winamp5666_lite_en-us[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

winamp5666_lite_en-us.exe
Size

4.0MB
MD5

59b98b8faa4732278cb34b95783d7d61
SHA1

6427a2467a30419a44eb10f945f4dce1d893b766
SHA256

c5173ddd736c56bbd1daf1a4929cca10229fcf6366afc0445190516030d7a101
SHA512

9cddb7a958025c4504ac2434d95820763ee4f1bf38afcaca2ef521cee50d5e677a615c495feb100eec38ec556efdf6adebcb27b0dc7924169191edd710c5794d
SSDEEP

98304:57ljbF2K5K0BR8XPknaDFkqKjr08Aw8DcI8BzO:PFc0bOkq2r08ApDcI8BzO

Score

3^/10

Malware Config

Signatures

Unsigned PE 55 IoCs

Checks for missing Authenticode signature.

resource
unpack001/$PLUGINSDIR/Dialer.dll
unpack001/$PLUGINSDIR/KillProcDLL.dll
unpack001/$PLUGINSDIR/LangDLL.dll
unpack001/$PLUGINSDIR/NSISdl.dll
unpack001/$PLUGINSDIR/ShellDispatch.dll
unpack001/$PLUGINSDIR/System.dll
unpack001/$PLUGINSDIR/execDos.dll
unpack001/$PLUGINSDIR/nsDialogs.dll
unpack001/$PLUGINSDIR/nsExec.dll
unpack001/$PLUGINSDIR/nsis_winamp.dll
unpack001/Plugins/gen_crasher.dll
unpack001/Plugins/gen_hotkeys.dll
unpack001/Plugins/gen_jumpex.dll
unpack001/Plugins/gen_tray.dll
unpack001/Plugins/in_cdda.dll
unpack001/Plugins/in_flac.dll
unpack001/Plugins/in_midi.dll
unpack001/Plugins/in_mod.dll
unpack001/Plugins/in_mp3.dll
unpack001/Plugins/in_mp4.dll
unpack001/Plugins/in_vorbis.dll
unpack001/Plugins/in_wave.dll
unpack001/Plugins/in_wm.dll
unpack001/Plugins/out_disk.dll
unpack001/Plugins/out_ds.dll
unpack001/Plugins/out_wave.dll
unpack001/Plugins/read_file.dll
unpack001/Plugins/reporter.exe
unpack001/Plugins/vis_nsfs.dll
unpack001/System/UnicodeTaskbarFix.w5s
unpack001/System/aacdec.w5s
unpack001/System/alac.w5s
unpack001/System/albumart.w5s
unpack001/System/bmp.w5s
unpack001/System/dlmgr.w5s
unpack001/System/gif.w5s
unpack001/System/gracenote.w5s
unpack001/System/jnetlib.w5s
unpack001/System/jpeg.w5s
unpack001/System/playlist.w5s
unpack001/System/png.w5s
unpack001/System/tagz.w5s
unpack001/System/vlb.w5s
unpack001/System/xml.w5s
unpack001/System/xspf.w5s
unpack001/elevatorps.dll
unpack001/jnetlib.dll
unpack001/libFLAC.dll
unpack001/libmp4v2.dll
unpack001/libsndfile.dll
unpack001/nde.dll
unpack001/nsutil.dll
unpack001/nxlite.dll
unpack001/tataki.dll
unpack001/zlib.dll

Files

winamp5666_lite_en-us.exe
.exe windows:5 windows x86 arch:x86

32f3282581436269b3a75b6675fe3e08

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

07
Certificate

Issuer

CN=America Online Root Certification Authority 1,O=America Online Inc.,C=US

Not Before

04/06/2004, 17:26

Not After

04/06/2029, 17:26

Subject

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5a:a8:c9:c3:87:71:9f:49:a1:6a:f2:40:65:56:55:50
Certificate

Issuer

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Not Before

15/03/2011, 18:25

Not After

14/03/2016, 18:25

Subject

CN=Nullsoft Inc.,OU=Winamp,O=Nullsoft Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

f9:c9:48:f0:54:fa:28:8a:79:4e:2c:80:b6:b7:87:ae:c0:1f:10:af
Signer

Actual PE Digest

f9:c9:48:f0:54:fa:28:8a:79:4e:2c:80:b6:b7:87:ae:c0:1f:10:af

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileTime
CompareFileTime
SearchPathW
GetShortPathNameW
GetFullPathNameW
MoveFileW
SetCurrentDirectoryW
GetFileAttributesW
GetLastError
CreateDirectoryW
SetFileAttributesW
Sleep
GetTickCount
CreateFileW
GetFileSize
GetModuleFileNameW
GetCurrentProcess
CopyFileW
ExitProcess
GetWindowsDirectoryW
GetTempPathW
GetCommandLineW
SetErrorMode
CloseHandle
lstrlenW
lstrcpynW
GetDiskFreeSpaceW
GlobalUnlock
GlobalLock
CreateThread
LoadLibraryW
CreateProcessW
lstrcmpiA
GetTempFileNameW
lstrcatW
GetProcAddress
LoadLibraryA
GetModuleHandleA
OpenProcess
lstrcpyW
GetVersionExW
GetSystemDirectoryW
GetVersion
lstrcpyA
RemoveDirectoryW
lstrcmpA
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GlobalFree
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
WideCharToMultiByte
lstrlenA
MulDiv
WriteFile
ReadFile
MultiByteToWideChar
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
lstrcpynA

user32

GetAsyncKeyState
IsDlgButtonChecked
ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
LoadBitmapW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
IsWindowEnabled
SetWindowPos
DialogBoxParamW
CheckDlgButton
CreateWindowExW
SystemParametersInfoW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA
CharUpperW
CharPrevW
wvsprintfW
DispatchMessageW
PeekMessageW
wsprintfA
DestroyWindow
CreateDialogParamW
SetTimer
SetWindowTextW
PostQuitMessage
SetForegroundWindow
ShowWindow
wsprintfW
SendMessageTimeoutW
LoadCursorW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
GetClassInfoW
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongW
LoadImageW
GetDC
EnableWindow
InvalidateRect
SendMessageW
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
FindWindowExW

gdi32

SetBkColor
GetDeviceCaps
DeleteObject
CreateBrushIndirect
CreateFontIndirectW
SetBkMode
SetTextColor
SelectObject

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHFileOperationW
SHGetSpecialFolderLocation

advapi32

RegEnumKeyW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW
RegEnumValueW

comctl32

ImageList_AddMasked
ImageList_Destroy
ord17
ImageList_Create

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 415KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 1.8MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/Dialer.dll
.dll windows:5 windows x86 arch:x86

08b0635362e7aeb50569ca1a61d5a13f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
LoadLibraryW
FreeLibrary
lstrcpynW
GlobalAlloc

Exports

Exports

AttemptConnect
AutodialHangup
AutodialOnline
AutodialUnattended
GetConnectedState

Sections

.text
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 551B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 210B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/KillProcDLL.dll
.dll windows:5 windows x86 arch:x86

546198d07fec5699a0cbb9e36bbd921c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathFindFileNameW
StrToIntExW

kernel32

FreeLibrary
CloseHandle
GetProcAddress
HeapAlloc
HeapFree
GetProcessHeap
GlobalAlloc
GetVersionExW
lstrcpynW
GlobalFree
lstrcpyW
CompareStringW
QueryFullProcessImageNameW
OpenProcess
LoadLibraryW
TerminateProcess

user32

wsprintfW

Exports

Exports

KillProc
KillProcEx
KillProcess_KillByName

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 881B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 182B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/LangDLL.dll
.dll windows:5 windows x86 arch:x86

e981c0ab92cb1f191bb5e23392e14796

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
lstrlenW
GlobalAlloc
lstrcmpW
GetModuleHandleW
MulDiv
lstrcpyW
lstrcpynW

user32

SetWindowTextW
SetDlgItemTextW
EndDialog
SendDlgItemMessageW
DialogBoxParamW
LoadIconW
SendMessageW
ShowWindow
GetDC

gdi32

CreateFontIndirectW
GetDeviceCaps
DeleteObject

Exports

Exports

LangDialog

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 729B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 352B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 350B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/NSISdl.dll
.dll windows:5 windows x86 arch:x86

6b9d096578bad49648d82fb5a245a197

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcmpiA
lstrlenA
lstrcpynA
lstrcatA
GlobalAlloc
GlobalFree
MulDiv
GetTickCount
lstrcpyA
Sleep
WriteFile
CreateFileA
lstrcpyW
lstrcpynW
WideCharToMultiByte
MultiByteToWideChar
CreateThread
WaitForSingleObject
DeleteFileA
CloseHandle
IsProcessorFeaturePresent

user32

GetWindowLongW
CreateWindowExW
GetWindowRect
GetClientRect
ShowWindow
IsWindowVisible
SendMessageW
GetDlgItem
FindWindowExW
SetWindowTextA
SetDlgItemTextA
CharPrevA
SetWindowLongW
RegisterWindowMessageW
EnableWindow
DestroyWindow
CallWindowProcW
wsprintfA
GetFocus

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

ws2_32

inet_addr
connect
__WSAFDIsSet
select
recv
WSAGetLastError
send
closesocket
shutdown
ioctlsocket
htons
socket
WSACleanup
WSAStartup
gethostbyname

Exports

Exports

download
download_quiet

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 890B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ShellDispatch.dll
.dll windows:5 windows x86 arch:x86

5ae92ada6c4be13d1079861e090e5f37

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

ord169
StrToIntExW
ord176

kernel32

GlobalAlloc
TlsFree
TlsAlloc
LocalFree
ExitProcess
TlsGetValue
TlsSetValue
GlobalFree

user32

wsprintfW

shell32

CommandLineToArgvW

ole32

CoInitializeEx
CoUninitialize
CoCreateInstance

oleaut32

SysAllocString
VariantInit
VariantClear

Exports

Exports

AddRef
GetInterface
Release
RunDll_ShellExecuteW
ShellExecute

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 922B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 224B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/System.dll
.dll windows:5 windows x86 arch:x86

039bcbc605477e8e87ec550c2e60e748

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
GlobalFree
GlobalSize
GetLastError
lstrcpyW
lstrcpynW
GetProcAddress
WideCharToMultiByte
lstrcatW
lstrlenW
lstrcmpiW
LoadLibraryW
GetModuleHandleW
MultiByteToWideChar
VirtualAlloc
VirtualProtect
FreeLibrary

user32

wsprintfW

ole32

CLSIDFromString
StringFromGUID2

Exports

Exports

Alloc
Call
Copy
Free
Get
Int64Op
Store
StrAlloc

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 963B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 588B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/execDos.dll
.dll windows:5 windows x86 arch:x86

a5d239ed12c9442d63c73cb9ff7cad0e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
Sleep
lstrcatW
lstrcmpiW
TerminateProcess
ReadFile
GetExitCodeProcess
PeekNamedPipe
CreateFileW
FlushFileBuffers
WriteFile
lstrlenW
CloseHandle
CreateProcessW
DuplicateHandle
GetCurrentProcess
CreatePipe
GetProcAddress
GetModuleHandleW
GlobalAlloc
GetExitCodeThread
WaitForSingleObject
CreateThread
lstrcpyW
lstrcpynW

user32

wsprintfW
GetClassNameW
GetDlgItem
FindWindowExW
SendMessageW

Exports

Exports

exec
isdone
wait

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/modern-header.bmp
$PLUGINSDIR/modern-wizard.bmp
$PLUGINSDIR/nsDialogs.dll
.dll windows:5 windows x86 arch:x86

9ea5bdc8c90dfcffe309465c26c89758

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAlloc
MulDiv
lstrlenW
HeapFree
GetProcessHeap
lstrcmpiW
HeapReAlloc
lstrcpynW
GetFileAttributesW
lstrcpyW
GetCurrentDirectoryW
SetCurrentDirectoryW
HeapAlloc
GlobalFree

user32

LoadCursorW
RemovePropW
DrawFocusRect
GetPropW
DrawTextW
GetWindowTextW
GetDlgItem
SetWindowLongW
SetWindowPos
CreateDialogParamW
MapWindowPoints
GetWindowRect
SetCursor
CreateWindowExW
IsWindow
SetTimer
KillTimer
DispatchMessageW
TranslateMessage
GetMessageW
IsDialogMessageW
ShowWindow
wsprintfW
GetClientRect
CharPrevW
CallWindowProcW
SetPropW
DestroyWindow
MapDialogRect
CharNextW
SendMessageW
GetWindowLongW

gdi32

SetTextColor

shell32

SHGetPathFromIDListW
SHBrowseForFolderW

comdlg32

GetSaveFileNameW
CommDlgExtendedError
GetOpenFileNameW

ole32

CoTaskMemFree

Exports

Exports

Create
CreateControl
CreateItem
CreateTimer
GetUserData
KillTimer
OnBack
OnChange
OnClick
OnNotify
SelectFileDialog
SelectFolderDialog
SetRTL
SetUserData
Show

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 48B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 590B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/nsExec.dll
.dll windows:5 windows x86 arch:x86

8700d0ebbb41c81ea52718af1ab70a93

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

lstrcpyW
MultiByteToWideChar
lstrlenA
lstrcmpiW
lstrlenW
ExitProcess
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessW
lstrcpynW
GetCommandLineW
Sleep
TerminateProcess
GlobalReAlloc
GlobalUnlock
GlobalSize
ReadFile
GetModuleHandleW
GetTickCount
GetStartupInfoW
CreatePipe
GetVersionExW
GlobalLock
DeleteFileW
lstrcatW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
CreateFileW
CopyFileW
GetTempFileNameW
GlobalFree
GlobalAlloc
GetModuleFileNameW
GetProcAddress
PeekNamedPipe
GetCurrentProcess

user32

CharPrevW
CharNextW
SendMessageW
FindWindowExW
wsprintfW

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

Exec
ExecToLog
ExecToStack

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 454B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/nsis_winamp.dll
.dll windows:4 windows x86 arch:x86

a88d5dd1652a6846cfc944c29f1e3538

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\nullsoft\nsis_winamp\Release\nsis_winamp.pdb

Imports

shlwapi

PathCanonicalizeW
PathCombineW
StrToIntW
PathFindFileNameW
PathIsRelativeW

kernel32

GetPrivateProfileStringW
GlobalAlloc
lstrcpynW
lstrcpyW
GlobalFree
GetEnvironmentVariableW

user32

CharNextW

shell32

SHGetSpecialFolderPathW

Exports

Exports

GetCWD
GetFullPath
GetIniFile
GetIniPath
GetM3uBase
GetM3uPath
GetWAClassName
ReadSettings

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 246B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$_15_
$_16_/demo.mp3
Elevator.exe
.exe windows:5 windows x86 arch:x86

1432be6aab5bce5c63a2a2f58745dfed

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

07
Certificate

Issuer

CN=America Online Root Certification Authority 1,O=America Online Inc.,C=US

Not Before

04/06/2004, 17:26

Not After

04/06/2029, 17:26

Subject

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5a:a8:c9:c3:87:71:9f:49:a1:6a:f2:40:65:56:55:50
Certificate

Issuer

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Not Before

15/03/2011, 18:25

Not After

14/03/2016, 18:25

Subject

CN=Nullsoft Inc.,OU=Winamp,O=Nullsoft Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

2e:ea:a2:8c:16:77:1b:82:27:99:d8:77:eb:dd:b8:ec:91:11:3f:40
Signer

Actual PE Digest

2e:ea:a2:8c:16:77:1b:82:27:99:d8:77:eb:dd:b8:ec:91:11:3f:40

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\sandbox\20131212_212712\Elevator\Release\Elevator.pdb

Imports

shlwapi

PathCombineW

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
TerminateProcess
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetCurrentProcess
DeleteFileW
FindNextFileW
RemoveDirectoryW
FindClose
GetVersionExW
MoveFileExW
CreateProcessW
FindFirstFileW
lstrlenW
GetModuleFileNameW
UnhandledExceptionFilter
GetCurrentThreadId
IsDebuggerPresent
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange

user32

GetMessageW
SendMessageW
DispatchMessageW
PostQuitMessage
TranslateMessage
FindWindowW
CharUpperW

advapi32

RegOpenKeyW
RegQueryValueExW
RegEnumKeyW
RegCreateKeyW
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetSecurityDescriptorLength
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExA
RegDeleteValueW

shell32

SHFileOperationW

ole32

StringFromGUID2
CoInitialize
CoRevokeClassObject
CoRegisterClassObject
CoCreateInstance
CoUninitialize

msvcr90

_crt_debugger_hook
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
strstr
_vsnwprintf
memcmp
??3@YAXPAX@Z
_wcsicmp
wcslen
memset
wcsncmp
wcscmp
towupper
_stricmp
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
exit
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_unlock
__dllonexit
_lock
_onexit

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Microsoft.VC90.CRT/Microsoft.VC90.CRT.manifest
.xml
Microsoft.VC90.CRT/msvcr90.dll
.dll windows:5 windows x86 arch:x86

0453db624ecaef7c4f3da938cd1d0fc5

Code Sign

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:01:b2:9b:00:00:00:00:00:15
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

21/02/2011, 20:53

Not After

21/05/2012, 20:53

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:05:a2:30:00:00:00:00:00:08
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

25/07/2008, 19:01

Not After

25/07/2013, 19:11

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:85D3-305C-5BCF,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

82:a8:fd:81:95:b8:5c:73:58:49:38:42:b4:59:3c:50:b4:87:cc:be
Signer

Actual PE Digest

82:a8:fd:81:95:b8:5c:73:58:49:38:42:b4:59:3c:50:b4:87:cc:be

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr90.i386.pdb

Imports

kernel32

GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetSystemWindowsDirectoryW
GetSystemDirectoryW
GetLongPathNameW
GetCurrentThreadId
TlsGetValue
DebugBreak
OutputDebugStringA
GetCommandLineA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
ExitThread
CloseHandle
GetLastError
ResumeThread
CreateThread
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCurrentThread
FindNextFileA
FindFirstFileA
FindClose
FindNextFileW
FindFirstFileW
GetLogicalDrives
GetDiskFreeSpaceA
FileTimeToSystemTime
FileTimeToLocalFileTime
SetErrorMode
Beep
GetFileAttributesA
SetFileAttributesA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
GetCurrentProcessId
CreateDirectoryA
MoveFileA
RemoveDirectoryA
DeleteFileA
GetFileAttributesW
SetEnvironmentVariableW
GetCurrentDirectoryW
SetCurrentDirectoryW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
MoveFileW
RemoveDirectoryW
GetDriveTypeW
DeleteFileW
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
LoadLibraryA
FreeLibrary
CreateProcessW
ReadFile
DuplicateHandle
GetCurrentProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetLocalTime
WideCharToMultiByte
SetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetLocalTime
MultiByteToWideChar
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeFormatA
GetDateFormatA
RtlUnwind
RaiseException
HeapFree
HeapAlloc
GetProcessHeap
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapSize
HeapReAlloc
VirtualAlloc
HeapValidate
HeapCompact
HeapWalk
VirtualProtect
GetSystemInfo
VirtualQuery
SetHandleCount
GetFileType
GetStartupInfoA
GetFileInformationByHandle
PeekNamedPipe
CreateFileA
CreateFileW
SetFilePointer
GetConsoleCP
GetConsoleMode
FlushFileBuffers
CreatePipe
SetStdHandle
ReadConsoleInputA
SetConsoleMode
PeekConsoleInputA
GetNumberOfConsoleInputEvents
ReadConsoleInputW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
IsDBCSLeadByteEx
ReadConsoleA
ReadConsoleW
SetEndOfFile
InterlockedExchange
LockFile
UnlockFile
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
QueryPerformanceCounter
GetTickCount
GetStringTypeW
GetStringTypeA
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
GetLocaleInfoW
GetLocaleInfoA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
LoadLibraryW
GetModuleHandleA

Exports

Exports

$I10_OUTPUT
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1exception@std@@UAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??2@YAPAXIHPBDH@Z
??3@YAXPAX@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4exception@std@@QAEAAV01@ABV01@@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@@6B@
??_7exception@std@@6B@
??_Fbad_cast@std@@QAEXXZ
??_Fbad_typeid@std@@QAEXXZ
??_U@YAPAXI@Z
??_U@YAPAXIHPBDH@Z
??_V@YAXPAX@Z
?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Type_info_dtor@type_info@@CAXPAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z
?_ValidateExecute@@YAHP6GHXZ@Z
?_ValidateRead@@YAHPBXI@Z
?_ValidateWrite@@YAHPAXI@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPBG00II@Z
?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
?_open@@YAHPBDHH@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZH@Z
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?_wopen@@YAHPB_WHH@Z
?_wsopen@@YAHPB_WHHH@Z
?before@type_info@@QBEHABV1@@Z
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
?raw_name@type_info@@QBEPBDXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?unexpected@@YAXXZ
?vswprintf@@YAHPA_WIPB_WPAD@Z
?what@exception@std@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CRT_RTC_INITW
_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FindAndUnlinkFrame
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_Strftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CppXcptFilter
__CxxCallUnwindDelDtor
__CxxCallUnwindDtor
__CxxCallUnwindStdDelDtor
__CxxCallUnwindVecDtor
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___fls_getvalue@4
___fls_setvalue@8
___lc_codepage_func
___lc_collate_cp_func
___lc_handle_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__control87_2
__create_locale
__crtCompareStringA
__crtCompareStringW
__crtGetLocaleInfoW
__crtGetStringTypeW
__crtLCMapStringA
__crtLCMapStringW
__daylight
__dllonexit
__doserrno
__dstbias
__fpecode
__free_locale
__get_app_type
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lc_clike
__lc_codepage
__lc_collate_cp
__lc_handle
__lconv
__lconv_init
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_asin
__libm_sse2_asinf
__libm_sse2_atan
__libm_sse2_atan2
__libm_sse2_atanf
__libm_sse2_cos
__libm_sse2_cosf
__libm_sse2_exp
__libm_sse2_expf
__libm_sse2_log
__libm_sse2_log10
__libm_sse2_log10f
__libm_sse2_logf
__libm_sse2_pow
__libm_sse2_powf
__libm_sse2_sin
__libm_sse2_sinf
__libm_sse2_tan
__libm_sse2_tanf
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__amblksiz
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__set_flsgetvalue
__setlc_active
__setusermatherr
__strncnt
__swprintf_l
__sys_errlist
__sys_nerr
__threadhandle
__threadid
__timezone
__toascii
__tzname
__unDName
__unDNameEx
__unDNameHelper
__uncaught_exception
__unguarded_readlc_active
__vswprintf_l
__wargv
__wcserror
__wcserror_s
__wcsncnt
__wgetmainargs
__winitenv
_abnormal_termination
_abs64
_access
_access_s
_acmdln
_adj_fdiv_m16i
_adj_fdiv_m32
_adj_fdiv_m32i
_adj_fdiv_m64
_adj_fdiv_r
_adj_fdivr_m16i
_adj_fdivr_m32
_adj_fdivr_m32i
_adj_fdivr_m64
_adj_fpatan
_adj_fprem
_adj_fprem1
_adj_fptan
_adjust_fdiv
_aexit_rtn
_aligned_free
_aligned_malloc
_aligned_msize
_aligned_offset_malloc
_aligned_offset_realloc
_aligned_offset_recalloc
_aligned_realloc
_aligned_recalloc
_amsg_exit
_assert
_atodbl
_atodbl_l
_atof_l
_atoflt
_atoflt_l
_atoi64
_atoi64_l
_atoi_l
_atol_l
_atoldbl
_atoldbl_l
_beep
_beginthread
_beginthreadex
_byteswap_uint64
_byteswap_ulong
_byteswap_ushort
_c_exit
_cabs
_callnewh
_calloc_crt
_cexit
_cgets
_cgets_s
_cgetws
_cgetws_s
_chdir
_chdrive
_chgsign
_chkesp
_chmod
_chsize
_chsize_s
_clearfp
_close
_commit
_commode
_configthreadlocale
_control87
_controlfp
_controlfp_s
_copysign
_cprintf
_cprintf_l
_cprintf_p
_cprintf_p_l
_cprintf_s
_cprintf_s_l
_cputs
_cputws
_creat
_create_locale
_crt_debugger_hook
_cscanf
_cscanf_l
_cscanf_s
_cscanf_s_l
_ctime32
_ctime32_s
_ctime64
_ctime64_s
_cwait
_cwprintf
_cwprintf_l
_cwprintf_p
_cwprintf_p_l
_cwprintf_s
_cwprintf_s_l
_cwscanf
_cwscanf_l
_cwscanf_s
_cwscanf_s_l
_daylight
_decode_pointer
_difftime32
_difftime64
_dosmaperr
_dstbias
_dup
_dup2
_dupenv_s
_ecvt
_ecvt_s
_encode_pointer
_encoded_null
_endthread
_endthreadex
_environ
_eof
_errno
_except_handler2
_except_handler3
_except_handler4_common
_execl
_execle
_execlp
_execlpe
_execv
_execve
_execvp
_execvpe
_exit
_expand
_fclose_nolock
_fcloseall
_fcvt
_fcvt_s
_fdopen
_fflush_nolock
_fgetchar
_fgetwc_nolock
_fgetwchar
_filbuf
_filelength
_filelengthi64
_fileno
_findclose
_findfirst32
_findfirst32i64
_findfirst64
_findfirst64i32
_findnext32
_findnext32i64
_findnext64
_findnext64i32
_finite
_flsbuf
_flushall
_fmode
_fpclass
_fpieee_flt
_fpreset
_fprintf_l
_fprintf_p
_fprintf_p_l
_fprintf_s_l
_fputchar
_fputwc_nolock
_fputwchar
_fread_nolock
_fread_nolock_s
_free_locale
_freea
_freea_s
_freefls
_fscanf_l
_fscanf_s_l
_fseek_nolock
_fseeki64
_fseeki64_nolock
_fsopen
_fstat32
_fstat32i64
_fstat64
_fstat64i32
_ftell_nolock
_ftelli64
_ftelli64_nolock
_ftime32
_ftime32_s
_ftime64
_ftime64_s
_ftol
_fullpath
_futime32
_futime64
_fwprintf_l
_fwprintf_p
_fwprintf_p_l
_fwprintf_s_l
_fwrite_nolock
_fwscanf_l
_fwscanf_s_l
_gcvt
_gcvt_s
_get_amblksiz
_get_current_locale
_get_daylight
_get_doserrno
_get_dstbias
_get_errno
_get_fmode
_get_heap_handle
_get_invalid_parameter_handler
_get_osfhandle
_get_output_format
_get_pgmptr
_get_printf_count_output
_get_purecall_handler
_get_sbh_threshold
_get_terminate
_get_timezone
_get_tzname
_get_unexpected
_get_wpgmptr
_getc_nolock
_getch
_getch_nolock
_getche
_getche_nolock
_getcwd
_getdcwd
_getdcwd_nolock
_getdiskfree
_getdllprocaddr
_getdrive
_getdrives
_getmaxstdio
_getmbcp
_getpid
_getptd
_getsystime
_getw
_getwch
_getwch_nolock
_getwche
_getwche_nolock
_getws
_getws_s
_global_unwind2
_gmtime32

Sections

.text
Size: 599KB - Virtual size: 598KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/Gracenote/CDDBControlWinamp.dll
.dll regsvr32 windows:4 windows x86 arch:x86

43cdc8705f58a3e612cb638bcebdb8da

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0b:58:c3:e0:29:35:10:f9:91:92:26:5d:07:62:61:1b
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

14/05/2007, 00:00

Not After

19/06/2010, 23:59

Subject

CN=Gracenote,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Gracenote,L=Emeryville,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

ec:2a:da:70:3f:11:a0:3a:98:1c:6f:14:15:9a:10:82:3f:a1:12:54
Signer

Actual PE Digest

ec:2a:da:70:3f:11:a0:3a:98:1c:6f:14:15:9a:10:82:3f:a1:12:54

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\CDDBRel\sdk\2.6.2\control.nswinamp\Release\CDDBControlNSWinamp.pdb

Imports

comctl32

PropertySheetA
PropertySheetW
ord17

winmm

mciSendCommandA

comdlg32

ChooseFontA
GetOpenFileNameW
ChooseFontW

kernel32

ResumeThread
DuplicateHandle
WinExec
GetTickCount
WriteFile
GetUserDefaultLangID
GetLocaleInfoA
FreeLibrary
LoadLibraryA
lstrcmpiA
GetProcAddress
DisableThreadLibraryCalls
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
GetShortPathNameA
GetModuleFileNameW
FindFirstFileW
FindNextFileW
LoadLibraryExW
GetLocaleInfoW
GetEnvironmentVariableW
GetDateFormatW
CreateFileW
FormatMessageW
FindResourceW
FindResourceExW
GetFileAttributesW
CreateDirectoryW
GetEnvironmentVariableA
FindResourceExA
GetFileAttributesA
CreateDirectoryA
CreateFileA
HeapFree
HeapAlloc
GetProcessHeap
LocalFree
FormatMessageA
LocalAlloc
FindFirstFileA
FindNextFileA
GetDateFormatA
IsDBCSLeadByteEx
CompareStringW
CompareStringA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeFormatA
GetStringTypeW
GetStringTypeA
GetTimeZoneInformation
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetConsoleCtrlHandler
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
SetHandleCount
LCMapStringW
LCMapStringA
Sleep
HeapSize
IsValidCodePage
GetOEMCP
GetCPInfo
GetCurrentThread
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStdHandle
HeapCreate
HeapDestroy
FatalAppExitA
SetStdHandle
SetFileAttributesA
SetFileAttributesW
GetDriveTypeA
GetDriveTypeW
FileTimeToLocalFileTime
MoveFileA
MoveFileW
GetFileType
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ReadFile
ExitProcess
GetCommandLineA
GetSystemTimeAsFileTime
CreateThread
ExitThread
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualProtect
GetFullPathNameW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetThreadLocale
GetACP
InterlockedExchange
SetFilePointer
SetEndOfFile
SetEvent
ResetEvent
CreateEventA
ReleaseMutex
WaitForSingleObject
CreateMutexA
GlobalFree
CloseHandle
GetSystemTime
GetVersionExA
SetLastError
GetCurrentThreadId
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
GetCurrentProcess
FlushInstructionCache
RaiseException
GetModuleFileNameA
lstrlenA
GetSystemDirectoryW
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
GetLastError
DeleteCriticalSection
InitializeCriticalSection
lstrlenW
WideCharToMultiByte
GlobalReAlloc
FindClose
DeleteFileW
DeleteFileA
CopyFileA
GetTempPathW
GetTempPathA
GetSystemDirectoryA
GetVolumeInformationA
GlobalSize
FileTimeToSystemTime
SystemTimeToFileTime
SetEnvironmentVariableA

user32

LoadCursorA
GetClassInfoExA
ShowWindow
GetWindowLongA
SetWindowLongA
DefWindowProcA
UnionRect
PtInRect
CharLowerBuffA
OffsetRect
EqualRect
ReleaseDC
EndPaint
GetClientRect
BeginPaint
CallWindowProcA
GetKeyState
DestroyWindow
IsWindow
InvalidateRect
RegisterClassExA
IsChild
GetFocus
SetFocus
GetDC
SetWindowPos
IntersectRect
SetWindowRgn
GetParent
CreateWindowExA
LoadStringA
InsertMenuItemW
CreatePopupMenu
CharNextA
DrawTextA
GetDlgItem
SendMessageA
CharLowerA
InsertMenuA
UnregisterClassA
GetClassNameA
CreateDialogIndirectParamA
CreateDialogParamA
DialogBoxIndirectParamA
DialogBoxParamA
LoadMenuIndirectA
LoadMenuA
LoadAcceleratorsA
RegisterClassA
SetWindowLongW
GetWindowLongW
TranslateAcceleratorW
GetMessageW
DispatchMessageW
DefWindowProcW
RegisterClassW
CallWindowProcW
UnregisterClassW
GetClassNameW
SetDlgItemTextW
DrawTextW
GetClassInfoExW
InsertMenuW
LoadMenuIndirectW
CreateDialogIndirectParamW
CreateDialogParamW
DialogBoxIndirectParamW
DialogBoxParamW
CharLowerW
SendMessageW
SendDlgItemMessageW
GetWindowTextW
SetWindowTextW
LoadMenuW
LoadAcceleratorsW
CreateWindowExW
RegisterClassExW
LoadStringW
GetMessageA
TranslateAcceleratorA
DispatchMessageA
MessageBoxW

gdi32

GetObjectA
CreateFontIndirectA
GetTextExtentPoint32A
GetObjectW
GetTextExtentPoint32W
CreateFontIndirectW
LPtoDP
SetMapMode
SetViewportOrgEx
DeleteDC
CreateDCA
CreateMetaFileA
SaveDC
SetWindowOrgEx
SetWindowExtEx
RestoreDC
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
GetDeviceCaps

advapi32

RegEnumValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA
RegQueryValueExA

shell32

ShellExecuteA
SHFileOperationA
SHFileOperationW

ole32

CoCreateFreeThreadedMarshaler
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc
ProgIDFromCLSID
CoTaskMemFree
ReadClassStm
OleSaveToStream
WriteClassStm
CreateOleAdviseHolder
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoTaskMemAlloc

oleaut32

VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
VarBstrCat
CreateErrorInfo
SetErrorInfo
VariantCopy
VarBstrCmp
OleCreatePropertyFrame
VariantChangeType
VariantClear
VariantInit
SysStringLen
SysFreeString
SysAllocStringLen
SysAllocString
SysAllocStringByteLen
LoadRegTypeLi
LoadTypeLi
SysStringByteLen

wsock32

gethostbyname
htons
ioctlsocket
connect
WSACleanup
WSAStartup
select
recv
WSAGetLastError
send
closesocket
socket

Exports

Exports

DllCanUnloadNow
DllDisableCOMFallover
DllGetClassObject
DllGetObject
DllGetVersion
DllRegisterServer
DllSetCddbUIHINST
DllUnregisterServer

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 184KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/Gracenote/CDDBUIWinamp.dll
.dll regsvr32 windows:4 windows x86 arch:x86

a52874130b6b4926f110d9ecc7071484

Code Sign

38:25:d7:fa:f8:61:af:9e:f4:90:e7:26:b5:d6:5a:d5
Certificate

Issuer

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Not Before

15/06/2007, 00:00

Not After

14/06/2012, 23:59

Subject

CN=VeriSign Time Stamping Services Signer - G2,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

47:bf:19:95:df:8d:52:46:43:f7:db:6d:48:0d:31:a4
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

04/12/2003, 00:00

Not After

03/12/2013, 23:59

Subject

CN=VeriSign Time Stamping Services CA,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

41:91:a1:5a:39:78:df:cf:49:65:66:38:1d:4c:75:c2
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

16/07/2004, 00:00

Not After

15/07/2014, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0b:58:c3:e0:29:35:10:f9:91:92:26:5d:07:62:61:1b
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2004 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)04,O=VeriSign\, Inc.,C=US

Not Before

14/05/2007, 00:00

Not After

19/06/2010, 23:59

Subject

CN=Gracenote,OU=Digital ID Class 3 - Microsoft Software Validation v2,O=Gracenote,L=Emeryville,ST=California,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

df:67:5c:cc:91:eb:48:66:0c:c9:c8:81:6b:b6:e1:22:a3:a2:84:5f
Signer

Actual PE Digest

df:67:5c:cc:91:eb:48:66:0c:c9:c8:81:6b:b6:e1:22:a3:a2:84:5f

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\CDDBRel\sdk\2.6.2\uicontrol2.nswinamp\Release\CDDBUINSWinamp.pdb

Imports

kernel32

Sleep
lstrcpyA
CreateMutexA
SetThreadPriority
GetExitCodeThread
CreateThread
WaitForSingleObject
ResetEvent
PulseEvent
SetEvent
CloseHandle
CreateEventA
SetLastError
GetCurrentThreadId
SetEnvironmentVariableA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeFormatA
InitializeCriticalSection
GetStringTypeA
GetConsoleMode
GetConsoleCP
SetFilePointer
SetConsoleCtrlHandler
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
GetTimeZoneInformation
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
MulDiv
GetCurrentProcess
FlushInstructionCache
GetModuleHandleA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
IsDBCSLeadByte
GetModuleFileNameA
DisableThreadLibraryCalls
GetProcAddress
lstrcmpiA
lstrlenA
GetLastError
DeleteCriticalSection
RaiseException
MultiByteToWideChar
lstrlenW
LoadLibraryA
FreeLibrary
InterlockedDecrement
GetProcessHeap
HeapFree
InterlockedIncrement
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetCPInfo
HeapSize
ExitProcess
HeapCreate
HeapDestroy
FatalAppExitA
GetCurrentThread
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStdHandle
WriteFile
GetSystemTimeAsFileTime
GetCommandLineA
HeapReAlloc
VirtualQuery
LeaveCriticalSection
EnterCriticalSection
GetStringTypeW
WideCharToMultiByte
GetVersionExA
GetModuleFileNameW
FindFirstFileW
FindNextFileW
LoadLibraryExW
GetLocaleInfoW
GetEnvironmentVariableW
GetDateFormatW
CreateFileW
FormatMessageW
FindResourceW
FindResourceExW
GetFileAttributesW
CreateDirectoryW
LocalFree
GetEnvironmentVariableA
FindResourceExA
GetLocaleInfoA
GetFileAttributesA
CreateDirectoryA
CreateFileA
HeapAlloc
FormatMessageA
LocalAlloc
FindFirstFileA
FindNextFileA
GetDateFormatA
IsDBCSLeadByteEx
FreeResource
LockResource
InterlockedExchange
GetACP
GetThreadLocale
InterlockedCompareExchange
IsProcessorFeaturePresent
VirtualFree
VirtualAlloc
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualProtect
GetSystemInfo

user32

SetRect
MessageBoxW
GetDesktopWindow
GetParent
GetWindow
GetWindowRect
MapWindowPoints
SetWindowPos
PeekMessageA
DispatchMessageA
InvalidateRect
BeginPaint
EndPaint
LoadImageA
SystemParametersInfoA
CreateWindowExA
RegisterClassExA
CallWindowProcA
LoadStringA
MessageBoxA
GetDC
ReleaseDC
LoadCursorA
GetClassInfoExA
GetClientRect
TranslateAcceleratorA
GetMessageA
LoadStringW
RegisterClassExW
CreateWindowExW
LoadAcceleratorsW
LoadMenuW
SetWindowTextW
GetWindowTextW
SendDlgItemMessageW
SendMessageW
CharLowerW
DialogBoxParamW
DialogBoxIndirectParamW
CreateDialogParamW
CreateDialogIndirectParamW
LoadMenuIndirectW
InsertMenuW
GetClassInfoExW
DrawTextW
SetDlgItemTextW
GetClassNameW
UnregisterClassW
CallWindowProcW
RegisterClassW
DefWindowProcW
DispatchMessageW
LoadBitmapA
TranslateAcceleratorW
GetWindowLongW
SetWindowLongW
OffsetRect
GetDlgItem
PostMessageA
SetFocus
GetFocus
GetMessageW
SendMessageA
GetSystemMetrics
EndDialog
UpdateWindow
GetWindowTextLengthA
RegisterClassA
LoadAcceleratorsA
LoadMenuA
LoadMenuIndirectA
DialogBoxParamA
DialogBoxIndirectParamA
CreateDialogParamA
CreateDialogIndirectParamA
GetClassNameA
UnregisterClassA
InsertMenuA
CharLowerA
DrawTextA
IsRectEmpty
FillRect
WindowFromDC
EnableWindow
EnumChildWindows
TranslateMessage
IsDialogMessageA
DefMDIChildProcA
DefFrameProcA
SetWindowTextA
LoadIconA
SetDlgItemTextA
SetCursor
ScreenToClient
InflateRect
ClientToScreen
IsWindowVisible
GetDlgCtrlID
DestroyIcon
MessageBeep
GetClassLongA
CopyRect
GetWindowLongA
SetWindowLongA
CharNextA
DefWindowProcA
DestroyWindow
GetCursorPos
TrackPopupMenuEx
GetSubMenu
RemoveMenu
CreatePopupMenu
DestroyMenu
GetMenuItemCount
IsWindow
ShowWindow
SetRectEmpty
SetParent

gdi32

CreateFontIndirectW
CreateCompatibleDC
SelectObject
BitBlt
LPtoDP
SaveDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
DeleteDC
RestoreDC
CreateDCA
SetTextAlign
TextOutA
GetDeviceCaps
DeleteObject
GetTextExtentPoint32W
GetStockObject
SetBkMode
SetTextColor
GetObjectW
GetTextExtentPoint32A
CreateFontIndirectA
GetObjectA
GetBkMode
GetMapMode
GetTextColor
GetObjectType
CreateCompatibleBitmap

advapi32

RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA

ole32

CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc
StringFromGUID2
CoTaskMemFree

oleaut32

VariantChangeType
VarBstrCmp
SysAllocStringLen
VariantClear
VariantInit
VariantCopy
LoadRegTypeLi
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysStringLen
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString
SetErrorInfo
GetErrorInfo
CreateErrorInfo

comctl32

PropertySheetA
PropertySheetW
ord17

comdlg32

GetOpenFileNameW
ChooseFontW
ChooseFontA

shell32

SHFileOperationW
ExtractIconExA
ShellExecuteA
SHFileOperationA

Exports

Exports

DllCanUnloadNow
DllDisableCOMFallover
DllGetClassObject
DllGetObject
DllGetVersion
DllRegisterServer
DllSetCddbHINST
DllUnregisterServer

Sections

.text
Size: 456KB - Virtual size: 455KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 416KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/gen_crasher.dll
.dll windows:5 windows x86 arch:x86

a6e60a9940c199196af89375fb017fe4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\gen_crasher\Release\gen_crasher.pdb

Imports

shlwapi

PathCombineW

version

VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW

kernel32

InterlockedExchange
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetFileSize
GetPrivateProfileStringW
WriteFile
CreateFileW
lstrcmpW
MultiByteToWideChar
lstrlenW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetLastError
CloseHandle
DeleteFileW
FreeLibrary
LoadLibraryW
GetModuleFileNameW
GetProcAddress
lstrcmpiW
CreateProcessW
FileTimeToDosDateTime
GlobalMemoryStatus
SetFilePointer
VirtualQuery
GetCurrentProcess
GetSystemTimeAsFileTime
RaiseException
GetSystemInfo
GetFileTime
GetCurrentThreadId
FileTimeToLocalFileTime
GetCurrentProcessId
GetVersionExW
lstrcpyW
SetUnhandledExceptionFilter
lstrcpynW
CreateDirectoryW
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
Sleep
InterlockedCompareExchange

user32

GetWindowRect
GetParent
OffsetRect
EndDialog
GetDesktopWindow
CopyRect
GetMessageW
SendMessageA
TranslateMessage
IsDialogMessageW
CreateDialogParamW
IsWindow
DispatchMessageW
wsprintfW
DestroyWindow
SetTimer
LoadImageW
KillTimer
SendDlgItemMessageW
UpdateWindow
CharNextW
PostMessageW
GetWindowTextW
GetClassNameW
GetDlgItem
CheckDlgButton
EnumChildWindows
MessageBoxW
SetDlgItemTextW
SendMessageW
EnableWindow
SetWindowTextW
SetWindowPos

advapi32

GetUserNameW

shell32

SHGetMalloc
SHBrowseForFolderW
SHGetPathFromIDListW

msvcr90

__CxxFrameHandler3
_crt_debugger_hook
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
wcslen
_encode_pointer
__dllonexit
_unlock
_itow
_wtoi
memcmp
??2@YAPAXI@Z
memset
memcpy
??3@YAXPAX@Z
_purecall
_vswprintf
_except_handler3
wcsrchr
_vsnwprintf
free
malloc
_vswprintf_c_l

Exports

Exports

StartHandler
winampGetGeneralPurposePlugin

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/gen_hotkeys.dll
.dll windows:5 windows x86 arch:x86

5467b288c302c37f6594022b8de8a753

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\gen_hotkeys\Release\gen_hotkeys.pdb

Imports

comctl32

ImageList_Create
ImageList_AddMasked

kernel32

WritePrivateProfileStringW
GetLastError
DisableThreadLibraryCalls
GetModuleFileNameA
lstrcmpiW
CreateMutexA
GlobalDeleteAtom
GetTickCount
GlobalAddAtomW
lstrcpynA
GlobalLock
GlobalAlloc
lstrcpynW
MultiByteToWideChar
GlobalUnlock
IsDebuggerPresent
SetUnhandledExceptionFilter
lstrlenW
GetCurrentProcess
TerminateProcess
lstrlenA
UnhandledExceptionFilter
GetPrivateProfileIntW
SetLastError
GetPrivateProfileStringW

user32

SetTimer
RegisterHotKey
UnregisterHotKey
SetWindowTextW
GetKeyNameTextW
IsWindow
MapVirtualKeyA
GetWindowThreadProcessId
SetClipboardData
IsWindowVisible
OpenClipboard
ShowWindow
EmptyClipboard
GetForegroundWindow
SetForegroundWindow
CharNextW
CloseClipboard
KillTimer
RegisterWindowMessageA
GetWindowLongA
IsWindowUnicode
SetWindowLongW
DeregisterShellHookWindow
MessageBoxW
CallWindowProcA
CallWindowProcW
SendDlgItemMessageA
RegisterShellHookWindow
GetFocus
LoadBitmapA
GetClientRect
SendMessageA
GetDC
GetAsyncKeyState
InvalidateRect
GetWindowTextW
ReleaseDC
GetDlgItem
CheckDlgButton
GetSystemMetrics
SendMessageW
EnableWindow
TranslateMessage
DispatchMessageW
SetWindowLongA

gdi32

DeleteObject
GetTextExtentPoint32A
GetTextExtentPoint32W
SelectObject

msvcr90

_strdup
memcpy
_wcsdup
_vsnwprintf
malloc
free
??2@YAPAXI@Z
??3@YAXPAX@Z
_vsnprintf
memset
wcslen
_purecall
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CxxFrameHandler3
_crt_debugger_hook
_except_handler4_common

Exports

Exports

winampGetGeneralPurposePlugin

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/gen_jumpex.dll
.dll windows:5 windows x86 arch:x86

fa140c46be3ca599b000cfa5cfd71937

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Dev\git_dro\winamp-plug-ins\gen_jumpex\Release\gen_jumpex.pdb

Imports

shlwapi

PathCombineW
PathIsURLW
PathIsDirectoryW
PathStripPathW
PathRemoveExtensionW
PathFileExistsW

powrprof

IsPwrSuspendAllowed
IsPwrHibernateAllowed

kernel32

GetVersionExW
GetLastError
GetLocalTime
DeleteFileW
SetFilePointer
SetEndOfFile
WriteFile
CreateFileW
CreateDirectoryW
GetTempPathW
lstrcmpiA
MoveFileW
RemoveDirectoryW
VirtualQuery
VirtualProtect
LocalUnlock
LocalReAlloc
LocalHandle
LocalLock
GetCurrentProcess
LocalFree
GetPrivateProfileStringW
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
VirtualFree
OpenProcess
VirtualAlloc
WaitForSingleObject
CreateEventW
Module32FirstW
CreateToolhelp32Snapshot
GetCurrentThreadId
Module32NextW
GetCurrentProcessId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
QueryPerformanceCounter
InterlockedCompareExchange
InterlockedExchange
FindNextFileW
FindClose
DisableThreadLibraryCalls
SetThreadPriority
lstrcmpW
GetModuleFileNameW
SetSystemPowerState
MulDiv
GetTickCount
SetErrorMode
FindFirstFileW
CompareStringA
CompareStringW
GetStringTypeExW
lstrlenA
CreateThread
LCMapStringW
ResumeThread
SuspendThread
CloseHandle
DeleteCriticalSection
EnterCriticalSection
lstrcpynW
LeaveCriticalSection
Sleep
InitializeCriticalSection
lstrcmpiW
GlobalFree
LoadLibraryW
GetModuleHandleW
FreeLibrary
GetPrivateProfileIntW
WritePrivateProfileStringW
lstrlenW
LocalAlloc

user32

IsMenu
SetTimer
GetSystemMenu
GetUpdateRgn
GetDlgItemInt
SetCursor
ClientToScreen
MonitorFromRect
GetMonitorInfoW
IsWindowUnicode
MonitorFromWindow
SystemParametersInfoW
SetWindowLongA
GetMonitorInfoA
CreateDialogParamW
EnumWindows
GetWindowThreadProcessId
GetActiveWindow
DestroyCursor
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
WindowFromDC
FrameRect
SetActiveWindow
MapDialogRect
RegisterWindowMessageW
SetCapture
KillTimer
GetKeyState
GetSubMenu
SetForegroundWindow
GetFocus
InvalidateRgn
LoadCursorW
CharPrevW
WindowFromPoint
GetTabbedTextExtentW
SetParent
CreateAcceleratorTableW
ExitWindowsEx
SetFocus
GetMenuItemInfoW
PtInRect
GetUpdateRect
GetDC
GetCapture
SetDlgItemInt
TrackPopupMenuEx
SetRect
MessageBoxA
GetDCEx
ReleaseDC
RedrawWindow
GetCursorPos
LoadStringW
CheckDlgButton
CreatePopupMenu
SetMenuDefaultItem
CheckRadioButton
DeferWindowPos
MessageBoxW
ReleaseCapture
BeginDeferWindowPos
GetSystemMetrics
ValidateRgn
UpdateWindow
DestroyMenu
SetWindowTextW
EndDeferWindowPos
SetMenuItemInfoW
ValidateRect
GetWindow
CharNextW
EndPaint
DestroyWindow
ScreenToClient
GetWindowRect
FillRect
LoadImageW
PostMessageW
DrawTextW
DrawIconEx
GetClientRect
BeginPaint
DrawFocusRect
InvalidateRect
GetWindowTextW
GetDlgItem
SetWindowLongW
EndDialog
SendDlgItemMessageW
GetSysColor
IsDlgButtonChecked
IsWindow
CreateWindowExW
GetDlgItemTextW
SetDlgItemTextW
MapWindowPoints
EnableWindow
GetDlgCtrlID
CallWindowProcW
CopyRect
RemovePropW
GetMenuItemID
DeleteMenu
GetParent
SetPropW
InsertMenuItemW
GetWindowLongW
SetWindowPos
ShowWindow
IsWindowVisible
SendMessageW
GetPropW
CheckMenuItem
EnableMenuItem

gdi32

SetTextColor
CreatePen
SetBkMode
DeleteObject
GetNearestColor
CreateRectRgn
SetBkColor
GetPixel
SetStretchBltMode
CreateHatchBrush
GetBkColor
MoveToEx
BitBlt
GetTextExtentPoint32W
GetTextMetricsW
LineTo
DeleteDC
CreateFontIndirectW
GetDeviceCaps
StretchBlt
ExcludeClipRect
SelectObject
CreateCompatibleDC
CreateRectRgnIndirect
CombineRgn
CreateBrushIndirect
OffsetRgn
FillRgn
CreateSolidBrush

comdlg32

GetOpenFileNameW
ChooseColorW
GetSaveFileNameW

advapi32

RegDeleteKeyW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegNotifyChangeKeyValue

shell32

ShellExecuteW
DragQueryFileW
DragAcceptFiles
SHChangeNotify
DragFinish

msvcr90

_lock
_crt_debugger_hook
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_except_handler4_common
memcmp
_vsnwprintf
free
memset
_wcsdup
wcsstr
_vsnprintf
_purecall
memcpy
_wtoi
_strdup
??3@YAXPAX@Z
??2@YAPAXI@Z
_unlock
__dllonexit
_encode_pointer
__CxxFrameHandler3
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter

Exports

Exports

winampGetGeneralPurposePlugin
winampUninstallPlugin

Sections

.text
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/gen_tray.dll
.dll windows:5 windows x86 arch:x86

e0d99c84b0ed994e8037bc1e8f804170

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\gen_tray\Release\gen_tray.pdb

Imports

shlwapi

PathFileExistsW
StrStrIW

kernel32

DisableThreadLibraryCalls
VirtualAllocEx
GetProcAddress
lstrcmpiW
FindNextFileW
CloseHandle
GetPrivateProfileIntW
WritePrivateProfileStringW
lstrlenW
GetModuleFileNameW
lstrcpynW
GetVersionExW
ReadProcessMemory
VirtualFreeEx
OpenProcess
GetPrivateProfileStringW
GetModuleHandleW
GetCurrentProcess
FindFirstFileW
FindClose

user32

GetClassNameW
SetWindowLongA
CreateIcon
LoadIconW
GetDC
GetIconInfo
CreateIconIndirect
SetPropW
PtInRect
SetFocus
FindWindowW
CharPrevW
LoadCursorW
SetForegroundWindow
GetKeyState
DrawTextW
LoadImageW
RegisterWindowMessageW
SetActiveWindow
GetWindowRect
SetCursor
IsWindowUnicode
GetDlgItem
SetWindowLongW
EndDialog
SendDlgItemMessageW
GetCursorPos
CheckDlgButton
EnumChildWindows
IsDlgButtonChecked
IsWindow
MessageBoxW
GetDlgItemTextW
SetDlgItemTextW
SendMessageW
MapWindowPoints
EnableWindow
DestroyIcon
GetPropW
CallWindowProcW
CopyRect
GetWindowThreadProcessId
ReleaseDC

gdi32

GetObjectW
SetPixel
GetCurrentObject
SetStretchBltMode
CreateFontIndirectW
DeleteDC
SetTextColor
StretchBlt
GetPixel
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap

comdlg32

GetOpenFileNameW

shell32

Shell_NotifyIconW

msvcr90

_vsnwprintf
memset

Exports

Exports

winampGetGeneralPurposePlugin
winampUninstallPlugin

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_cdda.dll
.dll windows:5 windows x86 arch:x86

fef6ed3de44965154b79ca75ec304f82

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_cdda\Release\in_cdda.pdb

Imports

kernel32

GetCurrentThreadId
CompareStringW
TlsGetValue
CreateEventW
TlsAlloc
TlsSetValue
ResetEvent
InterlockedIncrement
InterlockedDecrement
MulDiv
LoadLibraryW
GetProcAddress
FreeLibrary
MultiByteToWideChar
GetPrivateProfileIntA
WritePrivateProfileStringA
GetModuleFileNameA
GlobalAlloc
GlobalFree
WideCharToMultiByte
lstrcmpiW
lstrcpynW
lstrlenA
GetModuleHandleW
SetEvent
GetLastError
ResumeThread
LoadLibraryA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
RaiseException
InterlockedExchange
LocalFree
LocalAlloc
GetTickCount
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
lstrlenW
CloseHandle
Sleep
WaitForSingleObject
SetThreadPriority
CreateThread
lstrcpynA

user32

ReleaseDC
SendDlgItemMessageW
PtInRect
GetCursorPos
SetCursor
LoadCursorW
EnumWindows
CharNextExA
GetDC
GetSysColor
LoadImageW
InvalidateRect
PostMessageW
SetActiveWindow
WaitMessage
IsDialogMessageW
AttachThreadInput
MessageBeep
FlashWindowEx
GetForegroundWindow
GetWindowLongW
GetWindow
IsWindowEnabled
wsprintfA
MapDialogRect
SetTimer
EnableWindow
GetDlgItem
SetDlgItemTextW
KillTimer
SetForegroundWindow
UpdateWindow
DestroyWindow
SetWindowTextW
ShowWindow
DefWindowProcW
SetPropW
SetWindowLongW
ShowWindowAsync
RemovePropW
CallWindowProcA
CallWindowProcW
GetPropW
UnhookWindowsHookEx
SetWindowsHookExW
PostQuitMessage
CallMsgFilterW
MsgWaitForMultipleObjectsEx
PostThreadMessageW
GetWindowThreadProcessId
CallNextHookEx
SetWindowPos
IsWindowVisible
FindWindowExW
GetClassNameW
MapWindowPoints
CheckDlgButton
MessageBoxA
FillRect
CharPrevA
CharNextA
MessageBoxIndirectW
GetWindowTextW
SetDlgItemInt
GetDialogBaseUnits
GetWindowRect
GetClientRect
GetParent
GetMonitorInfoW
MonitorFromRect
SetRect
OffsetRect
SendMessageW
GetDesktopWindow
IsWindow
TranslateMessage
IsWindowUnicode
PeekMessageW
DispatchMessageW
EndDialog
IsDlgButtonChecked

gdi32

CreateCompatibleDC
ExcludeClipRect
RectVisible
DeleteObject
CreateFontIndirectW
GetDeviceCaps
GetObjectW
GetStockObject
DeleteDC
BitBlt
SelectObject

ole32

CoInitializeEx
CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

SysFreeString
SysAllocString

msvcr90

_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
_CxxThrowException
_purecall
toupper
_wcsdup
_wcsicmp
_wcsnicmp
_itow
atoi
_strnicmp
_stricmp
??2@YAPAXI@Z
malloc
_vsnprintf
strcpy
strlen
strncpy
memmove
memcmp
_wtoi
calloc
wcscmp
_vsnwprintf
free
??3@YAXPAX@Z
memcpy
memset
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CxxFrameHandler3
__clean_type_info_names_internal
_crt_debugger_hook

shlwapi

PathAppendW
PathFindFileNameW
PathFindExtensionW
PathRemoveFileSpecA
PathAppendA
PathCombineA
PathCombineW

Exports

Exports

winampAddUnifiedFileInfoPane
winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_lasterror
winampGetExtendedRead_open
winampGetInModule2
winampSetExtendedFileInfoW
winampUseUnifiedFileInfoDlg
winampWriteExtendedFileInfo

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_flac.dll
.dll windows:5 windows x86 arch:x86

1a6f2907c538bd1f71d1cfe95bd1794b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_flac\Release\in_flac.pdb

Imports

shlwapi

PathFindExtensionW

kernel32

DisableThreadLibraryCalls
LoadLibraryW
GetProcAddress
GetModuleHandleA
GetPrivateProfileStringW
lstrcmpiW
WaitForSingleObject
SetEvent
WaitForMultipleObjectsEx
CompareFileTime
WideCharToMultiByte
CompareStringW
MultiByteToWideChar
GetLastError
GetFileAttributesExW
lstrcpynW
CreateEventA
SetThreadPriority
GetPrivateProfileIntW
QueueUserAPC
ResetEvent
CloseHandle
CreateThread
GetTempFileNameW
SetFilePointer
lstrcpynA
WriteFile
CopyFileW
ReadFile
CreateFileW
GetTempPathW
MoveFileW
DeleteFileW
WritePrivateProfileStringW
GetFileSize
LocalAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
FreeLibrary
InterlockedCompareExchange
Sleep
RaiseException
LoadLibraryA
InterlockedExchange

user32

CheckDlgButton
IsDlgButtonChecked
IsWindow
GetParent
SetPropW
SetWindowLongA
GetWindowLongA
EndDialog
MessageBoxW
GetDlgItemTextW
SetDlgItemTextW
EnableWindow
SendMessageA
PostMessageA
MessageBoxIndirectW
GetDlgItem

msvcr90

_vsnwprintf
wcschr
_wcsicmp
_purecall
_CIpow
free
malloc
strchr
_stricmp
_wtoi
atoi
_vsnprintf
??3@YAXPAX@Z
_wcsdup
??2@YAPAXI@Z
memmove
calloc
wcsstr
_strdup
realloc
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
__CxxFrameHandler3
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
memcpy
memset
_atof_l

Exports

Exports

winampAddUnifiedFileInfoPane
winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_openW
winampGetInModule2
winampSetExtendedFileInfoW
winampUseUnifiedFileInfoDlg
winampWriteExtendedFileInfo
winampWriteExtendedGetLastError

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_midi.dll
.dll windows:5 windows x86 arch:x86

9246f40f27048a8d6651e7060842b00e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_midi\Release\in_midi.pdb

Imports

shlwapi

PathCombineW
PathFindExtensionW
PathIsURLW

kernel32

GetCurrentThreadId
GetModuleHandleA
CreateThread
SetThreadPriority
ResumeThread
WaitForSingleObject
TerminateThread
lstrcmpA
WritePrivateProfileStructA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileStructA
lstrcpyA
WideCharToMultiByte
MultiByteToWideChar
GetFileSize
GetShortPathNameW
CompareStringW
lstrcpynW
lstrcpynA
EnterCriticalSection
GetTempPathA
lstrlenA
lstrcatA
LoadLibraryW
GetProcAddress
FreeLibrary
SetFilePointer
Sleep
DisableThreadLibraryCalls
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
InterlockedCompareExchange
RaiseException
LoadLibraryA
GetLastError
InterlockedExchange
LocalAlloc
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
MulDiv
DeleteFileA
CloseHandle
GetModuleFileNameA
ReadFile
WriteFile
CreateFileA
GetTickCount

user32

GetWindowTextLengthA
GetWindowTextA
SendMessageA
KillTimer
IsWindow
DispatchMessageA
GetMessageA
IsZoomed
RegisterClassA
ValidateRect
ReleaseDC
DrawEdge
GetDC
MessageBoxIndirectW
MessageBoxW
MessageBoxA
MapWindowPoints
GetClientRect
EndDialog
GetParent
SendMessageW
EnumChildWindows
EnableWindow
SetWindowTextW
LoadCursorA
SetWindowTextA
wsprintfA
SetDlgItemInt
GetDlgItemTextA
GetWindowRect
IsIconic
GetDlgItemInt
SendDlgItemMessageA
SetWindowPos
GetSystemMetrics
GetDlgItem
ShowWindow
CreateWindowExA
MapDialogRect
SetDlgItemTextA
SetWindowLongA
PostMessageA
DestroyWindow
DefWindowProcA
GetWindowLongA
wsprintfW
SetTimer

gdi32

CreateDIBSection
GetObjectA
SelectObject
CreateCompatibleDC
DeleteObject
DeleteDC
BitBlt

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegQueryValueExA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

msvcr90

_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
_itow
_strnicmp
_vsnprintf
wcscmp
atoi
_vswprintf_c_l
strstr
strcpy
_purecall
_itoa
pow
log
wcscat
wcsncpy
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
strrchr
??2@YAPAXI@Z
free
__CxxFrameHandler3
log10
tolower
??3@YAXPAX@Z
mbstowcs
malloc
memcpy
memcmp
memset
_stricmp
strlen
realloc

Exports

Exports

winampGetExtendedFileInfoW
winampGetInModule2

Sections

.text
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_mod.dll
.dll windows:5 windows x86 arch:x86

e7391c9df61a75c4bf840c5af98bff05

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_mod\mikamp\Release\in_mod (mikamp).pdb

Imports

shlwapi

PathFindExtensionW
PathIsURLW

kernel32

IsDebuggerPresent
GetPrivateProfileIntA
CompareStringW
MultiByteToWideChar
WritePrivateProfileStringA
GetModuleHandleA
Sleep
MulDiv
lstrlenA
lstrcpynA
WaitForSingleObject
WideCharToMultiByte
TerminateThread
lstrcpynW
SetThreadPriority
lstrcmpiA
DisableThreadLibraryCalls
GetTempFileNameA
GetShortPathNameW
CloseHandle
GetTempPathA
DeleteFileA
CreateThread
lstrcpyA
FreeLibrary
GetProcAddress
LoadLibraryA
GetModuleFileNameA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
InterlockedExchange
DeleteCriticalSection
EnterCriticalSection
HeapCreate
LeaveCriticalSection
HeapDestroy
InitializeCriticalSection
HeapFree
HeapAlloc
HeapReAlloc

user32

IsWindow
DestroyWindow
SetTimer
GetWindowRect
SetActiveWindow
KillTimer
GetActiveWindow
PostMessageA
GetSystemMetrics
SetWindowTextA
MoveWindow
GetParent
SendMessageA
SetWindowLongA
MessageBoxA
GetDlgItem
EndDialog
SetWindowPos
CheckDlgButton
ShowWindow
IsDlgButtonChecked
MessageBoxIndirectW
SendMessageW
EnableWindow
GetDlgCtrlID
GetDlgItemTextA
SetWindowTextW
SetDlgItemTextA
GetDialogBaseUnits
SetForegroundWindow
GetWindowLongA

comdlg32

GetSaveFileNameA

msvcr90

_crt_debugger_hook
_except_handler4_common
__clean_type_info_names_internal
_onexit
_lock
__dllonexit
_unlock
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
memset
calloc
free
memcpy
malloc
strstr
strchr
_vsnwprintf
_vsnprintf
atof
_stricmp
_strnicmp
strncmp
atoi
_vswprintf_c_l
_itow
strrchr
strncpy
??3@YAXPAX@Z
??2@YAPAXI@Z
fputc
feof
fgetc
fopen
fread
fwrite
ftell
fseek
fclose
rand
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm

Exports

Exports

winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_open
winampGetInModule2

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_mp3.dll
.dll windows:5 windows x86 arch:x86

89ab1458e51c0fe667874a720a29bea6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_mp3\Release\in_mp3.pdb

Imports

shlwapi

PathRemoveExtensionW
PathStripPathW
PathIsURLW
PathFindExtensionW

kernel32

MulDiv
InitializeCriticalSection
DeleteCriticalSection
lstrcpynW
CreateThread
SetThreadPriority
WaitForSingleObject
CloseHandle
InterlockedExchangeAdd
InterlockedExchange
QueryPerformanceCounter
Sleep
EnterCriticalSection
LeaveCriticalSection
SetFilePointer
GetLastError
GetTickCount
lstrcpynA
GetPrivateProfileIntA
GetPrivateProfileStringA
WideCharToMultiByte
CreateFileW
GetFileTime
ReadFile
WritePrivateProfileStringA
CreateFileA
WriteFile
MultiByteToWideChar
lstrcmpW
lstrcmpiW
GetFileAttributesExW
CompareFileTime
lstrlenW
MoveFileW
CopyFileW
DeleteFileW
GetFileAttributesW
SetEndOfFile
GetModuleFileNameA
GetModuleHandleW
lstrcmpA
GetProcAddress
LocalAlloc
FreeLibrary
LoadLibraryA
RaiseException
InterlockedCompareExchange
DisableThreadLibraryCalls
GetCurrentThreadId
GetCurrentProcessId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime

user32

MessageBoxIndirectW
SetDlgItemInt
ReleaseDC
SetWindowTextA
DrawTextA
GetClientRect
GetDC
GetDlgItemInt
wsprintfW
EnumChildWindows
SetWindowTextW
GetClassNameW
GetDlgItemTextW
IsDlgButtonChecked
CheckDlgButton
SetPropW
GetParent
GetPropW
MessageBoxW
SetWindowPos
SetTimer
EnableWindow
GetDlgItem
SetDlgItemTextW
CharNextW
SendDlgItemMessageW
KillTimer
PtInRect
GetWindowRect
SystemParametersInfoW
GetMonitorInfoA
MonitorFromWindow
MonitorFromRect
SetFocus
EndDialog
GetDlgItemTextA
SetDlgItemTextA
GetWindowLongW
SetWindowLongW
SendMessageTimeoutW
wsprintfA
PostMessageW
SendMessageW
IsWindow

gdi32

SelectObject
DeleteObject

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderW
SHGetFolderPathA

msvcr90

_CIsqrt
_CIlog
_CIpow
_CIcos
_CIsin
floor
__CxxFrameHandler3
memset
_CIlog10
memcmp
_crt_debugger_hook
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
wcslen
ceil
strcmp
fopen
fread
_CIatan
wcscmp
memcpy
strncmp
strlen
_wcsdup
??3@YAXPAX@Z
_wcsicmp
??2@YAPAXI@Z
memmove
_vswprintf_c_l
_wcsnicmp
_purecall
free
calloc
_strnicmp
_vsnprintf
_vsnwprintf
_wtof_l
strncpy
strstr
strcspn
strchr
strtoul
_strdup
atoi
wcsstr
malloc
??_U@YAPAXI@Z
??_V@YAXPAX@Z
_stricmp
_wtoi
wcschr
wcsncpy
wcstoul
fclose

Exports

Exports

CreateAudioDecoder
DeleteAudioDecoder
winampAddUnifiedFileInfoPane
winampClearExtendedFileInfoW
winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_openW
winampGetExtendedRead_openW_float
winampGetExtendedRead_setTime
winampGetInModule2
winampSetExtendedFileInfoW
winampUseUnifiedFileInfoDlg
winampWriteExtendedFileInfo

Sections

.text
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_mp4.dll
.dll windows:5 windows x86 arch:x86

94d7e7b9ef196c2da60f4a7edc308c78

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_mp4\Release\in_mp4.pdb

Imports

shlwapi

PathFindExtensionW
PathCombineW
PathAppendW
PathStripPathW
PathRemoveExtensionW
PathFileExistsW

kernel32

Sleep
FreeLibrary
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetPrivateProfileStringW
WideCharToMultiByte
WritePrivateProfileStringW
MultiByteToWideChar
GetLastError
lstrcmpA
GetFileAttributesExW
CompareFileTime
CompareStringW
lstrcmpiW
lstrcpynW
lstrlenA
MulDiv
GetModuleHandleW
GetTickCount
CreateEventW
CreateDirectoryW
CloseHandle
SetEvent
ResetEvent
CreateThread
SetThreadPriority
WaitForSingleObject
InterlockedExchangeAdd
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
WaitForMultipleObjects
EnterCriticalSection
LeaveCriticalSection
SleepEx
SetFilePointer
GetTempPathW
GetTempFileNameW
CreateFileW
DeleteFileW
ReadFile
WriteFile
CancelIo
GetFileSize
GetOverlappedResult
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
LoadLibraryA
RaiseException
GetProcAddress
LocalAlloc

user32

EndDialog
MessageBoxIndirectW
SendMessageW
IsWindow
PostMessageW
SetDlgItemTextW
GetDlgItemTextW

msvcr90

_purecall
malloc
free
__CxxFrameHandler3
_vsnwprintf
memset
_stricmp
atoi
log10
wcstoul
_wcstoui64
_wtoi
strncmp
??2@YAPAXI@Z
??3@YAXPAX@Z
strlen
calloc
memcmp
_wcsnicmp
_wtof_l
pow
??_V@YAXPAX@Z
realloc
strstr
_strdup
_strtoui64
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
memcpy
_wcsicmp
wcschr
_except_handler3
_vsnprintf

Exports

Exports

winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_openW
winampGetExtendedRead_openW_float
winampGetExtendedRead_setTime
winampGetInModule2
winampSetExtendedFileInfoW
winampUseUnifiedFileInfoDlg
winampWriteExtendedFileInfo

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_vorbis.dll
.dll windows:5 windows x86 arch:x86

85341fd80d26a8f0bbe37cf3143c0b58

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_vorbis\Release\in_vorbis.pdb

Imports

shlwapi

PathIsURLW
PathFindFileNameW
PathFindExtensionW
PathCombineW

kernel32

EnterCriticalSection
LeaveCriticalSection
lstrcpynW
GetTickCount
MulDiv
SetFilePointer
lstrcpynA
WritePrivateProfileStringA
lstrcmpiA
GetPrivateProfileIntA
WritePrivateProfileStructA
GetPrivateProfileStructA
GetPrivateProfileStringA
MoveFileW
DeleteFileW
SetFileAttributesW
Sleep
GetProcAddress
GetModuleHandleA
GetDiskFreeSpaceA
GetFileSize
GetTempPathW
GetCurrentProcessId
GetFileTime
SetFileTime
CopyFileW
lstrcmpiW
GetFileAttributesExW
CompareFileTime
CompareStringW
GetVersionExA
InitializeCriticalSection
DeleteCriticalSection
CreateThread
SetThreadPriority
ResumeThread
WaitForSingleObject
TerminateThread
WriteFile
ReadFile
CreateFileW
CloseHandle
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
InterlockedExchange
MultiByteToWideChar
GetLastError
WideCharToMultiByte
GetCurrentProcess

user32

IsDlgButtonChecked
SetDlgItemInt
EnumChildWindows
GetClassNameA
RegisterClassA
LoadCursorA
PostMessageA
CharNextW
DefWindowProcA
ReleaseDC
DrawEdge
GetDC
LoadBitmapA
KillTimer
RedrawWindow
SetTimer
SetPropW
GetDlgItemTextW
MessageBoxA
ShowWindow
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItemInt
SendMessageW
SetActiveWindow
GetMessageA
EnableWindow
IsWindowEnabled
DispatchMessageA
TranslateMessage
IsDialogMessageA
GetClientRect
SetWindowLongA
GetSystemMetrics
GetWindowLongA
GetWindowRect
CreateWindowExA
GetDlgItem
EndDialog
DestroyWindow
SetWindowPos
SetDlgItemTextW
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
SendMessageA
GetWindowTextA
wsprintfA
GetDlgItemTextA
IsWindow
GetParent

gdi32

DeleteObject
GetObjectA
GetStockObject
DeleteDC
TextOutA
SetTextAlign
SetBkMode
SetTextColor
BitBlt
SelectObject
CreateCompatibleDC
CreateFontIndirectA

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc
SHGetFolderPathA

msvcr90

?terminate@@YAXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
memchr
exit
ceil
qsort
ldexp
memmove
toupper
fseek
_errno
_wtoi
wcschr
wcsrchr
strncpy
fclose
ftell
fread
_fseeki64
_strdup
_except_handler4_common
__CxxFrameHandler3
__clean_type_info_names_internal
_crt_debugger_hook
_CIexp
_CIsqrt
_CIcos
floor
_CIatan
_CIsin
_CIlog
_CIpow
?_type_info_dtor_internal_method@type_info@@QAEXXZ
log10
atoi
strstr
_atof_l
_stricmp
strlen
malloc
calloc
free
memcpy
vsprintf
_vswprintf_c_l
memset
realloc
_vsnprintf
_purecall
??2@YAPAXI@Z
strchr
_wcsdup
??3@YAXPAX@Z
wcsstr
_wcsicmp
_itoa
sprintf
wcscmp
fabs
strcmp
_vsnwprintf
abs
memcmp
pow

Exports

Exports

winampAddUnifiedFileInfoPane
winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_openW
winampGetExtendedRead_openW_float
winampGetExtendedRead_setTime
winampGetInModule2
winampSetExtendedFileInfoW
winampUseUnifiedFileInfoDlg
winampWriteExtendedFileInfo

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_wave.dll
.dll windows:5 windows x86 arch:x86

f2fb4d455860541f96584cf750992d40

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_wave\Release\in_wave.pdb

Imports

shlwapi

PathIsURLW
PathStripPathW
PathFindExtensionW

kernel32

IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
WaitForSingleObject
SetEvent
SleepEx
WaitForMultipleObjectsEx
CreateEventA
MulDiv
SetThreadPriority
ResetEvent
CloseHandle
CreateThread
lstrlenA
lstrcpynA
lstrcatA
CompareStringW
MultiByteToWideChar
lstrcmpiA
CompareStringA
lstrcpynW
GetLastError
QueueUserAPC
GetPrivateProfileStringA
WritePrivateProfileStringA
GetModuleHandleA
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
RaiseException
LoadLibraryA
InterlockedExchange
GetProcAddress
LocalAlloc
FreeLibrary

user32

CharPrevA
CharNextA
SendMessageA
MessageBoxIndirectW
EndDialog
GetDlgItemTextA
SetDlgItemTextA
PostMessageA
IsWindow
MessageBoxA
GetDlgItem

msvcr90

_wcsicmp
_vsnwprintf
_vsnprintf
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
_stricmp
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
malloc
calloc
free
memset

Exports

Exports

winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_openW
winampGetExtendedRead_setTime
winampGetInModule2

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/in_wm.dll
.dll windows:5 windows x86 arch:x86

30304e7527b67c6efbb6fdbfe959c52d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\in_wmvdrm\Release\in_wmvdrm.pdb

Imports

shlwapi

PathIsRootW
PathCombineW
PathCanonicalizeW
PathFileExistsW
PathIsURLW
PathRemoveFileSpecW
StrRChrW
PathFindExtensionW

kernel32

WritePrivateProfileStringW
GetPrivateProfileIntW
DeleteCriticalSection
CreateEventW
ResetEvent
SetEvent
WaitForSingleObject
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
GetPrivateProfileStringW
InitializeCriticalSection
WideCharToMultiByte
lstrcmpiW
QueueUserAPC
CreateThread
SetThreadPriority
WaitForSingleObjectEx
CloseHandle
Sleep
GetModuleHandleW
GlobalAddAtomW
GlobalDeleteAtom
InterlockedIncrement
InterlockedDecrement
GetLastError
MulDiv
WaitForMultipleObjects
LocalFree
GetTickCount
GetVersion
WritePrivateProfileStructW
GetPrivateProfileStructW
GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentThread
LocalAlloc
OutputDebugStringA
CreateFileW
ReadFile
LoadLibraryA
GetModuleHandleA
InterlockedExchange
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapAlloc
GetProcessHeap
HeapFree
HeapSize
InterlockedCompareExchange
GetVersionExA
DeviceIoControl
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetDiskFreeSpaceA
GlobalMemoryStatus
GetLocalTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
lstrlenA
CompareStringW
lstrcpynW
lstrlenW
FreeLibrary
GetProcAddress
DisableThreadLibraryCalls
RaiseException
WriteFile
SetFilePointer
DeleteFileW
GetTempPathW
LoadResource
FindResourceExW
GetTimeFormatW
CreateEventA
LoadLibraryW

user32

MessageBoxIndirectW
wsprintfW
IsWindow
SendMessageW
CharNextW
SetWindowPos
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetDlgItemInt
EnableWindow
SendDlgItemMessageW
wsprintfA
DestroyWindow
SetTimer
KillTimer
GetClassInfoW
CreateWindowExW
RegisterClassW
MessageBoxW
DialogBoxParamW
SetPropW
SetFocus
GetWindowLongW
SetWindowLongW
DefWindowProcW
SetRect
GetWindowRect
ShowWindow
CopyRect
SendMessageA
DispatchMessageW
PeekMessageW
GetSystemMetrics
EndPaint
FillRect
ScreenToClient
BeginPaint
EnumDisplaySettingsW
ClientToScreen
InvalidateRect
GetClientRect
SetWindowTextW
EndDialog
SetDlgItemTextW
GetDlgItemTextW
IsDlgButtonChecked
GetDlgItem
SetDlgItemInt
CheckDlgButton
UpdateWindow
PostMessageA
LoadBitmapW
GetSysColorBrush
LoadStringW
BringWindowToTop
SetWindowLongA
InflateRect
TranslateMessage
IsDialogMessageA
RegisterWindowMessageA
MessageBeep
SetForegroundWindow
DialogBoxIndirectParamW
DrawTextW
SendNotifyMessageA
SendDlgItemMessageA
CreateDialogIndirectParamW
PostQuitMessage
GetMessageW
GetParent
PostMessageW
CharPrevW

gdi32

Rectangle
CreateBrushIndirect
GetStockObject
SetPixel
GetPixel
StretchBlt
BitBlt
DeleteObject
CreateSolidBrush
CreateCompatibleDC
SelectObject
SetBkMode
CreateDIBSection
DeleteDC
SetTextColor
RectVisible
CreatePen

advapi32

RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey

ole32

CoUninitialize
CoTaskMemAlloc
CoInitializeEx
CoTaskMemFree
CoCreateInstance

oleaut32

SafeArrayDestroy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
SysFreeString
VariantInit
SysAllocString

msvcr90

?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
??0exception@std@@QAE@XZ
__CxxFrameHandler3
_CxxThrowException
_except_handler3
_CIpow
_strnicmp
toupper
_i64tow_s
log
sqrt
_wtof_l
pow
fabs
wcschr
wcstoul
strlen
_wcstoui64
_stricmp
log10
realloc
swscanf
_itow
memcpy
_vsnprintf
calloc
_wcsnicmp
_wtoi
_wcsicmp
malloc
_vsnwprintf
_wcsdup
wcsstr
memmove
free
wcslen
_vswprintf_c_l
memmove_s
??0exception@std@@QAE@ABQBD@Z
__clean_type_info_names_internal
??_V@YAXPAX@Z
memset
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
memcpy_s
??0exception@std@@QAE@ABV01@@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
memcmp

Exports

Exports

GetDS
GetWave
burn_doBurn
winampAddUnifiedFileInfoPane
winampClearExtendedFileInfoW
winampGetExtendedFileInfoW
winampGetExtendedRead_close
winampGetExtendedRead_getData
winampGetExtendedRead_openW
winampGetInModule2
winampSetExtendedFileInfoW
winampUseUnifiedFileInfoDlg
winampWriteExtendedFileInfo

Sections

.text
Size: 226KB - Virtual size: 225KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/out_disk.dll
.dll windows:5 windows x86 arch:x86

db1a4210355358dc16c926adde0d58cf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\out_disk\Release\out_disk.pdb

Imports

msvcr90

memcpy
_unlock
_crt_debugger_hook
__clean_type_info_names_internal
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
memmove
memcmp
free
malloc
memset
strrchr
_vsnprintf
_vsnwprintf
__dllonexit

shlwapi

PathCombineA

kernel32

GetProcAddress
FreeLibrary
LoadLibraryA
LocalAlloc
DeleteCriticalSection
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
InterlockedCompareExchange
InterlockedExchange
DeleteFileA
CloseHandle
RaiseException
GetModuleHandleA
CreateFileA
GetFileSize
SetFilePointer
WritePrivateProfileStructA
lstrcpynA
SetEndOfFile
GetCurrentThread
WriteFile
InitializeCriticalSection
GetPrivateProfileIntA
Sleep
LeaveCriticalSection
MulDiv
ReadFile
SetThreadPriority
GetLastError
SetLastError
lstrcmpiA
EnterCriticalSection
DisableThreadLibraryCalls
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileStructA

user32

DrawTextA
SendDlgItemMessageA
GetClassNameA
GetClientRect
SendMessageA
GetDC
ReleaseDC
GetDlgItem
EndDialog
PostMessageA
MessageBoxW
MessageBoxIndirectW
SetWindowTextA
SendMessageW
EnableWindow
GetDlgItemTextA
SetWindowTextW
SetDlgItemTextA
EnumChildWindows

gdi32

SelectObject

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

SHBrowseForFolderW
SHGetPathFromIDListA
SHGetFolderPathA
SHGetMalloc

Exports

Exports

winampGetOutModule

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/out_ds.dll
.dll windows:5 windows x86 arch:x86

f7608273befed96807e512405af2d575

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\out_ds\Release\out_ds.pdb

Imports

kernel32

WritePrivateProfileStructA
GetPrivateProfileStructA
lstrcpyA
lstrcpynA
lstrlenA
lstrcmpiA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetEvent
GetTickCount
Sleep
WaitForSingleObject
LoadLibraryA
GetProcAddress
FreeLibrary
CreateEventA
CreateThread
SetThreadPriority
WritePrivateProfileStringA
MulDiv
GetVersion
GetModuleHandleA
GetModuleFileNameA
DisableThreadLibraryCalls
GetModuleHandleW
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcatA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
InterlockedCompareExchange
InterlockedExchange
CloseHandle
GetPrivateProfileIntA

user32

EndDialog
SetFocus
SetDlgItemTextW
SetWindowPos
SetWindowTextW
GetClientRect
CloseClipboard
SetClipboardData
EmptyClipboard
InvalidateRect
SetWindowLongA
GetDlgItemInt
GetWindowLongA
GetDlgItemTextA
ShowWindow
EnableWindow
SetDlgItemTextA
SendDlgItemMessageA
DestroyWindow
CreateWindowExA
RegisterClassA
GetClassInfoA
SetTimer
KillTimer
DefWindowProcA
SetDlgItemInt
CheckDlgButton
MessageBoxA
CharNextA
CharPrevA
SendMessageA
IsWindow
wsprintfW
MessageBoxIndirectW
GetDlgItem
PostMessageA
wsprintfA
OpenClipboard

msvcr90

?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__CxxFrameHandler3
__dllonexit
_unlock
sprintf_s
_i64toa_s
_snprintf
log
_vswprintf_c_l
sqrt
log10
fabs
_crt_debugger_hook
__clean_type_info_names_internal
strlen
malloc
free
memcpy
memset
realloc
_vsnprintf
??2@YAPAXI@Z
calloc
??3@YAXPAX@Z
memcmp
pow

Exports

Exports

winampGetOutModule

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/out_wave.dll
.dll windows:5 windows x86 arch:x86

b2fbf027d99fdeb66516e7b841b8d39c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\out_wave\Release\out_wave.pdb

Imports

kernel32

FreeLibrary
InitializeCriticalSection
Sleep
LeaveCriticalSection
MulDiv
MultiByteToWideChar
GetProcAddress
EnterCriticalSection
DisableThreadLibraryCalls
GetModuleHandleA
DeleteCriticalSection
LocalFree
GetPrivateProfileStringA
WritePrivateProfileStringA
GetModuleFileNameA
lstrlenA
WaitForSingleObject
SetEvent
GetCurrentThread
CreateEventA
SetThreadPriority
LocalAlloc
CloseHandle
CreateThread
lstrcpyA
GetLastError
LoadLibraryA
RaiseException
InterlockedExchange

user32

SetTimer
SendDlgItemMessageA
KillTimer
wsprintfA
GetWindowLongA
GetDlgItem
EndDialog
EnableWindow
SetWindowTextW
SetDlgItemTextA
SendMessageA
IsWindow
MessageBoxW
MessageBoxIndirectW
wsprintfW

msvcr90

memcpy
_CIlog
memset
_CIpow
strrchr
strchr
??2@YAPAXI@Z
??3@YAXPAX@Z
_vswprintf_c_l
malloc
free

Exports

Exports

winampGetOutModule

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/read_file.dll
.dll windows:4 windows x86 arch:x86

7b9197cb192d549610776bfb9b2d0d53

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCPInfo
CreateFileA
CloseHandle
ReadFile
SetFilePointer
WideCharToMultiByte
IsDBCSLeadByte
GetLastError
GetVersion
FindClose
FindNextFileW
FindFirstFileW
DisableThreadLibraryCalls

user32

CharLowerA
CharNextA

msvcrt

fread
fseek
_stricmp
memset
__CxxFrameHandler
free
strcmp
malloc
strcat
strlen
strncpy
realloc
_errno
??2@YAPAXI@Z
strcpy
memcpy
strrchr
memmove
abs
getc
_fsopen
_strdup
ftell
fclose
fopen
fwrite
_fdopen
strchr
fputc
calloc
strstr
_wfsopen
mbstowcs
??1type_info@@UAE@XZ
strncmp
wcscpy
_initterm
_adjust_fdiv

Exports

Exports

RF_create
gzip_writefile
readerSource

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Plugins/reporter.exe
.exe windows:5 windows x86 arch:x86

8eb725bcc9a6a7d1ca99970d0aae30ef

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\sandbox\20131212_212712\gen_crasher\feedback\Release\feedback.pdb

Imports

comctl32

InitCommonControlsEx

rpcrt4

UuidCreate

kernel32

MultiByteToWideChar
GetLastError
WideCharToMultiByte
GetPrivateProfileIntW
lstrcmpW
lstrlenW
GetPrivateProfileStringW
CreateFileW
WriteFile
CloseHandle
GetFileSize
DeleteFileW
CreateDirectoryW
FileTimeToSystemTime
GetFileType
GetFileInformationByHandle
SetFilePointer
ReadFile
FileTimeToDosDateTime
GetCurrentProcess
UnmapViewOfFile
GetLocalTime
SystemTimeToFileTime
lstrlenA
GetTimeZoneInformation
lstrcpynW
GetTimeFormatW
GetTickCount
lstrcpyW
lstrcatW
OutputDebugStringW
GetComputerNameW
lstrcmpiA
RaiseException
LoadLibraryA
GetProcAddress
FreeLibrary
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetModuleHandleA
GetConsoleMode
GetConsoleCP
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
CreateProcessW
GetModuleFileNameW
SetEnvironmentVariableA
CreateFileA
GetDateFormatW
LCMapStringA
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoA
FlushFileBuffers
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapFree
HeapAlloc
GetStartupInfoW
RtlUnwind
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
Sleep
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
HeapCreate
VirtualFree

user32

MessageBoxW
CharPrevW
GetDlgItem
SendMessageW
SetDlgItemTextW
ShowWindow
UpdateWindow
DialogBoxParamW
EndDialog
CharNextW
SetActiveWindow
ReleaseCapture
EnableWindow
SetFocus
SetCapture
wsprintfW
KillTimer
SetTimer

advapi32

RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExW

shell32

SHOpenFolderAndSelectItems
SHGetDesktopFolder

wsock32

getservbyname
htons
WSAStartup
ioctlsocket
gethostbyname
connect
shutdown
closesocket
select
recv
send
socket

shlwapi

PathRemoveFileSpecW
PathAppendW

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Plugins/vis_nsfs.dll
.dll windows:5 windows x86 arch:x86

2d209f76ff5ee84b3ee7e3cc8808a04f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\vis_nsfs\Release\vis_nsfs.pdb

Imports

ddraw

DirectDrawCreate

kernel32

InterlockedExchange
GlobalAlloc
GlobalFree
Sleep
WritePrivateProfileStringW
GetPrivateProfileIntW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
VirtualQuery
GetPrivateProfileStructW
WritePrivateProfileStructW
MulDiv
GetVersionExA
GetTickCount

user32

EndPaint
SetTimer
PostQuitMessage
CharNextW
DrawTextW
CharPrevW
wsprintfA
BeginPaint
GetDC
InvalidateRect
GetWindowTextW
CreateWindowExA
ReleaseDC
DefWindowProcA
CheckDlgButton
IsDlgButtonChecked
PostMessageA
RegisterClassW
SetWindowTextA
DestroyWindow
GetDlgItemInt
SendDlgItemMessageA
RegisterWindowMessageW
IsIconic
UnregisterClassW
SetForegroundWindow
GetClientRect
SendMessageA
PtInRect
wsprintfW
ShowCursor
SetDlgItemInt
MessageBoxA
GetWindowLongW
GetDlgItem
SetWindowLongW
EndDialog
ShowWindow
SendMessageW
MapWindowPoints
SetCursor

gdi32

DeleteObject
SelectObject
Rectangle
SetBkMode
GetStockObject
CreateSolidBrush
SetTextColor
SetBkColor
CreateFontW
GetDeviceCaps

comdlg32

ChooseColorW

msvcr90

__dllonexit
__clean_type_info_names_internal
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_decode_pointer
_encoded_null
free
_malloc_crt
_encode_pointer
_lock
_onexit
_CIsqrt
_except_handler4_common
_crt_debugger_hook
_CItan
memset
_CIsin
_CIcos
memcpy
_CIatan2
_unlock
_CIatan

Exports

Exports

winampVisGetHeader

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/UnicodeTaskbarFix.w5s
.dll windows:5 windows x86 arch:x86

263263dd75e6a3faef21422c222bb112

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

d:\Dev\git_dro\winamp-plug-ins\UnicodeTaskbarFix\ReleaseUnicodeTaskbarFix.pdb

Imports

shlwapi

PathStripPathW

kernel32

DisableThreadLibraryCalls
GetCurrentProcess
VirtualQuery
GetVersionExW
lstrcmpiA
VirtualProtect
GetModuleHandleW
lstrcpynW
MultiByteToWideChar
TerminateProcess
lstrcmpiW
GetCurrentThreadId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter

user32

GetClassNameW
SetWindowLongW
IsWindow
SetWindowLongA
CallWindowProcW
GetWindowThreadProcessId
GetWindow
EnumThreadWindows
CallWindowProcA

msvcr90

??3@YAXPAX@Z
memset
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_except_handler4_common
__CxxFrameHandler3
??2@YAPAXI@Z
free
_wcsnicmp
malloc
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/aacdec.w5s
.dll windows:5 windows x86 arch:x86

e34e348d4dac19d6ba3f74a3af405a52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\aacdec\Release\aacdec.pdb

Imports

nsutil

nsutil_pcm_FloatToInt_Interleaved_Gain

msvcr90

_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_initterm
__clean_type_info_names_internal
_crt_debugger_hook
_encoded_null
free
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__CxxFrameHandler3
__dllonexit
_unlock
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
vsprintf
_except_handler4_common
memset
memcpy
memmove
_CIpow
_CIsin
_CIsqrt
_CIacos
_CIexp
_CIcos
_CIatan2
_CIatan
_CIlog
ceil
_CItan
malloc
floor
strncmp
strrchr

kernel32

GetCurrentProcessId
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 426KB - Virtual size: 425KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 358KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/aacdec.wbm
System/alac.w5s
.dll windows:5 windows x86 arch:x86

569ffb797fc822eaea3b3a905ebc5579

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr90

__CppXcptFilter
?terminate@@YAXXZ
_adjust_fdiv
_except_handler4_common
__clean_type_info_names_internal
_crt_debugger_hook
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
strcmp
fprintf
memset
__iob_func
malloc
free
?_type_info_dtor_internal_method@type_info@@QAEXXZ
memcpy

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
RaiseException
LoadLibraryA
GetLastError
InterlockedExchange
FreeLibrary
GetProcAddress
LocalAlloc
IsDebuggerPresent

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 950B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/alac.wbm
System/albumart.w5s
.dll windows:5 windows x86 arch:x86

423354ab79f5118fabdfa8073f568292

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\albumart\Release\albumart.pdb

Imports

shlwapi

PathCombineW
PathIsURLW
PathRemoveFileSpecW
PathRemoveExtensionW

kernel32

UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
GetFileSize
FindFirstFileW
MapViewOfFile
UnmapViewOfFile
CopyFileW
lstrcpynW
ReadFile
CreateFileW
FindClose
CreateFileMappingW
FindNextFileW
CloseHandle
DeleteFileW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
GetCurrentProcess

msvcr90

_wtoi
free
_wcsdup
_purecall
_unlock
__CxxFrameHandler3
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__clean_type_info_names_internal
_crt_debugger_hook
fclose
fwrite
??3@YAXPAX@Z
_vsnwprintf
wcsstr
_wfopen
wcsncpy
_wcsicmp
memcpy
memset
??2@YAPAXI@Z
__dllonexit

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/bmp.w5s
.dll windows:5 windows x86 arch:x86

2de40877667c682fd06e62186b3564d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\bmp\Release\bmp.pdb

Imports

kernel32

SetUnhandledExceptionFilter
lstrcpynW
GetTempPathW
GetTempFileNameW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

user32

LoadImageW

gdi32

CreateCompatibleDC
BitBlt
DeleteDC
CreateDIBSection
DeleteObject
SelectObject
GetObjectW

zlib

inflateInit_
inflateReset
inflate
inflateEnd

msvcr90

_wunlink
fwrite
abs
fclose
free
malloc
wcslen
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
_wfopen
_wcsicmp
??2@YAPAXI@Z
??3@YAXPAX@Z
memset
memcpy
_unlock

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/dlmgr.w5s
.dll windows:5 windows x86 arch:x86

fd4fc97a17c79b2ad196559e5ddcdeee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\dlmgr\Release\dlmgr.pdb

Imports

kernel32

GetTempFileNameW
InterlockedIncrement
InterlockedDecrement
WaitForSingleObject
SetEvent
GetTickCount
WriteFile
InitializeCriticalSection
WideCharToMultiByte
CreateEventA
LeaveCriticalSection
CreateFileW
GetTempPathW
EnterCriticalSection
DeleteCriticalSection
CloseHandle
DeleteFileW
SetWaitableTimer
CreateWaitableTimerA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
IsDebuggerPresent
InterlockedExchange

msvcr90

__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__clean_type_info_names_internal
_crt_debugger_hook
_unlock
??2@YAPAXI@Z
realloc
??3@YAXPAX@Z
_vsnprintf
strcpy_s
strstr
strlen
malloc
free
memcpy
memmove
__CxxFrameHandler3
memset

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/gif.w5s
.dll windows:5 windows x86 arch:x86

c1a25add55f504e815c8ebcc3ea8f7c4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\gif\Release\gif.pdb

Imports

kernel32

lstrcpynW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

msvcr90

fwrite
calloc
qsort
__iob_func
fprintf
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
strlen
fclose
realloc
fread
memset
malloc
free
wcslen
strncmp
_wcsicmp
memcpy
??2@YAPAXI@Z
??3@YAXPAX@Z
_decode_pointer

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1010B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/gracenote.w5s
.dll windows:5 windows x86 arch:x86

1a9c0bc9be285d7e967d7a90e777d9cd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\gracenote\Release\gracenote.pdb

Imports

shlwapi

PathCombineW
PathAppendW

kernel32

GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
FindFirstFileW
CreateDirectoryW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
FindClose
DeleteCriticalSection
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
RaiseException
LoadLibraryA
GetLastError
InterlockedExchange
FreeLibrary
GetProcAddress
LocalFree
LocalAlloc
GetCurrentProcessId

oleaut32

SysFreeString
SysAllocString

msvcr90

_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CxxFrameHandler3
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
??3@YAXPAX@Z
_CxxThrowException
_purecall
_vsnwprintf
memset
wcsstr
_wcsnicmp
_wtoi
free
__CppXcptFilter

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/jnetlib.w5s
.dll windows:5 windows x86 arch:x86

a20e44164a9423ab3ee0afaf256f5433

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\jnetlib\Release\jnetlib.pdb

Imports

kernel32

CreateThread
CloseHandle
WaitForSingleObject
LoadLibraryA
GetProcAddress
GetSystemDirectoryA
InterlockedDecrement
InterlockedIncrement
FreeLibrary
lstrcpynA
InterlockedExchangeAdd
FlushConsoleInputBuffer
InterlockedExchange
SetLastError
GetVersionExA
GlobalMemoryStatus
GetStdHandle
GetFileType
GetVersion
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
RaiseException
GetLastError
LocalAlloc

advapi32

CryptAcquireContextA
CryptReleaseContext
RegisterEventSourceA
ReportEventA
DeregisterEventSource
CryptGenRandom

msvcr90

?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__clean_type_info_names_internal
_crt_debugger_hook
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_time64
_stricmp
sprintf
strncpy_s
strcat_s
realloc
_vsnprintf
strcpy_s
memset
sprintf_s
_stat32
_gmtime32
signal
fputs
strcat
_purecall
atoi
strcpy
strlen
malloc
strncmp
_strnicmp
strtoul
strcspn
_strdup
strcmp
strncpy
strchr
strerror
getenv
wcsstr
vfprintf
_iob
abort
memchr
isdigit
qsort
fprintf
fclose
fread
fwrite
fflush
fopen
_setmode
ftell
fseek
fgets
_errno
isspace
isxdigit
memmove
_time32
strstr
calloc
free
memcpy
_fileno
tolower
isupper
sscanf
_getch

user32

GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 386KB - Virtual size: 385KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/jpeg.w5s
.dll windows:5 windows x86 arch:x86

59775181cea61bd17d62eb7bf828a8fd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\jpeg\Release\jpeg.pdb

Imports

shlwapi

PathFindExtensionW

kernel32

IsDebuggerPresent
UnhandledExceptionFilter
lstrcpynW
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
SetUnhandledExceptionFilter

msvcr90

strcmp
memset
sprintf
__iob_func
fprintf
exit
sscanf
getenv
_unlock
__dllonexit
_encode_pointer
_lock
_vsnwprintf
_setjmp3
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
malloc
free
_wtoi
memcpy
memcmp
_wcsicmp
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
longjmp
strlen
__CxxFrameHandler3
_onexit
_decode_pointer

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/playlist.w5s
.dll windows:5 windows x86 arch:x86

24fbb484b7b4f554a53a181b422b3335

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\playlist\Release\playlist.pdb

Imports

shlwapi

PathCombineW
PathCommonPrefixW
PathAddBackslashW
PathIsUNCW
PathIsSameRootW
PathIsURLW
PathIsRootW
PathCanonicalizeW
PathRemoveFileSpecW
PathFindExtensionW
StrRChrW
PathRemoveBackslashW
PathCombineA
PathAppendW
PathFindFileNameW
PathFileExistsW
PathStripPathW
PathIsFileSpecW

kernel32

CloseHandle
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
DisableThreadLibraryCalls
InterlockedCompareExchange
RaiseException
InterlockedExchange
FreeLibrary
LocalAlloc
InterlockedIncrement
InterlockedDecrement
lstrcpynW
CompareStringW
LoadLibraryW
GetProcAddress
lstrlenW
lstrlenA
lstrcpynA
GetLastError
WideCharToMultiByte
CreateFileW
ReadFile
MultiByteToWideChar
GetPrivateProfileStringW
GetPrivateProfileIntA
GetPrivateProfileStringA
lstrcmpiW
FindFirstFileW
GetLongPathNameW
FindClose
FindNextFileW
DeleteCriticalSection
InitializeCriticalSection
CreateDirectoryW
MoveFileW
EnterCriticalSection
LeaveCriticalSection
CopyFileW
lstrcmpW
QueryPerformanceFrequency
LoadLibraryA
Sleep
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId

user32

CharNextA
CharNextW
CharPrevA
CharUpperBuffW

oleaut32

VariantInit
SysAllocString
SysFreeString

msvcr90

__CppXcptFilter
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
free
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
__CxxFrameHandler3
_wcsdup
wcscmp
??3@YAXPAX@Z
memcmp
??2@YAPAXI@Z
_wtoi
_vsnwprintf
_purecall
wcslen
_wcsnicmp
memmove_s
calloc
memcpy
memmove
strstr
_strdup
wcsstr
_vsnprintf
_wcsicmp
_wfopen
fseek
ftell
fclose
fread
feof
fgets
strncmp
strlen
atoi
strtok
strcspn
malloc
memset
fprintf
fputs
fwrite
??_V@YAXPAX@Z
fputws
fputwc
fwprintf
??_U@YAPAXI@Z
_wtoi64
swscanf
wcschr
realloc

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/png.w5s
.dll windows:5 windows x86 arch:x86

2ce582f7354e8d76caee782578c63dc8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\png\Release\png.pdb

Imports

kernel32

lstrcpynW
LoadLibraryA
GetLastError
FreeLibrary
GetProcAddress
LocalAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
lstrlenA
ExitProcess
RaiseException

msvcr90

_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
malloc
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
free
fwrite
fflush
fprintf
__iob_func
fread
pow
memcmp
floor
memset
memcpy
longjmp
wcslen
memmove
_wcsicmp
??2@YAPAXI@Z
??3@YAXPAX@Z
_initterm
_setjmp3

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/tagz.w5s
.dll windows:5 windows x86 arch:x86

c738c7d80b382aa390175e39170008ec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\tagz\Release\tagz.pdb

Imports

shlwapi

PathStripPathW
PathFindExtensionW
StrStrW
PathFindFileNameW
PathRemoveFileSpecW
PathAddBackslashW
PathFindNextComponentW
StrCmpIW
PathRemoveBackslashW
StrCmpNIW

kernel32

IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
VirtualQuery
GetStringTypeExW
lstrcpynW
MulDiv
CompareStringW
lstrlenW
GetLocalTime
InterlockedCompareExchange
Sleep
InterlockedExchange

user32

CharUpperW
CharLowerW
CharPrevW
CharUpperBuffW
CharNextW

msvcr90

_crt_debugger_hook
__clean_type_info_names_internal
memcmp
free
_wcsdup
_wtoi
wcslen
wcsstr
_vsnwprintf
memset
calloc
realloc
_wcsicmp
??3@YAXPAX@Z
??2@YAPAXI@Z
_purecall
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/vlb.w5s
.dll windows:5 windows x86 arch:x86

1bf20438a92833a1f214d680b54ec158

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr90

_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_initterm
_except_handler4_common
__clean_type_info_names_internal
_crt_debugger_hook
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
malloc
free
_purecall
??3@YAXPAX@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
??2@YAPAXI@Z
memcpy
_CIsin
_CIcos
_CIpow
_CIsqrt
memset
__CxxFrameHandler3
_CxxThrowException

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/vlb.wbm
System/xml.w5s
.dll windows:5 windows x86 arch:x86

5a498736f6aaabe47c6509a5174dc6fd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\xml\Release\xml.pdb

Imports

kernel32

DisableThreadLibraryCalls
MultiByteToWideChar
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent

user32

CharUpperW

msvcr90

memmove
free
_wcsicmp
malloc
wcslen
wcsrchr
memset
memcpy
memcmp
rand
srand
realloc
_time64
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_crt_debugger_hook
??2@YAPAXI@Z
??3@YAXPAX@Z
_wcsdup

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
System/xspf.w5s
.dll windows:5 windows x86 arch:x86

4a2c34887c13eee798958cae8549cea6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\xspf\Release\xspf.pdb

Imports

shlwapi

PathIsURLW

kernel32

SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualQuery
GetFileAttributesW
ReadFile
CreateFileW
CloseHandle
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
UnhandledExceptionFilter

msvcr90

realloc
_wcsdup
wcslen
_purecall
??3@YAXPAX@Z
??2@YAPAXI@Z
memset
wcscmp
__CxxFrameHandler3
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
free
_wcsicmp
memcpy
_vsnwprintf
_unlock

Exports

Exports

GetWinamp5SystemComponent

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UninstWA.exe.nsis
elevatorps.dll
.dll regsvr32 windows:5 windows x86 arch:x86

9f3831678d0daf3d99f5ed0c1c329375

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\Elevator\ReleasePS\ElevatorPS.pdb

Imports

kernel32

DisableThreadLibraryCalls
HeapSize
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetLocaleInfoA
RtlUnwind
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetCurrentThreadId
GetCommandLineA
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
HeapFree
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapAlloc
VirtualAlloc
HeapReAlloc
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent

rpcrt4

CStdStubBuffer_Connect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_Disconnect
CStdStubBuffer_DebugServerRelease
IUnknown_AddRef_Proxy
CStdStubBuffer_QueryInterface
CStdStubBuffer_DebugServerQueryInterface
IUnknown_Release_Proxy
CStdStubBuffer_CountRefs
NdrOleAllocate
NdrOleFree
IUnknown_QueryInterface_Proxy
CStdStubBuffer_AddRef
NdrDllUnregisterProxy
NdrDllGetClassObject
NdrDllCanUnloadNow
NdrDllRegisterProxy
NdrCStdStubBuffer_Release

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetProxyDllInfo

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 512B - Virtual size: 45B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
jnetlib.dll
.dll windows:5 windows x86 arch:x86

50813cae0f3c35a7d5b342fe460ac67d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\replicant\jnetlib\Release\jnetlib.pdb

Imports

ws2_32

gethostbyaddr
WSASetLastError
getservbyname
getservbyport
WSAStartup
WSACleanup
recvfrom
sendto
bind
listen
accept
gethostname
WSAAddressToStringA
ioctlsocket
connect
select
getsockname
shutdown
setsockopt
recv
socket
__WSAFDIsSet
closesocket
send
getsockopt
inet_ntoa
inet_addr
htonl
WSAGetLastError
htons
ntohs
gethostbyname

kernel32

FlushConsoleInputBuffer
SetLastError
GetVersionExA
GlobalMemoryStatus
GetStdHandle
GetFileType
GetVersion
GetLastError
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
FreeLibrary
WaitForSingleObject
GetSystemDirectoryA
GetProcAddress
LoadLibraryA
CloseHandle
CreateThread
lstrcpynA
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
LoadLibraryW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange

advapi32

ReportEventA
RegisterEventSourceA
DeregisterEventSource
CryptGenRandom
CryptReleaseContext
CryptAcquireContextW

zlib

inflateEnd
inflate
inflateInit2_

msvcr90

sprintf_s
free
calloc
malloc
strlen
strchr
memset
strcpy_s
strcmp
strtoul
strcat_s
strncpy_s
_time64
memcpy
_purecall
_gmtime32
??2@YAPAXI@Z
isspace
strcpy
realloc
_strtoui64
sprintf
atoi
_vsnprintf
strncmp
strcat
strncpy
strcspn
memmove
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
__CxxFrameHandler3
_getch
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__clean_type_info_names_internal
_crt_debugger_hook
_stricmp
vfprintf
_iob
abort
memchr
signal
fputs
sscanf
isdigit
qsort
fprintf
fclose
fread
fwrite
fflush
fopen
_setmode
ftell
fseek
wcsstr
getenv
strerror
_strdup
_stat32
isxdigit
_time32
fgets
_errno
strstr
_fileno
tolower
_strnicmp
isupper
??3@YAXPAX@Z
_malloc_crt

user32

MessageBoxA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW

Exports

Exports

jnl_connection_get_state
jnl_connection_receive
jnl_connection_release
jnl_connection_send
jnl_connection_send_bytes_available
jnl_connection_send_bytes_in_queue
jnl_dns_create
jnl_dns_freeaddrinfo
jnl_dns_gethostname
jnl_dns_ntop
jnl_dns_release
jnl_dns_resolve
jnl_dns_resolve_now
jnl_htt_request_get_keep_alive
jnl_http_addheader
jnl_http_addheadervalue
jnl_http_allow_accept_all_reply_codes
jnl_http_allow_compression
jnl_http_bytes_available
jnl_http_connect
jnl_http_content_length
jnl_http_create
jnl_http_get_all_headers
jnl_http_get_bytes
jnl_http_get_connection
jnl_http_get_status
jnl_http_get_url
jnl_http_getheader
jnl_http_getreply
jnl_http_getreplycode
jnl_http_peek_bytes
jnl_http_release
jnl_http_request_addheader
jnl_http_request_create
jnl_http_request_get_connection
jnl_http_request_get_header
jnl_http_request_get_method
jnl_http_request_get_parameter
jnl_http_request_get_uri
jnl_http_request_release
jnl_http_request_reset
jnl_http_request_run
jnl_http_request_send_reply
jnl_http_request_set_reply_string
jnl_http_reset_headers
jnl_http_retain
jnl_http_run
jnl_http_set_persistent
jnl_http_set_proxy
jnl_http_set_recv_buffer_size
jnl_httpu_request_create
jnl_httpu_request_get_header
jnl_httpu_request_get_method
jnl_httpu_request_get_uri
jnl_httpu_request_process
jnl_httpu_request_release
jnl_init
jnl_listen_create
jnl_listen_create_from_address
jnl_listen_get_connection
jnl_listen_get_port
jnl_listen_release
jnl_quit
jnl_udp_create_multicast_listener
jnl_udp_get_address
jnl_udp_recv_bytes
jnl_udp_release
jnl_udp_run
jnl_udp_send
jnl_udp_set_peer
jnl_udp_set_peer_address

Sections

.text
Size: 383KB - Virtual size: 382KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libFLAC.dll
.dll windows:5 windows x86 arch:x86

c457b8a63992de37335bf1b5815f46cc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\replicant\libFLAC\src\libFLAC\Release\libFLAC_dynamic.pdb

Imports

kernel32

MultiByteToWideChar
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

msvcr90

fwrite
strrchr
fclose
memchr
__iob_func
_fileno
ferror
_fstat64
_setmode
strtod
strncmp
strchr
fread
_wchmod
_wfopen
_wstat64
_wunlink
_wutime64
_wrename
_vsnprintf_s
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_crt_debugger_hook
_errno
_fseeki64
feof
_ftelli64
frexp
_copysign
qsort
realloc
malloc
calloc
free
memmove
_strdup
_strnicmp
_CIcos
_CIexp
memcpy
memset
_CIlog
_except_handler3

Exports

Exports

FLAC_API_SUPPORTS_OGG_FLAC
FLAC__ChannelAssignmentString
FLAC__ENTROPY_CODING_METHOD_PARTITIONED_RICE2_ESCAPE_PARAMETER
FLAC__ENTROPY_CODING_METHOD_PARTITIONED_RICE2_PARAMETER_LEN
FLAC__ENTROPY_CODING_METHOD_PARTITIONED_RICE_ESCAPE_PARAMETER
FLAC__ENTROPY_CODING_METHOD_PARTITIONED_RICE_ORDER_LEN
FLAC__ENTROPY_CODING_METHOD_PARTITIONED_RICE_PARAMETER_LEN
FLAC__ENTROPY_CODING_METHOD_PARTITIONED_RICE_RAW_LEN
FLAC__ENTROPY_CODING_METHOD_TYPE_LEN
FLAC__EntropyCodingMethodTypeString
FLAC__FRAME_FOOTER_CRC_LEN
FLAC__FRAME_HEADER_BITS_PER_SAMPLE_LEN
FLAC__FRAME_HEADER_BLOCKING_STRATEGY_LEN
FLAC__FRAME_HEADER_BLOCK_SIZE_LEN
FLAC__FRAME_HEADER_CHANNEL_ASSIGNMENT_LEN
FLAC__FRAME_HEADER_CRC_LEN
FLAC__FRAME_HEADER_RESERVED_LEN
FLAC__FRAME_HEADER_SAMPLE_RATE_LEN
FLAC__FRAME_HEADER_SYNC
FLAC__FRAME_HEADER_SYNC_LEN
FLAC__FRAME_HEADER_ZERO_PAD_LEN
FLAC__FrameNumberTypeString
FLAC__MetadataTypeString
FLAC__Metadata_ChainStatusString
FLAC__Metadata_SimpleIteratorStatusString
FLAC__STREAM_METADATA_APPLICATION_ID_LEN
FLAC__STREAM_METADATA_CUESHEET_INDEX_NUMBER_LEN
FLAC__STREAM_METADATA_CUESHEET_INDEX_OFFSET_LEN
FLAC__STREAM_METADATA_CUESHEET_INDEX_RESERVED_LEN
FLAC__STREAM_METADATA_CUESHEET_IS_CD_LEN
FLAC__STREAM_METADATA_CUESHEET_LEAD_IN_LEN
FLAC__STREAM_METADATA_CUESHEET_MEDIA_CATALOG_NUMBER_LEN
FLAC__STREAM_METADATA_CUESHEET_NUM_TRACKS_LEN
FLAC__STREAM_METADATA_CUESHEET_RESERVED_LEN
FLAC__STREAM_METADATA_CUESHEET_TRACK_ISRC_LEN
FLAC__STREAM_METADATA_CUESHEET_TRACK_NUMBER_LEN
FLAC__STREAM_METADATA_CUESHEET_TRACK_NUM_INDICES_LEN
FLAC__STREAM_METADATA_CUESHEET_TRACK_OFFSET_LEN
FLAC__STREAM_METADATA_CUESHEET_TRACK_PRE_EMPHASIS_LEN
FLAC__STREAM_METADATA_CUESHEET_TRACK_RESERVED_LEN
FLAC__STREAM_METADATA_CUESHEET_TRACK_TYPE_LEN
FLAC__STREAM_METADATA_IS_LAST_LEN
FLAC__STREAM_METADATA_LENGTH_LEN
FLAC__STREAM_METADATA_PICTURE_COLORS_LEN
FLAC__STREAM_METADATA_PICTURE_DATA_LENGTH_LEN
FLAC__STREAM_METADATA_PICTURE_DEPTH_LEN
FLAC__STREAM_METADATA_PICTURE_DESCRIPTION_LENGTH_LEN
FLAC__STREAM_METADATA_PICTURE_HEIGHT_LEN
FLAC__STREAM_METADATA_PICTURE_MIME_TYPE_LENGTH_LEN
FLAC__STREAM_METADATA_PICTURE_TYPE_LEN
FLAC__STREAM_METADATA_PICTURE_WIDTH_LEN
FLAC__STREAM_METADATA_SEEKPOINT_FRAME_SAMPLES_LEN
FLAC__STREAM_METADATA_SEEKPOINT_PLACEHOLDER
FLAC__STREAM_METADATA_SEEKPOINT_SAMPLE_NUMBER_LEN
FLAC__STREAM_METADATA_SEEKPOINT_STREAM_OFFSET_LEN
FLAC__STREAM_METADATA_STREAMINFO_BITS_PER_SAMPLE_LEN
FLAC__STREAM_METADATA_STREAMINFO_CHANNELS_LEN
FLAC__STREAM_METADATA_STREAMINFO_MAX_BLOCK_SIZE_LEN
FLAC__STREAM_METADATA_STREAMINFO_MAX_FRAME_SIZE_LEN
FLAC__STREAM_METADATA_STREAMINFO_MD5SUM_LEN
FLAC__STREAM_METADATA_STREAMINFO_MIN_BLOCK_SIZE_LEN
FLAC__STREAM_METADATA_STREAMINFO_MIN_FRAME_SIZE_LEN
FLAC__STREAM_METADATA_STREAMINFO_SAMPLE_RATE_LEN
FLAC__STREAM_METADATA_STREAMINFO_TOTAL_SAMPLES_LEN
FLAC__STREAM_METADATA_TYPE_LEN
FLAC__STREAM_METADATA_VORBIS_COMMENT_ENTRY_LENGTH_LEN
FLAC__STREAM_METADATA_VORBIS_COMMENT_NUM_COMMENTS_LEN
FLAC__STREAM_SYNC
FLAC__STREAM_SYNC_LEN
FLAC__STREAM_SYNC_STRING
FLAC__SUBFRAME_LPC_QLP_COEFF_PRECISION_LEN
FLAC__SUBFRAME_LPC_QLP_SHIFT_LEN
FLAC__SUBFRAME_TYPE_CONSTANT_BYTE_ALIGNED_MASK
FLAC__SUBFRAME_TYPE_FIXED_BYTE_ALIGNED_MASK
FLAC__SUBFRAME_TYPE_LEN
FLAC__SUBFRAME_TYPE_LPC_BYTE_ALIGNED_MASK
FLAC__SUBFRAME_TYPE_VERBATIM_BYTE_ALIGNED_MASK
FLAC__SUBFRAME_WASTED_BITS_FLAG_LEN
FLAC__SUBFRAME_ZERO_PAD_LEN
FLAC__StreamDecoderErrorStatusString
FLAC__StreamDecoderInitStatusString
FLAC__StreamDecoderLengthStatusString
FLAC__StreamDecoderReadStatusString
FLAC__StreamDecoderSeekStatusString
FLAC__StreamDecoderStateString
FLAC__StreamDecoderTellStatusString
FLAC__StreamDecoderWriteStatusString
FLAC__StreamEncoderInitStatusString
FLAC__StreamEncoderReadStatusString
FLAC__StreamEncoderSeekStatusString
FLAC__StreamEncoderStateString
FLAC__StreamEncoderTellStatusString
FLAC__StreamEncoderWriteStatusString
FLAC__StreamMetadata_Picture_TypeString
FLAC__SubframeTypeString
FLAC__VENDOR_STRING
FLAC__VERSION_STRING
FLAC__format_blocksize_is_subset
FLAC__format_cuesheet_is_legal
FLAC__format_picture_is_legal
FLAC__format_sample_rate_is_subset
FLAC__format_sample_rate_is_valid
FLAC__format_seektable_is_legal
FLAC__format_seektable_sort
FLAC__format_vorbiscomment_entry_is_legal
FLAC__format_vorbiscomment_entry_name_is_legal
FLAC__format_vorbiscomment_entry_value_is_legal
FLAC__metadata_chain_check_if_tempfile_needed
FLAC__metadata_chain_delete
FLAC__metadata_chain_merge_padding
FLAC__metadata_chain_new
FLAC__metadata_chain_read
FLAC__metadata_chain_read_ogg
FLAC__metadata_chain_read_ogg_with_callbacks
FLAC__metadata_chain_read_with_callbacks
FLAC__metadata_chain_sort_padding
FLAC__metadata_chain_status
FLAC__metadata_chain_write
FLAC__metadata_chain_write_with_callbacks
FLAC__metadata_chain_write_with_callbacks_and_tempfile
FLAC__metadata_get_cuesheet
FLAC__metadata_get_picture
FLAC__metadata_get_streaminfo
FLAC__metadata_get_tags
FLAC__metadata_iterator_delete
FLAC__metadata_iterator_delete_block
FLAC__metadata_iterator_get_block
FLAC__metadata_iterator_get_block_type
FLAC__metadata_iterator_init
FLAC__metadata_iterator_insert_block_after
FLAC__metadata_iterator_insert_block_before
FLAC__metadata_iterator_new
FLAC__metadata_iterator_next
FLAC__metadata_iterator_prev
FLAC__metadata_iterator_set_block
FLAC__metadata_object_application_set_data
FLAC__metadata_object_clone
FLAC__metadata_object_cuesheet_calculate_cddb_id
FLAC__metadata_object_cuesheet_delete_track
FLAC__metadata_object_cuesheet_insert_blank_track
FLAC__metadata_object_cuesheet_insert_track
FLAC__metadata_object_cuesheet_is_legal
FLAC__metadata_object_cuesheet_resize_tracks
FLAC__metadata_object_cuesheet_set_track
FLAC__metadata_object_cuesheet_track_clone
FLAC__metadata_object_cuesheet_track_delete
FLAC__metadata_object_cuesheet_track_delete_index
FLAC__metadata_object_cuesheet_track_insert_blank_index
FLAC__metadata_object_cuesheet_track_insert_index
FLAC__metadata_object_cuesheet_track_new
FLAC__metadata_object_cuesheet_track_resize_indices
FLAC__metadata_object_delete
FLAC__metadata_object_is_equal
FLAC__metadata_object_new
FLAC__metadata_object_picture_is_legal
FLAC__metadata_object_picture_set_data
FLAC__metadata_object_picture_set_description
FLAC__metadata_object_picture_set_mime_type
FLAC__metadata_object_seektable_delete_point
FLAC__metadata_object_seektable_insert_point
FLAC__metadata_object_seektable_is_legal
FLAC__metadata_object_seektable_resize_points
FLAC__metadata_object_seektable_set_point
FLAC__metadata_object_seektable_template_append_placeholders
FLAC__metadata_object_seektable_template_append_point
FLAC__metadata_object_seektable_template_append_points
FLAC__metadata_object_seektable_template_append_spaced_points
FLAC__metadata_object_seektable_template_append_spaced_points_by_samples
FLAC__metadata_object_seektable_template_sort
FLAC__metadata_object_vorbiscomment_append_comment
FLAC__metadata_object_vorbiscomment_delete_comment
FLAC__metadata_object_vorbiscomment_entry_from_name_value_pair
FLAC__metadata_object_vorbiscomment_entry_matches
FLAC__metadata_object_vorbiscomment_entry_to_name_value_pair
FLAC__metadata_object_vorbiscomment_find_entry_from
FLAC__metadata_object_vorbiscomment_insert_comment
FLAC__metadata_object_vorbiscomment_remove_entries_matching
FLAC__metadata_object_vorbiscomment_remove_entry_matching
FLAC__metadata_object_vorbiscomment_replace_comment
FLAC__metadata_object_vorbiscomment_resize_comments
FLAC__metadata_object_vorbiscomment_set_comment
FLAC__metadata_object_vorbiscomment_set_vendor_string
FLAC__metadata_simple_iterator_delete
FLAC__metadata_simple_iterator_delete_block
FLAC__metadata_simple_iterator_get_application_id
FLAC__metadata_simple_iterator_get_block
FLAC__metadata_simple_iterator_get_block_length
FLAC__metadata_simple_iterator_get_block_offset
FLAC__metadata_simple_iterator_get_block_type
FLAC__metadata_simple_iterator_init
FLAC__metadata_simple_iterator_insert_block_after
FLAC__metadata_simple_iterator_is_last
FLAC__metadata_simple_iterator_is_writable
FLAC__metadata_simple_iterator_new
FLAC__metadata_simple_iterator_next
FLAC__metadata_simple_iterator_prev
FLAC__metadata_simple_iterator_set_block
FLAC__metadata_simple_iterator_status
FLAC__stream_decoder_delete
FLAC__stream_decoder_finish
FLAC__stream_decoder_flush
FLAC__stream_decoder_get_bits_per_sample
FLAC__stream_decoder_get_blocksize
FLAC__stream_decoder_get_channel_assignment
FLAC__stream_decoder_get_channels
FLAC__stream_decoder_get_decode_position
FLAC__stream_decoder_get_md5_checking
FLAC__stream_decoder_get_resolved_state_string
FLAC__stream_decoder_get_sample_rate
FLAC__stream_decoder_get_state
FLAC__stream_decoder_get_total_samples
FLAC__stream_decoder_init_FILE
FLAC__stream_decoder_init_file
FLAC__stream_decoder_init_ogg_FILE
FLAC__stream_decoder_init_ogg_file
FLAC__stream_decoder_init_ogg_stream
FLAC__stream_decoder_init_stream
FLAC__stream_decoder_new
FLAC__stream_decoder_process_single
FLAC__stream_decoder_process_until_end_of_metadata
FLAC__stream_decoder_process_until_end_of_stream
FLAC__stream_decoder_reset
FLAC__stream_decoder_seek_absolute
FLAC__stream_decoder_set_md5_checking
FLAC__stream_decoder_set_metadata_ignore
FLAC__stream_decoder_set_metadata_ignore_all
FLAC__stream_decoder_set_metadata_ignore_application
FLAC__stream_decoder_set_metadata_respond
FLAC__stream_decoder_set_metadata_respond_all
FLAC__stream_decoder_set_metadata_respond_application
FLAC__stream_decoder_set_ogg_serial_number
FLAC__stream_decoder_skip_single_frame
FLAC__stream_encoder_delete
FLAC__stream_encoder_disable_constant_subframes
FLAC__stream_encoder_disable_fixed_subframes
FLAC__stream_encoder_disable_verbatim_subframes
FLAC__stream_encoder_finish
FLAC__stream_encoder_get_bits_per_sample
FLAC__stream_encoder_get_blocksize
FLAC__stream_encoder_get_channels
FLAC__stream_encoder_get_do_escape_coding
FLAC__stream_encoder_get_do_exhaustive_model_search
FLAC__stream_encoder_get_do_md5
FLAC__stream_encoder_get_do_mid_side_stereo
FLAC__stream_encoder_get_do_qlp_coeff_prec_search
FLAC__stream_encoder_get_loose_mid_side_stereo
FLAC__stream_encoder_get_max_lpc_order
FLAC__stream_encoder_get_max_residual_partition_order
FLAC__stream_encoder_get_min_residual_partition_order
FLAC__stream_encoder_get_qlp_coeff_precision
FLAC__stream_encoder_get_resolved_state_string
FLAC__stream_encoder_get_rice_parameter_search_dist
FLAC__stream_encoder_get_sample_rate
FLAC__stream_encoder_get_state
FLAC__stream_encoder_get_streamable_subset
FLAC__stream_encoder_get_total_samples_estimate
FLAC__stream_encoder_get_verify
FLAC__stream_encoder_get_verify_decoder_error_stats
FLAC__stream_encoder_get_verify_decoder_state
FLAC__stream_encoder_init_FILE
FLAC__stream_encoder_init_file
FLAC__stream_encoder_init_ogg_FILE
FLAC__stream_encoder_init_ogg_file
FLAC__stream_encoder_init_ogg_stream
FLAC__stream_encoder_init_stream
FLAC__stream_encoder_new
FLAC__stream_encoder_process
FLAC__stream_encoder_process_interleaved
FLAC__stream_encoder_set_apodization
FLAC__stream_encoder_set_bits_per_sample
FLAC__stream_encoder_set_blocksize
FLAC__stream_encoder_set_channels
FLAC__stream_encoder_set_compression_level
FLAC__stream_encoder_set_do_escape_coding
FLAC__stream_encoder_set_do_exhaustive_model_search
FLAC__stream_encoder_set_do_md5
FLAC__stream_encoder_set_do_mid_side_stereo
FLAC__stream_encoder_set_do_qlp_coeff_prec_search
FLAC__stream_encoder_set_loose_mid_side_stereo
FLAC__stream_encoder_set_max_lpc_order
FLAC__stream_encoder_set_max_residual_partition_order
FLAC__stream_encoder_set_metadata
FLAC__stream_encoder_set_min_residual_partition_order
FLAC__stream_encoder_set_ogg_serial_number
FLAC__stream_encoder_set_qlp_coeff_precision
FLAC__stream_encoder_set_rice_parameter_search_dist
FLAC__stream_encoder_set_sample_rate
FLAC__stream_encoder_set_streamable_subset
FLAC__stream_encoder_set_total_samples_estimate
FLAC__stream_encoder_set_verify

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libmp4v2.dll
.dll windows:5 windows x86 arch:x86

bc928945f2d846d007405e740d0af648

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\libmp4v2\Release\libmp4v2.pdb

Imports

wsock32

htonl
ntohl
htons

kernel32

SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
MultiByteToWideChar
GetTempPathW
GetTempFileNameW
DeleteFileW
MoveFileW
CopyFileW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
UnhandledExceptionFilter

msvcr90

_purecall
strlen
memset
strncpy
_stricmp
__iob_func
fprintf
isalnum
strcmp
wcscpy
wcslen
_wfopen
memcmp
strcpy
fgetpos
fsetpos
fread
feof
fwrite
sprintf
realloc
strncmp
__CxxFrameHandler3
fopen
fclose
tolower
sscanf
_ftime64
_fstat64
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_crt_debugger_hook
_errno
free
memcpy
_snprintf
memmove
malloc
_vsnprintf
??3@YAXPAX@Z
??2@YAPAXI@Z
_fileno
_CxxThrowException
ceil
strchr

Exports

Exports

MP4AddAudioTrack
MP4Close
MP4ConvertFromTrackTimestamp
MP4ConvertToTrackDuration
MP4Create
MP4Delete3GPMetadata
MP4DeleteMetadataAlbum
MP4DeleteMetadataAlbumArtist
MP4DeleteMetadataArtist
MP4DeleteMetadataComment
MP4DeleteMetadataCoverArt
MP4DeleteMetadataDisk
MP4DeleteMetadataFreeForm
MP4DeleteMetadataGenre
MP4DeleteMetadataGrouping
MP4DeleteMetadataName
MP4DeleteMetadataRating
MP4DeleteMetadataTempo
MP4DeleteMetadataTool
MP4DeleteMetadataTrack
MP4DeleteMetadataWriter
MP4DeleteMetadataYear
MP4FindTrackId
MP4Free
MP4Get3GPMetadata
MP4Get3GPMetadataInteger
MP4GetChunkIdFromTime
MP4GetMetadataAlbum
MP4GetMetadataAlbumArtist
MP4GetMetadataArtist
MP4GetMetadataComment
MP4GetMetadataCompilation
MP4GetMetadataCoverArt
MP4GetMetadataDisk
MP4GetMetadataFreeForm
MP4GetMetadataGenre
MP4GetMetadataGrouping
MP4GetMetadataName
MP4GetMetadataRating
MP4GetMetadataTempo
MP4GetMetadataTool
MP4GetMetadataTrack
MP4GetMetadataWriter
MP4GetMetadataYear
MP4GetNumberOfTracks
MP4GetSampleIdFromTime
MP4GetSampleTime
MP4GetStringProperty
MP4GetTrackAudioMpeg4Type
MP4GetTrackBitRate
MP4GetTrackBytesProperty
MP4GetTrackDuration
MP4GetTrackESConfiguration
MP4GetTrackEsdsObjectTypeId
MP4GetTrackH264LengthSize
MP4GetTrackH264ProfileLevel
MP4GetTrackH264SeqPictHeaders
MP4GetTrackIntegerProperty
MP4GetTrackMaxSampleSize
MP4GetTrackMediaDataName
MP4GetTrackNumberOfChunks
MP4GetTrackNumberOfSamples
MP4GetTrackTimeScale
MP4GetTrackType
MP4GetTrackVideoHeight
MP4GetTrackVideoMetadata
MP4GetTrackVideoWidth
MP4GetVideoProfileLevel
MP4MakeIsmaCompliant
MP4Modify
MP4Optimize
MP4PrintAudioInfo
MP4PrintVideoInfo
MP4Read
MP4ReadChunk
MP4ReadEx
MP4ReadSample
MP4Set3GPMetadata
MP4Set3GPMetadataInteger
MP4SetAudioProfileLevel
MP4SetMetadataAlbum
MP4SetMetadataAlbumArtist
MP4SetMetadataArtist
MP4SetMetadataComment
MP4SetMetadataCompilation
MP4SetMetadataCoverArt
MP4SetMetadataDisk
MP4SetMetadataFreeForm
MP4SetMetadataGenre
MP4SetMetadataGrouping
MP4SetMetadataName
MP4SetMetadataRating
MP4SetMetadataTempo
MP4SetMetadataTool
MP4SetMetadataTrack
MP4SetMetadataWriter
MP4SetMetadataYear
MP4SetTimeScale
MP4SetTrackESConfiguration
MP4WriteSample

Sections

.text
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
libsndfile.dll
.dll windows:5 windows x86 arch:x86

57e967ce3ecc184c21c152d332959e2b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
CreateFileW
CreateFileA
FormatMessageA
LocalFree
GetStdHandle
SetFilePointer
ReadFile
WriteFile
CloseHandle
GetFileType
GetFileSize
SetEndOfFile
WideCharToMultiByte
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

msvcr90

strrchr
isdigit
_vsnprintf
memset
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_crt_debugger_hook
_gmtime64
wcsrchr
wcsncpy
strtol
printf
isprint
sscanf
strstr
_errno
frexp
strncpy
strncat
malloc
free
calloc
_time64
tolower
_CIfmod
_CIpow
memcpy
floor

Exports

Exports

sf_close
sf_command
sf_get_string
sf_open
sf_open_virtual
sf_read_double
sf_read_float
sf_read_int
sf_read_raw
sf_read_short
sf_readf_double
sf_readf_float
sf_readf_int
sf_readf_short
sf_seek
sf_set_string
sf_wchar_open

Sections

.text
Size: 192KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
nde.dll
.dll windows:5 windows x86 arch:x86

c6603071dd855830894ed4befcd489f8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\nde\Release\nde.pdb

Imports

kernel32

LoadLibraryW
GetProcAddress
FreeLibrary
InterlockedIncrement
InterlockedDecrement
HeapCreate
InterlockedExchange
OutputDebugStringA
OutputDebugStringW
GetCurrentProcessId
DeleteFileW
MoveFileW
CreateMutexW
LocalFree
MultiByteToWideChar
CreateFileW
GetLastError
Sleep
GetFileSize
CloseHandle
ReadFile
WriteFile
CopyFileW
WaitForSingleObject
DebugBreak
ReleaseMutex
WideCharToMultiByte
DisableThreadLibraryCalls
InterlockedCompareExchange
IsDebuggerPresent
GetFileAttributesW
CompareStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter

user32

CharLowerW
MessageBoxA

advapi32

ConvertStringSecurityDescriptorToSecurityDescriptorW

nxlite

NXStringMalloc
NXStringSetHeap
NXStringRelease
NXStringRetain
NXStringCreateWithUTF16
NXStringCreateWithBytes

msvcr90

??2@YAPAXI@Z
free
malloc
calloc
memmove
_wcsicmp
_wtoi
wcsstr
wcschr
_wtoi64
iswxdigit
_vsnwprintf
realloc
strchr
strstr
_localtime64
_mktime64
_time64
wcsncpy
wcstol
?terminate@@YAXXZ
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_crt_debugger_hook
memcpy
memset
??3@YAXPAX@Z
__CxxFrameHandler3

Exports

Exports

??0LinkedListEntry@@QAE@ABV0@@Z
??0LinkedListEntry@@QAE@XZ
??0Scanner@@QAE@ABV0@@Z
??0Scanner@@QAE@PAVTable@@@Z
??1LinkedListEntry@@UAE@XZ
??1Scanner@@MAE@XZ
??4LinkedListEntry@@QAEAAV0@ABV0@@Z
??4Scanner@@QAEAAV0@ABV0@@Z
??_7LinkedListEntry@@6B@
??_7Scanner@@6B@
?AddFilterById@Scanner@@QAEHEPAVField@@E@Z
?AddFilterByName@Scanner@@QAEHPB_WPAVField@@E@Z
?AddFilterOp@Scanner@@QAEHE@Z
?Bof@Scanner@@QAEHXZ
?CacheLastLocate@Scanner@@IAEXHHPAVField@@PAVIndex@@H@Z
?Cancel@Scanner@@QAEXXZ
?CheckFilters@Scanner@@IAEHXZ
?CheckIndexing@Table@@QAEHXZ
?ClearDirtyBit@Scanner@@QAEXXZ
?Delete@Scanner@@QAEXXZ
?DeleteField@Scanner@@QAEXPAVField@@@Z
?DeleteFieldById@Scanner@@QAEXE@Z
?DeleteFieldByName@Scanner@@QAEXPB_W@Z
?Edit@Scanner@@QAEXXZ
?EnableRowCache@Table@@QAEXXZ
?Eof@Scanner@@QAEHXZ
?First@Scanner@@QAEXPAH@Z
?FragmentationLevel@Scanner@@QAEMXZ
?GetColumnById@Scanner@@QAEPAVColumnField@@E@Z
?GetColumnByName@Scanner@@QAEPAVColumnField@@PB_W@Z
?GetColumns@Table@@QAEPAVRecord@@XZ
?GetCurrentRecord@Scanner@@IAEXXZ
?GetFieldById@Scanner@@QAEPAVField@@E@Z
?GetFieldByName@Scanner@@QAEPAVField@@PB_W@Z
?GetIndex@Scanner@@QAEPAVIndex@@XZ
?GetLastFilter@Scanner@@QAEPAVFilter@@XZ
?GetLastQuery@Scanner@@QAEPB_WXZ
?GetNext@LinkedListEntry@@QBEPAV1@XZ
?GetPrevious@LinkedListEntry@@QBEPAV1@XZ
?GetRecord@Scanner@@QAEPAVRecord@@H@Z
?GetRecordById@Scanner@@QAEXHH@Z
?GetRecordId@Scanner@@QAEHXZ
?GetRecordsCount@Scanner@@QAEHXZ
?GetTable@Scanner@@QAEPAVTable@@XZ
?HasIndexChanged@Scanner@@QAEHXZ
?IndexModified@Scanner@@QAEXXZ
?Insert@Scanner@@QAEXXZ
?Last@Scanner@@QAEXPAH@Z
?LocateById@Scanner@@QAEHHHPAVField@@PAH@Z
?LocateByIdEx@Scanner@@QAEHHHPAVField@@PAHH@Z
?LocateByName@Scanner@@QAEHPB_WHPAVField@@PAH@Z
?MatchFilter@Scanner@@QAE_NPAVFilter@@@Z
?MatchFilters@Scanner@@IAE_NXZ
?MatchSearch@Scanner@@IAE_NABV?$ValueSet@EV?$ValueSetComp@E@@@@PAVStringField@@@Z
?MatchSearches@Scanner@@IAE_NXZ
?New@Scanner@@QAEXXZ
?NewFieldById@Scanner@@QAEPAVField@@EE@Z
?NewFieldByName@Scanner@@QAEPAVField@@PB_WE@Z
?NewFieldByType@Scanner@@QAEPAVField@@EEE@Z
?Next@Scanner@@QAEHPAH@Z
?Post@Scanner@@QAEXXZ
?Previous@Scanner@@QAEHPAH@Z
?Query@Scanner@@QAEHPB_W@Z
?Query_CleanUp@Scanner@@IAEXXZ
?Query_EatSpace@Scanner@@SAPB_WPB_W@Z
?Query_GetNextToken@Scanner@@SAHPB_WPAHPAPA_WH@Z
?Query_LookupToken@Scanner@@KAHPB_W@Z
?Query_Parse@Scanner@@QAEHPB_W@Z
?Query_ProbeAlphaNum@Scanner@@SAPA_WPA_W@Z
?Query_ProbeNonAlphaNum@Scanner@@SAPB_WPB_W@Z
?Query_ProbeSpace@Scanner@@SAPA_WPA_W@Z
?Query_SyntaxError@Scanner@@IAEXH@Z
?Query_isControlChar@Scanner@@SAH_W@Z
?RemoveFilters@Scanner@@QAEXXZ
?Search@Scanner@@QAEXPB_W@Z
?SetWorkingIndexById@Scanner@@QAEHE@Z
?SetWorkingIndexByName@Scanner@@QAEHPB_W@Z
?WalkFields@Record@@QAEXP6A_NPAV1@PAVField@@PAX@Z2@Z
?WalkFields@Scanner@@QAEXP6A_NPAVRecord@@PAVField@@PAX@Z2@Z
?WalkFilters@Scanner@@QAEXP6A_NPAV1@PAVFilter@@PAX@Z2@Z
NDE_BinaryField_GetData
NDE_BinaryField_SetData
NDE_ColumnField_GetDataType
NDE_ColumnField_GetFieldID
NDE_ColumnField_GetFieldName
NDE_CreateDatabase
NDE_Database_CloseTable
NDE_Database_OpenTable
NDE_DestroyDatabase
NDE_Field_GetID
NDE_Field_GetType
NDE_Filter_GetData
NDE_Filter_GetID
NDE_Filter_GetOp
NDE_Init
NDE_Int128Field_SetValue
NDE_Int64Field_Create
NDE_Int64Field_GetValue
NDE_Int64Field_SetValue
NDE_IntegerField_Create
NDE_IntegerField_GetValue
NDE_IntegerField_SetValue
NDE_Quit
NDE_Scanner_AddFilterByID
NDE_Scanner_BOF
NDE_Scanner_Delete
NDE_Scanner_DeleteField
NDE_Scanner_EOF
NDE_Scanner_Edit
NDE_Scanner_First
NDE_Scanner_GetFieldByID
NDE_Scanner_GetFieldByName
NDE_Scanner_GetLastQuery
NDE_Scanner_GetRecordsCount
NDE_Scanner_LocateField
NDE_Scanner_LocateFilename
NDE_Scanner_LocateInteger
NDE_Scanner_LocateNDEFilename
NDE_Scanner_LocateNDEString
NDE_Scanner_LocateString
NDE_Scanner_New
NDE_Scanner_NewFieldByID
NDE_Scanner_NewFieldByName
NDE_Scanner_NewFieldByType
NDE_Scanner_Next
NDE_Scanner_Post
NDE_Scanner_Query
NDE_Scanner_RemoveFilters
NDE_Scanner_Search
NDE_Scanner_WalkFields
NDE_StringField_GetString
NDE_StringField_SetNDEString
NDE_StringField_SetString
NDE_Table_AddIndexByID
NDE_Table_AddIndexByIDW
NDE_Table_Compact
NDE_Table_CreateScanner
NDE_Table_DestroyScanner
NDE_Table_GetColumnByID
NDE_Table_GetColumnByName
NDE_Table_GetRecordsCount
NDE_Table_NewColumn
NDE_Table_NewColumnW
NDE_Table_PostColumns
NDE_Table_SetColumnSearchableByID
NDE_Table_Sync
NDE_Time_ApplyConversion
nde_wcsicmp_fn
ndestring_get_string
ndestring_malloc
ndestring_release
ndestring_retain
ndestring_wcsdup
ndestring_wcsndup

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
nsutil.dll
.dll windows:5 windows x86 arch:x86

6cff952b80426ac0809a76fd3589ec62

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\nsutil\Release\nsutil.pdb

Imports

msvcr90

_adjust_fdiv
__CppXcptFilter
__clean_type_info_names_internal
_amsg_exit
__dllonexit
_lock
_onexit
_except_handler4_common
_crt_debugger_hook
_initterm_e
_initterm
_decode_pointer
_encoded_null
_malloc_crt
_encode_pointer
sin
exp
sqrt
cos
_aligned_malloc
calloc
_unlock
free
malloc
realloc

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent

Exports

Exports

nsutil_alpha_PremultiplyValue_RGB8
nsutil_alpha_Premultiply_RGB32
nsutil_fft_Create_F32R
nsutil_fft_Forward_F32R_IP
nsutil_iir_Create_F32
nsutil_iir_Create_F64
nsutil_iir_Destroy_F32
nsutil_iir_Destroy_F64
nsutil_iir_Filter_F32
nsutil_iir_Filter_F32_IP
nsutil_iir_Filter_F64_IP
nsutil_iir_Reset_F32
nsutil_iir_Reset_F64
nsutil_image_ConvertFlipped_RGB24_RGB32
nsutil_image_Convert_RGB24_RGB32
nsutil_image_Convert_YUV420_RGB32
nsutil_image_CopyFlipped_U8
nsutil_image_Copy_U8
nsutil_image_FillRectAlpha_RGB32
nsutil_image_PaletteFlipped_RGB32
nsutil_image_Palette_RGB32
nsutil_image_Recolor_RGB32
nsutil_pcm_FloatToInt_Interleaved
nsutil_pcm_FloatToInt_Interleaved_Gain
nsutil_pcm_IntToFloat_Interleaved
nsutil_pcm_IntToFloat_Interleaved_Gain
nsutil_pcm_S8ToS16_Interleaved
nsutil_pcm_U8ToS16_Interleaved
nsutil_stats_RMS_F32
nsutil_window_FillHann_F32_IP
nsutil_window_FillKaiser_F32_IP
nsutil_window_Hann_F32_IP
nsutil_window_Multiply_F32_IP

Sections

.text
Size: 397KB - Virtual size: 396KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
nxlite.dll
.dll windows:5 windows x86 arch:x86

13a1a81bfd09aa095fc471ce536c2497

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\replicant\nx\Release\nxlite.pdb

Imports

kernel32

CopyFileW
ReplaceFileW
MoveFileW
DeleteFileW
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
CompareStringW
Sleep
HeapReAlloc
HeapAlloc
HeapFree
GetProcessHeap
WideCharToMultiByte
MultiByteToWideChar
GetLastError
LCMapStringW
WaitForSingleObject
GetCurrentThread
SetThreadPriority
GetExitCodeThread
CloseHandle
CreateThread
GetTickCount
GetTempPathW
GetCurrentThreadId
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
RaiseException
LoadLibraryA
FreeLibrary
GetProcAddress
LocalAlloc
InterlockedExchange
CreateEventW
SetEvent
SetUnhandledExceptionFilter
IsDebuggerPresent
UnhandledExceptionFilter

user32

wsprintfW

msvcr90

??3@YAXPAX@Z
fwrite
fclose
sprintf
??_V@YAXPAX@Z
realloc
_purecall
swscanf
vsprintf
wcstol
wcstod
_ui64tow
_vscprintf
_i64tow
rand
_aligned_malloc
??2@YAPAXI@Z
__CxxFrameHandler3
_encode_pointer
_malloc_crt
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_crt_debugger_hook
_close
_read
fread
fgetc
_errno
_wfopen
fflush
_fseeki64
_chsize_s
ungetc
calloc
feof
_fstat64
_fileno
_wstat64
malloc
free
_wopen
_strdup
memcpy
_time64
memset

shlwapi

UrlGetPartW
PathIsURLW
PathCombineW

Exports

Exports

NXDataCreate
NXDataCreateEmpty
NXDataCreateFromURI
NXDataCreateWithSize
NXDataGet
NXDataGetDescription
NXDataGetMIME
NXDataGetSourceStat
NXDataGetSourceURI
NXDataRelease
NXDataRetain
NXDataSetDescription
NXDataSetMIME
NXDataSetSourceStat
NXDataSetSourceURI
NXDataSize
NXFileEndOfFile
NXFileLength
NXFileLockRegion
NXFileOpenFile
NXFileOpenProgressiveDownloader
NXFilePeekByte
NXFileProgressiveDownloaderAvailable
NXFileRead
NXFileRelease
NXFileRetain
NXFileSeek
NXFileStat
NXFileSync
NXFileTell
NXFileTruncate
NXFileUnlockRegion
NXFileWrite
NXFile_fstat
NXFile_move
NXFile_stat
NXFile_statFILE
NXFile_unlink
NXOnce
NXOnceInit
NXPathIsURL
NXPathMatchExtension
NXPathMatchExtensionList
NXPathProtocol
NXSleep
NXSleepYield
NXStringCompare
NXStringCreate
NXStringCreateBasePathFromFilename
NXStringCreateEmpty
NXStringCreateFromPath
NXStringCreateFromUInt64
NXStringCreateFromUTF8
NXStringCreateWithBytes
NXStringCreateWithCString
NXStringCreateWithFormatting
NXStringCreateWithHeap
NXStringCreateWithInt64
NXStringCreateWithUInt64
NXStringCreateWithUTF16
NXStringCreateWithUTF8
NXStringGetBytes
NXStringGetBytesDirect
NXStringGetBytesSize
NXStringGetCString
NXStringGetDoubleValue
NXStringGetGUIDValue
NXStringGetIntegerValue
NXStringGetLength
NXStringKeywordCaseCompare
NXStringKeywordCompare
NXStringKeywordCompareWithCString
NXStringMalloc
NXStringMallocWithHeap
NXStringRealloc
NXStringRelease
NXStringRetain
NXStringSetHeap
NXThreadCreate
NXThreadCurrentSetPriority
NXThreadJoin
NXURICreateFromPath
NXURICreateRemovingFilename
NXURICreateTemp
NXURICreateTempForFilepath
NXURICreateTempWithExtension
NXURICreateWithNXString
NXURICreateWithPath
NXURICreateWithUTF8
NXURIGetLength
NXURIGetNXString
NXURIMalloc
NXURIRelease
NXURIRetain

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
tataki.dll
.dll windows:5 windows x86 arch:x86

e4e6cad233ef266efbf07621466e1ab9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\tataki\Release\tataki.pdb

Imports

nsutil

nsutil_alpha_PremultiplyValue_RGB8
nsutil_alpha_Premultiply_RGB32
nsutil_image_FillRectAlpha_RGB32

kernel32

GetStringTypeExW
InterlockedExchange
InterlockedCompareExchange
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
LocalAlloc
Sleep
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
FreeLibrary
RaiseException
GetLastError
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetProcAddress
LoadLibraryA
QueryPerformanceFrequency
OutputDebugStringA

user32

SetRect
OffsetRect
GetWindowRect
GetDCEx
BeginPaint
EndPaint
ReleaseDC
GetDC
PtInRect
IsRectEmpty
DrawFrameControl
IntersectRect

gdi32

GetObjectA
InvertRgn
GetRegionData
CreateRectRgnIndirect
RectInRegion
GetRgnBox
OffsetRgn
PtInRegion
ExtCreateRegion
SetRectRgn
CombineRgn
CreateRectRgn
GetDeviceCaps
StretchBlt
SetStretchBltMode
BitBlt
GetClipRgn
GetClipBox
SelectClipRgn
LineTo
MoveToEx
Rectangle
CreatePen
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC
CreateDIBSection
CreateSolidBrush
FillRgn
SetBkColor
ExtTextOutW
GetStockObject

msvcr90

memcpy
__CxxFrameHandler3
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_crt_debugger_hook
realloc
memmove
memset
malloc
vsprintf_s
wcslen
strlen
_wcsdup
free
??2@YAPAXI@Z
_purecall
??_V@YAXPAX@Z
??3@YAXPAX@Z
_except_handler3

Exports

Exports

??0AutoSkinBitmap@@QAE@ABV0@@Z
??0AutoSkinBitmap@@QAE@PB_W@Z
??0BaseCloneCanvas@@QAE@ABV0@@Z
??0BaseCloneCanvas@@QAE@PAVifc_canvas@@@Z
??0BitsCanvas@@QAE@ABV0@@Z
??0BitsCanvas@@QAE@PAXHH@Z
??0BltCanvas@@QAE@ABV0@@Z
??0BltCanvas@@QAE@HHPAUHWND__@@H@Z
??0BltCanvas@@QAE@PAUHBITMAP__@@@Z
??0BltCanvas@@QAE@XZ
??0Canvas@@IAE@XZ
??0Canvas@@QAE@ABV0@@Z
??0DCBltCanvas@@QAE@ABV0@@Z
??0DCBltCanvas@@QAE@XZ
??0DCCanvas@@QAE@ABV0@@Z
??0DCCanvas@@QAE@PAUHDC__@@PAVBaseWnd@@@Z
??0DCExBltCanvas@@QAE@ABV0@@Z
??0DCExBltCanvas@@QAE@PAUHWND__@@PAUHRGN__@@K@Z
??0DDSurfaceCanvas@@QAE@ABV0@@Z
??0DDSurfaceCanvas@@QAE@PAUIDirectDrawSurface@@HH@Z
??0FilteredColor@@QAE@ABV0@@Z
??0FilteredColor@@QAE@KPB_W@Z
??0MemCanvas@@QAE@ABV0@@Z
??0MemCanvas@@QAE@XZ
??0PaintBltCanvas@@QAE@ABV0@@Z
??0PaintBltCanvas@@QAE@XZ
??0PaintCanvas@@QAE@ABV0@@Z
??0PaintCanvas@@QAE@XZ
??0RegionI@@QAE@ABV0@@Z
??0RegionI@@QAE@HHHH@Z
??0RegionI@@QAE@PAUHRGN__@@@Z
??0RegionI@@QAE@PAVCanvas@@PAUtagRECT@@@Z
??0RegionI@@QAE@PAVSkinBitmap@@PAUtagRECT@@HH_NHDHH@Z
??0RegionI@@QAE@PBUtagRECT@@@Z
??0RegionI@@QAE@PBV0@@Z
??0RegionI@@QAE@XZ
??0RegionServerI@@QAE@ABV0@@Z
??0RegionServerI@@QAE@XZ
??0SkinBitmap@@QAE@ABV0@@Z
??0SkinBitmap@@QAE@HHK@Z
??0SkinBitmap@@QAE@PAKHH_N@Z
??0SkinBitmap@@QAE@PAUHBITMAP__@@@Z
??0SkinBitmap@@QAE@PAUHBITMAP__@@PAUHDC__@@HPAX@Z
??0SkinBitmap@@QAE@PAUHINSTANCE__@@HPB_W@Z
??0SkinBitmap@@QAE@PAVifc_canvas@@@Z
??0SkinBitmap@@QAE@PB_WH@Z
??0SkinColor@@QAE@ABV0@@Z
??0SkinColor@@QAE@PB_W0@Z
??0SysCanvas@@QAE@ABV0@@Z
??0SysCanvas@@QAE@XZ
??0TextInfoCanvas@@QAE@ABV0@@Z
??0TextInfoCanvas@@QAE@PAVBaseWnd@@@Z
??0WndCanvas@@QAE@ABV0@@Z
??0WndCanvas@@QAE@PAVBaseWnd@@@Z
??0WndCanvas@@QAE@XZ
??1AutoSkinBitmap@@UAE@XZ
??1BaseCloneCanvas@@UAE@XZ
??1BitsCanvas@@UAE@XZ
??1BltCanvas@@UAE@XZ
??1Canvas@@UAE@XZ
??1DCBltCanvas@@UAE@XZ
??1DCCanvas@@UAE@XZ
??1DCExBltCanvas@@UAE@XZ
??1DDSurfaceCanvas@@UAE@XZ
??1FilteredColor@@UAE@XZ
??1MemCanvas@@UAE@XZ
??1PaintBltCanvas@@UAE@XZ
??1PaintCanvas@@UAE@XZ
??1RegionI@@UAE@XZ
??1RegionServerI@@UAE@XZ
??1SkinBitmap@@QAE@XZ
??1SkinColor@@UAE@XZ
??1SysCanvas@@UAE@XZ
??1TextInfoCanvas@@UAE@XZ
??1WndCanvas@@UAE@XZ
??4AutoSkinBitmap@@QAEAAV0@ABV0@@Z
??4AutoSkinBitmap@@QAEHH@Z
??4AutoSkinBitmap@@QAEPB_WPB_W@Z
??4BaseCloneCanvas@@QAEAAV0@ABV0@@Z
??4BitsCanvas@@QAEAAV0@ABV0@@Z
??4Blenders@@QAEAAV0@ABV0@@Z
??4BltCanvas@@QAEAAV0@ABV0@@Z
??4Canvas@@QAEAAV0@ABV0@@Z
??4DCBltCanvas@@QAEAAV0@ABV0@@Z
??4DCCanvas@@QAEAAV0@ABV0@@Z
??4DCExBltCanvas@@QAEAAV0@ABV0@@Z
??4DDSurfaceCanvas@@QAEAAV0@ABV0@@Z
??4FilteredColor@@QAEAAV0@ABV0@@Z
??4MemCanvas@@QAEAAV0@ABV0@@Z
??4PaintBltCanvas@@QAEAAV0@ABV0@@Z
??4PaintCanvas@@QAEAAV0@ABV0@@Z
??4RegionI@@QAEAAV0@ABV0@@Z
??4RegionServerI@@QAEAAV0@ABV0@@Z
??4SkinBitmap@@QAEAAV0@ABV0@@Z
??4SkinColor@@QAEAAV0@ABV0@@Z
??4SkinColor@@QAEPB_WPB_W@Z
??4SysCanvas@@QAEAAV0@ABV0@@Z
??4TextInfoCanvas@@QAEAAV0@ABV0@@Z
??4WndCanvas@@QAEAAV0@ABV0@@Z
??BAutoSkinBitmap@@QAEPAVSkinBitmap@@XZ
??BSkinColor@@QAEHXZ
??_7AutoSkinBitmap@@6B@
??_7BaseCloneCanvas@@6B@
??_7BitsCanvas@@6B@
??_7BltCanvas@@6B@
??_7DCBltCanvas@@6B@
??_7DCCanvas@@6B@
??_7DCExBltCanvas@@6B@
??_7DDSurfaceCanvas@@6B@
??_7FilteredColor@@6B@
??_7MemCanvas@@6B@
??_7PaintBltCanvas@@6B@
??_7PaintCanvas@@6B@
??_7RegionI@@6B@
??_7RegionServerI@@6B@
??_7SkinBitmap@@6B@
??_7SkinColor@@6B@
??_7SysCanvas@@6B@
??_7TextInfoCanvas@@6B@
??_7WndCanvas@@6B@
??_FAutoSkinBitmap@@QAEXXZ
??_FBaseCloneCanvas@@QAEXXZ
??_FDCCanvas@@QAEXXZ
??_FFilteredColor@@QAEXXZ
??_FSkinColor@@QAEXXZ
?AddRef@SkinBitmap@@QAEXXZ
?AllocBitmap@BltCanvas@@AAEXHHH@Z
?BLEND4@Blenders@@SAIPAIIHH@Z
?BLEND4_MMX@Blenders@@SAIPAIIHH@Z
?BLEND_ADJ1@Blenders@@SAIIIH@Z
?BLEND_ADJ1_MMX@Blenders@@SAIIIH@Z
?BLEND_ADJ2@Blenders@@SAIII@Z
?BLEND_ADJ2_MMX@Blenders@@SAIII@Z
?BLEND_ADJ3@Blenders@@SAIIIH@Z
?BLEND_ADJ3_MMX@Blenders@@SAIIIH@Z
?BLEND_AVG@Blenders@@SAIII@Z
?BLEND_AVG_MMX@Blenders@@SAIII@Z
?BLEND_MMX_END@Blenders@@SAXXZ
?BLEND_MUL@Blenders@@SAIIH@Z
?BLEND_MUL_MMX@Blenders@@SAIIH@Z
?DestructiveResize@BltCanvas@@QAEXHHH@Z
?GetColor@SkinColor@@SAKPB_W0K@Z
?MMX_AVAILABLE@Blenders@@SAHXZ
?Release@SkinBitmap@@QAEXXZ
?TryGetColor@SkinColor@@SA_NPAKPB_W1@Z
?_dispatch@AutoSkinBitmap@@MAEHHPAXPAPAXH@Z
?_dispatch@Canvas@@MAEHHPAXPAPAXH@Z
?_dispatch@RegionI@@MAEHHPAXPAPAXH@Z
?_dispatch@RegionServerI@@MAEHHPAXPAPAXH@Z
?addRect@RegionI@@QAEXPBUtagRECT@@@Z
?addRef@RegionServerI@@UAEXPAX@Z
?addRegion@RegionI@@QAEXPBVapi_region@@@Z
?alphaToRegionRect@RegionI@@AAEPAUHRGN__@@PAVSkinBitmap@@HH_NHHHH1HEHH@Z
?alphaToRegionRect@RegionI@@QAEPAUHRGN__@@PAXHHHHHHHH_NHHHH1HEHH@Z
?alphatable@Blenders@@2PAY0BAA@EA
?andRegion@RegionI@@QAEXPBVapi_region@@@Z
?antiAliasTo@Canvas@@QAEXPAV1@HHH@Z
?attachToClient@WndCanvas@@QAEHPAVBaseWnd@@@Z
?beginPaint@PaintBltCanvas@@QAEHPAVBaseWnd@@@Z
?beginPaint@PaintCanvas@@QAEHPAUHWND__@@@Z
?beginPaint@PaintCanvas@@QAEHPAVBaseWnd@@@Z
?beginPaintNC@PaintBltCanvas@@QAEHPAVBaseWnd@@@Z
?blit@Canvas@@QAEXHHPAV1@HHHH@Z
?blit@SkinBitmap@@QAEXPAVifc_canvas@@HH@Z
?blitAlpha@AutoSkinBitmap@@QAEXPAVifc_canvas@@HHH@Z
?blitAlpha@Canvas@@QAEXPAVifc_canvas@@HHH@Z
?blitAlpha@SkinBitmap@@QAEXPAVifc_canvas@@HHH@Z
?blitRectToTile@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@1HHH@Z
?blitTile@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@HHH@Z
?blitToRect@Canvas@@QAEXPAVifc_canvas@@PAUtagRECT@@1H@Z
?blitToRect@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@1H@Z
?bmpToBits@SkinBitmap@@AAEXPAUHBITMAP__@@PAUHDC__@@@Z
?clone@BaseCloneCanvas@@QAEHPAVifc_canvas@@@Z
?clone@RegionI@@QAEPAVapi_region@@XZ
?cloneDC@DCBltCanvas@@QAEHPAUHDC__@@PAUtagRECT@@PAVBaseWnd@@@Z
?cloneDC@DCCanvas@@QAEHPAUHDC__@@PAVBaseWnd@@@Z
?colorToColor@Canvas@@QAEXKKPAUtagRECT@@@Z
?commitDC@DCBltCanvas@@QAEHXZ
?createCompatible@MemCanvas@@QAEHPAVCanvas@@@Z
?debug@Canvas@@QAEXXZ
?debug@RegionI@@QAEXH@Z
?delRef@RegionServerI@@UAEXPAX@Z
?deoptimize@RegionI@@AAEXXZ
?disposeClone@RegionI@@QAEXPAVapi_region@@@Z
?disposeSkinBitmap@BltCanvas@@QAEXPAVSkinBitmap@@@Z
?doesIntersectRect@RegionI@@QAEHPBUtagRECT@@@Z
?doesIntersectRgn@RegionI@@QAEHPBVapi_region@@@Z
?drawRect@Canvas@@QAEXPBUtagRECT@@HKH@Z
?drawSysObject@Canvas@@QAEXPBUtagRECT@@HH@Z
?empty@RegionI@@QAEXXZ
?enclosed@RegionI@@QAEHPBVapi_region@@PAV2@@Z
?ensureFiltered@FilteredColor@@AAEXXZ
?enter@DDSurfaceCanvas@@QAEXXZ
?enumRect@RegionI@@QAEHHPAUtagRECT@@@Z
?equals@RegionI@@QAEHPBVapi_region@@@Z
?exit@DDSurfaceCanvas@@QAEXXZ
?fillBits@BltCanvas@@QAEXK@Z
?fillRect@Canvas@@QAEXPBUtagRECT@@K@Z
?fillRectAlpha@Canvas@@QAEXPBUtagRECT@@KH@Z
?fillRgn@Canvas@@QAEXPAVRegionI@@K@Z
?getAlpha@SkinBitmap@@QBEHXZ
?getBaseWnd@Canvas@@UAEPAVBaseWnd@@XZ
?getBitmap@AutoSkinBitmap@@QAEPAVSkinBitmap@@XZ
?getBitmap@BltCanvas@@QAEPAUHBITMAP__@@XZ
?getBitmapName@AutoSkinBitmap@@QAEPB_WXZ
?getBitmapName@SkinBitmap@@QAEPB_WXZ
?getBits@BltCanvas@@QAEPAXXZ
?getBits@Canvas@@QAEPAXXZ
?getBits@PaintBltCanvas@@QAEPAXXZ
?getBits@SkinBitmap@@UAEPAXXZ
?getBox@RegionI@@QAEXPAUtagRECT@@@Z
?getBpp@SkinBitmap@@QBEHXZ
?getClipBox@Canvas@@QAEHPAUtagRECT@@@Z
?getClipRgn@Canvas@@QAEHPAVapi_region@@@Z
?getColor@FilteredColor@@QAEKXZ
?getColorName@FilteredColor@@UAEPB_WXZ
?getColorName@SkinColor@@UAEPB_WXZ
?getColorRef@FilteredColor@@QAEPAKXZ
?getDim@Canvas@@QAE_NPAH00@Z
?getEventType@AutoSkinBitmap@@IAEKXZ
?getFontInfo@Canvas@@IAEPBUFontInfo@Wasabi@@XZ
?getFullHeight@SkinBitmap@@QBEHXZ
?getFullWidth@SkinBitmap@@QBEHXZ
?getHDC@Canvas@@QAEPAUHDC__@@XZ
?getHeight@AutoSkinBitmap@@QAEHXZ
?getHeight@SkinBitmap@@QBEHXZ
?getNumRects@RegionI@@QAEHXZ
?getNumRefs@RegionServerI@@UAEHXZ
?getOSHandle@RegionI@@QAEPAUHRGN__@@XZ
?getOffsets@Canvas@@QAEXPAH0@Z
?getPenColor@Canvas@@QAEKXZ
?getPenStyle@Canvas@@QAEHXZ
?getPenWidth@Canvas@@QAEHXZ
?getPixel@SkinBitmap@@QAEKHH@Z
?getRcPaint@PaintBltCanvas@@QAEXPAUtagRECT@@@Z
?getRcPaint@PaintCanvas@@QAEXPAUtagRECT@@@Z
?getResamplingMode@AutoSkinBitmap@@QAEHXZ
?getRootWnd@Canvas@@QAEPAVifc_window@@XZ
?getSkinBitmap@BltCanvas@@QAEPAVSkinBitmap@@XZ
?getSystemFontScale@Canvas@@QAENXZ
?getTextAlign@Canvas@@QAEHXZ
?getTextAntialias@Canvas@@QAEHXZ
?getTextBkColor@Canvas@@QAEKXZ
?getTextBold@Canvas@@QAEHXZ
?getTextColor@Canvas@@QAEKXZ
?getTextExtent@Canvas@@QAEXPB_WPAH1PBUFontInfo@Wasabi@@@Z
?getTextFont@Canvas@@QAEPB_WXZ
?getTextHeight@Canvas@@QAEHPBUFontInfo@Wasabi@@@Z
?getTextHeight@Canvas@@QAEHPB_WPBUFontInfo@Wasabi@@@Z
?getTextItalic@Canvas@@QAEHXZ
?getTextOpaque@Canvas@@QAEHXZ
?getTextSize@Canvas@@QAEHXZ
?getTextUnderline@Canvas@@QAEHXZ
?getTextWidth@Canvas@@QAEHPB_WPBUFontInfo@Wasabi@@@Z
?getWidth@AutoSkinBitmap@@QAEHXZ
?getWidth@SkinBitmap@@QBEHXZ
?getX@SkinBitmap@@QBEHXZ
?getXOffset@Canvas@@QBEHXZ
?getY@SkinBitmap@@QBEHXZ
?getYOffset@Canvas@@QBEHXZ
?hflip@BltCanvas@@QAEXH@Z
?init@Blenders@@SAXXZ
?init@RegionI@@AAEXXZ
?intersectRect@RegionI@@QAEHPBUtagRECT@@PAVapi_region@@@Z
?intersectRgn@RegionI@@QAEHPBVapi_region@@PAV2@@Z
?isEmpty@RegionI@@QAEHXZ
?isFixedCoords@Canvas@@QAE_NXZ
?isInvalid@SkinBitmap@@QAEHXZ
?isRect@RegionI@@QAEHXZ
?isready@DDSurfaceCanvas@@QAEHXZ
?iteratorValid@SkinColor@@QAEHXZ
?lineDraw@Canvas@@QAEXHHHH@Z
?lineTo@Canvas@@QAEXHH@Z
?makeAlpha@BltCanvas@@QAEXH@Z
?makeSkinBitmap@BltCanvas@@QAEPAVSkinBitmap@@XZ
?makeWindowRegion@RegionI@@QAEPAUHRGN__@@XZ
?maskColor@BltCanvas@@QAEXKK@Z
?mmx_available@Blenders@@2HA
?moveTo@Canvas@@QAEXHH@Z
?notify@AutoSkinBitmap@@IAEHHHH@Z
?offset@RegionI@@QAEXHH@Z
?offsetRect@Canvas@@QAEXPAUtagRECT@@@Z
?optimize@RegionI@@AAEXXZ
?popPen@Canvas@@QAEXXZ
?premultiply@Canvas@@SAXPAKHH@Z
?ptInRegion@RegionI@@QAE_NPBUtagPOINT@@@Z
?pushPen@Canvas@@QAEXHHK@Z
?pushPen@Canvas@@QAEXK@Z
?reload@AutoSkinBitmap@@QAEXXZ
?reset@AutoSkinBitmap@@QAEXXZ
?scale@RegionI@@QAEXNN_N@Z
?selectClipRgn@Canvas@@QAEXPAVapi_region@@@Z
?setBaseWnd@Canvas@@QAEXPAVBaseWnd@@@Z
?setBitmap@AutoSkinBitmap@@QAEHH@Z
?setBitmap@AutoSkinBitmap@@QAEPB_WPB_W@Z
?setColor@FilteredColor@@UAEXK@Z
?setColor@SkinColor@@UAEXK@Z
?setColorGroup@FilteredColor@@UAEXPB_W@Z
?setElementName@SkinColor@@QAEXPB_W@Z
?setHInstance@AutoSkinBitmap@@QAEXPAUHINSTANCE__@@@Z
?setHInstanceBitmapColorGroup@AutoSkinBitmap@@QAEXPB_W@Z
?setHasAlpha@SkinBitmap@@QAEXH@Z
?setOrigDC@DCBltCanvas@@QAEHPAUHDC__@@@Z
?setRect@RegionI@@QAEXPBUtagRECT@@@Z
?setResamplingMode@AutoSkinBitmap@@QAEXH@Z
?skincb_onReset@AutoSkinBitmap@@IAEHXZ
?stretch@Canvas@@QAEXPAVifc_canvas@@HHHH@Z
?stretch@SkinBitmap@@QAEXPAVifc_canvas@@HHHH@Z
?stretchRectToRect@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@1@Z
?stretchToRect@AutoSkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@@Z
?stretchToRect@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@@Z
?stretchToRectAlpha@AutoSkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@1H@Z
?stretchToRectAlpha@AutoSkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@H@Z
?stretchToRectAlpha@Canvas@@QAEXPAVifc_canvas@@PAUtagRECT@@1H@Z
?stretchToRectAlpha@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@1H@Z
?stretchToRectAlpha@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@H@Z
?stretchblit@Canvas@@QAEXHHHHPAV1@HHHH@Z
?subtractRect@RegionI@@QAEXPBUtagRECT@@@Z
?subtractRegion@RegionI@@QAEXPBVapi_region@@@Z
?textOut@Canvas@@QAEXHHHHPB_WPBUFontInfo@Wasabi@@@Z
?textOut@Canvas@@QAEXHHPB_WPBUFontInfo@Wasabi@@@Z
?textOutCentered@Canvas@@QAEXPAUtagRECT@@PB_WPBUFontInfo@Wasabi@@@Z
?textOutEllipsed@Canvas@@QAEXHHHHPB_WPBUFontInfo@Wasabi@@@Z
?textOutWrapped@Canvas@@QAEXHHHHPB_WPBUFontInfo@Wasabi@@@Z
?textOutWrappedPathed@Canvas@@QAEXHHHPB_WPBUFontInfo@Wasabi@@@Z
?v@SkinColor@@QAEKK@Z
?vflip@BltCanvas@@QAEXH@Z
Init
Quit

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
whatsnew.txt
winamp.exe
.exe windows:5 windows x86 arch:x86

123d3b351c650ff2e613b763c38609d3

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

07
Certificate

Issuer

CN=America Online Root Certification Authority 1,O=America Online Inc.,C=US

Not Before

04/06/2004, 17:26

Not After

04/06/2029, 17:26

Subject

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5a:a8:c9:c3:87:71:9f:49:a1:6a:f2:40:65:56:55:50
Certificate

Issuer

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Not Before

15/03/2011, 18:25

Not After

14/03/2016, 18:25

Subject

CN=Nullsoft Inc.,OU=Winamp,O=Nullsoft Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

c2:fc:b5:91:2b:10:d4:b8:8c:71:f1:12:10:16:1b:28:61:b5:df:9d
Signer

Actual PE Digest

c2:fc:b5:91:2b:10:d4:b8:8c:71:f1:12:10:16:1b:28:61:b5:df:9d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\sandbox\20131212_212712\Winamp\Release\winampv6.pdb

Imports

shlwapi

PathRemoveFileSpecW
PathUnquoteSpacesW
UrlGetPartW
UrlIsW
PathFindFileNameA
PathIsRootW
PathIsNetworkPathW
StrCmpIW
StrCmpNW
PathFindExtensionW
StrCmpNIW
PathStripPathW
PathCanonicalizeW
StrToIntExW
PathIsSameRootW
PathIsUNCW
PathAddBackslashW
PathCommonPrefixW
StrToIntW
ord29
PathCreateFromUrlA
PathIsURLA
PathQuoteSpacesA
StrChrW
PathQuoteSpacesW
PathRemoveBackslashW
PathFileExistsW
PathRemoveBlanksW
PathIsRelativeW
PathIsFileSpecW
PathStripToRootW
PathCombineW
PathIsURLW
PathIsDirectoryW
PathFindFileNameW
PathAddExtensionW
PathRemoveExtensionW
PathAppendW

rpcrt4

UuidFromStringW
UuidToStringW
RpcStringFreeW
UuidCreate

kernel32

CopyFileW
LeaveCriticalSection
GetTempPathW
lstrcmpiA
EnterCriticalSection
GetPrivateProfileStringA
WritePrivateProfileStringA
GetModuleFileNameA
lstrcmpiW
DeleteCriticalSection
GetShortPathNameW
GetVersionExA
GlobalAddAtomW
lstrcpyW
FindFirstFileW
FindNextFileW
FindClose
LoadLibraryW
GetProcAddress
FreeLibrary
GetPrivateProfileIntW
WriteFile
CreateFileA
CreateThread
SetThreadPriority
MulDiv
LoadLibraryA
GetCurrentThreadId
CompareStringW
CreateProcessW
MoveFileExW
GetVersionExW
RemoveDirectoryW
Sleep
lstrcpynA
GetFileAttributesW
SetFileAttributesW
WritePrivateProfileStringW
GlobalLock
GlobalUnlock
GetCurrentDirectoryW
SetCurrentDirectoryW
GetEnvironmentVariableW
GetPrivateProfileStringW
SetPriorityClass
GetCurrentProcess
GetVersion
GetModuleHandleW
GetStringTypeExA
GetStringTypeExW
CreateWaitableTimerA
SetWaitableTimer
GetSystemTime
SystemTimeToFileTime
GetSystemDirectoryW
SetThreadExecutionState
GetModuleHandleA
QueryPerformanceCounter
SetFilePointer
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
InitializeCriticalSectionAndSpinCount
ReadFile
LocalAlloc
LocalFree
SetEndOfFile
MoveFileW
WaitForMultipleObjects
GetCurrentThread
ResetEvent
GetLongPathNameW
lstrcmpW
LoadLibraryExW
GetCommandLineW
SetErrorMode
ReadProcessMemory
CreateSemaphoreA
CreateProcessA
ReleaseSemaphore
GetExitCodeThread
CreateEventW
QueryPerformanceFrequency
DuplicateHandle
GetVolumeInformationW
GetLogicalDrives
GetDriveTypeW
SetCurrentDirectoryA
GetShortPathNameA
TlsAlloc
OutputDebugStringA
GetCurrentProcessId
GetPrivateProfileStructA
WritePrivateProfileStructA
TlsGetValue
TlsSetValue
WaitForMultipleObjectsEx
TryEnterCriticalSection
VirtualQuery
QueueUserAPC
GetPrivateProfileIntA
CompareStringA
WritePrivateProfileSectionW
FreeResource
FindResourceW
HeapAlloc
GetProcessHeap
HeapFree
OutputDebugStringW
MultiByteToWideChar
GlobalAlloc
GlobalFree
lstrlenA
lstrlenW
lstrcpynW
GetModuleFileNameW
SetEvent
CreateEventA
InitializeCriticalSection
CreateDirectoryW
SetEnvironmentVariableW
GlobalDeleteAtom
GetLastError
IsDebuggerPresent
UnhandledExceptionFilter
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetStartupInfoA
InterlockedCompareExchange
RaiseException
InterlockedExchange
FindResourceExW
GetLocalTime
GetTimeFormatW
WaitForSingleObject
GetLocaleInfoW
CloseHandle
GetTickCount
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
OpenEventW
GetTempFileNameW
CreateFileW
FindResourceA
LoadResource
SizeofResource
LockResource
ExitProcess
DeleteFileW
OpenProcess
TerminateProcess
GetFullPathNameW
SetLastError

user32

RemovePropA
DrawMenuBar
GetMenu
LoadAcceleratorsA
LoadMenuW
LoadMenuA
DialogBoxParamA
LoadStringA
AttachThreadInput
SystemParametersInfoW
AdjustWindowRectEx
MapDialogRect
GetDesktopWindow
SendMessageCallbackA
ReplyMessage
SetPropA
CreateIconIndirect
SetWindowsHookExA
CallNextHookEx
GetClassLongW
TranslateAcceleratorW
UnhookWindowsHookEx
IsMenu
InsertMenuItemA
RegisterClassA
GetMenuItemInfoW
GetKeyboardState
GetClassNameA
RegisterWindowMessageA
SendMessageTimeoutA
LoadStringW
MessageBoxIndirectW
SetMenuItemInfoW
EnumChildWindows
DrawIconEx
InflateRect
GetDlgItemInt
SetDlgItemInt
DeleteMenu
LoadAcceleratorsW
ShowWindowAsync
IsDialogMessageW
CharUpperBuffA
PostMessageW
CheckDlgButton
IsDlgButtonChecked
GetClipboardData
SetClipboardData
EmptyClipboard
OpenClipboard
GetSystemMenu
EqualRect
EnumDisplaySettingsA
GetWindowRgn
DrawTextA
GetKeyState
IsIconic
BringWindowToTop
MessageBeep
FlashWindowEx
GetWindow
MonitorFromWindow
MonitorFromRect
TrackPopupMenu
DestroyIcon
CharPrevA
CharNextA
CreateDialogParamA
DispatchMessageW
TranslateMessage
PostQuitMessage
CallMsgFilterA
SetForegroundWindow
SetWindowPos
ShowWindow
SendMessageA
DestroyWindow
IsWindow
CreateDialogParamW
GetWindowRect
GetDlgItem
ScreenToClient
InvalidateRect
GetDlgItemTextW
DrawTextW
SetDlgItemTextA
PeekMessageW
MsgWaitForMultipleObjectsEx
SetCursorPos
ShowCursor
GetActiveWindow
OffsetRect
IsWindowUnicode
LoadImageW
DestroyCursor
SetWindowRgn
EndDeferWindowPos
GetMessageW
CreateDialogIndirectParamW
DialogBoxIndirectParamW
IsDialogMessageA
GetSysColorBrush
LoadBitmapW
GetClientRect
MapWindowPoints
PtInRect
SetWindowLongA
GetAsyncKeyState
IsWindowEnabled
GetParent
CallWindowProcW
GetWindowTextLengthW
SendDlgItemMessageW
CharUpperBuffW
SendDlgItemMessageA
MessageBoxW
SetWindowLongW
CharNextW
EnableWindow
SetDlgItemTextW
SendMessageW
RegisterWindowMessageW
SetActiveWindow
GetWindowDC
ReleaseDC
LoadImageA
GetDC
EndDialog
PostMessageA
SetParent
GetWindowLongA
PostThreadMessageA
FindWindowExW
LoadIconA
SetClassLongA
DeferWindowPos
BeginDeferWindowPos
SendNotifyMessageA
CharPrevW
RegisterClipboardFormatA
GetWindowTextA
ChildWindowFromPoint
WindowFromPoint
IsCharAlphaA
SystemParametersInfoA
GetMenuItemRect
GetMonitorInfoA
MonitorFromPoint
InsertMenuA
DestroyMenu
ModifyMenuW
InsertMenuW
CheckMenuItem
SetMenuItemInfoA
EnableMenuItem
RemoveMenu
GetMenuItemInfoA
InsertMenuItemW
CreatePopupMenu
AppendMenuW
GetMenuItemID
GetMenuState
GetSubMenu
GetMenuStringW
AppendMenuA
GetMenuItemCount
CallWindowProcA
PeekMessageA
GetDlgItemTextA
DispatchMessageA
GetMessageA
GetForegroundWindow
SetWindowTextA
wsprintfW
DefWindowProcA
SetTimer
KillTimer
RegisterClassW
GetClassInfoW
FindWindowW
CharUpperW
CreateWindowExW
GetAncestor
GetClassNameW
GetNextDlgTabItem
GetWindowLongW
ChildWindowFromPointEx
GetMessagePos
IsChild
RedrawWindow
GetUpdateRgn
GetUpdateRect
ValidateRect
GetPropW
FindWindowExA
RemovePropW
SetPropW
ReleaseCapture
GetCursorPos
EnumThreadWindows
UpdateWindow
IsWindowVisible
ClientToScreen
MessageBoxA
GetClassLongA
SetWindowTextW
GetSystemMetrics
CharLowerBuffW
FindWindowA
SetCursor
SetCapture
GetCapture
GetFocus
TrackMouseEvent
EndPaint
BeginPaint
SetRect
DefWindowProcW
GetDlgCtrlID
DrawFocusRect
CopyRect
FillRect
GetDCEx
GetWindowTextW
SetRectEmpty
GetSysColor
RegisterClassExW
LoadCursorA
GetClassInfoExW
GetWindowThreadProcessId
DialogBoxParamW
SetFocus
CloseClipboard

gdi32

GetDIBits
SelectObject
CreateCompatibleDC
GetDeviceCaps
SetBkMode
SetTextColor
LineTo
MoveToEx
CreateRectRgn
OffsetRgn
CombineRgn
CreateFontIndirectA
GetTextExtentPoint32A
CreatePolyPolygonRgn
GetDIBColorTable
CreateSolidBrush
CreateFontA
CreateCompatibleBitmap
Rectangle
GetStockObject
GetObjectA
CreateRectRgnIndirect
FillRgn
StretchBlt
GetPixel
SetPixel
DeleteDC
DeleteObject
CreatePalette
CreateDIBSection
SelectPalette
RealizePalette
BitBlt
UpdateColors
SetBkColor
GetTextExtentPoint32W
GetTextMetricsW
ExtTextOutA
GetTextMetricsA
SetTextAlign
CreatePen
GetCurrentObject
CreatePatternBrush
SetBrushOrgEx
CreateFontIndirectW
GetObjectW
GetFontLanguageInfo
ExtSelectClipRgn
IntersectClipRect
EnumFontsA
SaveDC
CreateFontW
RestoreDC
RectVisible
GetNearestColor
SetStretchBltMode
SetDIBits
CreateBrushIndirect
ExtTextOutW

advapi32

RegQueryValueExW
RegOpenKeyW
RegOpenKeyA
RegCloseKey
RegOpenKeyExW
RegCreateKeyW
RegEnumKeyW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegQueryValueExA

shell32

DragQueryPoint
SHGetPathFromIDListW
SHBrowseForFolderW
Shell_NotifyIconW
SHGetSpecialFolderPathW
ShellExecuteW
SHChangeNotify
DragFinish
DragQueryFileW
SHAppBarMessage
SHFileOperationW
ord680
SHOpenFolderAndSelectItems
SHGetDesktopFolder
SHGetFolderPathW

ole32

CoCreateInstance
StringFromGUID2
CoGetObject
CoTaskMemFree
OleInitialize
RegisterDragDrop
CoRegisterClassObject
RevokeDragDrop
CoRevokeClassObject
OleUninitialize
CoInitializeEx
CoUninitialize
CoCreateGuid
CoTaskMemAlloc
OleRun
CoInitialize

oleaut32

SafeArrayCopy
SysAllocStringLen
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreateVector
SysAllocString
SysFreeString
VariantClear
DispGetParam
VariantInit

tataki

??1RegionI@@UAE@XZ
??0DCCanvas@@QAE@PAUHDC__@@PAVBaseWnd@@@Z
??1DCCanvas@@UAE@XZ
?fillBits@BltCanvas@@QAEXK@Z
?getBits@Canvas@@QAEPAXXZ
?selectClipRgn@Canvas@@QAEXPAVapi_region@@@Z
?blitAlpha@Canvas@@QAEXPAVifc_canvas@@HHH@Z
?getBits@BltCanvas@@QAEPAXXZ
?stretch@SkinBitmap@@QAEXPAVifc_canvas@@HHHH@Z
??0SkinBitmap@@QAE@PAKHH_N@Z
??1SkinBitmap@@QAE@XZ
??0RegionI@@QAE@PBUtagRECT@@@Z
?getBaseWnd@Canvas@@UAEPAVBaseWnd@@XZ
?_dispatch@Canvas@@MAEHHPAXPAPAXH@Z
?stretchToRectAlpha@Canvas@@QAEXPAVifc_canvas@@PAUtagRECT@@1H@Z
?drawRect@Canvas@@QAEXPBUtagRECT@@HKH@Z
??1BltCanvas@@UAE@XZ
??0BltCanvas@@QAE@PAUHBITMAP__@@@Z
?getHDC@Canvas@@QAEPAUHDC__@@XZ
?DestructiveResize@BltCanvas@@QAEXHHH@Z
??0BltCanvas@@QAE@HHPAUHWND__@@H@Z
Quit
Init
??0RegionI@@QAE@PAUHRGN__@@@Z
?getNumRefs@RegionServerI@@UAEHXZ
?delRef@RegionServerI@@UAEXPAX@Z
?addRef@RegionServerI@@UAEXPAX@Z
?_dispatch@RegionServerI@@MAEHHPAXPAPAXH@Z
??1RegionServerI@@UAE@XZ
??0RegionServerI@@QAE@XZ
??0SkinBitmap@@QAE@PB_WH@Z
?blit@SkinBitmap@@QAEXPAVifc_canvas@@HH@Z
?getBitmap@BltCanvas@@QAEPAUHBITMAP__@@XZ
?TryGetColor@SkinColor@@SA_NPAKPB_W1@Z
?getBits@SkinBitmap@@UAEPAXXZ

msvcr90

_amsg_exit
?terminate@@YAXXZ
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
vsprintf_s
strlen
wcslen
_i64tow_s
memcpy
memset
_wsetlocale
_configthreadlocale
_wchmod
_itow
wcscpy_s
fputs
_create_locale
_wtoi_l
swscanf
_msize
strncmp
_wtof_l
_vswprintf
strrchr
wcsrchr
fwrite
ferror
fopen
_fseeki64
_ftelli64
sscanf
strtol
wcschr
memmove
strncat
_wcsdup
_aligned_malloc
realloc
_waccess
_strnicmp
atoi
fputc
fprintf
wcsnlen
towupper
_strdup
strchr
_stricmp
wcstok
_purecall
_vsnprintf
_wcsicmp
ceil
_wtoi
_wcsnicmp
??_U@YAPAXI@Z
??_V@YAXPAX@Z
??2@YAPAXI@Z
_vsnwprintf
wcsncmp
fclose
_wfopen
wcsstr
calloc
??3@YAXPAX@Z
fgets
feof
fgetws
fseek
fread
strstr
free
malloc
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
exit
_acmdln
_initterm
_initterm_e
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler4_common
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_crt_debugger_hook
_CxxThrowException
__CxxFrameHandler3
_except_handler3
_CIsqrt
_CIsin
_CIcos
_CIpow
_CIatan
_CItan
_controlfp_s
floor

Exports

Exports

plstring_malloc
plstring_release
plstring_retain
plstring_wcsdup

Sections

.text
Size: 614KB - Virtual size: 614KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 25B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
winampa.exe
.exe windows:5 windows x86 arch:x86

6b6de861145e3ced2a5c9a7aeb0c4f44

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

07
Certificate

Issuer

CN=America Online Root Certification Authority 1,O=America Online Inc.,C=US

Not Before

04/06/2004, 17:26

Not After

04/06/2029, 17:26

Subject

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5a:a8:c9:c3:87:71:9f:49:a1:6a:f2:40:65:56:55:50
Certificate

Issuer

CN=AOL Member CA,O=America Online Inc.,L=Dulles,ST=Virginia,C=US

Not Before

15/03/2011, 18:25

Not After

14/03/2016, 18:25

Subject

CN=Nullsoft Inc.,OU=Winamp,O=Nullsoft Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

f3:7e:2f:76:5c:5a:34:d2:f6:7e:90:91:af:37:c4:bd:a2:66:60:47
Signer

Actual PE Digest

f3:7e:2f:76:5c:5a:34:d2:f6:7e:90:91:af:37:c4:bd:a2:66:60:47

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

f:\sandbox\20131212_212712\winampa\Release\winampa.pdb

Imports

shlwapi

StrToIntW
PathFileExistsW

kernel32

GetDriveTypeW
SetErrorMode
FreeLibrary
LoadLibraryExW
GetLogicalDrives
GetModuleHandleW
GetTickCount
GetPrivateProfileStringW
GlobalAlloc
CopyFileW
lstrcpynW
ReadFile
GetModuleFileNameW
CreateFileW
MultiByteToWideChar
lstrlenW
SetFilePointer
GetProcAddress
lstrcmpiW
CloseHandle
GetVolumeInformationW
GetEnvironmentVariableW
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange
ExitProcess
GetPrivateProfileIntW

user32

DestroyWindow
GetMessageW
PostQuitMessage
CharNextW
TrackPopupMenu
RegisterWindowMessageW
LoadImageW
SetForegroundWindow
CharPrevW
FindWindowW
EnumWindows
InsertMenuItemW
GetAsyncKeyState
GetWindowTextW
GetClassNameW
EnableMenuItem
GetCursorPos
LoadStringW
ShowWindow
CreatePopupMenu
IsWindow
CreateWindowExW
SetMenuDefaultItem
MessageBoxW
RegisterClassW
SendMessageW
DestroyMenu
DestroyIcon
DefWindowProcW
GetWindow
DispatchMessageW

advapi32

RegCloseKey
RegDeleteValueW
RegOpenKeyW
RegQueryValueExW

shell32

Shell_NotifyIconW
SHGetSpecialFolderPathW
ShellExecuteW

msvcr90

_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
exit
_controlfp_s
_crt_debugger_hook
_acmdln
_initterm
memset
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
_vsnwprintf
free
malloc
wcslen
_initterm_e

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
zlib.dll
.dll windows:5 windows x86 arch:x86

b520855a58e7b8f1d826cff71e3b9462

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

f:\sandbox\20131212_212712\zlib\Release\zlib.pdb

Imports

kernel32

DisableThreadLibraryCalls

msvcr90

memset
free
malloc
memcpy

Exports

Exports

adler32
adler32_combine
compress
compress2
compressBound
crc32
crc32_combine
deflate
deflateBound
deflateCopy
deflateEnd
deflateInit2_
deflateInit_
deflateParams
deflatePending
deflatePrime
deflateReset
deflateResetKeep
deflateSetDictionary
deflateSetHeader
deflateTune
get_crc_table
inflate
inflateCopy
inflateEnd
inflateGetDictionary
inflateGetHeader
inflateInit2_
inflateInit_
inflateMark
inflatePrime
inflateReset
inflateReset2
inflateResetKeep
inflateSetDictionary
inflateSync
inflateSyncPoint
inflateUndermine
uncompress
zError
zlibCompileFlags
zlibVersion

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 64B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 566B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32f3282581436269b3a75b6675fe3e08

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3bCertificate

Extended Key Usages

Key Usages

07Certificate

Key Usages

5a:a8:c9:c3:87:71:9f:49:a1:6a:f2:40:65:56:55:50Certificate

Extended Key Usages

Key Usages

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50Certificate

Extended Key Usages

Key Usages

f9:c9:48:f0:54:fa:28:8a:79:4e:2c:80:b6:b7:87:ae:c0:1f:10:afSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

version

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 512B - Virtual size: 415KB

.ndata Size: - Virtual size: 1.8MB

.rsrc Size: 189KB - Virtual size: 189KB

.reloc Size: 4KB - Virtual size: 3KB

08b0635362e7aeb50569ca1a61d5a13f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 1024B - Virtual size: 571B

.rdata Size: 1024B - Virtual size: 551B

.data Size: - Virtual size: 16B

.reloc Size: 512B - Virtual size: 210B

546198d07fec5699a0cbb9e36bbd921c

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

Exports

Exports

Sections

.text Size: 1KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 881B

.data Size: - Virtual size: 12B

.reloc Size: 512B - Virtual size: 182B

e981c0ab92cb1f191bb5e23392e14796

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 729B

.data Size: - Virtual size: 6KB

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

07
Certificate

5a:a8:c9:c3:87:71:9f:49:a1:6a:f2:40:65:56:55:50
Certificate

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

f9:c9:48:f0:54:fa:28:8a:79:4e:2c:80:b6:b7:87:ae:c0:1f:10:af
Signer

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 512B - Virtual size: 415KB

.ndata
Size: - Virtual size: 1.8MB

.rsrc
Size: 189KB - Virtual size: 189KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 1024B - Virtual size: 571B

.rdata
Size: 1024B - Virtual size: 551B

.data
Size: - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 210B

.text
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 881B

.data
Size: - Virtual size: 12B

.reloc
Size: 512B - Virtual size: 182B

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 729B

.data
Size: - Virtual size: 6KB

.rsrc
Size: 512B - Virtual size: 352B

.reloc
Size: 512B - Virtual size: 350B

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: - Virtual size: 24KB

.CRT
Size: 512B - Virtual size: 4B

.reloc
Size: 1024B - Virtual size: 890B

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 922B

.data
Size: - Virtual size: 16B

.reloc
Size: 512B - Virtual size: 224B

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 963B

.data
Size: 512B - Virtual size: 64B

.reloc
Size: 1024B - Virtual size: 588B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: - Virtual size: 20B

.reloc
Size: 512B - Virtual size: 334B