webplugin[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

webplugin.exe
Size

903KB
MD5

d6b2329144e1cc520b9eb6c1efad9bb8
SHA1

e93e1d52b996ef3fbeaaa565d78f64ef104e22f7
SHA256

5f09de90db804401842617dddb5750c6a8d7a27edb409c91f2ef86d0198d3e58
SHA512

9ad670546544446ece6ac79ec2e77eabd0a12db112da4a3cccf4669ad3e17eeab561b1a605fbb40e6a9f1c77ff50f029e068b7b4fcba1c009060fa571b36aefa
SSDEEP

24576:TrN2WkZj5repeNZOqTU7XwA3JBcVDe9Pku2C:XNDkZjV53fpeaVckXC

Score

3^/10

Malware Config

Signatures

Unsigned PE 14 IoCs

Checks for missing Authenticode signature.

resource
webplugin.exe
unpack001/DHSurveillanceDll.dll
unpack001/TimeGridEXE.exe
unpack001/VideoWindow.dll
unpack001/WebActiveEXE.exe
unpack001/dhnetsdk.dll
unpack001/dhplay.dll
unpack001/h264dec.dll
unpack001/mjpegdec.dll
unpack001/npTimeGrid.dll
unpack001/npmedia.dll
unpack001/postproc.dll
unpack001/timeAxesDll.dll
unpack001/uninst.exe

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/uninst.exe	nsis_installer_1
static1/unpack001/uninst.exe	nsis_installer_2

Files

webplugin.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
DHSurveillanceDll.dll
.dll windows:4 windows x86 arch:x86

db9a5f66b77944715392752a4b54399f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WideCharToMultiByte
MultiByteToWideChar
OutputDebugStringA
CreateMutexA
CloseHandle
WaitForSingleObject
ReleaseMutex
CreateEventA
SetEvent
CreateSemaphoreA
ReleaseSemaphore
CreateThread
Sleep
QueryPerformanceFrequency
QueryPerformanceCounter
CreateDirectoryA
DeleteFileA
GetPrivateProfileStringA
GetLastError
VirtualQuery
GetModuleFileNameA
GetProcAddress
LoadLibraryExA
FreeLibrary
GetCurrentThreadId
GetLocalTime
DisableThreadLibraryCalls

user32

GetDesktopWindow
MessageBoxA
GetWindowRect

shell32

ShellExecuteA

msvcrt

vsprintf
_findclose
_findnext
_findfirst
localtime
__dllonexit
_onexit
?terminate@@YAXXZ
free
_initterm
_adjust_fdiv
gmtime
strcat
pow
strtok
fprintf
strchr
strncpy
rand
strcpy
_mkdir
abs
printf
strstr
memcmp
atol
atoi
_ftol
sprintf
strcmp
fseek
ftell
fread
_except_handler3
strlen
fclose
fopen
fwrite
fflush
__CxxFrameHandler
_purecall
malloc
memcpy
??2@YAPAXI@Z
??3@YAXPAX@Z
??1type_info@@UAE@XZ
sscanf
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_CxxThrowException
_iob
fputs
??0exception@@QAE@ABV0@@Z
_itoa
memset
time

msvcp60

?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??_7runtime_error@std@@6B@
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??1runtime_error@std@@UAE@XZ
??0runtime_error@std@@QAE@ABV01@@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?find_first_of@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??_F?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??9std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z

dhnetsdk

ord157
ord133
ord24
ord175
ord25
ord102
ord73
_CLIENT_LoginEx2@32
ord215
ord85
ord103
ord181
ord20
ord88
ord92
ord27
ord28
ord119
ord395
ord195
ord196
ord1
ord127
ord115
ord7
ord202
ord217
ord113
ord72
ord6
ord74
ord98
ord93
ord90
ord96
ord97
ord99
ord120
ord83
ord95
ord76
ord75
ord32
ord26
ord33
ord12
ord91
ord203

ws2_32

socket
htons
inet_addr
connect
closesocket
send
WSACleanup
recv
WSAStartup

winmm

mciSendCommandA

Exports

Exports

GetTransModuleImp
LoadNeedLibrary
ReleaseTransImp
UnLoadNeedlibrary
_PLAY_AddToPlayGroup@8
_PLAY_AdjustWaveAudio@8
_PLAY_CatchResizePic@20
_PLAY_ChooseAudio@12
_PLAY_CloseAudioRecord@0
_PLAY_CloseFile@4
_PLAY_ClosePlayGroup@4
_PLAY_CloseStream@4
_PLAY_ConvertToBmpFile@24
_PLAY_ConvertToBmpFileEx@28
_PLAY_DelFromPlayGroup@8
_PLAY_EnableLargePicAdjustment@8
_PLAY_Fast@4
_PLAY_FisheyeGetPosition@20
_PLAY_GetAudioChannels@8
_PLAY_GetAudioChooseState@12
_PLAY_GetBufferValue@8
_PLAY_GetColor@24
_PLAY_GetCurrentFrameRate@4
_PLAY_GetFileTime@4
_PLAY_GetFreePort@4
_PLAY_GetLastError@4
_PLAY_GetOverlayMode@4
_PLAY_GetPictureSize@12
_PLAY_GetPlayPos@4
_PLAY_GetPlayedFrames@4
_PLAY_GetPlayedTime@4
_PLAY_GetPlayedTimeEx@4
_PLAY_GetSourceBufferRemain@4
_PLAY_GetVolume@4
_PLAY_InputData@12
_PLAY_OneByOne@4
_PLAY_OneByOneBack@4
_PLAY_OpenAudioRecord@24
_PLAY_OpenFile@8
_PLAY_OpenPlayGroup@0
_PLAY_OpenStream@16
_PLAY_Pause@8
_PLAY_PausePlayGroup@8
_PLAY_Play@8
_PLAY_PlaySound@4
_PLAY_PlaySoundShare@4
_PLAY_QueryInfo@20
_PLAY_RefreshPlay@4
_PLAY_ReleasePort@4
_PLAY_ResetBuffer@8
_PLAY_ResetSourceBuffer@4
_PLAY_RigisterDrawFun@12
_PLAY_RigisterDrawFunEx@16
_PLAY_SeekPlayGroup@8
_PLAY_SetColor@24
_PLAY_SetDecCallBack@8
_PLAY_SetDelayTime@12
_PLAY_SetDisplayCallBack@12
_PLAY_SetDisplayRegion@20
_PLAY_SetFileEndCallBack@12
_PLAY_SetIVSCallBack@12
_PLAY_SetOverlayMode@12
_PLAY_SetPicQuality@8
_PLAY_SetPlayDirection@8
_PLAY_SetPlayGroupDirection@8
_PLAY_SetPlayGroupSpeed@8
_PLAY_SetPlayMethod@20
_PLAY_SetPlayPos@8
_PLAY_SetPlaySpeed@8
_PLAY_SetPlayedTimeEx@8
_PLAY_SetSecurityKey@12
_PLAY_SetStreamOpenMode@8
_PLAY_SetVisibleDecCallBack@12
_PLAY_SetVolume@8
_PLAY_SetWaterMarkCallBackEx@12
_PLAY_Slow@4
_PLAY_StartAVIConvert@16
_PLAY_StartDataRecord@12
_PLAY_StartFisheye@4
_PLAY_StepPlayGroup@4
_PLAY_Stop@4
_PLAY_StopAVIConvert@4
_PLAY_StopDataRecord@4
_PLAY_StopFisheye@4
_PLAY_StopSound@0
_PLAY_StopSoundShare@4
_PLAY_VerticalSyncEnable@8
_PLAY_WriteData@12

Sections

.text
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 6.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TimeGridEXE.exe
.exe windows:4 windows x86 arch:x86

09bbed97facccf9baf8b23a07b79fb13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetStartupInfoA
GetCurrentProcess
FlushInstructionCache
GlobalAlloc
GlobalLock
GlobalUnlock
EnterCriticalSection
LeaveCriticalSection
lstrlenA
DeleteCriticalSection
InterlockedIncrement
InitializeCriticalSection
GetCommandLineA
lstrcmpiA
Sleep
CreateEventA
CreateThread
WaitForSingleObject
CloseHandle
InterlockedDecrement
SetEvent
MultiByteToWideChar
GetCurrentThreadId
OutputDebugStringA
lstrlenW
WideCharToMultiByte
LocalFree

user32

DefWindowProcA
SetWindowLongA
PostThreadMessageA
GetWindowLongA
DestroyWindow
CharNextA
DispatchMessageA
GetMessageA
GetKeyState
PtInRect
UnionRect
IsChild
CreateWindowExA
CallWindowProcA
BeginPaint
GetClientRect
EndPaint
InvalidateRect
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
SetWindowPos
IsWindow
GetParent
ShowWindow
SetFocus
GetFocus

gdi32

GetDeviceCaps
LPtoDP
SetMapMode
SetViewportOrgEx
DeleteDC
CreateMetaFileA
TextOutA
SetTextAlign
Rectangle
CreateRectRgnIndirect
DeleteMetaFile
RestoreDC
SaveDC
SetWindowExtEx
SetWindowOrgEx
CloseMetaFile

ole32

CoUninitialize
CoInitialize
OleRegEnumVerbs
OleRegGetUserType
OleRegGetMiscStatus
CreateDataAdviseHolder
CoTaskMemFree
CoTaskMemAlloc
CreateOleAdviseHolder

oleaut32

VariantChangeType
OleCreatePropertyFrame
VariantClear
SysStringLen
LoadRegTypeLi
SysAllocStringLen
SysFreeString
CreateErrorInfo
VariantInit

atl

ord20
ord27
ord26
ord51
ord46
ord50
ord44
ord43
ord30
ord58
ord32
ord16
ord17
ord57
ord18
ord23
ord21
ord31

msvcp60

?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?str@?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ

timeaxesdll

ReleaseTimeAxesModule
GetTimeAxesModule

msvcrt

strlen
__CxxFrameHandler
memset
strcmp
??2@YAPAXI@Z
free
_XcptFilter
_exit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
??1type_info@@UAE@XZ
_controlfp
_CxxThrowException
malloc
realloc
memcmp
atoi
memcpy

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Version.ini
VideoWindow.dll
.dll windows:4 windows x86 arch:x86

7aaaf29d44112ab0f8fe837b61ea1302

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord2124
ord6467
ord537
ord823
ord567
ord825
ord3626
ord3663
ord2414
ord4275
ord860
ord2864
ord5981
ord2379
ord755
ord2915
ord2818
ord2859
ord470
ord3693
ord472
ord4133
ord4297
ord5788
ord1641
ord2567
ord3619
ord5875
ord5787
ord2860
ord283
ord6170
ord1601
ord640
ord2405
ord2753
ord5785
ord1640
ord323
ord4220
ord2584
ord3654
ord540
ord2438
ord2078
ord6172
ord4299
ord6270
ord2863
ord1575
ord1644
ord1146
ord4274
ord6375
ord4486
ord2554
ord818
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord3953
ord4622
ord3738
ord561
ord815
ord3573
ord2642
ord6215
ord4287
ord4284
ord6880
ord1168
ord2575
ord3402
ord4396
ord3574
ord609
ord556
ord809
ord2754
ord3874
ord6358
ord1088
ord2122
ord1116
ord1176
ord1577
ord1182
ord342
ord1243
ord1197
ord1570
ord1253
ord1255
ord1578
ord600
ord826
ord269
ord800
ord3742
ord4424
ord4627
ord4080
ord3079
ord3825
ord3831
ord3830
ord2976
ord3081
ord3571
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5277
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5290
ord4353
ord6374
ord5163
ord2385
ord5241
ord4407
ord1776
ord4078
ord6055
ord2512

msvcrt

?terminate@@YAXXZ
_except_handler3
_strlwr
sprintf
sscanf
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_CxxThrowException
_iob
fputs
??0exception@@QAE@ABV0@@Z
memset
__CxxFrameHandler
strcpy
strlen
_purecall
_ftol
??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
strchr
memcpy
abs
strcmp
sin
cos
atan2
sqrt
pow

kernel32

OutputDebugStringA
MultiByteToWideChar
MulDiv
GetCommandLineA
GetCurrentThreadId
LocalFree
LocalAlloc
GetModuleHandleA
GetLastError

user32

ClientToScreen
GetCapture
WindowFromPoint
LoadImageA
DrawFocusRect
DestroyCursor
GetSysColor
InflateRect
LoadCursorA
SetCursor
IsWindow
SendMessageA
CallNextHookEx
SetParent
SetWindowsHookExA
FindWindowA
ShowWindow
SetFocus
GetDesktopWindow
EndDeferWindowPos
UnhookWindowsHookEx
AppendMenuA
CreatePopupMenu
GetParent
LoadMenuA
GetSubMenu
LoadBitmapA
DeferWindowPos
InvalidateRect
SetCapture
GetWindowRect
GetFocus
ReleaseCapture
ScreenToClient
DrawTextA
ReleaseDC
FillRect
GetClientRect
GetDC
EnableWindow
CheckMenuItem
GetMenuState
DrawEdge
SetWindowPos
MoveWindow
CopyRect
BeginDeferWindowPos
GetCursorPos

gdi32

SetBkMode
CreateFontIndirectA
BitBlt
CreateCompatibleDC
GetObjectA
SelectObject
CreateSolidBrush
ExtCreatePen
CreatePen
CreateFontA
SetTextColor
GetStockObject
Ellipse
GetTextExtentPoint32A
GetPixel
TextOutW
TextOutA
CreateCompatibleBitmap
GetDeviceCaps
ExtTextOutA
Rectangle
StretchBlt
GetTextMetricsA
DeleteObject

comctl32

_TrackMouseEvent

oleaut32

SysFreeString
SysStringLen

gdiplus

GdiplusShutdown
GdiplusStartup
GdipCloneImage
GdipLoadImageFromFile
GdipDrawImageRectI
GdipDisposeImage
GdipCreateSolidFill
GdipFree
GdipAlloc
GdipCreateFromHDC
GdipFillPolygonI
GdipDeleteBrush
GdipDeleteGraphics
GdipCloneBrush

msvcp60

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXID@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1runtime_error@std@@UAE@XZ
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??_7runtime_error@std@@6B@
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??0runtime_error@std@@QAE@ABV01@@Z

Exports

Exports

CreateVideoWindow
ReleaseVideoWindow

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 774KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
WebActiveEXE.exe
.exe windows:4 windows x86 arch:x86

312097aae16903b0e9bf2fd743110235

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeZoneInformation
InterlockedDecrement
lstrlenW
GetModuleFileNameA
LoadLibraryA
GetProcAddress
CreateFileA
GetCurrentThreadId
GetDiskFreeSpaceExA
InterlockedIncrement
FlushInstructionCache
LocalFree
GetStartupInfoA
GetModuleHandleA
GlobalAlloc
GlobalLock
GlobalUnlock
EnterCriticalSection
LeaveCriticalSection
GetCurrentProcessId
GetCurrentProcess
GetLastError
CloseHandle
SetUnhandledExceptionFilter
MultiByteToWideChar
WideCharToMultiByte
OutputDebugStringA
lstrlenA
DeleteCriticalSection
InitializeCriticalSection
GetCommandLineA
lstrcmpiA
Sleep
CreateEventA
CreateThread
WaitForSingleObject
SetEvent
FreeLibrary
LoadLibraryExA
VirtualQuery

user32

GetKeyState
InvalidateRect
UnionRect
OffsetRect
CallWindowProcA
CreateWindowExA
GetParent
PtInRect
EqualRect
ShowWindow
SetFocus
IsWindow
SetWindowRgn
IntersectRect
PostMessageA
MessageBoxA
DefWindowProcA
BeginPaint
GetClientRect
EndPaint
GetFocus
IsChild
GetMessageA
DispatchMessageA
CharNextA
GetWindowLongA
PostThreadMessageA
SetWindowLongA
DestroyWindow
SetWindowPos

gdi32

GetDeviceCaps
LPtoDP
SaveDC
TextOutA
SetWindowOrgEx
SetViewportOrgEx
DeleteDC
RestoreDC
SetTextAlign
Rectangle
CreateRectRgnIndirect
SetMapMode
CreateMetaFileA
CloseMetaFile
SetWindowExtEx
DeleteMetaFile

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA

ole32

CreateDataAdviseHolder
OleRegGetMiscStatus
CreateOleAdviseHolder
OleRegGetUserType
OleRegEnumVerbs
CoTaskMemFree
CoInitialize
CoUninitialize
CoTaskMemAlloc

oleaut32

VariantChangeType
OleCreatePropertyFrame
VariantClear
SysStringLen
LoadRegTypeLi
SysAllocStringLen
SysFreeString
SysAllocString
VariantInit
CreateErrorInfo

msvcp60

??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1runtime_error@std@@UAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??_7runtime_error@std@@6B@
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
??0runtime_error@std@@QAE@ABV01@@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z

atl

ord32
ord58
ord46
ord51
ord31
ord50
ord44
ord43
ord27
ord26
ord16
ord17
ord57
ord18
ord20
ord21
ord23
ord30

msvcrt

__setusermatherr
??1type_info@@UAE@XZ
sscanf
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
_iob
fputs
??0exception@@QAE@ABV0@@Z
_CxxThrowException
wcslen
_strupr
_strlwr
_strdup
_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
?terminate@@YAXXZ
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
memcmp
malloc
??2@YAPAXI@Z
memset
strlen
memcpy
sprintf
strcat
strcpy
_mbsrchr
_purecall
__CxxFrameHandler
_ftol
strcmp
strtok
atoi
free
realloc

dhsurveillancedll

UnLoadNeedlibrary
GetTransModuleImp
ReleaseTransImp
LoadNeedLibrary

videowindow

CreateVideoWindow
ReleaseVideoWindow

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 771KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
dhnetsdk.dll
.dll windows:4 windows x86 arch:x86

2fa6652f986331f6ac93f00f0334b759

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

WSASocketA
WSAJoinLeaf
accept
listen
select
__WSAFDIsSet
getsockopt
getsockname
socket
setsockopt
bind
ioctlsocket
WSARecv
WSARecvFrom
WSASend
WSASendTo
WSACleanup
WSAStartup
getservbyport
gethostbyaddr
gethostbyname
WSAGetLastError
getservbyname
htonl
connect
inet_addr
htons
closesocket
ntohs
inet_ntoa

msvcp60

?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
?insert@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IPBDI@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??0logic_error@std@@QAE@ABV01@@Z
??0out_of_range@std@@QAE@ABV01@@Z
??1out_of_range@std@@UAE@XZ
??_7out_of_range@std@@6B@
??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

winmm

timeBeginPeriod

msvcrt

localtime
time
strcpy
sscanf
_stricmp
atoi
strlen
memcpy
strncpy
memset
_ftol
printf
mktime
sprintf
fclose
fwrite
free
fread
malloc
ftell
fseek
fopen
strstr
atof
pow
strcat
_strlwr
_CxxThrowException
rewind
fflush
_snprintf
memmove
_purecall
_assert
strchr
gmtime
_beginthreadex
memcmp
_strupr
strrchr
??0exception@@QAE@ABV0@@Z
strtoul
calloc
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
strncmp
atol
strcmp
__CxxFrameHandler
_unlink
??2@YAPAXI@Z

kernel32

OutputDebugStringA
GetModuleFileNameA
GetQueuedCompletionStatus
PostQueuedCompletionStatus
CreateIoCompletionPort
GetSystemInfo
GetCurrentProcess
SetPriorityClass
GetCurrentThread
SetThreadPriority
LoadLibraryA
SystemTimeToFileTime
CompareFileTime
MultiByteToWideChar
WideCharToMultiByte
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
GetTickCount
TerminateThread
WaitForSingleObject
ResetEvent
SetEvent
CreateEventA
CloseHandle
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetLastError
FreeLibrary
GetProcAddress
LoadLibraryExA
WaitForMultipleObjects
GetCurrentThreadId
Sleep

Exports

Exports

CLIENT_AddRecordBackupRestoreTask
CLIENT_AddTourCombin
CLIENT_AddVideoSynopsisTask
CLIENT_AdjustFluency
CLIENT_AlarmReset
CLIENT_AttachAddFileState
CLIENT_AttachAnalogAlarmData
CLIENT_AttachBurnCase
CLIENT_AttachBurnCheckState
CLIENT_AttachBurnState
CLIENT_AttachBusState
CLIENT_AttachCAN
CLIENT_AttachCameraState
CLIENT_AttachCarPassInfo
CLIENT_AttachDevComm
CLIENT_AttachLanesState
CLIENT_AttachLowRateWPAN
CLIENT_AttachMission
CLIENT_AttachPTZStatusProc
CLIENT_AttachParkingSpaceData
CLIENT_AttachRecordInfo
CLIENT_AttachSplitTour
CLIENT_AttachVTPCallState
CLIENT_AttachVideoAnalyseState
CLIENT_AttachViewRangeState
CLIENT_AudioBroadcastAddDev
CLIENT_AudioBroadcastDelDev
CLIENT_AudioDec
CLIENT_AudioDecEx
CLIENT_AudioEncode
CLIENT_BurnChangeDisk
CLIENT_BurnGetState
CLIENT_BurnMarkTag
CLIENT_BusConfirmEvent
CLIENT_CapturePicture
CLIENT_CapturePictureEx
CLIENT_Cleanup
CLIENT_ClientGetVideoEffect
CLIENT_ClientSetVideoEffect
CLIENT_CloseRegConnect
CLIENT_CloseSound
CLIENT_CloseSplitWindow
CLIENT_ConnectCloudService
CLIENT_ControlConnectServer
CLIENT_ControlDevice
CLIENT_ControlDisconnectRegServer
CLIENT_ControlIntelliTracker
CLIENT_ControlRegisterServer
CLIENT_CreateOneTunnel
CLIENT_CreateRemoteFile
CLIENT_CreateTransComChannel
CLIENT_CtrlDecPlayback
CLIENT_CtrlDecTVScreen
CLIENT_CtrlDecoderTour
CLIENT_DHPTZControl
CLIENT_DHPTZControlEx
CLIENT_DHPTZControlEx2
CLIENT_DecTVPlayback
CLIENT_DelTourCombin
CLIENT_DeleteDevConfig
CLIENT_DeleteSplitCollection
CLIENT_DestroyOneTunnel
CLIENT_DestroyTransComChannel
CLIENT_DetachAddFileState
CLIENT_DetachAnalogAlarmData
CLIENT_DetachBurnCase
CLIENT_DetachBurnCheckState
CLIENT_DetachBurnState
CLIENT_DetachBusState
CLIENT_DetachCAN
CLIENT_DetachCameraState
CLIENT_DetachCarPassInfo
CLIENT_DetachDevComm
CLIENT_DetachLanesState
CLIENT_DetachLowRateWPAN
CLIENT_DetachMission
CLIENT_DetachPTZStatusProc
CLIENT_DetachParkingSpaceData
CLIENT_DetachRecordInfo
CLIENT_DetachSplitTour
CLIENT_DetachVTPCallState
CLIENT_DetachVideoAnalyseState
CLIENT_DetachViewRangeState
CLIENT_DetectFace
CLIENT_DispatchWorkPlan
CLIENT_DoFindDiagnosisResult
CLIENT_DoFindFaceRecognition
CLIENT_DoFindFluxStat
CLIENT_DoFindNumberStat
CLIENT_DownLoadMultiFile
CLIENT_DownLoadSynosisFile
CLIENT_DownloadByRecordFile
CLIENT_DownloadByRecordFileEx
CLIENT_DownloadByTime
CLIENT_DownloadByTimeEx
CLIENT_DownloadMediaFile
CLIENT_DownloadRemoteFile
CLIENT_EnumVideoOutModes
CLIENT_ExChangeData
CLIENT_ExportConfigFile
CLIENT_ExportConfigFileJson
CLIENT_FastPlayBack
CLIENT_FileTransmit
CLIENT_FindClose
CLIENT_FindCloseEx
CLIENT_FindFile
CLIENT_FindFileEx
CLIENT_FindFrameInfo
CLIENT_FindFrameInfoClose
CLIENT_FindGroupInfo
CLIENT_FindNextFile
CLIENT_FindNextFileEx
CLIENT_FindNextFrameInfo
CLIENT_FindNextRecord
CLIENT_FindNextSynopsisFile
CLIENT_FindRecord
CLIENT_FindRecordClose
CLIENT_FindSynopsisFile
CLIENT_FocusControl
CLIENT_FramCotrolPlayBackByRecordFile
CLIENT_FramCotrolPlayBackByTime
CLIENT_GetBitmap
CLIENT_GetCarPortLightStatus
CLIENT_GetDEVWorkState
CLIENT_GetDVRIPByResolveSvr
CLIENT_GetDecLayOutEnable
CLIENT_GetDecodePolicy
CLIENT_GetDevCaps
CLIENT_GetDevConfig
CLIENT_GetDisplayMode
CLIENT_GetDownloadPos
CLIENT_GetEncodePlan
CLIENT_GetFileByTime
CLIENT_GetFramePlayBack
CLIENT_GetISCSITargets
CLIENT_GetLastError
CLIENT_GetMatrixTree
CLIENT_GetMemberNames
CLIENT_GetMonitorWallCollections
CLIENT_GetNewDevConfig
CLIENT_GetNewDevConfigForWeb
CLIENT_GetParkingSpaceStatus
CLIENT_GetPicJPEG
CLIENT_GetPlatFormInfo
CLIENT_GetPlayBackOsdTime
CLIENT_GetPlayBackPort
CLIENT_GetPtzOptAttr
CLIENT_GetRealPlayPort
CLIENT_GetSDKVersion
CLIENT_GetSnifferInfo
CLIENT_GetSplitAudioOuput
CLIENT_GetSplitCaps
CLIENT_GetSplitCollections
CLIENT_GetSplitGroupCount
CLIENT_GetSplitMode
CLIENT_GetSplitOSD
CLIENT_GetSplitSource
CLIENT_GetSplitWindowRect
CLIENT_GetSplitWindowsInfo
CLIENT_GetStatiscFlux
CLIENT_GetStorageDeviceInfo
CLIENT_GetStorageDeviceNames
CLIENT_GetSuperiorMatrixList
CLIENT_GetTotalFileCount
CLIENT_GetTourSource
CLIENT_GetVideoInCaps
CLIENT_GetVideoOutCaps
CLIENT_IOControl
CLIENT_ImportConfigFile
CLIENT_ImportConfigFileJson
CLIENT_Init
CLIENT_InitAudioEncode
CLIENT_ListRemoteFile
CLIENT_ListenServer
CLIENT_LoadMonitorWallCollection
CLIENT_LoadOffLineFile
CLIENT_LoadSplitCollection
CLIENT_LogClose
CLIENT_LogOpen
CLIENT_Login
CLIENT_LoginEx
CLIENT_Logout
CLIENT_MakeKeyFrame
CLIENT_MatrixAddCameras
CLIENT_MatrixGetCameras
CLIENT_MatrixSearch
CLIENT_MatrixSetCameras
CLIENT_MatrixSwitch
CLIENT_ModifyDevice
CLIENT_MonitorWallAttachTour
CLIENT_MonitorWallAutoAdjust
CLIENT_MonitorWallDetachTour
CLIENT_MonitorWallGetAttributeCaps
CLIENT_MonitorWallGetBackgroudColor
CLIENT_MonitorWallGetPowerSchedule
CLIENT_MonitorWallGetScene
CLIENT_MonitorWallGetScrnCtrlParam
CLIENT_MonitorWallSetAttribute
CLIENT_MonitorWallSetBackLight
CLIENT_MonitorWallSetBackgroudColor
CLIENT_MonitorWallSetPowerSchedule
CLIENT_MonitorWallSetScene
CLIENT_MonitorWallSetScrnCtrlParam
CLIENT_MultiPlay
CLIENT_MultiPlayBack
CLIENT_MultiRealPlay
CLIENT_NetStorageAttachWriteInfo
CLIENT_NetStorageDetachWriteInfo
CLIENT_NetStorageGetWriteInfo
CLIENT_NormalPlayBack
CLIENT_OpenSound
CLIENT_OpenSplitWindow
CLIENT_OperateCommDevice
CLIENT_OperateFaceRecognitionDB
CLIENT_OperateFaceRecognitionGroup
CLIENT_OperateMasterSlaveDevice
CLIENT_OperateMonitorWall
CLIENT_OperateRaid
CLIENT_OperateSplit
CLIENT_OperateTrafficList
CLIENT_OperateUserInfo
CLIENT_OperateUserInfoEx
CLIENT_OperateUserInfoNew
CLIENT_OperateVideoAnalyseDevice
CLIENT_OperateVideoJoin
CLIENT_OrganizationAddNodes
CLIENT_OrganizationDeleteNodes
CLIENT_OrganizationGetNodes
CLIENT_OrganizationSetNode
CLIENT_PTZControl
CLIENT_ParkingControlAttachParkInfo
CLIENT_ParkingControlAttachRecord
CLIENT_ParkingControlDetachParkInfo
CLIENT_ParkingControlDetachRecord
CLIENT_ParkingControlDoFind
CLIENT_ParkingControlStartFind
CLIENT_ParkingControlStopFind
CLIENT_PauseBurn
CLIENT_PauseLoadPic
CLIENT_PausePlayBack
CLIENT_PauseVideoSynopsisTask
CLIENT_PlayAudioFile
CLIENT_PlayBackByRecordFile
CLIENT_PlayBackByRecordFileEx
CLIENT_PlayBackByRecordFileProxy
CLIENT_PlayBackBySynopsisFile
CLIENT_PlayBackByTime
CLIENT_PlayBackByTimeEx
CLIENT_PlayBackByTimeProxy
CLIENT_PlayBackControl
CLIENT_PlayBackControlDirection
CLIENT_PlayEnableLargePicAdjustment
CLIENT_PowerControl
CLIENT_QueryChannelName
CLIENT_QueryComProtocol
CLIENT_QueryConfig
CLIENT_QueryControlRegServerInfo
CLIENT_QueryDecChannelFlux
CLIENT_QueryDecEncoderInfo
CLIENT_QueryDecoderInfo
CLIENT_QueryDecoderTVInfo
CLIENT_QueryDecoderTour
CLIENT_QueryDevInfo
CLIENT_QueryDevLogCount
CLIENT_QueryDevState
CLIENT_QueryDeviceLog
CLIENT_QueryDeviceTime
CLIENT_QueryExtraRecordState
CLIENT_QueryFurthestRecordTime
CLIENT_QueryGPSLog
CLIENT_QueryIOControlState
CLIENT_QueryLog
CLIENT_QueryLogCallback
CLIENT_QueryLogEx
CLIENT_QueryMatrixCardInfo
CLIENT_QueryNetStat
CLIENT_QueryNewSystemInfo
CLIENT_QueryNextLog
CLIENT_QueryProductionDefinition
CLIENT_QueryRecordBackupRestoreTask
CLIENT_QueryRecordCount
CLIENT_QueryRecordFile
CLIENT_QueryRecordState
CLIENT_QueryRecordStatus
CLIENT_QueryRecordTime
CLIENT_QueryRemotDevState
CLIENT_QueryRpcMethod
CLIENT_QuerySystemInfo
CLIENT_QuerySystemStatus
CLIENT_QueryTourCombin
CLIENT_QueryTransComParams
CLIENT_QueryUserInfo
CLIENT_QueryUserInfoEx
CLIENT_QueryUserInfoNew
CLIENT_QueryVideoOutWindows
CLIENT_QueryVideoSynopsisInfo
CLIENT_QuickQueryRecordFile
CLIENT_RealLoadObjectData
CLIENT_RealLoadPicture
CLIENT_RealLoadPictureEx
CLIENT_RealLoadSynopsisState
CLIENT_RealPlay
CLIENT_RealPlayEx
CLIENT_RebootDev
CLIENT_RecordStart
CLIENT_RecordStartEx
CLIENT_RecordStop
CLIENT_RecordStopEx
CLIENT_ReleaseAudioEncode
CLIENT_RemoveRecordBackupRestoreTask
CLIENT_RemoveRemoteFiles
CLIENT_RemoveVideoSynopsisTask
CLIENT_RenameMonitorWallCollection
CLIENT_RenameRemoteFile
CLIENT_RenameSplitCollection
CLIENT_Reset
CLIENT_ResponseDevReg
CLIENT_RigisterDrawFun
CLIENT_SaveMonitorWallCollection
CLIENT_SaveRealData
CLIENT_SaveSplitCollection
CLIENT_SearchDevices
CLIENT_SearchDevicesByIPs
CLIENT_SeekPlayBack
CLIENT_SendCAN
CLIENT_SendFileBurned
CLIENT_SendTalkData_Custom
CLIENT_SendTransComData
CLIENT_SendUpgrade
CLIENT_SetAudioClientVolume
CLIENT_SetAutoReconnect
CLIENT_SetCarPortLightStatus
CLIENT_SetConnectTime
CLIENT_SetDVRMessCallBack
CLIENT_SetDecLayOutEnable
CLIENT_SetDecPlaybackPos
CLIENT_SetDecTVOutEnable
CLIENT_SetDecodePolicy
CLIENT_SetDecoderTour
CLIENT_SetDevConfig
CLIENT_SetDeviceMode
CLIENT_SetDisplayMode
CLIENT_SetDisplayRegion
CLIENT_SetFileAttribute
CLIENT_SetFilePathInfo
CLIENT_SetFindingJumpOption
CLIENT_SetFramePlayBack
CLIENT_SetGroupInfoForChannel
CLIENT_SetMaxFlux
CLIENT_SetNetworkParam
CLIENT_SetNewDevConfig
CLIENT_SetNewDevConfigForWeb
CLIENT_SetOperateCallBack
CLIENT_SetPlatFormInfo
CLIENT_SetPlayMethod
CLIENT_SetPlaybackYUVCallBack
CLIENT_SetPlayerBufNumber
CLIENT_SetRealDataCallBack
CLIENT_SetRealDataCallBackEx
CLIENT_SetSnapRevCallBack
CLIENT_SetSplitAudioOuput
CLIENT_SetSplitMode
CLIENT_SetSplitOSD
CLIENT_SetSplitSource
CLIENT_SetSplitSourceEx
CLIENT_SetSplitTopWindow
CLIENT_SetSplitWindowRect
CLIENT_SetSubconnCallBack
CLIENT_SetSubcribeGPSCallBack
CLIENT_SetSubcribeGPSCallBackEX
CLIENT_SetSubcribeGPSTHCallBack
CLIENT_SetTourCombin
CLIENT_SetTourSource
CLIENT_SetVideoOutOption
CLIENT_SetVolume
CLIENT_SetupChannelName
CLIENT_SetupChannelOsdString
CLIENT_SetupConfig
CLIENT_SetupDeviceTime
CLIENT_SetupExtraRecordState
CLIENT_SetupRecordState
CLIENT_ShutDownDev
CLIENT_SlowPlayBack
CLIENT_SmartSearchPlayBack
CLIENT_SnapPicture
CLIENT_SnapPictureEx
CLIENT_SplitSetMultiSource
CLIENT_StartBurn
CLIENT_StartBurnSession
CLIENT_StartFindDiagnosisResult
CLIENT_StartFindFaceRecognition
CLIENT_StartFindFluxStat
CLIENT_StartFindNumberStat
CLIENT_StartListen
CLIENT_StartListenEx
CLIENT_StartLogin
CLIENT_StartLoginEx
CLIENT_StartPlayBackByRecordFile
CLIENT_StartPlayBackByTime
CLIENT_StartQueryLog
CLIENT_StartQueryRecordFile
CLIENT_StartRealPlay
CLIENT_StartRealTimeProject
CLIENT_StartRecordBackupRestore
CLIENT_StartSearchDevices
CLIENT_StartService
CLIENT_StartSniffer
CLIENT_StartTalk
CLIENT_StartTalkEx
CLIENT_StartTrafficFluxStat
CLIENT_StartUpgrade
CLIENT_StartUpgradeEx
CLIENT_StartUploadFileBurned
CLIENT_StartVideoDiagnosis
CLIENT_StepPlayBack
CLIENT_StopBurn
CLIENT_StopBurnSession
CLIENT_StopDownload
CLIENT_StopDownloadMediaFile
CLIENT_StopExportCfgFile
CLIENT_StopFindDiagnosis
CLIENT_StopFindFaceRecognition
CLIENT_StopFindFluxStat
CLIENT_StopFindNumberStat
CLIENT_StopImportCfgFile
CLIENT_StopListen
CLIENT_StopListenServer
CLIENT_StopLoadMultiFile
CLIENT_StopLoadObjectData
CLIENT_StopLoadPic
CLIENT_StopLoadSynopsisState
CLIENT_StopLoadSynosisFile
CLIENT_StopLogin
CLIENT_StopLoginEx
CLIENT_StopMultiPlay
CLIENT_StopMultiRealPlay
CLIENT_StopPlayBack
CLIENT_StopQueryLog
CLIENT_StopRealPlay
CLIENT_StopRealPlayEx
CLIENT_StopRealTimeProject
CLIENT_StopRecordBackupRestore
CLIENT_StopSaveRealData
CLIENT_StopSearchDevices
CLIENT_StopService
CLIENT_StopSniffer
CLIENT_StopTalk
CLIENT_StopTalkEx
CLIENT_StopTrafficFluxStat
CLIENT_StopUpgrade
CLIENT_StopUploadFileBurned
CLIENT_StopVideoDiagnosis
CLIENT_SubcribeGPS
CLIENT_SubcribeGPSTempHumidity
CLIENT_SwitchDecTVEncoder
CLIENT_SynopsisFindClose
CLIENT_TalkSendData
CLIENT_TrafficForceLightState
CLIENT_TrafficSnapByNetwork
CLIENT_TransmitInfoForWeb
CLIENT_UploadRemoteFile
CLIENT_WatermarkVerifyForPicture
_CLIENT_AddMission@16
_CLIENT_AttachRecordUpdater@16
_CLIENT_BusSchedule@16
_CLIENT_CheckBusLine@16
_CLIENT_DetachRecordUpdater@4
_CLIENT_DispatchBusLineInfo@16
_CLIENT_LoginEx2@32
_CLIENT_OperateSplitPlayer@20
_CLIENT_SCADAAttachInfo@16
_CLIENT_SCADADetachInfo@4
_CLIENT_SnapManagerConfirmUpload@16
_CLIENT_VideoAnalyseGetTemplateImage@16
_CLIENT_VideoAnalyseSetTemplateImage@16

Sections

.text
Size: 652KB - Virtual size: 651KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
dhplay.dll
.dll windows:4 windows x86 arch:x86

20ea4bfa1703fbe86b61207ec77c3ea7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

UnmapViewOfFile
GetSystemInfo
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
GetTickCount
LoadLibraryExA
GetProcAddress
GetModuleFileNameA
SystemTimeToFileTime
GetLocalTime
Sleep
CreateThread
TerminateThread
MapViewOfFile
OutputDebugStringA
GetLastError
GetVersionExA
GetModuleHandleA
lstrcpyA
InterlockedExchange
SetEnvironmentVariableA
CompareStringW
CompareStringA
FindClose
SetStdHandle
LoadLibraryA
CreateFileMappingA
SetFilePointer
ReadFile
WriteFile
CreateFileA
GetDiskFreeSpaceExA
GetCurrentDirectoryA
FindFirstFileA
GetCurrentThreadId
DeleteFileA
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetFileAttributesA
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
GetFullPathNameA
IsBadWritePtr
VirtualAlloc
CreateDirectoryA
InterlockedDecrement
InterlockedIncrement
SetEvent
WaitForSingleObject
ReleaseMutex
CreateEventA
CreateMutexA
FlushFileBuffers
CloseHandle
GetFileSize
RtlUnwind
RaiseException
HeapAlloc
HeapFree
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetCommandLineA
GetVersion
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
WideCharToMultiByte
GetTimeZoneInformation
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree

user32

IsWindow
PostMessageA
ClientToScreen
ReleaseDC
GetDC
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
GetClientRect

gdi32

CreateCompatibleDC
CreateDIBSection
DeleteDC
SelectObject
SetStretchBltMode
StretchDIBits
StretchBlt
DeleteObject

winmm

waveOutSetVolume
waveOutOpen
waveOutGetVolume
waveOutReset
waveInReset
waveOutGetPosition
waveOutUnprepareHeader
waveOutPrepareHeader
timeGetTime
timeBeginPeriod
waveInAddBuffer
waveInStart
waveInOpen
waveInClose
waveInPrepareHeader
waveInUnprepareHeader
waveInStop
waveOutClose
waveOutWrite

d3d9

Direct3DCreate9

ddraw

DirectDrawCreateEx
DirectDrawEnumerateExA

avifil32

AVIStreamSetFormat
AVIStreamWrite
AVIFileExit
AVIStreamRelease
AVIFileRelease
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA

Exports

Exports

?PLAY_CloseYuvRender@@YGHH@Z
?PLAY_OpenYuvRender@@YGHHPAUHWND__@@P6GXHPAUHDC__@@@Z@Z
?PLAY_RenderYuv@@YGHHPAE00HH@Z
PLAY_AddToPlayGroup
PLAY_AdjustFluency
PLAY_AdjustWaveAudio
PLAY_Back
PLAY_BackOne
PLAY_CatchPic
PLAY_CatchPicEx
PLAY_CatchResizePic
PLAY_ChangeRate
PLAY_ChooseAudio
PLAY_ChooseFrame
PLAY_CloseAudioRecord
PLAY_CloseFile
PLAY_ClosePlayGroup
PLAY_CloseStream
PLAY_CloseStreamEx
PLAY_ConvertToBmpFile
PLAY_ConvertToBmpFileEx
PLAY_ConvertToJpegFile
PLAY_CreateFile
PLAY_CreateStream
PLAY_CutFileSegment
PLAY_DelFromPlayGroup
PLAY_DestroyFile
PLAY_DestroyStream
PLAY_EnableLargePicAdjustment
PLAY_EnableRecitfy
PLAY_Fast
PLAY_FisheyeEptzUpdate
PLAY_FisheyeGetPosition
PLAY_FisheyeSecondRegion
PLAY_GetAudioChannels
PLAY_GetAudioChooseState
PLAY_GetAudioRecScaling
PLAY_GetAudioRenderScaling
PLAY_GetBufferValue
PLAY_GetCaps
PLAY_GetCapsEx
PLAY_GetColor
PLAY_GetColorKey
PLAY_GetCurrentFrameNum
PLAY_GetCurrentFrameRate
PLAY_GetCurrentFrameRateEx
PLAY_GetDDrawDeviceInfo
PLAY_GetDDrawDeviceTotalNums
PLAY_GetDisplayBuf
PLAY_GetDisplayType
PLAY_GetFileHeadLength
PLAY_GetFileTime
PLAY_GetFileTotalFrames
PLAY_GetFreePort
PLAY_GetKeyFramePos
PLAY_GetKeyFramePosByAbsTime
PLAY_GetLastError
PLAY_GetLastYUVFrame
PLAY_GetMDPosition
PLAY_GetNextKeyFramePos
PLAY_GetNextKeyFramePosByAbsTime
PLAY_GetOverlayMode
PLAY_GetPicBMP
PLAY_GetPicBMPEx
PLAY_GetPicJPEG
PLAY_GetPicTIFF
PLAY_GetPictureQuality
PLAY_GetPictureSize
PLAY_GetPlayPos
PLAY_GetPlayedFrames
PLAY_GetPlayedTime
PLAY_GetPlayedTimeEx
PLAY_GetRealFrameBitRate
PLAY_GetRefValue
PLAY_GetSdkVersion
PLAY_GetSourceBufferRemain
PLAY_GetStreamOpenMode
PLAY_GetTimePicture
PLAY_GetTimerType
PLAY_GetVideoPerTimer
PLAY_GetVolume
PLAY_InitDDraw
PLAY_InitDDrawDevice
PLAY_InputAudioData
PLAY_InputData
PLAY_InputVideoData
PLAY_OneByOne
PLAY_OneByOneBack
PLAY_OpenAudioRecord
PLAY_OpenFile
PLAY_OpenPlayGroup
PLAY_OpenStream
PLAY_OpenStreamEx
PLAY_OptFisheyeParams
PLAY_Pause
PLAY_PausePlayGroup
PLAY_Play
PLAY_PlaySound
PLAY_PlaySoundShare
PLAY_QueryGroupPlayingTime
PLAY_QueryInfo
PLAY_RealeseDDraw
PLAY_RefreshPlay
PLAY_RefreshPlayEx
PLAY_ReleaseDDrawDevice
PLAY_ReleasePort
PLAY_RenderPrivateData
PLAY_ResetBuffer
PLAY_ResetSourceBufFlag
PLAY_ResetSourceBuffer
PLAY_RigisterDrawFun
PLAY_RigisterDrawFunEx
PLAY_SeekPlayGroup
PLAY_SetAudioCallBack
PLAY_SetAudioRecScaling
PLAY_SetAudioRenderScaling
PLAY_SetColor
PLAY_SetCurrentFrameNum
PLAY_SetDDrawDevice
PLAY_SetDDrawDeviceEx
PLAY_SetDeNoiseParams
PLAY_SetDecCBStream
PLAY_SetDecCallBack
PLAY_SetDecCallBackEx
PLAY_SetDecInfoCallBack
PLAY_SetDecodeCallBack
PLAY_SetDecodeKey
PLAY_SetDecodeThreadNum
PLAY_SetDehazeParams
PLAY_SetDelayTime
PLAY_SetDemuxCallBack
PLAY_SetDisplayBuf
PLAY_SetDisplayCallBack
PLAY_SetDisplayRegion
PLAY_SetDisplayType
PLAY_SetEncChangeMsg
PLAY_SetEncTypeChangeCallBack
PLAY_SetFileEndCallBack
PLAY_SetFileEndMsg
PLAY_SetFileIndexProgressCallBack
PLAY_SetFileRefCallBack
PLAY_SetFileRefCallBackEx
PLAY_SetFileTimeDoneCallBack
PLAY_SetFishEyeInfoCallBack
PLAY_SetFisheyeParams
PLAY_SetIVSCallBack
PLAY_SetIVSEParams
PLAY_SetMDRange
PLAY_SetMDThreShold
PLAY_SetMultiFrameCallBack
PLAY_SetMultiFrameDecCallBack
PLAY_SetOverlayMode
PLAY_SetPandoraWaterMarkCallBack
PLAY_SetPicQuality
PLAY_SetPlayDirection
PLAY_SetPlayGroupDirection
PLAY_SetPlayGroupSpeed
PLAY_SetPlayMethod
PLAY_SetPlayPos
PLAY_SetPlayPosByFileOffset
PLAY_SetPlaySpeed
PLAY_SetPlayedAbsTime
PLAY_SetPlayedTimeEx
PLAY_SetRefValue
PLAY_SetRotateAngle
PLAY_SetSecurityKey
PLAY_SetSourceBufCallBack
PLAY_SetStreamOpenMode
PLAY_SetTimerType
PLAY_SetVerifyCallBack
PLAY_SetVideoPerTimer
PLAY_SetVisibleDecCallBack
PLAY_SetVisibleDecodeCallBack
PLAY_SetVolume
PLAY_SetWaterMarkCallBack
PLAY_SetWaterMarkCallBackEx
PLAY_SetupPrepareTime
PLAY_Slow
PLAY_StartAVIConvert
PLAY_StartAVIResizeConvert
PLAY_StartDataRecord
PLAY_StartDeHaze
PLAY_StartDeNoise
PLAY_StartFisheye
PLAY_StartIVSE
PLAY_StartPrepareRecord
PLAY_StepPlayGroup
PLAY_Stop
PLAY_StopAVIConvert
PLAY_StopAVIResizeConvert
PLAY_StopDataRecord
PLAY_StopDeHaze
PLAY_StopDeNoise
PLAY_StopFisheye
PLAY_StopIVSE
PLAY_StopPrepareRecord
PLAY_StopSound
PLAY_StopSoundShare
PLAY_SurfaceChange
PLAY_ThrowBFrameNum
PLAY_VerticalSyncEnable
PLAY_WriteData
_PLAY_CleanScreen@24
_PLAY_GetScale@8
_PLAY_GetTranslateX@8
_PLAY_GetTranslateY@8
_PLAY_Scale@12
_PLAY_SetAnalyzePositionCallback@12
_PLAY_SetDigitalSignCallBack@12
_PLAY_SetDisplayScale@12
_PLAY_SetFileInfoFrameCallback@16
_PLAY_SetIdentity@8
_PLAY_SetMemMinimized@4
_PLAY_StartDataRecordEx@20
_PLAY_StartEdgeEnhance@12
_PLAY_StartFileFrameDetect@8
_PLAY_StartVideoStable@4
_PLAY_StopEdgeEnhance@4
_PLAY_StopFileFrameDetect@4
_PLAY_StopVideoStable@4
_PLAY_Translate@16
_PLAY_ViewResolutionChanged@16

Sections

.text
Size: 224KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 4KB - Virtual size: 96B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
h264dec.dll
.dll windows:5 windows x86 arch:x86

dbaf9d321ef7dc18ac4b36cc82819c35

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
HeapFree
HeapReAlloc
HeapAlloc
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
CloseHandle
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryA
SetStdHandle
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
CreateFileA

Exports

Exports

H264_Dec_Close
H264_Dec_DeInit
H264_Dec_Decode
H264_Dec_GetCPUCaps
H264_Dec_GetFrame
H264_Dec_Init
H264_Dec_Open
h264_decode_clean_all
h264_decode_end
h264_decode_frame
h264_decode_init
h264_decode_init_all

Sections

.text
Size: 241KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

text
Size: 1024B - Virtual size: 593B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mjpegdec.dll
.dll windows:4 windows x86 arch:x86

a1fc27b31baa999f60bca2a68148eb0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapAlloc
HeapFree
HeapReAlloc
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetLastError
SetConsoleCtrlHandler
WriteFile
GetStdHandle
GetModuleFileNameA
EnterCriticalSection
LeaveCriticalSection
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
FatalAppExitA
VirtualAlloc
IsBadWritePtr
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
UnhandledExceptionFilter
GetProcAddress
LoadLibraryA
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
FlushFileBuffers
Sleep
SetFilePointer
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CloseHandle
SetStdHandle
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
RtlUnwind
GetTimeZoneInformation
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

JPEG_Dec_Close
JPEG_Dec_DeInit
JPEG_Dec_Decode
JPEG_Dec_Init
JPEG_Dec_Open
MJPEG_Dec_Close
MJPEG_Dec_DeInit
MJPEG_Dec_Decode
MJPEG_Dec_Init
MJPEG_Dec_Open

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 428B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
npTimeGrid.dll
.dll windows:4 windows x86 arch:x86

6ed36d2bbc2212907de67d1154a72ea9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LocalAlloc
LocalFree

user32

GetWindowLongA
SetWindowLongA

mfc42

ord1168
ord825
ord823
ord6467
ord1577
ord1575
ord342
ord1243
ord1197
ord1570
ord1253
ord1255
ord1578
ord600
ord826
ord269
ord1176
ord1182
ord1116

msvcrt

_purecall
__CxxFrameHandler
_onexit
__dllonexit
??1type_info@@UAE@XZ
_adjust_fdiv
malloc
_initterm
free
atoi
_ftol

msvcp60

?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1ios_base@std@@UAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??_7?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@6B@
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0ios_base@std@@IAE@XZ
??_8?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B?$basic_istream@DU?$char_traits@D@std@@@1@@
??_8?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@7B?$basic_ostream@DU?$char_traits@D@std@@@1@@
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ

timeaxesdll

ReleaseTimeAxesModule
GetTimeAxesModule

Exports

Exports

NP_GetEntryPoints
NP_Initialize
NP_Shutdown

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
npmedia.dll
.dll windows:4 windows x86 arch:x86

6ed32ef9dbc9ed09e586523f88fec66e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetDiskFreeSpaceExA
GetLastError
VirtualQuery
GetTimeZoneInformation
GetProcAddress
LoadLibraryExA
FreeLibrary
OutputDebugStringA
MultiByteToWideChar
lstrlenW
GetModuleFileNameA
LocalFree
LocalAlloc
WideCharToMultiByte

user32

PostMessageA
MessageBoxA
SetWindowLongA
GetWindowLongA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc

mfc42

ord1578
ord269
ord826
ord600
ord1575
ord825
ord823
ord6467
ord800
ord1601
ord2818
ord540
ord641
ord2915
ord858
ord3499
ord2515
ord355
ord2864
ord537
ord1255
ord1116
ord1176
ord1253
ord1168
ord1577
ord1182
ord342
ord1243
ord1197
ord1570

msvcrt

_onexit
strlen
?terminate@@YAXXZ
_except_handler3
sscanf
__dllonexit
??1type_info@@UAE@XZ
_adjust_fdiv
_initterm
free
strcat
strtok
atoi
sprintf
_mbscmp
strcmp
_ftol
_purecall
__CxxFrameHandler
malloc
memcpy
memset
_strlwr
_strupr
??0exception@@QAE@ABV0@@Z
fputs
_iob
_CxxThrowException
??1exception@@UAE@XZ
??0exception@@QAE@ABQBD@Z

msvcp60

??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??0runtime_error@std@@QAE@ABV01@@Z
??_7runtime_error@std@@6B@
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@D@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??9std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?rfind@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??1runtime_error@std@@UAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z

dhsurveillancedll

LoadNeedLibrary
UnLoadNeedlibrary
GetTransModuleImp
ReleaseTransImp

videowindow

CreateVideoWindow
ReleaseVideoWindow

Exports

Exports

NP_GetEntryPoints
NP_Initialize
NP_Shutdown

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
postproc.dll
.dll windows:4 windows x86 arch:x86

90fb0d3b9147b78e7ee69fa48ce244a0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapAlloc
UnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetProcAddress
LoadLibraryA
RtlUnwind
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement
Sleep
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA

Exports

Exports

POSTPROCESS_deInterlace
POSTPROCESS_deInterlace_deinit
POSTPROCESS_deInterlace_init
POSTPROCESS_deInterlace_interpolation
POSTPROCESS_deblock
POSTPROCESS_deblock_deinit
POSTPROCESS_deblock_init
POSTPROCESS_deblock_ramkishor
POSTPROCESS_dering
POSTPROCESS_dering_deinit
POSTPROCESS_dering_init
POSTPROCESS_lumaStretch
POSTPROCESS_rotate
POSTPROCESS_rotate_deinit
POSTPROCESS_rotate_init

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
timeAxesDll.dll
.dll windows:4 windows x86 arch:x86

fddd21d855127d7ae637feeb527c0ab3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord4079
ord4698
ord5307
ord5289
ord5714
ord3953
ord2982
ord3147
ord3259
ord4465
ord3136
ord3262
ord2985
ord3081
ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4622
ord4424
ord3738
ord561
ord815
ord6055
ord4078
ord1776
ord3346
ord5241
ord2385
ord5163
ord6374
ord4353
ord5290
ord2725
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord3742
ord818
ord567
ord4275
ord2864
ord2379
ord2396
ord5199
ord1089
ord3922
ord5731
ord2512
ord2554
ord4486
ord6375
ord4274
ord540
ord2818
ord924
ord800
ord6467
ord5302
ord3798
ord5300
ord823
ord1116
ord1176
ord4407
ord1575
ord1168
ord1577
ord1182
ord342
ord1243
ord1197
ord1570
ord1253
ord1255
ord1578
ord600
ord826
ord825
ord269

msvcrt

??1exception@@UAE@XZ
_ftol
sprintf
_purecall
atoi
sscanf
memmove
__dllonexit
_onexit
free
_initterm
malloc
_adjust_fdiv
??1type_info@@UAE@XZ
memcpy
strlen
strcmp
??0exception@@QAE@ABV0@@Z
fputs
_iob
_CxxThrowException
?terminate@@YAXXZ
??0exception@@QAE@ABQBD@Z
_except_handler3
__CxxFrameHandler

kernel32

LocalFree
LocalAlloc

user32

DrawTextA
FillRect
PtInRect
MoveWindow
GetClientRect
InvalidateRect
ReleaseDC
EndPaint
BeginPaint
ReleaseCapture
SetCapture
PostMessageA
GetParent
SendMessageA
EnableWindow
CopyRect

gdi32

DeleteObject
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
GetTextExtentPointA
SetBkMode
CreatePen
Polygon
SelectObject
LineTo
MoveToEx
BitBlt
SetTextColor
CreateFontA
CreateSolidBrush

comctl32

_TrackMouseEvent

msvcp60

??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??0runtime_error@std@@QAE@ABV01@@Z
??1runtime_error@std@@UAE@XZ
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??_7runtime_error@std@@6B@
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBD0@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@PBD@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBDABV10@@Z
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z
?_Freeze@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?resize@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
??1Init@ios_base@std@@QAE@XZ
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??Mstd@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
??0Init@ios_base@std@@QAE@XZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ID@Z

msimg32

AlphaBlend

Exports

Exports

GetTimeAxesModule
ReleaseTimeAxesModule

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
uninst.exe
.exe windows:4 windows x86 arch:x86

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetTickCount
CreateFileA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
SetFileTime
GetTempPathA
GetCommandLineA
SetErrorMode
LoadLibraryA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
CreateProcessA
RemoveDirectoryA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
GetVersion
CloseHandle
lstrcmpiA
lstrcmpA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GetModuleHandleA
LoadLibraryExA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
MulDiv
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetWindowsDirectoryA

user32

EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectA
SetBkMode
SetTextColor
SelectObject

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHFileOperationA
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
RegSetValueExA
RegEnumKeyA
RegEnumValueA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

099c0646ea7282d232219f8807883be0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 107KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 22KB - Virtual size: 21KB

db9a5f66b77944715392752a4b54399f

Headers

File Characteristics

Imports

kernel32

user32

shell32

msvcrt

msvcp60

dhnetsdk

ws2_32

winmm

Exports

Exports

Sections

.text Size: 244KB - Virtual size: 243KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 24KB - Virtual size: 6.4MB

.reloc Size: 40KB - Virtual size: 38KB

09bbed97facccf9baf8b23a07b79fb13

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

atl

msvcp60

timeaxesdll

msvcrt

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 6KB

7aaaf29d44112ab0f8fe837b61ea1302

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

gdi32

comctl32

oleaut32

gdiplus

msvcp60

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 774KB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 107KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 22KB - Virtual size: 21KB

.text
Size: 244KB - Virtual size: 243KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 24KB - Virtual size: 6.4MB

.reloc
Size: 40KB - Virtual size: 38KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 6KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 774KB

.rsrc
Size: 68KB - Virtual size: 64KB

.reloc
Size: 12KB - Virtual size: 9KB

.text
Size: 72KB - Virtual size: 70KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 4KB - Virtual size: 771KB

.rsrc
Size: 32KB - Virtual size: 28KB

.text
Size: 652KB - Virtual size: 651KB

.rdata
Size: 88KB - Virtual size: 84KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 4KB - Virtual size: 968B

.reloc
Size: 56KB - Virtual size: 54KB

.text
Size: 224KB - Virtual size: 222KB

.rodata
Size: 4KB - Virtual size: 96B

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 20KB - Virtual size: 67KB

.rsrc
Size: 4KB - Virtual size: 848B

.reloc
Size: 16KB - Virtual size: 14KB

.text
Size: 241KB - Virtual size: 241KB