0b6b2e085732f46e41d3b4525ef16cda_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0b6b2e085732f46e41d3b4525ef16cda_JaffaCakes118
Size

11.0MB
MD5

0b6b2e085732f46e41d3b4525ef16cda
SHA1

0e397d2211e64b7bb20ee9d71f641774be6c0d65
SHA256

55a0f74d0305e07b8fa0dc5306dbc820aac2fa6dd192fbb9bdc983e9d67fa703
SHA512

1097ccb4c6a8c048c5b2db66262c256019db5553bec8a2b1632f3d24a0680895099d0f8b87758269c0295bfb34b0585ef01358d2f39913e119a1c847ed789c03
SSDEEP

196608:LgSlHrWHYgkTZ91ejeo5gT4K2jOzKIDDG9k/ZIy6CPmz6roeU7GBgV+EJ+GbvgzB:LLlLWYdK55gwj+JnG+C2AeoCw+8pSKk

Score

3^/10

Malware Config

Signatures

Unsigned PE 59 IoCs

Checks for missing Authenticode signature.

resource
unpack002/EBBMP9.FLT
unpack002/EBGIF9.FLT
unpack002/EBJPG9.FLT
unpack002/EBPNG9.FLT
unpack002/EBWMF9.FLT
unpack002/EMCGM9.FLT
unpack002/EMWMF9.FLT
unpack002/EzSamViewerOCX.ocx
unpack002/HNCJPEG.FLT
unpack002/HNCPNG.FLT
unpack002/HncShellExt.dll
unpack002/HncVBL.dll
unpack002/HncVBL.enu
unpack002/HncVBL.kor
unpack002/Hwp5Vwer.dll
unpack002/Hwp5Vwer.enu
unpack002/Hwp5Vwer.kor
unpack002/HwpView.enu
unpack002/HwpView.exe
unpack002/HwpView.kor
unpack002/IBBMP9.FLT
unpack002/IBGIF9.FLT
unpack002/IBPCX9.FLT
unpack002/IBTIF9.FLT
unpack002/IMCD39.FLT
unpack002/IMCD49.FLT
unpack002/IMCD59.FLT
unpack002/IMCD69.FLT
unpack002/IMCDR9.FLT
unpack002/IMCG19.FLT
unpack002/IMCG39.FLT
unpack002/IMCGM9.FLT
unpack002/IMCMX9.FLT
unpack002/IMDRW9.FLT
unpack002/IMDXF9.FLT
unpack002/IMHDR.FLT
unpack002/IMHGL9.FLT
unpack002/IMJPEG9.FLT
unpack002/IMPCT9.FLT
unpack002/IMPIC9.FLT
unpack002/IMPSI9.FLT
unpack002/IMPSZ9.FLT
unpack002/IMPS_9.FLT
unpack002/IMWMF9.FLT
unpack002/IMWP19.FLT
unpack002/IMWPG9.FLT
unpack002/IPPP29.FLT
unpack002/IPPP39.FLT
unpack002/IPPPT9.FLT
unpack002/ISGDI32.DLL
unpack002/mfc42.dll
unpack002/mfc42u.dll
unpack002/msvcp60.dll
unpack002/msvcrt.dll
unpack002/run_hwp.exe
unpack001/HwpView.enu
unpack001/InstMsiA.exe
unpack001/InstMsiW.exe
unpack001/install.exe

Files

0b6b2e085732f46e41d3b4525ef16cda_JaffaCakes118
.zip
HwpView.cab
.cab
EBBMP9.FLT
.dll windows:4 windows x86 arch:x86

8bcf55041e76f36118686bc0dc06768b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord110
ord3139
ord3041
ord114
ord113
ord111
ord3103
ord2768
ord2770
ord3115
ord3117
ord3116
ord3100
ord3120
ord3042
ord3039
ord2725
ord3102
ord2721
ord3101
ord3104

kernel32

GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetLastError
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetStdHandle
TlsSetValue
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
RaiseException
InitializeCriticalSection
EnterCriticalSection
TlsFree
TlsGetValue
HeapAlloc
HeapFree
VirtualAlloc
SetFilePointer
GetStringTypeA
GetStringTypeW
SetLastError
LCMapStringA
LCMapStringW
TlsAlloc
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
LeaveCriticalSection
SetStdHandle
GetCurrentThreadId
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetProfileStringA
GetModuleHandleA
GetModuleFileNameA
GetWindowsDirectoryA
OpenFile
GlobalReAlloc
LoadLibraryA
GetProcAddress
FreeLibrary
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GlobalFree
GlobalHandle
GlobalUnlock
GlobalAlloc
GlobalLock
FreeEnvironmentStringsW
GetEnvironmentStrings
LocalAlloc
LocalLock
LocalHandle
LocalUnlock
GetTempFileNameA
GetTempPathA
LocalFree

user32

GetDlgItemInt
SetWindowTextA
CheckRadioButton
SendDlgItemMessageA
DestroyWindow
GetActiveWindow
SetDlgItemInt
SendMessageA
DispatchMessageA
SetFocus
GetDlgItem
GetWindowTextA
DialogBoxParamA
TranslateMessage
EndDialog
wsprintfA
LoadStringA
IsDialogMessageA
GetMessageA
EnableWindow
GetParent
ShowWindow

gdi32

CreateICA
CreateMetaFileA
CloseEnhMetaFile
CreateEnhMetaFileA
CloseMetaFile
CreatePalette
RealizePalette
SetMapMode
SetViewportExtEx
CreateCompatibleDC
CreateRectRgn
CreateSolidBrush
CreateDIBitmap
DeleteObject
SetViewportOrgEx
PaintRgn
PlayEnhMetaFile
SelectObject
CreateDCA
GetDeviceCaps
DeleteDC
PlayMetaFile
DeleteEnhMetaFile
DeleteMetaFile
GetDIBits

comdlg32

PrintDlgA

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
ExportBM
ExportBMCB
ExportCB
ExportGR
FontTblDlgProc
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
NewProfileDlgProc
ProfileDlgProc
RASTER_dd_entry
dd_entry
dd_entry32

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EBBMP9.INI
EBGIF9.FLT
.dll windows:4 windows x86 arch:x86

9b95244f8d25114a6724434d63d29b50

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

wsprintfA

kernel32

TlsFree
TlsAlloc
GetLastError
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
CloseHandle
WriteFile
FlushFileBuffers
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetFilePointer
GetCurrentThreadId
TlsSetValue
SetLastError
TlsGetValue
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetStdHandle
CreateFileA
InterlockedDecrement
InterlockedIncrement
ReadFile
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetEndOfFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Exports

Exports

HncExportGR

Sections

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EBGIF9.INI
EBJPG9.FLT
.dll windows:4 windows x86 arch:x86

4e58e24012b1929a870f3b9e47a04e61

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetActiveWindow
MessageBoxA

kernel32

GetFileType
GetStdHandle
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
RtlUnwind
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetLastError
CloseHandle
GetProcAddress
ReadFile
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
LCMapStringW
GetCPInfo
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
FlushFileBuffers
SetFilePointer
CreateFileA
SetStdHandle
CompareStringW
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
CompareStringA
SetEnvironmentVariableA
SetEndOfFile
GetStringTypeA
GetStringTypeW
LCMapStringA

Exports

Exports

HncExportGR

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EBPCX9.INI
EBPNG9.FLT
.dll windows:4 windows x86 arch:x86

2c2646c939ee6cd4430697d589092954

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetStartupInfoA
HeapAlloc
GetCommandLineA
GetVersion
GetLastError
CloseHandle
ReadFile
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
HeapFree
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
GetProcAddress
FlushFileBuffers
SetStdHandle
CreateFileA
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetEndOfFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Exports

Exports

HncExportGR

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EBTIF9.INI
EBWMF9.FLT
.dll windows:4 windows x86 arch:x86

2bd0ddd114a0b7db4f907d0e714bfadd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

DeleteMetaFile
CloseMetaFile
RestoreDC
StretchDIBits
SetWindowExtEx
SetWindowOrgEx
SaveDC
CreateMetaFileA

kernel32

HeapFree
HeapAlloc
GetCommandLineA
GetVersion
EnterCriticalSection
LeaveCriticalSection
GetLastError
WriteFile
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
ExitProcess
RtlUnwind
CloseHandle
ReadFile
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetFilePointer
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
InterlockedDecrement
InterlockedIncrement
SetEndOfFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Exports

Exports

HncExportGR

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EMCGM9.FLT
.dll windows:4 windows x86 arch:x86

71f51b55439344a59b9f9de600ebdee0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3100
ord2832
ord3103
ord3102
ord2770
ord113
ord3041
ord110
ord2831
ord111
ord114
ord3116
ord3101
ord2725
ord2730
ord2721
ord3104
ord2768
ord3122

kernel32

GetCommandLineA
GetModuleHandleA
GetWindowsDirectoryA
GetTempFileNameA
TerminateProcess
GetTempPathA
ExitProcess
GetCurrentThreadId
TlsSetValue
GetVersion
GetCurrentProcess
SetLastError
TlsGetValue
GetLastError
HeapDestroy
TlsAlloc
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
TlsFree
HeapCreate
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
RaiseException
InitializeCriticalSection
LocalLock
OpenFile
LocalHandle
HeapAlloc
HeapFree
VirtualAlloc
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
SetStdHandle
SetFilePointer
LocalFree
GetModuleFileNameA
GetProfileStringA
LoadLibraryA
GetProcAddress
FreeLibrary
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
WritePrivateProfileStringA
GetPrivateProfileIntA
LocalAlloc
EnterCriticalSection
LocalUnlock
GetPrivateProfileStringA
DeleteCriticalSection
GetCPInfo
LeaveCriticalSection
GlobalReAlloc
GlobalHandle

user32

TranslateMessage
DispatchMessageA
DestroyWindow
GetWindowTextA
SetDlgItemTextA
GetActiveWindow
GetParent
SetWindowTextA
ShowWindow
IsDialogMessageA
GetMessageA
GetDlgItemTextA
CheckRadioButton
EndDialog
DialogBoxParamA
EnableWindow
SendDlgItemMessageA
SendMessageA
GetDlgItem
SetFocus
wsprintfA
LoadStringA

gdi32

GetDeviceCaps
CreateDCA
DeleteDC
SetMapMode
SetWindowExtEx
SetViewportOrgEx
SetWindowOrgEx
SetViewportExtEx
GetTextMetricsA
SetTextCharacterExtra
CreateFontIndirectA
SelectObject
DeleteObject
EnumFontFamiliesA
GetTextExtentPointA

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
ExportCB
ExportGR
FontTblDlgProc
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
NewProfileDlgProc
ProfileDlgProc
dd_entry
dd_entry32

Sections

.text
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EMCGM9.INI
EMDRW9.INI
EMDXF9.INI
EMGDF9.INI
EMGEM9.INI
EMHG39.INI
EMHGL9.INI
EMIGS9.INI
EMMET9.INI
EMNAP9.INI
EMPCT9.INI
EMPDF9.INI
EMPIF9.INI
EMPS_9.INI
EMWMF9.FLT
.dll windows:4 windows x86 arch:x86

29d184a0c42f92f92877aae2f473c0c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3102
ord2832
ord3104
ord2770
ord113
ord2831
ord110
ord3103
ord111
ord3113
ord114
ord3120
ord3100
ord3101
ord2721
ord2725
ord2768
ord3039
ord101
ord2730

kernel32

GetVersion
GetModuleHandleA
GetCommandLineA
ExitProcess
TlsSetValue
TerminateProcess
TlsFree
GetCurrentProcess
GetCurrentThreadId
GetLastError
TlsAlloc
HeapCreate
VirtualFree
SetLastError
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
HeapDestroy
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetTempPathA
RaiseException
GetStringTypeA
GetStringTypeW
InitializeCriticalSection
GetTempFileNameA
LeaveCriticalSection
HeapAlloc
GetWindowsDirectoryA
VirtualAlloc
LCMapStringA
LCMapStringW
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
SetStdHandle
SetFilePointer
WriteFile
WideCharToMultiByte
HeapFree
OpenFile
LocalAlloc
LocalLock
LocalHandle
LocalUnlock
LocalFree
GetModuleFileNameA
GetProfileStringA
GlobalFree
LoadLibraryA
GetProcAddress
FreeLibrary
GlobalAlloc
GlobalSize
GlobalHandle
GlobalLock
GlobalUnlock
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCPInfo
GetACP
EnterCriticalSection
GlobalReAlloc

user32

IsDialogMessageA
TranslateMessage
DispatchMessageA
DestroyWindow
GetMessageA
GetWindowTextA
SetDlgItemTextA
GetActiveWindow
SetWindowTextA
GetParent
ShowWindow
GetDlgItemTextA
EnableWindow
SendMessageA
GetDlgItem
SetFocus
CheckRadioButton
IsDlgButtonChecked
wsprintfA
CheckDlgButton
EndDialog
SendDlgItemMessageA
LoadStringA
DialogBoxParamA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile
Escape
CreateMetaFileA
SetWindowExtEx
SetViewportExtEx
SetMapMode
SetWindowOrgEx
CreateFontIndirectA
SetViewportOrgEx
SetTextCharacterExtra
GetTextExtentPointA
GetTextMetricsA
DeleteObject
CreateDCA
CloseMetaFile
PlayMetaFile
DeleteDC
SelectObject
CopyEnhMetaFileA
GetDeviceCaps

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
ExportCB
ExportGR
FontTblDlgProc
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
NewProfileDlgProc
ProfileDlgProc
TransformPts
dd_entry

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
EMWMF9.INI
EMWP29.INI
EMWPG9.INI
EzSamViewerOCX.inf
EzSamViewerOCX.ocx
.dll regsvr32 windows:4 windows x86 arch:x86

97c8580918333795bad67d9dd212cbdb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1175
ord1200
ord6055
ord1776
ord5290
ord3402
ord3610
ord656
ord567
ord3874
ord2302
ord537
ord3089
ord939
ord941
ord6571
ord541
ord801
ord5067
ord4635
ord4607
ord4716
ord4750
ord4608
ord5016
ord4375
ord4852
ord4834
ord3356
ord3615
ord355
ord2515
ord2915
ord940
ord5683
ord4129
ord5856
ord2763
ord5861
ord1168
ord6453
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord809
ord616
ord556
ord2642
ord3317
ord1088
ord2122
ord6334
ord4220
ord2584
ord3654
ord2438
ord6270
ord2863
ord1644
ord1146
ord6215
ord6197
ord1768
ord2086
ord3663
ord2379
ord2652
ord1669
ord2817
ord2614
ord1771
ord6366
ord2413
ord2024
ord4219
ord2581
ord4401
ord3639
ord2582
ord4402
ord3370
ord3640
ord693
ord692
ord5981
ord2938
ord6905
ord1783
ord3803
ord3301
ord2784
ord6041
ord1799
ord2623
ord614
ord290
ord4226
ord2486
ord4003
ord1601
ord3237
ord2868
ord2107
ord2841
ord5450
ord5440
ord6383
ord6394
ord861
ord1572
ord5751
ord4155
ord2990
ord3415
ord5024
ord3514
ord6344
ord5627
ord1003
ord3449
ord3787
ord3250
ord4697
ord3058
ord3065
ord6336
ord2510
ord2542
ord5244
ord5741
ord1746
ord5577
ord3172
ord5653
ord4421
ord4954
ord4859
ord4824
ord2401
ord4387
ord3454
ord3198
ord6081
ord6175
ord3365
ord4623
ord4430
ord5826
ord3675
ord437
ord734
ord2393
ord1748
ord1755
ord815
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord2396
ord3346
ord5300
ord5302
ord4079
ord5307
ord5289
ord5714
ord3670
ord561
ord6117
ord1154
ord3952
ord2724
ord6354
ord1216
ord1227
ord4698
ord1131
ord1132
ord3815
ord539
ord2764
ord4202
ord765
ord3499
ord857
ord6000
ord2117
ord2121
ord6625
ord6619
ord6565
ord3003
ord1877
ord4249
ord2687
ord6364
ord3326
ord6365
ord4472
ord5498
ord3278
ord3681
ord446
ord743
ord1177
ord4248
ord3619
ord2723
ord2390
ord3059
ord5100
ord5103
ord4467
ord4303
ord3350
ord5012
ord975
ord5472
ord3403
ord2879
ord2878
ord4151
ord4077
ord5282
ord2649
ord1665
ord4436
ord1724
ord4427
ord3657
ord706
ord1641
ord408
ord3626
ord2414
ord2151
ord613
ord5789
ord289
ord755
ord6172
ord5875
ord283
ord470
ord5256
ord1233
ord1226
ord1210
ord3711
ord2439
ord1693
ord5618
ord994
ord4342
ord4687
ord4639
ord5674
ord2156
ord4920
ord6002
ord2137
ord1963
ord5213
ord2953
ord3868
ord5150
ord4705
ord4707
ord2876
ord2998
ord5649
ord4113
ord4661
ord4660
ord4768
ord4650
ord4903
ord4548
ord4521
ord4594
ord4988
ord4925
ord4930
ord4935
ord4962
ord4909
ord4908
ord4668
ord4667
ord4666
ord4645
ord4689
ord5023
ord4654
ord4643
ord4354
ord4780
ord4649
ord4637
ord4636
ord5060
ord4584
ord4371
ord4361
ord4356
ord4739
ord4741
ord4738
ord4409
ord5008
ord4415
ord4992
ord4979
ord2488
ord3404
ord4539
ord2954
ord2384
ord6370
ord2983
ord3148
ord3260
ord4466
ord3269
ord2986
ord3080
ord4081
ord4624
ord5825
ord796
ord783
ord723
ord2636
ord3946
ord529
ord423
ord2860
ord3002
ord5333
ord2541
ord4949
ord2956
ord4459
ord2639
ord2112
ord3199
ord6069
ord5033
ord1717
ord5799
ord4299
ord3752
ord896
ord893
ord340
ord4996
ord4502
ord2011
ord5979
ord4785
ord2795
ord6877
ord535
ord6030
ord6402
ord3753
ord4278
ord2827
ord1892
ord4252
ord1212
ord4570
ord4672
ord4843
ord5011
ord4713
ord6371
ord5286
ord4438
ord3279
ord4625
ord449
ord746
ord2278
ord3797
ord668
ord1980
ord3181
ord2781
ord2770
ord356
ord690
ord6112
ord5207
ord389
ord6883
ord5608
ord4589
ord4588
ord4899
ord4370
ord4892
ord5076
ord4341
ord4349
ord4723
ord4890
ord4531
ord4545
ord4543
ord4526
ord4529
ord4524
ord4964
ord4961
ord4108
ord5240
ord3748
ord1726
ord5260
ord3400
ord4432
ord560
ord813
ord6128
ord3790
ord3731
ord4269
ord2546
ord291
ord6605
ord808
ord2301
ord2737
ord1199
ord3873
ord2645
ord394
ord696
ord3698
ord4047
ord5628
ord909
ord4185
ord6907
ord3571
ord686
ord2453
ord2862
ord2096
ord384
ord4243
ord6154
ord2530
ord4364
ord4056
ord5471
ord4121
ord2389
ord6862
ord6593
ord6594
ord5234
ord6931
ord5279
ord6860
ord5248
ord2444
ord6749
ord6491
ord620
ord6802
ord5063
ord3295
ord4366
ord1710
ord1715
ord6369
ord5064
ord3730
ord807
ord554
ord4268
ord2080
ord4284
ord5882
ord4163
ord4454
ord5086
ord2358
ord319

msvcrt

_mbsupr
__CxxFrameHandler
_purecall
wcsncpy
wcscmp
_makepath
_splitpath
_mbschr
_mbscmp
_mbsnbcpy
free
malloc
wcschr
towlower
iswalpha
towupper
atol
wcscpy
sprintf
memmove
_mbsstr
_mbsicmp
tolower
strncmp
sscanf
_ftol
strtok
_wtol
isdigit
_CxxThrowException
atoi
_ismbcdigit
_mbclen
vsprintf
_mbsinc
_wtoi
iswdigit
vswprintf
wcsstr
_mbstok
fclose
fread
fopen
time
mbstowcs
strncpy
fwrite
_mbsrchr
_wsplitpath
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
wcslen

kernel32

LocalFree
LoadLibraryA
GetProcAddress
GetProfileStringA
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
GetCurrentDirectoryA
GetUserDefaultLCID
GetLocaleInfoA
DeleteFileA
GetTempPathA
GetFullPathNameA
SetCurrentDirectoryA
GlobalAlloc
CopyFileA
GetStartupInfoA
CreateProcessA
GetModuleFileNameA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapDestroy
GetNumberFormatA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDateFormatA
GetTimeFormatA
GlobalLock
GlobalUnlock
GlobalFree
InterlockedDecrement
InterlockedIncrement
LocalUnlock
MultiByteToWideChar
LocalLock
lstrcmpiA
LocalAlloc

user32

IsWindowEnabled
GetSystemMetrics
GetKeyState
GetDesktopWindow
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard
SetParent
InvalidateRect
SystemParametersInfoA
InflateRect
FillRect
GetSysColor
UpdateWindow
SetTimer
SetWindowLongA
GetWindowLongA
IsChild
PostMessageA
OffsetRect
ScreenToClient
GetCursorPos
SetActiveWindow
KillTimer
GetWindowRect
EnableWindow
CreateMenu
GetMenuStringA
GetMenuItemInfoA
GetMenuItemCount
CallNextHookEx
GetMenuItemID
UnhookWindowsHookEx
TrackPopupMenuEx
SetWindowsHookExA
IntersectRect
TranslateMessage
DispatchMessageA
PeekMessageA
LoadStringA
LoadBitmapA
IsWindow
GetClientRect
GetParent
GetFocus
GetWindowTextLengthA
SetWindowPos
GetDlgItem
GetCapture
LoadMenuA
GetSubMenu
RegisterWindowMessageA
DestroyMenu
SetFocus
GetActiveWindow
GetAsyncKeyState
DestroyWindow
GetNextDlgGroupItem
GetTopWindow
GetWindow
IsWindowVisible
IsRectEmpty
SetRectEmpty
EnableMenuItem
GetWindowTextA
RemoveMenu
GetSystemMenu
SetRect
MapDialogRect
DrawIcon
MessageBeep
LoadIconA
CheckMenuRadioItem
ClientToScreen
AppendMenuA
CreatePopupMenu
GetClassNameA
GetNextDlgTabItem
SendMessageA

gdi32

GetObjectA
GetStockObject
GetTextMetricsA
SelectObject
CreateFontIndirectA

winspool.drv

ClosePrinter
DocumentPropertiesA
EnumPrintersA
OpenPrinterA

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueA

shell32

SHGetDesktopFolder
SHGetMalloc
SHGetSpecialFolderLocation
ShellExecuteA

comctl32

ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_GetImageCount

ole32

OleLoad
OleSave
StgOpenStorage
CoCreateInstance
CLSIDFromProgID
ReleaseStgMedium

oleaut32

VariantInit
SysAllocString
LoadRegTypeLi
VariantChangeType
SysStringLen
SysFreeString
VariantClear

urlmon

URLDownloadToCacheFileA

hncvbl

HncClearError
HncIntMulDiv
_HncLoadStringW@16
HncAnsiToUnicode
HncSetError
HncAppendBackSlash
HncExistDir
HncGetError
HncSetErrorMesgID
HncUnicodeToAnsi
HncGetWarningDetail
HncGetWarning
HncGetErrorDetail
HncDRDeleteFont
HncDRReleaseDrawHandle
HncDRDetachDC
HncDRGetTextExtentExPoint
HncDRSetTextAlign
HncPathToAbsolute
HncDRSetBkMode
HncDRSelectFont
HncDRAttachDC
HncDRGetDrawHandle
HncDRExtTextOut
HncDRGetAttachedDC
HncDRCreateFont
HncDRGetDefaultFontName
HncLoadStringExW
_sstrlcpy
_HncGetWinVersion@0
HncGetAcceleratorString
HncDRSetTextColor
_ustrlcpy
_mstrlcpy
HncSetErrorMesg
HncClearWarning

hwp5vwer

ord5

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
FontInfo.dat
HCENSMJ.HFT
HCENTSMJ.HFT
HCHGSMJ.HFT
HCHGTSMJ.HFT
HCHJSMJ.HFT
HCSPSMJ.HFT
HCSPTSMJ.HFT
HFTInfo.dat
HNCIMG.INI
HNCJPEG.FLT
.dll windows:4 windows x86 arch:x86

bfc642ee0fcdc67f08f2fc2ff720774c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
HeapFree
HeapAlloc
RtlUnwind
RaiseException
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
GetLastError
CloseHandle
InitializeCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetProcAddress
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
ReadFile
SetStdHandle
FlushFileBuffers
CreateFileA
IsBadReadPtr
IsBadCodePtr
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetFilePointer
MultiByteToWideChar
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

user32

GetDC

gdi32

CloseEnhMetaFile
GetDeviceCaps
CreateEnhMetaFileA
SaveDC
DeleteEnhMetaFile
CloseMetaFile
CreateMetaFileA
DeleteDC
GdiComment
RestoreDC
StretchDIBits
SetWindowExtEx
SetWindowOrgEx

Exports

Exports

EscapeSetup
GetFilterInfo
GetFilterPref
GetImageSize
ImportGR

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HNCPNG.FLT
.dll windows:4 windows x86 arch:x86

b58f92902d4155422820c587303371df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetDC
ReleaseDC

gdi32

GetEnhMetaFileBits
DeleteEnhMetaFile
SetEnhMetaFileBits
StretchDIBits
CloseEnhMetaFile
RestoreDC
GdiComment
SetWindowExtEx
SetWindowOrgEx
SaveDC
CreateEnhMetaFileA
GetDeviceCaps

kernel32

GetVersion
HeapFree
HeapAlloc
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
GetLastError
ReadFile
InitializeCriticalSection
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
DeleteCriticalSection
ExitProcess
RtlUnwind
CloseHandle
GetProcAddress
TerminateProcess
GetCurrentProcess
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetStdHandle
SetFilePointer
CreateFileA
FlushFileBuffers
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
SetEndOfFile
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

EscapeSetup
GetFilterInfo
GetFilterPref
ImportGR

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HSUSFL.HFT
HSUSR.HFT
HSUSRI.HFT
HSUSSP.HFT
HYHWPEQ.TTF
HncShellExt.dll
.dll regsvr32 windows:4 windows x86 arch:x86

5ac0f2bad816f1bbe1fe8518c7ed406a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileSize
ReadFile
EnterCriticalSection
CloseHandle
lstrlenW
MultiByteToWideChar
lstrlenA
SetFilePointer
InterlockedDecrement
DeleteCriticalSection
InterlockedIncrement
LeaveCriticalSection
VirtualFree
InitializeCriticalSection
DisableThreadLibraryCalls
OpenFile
WideCharToMultiByte
SetHandleCount
GetStdHandle
TlsGetValue
FlushFileBuffers
RtlUnwind
GetLastError
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
ExitProcess
VirtualAlloc
HeapDestroy
HeapCreate
HeapReAlloc
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
GetCPInfo
GetOEMCP
LoadLibraryA
LCMapStringA
GetACP
GetStringTypeW
LCMapStringW
SetStdHandle
GetStringTypeA

user32

LoadStringA

shell32

SHGetMalloc

ole32

StgOpenStorage

oleaut32

SysFreeString
LoadRegTypeLi
SysStringLen

atl

ord21
ord16
ord23
ord18
ord57
ord15
ord58
ord30
ord32

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HncVBL.dll
.dll windows:4 windows x86 arch:x86

5d3edb4fd41c2e40276ed0fc03db2ef9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetOEMCP
MultiByteToWideChar
FindNextFileA
GetACP
WideCharToMultiByte
FindFirstFileA
FindClose
GlobalReAlloc
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetPrivateProfileStringA
GetTickCount
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetFileSize
FreeLibrary
ReadFile
WriteFile
GetVersionExA
lstrcpyA
GetModuleHandleA
GetProcAddress
LoadResource
GetCurrentThreadId
CreateFileA
GetLastError
CloseHandle
CreateDirectoryA
GetDriveTypeA
GetTempFileNameA
DeleteFileA
GetCurrentDirectoryA
GetSystemDefaultLCID
GetFileAttributesA
TlsFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
FormatMessageA
LocalFree
GetUserDefaultLCID
GetLocaleInfoA
GetModuleFileNameA
LoadLibraryA
TlsGetValue
TlsSetValue
FindResourceA

user32

SendMessageA
DispatchMessageA
GetMessageA
GetKeyState
GetKeyNameTextA
MapVirtualKeyA
MessageBoxA
LoadStringA
GetSystemMetrics
GetWindowRect
SystemParametersInfoA
OffsetRect
GetDesktopWindow
InflateRect
FillRect
SetRect
IsRectEmpty
InvalidateRect
ReleaseDC
GetDC
PtInRect
LoadImageA

gdi32

GetTextColor
GetBkColor
GetBkMode
SetROP2
GetViewportExtEx
GetWindowExtEx
CreateHatchBrush
CreatePolyPolygonRgn
CreatePolygonRgn
ExtSelectClipRgn
SelectClipRgn
CreateBitmap
GetSystemPaletteEntries
GetNearestPaletteIndex
SetBitmapBits
CreatePatternBrush
CreateEllipticRgn
PtInRegion
Ellipse
Polygon
GdiFlush
GetDIBColorTable
UnrealizeObject
RectVisible
GetMapMode
Rectangle
CopyEnhMetaFileA
CopyMetaFileA
SaveDC
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
EnumMetaFile
RestoreDC
DeleteEnhMetaFile
DeleteMetaFile
GetObjectType
GetEnhMetaFileBits
GetMetaFileBitsEx
PlayEnhMetaFileRecord
SetPaletteEntries
ExtFloodFill
CreateDIBitmap
SetDIBitsToDevice
MaskBlt
PlgBlt
CreateDIBPatternBrushPt
EnumEnhMetaFile
CreateDIBPatternBrush
GetWindowOrgEx
GetViewportOrgEx
ResetDCA
GetStockObject
SetMapMode
PolyPolygon
GetFontData
GetFontLanguageInfo
EnumFontFamiliesExA
GetGlyphOutlineA
ExtTextOutA
ExtTextOutW
GetCharWidthW
CreateFontIndirectA
GetKerningPairsA
GetTextMetricsA
GetTextFaceA
SetTextAlign
StrokeAndFillPath
GetOutlineTextMetricsA
GetNearestColor
GetStretchBltMode
LPtoDP
GetClipBox
Polyline
GetROP2
LineTo
MoveToEx
StrokePath
SetBkMode
EndPath
BeginPath
SelectObject
ExtCreatePen
CreateSolidBrush
CreatePen
GetDeviceCaps
DeleteObject
GetClipRgn
CreateRectRgn
DeleteDC
CreateCompatibleBitmap
CreateCompatibleDC
CreatePalette
GetObjectA
GetPaletteEntries
BitBlt
RealizePalette
SelectPalette
CreateDIBSection
StretchBlt
SetStretchBltMode
StretchDIBits
GetDIBits
GetCurrentObject
SetDIBColorTable
SetDIBits
PlayMetaFileRecord
SetPixel
FloodFill
SetBkColor
SetTextColor
CreateBrushIndirect
CreatePenIndirect
SetBrushOrgEx

advapi32

RegCloseKey
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

shell32

SHGetMalloc
SHGetDesktopFolder
SHGetPathFromIDListA

imm32

ImmGetVirtualKey

msvcrt

_mbclen
_adjust_fdiv
_initterm
__lconv_init
wcschr
strtok
_strnicmp
atoi
strspn
strcspn
wcsstr
fgetws
_mbsicmp
_open
_lseek
_read
_close
_wtoi
bsearch
fwprintf
_errno
fgetwc
wcsncmp
wcspbrk
wcscmp
fwrite
qsort
_hypot
malloc
free
wcslen
_makepath
_splitpath
_access
sprintf
_mbsupr
wcscpy
strerror
swprintf
setlocale
_mbsrchr
_mbsinc
_mbsnbcpy
_mbspbrk
_mbschr
getenv
_mbsnbicmp
_ismbblead
wcsncpy
iswctype
_ismbcspace
_pctype
__mb_cur_max
_isctype
_ismbclower
_ismbcdigit
_ismbcalnum
_mbsnbcmp
_stat
wcscat
strncpy
_ftol
realloc
memmove
_except_handler3
calloc
strncmp
fclose
fread
fopen
ftell
fseek
_mbscmp
remove

Exports

Exports

FullKanaToHalfKana
GetMultiCode
HENCreate
HENLVOCreate
HENLVOReadBlock
HENLVORelease
HENLVOWriteBlock
HENLVZMakePassword
HENReadBlock
HENRelease
HENWriteBlock
HalfKanaToFullKana
HncAnsiToAnsi
HncAnsiToHChar
HncAnsiToUnicode
HncAppendBackSlash
HncCacheAdd
HncCacheCreate
HncCacheDelete
HncCacheEnum
HncCacheFind
HncCacheGet
HncCacheGetCount
HncCacheGetHashStrA
HncCacheGetHashStrW
HncCacheGetStat
HncCacheNext
HncCachePrev
HncCachePut
HncCacheRemove
HncClearError
HncClearWarning
HncCopyAcceleratorTable
HncCreateAcceleratorTable
HncDRAttachDC
HncDRBeginPrint
HncDRBmBufInit
HncDRBmBufRelease
HncDRBmBufSave
HncDRCalcBorderWidth
HncDRCos
HncDRCreateDIBSection
HncDRCreateDrawHandle
HncDRCreateFont
HncDRCreateFontEx
HncDRCvtEllipseArc2Pt
HncDRDLtoLLX
HncDRDLtoLLY
HncDRDPtoLP
HncDRDPtoLPEx
HncDRDStoLS
HncDRDeleteDrawHandle
HncDRDeleteFont
HncDRDetachDC
HncDRDoOnIdle
HncDRDrawArc
HncDRDrawBorderLine
HncDRDrawDiagonalLine
HncDRDrawEllipse
HncDRDrawFreeCurve
HncDRDrawLine
HncDRDrawPolygon
HncDRDrawRectangle
HncDREndPrint
HncDRExtTextOut
HncDRFindNodeIdxOnCurve
HncDRFindNodeIdxOnPolygon
HncDRFontExist
HncDRGetAngle
HncDRGetAttachedDC
HncDRGetBaseFontName
HncDRGetBrushOrg
HncDRGetCharLang
HncDRGetDefPalette
HncDRGetDefaultFontName
HncDRGetDrawHandle
HncDRGetFreeCurveBoundRect
HncDRGetHFTInfoFromDB
HncDRGetHFTTypeInfo
HncDRGetKerningValue
HncDRGetKoreanFontName
HncDRGetLogicalDpi
HncDRGetMapMode
HncDRGetROP2
HncDRGetRotatedMultiPoint
HncDRGetRotatedPoint
HncDRGetSubstFontName
HncDRGetSystemFontName
HncDRGetTTFGlyphIndex
HncDRGetTextExtentExPoint
HncDRGetTextExtentPoint
HncDRGetTextMetrics
HncDRGetViewportExt
HncDRGetViewportOrg
HncDRGetWindowExt
HncDRGetWindowOrg
HncDRGlyphExist
HncDRImAttachHWND
HncDRImCreate
HncDRImCreateIndirect
HncDRImDraw
HncDRImDrawEx
HncDRImGetAttachedHWND
HncDRImGetCurrentRect
HncDRImGetDimensions
HncDRImGetPos
HncDRImInvalidate
HncDRImIsAnimationImage
HncDRImIsAnimationOn
HncDRImIsSameImage
HncDRImIsValidFormat
HncDRImIsValidHandle
HncDRImRelease
HncDRImSetAnimation
HncDRImSetOptions
HncDRImSetPos
HncDRImSetSize
HncDRImSetToFixedFrame
HncDRImWrite
HncDRIsClockwise
HncDRIsPrinting
HncDRLLtoDLX
HncDRLLtoDLY
HncDRLPtoDP
HncDRLPtoDPEx
HncDRLStoDS
HncDRPtInArc
HncDRPtInEllipse
HncDRPtInFreeCurve
HncDRPtInLine
HncDRPtInPolygon
HncDRPtInRectangle
HncDRRealizePalette
HncDRRefreshFontList
HncDRReleaseDrawHandle
HncDRResetDC
HncDRRestoreClipRgn
HncDRSaveDDBtoDIBFile
HncDRSaveDIBSection
HncDRSelectClipPolygon
HncDRSelectClipRect
HncDRSelectDIBPatternBrush
HncDRSelectFont
HncDRSelectGradationBrush
HncDRSelectHatchBrush
HncDRSelectHatchBrushEx
HncDRSelectImageBrush
HncDRSelectImageOnGradationBrush
HncDRSelectImageOnWindowsBrush
HncDRSelectIndirectBrush
HncDRSelectLine
HncDRSelectPalette
HncDRSelectPatternBrush
HncDRSelectSolidBrush
HncDRSelectWindowsBrush
HncDRSetBkColor
HncDRSetBkMode
HncDRSetBrushOrg
HncDRSetLogicalDpi
HncDRSetMapMode
HncDRSetPrintFlags
HncDRSetPrintMode
HncDRSetROP2
HncDRSetTextAlign
HncDRSetTextColor
HncDRSetViewportExt
HncDRSetViewportOrg
HncDRSetWindowExt
HncDRSetWindowOrg
HncDRSin
HncDRSpCreateSprite
HncDRSpCreateSpriteIndirect
HncDRSpDraw
HncDRSpGetSize
HncDRSpIsInSprite
HncDRSpRelease
HncDRTextOut
HncDRUtilSimplifyPolygon
HncDestroyAcceleratorTable
HncEnumFontFamilies
HncEnumLangTTF
HncEnumRepFonts
HncExistDir
HncExitModule
HncGZCloseRead
HncGZCloseWrite
HncGZOpenRead
HncGZOpenWrite
HncGZRead
HncGZUpdateCRC
HncGZWrite
HncGetAcceleratorBinding
HncGetAcceleratorString
HncGetError
HncGetErrorDetail
HncGetFirstModule
HncGetGlyphOutline
HncGetHFTCharWidth
HncGetHFTFontStyles
HncGetMDSRectFromPoint
HncGetModuleDef
HncGetNextMask
HncGetNextModule
HncGetResourceExt
HncGetResourcePath
HncGetSubModuleFunc
HncGetUserCP
HncGetUserLCID
HncGetWarning
HncGetWarningDetail
HncHCharToAnsi
HncHCharToUnicode
HncHexStrToUniStr
HncInitModule
HncIntMulDiv
HncLoadStringExA
HncLoadStringExW
HncMakeFontListFile
HncMultiUnicodeToUniCode
HncPathCreate
HncPathMakeTemp
HncPathMakeTempEx
HncPathToAbsolute
HncPathToLongPath
HncPathToRelative
HncRemoveBackSlash
HncRestoreError
HncScanHFTs
HncSetError
HncSetErrorEx
HncSetErrorMesg
HncSetErrorMesgID
HncSetFileError
HncSetWarning
HncSetWarningEx
HncSortIndexToUnicode
HncStoreError
HncTranslateAccelerator
HncUniHalfFullChange
HncUnicodeToAnsi
HncUnicodeToHChar
HncUnicodeToSortIndex
IsInKs
IsJpnBaseHalfKatakana
IsJpnBaseHiragana
IsJpnBaseKatakana
IsJpnSmallHalfKatakana
IsJpnSmallHiragana
IsJpnSmallKatakana
LoadUnicodeTbl
MHEnCodeLine
SUni2Uni_JamoIndex
ToLargeKanaStr
ToSmallKanaStr
Uni2SUni_JamoIndex
UniHangul2UniKSJaso
UniKSJaso2UniHangul
UnloadUnicodeTbl
_CloseFontCfg@4
_FindCfgSection@8
_GetCfgSection@16
_GetCfgString@20
_GetCfgStringEx@20
_HncAbbreviateName@12
_HncAsciiToBase64@12
_HncBase64ToAscii@8
_HncCopyFile@8
_HncDRBitBltLineBuffer@4
_HncDRBitBltLineBufferEx@4
_HncDRCheckPseudoFontName@8
_HncDRDrawFillRectangle@40
_HncDRDrawImageToLineBuffer@24
_HncDRDrawLineToLineBuffer@24
_HncDRDrawPolyPolygon@16
_HncDREndPageBackGround@8
_HncDRGetTTFFromHFTInfo@12
_HncDRHalftoneImageBlt@32
_HncDRImDrawExt@32
_HncDRImGetDimensionsExt@20
_HncDRImUpdateLoadImage@8
_HncDRImWriteDLL@8
_HncDRPrepareLineBuffer@8
_HncDRSelectNullBrush@4
_HncGZOpenReadOfCustomMem@12
_HncGZOpenWriteOfCustomMem@12
_HncGetFileTitle@12
_HncGetTTFCharsets@4
_HncGetWinVersion@0
_HncLoadStringW@16
_HncLoadUserDefineRepFontList@8
_HncPathMakeImageTemp@8
_HncSaveUserDefineRepFontList@4
_HncSetWarningMesg@4
_HncSetWarningMesgID@8
_OpenFontCfg@8
__HncDrImCheckDimensions@20
__MAKE_UCSCHAR@8
__SURCHAR_TO_UCSCHAR@4
__UCSCHAR_TO_SURCHAR@4
__ustricmp@8
__ustrnicmp@12
_mstrcut
_mstrlcat
_mstrlcpy
_mstrtriml
_mstrtrimr
_sstrcut
_sstrlcat
_sstrlcpy
_sstrtriml
_sstrtrimr
_ustrcut
_ustrlcat
_ustrlcpy
_ustrtriml
_ustrtrimr

Sections

.text
Size: 324KB - Virtual size: 322KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HncVBL.enu
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HncVBL.kor
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Hwp5Vwer.dll
.dll regsvr32 windows:4 windows x86 arch:x86

4a4a751f0842e17d1640d166d36ecad6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointer
SetEndOfFile
GetProfileStringA
LocalFree
FormatMessageA
lstrcpyA
GetVersion
lstrcmpiA
GetModuleFileNameA
lstrlenW
lstrlenA
GetModuleHandleA
GetShortPathNameA
InitializeCriticalSection
WideCharToMultiByte
DisableThreadLibraryCalls
DeleteCriticalSection
HeapDestroy
GetCurrentProcess
FlushInstructionCache
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetUserDefaultLCID
CreateFileA
ReadFile
CloseHandle
GetLastError
CopyFileA
SetFileAttributesA
GetACP
DeleteFileA
LoadLibraryA
GetProcAddress
FreeLibrary
GetLocalTime
GetSystemTime
SystemTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDateFormatA
GetTimeFormatA
InterlockedDecrement
GetTickCount
GlobalReAlloc
InterlockedIncrement
MulDiv
GlobalSize
GetFileAttributesA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
MultiByteToWideChar
WriteFile

user32

LoadImageA
GetPriorityClipboardFormat
IsClipboardFormatAvailable
GetClipboardFormatNameW
PostMessageA
ReleaseCapture
PtInRect
PeekMessageA
SetCapture
GetCursorPos
ScreenToClient
GetClientRect
ClientToScreen
DrawIcon
LoadIconA
SetCursor
LoadCursorA
UnionRect
IsRectEmpty
AppendMenuA
InvalidateRgn
GetDoubleClickTime
LoadStringA
GetWindowRect
WindowFromPoint
LoadBitmapA
EqualRect
IntersectRect
DefWindowProcA
MoveWindow
UpdateWindow
CreateWindowExA
EndPaint
BeginPaint
ScrollWindow
SetFocus
SetTimer
KillTimer
GetCaretBlinkTime
SetWindowLongA
RegisterClassExA
wsprintfA
GetClassInfoExA
GetWindowLongA
CallWindowProcA
GetParent
InflateRect
FillRect
CopyRect
GetSysColor
DestroyCaret
GetSysColorBrush
GetMessageTime
CreateCaret
GetWindowTextA
InvalidateRect
OffsetRect
SetRect
GetKeyState
ReleaseDC
InvertRect
GetDC
SetCaretPos
GetCapture

gdi32

CreatePalette
SetPixel
Ellipse
RoundRect
CreateDCA
EndPage
AbortDoc
EndDoc
StartDocA
SetAbortProc
Escape
DeleteMetaFile
GetSystemPaletteEntries
PtInRegion
SelectClipRgn
CreateEllipticRgn
LPtoDP
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteDC
CreateBitmap
CreatePatternBrush
SetBkMode
GetObjectA
CreateSolidBrush
Rectangle
SetTextAlign
RectVisible
DeleteObject
GetMetaFileA
CopyMetaFileA
IntersectClipRect
SetROP2
OffsetRgn
GetRandomRgn
CreateRectRgn
RealizePalette
SelectPalette
GetRgnBox
CreatePen
SelectObject
MoveToEx
LineTo
GetStockObject
GetDeviceCaps
StartPage

winspool.drv

DocumentPropertiesA
OpenPrinterA
GetPrinterA
DeviceCapabilitiesA
ClosePrinter

advapi32

RegEnumKeyExA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
GetUserNameA
RegDeleteValueA
RegQueryValueExA

shell32

DragQueryFileA

ole32

CLSIDFromProgID
StgOpenStorage
OleRun
CLSIDFromString
OleSetClipboard
ProgIDFromCLSID
CoCreateInstance
OleQueryCreateFromData
OleQueryLinkFromData
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
GetHGlobalFromILockBytes
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
DoDragDrop
OleGetClipboard
OleIsCurrentClipboard
ReleaseStgMedium
StgCreateDocfile
CoTaskMemFree
StringFromCLSID
OleFlushClipboard

oleaut32

SysAllocString
SysFreeString
VariantInit
VariantClear
SysAllocStringLen

imm32

ImmGetVirtualKey

hncvbl

HncDRSetLogicalDpi
_mstrlcpy
_sstrtrimr
HENLVOCreate
HENCreate
HncGZUpdateCRC
HENWriteBlock
HENLVOWriteBlock
HENReadBlock
HENLVOReadBlock
HncGZCloseRead
HncGZCloseWrite
HncGZOpenRead
HncGZOpenWrite
HENRelease
HENLVORelease
HncInitModule
HncExitModule
HncDRSetViewportOrg
HncDRSin
HncDRCos
HncGetUserLCID
HncCacheGetHashStrA
HncDRSetWindowExt
HncDREndPrint
HncDRBeginPrint
HncDRSetPrintMode
HncDRSetPrintFlags
HncDRImAttachHWND
HncDRImIsValidHandle
_HncDRImGetDimensionsExt@20
_HncDRImDrawExt@32
HncDRImCreate
HncDRGetWindowExt
HncDRGetViewportExt
HncDRTextOut
HncGetResourceExt
HncDRSelectClipPolygon
_HncGetTTFCharsets@4
_HncDRCheckPseudoFontName@8
_sstrlcpy
_HncSetWarningMesg@4
HncAnsiToAnsi
HncAnsiToHChar
HncHCharToUnicode
_HncSetWarningMesgID@8
HncDRDPtoLPEx
HncDRBmBufInit
HncDRBmBufSave
HncDRBmBufRelease
HncDRDLtoLLY
HncDRSelectClipRect
HncDRSetViewportExt
HncDRSetMapMode
HncDRAttachDC
HncDRGetDrawHandle
HncDRLPtoDPEx
HncDRGetAttachedDC
HncDRGetViewportOrg
HncDRCreateFontEx
HncDRSetTextColor
HncDRSetBkColor
HncDRSetBkMode
HncDRSetTextAlign
HncDRSelectFont
HncDRDeleteFont
HncDRGetKerningValue
HncDRExtTextOut
HncHexStrToUniStr
HncDRGetDefaultFontName
HncPathMakeTemp
HncDRSaveDDBtoDIBFile
__ustrnicmp@12
_HncLoadStringW@16
HncDRSetBrushOrg
_HncGetWinVersion@0
HENLVZMakePassword
HncDRLLtoDLY
HncDRGetMapMode
HncDRImRelease
HncDRSelectImageOnWindowsBrush
HncDRSelectImageOnGradationBrush
HncDRSelectImageBrush
HncDRImSetSize
HncDRImGetDimensions
HncDRImSetOptions
HncDRGetTextExtentExPoint
HncDRSelectGradationBrush
HncDRSelectWindowsBrush
_HncDRSelectNullBrush@4
HncDRImSetPos
HncDRImIsAnimationImage
HncDRCalcBorderWidth
HncDRGetRotatedPoint
HncDRGetAngle
HncDRDrawLine
HncDRPtInLine
HncDRPtInRectangle
HncDRDrawEllipse
HncDRDrawArc
HncDRPtInEllipse
HncDRRestoreClipRgn
HncCacheGet
HncCachePut
HncCacheGetHashStrW
HncDRGetHFTTypeInfo
HncDRPtInArc
HncDRDrawPolygon
HncDRPtInPolygon
HncDRFindNodeIdxOnPolygon
HncDRGetFreeCurveBoundRect
HncDRDrawFreeCurve
HncDRPtInFreeCurve
HncDRResetDC
HncDRFontExist
HncDRGetSystemFontName
HncDRGetSubstFontName
HncDRGetTextMetrics
HncEnumLangTTF
HncEnumFontFamilies
HncEnumRepFonts
HncCacheEnum
HncCacheNext
HncPathToAbsolute
HncUnicodeToHChar
HncGetError
HncSetErrorMesgID
HncCacheAdd
HncCacheGetCount
HncCacheFind
HncCacheRemove
HncCacheCreate
HncCacheDelete
HncDRGetTextExtentPoint
HncDRSetROP2
HncDRDLtoLLX
HncDRSelectSolidBrush
HncDRCreateFont
HncDRDoOnIdle
HncDRSpIsInSprite
HncDRSpCreateSprite
HncDRSpGetSize
HncDRLStoDS
HncDRSpDraw
HncDRSpCreateSpriteIndirect
HncDRSpRelease
HncDRDetachDC
HncDRReleaseDrawHandle
HncSetError
HncTranslateAccelerator
HncCopyAcceleratorTable
HncCreateAcceleratorTable
HncDestroyAcceleratorTable
HncGetAcceleratorBinding
HncAnsiToUnicode
HncGetAcceleratorString
_ustrlcat
_ustrlcpy
HncIntMulDiv
HncDRGetCharLang
HncDRCreateDrawHandle
HncDRDeleteDrawHandle
HncPathMakeTempEx
HncUnicodeToAnsi
HncGZRead
HncGZWrite
HncClearError
HncSetFileError
__ustricmp@8
HncDRDrawBorderLine
HncDRDrawDiagonalLine
HncDRSelectLine
HncDRDPtoLP
HncDRLPtoDP
HncDRLLtoDLX
HncDRDrawRectangle
_HncDRDrawFillRectangle@40
HncDRFindNodeIdxOnCurve

msvcrt

strchr
free
wcscpy
wcsstr
atof
??2@YAPAXI@Z
sprintf
memmove
_CIacos
_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
_ismbcdigit
_mbclen
vsprintf
_mbsinc
_mbslwr
iswdigit
vswprintf
wcsrchr
strtok
_wcslwr
strncmp
iswspace
wcstod
wcstok
_mbsstr
atoi
_mbsnbcpy
strstr
_stricmp
rename
_wmakepath
time
srand
rand
strncpy
_wtol
_CxxThrowException
_findfirst
_findnext
_findclose
_wfopen
fread
fclose
toupper
_hypot
_mbsicmp
_wremove
realloc
_filelength
_wstat
_read
_wcsupr
_open
_write
_close
_splitpath
_makepath
_getcwd
_chdir
_fullpath
_wsplitpath
_access
_chmod
remove
qsort
_mbscmp
_purecall
wcscmp
wcslen
wcsncpy
wcsncmp
wcschr
__CxxFrameHandler
_wtoi
??3@YAXPAX@Z
swprintf
wcscat
_ftol
ceil
floor
_CIpow
modf
_CIasin
malloc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
HwpGetEngine

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Hwp5Vwer.enu
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Hwp5Vwer.kor
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HwpView.enu
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 282B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HwpView.exe
.exe windows:4 windows x86 arch:x86

a7c9a0a0f2079428a1073fad78350be7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

hwp5vwer

ord5

hncvbl

_mstrlcpy
_HncLoadStringW@16
HncDRGetDefaultFontName
HncDRCreateFont
HncDRGetAttachedDC
HncDRExtTextOut
HncDRGetDrawHandle
HncDRAttachDC
HncDRSelectFont
HncDRSetBkMode
HncDRSetTextColor
HncDRSetTextAlign
HncDRGetTextExtentExPoint
HncDRDetachDC
HncDRReleaseDrawHandle
HncDRDeleteFont
HncExitModule
HncGetResourcePath
HncInitModule
HncGetWarning
HncGetWarningDetail
HncClearWarning
_sstrlcpy
HncLoadStringExW
HncSetError
HncGetAcceleratorString
HncGetMDSRectFromPoint
HncSetErrorMesg
HncIntMulDiv
HncSetErrorMesgID
HncPathToLongPath
HncGetResourceExt
HncPathToAbsolute
HncExistDir
HncAppendBackSlash
HncClearError
_HncGetWinVersion@0
HncGetError
HncGetErrorDetail
HncUnicodeToAnsi
HncAnsiToUnicode
_ustrlcpy

mfc42

ord2635
ord2036
ord3521
ord334
ord6137
ord5914
ord823
ord4159
ord6117
ord2621
ord1134
ord1232
ord1146
ord1200
ord5214
ord296
ord5572
ord2915
ord537
ord715
ord415
ord2725
ord6402
ord4123
ord5289
ord6467
ord5265
ord4376
ord4853
ord4998
ord2514
ord6052
ord4078
ord1775
ord4407
ord5241
ord2385
ord5163
ord6374
ord4353
ord5280
ord3798
ord4837
ord4441
ord2648
ord2055
ord6376
ord3749
ord5065
ord1727
ord5261
ord2446
ord2124
ord5277
ord4627
ord4425
ord3597
ord324
ord641
ord4234
ord6199
ord3092
ord2818
ord4710
ord818
ord2463
ord1651
ord567
ord4698
ord5130
ord2614
ord6756
ord2629
ord1821
ord648
ord3495
ord1236
ord1152
ord939
ord535
ord4589
ord4588
ord4899
ord4370
ord4892
ord5076
ord4341
ord4723
ord4890
ord4531
ord4545
ord4543
ord4526
ord4529
ord4524
ord4964
ord4961
ord4108
ord6055
ord1776
ord5240
ord5290
ord3748
ord1726
ord5260
ord4432
ord813
ord560
ord1945
ord4273
ord4349
ord4563
ord5092
ord4554
ord5122
ord5127
ord5128
ord1894
ord4254
ord4957
ord4861
ord4826
ord3187
ord4950
ord2171
ord5020
ord4517
ord4916
ord5002
ord4491
ord4605
ord5000
ord4416
ord5090
ord5501
ord4628
ord4657
ord5752
ord2991
ord3417
ord5025
ord3514
ord6344
ord5627
ord1003
ord3449
ord3787
ord3250
ord4697
ord3060
ord3066
ord2510
ord2542
ord5244
ord5742
ord1747
ord5577
ord3172
ord5654
ord4956
ord4387
ord3454
ord3198
ord3261
ord3280
ord4430
ord5826
ord748
ord456
ord4825
ord2727
ord2730
ord2729
ord2393
ord2074
ord3442
ord5510
ord1748
ord1647
ord429
ord1755
ord335
ord5021
ord2402
ord4860
ord6080
ord2841
ord3813
ord6175
ord4640
ord1865
ord2864
ord2524
ord448
ord2884
ord4423
ord2004
ord4623
ord4494
ord6327
ord2437
ord2107
ord5450
ord5440
ord6383
ord6394
ord2386
ord1876
ord4005
ord2014
ord6395
ord5455
ord4483
ord1781
ord2793
ord2955
ord2858
ord5652
ord5019
ord5106
ord4921
ord5003
ord4730
ord4669
ord4490
ord4345
ord5022
ord4492
ord4512
ord4962
ord971
ord4645
ord5508
ord5956
ord4037
ord5824
ord420
ord720
ord5998
ord2186
ord2162
ord2179
ord3216
ord2254
ord2161
ord2178
ord2394
ord1992
ord6009
ord1269
ord4989
ord4931
ord4936
ord3272
ord3579
ord729
ord3258
ord2962
ord430
ord2058
ord4382
ord4388
ord4338
ord4493
ord1259
ord3432
ord4012
ord4838
ord4374
ord4111
ord4778
ord2643
ord1662
ord445
ord742
ord1205
ord1233
ord4508
ord2371
ord4220
ord2584
ord3654
ord2438
ord6270
ord2863
ord1644
ord2379
ord6215
ord3797
ord4464
ord6128
ord3752
ord5799
ord6197
ord4299
ord6027
ord1886
ord2558
ord2087
ord6068
ord6000
ord2117
ord6625
ord4457
ord1176
ord6069
ord2011
ord703
ord603
ord3870
ord2918
ord5775
ord3318
ord2801
ord273
ord403
ord4591
ord5981
ord4995
ord4701
ord5237
ord5030
ord940
ord2764
ord4202
ord4129
ord5683
ord4362
ord2997
ord6571
ord1133
ord2723
ord2390
ord3059
ord5100
ord5103
ord4467
ord4303
ord3350
ord5012
ord2879
ord2878
ord4077
ord5282
ord2649
ord1665
ord4436
ord4427
ord796
ord529
ord3403
ord3402
ord3610
ord656
ord5503
ord2302
ord3089
ord541
ord801
ord5067
ord4635
ord4607
ord4716
ord4750
ord4608
ord5016
ord4375
ord4852
ord4834
ord3356
ord3615
ord355
ord2515
ord5856
ord2763
ord6453
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord809
ord616
ord556
ord2642
ord3317
ord1088
ord2122
ord6334
ord1768
ord2086
ord2817
ord4275
ord2582
ord4402
ord3370
ord3640
ord1771
ord6366
ord2413
ord2024
ord4219
ord2581
ord4401
ord3639
ord693
ord692
ord2938
ord6905
ord1783
ord3803
ord3301
ord2784
ord3873
ord926
ord2859
ord6379
ord5718
ord6380
ord1871
ord414
ord5859
ord384
ord686
ord3742
ord3571
ord3626
ord640
ord2414
ord2405
ord2971
ord2754
ord5875
ord5785
ord1641
ord1640
ord323
ord755
ord470
ord6442
ord3920
ord2567
ord3693
ord5053
ord2408
ord2096
ord5788
ord4133
ord4297
ord283
ord3790
ord6828
ord4945
ord3254
ord2440
ord1694
ord5006
ord4470
ord736
ord450
ord439
ord747
ord5495
ord4460
ord6064
ord5656
ord5252
ord975
ord4704
ord5475
ord2301
ord2737
ord394
ord696
ord3698
ord765
ord4047
ord5628
ord909
ord4185
ord3499
ord1823
ord4958
ord3407
ord4990
ord4927
ord4932
ord4937
ord4717
ord4686
ord4855
ord5017
ord5108
ord4912
ord4646
ord4980
ord4520
ord4993
ord4537

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
??1type_info@@UAE@XZ
_onexit
__dllonexit
_wtol
_ismbcdigit
_mbclen
vsprintf
_mbsinc
tolower
_wtoi
iswdigit
vswprintf
_setmbcp
__CxxFrameHandler
_access
sprintf
wcslen
strchr
_splitpath
wcscat
wcscpy
_purecall
wcsncpy
wcscmp
_wcsrev
strstr
sscanf
_makepath
strncpy
free
malloc
wcschr
towlower
iswalpha
towupper
atol
strtok
strncmp
strrchr
_ftol
_wsplitpath
atoi
isdigit
_CxxThrowException
realloc
calloc
wcsstr
_controlfp

kernel32

LockResource
LoadResource
FindResourceA
lstrcmpiA
InterlockedIncrement
InterlockedDecrement
LocalAlloc
LocalLock
LocalFree
MultiByteToWideChar
LocalUnlock
GetTempPathA
FindFirstFileA
FindNextFileA
FindClose
RemoveDirectoryA
GetProfileStringA
GetCurrentDirectoryA
FreeLibrary
LoadLibraryA
GlobalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTimeFormatA
GetNumberFormatA
GetStartupInfoA
CreateProcessA
GlobalAddAtomA
OpenFileMappingA
MapViewOfFile
CloseHandle
GetLastError
lstrlenA
GetModuleFileNameA
lstrcpyA
GetProcAddress
GetModuleHandleA
lstrcpynA
GetDriveTypeA
DeleteFileA
SetFileAttributesA
CopyFileA
GlobalFree
GlobalUnlock
GlobalLock
GetDateFormatA
UnmapViewOfFile

user32

GetSystemMenu
MapDialogRect
TranslateMessage
MessageBeep
GetClassNameA
GetNextDlgTabItem
GetWindow
GetTopWindow
GetNextDlgGroupItem
DestroyWindow
GetAsyncKeyState
GetDlgItem
SetParent
GetWindowTextA
GetWindowTextLengthA
ClientToScreen
CheckMenuRadioItem
AppendMenuA
CreatePopupMenu
FrameRect
LoadCursorA
GetCapture
ReleaseCapture
GetSysColor
InflateRect
ReleaseDC
IntersectRect
SubtractRect
GetDC
RemoveMenu
GetKeyState
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
LoadStringA
IsWindowEnabled
LockWindowUpdate
SetWindowLongA
SetWindowPos
GetLastActivePopup
RegisterWindowMessageA
wsprintfA
LoadIconA
DrawIcon
DefWindowProcA
BringWindowToTop
SystemParametersInfoA
GetWindowRect
GetSystemMetrics
OffsetRect
InvalidateRect
UpdateWindow
SetActiveWindow
SetFocus
ShowScrollBar
GetWindowLongA
ScreenToClient
GetCursorPos
CreateMenu
LoadMenuA
GetSubMenu
SetRect
IsIconic
GetMenu
SetMenu
WinHelpA
MessageBoxA
FillRect
GetActiveWindow
LoadBitmapA
EnableMenuItem
DestroyMenu
SetRectEmpty
IsRectEmpty
GetClientRect
PostQuitMessage
GetParent
IsWindow
GetDesktopWindow
EnableWindow
SendMessageA
DestroyIcon
IsWindowVisible
PeekMessageA
PostMessageA
DispatchMessageA
GetFocus

gdi32

GetObjectA
CreateFontIndirectA
GetStockObject
SetPixelV
CreatePen
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
SetPixel
GetDeviceCaps
GetTextExtentPoint32A

winspool.drv

ClosePrinter
OpenPrinterA
EnumPrintersA
DocumentPropertiesA

advapi32

RegQueryValueA
RegCloseKey
RegCreateKeyA
RegOpenKeyExA
RegDeleteKeyA
RegSetValueA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

shell32

SHAppBarMessage
SHGetDesktopFolder
SHGetMalloc
SHGetSpecialFolderLocation
DragQueryFileA
DragFinish
ExtractIconA
ShellExecuteA

comctl32

ImageList_AddMasked
ord8
ImageList_GetImageCount
ImageList_Draw
ImageList_ReplaceIcon

ole32

ReleaseStgMedium
CoRegisterMessageFilter
CoCreateInstance
CLSIDFromProgID
OleLoad
OleSave

oleaut32

SysAllocString
SysFreeString

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

Sections

.text
Size: 284KB - Virtual size: 281KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
HwpView.kor
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 272B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IBBMP9.FLT
.dll windows:4 windows x86 arch:x86

164b9e403de4c93528b841759fed1e9c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetStartupInfoA
DeleteCriticalSection
SetFilePointer
InitializeCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
GetFileType
RtlUnwind
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetEndOfFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InterlockedDecrement
InterlockedIncrement
GetStdHandle
SetHandleCount
ReadFile
HeapAlloc
CloseHandle
GetLastError
LeaveCriticalSection
EnterCriticalSection
HeapFree
GetVersion
GetCommandLineA
GetVersionExA

user32

ReleaseDC
GetDC

gdi32

SetWindowExtEx
StretchDIBits
RestoreDC
CloseEnhMetaFile
GdiComment
DeleteEnhMetaFile
SaveDC
CreateEnhMetaFileA
GetDeviceCaps
SetWindowOrgEx

Exports

Exports

EscapeSetup
GetFilterInfo
GetFilterPref
ImportGR

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IBGIF9.FLT
.dll windows:4 windows x86 arch:x86

2846745fb86d65134203369116914999

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
RtlUnwind
HeapFree
HeapAlloc
GetCommandLineA
EnterCriticalSection
LeaveCriticalSection
GetLastError
CloseHandle
ReadFile
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
SetFilePointer
InitializeCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetProcAddress
GetModuleHandleA
HeapDestroy
HeapCreate
VirtualFree
ExitProcess
VirtualAlloc
HeapReAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetStdHandle
FlushFileBuffers
CreateFileA
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetEndOfFile
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

user32

ReleaseDC
GetDC

gdi32

CloseEnhMetaFile
GetDeviceCaps
CreateEnhMetaFileA
SaveDC
SetWindowOrgEx
SetEnhMetaFileBits
DeleteEnhMetaFile
GetEnhMetaFileBits
GdiComment
RestoreDC
StretchDIBits
SetWindowExtEx

Exports

Exports

EscapeSetup
GetFilterInfo
GetFilterPref
ImportGR

Sections

.text
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IBPCD9.INI
IBPCX9.FLT
.dll windows:4 windows x86 arch:x86

0639ce71a279dedf81c22e2c4106b1c3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord111
ord2818
ord1146
ord1033
ord1147
ord113
ord112
ord114
ord3102
ord637
ord518
ord3004
ord2817
ord102
ord3101
ord3100
ord110
ord3113
ord3103
ord639
ord1314
ord519
ord2563
ord5
ord2822
ord2820
ord2819
ord2562
ord2821
ord2831
ord3
ord4

kernel32

TlsAlloc
GetCurrentProcess
SetLastError
TlsGetValue
GetLastError
TlsSetValue
GetCurrentThreadId
TlsFree
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
HeapDestroy
HeapCreate
FreeEnvironmentStringsA
ExitProcess
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
GetVersion
TerminateProcess
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetModuleHandleA
HeapFree
VirtualAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
SetStdHandle
SetFilePointer
RaiseException
InitializeCriticalSection
GetCommandLineA
LocalFree
GetModuleFileNameA
GlobalSize
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
LocalAlloc
LocalLock
LocalHandle
LocalUnlock
HeapAlloc
GetACP
GetOEMCP
MultiByteToWideChar

user32

GetActiveWindow
LoadStringA

gdi32

DeleteMetaFile
DeleteEnhMetaFile
GetObjectType
DeleteDC
GetDeviceCaps
CreateDCA

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFileInfo
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IBTIF9.FLT
.dll windows:4 windows x86 arch:x86

f9070c550d83f3d92460c4aa8773c629

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
HeapAlloc
RtlUnwind
GetCommandLineA
HeapFree
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetProcAddress
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
ReadFile
SetFilePointer
CloseHandle
HeapSize
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetStdHandle
FlushFileBuffers
CreateFileA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile

user32

GetDC

gdi32

GetDeviceCaps
CreateMetaFileA
SaveDC
SetWindowOrgEx
DeleteDC
GdiComment
CloseEnhMetaFile
CreateEnhMetaFileA
CloseMetaFile
RestoreDC
StretchDIBits
SetWindowExtEx

Exports

Exports

EscapeSetup
GetFilterInfo
GetFilterPref
ImportGR

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IBXPM9.INI
IMCD39.FLT
.dll windows:4 windows x86 arch:x86

9a6ba41559bcd751161d5a761047aadf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3110
ord1312
ord1663
ord1313
ord1305
ord1303
ord771
ord3107
ord1302
ord3113
ord776
ord11
ord2825
ord2824
ord1031
ord1148
ord1746
ord3103
ord3109
ord1298
ord1290
ord1292
ord1790
ord1295
ord1296
ord1775
ord1282
ord1307
ord1310
ord1774
ord1284
ord1309
ord1782
ord1294
ord1283
ord3108
ord1035
ord10
ord1308
ord1744
ord1406
ord773
ord1146
ord1033
ord1147
ord1028
ord1293
ord1030
ord1039
ord2826
ord1151
ord1025
ord1042
ord1043
ord1041
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord4
ord639
ord519
ord1314
ord3
ord2821
ord2819
ord269
ord2563
ord2562
ord1405
ord1402
ord3100
ord637
ord1745
ord110
ord3101
ord3122
ord2817
ord3004
ord514
ord518
ord1404
ord1403
ord2818
ord2721
ord2725

kernel32

HeapDestroy
GetModuleHandleA
GetVersion
RaiseException
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCommandLineA
GetProcAddress
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetWindowsDirectoryA
HeapFree
VirtualAlloc
LoadLibraryA
SetFilePointer
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
WideCharToMultiByte
HeapAlloc
OpenFile
GlobalHandle
GetModuleFileNameA
LocalAlloc
LocalLock
LocalHandle
LocalUnlock
LocalFree
GlobalReAlloc
GlobalAlloc
GlobalUnlock
GetPrivateProfileStringA
GlobalLock
GlobalFree
GlobalSize

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteMetaFile
CreateDCA
DeleteEnhMetaFile
GetObjectType
DeleteDC
DeleteObject
SelectObject
GetTextExtentPointA
CreateFontIndirectA
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
SetViewportOrgEx
SetMapMode

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCD49.FLT
.dll windows:4 windows x86 arch:x86

87b96f2e2e10ac9a05385224fcb90709

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3108
ord1028
ord3107
ord1745
ord1744
ord1746
ord1663
ord2310
ord1303
ord1302
ord1312
ord1313
ord1305
ord771
ord1294
ord1405
ord1402
ord1403
ord1406
ord1404
ord776
ord773
ord1775
ord1282
ord1307
ord1310
ord1337
ord1293
ord1295
ord1790
ord1296
ord1298
ord11
ord2825
ord2824
ord1031
ord3110
ord3109
ord3103
ord1292
ord2826
ord1151
ord1025
ord1774
ord1284
ord1309
ord1782
ord1283
ord1308
ord1146
ord1033
ord1147
ord1039
ord1042
ord1043
ord1041
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord4
ord639
ord519
ord1314
ord3
ord2821
ord2819
ord2563
ord2562
ord3113
ord1148
ord3122
ord2818
ord3101
ord110
ord518
ord2817
ord3004
ord641
ord637
ord514
ord1035
ord10
ord3100
ord2721
ord2725

kernel32

WriteFile
GetVersion
RaiseException
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetModuleHandleA
SetFilePointer
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
HeapFree
VirtualAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
SetStdHandle
LCMapStringA
LCMapStringW
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
WideCharToMultiByte
HeapAlloc
GetWindowsDirectoryA
OpenFile
GetModuleFileNameA
LocalAlloc
LocalLock
LocalHandle
LocalUnlock
LocalFree
GlobalReAlloc
GlobalAlloc
GlobalUnlock
GetPrivateProfileStringA
GlobalFree
GlobalLock
GlobalSize

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
DeleteMetaFile
GetObjectType
DeleteDC
SelectObject
GetTextExtentPointA
DeleteObject
SetWindowOrgEx
SetViewportOrgEx
CreateFontIndirectA
CreateDCA
SetWindowExtEx
SetViewportExtEx
SetMapMode

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCD59.FLT
.dll windows:4 windows x86 arch:x86

7be95d453041a8a170c6d612517c8598

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3107
ord3108
ord1028
ord1745
ord1744
ord1746
ord3109
ord3110
ord3113
ord1303
ord1302
ord1312
ord1313
ord1305
ord771
ord1294
ord2310
ord1663
ord1405
ord1406
ord1404
ord776
ord773
ord1775
ord1282
ord1307
ord1310
ord1337
ord1293
ord1295
ord1790
ord1296
ord1298
ord11
ord2825
ord2824
ord1402
ord1148
ord1403
ord1031
ord1292
ord2826
ord1151
ord1025
ord1774
ord1284
ord1309
ord1782
ord1283
ord1308
ord1146
ord1033
ord1147
ord1039
ord1042
ord1043
ord1041
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord4
ord639
ord519
ord1314
ord3
ord2821
ord2819
ord2563
ord2562
ord3122
ord3100
ord772
ord3103
ord110
ord3101
ord518
ord2817
ord3004
ord641
ord637
ord514
ord1035
ord10
ord2818
ord2721
ord2725

kernel32

WriteFile
GetVersion
RaiseException
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetProcAddress
GetModuleHandleA
SetFilePointer
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCommandLineA
HeapFree
VirtualAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
SetStdHandle
LCMapStringA
LCMapStringW
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
WideCharToMultiByte
HeapAlloc
GetWindowsDirectoryA
OpenFile
GetModuleFileNameA
LocalAlloc
LocalLock
LocalHandle
LocalUnlock
LocalFree
GlobalReAlloc
GlobalSize
GlobalFree
GetPrivateProfileStringA
GlobalUnlock
GlobalLock
GlobalAlloc

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteMetaFile
CreateDCA
DeleteEnhMetaFile
GetObjectType
DeleteDC
SelectObject
GetTextExtentPointA
DeleteObject
SetWindowOrgEx
SetViewportOrgEx
CreateFontIndirectA
SetViewportExtEx
SetWindowExtEx
SetMapMode

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCD69.FLT
.dll windows:4 windows x86 arch:x86

7b64e735dd4824abd2adf11d8da0920c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord2818
ord259
ord514
ord769
ord263
ord260
ord641
ord1663
ord3004
ord2817
ord3122
ord3101
ord639
ord3108
ord3103
ord3113
ord3110
ord3109
ord2310
ord776
ord251
ord1745
ord252
ord1744
ord1746
ord1302
ord1303
ord1310
ord3112
ord11
ord10
ord1774
ord1775
ord1282
ord1307
ord1284
ord1309
ord1782
ord1294
ord1283
ord1308
ord1377
ord1378
ord1393
ord1383
ord1376
ord1293
ord1405
ord1402
ord1404
ord1403
ord1406
ord1313
ord1305
ord1335
ord524
ord637
ord518
ord6
ord771
ord1146
ord1147
ord1031
ord1337
ord2825
ord2824
ord1311
ord1039
ord2826
ord1042
ord1043
ord1041
ord1025
ord1151
ord1028
ord1030
ord1144
ord1382
ord254
ord1384
ord1362
ord1365
ord1361
ord1297
ord1363
ord1364
ord1360
ord1035
ord253
ord1298
ord1295
ord1791
ord1790
ord1296
ord1381
ord1292
ord2831
ord102
ord112
ord114
ord113
ord110
ord2820
ord2822
ord5
ord4
ord519
ord1314
ord3
ord2821
ord2819
ord2563
ord2562
ord3100
ord1033
ord7
ord111
ord2725
ord2721

kernel32

LocalUnlock
LocalFree
GlobalAlloc
LocalHandle
LocalAlloc
GetModuleFileNameA
GlobalReAlloc
LocalLock
GlobalHandle
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
RaiseException
InitializeCriticalSection
DeleteCriticalSection
OpenFile
EnterCriticalSection
ExitProcess
HeapFree
GetLastError
CloseHandle
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
LeaveCriticalSection
GetFileType
GetStartupInfoA
GetCPInfo
GetACP
GlobalSize
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
SetFilePointer
HeapAlloc
VirtualAlloc
SetStdHandle
FlushFileBuffers
CreateFileA
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile
ReadFile
GetLocaleInfoA
GetLocaleInfoW
GetStdHandle
GetOEMCP
GlobalUnlock
GlobalFree
GlobalLock
GetPrivateProfileStringA

user32

GetActiveWindow
LoadStringA
wsprintfA

gdi32

DeleteMetaFile
DeleteEnhMetaFile
GetObjectType

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCDR9.FLT
.dll windows:4 windows x86 arch:x86

f4d5d90c24d02d2e373e396232807fc7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord2831
ord102
ord112
ord3122
ord114
ord113
ord111
ord2721
ord2725
ord3101
ord110
ord3110
ord3100

kernel32

LoadLibraryA
GlobalSize
GlobalFree
GlobalAlloc
GetProcAddress
GlobalLock
FreeLibrary
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
OpenFile
LocalFree
GetModuleFileNameA
GetWindowsDirectoryA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
GetCommandLineA
GetModuleHandleA
SetHandleCount
GetCPInfo
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GlobalUnlock
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
SetFilePointer
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GetPrivateProfileStringA
HeapCreate
VirtualFree
GetFileType

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCDR9.INI
IMCG19.FLT
.dll windows:4 windows x86 arch:x86

9d3b7a1ce14a51c090a7564ea310314a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord771
ord1310
ord772
ord261
ord637
ord259
ord3004
ord2817
ord2823
ord2310
ord1794
ord1793
ord1537
ord776
ord11
ord10
ord1744
ord1745
ord1746
ord1742
ord1743
ord1741
ord1739
ord1740
ord1748
ord1749
ord1750
ord1751
ord1756
ord1757
ord1773
ord1774
ord1775
ord1782
ord1789
ord1790
ord1791
ord1407
ord1315
ord1314
ord1313
ord1312
ord1311
ord1309
ord1303
ord1308
ord1307
ord1306
ord1305
ord1304
ord1302
ord1301
ord1300
ord1299
ord1298
ord1297
ord1296
ord1295
ord1294
ord1293
ord1292
ord1291
ord1290
ord1289
ord1288
ord1287
ord1286
ord1285
ord1284
ord1283
ord1282
ord1281
ord3102
ord3103
ord1043
ord518
ord514
ord1040
ord1039
ord1038
ord1037
ord1036
ord1035
ord1034
ord1145
ord1146
ord1147
ord1148
ord1149
ord1150
ord1151
ord1033
ord1032
ord1031
ord1030
ord1029
ord1028
ord1027
ord1026
ord1025
ord2826
ord2825
ord2824
ord774
ord773
ord770
ord769
ord639
ord519
ord517
ord516
ord515
ord271
ord270
ord268
ord267
ord266
ord265
ord264
ord110
ord262
ord260
ord258
ord257
ord7
ord6
ord5
ord4
ord3
ord2
ord1
ord3101
ord3100
ord1664
ord3108
ord3109
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord2563
ord269
ord2821
ord2819
ord2562
ord2721
ord2725
ord2818
ord1041
ord1042
ord263
ord3104
ord3115

kernel32

GetStringTypeW
LocalFree
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GetModuleFileNameA
GetTempFileNameA
GetTempPathA
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
RaiseException
GetStringTypeA
GlobalAlloc
GlobalSize
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
WideCharToMultiByte
TlsGetValue
HeapDestroy
HeapCreate
GlobalFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
HeapFree
HeapAlloc
SetFilePointer
VirtualAlloc
LoadLibraryA
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
FlushFileBuffers
CloseHandle
GetLastError
VirtualFree
GetPrivateProfileIntA
GlobalLock
GlobalUnlock
GetPrivateProfileStringA

user32

GetActiveWindow
LoadStringA
wsprintfA

gdi32

DeleteMetaFile
DeleteEnhMetaFile
GetObjectType

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCG39.FLT
.dll windows:4 windows x86 arch:x86

835bb3842347ac9cf1db47aa5d2ec514

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord2818
ord3122
ord3101
ord3103
ord3109
ord259
ord639
ord637
ord518
ord260
ord261
ord262
ord263
ord264
ord769
ord770
ord1314
ord515
ord517
ord516
ord514
ord771
ord1284
ord1288
ord1294
ord1303
ord1309
ord1332
ord772
ord773
ord774
ord2826
ord789
ord790
ord776
ord786
ord787
ord775
ord1
ord2
ord3
ord1290
ord4
ord5
ord6
ord7
ord2824
ord2825
ord10
ord11
ord17
ord18
ord8
ord9
ord521
ord519
ord638
ord522
ord520
ord523
ord524
ord2176
ord2177
ord2178
ord2179
ord2180
ord2181
ord1791
ord1790
ord1789
ord1782
ord1775
ord1774
ord1773
ord1760
ord1757
ord1756
ord1753
ord1752
ord1751
ord1750
ord1749
ord1748
ord1740
ord1739
ord1741
ord1743
ord1742
ord1746
ord1745
ord1744
ord252
ord251
ord255
ord256
ord253
ord254
ord1144
ord1360
ord1361
ord1362
ord1363
ord1364
ord1365
ord1376
ord1377
ord1378
ord1379
ord1380
ord1381
ord1382
ord1383
ord1384
ord1392
ord1393
ord1394
ord1402
ord3004
ord2817
ord1405
ord1406
ord1335
ord1022
ord1021
ord2310
ord641
ord1337
ord642
ord1413
ord1414
ord1411
ord1412
ord1793
ord1794
ord1281
ord1282
ord1283
ord1285
ord1286
ord1287
ord1289
ord1291
ord1292
ord1293
ord1295
ord1296
ord1297
ord1298
ord1299
ord1300
ord1301
ord1302
ord1304
ord1305
ord1306
ord1307
ord1308
ord1310
ord1311
ord1312
ord1313
ord110
ord1316
ord1317
ord1328
ord1329
ord1330
ord1326
ord1327
ord1331
ord1333
ord1334
ord1025
ord1026
ord1027
ord1028
ord1029
ord1030
ord1031
ord1032
ord1033
ord1034
ord1145
ord1146
ord1147
ord1148
ord1149
ord1150
ord1151
ord1035
ord1036
ord1037
ord1038
ord1039
ord1040
ord1041
ord1042
ord1043
ord1046
ord1047
ord1048
ord1049
ord1051
ord1053
ord1052
ord257
ord258
ord265
ord266
ord267
ord270
ord271
ord272
ord273
ord274
ord275
ord276
ord3102
ord3108
ord3110
ord3111
ord3112
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord2821
ord2819
ord2563
ord269
ord2562
ord3100
ord1404
ord1403
ord1315
ord2721
ord2725

kernel32

GetModuleFileNameA
LocalFree
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GlobalHandle
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
RaiseException
GetStringTypeA
WideCharToMultiByte
GetStringTypeW
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GlobalReAlloc
GlobalAlloc
HeapDestroy
HeapCreate
VirtualFree
GlobalFree
GetFileType
GetStdHandle
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
SetFilePointer
HeapFree
HeapAlloc
VirtualAlloc
LoadLibraryA
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
FlushFileBuffers
CloseHandle
GetLastError
SetHandleCount
GlobalLock
GlobalSize
GetPrivateProfileStringA
GlobalUnlock

user32

GetActiveWindow
LoadStringA
wsprintfA

gdi32

DeleteMetaFile
DeleteEnhMetaFile
GetObjectType

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 158KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCGM9.FLT
.dll windows:4 windows x86 arch:x86

f071480338c98921061fb2ba9d826f38

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3109
ord3108
ord110
ord3103
ord3102
ord2831
ord112
ord114
ord113
ord111
ord102
ord3101
ord2721
ord2725
ord3122
ord3100

kernel32

GlobalAlloc
GlobalReAlloc
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalFree
GlobalSize
GetModuleFileNameA
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
OpenFile
GetWindowsDirectoryA
LocalFree
GetCommandLineA
GetProcAddress
LoadLibraryA
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
GlobalLock
GetModuleHandleA
SetHandleCount
ExitProcess
GetStdHandle
GetStartupInfoA
GetVersion
DeleteCriticalSection
FreeLibrary
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
SetFilePointer
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GlobalUnlock
VirtualFree
HeapCreate
GetFileType

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
DeleteMetaFile
GetObjectType

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMCGM9.INI
IMCMX9.FLT
.dll windows:4 windows x86 arch:x86

978e62c1c39dd82deeb4a263cee3e321

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3122
ord2831
ord110
ord102
ord3110
ord112
ord114
ord113
ord111
ord2721
ord2725
ord3108
ord3103
ord3101
ord3100

kernel32

GetProcAddress
GlobalSize
GlobalFree
GetPrivateProfileStringA
GlobalAlloc
GetModuleFileNameA
LocalFree
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
OpenFile
FreeLibrary
LoadLibraryA
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetWindowsDirectoryA
GetCommandLineA
VirtualFree
GetCPInfo
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GlobalLock
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
SetFilePointer
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GlobalUnlock
HeapDestroy
HeapCreate
SetHandleCount

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMDRW9.FLT
.dll windows:4 windows x86 arch:x86

c53599c4a6b0391c2a91c71fbb23e772

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord270
ord1663
ord1312
ord514
ord1745
ord637
ord518
ord1784
ord1744
ord1746
ord3004
ord2817
ord3108
ord3109
ord3107
ord3113
ord3110
ord1742
ord776
ord3103
ord11
ord2826
ord2825
ord10
ord2824
ord251
ord252
ord1743
ord3115
ord3116
ord771
ord1294
ord1027
ord1286
ord1288
ord1287
ord1058
ord1296
ord1791
ord1293
ord1292
ord1295
ord1290
ord1299
ord772
ord1054
ord1148
ord1031
ord1035
ord1041
ord2818
ord3100
ord1149
ord1025
ord1751
ord1775
ord1774
ord1284
ord1283
ord1282
ord1773
ord1309
ord1308
ord1307
ord1310
ord1741
ord1303
ord1304
ord1302
ord1305
ord1298
ord2310
ord1146
ord1033
ord1147
ord1042
ord1043
ord1405
ord1406
ord1402
ord1404
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord2563
ord269
ord4
ord519
ord110
ord639
ord3
ord2821
ord2819
ord2562
ord2721
ord2725
ord3101
ord1039
ord1151
ord1314

kernel32

GetACP
GlobalAlloc
GlobalReAlloc
LocalFree
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GetModuleFileNameA
GetTempFileNameA
GetTempPathA
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
RaiseException
GetStringTypeA
WideCharToMultiByte
GetStringTypeW
MultiByteToWideChar
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GlobalSize
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
SetFilePointer
HeapFree
HeapAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
LoadLibraryA
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
GlobalUnlock
GlobalLock
GlobalFree
GetPrivateProfileStringA

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMDRW9.INI
IMDXF9.FLT
.dll windows:4 windows x86 arch:x86

57c98e18ba3b75df64e56fa4c0dc3ab0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord1773
ord1774
ord3004
ord1283
ord2817
ord3102
ord3101
ord3100
ord1026
ord1310
ord517
ord515
ord261
ord259
ord1663
ord1302
ord1744
ord1746
ord1745
ord1288
ord1294
ord1303
ord1284
ord1309
ord1307
ord1282
ord1025
ord1791
ord1030
ord1029
ord1028
ord1298
ord1292
ord1296
ord1295
ord1297
ord1293
ord1291
ord1290
ord251
ord252
ord1031
ord2824
ord2818
ord1308
ord1041
ord1037
ord1042
ord1027
ord1286
ord1287
ord1751
ord1149
ord1144
ord1382
ord1381
ord254
ord1384
ord1362
ord1035
ord1364
ord253
ord3109
ord3110
ord3112
ord637
ord518
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord2821
ord2819
ord2563
ord519
ord1314
ord3
ord4
ord269
ord639
ord2562
ord110
ord2725
ord3103
ord2825
ord1036
ord2721

kernel32

GetOEMCP
GlobalReAlloc
GlobalSize
LocalLock
LocalAlloc
LocalFree
LocalUnlock
LocalHandle
GetModuleFileNameA
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
RaiseException
GetStringTypeA
WideCharToMultiByte
GetStringTypeW
MultiByteToWideChar
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GlobalAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
HeapFree
HeapAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
LoadLibraryA
SetFilePointer
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
GlobalUnlock
GlobalLock
GlobalFree
GetPrivateProfileStringA

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMDXF9.INI
IMHDR.FLT
.dll windows:4 windows x86 arch:x86

254056165387763bfe70e246f0270b62

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetStartupInfoA
FreeEnvironmentStringsA
GetFileType
GetStdHandle
SetHandleCount
FreeEnvironmentStringsW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
GetEnvironmentStrings
GetEnvironmentStringsW
IsBadWritePtr
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
LCMapStringA
LCMapStringW
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetCPInfo
IsDBCSLeadByte
GetModuleFileNameA
GetProfileStringA
GetVersion
lstrcmpiA
_llseek
_hread
_lopen
_lread
_lclose
lstrcpynA
GlobalAlloc
GlobalLock
GlobalHandle
GlobalUnlock
GlobalFree
OpenFile
lstrcpyA
lstrcatA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
HeapReAlloc
HeapSize
TerminateProcess
ExitProcess
GetOEMCP
GetACP
HeapAlloc
RaiseException
GetModuleHandleA
GetCommandLineA
HeapFree
GetTimeZoneInformation
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVersionExA
WritePrivateProfileStringA
GlobalGetAtomNameA
GlobalAddAtomA
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GlobalFlags
GetProcessVersion
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalDeleteAtom
GetCurrentThread
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFileAttributesA
lstrlenW
lstrcmpA
GetProfileIntA
SearchPathA
GetTempPathA
GetTempFileNameA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
SetLastError
GetCurrentThreadId
CloseHandle
MulDiv
FormatMessageA
SetEnvironmentVariableA
IsBadReadPtr
IsBadCodePtr
lstrlenA

user32

SystemParametersInfoA
UnregisterClassA
LoadIconA
SetWindowTextA
MapWindowPoints
GetSysColor
IsWindow
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
EndDeferWindowPos
ScreenToClient
ScrollWindow
SetScrollInfo
GetScrollPos
SetScrollPos
GetTopWindow
IsWindowEnabled
IsChild
GetCapture
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenu
GetDlgItem
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
SetPropA
GetForegroundWindow
GetPropA
CallWindowProcA
RemovePropA
ShowScrollBar
LoadCursorA
GetWindow
GetWindowRect
GetWindowLongA
GetSysColorBrush
ShowWindow
EndDialog
PostQuitMessage
PostMessageA
SetParent
SetScrollRange
CopyRect
UpdateWindow
GetLastActivePopup
SetForegroundWindow
InSendMessage
RemoveMenu
SetCapture
SetFocus
ReleaseCapture
SetActiveWindow
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
GetSystemMetrics
CharUpperA
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
InsertMenuA
AppendMenuA
RegisterClipboardFormatA
FindWindowA
SetWindowsHookExA
UnhookWindowsHookEx
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
MessageBoxA
EnableWindow
SetCursor
ShowOwnedPopups
LoadStringA
SetWindowLongA
GetClassNameA
ClientToScreen
GetMessageTime
GetMessagePos
GetDesktopWindow
SetRect
PtInRect
GetDC
ReleaseDC
FillRect
SetRectEmpty
SendMessageA
wsprintfA
WindowFromPoint
CreateMenu
CopyAcceleratorTableA
PostThreadMessageA
BringWindowToTop
IsIconic
InvalidateRect
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
DestroyMenu
TranslateAcceleratorA
LoadAcceleratorsA
GetMenuStringA
SetWindowPos
RegisterWindowMessageA
GetClassInfoA
WinHelpA
IntersectRect

gdi32

SetBkMode
Polygon
CreateSolidBrush
SelectObject
GetStockObject
CreatePen
Rectangle
Ellipse
CreateRectRgn
CreateEllipticRgn
FillRgn
CombineRgn
CreatePolygonRgn
CreateRectRgnIndirect
CreatePolyPolygonRgn
BitBlt
CreateCompatibleDC
GetObjectA
CreateDIBitmap
GetDeviceCaps
Polyline
PolyPolygon
DeleteMetaFile
CloseMetaFile
CreateMetaFileA
GetTextExtentPoint32A
CreateFontIndirectA
GetOutlineTextMetricsA
GetGlyphOutlineA
StretchBlt
RealizePalette
CreatePalette
GetSystemPaletteEntries
GetNearestPaletteIndex
DeleteDC
SaveDC
RestoreDC
SelectPalette
TextOutA
MoveToEx
SetBkColor
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExtSelectClipRgn
PtVisible
RectVisible
ExtTextOutA
Escape
CreateBitmap
DeleteObject
LineTo

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
SetFileSecurityA
GetFileSecurityA
RegOpenKeyExA

shell32

DragFinish
DragQueryFileA

comctl32

ord17
ImageList_Destroy

ole32

CoTaskMemAlloc
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleLockRunning
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
CoTaskMemFree
OleIsRunning
OleRun
CreateItemMoniker
CoLockObjectExternal
WriteClassStg
GetRunningObjectTable
CreateFileMoniker
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoDisconnectObject

Exports

Exports

DrawOnDC
EscapeSetup
GetDrawingSize
GetFilterInfo
GetFilterPref
ImportGR

Sections

.text
Size: 261KB - Virtual size: 261KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMHG39.INI
IMHGL9.FLT
.dll windows:4 windows x86 arch:x86

281eb79172eb13fa1dbb1365b8a4fa79

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord2825
ord2826
ord3102
ord2824
ord1302
ord1310
ord1292
ord1295
ord1297
ord1756
ord1775
ord1774
ord1773
ord1337
ord772
ord514
ord637
ord518
ord1291
ord263
ord264
ord262
ord260
ord259
ord641
ord3004
ord2817
ord1311
ord1305
ord1304
ord1307
ord1282
ord1308
ord1283
ord1312
ord1296
ord1294
ord1309
ord1284
ord1303
ord1298
ord1028
ord1025
ord1031
ord1041
ord1035
ord1042
ord1037
ord1040
ord3104
ord2831
ord110
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord2563
ord4
ord639
ord519
ord1314
ord3
ord2821
ord2819
ord2562
ord2721
ord2725
ord3101
ord3103
ord2818
ord3100

kernel32

GlobalReAlloc
GlobalFree
TerminateProcess
GetModuleFileNameA
LocalFree
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GetTempFileNameA
GetTempPathA
OpenFile
GetWindowsDirectoryA
HeapFree
HeapAlloc
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
RaiseException
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetStringTypeA
GetStringTypeW
GlobalLock
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
SetFilePointer
LoadLibraryA
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
FlushFileBuffers
CloseHandle
GlobalUnlock
GlobalAlloc
GlobalSize
GetPrivateProfileStringA

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMHGL9.INI
IMJPEG9.FLT
.dll windows:4 windows x86 arch:x86

4f099e4585021ac889e4c9675ea38555

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

fprintf
sscanf
getenv
malloc
free
strncpy
fopen
__p__iob
sprintf
putc
_unlink
_initterm
_adjust_fdiv
__dllonexit
_onexit
fread
fflush
fwrite
_ftol
fclose
fseek

kernel32

DisableThreadLibraryCalls
Sleep
GetVersion
GlobalAlloc
GlobalFree

Exports

Exports

GetImageSize
ImportImage

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMNAP9.INI
IMPCT9.FLT
.dll windows:4 windows x86 arch:x86

04a7c6a451a44344cefe180a9cc54712

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord637
ord3108
ord3111
ord901
ord1302
ord1298
ord1775
ord772
ord3103
ord3109
ord518
ord514
ord1291
ord263
ord264
ord262
ord260
ord769
ord771
ord259
ord3004
ord2817
ord3106
ord1290
ord1789
ord1782
ord1791
ord3110
ord1284
ord1283
ord1294
ord1295
ord1310
ord2310
ord1309
ord1308
ord1303
ord1305
ord1312
ord3122
ord3101
ord2818
ord1146
ord251
ord252
ord3102
ord773
ord774
ord1033
ord1147
ord1035
ord2825
ord1025
ord2824
ord1043
ord1042
ord1041
ord1036
ord1148
ord1028
ord1296
ord2831
ord110
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord2563
ord519
ord1314
ord4
ord639
ord3
ord269
ord2821
ord2819
ord3100
ord2721
ord1756
ord3113
ord2562
ord2725

kernel32

LocalFree
LocalUnlock
GetPrivateProfileStringA
LocalHandle
LocalLock
LocalAlloc
GetModuleFileNameA
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
GlobalSize
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
LoadLibraryA
SetFilePointer
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
FreeEnvironmentStringsW
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

GetObjectType
DeleteEnhMetaFile
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EnumeratePict
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR
im_pict

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMPCT9.INI
IMPIC9.FLT
.dll windows:4 windows x86 arch:x86

2823e8c58e75321fce45bea4b2c58fec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord259
ord3102
ord3122
ord518
ord3101
ord3004
ord2817
ord1295
ord1028
ord1298
ord1296
ord1290
ord1025
ord1031
ord1284
ord1294
ord1303
ord1309
ord1310
ord3103
ord3109
ord2831
ord110
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord2563
ord5
ord519
ord1314
ord4
ord639
ord637
ord3
ord269
ord2821
ord2819
ord2562
ord3100
ord2725
ord2721
ord2818
ord1302

kernel32

LocalFree
LocalUnlock
LocalHandle
GetPrivateProfileStringA
GlobalAlloc
LocalLock
GlobalSize
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GlobalFree
GetModuleFileNameA
ExitProcess
LocalAlloc
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
GlobalLock
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
LoadLibraryA
SetFilePointer
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
FreeEnvironmentStringsA
GlobalUnlock
GetModuleHandleA
GetVersion
TerminateProcess

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMPIC9.INI
IMPSI9.FLT
.dll windows:4 windows x86 arch:x86

a0625f21b3e59565bf5486791e86798b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord1146
ord1147
ord1303
ord1028
ord1293
ord1294
ord2817
ord1290
ord2825
ord1741
ord2824
ord1774
ord1775
ord1284
ord1283
ord776
ord11
ord1035
ord10
ord774
ord773
ord1025
ord1151
ord2826
ord1033
ord1747
ord1298
ord1302
ord514
ord637
ord518
ord1296
ord1295
ord1292
ord1739
ord269
ord3100
ord1748
ord1749
ord3102
ord1750
ord3103
ord3113
ord3101
ord3104
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord2821
ord2819
ord5
ord2563
ord4
ord639
ord3
ord2562
ord2721
ord2725
ord259
ord3004
ord2818
ord110

kernel32

LockResource
GetPrivateProfileStringA
SizeofResource
GlobalFree
GlobalAlloc
GetModuleFileNameA
GlobalSize
LoadResource
FindResourceA
LocalHandle
GetCurrentThreadId
LocalAlloc
GetTempFileNameA
GetTempPathA
OpenFile
GetWindowsDirectoryA
HeapFree
HeapAlloc
GetLocalTime
GetLastError
DeleteFileA
MoveFileA
HeapReAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
RaiseException
GetTimeZoneInformation
GlobalLock
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
LCMapStringW
GetStringTypeA
GetStringTypeW
RtlUnwind
WriteFile
GetStdHandle
SetHandleCount
GetFileType
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetFilePointer
LoadLibraryA
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
SetStdHandle
CloseHandle
ReadFile
GlobalUnlock
LocalFree
LocalUnlock
LocalLock

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 387KB - Virtual size: 387KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMPSI9.INI
IMPSZ9.FLT
.dll windows:4 windows x86 arch:x86

8464fd15f702177ac75ec6e845fd468e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3102
ord2831
ord102
ord112
ord3113
ord114
ord113
ord111
ord2721
ord2725
ord110
ord3100
ord3103
ord3101

kernel32

GlobalSize
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalFree
LoadLibraryA
FreeLibrary
GetProcAddress
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GetModuleFileNameA
LocalFree
GlobalAlloc
OpenFile
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetWindowsDirectoryA
GetCommandLineA
VirtualFree
GetCPInfo
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GlobalLock
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
SetFilePointer
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GlobalUnlock
HeapDestroy
HeapCreate
SetHandleCount

user32

GetActiveWindow
LoadStringA
wsprintfA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMPS_9.FLT
.dll windows:4 windows x86 arch:x86

f51971638e173f3af544cb67bed934a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord518
ord1739
ord1747
ord3004
ord637
ord2817
ord3113
ord3102
ord3103
ord1750
ord1748
ord1749
ord1744
ord1746
ord1745
ord1298
ord1297
ord1030
ord1788
ord1020
ord1336
ord776
ord18
ord786
ord17
ord1302
ord1308
ord1283
ord1307
ord1282
ord1741
ord1775
ord1773
ord1774
ord251
ord2825
ord11
ord252
ord772
ord524
ord7
ord1664
ord514
ord517
ord515
ord272
ord1291
ord263
ord264
ord262
ord3100
ord2818
ord259
ord1284
ord1309
ord1310
ord1294
ord1303
ord6
ord771
ord1313
ord1311
ord1305
ord1145
ord1151
ord1025
ord2824
ord2826
ord10
ord1028
ord1782
ord1296
ord1295
ord1292
ord1290
ord1405
ord1406
ord1404
ord1146
ord1033
ord1147
ord1314
ord2831
ord102
ord112
ord114
ord113
ord110
ord2820
ord2822
ord5
ord519
ord4
ord639
ord3
ord2821
ord2819
ord2563
ord269
ord2562
ord2721
ord2725
ord3101
ord260
ord261
ord111

kernel32

DeleteCriticalSection
GlobalSize
GlobalAlloc
FreeLibrary
GetProcAddress
LoadLibraryA
GlobalReAlloc
LocalFree
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GetModuleFileNameA
GlobalHandle
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetModuleHandleA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
RaiseException
ExitProcess
HeapCreate
HeapDestroy
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
GlobalFree
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
HeapAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetFilePointer
SetStdHandle
FlushFileBuffers
CloseHandle
GlobalLock
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalUnlock

user32

GetActiveWindow
LoadStringA
wsprintfA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR
SendEPSData

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMPS_9.INI
IMWMF9.FLT
.dll windows:4 windows x86 arch:x86

a93f072dd1e21ca8bc326c1f9c47f591

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

gdi32

SetEnhMetaFileBits
SetMetaFileBitsEx

kernel32

HeapFree
HeapAlloc
GetCommandLineA
GetVersion
EnterCriticalSection
LeaveCriticalSection
GetLastError
ReadFile
SetFilePointer
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
ExitProcess
RtlUnwind
CloseHandle
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetStdHandle
FlushFileBuffers
InterlockedDecrement
InterlockedIncrement
CreateFileA
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile

Exports

Exports

EscapeSetup
GetFilterInfo
GetFilterPref
ImportGR

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMWMF9.INI
IMWP19.FLT
.dll windows:4 windows x86 arch:x86

1782345a60295001f73de3571b20a7a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3109
ord251
ord3102
ord772
ord637
ord518
ord514
ord1291
ord263
ord264
ord262
ord260
ord259
ord3004
ord2817
ord3122
ord3101
ord3100
ord3113
ord3108
ord252
ord2824
ord1286
ord1287
ord1288
ord1030
ord1294
ord1028
ord1298
ord1027
ord1296
ord1146
ord1033
ord1147
ord2826
ord1151
ord1042
ord1039
ord1043
ord1040
ord1041
ord1036
ord3110
ord2825
ord1789
ord1782
ord1295
ord1025
ord1031
ord1035
ord1148
ord1305
ord1302
ord1303
ord1312
ord771
ord1307
ord1282
ord1310
ord1308
ord1283
ord1309
ord1284
ord3111
ord1407
ord2831
ord110
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord5
ord2563
ord4
ord639
ord519
ord1314
ord3
ord269
ord2821
ord2819
ord2562
ord2818
ord3103
ord1791
ord1290
ord2721
ord2725

kernel32

MultiByteToWideChar
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GetModuleFileNameA
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetProcAddress
GetModuleHandleA
GetVersion
RaiseException
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
GetPrivateProfileStringA
LocalFree
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GlobalSize
WriteFile
SetFilePointer
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
LoadLibraryA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetLocaleInfoA
GetLocaleInfoW
CloseHandle
FreeEnvironmentStringsA
WideCharToMultiByte
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock

user32

GetActiveWindow
LoadStringA
wsprintfA

gdi32

DeleteMetaFile
DeleteEnhMetaFile
GetObjectType

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMWPG9.FLT
.dll windows:4 windows x86 arch:x86

55a4dac519df0f3a47a1ccea4bf07285

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord102
ord110
ord2831
ord112
ord113
ord111
ord114
ord3101
ord2725
ord3100
ord2721
ord3113

kernel32

GetPrivateProfileStringA
GlobalAlloc
GetModuleFileNameA
LocalFree
LocalUnlock
GlobalFree
LocalHandle
LocalLock
LocalAlloc
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetModuleHandleA
GetVersion
GetProcAddress
GlobalSize
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GlobalLock
LoadLibraryA
GetStartupInfoA
ExitProcess
TerminateProcess
GetCPInfo
FreeLibrary
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
SetFilePointer
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
GlobalUnlock
GetStdHandle
GetFileType
DeleteCriticalSection

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
DeleteMetaFile
GetObjectType

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IPPP29.FLT
.dll windows:4 windows x86 arch:x86

1e624f67e3a383d037fccdf784bf8819

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord1308
ord3122
ord3101
ord2818
ord3108
ord769
ord3004
ord2817
ord773
ord772
ord3113
ord1025
ord1283
ord1794
ord637
ord518
ord514
ord1291
ord264
ord262
ord260
ord259
ord6
ord7
ord642
ord641
ord1312
ord1740
ord1405
ord1303
ord1406
ord1404
ord1302
ord1030
ord1029
ord1298
ord3103
ord3110
ord1310
ord1309
ord1284
ord1307
ord1282
ord771
ord1148
ord1041
ord1304
ord1305
ord1751
ord1791
ord1290
ord1295
ord1294
ord1296
ord2831
ord102
ord112
ord114
ord113
ord111
ord2820
ord2822
ord2821
ord2819
ord5
ord2563
ord4
ord3
ord519
ord1314
ord639
ord269
ord2562
ord1035
ord3100
ord2721
ord2725
ord3109
ord110

kernel32

GetPrivateProfileStringA
FreeLibrary
GetProcAddress
LoadLibraryA
LocalFree
LocalUnlock
LocalHandle
LocalLock
LocalAlloc
GetModuleFileNameA
OpenFile
GetWindowsDirectoryA
GetCommandLineA
GetModuleHandleA
GetVersion
RaiseException
GetStringTypeA
WideCharToMultiByte
GetStringTypeW
MultiByteToWideChar
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GlobalLock
GlobalAlloc
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
SetFilePointer
HeapFree
HeapAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
SetStdHandle
LCMapStringA
LCMapStringW
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
GetFileType
GetStdHandle
GlobalUnlock
GlobalSize
WritePrivateProfileStringA
GlobalFree
GlobalReAlloc

user32

GetActiveWindow
LoadStringA
wsprintfA

gdi32

DeleteEnhMetaFile
DeleteMetaFile
GetObjectType

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
GetPPTCOLOR
GetPPTFONT
GetWMF
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IPPP29.INI
IPPP39.FLT
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 294KB - Virtual size: 294KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IPPP39.INI
IPPP49.INI
IPPPT9.FLT
.dll windows:4 windows x86 arch:x86

45d6136d5845789220c47d3a1f0ae904

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

isgdi32

ord3109
ord3142
ord3143
ord3140
ord3122
ord3108
ord3103
ord110
ord2831
ord102
ord112
ord114
ord113
ord111
ord2721
ord2725
ord3110
ord3141
ord3101
ord3100

kernel32

GetProcAddress
GlobalSize
GetPrivateProfileStringA
WritePrivateProfileStringA
GlobalAlloc
GlobalFree
GetModuleFileNameA
LocalFree
LocalUnlock
LocalHandle
LocalLock
FreeLibrary
LoadLibraryA
GetWindowsDirectoryA
GetCommandLineA
GetModuleHandleA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
LocalAlloc
OpenFile
GetCPInfo
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GlobalLock
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
HeapFree
VirtualAlloc
SetFilePointer
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CloseHandle
GetLocaleInfoA
GetLocaleInfoW
LCMapStringA
LCMapStringW
GlobalUnlock
TlsGetValue
GetLastError
HeapDestroy

user32

wsprintfA
GetActiveWindow
LoadStringA

gdi32

DeleteEnhMetaFile
GetObjectType
DeleteMetaFile

Exports

Exports

CreateSetup
DestroySetup
EditSetup
EscapeSetup
GetFilterInfo
GetFilterPref
IMSGetFilterVersion
ImportCB
ImportEmbeddedGR
ImportFile
ImportGR

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IPPPT9.INI
ISGDI32.DLL
.dll windows:4 windows x86 arch:x86

423d6be0d11143c0d5bfb951a0d1ce10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetDriveTypeA
GetLastError
SetCurrentDirectoryA
ExitProcess
TerminateProcess
GetFullPathNameA
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
GetCPInfo
GetACP
GetOEMCP
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetVersion
GetCurrentDirectoryA
WriteFile
RaiseException
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
HeapFree
VirtualAlloc
SetFilePointer
SetStdHandle
GetPrivateProfileIntA
GetLocaleInfoA
GetLocaleInfoW
GetModuleHandleA
GetCommandLineA
GetTempPathA
GetTempFileNameA
GetWindowsDirectoryA
GetProfileStringA
LocalHandle
_lread
_lwrite
GlobalReAlloc
GetFileAttributesA
DeleteFileA
CreateFileA
_llseek
GlobalHandle
FlushFileBuffers
CloseHandle
LoadLibraryA
GetProcAddress
FreeLibrary
LocalFree
lstrcatA
lstrlenA
LocalAlloc
LocalLock
LocalUnlock
GetModuleFileNameA
GlobalFree
GlobalAlloc
OpenFile
GlobalLock
WritePrivateProfileStringA
GlobalUnlock
GetPrivateProfileStringA
WideCharToMultiByte
GetEnvironmentStringsW
GlobalSize
GetShortPathNameA

user32

ClientToScreen
GetWindowRect
GetSystemMetrics
GetWindowLongA
GetFocus
ScreenToClient
GetMessageA
IsWindow
PeekMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
MoveWindow
LoadBitmapA
CharNextA
SetDlgItemTextA
LoadCursorA
SetCursor
MessageBoxA
CreateDialogParamA
GetDC
GetClientRect
ReleaseDC
DlgDirListA
SetWindowTextA
GetParent
EnableWindow
CheckRadioButton
DestroyWindow
IsWindowEnabled
IsDlgButtonChecked
wsprintfA
CheckDlgButton
DialogBoxParamA
GetDlgItem
SetFocus
EndDialog
SendDlgItemMessageA
LoadStringA

gdi32

Rectangle
SelectObject
GetStockObject
GetTextExtentPointA
DeleteObject
DeleteDC
BitBlt
SetWindowExtEx
SetWindowOrgEx
CreateCompatibleDC
GetObjectA
TextOutA
SetTextColor
SetBkColor
OffsetClipRgn
IntersectClipRect
CreateSolidBrush
SetTextAlign
GetDeviceCaps
CreateDCA
EnumFontFamiliesA
SetTextCharacterExtra
GetTextMetricsA
CreateFontIndirectA
SetViewportOrgEx
SetViewportExtEx
SetMapMode
DeleteMetaFile
DeleteEnhMetaFile
GetObjectType
PlayMetaFile
GetMetaFileA
SetMetaFileBitsEx
GetEnhMetaFileA
SetEnhMetaFileBits
PolyBezier

Exports

Exports

AltFontsAvailable
BuildSystemFontList
CAppendText
CApplData
CBegProtRegion
CBeginCompoundTextPath
CBeginFigure
CBeginGroup
CBeginSeg
CBeginTileArray
CBitonalTile
CCellArray
CCirc
CCircArc3Pt
CCircArc3PtClose
CCircArcCtr
CCircArcCtrClose
CConnEdge
CCopySeg
CDisjLine
CEllip
CEllipArc
CEllipArcClose
CEmptyErrorStack
CEndCompoundTextPath
CEndFigure
CEndGroup
CEndProtRegion
CEndSeg
CEndTileArray
CEsc
CGDP
CGetEsc
CHyperbArc
CInqClipRect
CInqDeviceViewport
CInqDispSurf
CInqErrorStack
CInqFontMetrics
CInqTextExtent
CLine
CMarker
CMsg
CNUB
CNURB
CNewRegion
CParabArc
CPelArray
CPolybezier
CPolygon
CPolygonSet
CPopErrorStack
CRect
CResPrimContext
CRestrText
CSavePrimContext
CSetASFs
CSetAltCharSetInd
CSetAuxColr
CSetBackgColr
CSetCharCodingAnn
CSetCharExpanFactor
CSetCharHt
CSetCharHtSpecMode
CSetCharOri
CSetCharSetInd
CSetCharSetList
CSetCharSpace
CSetClipInd
CSetClipInh
CSetClipRect
CSetColrCalibration
CSetColrIndPrec
CSetColrModel
CSetColrPrec
CSetColrSelMode
CSetColrTable
CSetColrValueExtent
CSetDevVpMap
CSetDevVpSpecMode
CSetDeviceViewport
CSetDrawMode
CSetEdgeCap
CSetEdgeColr
CSetEdgeInd
CSetEdgeType
CSetEdgeTypeContinuation
CSetEdgeTypeInitOffset
CSetEdgeVis
CSetEdgeWidth
CSetEdgeWidthSpecMode
CSetFillColr
CSetFillHatchInd
CSetFillInd
CSetFillIntStyle
CSetFillPatInd
CSetFillRefPt
CSetFontList
CSetFontSelMode
CSetGenTextPathMode
CSetGeoPatDef
CSetHatchStyleDef
CSetIndPrec
CSetInhFilter
CSetIntPrec
CSetIntStyleSpecMode
CSetInterpIntDef
CSetLineColr
CSetLineEdgeTypeDef
CSetLineInd
CSetLineType
CSetLineTypeContinuation
CSetLineTypeInitOffset
CSetLineWidth
CSetLineWidthSpecMode
CSetMarkerColr
CSetMarkerInd
CSetMarkerSize
CSetMarkerSizeSpecMode
CSetMarkerType
CSetMaxVDCExtent
CSetMiterLimit
CSetNamePrec
CSetPatSize
CSetPatTable
CSetProtRegionInd
CSetRealPrec
CSetRestrTextType
CSetScalingMode
CSetSegDispPri
CSetSegHighl
CSetSegPickPri
CSetSegPriExtent
CSetSymbolColr
CSetSymbolLibIndex
CSetSymbolLibList
CSetSymbolOri
CSetSymbolSize
CSetTextAlign
CSetTextColr
CSetTextFont
CSetTextFontInd
CSetTextInd
CSetTextPath
CSetTextPrec
CSetTextScoreType
CSetTran
CSetTranspCellColr
CSetVDCExtent
CSetVDCIntPrec
CSetVDCRealPrec
CSetVDCType
CSymbol
CText
CTile
C_AppendText
C_BeginBlockTextRegion
C_BeginCellArray
C_BeginData
C_BeginEffectDef
C_BeginLayer
C_BeginMF
C_BeginMFDefaultReplace
C_BeginPatchDef
C_BeginPic
C_BeginPicBody
C_BeginSymbol
C_BlockText
C_ClearTransforms
C_CloseCGI
C_CloseDevice
C_Data
C_EPSMode
C_EllipArc3Pt
C_EndBlockTextRegion
C_EndCellArray
C_EndData
C_EndEffectDef
C_EndLayer
C_EndMF
C_EndMFDefaultReplace
C_EndPatchDef
C_EndPic
C_EndSymbol
C_GetGDSFAddr
C_Init
C_InqCGIDefault
C_InqCGIVersion
C_InqForeignDataMode
C_InqFunctionSupport
C_InqOrigin
C_InqSupport
C_InsertFile
C_InsertObject
C_InterpItem
C_MFDesc
C_MFElemList
C_MFVersion
C_NoOp
C_OpenCGI
C_OpenDevice
C_PolyBezier
C_PolySpline
C_PopTran
C_PopTransform
C_PushTranWarp
C_RestrText
C_RoundRect
C_SetBackgStyle
C_SetBackgroundStyle
C_SetBlockTextExternalLeading
C_SetBlockTextForwardAdvDist
C_SetBlockTextLineFlow
C_SetBlockTextParaBullet
C_SetBlockTextParaBulletLevel
C_SetBlockTextParaHorizAlign
C_SetBlockTextParaIndent
C_SetBlockTextParaLineHorizAlign
C_SetBlockTextParaLineSpacing
C_SetBlockTextParaLineVertAlign
C_SetBlockTextParaSpacing
C_SetBlockTextParaTabs
C_SetBlockTextParaVertAlign
C_SetBlockTextRegionAnchor
C_SetBlockTextRegionExpansion
C_SetBlockTextRegionMargins
C_SetBlockTextWordSpacing
C_SetBlockTextWordWrap
C_SetCharHtMode
C_SetCharMode
C_SetColrReversal
C_SetColrValueDescExtent
C_SetCurPosMode
C_SetCurPosition
C_SetEdgeJoinType
C_SetFillMode
C_SetGenTextPathStartFigure
C_SetGeoPatDrawStyle
C_SetGradientAngle
C_SetGradientDescription
C_SetGradientEdge
C_SetGradientOffset
C_SetGradientStyle
C_SetLayerVis
C_SetLineCapAttr
C_SetLineCapType
C_SetLineEndStyleAttr
C_SetLineJoinType
C_SetMaxColrInd
C_SetMediaSize
C_SetMediaType
C_SetNumCopies
C_SetOrientation
C_SetPatchID
C_SetResMode
C_SetScriptMode
C_SetShadowMode
C_SetTextOffset
C_SetTextPathAlign
C_SetTranMatrix2D
C_SetTranMatrix3D
C_SetUnderlineMode
C_Setup
C_SharpPolyBezier
C_Term
C_Text
C_Unknown
C__BlockText
CenterWindow
CreatePMIDialog
CreateSetup
DestroyPMIDialog
DestroySetup
EditSetup
EscapeSetup
GetFontPath
GetNativeFileHandle
GetSet_DialogStatus
HelpDlgProc
IMSGetFilterVersion
OpenImsBuffer
PMIImportPref
PMIStatusDlgProc
ProfileDlgProc
ResourceMessageBox
_cmessage
_cspaths
dd_entry
dd_entry32
escape
getcd
getdefault
imsClose
imsCloseStorage
imsCloseStream
imsCloseandDelete
imsError
imsGetDataFormat
imsGetLineFormat
imsNativeToBE
imsNativeToLE
imsOpen
imsOpenStorage
imsOpenStream
imsRead
imsReadChar
imsReadDouble
imsReadFloat
imsReadLine
imsReadLong
imsReadShort
imsReadString
imsReadStruct
imsSeek
imsSetDataFormat
imsSetLineFormat
imsWrite
imsWriteChar
imsWriteDouble
imsWriteFloat
imsWriteLine
imsWriteLong
imsWriteShort
imsWriteStruct
message
push_er
s_getbody
s_getext
s_getname
s_getpath
s_putname
setdefault
stccpy

Sections

.text
Size: 641KB - Virtual size: 641KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Normal.hwt
USER.HFT
mfc42.dll
.dll regsvr32 windows:4 windows x86 arch:x86

1557eebc6134cee9eb9d0583a2b40341

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_initterm
?terminate@@YAXXZ
_except_handler3
_adjust_fdiv
_onexit
__dllonexit
??1type_info@@UAE@XZ
_mbsnbicmp
wcsncpy
wcscpy
_ltoa
_ultoa
swprintf
_itoa
modf
ceil
fabs
floor
labs
_ftol
_splitpath
_fullpath
atol
__p___argc
_EH_prolog
__p___argv
_beginthreadex
_endthreadex
_strdup
_mbsdec
_expand
strtod
strtol
strtoul
abs
calloc
_msize
_purecall
strftime
_mbctype
localtime
gmtime
time
_ismbcspace
atoi
_ismbcdigit
_mbsnbcmp
sprintf
strlen
_mbclen
vsprintf
_mbsrchr
_mbscspn
_mbsspn
_mbsstr
_mbsrev
_mbslwr
_mbsupr
_mbspbrk
_mbschr
wcslen
_mbscmp
realloc
fclose
fflush
fseek
ftell
fgets
fputs
fwrite
fread
clearerr
_open_osfhandle
_fdopen
__doserrno
_get_osfhandle
memset
_mbsinc
abort
free
malloc
memcmp
memmove
memcpy
_CxxThrowException
mktime
__CxxFrameHandler

kernel32

FindClose
FindFirstFileA
lstrcpyA
MultiByteToWideChar
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
lstrcmpiA
GetShortPathNameA
GetModuleFileNameA
GlobalSize
GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalFree
GetFileAttributesA
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
LocalFree
FormatMessageA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
WaitForSingleObject
CreateSemaphoreA
DeleteFileA
LoadLibraryA
ReleaseMutex
InterlockedExchange
WaitForMultipleObjects
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
LockResource
LoadResource
FindResourceA
FreeLibrary
MulDiv
GetProfileIntA
VirtualProtect
FindResourceExA
SizeofResource
GetProcessVersion
GlobalFlags
GetTempFileNameA
GetDiskFreeSpaceA
LocalUnlock
LocalLock
GetTempPathA
SearchPathA
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
GetCurrentThread
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
FindNextFileA
GetTickCount
lstrlenW
CopyFileA
lstrcpyW
GetUserDefaultLCID
IsDBCSLeadByte
GetSystemDirectoryA
GetProcAddress
UnlockFile
MoveFileA
SetEndOfFile
FlushFileBuffers
LockFile
CloseHandle
ReadFile
SetFilePointer
WriteFile
DuplicateHandle
CreateFileA
GetCurrentProcess
lstrlenA
lstrcmpA
OutputDebugStringA
IsBadStringPtrA
IsBadReadPtr
IsBadWritePtr
GetLastError
IsBadStringPtrW
lstrcpynA
ReleaseSemaphore
SetLastError
CreateMutexA
GetVolumeInformationA
CreateEventA
RaiseException

gdi32

TextOutA
GetPolyFillMode
EnumFontFamiliesA
GetPixel
CreatePalette
GetPaletteEntries
RealizePalette
OffsetRgn
SetBrushOrgEx
CreateMetaFileA
CopyMetaFileA
LPtoDP
SetAbortProc
StartPage
EndPage
EndDoc
AbortDoc
DPtoLP
CombineRgn
SetRectRgn
GetMapMode
CreateDIBPatternBrushPt
CreateHatchBrush
ExtCreatePen
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
ExcludeClipRect
SelectClipRgn
OffsetWindowOrgEx
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
StartDocA
EnumFontFamiliesExA
CreateDCA
CreateRectRgnIndirect
Rectangle
UnrealizeObject
PatBlt
CreateBitmap
CreatePatternBrush
CreatePen
CloseMetaFile
DeleteMetaFile
RectVisible
PtVisible
IntersectClipRect
GetViewportOrgEx
GetWindowOrgEx
SetWindowOrgEx
GetDeviceCaps
Escape
GetCurrentPositionEx
MoveToEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetTextFaceA
GetWindowExtEx
GetViewportExtEx
GetROP2
GetBkMode
GetTextAlign
GetNearestColor
GetBkColor
GetTextColor
SaveDC
GetStockObject
RestoreDC
GetCharWidthA
DeleteObject
CreateFontA
StretchDIBits
DeleteDC
CreateCompatibleBitmap
GetTextExtentPoint32A
ExtTextOutA
CreateSolidBrush
BitBlt
CreateFontIndirectA
CreateCompatibleDC
GetTextMetricsA
GetObjectA
SelectObject
SetTextColor
GetClipBox
SetBkColor
GetStretchBltMode

user32

SetCapture
CharToOemA
OemToCharA
UnhookWindowsHookEx
MsgWaitForMultipleObjects
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetWindowLongA
GetWindow
SendMessageA
SetForegroundWindow
GetForegroundWindow
GetLastActivePopup
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
DestroyWindow
DefWindowProcA
GetKeyState
GetDlgCtrlID
GetWindowTextA
GetWindowTextLengthA
GetDlgItem
SetWindowPlacement
TrackPopupMenu
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetParent
IsChild
MessageBoxA
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
IsWindowVisible
EnableWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
GetClientRect
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
IsWindow
SetActiveWindow
GetFocus
DispatchMessageA
PeekMessageA
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
PostMessageA
LoadIconA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
SetCursor
IsWindowEnabled
GetDesktopWindow
ShowWindow
GetActiveWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
LoadCursorA
GetSystemMetrics
WaitMessage
GetCursorPos
GetWindowThreadProcessId
WindowFromPoint
ClientToScreen
TranslateMessage
GetMessageA
DefFrameProcA
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
RedrawWindow
LoadBitmapA
InflateRect
PtInRect
ReleaseDC
InvertRect
GetWindowDC
FillRect
SetTimer
KillTimer
SetRect
GetDC
IsZoomed
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
GetDCEx
LockWindowUpdate
GetTabbedTextExtentA
DrawTextA
GrayStringA
UnionRect
DrawFocusRect
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
wvsprintfA
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
BeginPaint
EndPaint
TabbedTextOutA
GetSysColorBrush
GetClassNameA
SetWindowTextA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
DestroyIcon
SetCursorPos
DestroyCursor
FindWindowA
IsClipboardFormatAvailable
MessageBeep
RemoveMenu
ValidateRect
PostQuitMessage
UnregisterClassA
ShowOwnedPopups
InsertMenuA
GetMenuStringA
RegisterClipboardFormatA
CopyAcceleratorTableA
InSendMessage
PostThreadMessageA
CreateMenu
WindowFromDC
CountClipboardFormats
SetWindowContextHelpId
CharNextA
GetNextDlgGroupItem
ClipCursor
DrawEdge
EnumChildWindows
InvalidateRgn
FrameRect
LoadStringA
CharUpperA
wsprintfA

Exports

Exports

?classCCachedDataPathProperty@CCachedDataPathProperty@@2UCRuntimeClass@@B
?classCDataPathProperty@CDataPathProperty@@2UCRuntimeClass@@B
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 616KB - Virtual size: 613KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
mfc42u.dll
.dll regsvr32 windows:4 windows x86 arch:x86

812a1105faba586fcfb8abc7e4d75b94

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

_initterm
?terminate@@YAXXZ
_except_handler3
_adjust_fdiv
_onexit
__dllonexit
??1type_info@@UAE@XZ
_wcsnicmp
wcsncpy
wcscpy
_ltow
_ultow
_itow
modf
ceil
fabs
floor
labs
_ftol
_EH_prolog
_wsplitpath
_wfullpath
_wtol
__p___argc
__p___wargv
_beginthreadex
_endthreadex
_wcsdup
_expand
wcstod
wcstol
wcstoul
abs
calloc
_msize
_purecall
wcsftime
localtime
gmtime
time
iswspace
_wtoi
iswdigit
wcsncmp
wcslen
swprintf
vswprintf
wcsrchr
wcscspn
wcsspn
wcsstr
_wcsrev
_wcslwr
_wcsupr
wcspbrk
wcschr
wcscmp
realloc
fclose
fflush
fseek
ftell
fgetws
fputws
fwrite
fread
clearerr
_open_osfhandle
_fdopen
__doserrno
_get_osfhandle
memset
abort
free
malloc
memcmp
memmove
memcpy
_CxxThrowException
mktime
__CxxFrameHandler

kernel32

GetShortPathNameW
GetModuleFileNameW
GlobalSize
lstrcmpiW
FormatMessageW
GlobalAlloc
GlobalReAlloc
GlobalUnlock
GlobalFree
GetFileAttributesW
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesW
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeExW
GetThreadLocale
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
WaitForSingleObject
CreateSemaphoreW
ReleaseSemaphore
CreateMutexW
ReleaseMutex
CreateEventW
WaitForMultipleObjects
GetModuleHandleW
LocalFree
FindFirstFileW
GlobalAddAtomW
InterlockedExchange
lstrcatW
GetVersion
LockResource
LoadResource
FindResourceW
FreeLibrary
LoadLibraryA
GlobalGetAtomNameW
GetModuleHandleA
MulDiv
GetProfileIntW
VirtualProtect
lstrcpyA
FindResourceExW
SizeofResource
GetProcessVersion
lstrcmpW
GlobalFlags
GetTempFileNameW
GetDiskFreeSpaceW
LocalUnlock
LocalLock
GetTempPathW
SearchPathW
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
GetCurrentThread
lstrcmpiA
SetErrorMode
GetPrivateProfileIntW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetCurrentDirectoryW
FindNextFileW
GetTickCount
CopyFileW
GetUserDefaultLCID
IsDBCSLeadByte
lstrcatA
GetSystemDirectoryA
GetFullPathNameW
GetVolumeInformationW
LoadLibraryW
FindClose
lstrcpyW
MoveFileW
GetProcAddress
DeleteFileW
LockFile
SetEndOfFile
UnlockFile
SetFilePointer
CloseHandle
FlushFileBuffers
CreateFileW
WriteFile
ReadFile
lstrlenA
GetCurrentProcess
DuplicateHandle
lstrlenW
lstrcmpA
OutputDebugStringW
IsBadStringPtrA
IsBadReadPtr
IsBadWritePtr
GetLastError
IsBadStringPtrW
lstrcpynW
GlobalDeleteAtom
SetLastError
GlobalFindAtomW
GlobalLock
GetCurrentThreadId
RaiseException

gdi32

CreatePen
SetMapMode
EnumFontFamiliesW
GetPixel
CreatePalette
GetPaletteEntries
RealizePalette
OffsetRgn
SetBrushOrgEx
CreateMetaFileW
CopyMetaFileW
LPtoDP
SetAbortProc
StartPage
EndPage
EndDoc
AbortDoc
DPtoLP
CombineRgn
SetRectRgn
GetMapMode
CreateDIBPatternBrushPt
CreateHatchBrush
ExtCreatePen
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
ExcludeClipRect
SelectClipRgn
OffsetWindowOrgEx
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
StartDocW
EnumFontFamiliesExW
CreateDCW
CreateRectRgnIndirect
Rectangle
UnrealizeObject
PatBlt
CreateBitmap
CreatePatternBrush
TextOutW
CloseMetaFile
DeleteMetaFile
RectVisible
PtVisible
IntersectClipRect
GetViewportOrgEx
GetWindowOrgEx
SetWindowOrgEx
GetDeviceCaps
Escape
GetTextExtentPoint32A
GetCurrentPositionEx
MoveToEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetViewportExtEx
GetROP2
GetWindowExtEx
GetTextAlign
GetPolyFillMode
GetBkMode
GetTextColor
GetNearestColor
GetStretchBltMode
RestoreDC
SaveDC
GetBkColor
CreateFontW
GetCharWidthW
GetStockObject
CreateCompatibleBitmap
StretchDIBits
DeleteObject
CreateSolidBrush
GetTextExtentPoint32W
DeleteDC
CreateCompatibleDC
BitBlt
ExtTextOutW
SelectObject
GetTextMetricsW
CreateFontIndirectW
SetBkColor
SetTextColor
GetObjectW
GetClipBox
GetTextFaceW

user32

GetCursorPos
UnhookWindowsHookEx
MsgWaitForMultipleObjects
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoW
IntersectRect
OffsetRect
RegisterWindowMessageW
SetWindowPos
SetWindowLongW
GetWindowLongW
GetWindow
SendMessageW
SetForegroundWindow
GetForegroundWindow
GetLastActivePopup
GetMessagePos
GetMessageTime
RemovePropW
CallWindowProcW
GetPropW
SetPropW
CallNextHookEx
SetWindowsHookExW
CreateWindowExW
DestroyWindow
DefWindowProcW
GetKeyState
GetDlgCtrlID
GetWindowTextW
GetWindowTextLengthW
GetDlgItem
SetWindowPlacement
TrackPopupMenu
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassW
GetClassInfoW
WinHelpW
GetCapture
GetParent
IsChild
MessageBoxW
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
IsWindowVisible
EnableWindow
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
GetClientRect
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
IsWindow
SetActiveWindow
GetFocus
DispatchMessageW
PeekMessageW
GetSysColor
MapWindowPoints
SendDlgItemMessageA
SendDlgItemMessageW
UpdateWindow
PostMessageW
LoadIconW
SetRectEmpty
LoadAcceleratorsW
TranslateAcceleratorW
ReleaseCapture
SetCursor
IsWindowEnabled
GetDesktopWindow
ShowWindow
GetActiveWindow
DestroyMenu
LoadMenuW
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
LoadCursorW
SetCapture
WaitMessage
GetSystemMetrics
GetWindowThreadProcessId
WindowFromPoint
ClientToScreen
TranslateMessage
GetMessageW
DefFrameProcW
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
RedrawWindow
LoadBitmapW
InflateRect
PtInRect
ReleaseDC
InvertRect
GetWindowDC
FillRect
SetTimer
KillTimer
SetRect
GetDC
IsZoomed
SetParent
IsRectEmpty
AppendMenuW
DeleteMenu
GetSystemMenu
GetDCEx
LockWindowUpdate
GetTabbedTextExtentA
DrawTextW
GrayStringW
UnionRect
DrawFocusRect
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
wvsprintfW
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
BeginPaint
EndPaint
TabbedTextOutW
GetSysColorBrush
GetClassNameW
SetWindowTextW
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextW
SetDlgItemInt
SetDlgItemTextW
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageW
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuW
GetMenuState
GetMenuCheckMarkDimensions
DestroyIcon
SetCursorPos
DestroyCursor
FindWindowW
GetTabbedTextExtentW
IsClipboardFormatAvailable
MessageBeep
RemoveMenu
ValidateRect
PostQuitMessage
UnregisterClassW
ShowOwnedPopups
InsertMenuW
GetMenuStringW
RegisterClipboardFormatW
CopyAcceleratorTableW
InSendMessage
PostThreadMessageW
CreateMenu
WindowFromDC
CountClipboardFormats
SetWindowContextHelpId
CharNextW
GetNextDlgGroupItem
ClipCursor
DrawEdge
EnumChildWindows
InvalidateRgn
FrameRect
LoadStringW
MessageBoxA
CharUpperW
wsprintfW

Exports

Exports

?classCCachedDataPathProperty@CCachedDataPathProperty@@2UCRuntimeClass@@B
?classCDataPathProperty@CDataPathProperty@@2UCRuntimeClass@@B
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 608KB - Virtual size: 605KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcp60.dll
.dll windows:4 windows x86 arch:x86

1b1839992700df52b049b87961a724e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcrt

memmove
__CxxFrameHandler
free
localeconv
_Gettnames
_Getdays
_Getmonths
__mb_cur_max
atan2
cos
exp
ldexp
log
pow
sin
sqrt
??2@YAPAXI@Z
strtoul
_errno
strtol
sprintf
strcspn
fclose
fwrite
fputc
ungetc
fgetc
fgetpos
fseek
fsetpos
setvbuf
memchr
memset
ungetwc
fgetwc
_Strftime
fopen
_iob
setlocale
malloc
realloc
__crtCompareStringA
__lc_collate_cp
_unlock
__lc_handle
_lock
__setlc_active
__unguarded_readlc_active
__crtLCMapStringA
__lc_codepage
towlower
towupper
strcmp
_pctype
_isctype
_ftol
strtod
??1type_info@@UAE@XZ
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
_initterm
_adjust_fdiv
memcmp
memcpy
strlen
_CxxThrowException
wcslen
??4exception@@QAEAAV0@ABV0@@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
fflush
?what@exception@@UBEPBDXZ
fputwc

kernel32

DisableThreadLibraryCalls
MultiByteToWideChar
DeleteCriticalSection
InterlockedExchange
LeaveCriticalSection
Sleep
EnterCriticalSection
InitializeCriticalSection
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte

Exports

Exports

??0?$_Complex_base@M@std@@QAE@ABM0@Z
??0?$_Complex_base@N@std@@QAE@ABN0@Z
??0?$_Complex_base@O@std@@QAE@ABO0@Z
??0?$_Mpunct@D@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@D@std@@QAE@I_N@Z
??0?$_Mpunct@G@std@@QAE@ABV_Locinfo@1@I_N@Z
??0?$_Mpunct@G@std@@QAE@I_N@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@PAU_iobuf@@@Z
??0?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_fstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_fstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ios@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_iostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N@Z
??0?$basic_istream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@PBDH@Z
??0?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAE@XZ
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@PBDH@Z
??0?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N1@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@_N1@Z
??0?$basic_ostream@GU?$char_traits@G@std@@@std@@QAE@W4_Uninitialized@1@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE@ABV01@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@W4_Uninitialized@1@@Z
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@IAE@XZ
??0?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@IIABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@IDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD0ABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDIABV?$allocator@D@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@IIABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@IGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBG0ABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGABV?$allocator@G@1@@Z
??0?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@PBGIABV?$allocator@G@1@@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@H@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV01@@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@1@H@Z
??0?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@H@Z
??0?$codecvt@DDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@DDH@std@@QAE@I@Z
??0?$codecvt@GDH@std@@QAE@ABV_Locinfo@1@I@Z
??0?$codecvt@GDH@std@@QAE@I@Z
??0?$collate@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@D@std@@QAE@I@Z
??0?$collate@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$collate@G@std@@QAE@I@Z
??0?$complex@M@std@@QAE@ABM0@Z
??0?$complex@M@std@@QAE@ABV?$complex@N@1@@Z
??0?$complex@M@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@N@std@@QAE@ABN0@Z
??0?$complex@N@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@N@std@@QAE@ABV?$complex@O@1@@Z
??0?$complex@O@std@@QAE@ABO0@Z
??0?$complex@O@std@@QAE@ABV?$complex@M@1@@Z
??0?$complex@O@std@@QAE@ABV?$complex@N@1@@Z
??0?$ctype@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@D@std@@QAE@PBF_NI@Z
??0?$ctype@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$ctype@G@std@@QAE@I@Z
??0?$messages@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@D@std@@QAE@I@Z
??0?$messages@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$messages@G@std@@QAE@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$moneypunct@D$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$00@std@@QAE@I@Z
??0?$moneypunct@D$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@D$0A@@std@@QAE@I@Z
??0?$moneypunct@G$00@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$00@std@@QAE@I@Z
??0?$moneypunct@G$0A@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$moneypunct@G$0A@@std@@QAE@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$numpunct@D@std@@QAE@ABV_Locinfo@1@I@Z
??0?$numpunct@D@std@@QAE@I@Z
??0?$numpunct@G@std@@QAE@ABV_Locinfo@1@I@Z
??0?$numpunct@G@std@@QAE@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@QAE@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@ABV_Locinfo@1@I@Z
??0?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@QAE@I@Z
??0Init@ios_base@std@@QAE@XZ
??0_Locinfo@std@@QAE@ABV01@@Z
??0_Locinfo@std@@QAE@HPBD@Z
??0_Locinfo@std@@QAE@PBD@Z
??0_Lockit@std@@QAE@XZ
??0_Timevec@std@@QAE@ABV01@@Z
??0_Timevec@std@@QAE@PAX@Z
??0_Winit@std@@QAE@XZ
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0__non_rtti_object@std@@QAE@PBD@Z
??0bad_alloc@std@@QAE@ABV01@@Z
??0bad_alloc@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_exception@std@@QAE@ABV01@@Z
??0bad_exception@std@@QAE@PBD@Z
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0codecvt_base@std@@QAE@I@Z
??0ctype_base@std@@QAE@I@Z
??0domain_error@std@@QAE@ABV01@@Z
??0domain_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0facet@locale@std@@IAE@I@Z
??0ios_base@std@@IAE@XZ
??0ios_base@std@@QAE@ABV01@@Z
??0length_error@std@@QAE@ABV01@@Z
??0length_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0locale@std@@AAE@PAV_Locimp@01@@Z
??0locale@std@@QAE@ABV01@0H@Z
??0locale@std@@QAE@ABV01@@Z
??0locale@std@@QAE@ABV01@PBDH@Z
??0locale@std@@QAE@PBDH@Z
??0locale@std@@QAE@W4_Uninitialized@1@@Z
??0locale@std@@QAE@XZ
??0logic_error@std@@QAE@ABV01@@Z
??0logic_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0messages_base@std@@QAE@I@Z
??0money_base@std@@QAE@I@Z
??0ostrstream@std@@QAE@PADHH@Z
??0out_of_range@std@@QAE@ABV01@@Z
??0out_of_range@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0overflow_error@std@@QAE@ABV01@@Z
??0overflow_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0range_error@std@@QAE@ABV01@@Z
??0range_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0runtime_error@std@@QAE@ABV01@@Z
??0runtime_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??0strstream@std@@QAE@PADHH@Z
??0time_base@std@@QAE@I@Z
??0underflow_error@std@@QAE@ABV01@@Z
??0underflow_error@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z
??1?$_Mpunct@D@std@@UAE@XZ
??1?$_Mpunct@G@std@@UAE@XZ
??1?$basic_filebuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_filebuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_fstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_fstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ifstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ifstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ios@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_istream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_ofstream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ofstream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_ostream@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_streambuf@GU?$char_traits@G@std@@@std@@UAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
??1?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@UAE@XZ
??1?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@UAE@XZ
??1?$codecvt@DDH@std@@UAE@XZ
??1?$codecvt@GDH@std@@UAE@XZ
??1?$collate@D@std@@UAE@XZ
??1?$collate@G@std@@UAE@XZ
??1?$ctype@D@std@@UAE@XZ
??1?$ctype@G@std@@UAE@XZ
??1?$messages@D@std@@UAE@XZ
??1?$messages@G@std@@UAE@XZ
??1?$money_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$money_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$money_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$money_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$moneypunct@D$00@std@@UAE@XZ
??1?$moneypunct@D$0A@@std@@UAE@XZ
??1?$moneypunct@G$00@std@@UAE@XZ
??1?$moneypunct@G$0A@@std@@UAE@XZ
??1?$num_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$num_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$num_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$num_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$numpunct@D@std@@UAE@XZ
??1?$numpunct@G@std@@UAE@XZ
??1?$time_get@DV?$istreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$time_get@GV?$istreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1?$time_put@DV?$ostreambuf_iterator@DU?$char_traits@D@std@@@std@@@std@@UAE@XZ
??1?$time_put@GV?$ostreambuf_iterator@GU?$char_traits@G@std@@@std@@@std@@UAE@XZ
??1Init@ios_base@std@@QAE@XZ
??1_Locinfo@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
??1_Timevec@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_alloc@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_exception@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1codecvt_base@std@@UAE@XZ
??1ctype_base@std@@UAE@XZ
??1domain_error@std@@UAE@XZ
??1facet@locale@std@@UAE@XZ
??1ios_base@std@@UAE@XZ
??1istrstream@std@@UAE@XZ
??1length_error@std@@UAE@XZ
??1locale@std@@QAE@XZ
??1logic_error@std@@UAE@XZ
??1messages_base@std@@UAE@XZ
??1money_base@std@@UAE@XZ
??1ostrstream@std@@UAE@XZ
??1out_of_range@std@@UAE@XZ
??1overflow_error@std@@UAE@XZ
??1range_error@std@@UAE@XZ
??1runtime_error@std@@UAE@XZ
??1strstream@std@@UAE@XZ
??1strstreambuf@std@@UAE@XZ
??1time_base@std@@UAE@XZ
??1underflow_error@std@@UAE@XZ
??4?$_Complex_base@M@std@@QAEAAV01@ABV01@@Z
??4?$_Complex_base@N@std@@QAEAAV01@ABV01@@Z
??4?$_Complex_base@O@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@M@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@N@std@@QAEAAV01@ABV01@@Z
??4?$_Ctr@O@std@@QAEAAV01@ABV01@@Z
??4?$allocator@X@std@@QAEAAV01@ABV01@@Z
??4?$basic_filebuf@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_filebuf@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_fstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_fstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ifstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ifstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ios@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ios@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_iostream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_iostream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_istringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ofstream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ofstream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_ostringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_streambuf@GU?$char_traits@G@std@@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@D@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@G@Z
??4?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@PBG@Z
??4?$basic_stringbuf@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringbuf@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??4?$basic_stringstream@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV01@ABV01@@Z
??4?$char_traits@D@std@@QAEAAU01@ABU01@@Z
??4?$char_traits@G@std@@QAEAAU01@ABU01@@Z
??4?$complex@M@std@@QAEAAV01@ABM@Z
??4?$complex@M@std@@QAEAAV01@ABV01@@Z
??4?$complex@N@std@@QAEAAV01@ABN@Z
??4?$complex@N@std@@QAEAAV01@ABV01@@Z
??4?$complex@O@std@@QAEAAV01@ABO@Z
??4?$complex@O@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@C@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@D@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@E@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@F@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@G@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@H@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@I@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@J@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@K@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@M@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@N@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@O@std@@QAEAAV01@ABV01@@Z
??4?$numeric_limits@_N@std@@QAEAAV01@ABV01@@Z
??4Init@ios_base@std@@QAEAAV012@ABV012@@Z
??4_Locinfo@std@@QAEAAV01@ABV01@@Z
??4_Lockit@std@@QAEAAV01@ABV01@@Z
??4_Num_base@std@@QAEAAU01@ABU01@@Z
??4_Num_float_base@std@@QAEAAU01@ABU01@@Z
??4_Num_int_base@std@@QAEAAU01@ABU01@@Z
??4_Timevec@std@@QAEAAV01@ABV01@@Z
??4_Winit@std@@QAEAAV01@ABV01@@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_alloc@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_exception@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4domain_error@std@@QAEAAV01@ABV01@@Z
??4id@locale@std@@QAEAAV012@ABV012@@Z
??4ios_base@std@@QAEAAV01@ABV01@@Z
??4length_error@std@@QAEAAV01@ABV01@@Z
??4locale@std@@QAEAAV01@ABV01@@Z
??4logic_error@std@@QAEAAV01@ABV01@@Z
??4out_of_range@std@@QAEAAV01@ABV01@@Z
??4overflow_error@std@@QAEAAV01@ABV01@@Z
??4range_error@std@@QAEAAV01@ABV01@@Z
??4runtime_error@std@@QAEAAV01@ABV01@@Z
??4underflow_error@std@@QAEAAV01@ABV01@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAF@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAG@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAH@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAI@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAJ@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAK@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAN@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAO@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AAPAX@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??5?$basic_istream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAC@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAD@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAE@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@M@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@N@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@AAV?$complex@O@0@@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAC@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAD@Z
??5std@@YAAAV?$basic_istream@DU?$char_traits@D@std@@@0@AAV10@PAE@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAG@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@M@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@N@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@AAV?$complex@O@0@@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAF@Z
??5std@@YAAAV?$basic_istream@GU?$char_traits@G@std@@@0@AAV10@PAG@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@DU?$char_traits@D@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@_N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@F@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@I@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@J@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@K@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@M@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@N@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@O@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAV?$basic_ios@GU?$char_traits@G@std@@@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PAV?$basic_streambuf@GU?$char_traits@G@std@@@1@@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@PBX@Z
??6?$basic_ostream@GU?$char_traits@G@std@@@std@@QAEAAV01@_N@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@M@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@N@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$complex@O@0@@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@C@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@E@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBC@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBE@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@M@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@N@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@ABV?$complex@O@0@@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@G@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBF@Z
??6std@@YAAAV?$basic_ostream@GU?$char_traits@G@std@@@0@AAV10@PBG@Z
??7ios_base@std@@QBE_NXZ
??8locale@std@@QBE_NABV01@@Z
??8std@@YA_NABMABV?$complex@M@0@@Z
??8std@@YA_NABNABV?$complex@N@0@@Z
??8std@@YA_NABOABV?$complex@O@0@@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??8std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??8std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??8std@@YA_NABV?$complex@M@0@0@Z
??8std@@YA_NABV?$complex@M@0@ABM@Z
??8std@@YA_NABV?$complex@N@0@0@Z
??8std@@YA_NABV?$complex@N@0@ABN@Z
??8std@@YA_NABV?$complex@O@0@0@Z
??8std@@YA_NABV?$complex@O@0@ABO@Z
??8std@@YA_NPBDABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??8std@@YA_NPBGABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@@Z
??9locale@std@@QBE_NABV01@@Z
??9std@@YA_NABMABV?$complex@M@0@@Z
??9std@@YA_NABNABV?$complex@N@0@@Z
??9std@@YA_NABOABV?$complex@O@0@@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??9std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@0@Z
??9std@@YA_NABV?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@0@PBG@Z
??9std@@YA_NABV?$complex@M@0@0@Z
??9std@@YA_NABV?$complex@M@0@ABM@Z

Sections

.text
Size: 168KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
msvcrt.dll
.dll windows:4 windows x86 arch:x86

8d26773106ed39fbb89a157d19d8aa89

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetFilePointer
RtlUnwind
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetUnhandledExceptionFilter
GetModuleFileNameA
GetModuleFileNameW
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetCommandLineA
GetVersion
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
ResumeThread
CreateThread
TlsSetValue
ExitThread
CloseHandle
GetCurrentThreadId
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
HeapFree
HeapAlloc
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
SetHandleCount
GetFileType
GetStartupInfoA
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
MultiByteToWideChar
GetCommandLineW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
SetEnvironmentVariableW
InterlockedDecrement
InterlockedIncrement
FlushFileBuffers
RaiseException
SetStdHandle
Sleep
CompareStringA
CompareStringW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
GetTimeZoneInformation
SetEnvironmentVariableA
Beep
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
GetFileAttributesA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetFileAttributesA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
CreateDirectoryA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
DeleteFileW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
MoveFileA
GetExitCodeProcess
WaitForSingleObject
FreeLibrary
CreateProcessA
CreateProcessW
HeapValidate
HeapCompact
HeapWalk
HeapSize
ReadConsoleA
SetConsoleMode
GetConsoleMode
SetEndOfFile
WriteConsoleA
DuplicateHandle
GetFileInformationByHandle
PeekNamedPipe
ReadConsoleInputA
PeekConsoleInputA
GetNumberOfConsoleInputEvents
LockFile
UnlockFile
CreateFileA
CreatePipe
ReadFile
CreateFileW
GetSystemTimeAsFileTime
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetLocalTime
SetLocalTime
GetSystemTime

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@@QAE@ABV0@@Z
??0__non_rtti_object@@QAE@PBD@Z
??0bad_cast@@QAE@ABQBD@Z
??0bad_cast@@QAE@ABV0@@Z
??0bad_typeid@@QAE@ABV0@@Z
??0bad_typeid@@QAE@PBD@Z
??0exception@@QAE@ABQBD@Z
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1__non_rtti_object@@UAE@XZ
??1bad_cast@@UAE@XZ
??1bad_typeid@@UAE@XZ
??1exception@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
??4bad_cast@@QAEAAV0@ABV0@@Z
??4bad_typeid@@QAEAAV0@ABV0@@Z
??4exception@@QAEAAV0@ABV0@@Z
??8type_info@@QBEHABV0@@Z
??9type_info@@QBEHABV0@@Z
??_7__non_rtti_object@@6B@
??_7bad_cast@@6B@
??_7bad_typeid@@6B@
??_7exception@@6B@
??_E__non_rtti_object@@UAEPAXI@Z
??_Ebad_cast@@UAEPAXI@Z
??_Ebad_typeid@@UAEPAXI@Z
??_Eexception@@UAEPAXI@Z
??_G__non_rtti_object@@UAEPAXI@Z
??_Gbad_cast@@UAEPAXI@Z
??_Gbad_typeid@@UAEPAXI@Z
??_Gexception@@UAEPAXI@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDXZ
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?terminate@@YAXXZ
?unexpected@@YAXXZ
?what@exception@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CxxThrowException
_EH_prolog
_Getdays
_Getmonths
_Gettnames
_HUGE
_Strftime
_XcptFilter
__CxxFrameHandler
__CxxLongjmpUnwind
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__argc
__argv
__badioinfo
__crtCompareStringA
__crtGetLocaleInfoW
__crtLCMapStringA
__dllonexit
__doserrno
__fpecode
__getmainargs
__initenv
__isascii
__iscsym
__iscsymf
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv_init
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fileinfo
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__osver
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__winmajor
__p__winminor
__p__winver
__p__wpgmptr
__pioinfo
__pxcptinfoptrs
__set_app_type
__setlc_active
__setusermatherr
__threadhandle
__threadid
__toascii
__unDName
__unDNameEx
__unguarded_readlc_active
__wargv
__wgetmainargs
__winitenv
_abnormal_termination
_access
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_amsg_exit
_assert
_atodbl
_atoi64
_atoldbl
_beep
_beginthread
_beginthreadex
_c_exit
_cabs
_callnewh
_cexit
_cgets
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_clearfp
_close
_commit
_commode
_control87
_controlfp
_copysign
_cprintf
_cputs
_creat
_cscanf
_ctype
_cwait
_daylight
_dstbias
_dup
_dup2
_ecvt
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fcloseall
_fcvt
_fdopen
_fgetchar
_fgetwchar
_filbuf
_fileinfo
_filelength
_filelengthi64
_fileno
_findclose
_findfirst
_findfirsti64
_findnext
_findnexti64
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fputchar
_fputwchar
_fsopen
_fstat
_fstati64
_ftime
_ftol
_fullpath
_futime
_gcvt
_get_osfhandle
_get_sbh_threshold
_getch
_getche
_getcwd
_getdcwd
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getsystime
_getw
_getws
_global_unwind2
_heapadd
_heapchk
_heapmin
_heapset
_heapused
_heapwalk
_hypot
_i64toa
_i64tow
_initterm
_inp
_inpd
_inpw
_iob
_isatty
_isctype
_ismbbalnum
_ismbbalpha
_ismbbgraph
_ismbbkalnum
_ismbbkana
_ismbbkprint
_ismbbkpunct
_ismbblead
_ismbbprint
_ismbbpunct
_ismbbtrail
_ismbcalnum
_ismbcalpha
_ismbcdigit
_ismbcgraph
_ismbchira
_ismbckata
_ismbcl0
_ismbcl1
_ismbcl2
_ismbclegal
_ismbclower
_ismbcprint
_ismbcpunct
_ismbcspace
_ismbcsymbol
_ismbcupper
_ismbslead
_ismbstrail
_isnan
_itoa
_itow
_j0
_j1
_jn
_kbhit
_lfind
_loaddll
_local_unwind2
_lock
_locking
_logb
_longjmpex
_lrotl
_lrotr
_lsearch
_lseek
_lseeki64
_ltoa
_ltow
_makepath
_mbbtombc
_mbbtype
_mbcasemap
_mbccpy
_mbcjistojms
_mbcjmstojis
_mbclen
_mbctohira
_mbctokata
_mbctolower
_mbctombb
_mbctoupper
_mbctype
_mbsbtype
_mbscat
_mbschr
_mbscmp
_mbscoll
_mbscpy
_mbscspn
_mbsdec
_mbsdup
_mbsicmp
_mbsicoll
_mbsinc
_mbslen
_mbslwr
_mbsnbcat
_mbsnbcmp
_mbsnbcnt
_mbsnbcoll
_mbsnbcpy
_mbsnbicmp
_mbsnbicoll
_mbsnbset
_mbsncat
_mbsnccnt
_mbsncmp
_mbsncoll
_mbsncpy
_mbsnextc
_mbsnicmp
_mbsnicoll
_mbsninc
_mbsnset
_mbspbrk
_mbsrchr
_mbsrev
_mbsset
_mbsspn
_mbsspnp
_mbsstr
_mbstok
_mbstrlen
_mbsupr
_memccpy
_memicmp
_mkdir
_mktemp
_msize
_nextafter
_onexit
_open
_open_osfhandle
_osver
_outp
_outpd
_outpw
_pclose
_pctype
_pgmptr
_pipe
_popen
_purecall
_putch
_putenv
_putw
_putws
_pwctype
_read
_rmdir
_rmtmp
_rotl
_rotr
_safe_fdiv
_safe_fdivr
_safe_fprem
_safe_fprem1
_scalb
_searchenv
_seh_longjmp_unwind
_set_error_mode
_set_sbh_threshold
_seterrormode
_setjmp
_setjmp3
_setmaxstdio
_setmbcp
_setmode
_setsystime
_sleep
_snprintf
_snwprintf
_sopen
_spawnl
_spawnle
_spawnlp
_spawnlpe
_spawnv
_spawnve
_spawnvp
_spawnvpe
_splitpath
_stat
_stati64
_statusfp
_strcmpi
_strdate
_strdup
_strerror
_stricmp
_stricoll
_strlwr
_strncoll
_strnicmp
_strnicoll
_strnset
_strrev
_strset
_strtime
_strupr
_swab
_sys_errlist
_sys_nerr
_tell
_telli64
_tempnam
_timezone
_tolower
_toupper
_tzname
_tzset
_ui64toa
_ui64tow
_ultoa
_ultow
_umask
_ungetch
_unlink
_unloaddll
_unlock
_utime
_vsnprintf
_vsnwprintf
_waccess
_wasctime
_wchdir
_wchmod
_wcmdln
_wcreat
_wcsdup
_wcsicmp
_wcsicoll
_wcslwr
_wcsncoll
_wcsnicmp
_wcsnicoll
_wcsnset
_wcsrev
_wcsset
_wcsupr

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
run_hwp.exe
.exe windows:4 windows x86 arch:x86

c99404a31a2d9570b841be577a3f900c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
WinExec
GetCurrentDirectoryA
GetProcAddress
GetLastError
GetFileAttributesA
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
HeapFree
GetCPInfo
GetACP
GetOEMCP
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
CloseHandle
ReadFile
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
HeapAlloc
VirtualAlloc
HeapReAlloc
GetStringTypeA
GetStringTypeW
SetFilePointer
SetStdHandle
FlushFileBuffers
CreateFileA
SetEndOfFile

user32

MessageBoxA

advapi32

RegCloseKey
RegSetValueA
RegDeleteKeyA
RegOpenKeyA
RegQueryValueExA

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
u300_949.dat
u300_cjk.dat
u300_com.dat
u300_gen.dat
u300_h2u.dat
u300_pua.dat
u300_u2h.dat
HwpView.enu
.dll windows:4 windows x86 arch:x86

ce6ef31899b31809ae0c71c094c6f083

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord1253
ord342
ord823
ord1182
ord1168

msvcrt

free
_initterm
malloc
_adjust_fdiv

Sections

.text
Size: 4KB - Virtual size: 508B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 282B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Hwpviewe.msi
.msi
Hwpviewk.msi
.msi
InstMsiA.exe
.exe windows:5 windows x86 arch:x86

86f649127f320d79de0c023a60ef77bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
FreeSid
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

lstrcatA
GetFileAttributesA
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentProcess
lstrlenA
lstrcmpiA
lstrcpyA
GetModuleFileNameA
FreeLibrary
LocalAlloc
GetLastError
GetSystemDirectoryA
LoadLibraryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
_lclose
_llseek
_lopen
GetWindowsDirectoryA
GetProcAddress
RemoveDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
IsDBCSLeadByte
ExitProcess
GetModuleHandleA
CloseHandle
GetCommandLineA
LoadResource
FindResourceA
CreateMutexA
SetEvent
CreateEventA
SetCurrentDirectoryA
CreateThread
ResetEvent
TerminateThread
GetVersionExA
LocalFree
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
FreeResource
LockResource
SizeofResource
CreateFileA
ReadFile
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetTempFileNameA
GetSystemInfo
GetDriveTypeA
lstrcpynA
GetVolumeInformationA
GetCurrentDirectoryA
LoadLibraryExA
GetStartupInfoA
CreateDirectoryA
GlobalFree
FormatMessageA
GetDiskFreeSpaceA
MulDiv

gdi32

GetDeviceCaps

user32

wsprintfA
ExitWindowsEx
CharNextA
CharUpperA
EndDialog
GetDesktopWindow
CharPrevA
GetWindowLongA
CallWindowProcA
GetDlgItem
SetForegroundWindow
SetWindowTextA
SendDlgItemMessageA
SetWindowLongA
EnableWindow
SendMessageA
LoadStringA
MsgWaitForMultipleObjects
PeekMessageA
MessageBoxA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
ShowWindow
DialogBoxIndirectParamA
SetDlgItemTextA
MessageBeep
GetDlgItemTextA
DispatchMessageA

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
InstMsiW.exe
.exe windows:5 windows x86 arch:x86

86f649127f320d79de0c023a60ef77bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegCloseKey
EqualSid
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
AdjustTokenPrivileges
LookupPrivilegeValueA
FreeSid
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegQueryInfoKeyA

kernel32

lstrcatA
GetFileAttributesA
GetShortPathNameA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentProcess
lstrlenA
lstrcmpiA
lstrcpyA
GetModuleFileNameA
FreeLibrary
LocalAlloc
GetLastError
GetSystemDirectoryA
LoadLibraryA
FindClose
FindNextFileA
DeleteFileA
SetFileAttributesA
lstrcmpA
FindFirstFileA
_lclose
_llseek
_lopen
GetWindowsDirectoryA
GetProcAddress
RemoveDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
IsDBCSLeadByte
ExitProcess
GetModuleHandleA
CloseHandle
GetCommandLineA
LoadResource
FindResourceA
CreateMutexA
SetEvent
CreateEventA
SetCurrentDirectoryA
CreateThread
ResetEvent
TerminateThread
GetVersionExA
LocalFree
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetTempPathA
FreeResource
LockResource
SizeofResource
CreateFileA
ReadFile
WriteFile
SetFilePointer
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
GetTempFileNameA
GetSystemInfo
GetDriveTypeA
lstrcpynA
GetVolumeInformationA
GetCurrentDirectoryA
LoadLibraryExA
GetStartupInfoA
CreateDirectoryA
GlobalFree
FormatMessageA
GetDiskFreeSpaceA
MulDiv

gdi32

GetDeviceCaps

user32

wsprintfA
ExitWindowsEx
CharNextA
CharUpperA
EndDialog
GetDesktopWindow
CharPrevA
GetWindowLongA
CallWindowProcA
GetDlgItem
SetForegroundWindow
SetWindowTextA
SendDlgItemMessageA
SetWindowLongA
EnableWindow
SendMessageA
LoadStringA
MsgWaitForMultipleObjects
PeekMessageA
MessageBoxA
SetWindowPos
ReleaseDC
GetDC
GetWindowRect
ShowWindow
DialogBoxIndirectParamA
SetDlgItemTextA
MessageBeep
GetDlgItemTextA
DispatchMessageA

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
install.exe
.exe windows:4 windows x86 arch:x86

79c2ee0cfc1ad0f8c2baf39735450e89

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
GetFileAttributesA
WaitForSingleObject
GetVersionExA
GetCurrentDirectoryA
CloseHandle
GetUserDefaultLCID
lstrlenA
HeapDestroy
TerminateProcess
HeapReAlloc
MultiByteToWideChar
GetProcAddress
GetOEMCP
LoadLibraryA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
CreateProcessA
HeapCreate
VirtualFree
HeapFree
VirtualAlloc
GetEnvironmentStrings
WideCharToMultiByte
GetACP
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetCPInfo
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
WriteFile

user32

CreateDialogParamA
ExitWindowsEx
DestroyWindow
MessageBoxA
wsprintfA
ShowWindow

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
readme.txt
更多软件下载.url
软件下载说明.txt

Sharing

General

Malware Config

Signatures

Files

8bcf55041e76f36118686bc0dc06768b

Headers

File Characteristics

Imports

isgdi32

kernel32

user32

gdi32

comdlg32

Exports

Exports

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 17KB - Virtual size: 21KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 7KB - Virtual size: 6KB

9b95244f8d25114a6724434d63d29b50

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 36KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 49KB

.reloc Size: 4KB - Virtual size: 3KB

4e58e24012b1929a870f3b9e47a04e61

Headers

File Characteristics

Imports

user32

kernel32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 67KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 21KB

.reloc Size: 4KB - Virtual size: 3KB

2c2646c939ee6cd4430697d589092954

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 20KB - Virtual size: 23KB

.reloc Size: 4KB - Virtual size: 2KB

2bd0ddd114a0b7db4f907d0e714bfadd

Headers

File Characteristics

Imports

gdi32

kernel32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 16KB

.reloc Size: 4KB - Virtual size: 3KB

71f51b55439344a59b9f9de600ebdee0

Headers

File Characteristics

Imports

isgdi32

kernel32

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 17KB - Virtual size: 21KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 7KB - Virtual size: 6KB

.text
Size: 40KB - Virtual size: 36KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 49KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 68KB - Virtual size: 67KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 21KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 20KB - Virtual size: 23KB

.reloc
Size: 4KB - Virtual size: 2KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 16KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 212KB - Virtual size: 212KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 32KB - Virtual size: 37KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 14KB - Virtual size: 13KB

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 18KB - Virtual size: 23KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 6KB - Virtual size: 5KB

.text
Size: 236KB - Virtual size: 235KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 36KB - Virtual size: 43KB

.rsrc
Size: 48KB - Virtual size: 46KB

.reloc
Size: 32KB - Virtual size: 29KB

.text
Size: 96KB - Virtual size: 92KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 20KB - Virtual size: 23KB

.reloc
Size: 8KB - Virtual size: 4KB