ffb6c7d8efaa018c465c3297998fe361_JaffaCakes118

resource	yara_rule
static1/unpack001/$PLUGINSDIR/md5dll.dll	acprotect

resource	yara_rule
static1/unpack001/$PLUGINSDIR/md5dll.dll	upx

resource
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/UpdHelper.dll
unpack001/$PLUGINSDIR/md5dll.dll
unpack002/out.upx
unpack001/Modules/7z.dll

.exe windows:4 windows x86 arch:x86

7ed0d71376e55d58ab36dc7d3ffda898

Code Sign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

01
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Key Usages

KeyUsageCertSign

KeyUsageCRLSign

39:74:70:09:0e:49:d7:0d:3d:54:b8:03:f0:ac:72:c8
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/03/2015, 00:00

Not After

01/03/2016, 23:59

Subject

CN=GREYSTONE VENTURES LP,O=GREYSTONE VENTURES LP,POSTALCODE=EH5 1LB,STREET=18/2 ROYSTON MAINS STREET,L=EDINBURGH,ST=SCOTLAND,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

56:41:32:91:a3:8f:1d:fa:bc:38:11:8e:d5:64:81:96:c2:2a:70:33
Signer

Actual PE Digest

56:41:32:91:a3:8f:1d:fa:bc:38:11:8e:d5:64:81:96:c2:2a:70:33

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_NO_SEH

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime

SearchPathW

SetFileTime

CloseHandle

GetShortPathNameW

MoveFileW

SetCurrentDirectoryW

GetFileAttributesW

GetLastError

GetFullPathNameW

CreateDirectoryW

Sleep

GetTickCount

GetFileSize

GetModuleFileNameW

GetCurrentProcess

CopyFileW

ExitProcess

SetEnvironmentVariableW

GetWindowsDirectoryW

GetTempPathW

SetFileAttributesW

ExpandEnvironmentStringsW

LoadLibraryW

lstrlenW

lstrcpynW

GetDiskFreeSpaceW

GlobalUnlock

GlobalLock

CreateThread

CreateProcessW

RemoveDirectoryW

lstrcmpiA

CreateFileW

GetTempFileNameW

lstrcpyA

lstrcpyW

lstrcatW

GetSystemDirectoryW

GetVersion

GetProcAddress

LoadLibraryA

GetModuleHandleA

GetModuleHandleW

lstrcmpiW

lstrcmpW

WaitForSingleObject

GlobalFree

GlobalAlloc

LoadLibraryExW

GetExitCodeProcess

FreeLibrary

WritePrivateProfileStringW

SetErrorMode

GetCommandLineW

GetPrivateProfileStringW

FindFirstFileW

FindNextFileW

DeleteFileW

SetFilePointer

ReadFile

FindClose

MulDiv

MultiByteToWideChar

WriteFile

lstrlenA

WideCharToMultiByte

user32

EndDialog

ScreenToClient

GetWindowRect

RegisterClassW

EnableMenuItem

GetSystemMenu

SetClassLongW

IsWindowEnabled

SetWindowPos

GetSysColor

GetWindowLongW

SetCursor

LoadCursorW

CheckDlgButton

GetMessagePos

LoadBitmapW

CallWindowProcW

IsWindowVisible

CloseClipboard

SetClipboardData

wsprintfW

CreateWindowExW

SystemParametersInfoW

AppendMenuW

CreatePopupMenu

GetSystemMetrics

SetDlgItemTextW

GetDlgItemTextW

MessageBoxIndirectW

CharPrevW

CharNextA

wsprintfA

DispatchMessageW

PeekMessageW

ReleaseDC

EnableWindow

InvalidateRect

SendMessageW

DefWindowProcW

BeginPaint

GetClientRect

FillRect

DrawTextW

GetClassInfoW

DialogBoxParamW

CharNextW

ExitWindowsEx

DestroyWindow

CreateDialogParamW

SetTimer

SetWindowTextW

PostQuitMessage

GetDC

SetWindowLongW

LoadImageW

SendMessageTimeoutW

FindWindowExW

EmptyClipboard

OpenClipboard

TrackPopupMenu

EndPaint

ShowWindow

GetDlgItem

IsWindow

SetForegroundWindow

gdi32

SelectObject

SetBkMode

CreateFontIndirectW

SetTextColor

DeleteObject

GetDeviceCaps

CreateBrushIndirect

SetBkColor

shell32

SHGetSpecialFolderLocation

SHGetPathFromIDListW

SHBrowseForFolderW

SHGetFileInfoW

ShellExecuteW

SHFileOperationW

advapi32

RegCloseKey

RegOpenKeyExW

RegDeleteKeyW

RegDeleteValueW

RegEnumValueW

RegCreateKeyExW

RegSetValueExW

RegQueryValueExW

RegEnumKeyW

comctl32

ImageList_Create

ImageList_AddMasked

ImageList_Destroy

ord17

ole32

CoCreateInstance

CoTaskMemFree

OleInitialize

OleUninitialize

version

GetFileVersionInfoSizeW

GetFileVersionInfoW

VerQueryValueW

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 204KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

$PLUGINSDIR/System.dll

.dll windows:4 windows x86 arch:x86

fc0224e99e736751432961db63a41b76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW

GlobalFree

GlobalSize

lstrcpynW

lstrcpyW

GetProcAddress

WideCharToMultiByte

VirtualFree

FreeLibrary

lstrlenW

LoadLibraryW

GlobalAlloc

MultiByteToWideChar

VirtualAlloc

VirtualProtect

GetLastError

user32

wsprintfW

ole32

StringFromGUID2

CLSIDFromString

Exports

Alloc

Call

Copy

Free

Get

Int64Op

Store

StrAlloc

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 851B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 610B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/UpdHelper.dll

.dll windows:6 windows x86 arch:x86

d21c1bd3aee21744864ab9c392d7044d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

E:\Projects\gigaclick\UpdHelper\Release\UpdHelper.pdb

Imports

kernel32

GlobalFree

InitializeCriticalSectionEx

CloseHandle

InterlockedDecrement

GetModuleHandleW

GetProcAddress

WaitForSingleObject

CreateToolhelp32Snapshot

Process32FirstW

OpenProcess

QueryFullProcessImageNameW

TerminateProcess

Process32NextW

MultiByteToWideChar

OpenEventW

SetEvent

GetEnvironmentVariableW

SizeofResource

LockResource

LoadResource

FindResourceW

FindResourceExW

GetLocalTime

SystemTimeToFileTime

FileTimeToSystemTime

LocalFree

lstrcpynW

WideCharToMultiByte

GetCurrentProcessId

GlobalAlloc

lstrlenA

HeapDestroy

CreateFileW

FlushFileBuffers

WriteConsoleW

SetStdHandle

LoadLibraryW

OutputDebugStringW

SetFilePointerEx

GetConsoleMode

EncodePointer

DecodePointer

GetCommandLineA

GetCurrentThreadId

IsDebuggerPresent

IsProcessorFeaturePresent

GetLastError

HeapFree

InterlockedIncrement

IsValidCodePage

GetACP

GetOEMCP

GetCPInfo

SetLastError

HeapAlloc

RaiseException

ExitProcess

GetModuleHandleExW

HeapSize

Sleep

GetStdHandle

WriteFile

GetModuleFileNameW

GetProcessHeap

GetFileType

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

GetStartupInfoW

GetModuleFileNameA

QueryPerformanceCounter

GetSystemTimeAsFileTime

GetEnvironmentStringsW

FreeEnvironmentStringsW

UnhandledExceptionFilter

SetUnhandledExceptionFilter

GetCurrentProcess

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

EnterCriticalSection

LeaveCriticalSection

RtlUnwind

GetStringTypeW

LCMapStringW

LoadLibraryExW

HeapReAlloc

GetConsoleCP

user32

wsprintfW

advapi32

RegOpenKeyExW

RegCloseKey

RegQueryValueExW

ole32

CoInitializeEx

CoCreateInstance

CoInitializeSecurity

CoUninitialize

oleaut32

SysAllocString

VariantInit

VariantClear

SysFreeString

Exports

CreateTask

DeleteScheduledTask

GetParentInfo

GetSchedulerAppName

GetSchedulerPath

RunScheduledTask

StopScheduledTask

StopScheduledTasks

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$PLUGINSDIR/md5dll.dll

.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Exports

GetFileMD5

GetMD5

GetMD5File

GetMD5Random

GetMD5String

Sections

UPX0
Size: - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

UPX1
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

out.upx

.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 162B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$TEMP/$0.nsis

$_1_/Modules/clc.dll

.dll windows:6 windows x86 arch:x86

cbf300722f610440cd6c79bf07ad301e

Code Sign

9f:ea:c8:11:b0:f1:62:47:a5:fc:20:d8:05:23:ac:e6
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

05/05/2015, 00:00

Not After

31/12/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

39:74:70:09:0e:49:d7:0d:3d:54:b8:03:f0:ac:72:c8
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/03/2015, 00:00

Not After

01/03/2016, 23:59

Subject

CN=GREYSTONE VENTURES LP,O=GREYSTONE VENTURES LP,POSTALCODE=EH5 1LB,STREET=18/2 ROYSTON MAINS STREET,L=EDINBURGH,ST=SCOTLAND,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ef:d4:e4:ca:86:a2:ed:5f:4f:41:43:4d:d3:bb:bd:a1:ac:0a:12:7e
Signer

Actual PE Digest

ef:d4:e4:ca:86:a2:ed:5f:4f:41:43:4d:d3:bb:bd:a1:ac:0a:12:7e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

E:\Projects\gigaclick\Release\Modules\clc.pdb

Imports

kernel32

WideCharToMultiByte

GetModuleHandleW

GetProcAddress

ExitProcess

GetTickCount64

SizeofResource

LockResource

LoadResource

FindResourceW

Sleep

InitializeCriticalSectionEx

GetModuleFileNameW

LoadLibraryW

CreateProcessW

FreeLibrary

GetModuleHandleA

GetSystemTimeAsFileTime

GetCurrentThreadId

SetWaitableTimer

WaitForSingleObject

GetLastError

CreateWaitableTimerW

SetLastError

MultiByteToWideChar

GetLocalTime

GetTempPathW

CancelWaitableTimer

GetHandleInformation

FindResourceExW

CloseHandle

GetCurrentProcessId

QueryPerformanceCounter

HeapAlloc

HeapReAlloc

HeapFree

HeapSize

GetProcessHeap

RaiseException

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

EncodePointer

DecodePointer

IsDebuggerPresent

IsProcessorFeaturePresent

HeapDestroy

user32

FindWindowA

advapi32

RegSetValueExW

RegCreateKeyExW

RegOpenKeyExW

RegCloseKey

CryptReleaseContext

CryptDestroyHash

CryptGetHashParam

CryptHashData

CryptCreateHash

CryptAcquireContextW

RegQueryValueExW

msvcp110

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??0_Lockit@std@@QAE@H@Z

??1_Lockit@std@@QAE@XZ

??_7_Facet_base@std@@6B@

??_7facet@locale@std@@6B@

?_Init@locale@std@@CAPAV_Locimp@12@_N@Z

?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

??_7codecvt_base@std@@6B@

??_7?$codecvt@_WDH@std@@6B@

?_Xinvalid_argument@std@@YAXPBD@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?id@?$codecvt@DDH@std@@2V0locale@2@A

?id@?$codecvt@_WDH@std@@2V0locale@2@A

?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ

?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ

?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z

?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

?out@?$codecvt@_WDH@std@@QBEHAAHPB_W1AAPB_WPAD3AAPAD@Z

?always_noconv@codecvt_base@std@@QBE_NXZ

?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z

?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ

?_Incref@facet@locale@std@@UAEXXZ

??Bid@locale@std@@QAEIXZ

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z

?id@?$ctype@D@std@@2V0locale@2@A

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?tolower@?$ctype@D@std@@QBEDD@Z

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

?_BADOFF@std@@3_JB

?_Xout_of_range@std@@YAXPBD@Z

?_Winerror_map@std@@YAPBDH@Z

?_Syserror_map@std@@YAPBDH@Z

msvcr110

??1exception@std@@UAE@XZ

wmemcpy_s

??0exception@std@@QAE@ABV01@@Z

_errno

strtoul

fgetc

fputc

ungetc

_strlwr_s

strncmp

_ultoa_s

_wtoi

rand

?what@exception@std@@UBEPBDXZ

_lock_file

_unlock_file

fwrite

_fseeki64

fgetpos

fsetpos

setvbuf

fflush

strnlen

fclose

??0bad_cast@std@@QAE@PBD@Z

??0bad_cast@std@@QAE@ABV01@@Z

??1bad_cast@std@@UAE@XZ

_vscprintf

vsprintf_s

memchr

_recalloc

calloc

swprintf_s

wcsrchr

wcsstr

??8type_info@@QBE_NABV0@@Z

memset

??1type_info@@UAE@XZ

_lock

_unlock

_calloc_crt

__dllonexit

_onexit

?terminate@@YAXXZ

__CppXcptFilter

_amsg_exit

_malloc_crt

_initterm

_initterm_e

_crt_debugger_hook

__crtUnhandledException

__crtTerminateProcess

_except_handler4_common

__clean_type_info_names_internal

??0exception@std@@QAE@ABQBD@Z

_purecall

vswprintf_s

_vscwprintf

memmove_s

wcsnlen

toupper

malloc

_resetstkoflw

??2@YAPAXI@Z

free

memcpy_s

memmove

??3@YAXPAX@Z

__CxxFrameHandler3

_CxxThrowException

memcpy

Exports

Create

Init

Sections

.text
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$_1_/Modules/crm.dll

.dll windows:6 windows x86 arch:x86

f3111990a3e3a032076f002b4141c4ef

Code Sign

9f:ea:c8:11:b0:f1:62:47:a5:fc:20:d8:05:23:ac:e6
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

05/05/2015, 00:00

Not After

31/12/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

39:74:70:09:0e:49:d7:0d:3d:54:b8:03:f0:ac:72:c8
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/03/2015, 00:00

Not After

01/03/2016, 23:59

Subject

CN=GREYSTONE VENTURES LP,O=GREYSTONE VENTURES LP,POSTALCODE=EH5 1LB,STREET=18/2 ROYSTON MAINS STREET,L=EDINBURGH,ST=SCOTLAND,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ae:94:f2:b5:ab:07:1a:a0:01:e0:78:64:7b:d3:b8:9e:0e:36:30:8a
Signer

Actual PE Digest

ae:94:f2:b5:ab:07:1a:a0:01:e0:78:64:7b:d3:b8:9e:0e:36:30:8a

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

E:\Projects\gigaclick\Release\Modules\crm.pdb

Imports

kernel32

MultiByteToWideChar

GetModuleFileNameW

GetModuleHandleW

OpenEventW

GetCurrentProcess

GetTempPathW

CreateProcessW

WaitForMultipleObjects

GetExitCodeProcess

TerminateProcess

WideCharToMultiByte

GetCurrentProcessId

OpenProcess

QueryFullProcessImageNameW

GetEnvironmentVariableW

SizeofResource

LockResource

LoadResource

FindResourceW

FindResourceExW

CloseHandle

LoadLibraryW

LoadLibraryA

GetProcAddress

FreeLibrary

ExitProcess

InitializeCriticalSectionEx

FormatMessageA

LocalFree

HeapAlloc

HeapReAlloc

HeapFree

HeapSize

GetProcessHeap

RaiseException

GetLastError

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

EncodePointer

DecodePointer

IsDebuggerPresent

IsProcessorFeaturePresent

QueryPerformanceCounter

GetCurrentThreadId

GetSystemTimeAsFileTime

CreateEventA

OpenEventA

WaitForSingleObject

SetEvent

ResetEvent

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

HeapDestroy

advapi32

RegCreateKeyExW

RegQueryValueExW

RegDeleteValueW

RegOpenKeyExW

RegCloseKey

RegSetValueExW

msvcp110

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

?uncaught_exception@std@@YA_NXZ

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

?_BADOFF@std@@3_JB

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?_Winerror_map@std@@YAPBDH@Z

?_Syserror_map@std@@YAPBDH@Z

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

msvcr110

vsprintf_s

??0exception@std@@QAE@ABQBD@Z

??1exception@std@@UAE@XZ

?what@exception@std@@UBEPBDXZ

memset

??1type_info@@UAE@XZ

_lock

_unlock

_calloc_crt

__dllonexit

_onexit

__CppXcptFilter

_amsg_exit

_malloc_crt

_initterm

_initterm_e

_crt_debugger_hook

__crtUnhandledException

__crtTerminateProcess

_except_handler4_common

__clean_type_info_names_internal

_vscprintf

vswprintf_s

_vscwprintf

memmove_s

strnlen

wcsrchr

wcsnlen

_wcsicmp

_resetstkoflw

sprintf_s

free

malloc

wmemcpy_s

?terminate@@YAXXZ

??0exception@std@@QAE@ABV01@@Z

memcpy_s

??8type_info@@QBE_NABV0@@Z

_purecall

??2@YAPAXI@Z

memmove

??3@YAXPAX@Z

memcpy

__CxxFrameHandler3

??0exception@std@@QAE@ABQBDH@Z

_CxxThrowException

strerror

Exports

Create

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$_1_/Modules/wis.dll

.dll windows:6 windows x86 arch:x86

7b62718b09c9deb241ba8b2fcc471717

Code Sign

9f:ea:c8:11:b0:f1:62:47:a5:fc:20:d8:05:23:ac:e6
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

05/05/2015, 00:00

Not After

31/12/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

39:74:70:09:0e:49:d7:0d:3d:54:b8:03:f0:ac:72:c8
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/03/2015, 00:00

Not After

01/03/2016, 23:59

Subject

CN=GREYSTONE VENTURES LP,O=GREYSTONE VENTURES LP,POSTALCODE=EH5 1LB,STREET=18/2 ROYSTON MAINS STREET,L=EDINBURGH,ST=SCOTLAND,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

59:6e:3a:de:65:f1:52:2d:4b:d1:24:40:00:68:79:55:b5:1b:e4:18
Signer

Actual PE Digest

59:6e:3a:de:65:f1:52:2d:4b:d1:24:40:00:68:79:55:b5:1b:e4:18

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

kernel32

GetLastError

Sleep

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

QueryPerformanceCounter

IsProcessorFeaturePresent

IsDebuggerPresent

DecodePointer

EncodePointer

GetProcessHeap

HeapSize

HeapFree

HeapReAlloc

HeapAlloc

HeapDestroy

msvcr110

__clean_type_info_names_internal

_except_handler4_common

?terminate@@YAXXZ

__crtTerminateProcess

__crtUnhandledException

_crt_debugger_hook

_initterm_e

_initterm

_malloc_crt

free

_amsg_exit

__CppXcptFilter

_onexit

__dllonexit

_calloc_crt

_unlock

_lock

??1type_info@@UAE@XZ

_purecall

?what@exception@std@@UBEPBDXZ

vsprintf_s

_vscprintf

??1bad_cast@std@@UAE@XZ

??0bad_cast@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@PBD@Z

memmove_s

fclose

fflush

setvbuf

fsetpos

fgetpos

_fseeki64

fwrite

_unlock_file

_lock_file

atoi

ungetc

fputc

fgetc

??2@YAPAXI@Z

??0exception@std@@QAE@ABV01@@Z

memcpy_s

memmove

??1exception@std@@UAE@XZ

??0exception@std@@QAE@ABQBD@Z

??3@YAXPAX@Z

_CxxThrowException

__CxxFrameHandler3

memcpy

memset

msvcp110

_Mtx_destroy

_Mtx_unlock

_Mtx_lock

_Mtx_init

?_Throw_C_error@std@@YAXH@Z

??Bid@locale@std@@QAEIXZ

?always_noconv@codecvt_base@std@@QBE_NXZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UAEXXZ

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z

?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ

?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

??0_Lockit@std@@QAE@H@Z

??1_Lockit@std@@QAE@XZ

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

?_Syserror_map@std@@YAPBDH@Z

?_Winerror_map@std@@YAPBDH@Z

?_Xout_of_range@std@@YAXPBD@Z

?_BADOFF@std@@3_JB

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Xlength_error@std@@YAXPBD@Z

?id@?$codecvt@DDH@std@@2V0locale@2@A

?_Xbad_alloc@std@@YAXXZ

?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

Exports

Create

Init

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$_1_/RtHelp.exe

.exe windows:6 windows x86 arch:x86

d29f5270c56771586b86550cf2fec9f2

Code Sign

9f:ea:c8:11:b0:f1:62:47:a5:fc:20:d8:05:23:ac:e6
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

05/05/2015, 00:00

Not After

31/12/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

39:74:70:09:0e:49:d7:0d:3d:54:b8:03:f0:ac:72:c8
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/03/2015, 00:00

Not After

01/03/2016, 23:59

Subject

CN=GREYSTONE VENTURES LP,O=GREYSTONE VENTURES LP,POSTALCODE=EH5 1LB,STREET=18/2 ROYSTON MAINS STREET,L=EDINBURGH,ST=SCOTLAND,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

66:bb:a2:d3:25:d0:ce:25:2e:ba:25:d7:ff:5e:b9:90:38:61:a6:f2
Signer

Actual PE Digest

66:bb:a2:d3:25:d0:ce:25:2e:ba:25:d7:ff:5e:b9:90:38:61:a6:f2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceW

LoadResource

WaitForSingleObject

SetEvent

SizeofResource

GetFileAttributesW

GetModuleFileNameW

InitializeCriticalSectionEx

LockResource

CreateEventExW

CloseHandle

FreeLibrary

LoadLibraryW

GetProcAddress

CreateMutexW

WideCharToMultiByte

GetTickCount

GetProcessHeap

HeapAlloc

CreateEventA

HeapFree

FindResourceExW

MultiByteToWideChar

GetLastError

CreateEventW

WaitForMultipleObjects

ReleaseMutex

GetCurrentProcessId

GetTickCount64

ResetEvent

CreateThread

FormatMessageA

LocalFree

SystemTimeToFileTime

CreateWaitableTimerA

Sleep

ExitProcess

ResumeThread

SetWaitableTimer

GetModuleHandleA

ReleaseSemaphore

RaiseException

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

HeapDestroy

HeapReAlloc

HeapSize

InterlockedIncrement

InterlockedDecrement

EncodePointer

DecodePointer

GetStringTypeW

GetSystemInfo

VirtualAlloc

VirtualProtect

VirtualQuery

GetSystemTimeAsFileTime

GetCommandLineW

RtlUnwind

GetCPInfo

InitializeCriticalSectionAndSpinCount

IsProcessorFeaturePresent

UnhandledExceptionFilter

SetUnhandledExceptionFilter

SetLastError

GetCurrentProcess

TerminateProcess

TlsAlloc

TlsGetValue

TlsSetValue

TlsFree

GetStartupInfoW

GetModuleHandleW

LCMapStringW

GetLocaleInfoW

IsValidLocale

GetUserDefaultLCID

EnumSystemLocalesW

IsDebuggerPresent

GetModuleHandleExW

GetStdHandle

WriteFile

IsValidCodePage

GetACP

GetOEMCP

GetCurrentThreadId

GetFileType

QueryPerformanceCounter

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetConsoleCP

GetConsoleMode

SetFilePointerEx

LoadLibraryExW

OutputDebugStringW

SetStdHandle

WriteConsoleW

FlushFileBuffers

CreateFileW

OpenEventA

ExitThread

advapi32

RegCloseKey

shell32

SHFileOperationW

Sections

.text
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$_1_/msvcp110.dll

.dll windows:6 windows x86 arch:x86

098e9eddf1a24b3fd9465ee992148a02

Code Sign

33:00:00:00:9d:1e:8d:27:ae:b8:f3:d8:38:00:01:00:00:00:9d
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/09/2012, 21:42

Not After

04/03/2013, 21:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

33:00:00:00:2b:39:32:48:c1:b2:c9:48:f3:00:00:00:00:00:2b
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/09/2012, 21:12

Not After

04/12/2013, 21:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:C0F4-3086-DEF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:00:08:e2:79:fa:0d:25:58:45:ea:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/07/2012, 00:14

Not After

07/10/2013, 00:14

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

bd:da:49:3e:e0:d0:cf:a8:1e:ba:49:76:d1:38:5e:50:ea:b9:84:2f:8b:f8:ee:1c:ee:b6:de:b5:98:7f:ae:bf
Signer

Actual PE Digest

bd:da:49:3e:e0:d0:cf:a8:1e:ba:49:76:d1:38:5e:50:ea:b9:84:2f:8b:f8:ee:1c:ee:b6:de:b5:98:7f:ae:bf

Digest Algorithm

sha256

PE Digest Matches

true

bf:fa:d4:6b:19:62:38:e3:7a:c8:07:80:df:f1:d6:ab:5d:65:be:e9
Signer

Actual PE Digest

bf:fa:d4:6b:19:62:38:e3:7a:c8:07:80:df:f1:d6:ab:5d:65:be:e9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcp110.i386.pdb

Imports

msvcr110

fgetpos

fsetpos

_fseeki64

fwrite

setvbuf

ungetc

_lock_file

_unlock_file

memcpy_s

memset

_fsopen

fseek

_wfsopen

?__ExceptionPtrDestroy@@YAXPAX@Z

?__ExceptionPtrCopy@@YAXPAXPBX@Z

?__ExceptionPtrRethrow@@YAXPBX@Z

?_ScheduleTask@_CurrentScheduler@details@Concurrency@@SAXP6AXPAX@Z0@Z

?set@event@Concurrency@@QAEXXZ

ldexp

sprintf_s

strcspn

wcslen

_Strftime

_Wcsftime

strcmp

setlocale

_malloc_crt

_realloc_crt

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

fgetwc

fputwc

ungetwc

__uncaught_exception

towupper

towlower

_errno

memcmp

_wcsdup

___lc_locale_name_func

___lc_collate_cp_func

__crtCompareStringA

__crtLCMapStringA

___lc_codepage_func

_ismbblead

remove

rename

_wremove

_wgetcwd

_wchdir

_wmkdir

_wrmdir

_wrename

_getcwd

_chdir

_mkdir

_rmdir

__crtIsPackagedApp

__crtCreateSymbolicLinkW

calloc

??0_Condition_variable@details@Concurrency@@QAE@XZ

fgetc

?wait@_Condition_variable@details@Concurrency@@QAEXAAVcritical_section@3@@Z

?wait_for@_Condition_variable@details@Concurrency@@QAE_NAAVcritical_section@3@I@Z

?notify_one@_Condition_variable@details@Concurrency@@QAEXXZ

?notify_all@_Condition_variable@details@Concurrency@@QAEXXZ

_beginthreadex

_endthreadex

??0critical_section@Concurrency@@QAE@XZ

??1critical_section@Concurrency@@QAE@XZ

?lock@critical_section@Concurrency@@QAEXXZ

?try_lock@critical_section@Concurrency@@QAE_NXZ

?try_lock_for@critical_section@Concurrency@@QAE_NI@Z

?unlock@critical_section@Concurrency@@QAEXXZ

?terminate@@YAXXZ

__crtFlsAlloc

__crtFlsFree

__crtFlsGetValue

__crtFlsSetValue

??0operation_timed_out@Concurrency@@QAE@XZ

?Alloc@Concurrency@@YAPAXI@Z

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z

??0invalid_link_target@Concurrency@@QAE@PBD@Z

??0message_not_found@Concurrency@@QAE@XZ

?_Trace_agents@Concurrency@@YAXW4Agents_EventType@1@_JZZ

??0bad_target@Concurrency@@QAE@XZ

??0invalid_operation@Concurrency@@QAE@PBD@Z

?wait@event@Concurrency@@QAEII@Z

??1event@Concurrency@@QAE@XZ

??0event@Concurrency@@QAE@XZ

?Free@Concurrency@@YAXPAX@Z

??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

?_Yield@_Context@details@Concurrency@@SAXXZ

?_UnderlyingYield@details@Concurrency@@YAXXZ

?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ

?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ

?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ

??0task_canceled@Concurrency@@QAE@XZ

??1_SpinLock@details@Concurrency@@QAE@XZ

??0_SpinLock@details@Concurrency@@QAE@ACJ@Z

?Log2@details@Concurrency@@YAKI@Z

_lock

_unlock

__pctype_func

isupper

_calloc_crt

__crtGetLocaleInfoEx

islower

__crtLCMapStringW

isspace

tolower

memchr

sqrt

isdigit

isalnum

__crtCompareStringW

__dllonexit

_onexit

??1type_info@@UAE@XZ

__CppXcptFilter

_amsg_exit

_initterm

_initterm_e

_except_handler4_common

_crt_debugger_hook

__crtUnhandledException

__crtTerminateProcess

__clean_type_info_names_internal

fflush

fclose

__CxxFrameHandler3

_CxxThrowException

?what@exception@std@@UBEPBDXZ

??1bad_cast@std@@UAE@XZ

??0bad_cast@std@@QAE@ABV01@@Z

_W_Gettnames

_W_Getmonths

_W_Getdays

_Gettnames

_Getmonths

_Getdays

localeconv

??0bad_cast@std@@QAE@PBD@Z

??_V@YAXPAX@Z

??1exception@std@@UAE@XZ

??0exception@std@@QAE@ABV01@@Z

??0exception@std@@QAE@ABQBDH@Z

??0exception@std@@QAE@ABQBD@Z

??0exception@std@@QAE@XZ

memmove

strlen

memcpy

malloc

free

___mb_cur_max_func

_purecall

rand_s

fputs

fputc

__iob_func

abort

log

__crtInitializeCriticalSectionEx

??3@YAXPAX@Z

??1_Condition_variable@details@Concurrency@@QAE@XZ

??2@YAPAXI@Z

kernel32

GetCurrentProcessId

QueryPerformanceCounter

IsDebuggerPresent

IsProcessorFeaturePresent

GetStringTypeW

InterlockedDecrement

InterlockedIncrement

GetSystemTimeAsFileTime

InterlockedExchange

GetExitCodeThread

GetCurrentThreadId

GetCurrentThread

GetCurrentProcess

Sleep

WaitForSingleObject

DuplicateHandle

AreFileApisANSI

CreateHardLinkW

CopyFileW

GetLastError

CloseHandle

SetFileTime

GetFileInformationByHandle

GetFileAttributesExW

GetDiskFreeSpaceExW

FindNextFileW

FindFirstFileExW

FindClose

CreateFileW

WideCharToMultiByte

MultiByteToWideChar

DecodePointer

EncodePointer

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

DisableThreadLibraryCalls

Exports

??$_Getvals@_W@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z

??$_Getvals@_W@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z

??$_Getvals@_W@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAEX_WABV_Locinfo@1@@Z

??0?$_Yarn@D@std@@QAE@ABV01@@Z

??0?$_Yarn@D@std@@QAE@PBD@Z

??0?$_Yarn@D@std@@QAE@XZ

??0?$_Yarn@_W@std@@QAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N1@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z

??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAE@$$QAV01@@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@_N@Z

??0?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAE@W4_Uninitialized@1@_N@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@ABV01@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@W4_Uninitialized@1@@Z

??0?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAE@XZ

??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@DDH@std@@QAE@I@Z

??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@GDH@std@@QAE@I@Z

??0?$codecvt@_WDH@std@@QAE@ABV_Locinfo@1@I@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@D@std@@QAE@PBF_NI@Z

??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@G@std@@QAE@I@Z

??0?$ctype@_W@std@@QAE@ABV_Locinfo@1@I@Z

??0?$ctype@_W@std@@QAE@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@IAE@PBDI@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z

??0?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAE@I@Z

??0Init@ios_base@std@@QAE@XZ

??0_Concurrent_queue_base_v4@details@Concurrency@@IAE@I@Z

??0_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@ABV_Concurrent_queue_base_v4@12@@Z

??0_Container_base12@std@@QAE@ABU01@@Z

??0_Container_base12@std@@QAE@XZ

??0_Facet_base@std@@QAE@ABV01@@Z

??0_Facet_base@std@@QAE@XZ

??0_Init_locks@std@@QAE@XZ

??0_Locimp@locale@std@@AAE@ABV012@@Z

??0_Locimp@locale@std@@AAE@_N@Z

??0_Locinfo@std@@QAE@HPBD@Z

??0_Locinfo@std@@QAE@PBD@Z

??0_Lockit@std@@QAE@H@Z

??0_Lockit@std@@QAE@XZ

??0_Pad@std@@QAE@ABV01@@Z

??0_Pad@std@@QAE@XZ

??0_Runtime_object@details@Concurrency@@QAE@H@Z

??0_Runtime_object@details@Concurrency@@QAE@XZ

??0_Timevec@std@@QAE@ABV01@@Z

??0_Timevec@std@@QAE@PAX@Z

??0_UShinit@std@@QAE@XZ

??0_Winit@std@@QAE@XZ

??0agent@Concurrency@@QAE@AAVScheduleGroup@1@@Z

??0agent@Concurrency@@QAE@AAVScheduler@1@@Z

??0agent@Concurrency@@QAE@XZ

??0codecvt_base@std@@QAE@I@Z

??0ctype_base@std@@QAE@I@Z

??0facet@locale@std@@IAE@I@Z

??0id@locale@std@@QAE@I@Z

??0ios_base@std@@IAE@XZ

??0time_base@std@@QAE@I@Z

??1?$_Yarn@D@std@@QAE@XZ

??1?$_Yarn@_W@std@@QAE@XZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_iostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ

??1?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@UAE@XZ

??1?$codecvt@DDH@std@@MAE@XZ

??1?$codecvt@GDH@std@@MAE@XZ

??1?$codecvt@_WDH@std@@MAE@XZ

??1?$ctype@D@std@@MAE@XZ

??1?$ctype@G@std@@MAE@XZ

??1?$ctype@_W@std@@MAE@XZ

??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@MAE@XZ

??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@MAE@XZ

??1?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@MAE@XZ

??1Init@ios_base@std@@QAE@XZ

??1_Concurrent_queue_base_v4@details@Concurrency@@MAE@XZ

??1_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAE@XZ

??1_Concurrent_vector_base_v4@details@Concurrency@@IAE@XZ

??1_Container_base12@std@@QAE@XZ

??1_Facet_base@std@@UAE@XZ

??1_Init_locks@std@@QAE@XZ

??1_Locimp@locale@std@@MAE@XZ

??1_Locinfo@std@@QAE@XZ

??1_Lockit@std@@QAE@XZ

??1_Pad@std@@QAE@XZ

??1_Timevec@std@@QAE@XZ

??1_UShinit@std@@QAE@XZ

??1_Winit@std@@QAE@XZ

??1agent@Concurrency@@UAE@XZ

??1codecvt_base@std@@UAE@XZ

??1ctype_base@std@@UAE@XZ

??1facet@locale@std@@MAE@XZ

??1ios_base@std@@UAE@XZ

??1time_base@std@@UAE@XZ

??4?$_Iosb@H@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@ABV01@@Z

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

??4?$_Yarn@_W@std@@QAEAAV01@PB_W@Z

??4?$basic_iostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_iostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_iostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_istream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_istream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_istream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_ostream@DU?$char_traits@D@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_ostream@GU?$char_traits@G@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_ostream@_WU?$char_traits@_W@std@@@std@@IAEAAV01@$$QAV01@@Z

??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAEAAV01@ABV01@@Z

??4?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@IAEAAV01@ABV01@@Z

??4Init@ios_base@std@@QAEAAV012@ABV012@@Z

??4_Container_base0@std@@QAEAAU01@ABU01@@Z

??4_Container_base12@std@@QAEAAU01@ABU01@@Z

??4_Facet_base@std@@QAEAAV01@ABV01@@Z

??4_Init_locks@std@@QAEAAV01@ABV01@@Z

??4_Pad@std@@QAEAAV01@ABV01@@Z

??4_Timevec@std@@QAEAAV01@ABV01@@Z

??4_UShinit@std@@QAEAAV01@ABV01@@Z

??4_Winit@std@@QAEAAV01@ABV01@@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAF@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAG@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAH@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAI@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAJ@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAK@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAM@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAN@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAO@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AAPAX@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_J@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_K@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@AA_N@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??5?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@F@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@I@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@M@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@N@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@O@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@_WU?$char_traits@_W@std@@@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PAV?$basic_streambuf@_WU?$char_traits@_W@std@@@1@@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@PBX@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_J@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_K@Z

??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@_N@Z

??7ios_base@std@@QBE_NXZ

??Bid@locale@std@@QAEIXZ

??Bios_base@std@@QBEPAXXZ

??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ios@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ios@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_iostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_iostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_iostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_istream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_istream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_ostream@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_ostream@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$basic_streambuf@DU?$char_traits@D@std@@@std@@6B@

??_7?$basic_streambuf@GU?$char_traits@G@std@@@std@@6B@

??_7?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@6B@

??_7?$codecvt@DDH@std@@6B@

??_7?$codecvt@GDH@std@@6B@

??_7?$codecvt@_WDH@std@@6B@

??_7?$ctype@D@std@@6B@

??_7?$ctype@G@std@@6B@

??_7?$ctype@_W@std@@6B@

??_7?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@6B@

??_7?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@6B@

??_7?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@6B@

??_7_Facet_base@std@@6B@

??_7_Locimp@locale@std@@6B@

??_7_Pad@std@@6B@

??_7codecvt_base@std@@6B@

??_7ctype_base@std@@6B@

??_7facet@locale@std@@6B@

??_7ios_base@std@@6B@

??_7time_base@std@@6B@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@DU?$char_traits@D@std@@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_istream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@GU?$char_traits@G@std@@@std@@7B?$basic_ostream@GU?$char_traits@G@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_istream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_iostream@_WU?$char_traits@_W@std@@@std@@7B?$basic_ostream@_WU?$char_traits@_W@std@@@1@@

??_8?$basic_istream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_istream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_istream@_WU?$char_traits@_W@std@@@std@@7B@

??_8?$basic_ostream@DU?$char_traits@D@std@@@std@@7B@

??_8?$basic_ostream@GU?$char_traits@G@std@@@std@@7B@

??_8?$basic_ostream@_WU?$char_traits@_W@std@@@std@@7B@

??_D?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_iostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_istream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_istream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_istream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

??_D?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEXXZ

??_D?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ

??_F?$codecvt@DDH@std@@QAEXXZ

??_F?$codecvt@GDH@std@@QAEXXZ

??_F?$codecvt@_WDH@std@@QAEXXZ

??_F?$ctype@D@std@@QAEXXZ

??_F?$ctype@G@std@@QAEXXZ

??_F?$ctype@_W@std@@QAEXXZ

??_F?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAEXXZ

??_F?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAEXXZ

??_F?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@QAEXXZ

??_F_Locinfo@std@@QAEXXZ

??_F_Timevec@std@@QAEXXZ

??_Fcodecvt_base@std@@QAEXXZ

??_Fctype_base@std@@QAEXXZ

??_Ffacet@locale@std@@QAEXXZ

??_Fid@locale@std@@QAEXXZ

??_Ftime_base@std@@QAEXXZ

?NFS_Allocate@details@Concurrency@@YAPAXIIPAX@Z

?NFS_Free@details@Concurrency@@YAXPAX@Z

?NFS_GetLineSize@details@Concurrency@@YAIXZ

?_10@placeholders@std@@3V?$_Ph@$09@2@A

?_11@placeholders@std@@3V?$_Ph@$0L@@2@A

?_12@placeholders@std@@3V?$_Ph@$0M@@2@A

?_13@placeholders@std@@3V?$_Ph@$0N@@2@A

?_14@placeholders@std@@3V?$_Ph@$0O@@2@A

?_15@placeholders@std@@3V?$_Ph@$0P@@2@A

?_16@placeholders@std@@3V?$_Ph@$0BA@@2@A

?_17@placeholders@std@@3V?$_Ph@$0BB@@2@A

?_18@placeholders@std@@3V?$_Ph@$0BC@@2@A

?_19@placeholders@std@@3V?$_Ph@$0BD@@2@A

?_1@placeholders@std@@3V?$_Ph@$00@2@A

?_20@placeholders@std@@3V?$_Ph@$0BE@@2@A

?_2@placeholders@std@@3V?$_Ph@$01@2@A

?_3@placeholders@std@@3V?$_Ph@$02@2@A

?_4@placeholders@std@@3V?$_Ph@$03@2@A

?_5@placeholders@std@@3V?$_Ph@$04@2@A

?_6@placeholders@std@@3V?$_Ph@$05@2@A

?_7@placeholders@std@@3V?$_Ph@$06@2@A

?_8@placeholders@std@@3V?$_Ph@$07@2@A

?_9@placeholders@std@@3V?$_Ph@$08@2@A

?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Add_vtordisp1@?$basic_ios@GU?$char_traits@G@std@@@std@@UAEXXZ

?_Add_vtordisp1@?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAEXXZ

?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Add_vtordisp1@?$basic_istream@GU?$char_traits@G@std@@@std@@UAEXXZ

?_Add_vtordisp1@?$basic_istream@_WU?$char_traits@_W@std@@@std@@UAEXXZ

?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Add_vtordisp2@?$basic_ios@GU?$char_traits@G@std@@@std@@UAEXXZ

?_Add_vtordisp2@?$basic_ios@_WU?$char_traits@_W@std@@@std@@UAEXXZ

?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Add_vtordisp2@?$basic_ostream@GU?$char_traits@G@std@@@std@@UAEXXZ

?_Add_vtordisp2@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@UAEXXZ

?_Addcats@_Locinfo@std@@QAEAAV12@HPBD@Z

?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z

?_Addstd@ios_base@std@@SAXPAV12@@Z

?_Advance@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXXZ

?_Assign@_Concurrent_queue_iterator_base_v4@details@Concurrency@@IAEXABV123@@Z

?_Atexit@@YAXP6AXXZ@Z

?_BADOFF@std@@3_JB

?_Byte_reverse_table@details@Concurrency@@3QBEB

?_C_str@?$_Yarn@D@std@@QBEPBDXZ

?_C_str@?$_Yarn@_W@std@@QBEPB_WXZ

?_Callfns@ios_base@std@@AAEXW4event@12@@Z

?_Clocptr@_Locimp@locale@std@@0PAV123@A

?_Close_dir@sys@tr2@std@@YAXPAX@Z

?_Copy_file@sys@tr2@std@@YAHPBD0_N@Z

?_Copy_file@sys@tr2@std@@YAHPB_W0_N@Z

?_Current_get@sys@tr2@std@@YAPADPAD@Z

?_Current_get@sys@tr2@std@@YAPA_WPA_W@Z

?_Current_set@sys@tr2@std@@YA_NPBD@Z

?_Current_set@sys@tr2@std@@YA_NPB_W@Z

?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ

?_Donarrow@?$ctype@G@std@@IBEDGD@Z

?_Donarrow@?$ctype@_W@std@@IBED_WD@Z

?_Dowiden@?$ctype@G@std@@IBEGD@Z

?_Dowiden@?$ctype@_W@std@@IBE_WD@Z

?_Empty@?$_Yarn@D@std@@QBE_NXZ

?_Empty@?$_Yarn@_W@std@@QBE_NXZ

?_Equivalent@sys@tr2@std@@YAHPBD0@Z

?_Equivalent@sys@tr2@std@@YAHPB_W0@Z

?_Ffmt@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAPADPADDH@Z

?_Ffmt@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABAPADPADDH@Z

?_File_size@sys@tr2@std@@YA_KPBD@Z

?_File_size@sys@tr2@std@@YA_KPB_W@Z

?_Findarr@ios_base@std@@AAEAAU_Iosarray@12@H@Z

?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PBGHH@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?_Fput@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@DU?$char_traits@D@std@@@2@V32@AAVios_base@2@DPBDIIII@Z

?_Fput@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@GU?$char_traits@G@std@@@2@V32@AAVios_base@2@GPBDIIII@Z

?_Fput@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@ABA?AV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@2@V32@AAVios_base@2@_WPBDIIII@Z

?_Future_error_map@std@@YAPBDH@Z

?_GetCombinableSize@details@Concurrency@@YAIXZ

?_GetCurrentThreadId@details@Concurrency@@YAKXZ

?_GetNextAsyncId@details@Concurrency@@YAIXZ

?_Get_future_error_what@std@@YAPBDH@Z

?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@GDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@G@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$ctype@_W@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$num_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_get@_WV?$istreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@?$time_put@_WV?$ostreambuf_iterator@_WU?$char_traits@_W@std@@@std@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?_Getcat@facet@locale@std@@SAIPAPBV123@PBV23@@Z

?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ

?_Getctype@_Locinfo@std@@QBE?AU_Ctypevec@@XZ

?_Getcvt@_Locinfo@std@@QBE?AU_Cvtvec@@XZ

?_Getdateorder@_Locinfo@std@@QBEHXZ

?_Getdays@_Locinfo@std@@QBEPBDXZ

?_Getfalse@_Locinfo@std@@QBEPBDXZ

?_Getffld@?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@DU?$char_traits@D@std@@@2@1AAVios_base@2@PAH@Z

?_Getffld@?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@ABAHPADAAV?$istreambuf_iterator@GU?$char_traits@G@std@@@2@1AAVios_base@2@PAH@Z

Sections

.text
Size: 390KB - Virtual size: 389KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

$_1_/msvcr110.dll

.dll windows:6 windows x86 arch:x86

e057a95f8936f77238b048f253956b3b

Code Sign

33:00:00:00:9d:1e:8d:27:ae:b8:f3:d8:38:00:01:00:00:00:9d
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

04/09/2012, 21:42

Not After

04/03/2013, 21:42

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:02:92:4a:00:00:00:00:00:20
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

09/01/2012, 22:25

Not After

09/04/2013, 22:25

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:B8EC-30A4-7144,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

33:00:00:00:08:e2:79:fa:0d:25:58:45:ea:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07/07/2012, 00:14

Not After

07/10/2013, 00:14

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

d2:28:17:88:08:cf:56:44:da:80:3e:bc:8d:b4:d0:f7:6f:2b:96:48:b2:24:6c:ee:31:43:70:6e:3a:90:25:9d
Signer

Actual PE Digest

d2:28:17:88:08:cf:56:44:da:80:3e:bc:8d:b4:d0:f7:6f:2b:96:48:b2:24:6c:ee:31:43:70:6e:3a:90:25:9d

Digest Algorithm

sha256

PE Digest Matches

true

7f:48:28:6b:9a:08:17:2f:0b:a1:53:12:4c:43:44:c3:d6:a4:27:be
Signer

Actual PE Digest

7f:48:28:6b:9a:08:17:2f:0b:a1:53:12:4c:43:44:c3:d6:a4:27:be

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LARGE_ADDRESS_AWARE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

msvcr110.i386.pdb

Imports

kernel32

EncodePointer

DecodePointer

RaiseException

GetModuleFileNameA

GetModuleFileNameW

GetLastError

InterlockedDecrement

ExitProcess

GetModuleHandleW

GetModuleHandleExW

GetProcAddress

AreFileApisANSI

MultiByteToWideChar

GetStdHandle

WriteFile

GetCommandLineA

GetCommandLineW

GetCurrentThreadId

EnterCriticalSection

LeaveCriticalSection

InitializeCriticalSectionAndSpinCount

DeleteCriticalSection

CloseHandle

CreateThread

ExitThread

ResumeThread

LoadLibraryExW

SetLastError

InterlockedIncrement

GetCurrentThread

FindClose

FindFirstFileExA

FindNextFileA

FindFirstFileExW

FindNextFileW

IsProcessorFeaturePresent

GetLogicalDrives

GetDiskFreeSpaceA

SystemTimeToTzSpecificLocalTime

FileTimeToSystemTime

SetErrorMode

Beep

Sleep

SetEnvironmentVariableA

SetCurrentDirectoryA

GetCurrentDirectoryA

SetCurrentDirectoryW

GetCurrentDirectoryW

GetFullPathNameA

GetDriveTypeW

GetCurrentProcessId

GetFileAttributesExW

SetEnvironmentVariableW

SetFileAttributesW

GetFullPathNameW

CreateDirectoryW

MoveFileExW

RemoveDirectoryW

FileTimeToLocalFileTime

DeleteFileW

WaitForSingleObject

GetExitCodeProcess

CreateProcessA

FreeLibrary

LoadLibraryExA

CreateProcessW

ReadFile

DuplicateHandle

GetCurrentProcess

GetTempPathA

GetTempPathW

GetSystemTimeAsFileTime

GetTimeZoneInformation

GetLocalTime

WideCharToMultiByte

LocalFileTimeToFileTime

SetFileTime

SystemTimeToFileTime

SetLocalTime

TlsGetValue

TlsSetValue

InterlockedPopEntrySList

InterlockedFlushSList

QueryDepthSList

InterlockedPushEntrySList

CreateTimerQueue

CreateTimerQueueTimer

UnregisterWait

SetEvent

RegisterWaitForSingleObject

CreateEventW

SwitchToThread

SignalObjectAndWait

GetNumaHighestNodeNumber

GetProcessAffinityMask

SetThreadAffinityMask

DeleteTimerQueueTimer

TryEnterCriticalSection

SetProcessAffinityMask

GetTickCount

VirtualFree

GetVersionExW

SetThreadPriority

VirtualAlloc

VirtualProtect

InitializeSListHead

ReleaseSemaphore

ChangeTimerQueueTimer

TlsAlloc

UnregisterWaitEx

TlsFree

GetThreadPriority

LoadLibraryW

OutputDebugStringW

FreeLibraryAndExitThread

GetModuleHandleA

GetThreadTimes

DebugBreak

GetStringTypeW

IsValidCodePage

GetACP

GetOEMCP

GetCPInfo

RtlUnwind

HeapFree

HeapAlloc

GetProcessHeap

HeapReAlloc

HeapSize

HeapQueryInformation

HeapValidate

HeapCompact

HeapWalk

GetSystemInfo

VirtualQuery

GetFileType

GetStartupInfoW

GetFileInformationByHandle

PeekNamedPipe

CreateFileW

GetConsoleMode

ReadConsoleW

GetConsoleCP

SetFilePointerEx

FlushFileBuffers

SetFilePointer

CreatePipe

SetStdHandle

GetNumberOfConsoleInputEvents

PeekConsoleInputA

ReadConsoleInputA

SetConsoleMode

ReadConsoleInputW

WriteConsoleW

SetEndOfFile

InterlockedExchange

LockFileEx

UnlockFileEx

IsDebuggerPresent

UnhandledExceptionFilter

SetUnhandledExceptionFilter

TerminateProcess

CreateSemaphoreW

SetConsoleCtrlHandler

QueryPerformanceCounter

GetEnvironmentStringsW

FreeEnvironmentStringsW

GetDateFormatW

GetTimeFormatW

CompareStringW

LCMapStringW

GetLocaleInfoW

IsValidLocale

GetUserDefaultLCID

EnumSystemLocalesW

OutputDebugStringA

Exports

$I10_OUTPUT

??0?$_SpinWait@$00@details@Concurrency@@QAE@P6AXXZ@Z

??0?$_SpinWait@$0A@@details@Concurrency@@QAE@P6AXXZ@Z

??0SchedulerPolicy@Concurrency@@QAA@IZZ

??0SchedulerPolicy@Concurrency@@QAE@ABV01@@Z

??0SchedulerPolicy@Concurrency@@QAE@XZ

??0_CancellationTokenState@details@Concurrency@@AAE@XZ

??0_Cancellation_beacon@details@Concurrency@@QAE@XZ

??0_Condition_variable@details@Concurrency@@QAE@XZ

??0_Context@details@Concurrency@@QAE@PAVContext@2@@Z

??0_Interruption_exception@details@Concurrency@@QAE@PBD@Z

??0_Interruption_exception@details@Concurrency@@QAE@XZ

??0_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ

??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_ReaderWriterLock@details@Concurrency@@QAE@XZ

??0_ReentrantBlockingLock@details@Concurrency@@QAE@XZ

??0_ReentrantLock@details@Concurrency@@QAE@XZ

??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??0_Scheduler@details@Concurrency@@QAE@PAVScheduler@2@@Z

??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z

??0_SpinLock@details@Concurrency@@QAE@ACJ@Z

??0_StructuredTaskCollection@details@Concurrency@@QAE@PAV_CancellationTokenState@12@@Z

??0_TaskCollection@details@Concurrency@@QAE@PAV_CancellationTokenState@12@@Z

??0_TaskCollection@details@Concurrency@@QAE@XZ

??0_Timer@details@Concurrency@@IAE@I_N@Z

??0__non_rtti_object@std@@QAE@ABV01@@Z

??0__non_rtti_object@std@@QAE@PBD@Z

??0bad_cast@std@@AAE@PBQBD@Z

??0bad_cast@std@@QAE@ABV01@@Z

??0bad_cast@std@@QAE@PBD@Z

??0bad_target@Concurrency@@QAE@PBD@Z

??0bad_target@Concurrency@@QAE@XZ

??0bad_typeid@std@@QAE@ABV01@@Z

??0bad_typeid@std@@QAE@PBD@Z

??0context_self_unblock@Concurrency@@QAE@PBD@Z

??0context_self_unblock@Concurrency@@QAE@XZ

??0context_unblock_unbalanced@Concurrency@@QAE@PBD@Z

??0context_unblock_unbalanced@Concurrency@@QAE@XZ

??0critical_section@Concurrency@@QAE@XZ

??0default_scheduler_exists@Concurrency@@QAE@PBD@Z

??0default_scheduler_exists@Concurrency@@QAE@XZ

??0event@Concurrency@@QAE@XZ

??0exception@std@@QAE@ABQBD@Z

??0exception@std@@QAE@ABQBDH@Z

??0exception@std@@QAE@ABV01@@Z

??0exception@std@@QAE@XZ

??0improper_lock@Concurrency@@QAE@PBD@Z

??0improper_lock@Concurrency@@QAE@XZ

??0improper_scheduler_attach@Concurrency@@QAE@PBD@Z

??0improper_scheduler_attach@Concurrency@@QAE@XZ

??0improper_scheduler_detach@Concurrency@@QAE@PBD@Z

??0improper_scheduler_detach@Concurrency@@QAE@XZ

??0improper_scheduler_reference@Concurrency@@QAE@PBD@Z

??0improper_scheduler_reference@Concurrency@@QAE@XZ

??0invalid_link_target@Concurrency@@QAE@PBD@Z

??0invalid_link_target@Concurrency@@QAE@XZ

??0invalid_multiple_scheduling@Concurrency@@QAE@PBD@Z

??0invalid_multiple_scheduling@Concurrency@@QAE@XZ

??0invalid_operation@Concurrency@@QAE@PBD@Z

??0invalid_operation@Concurrency@@QAE@XZ

??0invalid_oversubscribe_operation@Concurrency@@QAE@PBD@Z

??0invalid_oversubscribe_operation@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_key@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_key@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@XZ

??0invalid_scheduler_policy_value@Concurrency@@QAE@PBD@Z

??0invalid_scheduler_policy_value@Concurrency@@QAE@XZ

??0message_not_found@Concurrency@@QAE@PBD@Z

??0message_not_found@Concurrency@@QAE@XZ

??0missing_wait@Concurrency@@QAE@PBD@Z

??0missing_wait@Concurrency@@QAE@XZ

??0nested_scheduler_missing_detach@Concurrency@@QAE@PBD@Z

??0nested_scheduler_missing_detach@Concurrency@@QAE@XZ

??0operation_timed_out@Concurrency@@QAE@PBD@Z

??0operation_timed_out@Concurrency@@QAE@XZ

??0reader_writer_lock@Concurrency@@QAE@XZ

??0scheduler_not_attached@Concurrency@@QAE@PBD@Z

??0scheduler_not_attached@Concurrency@@QAE@XZ

??0scheduler_resource_allocation_error@Concurrency@@QAE@J@Z

??0scheduler_resource_allocation_error@Concurrency@@QAE@PBDJ@Z

??0scheduler_worker_creation_error@Concurrency@@QAE@J@Z

??0scheduler_worker_creation_error@Concurrency@@QAE@PBDJ@Z

??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z

??0scoped_lock@reader_writer_lock@Concurrency@@QAE@AAV12@@Z

??0scoped_lock_read@reader_writer_lock@Concurrency@@QAE@AAV12@@Z

??0task_canceled@Concurrency@@QAE@PBD@Z

??0task_canceled@Concurrency@@QAE@XZ

??0unsupported_os@Concurrency@@QAE@PBD@Z

??0unsupported_os@Concurrency@@QAE@XZ

??1SchedulerPolicy@Concurrency@@QAE@XZ

??1_CancellationTokenState@details@Concurrency@@UAE@XZ

??1_Cancellation_beacon@details@Concurrency@@QAE@XZ

??1_Condition_variable@details@Concurrency@@QAE@XZ

??1_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ

??1_ReentrantBlockingLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ

??1_SpinLock@details@Concurrency@@QAE@XZ

??1_TaskCollection@details@Concurrency@@QAE@XZ

??1_Timer@details@Concurrency@@MAE@XZ

??1__non_rtti_object@std@@UAE@XZ

??1bad_cast@std@@UAE@XZ

??1bad_typeid@std@@UAE@XZ

??1critical_section@Concurrency@@QAE@XZ

??1event@Concurrency@@QAE@XZ

??1exception@std@@UAE@XZ

??1reader_writer_lock@Concurrency@@QAE@XZ

??1scoped_lock@critical_section@Concurrency@@QAE@XZ

??1scoped_lock@reader_writer_lock@Concurrency@@QAE@XZ

??1scoped_lock_read@reader_writer_lock@Concurrency@@QAE@XZ

??1type_info@@UAE@XZ

??2@YAPAXI@Z

??2@YAPAXIHPBDH@Z

??3@YAXPAX@Z

??3@YAXPAXHPBDH@Z

??4?$_SpinWait@$00@details@Concurrency@@QAEAAV012@ABV012@@Z

??4?$_SpinWait@$0A@@details@Concurrency@@QAEAAV012@ABV012@@Z

??4SchedulerPolicy@Concurrency@@QAEAAV01@ABV01@@Z

??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z

??4bad_cast@std@@QAEAAV01@ABV01@@Z

??4bad_typeid@std@@QAEAAV01@ABV01@@Z

??4exception@std@@QAEAAV01@ABV01@@Z

??8type_info@@QBE_NABV0@@Z

??9type_info@@QBE_NABV0@@Z

??_7__non_rtti_object@std@@6B@

??_7bad_cast@std@@6B@

??_7bad_typeid@std@@6B@

??_7exception@std@@6B@

??_F?$_SpinWait@$00@details@Concurrency@@QAEXXZ

??_F?$_SpinWait@$0A@@details@Concurrency@@QAEXXZ

??_F_Context@details@Concurrency@@QAEXXZ

??_F_Scheduler@details@Concurrency@@QAEXXZ

??_Fbad_cast@std@@QAEXXZ

??_Fbad_typeid@std@@QAEXXZ

??_U@YAPAXI@Z

??_U@YAPAXIHPBDH@Z

??_V@YAXPAX@Z

??_V@YAXPAXHPBDH@Z

?Alloc@Concurrency@@YAPAXI@Z

?Block@Context@Concurrency@@SAXXZ

?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z

?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ

?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@AAVlocation@2@@Z

?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ

?CurrentContext@Context@Concurrency@@SAPAV12@XZ

?Detach@CurrentScheduler@Concurrency@@SAXXZ

?DisableTracing@Concurrency@@YAJXZ

?EnableTracing@Concurrency@@YAJXZ

?Free@Concurrency@@YAXPAX@Z

?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ

?GetExecutionContextId@Concurrency@@YAIXZ

?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ

?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ

?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ

?GetPolicyValue@SchedulerPolicy@Concurrency@@QBEIW4PolicyElementKey@2@@Z

?GetProcessorCount@Concurrency@@YAIXZ

?GetProcessorNodeCount@Concurrency@@YAIXZ

?GetSchedulerId@Concurrency@@YAIXZ

?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ

?Id@Context@Concurrency@@SAIXZ

?Id@CurrentScheduler@Concurrency@@SAIXZ

?IsAvailableLocation@CurrentScheduler@Concurrency@@SA_NABVlocation@2@@Z

?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ

?Log2@details@Concurrency@@YAKI@Z

?Oversubscribe@Context@Concurrency@@SAX_N@Z

?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z

?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ

?ScheduleGroupId@Context@Concurrency@@SAIXZ

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z

?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0AAVlocation@2@@Z

?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAEXII@Z

?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z

?SetPolicyValue@SchedulerPolicy@Concurrency@@QAEIW4PolicyElementKey@2@I@Z

?VirtualProcessorId@Context@Concurrency@@SAIXZ

?Yield@Context@Concurrency@@SAXXZ

?_Abort@_StructuredTaskCollection@details@Concurrency@@AAEXXZ

?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAEXPAX@Z

?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Acquire@_ReentrantLock@details@Concurrency@@QAEXXZ

?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAEXPAX@Z

?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_Cancel@_CancellationTokenState@details@Concurrency@@QAEXXZ

?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAEXXZ

?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ

?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAEXXZ

?_CleanupToken@_StructuredTaskCollection@details@Concurrency@@AAEXXZ

?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z

?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ

?_Confirm_cancel@_Cancellation_beacon@details@Concurrency@@QAE_NXZ

?_Copy_str@exception@std@@AAEXPBD@Z

?_CurrentContext@_Context@details@Concurrency@@SA?AV123@XZ

?_Current_node@location@Concurrency@@SA?AV12@XZ

?_DeregisterCallback@_CancellationTokenState@details@Concurrency@@QAEXPAV_CancellationTokenRegistration@23@@Z

?_Destroy@_AsyncTaskCollection@details@Concurrency@@EAEXXZ

?_Destroy@_CancellationTokenState@details@Concurrency@@EAEXXZ

?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAEXXZ

?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ

?_Get@_CurrentScheduler@details@Concurrency@@SA?AV_Scheduler@23@XZ

?_GetConcRTTraceInfo@Concurrency@@YAPBU_CONCRT_TRACE_INFO@details@1@XZ

?_GetConcurrency@details@Concurrency@@YAIXZ

?_GetCurrentInlineDepth@_StackGuard@details@Concurrency@@CAAAIXZ

?_GetNumberOfVirtualProcessors@_CurrentScheduler@details@Concurrency@@SAIXZ

?_GetScheduler@_Scheduler@details@Concurrency@@QAEPAVScheduler@3@XZ

?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ

?_Invoke@_CancellationTokenRegistration@details@Concurrency@@AAEXXZ

?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAE_NXZ

?_IsCanceling@_TaskCollection@details@Concurrency@@QAE_NXZ

?_IsSynchronouslyBlocked@_Context@details@Concurrency@@QBE_NXZ

?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z

?_NewCollection@_AsyncTaskCollection@details@Concurrency@@SAPAV123@PAV_CancellationTokenState@23@@Z

?_NewTokenState@_CancellationTokenState@details@Concurrency@@SAPAV123@XZ

?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAEKXZ

?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAEKXZ

?_Oversubscribe@_Context@details@Concurrency@@SAX_N@Z

?_Reference@_Scheduler@details@Concurrency@@QAEIXZ

?_RegisterCallback@_CancellationTokenState@details@Concurrency@@QAEPAV_CancellationTokenRegistration@23@P6AXPAX@Z0H@Z

?_RegisterCallback@_CancellationTokenState@details@Concurrency@@QAEXPAV_CancellationTokenRegistration@23@@Z

?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Release@_NonReentrantPPLLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantLock@details@Concurrency@@QAEXXZ

?_Release@_ReentrantPPLLock@details@Concurrency@@QAEXXZ

?_Release@_Scheduler@details@Concurrency@@QAEIXZ

?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ

?_ReportUnobservedException@details@Concurrency@@YAXXZ

?_Reset@?$_SpinWait@$00@details@Concurrency@@IAEXXZ

?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ

?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z

?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z

?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@PAVlocation@3@@Z

?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z

?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@PAVlocation@3@@Z

?_ScheduleTask@_CurrentScheduler@details@Concurrency@@SAXP6AXPAX@Z0@Z

?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAEXI@Z

?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAEXI@Z

?_SetUnobservedExceptionHandler@details@Concurrency@@YAXP6AXXZ@Z

?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAE_NXZ

?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAE_NXZ

?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ

?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAE_NXZ

?_SpinYield@Context@Concurrency@@SAXXZ

?_Start@_Timer@details@Concurrency@@IAEXXZ

?_Stop@_Timer@details@Concurrency@@IAEXXZ

?_Tidy@exception@std@@AAEXXZ

?_Trace_agents@Concurrency@@YAXW4Agents_EventType@1@_JZZ

?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z

?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAE_NXZ

?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAE_NXZ

?_TryAcquire@_ReentrantLock@details@Concurrency@@QAE_NXZ

?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAE_NXZ

?_Type_info_dtor@type_info@@CAXPAV1@@Z

?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z

?_UnderlyingYield@details@Concurrency@@YAXXZ

?_ValidateExecute@@YAHP6GHXZ@Z

?_ValidateRead@@YAHPBXI@Z

?_ValidateWrite@@YAHPAXI@Z

?_Value@_SpinCount@details@Concurrency@@SAIXZ

?_Yield@_Context@details@Concurrency@@SAXXZ

?__ExceptionPtrAssign@@YAXPAXPBX@Z

?__ExceptionPtrCompare@@YA_NPBX0@Z

?__ExceptionPtrCopy@@YAXPAXPBX@Z

?__ExceptionPtrCopyException@@YAXPAXPBX1@Z

?__ExceptionPtrCreate@@YAXPAX@Z

?__ExceptionPtrCurrentException@@YAXPAX@Z

?__ExceptionPtrDestroy@@YAXPAX@Z

?__ExceptionPtrRethrow@@YAXPBX@Z

?__ExceptionPtrSwap@@YAXPAX0@Z

?__ExceptionPtrToBool@@YA_NPBX@Z

?_inconsistency@@YAXXZ

?_invalid_parameter@@YAXPBG00II@Z

?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z

?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z

?_open@@YAHPBDHH@Z

?_query_new_handler@@YAP6AHI@ZXZ

?_query_new_mode@@YAHXZ

?_set_new_handler@@YAP6AHI@ZH@Z

?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z

?_set_new_mode@@YAHH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z

?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z

?_sopen@@YAHPBDHHH@Z

?_type_info_dtor_internal_method@type_info@@QAEXXZ

?_wopen@@YAHPB_WHH@Z

?_wsopen@@YAHPB_WHHH@Z

?before@type_info@@QBE_NABV1@@Z

?current@location@Concurrency@@SA?AV12@XZ

?from_numa_node@location@Concurrency@@SA?AV12@G@Z

?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBEJXZ

?lock@critical_section@Concurrency@@QAEXXZ

?lock@reader_writer_lock@Concurrency@@QAEXXZ

?lock_read@reader_writer_lock@Concurrency@@QAEXXZ

?name@type_info@@QBEPBDPAU__type_info_node@@@Z

?native_handle@critical_section@Concurrency@@QAEAAV12@XZ

?notify_all@_Condition_variable@details@Concurrency@@QAEXXZ

?notify_one@_Condition_variable@details@Concurrency@@QAEXXZ

?raw_name@type_info@@QBEPBDXZ

?reset@event@Concurrency@@QAEXXZ

?set@event@Concurrency@@QAEXXZ

?set_new_handler@@YAP6AXXZP6AXXZ@Z

?set_task_execution_resources@Concurrency@@YAXGPAU_GROUP_AFFINITY@@@Z

?set_task_execution_resources@Concurrency@@YAXK@Z

?set_terminate@@YAP6AXXZH@Z

?set_terminate@@YAP6AXXZP6AXXZ@Z

?set_unexpected@@YAP6AXXZH@Z

?set_unexpected@@YAP6AXXZP6AXXZ@Z

?swprintf@@YAHPAGIPBGZZ

?swprintf@@YAHPA_WIPB_WZZ

?terminate@@YAXXZ

?try_lock@critical_section@Concurrency@@QAE_NXZ

?try_lock@reader_writer_lock@Concurrency@@QAE_NXZ

?try_lock_for@critical_section@Concurrency@@QAE_NI@Z

?try_lock_read@reader_writer_lock@Concurrency@@QAE_NXZ

?unexpected@@YAXXZ

?unlock@critical_section@Concurrency@@QAEXXZ

?unlock@reader_writer_lock@Concurrency@@QAEXXZ

?vswprintf@@YAHPA_WIPB_WPAD@Z

?wait@Concurrency@@YAXI@Z

?wait@_Condition_variable@details@Concurrency@@QAEXAAVcritical_section@3@@Z

?wait@event@Concurrency@@QAEII@Z

?wait_for@_Condition_variable@details@Concurrency@@QAE_NAAVcritical_section@3@I@Z

?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z

?what@exception@std@@UBEPBDXZ

_CIacos

_CIasin

_CIatan

_CIatan2

_CIcos

_CIcosh

_CIexp

_CIfmod

_CIlog

_CIlog10

_CIpow

_CIsin

_CIsinh

_CIsqrt

_CItan

_CItanh

_CRT_RTC_INIT

_CRT_RTC_INITW

_CreateFrameInfo

_CxxThrowException

_EH_prolog

_FindAndUnlinkFrame

_Getdays

_Getmonths

_Gettnames

_HUGE

_IsExceptionObjectToBeDestroyed

_Lock_shared_ptr_spin_lock

_NLG_Dispatch2

_NLG_Return

_NLG_Return2

_Strftime

_Unlock_shared_ptr_spin_lock

_W_Getdays

_W_Getmonths

_W_Gettnames

_Wcsftime

_XcptFilter

__AdjustPointer

__BuildCatchObject

__BuildCatchObjectHelper

__CppXcptFilter

__CxxDetectRethrow

__CxxExceptionFilter

__CxxFrameHandler

__CxxFrameHandler2

__CxxFrameHandler3

__CxxLongjmpUnwind

__CxxQueryExceptionSize

__CxxRegisterExceptionObject

__CxxUnregisterExceptionObject

__DestructExceptionObject

__FrameUnwindFilter

__RTCastToVoid

__RTDynamicCast

__RTtypeid

__STRINGTOLD

__STRINGTOLD_L

__TypeMatch

___crtCreateSemaphoreExW@24

___lc_codepage_func

___lc_collate_cp_func

___lc_locale_name_func

___mb_cur_max_func

___mb_cur_max_l_func

___setlc_active_func

___unguarded_readlc_active_add_func

__argc

__argv

__badioinfo

__clean_type_info_names_internal

__control87_2

__create_locale

__crtCompareStringA

__crtCompareStringEx

__crtCompareStringW

__crtCreateSymbolicLinkW

__crtEnumSystemLocalesEx

__crtFlsAlloc

__crtFlsFree

__crtFlsGetValue

__crtFlsSetValue

__crtGetDateFormatEx

__crtGetLocaleInfoEx

__crtGetShowWindowMode

__crtGetTimeFormatEx

__crtGetUserDefaultLocaleName

__crtInitializeCriticalSectionEx

__crtIsPackagedApp

__crtIsValidLocaleName

__crtLCMapStringA

__crtLCMapStringEx

__crtLCMapStringW

__crtSetThreadStackGuarantee

__crtSetUnhandledExceptionFilter

__crtTerminateProcess

__crtUnhandledException

__daylight

__dllonexit

__doserrno

__dstbias

__fpecode

__free_locale

__get_current_locale

__get_flsindex

__get_tlsindex

__getmainargs

__initenv

__iob_func

__isascii

__iscsym

__iscsymf

__iswcsym

__iswcsymf

__lconv

__lconv_init

__libm_sse2_acos

__libm_sse2_acosf

__libm_sse2_asin

__libm_sse2_asinf

__libm_sse2_atan

__libm_sse2_atan2

__libm_sse2_atanf

__libm_sse2_cos

__libm_sse2_cosf

__libm_sse2_exp

__libm_sse2_expf

__libm_sse2_log

__libm_sse2_log10

__libm_sse2_log10f

__libm_sse2_logf

__libm_sse2_pow

__libm_sse2_powf

__libm_sse2_sin

__libm_sse2_sinf

__libm_sse2_tan

__libm_sse2_tanf

__mb_cur_max

__p___argc

__p___argv

__p___initenv

__p___mb_cur_max

__p___wargv

__p___winitenv

__p__acmdln

__p__commode

__p__daylight

__p__dstbias

__p__environ

__p__fmode

__p__iob

__p__mbcasemap

__p__mbctype

__p__pctype

__p__pgmptr

__p__pwctype

__p__timezone

__p__tzname

__p__wcmdln

__p__wenviron

__p__wpgmptr

__pctype_func

__pioinfo

__pwctype_func

__pxcptinfoptrs

__report_gsfailure

__set_app_type

__setlc_active

__setusermatherr

__strncnt

Sections

.text
Size: 792KB - Virtual size: 791KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Modules/7z.dll

.dll windows:4 windows x86 arch:x86

71fc45db7a81ce236f432a828a4e8fcd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_LINE_NUMS_STRIPPED

IMAGE_FILE_LOCAL_SYMS_STRIPPED

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

Imports

oleaut32

SysAllocString

VariantClear

VariantCopy

SysFreeString

SysAllocStringByteLen

user32

CharLowerW

CharUpperA

CharNextA

CharPrevExA

CharUpperW

CharLowerA

msvcrt

_adjust_fdiv

_initterm

?terminate@@YAXXZ

_onexit

__dllonexit

??1type_info@@UAE@XZ

_except_handler3

_beginthreadex

memset

strcmp

realloc

memcmp

_purecall

strlen

free

malloc

memmove

_CxxThrowException

memcpy

__CxxFrameHandler

kernel32

InitializeCriticalSection

ReleaseSemaphore

CreateSemaphoreA

ResetEvent

SetEvent

CreateEventA

WaitForSingleObject

VirtualFree

VirtualAlloc

GetCurrentProcessId

GetCurrentThreadId

GetTickCount

QueryPerformanceCounter

FileTimeToLocalFileTime

DeleteCriticalSection

LocalFileTimeToFileTime

GetVersionExA

WaitForMultipleObjects

EnterCriticalSection

LeaveCriticalSection

GetSystemTime

SystemTimeToFileTime

FileTimeToDosDateTime

DosDateTimeToFileTime

GetModuleHandleA

GetProcAddress

GetSystemInfo

CompareFileTime

WriteFile

ReadFile

MultiByteToWideChar

WideCharToMultiByte

GetLastError

CloseHandle

SetFileAttributesA

DeleteFileA

GetTempPathA

GetTempFileNameA

CreateFileA

Exports

CreateObject

GetHandlerProperty

GetHandlerProperty2

GetMethodProperty

GetNumberOfFormats

GetNumberOfMethods

SetLargePageMode

Sections

.text
Size: 654KB - Virtual size: 654KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.sxdata
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Modules/cdp.dll

.dll windows:6 windows x86 arch:x86

3c0179473e3f5c8e9f4706a95e0351f2

Code Sign

9f:ea:c8:11:b0:f1:62:47:a5:fc:20:d8:05:23:ac:e6
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

05/05/2015, 00:00

Not After

31/12/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

39:74:70:09:0e:49:d7:0d:3d:54:b8:03:f0:ac:72:c8
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/03/2015, 00:00

Not After

01/03/2016, 23:59

Subject

CN=GREYSTONE VENTURES LP,O=GREYSTONE VENTURES LP,POSTALCODE=EH5 1LB,STREET=18/2 ROYSTON MAINS STREET,L=EDINBURGH,ST=SCOTLAND,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

06:dd:bf:e0:20:13:a9:9f:4f:d9:db:16:57:73:ab:56:77:9f:c6:d8
Signer

Actual PE Digest

06:dd:bf:e0:20:13:a9:9f:4f:d9:db:16:57:73:ab:56:77:9f:c6:d8

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

E:\Projects\gigaclick\Release\Modules\cdp.pdb

Imports

kernel32

SetEvent

MultiByteToWideChar

SizeofResource

LockResource

LoadResource

FindResourceW

FindResourceExW

InitializeCriticalSectionEx

LoadLibraryW

GetProcAddress

FreeLibrary

TlsFree

TlsSetValue

TlsGetValue

TlsAlloc

ResetEvent

WaitForSingleObject

CloseHandle

OpenEventA

CreateEventA

GetSystemTimeAsFileTime

GetCurrentThreadId

GetCurrentProcessId

QueryPerformanceCounter

IsProcessorFeaturePresent

IsDebuggerPresent

DecodePointer

EncodePointer

FormatMessageA

LocalFree

DeleteCriticalSection

LeaveCriticalSection

EnterCriticalSection

GetLastError

RaiseException

GetProcessHeap

HeapSize

HeapFree

HeapReAlloc

HeapAlloc

HeapDestroy

msvcp110

?_Syserror_map@std@@YAPBDH@Z

?_Xinvalid_argument@std@@YAXPBD@Z

?_Xout_of_range@std@@YAXPBD@Z

?_Xbad_function_call@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

?_Xbad_alloc@std@@YAXXZ

?_Throw_C_error@std@@YAXH@Z

_Mtx_init

_Mtx_lock

_Mtx_unlock

_Mtx_destroy

?_Winerror_map@std@@YAPBDH@Z

msvcr110

_except_handler4_common

__clean_type_info_names_internal

__CxxFrameHandler3

_CxxThrowException

strerror

memset

??8type_info@@QBE_NABV0@@Z

_purecall

memmove_s

malloc

_resetstkoflw

atoi

?what@exception@std@@UBEPBDXZ

?terminate@@YAXXZ

strtol

_errno

??2@YAPAXI@Z

??0exception@std@@QAE@ABV01@@Z

free

memcpy_s

memmove

wmemcpy_s

??0exception@std@@QAE@ABQBDH@Z

??1exception@std@@UAE@XZ

??0exception@std@@QAE@ABQBD@Z

??3@YAXPAX@Z

__crtTerminateProcess

__crtUnhandledException

_crt_debugger_hook

_initterm_e

_initterm

_malloc_crt

_amsg_exit

__CppXcptFilter

memcpy

__dllonexit

_calloc_crt

_unlock

_lock

sprintf_s

??1type_info@@UAE@XZ

_onexit

Exports

Create

Init

Sections

.text
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Modules/clc.dll

.dll windows:6 windows x86 arch:x86

cbf300722f610440cd6c79bf07ad301e

Code Sign

9f:ea:c8:11:b0:f1:62:47:a5:fc:20:d8:05:23:ac:e6
Certificate

Issuer

CN=UTN-USERFirst-Object,OU=http://www.usertrust.com,O=The USERTRUST Network,L=Salt Lake City,ST=UT,C=US

Not Before

05/05/2015, 00:00

Not After

31/12/2015, 23:59

Subject

CN=COMODO Time Stamping Signer,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

KeyUsageContentCommitment

39:74:70:09:0e:49:d7:0d:3d:54:b8:03:f0:ac:72:c8
Certificate

Issuer

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

02/03/2015, 00:00

Not After

01/03/2016, 23:59

Subject

CN=GREYSTONE VENTURES LP,O=GREYSTONE VENTURES LP,POSTALCODE=EH5 1LB,STREET=18/2 ROYSTON MAINS STREET,L=EDINBURGH,ST=SCOTLAND,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

27:66:ee:56:eb:49:f3:8e:ab:d7:70:a2:fc:84:de:22
Certificate

Issuer

CN=AddTrust External CA Root,OU=AddTrust External TTP Network,O=AddTrust AB,C=SE

Not Before

30/05/2000, 10:48

Not After

30/05/2020, 10:48

Subject

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

2e:7c:87:cc:0e:93:4a:52:fe:94:fd:1c:b7:cd:34:af
Certificate

Issuer

CN=COMODO RSA Certification Authority,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Not Before

09/05/2013, 00:00

Not After

08/05/2028, 23:59

Subject

CN=COMODO RSA Code Signing CA,O=COMODO CA Limited,L=Salford,ST=Greater Manchester,C=GB

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

KeyUsageCertSign

KeyUsageCRLSign

ef:d4:e4:ca:86:a2:ed:5f:4f:41:43:4d:d3:bb:bd:a1:ac:0a:12:7e
Signer

Actual PE Digest

ef:d4:e4:ca:86:a2:ed:5f:4f:41:43:4d:d3:bb:bd:a1:ac:0a:12:7e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

IMAGE_FILE_DLL

PDB Paths

E:\Projects\gigaclick\Release\Modules\clc.pdb

Imports

kernel32

WideCharToMultiByte

GetModuleHandleW

GetProcAddress

ExitProcess

GetTickCount64

SizeofResource

LockResource

LoadResource

FindResourceW

Sleep

InitializeCriticalSectionEx

GetModuleFileNameW

LoadLibraryW

CreateProcessW

FreeLibrary

GetModuleHandleA

GetSystemTimeAsFileTime

GetCurrentThreadId

SetWaitableTimer

WaitForSingleObject

GetLastError

CreateWaitableTimerW

SetLastError

MultiByteToWideChar

GetLocalTime

GetTempPathW

CancelWaitableTimer

GetHandleInformation

FindResourceExW

CloseHandle

GetCurrentProcessId

QueryPerformanceCounter

HeapAlloc

HeapReAlloc

HeapFree

HeapSize

GetProcessHeap

RaiseException

EnterCriticalSection

LeaveCriticalSection

DeleteCriticalSection

EncodePointer

DecodePointer

IsDebuggerPresent

IsProcessorFeaturePresent

HeapDestroy

user32

FindWindowA

advapi32

RegSetValueExW

RegCreateKeyExW

RegOpenKeyExW

RegCloseKey

CryptReleaseContext

CryptDestroyHash

CryptGetHashParam

CryptHashData

CryptCreateHash

CryptAcquireContextW

RegQueryValueExW

msvcp110

?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z

?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ

??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ

?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z

?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z

?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z

?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ

?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ

?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ

??0_Lockit@std@@QAE@H@Z

??1_Lockit@std@@QAE@XZ

??_7_Facet_base@std@@6B@

??_7facet@locale@std@@6B@

?_Init@locale@std@@CAPAV_Locimp@12@_N@Z

?_New_Locimp@_Locimp@locale@std@@CAPAV123@ABV123@@Z

?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ

??_7codecvt_base@std@@6B@

??_7?$codecvt@_WDH@std@@6B@

?_Xinvalid_argument@std@@YAXPBD@Z

?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z

?id@?$codecvt@DDH@std@@2V0locale@2@A

?id@?$codecvt@_WDH@std@@2V0locale@2@A

?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ

?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ

?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z

?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z

?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ

?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z

?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UAEXXZ

??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ

?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z

?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ

?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ

??4?$_Yarn@D@std@@QAEAAV01@PBD@Z

?_Getcat@?$codecvt@_WDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

??0?$codecvt@_WDH@std@@QAE@I@Z

?out@?$codecvt@_WDH@std@@QBEHAAHPB_W1AAPB_WPAD3AAPAD@Z

?always_noconv@codecvt_base@std@@QBE_NXZ

?_Addfac@_Locimp@locale@std@@AAEXPAVfacet@23@I@Z

?_Decref@facet@locale@std@@UAEPAV_Facet_base@3@XZ

?_Incref@facet@locale@std@@UAEXXZ

??Bid@locale@std@@QAEIXZ

?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z

?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z

??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z

?id@?$ctype@D@std@@2V0locale@2@A

?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z

?tolower@?$ctype@D@std@@QBEDD@Z

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ

??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ

??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ

?_Xbad_alloc@std@@YAXXZ

?_Xlength_error@std@@YAXPBD@Z

??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@

?_BADOFF@std@@3_JB

?_Xout_of_range@std@@YAXPBD@Z

?_Winerror_map@std@@YAPBDH@Z

?_Syserror_map@std@@YAPBDH@Z

msvcr110

??1exception@std@@UAE@XZ

wmemcpy_s

??0exception@std@@QAE@ABV01@@Z

_errno

strtoul

fgetc

fputc

ungetc

_strlwr_s

strncmp

_ultoa_s

_wtoi

rand

?what@exception@std@@UBEPBDXZ

_lock_file

_unlock_file

fwrite

_fseeki64

fgetpos

fsetpos

setvbuf

fflush

strnlen

fclose

??0bad_cast@std@@QAE@PBD@Z

??0bad_cast@std@@QAE@ABV01@@Z

??1bad_cast@std@@UAE@XZ

_vscprintf

vsprintf_s

memchr

_recalloc

calloc

swprintf_s

wcsrchr

wcsstr

??8type_info@@QBE_NABV0@@Z

memset

??1type_info@@UAE@XZ

_lock

_unlock

_calloc_crt

__dllonexit

_onexit

?terminate@@YAXXZ

__CppXcptFilter

_amsg_exit

_malloc_crt

_initterm

_initterm_e

_crt_debugger_hook

__crtUnhandledException

__crtTerminateProcess

_except_handler4_common

__clean_type_info_names_internal

??0exception@std@@QAE@ABQBD@Z

_purecall

vswprintf_s

_vscwprintf

memmove_s

wcsnlen

toupper

malloc

_resetstkoflw

??2@YAPAXI@Z

free

memcpy_s

memmove

??3@YAXPAX@Z

__CxxFrameHandler3

_CxxThrowException

memcpy

Exports

Create

Init

Sections

.text
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_DISCARDABLE

IMAGE_SCN_MEM_READ

Modules/crm.dll