35e10c53232112b1193880e5b3ef36bc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

35e10c53232112b1193880e5b3ef36bc_JaffaCakes118
Size

25.5MB
MD5

35e10c53232112b1193880e5b3ef36bc
SHA1

d31c06051210c825c394da2842031b845f94f609
SHA256

c37ac379f7614de0382c60dee8470067c15397a0679cff1f6e4b7f6b40f029b6
SHA512

864e3dfb840b3ea9ff3c0478d97da3b7e98b587fdc75252d561f009b0e121491855624b7e46de736dba8f1ac02c56cf610d84d614f83407557a4b71538a54319
SSDEEP

393216:gg+IWYDv9FYF3+x/h/13Bs+VYVY03ssoV+/Z/Zs+dEJxiTP/bciziKTDxb/rKXIE:H+7F3M/9Njf2tdEmUizB/rKYSoorz

Score

3^/10

Malware Config

Signatures

Unsigned PE 32 IoCs

Checks for missing Authenticode signature.

resource
unpack001/$PLUGINSDIR/Dialer.dll
unpack001/$PLUGINSDIR/INetC.dll
unpack001/$PLUGINSDIR/ShellLink.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/UserInfo.dll
unpack001/$PLUGINSDIR/advsplash.dll
unpack001/$PLUGINSDIR/nsDialogs.dll
unpack001/$PLUGINSDIR/nsJSON.dll
unpack001/$TEMP/NSISPromotionEx.dll
unpack001/$TEMP/NSISTrigger.dll
unpack001/CrashDumpCollector.dll
unpack001/GomVR.dll
unpack001/gdiplus.dll
unpack001/libass.dll
unpack001/modules/GAF.ax
unpack001/modules/GNF.ax
unpack001/modules/GRFU.ax
unpack001/modules/GSFU.ax
unpack001/modules/GVF.ax
unpack001/modules/GVRF.ax
unpack001/modules/GifMaker.dll
unpack001/modules/MediaSource.ax
unpack001/modules/Subtitle.dll
unpack001/modules/SubtitleFilter.dll
unpack001/modules/avcodec-gp-57.dll
unpack001/modules/avfilter-gp-6.dll
unpack001/modules/avformat-gp-57.dll
unpack001/modules/avutil-gp-55.dll
unpack001/modules/libmp3lame.dll
unpack001/modules/qscl.dll
unpack001/modules/swresample-gp-2.dll
unpack001/modules/swscale-gp-4.dll

Files

35e10c53232112b1193880e5b3ef36bc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4ea4df5d94204fc550be1874e1b77ea7

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

4f:58:fc:05:42:6c:c4:b6:5d:bc:0c:2c:2e:3a:f3:04
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

11-07-2019 00:00

Not After

15-08-2021 23:59

Subject

CN=GRETECH CORPORATION,OU=GRETECH CORPORATION,O=GRETECH CORPORATION,L=Shinjuku,ST=Tokyo,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

c8:a8:31:07:21:7e:2e:f7:bb:0a:c9:15:c0:18:73:bb:38:1d:d0:c4
Signer

Actual PE Digest

c8:a8:31:07:21:7e:2e:f7:bb:0a:c9:15:c0:18:73:bb:38:1d:d0:c4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCurrentDirectoryW
GetFileAttributesW
GetFullPathNameW
Sleep
GetTickCount
CreateFileW
GetFileSize
MoveFileW
SetFileAttributesW
GetModuleFileNameW
CopyFileW
ExitProcess
SetEnvironmentVariableW
GetWindowsDirectoryW
GetTempPathW
GetCommandLineW
GetVersion
SetErrorMode
WaitForSingleObject
GetCurrentProcess
CompareFileTime
GlobalUnlock
GlobalLock
CreateThread
GetLastError
CreateDirectoryW
CreateProcessW
RemoveDirectoryW
lstrcmpiA
GetTempFileNameW
WriteFile
lstrcpyA
lstrcpyW
MoveFileExW
lstrcatW
GetSystemDirectoryW
GetProcAddress
GetModuleHandleA
GlobalFree
GlobalAlloc
GetShortPathNameW
SearchPathW
lstrcmpiW
SetFileTime
CloseHandle
ExpandEnvironmentStringsW
lstrcmpW
GetDiskFreeSpaceW
lstrlenW
lstrcpynW
GetExitCodeProcess
FindFirstFileW
FindNextFileW
DeleteFileW
SetFilePointer
ReadFile
FindClose
MulDiv
MultiByteToWideChar
lstrlenA
WideCharToMultiByte
GetPrivateProfileStringW
WritePrivateProfileStringW
FreeLibrary
LoadLibraryExW
GetModuleHandleW

user32

GetSystemMenu
SetClassLongW
IsWindowEnabled
EnableMenuItem
SetWindowPos
GetSysColor
GetWindowLongW
SetCursor
LoadCursorW
CheckDlgButton
GetMessagePos
LoadBitmapW
CallWindowProcW
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
wsprintfW
ScreenToClient
GetWindowRect
GetSystemMetrics
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharPrevW
CharNextA
wsprintfA
DispatchMessageW
PeekMessageW
GetDC
ReleaseDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
EndDialog
RegisterClassW
SystemParametersInfoW
CreateWindowExW
GetClassInfoW
DialogBoxParamW
CharNextW
ExitWindowsEx
DestroyWindow
LoadImageW
SetTimer
SetWindowTextW
PostQuitMessage
ShowWindow
GetDlgItem
IsWindow
SetWindowLongW
FindWindowExW
TrackPopupMenu
AppendMenuW
CreatePopupMenu
DrawTextW
EndPaint
CreateDialogParamW
SendMessageTimeoutW
SetForegroundWindow

gdi32

SelectObject
SetBkMode
CreateFontIndirectW
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoW
ShellExecuteW
SHFileOperationW

advapi32

RegDeleteKeyW
SetFileSecurityW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegOpenKeyExW
RegEnumValueW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumKeyW

comctl32

ImageList_AddMasked
ord17
ImageList_Destroy
ImageList_Create

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 704KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 433KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$(LSTR_76).exe
.exe windows:5 windows x86 arch:x86

ea3c1692e1d3e9bbcc595e0cc838ebcc

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

4f:58:fc:05:42:6c:c4:b6:5d:bc:0c:2c:2e:3a:f3:04
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

11-07-2019 00:00

Not After

15-08-2021 23:59

Subject

CN=GRETECH CORPORATION,OU=GRETECH CORPORATION,O=GRETECH CORPORATION,L=Shinjuku,ST=Tokyo,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0b:54:20:b0:76:0a:9e:3d:f4:7b:82:43:3f:6e:9d:df:23:ff:9f:91
Signer

Actual PE Digest

0b:54:20:b0:76:0a:9e:3d:f4:7b:82:43:3f:6e:9d:df:23:ff:9f:91

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\GomPlayer_Tags\2.3.47.5309\project\map_pdb\GOM32R_vc120_ReleaseU.pdb

Imports

winmm

mixerGetLineControlsW
mixerGetDevCapsW
mixerGetLineInfoW
mixerSetControlDetails
mixerGetControlDetailsW
PlaySoundW
mixerGetID
mixerGetNumDevs
mixerClose
waveOutGetNumDevs
mixerOpen

kernel32

GlobalFlags
GetSystemDefaultUILanguage
SetErrorMode
SearchPathW
ExitThread
IsDebuggerPresent
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
RtlUnwind
VirtualAlloc
HeapQueryInformation
SetStdHandle
GetStartupInfoW
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
CreateSemaphoreW
IsValidCodePage
GetOEMCP
GetConsoleMode
ReadConsoleW
GetConsoleCP
GetStringTypeW
GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
MoveFileExW
WriteConsoleW
SetEnvironmentVariableA
InterlockedCompareExchange
InterlockedExchange
lstrlenA
VirtualFree
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
GetProfileIntW
GlobalGetAtomNameW
GetFileSizeEx
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetFilePointerEx
ReplaceFileW
GetThreadLocale
ReleaseSemaphore
SwitchToThread
GlobalMemoryStatus
GetEnvironmentStrings
FreeEnvironmentStringsA
SizeofResource
LockResource
LoadResource
FindResourceW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
InitializeCriticalSectionAndSpinCount
RaiseException
FreeLibrary
GetCurrentProcess
GetModuleHandleW
LoadLibraryW
Sleep
GetModuleFileNameW
GetProcAddress
VirtualProtect
CloseHandle
lstrlenW
MultiByteToWideChar
lstrcmpW
GlobalAlloc
GlobalLock
GlobalUnlock
CreateDirectoryW
GetFileAttributesW
GetLocalTime
GetDiskFreeSpaceExW
DeleteFileW
GetUserDefaultUILanguage
GetVersionExW
OutputDebugStringW
VerSetConditionMask
VerifyVersionInfoW
LocalFree
WideCharToMultiByte
CopyFileW
GetNativeSystemInfo
GetSystemInfo
GetSystemTimeAsFileTime
MoveFileW
DuplicateHandle
SuspendThread
lstrcmpA
GlobalFindAtomW
GlobalAddAtomW
GlobalDeleteAtom
EncodePointer
GetVersionExA
MoveFileA
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleHandleA
SetFileAttributesA
CreateDirectoryA
GetDriveTypeA
FindNextFileA
FindFirstFileA
IsDBCSLeadByte
GetCPInfo
GetFileType
GetStdHandle
SetFileTime
DeleteFileA
AreFileApisANSI
GetSystemTime
GetTempPathA
GetFileAttributesExW
GetDiskFreeSpaceA
CreateFileMappingA
LockFileEx
HeapValidate
HeapCreate
GetFileAttributesA
FormatMessageA
UnlockFileEx
WaitForSingleObjectEx
LockFile
FlushViewOfFile
UnlockFile
SystemTimeToFileTime
SetEndOfFile
TryEnterCriticalSection
HeapCompact
CreateMutexW
GetFullPathNameA
InterlockedDecrement
InterlockedIncrement
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
SetFileAttributesW
GetProcessId
SetThreadExecutionState
CreateFileW
DeviceIoControl
GetSystemDirectoryA
SetDllDirectoryW
LoadLibraryExW
lstrcmpiW
RemoveDirectoryW
SetPriorityClass
Process32NextW
TerminateProcess
OpenProcess
Process32FirstW
CreateToolhelp32Snapshot
LocalAlloc
LoadLibraryA
ResumeThread
GetACP
GetLocaleInfoW
GetLongPathNameW
TerminateThread
SetCurrentDirectoryW
GetUserDefaultLCID
CreateThread
GetCurrentProcessId
CompareStringW
FindResourceExW
QueryPerformanceCounter
GetFullPathNameW
GlobalSize
GetLogicalDrives
DeleteTimerQueueEx
CreateTimerQueue
GetDiskFreeSpaceW
GetCommandLineW
GetCurrentDirectoryW
GetSystemDirectoryW
GetWindowsDirectoryW
GetFileTime
SetThreadPriority
GetTempFileNameW
GetTempPathW
GetVersion
IsDBCSLeadByteEx
FreeResource
SetLastError
FlushInstructionCache
CreateTimerQueueTimer
DeleteTimerQueueTimer
ResetEvent
SetEvent
CreateEventW
GetExitCodeProcess
WaitForSingleObject
lstrcpynW
GetUserDefaultLangID
GetCurrentThread
IsBadWritePtr
VirtualQuery
FormatMessageW
SetUnhandledExceptionFilter
FlushFileBuffers
WriteFile
CreateFileA
GetVolumeInformationW
GetSystemWindowsDirectoryW
ReadFile
SetFilePointer
GetFileSize
WaitForMultipleObjects
GetDriveTypeW
OutputDebugStringA
DecodePointer
HeapSize
HeapDestroy
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
GetQueuedCompletionStatus
ReadDirectoryChangesW
PostQueuedCompletionStatus
CreateIoCompletionPort
WritePrivateProfileStringW
GetTickCount
GlobalFree
lstrcpyW
FindClose
FindNextFileW
GetPrivateProfileStringW
FindFirstFileW
WinExec
MulDiv
CreateProcessW
WritePrivateProfileStringA
GetCurrentThreadId
GetPrivateProfileIntW

user32

ShowOwnedPopups
SetWindowContextHelpId
IsClipboardFormatAvailable
IsZoomed
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
WindowFromPoint
SendDlgItemMessageA
GetMessageW
IsDialogMessageW
IsDlgButtonChecked
CheckDlgButton
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
MapWindowPoints
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetMenu
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetClassInfoW
GetMessageTime
GetMessagePos
CreateDialogIndirectParamW
GetLastActivePopup
MapDialogRect
GetAsyncKeyState
GetMenuState
CharToOemBuffA
CharUpperA
OemToCharA
CharLowerA
CharToOemA
OemToCharBuffA
SetLastErrorEx
AnimateWindow
ShowScrollBar
UnregisterHotKey
RegisterHotKey
GetKeyNameTextW
MapVirtualKeyW
InsertMenuA
mouse_event
ExitWindowsEx
ChangeDisplaySettingsW
ShowCursor
SetActiveWindow
EnumDisplayDevicesW
GetActiveWindow
CreateMenu
SetMenuItemInfoW
DeleteMenu
RemoveMenu
CheckMenuItem
AppendMenuW
CheckMenuRadioItem
EnableMenuItem
GetDoubleClickTime
PostThreadMessageW
PostQuitMessage
GetCapture
GetNextDlgTabItem
DrawEdge
DrawFrameControl
DrawFocusRect
IsWindowEnabled
RegisterClipboardFormatW
wsprintfA
InflateRect
CharUpperW
GetMenu
AdjustWindowRectEx
SetLayeredWindowAttributes
EnumDisplaySettingsW
SubtractRect
GetWindowDC
SetForegroundWindow
AttachThreadInput
GetWindowThreadProcessId
DestroyIcon
LoadMenuW
GetMenuItemInfoW
ModifyMenuW
GetMenuItemID
GetMenuStringW
GetUpdateRect
GetDlgCtrlID
GrayStringW
DrawTextExW
TabbedTextOutW
SetCapture
IntersectRect
UpdateLayeredWindow
SetRect
MonitorFromPoint
GetMonitorInfoW
MonitorFromRect
IsChild
RedrawWindow
CreateAcceleratorTableW
InvalidateRgn
GetDesktopWindow
DestroyAcceleratorTable
LoadCursorFromFileW
SetParent
GetClassLongW
SetClassLongW
DestroyCursor
MessageBoxW
GetClassInfoExW
RegisterClassExW
UpdateWindow
EqualRect
DestroyMenu
TrackPopupMenu
GetMenuItemCount
GetSubMenu
GetKeyState
DestroyWindow
GetWindow
GetTopWindow
GetCursor
GetFocus
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
SendMessageTimeoutW
ClientToScreen
UnionRect
CallWindowProcW
EnumWindows
GetClassNameW
SetRectEmpty
GetWindowPlacement
EndDialog
EndPaint
BeginPaint
MoveWindow
SetWindowPos
SetFocus
GetForegroundWindow
NotifyWinEvent
GetSysColorBrush
RealChildWindowFromPoint
CopyImage
CopyAcceleratorTableW
GetSystemMenu
GetNextDlgGroupItem
GetMenuDefaultItem
EnableScrollBar
HideCaret
InvertRect
LockWindowUpdate
EnumDisplayMonitors
DrawStateW
IsMenu
GetComboBoxInfo
WaitMessage
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
DialogBoxIndirectParamW
RemovePropW
SetPropW
GetPropW
SetDlgItemTextW
PeekMessageW
ToUnicodeEx
GetKeyboardState
SetCursorPos
CopyIcon
SetMenuDefaultItem
CharUpperBuffW
FrameRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
MessageBeep
TranslateMDISysAccel
GetWindowLongW
SetWindowLongW
TrackMouseEvent
BringWindowToTop
LoadImageW
DrawIconEx
LoadBitmapW
LoadAcceleratorsW
IsIconic
DrawIcon
TranslateAcceleratorW
GetIconInfo
GetCursorInfo
CreatePopupMenu
InsertMenuW
GetDlgItem
CreateWindowExW
keybd_event
RegisterWindowMessageW
EnableWindow
CopyRect
PostMessageW
DefWindowProcW
UnregisterClassW
GetClientRect
RegisterWindowMessageA
LoadCursorW
DrawTextW
FindWindowW
LoadIconW
RegisterClassW
GetWindowRect
GetWindowRgn
FindWindowA
SetWindowTextW
GetWindowTextLengthW
GetWindowTextW
SetWindowRgn
GetDC
EnumChildWindows
ReleaseDC
GetCursorPos
IsRectEmpty
PtInRect
OffsetRect
SetCursor
IsWindow
SetTimer
IsWindowVisible
wvsprintfW
FindWindowExW
wsprintfW
DispatchMessageW
TranslateMessage
ShowWindow
KillTimer
InvalidateRect
GetParent
GetSystemMetrics
FillRect
GetSysColor
SendMessageW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
SystemParametersInfoW
ScreenToClient
CharNextW
ReleaseCapture

gdi32

GetTextExtentPointW
SetMapMode
CreateFontA
GetTextExtentPoint32A
TextOutA
BeginPath
CloseFigure
EndPath
GetPath
AbortPath
SelectPalette
RealizePalette
CopyMetaFileW
CreateDCW
CreateBitmap
CreateHatchBrush
ExcludeClipRect
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
ExtSelectClipRgn
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
SaveDC
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
PatBlt
GetMapMode
SetRectRgn
DPtoLP
LPtoDP
GetTextColor
GetCharWidthW
CreatePalette
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesW
GetTextCharsetInfo
Polyline
SetPixelV
ExtFloodFill
SetPaletteEntries
GetBoundsRect
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
RestoreDC
GetClipBox
GetCurrentObject
FrameRgn
CreatePolygonRgn
Polygon
GetBkColor
Ellipse
FillRgn
SetTextCharacterExtra
SetPixel
LineTo
MoveToEx
EnumFontFamiliesExW
GetTextMetricsW
Escape
TextOutW
RectVisible
PtVisible
OffsetRgn
CombineRgn
Rectangle
CreatePen
StretchDIBits
CreateFontIndirectW
GetObjectA
CreateRectRgnIndirect
CreateRoundRectRgn
CreateEllipticRgn
CreatePatternBrush
GetDIBColorTable
SetDIBColorTable
ExtTextOutW
SetBkColor
SelectClipRgn
SetTextColor
SetBkMode
GetPixel
GetRgnBox
GetDIBits
CreateDiscardableBitmap
StretchBlt
DeleteDC
SelectObject
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateRectRgn
GetDeviceCaps
CreateDIBitmap
GetStockObject
GetPaletteEntries
DeleteObject
CreateDIBSection
CreateSolidBrush
GetObjectW
GetTextExtentPoint32W
CreateFontW
PtInRegion
RoundRect

msimg32

TransparentBlt
AlphaBlend
GradientFill

comdlg32

GetSaveFileNameW
GetOpenFileNameW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegOpenKeyA
RegOpenKeyExW
RegSetValueExW
RegDeleteKeyW
RegCreateKeyW
RegQueryValueExW
OpenThreadToken
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
GetFileSecurityW
AdjustTokenPrivileges
SetFileSecurityA
SetFileSecurityW
LookupPrivilegeValueA
CryptHashData
CryptDestroyHash
CheckTokenMembership
CryptCreateHash
CryptReleaseContext
RegEnumKeyW
CryptAcquireContextW
CryptGetHashParam
RegSetValueExA
RegSetValueW
RegSetValueA
RegQueryValueExA
RegQueryValueA
RegQueryInfoKeyA
RegOpenKeyExA
EqualSid
RegEnumValueA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegCreateKeyA
RegFlushKey
RegRestoreKeyW
RegQueryValueW
RegOpenKeyW
RegEnumValueW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
FreeSid
RegCloseKey

shell32

ShellExecuteW
SHCreateDirectoryExW
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetSpecialFolderPathW
Shell_NotifyIconW
SHChangeNotify
DragAcceptFiles
DragQueryFileW
DragFinish
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetFolderPathW
ShellExecuteExW
SHFileOperationW
SHGetFileInfoW
SHAppBarMessage
DragQueryPoint

comctl32

_TrackMouseEvent
ImageList_AddMasked
ImageList_Draw
ImageList_Create
ImageList_Add

shlwapi

PathFileExistsW
PathFindFileNameW
PathFindExtensionW
StrCmpLogicalW
PathAddBackslashW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW

uxtheme

OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
IsAppThemed
DrawThemeText
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme

ole32

DoDragDrop
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoDisconnectObject
CoFreeUnusedLibraries
OleGetClipboard
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
CoInitializeEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoUninitialize
CreateStreamOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemRealloc
CoGetObject
StringFromCLSID
CoInitialize
OleLoadFromStream
OleSaveToStream
StgCreateDocfile
StgOpenStorage
MkParseDisplayName
CreateBindCtx
CoCreateGuid
OleSetContainedObject
OleCreate
CoFreeLibrary
CoLoadLibrary
OleInitialize
CLSIDFromString
CLSIDFromProgID
CoGetClassObject
OleLockRunning
OleUninitialize

oleaut32

VariantClear
VariantInit
SafeArrayDestroy
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayUnaccessData
SafeArrayCreateVector
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
SysStringLen
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
VariantCopy
VarUI4FromStr
OleLoadPicturePath
VariantChangeType
SystemTimeToVariantTime
VariantTimeToSystemTime
VarBstrFromDate
SysAllocString
SysFreeString

oledlg

OleUIBusyW

urlmon

UrlMkSetSessionOption
UrlMkGetSessionOption

gdiplus

GdipSaveImageToFile
GdiplusStartup
GdiplusShutdown
GdipCreateBitmapFromResource
GdipCreateFromHDC
GdipDrawImagePointRectI
GdipDrawImageI
GdipDeleteFontFamily
GdipDeleteFont
GdipMeasureString
GdipCreateFontFamilyFromName
GdipCreateFont
GdipSetTextRenderingHint
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipCreatePen1
GdipDeletePen
GdipFillRectangleI
GdipDrawRectangleI
GdipDrawString
GdipDrawImage
GdipGetGenericFontFamilySansSerif
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipSetInterpolationMode
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorKeys
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateStringFormat
GdipDeleteStringFormat
GdipGetImageHorizontalResolution
GdipGetImageVerticalResolution
GdipGetSmoothingMode
GdipStringFormatGetGenericTypographic
GdipGraphicsClear
GdipSetStringFormatAlign
GdipCreateBitmapFromStreamICM
GdipSetImageAttributesColorMatrix
GdipFillPolygonI
GdipSetStringFormatLineAlign
GdipCreateBitmapFromStream
GdipBitmapSetResolution
GdipDrawPath
GdipClosePathFigure
GdipAddPathLineI
GdipGetPropertyItem
GdipDrawEllipseI
GdipDrawImageRectRectI
GdipAddPathArcI
GdipDeletePath
GdipCreateBitmapFromHBITMAP
GdipBitmapGetPixel
GdipGetPropertyItemSize
GdipFillPath
GdipDrawLineI
GdipImageRotateFlip
GdipCreatePath
GdipSetPixelOffsetMode
GdipFillEllipseI
GdipGetImageRawFormat
GdipSetStringFormatFlags
GdipSetStringFormatHotkeyPrefix
GdipSetStringFormatTrimming
GdipCloneStringFormat
GdipGetStringFormatFlags
GdipGetFontHeight
GdipFillRectangle
GdipCreateRegionRectI
GdipDeleteRegion
GdipCreateRegion
GdipGetClip
GdipSetClipRegion
GdipGetTextRenderingHint
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipResetWorldTransform
GdipDrawImageRectI
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipGetLogFontW
GdipSetEmpty
GdipCombineRegionRectI
GdipGetRegionHRgn
GdipSetSolidFillColor
GdipNewPrivateFontCollection
GdipGetFontCollectionFamilyCount
GdipCloneFontFamily
GdipGetFontCollectionFamilyList
GdipDeletePrivateFontCollection
GdipAddPathString
GdipDrawImageRect
GdipLoadImageFromFile
GdipSetPenMode
GdipSetCompositingMode
GdipSetSmoothingMode
GdipDeleteMatrix
GdipTranslateMatrix
GdipRotateMatrix
GdipSetWorldTransform
GdipSetPenDashStyle
GdipSetPathFillMode
GdipGetPathWorldBounds
GdipTransformRegion
GdipIsVisibleRegionPointI
GdipSetStringFormatMeasurableCharacterRanges
GdipMeasureCharacterRanges
GdipGetRegionBounds
GdipScaleMatrix
GdipTransformPath
GdipAddPathPath
GdipSetMatrixElements
GdipSetPenLineJoin
GdipWidenPath
GdipAddPathRectangle
GdipWarpPath
GdipLoadImageFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipGetImagePixelFormat
GdipCreateBitmapFromScan0
GdipCreateHBITMAPFromBitmap
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdipCreateBitmapFromGdiDib
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImageWidth
GdipGetImageHeight
GdipCreatePen2
GdipCreateMatrix

crypt32

CertGetNameStringW
CryptUnprotectData

wininet

InternetSetCookieW
InternetCreateUrlW
InternetCrackUrlA
InternetCloseHandle
HttpEndRequestW
InternetGetConnectedState
HttpOpenRequestW
InternetGetCookieW
InternetOpenW
HttpSendRequestExW
InternetCrackUrlW
InternetReadFile
InternetConnectW
InternetWriteFile
InternetSetCookieExW
HttpQueryInfoW
HttpAddRequestHeadersW
InternetSetOptionW
HttpSendRequestW

ws2_32

WSAAsyncSelect
getservbyport
ntohs
inet_ntoa
gethostbyaddr
send
WSAGetLastError
ntohl
recv
htonl
closesocket
socket
htons
inet_addr
connect
gethostbyname
WSAStartup
gethostname
WSACleanup
WSASetLastError
getservbyname

iphlpapi

GetAdaptersInfo

imm32

ImmGetContext
ImmSetConversionStatus
ImmReleaseContext
ImmGetDefaultIMEWnd
ImmGetConversionStatus
ImmGetOpenStatus

rpcrt4

UuidCreate
RpcStringFreeW
UuidToStringW

wintrust

WTHelperProvDataFromStateData
WinVerifyTrust
WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain

d3d9

Direct3DCreate9

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.GOMSH
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 501KB - Virtual size: 501KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/Dialer.dll
.dll windows:4 windows x86 arch:x86

77d42551d0d092e7c42961ca47bb7a69

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GetSystemDirectoryW
GetProcAddress
lstrcpynW
LoadLibraryW

user32

wsprintfW

Exports

Exports

AttemptConnect
AutodialHangup
AutodialOnline
AutodialUnattended
GetConnectedState

Sections

.text
Size: 1024B - Virtual size: 628B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 439B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 204B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 210B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/FinishWelcome.bmp
$PLUGINSDIR/INetC.dll
.dll windows:6 windows x86 arch:x86

11cd6df8cede073a0e00bd840833dd26

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

InternetErrorDlg
HttpQueryInfoW
HttpEndRequestW
HttpSendRequestExW
HttpSendRequestW
HttpAddRequestHeadersW
HttpAddRequestHeadersA
HttpOpenRequestW
FtpCreateDirectoryW
FtpOpenFileW
InternetGetLastResponseInfoW
InternetSetOptionW
InternetQueryOptionW
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetCrackUrlW

comctl32

ord17

kernel32

GlobalAlloc
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryW
lstrlenW
lstrlenA
lstrcatW
lstrcpyW
lstrcmpiW
GlobalFree
MulDiv
LocalFree
LocalAlloc
GetProcAddress
GetModuleHandleW
GetTickCount
TerminateThread
CreateThread
SleepEx
lstrcmpW
lstrcpynW
CreateFileA
CreateFileW
DeleteFileW
GetFileSize
ReadFile
SetFilePointer
WriteFile
CloseHandle
GetLastError
WaitForSingleObject

user32

SetDlgItemTextW
SendDlgItemMessageW
SetTimer
KillTimer
EnableWindow
UpdateWindow
RedrawWindow
SetWindowTextW
GetWindowTextW
GetClientRect
GetWindowRect
MessageBoxW
GetWindowLongW
SetWindowLongW
GetParent
FindWindowExW
LoadIconW
IsDialogMessageW
SystemParametersInfoW
GetDlgItem
wsprintfA
wsprintfW
GetMessageW
TranslateMessage
DispatchMessageW
SendMessageW
PostMessageW
IsWindow
DestroyWindow
ShowWindow
SetWindowPos
IsWindowVisible
CreateDialogParamW

Exports

Exports

get
head
post
put

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ShellLink.dll
.dll windows:5 windows x86 arch:x86

45fa690faed482cb9bfd08458ed442ae

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LocalFree
LocalAlloc
GlobalFree
lstrcpyW
lstrcpynW
GlobalAlloc

user32

wsprintfW

ole32

CoCreateInstance

Exports

Exports

GetShortCutArgs
GetShortCutDescription
GetShortCutHotkey
GetShortCutIconIndex
GetShortCutIconLocation
GetShortCutShowMode
GetShortCutTarget
GetShortCutWorkingDirectory
SetRunAsAdministrator
SetShortCutArgs
SetShortCutDescription
SetShortCutHotkey
SetShortCutIconIndex
SetShortCutIconLocation
SetShortCutShowMode
SetShortCutTarget
SetShortCutWorkingDirectory

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 998B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:4 windows x86 arch:x86

fc0224e99e736751432961db63a41b76

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW
GlobalFree
GlobalSize
lstrcpynW
lstrcpyW
GetProcAddress
WideCharToMultiByte
VirtualFree
FreeLibrary
lstrlenW
LoadLibraryW
GlobalAlloc
MultiByteToWideChar
VirtualAlloc
VirtualProtect
GetLastError

user32

wsprintfW

ole32

StringFromGUID2
CLSIDFromString

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 851B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 120B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 610B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/UserInfo.dll
.dll windows:4 windows x86 arch:x86

e1c0bd3d5b9f3f5cec7ea773ff66ac6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVersion
GetCurrentProcess
GlobalAlloc
GetCurrentThread
GetModuleHandleW
GetProcAddress
GetLastError
GlobalFree
CloseHandle
lstrcpynW

advapi32

OpenThreadToken
OpenProcessToken
GetTokenInformation
AllocateAndInitializeSid
EqualSid
FreeSid
GetUserNameW

Exports

Exports

GetAccountType
GetName
GetOriginalAccountType

Sections

.text
Size: 1024B - Virtual size: 694B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 673B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ad.html
.html
$PLUGINSDIR/advsplash.dll
.dll windows:4 windows x86 arch:x86

4d85954a016da6eba41af38db29369a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpynW
LoadLibraryA
lstrcpyW
lstrcatW
GetProcAddress
GlobalAlloc
GlobalFree

user32

EnumDisplaySettingsW
LoadImageW
BeginPaint
SetWindowLongW
SystemParametersInfoW
EndPaint
GetClientRect
CreateWindowExW
DefWindowProcW
DestroyWindow
IsWindow
GetMessageW
DispatchMessageW
UnregisterClassW
wsprintfW
PostMessageW
SetWindowRgn
RegisterClassW
LoadCursorW
SetWindowPos

gdi32

BitBlt
DeleteDC
DeleteObject
CombineRgn
GetObjectW
GetDIBits
SelectObject
CreateCompatibleDC
CreateRectRgn

winmm

timeSetEvent
PlaySoundW
timeKillEvent

Exports

Exports

show

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 460B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/default_banner.png
.png
$PLUGINSDIR/finish_ad_image.bmp
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:4 windows x86 arch:x86

e2ee55bddad4241d619d6a8a38e2d869

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileAttributesW
lstrcpyW
MulDiv
lstrlenW
HeapFree
GetCurrentDirectoryW
lstrcmpiW
GetProcessHeap
HeapReAlloc
GlobalFree
lstrcpynW
GlobalAlloc
SetCurrentDirectoryW
HeapAlloc

user32

DestroyWindow
CallWindowProcW
SetCursor
LoadCursorW
GetPropW
CharPrevW
DrawFocusRect
GetWindowLongW
DrawTextW
GetClientRect
GetDlgItem
GetSysColor
SetWindowLongW
SetWindowPos
CreateDialogParamW
MapDialogRect
GetWindowRect
SetPropW
CreateWindowExW
IsWindow
SetTimer
KillTimer
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
ShowWindow
wsprintfW
CharNextW
SendMessageW
MapWindowPoints
RemovePropW
GetWindowTextW

gdi32

SetTextColor

shell32

SHBrowseForFolderW
SHGetPathFromIDListW

comdlg32

GetSaveFileNameW
GetOpenFileNameW
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 630B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/nsJSON.dll
.dll windows:6 windows x86 arch:x86

146872104f86c0bc478b21272e26f97d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wininet

HttpQueryInfoW
HttpSendRequestW
HttpOpenRequestW
InternetQueryDataAvailable
InternetReadFile
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetCrackUrlW

kernel32

lstrlenA
CreateProcessW
CreateThread
GetExitCodeProcess
WaitForSingleObject
CreatePipe
GetLastError
SetHandleInformation
lstrcpynW
CreateFileW
GetFileSize
ReadFile
WriteFile
CloseHandle
GlobalAlloc
GlobalReAlloc
GlobalFree
lstrcmpW
lstrcmpiW
lstrcpyW
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
lstrcatW

user32

wsprintfW
IsCharAlphaNumericW
TranslateMessage
DispatchMessageW
PeekMessageW
PostMessageW
MsgWaitForMultipleObjectsEx

Exports

Exports

Delete
Get
Quote
Serialize
Set
Wait

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/warning.bmp
$PLUGINSDIR/welcome.bmp
$TEMP/DefaultGrLauncher.ini
$TEMP/NSISPromotionEx.dll
.dll windows:6 windows x86 arch:x86

ea0c3fb0265ea2abdbcb83e9cdcfb58a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentThreadId
SetLastError
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
WaitForSingleObject
GetFileSizeEx
ReadFile
MulDiv
lstrcmpW
LoadLibraryW
GetModuleFileNameW
CreateProcessW
CreateFileW
GetACP
DecodePointer
GetSystemDefaultUILanguage
GetPrivateProfileIntW
GetPrivateProfileStringW
FreeResource
LockResource
LoadResource
SizeofResource
WriteFile
lstrcpyW
lstrcatW
FindResourceW
GetTempPathW
GetTempFileNameW
GetFileSize
GetTickCount
GetPrivateProfileStringA
WritePrivateProfileStringW
GetVersionExW
GetCurrentThread
SetThreadPriority
InitializeCriticalSection
SetFilePointer
HeapReAlloc
CreateFileA
HeapAlloc
HeapFree
GetProcessHeap
HeapDestroy
HeapSize
LocalAlloc
GetFullPathNameW
GetFullPathNameA
CreateMutexW
HeapCompact
TryEnterCriticalSection
MapViewOfFile
UnmapViewOfFile
SetEndOfFile
SystemTimeToFileTime
QueryPerformanceCounter
InterlockedCompareExchange
UnlockFile
FlushViewOfFile
LockFile
WaitForSingleObjectEx
UnlockFileEx
GetSystemTimeAsFileTime
FormatMessageA
GetFileAttributesA
HeapCreate
RaiseException
FlushInstructionCache
LockFileEx
GetDiskFreeSpaceW
LoadLibraryA
CreateFileMappingA
CreateFileMappingW
GetDiskFreeSpaceA
GetSystemInfo
GetFileAttributesExW
GetCurrentProcessId
GetTempPathA
GetSystemTime
AreFileApisANSI
DeleteFileA
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
IsProcessorFeaturePresent
VirtualAlloc
VirtualFree
IsDebuggerPresent
SetEnvironmentVariableA
WriteConsoleW
SetStdHandle
SetFilePointerEx
GetTimeZoneInformation
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
ReadConsoleW
GetFileType
GetStdHandle
GetConsoleMode
GetConsoleCP
GetOEMCP
IsValidCodePage
GetModuleHandleExW
ExitProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetCommandLineA
ResumeThread
LoadLibraryExW
ExitThread
CreateThread
RtlUnwind
GetStringTypeW
EncodePointer
HeapValidate
GetCurrentProcess
GlobalMemoryStatusEx
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersion
FreeLibrary
GetVersionExA
IsBadStringPtrW
IsBadWritePtr
IsBadReadPtr
GetModuleHandleW
GetProcAddress
lstrlenA
FormatMessageW
GetFileAttributesW
CreateDirectoryW
GetDriveTypeW
WideCharToMultiByte
MultiByteToWideChar
OutputDebugStringW
OutputDebugStringA
DeleteFileW
CloseHandle
Sleep
GetLastError
InterlockedDecrement
InterlockedIncrement
VerifyVersionInfoW
lstrlenW
LocalFree
FlushFileBuffers
VerSetConditionMask

user32

RegisterWindowMessageW
wsprintfW
SendMessageW
OffsetRect
GetWindowRect
GetSystemMetrics
DefWindowProcW
CallWindowProcW
RemovePropW
GetPropW
SetPropW
EnableWindow
GetMonitorInfoW
MonitorFromRect
SystemParametersInfoW
LoadStringW
CopyRect
PeekMessageW
DispatchMessageW
MessageBoxW
LoadCursorW
GetWindow
GetClassNameW
EnumChildWindows
GetParent
GetDesktopWindow
SetWindowLongW
GetWindowLongW
FillRect
GetSysColor
CreateAcceleratorTableW
DestroyAcceleratorTable
GetDC
ReleaseDC
BeginPaint
EndPaint
InvalidateRect
InvalidateRgn
RedrawWindow
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
GetClientRect
KillTimer
SetTimer
ReleaseCapture
SetCapture
GetFocus
SetFocus
CharNextW
GetDlgItem
DialogBoxParamW
SetWindowPos
MoveWindow
ShowWindow
DestroyWindow
UnregisterClassW
RegisterClassExW
GetClassInfoExW
ScreenToClient
ClientToScreen
IsWindow
PostMessageW
FindWindowW
EndDialog
CreateWindowExW
IsChild

advapi32

RegOpenKeyExA
RegQueryValueExA
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyW
RegCloseKey

ole32

CoGetClassObject
CoCreateInstance
CoUninitialize
CoInitialize
OleSetContainedObject
OleCreate
CreateStreamOnHGlobal
OleLockRunning
OleUninitialize
OleInitialize
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CLSIDFromProgID
CLSIDFromString

shell32

ShellExecuteW
SHGetSpecialFolderPathW
ShellExecuteExW
SHGetFolderPathW

oleaut32

SysAllocStringLen
SysFreeString
SysStringLen
OleLoadPicture
SysAllocString
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
VariantClear
VariantInit

shlwapi

PathFileExistsW

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateSolidBrush
DeleteDC
DeleteObject
AddFontResourceW
GetStockObject
SelectObject
GetObjectW
CreateFontIndirectW
CreatePen
Rectangle
SetBkColor
SetTextColor
CreateDIBSection
GetDeviceCaps

crypt32

CryptUnprotectData

wininet

InternetOpenA
HttpSendRequestA
HttpAddRequestHeadersA
InternetAttemptConnect
HttpOpenRequestA
InternetConnectA
HttpSendRequestExA
InternetQueryDataAvailable
InternetOpenUrlW
InternetCanonicalizeUrlW
HttpQueryInfoW
HttpEndRequestW
InternetSetOptionW
InternetWriteFile
InternetReadFile
InternetCloseHandle
InternetOpenW
InternetCrackUrlW
InternetSetCookieExW

rpcrt4

RpcStringFreeW
UuidCreate
UuidToStringW

wintrust

WinVerifyTrust

ws2_32

WSAStartup
gethostname
gethostbyname
WSACleanup

Exports

Exports

AddCustomFont
AddMultiSz
Base64Encode
CMCookieAction
CMGetDefaultBrowserType
CallJavaScript
Check11stExtentionInstall
Check11stShockExtentionInstall
CheckDHP
CheckGSearch
CheckGSearch2
CheckMultiSz
CheckNetCafe
CheckNetCodec_KOR
CheckPromotionInstall
CheckSupportSSE2
CheckYandexInstall
CreateStaticControl
CreateWebControl
CustomEnterKeyDown
CustomInvalidate
CustomMoveWindow
CustomShowWindow
GetHashString
GetMultiSz
GetPCGuidText
GetSectionPromotionPath
GetSystemMemoryEx
GetUKey
GetURLDecodeText
InstGSearch
InstGSearch2
InstGomMix
InstYandex
Install11StExtention
Install11StShockExtention
InstallSectionOffer
KillWebControl
RequestPromotionInstall
SetupNetCodec_KOR
Show6432Dialog
Show6432EncoderDialog
Show6432PlayerDialog
Show6432VCDialog
ShowDotNetDialog
ShowMsgDialog
ShowPopupTestDlg
ShowSelectLanguageDialog
Verify
Verify2

Sections

.text
Size: 866KB - Virtual size: 866KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 767KB - Virtual size: 767KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$TEMP/NSISTrigger.dll
.dll windows:6 windows x86 arch:x86

bde97cb6ac951f3933fc1345619c66c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\SVN_Repo\곰플레이어NSIS\package\Plugins\NSISTrigger.pdb

Imports

kernel32

DecodePointer
DeleteCriticalSection
GlobalFree
GlobalAlloc
lstrlenA
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetModuleHandleW
GetProcAddress
IsBadStringPtrW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
CreateFileW
GetLastError
SetThreadPriority
GetCurrentThread
WriteFile
CloseHandle
FreeLibrary
LoadLibraryW
WriteConsoleW
SetStdHandle
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LCMapStringW
RtlUnwind
RaiseException
Sleep
InitializeCriticalSectionEx
LoadLibraryExW
GetModuleFileNameW
HeapReAlloc
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
GetStdHandle
IsDebuggerPresent
OutputDebugStringW
HeapFree
EncodePointer
GetCommandLineA
GetCurrentThreadId
IsProcessorFeaturePresent
GetProcessHeap
ExitProcess
GetModuleHandleExW
HeapSize
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
SetLastError
HeapAlloc
GetStringTypeW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
FlushFileBuffers

user32

LoadStringW
RegisterWindowMessageW
PostMessageW
FindWindowW
SendMessageW

wininet

InternetCanonicalizeUrlW
InternetOpenW
InternetSetOptionW
InternetOpenUrlW
HttpQueryInfoW
InternetQueryDataAvailable
InternetReadFile
InternetCloseHandle

ws2_32

gethostname
gethostbyname
WSACleanup
WSAStartup

Exports

Exports

GetUKey
Trigger

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$TEMP/spltmp.bmp
CrashDumpCollector.dll
.dll windows:5 windows x86 arch:x86

afb526ce09522466b9fc0c0e18cd4d4b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Projects\CrashDumpCollector\trunk\bin\CrashDumpCollector.pdb

Imports

kernel32

GetSystemInfo
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
InitializeCriticalSection
DeleteCriticalSection
GetCurrentThreadId
WaitForSingleObject
TerminateThread
WriteFile
MultiByteToWideChar
SetEvent
ResetEvent
InterlockedExchange
CreateEventW
RaiseException
InitializeCriticalSectionAndSpinCount
DecodePointer
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetFileSizeEx
SetLastError
SetFilePointer
SetFilePointerEx
GetCurrentProcessId
GetCurrentProcess
CreateEventA
SetUnhandledExceptionFilter
Sleep
ExitProcess
lstrlenW
lstrcmpiW
lstrcpyW
GetUserDefaultLangID
DisableThreadLibraryCalls
FlushFileBuffers
WriteConsoleW
SetStdHandle
OutputDebugStringW
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetStringTypeW
GetConsoleMode
GetConsoleCP
RtlUnwind
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
GetStdHandle
SetEnvironmentVariableA
ReadFile
CloseHandle
CreateFileW
WideCharToMultiByte
GetProcAddress
GetModuleHandleW
DeleteFileW
GetTempPathW
GetModuleFileNameW
GetLastError
LeaveCriticalSection
GetExitCodeThread
EnterCriticalSection
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
UnhandledExceptionFilter
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetModuleHandleExW
GetTimeZoneInformation
GetCommandLineA
IsProcessorFeaturePresent
IsDebuggerPresent
LoadLibraryExW
ExitThread
CreateThread
EncodePointer
GetSystemTimeAsFileTime

user32

PostMessageW
GetWindowTextW
IsWindowVisible
BeginPaint
SetWindowTextW
EndDialog
wsprintfW
DefWindowProcW
MessageBoxW
GetClassLongW
LoadIconW
SetClassLongW
SetWindowTextA
MoveWindow
GetDlgCtrlID
GetWindow
GetWindowRect
DialogBoxParamW
SendMessageW
GetDlgItem
InvalidateRect
ShowWindow

gdi32

LineTo
MoveToEx
SelectObject
CreatePen
CreateSolidBrush
SetTextColor
CreateFontW

shell32

ShellExecuteW
SHGetFileInfoW

ole32

CoUninitialize

winhttp

WinHttpWriteData
WinHttpCrackUrl
WinHttpOpen
WinHttpConnect
WinHttpCloseHandle
WinHttpOpenRequest
WinHttpReadData
WinHttpSendRequest
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpQueryDataAvailable
WinHttpQueryAuthSchemes

dbghelp

MiniDumpWriteDump

Exports

Exports

Finalization
GetAppInfo
GetLibVersion
Init
ResLanguage
SetAppInfo

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
GOMProtect.exe
.exe windows:5 windows x86 arch:x86

4f383ca6825fbbb664925b2ff23a06f7

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

56:0c:3f:bc:2b:0b:0b:ce:a6:a2:32:69:07:bb:8a:59
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

14-08-2017 00:00

Not After

14-08-2018 23:59

Subject

CN=GRETECH,OU=GRETECH,O=GRETECH,L=Shibuya,ST=Tokyo,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

69:e8:3c:85:a4:e5:10:2f:18:97:70:50:1f:9a:6c:41:bd:88:29:02
Signer

Actual PE Digest

69:e8:3c:85:a4:e5:10:2f:18:97:70:50:1f:9a:6c:41:bd:88:29:02

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\GOMProtect\bin\GOMProtectW.pdb

Imports

kernel32

ExitThread
GetSystemTimeAsFileTime
RtlUnwind
ExitProcess
GetModuleHandleExW
AreFileApisANSI
SetStdHandle
GetFileType
HeapQueryInformation
GetStdHandle
GetStartupInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetTickCount
IsValidCodePage
GetOEMCP
GetCPInfo
GetConsoleCP
GetConsoleMode
GetStringTypeW
GetTimeZoneInformation
SetConsoleCtrlHandler
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
CreateThread
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
WriteConsoleW
SetEnvironmentVariableA
IsProcessorFeaturePresent
IsDebuggerPresent
GetCommandLineW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
SetConsoleMode
ReadConsoleInputA
FlushConsoleInputBuffer
GetLocaleInfoW
CompareStringW
SetErrorMode
VirtualQuery
GetVersion
GetLocalTime
GlobalMemoryStatus
GetDiskFreeSpaceA
GetEnvironmentStrings
FreeEnvironmentStringsA
DeviceIoControl
GetVersionExA
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
lstrlenA
FormatMessageA
CreateMutexW
CreateMutexA
ReleaseMutex
FindResourceExW
GetFileSizeEx
GetFileAttributesExW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetCurrentProcessId
WaitForSingleObject
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GlobalFindAtomW
GlobalAddAtomW
FreeResource
GetSystemDirectoryW
EncodePointer
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GetVersionExW
GetCurrentThreadId
GetCurrentThread
LoadLibraryA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
FileTimeToSystemTime
LocalAlloc
LoadLibraryExW
FileTimeToLocalFileTime
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
SetLastError
OutputDebugStringA
GetACP
DeleteCriticalSection
DecodePointer
EnterCriticalSection
HeapSize
RaiseException
LeaveCriticalSection
HeapDestroy
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
TerminateProcess
OpenProcess
CreateDirectoryW
FreeLibrary
GetProcAddress
LoadLibraryW
MultiByteToWideChar
WideCharToMultiByte
GetFileTime
ReadFile
GetFileSize
CreateFileW
GetFileAttributesW
CloseHandle
Sleep
FindResourceW
LoadResource
LockResource
SizeofResource
GetLastError
DeleteFileW
lstrlenW
LCMapStringW

user32

SetWindowLongW
GetWindowLongW
PtInRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxW
AdjustWindowRectEx
GetWindowRect
GetWindowTextW
RemovePropW
GetPropW
SetPropW
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
GetClassLongW
IsWindow
PostMessageW
FindWindowExW
GetWindowThreadProcessId
UpdateWindow
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
WinHelpW
MonitorFromWindow
GetMonitorInfoW
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetClassNameW
GetTopWindow
GetLastActivePopup
GetWindow
SetWindowsHookExW
CallNextHookEx
SetActiveWindow
GetClassInfoW
LoadIconW
MessageBoxA
GetProcessWindowStation
GetUserObjectInformationW
SendMessageW
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
EnableWindow
UnregisterClassW
SendDlgItemMessageA
GetParent
GetSubMenu
GetMenuItemID
GetMenuItemCount
EnumDisplayMonitors
GetActiveWindow
IsWindowEnabled
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
GetMessageW
TranslateMessage
GetCursorPos
SetCursor
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetDC
ReleaseDC
BeginPaint
EndPaint
ClientToScreen
ShowWindow
SetWindowTextW
IsDialogMessageW
GetSysColorBrush
LoadCursorW
RealChildWindowFromPoint
GetDesktopWindow
CharUpperW
PostQuitMessage
UnhookWindowsHookEx
RegisterWindowMessageW
DispatchMessageW
SetWindowPos
DestroyWindow
SetTimer
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoExW
CreateWindowExW
DestroyMenu
InvalidateRect
KillTimer

gdi32

RectVisible
RestoreDC
SaveDC
SelectObject
SetMapMode
TextOutW
ExtTextOutW
PtVisible
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetStockObject
GetClipBox
Escape
DeleteObject
CreateBitmap
GetObjectW
SetTextColor
SetBkColor
GetDeviceCaps
DeleteDC

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegisterEventSourceA
DeregisterEventSource
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
CryptEncrypt
CryptImportKey
CryptExportKey
CryptGenRandom
CryptGetKeyParam
CryptGenKey
CryptAcquireContextA
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
ReportEventA

shell32

ShellExecuteW
SHGetFolderPathW

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionW
PathStripToRootW
PathIsUNCW
UrlUnescapeW
PathFileExistsW
PathFindFileNameW

ole32

CoCreateGuid
CoUninitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoInitialize

oleaut32

SysAllocString
VariantChangeType
VariantClear
VariantInit
SysFreeString

wintrust

WinVerifyTrust
WTHelperProvDataFromStateData
WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain

crypt32

CertGetNameStringW
CryptStringToBinaryA

psapi

GetModuleFileNameExW
EnumProcesses

netapi32

NetApiBufferFree
NetWkstaGetInfo

wininet

InternetSetStatusCallbackW
HttpOpenRequestW
HttpSendRequestW
InternetGetLastResponseInfoW
HttpQueryInfoW
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW
InternetGetConnectedState

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 849KB - Virtual size: 849KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 285KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 825KB - Virtual size: 851KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GomVR.dll
.dll windows:5 windows x86 arch:x86

7d1e8f25335c8023d386f1b3109453b0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Gretech\Project\KKAMGANG_MICHIN_SHECKI\GomVR\bin\Win32\GomVR.pdb

Imports

d3dx9_43

D3DXMatrixTranslation
D3DXMatrixRotationQuaternion
D3DXQuaternionMultiply
D3DXMatrixMultiply

gdiplus

GdipCreatePen1
GdipCreatePath
GdipImageRotateFlip
GdipDrawLineI
GdipCloneImage
GdipSetInterpolationMode
GdipDeleteMatrix
GdipFillPath
GdipDrawLine
GdipCreateFromHDC
GdipDeletePath
GdipSetPageUnit
GdipResetWorldTransform
GdipDisposeImage
GdipFillEllipseI
GdipTranslateMatrix
GdipDrawImageI
GdipLoadImageFromStreamICM
GdipCreateSolidFill
GdipAddPathArcI
GdipDrawEllipseI
GdipClosePathFigure
GdipSetSmoothingMode
GdipDrawImage
GdipGraphicsClear
GdipSetWorldTransform
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipDrawPath
GdipSetPenMode
GdipCreateMatrix
GdipSetTextRenderingHint
GdipFillPolygonI
GdipScaleMatrix
GdipCloneBrush
GdipResetPath
GdipDeletePen
GdipFree
GdipDeleteBrush
GdipLoadImageFromStream
GdipMultiplyMatrix
GdipAlloc

gdi32

SelectObject
CreateCompatibleDC
DeleteDC

advapi32

RegOpenKeyExW
RegCloseKey
RegGetValueW

user32

IsWindowVisible
UpdateLayeredWindow
ReleaseDC
GetDC
GetWindowRect

ole32

CreateStreamOnHGlobal

msvcp120

?_Xlength_error@std@@YAXPBD@Z
??0id@locale@std@@QAE@I@Z
?_Throw_Cpp_error@std@@YAXH@Z
?_Throw_C_error@std@@YAXH@Z
?_Release@_Pad@std@@QAEXXZ
?_Launch@_Pad@std@@QAEXPAU_Thrd_imp_t@@@Z
??1_Pad@std@@QAE@XZ
??0_Pad@std@@QAE@XZ
_Thrd_detach
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ

msvcr120

__clean_type_info_names_internal
_CIatan2
_CIfmod
_CxxThrowException
__CxxFrameHandler3
_libm_sse2_acos_precise
_libm_sse2_asin_precise
_libm_sse2_cos_precise
_libm_sse2_sin_precise
_libm_sse2_sqrt_precise
floor
memcmp
printf
memmove
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
??_V@YAXPAX@Z
wcscpy_s
memcpy
_difftime64
_time64
memchr
swprintf_s
_wsplitpath_s
wcsrchr
wcscat_s
memset
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
__CppXcptFilter
_amsg_exit
free
_malloc_crt
_initterm
_initterm_e
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except_handler4_common
?terminate@@YAXXZ

hid

HidD_GetAttributes

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW

kernel32

GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
GetModuleHandleExW
GetModuleFileNameW
MultiByteToWideChar
GetFileAttributesW
DisableThreadLibraryCalls
CreateDirectoryW
OpenFile
GetLastError
GetOverlappedResult
CreateFileW
ReadFile
WriteFile
CloseHandle
CreateEventW
ResetEvent
GetProcAddress
LoadLibraryW
SetEvent
WaitForSingleObject
LockResource
GlobalUnlock
SizeofResource
Sleep
GlobalAlloc
GetTickCount
GlobalLock
LoadResource
FindResourceW
WideCharToMultiByte
FreeLibrary

Exports

Exports

CreateObject

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
GrLauncher.exe
.exe windows:5 windows x86 arch:x86

a1b0efe4285ccc903f9feab6fc740ad7

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

4f:58:fc:05:42:6c:c4:b6:5d:bc:0c:2c:2e:3a:f3:04
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

11-07-2019 00:00

Not After

15-08-2021 23:59

Subject

CN=GRETECH CORPORATION,OU=GRETECH CORPORATION,O=GRETECH CORPORATION,L=Shinjuku,ST=Tokyo,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

a1:9a:be:fd:5d:06:56:a3:d9:98:39:5f:c8:d2:59:1e:6c:58:44:0d
Signer

Actual PE Digest

a1:9a:be:fd:5d:06:56:a3:d9:98:39:5f:c8:d2:59:1e:6c:58:44:0d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetCPInfo
GetStringTypeW
LCMapStringW
GetConsoleCP
GetConsoleMode
GetACP
SetFilePointerEx
OutputDebugStringW
WriteConsoleW
SetEnvironmentVariableA
VirtualFree
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
IsValidCodePage
GetTimeZoneInformation
PeekNamedPipe
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetStdHandle
VirtualQuery
VirtualAlloc
GetModuleHandleExW
ExitProcess
HeapQueryInformation
GetFileType
SetStdHandle
ExitThread
CreateThread
IsProcessorFeaturePresent
IsDebuggerPresent
RtlUnwind
GetSystemTimeAsFileTime
SystemTimeToTzSpecificLocalTime
FindFirstFileExW
VirtualProtect
SearchPathW
GetProfileIntW
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
GlobalFindAtomW
GlobalDeleteAtom
GlobalFlags
GetUserDefaultUILanguage
EncodePointer
GlobalAddAtomW
ResumeThread
LoadLibraryA
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetFullPathNameW
FlushFileBuffers
GetFileAttributesExW
GlobalGetAtomNameW
GetCurrentProcessId
LocalReAlloc
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetModuleHandleA
OutputDebugStringA
FileTimeToSystemTime
FileTimeToLocalFileTime
lstrcmpA
FormatMessageW
GlobalSize
FindResourceExW
lstrcpyW
InitializeCriticalSection
SetThreadPriority
CompareStringW
WideCharToMultiByte
GetVersionExA
GetVolumeInformationW
FindFirstFileW
GetFileAttributesW
CreateDirectoryW
GetCurrentDirectoryW
GetWindowsDirectoryW
GetTempPathW
GetSystemDirectoryW
GetDriveTypeW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetCommandLineW
LoadLibraryW
lstrlenW
lstrcpynW
GetFileTime
FindClose
GetFileSize
GetFileInformationByHandle
GetCurrentThread
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetTickCount
Sleep
WaitForSingleObject
LocalFree
LocalAlloc
SetCurrentDirectoryW
LoadLibraryExW
lstrcmpiW
FreeLibrary
DecodePointer
MultiByteToWideChar
GetVersionExW
CopyFileW
DeleteFileW
FindResourceW
CreateProcessW
GetModuleHandleW
GetModuleFileNameW
lstrcmpW
GetSystemInfo
MulDiv
SizeofResource
LoadResource
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
SetLastError
GetLastError
GetCurrentThreadId
RaiseException
GetCurrentProcess
FlushInstructionCache
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
GetProcAddress
LockResource
FreeResource
InterlockedDecrement
InterlockedIncrement
CreateFileW
CloseHandle
SetFilePointer
ReadFile
WriteFile
ReadConsoleW
GetFileSizeEx
LoadLibraryExA

user32

GetNextDlgGroupItem
GetNextDlgTabItem
CreateDialogIndirectParamW
DeleteMenu
SetCursor
ShowOwnedPopups
SendDlgItemMessageA
CopyImage
InflateRect
DestroyMenu
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
PostQuitMessage
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongW
AdjustWindowRectEx
ShowScrollBar
GetScrollRange
SetScrollRange
ScrollWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetClassInfoW
RegisterClassW
GetMessageTime
GetMessagePos
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageW
CheckDlgButton
GetScrollPos
SetScrollPos
RealChildWindowFromPoint
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
GetMessageW
CharUpperW
GetSysColorBrush
GetLastActivePopup
MessageBoxW
IsWindowEnabled
UnhookWindowsHookEx
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuState
GetMenuItemInfoW
ModifyMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
WindowFromPoint
FrameRect
wsprintfW
LoadIconW
PtInRect
RemovePropW
GetPropW
SetPropW
DrawTextW
SystemParametersInfoW
DestroyIcon
GetWindowThreadProcessId
FindWindowW
EqualRect
OffsetRect
IntersectRect
CopyRect
SetForegroundWindow
GetForegroundWindow
GetSystemMetrics
BringWindowToTop
IsIconic
GetWindowPlacement
PeekMessageW
DispatchMessageW
TranslateMessage
GetMonitorInfoW
MonitorFromWindow
MapDialogRect
MapWindowPoints
SetWindowContextHelpId
GetWindowRect
EnableWindow
KillTimer
SetTimer
SetDlgItemTextW
EndDialog
ShowWindow
LoadCursorW
GetWindow
GetClassNameW
GetParent
GetDesktopWindow
SetWindowLongW
GetWindowLongW
FillRect
CharUpperBuffW
RegisterClipboardFormatW
SetMenuDefaultItem
RegisterWindowMessageW
SendMessageW
PostMessageW
DefWindowProcW
CallWindowProcW
GetSysColor
ScreenToClient
ClientToScreen
GetClientRect
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
RedrawWindow
InvalidateRgn
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
DestroyAcceleratorTable
CreateAcceleratorTableW
ReleaseCapture
SetCapture
GetFocus
SetFocus
CharNextW
GetDlgItem
DialogBoxIndirectParamW
SetWindowPos
DrawFocusRect
SetRectEmpty
IsRectEmpty
LoadImageW
DrawIconEx
GetIconInfo
MessageBeep
GetAsyncKeyState
DrawIcon
GetWindowRgn
DestroyCursor
CreateMenu
MoveWindow
DestroyWindow
IsChild
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
GetMenuStringW
EnableScrollBar
UnregisterClassW
RegisterClassExW
GetClassInfoExW
CopyIcon
GetDoubleClickTime
SetClassLongW
LockWindowUpdate
CreateWindowExW
IsWindow
SetParent
SetRect
SetCursorPos
CopyAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
PostThreadMessageW
GetSystemMenu
IsZoomed
GetComboBoxInfo
TrackMouseEvent
GetKeyNameTextW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
SetWindowRgn
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadMenuW
MapVirtualKeyW
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
InvertRect
GetDlgCtrlID
HideCaret
DrawMenuBar

gdi32

CreateRectRgn
Escape
ExcludeClipRect
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
CombineRgn
CreateRectRgnIndirect
PatBlt
CreatePatternBrush
DPtoLP
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
GetRgnBox
OffsetRgn
CreateRoundRectRgn
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
CreateHatchBrush
CreateBitmap
CreateDCW
CopyMetaFileW
SetTextColor
ExtTextOutW
MoveToEx
GetTextMetricsW
SetBkMode
SetBkColor
RoundRect
LineTo
GetTextExtentPoint32W
GetClipBox
CreatePen
GetObjectW
SelectObject
GetStockObject
GetDeviceCaps
DeleteObject
DeleteDC
CreateSolidBrush
CreateCompatibleDC
SetRectRgn
BitBlt
CreateCompatibleBitmap

msimg32

AlphaBlend
TransparentBlt

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueExW
RegCloseKey
RegSetValueExW
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW

shell32

DragQueryFileW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderPathW
SHBrowseForFolderW
SHGetFileInfoW
SHAppBarMessage
DragFinish
ShellExecuteExW
SHGetDesktopFolder
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx
ord17

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed

ole32

CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CLSIDFromString
CoCreateInstance
OleInitialize
OleUninitialize
OleLockRunning
CreateStreamOnHGlobal
CoGetClassObject
CoTaskMemRealloc
OleDuplicateData
ReleaseStgMedium
CoDisconnectObject
CoUninitialize
CoInitialize
CoInitializeEx
DoDragDrop
OleCreateMenuDescriptor
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
CLSIDFromProgID
OleDestroyMenuDescriptor

oleaut32

OleCreateFontIndirect
VarUI4FromStr
SystemTimeToVariantTime
VariantTimeToSystemTime
LoadRegTypeLi
VariantCopy
VariantChangeType
VarBstrFromDate
LoadTypeLi
VariantClear
SysStringLen
VariantInit
SysFreeString
SysAllocString
SysAllocStringLen

wintrust

WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain
WinVerifyTrust
WTHelperProvDataFromStateData

crypt32

CertGetNameStringW

wininet

HttpQueryInfoW
HttpSendRequestW
HttpOpenRequestW
InternetSetOptionW
InternetQueryOptionW
InternetQueryDataAvailable
InternetReadFile
InternetOpenUrlW
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KillGom.exe
.exe windows:5 windows x86 arch:x86

175f226801ef0f6baab6950f64df40db

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

56:0c:3f:bc:2b:0b:0b:ce:a6:a2:32:69:07:bb:8a:59
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

14-08-2017 00:00

Not After

14-08-2018 23:59

Subject

CN=GRETECH,OU=GRETECH,O=GRETECH,L=Shibuya,ST=Tokyo,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

ae:84:66:57:ab:03:b1:91:2d:8f:82:ce:75:20:b3:e5:df:e4:92:57
Signer

Actual PE Digest

ae:84:66:57:ab:03:b1:91:2d:8f:82:ce:75:20:b3:e5:df:e4:92:57

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\SVN\[TOOLS]\KillGom\trunk\bin\KillGom.pdb

Imports

kernel32

CreateToolhelp32Snapshot
Process32FirstW
GetCurrentProcessId
OpenProcess
TerminateProcess
CloseHandle
Process32NextW
MultiByteToWideChar
GetCommandLineA
IsDebuggerPresent
IsProcessorFeaturePresent
EncodePointer
DecodePointer
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetLastError
SetLastError
GetCurrentThreadId
ExitProcess
GetModuleHandleExW
GetProcAddress
WideCharToMultiByte
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
WriteFile
GetModuleFileNameW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetStringTypeW
LCMapStringW
LoadLibraryExW
RtlUnwind
OutputDebugStringW
HeapAlloc
HeapReAlloc
HeapSize
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx
WriteConsoleW
CreateFileW

Sections

.text
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
gdiplus.dll
.dll windows:6 windows x86 arch:x86

ef4c749f5dec4632456950949469f18c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

gdiplus.pdb

Imports

msvcrt

_isatty
_write
_lseeki64
_fileno
__pioinfo
__badioinfo
wctomb
_itoa
_snprintf
isleadbyte
memmove
_adjust_fdiv
_amsg_exit
_initterm
free
malloc
_XcptFilter
_CIatan2
_CIsqrt
_CIsin
_CIcos
??3@YAXPAX@Z
_iob
_CIexp
_CIatan
_vsnprintf
_vsnwprintf
_errno
memset
memcpy
_purecall
_CIlog

kernel32

GetFileInformationByHandle
RaiseException
InterlockedIncrement
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
InterlockedCompareExchange
HeapAlloc
InterlockedExchange
GetCurrentThreadId
InitializeCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
HeapFree
VirtualAlloc
GetProcAddress
GetModuleHandleW
GetSystemInfo
GetVersion
HeapReAlloc
CloseHandle
WaitForSingleObject
SetEvent
lstrcmpiA
IsValidLocale
ConvertDefaultLocale
GetLocaleInfoW
GetModuleFileNameW
GetModuleFileNameA
FindResourceA
LockResource
GetProfileIntA
GetProfileStringA
lstrcmpiW
LocalReAlloc
MulDiv
SetLastError
LocalAlloc
LocalFree
IsDBCSLeadByteEx
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
RtlUnwind
OutputDebugStringA
Sleep
GetFileTime
SearchPathW
SearchPathA
GetOEMCP
SetEndOfFile
WriteFile
SetFilePointer
ReadFile
UnlockFile
LoadResource
LockFile
FlushFileBuffers
CreateSemaphoreA
CreateFileW
LoadLibraryW
GetSystemDirectoryA
CreateFileMappingW
ReleaseSemaphore
GetFileAttributesW
GetProfileSectionA
GetLastError
VirtualFree
GlobalAlloc
CreateFileA
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GlobalLock
GlobalSize
GlobalUnlock
GlobalFree
HeapCreate
GetModuleHandleA
FreeLibrary
HeapDestroy
LoadLibraryA
GetSystemDirectoryW
GetWindowsDirectoryA
GetVersionExA
GetACP
GetSystemDefaultLCID
GetTickCount
MultiByteToWideChar
WideCharToMultiByte
CreateEventA
CreateThread

user32

ReleaseDC
GetDC
GetSysColor
UnregisterClassA
DestroyWindow
GetSystemMetrics
DefWindowProcA
CreateWindowExA
RegisterWindowMessageA
RegisterClassA
DispatchMessageA
TranslateMessage
MsgWaitForMultipleObjects
PeekMessageA
GetClientRect
GetDesktopWindow
GetWindowRect
WindowFromDC
CreateIconIndirect
LoadBitmapW
LoadBitmapA
ClientToScreen
SystemParametersInfoA
GetClassLongA
GetWindowLongA
GetDCEx
GetIconInfo

gdi32

ModifyWorldTransform
GetTextCharsetInfo
TranslateCharsetInfo
GetCurrentPositionEx
ArcTo
SetArcDirection
GetPath
AbortPath
FlattenPath
WidenPath
Ellipse
AngleArc
RoundRect
PolyDraw
Pie
Chord
Arc
OffsetClipRgn
GetRgnBox
CombineRgn
SetPaletteEntries
ResizePalette
ExcludeClipRect
PlayEnhMetaFile
GetWinMetaFileBits
PlgBlt
BitBlt
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineTransform
SetMapperFlags
CreateDIBitmap
CreatePen
CreatePatternBrush
GetBkMode
GetTextAlign
ExtCreateRegion
Polyline
PolyPolyline
StrokeAndFillPath
FillPath
SetPolyFillMode
PolyBezier
SelectClipPath
BeginPath
PolylineTo
PolyBezierTo
MoveToEx
CloseFigure
EndPath
StrokePath
ExtSelectClipRgn
GetPixel
ExtTextOutA
CreateSolidBrush
SetMiterLimit
FillRgn
GetDIBColorTable
GetNearestPaletteIndex
StretchBlt
CreateCompatibleBitmap
ExtCreatePen
GetWorldTransform
GetROP2
Rectangle
Polygon
SetBrushOrgEx
GetClipRgn
SelectClipRgn
GetBkColor
GetTextColor
CreatePenIndirect
GetObjectW
DPtoLP
CreateDIBPatternBrushPt
GetNearestColor
SetStretchBltMode
StretchDIBits
SetTextAlign
SetTextJustification
SetROP2
PolyPolygon
IntersectClipRect
PlayMetaFileRecord
ExtTextOutW
SetBitmapBits
SetDIBColorTable
CreateEnhMetaFileW
GdiComment
GetMetaFileW
GetMetaFileA
GetEnhMetaFileW
GetEnhMetaFileA
SaveDC
SetWindowOrgEx
SetViewportOrgEx
SetGraphicsMode
SetWorldTransform
GetEnhMetaFileBits
CopyEnhMetaFileA
CopyMetaFileA
DeleteMetaFile
GetEnhMetaFileHeader
SetMetaFileBitsEx
SetEnhMetaFileBits
CreateEnhMetaFileA
SetMapMode
SetViewportExtEx
SetWindowExtEx
PlayMetaFile
CloseEnhMetaFile
DeleteEnhMetaFile
SetMetaRgn
GetObjectType
GetMetaFileBitsEx
EnumMetaFile
EnumEnhMetaFile
PlayEnhMetaFileRecord
RestoreDC
GetStockObject
CreateBitmap
SetTextColor
SetBkColor
SetBkMode
SetDIBits
CreateBrushIndirect
PatBlt
GdiFlush
GetPaletteEntries
RealizePalette
CreateDIBSection
CreateCompatibleDC
GetDIBits
GetCurrentObject
GetObjectA
GetDCOrgEx
Escape
SetICMMode
GetMapMode
GetViewportOrgEx
GetWindowOrgEx
GetGraphicsMode
GetViewportExtEx
GetWindowExtEx
LPtoDP
GetRandomRgn
ExtEscape
CreateRectRgn
CreateICA
CreateDCA
DeleteDC
GetRegionData
CreateFontIndirectA
CreateFontIndirectW
SelectObject
EnumFontFamiliesExW
EnumFontFamiliesExA
GetTextMetricsW
GetTextFaceW
GetTextMetricsA
GetTextFaceA
SelectPalette
DeleteObject
GetDeviceCaps
GetSystemPaletteUse
GetSystemPaletteEntries
CreatePalette
LineTo

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateStreamOnHGlobal

advapi32

RegDeleteKeyA
RegCreateKeyExW
RegCreateKeyExA
RegEnumKeyExW
RegEnumKeyExA
RegOpenKeyW
RegOpenKeyA
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyW
RegOpenKeyExW
RegOpenKeyExA
RegQueryInfoKeyA
RegEnumValueW
RegCloseKey
RegEnumValueA
RegDeleteKeyW
RegSetValueExA
RegSetValueExW

Exports

Exports

GdipAddPathArc
GdipAddPathArcI
GdipAddPathBezier
GdipAddPathBezierI
GdipAddPathBeziers
GdipAddPathBeziersI
GdipAddPathClosedCurve
GdipAddPathClosedCurve2
GdipAddPathClosedCurve2I
GdipAddPathClosedCurveI
GdipAddPathCurve
GdipAddPathCurve2
GdipAddPathCurve2I
GdipAddPathCurve3
GdipAddPathCurve3I
GdipAddPathCurveI
GdipAddPathEllipse
GdipAddPathEllipseI
GdipAddPathLine
GdipAddPathLine2
GdipAddPathLine2I
GdipAddPathLineI
GdipAddPathPath
GdipAddPathPie
GdipAddPathPieI
GdipAddPathPolygon
GdipAddPathPolygonI
GdipAddPathRectangle
GdipAddPathRectangleI
GdipAddPathRectangles
GdipAddPathRectanglesI
GdipAddPathString
GdipAddPathStringI
GdipAlloc
GdipBeginContainer
GdipBeginContainer2
GdipBeginContainerI
GdipBitmapGetPixel
GdipBitmapLockBits
GdipBitmapSetPixel
GdipBitmapSetResolution
GdipBitmapUnlockBits
GdipClearPathMarkers
GdipCloneBitmapArea
GdipCloneBitmapAreaI
GdipCloneBrush
GdipCloneCustomLineCap
GdipCloneFont
GdipCloneFontFamily
GdipCloneImage
GdipCloneImageAttributes
GdipCloneMatrix
GdipClonePath
GdipClonePen
GdipCloneRegion
GdipCloneStringFormat
GdipClosePathFigure
GdipClosePathFigures
GdipCombineRegionPath
GdipCombineRegionRect
GdipCombineRegionRectI
GdipCombineRegionRegion
GdipComment
GdipCreateAdjustableArrowCap
GdipCreateBitmapFromDirectDrawSurface
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateCachedBitmap
GdipCreateCustomLineCap
GdipCreateFont
GdipCreateFontFamilyFromName
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCreateFontFromLogfontW
GdipCreateFromHDC
GdipCreateFromHDC2
GdipCreateFromHWND
GdipCreateFromHWNDICM
GdipCreateHBITMAPFromBitmap
GdipCreateHICONFromBitmap
GdipCreateHalftonePalette
GdipCreateHatchBrush
GdipCreateImageAttributes
GdipCreateLineBrush
GdipCreateLineBrushFromRect
GdipCreateLineBrushFromRectI
GdipCreateLineBrushFromRectWithAngle
GdipCreateLineBrushFromRectWithAngleI
GdipCreateLineBrushI
GdipCreateMatrix
GdipCreateMatrix2
GdipCreateMatrix3
GdipCreateMatrix3I
GdipCreateMetafileFromEmf
GdipCreateMetafileFromFile
GdipCreateMetafileFromStream
GdipCreateMetafileFromWmf
GdipCreateMetafileFromWmfFile
GdipCreatePath
GdipCreatePath2
GdipCreatePath2I
GdipCreatePathGradient
GdipCreatePathGradientFromPath
GdipCreatePathGradientI
GdipCreatePathIter
GdipCreatePen1
GdipCreatePen2
GdipCreateRegion
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRect
GdipCreateRegionRectI
GdipCreateRegionRgnData
GdipCreateSolidFill
GdipCreateStreamOnFile
GdipCreateStringFormat
GdipCreateTexture
GdipCreateTexture2
GdipCreateTexture2I
GdipCreateTextureIA
GdipCreateTextureIAI
GdipDeleteBrush
GdipDeleteCachedBitmap
GdipDeleteCustomLineCap
GdipDeleteFont
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDeleteMatrix
GdipDeletePath
GdipDeletePathIter
GdipDeletePen
GdipDeletePrivateFontCollection
GdipDeleteRegion
GdipDeleteStringFormat
GdipDisposeImage
GdipDisposeImageAttributes
GdipDrawArc
GdipDrawArcI
GdipDrawBezier
GdipDrawBezierI
GdipDrawBeziers
GdipDrawBeziersI
GdipDrawCachedBitmap
GdipDrawClosedCurve
GdipDrawClosedCurve2
GdipDrawClosedCurve2I
GdipDrawClosedCurveI
GdipDrawCurve
GdipDrawCurve2
GdipDrawCurve2I
GdipDrawCurve3
GdipDrawCurve3I
GdipDrawCurveI
GdipDrawDriverString
GdipDrawEllipse
GdipDrawEllipseI
GdipDrawImage
GdipDrawImageI
GdipDrawImagePointRect
GdipDrawImagePointRectI
GdipDrawImagePoints
GdipDrawImagePointsI
GdipDrawImagePointsRect
GdipDrawImagePointsRectI
GdipDrawImageRect
GdipDrawImageRectI
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDrawLine
GdipDrawLineI
GdipDrawLines
GdipDrawLinesI
GdipDrawPath
GdipDrawPie
GdipDrawPieI
GdipDrawPolygon
GdipDrawPolygonI
GdipDrawRectangle
GdipDrawRectangleI
GdipDrawRectangles
GdipDrawRectanglesI
GdipDrawString
GdipEmfToWmfBits
GdipEndContainer
GdipEnumerateMetafileDestPoint
GdipEnumerateMetafileDestPointI
GdipEnumerateMetafileDestPoints
GdipEnumerateMetafileDestPointsI
GdipEnumerateMetafileDestRect
GdipEnumerateMetafileDestRectI
GdipEnumerateMetafileSrcRectDestPoint
GdipEnumerateMetafileSrcRectDestPointI
GdipEnumerateMetafileSrcRectDestPoints
GdipEnumerateMetafileSrcRectDestPointsI
GdipEnumerateMetafileSrcRectDestRect
GdipEnumerateMetafileSrcRectDestRectI
GdipFillClosedCurve
GdipFillClosedCurve2
GdipFillClosedCurve2I
GdipFillClosedCurveI
GdipFillEllipse
GdipFillEllipseI
GdipFillPath
GdipFillPie
GdipFillPieI
GdipFillPolygon
GdipFillPolygon2
GdipFillPolygon2I
GdipFillPolygonI
GdipFillRectangle
GdipFillRectangleI
GdipFillRectangles
GdipFillRectanglesI
GdipFillRegion
GdipFlattenPath
GdipFlush
GdipFree
GdipGetAdjustableArrowCapFillState
GdipGetAdjustableArrowCapHeight
GdipGetAdjustableArrowCapMiddleInset
GdipGetAdjustableArrowCapWidth
GdipGetAllPropertyItems
GdipGetBrushType
GdipGetCellAscent
GdipGetCellDescent
GdipGetClip
GdipGetClipBounds
GdipGetClipBoundsI
GdipGetCompositingMode
GdipGetCompositingQuality
GdipGetCustomLineCapBaseCap
GdipGetCustomLineCapBaseInset
GdipGetCustomLineCapStrokeCaps
GdipGetCustomLineCapStrokeJoin
GdipGetCustomLineCapType
GdipGetCustomLineCapWidthScale
GdipGetDC
GdipGetDpiX
GdipGetDpiY
GdipGetEmHeight
GdipGetEncoderParameterList
GdipGetEncoderParameterListSize
GdipGetFamily
GdipGetFamilyName
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipGetFontHeight
GdipGetFontHeightGivenDPI
GdipGetFontSize
GdipGetFontStyle
GdipGetFontUnit
GdipGetGenericFontFamilyMonospace
GdipGetGenericFontFamilySansSerif
GdipGetGenericFontFamilySerif
GdipGetHatchBackgroundColor
GdipGetHatchForegroundColor
GdipGetHatchStyle
GdipGetHemfFromMetafile
GdipGetImageAttributesAdjustedPalette
GdipGetImageBounds
GdipGetImageDecoders
GdipGetImageDecodersSize
GdipGetImageDimension
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageFlags
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageThumbnail
GdipGetImageType
GdipGetImageVerticalResolution
GdipGetImageWidth
GdipGetInterpolationMode
GdipGetLineBlend
GdipGetLineBlendCount
GdipGetLineColors
GdipGetLineGammaCorrection
GdipGetLinePresetBlend
GdipGetLinePresetBlendCount
GdipGetLineRect
GdipGetLineRectI
GdipGetLineSpacing
GdipGetLineTransform
GdipGetLineWrapMode
GdipGetLogFontA
GdipGetLogFontW
GdipGetMatrixElements
GdipGetMetafileDownLevelRasterizationLimit
GdipGetMetafileHeaderFromEmf
GdipGetMetafileHeaderFromFile
GdipGetMetafileHeaderFromMetafile
GdipGetMetafileHeaderFromStream
GdipGetMetafileHeaderFromWmf
GdipGetNearestColor
GdipGetPageScale
GdipGetPageUnit
GdipGetPathData
GdipGetPathFillMode
GdipGetPathGradientBlend
GdipGetPathGradientBlendCount
GdipGetPathGradientCenterColor
GdipGetPathGradientCenterPoint
GdipGetPathGradientCenterPointI
GdipGetPathGradientFocusScales
GdipGetPathGradientGammaCorrection
GdipGetPathGradientPath
GdipGetPathGradientPointCount
GdipGetPathGradientPresetBlend
GdipGetPathGradientPresetBlendCount
GdipGetPathGradientRect
GdipGetPathGradientRectI
GdipGetPathGradientSurroundColorCount
GdipGetPathGradientSurroundColorsWithCount
GdipGetPathGradientTransform
GdipGetPathGradientWrapMode
GdipGetPathLastPoint
GdipGetPathPoints
GdipGetPathPointsI
GdipGetPathTypes
GdipGetPathWorldBounds
GdipGetPathWorldBoundsI
GdipGetPenBrushFill
GdipGetPenColor
GdipGetPenCompoundArray
GdipGetPenCompoundCount
GdipGetPenCustomEndCap
GdipGetPenCustomStartCap
GdipGetPenDashArray
GdipGetPenDashCap197819
GdipGetPenDashCount
GdipGetPenDashOffset
GdipGetPenDashStyle
GdipGetPenEndCap
GdipGetPenFillType
GdipGetPenLineJoin
GdipGetPenMiterLimit
GdipGetPenMode
GdipGetPenStartCap
GdipGetPenTransform
GdipGetPenUnit
GdipGetPenWidth
GdipGetPixelOffsetMode
GdipGetPointCount
GdipGetPropertyCount
GdipGetPropertyIdList
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipGetPropertySize
GdipGetRegionBounds
GdipGetRegionBoundsI
GdipGetRegionData
GdipGetRegionDataSize
GdipGetRegionHRgn
GdipGetRegionScans
GdipGetRegionScansCount
GdipGetRegionScansI
GdipGetRenderingOrigin
GdipGetSmoothingMode
GdipGetSolidFillColor
GdipGetStringFormatAlign
GdipGetStringFormatDigitSubstitution
GdipGetStringFormatFlags
GdipGetStringFormatHotkeyPrefix
GdipGetStringFormatLineAlign
GdipGetStringFormatMeasurableCharacterRangeCount
GdipGetStringFormatTabStopCount
GdipGetStringFormatTabStops
GdipGetStringFormatTrimming
GdipGetTextContrast
GdipGetTextRenderingHint
GdipGetTextureImage
GdipGetTextureTransform
GdipGetTextureWrapMode
GdipGetVisibleClipBounds
GdipGetVisibleClipBoundsI
GdipGetWorldTransform
GdipGraphicsClear
GdipImageForceValidation
GdipImageGetFrameCount
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipInvertMatrix
GdipIsClipEmpty
GdipIsEmptyRegion
GdipIsEqualRegion
GdipIsInfiniteRegion
GdipIsMatrixEqual
GdipIsMatrixIdentity
GdipIsMatrixInvertible
GdipIsOutlineVisiblePathPoint
GdipIsOutlineVisiblePathPointI
GdipIsStyleAvailable
GdipIsVisibleClipEmpty
GdipIsVisiblePathPoint
GdipIsVisiblePathPointI
GdipIsVisiblePoint
GdipIsVisiblePointI
GdipIsVisibleRect
GdipIsVisibleRectI
GdipIsVisibleRegionPoint
GdipIsVisibleRegionPointI
GdipIsVisibleRegionRect
GdipIsVisibleRegionRectI
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipMeasureCharacterRanges
GdipMeasureDriverString
GdipMeasureString
GdipMultiplyLineTransform
GdipMultiplyMatrix
GdipMultiplyPathGradientTransform
GdipMultiplyPenTransform
GdipMultiplyTextureTransform
GdipMultiplyWorldTransform
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPathIterCopyData
GdipPathIterEnumerate
GdipPathIterGetCount
GdipPathIterGetSubpathCount
GdipPathIterHasCurve
GdipPathIterIsValid
GdipPathIterNextMarker
GdipPathIterNextMarkerPath
GdipPathIterNextPathType
GdipPathIterNextSubpath
GdipPathIterNextSubpathPath
GdipPathIterRewind
GdipPlayMetafileRecord
GdipPrivateAddFontFile
GdipPrivateAddMemoryFont
GdipRecordMetafile
GdipRecordMetafileFileName
GdipRecordMetafileFileNameI
GdipRecordMetafileI
GdipRecordMetafileStream
GdipRecordMetafileStreamI
GdipReleaseDC
GdipRemovePropertyItem
GdipResetClip
GdipResetImageAttributes
GdipResetLineTransform
GdipResetPageTransform
GdipResetPath
GdipResetPathGradientTransform
GdipResetPenTransform
GdipResetTextureTransform
GdipResetWorldTransform
GdipRestoreGraphics
GdipReversePath
GdipRotateLineTransform
GdipRotateMatrix
GdipRotatePathGradientTransform
GdipRotatePenTransform
GdipRotateTextureTransform
GdipRotateWorldTransform
GdipSaveAdd
GdipSaveAddImage
GdipSaveGraphics
GdipSaveImageToFile
GdipSaveImageToStream
GdipScaleLineTransform
GdipScaleMatrix
GdipScalePathGradientTransform
GdipScalePenTransform
GdipScaleTextureTransform
GdipScaleWorldTransform
GdipSetAdjustableArrowCapFillState
GdipSetAdjustableArrowCapHeight
GdipSetAdjustableArrowCapMiddleInset
GdipSetAdjustableArrowCapWidth
GdipSetClipGraphics
GdipSetClipHrgn
GdipSetClipPath
GdipSetClipRect
GdipSetClipRectI
GdipSetClipRegion
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetCustomLineCapBaseCap
GdipSetCustomLineCapBaseInset
GdipSetCustomLineCapStrokeCaps
GdipSetCustomLineCapStrokeJoin

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libass.dll
.dll windows:5 windows x86 arch:x86

2c164b90c1b5a24e0c9e2ce914e96c0f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\[00.Project]\libass-Trunk\src\builds\windows\vc2013\bin\libass.pdb

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
GetWindowsDirectoryA
CloseHandle
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
GetFullPathNameA
InterlockedCompareExchange
InterlockedExchange
InitializeCriticalSection
InterlockedExchangeAdd
ReadFile
GetLastError
HeapFree
HeapAlloc
HeapReAlloc
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
GetCurrentThreadId
GetSystemTimeAsFileTime
SetStdHandle
GetFileType
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
FileTimeToSystemTime
FindClose
SystemTimeToTzSpecificLocalTime
AreFileApisANSI
MultiByteToWideChar
RtlUnwind
GetStdHandle
GetModuleFileNameW
GetModuleHandleExW
WriteConsoleW
EncodePointer
DecodePointer
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetStartupInfoW
SetLastError
GetProcessHeap
ExitProcess
GetProcAddress
WideCharToMultiByte
WriteFile
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
RaiseException
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
FindFirstFileExW
GetDriveTypeW
FlushFileBuffers
GetConsoleCP
CreateDirectoryW
FindNextFileW
MoveFileExW
OutputDebugStringW
LoadLibraryExW
GetStringTypeW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
CompareStringW
LCMapStringW
SetEnvironmentVariableA
GetFullPathNameW
GetCurrentDirectoryW
CreateFileW
GetTimeZoneInformation
HeapSize
SetEndOfFile
GetVersionExA
GetModuleHandleA
GetFileAttributesExW
DeleteFileW
RemoveDirectoryW
DuplicateHandle

Exports

Exports

ass_add_font
ass_alloc_event
ass_alloc_style
ass_clear_fonts
ass_flush_events
ass_fonts_update
ass_free_event
ass_free_style
ass_free_track
ass_library_done
ass_library_init
ass_new_track
ass_process_chunk
ass_process_codec_private
ass_process_data
ass_process_force_style
ass_read_file
ass_read_memory
ass_read_styles
ass_render_frame
ass_renderer_done
ass_renderer_init
ass_set_aspect_ratio
ass_set_cache_limits
ass_set_extract_fonts
ass_set_font_scale
ass_set_fonts
ass_set_fonts_dir
ass_set_frame_size
ass_set_hinting
ass_set_line_position
ass_set_line_spacing
ass_set_margins
ass_set_message_cb
ass_set_pixel_aspect
ass_set_shaper
ass_set_storage_size
ass_set_style_overrides
ass_set_use_margins
ass_step_sub
hb_set_textInfo
split_string_by_cluster

Sections

.text
Size: 944KB - Virtual size: 943KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 485KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/D3DX9_43.dll
.dll windows:6 windows x86 arch:x86

5fb75b2a87c1fa7cc3d7904a0b97084a

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:cf:3e:00:00:00:00:00:0f
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07-12-2009 22:40

Not After

07-03-2011 22:40

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:06:94:2d:00:00:00:00:00:09
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:02

Not After

25-07-2013 19:12

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

9b:28:ef:17:5d:cd:b3:d3:ec:10:d1:6d:64:92:d2:24:02:c3:2b:3e
Signer

Actual PE Digest

9b:28:ef:17:5d:cd:b3:d3:ec:10:d1:6d:64:92:d2:24:02:c3:2b:3e

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d3dx9_43.pdb

Imports

msvcrt

_isatty
_write
_lseeki64
__pioinfo
__badioinfo
wctomb
_itoa
_snprintf
_fileno
isleadbyte
?terminate@@YAXXZ
_onexit
_lock
__dllonexit
_unlock
_amsg_exit
_initterm
_XcptFilter
srand
strtod
fread
fflush
fwrite
abort
_tempnam
exit
isalpha
atof
atol
isxdigit
_ultoa
wcstombs
_CIexp
_isnan
rand
atoi
isalnum
floor
_strtime
_strdate
sscanf
isspace
isdigit
_setjmp3
longjmp
ldexp
frexp
calloc
realloc
_CIlog
setlocale
_strdup
free
_clearfp
ceil
_controlfp
malloc
_CIatan
_CIcos
_CIasin
_finite
_CIsin
_CIatan2
_CIacos
memmove
qsort
_CIfmod
_purecall
_stricmp
modf
iswspace
iswalpha
iswdigit
iswpunct
_CIsqrt
memcpy
memset
_CIpow
??2@YAPAXI@Z
??3@YAXPAX@Z
_iob
_vsnprintf
_vsnwprintf
_errno
__CxxFrameHandler

gdi32

GetTextMetricsA
GetObjectA
GetGlyphOutlineA
CreateDIBSection
DeleteDC
DeleteObject
SelectObject
GetCharacterPlacementW
GetCharacterPlacementA
SetTextColor
SetBkColor
SetBkMode
GetTextMetricsW
GetFontLanguageInfo
CreateFontIndirectA
CreateFontIndirectW
SetTextAlign
SetMapMode
CreateCompatibleDC
ExtTextOutA
MoveToEx
ExtTextOutW
TranslateCharsetInfo
GetCurrentObject
GetOutlineTextMetricsA
GetGlyphOutlineW
GetObjectW

kernel32

DeleteFileW
SetFilePointer
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
FindResourceA
LoadResource
LockResource
SizeofResource
FreeResource
CompareStringA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FormatMessageA
LocalFree
CreateFileW
GetFileSizeEx
GetFullPathNameW
GetLastError
IsDBCSLeadByte
WriteFile
GetTempPathA
MoveFileA
CreateFileA
ReadFile
CloseHandle
DeleteFileA
InterlockedDecrement
InterlockedIncrement
IsProcessorFeaturePresent
VirtualFree
GetACP
WideCharToMultiByte
MultiByteToWideChar
OutputDebugStringA
GetModuleHandleA
FreeLibrary
LoadLibraryA
GetVersionExA
GetSystemInfo
GetProcAddress
VirtualAlloc
GetProcessHeap
HeapFree
HeapAlloc
DisableThreadLibraryCalls
MoveFileW
GetTempFileNameW
GlobalMemoryStatus
SetEndOfFile
ExpandEnvironmentStringsA
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
WaitForSingleObject
ReleaseMutex
CreateMutexA
Sleep
InterlockedExchange
InterlockedCompareExchange
RtlUnwind
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetVersion
GetTempFileNameA
FindResourceW

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey

Exports

Exports

D3DXAssembleShader
D3DXAssembleShaderFromFileA
D3DXAssembleShaderFromFileW
D3DXAssembleShaderFromResourceA
D3DXAssembleShaderFromResourceW
D3DXBoxBoundProbe
D3DXCheckCubeTextureRequirements
D3DXCheckTextureRequirements
D3DXCheckVersion
D3DXCheckVolumeTextureRequirements
D3DXCleanMesh
D3DXColorAdjustContrast
D3DXColorAdjustSaturation
D3DXCompileShader
D3DXCompileShaderFromFileA
D3DXCompileShaderFromFileW
D3DXCompileShaderFromResourceA
D3DXCompileShaderFromResourceW
D3DXComputeBoundingBox
D3DXComputeBoundingSphere
D3DXComputeIMTFromPerTexelSignal
D3DXComputeIMTFromPerVertexSignal
D3DXComputeIMTFromSignal
D3DXComputeIMTFromTexture
D3DXComputeNormalMap
D3DXComputeNormals
D3DXComputeTangent
D3DXComputeTangentFrame
D3DXComputeTangentFrameEx
D3DXConcatenateMeshes
D3DXConvertMeshSubsetToSingleStrip
D3DXConvertMeshSubsetToStrips
D3DXCreateAnimationController
D3DXCreateBox
D3DXCreateBuffer
D3DXCreateCompressedAnimationSet
D3DXCreateCubeTexture
D3DXCreateCubeTextureFromFileA
D3DXCreateCubeTextureFromFileExA
D3DXCreateCubeTextureFromFileExW
D3DXCreateCubeTextureFromFileInMemory
D3DXCreateCubeTextureFromFileInMemoryEx
D3DXCreateCubeTextureFromFileW
D3DXCreateCubeTextureFromResourceA
D3DXCreateCubeTextureFromResourceExA
D3DXCreateCubeTextureFromResourceExW
D3DXCreateCubeTextureFromResourceW
D3DXCreateCylinder
D3DXCreateEffect
D3DXCreateEffectCompiler
D3DXCreateEffectCompilerFromFileA
D3DXCreateEffectCompilerFromFileW
D3DXCreateEffectCompilerFromResourceA
D3DXCreateEffectCompilerFromResourceW
D3DXCreateEffectEx
D3DXCreateEffectFromFileA
D3DXCreateEffectFromFileExA
D3DXCreateEffectFromFileExW
D3DXCreateEffectFromFileW
D3DXCreateEffectFromResourceA
D3DXCreateEffectFromResourceExA
D3DXCreateEffectFromResourceExW
D3DXCreateEffectFromResourceW
D3DXCreateEffectPool
D3DXCreateFontA
D3DXCreateFontIndirectA
D3DXCreateFontIndirectW
D3DXCreateFontW
D3DXCreateKeyframedAnimationSet
D3DXCreateLine
D3DXCreateMatrixStack
D3DXCreateMesh
D3DXCreateMeshFVF
D3DXCreateNPatchMesh
D3DXCreatePMeshFromStream
D3DXCreatePRTBuffer
D3DXCreatePRTBufferTex
D3DXCreatePRTCompBuffer
D3DXCreatePRTEngine
D3DXCreatePatchMesh
D3DXCreatePolygon
D3DXCreateRenderToEnvMap
D3DXCreateRenderToSurface
D3DXCreateSPMesh
D3DXCreateSkinInfo
D3DXCreateSkinInfoFVF
D3DXCreateSkinInfoFromBlendedMesh
D3DXCreateSphere
D3DXCreateSprite
D3DXCreateTeapot
D3DXCreateTextA
D3DXCreateTextW
D3DXCreateTexture
D3DXCreateTextureFromFileA
D3DXCreateTextureFromFileExA
D3DXCreateTextureFromFileExW
D3DXCreateTextureFromFileInMemory
D3DXCreateTextureFromFileInMemoryEx
D3DXCreateTextureFromFileW
D3DXCreateTextureFromResourceA
D3DXCreateTextureFromResourceExA
D3DXCreateTextureFromResourceExW
D3DXCreateTextureFromResourceW
D3DXCreateTextureGutterHelper
D3DXCreateTextureShader
D3DXCreateTorus
D3DXCreateVolumeTexture
D3DXCreateVolumeTextureFromFileA
D3DXCreateVolumeTextureFromFileExA
D3DXCreateVolumeTextureFromFileExW
D3DXCreateVolumeTextureFromFileInMemory
D3DXCreateVolumeTextureFromFileInMemoryEx
D3DXCreateVolumeTextureFromFileW
D3DXCreateVolumeTextureFromResourceA
D3DXCreateVolumeTextureFromResourceExA
D3DXCreateVolumeTextureFromResourceExW
D3DXCreateVolumeTextureFromResourceW
D3DXDebugMute
D3DXDeclaratorFromFVF
D3DXDisassembleEffect
D3DXDisassembleShader
D3DXFVFFromDeclarator
D3DXFileCreate
D3DXFillCubeTexture
D3DXFillCubeTextureTX
D3DXFillTexture
D3DXFillTextureTX
D3DXFillVolumeTexture
D3DXFillVolumeTextureTX
D3DXFilterTexture
D3DXFindShaderComment
D3DXFloat16To32Array
D3DXFloat32To16Array
D3DXFrameAppendChild
D3DXFrameCalculateBoundingSphere
D3DXFrameDestroy
D3DXFrameFind
D3DXFrameNumNamedMatrices
D3DXFrameRegisterNamedMatrices
D3DXFresnelTerm
D3DXGenerateOutputDecl
D3DXGeneratePMesh
D3DXGetDeclLength
D3DXGetDeclVertexSize
D3DXGetDriverLevel
D3DXGetFVFVertexSize
D3DXGetImageInfoFromFileA
D3DXGetImageInfoFromFileInMemory
D3DXGetImageInfoFromFileW
D3DXGetImageInfoFromResourceA
D3DXGetImageInfoFromResourceW
D3DXGetPixelShaderProfile
D3DXGetShaderConstantTable
D3DXGetShaderConstantTableEx
D3DXGetShaderInputSemantics
D3DXGetShaderOutputSemantics
D3DXGetShaderSamplers
D3DXGetShaderSize
D3DXGetShaderVersion
D3DXGetVertexShaderProfile
D3DXIntersect
D3DXIntersectSubset
D3DXIntersectTri
D3DXLoadMeshFromXA
D3DXLoadMeshFromXInMemory
D3DXLoadMeshFromXResource
D3DXLoadMeshFromXW
D3DXLoadMeshFromXof
D3DXLoadMeshHierarchyFromXA
D3DXLoadMeshHierarchyFromXInMemory
D3DXLoadMeshHierarchyFromXW
D3DXLoadPRTBufferFromFileA
D3DXLoadPRTBufferFromFileW
D3DXLoadPRTCompBufferFromFileA
D3DXLoadPRTCompBufferFromFileW
D3DXLoadPatchMeshFromXof
D3DXLoadSkinMeshFromXof
D3DXLoadSurfaceFromFileA
D3DXLoadSurfaceFromFileInMemory
D3DXLoadSurfaceFromFileW
D3DXLoadSurfaceFromMemory
D3DXLoadSurfaceFromResourceA
D3DXLoadSurfaceFromResourceW
D3DXLoadSurfaceFromSurface
D3DXLoadVolumeFromFileA
D3DXLoadVolumeFromFileInMemory
D3DXLoadVolumeFromFileW
D3DXLoadVolumeFromMemory
D3DXLoadVolumeFromResourceA
D3DXLoadVolumeFromResourceW
D3DXLoadVolumeFromVolume
D3DXMatrixAffineTransformation
D3DXMatrixAffineTransformation2D
D3DXMatrixDecompose
D3DXMatrixDeterminant
D3DXMatrixInverse
D3DXMatrixLookAtLH
D3DXMatrixLookAtRH
D3DXMatrixMultiply
D3DXMatrixMultiplyTranspose
D3DXMatrixOrthoLH
D3DXMatrixOrthoOffCenterLH
D3DXMatrixOrthoOffCenterRH
D3DXMatrixOrthoRH
D3DXMatrixPerspectiveFovLH
D3DXMatrixPerspectiveFovRH
D3DXMatrixPerspectiveLH
D3DXMatrixPerspectiveOffCenterLH
D3DXMatrixPerspectiveOffCenterRH
D3DXMatrixPerspectiveRH
D3DXMatrixReflect
D3DXMatrixRotationAxis
D3DXMatrixRotationQuaternion
D3DXMatrixRotationX
D3DXMatrixRotationY
D3DXMatrixRotationYawPitchRoll
D3DXMatrixRotationZ
D3DXMatrixScaling
D3DXMatrixShadow
D3DXMatrixTransformation
D3DXMatrixTransformation2D
D3DXMatrixTranslation
D3DXMatrixTranspose
D3DXOptimizeFaces
D3DXOptimizeVertices
D3DXPlaneFromPointNormal
D3DXPlaneFromPoints
D3DXPlaneIntersectLine
D3DXPlaneNormalize
D3DXPlaneTransform
D3DXPlaneTransformArray
D3DXPreprocessShader
D3DXPreprocessShaderFromFileA
D3DXPreprocessShaderFromFileW
D3DXPreprocessShaderFromResourceA
D3DXPreprocessShaderFromResourceW
D3DXQuaternionBaryCentric
D3DXQuaternionExp
D3DXQuaternionInverse
D3DXQuaternionLn
D3DXQuaternionMultiply
D3DXQuaternionNormalize
D3DXQuaternionRotationAxis
D3DXQuaternionRotationMatrix
D3DXQuaternionRotationYawPitchRoll
D3DXQuaternionSlerp
D3DXQuaternionSquad
D3DXQuaternionSquadSetup
D3DXQuaternionToAxisAngle
D3DXRectPatchSize
D3DXSHAdd
D3DXSHDot
D3DXSHEvalConeLight
D3DXSHEvalDirection
D3DXSHEvalDirectionalLight
D3DXSHEvalHemisphereLight
D3DXSHEvalSphericalLight
D3DXSHMultiply2
D3DXSHMultiply3
D3DXSHMultiply4
D3DXSHMultiply5
D3DXSHMultiply6
D3DXSHPRTCompSplitMeshSC
D3DXSHPRTCompSuperCluster
D3DXSHProjectCubeMap
D3DXSHRotate
D3DXSHRotateZ
D3DXSHScale
D3DXSaveMeshHierarchyToFileA
D3DXSaveMeshHierarchyToFileW
D3DXSaveMeshToXA
D3DXSaveMeshToXW
D3DXSavePRTBufferToFileA
D3DXSavePRTBufferToFileW
D3DXSavePRTCompBufferToFileA
D3DXSavePRTCompBufferToFileW
D3DXSaveSurfaceToFileA
D3DXSaveSurfaceToFileInMemory
D3DXSaveSurfaceToFileW
D3DXSaveTextureToFileA
D3DXSaveTextureToFileInMemory
D3DXSaveTextureToFileW
D3DXSaveVolumeToFileA
D3DXSaveVolumeToFileInMemory
D3DXSaveVolumeToFileW
D3DXSimplifyMesh
D3DXSphereBoundProbe
D3DXSplitMesh
D3DXTessellateNPatches
D3DXTessellateRectPatch
D3DXTessellateTriPatch
D3DXTriPatchSize
D3DXUVAtlasCreate
D3DXUVAtlasPack
D3DXUVAtlasPartition
D3DXValidMesh
D3DXValidPatchMesh
D3DXVec2BaryCentric
D3DXVec2CatmullRom
D3DXVec2Hermite
D3DXVec2Normalize
D3DXVec2Transform
D3DXVec2TransformArray
D3DXVec2TransformCoord
D3DXVec2TransformCoordArray
D3DXVec2TransformNormal
D3DXVec2TransformNormalArray
D3DXVec3BaryCentric
D3DXVec3CatmullRom
D3DXVec3Hermite
D3DXVec3Normalize
D3DXVec3Project
D3DXVec3ProjectArray
D3DXVec3Transform
D3DXVec3TransformArray
D3DXVec3TransformCoord
D3DXVec3TransformCoordArray
D3DXVec3TransformNormal
D3DXVec3TransformNormalArray
D3DXVec3Unproject
D3DXVec3UnprojectArray
D3DXVec4BaryCentric
D3DXVec4CatmullRom
D3DXVec4Cross
D3DXVec4Hermite
D3DXVec4Normalize
D3DXVec4Transform
D3DXVec4TransformArray
D3DXWeldVertices

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/Dodge.dll
.exe windows:5 windows x86 arch:x86

0d95bcc30ad5b3d7180b939d7b6bf41e

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

59:b4:f8:8a:ac:be:29:b5:c1:ae:33:40:c2:c0:f2:44
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

21-12-2015 00:00

Not After

16-06-2017 23:59

Subject

CN=GRETECH,O=GRETECH,L=Gangnam-gu,ST=Seoul,C=KR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

d8:07:d3:c1:1e:13:e4:44:57:bc:bf:6d:5e:9e:14:c4:0a:74:28:75
Signer

Actual PE Digest

d8:07:d3:c1:1e:13:e4:44:57:bc:bf:6d:5e:9e:14:c4:0a:74:28:75

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeSetEvent

comctl32

ord17

kernel32

lstrlenW
GetPrivateProfileStringA
WritePrivateProfileStringA
OutputDebugStringA
GetModuleHandleW
GetProcAddress
ReadConsoleW
ReadFile
FlushFileBuffers
SetStdHandle
CreateFileW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LoadLibraryExW
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
GetModuleFileNameW
GetModuleFileNameA
GetStringTypeW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetStartupInfoW
GetFileType
CloseHandle
GetCurrentThreadId
SetLastError
WriteFile
GetStdHandle
GetModuleHandleExW
ExitProcess
GetCommandLineA
IsProcessorFeaturePresent
RtlUnwind
GetSystemTimeAsFileTime
EncodePointer
LeaveCriticalSection
DeleteFileA
CreateDirectoryW
SystemTimeToFileTime
GetTickCount
SetEndOfFile
GetSystemTime
WideCharToMultiByte
MultiByteToWideChar
FindResourceW
MulDiv
SizeofResource
LockResource
LoadResource
FindResourceExW
GetLocalTime
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
RaiseException
DecodePointer
EnterCriticalSection
OutputDebugStringW
IsDebuggerPresent
WriteConsoleW
QueryPerformanceCounter

user32

DefWindowProcW
PostQuitMessage
CallWindowProcW
PostMessageW
RegisterClassExW
CreateWindowExW
ShowWindow
SetWindowPos
SendMessageW
DispatchMessageW
TranslateMessage
GetMessageW
ClientToScreen
GetCursorPos
SetCursor
GetWindowTextW
ScreenToClient
SetWindowTextW
SetFocus
IsWindow
LoadImageW
IntersectRect
MessageBoxW
DrawTextW
SystemParametersInfoW
LoadIconW
LoadCursorW
FindWindowW
SetWindowLongW
GetWindowLongW
FillRect
GetWindowRect
GetClientRect
InvalidateRect
EndPaint
BeginPaint
ReleaseDC
GetDC
UpdateWindow
AppendMenuW
CreateMenu
SetMenu
LoadMenuW
EnableWindow
GetDlgCtrlID
GetDlgItemTextW
GetDlgItem
EndDialog
DialogBoxParamW

gdi32

BitBlt
GetObjectW
GetDIBColorTable
CreateDIBSection
DeleteDC
CreateCompatibleDC
GetTextMetricsW
SetPixel
CreateFontW
DPtoLP
TextOutW
SetTextColor
SetBkMode
GetStockObject
GetDeviceCaps
DeleteObject
CreateFontIndirectW
SelectObject

comdlg32

GetSaveFileNameW
GetOpenFileNameW

shell32

SHGetFolderPathW
ShellExecuteW

shlwapi

PathFileExistsA
PathFileExistsW

wininet

InternetSetOptionW
InternetOpenW
HttpQueryInfoW
HttpSendRequestW
HttpOpenRequestW
InternetCloseHandle
InternetReadFile
InternetConnectW
InternetCrackUrlW

Sections

.text
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/GAF.ax
.dll regsvr32 windows:5 windows x86 arch:x86

a65d70e8c6b2f1a5d7f10ffe6fa1037f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01.Project\[trunks]\gaf\obj\vc120\GAF_Release_Unicode_Win32.pdb

Imports

winmm

mmioAscend
mmioClose
mmioCreateChunk
mmioOpenW
mmioWrite
mmioOpenA

comctl32

ord17

kernel32

CloseHandle
FreeLibrary
OutputDebugStringW
WriteFile
LoadLibraryW
GetModuleFileNameW
CreateFileW
GetProcAddress
HeapReAlloc
FindResourceExW
FindResourceW
LoadResource
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSectionAndSpinCount
SizeofResource
HeapDestroy
MultiByteToWideChar
RaiseException
GetLastError
HeapSize
LockResource
DecodePointer
DeleteCriticalSection
lstrcpyW
InitializeCriticalSection
Sleep
LeaveCriticalSection
EnterCriticalSection
VerSetConditionMask
VerifyVersionInfoW
ReadFile
GetModuleFileNameA
WideCharToMultiByte
GetLocalTime
OutputDebugStringA
GetCurrentThreadId
FormatMessageW
lstrlenW
LocalAlloc
LocalFree
WaitForSingleObject
SetFilePointerEx
GetCurrentProcessId
SetEvent
ResetEvent
CreateFileA
GetVersion
CreateEventW
GetVersionExW
GetModuleHandleW
GetCurrentProcess
lstrcmpW
DisableThreadLibraryCalls
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
GetACP
IsValidCodePage
LoadLibraryExW
GetFileType
GetStdHandle
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WriteConsoleW
ReadConsoleW
GetModuleHandleExW
ExitProcess
GetStringTypeW
GetCPInfo
QueryPerformanceCounter
RtlUnwind
GetCommandLineA
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
IsDebuggerPresent
EncodePointer

user32

SetWindowTextW
SendDlgItemMessageW
GetDlgItem
KillTimer
SetTimer
DefWindowProcW
DestroyWindow
ShowWindow
MoveWindow
InvalidateRect
GetWindowLongW
SetWindowLongW
LoadStringW
GetWindowRect
GetDesktopWindow
CreateDialogParamW

advapi32

RegSetValueExW
RegSetValueW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW

ole32

StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoInitialize
CoFreeUnusedLibraries
CoCreateInstance

oleaut32

SysAllocStringLen
SysFreeString

avcodec-gp-57

av_init_packet
av_packet_unref
av_parser_close
av_parser_init
av_parser_parse2
avcodec_alloc_context3
avcodec_decode_audio4
avcodec_find_decoder
avcodec_find_decoder_by_name
avcodec_flush_buffers
avcodec_get_name
avcodec_is_open
avcodec_open2
avcodec_register_all
ff_flac_is_extradata_valid

avutil-gp-55

av_dict_free
av_dict_get
av_frame_alloc
av_frame_free
av_frame_unref
av_free
av_freep
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_default_channel_layout
av_malloc
av_samples_get_buffer_size

swresample-gp-2

swr_alloc_set_opts
swr_close
swr_convert
swr_free
swr_get_out_samples
swr_init

avformat-gp-57

ff_vorbis_comment

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

tbb

??1concurrent_vector_base_v3@internal@tbb@@IAE@XZ
?internal_clear@concurrent_vector_base_v3@internal@tbb@@IAEIP6AXPAXI@Z@Z
?NFS_Free@internal@tbb@@YAXPAX@Z
?NFS_Allocate@internal@tbb@@YAPAXIIPAX@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 466KB - Virtual size: 465KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 291KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 467KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/GNF.ax
.dll regsvr32 windows:5 windows x86 arch:x86

a424682c48ab66740ff2503de279776e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\work\201607_x64_upgrade\dshowfilters\gnf\bin\GNF.pdb

Imports

ws2_32

getsockopt
inet_addr
WSAGetLastError
WSAStartup
ntohs
recv
socket
connect
getpeername
htons
WSASetLastError
closesocket
gethostbyname
send

wininet

InternetCrackUrlA
InternetReadFile
HttpSendRequestW
HttpAddRequestHeadersW
HttpQueryInfoW
HttpOpenRequestW
InternetCloseHandle
InternetSetCookieW
InternetOpenW
InternetSetOptionW
InternetConnectW
InternetCrackUrlW

kernel32

LoadLibraryExW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
GetFileType
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetCPInfo
GetOEMCP
IsValidCodePage
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
HeapDestroy
LeaveCriticalSection
MultiByteToWideChar
RaiseException
GetLastError
HeapSize
EnterCriticalSection
DecodePointer
DeleteCriticalSection
WaitForSingleObject
Sleep
SetEvent
TerminateThread
GetExitCodeThread
CreateEventW
CloseHandle
CreateThread
WideCharToMultiByte
WriteFile
MulDiv
CreateFileW
lstrlenW
GetTickCount
GetFileSize
SetLastError
GetTempFileNameW
GetTempPathW
DeleteFileW
GlobalAlloc
GlobalFree
SetFilePointer
SetEndOfFile
ReadFile
OutputDebugStringW
GetProcAddress
GetCurrentProcessId
FindFirstFileW
GetCurrentThread
lstrcmpW
SetThreadPriority
FindNextFileW
GetVersion
GetModuleHandleW
GetACP
GetModuleFileNameW
GetVersionExW
DisableThreadLibraryCalls
FreeLibrary
GetCurrentProcess
GetCurrentThreadId
IsDebuggerPresent
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetStdHandle
GetModuleHandleExW
ExitProcess
RtlUnwind
QueryPerformanceCounter
GetCommandLineA
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
EncodePointer
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStringTypeW
SetStdHandle
WriteConsoleW
FlushFileBuffers
ResetEvent

user32

SetRectEmpty
PostMessageW

advapi32

RegEnumKeyExW
RegSetValueExW
RegSetValueW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyW
RegCloseKey

ole32

CoTaskMemAlloc
StringFromGUID2
CoInitialize
CoCreateInstance
CoFreeUnusedLibraries
CoUninitialize
CoTaskMemFree

tbb

?internal_clear@concurrent_vector_base_v3@internal@tbb@@IAEIP6AXPAXI@Z@Z
??1concurrent_vector_base_v3@internal@tbb@@IAE@XZ
?NFS_Free@internal@tbb@@YAXPAX@Z
?NFS_Allocate@internal@tbb@@YAPAXIIPAX@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 381KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/GRFU.ax
.dll regsvr32 windows:5 windows x86 arch:x86

5b521243f2b14c2fe822accdd80cc64f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01.Project\[trunks]\grf\bin\GRFU.pdb

Imports

kernel32

TlsSetValue
TlsFree
GlobalAlloc
GlobalReAlloc
GlobalHandle
GlobalFree
LocalReAlloc
SetErrorMode
SetLastError
LockResource
SizeofResource
FindResourceW
EncodePointer
GetSystemDirectoryW
FreeResource
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
LoadLibraryA
GlobalAddAtomW
GlobalFindAtomW
GlobalSize
CopyFileW
GetCurrentProcessId
GlobalFlags
GlobalGetAtomNameW
lstrcmpA
GetVersionExW
CompareStringW
GetLocaleInfoW
GetUserDefaultUILanguage
FileTimeToSystemTime
GetCurrentDirectoryW
CreateFileW
FindClose
FindFirstFileW
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
lstrcpyW
GetWindowsDirectoryW
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
GetFileTime
TlsGetValue
VerSetConditionMask
VerifyVersionInfoW
GetTempFileNameW
GetTempPathW
GetTickCount
GetProfileIntW
SearchPathW
VirtualProtect
GetUserDefaultLCID
FindResourceExW
DisableThreadLibraryCalls
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
GetSystemInfo
VirtualAlloc
LoadLibraryExA
GetCommandLineA
GetCPInfo
IsDebuggerPresent
IsProcessorFeaturePresent
ExitThread
RtlUnwind
HeapQueryInformation
ExitProcess
GetModuleHandleExW
VirtualQuery
GetSystemTimeAsFileTime
SetStdHandle
GetFileType
QueryPerformanceCounter
GetStdHandle
GetStartupInfoW
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
SetFilePointerEx
GetConsoleCP
GetConsoleMode
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetTimeZoneInformation
ReadConsoleW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
WriteConsoleW
SetEnvironmentVariableA
OutputDebugStringA
GlobalUnlock
GlobalLock
TlsAlloc
GetModuleHandleW
GetModuleHandleA
ResetEvent
GetProcAddress
WideCharToMultiByte
MultiByteToWideChar
ResumeThread
SetThreadPriority
LocalFree
LocalAlloc
lstrlenW
FormatMessageW
GetCurrentThreadId
GetLocalTime
GetModuleFileNameW
GetFileAttributesW
Sleep
OutputDebugStringW
LoadLibraryW
FreeLibrary
CreateThread
WaitForMultipleObjects
CreateEventW
GetExitCodeThread
SetEvent
WaitForSingleObject
MulDiv
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CloseHandle
DeleteCriticalSection
DecodePointer
HeapSize
GetLastError
RaiseException
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
LoadResource
HeapReAlloc

user32

OffsetRect
LoadImageW
DrawIconEx
GetIconInfo
GetNextDlgTabItem
MessageBeep
GetAsyncKeyState
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
MapVirtualKeyW
IsIconic
LoadMenuW
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
SetWindowRgn
IsMenu
UpdateLayeredWindow
MonitorFromPoint
BringWindowToTop
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
GetKeyNameTextW
TrackMouseEvent
GetComboBoxInfo
IsZoomed
GetSystemMenu
WaitMessage
CreateDialogIndirectParamW
EndDialog
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
CopyAcceleratorTableW
SetCursorPos
SetRect
SetParent
LockWindowUpdate
SetClassLongW
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
FrameRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
CreateMenu
MapDialogRect
DestroyCursor
GetWindowRgn
DrawIcon
KillTimer
SetTimer
DeleteMenu
SetCursor
ShowOwnedPopups
PostQuitMessage
SendDlgItemMessageA
CopyImage
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
LoadCursorW
GetSysColorBrush
GetSystemMetrics
RealChildWindowFromPoint
GetWindowThreadProcessId
RemoveMenu
DrawFocusRect
InsertMenuW
GetMenuState
GetMenuStringW
IsDialogMessageW
IsWindowEnabled
CheckDlgButton
ShowWindow
GetMonitorInfoW
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
MessageBoxW
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
EnableWindow
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessagePos
RegisterWindowMessageW
LoadBitmapW
GetParent
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
UnhookWindowsHookEx
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
GetMessageW
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
CharUpperW
DestroyIcon
AppendMenuW
InvalidateRect
InflateRect
MapWindowPoints
IntersectRect
UnionRect
TranslateMessage
DispatchMessageW
GetClassNameW
SendMessageW
SetWindowTextW
SetWindowPos
MoveWindow
MsgWaitForMultipleObjects
PeekMessageW
PostThreadMessageW
IsWindow
IsRectEmpty
FillRect
GetClientRect
SetRectEmpty
GetDC
ReleaseDC
MonitorFromWindow
GetDesktopWindow
EqualRect
CopyRect
UnregisterClassW
GetMessageTime

gdi32

GetTextCharsetInfo
SetPixel
StretchBlt
CopyMetaFileW
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
CreateBitmap
EnumFontFamiliesW
CreateDIBitmap
CreateCompatibleBitmap
GetTextMetricsW
GetBkColor
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
DPtoLP
SetRectRgn
PatBlt
CreateRectRgnIndirect
CreateFontIndirectW
CreateCompatibleDC
CreateHatchBrush
CreatePen
CreatePatternBrush
GetTextFaceW
CreateSolidBrush
DeleteObject
TextOutA
TextOutW
SetTextCharacterExtra
CreateFontW
SelectObject
CreateFontA
GetTextExtentPoint32A
GetTextExtentPoint32W
EndPath
AbortPath
GetPath
BeginPath
CloseFigure
CreateRectRgn
GetRegionData
DeleteDC
Escape
ExcludeClipRect
GetClipBox
GetDeviceCaps
GetObjectType
CombineRgn
BitBlt
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
GetObjectW
MoveToEx
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
CreateDCW

shell32

SHAppBarMessage
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
ShellExecuteW
SHGetFileInfoW

ole32

RegisterDragDrop
RevokeDragDrop
CoLockObjectExternal
CoFreeUnusedLibraries
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CoInitializeEx
CreateStreamOnHGlobal
StringFromGUID2
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoUninitialize
CoDisconnectObject

oleaut32

VariantInit
VariantClear
VariantChangeType
SysAllocString
LoadTypeLi
SysStringLen
SysAllocStringLen
VariantTimeToSystemTime
SysFreeString
SystemTimeToVariantTime
VariantCopy
VarBstrFromDate

ddraw

DirectDrawCreateEx

winmm

PlaySoundW
timeBeginPeriod
timeEndPeriod

msimg32

TransparentBlt
AlphaBlend

shlwapi

PathFindExtensionW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathRemoveFileSpecW
PathFindFileNameW

uxtheme

DrawThemeParentBackground
GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
DrawThemeText
OpenThemeData

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

gdiplus

GdipDrawImageRectI
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipSetInterpolationMode

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegEnumKeyExW
RegCreateKeyW
RegCloseKey
RegSetValueW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 334KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/GSFU.ax
.dll regsvr32 windows:5 windows x86 arch:x86

1a90cde78b7ec35178a5ca7231c67ad0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

wmvcore

WMCreateReader

kernel32

FlushFileBuffers
SetStdHandle
WideCharToMultiByte
InitializeCriticalSectionAndSpinCount
RaiseException
GetLastError
DecodePointer
DeleteCriticalSection
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
HeapDestroy
HeapSize
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
lstrlenW
Sleep
WaitForSingleObject
SetEvent
CreateEventW
CloseHandle
CreateThread
GetTempFileNameW
GetTempPathW
DeleteFileW
ResetEvent
MultiByteToWideChar
SetFilePointer
ReadFile
CreateFileW
FindResourceExW
FindResourceW
LoadResource
SizeofResource
LCMapStringW
GetProcAddress
LockResource
GetCurrentProcessId
GetFileSize
WriteFile
lstrcmpW
SetThreadPriority
GetVersion
GetModuleHandleW
CreateProcessW
GetModuleFileNameW
GetVersionExW
DisableThreadLibraryCalls
FreeLibrary
GetCurrentProcess
GetCurrentThreadId
RtlUnwind
QueryPerformanceCounter
GetCommandLineA
LoadLibraryExW
ExitThread
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
EncodePointer
IsDebuggerPresent
GetModuleHandleExW
OutputDebugStringW
SetFilePointerEx
GetConsoleMode
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetStringTypeW
WriteConsoleW
SetEndOfFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
GetConsoleCP
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
ReadConsoleW
GetStdHandle
GetFileType
GetStartupInfoW
ExitProcess

user32

MessageBoxW
wsprintfW
PostMessageW
SetRectEmpty
FindWindowW
SendMessageW

advapi32

RegSetValueW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW
RegSetValueExW

ole32

StringFromGUID2
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoFreeUnusedLibraries
CoInitialize

oleaut32

VariantInit
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayDestroy
SafeArrayUnaccessData
SysAllocString
SysFreeString
SysAllocStringLen

tbb

?internal_clear@concurrent_vector_base_v3@internal@tbb@@IAEIP6AXPAXI@Z@Z
??1concurrent_vector_base_v3@internal@tbb@@IAE@XZ
?NFS_Free@internal@tbb@@YAXPAX@Z
?NFS_Allocate@internal@tbb@@YAPAXIIPAX@Z

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 605KB - Virtual size: 605KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 211KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/GVF.ax
.dll regsvr32 windows:5 windows x86 arch:x86

8c450f36d48576e9dd573d0f75c41ef9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01.Project\[trunks]\gvf\project\bin\map_pdb\GVF_vc120_Release_Win32.pdb

Imports

comctl32

ord17

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

avutil-gp-55

av_buffer_create
av_cpu_count
av_frame_alloc
av_frame_free
av_frame_ref
av_frame_unref
av_free
av_freep
av_get_bits_per_pixel
av_get_cpu_flags
av_get_picture_type_char
av_get_pix_fmt_name
av_image_copy_to_buffer
av_image_fill_arrays
av_image_get_buffer_size
av_log_set_callback
av_malloc
av_mallocz
av_pix_fmt_desc_get
av_realloc
av_realloc_f
av_reduce
av_rescale

avcodec-gp-57

av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_copy_packet_side_data
av_init_packet
av_packet_new_side_data
av_packet_unref
av_parser_close
av_parser_init
av_parser_parse2
avcodec_alloc_context3
avcodec_close
avcodec_decode_subtitle2
avcodec_decode_video2
avcodec_find_decoder
avcodec_flush_buffers
avcodec_get_name
avcodec_is_open
avcodec_open2
avcodec_register_all
avpicture_get_size
avpriv_find_start_code
avsubtitle_free
ff_crop_tab

swscale-gp-4

sws_freeContext
sws_getCachedContext
sws_getCoefficients
sws_getColorspaceDetails
sws_isSupportedInput
sws_scale
sws_setColorspaceDetails

avformat-gp-57

av_codec_get_id
avformat_get_riff_video_tags

kernel32

SetStdHandle
CreateFileW
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
GetFileType
SetFilePointerEx
ReadConsoleW
ReadFile
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetOEMCP
GetACP
IsValidCodePage
HeapReAlloc
VirtualProtect
UnregisterWaitEx
InitializeSListHead
CreateTimerQueue
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
GetSystemTimeAsFileTime
EncodePointer
HeapFree
IsProcessorFeaturePresent
HeapAlloc
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
GetThreadTimes
FreeLibraryAndExitThread
GetModuleHandleA
ExitThread
InitializeCriticalSectionAndSpinCount
RaiseException
GetLastError
DecodePointer
DeleteCriticalSection
CloseHandle
MultiByteToWideChar
FreeLibrary
LoadLibraryW
Sleep
GetProcAddress
GetCurrentProcess
GetModuleHandleW
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
WaitForSingleObject
SetEvent
GetModuleFileNameW
InterlockedExchange
ResetEvent
WaitForMultipleObjects
FreeResource
WriteConsoleW
LoadResource
GetUserDefaultLangID
LockResource
CreateEventW
TryEnterCriticalSection
GetLocalTime
ReleaseSemaphore
CreateSemaphoreW
QueryPerformanceCounter
LocalAlloc
OutputDebugStringW
WideCharToMultiByte
GetVersionExW
GetCurrentThreadId
OutputDebugStringA
FormatMessageW
lstrlenW
LocalFree
TerminateThread
SetThreadPriority
CreateThread
SetLastError
GetCurrentThread
GetThreadPriority
GetTickCount
DuplicateHandle
VirtualAlloc
VirtualFree
lstrcmpW
DisableThreadLibraryCalls
SetErrorMode
FindClose
GetFileAttributesW
SetEndOfFile
FindNextFileW
LoadLibraryExW
GetModuleHandleExW
SwitchToThread
GetCommandLineA
RtlUnwind
GetCurrentProcessId
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
IsDebuggerPresent
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
SignalObjectAndWait
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetProcessHeap
ExitProcess
HeapSize
GetStdHandle
WriteFile
FindResourceW
FindFirstFileW
WaitForSingleObjectEx

user32

GetShellWindow
SetRect
GetDC
PostMessageW
SetWindowLongW
GetWindowLongW
InvalidateRect
CreateDialogParamW
MoveWindow
DestroyWindow
LoadStringW
TranslateMessage
PeekMessageW
DispatchMessageW
SetDlgItemTextW
IsWindow
ShowWindow
GetWindowRect
DefWindowProcW
GetDesktopWindow
IntersectRect
OffsetRect
IsRectEmpty
GetDlgItem

gdi32

GetObjectW
SetMapMode
CreateCompatibleDC
DeleteObject
SetBkMode
CreateDIBSection
DeleteDC
SetTextColor
GetDeviceCaps

advapi32

RegDeleteKeyW
RegQueryValueExW
RegQueryInfoKeyW
RegSetValueW
RegEnumKeyExW
RegCreateKeyExW
RegCreateKeyW
RegSetValueExW
RegCloseKey
RegOpenKeyExW

shell32

SHGetFolderPathW

ole32

CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoUninitialize
CoInitialize
CoFreeUnusedLibraries
CoTaskMemFree
CoTaskMemRealloc

oleaut32

SysAllocStringLen

d3d9

Direct3DCreate9

shlwapi

PathFindFileNameW
PathFindExtensionW

tbb

?init@task_group_context@tbb@@IAEXXZ
?is_group_execution_cancelled@task_group_context@tbb@@QBE_NXZ
??1task_group_context@tbb@@QAE@XZ
?get_initial_auto_partitioner_divisor@internal@tbb@@YAIXZ
?allocate@allocate_child_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?free@allocate_root_with_context_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?allocate@allocate_root_with_context_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?free@allocate_continuation_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?allocate@allocate_continuation_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?note_affinity@task@tbb@@UAEXG@Z
?free@allocate_child_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?destroy@task_base@internal@interface5@tbb@@SAXAAVtask@4@@Z

gdiplus

GdipGetImageHeight
GdipFree
GdiplusStartup
GdiplusShutdown
GdipDeletePath
GdipAddPathString
GdipCreateFont
GdipCreateSolidFill
GdipDeleteFontFamily
GdipSetSmoothingMode
GdipDrawImageRectI
GdipSetPathFillMode
GdipDeleteFont
GdipDrawImageRectRectI
GdipDrawPath
GdipCreateBitmapFromGdiDib
GdipScaleWorldTransform
GdipMeasureString
GdipCreateBitmapFromScan0
GdipDeleteGraphics
GdipCloneStringFormat
GdipGetImageGraphicsContext
GdipCreateImageAttributes
GdipSetImageAttributesWrapMode
GdipBitmapUnlockBits
GdipDisposeImageAttributes
GdipAlloc
GdipSetImageAttributesColorKeys
GdipGetStringFormatFlags
GdipCloneBrush
GdipResetPath
GdipDeletePen
GdipGetPointCount
GdipDeleteBrush
GdipSetStringFormatFlags
GdipGetImageWidth
GdipCloneImage
GdipDisposeImage
GdipBitmapLockBits
GdipCreateFromHWND
GdipDeleteStringFormat
GdipCreatePen1
GdipCreatePath
GdipSetInterpolationMode
GdipStringFormatGetGenericTypographic
GdipFillPath
GdipCreateFontFamilyFromName
GdipGetImagePixelFormat
GdipCreateBitmapFromFile

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 71KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/GVRF.ax
.dll regsvr32 windows:5 windows x86 arch:x86

1bc90928061d952c3757671b29a69b15

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\SVN\GVRF\trunk\bin\Win32\GVRF.pdb

Imports

d3d9

Direct3DCreate9Ex

winmm

timeEndPeriod
timeBeginPeriod
PlaySoundW

avcodec-gp-57

av_free_packet
av_init_packet
avcodec_close
avcodec_decode_video2
avcodec_find_decoder
avcodec_flush_buffers
avcodec_open2
avpicture_alloc
avpicture_free

avformat-gp-57

av_read_frame
av_seek_frame
avformat_close_input
avformat_find_stream_info
avformat_open_input

avutil-gp-55

av_frame_alloc
av_frame_free
av_frame_get_best_effort_timestamp

swscale-gp-4

sws_freeContext
sws_getContext
sws_scale

d3d11

D3D11CreateDevice

d3dcompiler_43

D3DCompile

openvr_api

VR_GetInitToken
VR_IsInterfaceVersionValid
VR_InitInternal
VR_ShutdownInternal
VR_GetGenericInterface

kernel32

GetCurrentDirectoryW
lstrcpyW
GetWindowsDirectoryW
VerSetConditionMask
VerifyVersionInfoW
GetTempFileNameW
GetTempPathW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
DisableThreadLibraryCalls
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
GetThreadPriority
CreateSemaphoreW
GetSystemInfo
VirtualFree
VirtualAlloc
InitOnceExecuteOnce
LoadLibraryExA
ExitThread
GetCommandLineA
IsDebuggerPresent
IsProcessorFeaturePresent
GetCPInfo
RtlUnwind
SetStdHandle
GetFileType
HeapQueryInformation
ExitProcess
GetModuleHandleExW
VirtualQuery
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
GetStdHandle
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetACP
GetOEMCP
GetStringTypeW
WaitForSingleObjectEx
SignalObjectAndWait
SwitchToThread
GetLogicalProcessorInformation
CreateTimerQueueTimer
GlobalFindAtomW
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
RegisterWaitForSingleObject
UnregisterWait
CreateTimerQueue
InitializeSListHead
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
GetThreadTimes
FreeLibraryAndExitThread
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
LCMapStringW
GetDriveTypeW
WriteConsoleW
SetEnvironmentVariableA
GlobalAddAtomW
GlobalDeleteAtom
FreeResource
GetSystemDirectoryW
EncodePointer
GlobalFlags
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GlobalGetAtomNameW
lstrcmpA
ResumeThread
GetCurrentThreadId
SetErrorMode
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LocalAlloc
LoadLibraryA
lstrcmpiW
LoadLibraryExW
GetModuleHandleA
DuplicateHandle
OutputDebugStringA
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetFileSize
FlushFileBuffers
FileTimeToSystemTime
FindNextFileW
FindFirstFileW
FindClose
FileTimeToLocalFileTime
GetCurrentProcessId
CopyFileW
FormatMessageW
GlobalFree
GlobalSize
SetLastError
OutputDebugStringW
ResetEvent
SetThreadPriority
DeleteFileW
WideCharToMultiByte
LockResource
SizeofResource
GetLogicalDrives
LoadResource
FindResourceW
CreateThread
WaitForMultipleObjects
CreateEventW
GetExitCodeThread
SetEvent
WaitForSingleObject
MulDiv
InitializeCriticalSection
lstrcmpW
CompareStringW
CreateFileW
ReadFile
WriteFile
GetFullPathNameW
ExpandEnvironmentStringsW
CloseHandle
GetVersionExA
SetThreadAffinityMask
QueryPerformanceFrequency
GetProcessAffinityMask
lstrlenW
GetFileAttributesW
GetCurrentThread
QueryPerformanceCounter
GetCurrentProcess
LocalFree
EnterCriticalSection
GetProcAddress
MultiByteToWideChar
GetModuleFileNameW
LeaveCriticalSection
GetVersionExW
Sleep
LoadLibraryW
GetModuleHandleW
FreeLibrary
DeleteCriticalSection
DecodePointer
HeapSize
GetLastError
RaiseException
GlobalUnlock
InitializeCriticalSectionAndSpinCount
GlobalAlloc
GetProcessHeap
GetTickCount
GlobalLock
HeapFree
HeapAlloc
HeapReAlloc
GetUserDefaultUILanguage
ReleaseSemaphore
ChangeTimerQueueTimer

user32

GetKeyNameTextW
TrackMouseEvent
GetComboBoxInfo
GetSystemMenu
WaitMessage
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
CopyAcceleratorTableW
SetParent
LockWindowUpdate
SetClassLongW
GetDoubleClickTime
CopyIcon
SetMenuDefaultItem
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
FrameRect
ReuseDDElParam
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
CreateMenu
MapDialogRect
DestroyCursor
GetWindowRgn
DrawIcon
UnpackDDElParam
InsertMenuItemW
LoadAcceleratorsW
BringWindowToTop
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawFrameControl
DrawEdge
DrawStateW
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadMenuW
MapVirtualKeyW
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
MessageBeep
DrawIconEx
LoadImageW
OffsetRect
DrawFocusRect
WindowFromPoint
GetNextDlgGroupItem
GetNextDlgTabItem
CreateDialogIndirectParamW
InvalidateRect
KillTimer
SetTimer
DeleteMenu
ShowOwnedPopups
SendDlgItemMessageA
CopyImage
GetMenuItemInfoW
DestroyIcon
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsChild
GetClassInfoExW
GetClassInfoW
CallWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
RealChildWindowFromPoint
GetClassNameW
IsDialogMessageW
GetWindow
GetFocus
SetFocus
GetDlgCtrlID
GetSysColorBrush
GetWindowTextLengthW
ValidateRect
GetKeyState
GetActiveWindow
GetMessageW
GetSysColor
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
CharUpperW
GetLastActivePopup
GetWindowThreadProcessId
GetParent
IsWindowEnabled
RemoveMenu
AppendMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
InflateRect
IntersectRect
UnionRect
wsprintfW
MoveWindow
MsgWaitForMultipleObjects
PostThreadMessageW
IsWindow
IsRectEmpty
FillRect
SetRectEmpty
MonitorFromWindow
GetDesktopWindow
EqualRect
CopyRect
PostMessageW
LoadIconW
GetDlgItem
EndDialog
CheckDlgButton
EnableWindow
SetWindowTextW
SystemParametersInfoA
GetMonitorInfoW
SetCapture
PtInRect
GetForegroundWindow
SetCursorPos
ReleaseCapture
DestroyWindow
SetWindowPlacement
SetCursor
TranslateAcceleratorW
DestroyAcceleratorTable
ScreenToClient
GetWindowRect
PostQuitMessage
IsIconic
IsZoomed
LoadCursorW
CallNextHookEx
GetClientRect
GetClassLongW
GetIconInfo
GetDC
TranslateMessage
GetMenu
GetWindowPlacement
GetAsyncKeyState
SetRect
GetWindowLongW
GetWindowTextW
PeekMessageW
ReleaseDC
SetWindowLongW
SetWindowPos
GetCursorPos
ShowWindow
SetMenu
CreateWindowExW
SetWindowsHookExW
UnhookWindowsHookEx
MessageBoxW
RegisterClassW
GetSystemMetrics
IsWindowVisible
SendMessageW
DestroyMenu
DefWindowProcW
DispatchMessageW
CloseClipboard
UnregisterClassW
SystemParametersInfoW
EmptyClipboard
OpenClipboard
SetClipboardData
InsertMenuW

gdi32

RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
RectVisible
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
PtVisible
SetTextColor
SetTextAlign
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
GetTextMetricsW
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
LineTo
Polyline
Rectangle
EnumFontFamiliesExW
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
MoveToEx
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
SetViewportOrgEx
SetViewportExtEx
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateRectRgn
CreatePatternBrush
CreatePen
CreateBitmap
BitBlt
CreateDCW
CopyMetaFileW
GetDeviceCaps
CloseFigure
BeginPath
GetPath
AbortPath
EndPath
GetTextExtentPoint32W
GetTextExtentPoint32A
CreateFontA
CreateFontW
SetTextCharacterExtra
TextOutW
Polygon
CreateHatchBrush
TextOutA
CreateSolidBrush
DeleteDC
DeleteObject
SelectObject
CreateCompatibleDC
GetObjectW
GetStockObject
ExtTextOutW

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegCreateKeyW
RegSetValueExW
RegEnumKeyExW
RegDeleteValueW
RegSetValueExA
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegSetValueW
RegCloseKey
RegOpenKeyExW

shell32

ShellExecuteW
SHGetFolderPathW
SHGetDesktopFolder
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
DragQueryFileW
DragFinish
SHBrowseForFolderW
SHAppBarMessage

shlwapi

PathAddBackslashW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
UrlUnescapeW
PathFindExtensionW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetThemeSysColor
GetWindowTheme
GetThemePartSize
DrawThemeText

ole32

RevokeDragDrop
OleDuplicateData
ReleaseStgMedium
StringFromGUID2
CoDisconnectObject
CoUninitialize
CoInitializeEx
CreateStreamOnHGlobal
DoDragDrop
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
PropVariantClear
CoFreeUnusedLibraries

oleaut32

SysAllocString
VarBstrFromDate
VariantChangeType
VariantCopy
VariantClear
LoadTypeLi
VariantInit
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
SysFreeString

gdiplus

GdipCloneBrush
GdipSetTextRenderingHint
GdipDrawPath
GdipCreateBitmapFromScan0
GdipDeleteGraphics
GdipGetImageGraphicsContext
GdipSetStringFormatAlign
GdipSetSmoothingMode
GdipDeletePen
GdipBitmapUnlockBits
GdipCreateSolidFill
GdipFree
GdipAlloc
GdipSetImageAttributesColorKeys
GdipDisposeImage
GdipAddPathStringI
GdipDeletePath
GdipCreateImageAttributes
GdipCreateFontFamilyFromName
GdipDeleteBrush
GdipSetInterpolationMode
GdipBitmapLockBits
GdipCloneImage
GdipCreateStringFormat
GdipCreatePath
GdipCreatePen1
GdipDeleteStringFormat
GdiplusStartup
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipDrawImageRectI
GdiplusShutdown
GdipFillPath
GdipDisposeImageAttributes
GdipDeleteFontFamily

d3dx9_43

D3DXVec3Normalize
D3DXMatrixInverse
D3DXMatrixScaling
D3DXMatrixMultiply
D3DXMatrixPerspectiveFovLH
D3DXCreateLine
D3DXMatrixTranslation
D3DXMatrixRotationYawPitchRoll
D3DXVec3TransformCoord
D3DXSaveSurfaceToFileW
D3DXSaveSurfaceToFileInMemory
D3DXLoadSurfaceFromMemory
D3DXMatrixRotationY
D3DXCreateTextureFromResourceW
D3DXCreateTextureFromFileW
D3DXCreateSprite
D3DXMatrixRotationZ
D3DXMatrixLookAtLH

wininet

InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW
InternetQueryDataAvailable
InternetGetLastResponseInfoW
InternetConnectW
InternetSetStatusCallbackW
InternetWriteFile
HttpOpenRequestW
HttpAddRequestHeadersW
HttpSendRequestW
HttpQueryInfoW
InternetReadFile
InternetSetFilePointer

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 641KB - Virtual size: 641KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/GifMaker.dll
.dll windows:5 windows x86 arch:x86

0b693cea2508b3ae22ac25d547c7d319

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01.Project\[trunks]\gifmaker\project\bin\GifMakerWin32\GifMaker.pdb

Imports

kernel32

CloseHandle
Sleep
MultiByteToWideChar
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
OutputDebugStringW
WriteConsoleW
SetFilePointerEx
GetStringTypeW
SetStdHandle
LCMapStringW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
LoadLibraryExW
GetModuleFileNameW
GetConsoleMode
GetConsoleCP
WriteFile
FlushFileBuffers
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetProcessHeap
EncodePointer
DecodePointer
GetLastError
GetCommandLineA
GetCurrentThreadId
RaiseException
RtlUnwind
IsDebuggerPresent
IsProcessorFeaturePresent
HeapFree
ExitProcess
GetModuleHandleExW
GetProcAddress
WideCharToMultiByte
HeapSize
GetStdHandle
GetFileType
GetStartupInfoW
HeapAlloc
CreateFileW
GetModuleHandleW
HeapReAlloc
SetLastError

avformat-gp-57

av_dump_format
av_interleaved_write_frame
av_register_all
av_write_trailer
avformat_alloc_output_context2
avformat_free_context
avformat_new_stream
avformat_write_header
avio_close
avio_open

avcodec-gp-57

av_init_packet
avcodec_close
avcodec_encode_video2
avcodec_find_encoder
avcodec_get_name
avcodec_open2

avutil-gp-55

av_d2q
av_frame_alloc
av_free
av_freep
av_get_pix_fmt_name
av_image_alloc
av_image_fill_arrays
av_image_get_buffer_size
av_rescale_q

swscale-gp-4

sws_getContext
sws_scale

Exports

Exports

CloseGifEncoder
CreateGifEncoder
EncodeGif
GSIP_Create
GSIP_GetFree
GSIP_GetFreeBufferCount
GSIP_GetImageCount
GSIP_GetOneImageSize
GSIP_GetProp
GSIP_GetUsed
GSIP_GetUsedBufferCount
GSIP_Release
GSIP_SetFree
GSIP_SetUsed
GSI_Close
GSI_Init
Make

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/MediaInfo.dll
.dll windows:5 windows x86 arch:x86

3f6c4f8ba75bc283280093e4b991433f

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

01:d6:e7:4d:7f:de:17:c5:b2:fb:8f:47:87:47:cc:46
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

29-09-2013 00:00

Not After

27-11-2016 23:59

Subject

CN=MediaArea.net,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=MediaArea.net,L=Curienne,ST=France,C=FR

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08-02-2010 00:00

Not After

07-02-2020 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

d5:37:32:97:fd:bf:08:92:25:c9:8f:c1:1d:19:7c:bf:62:bc:5c:23
Signer

Actual PE Digest

d5:37:32:97:fd:bf:08:92:25:c9:8f:c1:1d:19:7c:bf:62:bc:5c:23

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
MultiByteToWideChar
WideCharToMultiByte
CreateFileW
GetLastError
Sleep
CloseHandle
ReadFile
WriteFile
SetFilePointerEx
SetFilePointer
GetFileSizeEx
GetFileTime
GetTimeZoneInformation
GetFileAttributesW
SetEvent
WaitForSingleObject
CreateEventW
InterlockedIncrement
InterlockedDecrement
GetStringTypeW
InterlockedCompareExchange
InterlockedExchange
EncodePointer
DecodePointer
GetCurrentThreadId
GetCommandLineA
HeapFree
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
HeapAlloc
GetCPInfo
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
HeapSize
GetProcAddress
GetModuleHandleW
ExitProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
InitializeCriticalSectionAndSpinCount
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoW
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetModuleFileNameW
HeapReAlloc
LoadLibraryW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetStdHandle
WriteConsoleW
ResumeThread
GetFullPathNameW
FindFirstFileW
FindNextFileW
FindClose
ExitThread
CreateThread

Exports

Exports

MediaInfoA_Close
MediaInfoA_Count_Get
MediaInfoA_Delete
MediaInfoA_Get
MediaInfoA_GetI
MediaInfoA_Inform
MediaInfoA_New
MediaInfoA_New_Quick
MediaInfoA_Open
MediaInfoA_Open_Buffer
MediaInfoA_Open_Buffer_Continue
MediaInfoA_Open_Buffer_Continue_GoTo_Get
MediaInfoA_Open_Buffer_Finalize
MediaInfoA_Open_Buffer_Init
MediaInfoA_Open_NextPacket
MediaInfoA_Option
MediaInfoA_Output_Buffer_Get
MediaInfoA_Output_Buffer_GetI
MediaInfoA_Save
MediaInfoA_Set
MediaInfoA_SetI
MediaInfoA_State_Get
MediaInfoListA_Close
MediaInfoListA_Count_Get
MediaInfoListA_Count_Get_Files
MediaInfoListA_Delete
MediaInfoListA_Get
MediaInfoListA_GetI
MediaInfoListA_Inform
MediaInfoListA_New
MediaInfoListA_New_Quick
MediaInfoListA_Open
MediaInfoListA_Open_Buffer
MediaInfoListA_Option
MediaInfoListA_Save
MediaInfoListA_Set
MediaInfoListA_SetI
MediaInfoListA_State_Get
MediaInfoList_Close
MediaInfoList_Count_Get
MediaInfoList_Count_Get_Files
MediaInfoList_Delete
MediaInfoList_Get
MediaInfoList_GetI
MediaInfoList_Inform
MediaInfoList_New
MediaInfoList_New_Quick
MediaInfoList_Open
MediaInfoList_Open_Buffer
MediaInfoList_Option
MediaInfoList_Save
MediaInfoList_Set
MediaInfoList_SetI
MediaInfoList_State_Get
MediaInfo_Close
MediaInfo_Count_Get
MediaInfo_Delete
MediaInfo_Get
MediaInfo_GetI
MediaInfo_Info_Version
MediaInfo_Inform
MediaInfo_New
MediaInfo_New_Quick
MediaInfo_Open
MediaInfo_Open_Buffer
MediaInfo_Open_Buffer_Continue
MediaInfo_Open_Buffer_Continue_GoTo_Get
MediaInfo_Open_Buffer_Finalize
MediaInfo_Open_Buffer_Init
MediaInfo_Open_NextPacket
MediaInfo_Option
MediaInfo_Output_Buffer_Get
MediaInfo_Output_Buffer_GetI
MediaInfo_Save
MediaInfo_Set
MediaInfo_SetI
MediaInfo_State_Get

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 642KB - Virtual size: 642KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/MediaSource.ax
.dll regsvr32 windows:5 windows x86 arch:x86

b13f04744370e03b0f3a3c29f433336b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01.Project\[trunks]\MediaSource\bin\MediaSource.pdb

Imports

winmm

timeGetTime

avformat-gp-57

av_codec_get_tag
av_find_best_stream
av_find_default_stream_index
av_probe_input_format
av_read_frame
av_register_all
av_seek_frame
avformat_alloc_context
avformat_close_input
avformat_find_stream_info
avformat_get_riff_audio_tags
avformat_network_init
avformat_open_input
avio_alloc_context
avio_size

avutil-gp-55

av_dict_copy
av_dict_free
av_dict_get
av_dict_set
av_free
av_get_bits
av_get_bits_per_pixel
av_get_bytes_per_sample
av_get_default_channel_layout
av_malloc
av_opt_set_int
av_pix_fmt_desc_get
av_reduce
av_rescale
av_strerror

avcodec-gp-57

av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_copy_packet_side_data
av_free_packet
av_get_bits_per_sample
av_init_packet
av_new_packet
av_packet_unref
av_parser_init
avcodec_get_name

wldap32

ord32
ord35
ord22
ord50
ord143
ord41
ord200
ord60
ord30
ord79
ord33
ord27
ord301
ord211
ord46
ord26

kernel32

TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
WriteConsoleW
SetFilePointerEx
SetConsoleMode
ReadConsoleInputA
GetModuleHandleExW
TlsFree
SetConsoleCtrlHandler
FileTimeToSystemTime
GetFileInformationByHandle
FileTimeToLocalFileTime
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
CreateProcessA
RtlUnwind
GetCommandLineA
IsProcessorFeaturePresent
IsDebuggerPresent
LoadLibraryExW
ExitThread
GetStringTypeW
EncodePointer
ExitProcess
GetTempFileNameW
FindFirstFileW
SetFilePointer
CreateDirectoryW
WaitForSingleObject
WriteFile
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
Sleep
LeaveCriticalSection
ReadFile
CreateFileW
RaiseException
GetLastError
EnterCriticalSection
FindClose
DecodePointer
FindNextFileW
DeleteCriticalSection
CloseHandle
DeleteFileW
WideCharToMultiByte
GetModuleFileNameW
MultiByteToWideChar
GetTempPathW
RemoveDirectoryW
GetDiskFreeSpaceExW
SetFileAttributesW
GetTickCount
SetEvent
SetThreadPriority
CreateEventW
ResumeThread
OutputDebugStringA
GetFileSize
GlobalLock
GlobalAlloc
GlobalUnlock
GlobalFree
OutputDebugStringW
GetVersionExW
GetLocalTime
GetCurrentThreadId
InterlockedDecrement
FormatMessageW
lstrlenW
LocalFree
CreateThread
GetVersion
InterlockedIncrement
DisableThreadLibraryCalls
FreeLibrary
LoadLibraryW
ResetEvent
GetProcAddress
DuplicateHandle
GetCurrentProcess
GetSystemInfo
WaitForMultipleObjects
GetModuleHandleW
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetModuleHandleA
GetModuleFileNameA
FormatMessageA
FlushFileBuffers
CreateFileA
GetVersionExA
GetCurrentDirectoryA
GetComputerNameA
GetTempPathA
GetWindowsDirectoryA
GetSystemTimeAsFileTime
DeviceIoControl
GetSystemDirectoryA
CreateMutexA
ReleaseMutex
IsBadReadPtr
IsBadWritePtr
IsBadStringPtrA
GetStdHandle
GetFileType
GetFullPathNameW
GetFullPathNameA
CreateMutexW
HeapCompact
TryEnterCriticalSection
MapViewOfFile
UnmapViewOfFile
SetEndOfFile
SystemTimeToFileTime
QueryPerformanceCounter
UnlockFile
LockFile
UnlockFileEx
GetFileAttributesA
HeapCreate
HeapValidate
GetFileAttributesW
VirtualUnlock
LockFileEx
GetDiskFreeSpaceW
LoadLibraryA
CreateFileMappingA
CreateFileMappingW
GetDiskFreeSpaceA
VirtualLock
GetFileAttributesExW
GetCurrentProcessId
AreFileApisANSI
DeleteFileA
GlobalMemoryStatus
SetLastError
FlushConsoleInputBuffer
SleepEx
PeekNamedPipe
ExpandEnvironmentStringsA
GetStartupInfoW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsValidCodePage
GetACP
GetOEMCP
ReadConsoleW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetStdHandle
GetExitCodeProcess
CreatePipe
FindFirstFileExW
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
MoveFileExW
VirtualQuery
SetEnvironmentVariableA
GetCurrentDirectoryW
TerminateThread
GetSystemTime

user32

GetUserObjectInformationW
MessageBoxW
GetDesktopWindow
GetProcessWindowStation
SendMessageA
FindWindowA

gdi32

AddFontMemResourceEx

advapi32

RegSetValueExW
RegSetValueW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey
ReportEventW
DeregisterEventSource
RegisterEventSourceW
RegQueryInfoKeyA
RegSetValueExA
RegQueryValueExA
CloseServiceHandle
OpenSCManagerA
RegCreateKeyExA
RegDeleteKeyA
RegCreateKeyW

shell32

SHGetSpecialFolderPathW
SHGetFolderPathA

ole32

CoCreateGuid
CoInitialize
CoCreateInstance
CoFreeUnusedLibraries
CoUninitialize
StringFromGUID2
CoTaskMemAlloc
CoTaskMemFree

shlwapi

PathFindExtensionW
PathAddBackslashW
PathIsDirectoryW
PathStripToRootW
UrlGetPartW
PathFileExistsW

ws2_32

WSAIoctl
getpeername
sendto
recvfrom
accept
listen
ioctlsocket
freeaddrinfo
getaddrinfo
gethostname
shutdown
ntohs
closesocket
gethostbyname
socket
recv
htons
connect
__WSAFDIsSet
inet_addr
getsockname
setsockopt
bind
WSASetLastError
getsockopt
WSAStartup
WSACleanup
WSAGetLastError
send
select

winhttp

WinHttpCloseHandle
WinHttpConnect
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpSendRequest
WinHttpReceiveResponse
WinHttpQueryHeaders
WinHttpOpenRequest
WinHttpOpen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
libssh2_agent_connect
libssh2_agent_disconnect
libssh2_agent_free
libssh2_agent_get_identity
libssh2_agent_init
libssh2_agent_list_identities
libssh2_agent_userauth
libssh2_banner_set
libssh2_base64_decode
libssh2_channel_close
libssh2_channel_direct_tcpip_ex
libssh2_channel_eof
libssh2_channel_flush_ex
libssh2_channel_forward_accept
libssh2_channel_forward_cancel
libssh2_channel_forward_listen_ex
libssh2_channel_free
libssh2_channel_get_exit_signal
libssh2_channel_get_exit_status
libssh2_channel_handle_extended_data
libssh2_channel_handle_extended_data2
libssh2_channel_open_ex
libssh2_channel_process_startup
libssh2_channel_read_ex
libssh2_channel_receive_window_adjust
libssh2_channel_receive_window_adjust2
libssh2_channel_request_pty_ex
libssh2_channel_request_pty_size_ex
libssh2_channel_send_eof
libssh2_channel_set_blocking
libssh2_channel_setenv_ex
libssh2_channel_wait_closed
libssh2_channel_wait_eof
libssh2_channel_window_read_ex
libssh2_channel_window_write_ex
libssh2_channel_write_ex
libssh2_channel_x11_req_ex
libssh2_exit
libssh2_free
libssh2_hostkey_hash
libssh2_init
libssh2_keepalive_config
libssh2_keepalive_send
libssh2_knownhost_add
libssh2_knownhost_addc
libssh2_knownhost_check
libssh2_knownhost_checkp
libssh2_knownhost_del
libssh2_knownhost_free
libssh2_knownhost_get
libssh2_knownhost_init
libssh2_knownhost_readfile
libssh2_knownhost_readline
libssh2_knownhost_writefile
libssh2_knownhost_writeline
libssh2_poll
libssh2_poll_channel_read
libssh2_scp_recv
libssh2_scp_send64
libssh2_scp_send_ex
libssh2_session_abstract
libssh2_session_banner_get
libssh2_session_banner_set
libssh2_session_block_directions
libssh2_session_callback_set
libssh2_session_disconnect_ex
libssh2_session_flag
libssh2_session_free
libssh2_session_get_blocking
libssh2_session_get_timeout
libssh2_session_handshake
libssh2_session_hostkey
libssh2_session_init_ex
libssh2_session_last_errno
libssh2_session_last_error
libssh2_session_method_pref
libssh2_session_methods
libssh2_session_set_blocking
libssh2_session_set_timeout
libssh2_session_startup
libssh2_session_supported_algs
libssh2_sftp_close_handle
libssh2_sftp_fstat_ex
libssh2_sftp_fstatvfs
libssh2_sftp_fsync
libssh2_sftp_get_channel
libssh2_sftp_init
libssh2_sftp_last_error
libssh2_sftp_mkdir_ex
libssh2_sftp_open_ex
libssh2_sftp_read
libssh2_sftp_readdir_ex
libssh2_sftp_rename_ex
libssh2_sftp_rmdir_ex
libssh2_sftp_seek
libssh2_sftp_seek64
libssh2_sftp_shutdown
libssh2_sftp_stat_ex
libssh2_sftp_statvfs
libssh2_sftp_symlink_ex
libssh2_sftp_tell
libssh2_sftp_tell64
libssh2_sftp_unlink_ex
libssh2_sftp_write
libssh2_trace
libssh2_trace_sethandler
libssh2_userauth_authenticated
libssh2_userauth_hostbased_fromfile_ex
libssh2_userauth_keyboard_interactive_ex
libssh2_userauth_list
libssh2_userauth_password_ex
libssh2_userauth_publickey
libssh2_userauth_publickey_fromfile_ex

Sections

.text
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 679KB - Virtual size: 679KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 975KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/Subtitle.dll
.dll windows:5 windows x86 arch:x86

93d7ccbcee92f4be90a64dc88bf03346

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01.Project\[trunks]\Subtitle\bin\Subtitle.pdb

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

CreateSemaphoreW
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetTimeZoneInformation
LCMapStringW
IsValidLocale
EnumSystemLocalesW
OutputDebugStringW
WriteConsoleW
SetEnvironmentVariableA
GetExitCodeThread
InterlockedPushEntrySList
InterlockedPopEntrySList
TerminateProcess
GetEnvironmentStringsW
VirtualFree
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SwitchToThread
SignalObjectAndWait
WaitForSingleObjectEx
CreateTimerQueue
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InitializeSListHead
FreeEnvironmentStringsW
QueryPerformanceCounter
GetModuleFileNameA
GetStartupInfoW
GetStringTypeW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetStdHandle
GetSystemTimeAsFileTime
VirtualQuery
VirtualAlloc
GetSystemInfo
GetModuleHandleExW
ExitProcess
HeapQueryInformation
ExitThread
CreateThread
GetFileType
SetStdHandle
IsProcessorFeaturePresent
IsDebuggerPresent
RtlUnwind
GetCommandLineA
FindResourceExW
GetUserDefaultLCID
VirtualProtect
SearchPathW
GetProfileIntW
GetTickCount
Sleep
VerifyVersionInfoW
VerSetConditionMask
GetWindowsDirectoryW
lstrcpyW
GetCurrentDirectoryW
GetVersionExW
GetCurrentThread
GetUserDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalFlags
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
FreeResource
FreeLibrary
GetSystemDirectoryW
EncodePointer
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
GetCurrentProcessId
FileTimeToSystemTime
GlobalGetAtomNameW
ResumeThread
SetThreadPriority
GetCurrentThreadId
CreateEventW
WaitForSingleObject
SetEvent
SetErrorMode
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
LoadLibraryW
LoadLibraryA
lstrcmpiW
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetCurrentProcess
DuplicateHandle
OutputDebugStringA
WriteFile
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
lstrcmpA
CopyFileW
FormatMessageW
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
MulDiv
GetModuleFileNameW
CloseHandle
CreateFileW
ReadFile
SetFilePointer
GetFileSize
GetTempPathW
WideCharToMultiByte
GetTempFileNameW
DeleteCriticalSection
DecodePointer
LockResource
HeapSize
GetLastError
RaiseException
MultiByteToWideChar
SizeofResource
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
LoadResource
FindResourceW
HeapReAlloc
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
ReleaseSemaphore

user32

CreatePopupMenu
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
MessageBeep
GetIconInfo
DrawIconEx
LoadImageW
SetRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
InvalidateRect
KillTimer
SetTimer
DeleteMenu
SetCursor
ShowOwnedPopups
IsIconic
PostQuitMessage
SendDlgItemMessageA
CopyImage
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
InflateRect
DestroyIcon
RealChildWindowFromPoint
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
GetWindow
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
PtInRect
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
GetMenuDefaultItem
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
DestroyCursor
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
FillRect
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
LoadCursorW
MapDialogRect
CreateMenu
SubtractRect
UnregisterClassW
SendMessageW
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
GetLastActivePopup
GetWindowThreadProcessId
GetParent
GetWindowLongW
MessageBoxW
IsWindowEnabled
EnableWindow
GetWindowTextLengthW
GetWindowTextW
CallNextHookEx
SetWindowsHookExW
MapVirtualKeyW
LoadMenuW
SetLayeredWindowAttributes
EnumDisplayMonitors
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawStateW
DrawEdge
DrawFrameControl
SetWindowRgn
UnionRect
IsMenu
UpdateLayeredWindow
DrawIcon
SetScrollPos
GetWindowRgn
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
FrameRect
CharUpperBuffW
RegisterClipboardFormatW
ModifyMenuW
SetMenuDefaultItem
CopyIcon
IsCharAlphaNumericW
GetDoubleClickTime
GetDesktopWindow
IsRectEmpty
IntersectRect
OffsetRect
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
CharUpperW
GetSystemMetrics
UnhookWindowsHookEx
GetMessageW
TranslateMessage
DispatchMessageW
PeekMessageW
IsWindowVisible
GetActiveWindow
GetKeyState
ValidateRect
GetCursorPos
SetClassLongW
LockWindowUpdate
SetParent
SetRect
SetCursorPos
CopyAcceleratorTableW
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
PostThreadMessageW
GetSystemMenu
IsZoomed
GetComboBoxInfo
TrackMouseEvent
GetKeyNameTextW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
GetMenu
MonitorFromPoint

gdi32

CreatePatternBrush
CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
GetObjectW
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreatePen
CreateFontIndirectW
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
GetTextExtentPoint32W
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
GetTextMetricsW
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
CreateHatchBrush
CreateBitmap
BitBlt
GetDeviceCaps
CreateDCW
CopyMetaFileW
DeleteDC
DeleteObject
SelectObject
CreateCompatibleDC
CreateFontW
GetTextFaceW
CombineRgn
GetClipBox
GetFontData

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegSetValueExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetFileInfoW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHAppBarMessage
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHGetDesktopFolder

shlwapi

PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathIsUNCW
StrFormatKBSizeW

uxtheme

GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeParentBackground
DrawThemeText

ole32

CoInitialize
CoUninitialize
CoDisconnectObject
OleLockRunning
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoCreateInstance
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
DoDragDrop
CoInitializeEx
CreateStreamOnHGlobal
CoTaskMemAlloc

oleaut32

VariantClear
VariantCopy
VariantChangeType
VarBstrFromDate
LoadTypeLi
VariantInit
SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysFreeString
SysAllocStringLen

tbb

?internal_construct@reader_writer_lock@interface5@tbb@@AAEXXZ
?internal_destroy@reader_writer_lock@interface5@tbb@@AAEXXZ
?internal_construct@scoped_lock@reader_writer_lock@interface5@tbb@@AAEXAAV234@@Z
?internal_destroy@scoped_lock@reader_writer_lock@interface5@tbb@@AAEXXZ
?destroy@task_base@internal@interface5@tbb@@SAXAAVtask@4@@Z
?note_affinity@task@tbb@@UAEXG@Z
?allocate@allocate_continuation_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?allocate@allocate_root_with_context_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?free@allocate_root_with_context_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?internal_capacity@concurrent_vector_base_v3@internal@tbb@@IBEIXZ
?internal_clear@concurrent_vector_base_v3@internal@tbb@@IAEIP6AXPAXI@Z@Z
?internal_resize@concurrent_vector_base_v3@internal@tbb@@IAEXIIIPBXP6AXPAXI@ZP6AX10I@Z@Z
?allocate@allocate_child_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?NFS_Free@internal@tbb@@YAXPAX@Z
?NFS_Allocate@internal@tbb@@YAPAXIIPAX@Z
?get_initial_auto_partitioner_divisor@internal@tbb@@YAIXZ
??1task_group_context@tbb@@QAE@XZ
?is_group_execution_cancelled@task_group_context@tbb@@QBE_NXZ
?init@task_group_context@tbb@@IAEXXZ
??1concurrent_vector_base_v3@internal@tbb@@IAE@XZ

libass

ass_new_track
ass_library_done
ass_render_frame
ass_process_chunk
ass_set_fonts
ass_renderer_done
ass_process_codec_private
ass_set_message_cb
ass_read_memory
ass_renderer_init
ass_add_font
ass_set_frame_size
ass_library_init
ass_free_track
ass_process_data

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipDrawImageI
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCreateFromHWND
GdipDeleteStringFormat
GdipCreatePen1
GdipCreatePath
GdipCreateStringFormat
GdipCloneImage
GdipBitmapLockBits
GdipStringFormatGetGenericTypographic
GdipCreateBitmapFromHBITMAP
GdipGetFontHeight
GdipCreateFontFamilyFromName
GdipCreateRegion
GdipCloneStringFormat
GdipMeasureCharacterRanges
GdipDeleteRegion
GdipDeletePath
GdipAddPathString
GdipCreateFont
GdipDisposeImage
GdipSetStringFormatMeasurableCharacterRanges
GdipAlloc
GdipCreateSolidFill
GdipBitmapUnlockBits
GdipDeleteFontFamily
GdipSetSmoothingMode
GdipGetRegionBounds
GdipGetImageGraphicsContext
GdipSetPathFillMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipFillPath
GdipCreateBitmapFromScan0
GdipDeleteFont
GdipDrawPath
GdipMeasureString
GdipGetStringFormatFlags
GdipResetPath
GdipDeletePen
GdipGetPointCount
GdipFree
GdipDeleteBrush
GdiplusStartup
GdiplusShutdown
GdipSetStringFormatFlags

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Exports

Exports

AddStream
CreateEXTAPI
CreateFromFile
CreateFromStream
DestroyInstance
DestroyInstanceEXT

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 390KB - Virtual size: 389KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/SubtitleFilter.dll
.dll regsvr32 windows:5 windows x86 arch:x86

a3d7b16e4d8004b64ed893f1c02d55c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\01.Project\[trunks]\Subtitle\bin\SubtitleFilter.pdb

Imports

kernel32

HeapFree
GetProcessHeap
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
SizeofResource
HeapDestroy
LeaveCriticalSection
MultiByteToWideChar
RaiseException
GetLastError
HeapSize
EnterCriticalSection
LockResource
DecodePointer
DeleteCriticalSection
GetModuleFileNameW
lstrlenW
FreeLibrary
CloseHandle
HeapAlloc
GetCurrentThreadId
lstrcmpW
GetModuleHandleW
GetProcAddress
SetStdHandle
OutputDebugStringW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LoadResource
FindResourceW
FindResourceExW
HeapReAlloc
WriteConsoleW
CreateFileW
FlushFileBuffers
GetCurrentProcess
LCMapStringW
LoadLibraryExW
WriteFile
FreeEnvironmentStringsW
GetEnvironmentStringsW
EncodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
RtlUnwind
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
ExitProcess
GetModuleHandleExW
WideCharToMultiByte
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
SetLastError
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetStdHandle
GetFileType
GetModuleFileNameA

advapi32

RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyW
RegCloseKey

ole32

StringFromGUID2
CoFreeUnusedLibraries
CoTaskMemFree
CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemAlloc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/avcodec-gp-57.dll
.dll windows:4 windows x86 arch:x86

853415ca3c3d276376dc87def6a7cde9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

DeregisterEventSource
RegisterEventSourceA
ReportEventA

kernel32

CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetACP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
ReleaseMutex
ReleaseSemaphore
ResetEvent
SetEvent
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile

msvcrt

___mb_cur_max_func
__setusermatherr
_amsg_exit
_beginthreadex
_errno
_exit
_fileno
_hypot
_initterm
_iob
_lock
_setmode
_snprintf
_unlock
_vsnprintf
_wfopen
abort
acos
atan
atoi
bsearch
calloc
exit
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fputc
fread
free
frexp
fseek
ftell
fwrite
getc
getenv
isalnum
islower
isspace
isupper
isxdigit
localeconv
localtime
log10
malloc
memchr
memcmp
memcpy
memmove
memset
qsort
raise
realloc
setlocale
sscanf
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strncpy
strrchr
strspn
strstr
strtol
strtoul
time
tan
tolower
toupper
ungetc
vfprintf
wcslen
wcsstr

user32

GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

avutil-gp-55

av_asprintf
av_audio_fifo_alloc
av_audio_fifo_drain
av_audio_fifo_free
av_audio_fifo_read
av_audio_fifo_size
av_audio_fifo_write
av_bprint_chars
av_bprint_clear
av_bprint_finalize
av_bprint_get_buffer
av_bprint_init
av_bprintf
av_buffer_alloc
av_buffer_allocz
av_buffer_create
av_buffer_default_free
av_buffer_get_ref_count
av_buffer_make_writable
av_buffer_pool_get
av_buffer_pool_init
av_buffer_pool_uninit
av_buffer_realloc
av_buffer_ref
av_buffer_unref
av_calloc
av_chroma_location_name
av_color_primaries_name
av_color_range_name
av_color_space_name
av_color_transfer_name
av_cpu_count
av_crc
av_crc_get_table
av_crc_init
av_d2q
av_default_item_name
av_dict_copy
av_dict_free
av_dict_get
av_dict_set
av_display_matrix_flip
av_display_rotation_set
av_div_q
av_downmix_info_update_side_data
av_dynarray_add
av_expr_eval
av_expr_free
av_expr_parse
av_fast_malloc
av_fast_mallocz
av_fast_realloc
av_fifo_alloc_array
av_fifo_drain
av_fifo_freep
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_size
av_fifo_space
av_find_best_pix_fmt_of_2
av_frame_alloc
av_frame_clone
av_frame_copy
av_frame_copy_props
av_frame_free
av_frame_get_buffer
av_frame_get_channels
av_frame_get_color_range
av_frame_get_colorspace
av_frame_get_pkt_duration
av_frame_get_side_data
av_frame_is_writable
av_frame_make_writable
av_frame_move_ref
av_frame_new_side_data
av_frame_ref
av_frame_set_best_effort_timestamp
av_frame_set_channels
av_frame_set_color_range
av_frame_set_colorspace
av_frame_set_decode_error_flags
av_frame_set_metadata
av_frame_set_pkt_duration
av_frame_set_pkt_pos
av_frame_set_pkt_size
av_frame_set_qp_table
av_frame_unref
av_free
av_freep
av_gcd
av_get_bits_per_pixel
av_get_bytes_per_sample
av_get_channel_layout_channel_index
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_colorspace_name
av_get_cpu_flags
av_get_media_type_string
av_get_picture_type_char
av_get_pix_fmt_loss
av_get_pix_fmt_name
av_get_planar_sample_fmt
av_get_sample_fmt_name
av_image_alloc
av_image_check_sar
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_copy_to_buffer
av_image_fill_arrays
av_image_fill_linesizes
av_image_fill_max_pixsteps
av_image_fill_pointers
av_image_get_buffer_size
av_image_get_linesize
av_lfg_init
av_log
av_log_get_level
av_lzo1x_decode
av_malloc
av_mallocz
av_mastering_display_metadata_create_side_data
av_match_list
av_md5_alloc
av_md5_final
av_md5_init
av_md5_update
av_memcpy_backptr
av_memdup
av_mul_q
av_opt_copy
av_opt_free
av_opt_get_int
av_opt_next
av_opt_set
av_opt_set_defaults
av_opt_set_defaults2
av_opt_set_dict
av_opt_set_from_string
av_opt_set_int
av_parse_color
av_pix_fmt_count_planes
av_pix_fmt_desc_get
av_pix_fmt_get_chroma_sub_sample
av_realloc
av_realloc_array
av_realloc_f
av_reallocp
av_reallocp_array
av_reduce
av_rescale
av_rescale_q
av_sample_fmt_is_planar
av_samples_copy
av_samples_fill_arrays
av_samples_get_buffer_size
av_samples_set_silence
av_stereo3d_alloc
av_stereo3d_create_side_data
av_strdup
av_strerror
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strncasecmp
av_strtok
av_timecode_make_mpeg_tc_string
av_usleep
av_vlog
avpriv_alloc_fixed_dsp
avpriv_cga_font
avpriv_float_dsp_alloc
avpriv_frame_get_metadatap
avpriv_get_trc_function_from_trc
avpriv_report_missing_feature
avpriv_request_sample
avpriv_scalarproduct_float_c
avpriv_set_systematic_pal2
avpriv_vga16_font

swresample-gp-2

swr_alloc
swr_close
swr_convert
swr_free
swr_init
swr_is_initialized

Exports

Exports

audio_resample
audio_resample_close
av_audio_convert
av_audio_convert_alloc
av_audio_convert_free
av_audio_resample_init
av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_bitstream_filter_next
av_bsf_alloc
av_bsf_free
av_bsf_get_by_name
av_bsf_get_class
av_bsf_init
av_bsf_next
av_bsf_receive_packet
av_bsf_send_packet
av_codec_ffversion
av_codec_get_chroma_intra_matrix
av_codec_get_codec_descriptor
av_codec_get_codec_properties
av_codec_get_lowres
av_codec_get_max_lowres
av_codec_get_pkt_timebase
av_codec_get_seek_preroll
av_codec_is_decoder
av_codec_is_encoder
av_codec_next
av_codec_set_chroma_intra_matrix
av_codec_set_codec_descriptor
av_codec_set_lowres
av_codec_set_pkt_timebase
av_codec_set_seek_preroll
av_copy_packet
av_copy_packet_side_data
av_cpb_properties_alloc
av_d3d11va_alloc_context
av_dct_calc
av_dct_end
av_dct_init
av_dirac_parse_sequence_header
av_dup_packet
av_dv_codec_profile
av_dv_codec_profile2
av_dv_frame_profile
av_fast_padded_malloc
av_fast_padded_mallocz
av_fft_calc
av_fft_end
av_fft_init
av_fft_permute
av_free_packet
av_get_audio_frame_duration
av_get_audio_frame_duration2
av_get_bits_per_sample
av_get_codec_tag_string
av_get_exact_bits_per_sample
av_get_pcm_codec
av_get_profile_name
av_grow_packet
av_hwaccel_next
av_imdct_calc
av_imdct_half
av_init_packet
av_jni_get_java_vm
av_jni_set_java_vm
av_lockmgr_register
av_log_ask_for_sample
av_log_missing_feature
av_mdct_calc
av_mdct_end
av_mdct_init
av_new_packet
av_packet_add_side_data
av_packet_alloc
av_packet_clone
av_packet_copy_props
av_packet_free
av_packet_free_side_data
av_packet_from_data
av_packet_get_side_data
av_packet_merge_side_data
av_packet_move_ref
av_packet_new_side_data
av_packet_pack_dictionary
av_packet_ref
av_packet_rescale_ts
av_packet_shrink_side_data
av_packet_side_data_name
av_packet_split_side_data
av_packet_unpack_dictionary
av_packet_unref
av_parser_change
av_parser_close
av_parser_init
av_parser_next
av_parser_parse2
av_picture_copy
av_picture_crop
av_picture_pad
av_qsv_alloc_context
av_rdft_calc
av_rdft_end
av_rdft_init
av_register_bitstream_filter
av_register_codec_parser
av_register_hwaccel
av_resample
av_resample_close
av_resample_compensate
av_resample_init
av_shrink_packet
av_vorbis_parse_frame
av_vorbis_parse_frame_flags
av_vorbis_parse_free
av_vorbis_parse_init
av_vorbis_parse_reset
av_xiphlacing
avcodec_align_dimensions
avcodec_align_dimensions2
avcodec_alloc_context3
avcodec_chroma_pos_to_enum
avcodec_close
avcodec_configuration
avcodec_copy_context
avcodec_dct_alloc
avcodec_dct_get_class
avcodec_dct_init
avcodec_decode_audio4
avcodec_decode_subtitle2
avcodec_decode_video2
avcodec_default_execute
avcodec_default_execute2
avcodec_default_get_buffer2
avcodec_default_get_format
avcodec_descriptor_get
avcodec_descriptor_get_by_name
avcodec_descriptor_next
avcodec_encode_audio2
avcodec_encode_subtitle
avcodec_encode_video2
avcodec_enum_to_chroma_pos
avcodec_fill_audio_frame
avcodec_find_best_pix_fmt2
avcodec_find_best_pix_fmt_of_2
avcodec_find_best_pix_fmt_of_list
avcodec_find_decoder
avcodec_find_decoder_by_name
avcodec_find_encoder
avcodec_find_encoder_by_name
avcodec_flush_buffers
avcodec_free_context
avcodec_get_chroma_sub_sample
avcodec_get_class
avcodec_get_context_defaults3
avcodec_get_edge_width
avcodec_get_frame_class
avcodec_get_name
avcodec_get_pix_fmt_loss
avcodec_get_subtitle_rect_class
avcodec_get_type
avcodec_is_open
avcodec_license
avcodec_open2
avcodec_parameters_alloc
avcodec_parameters_copy
avcodec_parameters_free
avcodec_parameters_from_context
avcodec_parameters_to_context
avcodec_pix_fmt_to_codec_tag
avcodec_profile_name
avcodec_receive_frame
avcodec_receive_packet
avcodec_register
avcodec_register_all
avcodec_send_frame
avcodec_send_packet
avcodec_set_dimensions
avcodec_string
avcodec_version
avpicture_alloc
avpicture_fill
avpicture_free
avpicture_get_size
avpicture_layout
avpriv_aac_parse_header
avpriv_ac3_channel_layout_tab
avpriv_ac3_parse_header
avpriv_align_put_bits
avpriv_bprint_to_extradata
avpriv_codec_get_cap_skip_frame_fill_param
avpriv_copy_bits
avpriv_copy_pce_data
avpriv_dca_convert_bitstream
avpriv_dca_sample_rates
avpriv_dnxhd_get_frame_size
avpriv_dnxhd_get_interlaced
avpriv_dnxhd_parse_header_prefix
avpriv_exif_decode_ifd
avpriv_find_pix_fmt
avpriv_find_start_code
avpriv_get_raw_pix_fmt_tags
avpriv_h264_has_num_reorder_frames
avpriv_lock_avformat
avpriv_mjpeg_bits_ac_chrominance
avpriv_mjpeg_bits_ac_luminance
avpriv_mjpeg_bits_dc_chrominance
avpriv_mjpeg_bits_dc_luminance
avpriv_mjpeg_val_ac_chrominance
avpriv_mjpeg_val_ac_luminance
avpriv_mjpeg_val_dc
avpriv_mpa_bitrate_tab
avpriv_mpa_decode_header
avpriv_mpa_decode_header2
avpriv_mpa_freq_tab
avpriv_mpeg4audio_get_config
avpriv_mpeg4audio_sample_rates
avpriv_mpegaudio_decode_header
avpriv_pix_fmt_bps_avi
avpriv_pix_fmt_bps_mov
avpriv_put_string
avpriv_split_xiph_headers
avpriv_tak_parse_streaminfo
avpriv_toupper4
avpriv_unlock_avformat
avsubtitle_free
ff_crop_tab
ff_flac_is_extradata_valid
ff_vc1_pixel_aspect

Sections

.text
Size: 8.1MB - Virtual size: 8.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3.2MB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 465KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7.2MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 381KB - Virtual size: 381KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/78
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/avfilter-gp-6.dll
.dll windows:4 windows x86 arch:x86

b45d5e6c0ae002b63c4841d568114dcc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

DeregisterEventSource
RegisterEventSourceA
ReportEventA

kernel32

CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
ReleaseSemaphore
ResetEvent
SetEvent
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

___mb_cur_max_func
__setusermatherr
_amsg_exit
_beginthreadex
_errno
_exit
_fileno
_initterm
_iob
_lock
_setmode
_snprintf
_unlock
_vsnprintf
_wfopen
abort
atoi
calloc
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fputc
fread
free
fseek
ftell
fwrite
getenv
isalnum
isspace
isxdigit
localeconv
localtime
malloc
memcmp
memcpy
memmove
memset
qsort
raise
realloc
setlocale
sscanf
strchr
strcmp
strcpy
strerror
strlen
strncmp
strncpy
strspn
strstr
strtol
strtoul
time
vfprintf
wcslen
wcsstr

user32

GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

avutil-gp-55

av_asprintf
av_audio_fifo_alloc
av_audio_fifo_free
av_audio_fifo_read
av_audio_fifo_size
av_audio_fifo_write
av_bprint_chars
av_bprint_finalize
av_bprint_init
av_bprintf
av_buffer_allocz
av_buffer_pool_get
av_buffer_pool_init
av_buffer_pool_uninit
av_buffer_ref
av_buffer_unref
av_calloc
av_cpu_count
av_default_item_name
av_dict_free
av_dict_get
av_dict_set
av_expr_eval
av_expr_free
av_expr_parse
av_expr_parse_and_eval
av_fifo_alloc
av_fifo_alloc_array
av_fifo_freep
av_fifo_generic_read
av_fifo_generic_write
av_fifo_realloc2
av_fifo_size
av_fifo_space
av_find_best_pix_fmt_of_2
av_frame_alloc
av_frame_clone
av_frame_copy_props
av_frame_free
av_frame_get_buffer
av_frame_get_channels
av_frame_get_color_range
av_frame_get_colorspace
av_frame_get_pkt_pos
av_frame_is_writable
av_frame_move_ref
av_frame_ref
av_frame_set_channels
av_frame_set_color_range
av_frame_unref
av_free
av_freep
av_get_bits_per_pixel
av_get_bytes_per_sample
av_get_channel_layout
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_cpu_flags
av_get_media_type_string
av_get_packed_sample_fmt
av_get_pix_fmt
av_get_pix_fmt_name
av_get_planar_sample_fmt
av_get_sample_fmt
av_get_sample_fmt_name
av_get_token
av_gettime
av_image_check_size
av_image_copy
av_image_fill_linesizes
av_int_list_length_for_size
av_log
av_malloc
av_mallocz
av_memdup
av_mul_q
av_opt_eval_flags
av_opt_find
av_opt_free
av_opt_get_key_value
av_opt_next
av_opt_set
av_opt_set_bin
av_opt_set_defaults
av_opt_set_dict
av_opt_set_int
av_parse_ratio
av_parse_video_size
av_pix_fmt_count_planes
av_pix_fmt_desc_get
av_pix_fmt_desc_get_id
av_pix_fmt_desc_next
av_realloc
av_realloc_array
av_reduce
av_rescale
av_rescale_q
av_sample_fmt_is_planar
av_samples_copy
av_samples_set_silence
av_strdup
av_strerror
av_strlcatf
av_strlcpy
av_strtod
avpriv_set_systematic_pal2

swscale-gp-4

sws_alloc_context
sws_freeContext
sws_getCoefficients
sws_getColorspaceDetails
sws_get_class
sws_init_context
sws_isSupportedEndiannessConversion
sws_isSupportedInput
sws_isSupportedOutput
sws_scale
sws_setColorspaceDetails

Exports

Exports

av_abuffersink_params_alloc
av_buffersink_get_frame
av_buffersink_get_frame_flags
av_buffersink_get_frame_rate
av_buffersink_get_samples
av_buffersink_params_alloc
av_buffersink_set_frame_size
av_buffersrc_add_frame
av_buffersrc_add_frame_flags
av_buffersrc_get_nb_failed_requests
av_buffersrc_parameters_alloc
av_buffersrc_parameters_set
av_buffersrc_write_frame
av_filter_ffversion
av_filter_next
avfilter_add_matrix
avfilter_all_channel_layouts
avfilter_config_links
avfilter_configuration
avfilter_free
avfilter_get_by_name
avfilter_get_class
avfilter_get_matrix
avfilter_graph_add_filter
avfilter_graph_alloc
avfilter_graph_alloc_filter
avfilter_graph_config
avfilter_graph_create_filter
avfilter_graph_dump
avfilter_graph_free
avfilter_graph_get_filter
avfilter_graph_parse
avfilter_graph_parse2
avfilter_graph_parse_ptr
avfilter_graph_queue_command
avfilter_graph_request_oldest
avfilter_graph_send_command
avfilter_graph_set_auto_convert
avfilter_init_dict
avfilter_init_filter
avfilter_init_str
avfilter_inout_alloc
avfilter_inout_free
avfilter_insert_filter
avfilter_license
avfilter_link
avfilter_link_free
avfilter_link_get_channels
avfilter_link_set_closed
avfilter_make_format64_list
avfilter_mul_matrix
avfilter_next
avfilter_open
avfilter_pad_count
avfilter_pad_get_name
avfilter_pad_get_type
avfilter_process_command
avfilter_register
avfilter_register_all
avfilter_sub_matrix
avfilter_transform
avfilter_uninit
avfilter_version

Sections

.text
Size: 217KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 512B - Virtual size: 112B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 9KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 292KB - Virtual size: 291KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/78
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/avformat-gp-57.dll
.dll windows:4 windows x86 arch:x86

e3db25f9e81fd8f77371d21d8962d6f6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

DeregisterEventSource
RegisterEventSourceA
ReportEventA

gdi32

CreateCompatibleBitmap
DeleteObject
GetDIBits
GetDeviceCaps
GetObjectA

kernel32

CloseHandle
CreateEventA
CreateSemaphoreA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GlobalMemoryStatus
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MoveFileExA
MoveFileExW
MultiByteToWideChar
QueryPerformanceCounter
ReleaseSemaphore
ResetEvent
SetEvent
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

___mb_cur_max_func
_access
_amsg_exit
_beginthreadex
_close
_errno
_exit
_fdopen
_fileno
_fileno
_fstati64
_getch
_hypot
_initterm
_iob
_lock
_lseeki64
_read
_rmdir
_setmode
_setmode
_snprintf
_snwprintf
_stati64
_strnicmp
_unlink
_unlock
_vsnprintf
_waccess
_wfopen
_write
_wrmdir
_wunlink
abort
atof
atoi
bsearch
calloc
exit
fclose
feof
ferror
fflush
fgetc
fgets
fopen
fprintf
fputc
fputs
fread
free
gmtime
fseek
ftell
fwprintf
fwrite
getc
getenv
isalnum
islower
isspace
isupper
isxdigit
localeconv
localtime
malloc
memchr
memcmp
memcpy
memmove
memset
qsort
raise
realloc
setlocale
signal
sprintf
sscanf
strcat
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strncpy
strrchr
strspn
strstr
strtol
strtoul
time
tolower
ungetc
vfprintf
wcscpy
wcslen
wcsstr

secur32

AcquireCredentialsHandleA
ApplyControlToken
DecryptMessage
DeleteSecurityContext
EncryptMessage
FreeContextBuffer
FreeCredentialsHandle
InitializeSecurityContextA
QueryContextAttributesA

user32

GetDC
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA
MessageBoxW
ReleaseDC

ws2_32

WSACleanup
WSAGetLastError
WSAStartup
__WSAFDIsSet
accept
bind
closesocket
connect
freeaddrinfo
getaddrinfo
gethostname
getnameinfo
getpeername
getsockname
getsockopt
htonl
htons
ioctlsocket
listen
ntohl
ntohs
recv
recvfrom
select
send
sendto
setsockopt
shutdown
socket

avcodec-gp-57

av_bitstream_filter_close
av_bitstream_filter_filter
av_bitstream_filter_init
av_bsf_alloc
av_bsf_free
av_bsf_get_by_name
av_bsf_init
av_bsf_receive_packet
av_bsf_send_packet
av_codec_get_lowres
av_codec_set_lowres
av_codec_set_pkt_timebase
av_copy_packet
av_dirac_parse_sequence_header
av_dv_frame_profile
av_fast_padded_malloc
av_get_audio_frame_duration
av_get_audio_frame_duration2
av_get_bits_per_sample
av_get_codec_tag_string
av_get_exact_bits_per_sample
av_grow_packet
av_init_packet
av_new_packet
av_packet_from_data
av_packet_get_side_data
av_packet_merge_side_data
av_packet_move_ref
av_packet_new_side_data
av_packet_pack_dictionary
av_packet_ref
av_packet_split_side_data
av_packet_unref
av_parser_close
av_parser_init
av_parser_parse2
av_shrink_packet
av_vorbis_parse_frame_flags
av_vorbis_parse_free
av_vorbis_parse_init
av_vorbis_parse_reset
av_xiphlacing
avcodec_alloc_context3
avcodec_close
avcodec_decode_subtitle2
avcodec_descriptor_get
avcodec_find_decoder
avcodec_find_encoder
avcodec_free_context
avcodec_get_name
avcodec_get_type
avcodec_is_open
avcodec_open2
avcodec_parameters_alloc
avcodec_parameters_copy
avcodec_parameters_free
avcodec_parameters_from_context
avcodec_parameters_to_context
avcodec_pix_fmt_to_codec_tag
avcodec_receive_frame
avcodec_register_all
avcodec_send_packet
avcodec_string
avpriv_aac_parse_header
avpriv_ac3_channel_layout_tab
avpriv_ac3_parse_header
avpriv_codec_get_cap_skip_frame_fill_param
avpriv_dca_convert_bitstream
avpriv_dca_sample_rates
avpriv_dnxhd_parse_header_prefix
avpriv_exif_decode_ifd
avpriv_find_pix_fmt
avpriv_find_start_code
avpriv_get_raw_pix_fmt_tags
avpriv_h264_has_num_reorder_frames
avpriv_mjpeg_bits_ac_chrominance
avpriv_mjpeg_bits_ac_luminance
avpriv_mjpeg_bits_dc_chrominance
avpriv_mjpeg_bits_dc_luminance
avpriv_mjpeg_val_ac_chrominance
avpriv_mjpeg_val_ac_luminance
avpriv_mjpeg_val_dc
avpriv_mpa_freq_tab
avpriv_mpeg4audio_get_config
avpriv_mpeg4audio_sample_rates
avpriv_mpegaudio_decode_header
avpriv_tak_parse_streaminfo
avpriv_toupper4

avutil-gp-55

av_add_stable
av_aes_alloc
av_aes_crypt
av_aes_ctr_alloc
av_aes_ctr_crypt
av_aes_ctr_free
av_aes_ctr_init
av_aes_ctr_set_iv
av_aes_init
av_append_path_component
av_asprintf
av_base64_decode
av_base64_encode
av_blowfish_crypt_ecb
av_blowfish_init
av_bprint_append_data
av_bprint_chars
av_bprint_clear
av_bprint_finalize
av_bprint_init
av_bprintf
av_buffer_alloc
av_buffer_create
av_buffer_default_free
av_buffer_unref
av_calloc
av_compare_mod
av_compare_ts
av_crc
av_crc_get_table
av_d2q
av_default_item_name
av_des_alloc
av_des_crypt
av_des_init
av_des_mac
av_dict_copy
av_dict_count
av_dict_free
av_dict_get
av_dict_parse_string
av_dict_set
av_dict_set_int
av_display_rotation_get
av_div_q
av_dynarray_add
av_dynarray_add_nofree
av_fast_malloc
av_fast_realloc
av_fifo_alloc
av_fifo_drain
av_fifo_freep
av_fifo_generic_peek_at
av_fifo_generic_read
av_fifo_generic_write
av_fifo_reset
av_fifo_size
av_fifo_space
av_find_info_tag
av_find_nearest_q_idx
av_frame_alloc
av_frame_free
av_frame_get_pkt_duration
av_free
av_freep
av_gcd
av_get_channel_layout_nb_channels
av_get_channel_name
av_get_media_type_string
av_get_picture_type_char
av_get_pix_fmt
av_get_random_seed
av_get_token
av_gettime
av_gettime_relative
av_hmac_alloc
av_hmac_final
av_hmac_free
av_hmac_init
av_hmac_update
av_image_check_sar
av_image_check_size
av_image_get_buffer_size
av_lfg_init
av_log
av_log_get_level
av_lzo1x_decode
av_malloc
av_mallocz
av_match_list
av_match_name
av_md5_alloc
av_md5_final
av_md5_init
av_md5_sum
av_md5_update
av_memdup
av_mul_q
av_opt_copy
av_opt_flag_is_set
av_opt_free
av_opt_get
av_opt_get_dict_val
av_opt_get_int
av_opt_next
av_opt_set
av_opt_set_bin
av_opt_set_defaults
av_opt_set_dict
av_opt_set_dict2
av_opt_set_dict_val
av_opt_set_from_string
av_parse_ratio
av_parse_time
av_parse_video_rate
av_pix_fmt_desc_get
av_rc4_alloc
av_rc4_crypt
av_rc4_init
av_realloc
av_realloc_array
av_realloc_f
av_reallocp
av_reallocp_array
av_reduce
av_rescale
av_rescale_q
av_rescale_q_rnd
av_rescale_rnd
av_set_options_string
av_sha_alloc
av_sha_final
av_sha_init
av_sha_update
av_small_strptime
av_stereo3d_alloc
av_stereo3d_type_name
av_strcasecmp
av_strdup
av_strerror
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strncasecmp
av_strndup
av_strstart
av_strtod
av_strtok
av_sub_q
av_tea_alloc
av_tea_crypt
av_tea_init
av_timecode_init
av_timecode_make_smpte_tc_string
av_timecode_make_string
av_timegm
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_alloc
av_usleep
av_xtea_le_crypt
av_xtea_le_init
avpriv_open
avpriv_report_missing_feature
avpriv_request_sample
avpriv_set_systematic_pal2
avpriv_tempfile

Exports

Exports

av_add_index_entry
av_append_packet
av_apply_bitstream_filters
av_codec_get_id
av_codec_get_tag
av_codec_get_tag2
av_convert_lang_to
av_demuxer_open
av_dump_format
av_filename_number_test
av_find_best_stream
av_find_default_stream_index
av_find_input_format
av_find_program_from_stream
av_fmt_ctx_get_duration_estimation_method
av_format_ffversion
av_format_get_audio_codec
av_format_get_control_message_cb
av_format_get_data_codec
av_format_get_metadata_header_padding
av_format_get_opaque
av_format_get_open_cb
av_format_get_probe_score
av_format_get_subtitle_codec
av_format_get_video_codec
av_format_inject_global_side_data
av_format_set_audio_codec
av_format_set_control_message_cb
av_format_set_data_codec
av_format_set_metadata_header_padding
av_format_set_opaque
av_format_set_open_cb
av_format_set_subtitle_codec
av_format_set_video_codec
av_get_frame_filename
av_get_output_timestamp
av_get_packet
av_guess_codec
av_guess_format
av_guess_frame_rate
av_guess_sample_aspect_ratio
av_hex_dump
av_hex_dump_log
av_iformat_next
av_index_search_timestamp
av_interleaved_write_frame
av_interleaved_write_uncoded_frame
av_match_ext
av_new_program
av_oformat_next
av_pkt_dump2
av_pkt_dump_log2
av_probe_input_buffer
av_probe_input_buffer2
av_probe_input_format
av_probe_input_format2
av_probe_input_format3
av_program_add_stream_index
av_read_frame
av_read_pause
av_read_play
av_register_all
av_register_input_format
av_register_output_format
av_sdp_create
av_seek_frame
av_stream_get_end_pts
av_stream_get_parser
av_stream_get_r_frame_rate
av_stream_get_recommended_encoder_configuration
av_stream_get_side_data
av_stream_new_side_data
av_stream_set_r_frame_rate
av_stream_set_recommended_encoder_configuration
av_url_split
av_write_frame
av_write_trailer
av_write_uncoded_frame
av_write_uncoded_frame_query
avformat_alloc_context
avformat_alloc_output_context2
avformat_close_input
avformat_configuration
avformat_find_stream_info
avformat_flush
avformat_free_context
avformat_get_class
avformat_get_mov_audio_tags
avformat_get_mov_video_tags
avformat_get_riff_audio_tags
avformat_get_riff_video_tags
avformat_license
avformat_match_stream_specifier
avformat_network_deinit
avformat_network_init
avformat_new_stream
avformat_open_input
avformat_query_codec
avformat_queue_attached_pictures
avformat_seek_file
avformat_version
avformat_write_header
avio_accept
avio_alloc_context
avio_check
avio_close
avio_close_dir
avio_close_dyn_buf
avio_closep
avio_enum_protocols
avio_feof
avio_find_protocol_name
avio_flush
avio_free_directory_entry
avio_get_str
avio_get_str16be
avio_get_str16le
avio_handshake
avio_open
avio_open2
avio_open_dir
avio_open_dyn_buf
avio_pause
avio_printf
avio_put_str
avio_put_str16be
avio_put_str16le
avio_r8
avio_rb16
avio_rb24
avio_rb32
avio_rb64
avio_read
avio_read_dir
avio_read_to_bprint
avio_rl16
avio_rl24
avio_rl32
avio_rl64
avio_seek
avio_seek_time
avio_size
avio_skip
avio_w8
avio_wb16
avio_wb24
avio_wb32
avio_wb64
avio_wl16
avio_wl24
avio_wl32
avio_wl64
avio_write
avio_write_marker
avpriv_dv_get_packet
avpriv_dv_init_demux
avpriv_dv_produce_packet
avpriv_io_delete
avpriv_io_move
avpriv_mpegts_add_stream
avpriv_mpegts_parse_close
avpriv_mpegts_parse_open
avpriv_mpegts_parse_packet
avpriv_new_chapter
avpriv_set_pts_info
ff_inet_aton
ff_rm_reorder_sipr_data
ff_rtp_get_local_rtcp_port
ff_rtp_get_local_rtp_port
ff_rtsp_parse_line
ff_sipr_subpk_size
ff_socket_nonblock
ff_vorbis_comment
ffio_open_dyn_packet_buf
ffio_set_buf_size
ffurl_close
ffurl_open
ffurl_write
url_feof

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 416KB - Virtual size: 415KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 290KB - Virtual size: 290KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 11KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 387KB - Virtual size: 387KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/78
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/avutil-gp-55.dll
.dll windows:4 windows x86 arch:x86

2f54c411f91fed8fdad2da41ce9f6371

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
DeregisterEventSource
RegisterEventSourceA
ReportEventA

kernel32

AddVectoredExceptionHandler
CloseHandle
CreateEventA
CreateFileMappingA
CreateFileW
CreateSemaphoreA
DeleteCriticalSection
DuplicateHandle
EnterCriticalSection
ExitProcess
FileTimeToSystemTime
FreeLibrary
GetConsoleScreenBufferInfo
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetFileType
GetHandleInformation
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetProcessAffinityMask
GetProcessTimes
GetStdHandle
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetThreadContext
GetThreadPriority
GetThreadTimes
GetTickCount
GetTimeZoneInformation
GetVersion
InitializeCriticalSection
IsDBCSLeadByteEx
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryA
MapViewOfFile
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReleaseSemaphore
RemoveVectoredExceptionHandler
ResetEvent
ResumeThread
SetConsoleTextAttribute
SetEvent
SetFilePointer
SetLastError
SetProcessAffinityMask
SetSystemTime
SetThreadContext
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
SuspendThread
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnmapViewOfFile
VirtualProtect
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

___mb_cur_max_func
__setusermatherr
_amsg_exit
_beginthreadex
_close
_endthreadex
_errno
_exit
_fdopen
_fileno
_fstati64
_get_osfhandle
_hypot
_initterm
_iob
_isatty
_lock
_open_osfhandle
_read
_setjmp3
_setmode
_snprintf
_sopen
_strdup
_ultoa
_unlock
_vsnprintf
_wfopen
_wsopen
abort
acos
asin
atan
atoi
bsearch
clock
calloc
cosh
exit
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fputc
fputs
fread
free
gmtime
frexp
fseek
ftell
fwrite
getc
getenv
isalnum
islower
isspace
isupper
isxdigit
localeconv
localtime
log10
longjmp
malloc
memchr
mktime
memcmp
memcpy
memmove
memset
printf
qsort
raise
rand
realloc
setlocale
sinh
sscanf
strchr
strcmp
strcpy
strcspn
strerror
strftime
strlen
strncmp
strncpy
strrchr
strspn
strtol
strtoul
time
tan
tanh
tolower
ungetc
vfprintf
wcslen
wcsstr

user32

GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

Exports

Exports

av_add_i
av_add_q
av_add_stable
av_adler32_update
av_aes_alloc
av_aes_crypt
av_aes_ctr_alloc
av_aes_ctr_crypt
av_aes_ctr_free
av_aes_ctr_get_iv
av_aes_ctr_increment_iv
av_aes_ctr_init
av_aes_ctr_set_iv
av_aes_ctr_set_random_iv
av_aes_init
av_aes_size
av_append_path_component
av_asprintf
av_audio_fifo_alloc
av_audio_fifo_drain
av_audio_fifo_free
av_audio_fifo_peek
av_audio_fifo_peek_at
av_audio_fifo_read
av_audio_fifo_realloc
av_audio_fifo_reset
av_audio_fifo_size
av_audio_fifo_space
av_audio_fifo_write
av_base64_decode
av_base64_encode
av_basename
av_blowfish_alloc
av_blowfish_crypt
av_blowfish_crypt_ecb
av_blowfish_init
av_bmg_get
av_bprint_append_data
av_bprint_channel_layout
av_bprint_chars
av_bprint_clear
av_bprint_escape
av_bprint_finalize
av_bprint_get_buffer
av_bprint_init
av_bprint_init_for_buffer
av_bprint_strftime
av_bprintf
av_buffer_alloc
av_buffer_allocz
av_buffer_create
av_buffer_default_free
av_buffer_get_opaque
av_buffer_get_ref_count
av_buffer_is_writable
av_buffer_make_writable
av_buffer_pool_get
av_buffer_pool_init
av_buffer_pool_init2
av_buffer_pool_uninit
av_buffer_realloc
av_buffer_ref
av_buffer_unref
av_calloc
av_camellia_alloc
av_camellia_crypt
av_camellia_init
av_camellia_size
av_cast5_alloc
av_cast5_crypt
av_cast5_crypt2
av_cast5_init
av_cast5_size
av_channel_layout_extract_channel
av_chroma_location_name
av_cmp_i
av_color_primaries_name
av_color_range_name
av_color_space_name
av_color_transfer_name
av_compare_mod
av_compare_ts
av_cpu_count
av_crc
av_crc_get_table
av_crc_init
av_d2q
av_d2str
av_default_get_category
av_default_item_name
av_des_alloc
av_des_crypt
av_des_init
av_des_mac
av_dict_copy
av_dict_count
av_dict_free
av_dict_get
av_dict_get_string
av_dict_parse_string
av_dict_set
av_dict_set_int
av_dirname
av_display_matrix_flip
av_display_rotation_get
av_display_rotation_set
av_div_i
av_div_q
av_downmix_info_update_side_data
av_dynarray2_add
av_dynarray_add
av_dynarray_add_nofree
av_escape
av_expr_eval
av_expr_free
av_expr_parse
av_expr_parse_and_eval
av_fast_malloc
av_fast_mallocz
av_fast_realloc
av_fifo_alloc
av_fifo_alloc_array
av_fifo_drain
av_fifo_free
av_fifo_freep
av_fifo_generic_peek
av_fifo_generic_peek_at
av_fifo_generic_read
av_fifo_generic_write
av_fifo_grow
av_fifo_realloc2
av_fifo_reset
av_fifo_size
av_fifo_space
av_file_map
av_file_unmap
av_find_best_pix_fmt_of_2
av_find_info_tag
av_find_nearest_q_idx
av_fopen_utf8
av_force_cpu_flags
av_frame_alloc
av_frame_clone
av_frame_copy
av_frame_copy_props
av_frame_free
av_frame_get_best_effort_timestamp
av_frame_get_buffer
av_frame_get_channel_layout
av_frame_get_channels
av_frame_get_color_range
av_frame_get_colorspace
av_frame_get_decode_error_flags
av_frame_get_metadata
av_frame_get_pkt_duration
av_frame_get_pkt_pos
av_frame_get_pkt_size
av_frame_get_plane_buffer
av_frame_get_qp_table
av_frame_get_sample_rate
av_frame_get_side_data
av_frame_is_writable
av_frame_make_writable
av_frame_move_ref
av_frame_new_side_data
av_frame_ref
av_frame_remove_side_data
av_frame_set_best_effort_timestamp
av_frame_set_channel_layout
av_frame_set_channels
av_frame_set_color_range
av_frame_set_colorspace
av_frame_set_decode_error_flags
av_frame_set_metadata
av_frame_set_pkt_duration
av_frame_set_pkt_pos
av_frame_set_pkt_size
av_frame_set_qp_table
av_frame_set_sample_rate
av_frame_side_data_name
av_frame_unref
av_free
av_freep
av_gcd
av_get_alt_sample_fmt
av_get_bits
av_get_bits_per_pixel
av_get_bytes_per_sample
av_get_channel_description
av_get_channel_layout
av_get_channel_layout_channel_index
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_channel_name
av_get_colorspace_name
av_get_cpu_flags
av_get_default_channel_layout
av_get_known_color_name
av_get_media_type_string
av_get_packed_sample_fmt
av_get_padded_bits_per_pixel
av_get_picture_type_char
av_get_pix_fmt
av_get_pix_fmt_loss
av_get_pix_fmt_name
av_get_pix_fmt_string
av_get_planar_sample_fmt
av_get_random_seed
av_get_sample_fmt
av_get_sample_fmt_name
av_get_sample_fmt_string
av_get_standard_channel_layout
av_get_time_base_q
av_get_token
av_gettime
av_gettime_relative
av_gettime_relative_is_monotonic
av_hash_alloc
av_hash_final
av_hash_final_b64
av_hash_final_bin
av_hash_final_hex
av_hash_freep
av_hash_get_name
av_hash_get_size
av_hash_init
av_hash_names
av_hash_update
av_hmac_alloc
av_hmac_calc
av_hmac_final
av_hmac_free
av_hmac_init
av_hmac_update
av_hwdevice_ctx_alloc
av_hwdevice_ctx_create
av_hwdevice_ctx_init
av_hwdevice_get_hwframe_constraints
av_hwdevice_hwconfig_alloc
av_hwframe_constraints_free
av_hwframe_ctx_alloc
av_hwframe_ctx_init
av_hwframe_get_buffer
av_hwframe_transfer_data
av_hwframe_transfer_get_formats
av_i2int
av_image_alloc
av_image_check_sar
av_image_check_size
av_image_copy
av_image_copy_plane
av_image_copy_to_buffer
av_image_fill_arrays
av_image_fill_linesizes
av_image_fill_max_pixsteps
av_image_fill_pointers
av_image_get_buffer_size
av_image_get_linesize
av_int2i
av_int_list_length_for_size
av_lfg_init
av_log
av_log2
av_log2_16bit
av_log2_i
av_log_default_callback
av_log_format_line
av_log_format_line2
av_log_get_flags
av_log_get_level
av_log_set_callback
av_log_set_flags
av_log_set_level
av_lzo1x_decode
av_malloc
av_mallocz
av_mastering_display_metadata_alloc
av_mastering_display_metadata_create_side_data
av_match_list
av_match_name
av_max_alloc
av_md5_alloc
av_md5_final
av_md5_init
av_md5_size
av_md5_sum
av_md5_update
av_memcpy_backptr
av_memdup
av_mod_i
av_mul_i
av_mul_q
av_murmur3_alloc
av_murmur3_final
av_murmur3_init
av_murmur3_init_seeded
av_murmur3_update
av_nearer_q
av_opt_child_class_next
av_opt_child_next
av_opt_copy
av_opt_eval_double
av_opt_eval_flags
av_opt_eval_float
av_opt_eval_int
av_opt_eval_int64
av_opt_eval_q
av_opt_find
av_opt_find2
av_opt_flag_is_set
av_opt_free
av_opt_freep_ranges
av_opt_get
av_opt_get_channel_layout
av_opt_get_dict_val
av_opt_get_double
av_opt_get_image_size
av_opt_get_int
av_opt_get_key_value
av_opt_get_pixel_fmt
av_opt_get_q
av_opt_get_sample_fmt
av_opt_get_video_rate
av_opt_is_set_to_default
av_opt_is_set_to_default_by_name
av_opt_next
av_opt_ptr
av_opt_query_ranges
av_opt_query_ranges_default
av_opt_serialize
av_opt_set
av_opt_set_bin
av_opt_set_channel_layout
av_opt_set_defaults
av_opt_set_defaults2
av_opt_set_dict
av_opt_set_dict2
av_opt_set_dict_val
av_opt_set_double
av_opt_set_from_string
av_opt_set_image_size
av_opt_set_int
av_opt_set_pixel_fmt
av_opt_set_q
av_opt_set_sample_fmt
av_opt_set_video_rate
av_opt_show2
av_parse_color
av_parse_cpu_caps
av_parse_cpu_flags
av_parse_ratio
av_parse_time
av_parse_video_rate
av_parse_video_size
av_pix_fmt_count_planes
av_pix_fmt_desc_get
av_pix_fmt_desc_get_id
av_pix_fmt_desc_next
av_pix_fmt_get_chroma_sub_sample
av_pix_fmt_swap_endianness
av_pixelutils_get_sad_fn
av_q2intfloat
av_rc4_alloc
av_rc4_crypt
av_rc4_init
av_read_image_line
av_realloc
av_realloc_array
av_realloc_f
av_reallocp
av_reallocp_array
av_reduce
av_rescale
av_rescale_delta
av_rescale_q
av_rescale_q_rnd
av_rescale_rnd
av_ripemd_alloc
av_ripemd_final
av_ripemd_init
av_ripemd_size
av_ripemd_update
av_sample_fmt_is_planar
av_samples_alloc
av_samples_alloc_array_and_samples
av_samples_copy
av_samples_fill_arrays
av_samples_get_buffer_size
av_samples_set_silence
av_set_cpu_flags_mask
av_set_options_string
av_sha512_alloc
av_sha512_final
av_sha512_init
av_sha512_size
av_sha512_update
av_sha_alloc
av_sha_final
av_sha_init
av_sha_size
av_sha_update
av_shr_i
av_small_strptime
av_stereo3d_alloc
av_stereo3d_create_side_data
av_stereo3d_from_name
av_stereo3d_type_name
av_strcasecmp
av_strdup
av_strerror
av_stristart
av_stristr
av_strlcat
av_strlcatf
av_strlcpy
av_strncasecmp
av_strndup
av_strnstr
av_strstart
av_strtod
av_strtok
av_sub_i
av_sub_q
av_tea_alloc
av_tea_crypt
av_tea_init
av_tea_size
av_tempfile
av_thread_message_flush
av_thread_message_queue_alloc
av_thread_message_queue_free
av_thread_message_queue_recv
av_thread_message_queue_send
av_thread_message_queue_set_err_recv
av_thread_message_queue_set_err_send
av_thread_message_queue_set_free_func
av_timecode_adjust_ntsc_framenum2
av_timecode_check_frame_rate
av_timecode_get_smpte_from_framenum
av_timecode_init
av_timecode_init_from_string
av_timecode_make_mpeg_tc_string
av_timecode_make_smpte_tc_string
av_timecode_make_string
av_timegm
av_tree_destroy
av_tree_enumerate
av_tree_find
av_tree_insert
av_tree_node_alloc
av_tree_node_size
av_twofish_alloc
av_twofish_crypt
av_twofish_init
av_twofish_size
av_usleep
av_utf8_decode
av_util_ffversion
av_vbprintf
av_version_info
av_vlog
av_write_image_line
av_xtea_alloc
av_xtea_crypt
av_xtea_init
av_xtea_le_crypt
av_xtea_le_init
avpriv_alloc_fixed_dsp
avpriv_cga_font
avpriv_float_dsp_alloc
avpriv_frame_get_metadatap
avpriv_get_gamma_from_trc
avpriv_get_trc_function_from_trc
avpriv_init_lls
avpriv_open
avpriv_report_missing_feature
avpriv_request_sample
avpriv_scalarproduct_float_c
avpriv_set_systematic_pal2
avpriv_solve_lls
avpriv_tempfile
avpriv_vga16_font
avutil_configuration
avutil_license
avutil_version

Sections

.text
Size: 478KB - Virtual size: 478KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 89KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 419KB - Virtual size: 419KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/78
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/d3dcompiler_43.dll
.dll windows:6 windows x86 arch:x86

6ba7b0e4e74a8eea96dca4fffc88b859

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22-08-2007 22:31

Not After

25-08-2012 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:cf:3e:00:00:00:00:00:0f
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

07-12-2009 22:40

Not After

07-03-2011 22:40

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16-09-2006 01:04

Not After

15-09-2019 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:05:a2:30:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25-07-2008 19:01

Not After

25-07-2013 19:11

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:85D3-305C-5BCF,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

a0:dc:fd:f1:04:c6:f9:25:f4:de:ed:83:b3:1b:1c:9e:4a:d1:be:fb
Signer

Actual PE Digest

a0:dc:fd:f1:04:c6:f9:25:f4:de:ed:83:b3:1b:1c:9e:4a:d1:be:fb

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D3DCompiler_43.pdb

Imports

msvcrt

??1type_info@@UAE@XZ
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_amsg_exit
_initterm
_XcptFilter
_CxxThrowException
memset
memcpy
isxdigit
atof
setlocale
_strdup
_mbstrlen
modf
isalnum
_isnan
ceil
_finite
strrchr
_clearfp
_controlfp
_strnicmp
_fpclass
_purecall
strncmp
isspace
strstr
getenv
_stricmp
memmove
qsort
isalpha
toupper
atoi
isdigit
tolower
free
malloc
??2@YAPAXI@Z
??3@YAXPAX@Z
strchr
_vsnprintf
_errno
__CxxFrameHandler
floor
_CIfmod
_CItanh
_CItan
_CIsinh
_CIsin
_CIlog
_CIpow
_CIexp
_CIsqrt
_CIcosh
_CIcos
_CIatan2
_CIatan
_CIasin
_CIacos

gdi32

DeleteObject

kernel32

UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
RtlUnwind
UnmapViewOfFile
CloseHandle
DeleteCriticalSection
InitializeCriticalSection
VirtualFree
GetLastError
SetUnhandledExceptionFilter
WideCharToMultiByte
GetFullPathNameA
HeapCreate
OutputDebugStringA
LoadLibraryA
GetModuleHandleA
lstrcmpiA
TlsFree
TlsGetValue
HeapDestroy
TlsSetValue
InterlockedExchange
TlsAlloc
Sleep
InterlockedCompareExchange
FreeLibrary
GetSystemInfo
GetProcAddress
VirtualAlloc
GetProcessHeap
HeapFree
HeapAlloc
DisableThreadLibraryCalls
MultiByteToWideChar
GetVersion

Exports

Exports

D3DAssemble
D3DCompile
D3DCompressShaders
D3DCreateBlob
D3DDecompressShaders
D3DDisassemble
D3DDisassemble10Effect
D3DGetBlobPart
D3DGetDebugInfo
D3DGetInputAndOutputSignatureBlob
D3DGetInputSignatureBlob
D3DGetOutputSignatureBlob
D3DPreprocess
D3DReflect
D3DReturnFailure1
D3DStripShader
DebugSetMute

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/libmp3lame.dll
.dll windows:6 windows x86 arch:x86

b18b8ea67ad814366ff698b4bcce051e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapAlloc
IsProcessorFeaturePresent
GetLastError
HeapFree
EncodePointer
DecodePointer
ExitProcess
GetModuleHandleExW
GetProcAddress
MultiByteToWideChar
WideCharToMultiByte
EnterCriticalSection
LeaveCriticalSection
ReadFile
GetCommandLineA
GetCurrentThreadId
GetStdHandle
WriteFile
GetModuleFileNameW
GetProcessHeap
IsDebuggerPresent
RaiseException
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
SetLastError
SetFilePointerEx
DeleteCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
LoadLibraryExW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
GetFileType
ReadConsoleW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
OutputDebugStringW
GetStringTypeW
LCMapStringW
SetStdHandle
RtlUnwind
HeapSize
HeapReAlloc
WriteConsoleW
CloseHandle
CreateFileW

Exports

Exports

get_lame_os_bitness
get_lame_short_version
get_lame_url
get_lame_version
get_lame_version_numerical
get_lame_very_short_version
get_psy_version
hip_decode
hip_decode1
hip_decode1_headers
hip_decode1_headersB
hip_decode_exit
hip_decode_headers
hip_decode_init
hip_set_debugf
hip_set_errorf
hip_set_msgf
id3tag_add_v2
id3tag_genre_list
id3tag_init
id3tag_pad_v2
id3tag_set_album
id3tag_set_albumart
id3tag_set_artist
id3tag_set_comment
id3tag_set_comment_ucs2
id3tag_set_comment_utf16
id3tag_set_fieldvalue
id3tag_set_fieldvalue_ucs2
id3tag_set_fieldvalue_utf16
id3tag_set_genre
id3tag_set_pad
id3tag_set_textinfo_ucs2
id3tag_set_textinfo_utf16
id3tag_set_title
id3tag_set_track
id3tag_set_year
id3tag_space_v1
id3tag_v1_only
id3tag_v2_only
lame_bitrate_block_type_hist
lame_bitrate_hist
lame_bitrate_kbps
lame_bitrate_stereo_mode_hist
lame_block_type_hist
lame_close
lame_decode
lame_decode1
lame_decode1_headers
lame_decode1_headersB
lame_decode_exit
lame_decode_headers
lame_decode_init
lame_encode_buffer
lame_encode_buffer_float
lame_encode_buffer_ieee_double
lame_encode_buffer_ieee_float
lame_encode_buffer_int
lame_encode_buffer_interleaved
lame_encode_buffer_interleaved_ieee_double
lame_encode_buffer_interleaved_ieee_float
lame_encode_buffer_long
lame_encode_buffer_long2
lame_encode_flush
lame_encode_flush_nogap
lame_get_ATHlower
lame_get_ATHonly
lame_get_ATHshort
lame_get_ATHtype
lame_get_AudiophileGain
lame_get_PeakSample
lame_get_RadioGain
lame_get_VBR
lame_get_VBR_hard_min
lame_get_VBR_max_bitrate_kbps
lame_get_VBR_mean_bitrate_kbps
lame_get_VBR_min_bitrate_kbps
lame_get_VBR_q
lame_get_VBR_quality
lame_get_allow_diff_short
lame_get_analysis
lame_get_athaa_loudapprox
lame_get_athaa_sensitivity
lame_get_athaa_type
lame_get_bWriteVbrTag
lame_get_bitrate
lame_get_brate
lame_get_compression_ratio
lame_get_copyright
lame_get_cwlimit
lame_get_decode_on_the_fly
lame_get_decode_only
lame_get_disable_reservoir
lame_get_emphasis
lame_get_encoder_delay
lame_get_encoder_padding
lame_get_error_protection
lame_get_exp_nspsytune
lame_get_experimentalX
lame_get_experimentalY
lame_get_experimentalZ
lame_get_extension
lame_get_findReplayGain
lame_get_force_ms
lame_get_force_short_blocks
lame_get_frameNum
lame_get_framesize
lame_get_free_format
lame_get_highpassfreq
lame_get_highpasswidth
lame_get_id3v1_tag
lame_get_id3v2_tag
lame_get_in_samplerate
lame_get_interChRatio
lame_get_lametag_frame
lame_get_lowpassfreq
lame_get_lowpasswidth
lame_get_mf_samples_to_encode
lame_get_mode
lame_get_msfix
lame_get_noATH
lame_get_no_short_blocks
lame_get_noclipGainChange
lame_get_noclipScale
lame_get_nogap_currentindex
lame_get_nogap_total
lame_get_num_channels
lame_get_num_samples
lame_get_original
lame_get_out_samplerate
lame_get_padding_type
lame_get_quality
lame_get_quant_comp
lame_get_quant_comp_short
lame_get_samplerate
lame_get_scale
lame_get_scale_left
lame_get_scale_right
lame_get_size_mp3buffer
lame_get_strict_ISO
lame_get_totalframes
lame_get_useTemporal
lame_get_version
lame_get_write_id3tag_automatic
lame_init
lame_init_bitstream
lame_init_params
lame_mp3_tags_fid
lame_print_config
lame_print_internals
lame_set_ATHlower
lame_set_ATHonly
lame_set_ATHshort
lame_set_ATHtype
lame_set_VBR
lame_set_VBR_hard_min
lame_set_VBR_max_bitrate_kbps
lame_set_VBR_mean_bitrate_kbps
lame_set_VBR_min_bitrate_kbps
lame_set_VBR_q
lame_set_VBR_quality
lame_set_allow_diff_short
lame_set_analysis
lame_set_asm_optimizations
lame_set_athaa_loudapprox
lame_set_athaa_sensitivity
lame_set_athaa_type
lame_set_bWriteVbrTag
lame_set_brate
lame_set_compression_ratio
lame_set_copyright
lame_set_cwlimit
lame_set_debugf
lame_set_decode_on_the_fly
lame_set_decode_only
lame_set_disable_reservoir
lame_set_emphasis
lame_set_error_protection
lame_set_errorf
lame_set_exp_nspsytune
lame_set_experimentalX
lame_set_experimentalY
lame_set_experimentalZ
lame_set_extension
lame_set_findReplayGain
lame_set_force_ms
lame_set_force_short_blocks
lame_set_free_format
lame_set_highpassfreq
lame_set_highpasswidth
lame_set_in_samplerate
lame_set_interChRatio
lame_set_lowpassfreq
lame_set_lowpasswidth
lame_set_mode
lame_set_msfix
lame_set_msgf
lame_set_noATH
lame_set_no_short_blocks
lame_set_nogap_currentindex
lame_set_nogap_total
lame_set_num_channels
lame_set_num_samples
lame_set_original
lame_set_out_samplerate
lame_set_padding_type
lame_set_preset
lame_set_preset_expopts
lame_set_quality
lame_set_quant_comp
lame_set_quant_comp_short
lame_set_scale
lame_set_scale_left
lame_set_scale_right
lame_set_strict_ISO
lame_set_useTemporal
lame_set_write_id3tag_automatic
lame_stereo_mode_hist

Sections

.text
Size: 245KB - Virtual size: 244KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/openvr_api.dll
.dll windows:5 windows x86 arch:x86

29ab18869a8982f2290c2075e0ec121d

Code Sign

0c:e7:e0:e5:17:d8:46:fe:8f:e5:60:fc:1b:f0:30:39
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10-11-2006 00:00

Not After

10-11-2031 00:00

Subject

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

08:4c:af:4d:f4:99:14:1d:40:4b:71:99:aa:2c:21:31
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

25-09-2015 00:00

Not After

03-10-2018 12:00

Subject

CN=Valve,O=Valve,L=Bellevue,ST=WA,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

04:09:18:1b:5f:d5:bb:66:75:53:43:b5:6f:95:50:08
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22-10-2013 12:00

Not After

22-10-2028 12:00

Subject

CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:05:5a:af:ed:97:45:1b:04:95:5c:a9:12:d6:33:2b:59:64:36:14
Signer

Actual PE Digest

07:05:5a:af:ed:97:45:1b:04:95:5c:a9:12:d6:33:2b:59:64:36:14

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\buildslave\steamvr_rel_win32\build\src\openvr_api\Retailopenvr_api\win32\openvr_api.pdb

Imports

kernel32

GetModuleFileNameW
WideCharToMultiByte
FreeLibrary
GetProcAddress
LoadLibraryExA
GetEnvironmentVariableA
SetEnvironmentVariableA
GetLastError
RaiseException
EncodePointer
DecodePointer
RtlUnwind
GetCommandLineA
GetCurrentThreadId
ReadFile
GetFullPathNameW
GetCurrentDirectoryW
FindClose
FindFirstFileExW
GetDriveTypeW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
EnterCriticalSection
LeaveCriticalSection
HeapFree
HeapAlloc
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
HeapSize
SetLastError
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
IsDebuggerPresent
CloseHandle
GetConsoleMode
ReadConsoleW
SetFilePointerEx
WriteFile
GetConsoleCP
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
CreateFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
LoadLibraryExW
HeapReAlloc
SetStdHandle
FlushFileBuffers
WriteConsoleW
GetStringTypeW
GetTimeZoneInformation
SetEndOfFile
OutputDebugStringW

shell32

SHGetFolderPathW

Exports

Exports

LiquidVR
VRCompositorSystemInternal
VRControlPanel
VRDashboardManager
VROculusDirect
VRRenderModelsInternal
VRTrackedCameraInternal
VRVirtualDisplay
VR_GetGenericInterface
VR_GetInitToken
VR_GetStringForHmdError
VR_GetVRInitErrorAsEnglishDescription
VR_GetVRInitErrorAsSymbol
VR_InitInternal
VR_IsHmdPresent
VR_IsInterfaceVersionValid
VR_IsRuntimeInstalled
VR_RuntimePath
VR_ShutdownInternal

Sections

.text
Size: 182KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/qscl.dll
.dll windows:4 windows x86 arch:x86

ecb2bd0ba466152906c84a569890da38

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Projects\in_cvs\vbsp\qscl\commercial\release\qscl.pdb

Imports

msacm32

acmStreamOpen
acmStreamSize
acmStreamPrepareHeader
acmStreamConvert
acmStreamUnprepareHeader
acmStreamClose

kernel32

GetProcAddress
SetEndOfFile
ReadFile
FlushFileBuffers
CloseHandle
TlsFree
WaitForSingleObject
ReleaseMutex
CreateMutexA
CreateEventA
TlsAlloc
GetCurrentProcess
GetLastError
SetEvent
ResetEvent
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
RaiseException
HeapFree
ExitProcess
HeapAlloc
GetCurrentThreadId
GetCommandLineA
GetVersionExA
ExitThread
ResumeThread
CreateThread
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetCPInfo
SetLastError
TlsSetValue
TlsGetValue
CreateFileA
GetModuleHandleA
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
HeapSize
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
LoadLibraryA
SetFilePointer
GetLocaleInfoW
SetStdHandle

Exports

Exports

QsclCreateInstance

Sections

.text
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/swresample-gp-2.dll
.dll windows:4 windows x86 arch:x86

969da1b1d08618b0150477bffdd21ce2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

DeregisterEventSource
RegisterEventSourceA
ReportEventA

kernel32

DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleHandleA
GetProcAddress
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WriteFile

msvcrt

__setusermatherr
_amsg_exit
_errno
_exit
_fileno
_initterm
_iob
_lock
_setmode
_snprintf
_unlock
_vsnprintf
_wfopen
abort
calloc
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fread
free
fseek
ftell
fwrite
getenv
isalnum
isspace
isxdigit
localtime
malloc
memcmp
memcpy
memset
qsort
raise
realloc
sscanf
strchr
strcmp
strcpy
strerror
strlen
strncmp
strncpy
strtoul
time
vfprintf
wcsstr

user32

GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

avutil-gp-55

av_calloc
av_channel_layout_extract_channel
av_frame_get_buffer
av_free
av_freep
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_channel_layout_string
av_get_channel_name
av_get_cpu_flags
av_get_default_channel_layout
av_get_packed_sample_fmt
av_get_planar_sample_fmt
av_get_sample_fmt_name
av_log
av_malloc
av_mallocz
av_opt_set_defaults
av_opt_set_int
av_reduce
av_rescale
av_rescale_rnd
av_sample_fmt_is_planar

Exports

Exports

swr_alloc
swr_alloc_set_opts
swr_close
swr_config_frame
swr_convert
swr_convert_frame
swr_drop_output
swr_ffversion
swr_free
swr_get_class
swr_get_delay
swr_get_out_samples
swr_init
swr_inject_silence
swr_is_initialized
swr_next_pts
swr_set_channel_mapping
swr_set_compensation
swr_set_matrix
swresample_configuration
swresample_license
swresample_version

Sections

.text
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 636B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 205KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/78
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 512B - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/swscale-gp-4.dll
.dll windows:4 windows x86 arch:x86

82f657799fc6daf74e692329b87f9907

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

advapi32

DeregisterEventSource
RegisterEventSourceA
ReportEventA

kernel32

DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileType
GetLastError
GetModuleHandleA
GetProcAddress
GetStdHandle
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WriteFile

msvcrt

__setusermatherr
_amsg_exit
_errno
_exit
_fileno
_initterm
_iob
_lock
_setmode
_snprintf
_unlock
_vsnprintf
_wfopen
abort
calloc
fclose
feof
ferror
fflush
fgets
fopen
fprintf
fread
free
fseek
ftell
fwrite
getenv
isalnum
isspace
isxdigit
localtime
malloc
memcmp
memcpy
memmove
memset
qsort
raise
realloc
sscanf
strchr
strcmp
strcpy
strerror
strlen
strncmp
strncpy
strtoul
time
vfprintf
wcsstr

user32

GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

avutil-gp-55

av_free
av_freep
av_get_bits_per_pixel
av_get_cpu_flags
av_get_pix_fmt_name
av_image_alloc
av_log
av_malloc
av_mallocz
av_opt_get_int
av_opt_set_defaults
av_opt_set_int
av_pix_fmt_desc_get
av_pix_fmt_get_chroma_sub_sample
av_pix_fmt_swap_endianness

Exports

Exports

sws_addVec
sws_allocVec
sws_alloc_context
sws_alloc_set_opts
sws_cloneVec
sws_convVec
sws_convertPalette8ToPacked24
sws_convertPalette8ToPacked32
sws_freeContext
sws_freeFilter
sws_freeVec
sws_getCachedContext
sws_getCoefficients
sws_getColorspaceDetails
sws_getConstVec
sws_getContext
sws_getDefaultFilter
sws_getGaussianVec
sws_getIdentityVec
sws_get_class
sws_init_context
sws_isSupportedEndiannessConversion
sws_isSupportedInput
sws_isSupportedOutput
sws_normalizeVec
sws_printVec2
sws_scale
sws_scaleVec
sws_setColorspaceDetails
sws_shiftVec
sws_subVec
swscale_configuration
swscale_license
swscale_version

Sections

.text
Size: 546KB - Virtual size: 545KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rodata
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 39KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 1009B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/78
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/89
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
modules/tbb.dll
.dll windows:5 windows x86 arch:x86

820a6527e9e9983cd5eb03c107a7ed6f

Code Sign

1b:aa:c3:a2:00:01:00:00:79:76
Certificate

Issuer

CN=Intel External Basic Issuing CA 3A,O=Intel Corporation,C=US

Not Before

12-12-2011 18:40

Not After

26-11-2014 18:40

Subject

CN=Intel(R) Software Products

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

61:1e:80:b7:00:00:00:00:00:07
Certificate

Issuer

CN=Intel External Basic Policy CA,O=Intel Corporation,C=US

Not Before

15-05-2009 19:25

Not After

15-05-2015 19:35

Subject

CN=Intel External Basic Issuing CA 3A,O=Intel Corporation,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

05:b0:ff
Certificate

Issuer

OU=Equifax Secure Certificate Authority,O=Equifax,C=US

Not Before

16-02-2006 18:01

Not After

19-02-2016 18:01

Subject

CN=Intel External Basic Policy CA,O=Intel Corporation,C=US

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

73:90:45:d0:4a:d8:60:e1:6d:51:b7:09:e9:ec:35:92:52:50:a4:ce
Signer

Actual PE Digest

73:90:45:d0:4a:d8:60:e1:6d:51:b7:09:e9:ec:35:92:52:50:a4:ce

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\TEMP\tbb.2014_01_22T09_03_20_0600fxeowin18\build\fxeowin18vc10_32_mt_release\tbb.pdb

Imports

kernel32

SwitchToThread
CloseHandle
WaitForSingleObjectEx
SetEvent
GetProcAddress
GetModuleFileNameA
GetLastError
GetModuleHandleExA
FreeLibrary
LoadLibraryA
SetErrorMode
InterlockedIncrement
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
lstrcmpA
GetCurrentThreadId
GetEnvironmentVariableA
lstrcpynA
CreateSemaphoreW
ReleaseSemaphore
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
DeleteCriticalSection
CreateEventA
QueryPerformanceFrequency
ResetEvent
SetLastError
QueryPerformanceCounter
Sleep
ResumeThread
FormatMessageA
GetCurrentThread
GetProcessAffinityMask
GetCurrentProcess
GetNativeSystemInfo
CreateEventW
DecodePointer
EncodePointer
RtlUnwind
RaiseException
HeapAlloc
HeapFree
ExitThread
CreateThread
GetModuleHandleW
ExitProcess
GetCommandLineA
WriteFile
GetStdHandle
GetModuleFileNameW
GetLocaleInfoW
IsProcessorFeaturePresent
InterlockedDecrement
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
HeapDestroy
FatalAppExitA
SetConsoleCtrlHandler
InterlockedExchange
LoadLibraryW
SetHandleCount
GetFileType
GetStartupInfoW
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
HeapSize
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapReAlloc
WriteConsoleW
MultiByteToWideChar
SetFilePointer
SetStdHandle
CompareStringW
SetEnvironmentVariableA
LCMapStringW
GetStringTypeW
CreateFileW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale

Exports

Exports

??0concurrent_queue_base@internal@tbb@@IAE@I@Z
??0concurrent_queue_base_v3@internal@tbb@@IAE@I@Z
??0concurrent_queue_iterator_base@internal@tbb@@IAE@ABVconcurrent_queue_base@12@@Z
??0concurrent_queue_iterator_base_v3@internal@tbb@@IAE@ABVconcurrent_queue_base_v3@12@@Z
??0concurrent_queue_iterator_base_v3@internal@tbb@@IAE@ABVconcurrent_queue_base_v3@12@I@Z
??0pipeline@tbb@@QAE@XZ
??1captured_exception@tbb@@UAE@XZ
??1concurrent_queue_base@internal@tbb@@MAE@XZ
??1concurrent_queue_base_v3@internal@tbb@@MAE@XZ
??1concurrent_queue_iterator_base@internal@tbb@@IAE@XZ
??1concurrent_queue_iterator_base_v3@internal@tbb@@IAE@XZ
??1concurrent_vector_base_v3@internal@tbb@@IAE@XZ
??1filter@tbb@@UAE@XZ
??1pipeline@tbb@@UAE@XZ
??1task_group_context@tbb@@QAE@XZ
??_7pipeline@tbb@@6B@
?NFS_Allocate@internal@tbb@@YAPAXIIPAX@Z
?NFS_Free@internal@tbb@@YAXPAX@Z
?NFS_GetLineSize@internal@tbb@@YAIXZ
?acquire@scoped_lock@queuing_mutex@tbb@@QAEXAAV23@@Z
?acquire@scoped_lock@queuing_rw_mutex@tbb@@QAEXAAV23@_N@Z
?add_filter@pipeline@tbb@@QAEXAAVfilter@2@@Z
?advance@concurrent_queue_iterator_base@internal@tbb@@IAEXXZ
?advance@concurrent_queue_iterator_base_v3@internal@tbb@@IAEXXZ
?allocate@allocate_additional_child_of_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?allocate@allocate_child_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?allocate@allocate_continuation_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?allocate@allocate_root_proxy@internal@tbb@@SAAAVtask@3@I@Z
?allocate@allocate_root_with_context_proxy@internal@tbb@@QBEAAVtask@3@I@Z
?allocate_closure_v3@internal@tbb@@YAPAXI@Z
?allocate_via_handler_v3@internal@tbb@@YAPAXI@Z
?assertion_failure@tbb@@YAXPBDH00@Z
?assign@concurrent_queue_base_v3@internal@tbb@@IAEXABV123@@Z
?assign@concurrent_queue_iterator_base@internal@tbb@@IAEXABV123@@Z
?assign@concurrent_queue_iterator_base_v3@internal@tbb@@IAEXABV123@@Z
?call_itt_notify_v5@internal@tbb@@YAXHPAX@Z
?cancel_group_execution@task_group_context@tbb@@QAE_NXZ
?change_group@task@tbb@@QAEXAAVtask_group_context@2@@Z
?clear@captured_exception@tbb@@QAEXXZ
?clear@pipeline@tbb@@QAEXXZ
?deallocate_via_handler_v3@internal@tbb@@YAXPAX@Z
?default_num_threads@task_scheduler_init@tbb@@SAHXZ
?destroy@captured_exception@tbb@@UAEXXZ
?destroy@task@tbb@@QAEXAAV12@@Z
?destroy@task_base@internal@interface5@tbb@@SAXAAVtask@4@@Z
?detach@tbb_thread_v3@internal@tbb@@QAEXXZ
?downgrade_to_reader@scoped_lock@queuing_rw_mutex@tbb@@QAE_NXZ
?free@allocate_additional_child_of_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?free@allocate_child_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?free@allocate_continuation_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?free@allocate_root_proxy@internal@tbb@@SAXAAVtask@3@@Z
?free@allocate_root_with_context_proxy@internal@tbb@@QBEXAAVtask@3@@Z
?free_closure_v3@internal@tbb@@YAXPAX@Z
?get_initial_auto_partitioner_divisor@internal@tbb@@YAIXZ
?handle_perror@internal@tbb@@YAXHPBD@Z
?hardware_concurrency@tbb_thread_v3@internal@tbb@@SAIXZ
?init@task_group_context@tbb@@IAEXXZ
?initialize@task_scheduler_init@tbb@@QAEXH@Z
?initialize@task_scheduler_init@tbb@@QAEXHI@Z
?inject_token@pipeline@tbb@@AAEXAAVtask@2@@Z
?internal_abort@concurrent_queue_base_v3@internal@tbb@@IAEXXZ
?internal_acquire@scoped_lock@mutex@tbb@@AAEXAAV23@@Z
?internal_acquire@scoped_lock@recursive_mutex@tbb@@AAEXAAV23@@Z
?internal_acquire@scoped_lock@spin_mutex@tbb@@AAEXAAV23@@Z
?internal_acquire_reader@spin_rw_mutex@tbb@@CAXPAV12@@Z
?internal_acquire_reader@spin_rw_mutex_v3@tbb@@AAEXXZ
?internal_acquire_writer@spin_rw_mutex@tbb@@CA_NPAV12@@Z
?internal_acquire_writer@spin_rw_mutex_v3@tbb@@AAE_NXZ
?internal_assign@concurrent_vector_base@internal@tbb@@IAEXABV123@IP6AXPAXI@ZP6AX1PBXI@Z4@Z
?internal_assign@concurrent_vector_base_v3@internal@tbb@@IAEXABV123@IP6AXPAXI@ZP6AX1PBXI@Z4@Z
?internal_capacity@concurrent_vector_base@internal@tbb@@IBEIXZ
?internal_capacity@concurrent_vector_base_v3@internal@tbb@@IBEIXZ
?internal_clear@concurrent_vector_base@internal@tbb@@IAEXP6AXPAXI@Z_N@Z
?internal_clear@concurrent_vector_base_v3@internal@tbb@@IAEIP6AXPAXI@Z@Z
?internal_compact@concurrent_vector_base_v3@internal@tbb@@IAEPAXIPAXP6AX0I@ZP6AX0PBXI@Z@Z
?internal_condition_variable_notify_all@internal@interface5@tbb@@YAXAATcondvar_impl_t@123@@Z
?internal_condition_variable_notify_one@internal@interface5@tbb@@YAXAATcondvar_impl_t@123@@Z
?internal_condition_variable_wait@internal@interface5@tbb@@YA_NAATcondvar_impl_t@123@PAVmutex@3@PBVinterval_t@tick_count@3@@Z
?internal_construct@critical_section_v4@internal@tbb@@QAEXXZ
?internal_construct@mutex@tbb@@AAEXXZ
?internal_construct@queuing_mutex@tbb@@QAEXXZ
?internal_construct@queuing_rw_mutex@tbb@@QAEXXZ
?internal_construct@reader_writer_lock@interface5@tbb@@AAEXXZ
?internal_construct@recursive_mutex@tbb@@AAEXXZ
?internal_construct@scoped_lock@reader_writer_lock@interface5@tbb@@AAEXAAV234@@Z
?internal_construct@scoped_lock_read@reader_writer_lock@interface5@tbb@@AAEXAAV234@@Z
?internal_construct@spin_mutex@tbb@@QAEXXZ
?internal_construct@spin_rw_mutex_v3@tbb@@AAEXXZ
?internal_copy@concurrent_vector_base@internal@tbb@@IAEXABV123@IP6AXPAXPBXI@Z@Z
?internal_copy@concurrent_vector_base_v3@internal@tbb@@IAEXABV123@IP6AXPAXPBXI@Z@Z
?internal_current_slot@task_arena_base@internal@interface7@tbb@@KAHXZ
?internal_decrement_ref_count@task@tbb@@AAEHXZ
?internal_destroy@mutex@tbb@@AAEXXZ
?internal_destroy@reader_writer_lock@interface5@tbb@@AAEXXZ
?internal_destroy@recursive_mutex@tbb@@AAEXXZ
?internal_destroy@scoped_lock@reader_writer_lock@interface5@tbb@@AAEXXZ
?internal_destroy@scoped_lock_read@reader_writer_lock@interface5@tbb@@AAEXXZ
?internal_destroy_condition_variable@internal@interface5@tbb@@YAXAATcondvar_impl_t@123@@Z
?internal_downgrade@spin_rw_mutex@tbb@@CAXPAV12@@Z
?internal_downgrade@spin_rw_mutex_v3@tbb@@AAEXXZ
?internal_empty@concurrent_queue_base_v3@internal@tbb@@IBE_NXZ
?internal_enqueue@task_arena_base@internal@interface7@tbb@@IBEXAAVtask@4@H@Z
?internal_execute@task_arena_base@internal@interface7@tbb@@IBEXAAVdelegate_base@234@@Z
?internal_finish_clear@concurrent_queue_base_v3@internal@tbb@@IAEXXZ
?internal_grow_by@concurrent_vector_base@internal@tbb@@IAEIIIP6AXPAXI@Z@Z
?internal_grow_by@concurrent_vector_base_v3@internal@tbb@@IAEIIIP6AXPAXPBXI@Z1@Z
?internal_grow_predicate@hash_map_segment_base@internal@tbb@@QBE_NXZ
?internal_grow_to_at_least@concurrent_vector_base@internal@tbb@@IAEXIIP6AXPAXI@Z@Z
?internal_grow_to_at_least@concurrent_vector_base_v3@internal@tbb@@IAEXIIP6AXPAXPBXI@Z1@Z
?internal_grow_to_at_least_with_result@concurrent_vector_base_v3@internal@tbb@@IAEIIIP6AXPAXPBXI@Z1@Z
?internal_initialize@task_arena_base@internal@interface7@tbb@@IAEXXZ
?internal_initialize_condition_variable@internal@interface5@tbb@@YAXAATcondvar_impl_t@123@@Z
?internal_itt_releasing@spin_rw_mutex@tbb@@CAXPAV12@@Z
?internal_pop@concurrent_queue_base@internal@tbb@@IAEXPAX@Z
?internal_pop@concurrent_queue_base_v3@internal@tbb@@IAEXPAX@Z
?internal_pop_if_present@concurrent_queue_base@internal@tbb@@IAE_NPAX@Z
?internal_pop_if_present@concurrent_queue_base_v3@internal@tbb@@IAE_NPAX@Z
?internal_push@concurrent_queue_base@internal@tbb@@IAEXPBX@Z
?internal_push@concurrent_queue_base_v3@internal@tbb@@IAEXPBX@Z
?internal_push_back@concurrent_vector_base@internal@tbb@@IAEPAXIAAI@Z
?internal_push_back@concurrent_vector_base_v3@internal@tbb@@IAEPAXIAAI@Z
?internal_push_if_not_full@concurrent_queue_base@internal@tbb@@IAE_NPBX@Z
?internal_push_if_not_full@concurrent_queue_base_v3@internal@tbb@@IAE_NPBX@Z
?internal_release@scoped_lock@mutex@tbb@@AAEXXZ
?internal_release@scoped_lock@recursive_mutex@tbb@@AAEXXZ
?internal_release@scoped_lock@spin_mutex@tbb@@AAEXXZ
?internal_release_reader@spin_rw_mutex@tbb@@CAXPAV12@@Z
?internal_release_reader@spin_rw_mutex_v3@tbb@@AAEXXZ
?internal_release_writer@spin_rw_mutex@tbb@@CAXPAV12@@Z
?internal_release_writer@spin_rw_mutex_v3@tbb@@AAEXXZ
?internal_reserve@concurrent_vector_base@internal@tbb@@IAEXIII@Z
?internal_reserve@concurrent_vector_base_v3@internal@tbb@@IAEXIII@Z
?internal_resize@concurrent_vector_base_v3@internal@tbb@@IAEXIIIPBXP6AXPAXI@ZP6AX10I@Z@Z
?internal_set_capacity@concurrent_queue_base@internal@tbb@@IAEXHI@Z
?internal_set_capacity@concurrent_queue_base_v3@internal@tbb@@IAEXHI@Z
?internal_set_ref_count@task@tbb@@AAEXH@Z
?internal_size@concurrent_queue_base@internal@tbb@@IBEHXZ
?internal_size@concurrent_queue_base_v3@internal@tbb@@IBEHXZ
?internal_start@tbb_thread_v3@internal@tbb@@AAEXP6GIPAX@Z0@Z
?internal_swap@concurrent_vector_base_v3@internal@tbb@@IAEXAAV123@@Z
?internal_terminate@task_arena_base@internal@interface7@tbb@@IAEXXZ
?internal_throw_exception@concurrent_queue_base_v3@internal@tbb@@IBEXXZ
?internal_throw_exception@concurrent_vector_base_v3@internal@tbb@@IBEXI@Z
?internal_try_acquire@scoped_lock@mutex@tbb@@AAE_NAAV23@@Z
?internal_try_acquire@scoped_lock@recursive_mutex@tbb@@AAE_NAAV23@@Z
?internal_try_acquire@scoped_lock@spin_mutex@tbb@@AAE_NAAV23@@Z
?internal_try_acquire_reader@spin_rw_mutex@tbb@@CA_NPAV12@@Z
?internal_try_acquire_reader@spin_rw_mutex_v3@tbb@@AAE_NXZ
?internal_try_acquire_writer@spin_rw_mutex@tbb@@CA_NPAV12@@Z
?internal_try_acquire_writer@spin_rw_mutex_v3@tbb@@AAE_NXZ
?internal_upgrade@spin_rw_mutex@tbb@@CA_NPAV12@@Z
?internal_upgrade@spin_rw_mutex_v3@tbb@@AAE_NXZ
?internal_wait@task_arena_base@internal@interface7@tbb@@IBEXXZ
?is_group_execution_cancelled@task_group_context@tbb@@QBE_NXZ
?is_malloc_used_v3@internal@tbb@@YA_NXZ
?is_owned_by_current_thread@task@tbb@@QBE_NXZ
?itt_load_pointer_v3@internal@tbb@@YAPAXPBX@Z
?itt_load_pointer_with_acquire_v3@internal@tbb@@YAPAXPBX@Z
?itt_set_sync_name_v3@internal@tbb@@YAXPAXPB_W@Z
?itt_store_pointer_with_release_v3@internal@tbb@@YAXPAX0@Z
?join@tbb_thread_v3@internal@tbb@@QAEXXZ
?lock@reader_writer_lock@interface5@tbb@@QAEXXZ
?lock_read@reader_writer_lock@interface5@tbb@@QAEXXZ
?move@captured_exception@tbb@@UAEPAV12@XZ
?move_v3@internal@tbb@@YAXAAVtbb_thread_v3@12@0@Z
?name@captured_exception@tbb@@UBEPBDXZ
?note_affinity@task@tbb@@UAEXG@Z
?observe@task_scheduler_observer_v3@internal@tbb@@QAEX_N@Z
?priority@task_group_context@tbb@@QBE?AW4priority_t@2@XZ
?process_item@thread_bound_filter@tbb@@QAE?AW4result_type@12@XZ
?register_pending_exception@task_group_context@tbb@@QAEXXZ
?release@scoped_lock@queuing_mutex@tbb@@QAEXXZ
?release@scoped_lock@queuing_rw_mutex@tbb@@QAEXXZ
?reset@task_group_context@tbb@@QAEXXZ
?resize@affinity_partitioner_base_v3@internal@tbb@@AAEXI@Z
?run@pipeline@tbb@@QAEXI@Z
?run@pipeline@tbb@@QAEXIAAVtask_group_context@2@@Z
?runtime_warning@internal@tbb@@YAXPBDZZ
?self@task@tbb@@SAAAV12@XZ
?set@captured_exception@tbb@@QAEXPBD0@Z
?set_assertion_handler@tbb@@YAP6AXPBDH00@ZP6AX0H00@Z@Z
?set_end_of_input@filter@tbb@@IAEXXZ
?set_priority@task_group_context@tbb@@QAEXW4priority_t@2@@Z
?spawn_and_wait_for_all@task@tbb@@QAEXAAVtask_list@2@@Z
?terminate@task_scheduler_init@tbb@@QAEXXZ
?thread_get_id_v3@internal@tbb@@YA?AVid@tbb_thread_v3@12@XZ
?thread_sleep_v3@internal@tbb@@YAXABVinterval_t@tick_count@2@@Z
?thread_yield_v3@internal@tbb@@YAXXZ
?throw_bad_last_alloc_exception_v4@internal@tbb@@YAXXZ
?throw_exception_v4@internal@tbb@@YAXW4exception_id@12@@Z
?try_acquire@scoped_lock@queuing_mutex@tbb@@QAE_NAAV23@@Z
?try_acquire@scoped_lock@queuing_rw_mutex@tbb@@QAE_NAAV23@_N@Z
?try_lock@reader_writer_lock@interface5@tbb@@QAE_NXZ
?try_lock_read@reader_writer_lock@interface5@tbb@@QAE_NXZ
?try_process_item@thread_bound_filter@tbb@@QAE?AW4result_type@12@XZ
?unlock@reader_writer_lock@interface5@tbb@@QAEXXZ
?upgrade_to_writer@scoped_lock@queuing_rw_mutex@tbb@@QAE_NXZ
?what@bad_last_alloc@tbb@@UBEPBDXZ
?what@captured_exception@tbb@@UBEPBDXZ
?what@improper_lock@tbb@@UBEPBDXZ
?what@invalid_multiple_scheduling@tbb@@UBEPBDXZ
?what@missing_wait@tbb@@UBEPBDXZ
?what@user_abort@tbb@@UBEPBDXZ
TBB_runtime_interface_version
__TBB_machine_cmpswp8
__TBB_machine_fetchadd8
__TBB_machine_fetchstore8
__TBB_machine_is_in_transaction
__TBB_machine_load8
__TBB_machine_store8
__TBB_machine_try_lock_elided
__TBB_machine_trylockbyte
__TBB_machine_unlock_elided

Sections

.text
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
popup.exe
.exe windows:5 windows x86 arch:x86

8fa76cd4b689eade95f519aa445340eb

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21-12-2012 00:00

Not After

30-12-2020 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18-10-2012 00:00

Not After

29-12-2020 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

56:0c:3f:bc:2b:0b:0b:ce:a6:a2:32:69:07:bb:8a:59
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

14-08-2017 00:00

Not After

14-08-2018 23:59

Subject

CN=GRETECH,OU=GRETECH,O=GRETECH,L=Shibuya,ST=Tokyo,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10-12-2013 00:00

Not After

09-12-2023 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

63:13:d3:f2:d4:96:c5:f8:a3:79:88:1c:44:fc:75:9c:25:d4:87:70
Signer

Actual PE Digest

63:13:d3:f2:d4:96:c5:f8:a3:79:88:1c:44:fc:75:9c:25:d4:87:70

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\SVN_Repo\FinishPromotion\FinishPromotionWin32\Release\popup.pdb

Imports

wininet

InternetConnectA
InternetReadFile
HttpQueryInfoW
HttpOpenRequestA
InternetAttemptConnect
HttpAddRequestHeadersA
HttpSendRequestA
InternetOpenA
InternetCloseHandle
InternetCrackUrlW

kernel32

LockResource
SizeofResource
FindResourceW
FindResourceExW
CloseHandle
DecodePointer
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
CreateMutexW
ReleaseMutex
CreateProcessW
InterlockedIncrement
InterlockedDecrement
Sleep
ReadFile
LoadResource
CreateFileW
FlushFileBuffers
ReadConsoleW
WriteConsoleW
SetStdHandle
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LoadLibraryExW
GetOEMCP
GetACP
IsValidCodePage
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
WideCharToMultiByte
MultiByteToWideChar
QueryPerformanceCounter
GetFileType
GetModuleFileNameW
WriteFile
GetStdHandle
GetCurrentThreadId
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetModuleHandleExW
ExitProcess
LCMapStringW
GetProcAddress
GetModuleHandleW
IsDebuggerPresent
OutputDebugStringW
EnterCriticalSection
LeaveCriticalSection
EncodePointer
GetStringTypeW
IsProcessorFeaturePresent
GetCommandLineW
RtlUnwind
GetCPInfo

user32

PeekMessageW
SetWindowLongW
SendMessageW
MoveWindow
UpdateWindow
SetPropW
DispatchMessageW
RemovePropW
CallWindowProcW
DialogBoxParamW
EndDialog
ShowWindow
GetClientRect
GetSystemMetrics
GetPropW
FindWindowExW
SetWindowPos

advapi32

RegCreateKeyW
RegSetValueExA
RegQueryValueExW
RegCloseKey
RegOpenKeyExW

shell32

ShellExecuteW

ole32

OleCreate
OleSetContainedObject
CoInitialize

oleaut32

VariantClear
VariantInit
SysAllocString
SysFreeString
SysAllocStringLen

urlmon

UrlMkGetSessionOption

Sections

.text
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
setting.ini

Sharing

General

Malware Config

Signatures

Files

4ea4df5d94204fc550be1874e1b77ea7

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

4f:58:fc:05:42:6c:c4:b6:5d:bc:0c:2c:2e:3a:f3:04Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

c8:a8:31:07:21:7e:2e:f7:bb:0a:c9:15:c0:18:73:bb:38:1d:d0:c4Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 128KB

.ndata Size: - Virtual size: 704KB

.rsrc Size: 433KB - Virtual size: 433KB

ea3c1692e1d3e9bbcc595e0cc838ebcc

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

4f:58:fc:05:42:6c:c4:b6:5d:bc:0c:2c:2e:3a:f3:04Certificate

Extended Key Usages

Key Usages

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2aCertificate

Extended Key Usages

Key Usages

0b:54:20:b0:76:0a:9e:3d:f4:7b:82:43:3f:6e:9d:df:23:ff:9f:91Signer

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

winmm

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

urlmon

gdiplus

crypt32

wininet

ws2_32

iphlpapi

imm32

rpcrt4

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

4f:58:fc:05:42:6c:c4:b6:5d:bc:0c:2c:2e:3a:f3:04
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

c8:a8:31:07:21:7e:2e:f7:bb:0a:c9:15:c0:18:73:bb:38:1d:d0:c4
Signer

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 128KB

.ndata
Size: - Virtual size: 704KB

.rsrc
Size: 433KB - Virtual size: 433KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

4f:58:fc:05:42:6c:c4:b6:5d:bc:0c:2c:2e:3a:f3:04
Certificate

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

0b:54:20:b0:76:0a:9e:3d:f4:7b:82:43:3f:6e:9d:df:23:ff:9f:91
Signer

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 1.5MB - Virtual size: 1.5MB

.data
Size: 120KB - Virtual size: 226KB

.GOMSH
Size: 512B - Virtual size: 12B

.rsrc
Size: 4.2MB - Virtual size: 4.2MB

.reloc
Size: 501KB - Virtual size: 501KB

.text
Size: 1024B - Virtual size: 628B

.rdata
Size: 512B - Virtual size: 439B

.data
Size: 512B - Virtual size: 204B

.reloc
Size: 512B - Virtual size: 210B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 3KB - Virtual size: 21KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 998B

.data
Size: - Virtual size: 12B

.reloc
Size: 512B - Virtual size: 300B

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 851B

.data
Size: 512B - Virtual size: 120B

.reloc
Size: 1024B - Virtual size: 610B