandle
HeapAlloc
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
SetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FindFirstFileA
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetStartupInfoA
GetCommandLineA
ExitProcess
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
InterlockedDecrement
InterlockedIncrement
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA

user32

UpdateWindow
CharUpperA
IsDlgButtonChecked
EnableWindow
FindWindowExA
EnumChildWindows
GetWindowTextA
SendDlgItemMessageA
SetDlgItemTextA
DefWindowProcA
GetDlgItem
ShowWindow
LoadIconA
SetWindowTextA
SendMessageA
EndDialog
MessageBoxA
DialogBoxParamA

comctl32

ord17

cfgmgr32

CM_Reenumerate_DevNode
CM_Locate_DevNodeA

setupapi

SetupDiBuildDriverInfoList
SetupDiEnumDriverInfoA
SetupDiGetDriverInfoDetailA
SetupDiSetDeviceRegistryPropertyA
SetupDefaultQueueCallbackA
SetupOpenInfFileA
SetupDiGetActualSectionToInstallA
SetupOpenFileQueue
SetupInitDefaultQueueCallbackEx
SetupInstallFilesFromInfSectionA
SetupCommitFileQueueA
SetupCloseFileQueue
SetupCloseInfFile
SetupTermDefaultQueueCallback
SetupCopyOEMInfA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiDestroyDriverInfoList

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Parallel_driver_support WIN7/CH341W64.SYS
.sys windows:5 windows x64 arch:x64

9b1def2964cd838f7829b5731e30fffa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

e:\project\ch341\winwdm22\amd64\amd64\CH341W64.pdb

Imports

ntoskrnl.exe

IofCallDriver
KeWaitForSingleObject
IoBuildDeviceIoControlRequest
KeInitializeEvent
ExFreePool
ExAllocatePool
KeReleaseSpinLock
KeAcquireSpinLockRaiseToDpc
KeDelayExecutionThread
IoDeleteDevice
IoDetachDevice
RtlFreeUnicodeString
IoSetDeviceInterfaceState
PoStartNextPowerIrp
KeClearEvent
PsTerminateSystemThread
KeSetPriorityThread
ZwClose
PsCreateSystemThread
PoCallDriver
PoSetPowerState
__C_specific_handler
IoRegisterDeviceInterface
IoAttachDeviceToDeviceStack
IoCreateDevice
KeBugCheckEx
IofCompleteRequest
PoRequestPowerIrp
KeSetEvent

usbd.sys

USBD_CreateConfigurationRequestEx
USBD_ParseConfigurationDescriptorEx

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Parallel_driver_support WIN7/CH341WDM.CAT
CH341-Drivers/CH341Parallel_driver_support WIN7/CH341WDM.INF
CH341-Drivers/CH341Parallel_driver_support WIN7/CH341WDM.SYS
.sys windows:4 windows x86 arch:x86

6d37ff886398dc1f20c0e2acfe260460

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ntoskrnl.exe

IoAttachDeviceToDeviceStack
KeInitializeSpinLock
KeInitializeEvent
ExAllocatePool
IoCreateDevice
IoDeleteDevice
ExFreePool
IoDetachDevice
KeSetEvent
RtlFreeUnicodeString
IoSetDeviceInterfaceState
IofCompleteRequest
IoRegisterDeviceInterface
InterlockedIncrement
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
InterlockedExchange
PoStartNextPowerIrp
PoCallDriver
PoSetPowerState
PoRequestPowerIrp
PsTerminateSystemThread
KeClearEvent
KeSetPriorityThread
KeGetCurrentThread
PsCreateSystemThread
InterlockedDecrement
KeDelayExecutionThread
RtlUnwind
ZwClose

hal

KfReleaseSpinLock
KfAcquireSpinLock

usbd.sys

_USBD_ParseConfigurationDescriptorEx@28
_USBD_CreateConfigurationRequestEx@8

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 160B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 864B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 736B - Virtual size: 726B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Parallel_driver_support WIN7/DRVSETUP64/DRVSETUP64.exe
.exe windows:5 windows x64 arch:x64

81eff7de0e080d88e7bf5cfe2f43528f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\program\驱动安装\drvinstall\v150\驱动安装_std_v153\objfre_wnet_AMD64\amd64\DRVSETUP64.pdb

Imports

msvcrt

__set_app_type
_fmode
_commode
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_cexit
_exit
_c_exit
_XcptFilter
__C_specific_handler
strrchr
strstr
strchr
memcpy
_stricmp
sprintf
memset
_findfirst
_findnext
_findclose

kernel32

RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
RtlCaptureContext
WinExec
GetFileAttributesA
GetUserDefaultLangID
CreateThread
LoadLibraryA
GetProcAddress
LocalFree
LocalAlloc
GetCurrentDirectoryA
GetLastError
SetLastError
GetCurrentProcess
GetCurrentThreadId
CopyFileA
GetWindowsDirectoryA
CloseHandle
Sleep
lstrlenA
GetPrivateProfileSectionA
GetPrivateProfileStringA
GetVersion
DeleteFileA
GetSystemDirectoryA
GetStartupInfoA

user32

SetWindowTextA
SendMessageA
GetWindowTextA
EnumChildWindows
FindWindowExA
SendDlgItemMessageA
MessageBoxA
EndDialog
CharUpperA
SetDlgItemTextA
IsDlgButtonChecked
UpdateWindow
EnableWindow
GetDlgItem
LoadIconA
ShowWindow
DialogBoxParamA
DefWindowProcA

comctl32

ord17

setupapi

CM_Locate_DevNodeA
SetupDefaultQueueCallbackA
SetupDiGetDeviceRegistryPropertyA
SetupDiSetDeviceRegistryPropertyA
SetupCloseInfFile
SetupDiGetActualSectionToInstallA
SetupOpenInfFileA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupTermDefaultQueueCallback
SetupCloseFileQueue
SetupCommitFileQueueA
SetupInstallFilesFromInfSectionA
SetupInitDefaultQueueCallbackEx
SetupOpenFileQueue
SetupDiDestroyDriverInfoList
SetupDiGetDriverInfoDetailA
SetupDiEnumDriverInfoA
SetupDiBuildDriverInfoList
SetupDiCallClassInstaller
SetupCopyOEMInfA
CM_Reenumerate_DevNode

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Serial_driver_support WIN7/CH341PT.DLL
.dll windows:4 windows x86 arch:x86

f94cd55198e70e43ac10995641c12ba4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreateFileA
GetModuleHandleA
GetCommProperties

user32

DefWindowProcA
CharUpperBuffA
ShowWindow
CreateWindowExA
RegisterClassA
DestroyWindow
UnregisterClassA

Exports

Exports

CH341PtGetVersion
CH341PtHandleIsCH341
CH341PtNameIsCH341
CH341PtSetDevNotify

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Serial_driver_support WIN7/CH341S64.SYS
.sys windows:5 windows x64 arch:x64

c0e0366fb5cf7bcb45c9c635aee08727

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

e:\project\ch341\winser33\amd64\amd64\CH341S64.pdb

Imports

ntoskrnl.exe

IoBuildDeviceIoControlRequest
KeInitializeEvent
ExFreePoolWithTag
ExAllocatePool
KeReleaseSpinLock
KeAcquireSpinLockRaiseToDpc
IoReleaseCancelSpinLock
IoAcquireCancelSpinLock
KeClearEvent
KeInsertQueueDpc
KeRemoveQueueDpc
KeCancelTimer
ZwQueryValueKey
RtlInitUnicodeString
RtlQueryRegistryValues
PsTerminateSystemThread
KeSetPriorityThread
KeDelayExecutionThread
PoRequestPowerIrp
KeSetTimer
ZwClose
PsCreateSystemThread
IoDeleteDevice
IoGetConfigurationInformation
KeWaitForSingleObject
IoDeleteSymbolicLink
RtlDeleteRegistryValue
RtlFreeUnicodeString
IoSetDeviceInterfaceState
KeWaitForMultipleObjects
IoRegisterDeviceInterface
RtlWriteRegistryValue
IoCreateSymbolicLink
IoOpenDeviceRegistryKey
KeInitializeDpc
KeInitializeTimer
IoAttachDeviceToDeviceStack
IoCreateDevice
RtlAppendUnicodeStringToString
RtlIntegerToUnicodeString
RtlAppendUnicodeToString
ExReleaseFastMutex
ExAcquireFastMutex
IoFreeWorkItem
PoSetPowerState
PoCallDriver
IoWMIRegistrationControl
IoAllocateWorkItem
KeBugCheckEx
KeSetEvent
IoQueueWorkItem
IofCallDriver
PoStartNextPowerIrp
IoDetachDevice
IofCompleteRequest

wmilib.sys

WmiSystemControl
WmiCompleteRequest

usbd.sys

USBD_CreateConfigurationRequestEx
USBD_ParseConfigurationDescriptorEx

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 60B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Serial_driver_support WIN7/CH341S98.SYS
.dll windows:4 windows x86 arch:x86

5bd26fa42f206fa9e2851e44a902d4c4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Imports

ntoskrnl.exe

KeDelayExecutionThread
ZwClose
PsCreateSystemThread
IoRegisterDeviceInterface
KeInitializeEvent
IoDeleteDevice
IoAttachDeviceToDeviceStack
IoCreateDevice
RtlAppendUnicodeStringToString
RtlIntegerToUnicodeString
RtlAppendUnicodeToString
KeSetEvent
IoDetachDevice
IofCompleteRequest
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
ExFreePool
PoRequestPowerIrp
PoCallDriver
PoStartNextPowerIrp
PoSetPowerState
IofCallDriver
RtlFreeUnicodeString
IoSetDeviceInterfaceState
ObfReferenceObject
RtlInitUnicodeString
IoBuildDeviceIoControlRequest
KeClearEvent
PsTerminateSystemThread
RtlCompareMemory
KeSetPriorityThread
KeGetCurrentThread
KeWaitForMultipleObjects
RtlQueryRegistryValues
ExAllocatePool
KeWaitForSingleObject
memmove

usbd.sys

_USBD_CreateConfigurationRequestEx@8
_USBD_ParseConfigurationDescriptorEx@28

Exports

Exports

CH341S98_StartRequest

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 256B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 96B - Virtual size: 85B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 864B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 736B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Serial_driver_support WIN7/CH341SER.EXE
.exe windows:4 windows x86 arch:x86

be9bb5be96279547b706123ff53a230e

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:0e:72:90:dd:bb:fa:3c:3d:ce:c1:57:25:73:2f:4a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

26/08/2011, 00:00

Not After

25/08/2012, 23:59

Subject

CN=Jiangsu Qinheng Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Jiangsu Qinheng Co.\, Ltd.,L=Nanjing,ST=Jiangsu,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7e:c0:30:ba:8e:cd:57:25:88:90:2c:75:90:ed:d9:a0:bd:a3:95:9b
Signer

Actual PE Digest

7e:c0:30:ba:8e:cd:57:25:88:90:2c:75:90:ed:d9:a0:bd:a3:95:9b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
GetWindowsDirectoryA
WinExec
lstrlenA
GetCurrentDirectoryA
GetCurrentProcess
GetProcAddress
GetModuleHandleA
CreateThread
Sleep
GetLastError
LoadLibraryA
GetPrivateProfileSectionA
GetPrivateProfileStringA
DeleteFileA
CopyFileA
SetLastError
LocalAlloc
LocalFree
GetVersion
GetUserDefaultLangID
CompareStringW
CompareStringA
FlushFileBuffers
SetStdHandle
HeapReAlloc
VirtualAlloc
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetTimeZoneInformation
SetFilePointer
WriteFile
GetSystemDirectoryA
CloseHandle
HeapAlloc
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
SetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FindFirstFileA
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetStartupInfoA
GetCommandLineA
ExitProcess
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
InterlockedDecrement
InterlockedIncrement
TerminateProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA

user32

UpdateWindow
CharUpperA
IsDlgButtonChecked
EnableWindow
FindWindowExA
EnumChildWindows
GetWindowTextA
SendDlgItemMessageA
SetDlgItemTextA
DefWindowProcA
GetDlgItem
ShowWindow
LoadIconA
SetWindowTextA
SendMessageA
EndDialog
MessageBoxA
DialogBoxParamA

comctl32

ord17

cfgmgr32

CM_Reenumerate_DevNode
CM_Locate_DevNodeA

setupapi

SetupDiBuildDriverInfoList
SetupDiEnumDriverInfoA
SetupDiGetDriverInfoDetailA
SetupDiSetDeviceRegistryPropertyA
SetupDefaultQueueCallbackA
SetupOpenInfFileA
SetupDiGetActualSectionToInstallA
SetupOpenFileQueue
SetupInitDefaultQueueCallbackEx
SetupInstallFilesFromInfSectionA
SetupCommitFileQueueA
SetupCloseFileQueue
SetupCloseInfFile
SetupTermDefaultQueueCallback
SetupCopyOEMInfA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiDestroyDriverInfoList

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Serial_driver_support WIN7/CH341SER.INF
CH341-Drivers/CH341Serial_driver_support WIN7/CH341SER.SYS
.sys windows:5 windows x86 arch:x86

009db8c0ddd9770e87245a5e25a0ac32

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ntoskrnl.exe

KeInitializeDpc
KeInitializeTimer
KeInitializeEvent
KeInitializeSpinLock
IoDeleteDevice
IoAttachDeviceToDeviceStack
IoCreateDevice
RtlAppendUnicodeStringToString
RtlIntegerToUnicodeString
RtlAppendUnicodeToString
IoGetConfigurationInformation
KeSetEvent
KeRemoveQueueDpc
KeCancelTimer
RtlFreeUnicodeString
IoSetDeviceInterfaceState
InterlockedIncrement
KeDelayExecutionThread
KeWaitForSingleObject
IofCallDriver
IoBuildDeviceIoControlRequest
InterlockedDecrement
IoReleaseCancelSpinLock
IoCreateSymbolicLink
InterlockedExchange
KeInsertQueueDpc
PoStartNextPowerIrp
IoOpenDeviceRegistryKey
IoQueueWorkItem
IoAllocateWorkItem
PoSetPowerState
PoRequestPowerIrp
IofCompleteRequest
IoFreeWorkItem
IoWMIRegistrationControl
InterlockedExchangeAdd
InterlockedCompareExchange
KeClearEvent
PsTerminateSystemThread
KeSetPriorityThread
KeGetCurrentThread
KeQuerySystemTime
KeSetTimer
_allmul
KeWaitForMultipleObjects
ZwQueryValueKey
RtlQueryRegistryValues
RtlDeleteRegistryValue
IoDeleteSymbolicLink
RtlWriteRegistryValue
IoRegisterDeviceInterface
PsCreateSystemThread
IoDetachDevice
ExFreePool
ZwClose
PoCallDriver
RtlInitUnicodeString
ExAllocatePool
IoAcquireCancelSpinLock
memmove

hal

KfReleaseSpinLock
ExAcquireFastMutex
KfAcquireSpinLock
ExReleaseFastMutex
KfRaiseIrql
KfLowerIrql

wmilib.sys

WmiSystemControl
WmiCompleteRequest

usbd.sys

_USBD_CreateConfigurationRequestEx@8
_USBD_ParseConfigurationDescriptorEx@28

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 544B - Virtual size: 536B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 832B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 864B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Serial_driver_support WIN7/CH341SER.VXD
CH341-Drivers/CH341Serial_driver_support WIN7/DRVSETUP64/DRVSETUP64.exe
.exe windows:5 windows x64 arch:x64

30988d9c08b8b14a0a75a83f53f4d010

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

23:0e:72:90:dd:bb:fa:3c:3d:ce:c1:57:25:73:2f:4a
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

26/08/2011, 00:00

Not After

25/08/2012, 23:59

Subject

CN=Jiangsu Qinheng Co.\, Ltd.,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Jiangsu Qinheng Co.\, Ltd.,L=Nanjing,ST=Jiangsu,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

bd:8a:59:13:51:9a:b0:46:62:07:b2:70:2d:0a:d3:2a:31:dd:65:d8
Signer

Actual PE Digest

bd:8a:59:13:51:9a:b0:46:62:07:b2:70:2d:0a:d3:2a:31:dd:65:d8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

d:\program\驱动安装\drvinstall\v160\无签名驱动安装_std_v160\objfre_wnet_AMD64\amd64\DRVSETUP64.pdb

Imports

msvcrt

__set_app_type
_fmode
_commode
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_cexit
_exit
_c_exit
_XcptFilter
__C_specific_handler
strrchr
strstr
strchr
memcpy
_findfirst
_findnext
_stricmp
memset
sprintf

kernel32

GetStartupInfoA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
GetModuleHandleA
GetCurrentProcess
WinExec
GetFileAttributesA
GetUserDefaultLangID
CreateThread
LoadLibraryA
GetProcAddress
LocalFree
LocalAlloc
GetCurrentDirectoryA
QueryPerformanceCounter
CloseHandle
Sleep
lstrlenA
GetPrivateProfileSectionA
GetPrivateProfileStringA
GetWindowsDirectoryA
GetVersion
DeleteFileA
GetSystemDirectoryA
SetLastError
GetLastError
CopyFileA
GetCurrentProcessId

user32

GetWindowTextA
EnumChildWindows
FindWindowExA
SendDlgItemMessageA
MessageBoxA
EndDialog
CharUpperA
SetDlgItemTextA
SetWindowTextA
IsDlgButtonChecked
UpdateWindow
EnableWindow
GetDlgItem
LoadIconA
ShowWindow
DialogBoxParamA
DefWindowProcA
SendMessageA

comctl32

ord17

setupapi

CM_Locate_DevNodeA
SetupDefaultQueueCallbackA
SetupDiGetDeviceRegistryPropertyA
SetupDiSetDeviceRegistryPropertyA
SetupCloseInfFile
SetupDiGetActualSectionToInstallA
SetupOpenInfFileA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupTermDefaultQueueCallback
SetupCloseFileQueue
SetupCommitFileQueueA
SetupInstallFilesFromInfSectionA
SetupInitDefaultQueueCallbackEx
SetupOpenFileQueue
SetupDiDestroyDriverInfoList
SetupDiGetDriverInfoDetailA
SetupDiEnumDriverInfoA
SetupDiBuildDriverInfoList
SetupDiCallClassInstaller
SetupCopyOEMInfA
CM_Reenumerate_DevNode

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 756B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
CH341-Drivers/CH341Serial_driver_support WIN7/ch341SER.CAT
CH341DLL.DLL
.dll windows:4 windows x86 arch:x86

8c17c46120b9339216e4036e6840553f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ExitThread
CloseHandle
Sleep
GetOverlappedResult
GetLastError
DeviceIoControl
ResetEvent
CreateEventA
CreateFileA
lstrcpyA
SetThreadPriority
CreateThread
LocalFree
LocalAlloc
GetModuleHandleA
lstrcmpiA

user32

RegisterClassA
UnregisterClassA
CreateWindowExA
UnregisterDeviceNotification
ShowWindow
RegisterDeviceNotificationA
DefWindowProcA
DestroyWindow
CharUpperBuffA

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

Exports

Exports

CH341AbortInter
CH341AbortRead
CH341AbortWrite
CH341BitStreamSPI
CH341CloseDevice
CH341CloseDeviceEx
CH341DriverCommand
CH341EppReadAddr
CH341EppReadData
CH341EppSetAddr
CH341EppWriteAddr
CH341EppWriteData
CH341FlushBuffer
CH341GetConfigDescr
CH341GetDeviceDescr
CH341GetDeviceName
CH341GetDeviceNameEx
CH341GetDrvVersion
CH341GetInput
CH341GetStatus
CH341GetVerIC
CH341GetVersion
CH341InitParallel
CH341MemReadAddr0
CH341MemReadAddr1
CH341MemWriteAddr0
CH341MemWriteAddr1
CH341OpenDevice
CH341OpenDeviceEx
CH341QueryBufDownload
CH341QueryBufUpload
CH341ReadData
CH341ReadData0
CH341ReadData1
CH341ReadEEPROM
CH341ReadI2C
CH341ReadInter
CH341ResetDevice
CH341ResetInter
CH341ResetRead
CH341ResetWrite
CH341SetBufDownload
CH341SetBufUpload
CH341SetDelaymS
CH341SetDeviceNotify
CH341SetDeviceNotifyEx
CH341SetExclusive
CH341SetIntRoutine
CH341SetOutput
CH341SetParaMode
CH341SetStream
CH341SetTimeout
CH341Set_D5_D0
CH341SetupSerial
CH341StreamI2C
CH341StreamSPI3
CH341StreamSPI4
CH341StreamSPI5
CH341WriteData
CH341WriteData0
CH341WriteData1
CH341WriteEEPROM
CH341WriteI2C
CH341WriteRead

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ShareArr
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FT232H.gif
.gif
arduino/asprog/asprog.ino
.js
arduino/asprog/commands.cpp
arduino/asprog/commands.h
arduino/asprog/defines.h
arduino/asprog/i2c.cpp
arduino/asprog/i2c.h
arduino/asprog/i2c_cmd.cpp
arduino/asprog/i2c_cmd.h
arduino/asprog/microwire.cpp
arduino/asprog/microwire.h
arduino/asprog/mw_cmd.cpp
arduino/asprog/mw_cmd.h
arduino/asprog/spi_cmd.cpp
arduino/asprog/spi_cmd.h
avrisp-mk2_firmware/USBTINYMKII-16(at90usb162).hex
chiplist.xml
.xml
ftd2xx.dll
.dll windows:6 windows x86 arch:x86

bef4462abb2c3e5e9097c1911ba1f6cc

Code Sign

33:00:00:00:b5:21:3f:ca:1e:4a:a0:3d:e4:00:00:00:00:00:b5
Certificate

Issuer

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

15/12/2020, 22:15

Not After

02/12/2021, 22:15

Subject

CN=Microsoft Windows Hardware Compatibility Publisher,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0b:aa:c1:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2010,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

18/04/2012, 23:48

Not After

18/04/2027, 23:58

Subject

CN=Microsoft Windows Third Party Component CA 2012,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

60:85:ff:4a:44:df:7b:d8:39:bd:89:08:66:d0:c4:5b:09:f5:c2:67:d6:68:c2:5a:0c:cd:f4:c9:16:bb:22:f5
Signer

Actual PE Digest

60:85:ff:4a:44:df:7b:d8:39:bd:89:08:66:d0:c4:5b:09:f5:c2:67:d6:68:c2:5a:0c:cd:f4:c9:16:bb:22:f5

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Jenkins2\workspace\J171-Windows-D2XX-VCP-VS2015\Release\FTD2XX.pdb

Imports

setupapi

CM_Get_Device_ID_ExA
SetupDiGetDeviceInfoListDetailA
SetupDiOpenDeviceInfoA
CM_Reenumerate_DevNode_Ex
CM_Locate_DevNode_ExA
SetupDiClassNameFromGuidExA
SetupDiGetClassDescriptionExA
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiCreateDeviceInfoListExA
SetupDiClassGuidsFromNameExA
SetupDiSetClassInstallParamsA
SetupDiGetDeviceInstallParamsA
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiGetClassDevsExA
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo

kernel32

ReadConsoleW
SetEndOfFile
HeapReAlloc
HeapSize
WriteConsoleW
SetFilePointerEx
CreateFileW
SetStdHandle
FlushFileBuffers
SetConsoleCtrlHandler
GetProcessHeap
SetEnvironmentVariableW
SetEnvironmentVariableA
FreeEnvironmentStringsW
CloseHandle
GetLastError
GetCurrentProcess
LocalFree
FormatMessageA
lstrcpyA
OutputDebugStringA
DeviceIoControl
CreateFileA
ReadFile
WriteFile
GetOverlappedResult
CancelIo
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseMutex
WaitForSingleObject
CreateMutexA
GetVersionExA
lstrcmpiA
lstrcpynA
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
OutputDebugStringW
WaitForSingleObjectEx
CreateThread
EncodePointer
lstrlenA
InterlockedPushEntrySList
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetModuleHandleW
RaiseException
DecodePointer
InterlockedFlushSList
RtlUnwind
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameA
GetModuleFileNameW
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStdHandle
GetFileType
GetCurrentThread
GetACP
GetStringTypeW
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
FindClose
FindFirstFileExA
FindFirstFileExW
FindNextFileA
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo

user32

CharPrevA
CharNextA

advapi32

RegQueryValueExA
LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken
InitiateSystemShutdownExA

Exports

Exports

FT_Close
FT_ClrDtr
FT_ClrRts
FT_ComPortCancelIdle
FT_ComPortIdle
FT_CreateDeviceInfoList
FT_CyclePort
FT_EEPROM_Program
FT_EEPROM_Read
FT_EE_Program
FT_EE_ProgramEx
FT_EE_Read
FT_EE_ReadConfig
FT_EE_ReadECC
FT_EE_ReadEx
FT_EE_UARead
FT_EE_UASize
FT_EE_UAWrite
FT_EE_WriteConfig
FT_EraseEE
FT_GetBitMode
FT_GetComPortNumber
FT_GetDeviceInfo
FT_GetDeviceInfoDetail
FT_GetDeviceInfoList
FT_GetDriverVersion
FT_GetEventStatus
FT_GetLatencyTimer
FT_GetLibraryVersion
FT_GetModemStatus
FT_GetQueueStatus
FT_GetQueueStatusEx
FT_GetStatus
FT_IoCtl
FT_ListDevices
FT_Open
FT_OpenEx
FT_Purge
FT_Read
FT_ReadEE
FT_Reload
FT_Rescan
FT_ResetDevice
FT_ResetPort
FT_RestartInTask
FT_SetBaudRate
FT_SetBitMode
FT_SetBreakOff
FT_SetBreakOn
FT_SetChars
FT_SetDataCharacteristics
FT_SetDeadmanTimeout
FT_SetDivisor
FT_SetDtr
FT_SetEventNotification
FT_SetFlowControl
FT_SetLatencyTimer
FT_SetResetPipeRetryCount
FT_SetRts
FT_SetTimeouts
FT_SetUSBParameters
FT_SetWaitMask
FT_StopInTask
FT_VendorCmdGet
FT_VendorCmdGetEx
FT_VendorCmdSet
FT_VendorCmdSetEx
FT_W32_CancelIo
FT_W32_ClearCommBreak
FT_W32_ClearCommError
FT_W32_CloseHandle
FT_W32_CreateFile
FT_W32_EscapeCommFunction
FT_W32_GetCommMask
FT_W32_GetCommModemStatus
FT_W32_GetCommState
FT_W32_GetCommTimeouts
FT_W32_GetLastError
FT_W32_GetOverlappedResult
FT_W32_PurgeComm
FT_W32_ReadFile
FT_W32_SetCommBreak
FT_W32_SetCommMask
FT_W32_SetCommState
FT_W32_SetCommTimeouts
FT_W32_SetupComm
FT_W32_WaitCommEvent
FT_W32_WriteFile
FT_WaitOnMask
FT_Write
FT_WriteEE
_FT_Finalise@0
_FT_Initialise@0

Sections

.text
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
kb9012pins.txt
lang/cn.po
lang/en.po
lang/fr.po
lang/it.po
lang/ja.po
lang/pl.po
lang/pt-br.po
lang/pt-pt.po
lang/ru.po
libusb0.dll
.dll windows:6 windows x86 arch:x86

16cfa198e44dfce3c5ad03895857845f

Code Sign

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

28/01/1999, 13:00

Not After

27/01/2017, 12:00

Subject

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

04:00:00:00:00:01:20:19:c1:90:66
Certificate

Issuer

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Not Before

18/03/2009, 11:00

Not After

28/01/2028, 12:00

Subject

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

Issuer

CN=GlobalSign Timestamping CA,OU=Timestamping CA,O=GlobalSign

Not Before

21/12/2009, 09:32

Not After

22/12/2020, 09:32

Subject

CN=GlobalSign Time Stamping Authority,O=GlobalSign NV,C=BE

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

Issuer

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Not Before

20/04/2011, 14:45

Not After

20/04/2014, 14:45

Subject

CN=Travis Lee Robinson,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

Issuer

CN=GlobalSign Primary Object Publishing CA,OU=Primary Object Publishing CA,O=GlobalSign nv-sa,C=BE

Not Before

22/01/2004, 10:00

Not After

27/01/2017, 10:00

Subject

CN=GlobalSign ObjectSign CA,OU=ObjectSign CA,O=GlobalSign nv-sa,C=BE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

61:0b:7f:6b:00:00:00:00:00:19
Certificate

Issuer

CN=Microsoft Code Verification Root,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/05/2006, 17:00

Not After

23/05/2016, 17:10

Subject

CN=GlobalSign Root CA,OU=Root CA,O=GlobalSign nv-sa,C=BE

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:c6:0d:0e:3c:28:01:a9:9d:d5:5e:f2:fb:ac:d4:89:c6:4a:2c:3d
Signer

Actual PE Digest

0a:c6:0d:0e:3c:28:01:a9:9d:d5:5e:f2:fb:ac:d4:89:c6:4a:2c:3d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

z:\projects\libusb-win32-stage\ddk_make\output\i386\libusb0.pdb

Imports

msvcrt

memmove
_stricmp
realloc
_iob
fprintf
mbstowcs
_getch
_beginthread
_endthread
wcstombs
sscanf
_strlwr
strncmp
_wcsnicmp
_wcsicmp
printf
fopen
fgetws
wcsstr
fclose
fputws
fgets
fputs
_strdup
sprintf
_vsnprintf
strncpy
strerror
_XcptFilter
_initterm
_amsg_exit
_adjust_fdiv
getenv
atoi
strstr
_snprintf
memcpy
memset
malloc
free

setupapi

SetupDiDestroyDeviceInfoList
CM_Get_Device_IDA
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiOpenDevRegKey
SetupOpenInfFileA
SetupDiGetDeviceRegistryPropertyA
SetupDiRemoveDevice
CM_Get_DevNode_Status
SetupDiSetDeviceRegistryPropertyA
SetupFindNextLine
SetupCloseInfFile
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupGetStringFieldA
SetupFindFirstLineA
SetupDiGetDeviceInstallParamsA

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlUnwind
InterlockedCompareExchange
InterlockedExchange
GetVersion
InterlockedIncrement
LocalFree
GetFullPathNameA
GetStdHandle
FindResourceA
SizeofResource
LoadResource
LockResource
WriteFile
GetModuleHandleA
GetCurrentProcess
SetEnvironmentVariableA
Sleep
LoadLibraryA
GetProcAddress
FreeLibrary
CreateSemaphoreA
GetVersionExA
OutputDebugStringA
FormatMessageA
WaitForSingleObject
CreateFileA
GetOverlappedResult
CloseHandle
ResetEvent
DeviceIoControl
GetLastError
CreateEventA

advapi32

RegEnumKeyExA
CheckTokenMembership
AllocateAndInitializeSid
RegCloseKey
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
FreeSid

user32

DrawEdge
SetTimer
GetParent
DestroyWindow
PostQuitMessage
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
RegisterClassExA
LoadCursorA
LoadIconA
GetClassInfoExA
FillRect
GetSysColorBrush
EnableWindow
SetWindowTextA
GetWindowLongA
SetWindowLongA
RedrawWindow
InvalidateRect
DefWindowProcA
PostMessageA
CreateWindowExA
GetSysColor
GetSystemMetrics
GetClientRect
OffsetRect
InflateRect
GetDlgItem
GetWindowTextLengthA
SendMessageA
GetDesktopWindow
GetWindowRect
SetWindowPos
MessageBoxA

gdi32

BitBlt
CreateSolidBrush
DeleteObject
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC

Exports

Exports

usb_bulk_read
usb_bulk_setup_async
usb_bulk_write
usb_cancel_async
usb_claim_interface
usb_clear_halt
usb_close
usb_control_msg
usb_device
usb_find_busses
usb_find_devices
usb_free_async
usb_get_busses
usb_get_descriptor
usb_get_descriptor_by_endpoint
usb_get_string
usb_get_string_simple
usb_get_version
usb_init
usb_install_driver_np
usb_install_driver_np_rundll
usb_install_needs_restart_np
usb_install_npA
usb_install_npW
usb_install_np_rundll
usb_install_service_np
usb_install_service_np_rundll
usb_interrupt_read
usb_interrupt_setup_async
usb_interrupt_write
usb_isochronous_setup_async
usb_open
usb_reap_async
usb_reap_async_nocancel
usb_release_interface
usb_reset
usb_reset_ex
usb_resetep
usb_set_altinterface
usb_set_configuration
usb_set_debug
usb_strerror
usb_submit_async
usb_touch_inf_file_np
usb_touch_inf_file_np_rundll
usb_uninstall_service_np
usb_uninstall_service_np_rundll

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
schemeI2C.gif
.gif
schemeMW.gif
.gif
schemeSPI25.gif
.gif
schemeSPI45.gif
.gif
scripts/GPR25L3203F_OTP.pas
scripts/README.TXT
.js
scripts/README_RU.TXT
.js
scripts/blockerase.pas
scripts/i2c_example.pas
scripts/script_func.html
.html
settings.xml
.xml
usbasp-driver/zadig.ini
usbasp-driver/zadig_vista+_2.2.exe
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:d7:3d:14:66:14:77:0c:b3:da:af:55:02:c4:8d:9c
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/11/2012, 00:00

Not After

12/11/2017, 23:59

Subject

CN=Akeo Consulting,O=Akeo Consulting,POSTALCODE=Co. Donegal,STREET=24\, Grey Rock,L=Milford,ST=Co. Donegal,C=IE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ed:72:df:71:20:8f:78:36:d0:ab:00:9f:ca:97:e0:1f
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

22/12/2014, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO SHA-256 Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f2:f6:b7:6b:9e:2b:ad:f8:e7:b2:7c:4d:5b:b8:22:cf
Certificate

Issuer

CN=COMODO SHA-256 Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/01/2016, 00:00

Not After

11/01/2018, 23:59

Subject

CN=Akeo Consulting,O=Akeo Consulting,POSTALCODE=Co Donegal,STREET=24\, Grey Rock,L=Milford,ST=Co Donegal,C=IE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:47:32:99:68:16:bd:71:d6:5e:89:8f:70:46:eb:5e:04:75:b0:9e:b2:41:74:86:f9:3b:6b:ea:98:f6:bc:85
Signer

Actual PE Digest

6a:47:32:99:68:16:bd:71:d6:5e:89:8f:70:46:eb:5e:04:75:b0:9e:b2:41:74:86:f9:3b:6b:ea:98:f6:bc:85

Digest Algorithm

sha256

PE Digest Matches

true

a0:d0:70:2d:18:1b:f4:91:88:77:9c:23:46:ce:6d:0b:29:c9:5b:f5
Signer

Actual PE Digest

a0:d0:70:2d:18:1b:f4:91:88:77:9c:23:46:ce:6d:0b:29:c9:5b:f5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
usbasp-driver/zadig_xp_2.2.exe
.exe windows:4 windows x86 arch:x86

Code Sign

42:1a:f2:94:09:84:19:1f:52:0a:4b:c6:24:26:a7:4b
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

07/06/2005, 08:09

Not After

30/05/2020, 10:48

Subject

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:70:9d:4f:f5:54:08:d7:30:60:01:d8:ea:91:75:bb
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

24/08/2011, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

47:d7:3d:14:66:14:77:0c:b3:da:af:55:02:c4:8d:9c
Certificate

Issuer

CN=COMODO Code Signing CA 2,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/11/2012, 00:00

Not After

12/11/2017, 23:59

Subject

CN=Akeo Consulting,O=Akeo Consulting,POSTALCODE=Co. Donegal,STREET=24\, Grey Rock,L=Milford,ST=Co. Donegal,C=IE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

16:88:f0:39:25:5e:63:8e:69:14:39:07:e6:33:0b
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-1 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

ed:72:df:71:20:8f:78:36:d0:ab:00:9f:ca:97:e0:1f
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

22/12/2014, 00:00

Not After

30/05/2020, 10:48

Subject

CN=COMODO SHA-256 Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

f2:f6:b7:6b:9e:2b:ad:f8:e7:b2:7c:4d:5b:b8:22:cf
Certificate

Issuer

CN=COMODO SHA-256 Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

12/01/2016, 00:00

Not After

11/01/2018, 23:59

Subject

CN=Akeo Consulting,O=Akeo Consulting,POSTALCODE=Co Donegal,STREET=24\, Grey Rock,L=Milford,ST=Co Donegal,C=IE

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

4e:b0:87:8f:cc:24:35:36:b2:d8:c9:f7:bf:39:55:77
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

31/12/2015, 00:00

Not After

09/07/2019, 18:40

Subject

CN=COMODO SHA-256 Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

dc:95:21:fa:2d:17:36:bc:e5:94:d0:7d:c0:51:95:d2:cc:76:3d:e7:0a:75:a7:43:2c:5c:7d:f6:12:8b:76:f3
Signer

Actual PE Digest

dc:95:21:fa:2d:17:36:bc:e5:94:d0:7d:c0:51:95:d2:cc:76:3d:e7:0a:75:a7:43:2c:5c:7d:f6:12:8b:76:f3

Digest Algorithm

sha256

PE Digest Matches

true

4f:36:1d:ec:31:3b:0d:1d:da:bd:83:1e:a0:b0:54:8d:e2:73:c9:03
Signer

Actual PE Digest

4f:36:1d:ec:31:3b:0d:1d:da:bd:83:1e:a0:b0:54:8d:e2:73:c9:03

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 4.9MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
usbasp_firmware/mega8_2.0.hex

Sharing

General

Malware Config

Signatures

Files

eae5e3d8124867fcc1b4265dbecb5d87

Code Sign

04:00:00:00:00:01:23:9e:0f:ac:b3Certificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:20:19:c1:90:66Certificate

Key Usages

01:00:00:00:00:01:25:b0:b4:cc:01Certificate

Extended Key Usages

Key Usages

01:00:00:00:00:01:2f:73:8c:af:edCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:23:9e:0f:af:24Certificate

Extended Key Usages

Key Usages

61:0b:7f:6b:00:00:00:00:00:19Certificate

Key Usages

1b:71:60:84:eb:be:37:10:49:89:4a:8e:f2:01:03:8e:10:09:73:bbSigner

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

msvcrt

setupapi

kernel32

advapi32

user32

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 59KB

.data Size: 2KB - Virtual size: 4KB

.pdata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 904B

.reloc Size: 512B - Virtual size: 352B

f771fcc2fe54680d21562f599db14975

Code Sign

04:00:00:00:00:01:23:9e:0f:ac:b3Certificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:20:19:c1:90:66Certificate

Key Usages

01:00:00:00:00:01:25:b0:b4:cc:01Certificate

Extended Key Usages

Key Usages

01:00:00:00:00:01:2f:73:8c:af:edCertificate

Extended Key Usages

Key Usages

04:00:00:00:00:01:23:9e:0f:af:24Certificate

Extended Key Usages

Key Usages

61:0b:7f:6b:00:00:00:00:00:19Certificate

Key Usages

28:55:7e:16:55:83:bb:28:b7:cb:c0:8b:c8:88:06:33:36:5a:48:4eSigner

Headers

File Characteristics

PDB Paths

Imports

ntoskrnl.exe

usbd.sys

Sections

.text Size: 35KB - Virtual size: 35KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 496B

.pdata Size: 1024B - Virtual size: 732B

INIT Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 944B

.reloc Size: 512B - Virtual size: 186B

4bc24665f0071d2ba6abde0d1112c71a

Headers

DLL Characteristics

File Characteristics

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

04:00:00:00:00:01:20:19:c1:90:66
Certificate

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

61:0b:7f:6b:00:00:00:00:00:19
Certificate

1b:71:60:84:eb:be:37:10:49:89:4a:8e:f2:01:03:8e:10:09:73:bb
Signer

.text
Size: 60KB - Virtual size: 59KB

.data
Size: 2KB - Virtual size: 4KB

.pdata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 904B

.reloc
Size: 512B - Virtual size: 352B

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

04:00:00:00:00:01:20:19:c1:90:66
Certificate

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

61:0b:7f:6b:00:00:00:00:00:19
Certificate

28:55:7e:16:55:83:bb:28:b7:cb:c0:8b:c8:88:06:33:36:5a:48:4e
Signer

.text
Size: 35KB - Virtual size: 35KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 496B

.pdata
Size: 1024B - Virtual size: 732B

INIT
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 944B

.reloc
Size: 512B - Virtual size: 186B

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 1KB - Virtual size: 4KB

.pdata
Size: 512B - Virtual size: 468B

.reloc
Size: 512B - Virtual size: 144B

.text
Size: 19KB - Virtual size: 18KB

.data
Size: 1024B - Virtual size: 3KB

.reloc
Size: 2KB - Virtual size: 1KB

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

04:00:00:00:00:01:20:19:c1:90:66
Certificate

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate

01:00:00:00:00:01:2f:73:8c:af:ed
Certificate

04:00:00:00:00:01:23:9e:0f:af:24
Certificate

61:0b:7f:6b:00:00:00:00:00:19
Certificate

07:d5:02:3d:7b:20:9a:7d:7b:2f:b6:25:b8:98:68:5f:20:71:f1:11
Signer

.text
Size: 27KB - Virtual size: 26KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 256B - Virtual size: 156B

INIT
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 944B

.reloc
Size: 1KB - Virtual size: 1KB

04:00:00:00:00:01:23:9e:0f:ac:b3
Certificate

04:00:00:00:00:01:20:19:c1:90:66
Certificate

01:00:00:00:00:01:25:b0:b4:cc:01
Certificate