5b5f3eb022617547a37b8c39c2efe930_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5b5f3eb022617547a37b8c39c2efe930_JaffaCakes118
Size

6.0MB
MD5

5b5f3eb022617547a37b8c39c2efe930
SHA1

139b59e5c1849eeb138c39a8edf99dadaf8415db
SHA256

94057eab82fb984508e3212abfa6c5a994beed08dd5ae8de57ee26d61bdedb8d
SHA512

b4b673a574fa5794c1da81b4e9e670869ae2b82398b62dd0dd471ab9416f5af35cb7d523f5eb5103fd8364403b93164fab21e5b42e3a4a0701275b98600ec874
SSDEEP

98304:iBYJhd2hbQbW4PSF9YDwiOFh8pBEput165NWbqzTZsTRPkR4LgU:iaJqQWF9Y2FhGW48WbwZsTRQ2gU

Score

3^/10

Malware Config

Signatures

Unsigned PE 62 IoCs

Checks for missing Authenticode signature.

resource
unpack001/AG.dll
unpack001/CAPS.dll
unpack001/CNCLID34.dll
unpack001/CUBS.DLL
unpack001/DDT.dll
unpack001/HSL.DLL
unpack001/IJFSHLIB.dll
unpack001/MC3.dll
unpack001/RACS2LIB.dll
unpack001/SCFLLIB3.dll
unpack001/SCFLLIB6.dll
unpack001/SCFLTR0.dll
unpack001/SCFLTR06.dll
unpack001/SCNDB.dll
unpack001/SCNIF.dll
unpack001/SCNUI.dll
unpack001/SGCFLTR.dll
unpack001/SGCFLTR6.dll
unpack001/SG_ARA.dll
unpack001/SG_BGR.dll
unpack001/SG_CHS.dll
unpack001/SG_CHT.dll
unpack001/SG_CSY.dll
unpack001/SG_DAN.dll
unpack001/SG_DEU.dll
unpack001/SG_ELL.dll
unpack001/SG_ENU.dll
unpack001/SG_ESP.dll
unpack001/SG_ETI.dll
unpack001/SG_FIN.dll
unpack001/SG_FRA.dll
unpack001/SG_HRV.dll
unpack001/SG_HUN.dll
unpack001/SG_IMG.dll
unpack001/SG_IND.dll
unpack001/SG_ITA.dll
unpack001/SG_JPN.dll
unpack001/SG_KOR.dll
unpack001/SG_LTH.dll
unpack001/SG_LVI.dll
unpack001/SG_NLD.dll
unpack001/SG_NOR.dll
unpack001/SG_PLK.dll
unpack001/SG_PTB.dll
unpack001/SG_ROM.dll
unpack001/SG_RUS.dll
unpack001/SG_SKY.dll
unpack001/SG_SLV.dll
unpack001/SG_SVE.dll
unpack001/SG_THA.dll
unpack001/SG_TRK.dll
unpack001/SG_UKR.dll
unpack001/SG_VIT.dll
unpack001/TDGLIB.dll
unpack001/TPM.dll
unpack001/cnmpu2.dll
unpack001/rstcol.dll
unpack001/scchmpm.dll
unpack001/scrprmv.dll
unpack001/scrprmvl.dll
unpack001/softfare.dll
unpack001/usip.dll

Files

5b5f3eb022617547a37b8c39c2efe930_JaffaCakes118
.cab
AG.dll
.dll windows:4 windows x86 arch:x86

86c3f556792bbaa736d048189dc402ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\documents and settings\035231\デスクトップ\20091126\release\AG.pdb

Imports

kernel32

HeapAlloc
GetLastError
HeapFree
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
RtlUnwind
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

AG_CalcAGData
AG_Initialize
AG_MakeAGGamma

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CAPS.dll
.dll windows:4 windows x86 arch:x86

7e7252e1fb5585220ace656f60c548ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\107808\Desktop\CAPS\Release\CAPS.pdb

Imports

kernel32

GetLastError
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
RaiseException
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
RtlUnwind
LoadLibraryA
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Exports

Exports

CAPS2_Initialize
CAPS2_SearchOnPreview

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CNCLID34.dll
.dll windows:5 windows x86 arch:x86

f70dce8ab8619e655f6a896f067f4290

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathAppendW
PathFileExistsW

kernel32

GetProcAddress
GetUserDefaultUILanguage
WriteConsoleW
SetStdHandle
OutputDebugStringW
FlushFileBuffers
CloseHandle
QueryPerformanceCounter
EncodePointer
DecodePointer
GetCommandLineA
GetCurrentThreadId
IsDebuggerPresent
IsProcessorFeaturePresent
GetStringTypeW
GetLastError
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
WideCharToMultiByte
HeapSize
HeapFree
RaiseException
HeapAlloc
SetLastError
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
CreateFileW
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
WriteFile
GetConsoleCP
GetConsoleMode
SetFilePointerEx
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetModuleFileNameW
LoadLibraryExW
HeapReAlloc
RtlUnwind
LCMapStringW

user32

LoadStringW

advapi32

RegCloseKey
RegOpenKeyExW
RegDeleteValueW
RegQueryValueExW
RegCreateKeyExW
RegSetValueExW

Exports

Exports

GetLangID

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
CUBS.DLL
.dll windows:4 windows x86 arch:x86

acfc000f90e4e18110781eea9a6a8645

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
CloseHandle
MultiByteToWideChar
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
RtlUnwind
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
SetStdHandle
FlushFileBuffers
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
HeapSize
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Exports

Exports

CuBS_Analyze
CuBS_Correction
CuBS_GetAPIVersion
CuBS_Initialize
CuBS_Terminate

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
DDT.dll
.dll windows:4 windows x86 arch:x86

538fc02c5a66fb9d469b1a209acd755e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Documents and Settings\A19761\デスクトップ\FullAutoScan20081119\release\DDT.pdb

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
WriteFile
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

DDTExec
DDTFree
DDTInit

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
HSL.DLL
.dll windows:4 windows x86 arch:x86

28655f7cffb5e805056d1f849b0949bc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapAlloc
HeapFree
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
ExitProcess
GetProcAddress
GetModuleHandleA
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
WriteFile
InitializeCriticalSection
RtlUnwind
InterlockedExchange
VirtualQuery
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
VirtualProtect
GetSystemInfo

Exports

Exports

ApplyColorBalance
InitializeColorBalance
TerminateColorBalance

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sxdata
Size: 4KB - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IJFSHLIB.dll
.dll windows:4 windows x86 arch:x86

f493e08d3006435a986d636bf6c8a30b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLastError
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSection
RtlUnwind
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
MultiByteToWideChar
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

Exports

Exports

FSHAlloc
FSHExec
FSHFree
FSHTable

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
MC3.dll
.dll windows:5 windows x86 arch:x86

8fb550f5da74f384b7a453d606c3c202

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
CloseHandle
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetLastError
HeapFree
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
HeapCreate
HeapDestroy
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetModuleHandleW
Sleep
ExitProcess
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
RaiseException
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
RtlUnwind
InitializeCriticalSectionAndSpinCount
LoadLibraryA
HeapSize
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
CreateFileA
FlushFileBuffers
GetModuleHandleA

Exports

Exports

MC2Plus_Initialize
MC2Plus_SearchOnImage
MC_AdjustImage
MC_AdjustImageFile
MC_FreeImage
MC_Initialize
MC_ModifyAutoClopData
MC_SearchOnImage

Sections

.text
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
RACS2LIB.dll
.dll windows:4 windows x86 arch:x86

c07facfd8a9a7cc2d8782cf3cf1b1ada

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\108731\Desktop\ビルド用\RACSLIB\2013\Release\RACS2LIB.pdb

Imports

kernel32

GetLastError
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
RtlUnwind
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

AdaptiveGammaGenerate
DocumentTypeRecognize
GetColorMaskingMatrix
GetCopyGammaLUT
GetSecondBaseGammaLUT
GetWindingCurveProfile
RACSCalc
RACSExec
RACSFree
RACSInit
RACSSet

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SCFLLIB3.dll
.dll windows:5 windows x86 arch:x86

d8315af6be3330e6e6c5dfa94b791370

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\bamboo-agent-home\xml-data\build-dir\CS-CMREL0-BW32\Release_NoSSE2\SDK5Scanner.pdb

Imports

kernel32

LoadLibraryA
GetThreadLocale
FormatMessageA
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetCurrentProcess
TerminateProcess
InitializeCriticalSection
LoadLibraryExA
LeaveCriticalSection
GetProcAddress
GetModuleHandleExA
GetEnvironmentVariableA
EnterCriticalSection
GetLastError
GetModuleFileNameW
InterlockedFlushSList
SetLastError
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
RtlUnwind
QueryPerformanceFrequency
ExitProcess
GetModuleHandleExW
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
LCMapStringW
GetStdHandle
GetFileType
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStringTypeW
WriteFile
GetConsoleCP
GetConsoleMode
SetStdHandle
HeapSize
HeapReAlloc
FlushFileBuffers
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW
RaiseException
GetSystemInfo
VirtualQuery
VirtualProtect

Exports

Exports

DllGetClassObject

Sections

.text
Size: 780KB - Virtual size: 780KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug_o
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 341KB - Virtual size: 341KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
SCFLLIB6.dll
.dll windows:5 windows x64 arch:x64

a43ea78550bb938bba2cccc66d47c30a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

PDB Paths

C:\bamboo-agent-home\xml-data\build-dir\CS-CMREL0-BX64\x64\Release\SDK5Scanner.pdb

Imports

kernel32

LoadLibraryA
GetThreadLocale
FormatMessageA
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetCurrentProcess
TerminateProcess
InitializeCriticalSection
LoadLibraryExA
LeaveCriticalSection
GetProcAddress
GetModuleHandleExA
GetEnvironmentVariableA
EnterCriticalSection
RtlUnwindEx
GetLastError
GetModuleFileNameW
InterlockedFlushSList
SetLastError
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
QueryPerformanceFrequency
ExitProcess
GetModuleHandleExW
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
HeapFree
HeapAlloc
LCMapStringW
GetStdHandle
GetFileType
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStringTypeW
WriteFile
GetConsoleCP
GetConsoleMode
SetStdHandle
HeapSize
HeapReAlloc
FlushFileBuffers
SetFilePointerEx
WriteConsoleW
CloseHandle
CreateFileW
RaiseException
GetSystemInfo
VirtualQuery
VirtualProtect

Exports

Exports

DllGetClassObject

Sections

.text
Size: 882KB - Virtual size: 882KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 303KB - Virtual size: 303KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.trace
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug_o
Size: 270KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 194KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 388KB - Virtual size: 388KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
SCFLTR0.dll
.dll windows:6 windows x86 arch:x86

513582219c5a6b82153476149e40e8fd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

shlwapi

PathCombineW
PathRemoveFileSpecW

kernel32

CloseHandle
WriteConsoleW
GetModuleFileNameW
FreeLibrary
GetProcAddress
LoadLibraryA
LoadLibraryW
HeapAlloc
HeapFree
GetProcessHeap
RtlUnwind
GetCommandLineA
GetCurrentThreadId
EncodePointer
DecodePointer
RaiseException
GetLastError
IsDebuggerPresent
IsProcessorFeaturePresent
SetLastError
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
WideCharToMultiByte
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
CreateFileW
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
WriteFile
EnterCriticalSection
LeaveCriticalSection
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
LoadLibraryExW
HeapReAlloc
OutputDebugStringW
GetStringTypeW
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx

Exports

Exports

Create_CFilterIF
Release_CFilterIF

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SCFLTR06.dll
.dll windows:5 windows x64 arch:x64

89de7db0084e6a3c5f1919d56560f5f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

shlwapi

PathCombineW
PathRemoveFileSpecW

kernel32

SetUnhandledExceptionFilter
CloseHandle
WriteConsoleW
GetModuleFileNameW
FreeLibrary
GetProcAddress
LoadLibraryA
LoadLibraryW
HeapAlloc
HeapFree
GetProcessHeap
RtlLookupFunctionEntry
RtlUnwindEx
GetCommandLineA
GetCurrentThreadId
EncodePointer
DecodePointer
RtlPcToFileHeader
RaiseException
GetLastError
SetLastError
IsDebuggerPresent
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
WideCharToMultiByte
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
RtlCaptureContext
RtlVirtualUnwind
UnhandledExceptionFilter
CreateFileW
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
WriteFile
EnterCriticalSection
LeaveCriticalSection
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
LoadLibraryExW
HeapReAlloc
OutputDebugStringW
GetStringTypeW
HeapSize
LCMapStringW
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetStdHandle
SetFilePointerEx

Exports

Exports

Create_CFilterIF
Release_CFilterIF

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SCNDB.dll
.dll windows:5 windows x86 arch:x86

1f1889682e54e878d4173332e34e82a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\CIS\Jenkins\workspace\ScanGear\Project\19_2H\Source\SCNDB_TPM\Release\SCNDB.pdb

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

kernel32

ReadFile
GetStringTypeW
Sleep
GetFileAttributesW
DeleteFileW
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetTickCount
GetSystemDirectoryW
GetTempFileNameW
MapViewOfFile
UnmapViewOfFile
GlobalLock
WriteFile
GlobalAlloc
CreateFileW
GlobalUnlock
GetLastError
GlobalFree
CreateFileMappingW
CloseHandle
SetFileAttributesW
LCMapStringW
MultiByteToWideChar
FreeLibrary
GetModuleHandleW
WideCharToMultiByte
LoadLibraryW
GetModuleFileNameW
SetLastError
GetProcAddress
GetModuleHandleA
OutputDebugStringA
GetVersion
HeapFree
HeapAlloc
EncodePointer
DecodePointer
GetCommandLineA
GetCurrentThreadId
IsDebuggerPresent
IsProcessorFeaturePresent
RaiseException
RtlUnwind
SetEndOfFile
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
GetProcessHeap
ExitProcess
GetModuleHandleExW
GetStdHandle
HeapSize
GetFileType
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetStdHandle
WriteConsoleW
FlushFileBuffers
LoadLibraryExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
OutputDebugStringW
HeapReAlloc

shlwapi

PathFindFileNameA
PathRemoveFileSpecW
PathAppendW

Exports

Exports

??0CCriticalSection@@QAE@XZ
??0CRing@@QAE@XZ
??0CoreImageData@@QAE@XZ
??0ImageDB@@QAE@XZ
??0ParamDB@@QAE@XZ
??1CCriticalSection@@QAE@XZ
??1CRing@@QAE@XZ
??1CoreImageData@@QAE@XZ
??1ImageDB@@QAE@XZ
??1ParamDB@@QAE@XZ
??4CCriticalSection@@QAEAAV0@ABV0@@Z
?AllocateBuffer@CoreImageData@@AAEKXZ
?AllocateScanImageData@ImageDB@@QAEKKKKKKKHEKQA_W@Z
?CheckBuffer@CoreImageData@@QAEHXZ
?CheckCoreImageBuffer@ImageDB@@QAEHXZ
?CheckForGetCurrentParam@ParamDB@@AAEKGW4PDB_TYPE@@@Z
?CheckForGetParam@ParamDB@@AAEKGW4PDB_TYPE@@@Z
?CheckForSetCurrentParam@ParamDB@@AAEKGW4PDB_TYPE@@@Z
?CheckForSetParam@ParamDB@@AAEKGW4PDB_TYPE@@@Z
?ClearList@ParamDB@@QAEXXZ
?ClearThreadFlag@ImageDB@@QAEXXZ
?Close@CRing@@QAEXXZ
?CloseAllXferImageData@ImageDB@@QAEXXZ
?CloseXferImageData@ImageDB@@QAEKXZ
?DeleteCropData@ImageDB@@QAEKH@Z
?DeleteScanImageData@ImageDB@@QAEKXZ
?ForceEndPage@ImageDB@@QAEXXZ
?Free@CoreImageData@@QAEXXZ
?Free@ParamDB@@QAEKXZ
?GetBufferSize@CRing@@QAEXPAK@Z
?GetBufferSize@CoreImageData@@QAEXPAK@Z
?GetCancelFlag@ImageDB@@QAE?BHXZ
?GetCapabilityArray@ParamDB@@QAEKGPADHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPAEHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPAFHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPAGHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPAHH0_N0H0@Z
?GetCapabilityArray@ParamDB@@QAEKGPAIHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPAMHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPANHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPA_NHPAH_N0H1@Z
?GetCapabilityArray@ParamDB@@QAEKGPA_WHPAH_N0H1@Z
?GetCapabilityData@ParamDB@@QAEKGPAD_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAE_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAF_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAG_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAH_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAI_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAM_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAN_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAUDrvRect@@_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPA_N_N0@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPAEH002H0@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPAGH002H0@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPAIH002H0@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPAMH002H0@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPANH002H0@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPA_NH002H0@Z
?GetCapabilityRange@ParamDB@@QAEKGPAE_N0000@Z
?GetCapabilityRange@ParamDB@@QAEKGPAF_N0000@Z
?GetCapabilityRange@ParamDB@@QAEKGPAG_N0000@Z
?GetCapabilityRange@ParamDB@@QAEKGPAI_N0000@Z
?GetCapabilityRange@ParamDB@@QAEKGPAM_N0000@Z
?GetCapabilityRange@ParamDB@@QAEKGPAN_N0000@Z
?GetCoreImageProperty@CoreImageData@@QAEXPAUCORE_IMAGE_PROPERTY@@@Z
?GetCoreImageProperty@ImageDB@@QAEKPAUCORE_IMAGE_PROPERTY@@@Z
?GetCropData@ImageDB@@QAEKHPAUUIP_CropData@@@Z
?GetCropDataSize@ImageDB@@QAEHXZ
?GetCurrentCapability@ParamDB@@QAEKGPACHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAEHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAFHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAGHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAHH0@Z
?GetCurrentCapability@ParamDB@@QAEKGPAIHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAMHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPA_NHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPA_WHPAH@Z
?GetCurrentCoreImageData@ImageDB@@QAEKPAE@Z
?GetDefaultCapability@ParamDB@@QAEKGPACHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAEHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAFHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAGHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAHH0@Z
?GetDefaultCapability@ParamDB@@QAEKGPAIHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAMHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPA_NHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPA_WHPAH@Z
?GetEndWriteBuffer@CRing@@QAEHXZ
?GetEndWriteBuffer@ImageDB@@QAEKEPAH@Z
?GetErrorMessage@ImageDB@@QAE?BKXZ
?GetImageStat@ImageDB@@QAEKHPAXHH@Z
?GetPageInfo@ImageDB@@QAEXPAUIDB_PAGE_INFO@@@Z
?GetParam@ParamDB@@QAEKGPADHPAH@Z
?GetParam@ParamDB@@QAEKGPAE@Z
?GetParam@ParamDB@@QAEKGPAG@Z
?GetParam@ParamDB@@QAEKGPAH@Z
?GetParam@ParamDB@@QAEKGPAHH0@Z
?GetParam@ParamDB@@QAEKGPAI@Z
?GetParam@ParamDB@@QAEKGPAIHPAH@Z
?GetParam@ParamDB@@QAEKGPAM@Z
?GetParam@ParamDB@@QAEKGPAMHPAH@Z
?GetParam@ParamDB@@QAEKGPA_WHPAH@Z
?GetProgressInfo@ImageDB@@QAEKPAUPROGRESS_INFO@@@Z
?GetRingBufferSize@ImageDB@@QAEKEPAK@Z
?GetScanImageDataAllocType@ImageDB@@QAEKPAE@Z
?GetScanStat@ImageDB@@QAEKHPAXH@Z
?GetStartWriteBuffer@CRing@@QAEHXZ
?GetStartWriteRingBuffer@ImageDB@@QAEKEPAH@Z
?GetTerminate@CoreImageData@@AAEHXZ
?GetType@ParamDB@@QAE?AW4PDB_TYPE@@G@Z
?GetWritePoint@CoreImageData@@QAEXPAK@Z
?GetXferImageDataDIBHandle@ImageDB@@QAEKPAPAX@Z
?GetXferImageDataDocumentType@ImageDB@@QAEKPAG@Z
?GetXferImageDataSaveFileName@ImageDB@@QAEKPA_WK@Z
?GetXferImageProperty@ImageDB@@QAEKPAUXFER_IMAGE_PROPERTY@@@Z
?GetXferLineInfo@ImageDB@@QAEKPAUPROCESS_LINE_INFO@@@Z
?Initialize@ImageDB@@QAEKXZ
?Initialize@ParamDB@@QAEKXZ
?IsBlockOut@ImageDB@@QAEHXZ
?IsEnableGetXferProperty@ImageDB@@QAEKPAH@Z
?IsEnableReadXferData@ImageDB@@QAEKPAH@Z
?IsWrittenBuffer@CRing@@QAEHXZ
?IsWrittenRingBuffer@ImageDB@@QAEKEPAH@Z
?Load@CoreImageData@@QAEKPB_W@Z
?LoadCoreImageData@ImageDB@@QAEKQB_W@Z
?Lock@CCriticalSection@@QAEXXZ
?Lock@CRing@@QAEXXZ
?Lock@CoreImageData@@AAEXXZ
?Open@CRing@@QAEKXZ
?PopUpCropData@ImageDB@@QAEKPAUUIP_CropData@@@Z
?PushBackCropData@ImageDB@@QAEKABUUIP_CropData@@@Z
?Read@CRing@@QAEKPAEKPAK@Z
?ReadBuffer@CoreImageData@@QAEKPAEKK@Z
?ReadCoreImageBuffer@ImageDB@@QAEKPAEKK@Z
?ReadRingBuffer@ImageDB@@QAEKEPAEKPAK@Z
?ReadXferImageData@ImageDB@@QAEKPAEKKK@Z
?ResetCancelFlag@ImageDB@@QAEXXZ
?ResetCapability@ParamDB@@QAEKG@Z
?ResetCoreImageWritePoint@ImageDB@@QAEXXZ
?ResetCropData@ImageDB@@QAEKXZ
?ResetErrorMessage@ImageDB@@QAEXXZ
?ResetImageStat@ImageDB@@QAEKHH@Z
?ResetPageInfo@ImageDB@@QAEXXZ
?ResetProcessedLineInfo@ImageDB@@QAEKXZ
?ResetRingBufferReadPoint@ImageDB@@QAEKE@Z
?ResetRingBufferTimeOutRead@ImageDB@@QAEKEH@Z
?ResetRingBufferTimeOutWrite@ImageDB@@QAEKEH@Z
?ResetRingBufferWritePoint@ImageDB@@QAEKE@Z
?ResetTimeOutRead@CRing@@QAEXH@Z
?ResetTimeOutWrite@CRing@@QAEXH@Z
?ResetWritePoint@CoreImageData@@QAEXXZ
?ResetXferLineInfo@ImageDB@@QAEKXZ
?Save@CoreImageData@@QAEKPB_W@Z
?SaveCoreImageData@ImageDB@@QAEKQB_W@Z
?SaveXferImageData@ImageDB@@QAEKQB_W@Z
?SetCancelFlag@ImageDB@@QAEXXZ
?SetCapabilityArray@ParamDB@@QAEKGPBCH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBEH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBFH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBGH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBHH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBIH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBMH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBNH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPB_NH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPB_WH_N0H@Z
?SetCapabilityData@ParamDB@@QAEKGC_NC@Z
?SetCapabilityData@ParamDB@@QAEKGE_NE@Z
?SetCapabilityData@ParamDB@@QAEKGF_NF@Z
?SetCapabilityData@ParamDB@@QAEKGG_NG@Z
?SetCapabilityData@ParamDB@@QAEKGH_NH@Z
?SetCapabilityData@ParamDB@@QAEKGI_NI@Z
?SetCapabilityData@ParamDB@@QAEKGM_NM@Z
?SetCapabilityData@ParamDB@@QAEKGN_NN@Z
?SetCapabilityData@ParamDB@@QAEKGPBUDrvRect@@_N0@Z
?SetCapabilityData@ParamDB@@QAEKG_N00@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBCHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBEHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBFHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBGHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBHHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBIHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBMHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBNHH1H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPB_NHH1H@Z
?SetCapabilityRange@ParamDB@@QAEKGC_NCCCC@Z
?SetCapabilityRange@ParamDB@@QAEKGE_NEEEE@Z
?SetCapabilityRange@ParamDB@@QAEKGF_NFFFF@Z
?SetCapabilityRange@ParamDB@@QAEKGG_NGGGG@Z
?SetCapabilityRange@ParamDB@@QAEKGH_NHHHH@Z
?SetCapabilityRange@ParamDB@@QAEKGI_NIIII@Z
?SetCapabilityRange@ParamDB@@QAEKGM_NMMMM@Z
?SetCapabilityRange@ParamDB@@QAEKGN_NNNNN@Z
?SetCoreImageProperty@CoreImageData@@QAEKABUCORE_IMAGE_PROPERTY@@@Z
?SetCoreImageProperty@ImageDB@@QAEKABUCORE_IMAGE_PROPERTY@@@Z
?SetCoreImageWritePoint@ImageDB@@QAEXXZ
?SetCropData@ImageDB@@QAEKHABUUIP_CropData@@@Z
?SetCurrentCapability@ParamDB@@QAEKGC@Z
?SetCurrentCapability@ParamDB@@QAEKGE@Z
?SetCurrentCapability@ParamDB@@QAEKGF@Z
?SetCurrentCapability@ParamDB@@QAEKGG@Z
?SetCurrentCapability@ParamDB@@QAEKGH@Z
?SetCurrentCapability@ParamDB@@QAEKGI@Z
?SetCurrentCapability@ParamDB@@QAEKGM@Z
?SetCurrentCapability@ParamDB@@QAEKGPBCH@Z
?SetCurrentCapability@ParamDB@@QAEKGPBEH@Z
?SetCurrentCapability@ParamDB@@QAEKGPBFH@Z
?SetCurrentCapability@ParamDB@@QAEKGPBGH@Z
?SetCurrentCapability@ParamDB@@QAEKGPBHH@Z
?SetCurrentCapability@ParamDB@@QAEKGPBIH@Z
?SetCurrentCapability@ParamDB@@QAEKGPBMH@Z
?SetCurrentCapability@ParamDB@@QAEKGPB_NH@Z
?SetCurrentCapability@ParamDB@@QAEKGPB_WH@Z
?SetCurrentCapability@ParamDB@@QAEKG_N@Z
?SetCurrentCoreImageData@ImageDB@@QAEKE@Z
?SetEnableReadXferData@ImageDB@@QAEKXZ
?SetEndWriteBuffer@CRing@@QAEXH@Z
?SetEndWriteBuffer@ImageDB@@QAEKEH@Z
?SetErrorMessage@ImageDB@@QAEXK@Z
?SetID@CRing@@QAEXG@Z
?SetImageStat@ImageDB@@QAEKHPBXHH@Z
?SetListSize@ParamDB@@QAEKK@Z
?SetMessageBoxProc@ImageDB@@QAEXP6GHK@Z@Z
?SetPageInfo@ImageDB@@QAEXABUIDB_PAGE_INFO@@@Z
?SetParam@ParamDB@@QAEKGE@Z
?SetParam@ParamDB@@QAEKGG@Z
?SetParam@ParamDB@@QAEKGH@Z
?SetParam@ParamDB@@QAEKGI@Z
?SetParam@ParamDB@@QAEKGM@Z
?SetParam@ParamDB@@QAEKGPBDH@Z
?SetParam@ParamDB@@QAEKGPBHH@Z
?SetParam@ParamDB@@QAEKGPBIH@Z
?SetParam@ParamDB@@QAEKGPBMH@Z
?SetParam@ParamDB@@QAEKGPB_WH@Z
?SetParametersFromCADDIS@ParamDB@@QAEKPB_W@Z
?SetProcessedLineInfo@ImageDB@@QAEKABUPROCESS_LINE_INFO@@@Z
?SetReadPosition@CRing@@QAEXXZ
?SetScanImageDataDocumentType@ImageDB@@QAEKG@Z
?SetScanImageDataSaveFileName@ImageDB@@QAEKPB_W@Z
?SetScanStat@ImageDB@@QAEKHPBXH@Z
?SetTerminate@CRing@@QAEXH@Z
?SetTerminate@CoreImageData@@QAEXH@Z
?SetThreadFlag@ImageDB@@QAEKEH@Z
?SetTimeOutCount@CRing@@QAEXK@Z
?SetTotalPage@ImageDB@@QAEXH@Z
?SetWaitCountRead@CRing@@QAEXH@Z
?SetWaitCountWrite@CRing@@QAEXH@Z
?SetWritePoint@CoreImageData@@QAEXXZ
?SetWritePosition@CRing@@QAEXXZ
?SetXferImageFromDataQueue@ImageDB@@QAEKXZ
?SetXferImageToDataQueue@ImageDB@@QAEKPAPBVXferImageData@@@Z
?SetXferLineInfo@ImageDB@@QAEKABUPROCESS_LINE_INFO@@@Z
?Unlock@CCriticalSection@@QAEXXZ
?Unlock@CRing@@QAEXXZ
?Unlock@CoreImageData@@AAEXXZ
?WaitThreadFlag@ImageDB@@QAEKK@Z
?Write@CRing@@QAEKPAEK@Z
?WriteBuffer@CoreImageData@@QAEKQAEKK@Z
?WriteCoreImageBuffer@ImageDB@@QAEKQAEKK@Z
?WriteRingBuffer@ImageDB@@QAEKEQAEK@Z
?WriteScanImageData@ImageDB@@QAEKPAEKKK@Z
?ZeroSetBuffer@CoreImageData@@QAEKXZ
?ZeroSetCoreImageBuffer@ImageDB@@QAEKXZ
?g_ImageDB@@3VImageDB@@A
?g_ParamDB@@3VParamDB@@A

Sections

.text
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 446KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SCNFLW.dll
.dll windows:5 windows x86 arch:x86

0623e1bb373d2d1950ff6f3325166a40

Code Sign

69:37:56:d7:92:3d:cc:dc:b4:17:fb:ec:3e:b6:be:e9
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

09/04/2018, 00:00

Not After

21/04/2019, 23:59

Subject

CN=Canon Inc.,OU=Inkjet System Development Center,O=Canon Inc.,L=Kawasaki-shi,ST=Kanagawa,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:05:b1:d4:49:68:51:44:f7:c9:89:d2:9c:19:9d:12
Certificate

Issuer

CN=VeriSign Universal Root Certification Authority,OU=VeriSign Trust Network+OU=(c) 2008 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

12/01/2016, 00:00

Not After

11/01/2031, 23:59

Subject

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7b:d4:e5:af:ba:cc:07:3f:a1:01:23:04:22:41:4d:12
Certificate

Issuer

CN=Symantec SHA256 TimeStamping CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

23/12/2017, 00:00

Not After

22/03/2029, 23:59

Subject

CN=Symantec SHA256 TimeStamping Signer - G3,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

a8:ce:82:39:37:c4:1b:1b:7f:e4:b3:4f:36:20:4e:16:c3:d6:4b:67:ab:5e:37:bf:3a:51:59:b5:fa:18:66:4c
Signer

Actual PE Digest

a8:ce:82:39:37:c4:1b:1b:7f:e4:b3:4f:36:20:4e:16:c3:d6:4b:67:ab:5e:37:bf:3a:51:59:b5:fa:18:66:4c

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\CIS\Jenkins\workspace\ScanGear\Project\19_2H\Source\SCNFLW\Release\SCNFLW.pdb

Imports

scndb

?CheckCoreImageBuffer@ImageDB@@QAEHXZ
?WriteScanImageData@ImageDB@@QAEKPAEKKK@Z
?WriteRingBuffer@ImageDB@@QAEKEQAEK@Z
?SetProcessedLineInfo@ImageDB@@QAEKABUPROCESS_LINE_INFO@@@Z
?g_ParamDB@@3VParamDB@@A
?GetParam@ParamDB@@QAEKGPAE@Z
?GetParam@ParamDB@@QAEKGPAIHPAH@Z
?GetParam@ParamDB@@QAEKGPA_WHPAH@Z
?GetCropDataSize@ImageDB@@QAEHXZ
?ResetCropData@ImageDB@@QAEKXZ
?IsBlockOut@ImageDB@@QAEHXZ
?SetErrorMessage@ImageDB@@QAEXK@Z
?GetCurrentCoreImageData@ImageDB@@QAEKPAE@Z
?SetCropData@ImageDB@@QAEKHABUUIP_CropData@@@Z
?PopUpCropData@ImageDB@@QAEKPAUUIP_CropData@@@Z
?GetParam@ParamDB@@QAEKGPAI@Z
?ReadCoreImageBuffer@ImageDB@@QAEKPAEKK@Z
?WriteCoreImageBuffer@ImageDB@@QAEKQAEKK@Z
?g_ImageDB@@3VImageDB@@A
?ReadRingBuffer@ImageDB@@QAEKEPAEKPAK@Z
?SetEndWriteBuffer@ImageDB@@QAEKEH@Z
?GetStartWriteRingBuffer@ImageDB@@QAEKEPAH@Z
?SetScanImageDataDocumentType@ImageDB@@QAEKG@Z
?GetImageStat@ImageDB@@QAEKHPAXHH@Z
?SetImageStat@ImageDB@@QAEKHPBXHH@Z
?GetCropData@ImageDB@@QAEKHPAUUIP_CropData@@@Z
?PushBackCropData@ImageDB@@QAEKABUUIP_CropData@@@Z

mscms

CloseColorProfile
DeleteColorTransform
OpenColorProfileW
TranslateColors
CreateColorTransformW
IsColorProfileValid

shlwapi

PathRemoveFileSpecW
PathAppendW

kernel32

GetStringTypeW
SetEndOfFile
WriteConsoleW
SetStdHandle
ReadConsoleW
OutputDebugStringW
LoadLibraryExW
HeapReAlloc
GetOEMCP
IsValidCodePage
GetACP
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
HeapSize
GetConsoleMode
GetConsoleCP
FlushFileBuffers
SetFilePointerEx
GetFileType
GetStdHandle
GetModuleHandleExW
ExitProcess
GetProcessHeap
IsDebuggerPresent
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
FindFirstFileW
CreateDirectoryW
WriteFile
Sleep
CopyFileW
ReadFile
CreateFileW
GetLastError
MoveFileW
FindClose
RemoveDirectoryW
FindNextFileW
CloseHandle
DeleteFileW
SetFilePointer
FreeLibrary
LoadLibraryW
GetProcAddress
WideCharToMultiByte
GetModuleFileNameW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
MultiByteToWideChar
HeapFree
HeapAlloc
GetCommandLineA
GetCurrentThreadId
RaiseException
RtlUnwind
GetCPInfo
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW

Exports

Exports

CreateScanFlowIF
DeleteScanFlowIF

Sections

.text
Size: 246KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SCNIF.dll
.dll windows:5 windows x86 arch:x86

95bb55a00de5916b7d8ef3b89c4ee844

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\CIS\Jenkins\workspace\ScanGear\Project\19_2H\Source\SCNIF\Release\SCNIF.pdb

Imports

scndb

?Unlock@CCriticalSection@@QAEXXZ
?g_ParamDB@@3VParamDB@@A
?SetParam@ParamDB@@QAEKGE@Z
?GetParam@ParamDB@@QAEKGPAE@Z
?SetErrorMessage@ImageDB@@QAEXK@Z
?GetParam@ParamDB@@QAEKGPAIHPAH@Z
?PushBackCropData@ImageDB@@QAEKABUUIP_CropData@@@Z
?SetProcessedLineInfo@ImageDB@@QAEKABUPROCESS_LINE_INFO@@@Z
?GetScanStat@ImageDB@@QAEKHPAXH@Z
?SetImageStat@ImageDB@@QAEKHPBXHH@Z
?GetImageStat@ImageDB@@QAEKHPAXHH@Z
?GetEndWriteBuffer@ImageDB@@QAEKEPAH@Z
?SetEndWriteBuffer@ImageDB@@QAEKEH@Z
?WriteRingBuffer@ImageDB@@QAEKEQAEK@Z
?GetCurrentCoreImageData@ImageDB@@QAEKPAE@Z
?GetCancelFlag@ImageDB@@QAE?BHXZ
??0CCriticalSection@@QAE@XZ
??1CCriticalSection@@QAE@XZ
?Lock@CCriticalSection@@QAEXXZ
?g_ImageDB@@3VImageDB@@A
?SetScanStat@ImageDB@@QAEKHPBXH@Z
?GetParam@ParamDB@@QAEKGPA_WHPAH@Z
?GetErrorMessage@ImageDB@@QAE?BKXZ

shlwapi

PathAppendW
PathRemoveFileSpecW
PathRemoveBackslashW
PathFindNextComponentW

kernel32

GetConsoleMode
GetConsoleCP
LCMapStringW
HeapReAlloc
LoadLibraryExW
WriteFile
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
SetFilePointerEx
GetTickCount
InitializeCriticalSectionAndSpinCount
Sleep
GetExitCodeThread
CreateThread
InterlockedExchange
CloseHandle
FreeLibrary
LoadLibraryW
GetProcAddress
GetWindowsDirectoryW
CreateMutexW
ReleaseMutex
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetCurrentProcess
GetModuleHandleW
GetSystemDirectoryW
GetModuleFileNameW
LocalFree
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId
WideCharToMultiByte
OpenMutexW
OutputDebugStringW
SetStdHandle
WriteConsoleW
FlushFileBuffers
CreateFileW
WaitForSingleObject
GetModuleFileNameA
GetStartupInfoW
GetFileType
GetStdHandle
GetProcessHeap
EncodePointer
DecodePointer
GetCommandLineA
RaiseException
RtlUnwind
GetLastError
HeapFree
IsDebuggerPresent
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
MultiByteToWideChar
HeapSize
HeapAlloc
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
SetLastError
GetStringTypeW

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

ole32

CoUninitialize
CreateStreamOnHGlobal
CoInitializeEx
CoCreateInstance

Exports

Exports

DeleteScanMediateIF
GetScanMediateIF

Sections

.text
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SCNUI.dll
.dll windows:5 windows x86 arch:x86

2e565bf2de76e1390f0ebdf3091a8354

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\CIS\Jenkins\workspace\ScanGear\Project\19_2H\Source\SCNUI\Release\SCNUI.pdb

Imports

mscms

OpenColorProfileW
GetColorProfileHeader
GetColorProfileElement
GetColorDirectoryW
CloseColorProfile
IsColorProfileValid
IsColorProfileTagPresent

shlwapi

PathFileExistsW
PathSetDlgItemPathW
PathFindNextComponentW
PathRemoveBackslashW
PathAddBackslashW
PathFindExtensionW
PathIsDirectoryW
PathIsUNCW
PathRemoveFileSpecW
PathAppendW
PathFindFileNameW
StrFormatKBSizeW
PathStripToRootW

msvfw32

MCIWndCreateW

winmm

mciSendCommandW
PlaySoundW

imm32

ImmGetContext
ImmSetOpenStatus
ImmGetOpenStatus
ImmReleaseContext

scndb

?SetCancelFlag@ImageDB@@QAEXXZ
?GetParam@ParamDB@@QAEKGPA_WHPAH@Z
?GetParam@ParamDB@@QAEKGPAIHPAH@Z
?GetParam@ParamDB@@QAEKGPAI@Z
?SetErrorMessage@ImageDB@@QAEXK@Z
?ReadRingBuffer@ImageDB@@QAEKEPAEKPAK@Z
?IsWrittenRingBuffer@ImageDB@@QAEKEPAH@Z
?GetImageStat@ImageDB@@QAEKHPAXHH@Z
?GetProgressInfo@ImageDB@@QAEKPAUPROGRESS_INFO@@@Z
?WaitThreadFlag@ImageDB@@QAEKK@Z
?GetParam@ParamDB@@QAEKGPAE@Z
?g_ParamDB@@3VParamDB@@A
?g_ImageDB@@3VImageDB@@A

kernel32

UnlockFile
DuplicateHandle
lstrcmpiW
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
lstrcpyW
GetFileSize
VerifyVersionInfoW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
IsDebuggerPresent
IsProcessorFeaturePresent
GetCommandLineA
RtlUnwind
ExitProcess
GetModuleHandleExW
CreateThread
ExitThread
HeapQueryInformation
GetSystemInfo
VirtualAlloc
VirtualQuery
GetSystemTimeAsFileTime
SetStdHandle
GetFileType
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
GetStdHandle
GetModuleFileNameA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
LCMapStringW
IsValidLocale
EnumSystemLocalesW
WriteConsoleW
SetEnvironmentVariableA
FlushFileBuffers
GetCurrentDirectoryW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
CompareStringW
GetUserDefaultLCID
GetFullPathNameW
GetFileTime
GlobalFlags
SetErrorMode
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
FileTimeToSystemTime
SetFilePointer
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GetVersionExW
GetCurrentThread
GlobalFindAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeResource
GetSystemDirectoryW
LeaveCriticalSection
EnterCriticalSection
EncodePointer
GlobalGetAtomNameW
GlobalAddAtomW
GetCurrentProcessId
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
GetLocalTime
ResumeThread
SuspendThread
CreateEventW
GetExitCodeThread
ResetEvent
SetThreadExecutionState
SetEvent
GetCurrentThreadId
ReadFile
WriteFile
GetWindowsDirectoryW
MultiByteToWideChar
GlobalMemoryStatusEx
GetTickCount
DeleteFileW
GetDiskFreeSpaceExW
CreateFileW
GetLocaleInfoW
WideCharToMultiByte
OutputDebugStringW
QueryPerformanceCounter
GetCurrentProcess
GetDriveTypeW
GetTempFileNameW
LoadLibraryA
Sleep
SizeofResource
LoadResource
FindResourceW
LockResource
InterlockedDecrement
InterlockedIncrement
CloseHandle
GetTempPathW
WaitForSingleObject
GetVersion
OutputDebugStringA
DeleteCriticalSection
FindNextFileW
GetModuleHandleA
DecodePointer
FindClose
HeapSize
GetProcAddress
SetLastError
GetLastError
RaiseException
GetModuleFileNameW
GetFileAttributesW
InitializeCriticalSectionAndSpinCount
LoadLibraryW
GetProcessHeap
GetModuleHandleW
HeapFree
HeapAlloc
FreeLibrary
FindFirstFileW
HeapReAlloc
SetEndOfFile
LockFile
GetVolumeInformationW
SetThreadPriority
VerSetConditionMask

user32

CopyIcon
SetMenuDefaultItem
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
SubtractRect
CreateMenu
DestroyCursor
GetWindowRgn
DrawIcon
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
GetMenuItemInfoW
SetWindowTextW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
SetDlgItemInt
MoveWindow
GetMonitorInfoW
MonitorFromWindow
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongW
MapWindowPoints
MessageBoxW
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
TrackPopupMenu
EndDeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
CreateWindowExW
GetClassInfoExW
CallWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
ReuseDDElParam
UnpackDDElParam
WinHelpW
DestroyIcon
GetWindow
GetLastActivePopup
SetWindowLongW
InsertMenuItemW
SetMenu
GetMenu
LoadMenuW
LoadAcceleratorsW
IsWindowEnabled
GetKeyState
SetFocus
GetDlgItem
BringWindowToTop
ShowWindow
AdjustWindowRectEx
IsIconic
IsChild
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
GetDoubleClickTime
RemoveMenu
GetSubMenu
GetMenuState
GetMenuStringW
InsertMenuW
DrawTextW
CallNextHookEx
SetWindowsHookExW
UnhookWindowsHookEx
MessageBoxExW
DefWindowProcW
TrackMouseEvent
DrawFocusRect
DrawStateW
DrawFrameControl
EqualRect
ClientToScreen
SetCursor
GetCapture
GetDesktopWindow
SetActiveWindow
GetActiveWindow
DrawIconEx
SetForegroundWindow
AttachThreadInput
GetForegroundWindow
GetWindowThreadProcessId
IsRectEmpty
IsDialogMessageW
LoadImageW
InvalidateRgn
SetWindowPos
TranslateAcceleratorW
DestroyAcceleratorTable
GetMessageW
WindowFromPoint
CreateAcceleratorTableW
TranslateMessage
GetAncestor
IsWindow
DispatchMessageW
GetDialogBaseUnits
GetComboBoxInfo
GetDlgCtrlID
ScreenToClient
SetCapture
PtInRect
GetUpdateRect
GetDC
InflateRect
IntersectRect
ReleaseDC
GetSysColorBrush
FrameRect
ShowScrollBar
ReleaseCapture
MapDialogRect
FillRect
GetMenuItemID
GetCursorPos
EnumChildWindows
CreatePopupMenu
GetMenuItemCount
DeferWindowPos
SetTimer
PostMessageW
KillTimer
GetParent
SetRectEmpty
GetAsyncKeyState
PeekMessageW
GetSysColor
GetSystemMenu
GetWindowRect
IsZoomed
GetFocus
LoadCursorW
GetClientRect
GetClassInfoW
LoadIconW
OffsetRect
SetRect
InvalidateRect
SetCursorPos
GetWindowLongW
AppendMenuW
SystemParametersInfoW
GetClassNameW
RegisterClassW
GetSystemMetrics
IsWindowVisible
SendMessageW
SetClassLongW
CopyAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
PostThreadMessageW
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawEdge
EmptyClipboard
SetClipboardData
CloseClipboard
UpdateWindow
CopyRect
EnableWindow
UnregisterClassW
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
GetMenuDefaultItem
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
MessageBeep
GetIconInfo
GetNextDlgGroupItem
LockWindowUpdate
CharUpperW
CopyImage
SetParent
DeleteMenu
UnionRect
RealChildWindowFromPoint
BeginPaint
PostQuitMessage
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
SendDlgItemMessageA
MapVirtualKeyW
GetKeyNameTextW
CheckMenuItem
EndPaint
DestroyMenu
ShowOwnedPopups

gdi32

SetDIBits
CombineRgn
GetDIBits
PlgBlt
StretchBlt
UnrealizeObject
CreateBitmap
GetStockObject
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
Rectangle
SetPixel
SelectObject
CopyMetaFileW
CreateDCW
SetBkColor
SetTextColor
ExtTextOutW
CreateHatchBrush
DeleteDC
Escape
ExcludeClipRect
GetClipBox
SetMapMode
RestoreDC
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
MoveToEx
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetTextMetricsW
CreateRectRgn
PatBlt
SetRectRgn
DPtoLP
GetBkColor
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
EnumFontFamiliesExW
GetRgnBox
OffsetRgn
CreateRoundRectRgn
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
CreateFontIndirectW
BitBlt
Arc
GetTextExtentPoint32W
DeleteObject
GetObjectW
CreatePen
RoundRect
SetBrushOrgEx
CreateCompatibleDC
CreateCompatibleBitmap
CreatePatternBrush
CreateSolidBrush
CreateRectRgnIndirect
GetDeviceCaps
GetPixel
GetObjectType
SaveDC

msimg32

AlphaBlend
TransparentBlt

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW
RegEnumKeyExW

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetFileInfoW
DragFinish
DragQueryFileW
SHGetSpecialFolderPathW
ShellExecuteW
ord165
SHGetPathFromIDListW
SHGetFolderPathW
SHBrowseForFolderW
SHAppBarMessage

uxtheme

GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
GetThemeColor
IsAppThemed
GetThemePartSize
CloseThemeData
OpenThemeData
DrawThemeText
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeBackground

ole32

OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoInitializeEx
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator

oleaut32

VariantInit
VariantClear
VariantChangeType
SysAllocString
SystemTimeToVariantTime
VariantTimeToSystemTime
SysStringLen
LoadTypeLi
VarBstrFromDate
VariantCopy
SysFreeString
SysAllocStringLen

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

gdiplus

GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipSetInterpolationMode
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI
GdipCreateBitmapFromStream

Exports

Exports

GetConfigurationAdder
GetStatAdder
SCNUI_Disable
SCNUI_Enable
SCNUI_GetPreference
SCNUI_GetStatus
SCNUI_ImageXfer
SCNUI_ImageXferEx
SCNUI_Initialize
SCNUI_MessageBox
SCNUI_SetMessage
SCNUI_SetPreference
SCNUI_ShowDialog
SCNUI_Terminate

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 403KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SGCFLTR.dll
.dll windows:5 windows x86 arch:x86

dba9aab807e9544213d59bdf7eea682c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW
LoadLibraryA
FreeLibrary
GetProcAddress
InterlockedExchange
InterlockedCompareExchange
GetTickCount
VirtualAlloc
GetVersion
GetCurrentProcess
GetModuleHandleA
VirtualFree
LockResource
SizeofResource
LoadResource
FindResourceW
UnhandledExceptionFilter
FindResourceA
lstrlenA
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetLastError
HeapFree
HeapAlloc
RaiseException
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
TerminateProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
HeapReAlloc
HeapSize
WriteFile
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

Exports

Exports

Create_CFilterIF
Release_CFilterIF

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 252KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SGCFLTR6.dll
.dll windows:5 windows x64 arch:x64

0232f8dd567c113d327607729fba7b46

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleW
LoadLibraryA
FreeLibrary
GetProcAddress
GetTickCount
VirtualAlloc
GetVersion
GetCurrentProcess
GetModuleHandleA
VirtualFree
LockResource
SizeofResource
LoadResource
FindResourceW
FindResourceA
lstrlenA
RtlLookupFunctionEntry
RtlUnwindEx
GetCurrentThreadId
FlsSetValue
GetCommandLineA
GetLastError
HeapFree
EncodePointer
DecodePointer
FlsGetValue
FlsFree
SetLastError
FlsAlloc
RaiseException
RtlPcToFileHeader
HeapAlloc
Sleep
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
WriteFile
HeapReAlloc
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW

Exports

Exports

Create_CFilterIF
Release_CFilterIF

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 354KB - Virtual size: 353KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
SG_ARA.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_BGR.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_CHS.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_CHT.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_CSY.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_DAN.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_DEU.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_ELL.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_ENU.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_ESP.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_ETI.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_FIN.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_FRA.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_HRV.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_HUN.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_IMG.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\CIS\Jenkins\workspace\ScanGear\Project\19_2H\Source\SCNUI\Release\SG_IMG.pdb

Sections

.rdata
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_IND.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_ITA.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_JPN.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_KOR.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_LTH.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_LVI.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_NLD.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_NOR.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_PLK.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_PTB.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_ROM.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_RUS.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_SKY.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_SLV.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_SVE.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_THA.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_TRK.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_UKR.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
SG_VIT.dll
.dll windows:5 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
TDGLIB.dll
.dll windows:4 windows x86 arch:x86

8c50151f61e457be090cee00fe1e1e08

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\108731\Desktop\ビルド用\TDGLIB\2013\release\TDGLIB.pdb

Imports

kernel32

CloseHandle
WaitForSingleObject
SetEvent
ResetEvent
CreateEventW
OpenEventW
GetSystemTimeAsFileTime
HeapAlloc
ExitThread
GetCurrentThreadId
GetLastError
CreateThread
HeapFree
GetCommandLineA
GetVersionExA
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
InitializeCriticalSection
RtlUnwind
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

TDGExec
TDGFree
TDGInit

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
TPM.dll
.dll windows:5 windows x86 arch:x86

1b6689aaa2e2932e1427fd5dc331bf14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\CIS\Jenkins\workspace\ScanGear\Project\19_2H\Source\SCNDB_TPM\Release\TPM.pdb

Imports

kernel32

GetProcAddress
MoveFileW
CloseHandle
DeleteFileW
CreateMutexW
HeapAlloc
HeapFree
GetProcessHeap
MultiByteToWideChar
OpenMutexW
ReleaseMutex
GetModuleHandleW
GetTickCount
GetLastError
CreateFileW
SetEnvironmentVariableA
FlushFileBuffers
GetFileAttributesW
InitializeCriticalSectionAndSpinCount
TerminateThread
LoadLibraryW
WriteFile
WaitForSingleObject
FreeLibrary
GlobalFree
Sleep
GlobalAlloc
GlobalUnlock
GlobalLock
WriteConsoleW
SetStdHandle
OutputDebugStringW
LCMapStringW
CompareStringW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LeaveCriticalSection
EnterCriticalSection
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
DeleteCriticalSection
GetFileType
GetStdHandle
HeapSize
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetModuleHandleExW
ExitProcess
GetTimeZoneInformation
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
RtlUnwind
RaiseException
IsProcessorFeaturePresent
IsDebuggerPresent
GetCommandLineA
GetSystemTimeAsFileTime
LoadLibraryExW
ExitThread
GetCurrentThreadId
CreateThread
DecodePointer
EncodePointer
WideCharToMultiByte
SetFileAttributesW
LocalFree
GetVersion
OutputDebugStringA
GetModuleHandleA
SetLastError
WritePrivateProfileStringW
GetModuleFileNameW
HeapReAlloc
GetPrivateProfileStringW

user32

SetCursor
LoadCursorW

advapi32

FreeSid
AddAccessAllowedAce
AllocateAndInitializeSid
InitializeAcl
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetLengthSid

shlwapi

PathAppendW
PathAddBackslashW

scndb

?GetXferImageDataSaveFileName@ImageDB@@QAEKPA_WK@Z
?GetXferImageDataDocumentType@ImageDB@@QAEKPAG@Z
?CloseXferImageData@ImageDB@@QAEKXZ
?IsEnableReadXferData@ImageDB@@QAEKPAH@Z
?GetXferImageProperty@ImageDB@@QAEKPAUXFER_IMAGE_PROPERTY@@@Z
?SetEnableReadXferData@ImageDB@@QAEKXZ
?SetScanImageDataSaveFileName@ImageDB@@QAEKPB_W@Z
?WriteScanImageData@ImageDB@@QAEKPAEKKK@Z
?GetScanImageDataAllocType@ImageDB@@QAEKPAE@Z
?AllocateScanImageData@ImageDB@@QAEKKKKKKKHEKQA_W@Z
?GetStartWriteRingBuffer@ImageDB@@QAEKEPAH@Z
?GetRingBufferSize@ImageDB@@QAEKEPAK@Z
?ResetRingBufferTimeOutWrite@ImageDB@@QAEKEH@Z
?ResetRingBufferTimeOutRead@ImageDB@@QAEKEH@Z
?ResetRingBufferWritePoint@ImageDB@@QAEKE@Z
?ResetRingBufferReadPoint@ImageDB@@QAEKE@Z
?SetEndWriteBuffer@ImageDB@@QAEKEH@Z
?ReadRingBuffer@ImageDB@@QAEKEPAEKPAK@Z
?GetCurrentCoreImageData@ImageDB@@QAEKPAE@Z
?SetCurrentCoreImageData@ImageDB@@QAEKE@Z
?ZeroSetCoreImageBuffer@ImageDB@@QAEKXZ
?LoadCoreImageData@ImageDB@@QAEKQB_W@Z
?SaveCoreImageData@ImageDB@@QAEKQB_W@Z
?SetCoreImageWritePoint@ImageDB@@QAEXXZ
?ResetCoreImageWritePoint@ImageDB@@QAEXXZ
?CheckCoreImageBuffer@ImageDB@@QAEHXZ
?SetCoreImageProperty@ImageDB@@QAEKABUCORE_IMAGE_PROPERTY@@@Z
?ResetCancelFlag@ImageDB@@QAEXXZ
?SetCancelFlag@ImageDB@@QAEXXZ
?GetErrorMessage@ImageDB@@QAE?BKXZ
?SetErrorMessage@ImageDB@@QAEXK@Z
?SetParam@ParamDB@@QAEKGPB_WH@Z
?SetParametersFromCADDIS@ParamDB@@QAEKPB_W@Z
?Initialize@ParamDB@@QAEKXZ
?SetMessageBoxProc@ImageDB@@QAEXP6GHK@Z@Z
?Initialize@ImageDB@@QAEKXZ
?GetCurrentCapability@ParamDB@@QAEKGPAFHPAH@Z
?IsEnableGetXferProperty@ImageDB@@QAEKPAH@Z
?GetCancelFlag@ImageDB@@QAE?BHXZ
?SetParam@ParamDB@@QAEKGI@Z
?SetTotalPage@ImageDB@@QAEXH@Z
?GetXferImageDataDIBHandle@ImageDB@@QAEKPAPAX@Z
?SaveXferImageData@ImageDB@@QAEKQB_W@Z
?CloseAllXferImageData@ImageDB@@QAEXXZ
?GetPageInfo@ImageDB@@QAEXPAUIDB_PAGE_INFO@@@Z
?ForceEndPage@ImageDB@@QAEXXZ
?GetImageStat@ImageDB@@QAEKHPAXHH@Z
?SetImageStat@ImageDB@@QAEKHPBXHH@Z
?SetScanStat@ImageDB@@QAEKHPBXH@Z
?SetProcessedLineInfo@ImageDB@@QAEKABUPROCESS_LINE_INFO@@@Z
?ResetProcessedLineInfo@ImageDB@@QAEKXZ
?SetXferLineInfo@ImageDB@@QAEKABUPROCESS_LINE_INFO@@@Z
?GetXferLineInfo@ImageDB@@QAEKPAUPROCESS_LINE_INFO@@@Z
?ResetXferLineInfo@ImageDB@@QAEKXZ
?PopUpCropData@ImageDB@@QAEKPAUUIP_CropData@@@Z
?PushBackCropData@ImageDB@@QAEKABUUIP_CropData@@@Z
?ResetCropData@ImageDB@@QAEKXZ
?ClearThreadFlag@ImageDB@@QAEXXZ
?WaitThreadFlag@ImageDB@@QAEKK@Z
?SetThreadFlag@ImageDB@@QAEKEH@Z
?GetParam@ParamDB@@QAEKGPA_WHPAH@Z
??0CCriticalSection@@QAE@XZ
??1CCriticalSection@@QAE@XZ
?Lock@CCriticalSection@@QAEXXZ
?Unlock@CCriticalSection@@QAEXXZ
?IsBlockOut@ImageDB@@QAEHXZ
?GetScanStat@ImageDB@@QAEKHPAXH@Z
?GetParam@ParamDB@@QAEKGPAIHPAH@Z
?GetParam@ParamDB@@QAEKGPAI@Z
?GetParam@ParamDB@@QAEKGPAE@Z
?GetCapabilityData@ParamDB@@QAEKGPAUDrvRect@@_N0@Z
?GetCapabilityData@ParamDB@@QAEKGPAM_N0@Z
?GetCapabilityRange@ParamDB@@QAEKGPAG_N0000@Z
?GetCapabilityRange@ParamDB@@QAEKGPAM_N0000@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPAGH002H0@Z
?GetCapabilityEnumeration@ParamDB@@QAEKGPAH_NPAMH002H0@Z
?SetCapabilityData@ParamDB@@QAEKGPBUDrvRect@@_N0@Z
?SetCapabilityData@ParamDB@@QAEKGI_NI@Z
?SetCapabilityData@ParamDB@@QAEKGG_NG@Z
?SetCapabilityData@ParamDB@@QAEKGM_NM@Z
?SetCapabilityData@ParamDB@@QAEKGF_NF@Z
?SetCapabilityRange@ParamDB@@QAEKGG_NGGGG@Z
?SetCapabilityRange@ParamDB@@QAEKGM_NMMMM@Z
?SetCapabilityArray@ParamDB@@QAEKGPBGH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBEH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPB_WH_N0H@Z
?SetCapabilityArray@ParamDB@@QAEKGPBCH_N0H@Z
?SetCapabilityEnumeration@ParamDB@@QAEKGH_NPBGHH1H@Z
?GetCurrentCapability@ParamDB@@QAEKGPA_WHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAIHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAGHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAMHPAH@Z
?GetCurrentCapability@ParamDB@@QAEKGPAHH0@Z
?GetCurrentCapability@ParamDB@@QAEKGPACHPAH@Z
?SetCurrentCapability@ParamDB@@QAEKGPB_WH@Z
?SetCurrentCapability@ParamDB@@QAEKGI@Z
?SetCurrentCapability@ParamDB@@QAEKGG@Z
?SetCurrentCapability@ParamDB@@QAEKGM@Z
?SetCurrentCapability@ParamDB@@QAEKGF@Z
?GetDefaultCapability@ParamDB@@QAEKGPA_WHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAIHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAGHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAMHPAH@Z
?GetDefaultCapability@ParamDB@@QAEKGPAHH0@Z
?GetDefaultCapability@ParamDB@@QAEKGPACHPAH@Z
?ResetCapability@ParamDB@@QAEKG@Z
?g_ParamDB@@3VParamDB@@A
?g_ImageDB@@3VImageDB@@A
?ReadXferImageData@ImageDB@@QAEKPAEKKK@Z

shell32

SHCreateDirectoryExW
SHGetFolderPathW

Exports

Exports

??0CapManager@@QAE@XZ
??0SGM@@QAE@XZ
??1CapManager@@QAE@XZ
??1SGM@@QAE@XZ
??4CapManager@@QAEAAV0@ABV0@@Z
?CalcToneCurve@SGM@@QAEKHPBXPAX@Z
?CallbackForCapabilityChange@CapManager@@AAEKGGG@Z
?CapCpmGet@CapManager@@AAEGPBUCAPINFO@@G@Z
?CapCpmReset@CapManager@@AAEGPBUCAPINFO@@@Z
?CapCpmSet@CapManager@@AAEGPBUCAPINFO@@@Z
?CapabilityGetEx@CapManager@@QAEGPAUTW_CAPABILITY@@G@Z
?CapabilityQueryEx@CapManager@@QAEGPAUTW_CAPABILITY@@@Z
?CapabilitySetEx@CapManager@@QAEGPAUTW_CAPABILITY@@G@Z
?CheckBaseImage@SGM@@QAEKPBUUIP_ImageProcess@@PAH@Z
?ClearPreview@SGM@@QAEKXZ
?Close@CapManager@@QAEXXZ
?Close@SGM@@QAEKXZ
?DeleteCropData@SGM@@QAEKH@Z
?DeleteFavorite@SGM@@QAEKH@Z
?DeviceInitialize@SGM@@QAEKXZ
?EndReadScan@SGM@@QAEKXZ
?ExecReautoCrop@SGM@@QAEKPBUUIP_CropData@@PAU2@@Z
?ExecTestScanner@SGM@@QAEKPAK@Z
?ExecutePreview@SGM@@QAEKPBUUIP_ImageScan@@@Z
?ExecuteReshading@SGM@@QAEKG@Z
?ExecuteScan@SGM@@QAEKPBUUIP_ImageScan@@@Z
?ExecuteScanForDetectADFSize@SGM@@QAEKPBUUIP_ImageScan@@@Z
?ExecuteXferCroppedImage@SGM@@QAEKPBUUIP_ImageScan@@@Z
?ExecuteXferDetectADFImage@SGM@@QAEKPBUUIP_ImageScan@@@Z
?GetCapInfoByCap@CapManager@@AAEPAUCAPINFO@@K@Z
?GetCapInfoByDP@CapManager@@AAEPAUCAPINFO@@K@Z
?GetCropData@SGM@@QAEKPAUUIP_CropData@@@Z
?GetDetectADFSize@SGM@@QAEKPAUUIP_CropData@@@Z
?GetDeviceSetting@SGM@@QAEKPAX@Z
?GetFirstCropInfo@SGM@@QAEKPAK@Z
?GetInitializeStatus@SGM@@QAEKXZ
?GetReadImageByFile2@SGM@@QAEKPBUTW_SETUPFILEXFER2@@@Z
?GetReadImageByFile@SGM@@QAEKPBUTW_SETUPFILEXFER@@@Z
?GetReadImageByHandleDIB@SGM@@QAEKPAPAX@Z
?GetReadImageByMemBuffer@SGM@@QAEKABUXFER_IMAGE_PROPERTY@@PAUTW_IMAGEMEMXFER@@@Z
?GetReadImageByMemBufferLargeImage@SGM@@QAEKABUXFER_IMAGE_PROPERTY@@PAUTW_IMAGEMEMXFER@@@Z
?GetScanMethod@SGM@@QAEKPAG@Z
?GetScanMode@SGM@@QAEXPAUSGM_SCAN_MODE@@@Z
?GetThumbNail@SGM@@QAEKPAUUIP_ImageInfo@@@Z
?HandleGetCpmArray@CapManager@@AAEGPBUCAPINFO@@G@Z
?HandleGetCpmEnum@CapManager@@AAEGPBUCAPINFO@@@Z
?HandleGetCpmOneValue@CapManager@@AAEGPBUCAPINFO@@G@Z
?HandleGetCpmRange@CapManager@@AAEGPBUCAPINFO@@@Z
?HandleSetCpmArray@CapManager@@AAEGPBUCAPINFO@@@Z
?HandleSetCpmEnum@CapManager@@AAEGPBUCAPINFO@@@Z
?HandleSetCpmOneValue@CapManager@@AAEGPBUCAPINFO@@@Z
?HandleSetCpmRange@CapManager@@AAEGPBUCAPINFO@@@Z
?Init@SGM@@QAEKXZ
?InitForScan@SGM@@QAEKXZ
?Initialize@CapManager@@QAEKXZ
?InitializeCap@CapManager@@AAEKABUCAPDATAMATRIX@@@Z
?IsSFS@SGM@@QAE?BHXZ
?IsSetScanParameter@CapManager@@QAEHXZ
?IsUIOFF@SGM@@QAE?BHXZ
?IsUIPending@SGM@@QBE?BHXZ
?LoadFavorite@SGM@@QAEKH@Z
?LoadFile@SGM@@QAEKPB_W@Z
?LockAGData@SGM@@QAEKPBUUIP_AGLock@@@Z
?PI_CountUpApplicationData@SGM@@QAEXPAD@Z
?PI_CountUpBootData@SGM@@QAEXXZ
?PI_CountUpScanData@SGM@@QAEXPBUUIP_ImageScan@@@Z
?PI_CountUpUIOFFScan@SGM@@QAEXXZ
?PI_CountUpUiData@SGM@@QAEXABUUIP_Disable@@E@Z
?PI_Open@SGM@@QAEXXZ
?PresetScanMode@SGM@@QAEKPBUUIP_ImageScan@@@Z
?ReadImage@SGM@@QAEKABUXFER_IMAGE_PROPERTY@@@Z
?ReadImageForJpegScan@SGM@@QAEKPB_W@Z
?ReadImageForLargeImageXfer@SGM@@QAEKXZ
?ReflectCapabilityChangeForScanSource@CapManager@@AAEKXZ
?ReflectUISettings@SGM@@QAEKPBUUIP_ImageScan@@@Z
?ResetCancelFlag@SGM@@QAEKXZ
?ResetScanMode@SGM@@QAEXXZ
?ResetScanParameterFlag@CapManager@@QAEXXZ
?ResetUIPendingFlag@SGM@@QAEXXZ
?SaveFavorite@SGM@@QAEKH@Z
?SaveFile@SGM@@QAEKPB_W@Z
?SetDeviceSetting@SGM@@QAEKQAX@Z
?SetFavorite@SGM@@QAEKK@Z
?SetLampMode@SGM@@QAEKG@Z
?SetSFS@SGM@@QAEXXZ
?SetScanMode@SGM@@QAEXABUSGM_SCAN_MODE@@@Z
?SetScanMode@SGM@@QAEXABUUIP_ImageScan@@@Z
?SetScanParameterFlag@CapManager@@QAEXXZ
?SetUIOFF@SGM@@QAEXXZ
?SetUIPendingFlag@SGM@@QAEXXZ
?StartReadScan@SGM@@QAEKXZ
?TerminateAllThread@SGM@@QAEKXZ
?UpdateCapByDeviceInfo@CapManager@@QAEKXZ
?UpdateCapByScanInfo@CapManager@@QAEKPBUUIP_ImageScan@@H@Z
?UpdateImage@SGM@@QAEKPBUUIP_ImageProcess@@@Z
?UpdateSupportedCaps@CapManager@@AAEKXZ
?g_ScanGear@@3VSGM@@A
?m_CapInfoTable@CapManager@@0PAUCAPINFO@@A
?sg_DetectADFSizeScanThread_IP@SGM@@CGIPAX@Z
?sg_InitializeThread_SI@SGM@@CGIPAX@Z
?sg_MultiScanThread_IP@SGM@@CGIPAX@Z
?sg_PreviewThread_IP@SGM@@CGIPAX@Z
?sg_PreviewThread_SI@SGM@@CGIPAX@Z
?sg_ScanThread_IP@SGM@@CGIPAX@Z
?sg_ScanThread_SGM@SGM@@CGIPAX@Z
?sg_ScanThread_SI@SGM@@CGIPAX@Z
?sg_UpdateBaseImageThread_IP@SGM@@CGIPAX@Z
?sg_UpdateImageThread_IP@SGM@@CGIPAX@Z
?sg_XferImageThread_IP@SGM@@CGIPAX@Z
tpmClose
tpmDispatch
tpmOpen

Sections

.text
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cnmpu2.dll
.dll windows:5 windows x86 arch:x86

62be7c41cafe5fa45b26aa49426e9e70

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\Work\cnmpu2\win\trunk\Release\cnmpu2.pdb

Imports

kernel32

LeaveCriticalSection
MultiByteToWideChar
WideCharToMultiByte
GetLocalTime
CreateFileW
WriteFile
GetModuleFileNameW
EnterCriticalSection
GetVersionExW
ResumeThread
lstrlenA
lstrlenW
WriteConsoleW
SetStdHandle
OutputDebugStringW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
InitializeCriticalSection
DeleteCriticalSection
SetEvent
WaitForSingleObject
ResetEvent
CreateEventW
CloseHandle
DebugBreak
GetCurrentThreadId
lstrcmpiW
GetModuleHandleExW
GetLastError
HeapReAlloc
RtlUnwind
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetFileType
GetStdHandle
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetStringTypeW
GetProcessHeap
HeapSize
FlushFileBuffers
ExitProcess
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
Sleep
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
HeapValidate
CreateThread
ExitThread
GetProcAddress
LoadLibraryExW
HeapFree
GetCommandLineA
HeapAlloc
RaiseException
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount

winspool.drv

GetPrinterW
ClosePrinter
XcvDataW
EnumPortsW
OpenPrinterW

advapi32

RegQueryValueExW
RegOpenKeyExW
UnregisterTraceGuids
RegisterTraceGuidsW
GetTraceEnableFlags
GetTraceEnableLevel
GetTraceLoggerHandle
TraceMessage
RegCloseKey

winhttp

WinHttpCrackUrl

ws2_32

WSARecv
WSASend
WSACloseEvent
ioctlsocket
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
GetAddrInfoW
WSAEventSelect
WSACreateEvent
htons
WSAGetLastError
WSAStringToAddressW
WSAStartup
FreeAddrInfoW
WSACleanup
select
getaddrinfo
freeaddrinfo
WSASocketW
connect
closesocket
WSAAddressToStringW

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceRegistryPropertyA

secur32

FreeContextBuffer
AcquireCredentialsHandleW
DeleteSecurityContext
FreeCredentialsHandle
QueryContextAttributesW
EncryptMessage
DecryptMessage
ApplyControlToken
InitializeSecurityContextW

Exports

Exports

pu2Close
pu2ErrorCodeToText
pu2GetDestinationIP
pu2GetUrl
pu2Open
pu2Read
pu2Send
pu2SetCommandType
pu2SetEventBufferSize
pu2SetEventType
pu2SetIF
pu2SetIP
pu2SetMasterPortOption
pu2SetPortName
pu2SetPrinterName
pu2SetTimeout
pu2SetUrl
pu2Write

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cnwidcn.exe
.exe windows:6 windows x86 arch:x86

01db19e879342435a36b1a5b43f21710

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:a9:47:94:7e:70:33:91:c3:00:8b:62:66:06:fa:8f
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

30/03/2015, 00:00

Not After

18/04/2018, 23:59

Subject

CN=Canon Inc.,OU=Inkjet System Development Center,O=Canon Inc.,L=Kawasaki-shi,ST=Kanagawa,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6b:64:8e:af:46:04:ee:3c:f3:aa:24:4b:02:86:f1:61
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/09/2015, 00:00

Not After

18/04/2018, 23:59

Subject

CN=Canon Inc.,OU=Inkjet System Development Center,O=Canon Inc.,L=Kawasaki-shi,ST=Kanagawa,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

55:45:ca:02:24:61:90:d9:79:ee:b4:0d:b9:ff:bc:18
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 3,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

bc:4d:13:68:8a:c5:55:5e:ec:1c:c9:93:99:e0:7e:64:ac:f2:74:e8:d3:4c:e3:b1:94:53:b4:1b:97:dd:d0:90
Signer

Actual PE Digest

bc:4d:13:68:8a:c5:55:5e:ec:1c:c9:93:99:e0:7e:64:ac:f2:74:e8:d3:4c:e3:b1:94:53:b4:1b:97:dd:d0:90

Digest Algorithm

sha256

PE Digest Matches

true

43:55:90:58:53:6f:18:fd:89:1e:42:33:41:30:5e:f8:98:43:bf:b1
Signer

Actual PE Digest

43:55:90:58:53:6f:18:fd:89:1e:42:33:41:30:5e:f8:98:43:bf:b1

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\IJNDSU\trunk\Win\Cnwidcn\Release\cnwidcn.pdb

Imports

kernel32

GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
IsValidCodePage
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetStdHandle
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
HeapSize
GetUserDefaultUILanguage
IsProcessorFeaturePresent
IsDebuggerPresent
HeapReAlloc
RaiseException
ExitThread
GetModuleHandleExW
ExitProcess
RtlUnwind
GetCommandLineW
FindResourceExW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
Sleep
VirtualProtect
GetTempPathW
GetTempFileNameW
GetTickCount
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
FileTimeToSystemTime
GlobalGetAtomNameW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetCPInfo
GetOEMCP
CreateThread
GetACP
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
VerifyVersionInfoW
VerSetConditionMask
GetThreadLocale
GlobalFlags
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryW
InterlockedIncrement
InterlockedDecrement
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalSize
GlobalFindAtomW
GetSystemDirectoryW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
DecodePointer
EncodePointer
GetCurrentProcessId
GlobalAddAtomW
ResumeThread
SetThreadPriority
WaitForSingleObject
GlobalUnlock
WritePrivateProfileStringW
GetPrivateProfileIntW
LoadLibraryW
LoadLibraryA
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetVersion
SetLastError
OutputDebugStringA
GetFileAttributesW
lstrcpyW
GlobalFree
FreeResource
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
LoadLibraryExW
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
InterlockedExchange
InitializeCriticalSectionEx
WideCharToMultiByte
MultiByteToWideChar
DeleteFileW
GetLastError
WriteFile
SetFilePointer
lstrlenW
SetFileAttributesW
HeapFree
ReadFile
GetProcessHeap
HeapAlloc
GetFileSize
CloseHandle
CreateFileW
GetPrivateProfileStringW
GetModuleFileNameW
FindResourceW
LoadResource
LockResource
SizeofResource

user32

GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
RegisterClipboardFormatW
UnregisterClassW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
UpdateLayeredWindow
GetUpdateRect
SetClassLongW
DestroyAcceleratorTable
ModifyMenuW
IsMenu
SetMenuDefaultItem
GetMenuDefaultItem
GetMenuItemInfoW
CopyIcon
GetIconInfo
GetDoubleClickTime
EnableScrollBar
DestroyMenu
LockWindowUpdate
CreatePopupMenu
BringWindowToTop
UnionRect
SetCursorPos
NotifyWinEvent
GetSystemMenu
GetAsyncKeyState
CharUpperW
IsZoomed
TrackMouseEvent
LoadImageW
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
MonitorFromPoint
SetParent
EnumDisplayMonitors
SetRectEmpty
SetLayeredWindowAttributes
MessageBeep
GetNextDlgGroupItem
IntersectRect
SetRect
InvalidateRgn
CopyAcceleratorTableW
CharNextW
KillTimer
SetTimer
RealChildWindowFromPoint
DeleteMenu
SystemParametersInfoW
CopyImage
LoadCursorW
ReleaseCapture
SetCapture
WaitMessage
SendDlgItemMessageA
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuState
GetMenuStringW
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
UnhookWindowsHookEx
GetTopWindow
GetClassLongW
SetWindowLongW
PtInRect
EqualRect
CopyRect
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
GetClassNameW
InvalidateRect
UpdateWindow
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
SetCursor
ShowOwnedPopups
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
DrawIcon
GetWindowRgn
DestroyCursor
CreateMenu
InvertRect
HideCaret
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
LoadBitmapW
SetMenuItemInfoW
PostThreadMessageW
IsClipboardFormatAvailable
FrameRect
CharUpperBuffW
SubtractRect
GetKeyNameTextW
CreateAcceleratorTableW
LoadMenuW
MapVirtualKeyW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetDesktopWindow
GetWindowLongW
SetActiveWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
IsWindow
DrawIconEx
IsRectEmpty
OffsetRect
InflateRect
FillRect
DrawFocusRect
GetSysColorBrush
GetSysColor
MapWindowPoints
GetWindowRect
RedrawWindow
SetWindowRgn
DrawStateW
GetFocus
IsWindowVisible
DrawFrameControl
DrawEdge
RegisterWindowMessageW
MapDialogRect
GetWindow
GetParent
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
PostMessageW
GetClientRect
GetSystemMetrics
IsIconic
SendMessageW
EnableWindow
WindowFromPoint

gdi32

MoveToEx
TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetRgnBox
CreateFontIndirectW
GetMapMode
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
SetPixelV
GetTextFaceW
SelectClipRgn
SaveDC
RestoreDC
RectVisible
SetTextAlign
ExtSelectClipRgn
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
RoundRect
CombineRgn
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteDC
CreatePatternBrush
CreatePen
CreateCompatibleDC
BitBlt
GetDeviceCaps
CreateDCW
CopyMetaFileW
SetTextColor
SetBkColor
GetObjectW
GetStockObject
DeleteObject
CreateBitmap
GetTextMetricsW
Polyline
Polygon
CreatePolygonRgn
ExtTextOutW
PatBlt
GetTextExtentPoint32W
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
SelectObject

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegEnumKeyW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegCloseKey
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW

shell32

DragQueryFileW
ord165
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
ShellExecuteW
DragFinish
SHGetFolderPathW
SHGetFileInfoW
SHAppBarMessage

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathFileExistsW
PathRemoveFileSpecW

uxtheme

GetThemeColor
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
DrawThemeParentBackground
GetCurrentThemeName
IsAppThemed
DrawThemeText

ole32

OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
OleDuplicateData
OleIsCurrentClipboard
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoRegisterMessageFilter
CoRevokeClassObject
CoInitializeEx
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
ReleaseStgMedium
DoDragDrop

oleaut32

SysAllocString
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
OleCreateFontIndirect
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree
GdipAlloc
GdipDrawImageRectI

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 324KB - Virtual size: 323KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 391KB - Virtual size: 391KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cnwidcn.ini
cnwidsd.dll
.dll windows:5 windows x86 arch:x86

31a5c17a3084ce978d16ec2186d4b41c

Code Sign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

20:a9:47:94:7e:70:33:91:c3:00:8b:62:66:06:fa:8f
Certificate

Issuer

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Not Before

30/03/2015, 00:00

Not After

18/04/2018, 23:59

Subject

CN=Canon Inc.,OU=Inkjet System Development Center,O=Canon Inc.,L=Kawasaki-shi,ST=Kanagawa,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

52:00:e5:aa:25:56:fc:1a:86:ed:96:c9:d4:4b:33:c7
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

08/02/2010, 00:00

Not After

07/02/2020, 23:59

Subject

CN=VeriSign Class 3 Code Signing 2010 CA,OU=VeriSign Trust Network+OU=Terms of use at https://www.verisign.com/rpa (c)10,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

25:0c:e8:e0:30:61:2e:9f:2b:89:f7:05:4d:7c:f8:fd
Certificate

Issuer

OU=Class 3 Public Primary Certification Authority,O=VeriSign\, Inc.,C=US

Not Before

08/11/2006, 00:00

Not After

07/11/2021, 23:59

Subject

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageNetscapeServerGatedCrypto

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6b:64:8e:af:46:04:ee:3c:f3:aa:24:4b:02:86:f1:61
Certificate

Issuer

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Not Before

07/09/2015, 00:00

Not After

18/04/2018, 23:59

Subject

CN=Canon Inc.,OU=Inkjet System Development Center,O=Canon Inc.,L=Kawasaki-shi,ST=Kanagawa,C=JP

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

3d:78:d7:f9:76:49:60:b2:61:7d:f4:f0:1e:ca:86:2a
Certificate

Issuer

CN=VeriSign Class 3 Public Primary Certification Authority - G5,OU=VeriSign Trust Network+OU=(c) 2006 VeriSign\, Inc. - For authorized use only,O=VeriSign\, Inc.,C=US

Not Before

10/12/2013, 00:00

Not After

09/12/2023, 23:59

Subject

CN=Symantec Class 3 SHA256 Code Signing CA,OU=Symantec Trust Network,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2d:4e:86:50:85:be:e0:0e:13:72:28:b3:d0:b1:32:e9
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

11/06/2015, 00:00

Not After

29/12/2020, 23:59

Subject

CN=GeoTrust 2048-bit Timestamping Signer 2,O=GeoTrust Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

01/01/1997, 00:00

Not After

31/12/2020, 23:59

Subject

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

2a:de:7b:9a:be:ec:f3:d9:4c:5e:b8:60:f8:47:a0:ee:37:cd:92:ab:f1:f9:4e:cd:8b:b0:f6:73:ed:aa:23:d0
Signer

Actual PE Digest

2a:de:7b:9a:be:ec:f3:d9:4c:5e:b8:60:f8:47:a0:ee:37:cd:92:ab:f1:f9:4e:cd:8b:b0:f6:73:ed:aa:23:d0

Digest Algorithm

sha256

PE Digest Matches

true

cf:31:07:4b:e3:f8:5d:df:eb:5e:28:97:e4:3b:81:fa:2d:c1:53:cc
Signer

Actual PE Digest

cf:31:07:4b:e3:f8:5d:df:eb:5e:28:97:e4:3b:81:fa:2d:c1:53:cc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\IJNDSU\trunk\Win\CnwidsdDll\Release\cnwidsd.pdb

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
Sleep
WaitForSingleObject
GetModuleFileNameW
CreateSemaphoreA
CloseHandle
ReleaseSemaphore
LoadLibraryA
GetProcAddress
FreeLibrary
GetPrivateProfileStringW
SetEndOfFile
CreateFileW
DeleteCriticalSection
SetStdHandle
ReadConsoleW
LoadLibraryW
OutputDebugStringW
HeapReAlloc
SetFilePointer
GetConsoleMode
GetConsoleCP
FlushFileBuffers
SetFilePointerEx
ReadFile
GetOEMCP
GetACP
IsValidCodePage
WriteConsoleW
InitializeCriticalSection
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
InterlockedIncrement
InterlockedDecrement
EncodePointer
DecodePointer
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
GetLastError
CreateThread
GetCurrentThreadId
ExitThread
LoadLibraryExW
GetSystemTimeAsFileTime
GetCommandLineA
HeapFree
RaiseException
RtlUnwind
HeapAlloc
InitializeCriticalSectionAndSpinCount
GetCPInfo
IsProcessorFeaturePresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsDebuggerPresent
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleExW
HeapSize
GetProcessHeap
GetFileType
GetModuleFileNameA
QueryPerformanceCounter

shell32

SHGetFolderPathW

ws2_32

socket
closesocket
recvfrom
setsockopt
sendto
select
getaddrinfo
freeaddrinfo
htons
WSAStartup
WSACleanup
getnameinfo
WSAStringToAddressA
shutdown
inet_addr
bind

iphlpapi

GetAdaptersAddresses

shlwapi

PathRemoveFileSpecW
PathFileExistsW

Exports

Exports

CNWNSCH_CancelSearch
CNWNSCH_CreateInstance
CNWNSCH_DestroyInstance
CNWNSCH_EnumSearchInfo
CNWNSCH_OptSetting
CNWNSCH_Search
CNWNSCH_SearchByIpv6
CNWNSCH_SetCommunityName
CNWNSCH_SetCommunityNameByFile

Sections

.text
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
cssamp1.mid
rstcol.dll
.dll windows:4 windows x86 arch:x86

7f6e7e1aed24d82e1de5b73c13fc9bf0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WriteFile
GetLastError
HeapFree
HeapAlloc
GetCurrentThreadId
GetCommandLineA
GetVersionExA
GetProcessHeap
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSection
RtlUnwind
HeapSize
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW

Exports

Exports

GERCCConfig
GERCCExecute
GERCCInciry

Sections

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scchmpm.dll
.dll windows:5 windows x86 arch:x86

434f31b6573c004c2a31176500cb774a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Jenkins\workspace\SCCHMPM_Build\Source\SCCHMPM\Release\scchmpm.pdb

Imports

shlwapi

PathAppendW
PathRemoveFileSpecW

ws2_32

ntohs
htons
htonl
ntohl

kernel32

GetModuleFileNameW
MultiByteToWideChar
FreeLibrary
LoadLibraryW
GetProcAddress
WaitForSingleObject
Sleep
CloseHandle
WideCharToMultiByte
CompareFileTime
GetComputerNameW
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
DeleteCriticalSection
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
GetLastError
HeapFree
HeapReAlloc
GetCommandLineA
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetTickCount
GetModuleHandleW
CreateSemaphoreW
RaiseException
HeapAlloc
ExitProcess
GetModuleHandleExW
HeapSize
GetProcessHeap
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCurrentThread
GetStdHandle
GetFileType
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
WriteFile
LoadLibraryExW
GetConsoleCP
GetConsoleMode
SetFilePointerEx
GetStringTypeW
OutputDebugStringW
SetStdHandle
WriteConsoleW
FlushFileBuffers
CreateFileW
DuplicateHandle
GetExitCodeThread
CreateThread
ExitThread
CreateTimerQueue
SetEvent
WaitForSingleObjectEx
SignalObjectAndWait
SwitchToThread
SetThreadPriority
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
GetThreadTimes
FreeLibraryAndExitThread
GetModuleHandleA
GetVersionExW
VirtualAlloc
VirtualFree
VirtualProtect
ReleaseSemaphore
InitializeSListHead

advapi32

RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegCreateKeyExW
GetUserNameW
RegSetValueExW

Exports

Exports

CreateCHMPScan
CreateCHMPScanPolling
DeleteCHMPScan
DeleteCHMPScanPolling
GetSCCMVersion

Sections

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scrprmv.dll
.dll windows:4 windows x86 arch:x86

ea317cfb974ae3ddb3cb329a67ba8732

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalLock
GlobalUnlock
CopyFileA
DeleteFileA
GlobalAlloc
GetLastError
GlobalFree
GlobalFlags
CreateFileA
CloseHandle
ReadFile
SetFilePointer
WriteFile
HeapFree
HeapAlloc
GetFileType
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
RtlUnwind
TerminateProcess
GetCurrentProcess
HeapSize
SetStdHandle
SetHandleCount
GetStdHandle
GetStartupInfoA
SetEndOfFile
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

Fare1Execute

Sections

.text
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
scrprmvl.dll
.dll windows:4 windows x86 arch:x86

b01c9914d1c64d0218957c5b6e2f792f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalLock
GlobalUnlock
GlobalAlloc
GetLastError
GlobalFree
GlobalFlags
CreateFileA
CloseHandle
ReadFile
SetFilePointer
WriteFile
GetFileType
GetCommandLineA
GetVersion
HeapFree
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapAlloc
HeapSize
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
SetStdHandle
SetHandleCount
GetStdHandle
GetStartupInfoA
DeleteCriticalSection
SetEndOfFile
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
RtlUnwind
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

Fare1Execute

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
softfare.dll
.dll windows:4 windows x86 arch:x86

27286c7653c7116c65ffb0b5b70eb883

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
GetLastError
GlobalFree
GlobalFlags
CreateFileA
CloseHandle
ReadFile
SetFilePointer
WriteFile
RtlUnwind
HeapFree
HeapAlloc
GetFileType
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
SetStdHandle
SetHandleCount
GetStdHandle
GetStartupInfoA
SetEndOfFile
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
InterlockedDecrement
InterlockedIncrement
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
RaiseException

Exports

Exports

SoftFareExecute

Sections

.text
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
usip.dll
.dll windows:4 windows x86 arch:x86

f8ef9c8faa75ea43faf8155b5531bcfd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\Users\108731\Desktop\ビルド用\USIP\2013\Release\usip.pdb

Imports

kernel32

GetCurrentThreadId
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
ExitProcess
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetLastError
InterlockedDecrement
Sleep
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
WriteFile
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
MultiByteToWideChar
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
SetFilePointer
CloseHandle
CreateFileA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
RaiseException

Exports

Exports

AusmEnd
AusmExec
AusmInit
AusmParamAccess
Fare2BandHeight
Fare2Cancel
Fare2Execute
Fare2Param
GercGAccess
GercGEnd
GercGInit
GercGLine
MoireCalcDestImage
MoireCancel
MoireExecute
SmacEnd
SmacExec
SmacInit
SmacModuleControl

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 3.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1020B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86c3f556792bbaa736d048189dc402ff

Headers

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 62KB

.rdata Size: 28KB - Virtual size: 25KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 992B

.reloc Size: 8KB - Virtual size: 4KB

7e7252e1fb5585220ace656f60c548ad

Headers

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 44KB

.rsrc Size: 4KB - Virtual size: 964B

.reloc Size: 8KB - Virtual size: 6KB

f70dce8ab8619e655f6a896f067f4290

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 26KB - Virtual size: 26KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 5KB - Virtual size: 4KB

acfc000f90e4e18110781eea9a6a8645

Headers

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 140KB - Virtual size: 138KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 4KB

538fc02c5a66fb9d469b1a209acd755e

Headers

File Characteristics

PDB Paths

Imports

kernel32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 844B

.reloc Size: 4KB - Virtual size: 3KB

28655f7cffb5e805056d1f849b0949bc

Headers

File Characteristics

.text
Size: 64KB - Virtual size: 62KB

.rdata
Size: 28KB - Virtual size: 25KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 992B

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 44KB

.rsrc
Size: 4KB - Virtual size: 964B

.reloc
Size: 8KB - Virtual size: 6KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 26KB - Virtual size: 26KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 5KB - Virtual size: 4KB

.text
Size: 140KB - Virtual size: 138KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 844B

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 5KB

.sxdata
Size: 4KB - Virtual size: 80B

.rsrc
Size: 4KB - Virtual size: 928B

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 972B

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 115KB - Virtual size: 115KB

.rdata
Size: 35KB - Virtual size: 34KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 9KB - Virtual size: 8KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 264KB - Virtual size: 2.8MB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 16KB - Virtual size: 14KB

.text
Size: 780KB - Virtual size: 780KB

.rdata
Size: 277KB - Virtual size: 277KB

.data
Size: 28KB - Virtual size: 30KB

.data1
Size: 5KB - Virtual size: 5KB

.trace
Size: 7KB - Virtual size: 7KB

.gfids
Size: 512B - Virtual size: 512B

_RDATA
Size: 1024B - Virtual size: 1024B

.debug_o
Size: 155KB - Virtual size: 155KB