7ae257641c5bf4e3f89e146e165a8c1b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7ae257641c5bf4e3f89e146e165a8c1b_JaffaCakes118
Size

16.2MB
MD5

7ae257641c5bf4e3f89e146e165a8c1b
SHA1

5d23457ce938f940a9a57a514876e07304bab597
SHA256

6ff547b5b8bff861c15d287ea51b194e47633f0ff185c96fba39ffe523820485
SHA512

66f7d3ff795c2999185fde0b5b32ef10d8be168df193f9a9182da8a07fe8aa5e0d5ea33ac30d2613cea42165cada6a12ec6fd103eae3805d21cb6d0174c42118
SSDEEP

393216:28KpfiLy0E90J3mZemeZekNK2UbSYgRbFHnBE:28tLyFgXxU+zbVa

Score

7^/10

upx

Malware Config

Signatures

ACProtect 1.3x - 1.4x DLL software 6 IoCs

Detects file using ACProtect software.

resource	yara_rule
static1/unpack001/pobo5/system/Bcbsmp50.bpl	acprotect
static1/unpack001/pobo5/system/Borlndmm.dll	acprotect
static1/unpack001/pobo5/system/Cc3250mt.dll	acprotect
static1/unpack001/pobo5/system/GdiPlus.dll	acprotect
static1/unpack001/pobo5/system/Vcl50.bpl	acprotect
static1/unpack001/pobo5/system/Vclx50.bpl	acprotect

UPX packed file 8 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/pobo5/system/Bcbsmp50.bpl	upx
static1/unpack001/pobo5/system/Borlndmm.dll	upx
static1/unpack001/pobo5/system/Cc3250mt.dll	upx
static1/unpack001/pobo5/system/FileCopy.exe	upx
static1/unpack001/pobo5/system/GdiPlus.dll	upx
static1/unpack001/pobo5/system/Vcl50.bpl	upx
static1/unpack001/pobo5/system/Vclx50.bpl	upx
static1/unpack001/pobo5/system/pobo.exe	upx

Unsigned PE 48 IoCs

Checks for missing Authenticode signature.

resource
7ae257641c5bf4e3f89e146e165a8c1b_JaffaCakes118
unpack001/$PLUGINSDIR/InstallOptions.dll
unpack001/pobo5/system/BbsForm.exe
unpack001/pobo5/system/Bcbsmp50.bpl
unpack002/out.upx
unpack001/pobo5/system/Borlndmm.dll
unpack003/out.upx
unpack001/pobo5/system/Cc3250mt.dll
unpack004/out.upx
unpack001/pobo5/system/Export.exe
unpack001/pobo5/system/FileCopy.exe
unpack005/out.upx
unpack001/pobo5/system/GdiPlus.dll
unpack006/out.upx
unpack001/pobo5/system/HDCalc.dll
unpack001/pobo5/system/HsFutuSystemInfo.dll
unpack001/pobo5/system/InformationCollect.dll
unpack001/pobo5/system/KCC_API.dll
unpack001/pobo5/system/KSInterB2C.dll
unpack001/pobo5/system/NetDiagTool.exe
unpack001/pobo5/system/PBMsgBoxEx.dll
unpack001/pobo5/system/PBUpd.dll
unpack001/pobo5/system/PBUpd.exe
unpack001/pobo5/system/Profcal.exe
unpack001/pobo5/system/SfitTrader_DD.dll
unpack001/pobo5/system/SfitTrader_ctp.dll
unpack001/pobo5/system/SfitTrader_hs06.dll
unpack001/pobo5/system/SpeedTester.exe
unpack001/pobo5/system/USTPmduserapi.dll
unpack001/pobo5/system/USTPtraderapi.dll
unpack001/pobo5/system/UpdClient.exe
unpack001/pobo5/system/Usertool.exe
unpack001/pobo5/system/Vcl50.bpl
unpack007/out.upx
unpack001/pobo5/system/Vclx50.bpl
unpack008/out.upx
unpack001/pobo5/system/bcbie50.bpl
unpack001/pobo5/system/hsmduserapi.dll
unpack001/pobo5/system/hstraderapi.dll
unpack001/pobo5/system/libcrypto-1_1.dll
unpack001/pobo5/system/pobo.exe
unpack009/out.upx
unpack001/pobo5/system/t2sdk.dll
unpack001/pobo5/system/thostmduserapi.dll
unpack001/pobo5/system/thostmduserapi_se.dll
unpack001/pobo5/system/thosttraderapi.dll
unpack001/pobo5/system/thosttraderapi_se.dll
unpack001/uninst.exe

NSIS installer 4 IoCs

installer

resource	yara_rule
sample	nsis_installer_1
sample	nsis_installer_2
static1/unpack001/uninst.exe	nsis_installer_1
static1/unpack001/uninst.exe	nsis_installer_2

Files

7ae257641c5bf4e3f89e146e165a8c1b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b76363e9cb88bf9390860da8e50999d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
SetFileAttributesA
CompareFileTime
SearchPathA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
GetTempPathA
Sleep
lstrcmpiA
GetVersion
SetErrorMode
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
GetLastError
CreateDirectoryA
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrcatA
GetSystemDirectoryA
WaitForSingleObject
SetFileTime
CloseHandle
GlobalFree
lstrcmpA
ExpandEnvironmentStringsA
GetExitCodeProcess
GlobalAlloc
lstrlenA
GetCommandLineA
GetProcAddress
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
ReadFile
FindClose
GetPrivateProfileStringA
WritePrivateProfileStringA
WriteFile
MulDiv
MultiByteToWideChar
LoadLibraryExA
GetModuleHandleA
FreeLibrary

user32

SetCursor
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
EndDialog
ScreenToClient
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetForegroundWindow
GetWindowLongA
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
SetTimer
PostQuitMessage
SetWindowLongA
SendMessageTimeoutA
LoadImageA
wsprintfA
GetDlgItem
FindWindowExA
IsWindow
SetClipboardData
EmptyClipboard
OpenClipboard
EndPaint
CreateDialogParamA
DestroyWindow
ShowWindow
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHFileOperationA
ShellExecuteA

advapi32

RegDeleteValueA
SetFileSecurityA
RegOpenKeyExA
RegDeleteKeyA
RegEnumValueA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ord17

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
$PLUGINSDIR/InstallOptions.dll
.dll windows:4 windows x86 arch:x86

738dc9bb91549f627cf1953c2000e1d6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentDirectoryA
MultiByteToWideChar
SetCurrentDirectoryA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleHandleA
lstrcmpiA
lstrcatA
lstrcpynA
WritePrivateProfileStringA
lstrlenA
lstrcpyA
GlobalFree
GlobalAlloc
GlobalUnlock
GlobalLock

user32

GetDlgCtrlID
CloseClipboard
GetClipboardData
MapWindowPoints
LoadCursorA
GetClientRect
SetWindowRgn
LoadIconA
GetWindowLongA
SetWindowLongA
CreateWindowExA
MapDialogRect
SetWindowPos
GetWindowRect
CreateDialogParamA
ShowWindow
SetCursor
PtInRect
EnableWindow
GetDlgItem
DestroyIcon
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
IsDialogMessageA
DrawFocusRect
CallWindowProcA
PostMessageA
MessageBoxA
CharNextA
wsprintfA
GetWindowTextA
SetWindowTextA
SendMessageA
EnableMenuItem
DrawTextA
GetSystemMenu
OpenClipboard
LoadImageA

gdi32

SetTextColor
DeleteObject
CombineRgn
CreateRectRgn
GetDIBits
SelectObject
CreateCompatibleDC
GetObjectA

shell32

SHGetPathFromIDListA
ShellExecuteA
SHBrowseForFolderA
SHGetDesktopFolder

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

ole32

CoTaskMemFree

Exports

Exports

dialog
initDialog
show

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
$PLUGINSDIR/ioSpecial.ini
$PLUGINSDIR/modern-wizard.bmp
pobo5/cfg/AuthSites.ini
pobo5/cfg/Block/10000.dat
pobo5/cfg/Block/10001.dat
pobo5/cfg/Block/10002.dat
pobo5/cfg/Block/10003.dat
pobo5/cfg/Block/10004.dat
pobo5/cfg/Block/2000.dat
pobo5/cfg/Block/2001.dat
pobo5/cfg/Block/2002.dat
pobo5/cfg/Block/2003.dat
pobo5/cfg/Block/2004.dat
pobo5/cfg/Block/2005.dat
pobo5/cfg/Block/2006.dat
pobo5/cfg/Block/2007.dat
pobo5/cfg/Block/2008.dat
pobo5/cfg/Block/2009.dat
pobo5/cfg/Block/2010.dat
pobo5/cfg/Block/2011.dat
pobo5/cfg/Block/2012.dat
pobo5/cfg/Block/2013.dat
pobo5/cfg/Block/2014.dat
pobo5/cfg/Block/2015.dat
pobo5/cfg/Block/2016.dat
pobo5/cfg/Block/2017.dat
pobo5/cfg/Block/2018.dat
pobo5/cfg/Block/2019.dat
pobo5/cfg/Block/2020.dat
pobo5/cfg/Block/2021.dat
pobo5/cfg/Block/2022.dat
pobo5/cfg/Block/2023.dat
pobo5/cfg/Block/2024.dat
pobo5/cfg/Block/2025.dat
pobo5/cfg/Block/2026.dat
pobo5/cfg/Block/2027.dat
pobo5/cfg/Block/2028.dat
pobo5/cfg/Block/2029.dat
pobo5/cfg/Block/2030.dat
pobo5/cfg/Block/2031.dat
pobo5/cfg/Block/2032.dat
pobo5/cfg/Block/2033.dat
pobo5/cfg/Block/2034.dat
pobo5/cfg/Block/2035.dat
pobo5/cfg/Block/2036.dat
pobo5/cfg/Block/2037.dat
pobo5/cfg/Block/2038.dat
pobo5/cfg/Block/2039.dat
pobo5/cfg/Block/2040.dat
pobo5/cfg/Block/2041.dat
pobo5/cfg/Block/2042.dat
pobo5/cfg/Block/2043.dat
pobo5/cfg/Block/2044.dat
pobo5/cfg/Block/2045.dat
pobo5/cfg/Block/2046.dat
pobo5/cfg/Block/2047.dat
pobo5/cfg/Block/2048.dat
pobo5/cfg/Block/2049.dat
pobo5/cfg/Block/2050.dat
pobo5/cfg/Block/2051.dat
pobo5/cfg/Block/2052.dat
pobo5/cfg/Block/2053.dat
pobo5/cfg/Block/2054.dat
pobo5/cfg/Block/2055.dat
pobo5/cfg/Block/2056.dat
pobo5/cfg/Block/2057.dat
pobo5/cfg/Block/2058.dat
pobo5/cfg/Block/2059.dat
pobo5/cfg/Block/2060.dat
pobo5/cfg/Block/2061.dat
pobo5/cfg/Block/2062.dat
pobo5/cfg/Block/2063.dat
pobo5/cfg/Block/2064.dat
pobo5/cfg/Block/2065.dat
pobo5/cfg/Block/2066.dat
pobo5/cfg/Block/2067.dat
pobo5/cfg/Block/2068.dat
pobo5/cfg/Block/2069.dat
pobo5/cfg/Block/3000.dat
pobo5/cfg/Block/3001.dat
pobo5/cfg/Block/3002.dat
pobo5/cfg/Block/3003.dat
pobo5/cfg/Block/3004.dat
pobo5/cfg/Block/3005.dat
pobo5/cfg/Block/3006.dat
pobo5/cfg/Block/3007.dat
pobo5/cfg/Block/3008.dat
pobo5/cfg/Block/3009.dat
pobo5/cfg/Block/3010.dat
pobo5/cfg/Block/3011.dat
pobo5/cfg/Block/3012.dat
pobo5/cfg/Block/3013.dat
pobo5/cfg/Block/3014.dat
pobo5/cfg/Block/3015.dat
pobo5/cfg/Block/3016.dat
pobo5/cfg/Block/3017.dat
pobo5/cfg/Block/3018.dat
pobo5/cfg/Block/3019.dat
pobo5/cfg/Block/3020.dat
pobo5/cfg/Block/3021.dat
pobo5/cfg/Block/3022.dat
pobo5/cfg/Block/3023.dat
pobo5/cfg/Block/3024.dat
pobo5/cfg/Block/3025.dat
pobo5/cfg/Block/3026.dat
pobo5/cfg/Block/3027.dat
pobo5/cfg/Block/3028.dat
pobo5/cfg/Block/3029.dat
pobo5/cfg/Block/3030.dat
pobo5/cfg/Block/3031.dat
pobo5/cfg/Block/3032.dat
pobo5/cfg/Block/3033.dat
pobo5/cfg/Block/3034.dat
pobo5/cfg/Block/3035.dat
pobo5/cfg/Block/3036.dat
pobo5/cfg/Block/3037.dat
pobo5/cfg/Block/3038.dat
pobo5/cfg/Block/3039.dat
pobo5/cfg/Block/3040.dat
pobo5/cfg/Block/3041.dat
pobo5/cfg/Block/3042.dat
pobo5/cfg/Block/3043.dat
pobo5/cfg/Block/3044.dat
pobo5/cfg/Block/3045.dat
pobo5/cfg/Block/3046.dat
pobo5/cfg/Block/3047.dat
pobo5/cfg/Block/3048.dat
pobo5/cfg/Block/3049.dat
pobo5/cfg/Block/3050.dat
pobo5/cfg/Block/3051.dat
pobo5/cfg/Block/3052.dat
pobo5/cfg/Block/3053.dat
pobo5/cfg/Block/3054.dat
pobo5/cfg/Block/3055.dat
pobo5/cfg/Block/3056.dat
pobo5/cfg/Block/3057.dat
pobo5/cfg/Block/3058.dat
pobo5/cfg/Block/3059.dat
pobo5/cfg/Block/3060.dat
pobo5/cfg/Block/3061.dat
pobo5/cfg/Block/3062.dat
pobo5/cfg/Block/3063.dat
pobo5/cfg/Block/3064.dat
pobo5/cfg/Block/3065.dat
pobo5/cfg/Block/3066.dat
pobo5/cfg/Block/3067.dat
pobo5/cfg/Block/3068.dat
pobo5/cfg/Block/3069.dat
pobo5/cfg/Block/3070.dat
pobo5/cfg/Block/3071.dat
pobo5/cfg/Block/3072.dat
pobo5/cfg/Block/3073.dat
pobo5/cfg/Block/3074.dat
pobo5/cfg/Block/3075.dat
pobo5/cfg/Block/3076.dat
pobo5/cfg/Block/3077.dat
pobo5/cfg/Block/3078.dat
pobo5/cfg/Block/3079.dat
pobo5/cfg/Block/3080.dat
pobo5/cfg/Block/3081.dat
pobo5/cfg/Block/3082.dat
pobo5/cfg/Block/3083.dat
pobo5/cfg/Block/3084.dat
pobo5/cfg/Block/3085.dat
pobo5/cfg/Block/3086.dat
pobo5/cfg/Block/3087.dat
pobo5/cfg/Block/3088.dat
pobo5/cfg/Block/3089.dat
pobo5/cfg/Block/3090.dat
pobo5/cfg/Block/3091.dat
pobo5/cfg/Block/3092.dat
pobo5/cfg/Block/3093.dat
pobo5/cfg/Block/3094.dat
pobo5/cfg/Block/3095.dat
pobo5/cfg/Block/3096.dat
pobo5/cfg/Block/3097.dat
pobo5/cfg/Block/3098.dat
pobo5/cfg/Block/3099.dat
pobo5/cfg/Block/3100.dat
pobo5/cfg/Block/3101.dat
pobo5/cfg/Block/3102.dat
pobo5/cfg/Block/3103.dat
pobo5/cfg/Block/3104.dat
pobo5/cfg/Block/3105.dat
pobo5/cfg/Block/3106.dat
pobo5/cfg/Block/3107.dat
pobo5/cfg/Block/3108.dat
pobo5/cfg/Block/3109.dat
pobo5/cfg/Block/3110.dat
pobo5/cfg/Block/3111.dat
pobo5/cfg/Block/3112.dat
pobo5/cfg/Block/3113.dat
pobo5/cfg/Block/7000.dat
pobo5/cfg/Block/7001.dat
pobo5/cfg/Block/7002.dat
pobo5/cfg/Block/7003.dat
pobo5/cfg/Block/7004.dat
pobo5/cfg/Block/7005.dat
pobo5/cfg/Block/7006.dat
pobo5/cfg/Block/7007.dat
pobo5/cfg/Block/7008.dat
pobo5/cfg/Block/7009.dat
pobo5/cfg/Block/7010.dat
pobo5/cfg/Block/7011.dat
pobo5/cfg/Block/7012.dat
pobo5/cfg/Block/7013.dat
pobo5/cfg/Block/7014.dat
pobo5/cfg/Block/7015.dat
pobo5/cfg/Block/7016.dat
pobo5/cfg/Block/7017.dat
pobo5/cfg/Block/7018.dat
pobo5/cfg/Block/7019.dat
pobo5/cfg/Block/7020.dat
pobo5/cfg/Block/7021.dat
pobo5/cfg/Block/7022.dat
pobo5/cfg/Block/7023.dat
pobo5/cfg/Block/7024.dat
pobo5/cfg/Block/7025.dat
pobo5/cfg/Block/7026.dat
pobo5/cfg/Block/7027.dat
pobo5/cfg/Block/7028.dat
pobo5/cfg/Block/7029.dat
pobo5/cfg/Block/7030.dat
pobo5/cfg/Block/8038.dat
pobo5/cfg/Block/Block1.idx
pobo5/cfg/Block/Block2.idx
pobo5/cfg/Block/Block3.idx
pobo5/cfg/Block/Block4.idx
pobo5/cfg/Block/BlockType.idx
pobo5/cfg/BrokerNote.txt
pobo5/cfg/Brokerlist.dbf
pobo5/cfg/CalcFunc.des
pobo5/cfg/CalcFunc2.des
pobo5/cfg/F10Info.ini
pobo5/cfg/FridayEx.ini
pobo5/cfg/HdIndex.ini
pobo5/cfg/HdJsIndex.ids
pobo5/cfg/HdJsIndex2.ids
pobo5/cfg/HdJyIndex.ids
pobo5/cfg/HdJyIndex2.ids
pobo5/cfg/HdTjIndex.ids
pobo5/cfg/HdTjIndex2.ids
pobo5/cfg/HisInfos.xml
.xml
pobo5/cfg/Idxpara.ini
pobo5/cfg/Idxpara.tbl
pobo5/cfg/Index.dat
pobo5/cfg/NewsType.ini
pobo5/cfg/NightTrade.ini
pobo5/cfg/OTGITEM.ini
pobo5/cfg/PBMsgBoxEx.xml
.xml
pobo5/cfg/PbIndexS.dat
pobo5/cfg/PublicCRTDS.xml
pobo5/cfg/Setting.ini
pobo5/cfg/ShortName.ini
pobo5/cfg/SvrMgr.ini
pobo5/cfg/TimeZone.ini
pobo5/cfg/TraderSeat.ini
pobo5/cfg/Trading.ini
pobo5/cfg/UserMarket.xml
.xml
pobo5/cfg/UsrParam.prm
pobo5/cfg/blocks.ini
pobo5/cfg/bmp/Thumbs.db
pobo5/cfg/clear_ctp.ini
pobo5/cfg/clear_jsd.ini
pobo5/cfg/clrfont.ini
pobo5/cfg/consign.hlp
pobo5/cfg/consign_ctp.ini
pobo5/cfg/consign_jsd.ini
pobo5/cfg/consign_jsd2.ini
pobo5/cfg/daylight.ini
pobo5/cfg/defui.ini
pobo5/cfg/forex.ini
pobo5/cfg/forfur.ini
pobo5/cfg/forum.ini
pobo5/cfg/holiday.ini
pobo5/cfg/hs300w.ini
pobo5/cfg/icon/Thumbs.db
pobo5/cfg/icon/icon1.bmp
pobo5/cfg/icon/icon10.bmp
pobo5/cfg/icon/icon11.bmp
pobo5/cfg/icon/icon12.bmp
pobo5/cfg/icon/icon13.bmp
pobo5/cfg/icon/icon14.bmp
pobo5/cfg/icon/icon2.bmp
pobo5/cfg/icon/icon3.bmp
pobo5/cfg/icon/icon4.bmp
pobo5/cfg/icon/icon5.bmp
pobo5/cfg/icon/icon6.bmp
pobo5/cfg/icon/icon7.bmp
pobo5/cfg/icon/icon8.bmp
pobo5/cfg/icon/icon9.bmp
pobo5/cfg/mkinfo.cfg
pobo5/cfg/mktcfgEx.ini
pobo5/cfg/optset.ini
pobo5/cfg/pbpage0.ppg
pobo5/cfg/pbpage1.ppg
pobo5/cfg/pbpage2.ppg
pobo5/cfg/pbpage3.ppg
pobo5/cfg/pbpage4.ppg
pobo5/cfg/pbpage5.ppg
pobo5/cfg/txt/jbcf.txt
pobo5/cfg/txt/jccf.txt
pobo5/cfg/txt/jgcf.txt
pobo5/cfg/txt/mztk.txt
pobo5/cfg/txt/sds.txt
pobo5/cfg/userpath.ini
pobo5/cfg/usersetting.ini
pobo5/cfg/webnews.ini
pobo5/system/BaseTrader.dll
.dll windows:4 windows x86 arch:x86

0bc7304e997c5a8c267fccb3a6cb5581

Code Sign

14:7d:42:92:73:a9:79:cc:6e:b7:79:93:17:f0:b8:03:ae:51:9a:e7
Signer

Actual PE Digest

14:7d:42:92:73:a9:79:cc:6e:b7:79:93:17:f0:b8:03:ae:51:9a:e7

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
InterlockedExchangeAdd
InterlockedExchange
CreateEventA
CloseHandle
SetEvent
ResetEvent
WaitForSingleObject
SetLastError
GetProcAddress
LoadLibraryA
GetModuleHandleA
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
InterlockedCompareExchange
GetTickCount
GetLocalTime
HeapFree
HeapAlloc
GetProcessHeap
FindClose
FindNextFileA
DeleteFileA
FindFirstFileA
GetSystemInfo
VirtualAlloc
InterlockedIncrement
VirtualFree
WritePrivateProfileStringA
GetPrivateProfileStringA
Sleep
OutputDebugStringA
GetCurrentThreadId
GetOEMCP
GetACP
IsBadCodePtr
FlushFileBuffers
IsBadWritePtr
HeapSize
InterlockedDecrement
WideCharToMultiByte
GetStringTypeA
GetStringTypeW
MultiByteToWideChar
GetVersionExA
GetCPInfo
LCMapStringA
InitializeCriticalSection
LCMapStringW
GetLastError
GetFileSize
SetFilePointer
SetEndOfFile
GetFileType
CreateFileA
GetFileInformationByHandle
ReadFile
WriteFile
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
RtlUnwind
RaiseException
GetCommandLineA
GetVersion
IsBadReadPtr
SetHandleCount
GetStdHandle
GetStartupInfoA
SetStdHandle
HeapReAlloc
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
ExitProcess
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
HeapCreate

user32

MessageBoxA

winmm

PlaySoundA

Exports

Exports

??0CAutoLock@@QAE@PAU_RTL_CRITICAL_SECTION@@@Z
??0CAutoResetEvent@@QAE@XZ
??0CBaseTrader@@QAE@ABV0@@Z
??0CBaseTrader@@QAE@W4PTK_PLATFORM@@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??0CPtkLogger@@QAE@XZ
??1CAutoLock@@QAE@XZ
??1CAutoResetEvent@@QAE@XZ
??1CBaseTrader@@UAE@XZ
??1CPtkLogger@@QAE@XZ
??4CAutoLock@@QAEAAV0@ABV0@@Z
??4CAutoResetEvent@@QAEAAV0@ABV0@@Z
??4CBaseTrader@@QAEAAV0@ABV0@@Z
??4CPtkLogger@@QAEAAV0@ABV0@@Z
??_7CBaseTrader@@6B@
??_C@_00A@?$AA@
?AddBank@CBaseTrader@@QAEHPAUCPtkBankEx@@@Z
?AddBankServer@CBaseTrader@@QAEXPBD@Z
?AddContract@CBaseTrader@@QAEHPAUCPtkTraderContract@@@Z
?AddOrder@CBaseTrader@@QAEPAUCPtkOrderEx@@PAU2@@Z
?AddPosition@CBaseTrader@@QAEPAUCPtkPositionEx@@PAU2@@Z
?AddPositionDetail@CBaseTrader@@QAEHPAUCPtkPositionDetailEx@@@Z
?AddQuoteServer@CBaseTrader@@QAEXPBD@Z
?AddTask@CBaseTrader@@QAEXPAUTaskInfo@@@Z
?AddTrade@CBaseTrader@@QAEHPAUCPtkTrade@@@Z
?AddTradeServer@CBaseTrader@@QAEXPBD@Z
?Alloc@CBaseTrader@@QAEPAXXZ
?CalcCancelTimes@CBaseTrader@@QAEXXZ
?CalcOrderMarginAndComission@CBaseTrader@@QAEXPAUCPtkOrderEx@@PAN1@Z
?CalcOrderTradePrice@CBaseTrader@@QAEXH@Z
?CalcOrderTradePrice@CBaseTrader@@QAEXPAUCPtkOrderEx@@@Z
?CalcPosition@CBaseTrader@@QAEXPBD0DDPAH111@Z
?CalcPositionCost@CBaseTrader@@QAEXPAUCPtkKernelContract@@PAUCPtkPositionEx@@@Z
?CalcPositionDetailMargin@CBaseTrader@@QAEXPAUCPtkPositionDetailEx@@@Z
?CalcPositionMargin@CBaseTrader@@QAEXPAUCPtkPositionEx@@@Z
?CalcPositionMargin@CBaseTrader@@QAEXXZ
?CalcTodayOpen@CBaseTrader@@QAEXPBD0DDHPAUCPtkPositionEx@@PAHPAN@Z
?CalcTradeComission@CBaseTrader@@QAEXPAUCPtkTradeEx@@PAN@Z
?CheckCommissionRate@CBaseTrader@@QAEHPAD0@Z
?CheckMarginRate@CBaseTrader@@QAEHPAD00@Z
?CheckQueryInterval@CBaseTrader@@QAEHI@Z
?CheckStopOrderVolume@CBaseTrader@@QAEHPAUCPtkPositionEx@@@Z
?ClearOrder@CBaseTrader@@QAEXXZ
?ClearPosition@CBaseTrader@@QAEXXZ
?ClearPositionDetail@CBaseTrader@@QAEXXZ
?ClearTrade@CBaseTrader@@QAEXXZ
?Close@CPtkLogger@@QAEHXZ
?DeletePendingOrder@CBaseTrader@@QAE?AW4PTK_ERRCODE@@H@Z
?Free@CBaseTrader@@QAEXPAX@Z
?GetAccountID@CBaseTrader@@QAEPBDXZ
?GetAccountInfo@CBaseTrader@@QAEPBUCAccountInfo@@XZ
?GetAccountName@CBaseTrader@@QAEPBDXZ
?GetAccountSummary@CBaseTrader@@QAEXPAUCPtkAccountSummary@@@Z
?GetAuthorization@CBaseTrader@@QAEPBDXZ
?GetBankList@CBaseTrader@@QAEIPAUCPtkBank@@I@Z
?GetBroker@CBaseTrader@@QAEPBDXZ
?GetConditionOrderList@CBaseTrader@@QAEIPAUCPtkConditionOrder@@I@Z
?GetContract@CBaseTrader@@QAEPAUCPtkTraderContract@@PBD0@Z
?GetErrorMsg@CPtkLogger@@QAEPBDH@Z
?GetHostVersion@CBaseTrader@@QAEPBDXZ
?GetLastTradeDate@CBaseTrader@@QAEHXZ
?GetLogStatus@CBaseTrader@@QAE?AW4PTK_LOGIN_PROMPT@@XZ
?GetNext@CBaseTrader@@QAEPAV1@XZ
?GetOrderByBatchID@CBaseTrader@@QAEHHPAUCPtkOrder@@@Z
?GetOrderByOrderID@CBaseTrader@@QAEHHPAUCPtkOrder@@@Z
?GetOrderList@CBaseTrader@@QAEIPAUCPtkOrder@@I@Z
?GetOrderSysID@CBaseTrader@@QAEXHPAD@Z
?GetPassword@CBaseTrader@@QAEPBDXZ
?GetPendingOrderList@CBaseTrader@@QAEIPAUCPtkOrder@@I@Z
?GetPendingTriggered@CBaseTrader@@QAEHPBDPAUCPtkOrder@@@Z
?GetPlatform@CBaseTrader@@QAE?AW4PTK_PLATFORM@@XZ
?GetPositionDetailList@CBaseTrader@@QAEIPAUCPtkPositionDetail@@I@Z
?GetPositionList@CBaseTrader@@QAEIPAUCPtkPosition@@I@Z
?GetPositions@CBaseTrader@@QAEPAUCPtkPositionEx@@XZ
?GetQueryLock@CBaseTrader@@QAEPAU_RTL_CRITICAL_SECTION@@XZ
?GetStopList@CBaseTrader@@QAEIPBD0DPAUCPtkStop@@I@Z
?GetTask@CBaseTrader@@QAEPAUTaskInfo@@XZ
?GetTradeDate@CBaseTrader@@QAEHXZ
?GetTradeList@CBaseTrader@@QAEIPAUCPtkTrade@@I@Z
?GetTradeParams@CBaseTrader@@QBEPBUCPtkTradeParams@@XZ
?InitBatchQuery@CBaseTrader@@QAEHH@Z
?IsAnyPendingOrder@CBaseTrader@@QAEHXZ
?IsBatchQuerying@CBaseTrader@@QAEHXZ
?IsCffex@CBaseTrader@@QAEHPBD@Z
?IsCommissionRateReady@CBaseTrader@@QAEHPAD0@Z
?IsCzce@CBaseTrader@@QAEHPBD@Z
?IsLogging@CBaseTrader@@QAEHXZ
?IsMarginRateReady@CBaseTrader@@QAEHPAD0D@Z
?IsOpenLimited@CBaseTrader@@QAEHPAUCPtkOptions@@HPAUCPtkError@@@Z
?LoadPendingOrder@CBaseTrader@@QAEXXZ
?LoadStopOrder@CBaseTrader@@QAEHXZ
?LocalCalcSupported@CBaseTrader@@QAEHXZ
?Log2@CBaseTrader@@QAEXHPBD0@Z
?Log@CBaseTrader@@QAEXHPBD@Z
?Log@CPtkLogger@@QAEHIPBDPAEI@Z
?LogPendings@CBaseTrader@@QAEXXZ
?LogStops@CBaseTrader@@QAEXXZ
?LoginCompleted@CBaseTrader@@QAEXXZ
?Logs@CPtkLogger@@QAEHIPAPBDHPAEI@Z
?MarginRateSupported@CBaseTrader@@QAEHXZ
?Open@CPtkLogger@@QAEHPBDH@Z
?OrderChangeNotice@CBaseTrader@@QAEXPAUCPtkOrder@@@Z
?PositionDetailSupported@CBaseTrader@@QAEHXZ
?ProcessCloseToday@CBaseTrader@@QAEHPBD@Z
?RegisterUpdate@CBaseTrader@@QAEXXZ
?RemovePosition@CBaseTrader@@QAEXPAUCPtkPositionEx@@@Z
?Reset@CAutoResetEvent@@QAEHXZ
?SavePendingOrder@CBaseTrader@@QAEXXZ
?SaveStopOrder@CBaseTrader@@QAEHPAUCPtkPositionEx@@H@Z
?Set@CAutoResetEvent@@QAEHXZ
?SetAuthorization@CBaseTrader@@QAEXPBD@Z
?SetBankAccount@CBaseTrader@@QAEXPAUCPtkBank@@@Z
?SetBroker@CBaseTrader@@QAEXH@Z
?SetBroker@CBaseTrader@@QAEXPBD@Z
?SetCommissionRate@CBaseTrader@@QAEHPAUCPtkCommissionRate@@@Z
?SetHostVersion@CBaseTrader@@QAEXPBD@Z
?SetLogStatus@CBaseTrader@@QAEXW4PTK_LOGIN_PROMPT@@@Z
?SetMacAddr@CBaseTrader@@QAEXPBD@Z
?SetMarginRate@CBaseTrader@@QAEHPAUCPtkMarginRate@@@Z
?SetNetworkType@CBaseTrader@@QAEXW4PTK_NETWORKTYPE@@@Z
?SetNext@CBaseTrader@@QAEXPAV1@@Z
?SetOptions@CBaseTrader@@QAEXPAUCPtkOptions@@@Z
?SetProxy@CBaseTrader@@QAEXPAUCPtkProxy@@@Z
?SetTradeParams@CBaseTrader@@QAEXPAUCPtkTradeParams@@@Z
?SetWorkingPath@CBaseTrader@@QAEXPBD@Z
?SortContracts@CBaseTrader@@QAEHXZ
?SortOrders@CBaseTrader@@QAEHXZ
?SortPositionDetails@CBaseTrader@@QAEHXZ
?SortPositions@CBaseTrader@@QAEHXZ
?SortTrades@CBaseTrader@@QAEHXZ
?StopBatchQuery@CBaseTrader@@QAEHXZ
?TradeNotice@CBaseTrader@@QAEXPAUCPtkKernelContract@@PAUCPtkTrade@@@Z
?TradeParamSupported@CBaseTrader@@QAEHXZ
?UdpQuote@CBaseTrader@@QAEHXZ
?UpdateBalance@CBaseTrader@@QAEXXZ
?UpdateCloseProfit@CBaseTrader@@QAEXXZ
?UpdateFrozen@CBaseTrader@@QAEXXZ
?UpdateFrozenOnOrderChange@CBaseTrader@@QAEXPAUCPtkOrder@@@Z
?UpdatePositionOnOrderDeal@CBaseTrader@@QAEXPAUCPtkKernelContract@@PAUCPtkTrade@@@Z
?UpdatePositionProfit@CBaseTrader@@QAEXPAUCPtkKernelContract@@@Z
?UpdateRequired@CBaseTrader@@QAEHXZ
?UpdateTradeAccount@CBaseTrader@@QAEXXZ
?UseBalancedQuote@CBaseTrader@@QAEHXZ
?UseGate@CBaseTrader@@QAEHXZ
?UseQuote@CBaseTrader@@QAEHXZ
?Wait@CAutoResetEvent@@QAEKK@Z
?WaitTask@CBaseTrader@@QAEKK@Z

Sections

.text
Size: 244KB - Virtual size: 242KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

STLPORT_
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/BbsForm.exe
.exe windows:4 windows x86 arch:x86

259c49eec95a744dee91b0c4638d85ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

vcl50.bpl

@System@initialization$qqrv
@System@Finalization$qqrv
@System@UnregisterModule$qqrp17System@TLibModule
@System@RegisterModule$qqrp17System@TLibModule
@System@LoadResourceModule$qqrpc
@System@FindHInstance$qqrpv
@System@@LStrFromPChar$qqrr17System@AnsiStringpc
@System@@LStrAsg$qqrv
@System@@LStrClr$qqrr17System@AnsiString
@System@@HandleFinally$qqrv
@System@TObject@Dispatch$qqrpv
@System@TObject@AfterConstruction$qqrv
@System@TObject@DefaultHandler$qqrpv
@System@TObject@$bdtr$qqrv
@System@TObject@FreeInstance$qqrv
@System@TObject@NewInstance$qqrp17System@TMetaClass
@System@IsMemoryManagerSet$qqrv
@System@SetMemoryManager$qqrrx21System@TMemoryManager
@System@IsMultiThread
@System@IsConsole
@System@ExitProc
@System@CmdLine
@System@IsLibrary
@System@MainInstance
@$xp$17System@WideString
@Sysconst@initialization$qqrv
@Sysconst@Finalization$qqrv
@Sysutils@initialization$qqrv
@Sysutils@Finalization$qqrv
@Activex@initialization$qqrv
@Activex@Finalization$qqrv
@Comconst@initialization$qqrv
@Comconst@Finalization$qqrv
@Comobj@initialization$qqrv
@Comobj@Finalization$qqrv
@Math@initialization$qqrv
@Math@Finalization$qqrv
@Flatsb@initialization$qqrv
@Flatsb@Finalization$qqrv
@Multimon@initialization$qqrv
@Multimon@Finalization$qqrv
@Consts@initialization$qqrv
@Consts@Finalization$qqrv
@Typinfo@initialization$qqrv
@Typinfo@Finalization$qqrv
@Typinfo@DotSep
@Typinfo@BooleanIdents
@Classes@initialization$qqrv
@Classes@Finalization$qqrv
@Classes@TComponent@UpdateRegistry$qqrp17System@TMetaClassox17System@AnsiStringt3
@Classes@TComponent@SafeCallException$qqrp14System@TObjectpv
@Classes@TComponent@SetName$qqrx17System@AnsiString
@Classes@TComponent@ValidateRename$qqrp18Classes@TComponentx17System@AnsiStringt2
@Classes@TComponent@WriteState$qqrp15Classes@TWriter
@Classes@TComponent@ReadState$qqrp15Classes@TReader
@Classes@TComponent@DefineProperties$qqrp14Classes@TFiler
@Classes@TComponent@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Classes@TComponent@BeforeDestruction$qqrv
@Classes@TComponent@$bdtr$qqrv
@Classes@TPersistent@AssignTo$qqrp19Classes@TPersistent
@Classes@TPersistent@Assign$qqrp19Classes@TPersistent
@Classes@TPersistent@$bdtr$qqrv
@Classes@TComponent@
@Graphics@initialization$qqrv
@Graphics@Finalization$qqrv
@Contnrs@initialization$qqrv
@Contnrs@Finalization$qqrv
@Printers@initialization$qqrv
@Printers@Finalization$qqrv
@Stdctrls@initialization$qqrv
@Stdctrls@Finalization$qqrv
@Clipbrd@initialization$qqrv
@Clipbrd@Finalization$qqrv
@Stdactns@initialization$qqrv
@Stdactns@Finalization$qqrv
@Actnlist@initialization$qqrv
@Actnlist@Finalization$qqrv
@Forms@initialization$qqrv
@Forms@Finalization$qqrv
@Forms@TApplication@ShowException$qqrp18Sysutils@Exception
@Forms@TApplication@Run$qqrv
@Forms@TApplication@CreateForm$qqrp17System@TMetaClasspv
@Forms@TApplication@Initialize$qqrv
@Forms@TApplication@SetTitle$qqrx17System@AnsiString
@Forms@TCustomForm@QueryInterface$qqsrx5_GUIDpv
@Forms@TCustomForm@UpdateActions$qqrv
@Forms@TCustomForm@ShowModal$qqrv
@Forms@TCustomForm@SetFocus$qqrv
@Forms@TCustomForm@CloseQuery$qqrv
@Forms@TCustomForm@Resizing$qqr18Forms@TWindowState
@Forms@TCustomForm@PaintWindow$qqrui
@Forms@TCustomForm@SetFocusedControl$qqrp20Controls@TWinControl
@Forms@TCustomForm@DefaultHandler$qqrpv
@Forms@TCustomForm@DestroyWindowHandle$qqrv
@Forms@TCustomForm@CreateWindowHandle$qqrrx22Controls@TCreateParams
@Forms@TCustomForm@CreateWnd$qqrv
@Forms@TCustomForm@CreateParams$qqrr22Controls@TCreateParams
@Forms@TCustomForm@AlignControls$qqrp17Controls@TControlr13Windows@TRect
@Forms@TCustomForm@WndProc$qqrr17Messages@TMessage
@Forms@TCustomForm@ValidateRename$qqrp18Classes@TComponentx17System@AnsiStringt2
@Forms@TCustomForm@SetParent$qqrp20Controls@TWinControl
@Forms@TCustomForm@WantChildKey$qqrp17Controls@TControlr17Messages@TMessage
@Forms@TCustomForm@SetParentBiDiMode$qqro
@Forms@TCustomForm@GetFloating$qqrv
@Forms@TCustomForm@GetClientRect$qqrv
@Forms@TCustomForm@DefineProperties$qqrp14Classes@TFiler
@Forms@TCustomForm@ReadState$qqrp15Classes@TReader
@Forms@TCustomForm@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Forms@TCustomForm@Loaded$qqrv
@Forms@TCustomForm@DoDestroy$qqrv
@Forms@TCustomForm@DoCreate$qqrv
@Forms@TCustomForm@$bdtr$qqrv
@Forms@TCustomForm@BeforeDestruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponenti
@Forms@TCustomForm@AfterConstruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponent
@Forms@TScrollingWinControl@AdjustClientRect$qqrr13Windows@TRect
@Forms@TScrollingWinControl@AutoScrollInView$qqrp17Controls@TControl
@Forms@TScrollingWinControl@AutoScrollEnabled$qqrv
@Forms@TScrollingWinControl@$bdtr$qqrv
@Forms@Application
@$xp$11Forms@TForm
@Forms@TForm@
@Imglist@initialization$qqrv
@Imglist@Finalization$qqrv
@Menus@initialization$qqrv
@Menus@Finalization$qqrv
@$xp$16Menus@TPopupMenu
@Controls@initialization$qqrv
@Controls@Finalization$qqrv
@Controls@TWinControl@CanAutoSize$qqrrit1
@Controls@TWinControl@AssignTo$qqrp19Classes@TPersistent
@Controls@TWinControl@ConstrainedResize$qqrrit1t1t1
@Controls@TWinControl@CanResize$qqrrit1
@Controls@TWinControl@SetTabStop$qqro
@Controls@TWinControl@SetTabOrder$qqrs
@Controls@TWinControl@GetTabOrder$qqrv
@Controls@TWinControl@GetClientRect$qqrv
@Controls@TWinControl@GetClientOrigin$qqrv
@Controls@TWinControl@GetControlExtents$qqrv
@Controls@TWinControl@GetHandle$qqrv
@Controls@TWinControl@SetFocus$qqrv
@Controls@TWinControl@Repaint$qqrv
@Controls@TWinControl@Update$qqrv
@Controls@TWinControl@Invalidate$qqrv
@Controls@TWinControl@GetDeviceContext$qqrrui
@Controls@TWinControl@ShowControl$qqrp17Controls@TControl
@Controls@TWinControl@SetBounds$qqriiii
@Controls@TWinControl@PaintWindow$qqrui
@Controls@TWinControl@CreateHandle$qqrv
@Controls@TWinControl@DestroyWnd$qqrv
@Controls@TWinControl@CreateWindowHandle$qqrrx22Controls@TCreateParams
@Controls@TWinControl@CreateParams$qqrr22Controls@TCreateParams
@Controls@TWinControl@AlignControls$qqrp17Controls@TControlr13Windows@TRect
@Controls@TWinControl@AdjustClientRect$qqrr13Windows@TRect
@Controls@TWinControl@ReadState$qqrp15Classes@TReader
@Controls@TWinControl@$bdtr$qqrv
@Controls@TWinControl@$bctr$qqrui
@Controls@TControl@InitiateAction$qqrv
@Controls@TControl@GetFloatingDockSiteClass$qqrv
@Controls@TControl@GetFloating$qqrv
@Controls@TControl@Loaded$qqrv
@Controls@TControl@IsVisibleStored$qqrv
@Controls@TControl@SetParentBiDiMode$qqro
@Controls@TControl@SetParentShowHint$qqro
@Controls@TControl@SetShowHint$qqro
@Controls@TControl@IsShowHintStored$qqrv
@Controls@TControl@SetBiDiMode$qqr17Classes@TBiDiMode
@Controls@TControl@SetText$qqrx17System@AnsiString
@Controls@TControl@SetPopupMenu$qqrp16Menus@TPopupMenu
@Controls@TControl@SetEnabled$qqro
@Controls@TControl@SetVisible$qqro
@Controls@TControl@SetName$qqrx17System@AnsiString
@Controls@TControl@SetAlign$qqr15Controls@TAlign
@Controls@TControl@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Controls@TControl@SetDragMode$qqr18Controls@TDragMode
@Controls@TControl@GetEnabled$qqrv
@Controls@TControl@GetDragImages$qqrv
@Controls@TControl@$bdtr$qqrv
@$xp$18Controls@TDragMode
@$xp$15Controls@TAlign
@$xp$16Controls@TCursor
@Extctrls@initialization$qqrv
@Extctrls@Finalization$qqrv
@Oleconst@initialization$qqrv
@Oleconst@Finalization$qqrv
@Stdvcl@initialization$qqrv
@Stdvcl@Finalization$qqrv
@Axctrls@initialization$qqrv
@Axctrls@Finalization$qqrv
@Olectrls@initialization$qqrv
@Olectrls@Finalization$qqrv
@Olectrls@TOleControl@OnRequestEdit$qqsi
@Olectrls@TOleControl@OnChanged$qqsi
@Olectrls@TOleControl@QueryInterface$qqsrx5_GUIDpv
@Olectrls@TOleControl@WndProc$qqrr17Messages@TMessage
@Olectrls@TOleControl@SetWideStringProp$qqrix17System@WideString
@Olectrls@TOleControl@SetParent$qqrp20Controls@TWinControl
@Olectrls@TOleControl@SetWordBoolProp$qqrius
@Olectrls@TOleControl@SetName$qqrx17System@AnsiString
@Olectrls@TOleControl@SetIntegerProp$qqrii
@Olectrls@TOleControl@SetBounds$qqriiii
@Olectrls@TOleControl@InitControlInterface$qqrx35System@%DelphiInterface$t8IUnknown%
@Olectrls@TOleControl@GetWideStringProp$qqri
@Olectrls@TOleControl@GetWordBoolProp$qqri
@Olectrls@TOleControl@GetIntegerProp$qqri
@Olectrls@TOleControl@DestroyWindowHandle$qqrv
@Olectrls@TOleControl@DefineProperties$qqrp14Classes@TFiler
@Olectrls@TOleControl@DefaultHandler$qqrpv
@Olectrls@TOleControl@CreateWnd$qqrv
@Olectrls@TOleControl@$bdtr$qqrv
@Olectrls@TOleControl@$bctr$qqrp18Classes@TComponent
@$xp$20Olectrls@TOleControl
@Olectrls@TOleControl@
@Oleserver@initialization$qqrv
@Oleserver@Finalization$qqrv
@Oleserver@TOleServer@QueryInterface$qqsrx5_GUIDpv
@Oleserver@TOleServer@GetServer$qqrv
@Oleserver@TOleServer@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Oleserver@TOleServer@Loaded$qqrv
@Oleserver@TOleServer@$bdtr$qqrv
@Oleserver@TOleServer@$bctr$qqrp18Classes@TComponent
@$xp$20Oleserver@TOleServer
@Oleserver@TOleServer@

bcbie50.bpl

@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@@Shdocvw_ocx@Finalize
@@Shdocvw_ocx@Initialize
@Shdocvw_tlb@TCppInternetExplorer@
@Shdocvw_tlb@TCppInternetExplorer@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppInternetExplorer@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Connect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Disconnect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InitServerData$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppShellUIHelper@
@Shdocvw_tlb@TCppShellUIHelper@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellUIHelper@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Connect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Disconnect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@
@Shdocvw_tlb@TCppShellWindows@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellWindows@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellWindows@Connect$qqrv
@Shdocvw_tlb@TCppShellWindows@Disconnect$qqrv
@Shdocvw_tlb@TCppShellWindows@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppWebBrowser@
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser@GetWordBoolProp$qqri
@Shdocvw_tlb@TCppWebBrowser@InitControlData$qqrv
@Shdocvw_tlb@TCppWebBrowser@Navigate$qqrpbp24%TVariantT$10tagVARIANT%t2t2t2
@Shdocvw_tlb@TCppWebBrowser@SetWordBoolProp$qqrio
@Shdocvw_tlb@TCppWebBrowser_V1@
@Shdocvw_tlb@TCppWebBrowser_V1@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser_V1@InitControlData$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@
@Shdocvw_tlb@TShellFavoritesNameSpace@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TShellFavoritesNameSpace@BeforeDestruction$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Connect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Disconnect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InitServerData$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%

borlndmm

ord2

kernel32

FreeLibrary
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
MultiByteToWideChar

user32

GetCursorPos
GetDesktopWindow
GetPropA
GetWindow
IsChild
IsWindow
PostMessageA
RemovePropA
SendMessageA
SetActiveWindow
SetFocus
SetForegroundWindow
SetPropA

ole32

OleInitialize
OleUninitialize

oleaut32

VariantClear
VariantInit

cc3250mt

@$bdele$qpv
@_CatchCleanup$qv
@_InitTermAndUnexPtrs$qv
__ErrorExit
___CRTL_MEM_GetBorMemPtrs
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
____ExceptionHandler
__argc
__argv
__argv_default_expand
__exitargv
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__matherr
__matherrl
__setargv
__startup
__wargv_default_expand
_memcpy
_memset
_strcat
_strchr
_strrev

Exports

Exports

@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@@Pbbbsform@Finalize
@@Pbbbsform@Initialize
@Shdocvw_tlb@TCppInternetExplorer@
@Shdocvw_tlb@TCppInternetExplorer@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellUIHelper@
@Shdocvw_tlb@TCppShellUIHelper@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellWindows@
@Shdocvw_tlb@TCppShellWindows@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser@
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrpv
@Shdocvw_tlb@TCppWebBrowser@GetWordBoolProp$qqri
@Shdocvw_tlb@TCppWebBrowser@SetWordBoolProp$qqrio
@Shdocvw_tlb@TCppWebBrowser_V1@
@Shdocvw_tlb@TCppWebBrowser_V1@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser_V1@$bctr$qqrpv
@Shdocvw_tlb@TShellFavoritesNameSpace@
@Shdocvw_tlb@TShellFavoritesNameSpace@$bctr$qqrp18Classes@TComponent
_BbsFrom1
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 281KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/Bcbsmp50.bpl
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

@$xp$10TCCalendar
@$xp$10TPieEditor
@$xp$11TCColorGrid
@$xp$15TAngleEditorDlg
@$xp$15TAnglesProperty
@$xp$16Cspin@TCSpinEdit
@$xp$17TPerformanceGraph
@$xp$18Cspin@TCSpinButton
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TAnchorKind
@$xp$22Outline@TOutlineOption
@$xp$23Cspin@TTimerSpeedButton
@$xp$27Cdiroutl@TCDirectoryOutline
@$xp$4TPie
@$xp$7TAngles
@$xp$7TCGauge
@$xp$9TTrayIcon
@@Bcbsmp50@Finalize
@@Bcbsmp50@Initialize
@@Ccalendr@Finalize
@@Ccalendr@Initialize
@@Cdiroutl@Finalize
@@Cdiroutl@Initialize
@@Cgauges@Finalize
@@Cgauges@Initialize
@@Cgrid@Finalize
@@Cgrid@Initialize
@@Cspin@Finalize
@@Cspin@Initialize
@@Perfgrap@Finalize
@@Perfgrap@Initialize
@@Piereg@Finalize
@@Piereg@Initialize
@@Trayicon@Finalize
@@Trayicon@Initialize
@Ccalendr@Register$qqrv
@Cdiroutl@Register$qqrv
@Cdiroutl@TCDirectoryOutline@
@Cdiroutl@TCDirectoryOutline@$bctr$qqrp18Classes@TComponent
@Cdiroutl@TCDirectoryOutline@APointer
@Cdiroutl@TCDirectoryOutline@AssignCaseProc$qqrv
@Cdiroutl@TCDirectoryOutline@BuildOneLevel$qqrl
@Cdiroutl@TCDirectoryOutline@BuildSubTree$qqrl
@Cdiroutl@TCDirectoryOutline@BuildTree$qqrv
@Cdiroutl@TCDirectoryOutline@Change$qqrv
@Cdiroutl@TCDirectoryOutline@Click$qqrv
@Cdiroutl@TCDirectoryOutline@CreateWnd$qqrv
@Cdiroutl@TCDirectoryOutline@CurDir$qv
@Cdiroutl@TCDirectoryOutline@DriveToInt$qqrc
@Cdiroutl@TCDirectoryOutline@Expand$qqri
@Cdiroutl@TCDirectoryOutline@ForceCase$qqrrx17System@AnsiString
@Cdiroutl@TCDirectoryOutline@GetChildNamed$qqrrx17System@AnsiStringl
@Cdiroutl@TCDirectoryOutline@InvalidIndex
@Cdiroutl@TCDirectoryOutline@Loaded$qqrv
@Cdiroutl@TCDirectoryOutline@RootIndex
@Cdiroutl@TCDirectoryOutline@SetDirectory$qqr17System@AnsiString
@Cdiroutl@TCDirectoryOutline@SetDrive$qqrc
@Cdiroutl@TCDirectoryOutline@SetTextCase$qqr18Cdiroutl@TTextCase
@Cdiroutl@TCDirectoryOutline@WalkTree$qqrrx17System@AnsiString
@Cgauges@Register$qqrv
@Cgrid@Register$qqrv
@Cspin@Register$qqrv
@Cspin@TCSpinButton@
@Cspin@TCSpinButton@$bctr$qqrp18Classes@TComponent
@Cspin@TCSpinButton@$bdtr$qqrv
@Cspin@TCSpinButton@AdjustSize$qqrrit1
@Cspin@TCSpinButton@BtnClick$qqrp14System@TObject
@Cspin@TCSpinButton@BtnMouseDown$qqrp14System@TObject21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Cspin@TCSpinButton@CreateButton$qqrv
@Cspin@TCSpinButton@Dispatch$qqrpv
@Cspin@TCSpinButton@GetDownGlyph$qqrv
@Cspin@TCSpinButton@GetUpGlyph$qqrv
@Cspin@TCSpinButton@KeyDown$qqrrus46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%
@Cspin@TCSpinButton@Loaded$qqrv
@Cspin@TCSpinButton@SetBounds$qqriiii
@Cspin@TCSpinButton@SetDownGlyph$qqrp16Graphics@TBitmap
@Cspin@TCSpinButton@SetFocusBtn$qqrp23Cspin@TTimerSpeedButton
@Cspin@TCSpinButton@SetUpGlyph$qqrp16Graphics@TBitmap
@Cspin@TCSpinButton@WMGetDlgCode$qqrr20Messages@TWMNoParams
@Cspin@TCSpinButton@WMKillFocus$qqrr21Messages@TWMKillFocus
@Cspin@TCSpinButton@WMSetFocus$qqrr20Messages@TWMSetFocus
@Cspin@TCSpinButton@WMSize$qqrr16Messages@TWMSize
@Cspin@TCSpinEdit@
@Cspin@TCSpinEdit@$bctr$qqrp18Classes@TComponent
@Cspin@TCSpinEdit@$bdtr$qqrv
@Cspin@TCSpinEdit@CMEnter$qqrr20Messages@TWMNoParams
@Cspin@TCSpinEdit@CMExit$qqrr20Messages@TWMNoParams
@Cspin@TCSpinEdit@CheckValue$qqrl
@Cspin@TCSpinEdit@CreateParams$qqrr22Controls@TCreateParams
@Cspin@TCSpinEdit@CreateWnd$qqrv
@Cspin@TCSpinEdit@Dispatch$qqrpv
@Cspin@TCSpinEdit@DownClick$qqrp14System@TObject
@Cspin@TCSpinEdit@GetChildren$qqrynpqqrp18Classes@TComponent$vp18Classes@TComponent
@Cspin@TCSpinEdit@GetMinHeight$qqrv
@Cspin@TCSpinEdit@GetValue$qqrv
@Cspin@TCSpinEdit@IsValidChar$qqrc
@Cspin@TCSpinEdit@KeyDown$qqrrus46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%
@Cspin@TCSpinEdit@KeyPress$qqrrc
@Cspin@TCSpinEdit@SetEditRect$qqrv
@Cspin@TCSpinEdit@SetValue$qqrl
@Cspin@TCSpinEdit@UpClick$qqrp14System@TObject
@Cspin@TCSpinEdit@WMCut$qqrr20Messages@TWMNoParams
@Cspin@TCSpinEdit@WMPaste$qqrr20Messages@TWMNoParams
@Cspin@TCSpinEdit@WMSize$qqrr16Messages@TWMSize
@Cspin@TTimerSpeedButton@
@Cspin@TTimerSpeedButton@$bctr$qqrp18Classes@TComponent
@Cspin@TTimerSpeedButton@$bdtr$qqrv
@Cspin@TTimerSpeedButton@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Cspin@TTimerSpeedButton@MouseUp$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Cspin@TTimerSpeedButton@Paint$qqrv
@Cspin@TTimerSpeedButton@TimerExpired$qqrp14System@TObject
@Perfgrap@Register$qqrv
@Piereg@Register$qqrv
@TAngleEditorDlg@
@TAngleEditorDlg@$bctr$qqrp18Classes@TComponent
@TAngleEditorDlg@$bctr$qqrp18Classes@TComponenti
@TAngleEditorDlg@$bctr$qqrpv
@TAngleEditorDlg@$bdtr$qqrv
@TAngleEditorDlg@CancelClick$qqrp14System@TObject
@TAngleEditorDlg@ETrackBarChange$qqrp14System@TObject
@TAngleEditorDlg@STrackBarChange$qqrp14System@TObject
@TAngleEditorDlg@SetAngles$qqrp7TAngles
@TAngleEditorDlg@SetEndAngle$qqri
@TAngleEditorDlg@SetStartAngle$qqri
@TAngles@
@TAngles@$bctr$qqrv
@TAngles@$bdtr$qqrv
@TAngles@Assign$qqrp19Classes@TPersistent
@TAngles@Changed$qqrv
@TAngles@SetEnd$qqri
@TAngles@SetStart$qqri
@TAnglesProperty@
@TAnglesProperty@$bctr$qqrx50System@%DelphiInterface$t22Dsgnintf@IFormDesigner%i
@TAnglesProperty@$bdtr$qqrv
@TAnglesProperty@Edit$qqrv
@TAnglesProperty@GetAttributes$qqrv
@TCCalendar@
@TCCalendar@$bctr$qqrp18Classes@TComponent
@TCCalendar@Change$qqrv
@TCCalendar@ChangeMonth$qqri
@TCCalendar@Click$qqrv
@TCCalendar@DaysPerMonth$qqrii
@TCCalendar@DaysThisMonth$qqrv
@TCCalendar@Dispatch$qqrpv
@TCCalendar@DrawCell$qqriirx13Windows@TRect42System@%Set$t14Grids@Grids__3$iuc$0$iuc$2%
@TCCalendar@GetCellText$qqrii
@TCCalendar@GetDateElement$qqri
@TCCalendar@IsLeapYear$qqri
@TCCalendar@NextMonth$qqrv
@TCCalendar@NextYear$qqrv
@TCCalendar@PrevMonth$qqrv
@TCCalendar@PrevYear$qqrv
@TCCalendar@SeTCCalendarDate$qqr16System@TDateTime
@TCCalendar@SelectCell$qqrii
@TCCalendar@SetDateElement$qqrii
@TCCalendar@SetStartOfWeek$qqrs
@TCCalendar@SetUseCurrentDate$qqro
@TCCalendar@StoreCalendarDate$qqrv
@TCCalendar@UpdateCalendar$qqrv
@TCCalendar@WMSize$qqrr16Messages@TWMSize
@TCColorGrid@
@TCColorGrid@$bctr$qqrp18Classes@TComponent
@TCColorGrid@CMCtl3DChanged$qqrr17Messages@TMessage
@TCColorGrid@Change$qqrv
@TCColorGrid@CreateWnd$qqrv
@TCColorGrid@Dispatch$qqrpv
@TCColorGrid@DrawFgBg$qqrv
@TCColorGrid@DrawSquare$qqrio
@TCColorGrid@EnableBackground$qqro
@TCColorGrid@EnableForeground$qqro
@TCColorGrid@GetBackgroundColor$qqrv
@TCColorGrid@GetForegroundColor$qqrv
@TCColorGrid@KeyDown$qqrrus46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%
@TCColorGrid@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@TCColorGrid@MouseMove$qqr46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@TCColorGrid@MouseUp$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@TCColorGrid@Paint$qqrv
@TCColorGrid@SetBackgroundIndex$qqri
@TCColorGrid@SetForegroundIndex$qqri
@TCColorGrid@SetGridOrdering$qqr13TGridOrdering
@TCColorGrid@SetSelection$qqri
@TCColorGrid@SquareFromPos$qqrii
@TCColorGrid@UpdateCellSizes$qqro
@TCColorGrid@WMGetDlgCode$qqrr20Messages@TWMNoParams
@TCColorGrid@WMKillFocus$qqrr21Messages@TWMKillFocus
@TCColorGrid@WMSetFocus$qqrr20Messages@TWMSetFocus
@TCColorGrid@WMSize$qqrr16Messages@TWMSize
@TCGauge@
@TCGauge@$bctr$qqrp18Classes@TComponent
@TCGauge@AddProgress$qqrl
@TCGauge@GetPercentDone$qqrv
@TCGauge@Paint$qqrv
@TCGauge@PaintAsBar$qqrp16Graphics@TBitmaprx13Windows@TRect
@TCGauge@PaintAsNeedle$qqrp16Graphics@TBitmaprx13Windows@TRect
@TCGauge@PaintAsNothing$qqrp16Graphics@TBitmaprx13Windows@TRect
@TCGauge@PaintAsPie$qqrp16Graphics@TBitmaprx13Windows@TRect
@TCGauge@PaintAsText$qqrp16Graphics@TBitmaprx13Windows@TRect
@TCGauge@PaintBackground$qqrp16Graphics@TBitmap
@TCGauge@SeTCGaugeKind$qqr11TCGaugeKind
@TCGauge@SetBackColor$qqr15Graphics@TColor
@TCGauge@SetBorderStyle$qqr22Forms@TFormBorderStyle
@TCGauge@SetForeColor$qqr15Graphics@TColor
@TCGauge@SetMaxValue$qqrl
@TCGauge@SetMinValue$qqrl
@TCGauge@SetProgress$qqrl
@TCGauge@SetShowText$qqro
@TPerformanceGraph@
@TPerformanceGraph@$bctr$qqrp18Classes@TComponent
@TPerformanceGraph@$bdtr$qqrv
@TPerformanceGraph@DataPoint$qqr15Graphics@TColorl
@TPerformanceGraph@DisplayPoints$qqrl
@TPerformanceGraph@FirstY$qqrv
@TPerformanceGraph@GetBandCount$qqrv
@TPerformanceGraph@Initialize$qqrl
@TPerformanceGraph@LastY$qqri
@TPerformanceGraph@NextY$qqri
@TPerformanceGraph@Paint$qqrv
@TPerformanceGraph@PaintBar$qqr15Graphics@TColorll
@TPerformanceGraph@PaintLine$qqr15Graphics@TColorll
@TPerformanceGraph@ReallocHistory$qqrv
@TPerformanceGraph@Replay$qqrv
@TPerformanceGraph@RoundUp$qqrll
@TPerformanceGraph@ScrollGraph$qqrv
@TPerformanceGraph@SetBackColor$qqr15Graphics@TColor
@TPerformanceGraph@SetForeColor$qqr15Graphics@TColor
@TPerformanceGraph@SetGradient$qqrl
@TPerformanceGraph@SetGraphKind$qqr10TGraphKind
@TPerformanceGraph@SetGridSize$qqrl
@TPerformanceGraph@SetGridlines$qqro
@TPerformanceGraph@SetPenWidth$qqrl
@TPerformanceGraph@SetScale$qqrl
@TPerformanceGraph@SetStepSize$qqrl
@TPerformanceGraph@ShiftY$qqrv
@TPerformanceGraph@Update$qqrv
@TPie@
@TPie@$bctr$qqrp18Classes@TComponent
@TPie@$bdtr$qqrv
@TPie@Paint$qqrv
@TPie@SetAngles$qqrp7TAngles
@TPie@SetBrush$qqrp15Graphics@TBrush
@TPie@SetPen$qqrp13Graphics@TPen
@TPie@StyleChanged$qqrp14System@TObject
@TPieEditor@
@TPieEditor@$bctr$qqrp18Classes@TComponent50System@%DelphiInterface$t22Dsgnintf@IFormDesigner%
@TPieEditor@$bdtr$qqrv
@TPieEditor@EditProperty$qqrp24Dsgnintf@TPropertyEditorrot2
@TPieEditor@ExecuteVerb$qqri
@TPieEditor@GetVerb$qqri
@TPieEditor@GetVerbCount$qqrv
@TTrayIcon@
@TTrayIcon@$bctr$qqrp18Classes@TComponent
@TTrayIcon@$bdtr$qqrv
@TTrayIcon@ApplicationHookProc$qqrr17Messages@TMessage
@TTrayIcon@DoClick$qqrv
@TTrayIcon@DoDblClick$qqrv
@TTrayIcon@DoMessage$qqrr17Messages@TMessage
@TTrayIcon@DoMouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@TTrayIcon@DoMouseMove$qqr46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@TTrayIcon@DoMouseUp$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@TTrayIcon@DoOnAnimate$qqrp14System@TObject
@TTrayIcon@EndSession$qqrv
@TTrayIcon@GetAnimate$qqrv
@TTrayIcon@GetAnimateInterval$qqrv
@TTrayIcon@GetHandle$qqrv
@TTrayIcon@Loaded$qqrv
@TTrayIcon@Minimize$qqrv
@TTrayIcon@Notification$qqrp18Classes@TComponent18Classes@TOperation
@TTrayIcon@Restore$qqrv
@TTrayIcon@SetAnimate$qqro
@TTrayIcon@SetAnimateInterval$qqri
@TTrayIcon@SetDefaultIcon$qqrv
@TTrayIcon@SetHide$qqro
@TTrayIcon@SetHint$qqr17System@AnsiString
@TTrayIcon@SetIconIndex$qqri
@TTrayIcon@SetVisible$qqro
@TTrayIcon@ShiftState$qv
@TTrayIcon@ShowMenu$qqrv
@TTrayIcon@Update$qqrv
@Trayicon@Register$qqrv
Finalize
Initialize
___CPPdebugHook

Sections

UPX0
Size: - Virtual size: 156KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 29KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/Borlndmm.dll
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

@Borlndmm@HeapAddRef$qqrv
@Borlndmm@HeapRelease$qqrv
@Borlndmm@SysFreeMem$qqrpv
@Borlndmm@SysGetMem$qqri
@Borlndmm@SysReallocMem$qqrpvi
DumpBlocks
FreeMemory
GetAllocMemCount
GetAllocMemSize
GetHeapStatus
GetMemory
ReallocMemory

Sections

UPX0
Size: - Virtual size: 40KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 1KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 402B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/Cc3250mt.dll
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Exports

Exports

@$bdele$qpv
@$bdla$qpv
@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%rx3bcd
@$bnew$qui
@$bnwa$qui
@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%r3bcd
@TDiagGroup@$bctr$qucucpxc
@TDiagGroup@Message$qpxcr67std@%basic_ostringstream$c19std@%char_traits$c%17std@%allocator$c%%t1ul
@TDiagGroup@Output$qrx60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%
@TRegexp@$bctr$qpxc
@TRegexp@$bctr$qrx7TRegexp
@TRegexp@$bdtr$qv
@TRegexp@copy_pattern$qrx7TRegexp
@TRegexp@find$xqpxcpuiui
@TRegexp@gen_pattern$qpxc
@TRegexp@maxpat
@_CatchCleanup$qv
@_GetDiagGroupDef$qv
@_InitTermAndUnexPtrs$qv
@_ReThrowException$quipuc
@_ThrowExceptionLDTC$qpvt1t1t1uiuiuipuct1
@__DynamicCast$qpvt1t1t1i
@__DynamicCastVCLptr$qqrpvt1
@__DynamicCastVCLref$qqrpvt1
@__GetTypeInfo$qpvt1t1
@__GetTypeInfo$qpvt1t1t1
@__ThrowExceptionName$qv
@__ThrowFileName$qv
@__ThrowLineNumber$qv
@__lockDebuggerData$qv
@__rwstd@%_RW_array$i%@$bdtr$qv
@__rwstd@%_RW_array$i%@_copy_memory_array$qrx21__rwstd@%_RW_array$i%
@__rwstd@%_RW_array$i%@_initialize_with_array$qpxiui
@__rwstd@%_RW_array$i%@_initialize_with_value$qrxiui
@__rwstd@%_RW_array$l%@$bdtr$qv
@__rwstd@%_RW_array$l%@_copy_memory_array$qrx21__rwstd@%_RW_array$l%
@__rwstd@%_RW_array$l%@_initialize_with_array$qpxlui
@__rwstd@%_RW_array$l%@_initialize_with_value$qrxlui
@__rwstd@%_RW_array$o%@$bdtr$qv
@__rwstd@%_RW_array$ui%@$bdtr$qv
@__rwstd@%_RW_array$ui%@_copy_memory_array$qrx22__rwstd@%_RW_array$ui%
@__rwstd@%_RW_array$ui%@_initialize_with_array$qpxuiui
@__rwstd@%_RW_array$ui%@_initialize_with_value$qrxuiui
@__rwstd@%__null_string_ref_rep$b19std@%char_traits$b%17std@%allocator$b%46__rwstd@%__string_ref_rep$17std@%allocator$b%%%@$bctr$qv
@__rwstd@%__null_string_ref_rep$c19std@%char_traits$c%17std@%allocator$c%46__rwstd@%__string_ref_rep$17std@%allocator$c%%%@$bctr$qv
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60st5g7u
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60st5htH
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stHIiK
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stL311
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stNmh_
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stRjOu
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stWL0i
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stWZrH
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stXzX_
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60staUlO
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stbAhw
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stgK0H
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stt5aH
@__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$75std@%pair$xi60stwDbX
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@$bctr$ql
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@$bctr$qrx64__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@__addReference$qv
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@__getCapac$xqv
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@__references$xqv
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@__removeReference$qv
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@__setRefCount$ql
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@__unSafeRemoveReference$qv
@__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%@data$xqv
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@$bctr$ql
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@$bctr$qrx64__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@__addReference$qv
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@__getCapac$xqv
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@__references$xqv
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@__removeReference$qv
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@__setRefCount$ql
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@__unSafeRemoveReference$qv
@__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%@data$xqv
@__rwstd@%__string_ref_rep$17std@%allocator$b%%@$bctr$ql
@__rwstd@%__string_ref_rep$17std@%allocator$c%%@$bctr$ql
@__rwstd@%collate_data$b%@$bctr$qrx25__rwstd@%collate_table$b%
@__rwstd@%collate_data$b%@__coll_order$xqb
@__rwstd@%collate_data$c%@__coll_order$xqc
@__rwstd@%collate_impl$b%@$bctr$qv
@__rwstd@%collate_impl$b%@__default_table
@__rwstd@%collate_impl$c%@__default_table
@__rwstd@%create_classic_facet$13std@%ctype$b%%$qp13std@%ctype$b%$p13std@%ctype$b%
@__rwstd@%create_classic_facet$13std@%ctype$c%%$qp13std@%ctype$c%$p13std@%ctype$c%
@__rwstd@%create_classic_facet$16std@%numpunct$b%%$qp16std@%numpunct$b%$p16std@%numpunct$b%
@__rwstd@%create_classic_facet$16std@%numpunct$c%%$qp16std@%numpunct$c%$p16std@%numpunct$c%
@__rwstd@%create_classic_facet$21__rwstd@%timepunct$b%%$qp21__rwstd@%timepunct$b%$p21__rwstd@%timepunct$b%
@__rwstd@%create_classic_facet$21__rwstd@%timepunct$c%%$qp21__rwstd@%timepunct$c%$p21__rwstd@%timepunct$c%
@__rwstd@%create_classic_facet$23std@%moneypunct$bo$i0$%%$qp23std@%moneypunct$bo$i0$%$p23std@%moneypunct$bo$i0$%
@__rwstd@%create_classic_facet$23std@%moneypunct$bo$i1$%%$qp23std@%moneypunct$bo$i1$%$p23std@%moneypunct$bo$i1$%
@__rwstd@%create_classic_facet$23std@%moneypunct$co$i0$%%$qp23std@%moneypunct$co$i0$%$p23std@%moneypunct$co$i0$%
@__rwstd@%create_classic_facet$23std@%moneypunct$co$i1$%%$qp23std@%moneypunct$co$i1$%$p23std@%moneypunct$co$i1$%
@__rwstd@%create_classic_facet$31std@%codecvt$bc13std@mbstate_t%%$qp31std@%codecvt$bc13std@mbstate_t%$p31std@%codecvt$bc13std@mbstate_t%
@__rwstd@%create_classic_facet$31std@%codecvt$cc13std@mbstate_t%%$qp31std@%codecvt$cc13std@mbstate_t%$p31std@%codecvt$cc13std@mbstate_t%
@__rwstd@%create_classic_facet$65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%%$qp65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%$p65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%
@__rwstd@%create_classic_facet$65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%%$qp65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%$p65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%
@__rwstd@%create_classic_facet$65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%%$qp65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%$p65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%
@__rwstd@%create_classic_facet$65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%%$qp65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%$p65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%
@__rwstd@%create_named_facet$13std@%ctype$b%%$qp13std@%ctype$b%pxcui$p13std@%ctype$b%
@__rwstd@%create_named_facet$13std@%ctype$c%%$qp13std@%ctype$c%pxcui$p13std@%ctype$c%
@__rwstd@%create_named_facet$21__rwstd@%timepunct$b%%$qp21__rwstd@%timepunct$b%pxcui$p21__rwstd@%timepunct$b%
@__rwstd@%create_named_facet$21__rwstd@%timepunct$c%%$qp21__rwstd@%timepunct$c%pxcui$p21__rwstd@%timepunct$c%
@__rwstd@%create_named_facet$31std@%codecvt$bc13std@mbstate_t%%$qp31std@%codecvt$bc13std@mbstate_t%pxcui$p31std@%codecvt$bc13std@mbstate_t%
@__rwstd@%create_named_facet$31std@%codecvt$cc13std@mbstate_t%%$qp31std@%codecvt$cc13std@mbstate_t%pxcui$p31std@%codecvt$cc13std@mbstate_t%
@__rwstd@%create_named_facet$65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%%$qp65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%pxcui$p65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%
@__rwstd@%create_named_facet$65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%%$qp65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%pxcui$p65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%
@__rwstd@%create_named_facet$65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%%$qp65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%pxcui$p65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%
@__rwstd@%create_named_facet$65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%%$qp65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%pxcui$p65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%
@__rwstd@%create_native_facet$13std@%ctype$b%%$qp13std@%ctype$b%$p13std@%ctype$b%
@__rwstd@%create_native_facet$16std@%numpunct$b%%$qp16std@%numpunct$b%$p16std@%numpunct$b%
@__rwstd@%create_native_facet$21__rwstd@%timepunct$b%%$qp21__rwstd@%timepunct$b%$p21__rwstd@%timepunct$b%
@__rwstd@%create_native_facet$21__rwstd@%timepunct$c%%$qp21__rwstd@%timepunct$c%$p21__rwstd@%timepunct$c%
@__rwstd@%create_native_facet$23std@%moneypunct$bo$i0$%%$qp23std@%moneypunct$bo$i0$%$p23std@%moneypunct$bo$i0$%
@__rwstd@%create_native_facet$23std@%moneypunct$bo$i1$%%$qp23std@%moneypunct$bo$i1$%$p23std@%moneypunct$bo$i1$%
@__rwstd@%create_native_facet$23std@%moneypunct$co$i0$%%$qp23std@%moneypunct$co$i0$%$p23std@%moneypunct$co$i0$%
@__rwstd@%create_native_facet$23std@%moneypunct$co$i1$%%$qp23std@%moneypunct$co$i1$%$p23std@%moneypunct$co$i1$%
@__rwstd@%create_native_facet$31std@%codecvt$bc13std@mbstate_t%%$qp31std@%codecvt$bc13std@mbstate_t%$p31std@%codecvt$bc13std@mbstate_t%
@__rwstd@%create_native_facet$31std@%codecvt$cc13std@mbstate_t%%$qp31std@%codecvt$cc13std@mbstate_t%$p31std@%codecvt$cc13std@mbstate_t%
@__rwstd@%create_native_facet$65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%%$qp65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%$p65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%
@__rwstd@%create_native_facet$65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%%$qp65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%$p65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%
@__rwstd@%create_native_facet$65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%%$qp65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%$p65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%
@__rwstd@%create_native_facet$65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%%$qp65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%$p65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%
@__rwstd@%digit_handler_base_1$b%@$bctr$qrx10std@locale
@__rwstd@%digit_handler_base_1$b%@$bctr$qrx10std@localerx22__rwstd@%punct_data$b%
@__rwstd@%digit_handler_base_1$c%@$bctr$qrx10std@locale
@__rwstd@%digit_handler_base_1$c%@$bctr$qrx10std@localerx22__rwstd@%punct_data$c%
@__rwstd@%digit_map$b%@eval$xqb
@__rwstd@%digit_map$b%@get_digit_map$qrx13std@%ctype$b%
@__rwstd@%digit_map$b%@get_punct$xqv
@__rwstd@%digit_map$b%@init$qrx13std@%ctype$b%
@__rwstd@%digit_map$c%@eval$xqc
@__rwstd@%digit_map$c%@get_digit_map$qrx13std@%ctype$c%
@__rwstd@%digit_map$c%@get_punct$xqv
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%istreambuf_iterator$b19std@%char_traits$b%%t1r12std@ios_base
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%istreambuf_iterator$b19std@%char_traits$b%%t1r12std@ios_baserx22__rwstd@%punct_data$b%
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@at_end$qv
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_digit_groups$qpc
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_digit_string$qpc
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_float_digits$qv
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_int_digits$qv
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_keyword$qrx23__rwstd@%keyword_map$b%
@__rwstd@%digit_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_pointer_digits$qv
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%istreambuf_iterator$c19std@%char_traits$c%%t1r12std@ios_base
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%istreambuf_iterator$c19std@%char_traits$c%%t1r12std@ios_baserx22__rwstd@%punct_data$c%
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@at_end$qv
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_digit_groups$qpc
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_digit_string$qpc
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_float_digits$qv
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_int_digits$qv
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_keyword$qrx23__rwstd@%keyword_map$c%
@__rwstd@%digit_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_pointer_digits$qv
@__rwstd@%digit_reader_base_1$b%@$bctr$qrx10std@locale
@__rwstd@%digit_reader_base_1$b%@$bctr$qrx10std@localerx22__rwstd@%punct_data$b%
@__rwstd@%digit_reader_base_1$b%@get_decimal_point$xqv
@__rwstd@%digit_reader_base_1$b%@get_grouping$xqv
@__rwstd@%digit_reader_base_1$b%@get_thousands_sep$xqv
@__rwstd@%digit_reader_base_1$c%@$bctr$qrx10std@locale
@__rwstd@%digit_reader_base_1$c%@$bctr$qrx10std@localerx22__rwstd@%punct_data$c%
@__rwstd@%digit_reader_base_1$c%@get_decimal_point$xqv
@__rwstd@%digit_reader_base_1$c%@get_grouping$xqv
@__rwstd@%digit_reader_base_1$c%@get_thousands_sep$xqv
@__rwstd@%digit_writer$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%ostreambuf_iterator$b19std@%char_traits$b%%r12std@ios_base
@__rwstd@%digit_writer$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%ostreambuf_iterator$b19std@%char_traits$b%%r12std@ios_baserx22__rwstd@%punct_data$b%
@__rwstd@%digit_writer$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%@put_digits$qb
@__rwstd@%digit_writer$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%@put_keyword$qrx60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%b
@__rwstd@%digit_writer$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%ostreambuf_iterator$c19std@%char_traits$c%%r12std@ios_base
@__rwstd@%digit_writer$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%ostreambuf_iterator$c19std@%char_traits$c%%r12std@ios_baserx22__rwstd@%punct_data$c%
@__rwstd@%digit_writer$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%@put_digits$qc
@__rwstd@%digit_writer$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%@put_keyword$qrx60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%c
@__rwstd@%digit_writer_base_1$b%@$bctr$qr12std@ios_baserx10std@locale
@__rwstd@%digit_writer_base_1$b%@$bctr$qr12std@ios_baserx22__rwstd@%punct_data$b%
@__rwstd@%digit_writer_base_1$b%@get_decimal_point$xqv
@__rwstd@%digit_writer_base_1$b%@get_grouping$xqv
@__rwstd@%digit_writer_base_1$b%@get_thousands_sep$xqv
@__rwstd@%digit_writer_base_1$c%@$bctr$qr12std@ios_baserx10std@locale
@__rwstd@%digit_writer_base_1$c%@$bctr$qr12std@ios_baserx22__rwstd@%punct_data$c%
@__rwstd@%digit_writer_base_1$c%@get_decimal_point$xqv
@__rwstd@%digit_writer_base_1$c%@get_grouping$xqv
@__rwstd@%digit_writer_base_1$c%@get_thousands_sep$xqv
@__rwstd@%facet_maker$13std@%ctype$b%%@maker_func$qipxcui
@__rwstd@%facet_maker$13std@%ctype$c%%@maker_func$qipxcui
@__rwstd@%facet_maker$16std@%numpunct$b%%@maker_func$qipxcui
@__rwstd@%facet_maker$16std@%numpunct$c%%@maker_func$qipxcui
@__rwstd@%facet_maker$21__rwstd@%timepunct$b%%@maker_func$qipxcui
@__rwstd@%facet_maker$21__rwstd@%timepunct$c%%@maker_func$qipxcui
@__rwstd@%facet_maker$23std@%moneypunct$bo$i0$%%@maker_func$qipxcui
@__rwstd@%facet_maker$23std@%moneypunct$bo$i1$%%@maker_func$qipxcui
@__rwstd@%facet_maker$23std@%moneypunct$co$i0$%%@maker_func$qipxcui
@__rwstd@%facet_maker$23std@%moneypunct$co$i1$%%@maker_func$qipxcui
@__rwstd@%facet_maker$31std@%codecvt$bc13std@mbstate_t%%@maker_func$qipxcui
@__rwstd@%facet_maker$31std@%codecvt$cc13std@mbstate_t%%@maker_func$qipxcui
@__rwstd@%facet_maker$65std@%num_get$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%%@maker_func$qipxcui
@__rwstd@%facet_maker$65std@%num_get$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%%@maker_func$qipxcui
@__rwstd@%facet_maker$65std@%num_put$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%%@maker_func$qipxcui
@__rwstd@%facet_maker$65std@%num_put$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%%@maker_func$qipxcui
@__rwstd@%fixup_moneypunct_init$b%$qp27__rwstd@%moneypunct_init$c%pb$p27__rwstd@%moneypunct_init$b%
@__rwstd@%fixup_moneypunct_init$c%$qp27__rwstd@%moneypunct_init$c%pc$p27__rwstd@%moneypunct_init$c%
@__rwstd@%fixup_numpunct_init$b%$qp25__rwstd@%numpunct_init$c%pb$p25__rwstd@%numpunct_init$b%
@__rwstd@%fixup_numpunct_init$c%$qp25__rwstd@%numpunct_init$c%pc$p25__rwstd@%numpunct_init$c%
@__rwstd@%keyword_cracker$b%@get_ampm_map$qrx21__rwstd@%timepunct$b%
@__rwstd@%keyword_cracker$b%@get_ampm_string$qrx21__rwstd@%timepunct$b%o
@__rwstd@%keyword_cracker$b%@get_day_map$qrx21__rwstd@%timepunct$b%
@__rwstd@%keyword_cracker$b%@get_day_string$qrx21__rwstd@%timepunct$b%uio
@__rwstd@%keyword_cracker$b%@get_month_map$qrx21__rwstd@%timepunct$b%
@__rwstd@%keyword_cracker$b%@get_month_string$qrx21__rwstd@%timepunct$b%uio
@__rwstd@%keyword_cracker$b%@get_ord_string$qrx21__rwstd@%timepunct$b%ui
@__rwstd@%keyword_cracker$b%@get_patt_string$qrx21__rwstd@%timepunct$b%ui
@__rwstd@%keyword_cracker$b%@get_tf_map$qrx16std@%numpunct$b%
@__rwstd@%keyword_cracker$b%@get_tf_string$qrx16std@%numpunct$b%o
@__rwstd@%keyword_cracker$c%@get_ampm_map$qrx21__rwstd@%timepunct$c%
@__rwstd@%keyword_cracker$c%@get_ampm_string$qrx21__rwstd@%timepunct$c%o
@__rwstd@%keyword_cracker$c%@get_day_map$qrx21__rwstd@%timepunct$c%
@__rwstd@%keyword_cracker$c%@get_day_string$qrx21__rwstd@%timepunct$c%uio
@__rwstd@%keyword_cracker$c%@get_month_map$qrx21__rwstd@%timepunct$c%
@__rwstd@%keyword_cracker$c%@get_month_string$qrx21__rwstd@%timepunct$c%uio
@__rwstd@%keyword_cracker$c%@get_ord_string$qrx21__rwstd@%timepunct$c%ui
@__rwstd@%keyword_cracker$c%@get_patt_string$qrx21__rwstd@%timepunct$c%ui
@__rwstd@%keyword_cracker$c%@get_tf_map$qrx16std@%numpunct$c%
@__rwstd@%keyword_cracker$c%@get_tf_string$qrx16std@%numpunct$c%o
@__rwstd@%locale_vector$60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%@$bctr$qrx86__rwstd@%locale_vector$60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%
@__rwstd@%locale_vector$60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%@$bdtr$qv
@__rwstd@%locale_vector$60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%@resize$qui60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%
@__rwstd@%locale_vector$p15__rwstd@__rwcat%@$bctr$quirxp15__rwstd@__rwcat
@__rwstd@%locale_vector$p15__rwstd@__rwcat%@$bdtr$qv
@__rwstd@%locale_vector$p15__rwstd@__rwcat%@resize$quip15__rwstd@__rwcat
@__rwstd@%locale_vector$p17__rwstd@facet_imp%@$bctr$qrx44__rwstd@%locale_vector$p17__rwstd@facet_imp%
@__rwstd@%locale_vector$p17__rwstd@facet_imp%@$bctr$quirxp17__rwstd@facet_imp
@__rwstd@%locale_vector$p17__rwstd@facet_imp%@$bdtr$qv
@__rwstd@%locale_vector$p17__rwstd@facet_imp%@resize$quip17__rwstd@facet_imp
@__rwstd@%money_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%istreambuf_iterator$b19std@%char_traits$b%%t1r12std@ios_baseo
@__rwstd@%money_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%istreambuf_iterator$c19std@%char_traits$c%%t1r12std@ios_baseo
@__rwstd@%money_reader_base_1$b%@$bctr$qr31__rwstd@%digit_reader_base_1$b%rx27__rwstd@%moneypunct_data$b%
@__rwstd@%money_reader_base_1$b%@get_money_string$qr60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%pxc
@__rwstd@%money_reader_base_1$c%@$bctr$qr31__rwstd@%digit_reader_base_1$c%rx27__rwstd@%moneypunct_data$c%
@__rwstd@%money_reader_base_1$c%@get_money_string$qr60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%pxc
@__rwstd@%money_reader_base_2$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%istreambuf_iterator$b19std@%char_traits$b%%t1r12std@ios_baserx27__rwstd@%moneypunct_data$b%
@__rwstd@%money_reader_base_2$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_money_digits$qv
@__rwstd@%money_reader_base_2$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%istreambuf_iterator$c19std@%char_traits$c%%t1r12std@ios_baserx27__rwstd@%moneypunct_data$c%
@__rwstd@%money_reader_base_2$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_money_digits$qv
@__rwstd@%money_writer$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%ostreambuf_iterator$b19std@%char_traits$b%%r12std@ios_baseo
@__rwstd@%money_writer$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%ostreambuf_iterator$c19std@%char_traits$c%%r12std@ios_baseo
@__rwstd@%money_writer_base_1$b%@$bctr$qr31__rwstd@%digit_writer_base_1$b%rx27__rwstd@%moneypunct_data$b%
@__rwstd@%money_writer_base_1$b%@put_money$qb
@__rwstd@%money_writer_base_1$b%@put_money$qrx60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%b
@__rwstd@%money_writer_base_1$c%@$bctr$qr31__rwstd@%digit_writer_base_1$c%rx27__rwstd@%moneypunct_data$c%
@__rwstd@%money_writer_base_1$c%@put_money$qc
@__rwstd@%money_writer_base_1$c%@put_money$qrx60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%c
@__rwstd@%money_writer_base_2$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%ostreambuf_iterator$b19std@%char_traits$b%%r12std@ios_baserx27__rwstd@%moneypunct_data$b%
@__rwstd@%money_writer_base_2$b48std@%ostreambuf_iterator$b19std@%char_traits$b%%%@put_money_sub$qpxbt1ob
@__rwstd@%money_writer_base_2$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%ostreambuf_iterator$c19std@%char_traits$c%%r12std@ios_baserx27__rwstd@%moneypunct_data$c%
@__rwstd@%money_writer_base_2$c48std@%ostreambuf_iterator$c19std@%char_traits$c%%%@put_money_sub$qpxct1oc
@__rwstd@%moneypunct_data$b%@$bctr$qp27__rwstd@%moneypunct_init$b%
@__rwstd@%moneypunct_data$b%@__initfacetbase$qpx10std@locale
@__rwstd@%moneypunct_data$b%@get_init_by_name_$qpxco
@__rwstd@%moneypunct_data$c%@$bctr$qp27__rwstd@%moneypunct_init$c%
@__rwstd@%moneypunct_data$c%@__initfacetbase$qpx10std@locale
@__rwstd@%moneypunct_data$c%@get_init_by_name_$qpxco
@__rwstd@%moneypunct_impl$bo$i0$%@$bctr$qp27__rwstd@%moneypunct_init$b%
@__rwstd@%moneypunct_impl$bo$i0$%@ivals_
@__rwstd@%moneypunct_impl$bo$i1$%@$bctr$qp27__rwstd@%moneypunct_init$b%
@__rwstd@%moneypunct_impl$bo$i1$%@ivals_
@__rwstd@%moneypunct_impl$co$i0$%@$bctr$qp27__rwstd@%moneypunct_init$c%
@__rwstd@%moneypunct_impl$co$i0$%@ivals_
@__rwstd@%moneypunct_impl$co$i1$%@$bctr$qp27__rwstd@%moneypunct_init$c%
@__rwstd@%moneypunct_impl$co$i1$%@ivals_
@__rwstd@%numpunct_data$b%@$bctr$qpx25__rwstd@%numpunct_init$b%
@__rwstd@%numpunct_data$b%@__initfacetbase$qpx10std@locale
@__rwstd@%numpunct_data$b%@get_init_by_name_$qpxc
@__rwstd@%numpunct_data$c%@$bctr$qpx25__rwstd@%numpunct_init$c%
@__rwstd@%numpunct_data$c%@__initfacetbase$qpx10std@locale
@__rwstd@%numpunct_data$c%@get_init_by_name_$qpxc
@__rwstd@%numpunct_impl$b%@$bctr$qpx25__rwstd@%numpunct_init$b%
@__rwstd@%numpunct_impl$b%@get_ivals_$qv
@__rwstd@%numpunct_impl$b%@ivals_
@__rwstd@%numpunct_impl$c%@$bctr$qpx25__rwstd@%numpunct_init$c%
@__rwstd@%numpunct_impl$c%@get_ivals_$qv
@__rwstd@%numpunct_impl$c%@ivals_
@__rwstd@%rw_extract_string$42std@%basic_istream$b19std@%char_traits$b%%60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%19std@%char_traits$b%%$qr42std@%basic_istream$b19std@%char_traits$b%%r60std@%basic_string$b19std@%char_traits$b%17stbLm7
@__rwstd@%rw_extract_string$42std@%basic_istream$c19std@%char_traits$c%%60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%19std@%char_traits$c%%$qr42std@%basic_istream$c19std@%char_traits$c%%r60std@%basic_string$c19std@%char_traits$c%17stOoNv
@__rwstd@%rw_traits$c19std@%char_traits$c%%@find$qpxct1
@__rwstd@%time_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@$bctr$qr48std@%istreambuf_iterator$b19std@%char_traits$b%%t1r12std@ios_baserx21__rwstd@%timepunct$b%
@__rwstd@%time_reader$b48std@%istreambuf_iterator$b19std@%char_traits$b%%%@get_time_pattern$qrx60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%p6std@tm
@__rwstd@%time_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@$bctr$qr48std@%istreambuf_iterator$c19std@%char_traits$c%%t1r12std@ios_baserx21__rwstd@%timepunct$c%
@__rwstd@%time_reader$c48std@%istreambuf_iterator$c19std@%char_traits$c%%%@get_time_pattern$qrx60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%p6std@tm
@__rwstd@%timepunct$b%@$bctr$qui
@__rwstd@%timepunct$b%@$bdtr$qv
@__rwstd@%timepunct$b%@__initfacet$qpx10std@locale
@__rwstd@%timepunct$b%@do_dayname$xqio
@__rwstd@%timepunct$b%@do_monthname$xqio
@__rwstd@%timepunct$b%@do_ordinal$xqi
@__rwstd@%timepunct$b%@id
@__rwstd@%timepunct$c%@$bctr$qui
@__rwstd@%timepunct$c%@$bdtr$qv
@__rwstd@%timepunct$c%@__initfacet$qpx10std@locale
@__rwstd@%timepunct$c%@do_dayname$xqio
@__rwstd@%timepunct$c%@do_monthname$xqio
@__rwstd@%timepunct$c%@do_ordinal$xqi
@__rwstd@%timepunct$c%@id
@__rwstd@%timepunct_data$b%@$bctr$qrx25__rwstd@%timepunct_loc$b%
@__rwstd@%timepunct_data$b%@__initfacet$qpx10std@locale
@__rwstd@%timepunct_data$b%@__initpat$qpx10std@locale
@__rwstd@%timepunct_data$c%@$bctr$qrx25__rwstd@%timepunct_loc$c%
@__rwstd@%timepunct_data$c%@__initfacet$qpx10std@locale
@__rwstd@%timepunct_data$c%@__initpat$qpx10std@locale
@__rwstd@%timepunct_impl$b%@$bctr$qv
@__rwstd@%timepunct_impl$b%@__ivals
@__rwstd@%timepunct_impl$c%@$bctr$qv
@__rwstd@%timepunct_impl$c%@__ivals
@__rwstd@%timepunct_loc$b%@$bctr$qrx26__rwstd@%timepunct_init$b%
@__rwstd@%timepunct_loc$b%@get_ampm$xqo
@__rwstd@%timepunct_loc$b%@get_bad$xqv
@__rwstd@%timepunct_loc$b%@get_day$xqio
@__rwstd@%timepunct_loc$b%@get_month$xqio
@__rwstd@%timepunct_loc$b%@get_ord$xqi
@__rwstd@%timepunct_loc$b%@get_pattern$xqi
@__rwstd@%timepunct_loc$c%@$bctr$qrx26__rwstd@%timepunct_init$c%
@__rwstd@%timepunct_loc$c%@get_ampm$xqo
@__rwstd@%timepunct_loc$c%@get_bad$xqv
@__rwstd@%timepunct_loc$c%@get_day$xqio
@__rwstd@%timepunct_loc$c%@get_month$xqio
@__rwstd@%timepunct_loc$c%@get_ord$xqi
@__rwstd@%timepunct_loc$c%@get_pattern$xqi
@__rwstd@%valarray_traits_optimize$i%@optimize_copy$qv
@__rwstd@%valarray_traits_optimize$l%@optimize_copy$qv
@__rwstd@%valarray_traits_optimize$ui%@optimize_copy$qv
@__rwstd@__long_random$qul
@__rwstd@__random_generator@seed$qul
@__rwstd@__rwOpenTable
@__rwstd@__rw_LocaleBadMoneyName
@__rwstd@__rw_LocaleBadName
@__rwstd@__rw_LocaleBadNumericName
@__rwstd@__rw_LocaleCodeConvFailed
@__rwstd@__rw_LocaleErrorName
@__rwstd@__rw_LocaleInitCalledTwice
@__rwstd@__rw_LocaleNotPresent
@__rwstd@__rw_LocaleNullPointer
@__rwstd@__rw_bitset_ConversionOverflow
@__rwstd@__rw_bitset_InvalidCtorArgument
@__rwstd@__rw_bitset_InvalidPosition
@__rwstd@__rw_stdexcept_BadAllocException
@__rwstd@__rw_stdexcept_BadException
@__rwstd@__rw_stdexcept_Error
@__rwstd@__rw_stdexcept_NoNamedException
@__rwstd@__rwse_InvalidSizeParam
@__rwstd@__rwse_PosBeyondEndOfString
@__rwstd@__rwse_ResultLenInvalid
@__rwstd@__rwse_StringIndexOutOfRange
@__rwstd@__rwse_UnexpectedNullPtr
@__rwstd@__stl_tree_mutex
@__rwstd@digit_map_base@char_values
@__rwstd@digit_map_base@digit_chars
@__rwstd@digit_map_base@punct_chars
@__rwstd@digit_reader_base@$bctr$qv
@__rwstd@digit_reader_base@to_double$qpc
@__rwstd@digit_reader_base@to_float$qpc
@__rwstd@digit_reader_base@to_floating_point$qpct1pv
@__rwstd@digit_reader_base@to_long_double$qpc
@__rwstd@digit_reader_base@to_pointer$qpc
@__rwstd@digit_reader_base@to_ulong$qpc
@__rwstd@digit_reader_base@to_ulong_dec$qpct1
@__rwstd@digit_reader_base@to_ulong_ulong$qpc
@__rwstd@digit_writer_base@$bctr$qr12std@ios_base
@__rwstd@digit_writer_base@calc_groups$qipxc
@__rwstd@digit_writer_base@digitize$qd
@__rwstd@digit_writer_base@digitize$qg
@__rwstd@digit_writer_base@digitize$qi
@__rwstd@digit_writer_base@digitize$qj
@__rwstd@digit_writer_base@digitize$ql
@__rwstd@digit_writer_base@digitize$qpxv
@__rwstd@digit_writer_base@digitize$qs
@__rwstd@digit_writer_base@digitize$qui
@__rwstd@digit_writer_base@digitize$quj
@__rwstd@digit_writer_base@digitize$qul
@__rwstd@digit_writer_base@digitize$qus
@__rwstd@digit_writer_base@get_f_pattern$qpcc
@__rwstd@digit_writer_base@get_pattern$qpct1o
@__rwstd@except_msg_string@$bctr$qpxce
@__rwstd@except_msg_string@$bctr$quie
@__rwstd@except_msg_string@msgstr$xqv
@__rwstd@facet_imp@$bctr$quii
@__rwstd@facet_imp@__initfacet$qpx10std@locale
@__rwstd@facet_imp@__initfacet$qpx10std@locale
@__rwstd@facet_imp@__initfacet$qpx10std@locale
@__rwstd@facet_imp@__initfacet$qpx10std@locale
@__rwstd@facet_imp@__initfacet$qpx10std@locale
@__rwstd@facet_imp@__initfacet$qpx10std@locale
@__rwstd@locale_id_imp@$bctr$qv
@__rwstd@locale_id_imp@__initid$xqv
@__rwstd@locale_id_imp@__last_used_id
@__rwstd@locale_id_imp@__mutex
@__rwstd@locale_imp@$bctr$qrx18__rwstd@locale_impui
@__rwstd@locale_imp@$bctr$quiui
@__rwstd@locale_imp@$bdtr$qv
@__rwstd@locale_imp@build_name$qr60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%rx86__rwstd@%locale_vector$60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%
@__rwstd@locale_imp@category_name$xqi
@__rwstd@locale_imp@clean_name$q60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%
@__rwstd@locale_imp@get_facet$xqui
@__rwstd@locale_imp@map_category$qi
@__rwstd@locale_imp@parse_name$qr86__rwstd@%locale_vector$60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%pxc
@__rwstd@messages_impl@$bctr$q60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%
@__rwstd@messages_impl@close_cat_$xqui
@__rwstd@messages_impl@get_loc_$xqui
@__rwstd@messages_impl@get_loc_name_$qpxc
@__rwstd@messages_impl@get_mess_$xquiii
@__rwstd@messages_impl@open_cat_$xqrx60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%rx10std@locale
@__rwstd@moneypunct_base@__get_named_init$qpxco
@__rwstd@numpunct_base@get_named_init_$qpxc
@__rwstd@ref_counted@$bctr$qui
@__rwstd@ref_counted@$bdtr$qv
@__rwstd@ref_counted@add_reference$qp19__rwstd@ref_counted
@__rwstd@ref_counted@remove_reference$qp19__rwstd@ref_counted
@__rwstd@rwse_OutOfRange
@__rwstd@rwse_badbit_set
@__rwstd@rwse_eofbit_set
@__rwstd@rwse_failbit_set
@__rwstd@stl_temp_buffer_dummy
@__rwstd@use_Clib_locale@$bctr$qpxci
@__rwstd@use_Clib_locale@$bdtr$qv
@__unlockDebuggerData$qv
@_cast_memptr$qpvt1uiuiui
@_vcl_GetHeapStatus$qv
@_vector_apply_$qpvt1uiuiuit1
@_vector_vapply_$qpvt1uiuiuit1
@conbuf@$bctr$qv
@conbuf@$bdtr$qv
@conbuf@current
@conbuf@makeActive$qv
@conbuf@makeInactive$qv
@conbuf@overflow$qi
@conbuf@swap$qv
@conbuf@sync$qv
@constream@$bctr$qv
@constream@$bdtr$qv
@std@$badd$qrx60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%b$60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%
@std@$badd$qrx60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%c$60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%
@std@$beql$qr48std@%istreambuf_iterator$b19std@%char_traits$b%%t1$o
@std@$beql$qr48std@%istreambuf_iterator$c19std@%char_traits$c%%t1$o
@std@$blsh$qr42std@%basic_ostream$b19std@%char_traits$b%%b$r42std@%basic_ostream$b19std@%char_traits$b%%
@std@$blsh$qr42std@%basic_ostream$b19std@%char_traits$b%%c$r42std@%basic_ostream$b19std@%char_traits$b%%
@std@$blsh$qr42std@%basic_ostream$b19std@%char_traits$b%%pxb$r42std@%basic_ostream$b19std@%char_traits$b%%
@std@$blsh$qr42std@%basic_ostream$b19std@%char_traits$b%%pxc$r42std@%basic_ostream$b19std@%char_traits$b%%
@std@$blsh$qr42std@%basic_ostream$b19std@%char_traits$b%%rx60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%$r42std@%basic_ostream$b19std@%char_traits$b%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%c$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%pxc$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%pxuc$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%pxzc$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%rx15std@%complex$d%$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%rx15std@%complex$f%$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%rx15std@%complex$g%$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%rx60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%uc$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$blsh$qr42std@%basic_ostream$c19std@%char_traits$c%%zc$r42std@%basic_ostream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$b19std@%char_traits$b%%pb$r42std@%basic_istream$b19std@%char_traits$b%%
@std@$brsh$qr42std@%basic_istream$b19std@%char_traits$b%%r60std@%basic_string$b19std@%char_traits$b%17std@%allocator$b%%$r42std@%basic_istream$b19std@%char_traits$b%%
@std@$brsh$qr42std@%basic_istream$b19std@%char_traits$b%%rb$r42std@%basic_istream$b19std@%char_traits$b%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%pc$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%puc$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%pzc$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%r15std@%complex$d%$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%r15std@%complex$f%$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%r15std@%complex$g%$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%r60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%rc$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%ruc$r42std@%basic_istream$c19std@%char_traits$c%%
@std@$brsh$qr42std@%basic_istream$c19std@%char_traits$c%%rzc$r42std@%basic_istream$c19std@%char_traits$c%%
@std@%__initialize$p268__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocagLvy
@std@%__io_initialize$l%$qrll$v
@std@%__lock$b19std@%char_traits$b%%$qr38std@%basic_ios$b19std@%char_traits$b%%$r38std@%basic_ios$b19std@%char_traits$b%%
@std@%__lock$c19std@%char_traits$c%%$qr38std@%basic_ios$c19std@%char_traits$c%%$r38std@%basic_ios$c19std@%char_traits$c%%
@std@%__unlock$b19std@%char_traits$b%%$qr38std@%basic_ios$b19std@%char_traits$b%%$r38std@%basic_ios$b19std@%char_traits$b%%
@std@%__unlock$c19std@%char_traits$c%%$qr38std@%basic_ios$c19std@%char_traits$c%%$r38std@%basic_ios$c19std@%char_traits$c%%
@std@%allocator$268__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$Gcvd
@std@%allocator$268__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$W3uP
@std@%allocator$268__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$yw8Y
@std@%allocator$275__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$PJBC
@std@%allocator$275__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$qm9d
@std@%allocator$275__rwstd@%__rb_tree$i75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%100__rwstd@%__select1st$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%i%12std@%less$i%93std@%allocator$vP79
@std@%allocator$64__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%%@$bctr$qrx17std@%allocator$b%
@std@%allocator$64__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%%@construct$qp64__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%rx64__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%
@std@%allocator$64__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%%@destroy$qp64__rwstd@%__string_ref$b19std@%char_traits$b%17std@%allocator$b%%
@std@%allocator$64__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%%@$bctr$qrx17std@%allocator$c%
@std@%allocator$64__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%%@construct$qp64__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%rx64__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%
@std@%allocator$64__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%%@destroy$qp64__rwstd@%__string_ref$c19std@%char_traits$c%17std@%allocator$c%%
@std@%allocator$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%%@$bctr$qrx93std@%allocator$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%%
@std@%allocator$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%%@$bctr$qv
@std@%allocator$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%%@address$xqr75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%
@std@%allocator$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%%@construct$qp75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%rx75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%aIz6a
@std@%allocator$75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%%@destroy$qp75std@%pair$xi60std@%basic_string$c19std@%char_traits$c%17std@%allocator$c%%%
@std@%allocator$b%@$bctr$qrx17std@%allocator$b%
@std@%allocator$b%@$bctr$qv
@std@%allocator$b%@allocate$quipxv
@std@%allocator$b%@construct$qpbrxb
@std@%allocator$b%@deallocate$qpbui
@std@%allocator$c%@$bctr$qrx17std@%allocator$c%
@std@%allocator$c%@$bctr$qv
@std@%allocator$c%@allocate$quipxv
@std@%allocator$c%@construct$qpcrxc

Sections

UPX0
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 200KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 736KB - Virtual size: 740KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_DLL

Sections

.text
Size: 527KB - Virtual size: 528KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 735KB - Virtual size: 736KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/DdfTrader.dll
.dll windows:4 windows x86 arch:x86

9763061732a621161e0a48b67b9a2b1c

Code Sign

15:3e:b5:b8:f7:9e:6a:07:31:89:49:bb:06:4d:ed:13:13:e2:af:5d
Signer

Actual PE Digest

15:3e:b5:b8:f7:9e:6a:07:31:89:49:bb:06:4d:ed:13:13:e2:af:5d

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WaitForMultipleObjects
GetExitCodeThread
TerminateThread
GetCurrentThreadId
OutputDebugStringA
Sleep
SetEndOfFile
SetEnvironmentVariableA
WritePrivateProfileStringA
VirtualFree
InterlockedIncrement
VirtualAlloc
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLocalTime
DeleteFileA
GetTickCount
InterlockedExchange
InterlockedExchangeAdd
GetLastError
GetVersion
GetFileType
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
RtlUnwind
CreateThread
TlsSetValue
TlsGetValue
ExitThread
RaiseException
InterlockedDecrement
HeapAlloc
HeapFree
GetCommandLineA
HeapReAlloc
GetTimeZoneInformation
GetSystemTime
TlsAlloc
TlsFree
SetLastError
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
InitializeCriticalSection
WriteFile
SetUnhandledExceptionFilter
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetModuleFileNameA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapSize
ReadFile
FlushFileBuffers
SetStdHandle
SetFilePointer
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
CreateFileA
GetACP
GetOEMCP
CompareStringA
CompareStringW
CloseHandle

user32

GetUserObjectInformationW
GetProcessWindowStation
GetDesktopWindow
MessageBoxA

ws2_32

connect
select
__WSAFDIsSet
gethostbyname
socket
setsockopt
send
recv
closesocket
ioctlsocket
htons
inet_addr
WSAGetLastError

basetrader

?WaitTask@CBaseTrader@@QAEKK@Z
?GetTask@CBaseTrader@@QAEPAUTaskInfo@@XZ
?GetContract@CBaseTrader@@QAEPAUCPtkTraderContract@@PBD0@Z
??1CAutoLock@@QAE@XZ
?Log2@CBaseTrader@@QAEXHPBD0@Z
?Log@CBaseTrader@@QAEXHPBD@Z
?Set@CAutoResetEvent@@QAEHXZ
??1CBaseTrader@@UAE@XZ
??0CBaseTrader@@QAE@W4PTK_PLATFORM@@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??4CBaseTrader@@QAEAAV0@ABV0@@Z
??_7CBaseTrader@@6B@
??1CAutoResetEvent@@QAE@XZ

advapi32

DeregisterEventSource
ReportEventA
RegisterEventSourceA

Exports

Exports

??0CDdfTrader@@QAE@ABV0@@Z
??0CDdfTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??1CDdfTrader@@UAE@XZ
??4CDdfTrader@@QAEAAV0@ABV0@@Z
??_7CDdfTrader@@6B@
?BankTransferResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?ConfirmSettlementResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?DdfTaskThread@CDdfTrader@@SGIPAX@Z
?GetAccountByUniqueExchangeID@CDdfTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetAccountByUnitedExchangeID@CDdfTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetMaxSubscribable@CDdfTrader@@UAEHXZ
?LoginResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?ModifyPasswordResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderActionResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderInsertResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?ProcessData@CDdfTrader@@QAEHPAV1@PAUTaskInfo@@PBD@Z
?ProcessNotify@CDdfTrader@@QAEXPAV1@PBD@Z
?QueryAccountResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankBalanceResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferDetailResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferResultResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryCFMMCResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryContractResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMaxResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMoneyHistoryResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryOrderResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryPositionResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySeatResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySettlementResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeByDateResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeResult@CDdfTrader@@QAEXPAUTaskInfo@@PBD@Z
?SendRequest@CDdfTrader@@QAE?AW4TRT@@IPADH@Z
?SubscribeQuote@CDdfTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
?TaskBankTransfer@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskCancelOrder@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskChangePassword@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskConfirmSettle@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskInsertOrder@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskLogin@CDdfTrader@@QAE?AW4TRT@@PAIHPAUTaskInfo@@@Z
?TaskQueryAccount@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBank@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankBalance@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankTransfer@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCFMMC@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCommissionRate@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryContracts@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMarginRate@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMaxVolume@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryNotice@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryOrder@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPosition@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPositionDetail@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQuerySettle@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTrade@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeByDate@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeNumber@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeParam@CDdfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?UniqueExchangeID@CDdfTrader@@QAEPBDPBD@Z
?UnitedExchangeID@CDdfTrader@@QAEPBDPBD@Z

Sections

.text
Size: 220KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/DdsTrader.dll
.dll windows:4 windows x86 arch:x86

dfc9c03a0a10ac2ad8300b62bfc904fa

Code Sign

67:cf:f1:ae:61:e6:3a:75:84:e5:ff:ba:4c:13:43:f3:38:f3:41:cc
Signer

Actual PE Digest

67:cf:f1:ae:61:e6:3a:75:84:e5:ff:ba:4c:13:43:f3:38:f3:41:cc

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedIncrement
TerminateThread
GetCurrentThreadId
VirtualFree
Sleep
WritePrivateProfileStringA
WaitForMultipleObjects
SetEndOfFile
SetEnvironmentVariableA
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
DeleteCriticalSection
GetLocalTime
DeleteFileA
GetTickCount
GetExitCodeThread
InterlockedExchange
InterlockedExchangeAdd
GetLastError
GetVersion
GetFileType
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
RtlUnwind
CreateThread
TlsSetValue
TlsGetValue
ExitThread
RaiseException
InterlockedDecrement
HeapAlloc
HeapFree
GetCommandLineA
HeapReAlloc
GetTimeZoneInformation
GetSystemTime
TlsAlloc
TlsFree
SetLastError
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
InitializeCriticalSection
WriteFile
SetUnhandledExceptionFilter
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetModuleFileNameA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
IsBadWritePtr
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapSize
ReadFile
FlushFileBuffers
SetStdHandle
SetFilePointer
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
CreateFileA
GetACP
GetOEMCP
CompareStringA
CompareStringW
CloseHandle

user32

GetUserObjectInformationW
GetProcessWindowStation
GetDesktopWindow
MessageBoxA

ws2_32

connect
select
__WSAFDIsSet
gethostbyname
socket
setsockopt
send
recv
closesocket
ioctlsocket
htons
inet_addr
WSAGetLastError

basetrader

?GetTask@CBaseTrader@@QAEPAUTaskInfo@@XZ
?Log2@CBaseTrader@@QAEXHPBD0@Z
?Log@CBaseTrader@@QAEXHPBD@Z
?Set@CAutoResetEvent@@QAEHXZ
??1CBaseTrader@@UAE@XZ
??0CBaseTrader@@QAE@W4PTK_PLATFORM@@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??4CBaseTrader@@QAEAAV0@ABV0@@Z
??_7CBaseTrader@@6B@
??1CAutoResetEvent@@QAE@XZ
?WaitTask@CBaseTrader@@QAEKK@Z

advapi32

DeregisterEventSource
ReportEventA
RegisterEventSourceA

Exports

Exports

??0CDdsTrader@@QAE@ABV0@@Z
??0CDdsTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??1CDdsTrader@@UAE@XZ
??4CDdsTrader@@QAEAAV0@ABV0@@Z
??_7CDdsTrader@@6B@
?BankTransferResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?ConfirmSettlementResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?DdsTaskThread@CDdsTrader@@SGIPAX@Z
?GetAccountByUniqueExchangeID@CDdsTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetAccountByUnitedExchangeID@CDdsTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetMaxSubscribable@CDdsTrader@@UAEHXZ
?LoginResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?ModifyPasswordResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderActionResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderInsertResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?ProcessData@CDdsTrader@@QAEHPAV1@PAUTaskInfo@@PBD@Z
?ProcessNotify@CDdsTrader@@QAEXPAV1@PBD@Z
?QueryAccountResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankBalanceResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferDetailResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferResultResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryCFMMCResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryContractResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMaxResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMoneyHistoryResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryOrderResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryPositionResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySeatResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySettlementResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeByDateResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeResult@CDdsTrader@@QAEXPAUTaskInfo@@PBD@Z
?SendRequest@CDdsTrader@@QAE?AW4TRT@@IPADH@Z
?SubscribeQuote@CDdsTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
?TaskBankTransfer@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskCancelOrder@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskChangePassword@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskConfirmSettle@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskInsertOrder@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskLogin@CDdsTrader@@QAE?AW4TRT@@PAIHPAUTaskInfo@@@Z
?TaskQueryAccount@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBank@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankBalance@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankTransfer@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCFMMC@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCommissionRate@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryContracts@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMarginRate@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMaxVolume@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryNotice@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryOrder@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPosition@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPositionDetail@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQuerySettle@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTrade@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeByDate@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeNumber@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeParam@CDdsTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?UniqueExchangeID@CDdsTrader@@QAEPBDPBD@Z
?UnitedExchangeID@CDdsTrader@@QAEPBDPBD@Z

Sections

.text
Size: 220KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/Export.exe
.exe windows:5 windows x86 arch:x86

bde3a401a2c43806228ed10378401421

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\5.3VC\Release\Export.pdb

Imports

shlwapi

StrCmpNIA
PathIsDirectoryA
PathFileExistsA
StrStrIA

kernel32

GetModuleFileNameA
CreateFileW
FlushFileBuffers
WriteConsoleW
SetStdHandle
GetStringTypeW
ReadConsoleW
ReadFile
OutputDebugStringW
lstrcmpA
lstrlenA
lstrcpynA
CreateDirectoryA
FindFirstFileA
CopyFileA
FindClose
FindNextFileA
DeleteFileA
lstrcpyA
lstrcatA
GetPrivateProfileStringW
WideCharToMultiByte
GetLastError
LCMapStringW
EncodePointer
DecodePointer
GetCommandLineA
IsDebuggerPresent
IsProcessorFeaturePresent
RaiseException
RtlUnwind
ExitProcess
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
MultiByteToWideChar
HeapSize
HeapFree
HeapAlloc
SetLastError
GetCurrentThreadId
GetProcessHeap
GetStdHandle
GetFileType
DeleteCriticalSection
GetStartupInfoW
CloseHandle
WriteFile
GetModuleFileNameW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
Sleep
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
GetFileAttributesExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
EnterCriticalSection
LeaveCriticalSection
LoadLibraryExW
HeapReAlloc
GetConsoleCP
GetConsoleMode
SetFilePointerEx

user32

wsprintfA

shell32

ShellExecuteA
SHGetFolderPathA

Sections

.text
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/FileCopy.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX2
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
pobo5/system/GdiPlus.dll
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

GdipAddPathArc
GdipAddPathArcI
GdipAddPathBezier
GdipAddPathBezierI
GdipAddPathBeziers
GdipAddPathBeziersI
GdipAddPathClosedCurve
GdipAddPathClosedCurve2
GdipAddPathClosedCurve2I
GdipAddPathClosedCurveI
GdipAddPathCurve
GdipAddPathCurve2
GdipAddPathCurve2I
GdipAddPathCurve3
GdipAddPathCurve3I
GdipAddPathCurveI
GdipAddPathEllipse
GdipAddPathEllipseI
GdipAddPathLine
GdipAddPathLine2
GdipAddPathLine2I
GdipAddPathLineI
GdipAddPathPath
GdipAddPathPie
GdipAddPathPieI
GdipAddPathPolygon
GdipAddPathPolygonI
GdipAddPathRectangle
GdipAddPathRectangleI
GdipAddPathRectangles
GdipAddPathRectanglesI
GdipAddPathString
GdipAddPathStringI
GdipAlloc
GdipBeginContainer
GdipBeginContainer2
GdipBeginContainerI
GdipBitmapGetPixel
GdipBitmapLockBits
GdipBitmapSetPixel
GdipBitmapSetResolution
GdipBitmapUnlockBits
GdipClearPathMarkers
GdipCloneBitmapArea
GdipCloneBitmapAreaI
GdipCloneBrush
GdipCloneCustomLineCap
GdipCloneFont
GdipCloneFontFamily
GdipCloneImage
GdipCloneImageAttributes
GdipCloneMatrix
GdipClonePath
GdipClonePen
GdipCloneRegion
GdipCloneStringFormat
GdipClosePathFigure
GdipClosePathFigures
GdipCombineRegionPath
GdipCombineRegionRect
GdipCombineRegionRectI
GdipCombineRegionRegion
GdipComment
GdipCreateAdjustableArrowCap
GdipCreateBitmapFromDirectDrawSurface
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromHICON
GdipCreateBitmapFromResource
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateCachedBitmap
GdipCreateCustomLineCap
GdipCreateFont
GdipCreateFontFamilyFromName
GdipCreateFontFromDC
GdipCreateFontFromLogfontA
GdipCreateFontFromLogfontW
GdipCreateFromHDC
GdipCreateFromHDC2
GdipCreateFromHWND
GdipCreateFromHWNDICM
GdipCreateHBITMAPFromBitmap
GdipCreateHICONFromBitmap
GdipCreateHalftonePalette
GdipCreateHatchBrush
GdipCreateImageAttributes
GdipCreateLineBrush
GdipCreateLineBrushFromRect
GdipCreateLineBrushFromRectI
GdipCreateLineBrushFromRectWithAngle
GdipCreateLineBrushFromRectWithAngleI
GdipCreateLineBrushI
GdipCreateMatrix
GdipCreateMatrix2
GdipCreateMatrix3
GdipCreateMatrix3I
GdipCreateMetafileFromEmf
GdipCreateMetafileFromFile
GdipCreateMetafileFromStream
GdipCreateMetafileFromWmf
GdipCreateMetafileFromWmfFile
GdipCreatePath
GdipCreatePath2
GdipCreatePath2I
GdipCreatePathGradient
GdipCreatePathGradientFromPath
GdipCreatePathGradientI
GdipCreatePathIter
GdipCreatePen1
GdipCreatePen2
GdipCreateRegion
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRect
GdipCreateRegionRectI
GdipCreateRegionRgnData
GdipCreateSolidFill
GdipCreateStreamOnFile
GdipCreateStringFormat
GdipCreateTexture
GdipCreateTexture2
GdipCreateTexture2I
GdipCreateTextureIA
GdipCreateTextureIAI
GdipDeleteBrush
GdipDeleteCachedBitmap
GdipDeleteCustomLineCap
GdipDeleteFont
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDeleteMatrix
GdipDeletePath
GdipDeletePathIter
GdipDeletePen
GdipDeletePrivateFontCollection
GdipDeleteRegion
GdipDeleteStringFormat
GdipDisposeImage
GdipDisposeImageAttributes
GdipDrawArc
GdipDrawArcI
GdipDrawBezier
GdipDrawBezierI
GdipDrawBeziers
GdipDrawBeziersI
GdipDrawCachedBitmap
GdipDrawClosedCurve
GdipDrawClosedCurve2
GdipDrawClosedCurve2I
GdipDrawClosedCurveI
GdipDrawCurve
GdipDrawCurve2
GdipDrawCurve2I
GdipDrawCurve3
GdipDrawCurve3I
GdipDrawCurveI
GdipDrawDriverString
GdipDrawEllipse
GdipDrawEllipseI
GdipDrawImage
GdipDrawImageI
GdipDrawImagePointRect
GdipDrawImagePointRectI
GdipDrawImagePoints
GdipDrawImagePointsI
GdipDrawImagePointsRect
GdipDrawImagePointsRectI
GdipDrawImageRect
GdipDrawImageRectI
GdipDrawImageRectRect
GdipDrawImageRectRectI
GdipDrawLine
GdipDrawLineI
GdipDrawLines
GdipDrawLinesI
GdipDrawPath
GdipDrawPie
GdipDrawPieI
GdipDrawPolygon
GdipDrawPolygonI
GdipDrawRectangle
GdipDrawRectangleI
GdipDrawRectangles
GdipDrawRectanglesI
GdipDrawString
GdipEmfToWmfBits
GdipEndContainer
GdipEnumerateMetafileDestPoint
GdipEnumerateMetafileDestPointI
GdipEnumerateMetafileDestPoints
GdipEnumerateMetafileDestPointsI
GdipEnumerateMetafileDestRect
GdipEnumerateMetafileDestRectI
GdipEnumerateMetafileSrcRectDestPoint
GdipEnumerateMetafileSrcRectDestPointI
GdipEnumerateMetafileSrcRectDestPoints
GdipEnumerateMetafileSrcRectDestPointsI
GdipEnumerateMetafileSrcRectDestRect
GdipEnumerateMetafileSrcRectDestRectI
GdipFillClosedCurve
GdipFillClosedCurve2
GdipFillClosedCurve2I
GdipFillClosedCurveI
GdipFillEllipse
GdipFillEllipseI
GdipFillPath
GdipFillPie
GdipFillPieI
GdipFillPolygon
GdipFillPolygon2
GdipFillPolygon2I
GdipFillPolygonI
GdipFillRectangle
GdipFillRectangleI
GdipFillRectangles
GdipFillRectanglesI
GdipFillRegion
GdipFlattenPath
GdipFlush
GdipFree
GdipGetAdjustableArrowCapFillState
GdipGetAdjustableArrowCapHeight
GdipGetAdjustableArrowCapMiddleInset
GdipGetAdjustableArrowCapWidth
GdipGetAllPropertyItems
GdipGetBrushType
GdipGetCellAscent
GdipGetCellDescent
GdipGetClip
GdipGetClipBounds
GdipGetClipBoundsI
GdipGetCompositingMode
GdipGetCompositingQuality
GdipGetCustomLineCapBaseCap
GdipGetCustomLineCapBaseInset
GdipGetCustomLineCapStrokeCaps
GdipGetCustomLineCapStrokeJoin
GdipGetCustomLineCapType
GdipGetCustomLineCapWidthScale
GdipGetDC
GdipGetDpiX
GdipGetDpiY
GdipGetEmHeight
GdipGetEncoderParameterList
GdipGetEncoderParameterListSize
GdipGetFamily
GdipGetFamilyName
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipGetFontHeight
GdipGetFontHeightGivenDPI
GdipGetFontSize
GdipGetFontStyle
GdipGetFontUnit
GdipGetGenericFontFamilyMonospace
GdipGetGenericFontFamilySansSerif
GdipGetGenericFontFamilySerif
GdipGetHatchBackgroundColor
GdipGetHatchForegroundColor
GdipGetHatchStyle
GdipGetHemfFromMetafile
GdipGetImageAttributesAdjustedPalette
GdipGetImageBounds
GdipGetImageDecoders
GdipGetImageDecodersSize
GdipGetImageDimension
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetImageFlags
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipGetImageHorizontalResolution
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageThumbnail
GdipGetImageType
GdipGetImageVerticalResolution
GdipGetImageWidth
GdipGetInterpolationMode
GdipGetLineBlend
GdipGetLineBlendCount
GdipGetLineColors
GdipGetLineGammaCorrection
GdipGetLinePresetBlend
GdipGetLinePresetBlendCount
GdipGetLineRect
GdipGetLineRectI
GdipGetLineSpacing
GdipGetLineTransform
GdipGetLineWrapMode
GdipGetLogFontA
GdipGetLogFontW
GdipGetMatrixElements
GdipGetMetafileDownLevelRasterizationLimit
GdipGetMetafileHeaderFromEmf
GdipGetMetafileHeaderFromFile
GdipGetMetafileHeaderFromMetafile
GdipGetMetafileHeaderFromStream
GdipGetMetafileHeaderFromWmf
GdipGetNearestColor
GdipGetPageScale
GdipGetPageUnit
GdipGetPathData
GdipGetPathFillMode
GdipGetPathGradientBlend
GdipGetPathGradientBlendCount
GdipGetPathGradientCenterColor
GdipGetPathGradientCenterPoint
GdipGetPathGradientCenterPointI
GdipGetPathGradientFocusScales
GdipGetPathGradientGammaCorrection
GdipGetPathGradientPath
GdipGetPathGradientPointCount
GdipGetPathGradientPresetBlend
GdipGetPathGradientPresetBlendCount
GdipGetPathGradientRect
GdipGetPathGradientRectI
GdipGetPathGradientSurroundColorCount
GdipGetPathGradientSurroundColorsWithCount
GdipGetPathGradientTransform
GdipGetPathGradientWrapMode
GdipGetPathLastPoint
GdipGetPathPoints
GdipGetPathPointsI
GdipGetPathTypes
GdipGetPathWorldBounds
GdipGetPathWorldBoundsI
GdipGetPenBrushFill
GdipGetPenColor
GdipGetPenCompoundArray
GdipGetPenCompoundCount
GdipGetPenCustomEndCap
GdipGetPenCustomStartCap
GdipGetPenDashArray
GdipGetPenDashCap197819
GdipGetPenDashCount
GdipGetPenDashOffset
GdipGetPenDashStyle
GdipGetPenEndCap
GdipGetPenFillType
GdipGetPenLineJoin
GdipGetPenMiterLimit
GdipGetPenMode
GdipGetPenStartCap
GdipGetPenTransform
GdipGetPenUnit
GdipGetPenWidth
GdipGetPixelOffsetMode
GdipGetPointCount
GdipGetPropertyCount
GdipGetPropertyIdList
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipGetPropertySize
GdipGetRegionBounds
GdipGetRegionBoundsI
GdipGetRegionData
GdipGetRegionDataSize
GdipGetRegionHRgn
GdipGetRegionScans
GdipGetRegionScansCount
GdipGetRegionScansI
GdipGetRenderingOrigin
GdipGetSmoothingMode
GdipGetSolidFillColor
GdipGetStringFormatAlign
GdipGetStringFormatDigitSubstitution
GdipGetStringFormatFlags
GdipGetStringFormatHotkeyPrefix
GdipGetStringFormatLineAlign
GdipGetStringFormatMeasurableCharacterRangeCount
GdipGetStringFormatTabStopCount
GdipGetStringFormatTabStops
GdipGetStringFormatTrimming
GdipGetTextContrast
GdipGetTextRenderingHint
GdipGetTextureImage
GdipGetTextureTransform
GdipGetTextureWrapMode
GdipGetVisibleClipBounds
GdipGetVisibleClipBoundsI
GdipGetWorldTransform
GdipGraphicsClear
GdipImageForceValidation
GdipImageGetFrameCount
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipInvertMatrix
GdipIsClipEmpty
GdipIsEmptyRegion
GdipIsEqualRegion
GdipIsInfiniteRegion
GdipIsMatrixEqual
GdipIsMatrixIdentity
GdipIsMatrixInvertible
GdipIsOutlineVisiblePathPoint
GdipIsOutlineVisiblePathPointI
GdipIsStyleAvailable
GdipIsVisibleClipEmpty
GdipIsVisiblePathPoint
GdipIsVisiblePathPointI
GdipIsVisiblePoint
GdipIsVisiblePointI
GdipIsVisibleRect
GdipIsVisibleRectI
GdipIsVisibleRegionPoint
GdipIsVisibleRegionPointI
GdipIsVisibleRegionRect
GdipIsVisibleRegionRectI
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipMeasureCharacterRanges
GdipMeasureDriverString
GdipMeasureString
GdipMultiplyLineTransform
GdipMultiplyMatrix
GdipMultiplyPathGradientTransform
GdipMultiplyPenTransform
GdipMultiplyTextureTransform
GdipMultiplyWorldTransform
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPathIterCopyData
GdipPathIterEnumerate
GdipPathIterGetCount
GdipPathIterGetSubpathCount
GdipPathIterHasCurve
GdipPathIterIsValid
GdipPathIterNextMarker
GdipPathIterNextMarkerPath
GdipPathIterNextPathType
GdipPathIterNextSubpath
GdipPathIterNextSubpathPath
GdipPathIterRewind
GdipPlayMetafileRecord
GdipPrivateAddFontFile
GdipPrivateAddMemoryFont
GdipRecordMetafile
GdipRecordMetafileFileName
GdipRecordMetafileFileNameI
GdipRecordMetafileI
GdipRecordMetafileStream
GdipRecordMetafileStreamI
GdipReleaseDC
GdipRemovePropertyItem
GdipResetClip
GdipResetImageAttributes
GdipResetLineTransform
GdipResetPageTransform
GdipResetPath
GdipResetPathGradientTransform
GdipResetPenTransform
GdipResetTextureTransform
GdipResetWorldTransform
GdipRestoreGraphics
GdipReversePath
GdipRotateLineTransform
GdipRotateMatrix
GdipRotatePathGradientTransform
GdipRotatePenTransform
GdipRotateTextureTransform
GdipRotateWorldTransform
GdipSaveAdd
GdipSaveAddImage
GdipSaveGraphics
GdipSaveImageToFile
GdipSaveImageToStream
GdipScaleLineTransform
GdipScaleMatrix
GdipScalePathGradientTransform
GdipScalePenTransform
GdipScaleTextureTransform
GdipScaleWorldTransform
GdipSetAdjustableArrowCapFillState
GdipSetAdjustableArrowCapHeight
GdipSetAdjustableArrowCapMiddleInset
GdipSetAdjustableArrowCapWidth
GdipSetClipGraphics
GdipSetClipHrgn
GdipSetClipPath
GdipSetClipRect
GdipSetClipRectI
GdipSetClipRegion
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetCustomLineCapBaseCap
GdipSetCustomLineCapBaseInset
GdipSetCustomLineCapStrokeCaps
GdipSetCustomLineCapStrokeJoin

Sections

UPX0
Size: - Virtual size: 844KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 784KB - Virtual size: 788KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:5 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/HDCalc.dll
.dll windows:4 windows x86 arch:x86

8d732e13f35fae7653cb74c51b5ab95b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetACP
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
HeapReAlloc
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
TerminateProcess
ExitProcess
GetCommandLineA
GetSystemTime
GetTimeZoneInformation
RaiseException
RtlUnwind
FlushFileBuffers
GetCurrentProcess
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
GetLastError
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GlobalAlloc
GetCurrentThread
lstrcmpA
lstrcpynA
LocalFree
MulDiv
SetLastError
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
GlobalFree
LockResource
FindResourceA
LoadResource
InterlockedExchangeAdd
GlobalLock
GlobalUnlock
SetEvent
WaitForSingleObject
ResetEvent
CreateEventA
SetEndOfFile
GetFileSize
GetFileAttributesA
CreateDirectoryA
FindFirstFileA
FindNextFileA
FindClose
WriteFile
SetFilePointer
InterlockedDecrement
CreateFileA
ReadFile
CloseHandle
GetModuleFileNameA
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapSize
HeapFree
GetProcessHeap
HeapAlloc
DeleteFileA
GetLocalTime
GetPrivateProfileStringA
LoadLibraryA
GetProcAddress
FreeLibrary
IsDBCSLeadByte
GetTickCount
InterlockedIncrement
GetStringTypeA

user32

EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
CheckDlgButton
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
PtInRect
GetWindowLongA
GetWindowDC
FrameRect
SetWindowRgn
FillRect
CopyRect
GetWindowTextA
ScreenToClient
DrawTextA
ReleaseDC
TrackMouseEvent
IsWindowVisible
GetDC
MessageBoxA
EnableWindow
GetClientRect
GetSysColorBrush
LoadCursorA
GetClassNameA
UnregisterClassA
GetMessageA
OpenClipboard
GetClipboardData
CloseClipboard
ClientToScreen
KillTimer
SetTimer
ShowScrollBar
GetKeyState
InflateRect
PostMessageA
CreatePopupMenu
AppendMenuA
RemovePropA
TrackPopupMenuEx
DestroyMenu
GetCursorPos
LoadIconA
InvalidateRect
OffsetRect
GetSysColor
GetParent
GetSystemMetrics
GetFocus
SendMessageA
GetWindowRect
TranslateMessage
ValidateRect
SetCursor
PostQuitMessage
LoadStringA
FindWindowA
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
wvsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
GetMessageTime
CheckMenuItem

gdi32

SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
MoveToEx
LineTo
CreatePen
PtVisible
RectVisible
ExtTextOutA
Escape
LPtoDP
CreateBitmap
SetBkColor
GetClipBox
CreateRoundRectRgn
FillRgn
FrameRgn
CreateSolidBrush
GetStockObject
SetTextColor
SetBkMode
TextOutA
SelectObject
DeleteDC
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetObjectA
GetDeviceCaps
GetTextExtentPointA
GetTextExtentPoint32A
CreateFontA

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

comctl32

ImageList_ReplaceIcon
ImageList_GetImageInfo
ord17
ImageList_Destroy
ImageList_Create

imm32

ImmReleaseContext
ImmGetCompositionStringA
ImmGetContext

Exports

Exports

??0CalcInterface@@QAE@ABV0@@Z
??0CalcInterface@@QAE@XZ
??1CalcInterface@@UAE@XZ
??4CalcInterface@@QAEAAV0@ABV0@@Z
??_7CalcInterface@@6B@
?Calc@CalcInterface@@QAEHHPAU_outputdata@@@Z
?Calc@CalcInterface@@QAEHPAUtag_INDEXINFO@@PAU_outputdata@@@Z
?Calc@CalcInterface@@QAEHPBDPAU_outputdata@@PAH@Z
?CreateOutObject@CalcInterface@@SAPAU_outputdata@@XZ
?DestroyOutObject@CalcInterface@@SAHPAPAU_outputdata@@@Z
?GetGroupID@CalcInterface@@SAHGH@Z
?GetGroupName@CalcInterface@@SAPBDGH@Z
?GetGroupNum@CalcInterface@@SAHG@Z
?GetIndexCode@CalcInterface@@SAPADH@Z
?GetIndexCount@CalcInterface@@SAHXZ
?GetIndexInfo@CalcInterface@@SAPAUtag_INDEXINFO@@H@Z
?GetIndexInfo@CalcInterface@@SAPAUtag_INDEXINFO@@PAD@Z
?GetIndexNo@CalcInterface@@SAHPAD@Z
?GetSysVersion@CalcInterface@@SAIXZ
?Init@CalcInterface@@SAHHPBD0HK@Z
?InputData@CalcInterface@@QAEHGPBDIGPAX11PAUtag_HISDAT@@HPAUHWND__@@@Z
?PopupCreateDlg@CalcInterface@@SAHGPBD@Z
?PopupEditDlg@CalcInterface@@SAHH@Z
?PopupEditDlg@CalcInterface@@SAHPAUtag_INDEXINFO@@@Z
?PopupHelpDlg@CalcInterface@@SAHH@Z
?PopupHelpDlg@CalcInterface@@SAHPAUtag_INDEXINFO@@@Z
?PopupManageDlg@CalcInterface@@SAHXZ
?PopupParamDlg@CalcInterface@@SAHHG@Z
?PopupParamDlg@CalcInterface@@SAHPAUtag_INDEXINFO@@G@Z
?SetCallbackFunc@CalcInterface@@SAXP6GKIIJ@Z@Z
?UnInit@CalcInterface@@SAXXZ
?UpdateCalc@CalcInterface@@QAEHHPAU_outputdata@@@Z
?UpdateCalc@CalcInterface@@QAEHPAUtag_INDEXINFO@@PAU_outputdata@@@Z
?UpdateCalc@CalcInterface@@QAEHPBDPAU_outputdata@@PAH@Z
_HDCalc_Calc0@12
_HDCalc_Calc1@12
_HDCalc_Calc2@16
_HDCalc_CreateOutObject@0
_HDCalc_DeleteCalcObject@4
_HDCalc_DestroyOutObject@4
_HDCalc_GetGroupCount@4
_HDCalc_GetGroupID@8
_HDCalc_GetGroupName@8
_HDCalc_GetIndexByName@4
_HDCalc_GetIndexByNo@4
_HDCalc_GetIndexCode@4
_HDCalc_GetIndexCount@0
_HDCalc_GetIndexNo@4
_HDCalc_GetSysVersion@0
_HDCalc_Init@20
_HDCalc_InputData@44
_HDCalc_NewCalcObject@0
_HDCalc_PopupCreateDlg@8
_HDCalc_PopupEditDlg@4
_HDCalc_PopupHelpDlg@4
_HDCalc_PopupManageDlg@0
_HDCalc_PopupParamDlg@8
_HDCalc_SetCallbackFunc@4
_HDCalc_UnInit@0
_HDCalc_UpdateCalc0@12
_HDCalc_UpdateCalc1@12
_HDCalc_UpdateCalc2@16

Sections

.text
Size: 684KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/HsFutuSystemInfo.dll
.dll windows:5 windows x86 arch:x86

5f76053befbc759a0b29519616d78ea4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

user32

GetUserObjectInformationW
GetProcessWindowStation
MessageBoxA
GetSystemMetrics

advapi32

DeregisterEventSource
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegisterEventSourceA
ReportEventA

ws2_32

gethostname
WSACleanup
WSAStartup

iphlpapi

GetAdaptersInfo

kernel32

GetLocaleInfoW
WriteConsoleW
CreateFileW
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetConsoleOutputCP
WriteConsoleA
lstrlenA
GetStringTypeW
Sleep
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
InterlockedDecrement
GetSystemDirectoryW
WideCharToMultiByte
GetVersionExW
MultiByteToWideChar
lstrlenW
GetSystemInfo
GetDiskFreeSpaceExW
GetVolumeInformationW
HeapAlloc
HeapFree
GetProcessHeap
LeaveCriticalSection
EnterCriticalSection
CloseHandle
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetProcAddress
GetModuleHandleA
GetVersion
WriteFile
GetFileType
GetStdHandle
GetTickCount
QueryPerformanceCounter
GlobalMemoryStatus
FreeLibrary
LoadLibraryA
FlushConsoleInputBuffer
GetLocaleInfoA
GetUserDefaultLCID
CreateFileA
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetFilePointer
FlushFileBuffers
GetConsoleCP
ReadFile
GetStartupInfoA
InterlockedIncrement
InitializeCriticalSection
DeleteCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetTimeFormatA
GetDateFormatA
HeapReAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetModuleHandleW
ExitProcess
SetConsoleCtrlHandler
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
RaiseException
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapSize
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
GetModuleFileNameA
GetTimeZoneInformation
SetHandleCount

ole32

CoCreateInstance
CoSetProxyBlanket
CoInitializeSecurity
CoInitialize
CoInitializeEx
CoUninitialize

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocString

netapi32

NetWkstaGetInfo
NetApiBufferFree

Exports

Exports

hundsun_encrypt
hundsun_getdetailerror
hundsun_getsysteminfo
hundsun_getversion

Sections

.text
Size: 538KB - Virtual size: 537KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 210KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/HsfTrader.dll
.dll windows:4 windows x86 arch:x86

f33134fa1b6d51301e37aa4b98facc38

Code Sign

f1:41:1b:56:43:b5:da:60:b6:cb:b4:ad:52:8a:9f:4b:bc:60:e1:76
Signer

Actual PE Digest

f1:41:1b:56:43:b5:da:60:b6:cb:b4:ad:52:8a:9f:4b:bc:60:e1:76

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WritePrivateProfileStringA
GetLocalTime
GetTickCount
GetCurrentThreadId
OutputDebugStringA
Sleep
DeleteFileA
FreeLibrary
QueryPerformanceCounter
InterlockedExchange
WaitForMultipleObjects
GetExitCodeThread
TerminateThread
CloseHandle
VirtualFree
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
DeleteCriticalSection
InterlockedExchangeAdd
RtlUnwind
RaiseException
GetLastError
CreateThread
TlsSetValue
TlsGetValue
ExitThread
InterlockedDecrement
HeapAlloc
HeapFree
GetCommandLineA
GetVersion
TlsAlloc
TlsFree
SetLastError
InitializeCriticalSection
ExitProcess
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
WriteFile
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapSize
IsBadReadPtr
IsBadCodePtr
SetFilePointer
GetStringTypeA
GetStringTypeW
GetCPInfo
SetStdHandle
FlushFileBuffers
CreateFileA
GetACP
GetOEMCP
LoadLibraryA
SetEndOfFile
ReadFile
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentProcessId
GlobalMemoryStatus
GetSystemTime

user32

MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation
GetDesktopWindow

ws2_32

connect
select
__WSAFDIsSet
gethostbyname
socket
setsockopt
send
recv
closesocket
ioctlsocket
htons
inet_addr
WSAGetLastError

basetrader

??1CAutoLock@@QAE@XZ
?Log2@CBaseTrader@@QAEXHPBD0@Z
?Log@CBaseTrader@@QAEXHPBD@Z
?Set@CAutoResetEvent@@QAEHXZ
?GetContract@CBaseTrader@@QAEPAUCPtkTraderContract@@PBD0@Z
??0CBaseTrader@@QAE@W4PTK_PLATFORM@@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??4CBaseTrader@@QAEAAV0@ABV0@@Z
??_7CBaseTrader@@6B@
??1CAutoResetEvent@@QAE@XZ
?GetTask@CBaseTrader@@QAEPAUTaskInfo@@XZ
?WaitTask@CBaseTrader@@QAEKK@Z
??1CBaseTrader@@UAE@XZ

advapi32

RegisterEventSourceA
ReportEventA
DeregisterEventSource

Exports

Exports

??0CHsfTrader@@QAE@ABV0@@Z
??0CHsfTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??1CHsfTrader@@UAE@XZ
??4CHsfTrader@@QAEAAV0@ABV0@@Z
??_7CHsfTrader@@6B@
?BankTransferResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?ConfirmSettlementResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?GetAccountByUniqueExchangeID@CHsfTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetAccountByUnitedExchangeID@CHsfTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetMaxSubscribable@CHsfTrader@@UAEHXZ
?HsfTaskThread@CHsfTrader@@SGIPAX@Z
?LoginResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?ModifyPasswordResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderActionResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderInsertResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?ProcessData@CHsfTrader@@QAEHPAV1@PAUTaskInfo@@PBD@Z
?ProcessNotify@CHsfTrader@@QAEXPAV1@PBD@Z
?QueryAccountResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankBalanceResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferDetailResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferResultResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryCFMMCResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryContractResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMaxResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMoneyHistoryResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryOrderResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryPositionResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySeatResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySettlementResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeByDateResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeResult@CHsfTrader@@QAEXPAUTaskInfo@@PBD@Z
?SendRequest@CHsfTrader@@QAE?AW4TRT@@IPADH@Z
?SubscribeQuote@CHsfTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
?TaskBankTransfer@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskCancelOrder@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskChangePassword@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskConfirmSettle@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskInsertOrder@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskLogin@CHsfTrader@@QAE?AW4TRT@@PAIHPAUTaskInfo@@@Z
?TaskQueryAccount@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBank@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankBalance@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankTransfer@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCFMMC@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCommissionRate@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryContracts@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMarginRate@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMaxVolume@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryNotice@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryOrder@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPosition@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPositionDetail@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQuerySettle@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTrade@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeByDate@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeNumber@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeParam@CHsfTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?UniqueExchangeID@CHsfTrader@@QAEPBDPBD@Z
?UnitedExchangeID@CHsfTrader@@QAEPBDPBD@Z

Sections

.text
Size: 220KB - Virtual size: 219KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/HssTrader.dll
.dll windows:4 windows x86 arch:x86

8dbf5689cd0c8da10d2de2b6b6a0082a

Code Sign

0f:68:25:44:5b:d7:2e:7e:a9:35:50:9f:b2:27:32:0d:e1:bc:46:3f
Signer

Actual PE Digest

0f:68:25:44:5b:d7:2e:7e:a9:35:50:9f:b2:27:32:0d:e1:bc:46:3f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteFileA
InterlockedExchange
WaitForMultipleObjects
GetCurrentThreadId
GetLocalTime
Sleep
WritePrivateProfileStringA
GetTickCount
FreeLibrary
QueryPerformanceCounter
GetExitCodeThread
TerminateThread
CloseHandle
VirtualFree
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
DeleteCriticalSection
InterlockedExchangeAdd
RtlUnwind
RaiseException
GetLastError
CreateThread
TlsSetValue
TlsGetValue
ExitThread
InterlockedDecrement
HeapAlloc
HeapFree
GetCommandLineA
GetVersion
TlsAlloc
TlsFree
SetLastError
InitializeCriticalSection
ExitProcess
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
WriteFile
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapSize
IsBadReadPtr
IsBadCodePtr
SetFilePointer
GetStringTypeA
GetStringTypeW
GetCPInfo
SetStdHandle
FlushFileBuffers
CreateFileA
GetACP
GetOEMCP
LoadLibraryA
SetEndOfFile
ReadFile
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentProcessId
GlobalMemoryStatus
GetSystemTime

user32

MessageBoxA
GetUserObjectInformationW
GetProcessWindowStation
GetDesktopWindow

ws2_32

connect
select
__WSAFDIsSet
gethostbyname
socket
setsockopt
send
recv
closesocket
ioctlsocket
htons
inet_addr
WSAGetLastError

basetrader

?Log@CBaseTrader@@QAEXHPBD@Z
?Set@CAutoResetEvent@@QAEHXZ
??1CBaseTrader@@UAE@XZ
?Log2@CBaseTrader@@QAEXHPBD0@Z
??4CBaseTrader@@QAEAAV0@ABV0@@Z
??_7CBaseTrader@@6B@
??1CAutoResetEvent@@QAE@XZ
?GetTask@CBaseTrader@@QAEPAUTaskInfo@@XZ
?WaitTask@CBaseTrader@@QAEKK@Z
??0CBaseTrader@@QAE@W4PTK_PLATFORM@@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

Exports

Exports

??0CHssTrader@@QAE@ABV0@@Z
??0CHssTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??1CHssTrader@@UAE@XZ
??4CHssTrader@@QAEAAV0@ABV0@@Z
??_7CHssTrader@@6B@
?BankTransferResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?ConfirmSettlementResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?GetAccountByUniqueExchangeID@CHssTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetAccountByUnitedExchangeID@CHssTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetMaxSubscribable@CHssTrader@@UAEHXZ
?HssTaskThread@CHssTrader@@SGIPAX@Z
?LoginResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?ModifyPasswordResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderActionResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?OrderInsertResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?ProcessData@CHssTrader@@QAEHPAV1@PAUTaskInfo@@PBD@Z
?ProcessNotify@CHssTrader@@QAEXPAV1@PBD@Z
?QueryAccountResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankBalanceResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferDetailResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryBankTransferResultResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryCFMMCResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryContractResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMaxResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryMoneyHistoryResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryOrderResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryPositionResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySeatResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QuerySettlementResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeByDateResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?QueryTradeResult@CHssTrader@@QAEXPAUTaskInfo@@PBD@Z
?SendRequest@CHssTrader@@QAE?AW4TRT@@IPADH@Z
?SubscribeQuote@CHssTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
?TaskBankTransfer@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskCancelOrder@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskChangePassword@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskConfirmSettle@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskInsertOrder@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskLogin@CHssTrader@@QAE?AW4TRT@@PAIHPAUTaskInfo@@@Z
?TaskQueryAccount@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBank@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankBalance@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryBankTransfer@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCFMMC@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryCommissionRate@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryContracts@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMarginRate@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryMaxVolume@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryNotice@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryOrder@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPosition@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryPositionDetail@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQuerySettle@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTrade@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeByDate@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeNumber@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?TaskQueryTradeParam@CHssTrader@@QAE?AW4TRT@@IPAUTaskInfo@@@Z
?UniqueExchangeID@CHssTrader@@QAEPBDPBD@Z
?UnitedExchangeID@CHssTrader@@QAEPBDPBD@Z

Sections

.text
Size: 220KB - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/InformationCollect.dll
.dll windows:4 windows x86 arch:x86

d0682b7856f29e6ca4431222f1778697

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CloseHandle
CreatePipe
GetDiskFreeSpaceA
GetVolumeInformationA
GetSystemDirectoryA
DeviceIoControl
CreateFileA
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
FileTimeToLocalFileTime
EnterCriticalSection
Sleep
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapAlloc
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
HeapReAlloc
RaiseException
GetModuleFileNameA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
WideCharToMultiByte
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
GetStartupInfoA
GetLastError
HeapSize
SetHandleCount
GetStdHandle
GetFileType
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
SetFilePointer
SetUnhandledExceptionFilter
FlushFileBuffers
GetCPInfo
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
SetStdHandle
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
FreeLibrary
FlushConsoleInputBuffer
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
GetTickCount
SystemTimeToFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
CreateFileW
CreateProcessA
WaitForSingleObject
ReadFile
LoadLibraryA
GetModuleHandleA
GetVersionExA
GetProcAddress
GetSystemInfo
TlsGetValue
GetComputerNameA
ReadConsoleInputA
SetConsoleMode
GetConsoleMode

user32

MessageBoxA
GetProcessWindowStation
GetSystemMetrics
GetUserObjectInformationW

iphlpapi

GetAdaptersInfo

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

ws2_32

recv
send
WSAGetLastError
WSASetLastError
closesocket
shutdown

Exports

Exports

apexsoft_getsysteminfo

Sections

.text
Size: 776KB - Virtual size: 774KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/JsdfTrader.dll
.dll windows:4 windows x86 arch:x86

ba7dd57f06e023796faf7209374d791b

Code Sign

dd:05:ef:a9:3c:e9:0e:b2:6b:03:05:d5:ae:5c:a2:32:8e:ae:a4:a9
Signer

Actual PE Digest

dd:05:ef:a9:3c:e9:0e:b2:6b:03:05:d5:ae:5c:a2:32:8e:ae:a4:a9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedExchange
GetTickCount
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetPrivateProfileStringA
DeleteFileA
GetPrivateProfileIntA
Sleep
WritePrivateProfileStringA
OutputDebugStringA
GetCurrentThreadId
GetLocalTime
WaitForMultipleObjects
SetEndOfFile
GetOEMCP
GetACP
GetExitCodeThread
TerminateThread
CloseHandle
VirtualFree
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedExchangeAdd
RtlUnwind
RaiseException
GetLastError
CreateThread
TlsSetValue
TlsGetValue
ExitThread
InterlockedDecrement
HeapAlloc
HeapFree
GetCommandLineA
GetVersion
TlsAlloc
TlsFree
SetLastError
InitializeCriticalSection
ExitProcess
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
WriteFile
ReadFile
SetFilePointer
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapSize
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo

user32

MessageBoxA

version

VerQueryValueA
GetFileVersionInfoA

basetrader

?GetTask@CBaseTrader@@QAEPAUTaskInfo@@XZ
?Log2@CBaseTrader@@QAEXHPBD0@Z
??1CAutoLock@@QAE@XZ
?Log@CBaseTrader@@QAEXHPBD@Z
?Set@CAutoResetEvent@@QAEHXZ
??0CBaseTrader@@QAE@W4PTK_PLATFORM@@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??4CBaseTrader@@QAEAAV0@ABV0@@Z
??_7CBaseTrader@@6B@
??1CAutoResetEvent@@QAE@XZ
??1CBaseTrader@@UAE@XZ
?WaitTask@CBaseTrader@@QAEKK@Z

Exports

Exports

??0CJsdfTrader@@QAE@ABV0@@Z
??0CJsdfTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??1CJsdfTrader@@UAE@XZ
??4CJsdfTrader@@QAEAAV0@ABV0@@Z
??_7CJsdfTrader@@6B@
?ClearOrderMap@CJsdfTrader@@QAEXXZ
?GetAccountByUniqueExchangeID@CJsdfTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetAccountByUnitedExchangeID@CJsdfTrader@@QAEPAUCPtkAccount@@PBD@Z
?GetMaxSubscribable@CJsdfTrader@@UAEHXZ
?JsdfNotifyThread@CJsdfTrader@@SGIPAX@Z
?JsdfTaskThread@CJsdfTrader@@SGIPAX@Z
?SubscribeQuote@CJsdfTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
?TaskBankTransfer@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskCancelOrder@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskChangePassword@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskConfirmSettle@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskInsertOrder@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskLogin@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskLogin_Internal@CJsdfTrader@@QAE?AW4PTK_ERRCODE@@PBDI0H0HPADIH@Z
?TaskQueryAccount@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryBank@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryBankBalance@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryBankTransfer@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryCFMMC@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryCommissionRate@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryContracts@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryMarginRate@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryMaxVolume@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryNotice@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryOrder@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryPosition@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryPositionDetail@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQuerySettle@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryTrade@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryTradeByDate@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryTradeNumber@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?TaskQueryTradeParam@CJsdfTrader@@QAEXPAUTaskInfo@@@Z
?UniqueExchangeID@CJsdfTrader@@QAEPBDPBD@Z
?UnitedExchangeID@CJsdfTrader@@QAEPBDPBD@Z

Sections

.text
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/KCC_API.dll
.dll windows:4 windows x86 arch:x86

4aacd87d3c0acac913878a09ae8c8eb9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

c:\users\wentao.hu\svn\peripheral_products\第三方接口\新接口\kcclib\run\KCC_API.pdb

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryA
WaitForSingleObject
CreateEventA
HeapAlloc
HeapFree
GetProcessHeap
WideCharToMultiByte
GetVolumeInformationA
GetSystemDirectoryA
MultiByteToWideChar
GetModuleFileNameA
GetDiskFreeSpaceExA
GetVersionExA
CreateFileA
InterlockedDecrement
lstrlenW
CloseHandle
SetEvent
QueryPerformanceCounter
GetTickCount
Sleep
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
CreateThread
LocalFree
lstrlenA
GetThreadLocale
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
FlushFileBuffers
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
SetFilePointer
GetConsoleMode
GetConsoleCP
GetStartupInfoA
GetFileType
SetHandleCount
ReadFile
GetTimeZoneInformation
GetOEMCP
GetACP
GetStdHandle
WriteFile
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
ExitProcess
HeapSize
SetLastError
ResetEvent
WaitForMultipleObjects
CreateMutexA
ReleaseMutex
InterlockedIncrement
InterlockedExchange
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetLastError
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCommandLineA
RaiseException
RtlUnwind
LCMapStringA
LCMapStringW
GetCPInfo
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree

ole32

CoInitializeSecurity
CoUninitialize
CoSetProxyBlanket
CoCreateInstance
CoInitializeEx

oleaut32

SysAllocString
VariantClear
VariantInit
SysFreeString

shlwapi

PathRemoveFileSpecA

ws2_32

gethostbyname
WSAStartup
inet_ntoa
gethostname
WSACleanup

iphlpapi

GetAdaptersInfo

libcrypto-1_1

EVP_EncryptFinal_ex
BIO_free_all
BIO_read
EVP_CIPHER_CTX_free
BIO_set_flags
DES_ncbc_encrypt
RSA_free
EVP_CIPHER_CTX_new
ERR_error_string
BIO_push
EVP_aes_256_cbc
BIO_new_mem_buf
BIO_write
RSA_private_decrypt
PEM_read_bio_RSAPrivateKey
EVP_DecryptFinal_ex
RSA_size
EVP_EncryptUpdate
PEM_read_bio_RSA_PUBKEY
EVP_DecryptInit_ex
DES_string_to_key
BIO_new
EVP_DecryptUpdate
ERR_get_error
BIO_ctrl
BIO_s_mem
EVP_EncryptInit_ex
BIO_f_base64
RSA_public_encrypt
DES_set_key_checked

Exports

Exports

?softwarevendor_GetSystemInfo@@YAHPADAAH@Z
KCY_AESDecryptDecode
KCY_AESEncryptEncode
KCY_Base64Decode
KCY_Base64Encode
KCY_DecryptDecode
KCY_DecryptDecode2Split
KCY_EncryptEncode
KCY_EncryptEncode2Comb
KCY_Init
KCY_PrivateDecrypt
KCY_PublicEncrypt
KingStar_GetSystemInfo

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/KSInterB2C.dll
.dll windows:4 windows x86 arch:x86

31ac7e3bd4050f738717b66916a3fead

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

WSAEnumNetworkEvents
gethostbyname
WSAWaitForMultipleEvents
inet_addr
connect
WSAGetLastError
WSAEventSelect
htons
getsockopt
__WSAFDIsSet
ioctlsocket
recv
send
socket
select
closesocket
setsockopt
getsockname
inet_ntoa
gethostname
WSAStartup
WSACleanup

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

msvcrt

_adjust_fdiv
_initterm
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
_beginthreadex
_getpid
vsprintf
_vsnprintf
__threadid
fwrite
fflush
ftell
fread
fclose
fopen
_fsopen
fseek
strstr
_access
_mkdir
strncpy
strncmp
memmove
malloc
free
_snprintf
strchr
sprintf
atoi
time
srand
rand
_chdir
_getcwd
__CxxFrameHandler
??2@YAPAXI@Z
??3@YAXPAX@Z
fgetc
localtime
strftime
_strnicmp
_unlink
_stricmp
_ltoa
fputc

mfc42

ord803
ord1200
ord537
ord3811
ord3337
ord3584
ord535
ord858
ord540
ord800
ord2614
ord2915
ord543
ord5572

kernel32

CloseHandle
ReleaseSemaphore
WaitForMultipleObjects
CreateSemaphoreA
GetPrivateProfileIntA
WaitForSingleObject
GetModuleFileNameA
GetComputerNameA
Sleep
FindClose
FindNextFileA
DeleteFileA
FindFirstFileA
WinExec
DeleteCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryA
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetTickCount
GetFullPathNameA
TerminateThread
InterlockedExchange
InterlockedIncrement
ResetEvent
SetEvent
CreateEventA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetPrivateProfileStringA

user32

wsprintfA
MessageBoxA

msvcp60

??0_Lockit@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
??1_Lockit@std@@QAE@XZ

netapi32

Netbios

Exports

Exports

??0CKSTime@@QAE@ABV0@@Z
??0CKSTime@@QAE@XZ
??0CLog@@QAE@ABV0@@Z
??0CLog@@QAE@XZ
??1CKSTime@@UAE@XZ
??1CLog@@UAE@XZ
??4CKSTime@@QAEAAV0@ABV0@@Z
??4CLog@@QAEAAV0@ABV0@@Z
??_7CKSTime@@6B@
??_7CLog@@6B@
?AddAppName@CLog@@QAEHFPBD@Z
?AddSlash@CLog@@IAEXPAD@Z
?CheckFileName@CLog@@IAEXXZ
?CloseFile@CLog@@IAEXXZ
?CloseLogFile@CLog@@QAEXXZ
?Crypt@CLog@@IAEHPADH0@Z
?DeleteOutOfDateFiles@CLog@@QAEXH@Z
?EnableWrite@CLog@@QAEHFH@Z
?FlushSaveFileHead@CLog@@QAEHXZ
?GetDay@CKSTime@@QAEHXZ
?GetDayOfWeek@CKSTime@@QAEHXZ
?GetFileInfo@CLog@@QAEHPAUst_LogHead@@@Z
?GetFileName@CLog@@QAE?AVCString@@XZ
?GetFullPath@CLog@@IAEHPADH@Z
?GetHour@CKSTime@@QAEHXZ
?GetKSTime@@YAPAVCKSTime@@XZ
?GetLog@CLog@@QAEHKPAFPAD110@Z
?GetMSecond@CKSTime@@QAEHXZ
?GetMinute@CKSTime@@QAEHXZ
?GetMonth@CKSTime@@QAEHXZ
?GetNextLog@CLog@@QAEHPAKPAFPAD21@Z
?GetNextPack@CLog@@QAEHPAKPAD11PAF@Z
?GetSecond@CKSTime@@QAEHXZ
?GetTickCount@CKSTime@@QAEPAV1@XZ
?GetYear@CKSTime@@QAEHXZ
?Init@CLog@@IAEXXZ
?MakePath@CLog@@IAEXPAD@Z
?OpenFile@CLog@@IAEHXZ
?OpenLogFile@CLog@@QAEHPBD@Z
?ReadFileHead@CLog@@IAEHXZ
?ReflushTime2@CKSTime@@QAEXXZ
?ReflushTime@CKSTime@@AAEXXZ
?ResizeFile@CLog@@IAEHXZ
?SaveFileHead@CLog@@IAEHH@Z
?SetFileMode@CLog@@QAEHPAD00KH@Z
?ViewLogFile@CLog@@QAEIXZ
?WriteData@CLog@@QAEHPAXH@Z
?WriteLog@CLog@@QAAHFPADZZ
?WritePack@CLog@@QAEHPAXHPBD@Z
?WriteRawLog@CLog@@QAEHFPAXH@Z
?WriteToFile@CLog@@IAEHFPAXF@Z
?trim@CLog@@IAEXPAD@Z
KSI_CheckPushDataArrival_B2C
KSI_CleanUp_B2C
KSI_Close_B2C
KSI_GenMarketDataContext_B2C
KSI_GetConnectionStatus_B2C
KSI_GetErrorMessage_B2C
KSI_InitSystem_B2C
KSI_Open_B2C
KSI_ReceivePushData_B2C
KSI_SendToServer_B2C
KSI_Start_B2C
KSI_Stop_B2C

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/KSInterB2C.lkc
pobo5/system/KSMarketDataAPI.dll
.dll windows:4 windows x86 arch:x86

18743650a3dc32c5102308dc000880ff

Code Sign

7a:b7:9b:76:53:47:a0:25:31:07:8e:7d:58:33:40:c5:90:cc:df:9b
Signer

Actual PE Digest

7a:b7:9b:76:53:47:a0:25:31:07:8e:7d:58:33:40:c5:90:cc:df:9b

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

Sleep
GetCurrentDirectoryA
GetFullPathNameA
CreateThread
ExitThread
GetSystemTimeAsFileTime
DeleteFileA
FindNextFileA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
CreateDirectoryA
CopyFileA
GetFileAttributesA
SetFileAttributesA
GetModuleFileNameA
LeaveCriticalSection
GetDriveTypeA
EnterCriticalSection
GetThreadLocale
TerminateThread
GetPrivateProfileIntA
GetPrivateProfileStringA
SetCurrentDirectoryA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetComputerNameA
WaitForMultipleObjects
WaitForMultipleObjectsEx
ReadFile
DuplicateHandle
SuspendThread
GetExitCodeThread
SignalObjectAndWait
ResetEvent
TryEnterCriticalSection
SetThreadPriority
ResumeThread
ReleaseSemaphore
CreateSemaphoreA
FormatMessageA
LocalFree
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
MultiByteToWideChar
RtlUnwind
RaiseException
GetLastError
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
GetProcessHeap
LCMapStringA
LCMapStringW
GetCPInfo
WriteFile
GetStdHandle
GetProcAddress
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThread
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
ExitProcess
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
HeapSize
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
SetConsoleCtrlHandler
LoadLibraryA
GetLocaleInfoW
SetFilePointer
GetConsoleCP
GetConsoleMode
FreeLibrary
GetTimeZoneInformation
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
CloseHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
CreateMutexA
WaitForSingleObject
ReleaseMutex
CreateEventA
SetEvent
GetSystemInfo
GetLocalTime
SetEndOfFile

shlwapi

PathRemoveFileSpecA

ws2_32

shutdown
connect
bind
gethostname
getservbyname
gethostbyname
gethostbyaddr
inet_ntoa
socket
setsockopt
getsockname
WSAEnumNetworkEvents
WSAEventSelect
ioctlsocket
select
__WSAFDIsSet
WSASend
sendto
send
recvfrom
recv
getsockopt
WSAStartup
WSACleanup
inet_addr
accept
listen
WSAGetLastError
htons
ntohs
closesocket
WSAWaitForMultipleEvents
getpeername
getprotobyname

ksportalapi

PAPI_ExitInstance
PAPI_InitInstance
PAPI_GetSwitchList
PAPI_GetErrorDescribe

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

lkcdll

DLLLKCIsValidLicensed
DLLLKCGetLastErrorMessage
DLLLKCGetExpirationDate
DLLLKCGetLicensee
DLLLKCGetItem

cpack

SetParmBit
DecodeBufWithArray

user32

MessageBoxA
wsprintfA

advapi32

RegisterEventSourceA
RegSetValueExA
RegCreateKeyA
DeregisterEventSource
ReportEventA
RegCloseKey

netapi32

Netbios

Exports

Exports

??0CKSInterB2B@@QAE@ABV0@@Z
??0CKSInterB2B@@QAE@XZ
??0CThostFtdcMdApi@KingstarAPI@@QAE@ABV01@@Z
??0CThostFtdcMdApi@KingstarAPI@@QAE@XZ
??1CThostFtdcMdApi@KingstarAPI@@IAE@XZ
??4CKSInterB2B@@QAEAAV0@ABV0@@Z
??4CThostFtdcMdApi@KingstarAPI@@QAEAAV01@ABV01@@Z
??_7CKSInterB2B@@6B@
??_7CThostFtdcMdApi@KingstarAPI@@6B@
?CreateFtdcMdApi@CThostFtdcMdApi@KingstarAPI@@SAPAV12@PBD_N1@Z
?Init@CKSInterB2B@@UAE_NGHPBD0@Z
?Release@CKSInterB2B@@UAE_NXZ
?s_counter@CKSInterB2B@@0VCCounter@@A

Sections

.text
Size: 552KB - Virtual size: 549KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 4.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/KSTradeAPI.dll
.dll windows:4 windows x86 arch:x86

05c79f7966f7076ddc5d6f7e84a3e442

Code Sign

37:de:ee:db:60:d7:e7:d4:d4:2e:69:6e:6e:f4:33:dd:f0:86:4e:d5
Signer

Actual PE Digest

37:de:ee:db:60:d7:e7:d4:d4:2e:69:6e:6e:f4:33:dd:f0:86:4e:d5

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

shutdown
connect
bind
gethostname
getservbyname
gethostbyname
gethostbyaddr
inet_ntoa
socket
setsockopt
getsockname
closesocket
WSAEnumNetworkEvents
WSAEventSelect
ioctlsocket
select
__WSAFDIsSet
WSASend
sendto
send
recvfrom
recv
getsockopt
WSAGetLastError
WSAStartup
WSACleanup
inet_addr
accept
listen
htons
WSAWaitForMultipleEvents
getpeername
getprotobyname
ntohs

kernel32

GetModuleFileNameA
GetSystemTimeAsFileTime
QueryPerformanceCounter
Sleep
GetTickCount
CreateMutexA
CopyFileA
WaitForSingleObject
ReleaseMutex
CreateEventA
SetEvent
ExitThread
CreateDirectoryA
GetFileAttributesA
SetFileAttributesA
LeaveCriticalSection
EnterCriticalSection
CreateThread
CloseHandle
SetLastError
GetThreadLocale
TerminateThread
GetPrivateProfileIntA
GetPrivateProfileStringA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetComputerNameA
WaitForMultipleObjects
WaitForMultipleObjectsEx
DuplicateHandle
SuspendThread
GetExitCodeThread
QueryPerformanceFrequency
SignalObjectAndWait
ResetEvent
TryEnterCriticalSection
SetThreadPriority
ResumeThread
ReleaseSemaphore
CreateSemaphoreA
FormatMessageA
LocalFree
GetLocalTime
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
RtlUnwind
GetLastError
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapAlloc
GetProcessHeap
GetTimeFormatA
GetDateFormatA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
FindNextFileA
DeleteFileA
GetDriveTypeA
LCMapStringA
LCMapStringW
GetCPInfo
WriteFile
GetStdHandle
GetProcAddress
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetCurrentThread
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
HeapSize
ExitProcess
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetFilePointer
ReadFile
FlushFileBuffers
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
SetConsoleCtrlHandler
LoadLibraryA
GetLocaleInfoW
FreeLibrary
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetSystemInfo

shlwapi

PathRemoveFileSpecA

ksportalapi

PAPI_GetErrorDescribe
PAPI_ExitInstance
PAPI_InitInstance
PAPI_GetSwitchList

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

lkcdll

DLLLKCGetLicensee
DLLLKCGetItem

user32

MessageBoxA
wsprintfA

advapi32

RegisterEventSourceA
RegSetValueExA
RegCreateKeyA
DeregisterEventSource
ReportEventA
RegCloseKey

netapi32

Netbios

Exports

Exports

??0CKSCosApi@KingstarAPI@@QAE@ABV01@@Z
??0CKSCosApi@KingstarAPI@@QAE@XZ
??0CKSOptionApi@KingstarAPI@@QAE@ABV01@@Z
??0CKSOptionApi@KingstarAPI@@QAE@XZ
??0CKSVocApi@KingstarAPI@@QAE@ABV01@@Z
??0CKSVocApi@KingstarAPI@@QAE@XZ
??0CThostFtdcTraderApi@KingstarAPI@@QAE@ABV01@@Z
??0CThostFtdcTraderApi@KingstarAPI@@QAE@XZ
??1CKSCosApi@KingstarAPI@@IAE@XZ
??1CKSOptionApi@KingstarAPI@@IAE@XZ
??1CKSVocApi@KingstarAPI@@IAE@XZ
??1CThostFtdcTraderApi@KingstarAPI@@IAE@XZ
??4CKSCosApi@KingstarAPI@@QAEAAV01@ABV01@@Z
??4CKSOptionApi@KingstarAPI@@QAEAAV01@ABV01@@Z
??4CKSVocApi@KingstarAPI@@QAEAAV01@ABV01@@Z
??4CThostFtdcTraderApi@KingstarAPI@@QAEAAV01@ABV01@@Z
??_7CKSCosApi@KingstarAPI@@6B@
??_7CKSOptionApi@KingstarAPI@@6B@
??_7CKSVocApi@KingstarAPI@@6B@
??_7CThostFtdcTraderApi@KingstarAPI@@6B@
?CreateFtdcTraderApi@CThostFtdcTraderApi@KingstarAPI@@SAPAV12@PBD@Z

Sections

.text
Size: 804KB - Virtual size: 802KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 4.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/MsgNtfy.wav
pobo5/system/NOTICE.TXT
pobo5/system/NetDiagTool.exe
.exe windows:4 windows x86 arch:x86

0184c6ece7b68d6b93fdcf3888820af4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
lstrcmpiA
lstrcpyA
GetPrivateProfileSectionA
GetPrivateProfileIntA
WritePrivateProfileStringA
DeleteFileA
CloseHandle
CreateFileA
GetPrivateProfileStringA
Sleep
SystemTimeToFileTime
GetSystemTime
InterlockedIncrement
GetTickCount
GetLastError
TerminateThread
CreateThread
GetLocalTime
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
LCMapStringW
LCMapStringA
SetEndOfFile
SetConsoleCtrlHandler
GetStringTypeW
GetStringTypeA
ReadFile
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
SetStdHandle
IsBadCodePtr
IsBadReadPtr
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
FlushFileBuffers
SetFilePointer
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
EnterCriticalSection
InitializeCriticalSection
InterlockedExchange
DeleteCriticalSection
LeaveCriticalSection
InterlockedDecrement
MultiByteToWideChar
RtlUnwind
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
RaiseException
FatalAppExitA
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapAlloc
HeapSize
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
WriteFile
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
SetEnvironmentVariableA

user32

PostMessageA
DestroyWindow
SendMessageA
GetParent
GetDlgItem
TranslateMessage
ShowWindow
SetWindowPos
SetWindowLongA
CreateDialogParamA
GetWindowLongA
DispatchMessageA
GetMessageA
UpdateWindow
MessageBoxA
IsWindow
GetWindowRect
PostQuitMessage

comdlg32

GetSaveFileNameA

shell32

ShellExecuteA
SHGetSpecialFolderPathA

ws2_32

socket
select
WSAStartup
recv
send
closesocket
connect
htons
gethostbyname
getprotobyname
inet_addr
WSAGetLastError
sendto
recvfrom

Sections

.text
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 380B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 552B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/PBMsgBoxEx.dll
.dll windows:5 windows x86 arch:x86

f48bb71955e0c35830cf10a3174d63c6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

TerminateProcess
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
SetFilePointerEx
OutputDebugStringW
GetEnvironmentStringsW
LCMapStringW
WriteConsoleW
CreateFileW
SetEnvironmentVariableA
QueryPerformanceCounter
GetStartupInfoW
IsValidCodePage
GetStdHandle
GetFileAttributesExW
ReadConsoleW
GetConsoleMode
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
HeapQueryInformation
IsProcessorFeaturePresent
IsDebuggerPresent
AreFileApisANSI
GetModuleHandleExW
LockResource
ExitProcess
ExitThread
CreateThread
VirtualQuery
VirtualAlloc
GetCommandLineA
RtlUnwind
FindResourceExW
VirtualProtect
SearchPathA
GetProfileIntA
GetTickCount
Sleep
GetTempFileNameA
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetWindowsDirectoryA
lstrcpyA
GetVolumeInformationA
lstrcmpiA
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetSystemInfo
FreeEnvironmentStringsW
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
CreateFileA
DeleteFileA
GetCurrentDirectoryA
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetACP
GlobalFlags
FileTimeToSystemTime
SetErrorMode
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetCurrentProcessId
lstrcmpA
GetModuleFileNameA
GetVersionExA
GetCurrentThread
ResumeThread
SetThreadPriority
WaitForSingleObject
CloseHandle
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
LoadLibraryW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
EncodePointer
OutputDebugStringA
MultiByteToWideChar
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock
GlobalSize
GlobalAlloc
SetLastError
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
RaiseException
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
DecodePointer
FindResourceW
SizeofResource
WideCharToMultiByte
CopyFileA
CreateDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
FindResourceA
LoadResource

user32

DestroyCursor
GetWindowRgn
DrawIcon
SetCursorPos
CopyAcceleratorTableA
DestroyAcceleratorTable
CreateAcceleratorTableA
LoadAcceleratorsW
ToAsciiEx
GetKeyboardState
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
WaitMessage
PostThreadMessageA
GetSystemMenu
IsZoomed
GetComboBoxInfo
LoadMenuW
TrackMouseEvent
GetKeyNameTextA
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
BringWindowToTop
MonitorFromPoint
UpdateLayeredWindow
IsMenu
UnionRect
SetWindowRgn
DrawFrameControl
DrawEdge
LoadImageW
DrawStateA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
MapVirtualKeyA
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
GetAsyncKeyState
MessageBeep
GetIconInfo
DrawIconEx
LoadImageA
IsRectEmpty
OffsetRect
SetRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
CharUpperA
DestroyIcon
InvalidateRect
KillTimer
SetTimer
DeleteMenu
IntersectRect
CopyImage
SystemParametersInfoA
InflateRect
GetMenuItemInfoA
DestroyMenu
RealChildWindowFromPoint
LoadCursorA
GetSysColorBrush
GetSystemMetrics
MapDialogRect
SetCursor
ShowOwnedPopups
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageA
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
FillRect
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
IsDialogMessageA
SetWindowTextA
IsWindowEnabled
IsDlgButtonChecked
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
SetWindowsHookExA
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
GetClientRect
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
CreateMenu
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
FrameRect
CharUpperBuffA
RegisterClipboardFormatA
ModifyMenuA
SetMenuDefaultItem
CopyIcon
GetDoubleClickTime
SetClassLongA
LockWindowUpdate
GetWindowThreadProcessId
SetRect
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
GetParent
SendDlgItemMessageA
GetWindow
GetWindowLongA
GetWindowTextLengthA
GetWindowTextA
GetScrollPos
SetScrollPos
SetFocus
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
UnhookWindowsHookEx
UnregisterClassA
SetParent
LoadIconA
GetWindowRect
EnableWindow
IsWindowVisible
SendMessageA
IsIconic

gdi32

ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectA
GetTextExtentPoint32A
CombineRgn
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
GetTextMetricsA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
EnumFontFamiliesExA
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceA
SetROP2
SetPolyFillMode
GetLayout
TextOutA
MoveToEx
Rectangle
CopyMetaFileA
SetLayout
SetMapMode
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
DeleteDC
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
BitBlt
GetObjectA
SetTextColor
SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCA
SetTextAlign

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
DragFinish
DragQueryFileA

shlwapi

PathFindFileNameA
PathIsUNCA
PathStripToRootA
StrFormatKBSizeA
PathFindExtensionA
PathRemoveFileSpecW

uxtheme

CloseThemeData
GetThemePartSize
GetWindowTheme
GetThemeSysColor
DrawThemeText
DrawThemeParentBackground
OpenThemeData
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeBackground
GetThemeColor
GetCurrentThemeName

ole32

OleLockRunning
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoDisconnectObject
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitialize

oleaut32

SysFreeString
SysAllocString
VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

Exports

Exports

PBMsgBoxEx_Initialize
PBMsgBoxEx_MessageBox
PBMsgBoxEx_MessageBoxPos
PBMsgBoxEx_MessageBoxSimple
PBMsgBoxEx_QueryBoxStatus

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 310KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 121KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/PBUpd.dll
.exe windows:4 windows x86 arch:x86

50b9c462f6269348880b1773f9037efa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

vcl50.bpl

@System@initialization$qqrv
@System@Finalization$qqrv
@System@LoadResString$qqrp20System@TResStringRec
@System@UnregisterModule$qqrp17System@TLibModule
@System@RegisterModule$qqrp17System@TLibModule
@System@LoadResourceModule$qqrpc
@System@FindHInstance$qqrpv
@System@@LStrSetLength$qqrv
@System@UniqueString$qqrr17System@AnsiString
@System@@LStrCat3$qqrv
@System@@LStrCat$qqrv
@System@@LStrFromPChar$qqrr17System@AnsiStringpc
@System@@LStrAsg$qqrv
@System@@LStrClr$qqrr17System@AnsiString
@System@@HandleFinally$qqrv
@System@TObject@Dispatch$qqrpv
@System@TObject@$bdtr$qqrv
@System@TObject@FreeInstance$qqrv
@System@TObject@NewInstance$qqrp17System@TMetaClass
@System@IsMemoryManagerSet$qqrv
@System@SetMemoryManager$qqrrx21System@TMemoryManager
@System@IsMultiThread
@System@IsConsole
@System@ExitProc
@System@CmdLine
@System@IsLibrary
@System@MainInstance
@Sysconst@initialization$qqrv
@Sysconst@Finalization$qqrv
@Sysconst@_SRangeError
@Sysutils@initialization$qqrv
@Sysutils@Finalization$qqrv
@Sysutils@Exception@$bctr$qqrx17System@AnsiString
@Sysutils@ERangeError@
@Activex@initialization$qqrv
@Activex@Finalization$qqrv
@Math@initialization$qqrv
@Math@Finalization$qqrv
@Flatsb@initialization$qqrv
@Flatsb@Finalization$qqrv
@Multimon@initialization$qqrv
@Multimon@Finalization$qqrv
@Consts@initialization$qqrv
@Consts@Finalization$qqrv
@Typinfo@initialization$qqrv
@Typinfo@Finalization$qqrv
@Typinfo@DotSep
@Typinfo@BooleanIdents
@Classes@initialization$qqrv
@Classes@Finalization$qqrv
@Classes@TComponent@UpdateRegistry$qqrp17System@TMetaClassox17System@AnsiStringt3
@Classes@TComponent@SafeCallException$qqrp14System@TObjectpv
@Classes@TComponent@WriteState$qqrp15Classes@TWriter
@Classes@TComponent@$bdtr$qqrv
@Classes@TPersistent@Assign$qqrp19Classes@TPersistent
@Classes@TPersistent@$bdtr$qqrv
@Classes@TComponent@
@Graphics@initialization$qqrv
@Graphics@Finalization$qqrv
@Contnrs@initialization$qqrv
@Contnrs@Finalization$qqrv
@Printers@initialization$qqrv
@Printers@Finalization$qqrv
@Stdctrls@initialization$qqrv
@Stdctrls@Finalization$qqrv
@Stdctrls@TButton@
@Stdctrls@TEdit@
@Stdctrls@TLabel@
@Stdctrls@TGroupBox@
@Clipbrd@initialization$qqrv
@Clipbrd@Finalization$qqrv
@Stdactns@initialization$qqrv
@Stdactns@Finalization$qqrv
@Actnlist@initialization$qqrv
@Actnlist@Finalization$qqrv
@Forms@initialization$qqrv
@Forms@Finalization$qqrv
@Forms@TApplication@ShowException$qqrp18Sysutils@Exception
@Forms@TApplication@Run$qqrv
@Forms@TApplication@CreateForm$qqrp17System@TMetaClasspv
@Forms@TApplication@Initialize$qqrv
@Forms@TApplication@SetTitle$qqrx17System@AnsiString
@Forms@TCustomForm@QueryInterface$qqsrx5_GUIDpv
@Forms@TCustomForm@UpdateActions$qqrv
@Forms@TCustomForm@ShowModal$qqrv
@Forms@TCustomForm@SetFocus$qqrv
@Forms@TCustomForm@CloseQuery$qqrv
@Forms@TCustomForm@Resizing$qqr18Forms@TWindowState
@Forms@TCustomForm@PaintWindow$qqrui
@Forms@TCustomForm@SetFocusedControl$qqrp20Controls@TWinControl
@Forms@TCustomForm@DefaultHandler$qqrpv
@Forms@TCustomForm@DestroyWindowHandle$qqrv
@Forms@TCustomForm@CreateWindowHandle$qqrrx22Controls@TCreateParams
@Forms@TCustomForm@CreateWnd$qqrv
@Forms@TCustomForm@CreateParams$qqrr22Controls@TCreateParams
@Forms@TCustomForm@AlignControls$qqrp17Controls@TControlr13Windows@TRect
@Forms@TCustomForm@WndProc$qqrr17Messages@TMessage
@Forms@TCustomForm@ValidateRename$qqrp18Classes@TComponentx17System@AnsiStringt2
@Forms@TCustomForm@SetParent$qqrp20Controls@TWinControl
@Forms@TCustomForm@WantChildKey$qqrp17Controls@TControlr17Messages@TMessage
@Forms@TCustomForm@SetVisible$qqro
@Forms@TCustomForm@SetParentBiDiMode$qqro
@Forms@TCustomForm@GetFloating$qqrv
@Forms@TCustomForm@GetClientRect$qqrv
@Forms@TCustomForm@DefineProperties$qqrp14Classes@TFiler
@Forms@TCustomForm@ReadState$qqrp15Classes@TReader
@Forms@TCustomForm@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Forms@TCustomForm@Loaded$qqrv
@Forms@TCustomForm@DoDestroy$qqrv
@Forms@TCustomForm@DoCreate$qqrv
@Forms@TCustomForm@$bdtr$qqrv
@Forms@TCustomForm@BeforeDestruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponenti
@Forms@TCustomForm@AfterConstruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponent
@Forms@TScrollingWinControl@AdjustClientRect$qqrr13Windows@TRect
@Forms@TScrollingWinControl@AutoScrollInView$qqrp17Controls@TControl
@Forms@TScrollingWinControl@AutoScrollEnabled$qqrv
@Forms@TScrollingWinControl@$bdtr$qqrv
@Forms@Application
@$xp$11Forms@TForm
@Forms@TForm@
@Imglist@initialization$qqrv
@Imglist@Finalization$qqrv
@Menus@initialization$qqrv
@Menus@Finalization$qqrv
@Controls@initialization$qqrv
@Controls@Finalization$qqrv
@Controls@TWinControl@CanAutoSize$qqrrit1
@Controls@TWinControl@AssignTo$qqrp19Classes@TPersistent
@Controls@TWinControl@ConstrainedResize$qqrrit1t1t1
@Controls@TWinControl@CanResize$qqrrit1
@Controls@TWinControl@GetClientOrigin$qqrv
@Controls@TWinControl@GetControlExtents$qqrv
@Controls@TWinControl@GetHandle$qqrv
@Controls@TWinControl@Repaint$qqrv
@Controls@TWinControl@Update$qqrv
@Controls@TWinControl@Invalidate$qqrv
@Controls@TWinControl@GetDeviceContext$qqrrui
@Controls@TWinControl@ShowControl$qqrp17Controls@TControl
@Controls@TWinControl@SetBounds$qqriiii
@Controls@TWinControl@CreateHandle$qqrv
@Controls@TWinControl@DestroyWnd$qqrv
@Controls@TWinControl@$bdtr$qqrv
@Controls@TControl@InitiateAction$qqrv
@Controls@TControl@GetFloatingDockSiteClass$qqrv
@Controls@TControl@SetBiDiMode$qqr17Classes@TBiDiMode
@Controls@TControl@SetText$qqrx17System@AnsiString
@Controls@TControl@GetText$qqrv
@Controls@TControl@SetEnabled$qqro
@Controls@TControl@SetVisible$qqro
@Controls@TControl@SetName$qqrx17System@AnsiString
@Controls@TControl@SetDragMode$qqr18Controls@TDragMode
@Controls@TControl@GetEnabled$qqrv
@Controls@TControl@GetDragImages$qqrv
@Controls@TControl@$bdtr$qqrv
@Extctrls@initialization$qqrv
@Extctrls@Finalization$qqrv
@Toolwin@initialization$qqrv
@Toolwin@Finalization$qqrv
@Comstrs@initialization$qqrv
@Comstrs@Finalization$qqrv
@Comctrls@initialization$qqrv
@Comctrls@Finalization$qqrv
@Comctrls@TProgressBar@SetPosition$qqri
@Comctrls@TProgressBar@SetMax$qqri
@Comctrls@TProgressBar@GetPosition$qqrv
@Comctrls@TProgressBar@GetMax$qqrv
@Comctrls@TProgressBar@

borlndmm

ord2

kernel32

CloseHandle
CopyFileA
CreateDirectoryA
CreateFileA
CreateMutexA
CreateProcessA
DeleteFileA
FreeLibrary
GetCommandLineA
GetFileTime
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
SetCurrentDirectoryA
SetFileTime
SetLastError
Sleep
WritePrivateProfileStringA

wsock32

WSAAsyncSelect
WSACleanup
WSAStartup
closesocket
connect
gethostbyname
htons
ioctlsocket
recv
send
socket
bind

user32

GetWindowLongA
MessageBoxA
PostMessageA
PostQuitMessage
SetWindowLongA

cc3250mt

@$bdele$qpv
@$bnew$qui
@_CatchCleanup$qv
@_InitTermAndUnexPtrs$qv
@_ThrowExceptionLDTC$qpvt1t1t1uiuiuipuct1
__ErrorExit
___CRTL_MEM_GetBorMemPtrs
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
____ExceptionHandler
__argc
__argv
__argv_default_expand
__assert
__exitargv
__findclose
__findfirst
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__matherr
__matherrl
__setargv
__startup
__wargv_default_expand
_access
_atol
_fclose
_fopen
_fread
_fseek
_fwrite
_memcpy
_memmove
_memset
_sprintf
_stricmp
_strrchr
_strstr
_vsnprintf

Exports

Exports

@@Unit1@Finalize
@@Unit1@Initialize
_Client
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/PBUpd.exe
.exe windows:4 windows x86 arch:x86

0d41fdc82459393616a53995da7ed93e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

vcl50.bpl

@System@initialization$qqrv
@System@Finalization$qqrv
@System@UnregisterModule$qqrp17System@TLibModule
@System@RegisterModule$qqrp17System@TLibModule
@System@LoadResourceModule$qqrpc
@System@FindHInstance$qqrpv
@System@@LStrSetLength$qqrv
@System@@LStrFromPChar$qqrr17System@AnsiStringpc
@System@@LStrAsg$qqrv
@System@@LStrClr$qqrr17System@AnsiString
@System@@HandleFinally$qqrv
@System@TObject@Dispatch$qqrpv
@System@TObject@$bdtr$qqrv
@System@TObject@FreeInstance$qqrv
@System@TObject@NewInstance$qqrp17System@TMetaClass
@System@IsMemoryManagerSet$qqrv
@System@SetMemoryManager$qqrrx21System@TMemoryManager
@System@IsMultiThread
@System@IsConsole
@System@ExitProc
@System@CmdLine
@System@IsLibrary
@System@MainInstance
@Sysconst@initialization$qqrv
@Sysconst@Finalization$qqrv
@Sysutils@initialization$qqrv
@Sysutils@Finalization$qqrv
@Activex@initialization$qqrv
@Activex@Finalization$qqrv
@Math@initialization$qqrv
@Math@Finalization$qqrv
@Flatsb@initialization$qqrv
@Flatsb@Finalization$qqrv
@Multimon@initialization$qqrv
@Multimon@Finalization$qqrv
@Consts@initialization$qqrv
@Consts@Finalization$qqrv
@Typinfo@initialization$qqrv
@Typinfo@Finalization$qqrv
@Typinfo@DotSep
@Typinfo@BooleanIdents
@Classes@initialization$qqrv
@Classes@Finalization$qqrv
@Classes@TComponent@UpdateRegistry$qqrp17System@TMetaClassox17System@AnsiStringt3
@Classes@TComponent@SafeCallException$qqrp14System@TObjectpv
@Classes@TComponent@WriteState$qqrp15Classes@TWriter
@Classes@TComponent@$bdtr$qqrv
@Classes@TPersistent@Assign$qqrp19Classes@TPersistent
@Classes@TPersistent@$bdtr$qqrv
@Classes@TComponent@
@Graphics@initialization$qqrv
@Graphics@Finalization$qqrv
@Contnrs@initialization$qqrv
@Contnrs@Finalization$qqrv
@Printers@initialization$qqrv
@Printers@Finalization$qqrv
@Stdctrls@initialization$qqrv
@Stdctrls@Finalization$qqrv
@Stdctrls@TButton@
@Stdctrls@TEdit@
@Stdctrls@TLabel@
@Stdctrls@TGroupBox@
@Clipbrd@initialization$qqrv
@Clipbrd@Finalization$qqrv
@Stdactns@initialization$qqrv
@Stdactns@Finalization$qqrv
@Actnlist@initialization$qqrv
@Actnlist@Finalization$qqrv
@Forms@initialization$qqrv
@Forms@Finalization$qqrv
@Forms@TApplication@ShowException$qqrp18Sysutils@Exception
@Forms@TApplication@Run$qqrv
@Forms@TApplication@CreateForm$qqrp17System@TMetaClasspv
@Forms@TApplication@Initialize$qqrv
@Forms@TApplication@SetTitle$qqrx17System@AnsiString
@Forms@TCustomForm@QueryInterface$qqsrx5_GUIDpv
@Forms@TCustomForm@UpdateActions$qqrv
@Forms@TCustomForm@ShowModal$qqrv
@Forms@TCustomForm@SetFocus$qqrv
@Forms@TCustomForm@CloseQuery$qqrv
@Forms@TCustomForm@Resizing$qqr18Forms@TWindowState
@Forms@TCustomForm@PaintWindow$qqrui
@Forms@TCustomForm@SetFocusedControl$qqrp20Controls@TWinControl
@Forms@TCustomForm@DefaultHandler$qqrpv
@Forms@TCustomForm@DestroyWindowHandle$qqrv
@Forms@TCustomForm@CreateWindowHandle$qqrrx22Controls@TCreateParams
@Forms@TCustomForm@CreateWnd$qqrv
@Forms@TCustomForm@CreateParams$qqrr22Controls@TCreateParams
@Forms@TCustomForm@AlignControls$qqrp17Controls@TControlr13Windows@TRect
@Forms@TCustomForm@WndProc$qqrr17Messages@TMessage
@Forms@TCustomForm@ValidateRename$qqrp18Classes@TComponentx17System@AnsiStringt2
@Forms@TCustomForm@SetParent$qqrp20Controls@TWinControl
@Forms@TCustomForm@WantChildKey$qqrp17Controls@TControlr17Messages@TMessage
@Forms@TCustomForm@SetVisible$qqro
@Forms@TCustomForm@SetParentBiDiMode$qqro
@Forms@TCustomForm@GetFloating$qqrv
@Forms@TCustomForm@GetClientRect$qqrv
@Forms@TCustomForm@DefineProperties$qqrp14Classes@TFiler
@Forms@TCustomForm@ReadState$qqrp15Classes@TReader
@Forms@TCustomForm@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Forms@TCustomForm@Loaded$qqrv
@Forms@TCustomForm@DoDestroy$qqrv
@Forms@TCustomForm@DoCreate$qqrv
@Forms@TCustomForm@$bdtr$qqrv
@Forms@TCustomForm@BeforeDestruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponenti
@Forms@TCustomForm@AfterConstruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponent
@Forms@TScrollingWinControl@AdjustClientRect$qqrr13Windows@TRect
@Forms@TScrollingWinControl@AutoScrollInView$qqrp17Controls@TControl
@Forms@TScrollingWinControl@AutoScrollEnabled$qqrv
@Forms@TScrollingWinControl@$bdtr$qqrv
@Forms@Application
@$xp$11Forms@TForm
@Forms@TForm@
@Imglist@initialization$qqrv
@Imglist@Finalization$qqrv
@Menus@initialization$qqrv
@Menus@Finalization$qqrv
@Controls@initialization$qqrv
@Controls@Finalization$qqrv
@Controls@TWinControl@CanAutoSize$qqrrit1
@Controls@TWinControl@AssignTo$qqrp19Classes@TPersistent
@Controls@TWinControl@ConstrainedResize$qqrrit1t1t1
@Controls@TWinControl@CanResize$qqrrit1
@Controls@TWinControl@GetClientOrigin$qqrv
@Controls@TWinControl@GetControlExtents$qqrv
@Controls@TWinControl@GetHandle$qqrv
@Controls@TWinControl@Repaint$qqrv
@Controls@TWinControl@Update$qqrv
@Controls@TWinControl@Invalidate$qqrv
@Controls@TWinControl@GetDeviceContext$qqrrui
@Controls@TWinControl@ShowControl$qqrp17Controls@TControl
@Controls@TWinControl@SetBounds$qqriiii
@Controls@TWinControl@CreateHandle$qqrv
@Controls@TWinControl@DestroyWnd$qqrv
@Controls@TWinControl@$bdtr$qqrv
@Controls@TControl@InitiateAction$qqrv
@Controls@TControl@GetFloatingDockSiteClass$qqrv
@Controls@TControl@SetBiDiMode$qqr17Classes@TBiDiMode
@Controls@TControl@SetText$qqrx17System@AnsiString
@Controls@TControl@GetText$qqrv
@Controls@TControl@SetEnabled$qqro
@Controls@TControl@SetVisible$qqro
@Controls@TControl@SetName$qqrx17System@AnsiString
@Controls@TControl@SetDragMode$qqr18Controls@TDragMode
@Controls@TControl@GetEnabled$qqrv
@Controls@TControl@GetDragImages$qqrv
@Controls@TControl@$bdtr$qqrv
@Extctrls@initialization$qqrv
@Extctrls@Finalization$qqrv
@Toolwin@initialization$qqrv
@Toolwin@Finalization$qqrv
@Comstrs@initialization$qqrv
@Comstrs@Finalization$qqrv
@Comctrls@initialization$qqrv
@Comctrls@Finalization$qqrv
@Comctrls@TProgressBar@SetPosition$qqri
@Comctrls@TProgressBar@SetMax$qqri
@Comctrls@TProgressBar@SetMin$qqri
@Comctrls@TProgressBar@
@Inifiles@initialization$qqrv
@Inifiles@Finalization$qqrv
@Inifiles@TCustomIniFile@$bctr$qqrx17System@AnsiString
@Inifiles@TIniFile@

borlndmm

ord2

kernel32

CloseHandle
CopyFileA
CreateFileA
CreateMutexA
CreateProcessA
FreeLibrary
GetCommandLineA
GetFileSize
GetFileTime
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
SetCurrentDirectoryA
SetFileTime
SetLastError

wsock32

WSAAsyncSelect
WSACleanup
WSAStartup
closesocket
connect
gethostbyname
htons
ioctlsocket
recv
send
socket
bind

user32

GetWindowLongA
MessageBoxA
PostMessageA
PostQuitMessage
SetWindowLongA

cc3250mt

@$bdele$qpv
@_CatchCleanup$qv
@_InitTermAndUnexPtrs$qv
__ErrorExit
___CRTL_MEM_GetBorMemPtrs
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
____ExceptionHandler
__argc
__argv
__argv_default_expand
__assert
__exitargv
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__matherr
__matherrl
__setargv
__startup
__wargv_default_expand
_atol
_fclose
_fopen
_fwrite
_malloc
_memcpy
_memmove
_memset
_sprintf
_strrchr
_strstr
_vsnprintf

Exports

Exports

@@Unit1@Finalize
@@Unit1@Initialize
_Client
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/PbLogger.dll
.dll windows:5 windows x86 arch:x86

8f506802a3a63887ef26ab74f3e14a10

Code Sign

65:31:99:ca:35:90:cd:03:6e:0a:6a:14:79:c8:85:e1:58:d5:c8:70
Signer

Actual PE Digest

65:31:99:ca:35:90:cd:03:6e:0a:6a:14:79:c8:85:e1:58:d5:c8:70

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

E:\Pb_Prj\PbLogger\Release\PbLogger.pdb

Imports

kernel32

CloseHandle
GetCurrentThreadId
GetVersion
GetFileType
GetStdHandle
GetTickCount
QueryPerformanceCounter
GetCurrentProcessId
GlobalMemoryStatus
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
GetSystemTimeAsFileTime
EncodePointer
DecodePointer
GetCommandLineA
HeapReAlloc
Sleep
HeapSize
GetModuleHandleW
ExitProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
GetCPInfo
GetACP
GetOEMCP
CreateFileA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
HeapCreate
HeapDestroy
GetModuleFileNameW
SetHandleCount
GetStartupInfoW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
IsProcessorFeaturePresent
RtlUnwind
MultiByteToWideChar
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetStdHandle
LoadLibraryW
LCMapStringW
GetStringTypeW
WriteConsoleW
CreateFileW
HeapFree
GetProcessHeap
HeapAlloc
WriteFile
GetLastError
SetEndOfFile
SetFilePointer
ReadFile
GetFileSize
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
IsValidCodePage
GetLocalTime

user32

GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

Exports

Exports

Close
GetDllVersion
GetErrorMsg
GetLogTypeName
GetLogVersion
Log
Logs
Open
Translate
TranslateToText

Sections

.text
Size: 185KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/Profcal.exe
.exe windows:5 windows x86 arch:x86

08f6a1b121da8cedde2d1089d0906ed8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellAboutW

msvcrt

__CxxFrameHandler
_CxxThrowException
wcstoul
toupper
wcschr
memmove
wcslen
_wcsrev
_c_exit
_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
??3@YAXPAX@Z
??1type_info@@UAE@XZ
_controlfp
_except_handler3
?terminate@@YAXXZ

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

kernel32

GetModuleHandleA
LoadLibraryA
GetProcAddress
GlobalCompact
GlobalAlloc
GlobalFree
GlobalReAlloc
lstrcmpW
Sleep
WriteProfileStringW
GetStartupInfoA
GlobalSize
GlobalUnlock
CreateEventW
CreateThread
ResetEvent
lstrcpynW
SetEvent
WaitForSingleObject
CloseHandle
lstrcatW
lstrlenW
LocalReAlloc
LocalFree
LocalAlloc
GetProfileStringW
GlobalLock
GetCommandLineW
lstrcpyW
GetProfileIntW

gdi32

SetBkColor
SetTextColor
SetBkMode

user32

GetMenu
SetDlgItemInt
GetWindowTextW
CheckDlgButton
HideCaret
CallWindowProcW
DrawTextW
WinHelpW
PostQuitMessage
GetDlgCtrlID
ScreenToClient
ChildWindowFromPoint
DefWindowProcW
IsClipboardFormatAvailable
EnableMenuItem
TrackPopupMenuEx
GetDesktopWindow
OpenClipboard
GetClipboardData
CharNextA
CloseClipboard
GetSysColor
DialogBoxParamW
EndDialog
MessageBeep
GetSubMenu
CheckRadioButton
SetWindowTextW
SetFocus
SetCursor
CharNextW
RegisterClassExW
GetSysColorBrush
LoadCursorW
LoadIconW
InvalidateRect
UpdateWindow
ShowWindow
SendMessageW
SetDlgItemTextW
CheckMenuItem
CheckMenuRadioItem
SetWindowPos
OffsetRect
MapWindowPoints
GetClientRect
EnableWindow
LoadMenuW
SetWindowLongW
GetWindowLongW
CreateDialogParamW
GetDlgItem
DestroyMenu
DestroyWindow
SetMenu
GetWindowRect
SystemParametersInfoW
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
IsChild
IsDialogMessageW
GetMessageW
LoadAcceleratorsW
CreateWindowExW
MessageBoxW
LoadStringW
SetProcessDefaultLayout
GetProcessDefaultLayout

Sections

.text
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/PtKernel.dll
.dll windows:4 windows x86 arch:x86

ed9a07d3e1228651420fe072bf366648

Code Sign

0e:1a:1f:7d:32:f6:45:89:ed:73:d1:69:48:18:02:35:62:67:3a:9f
Signer

Actual PE Digest

0e:1a:1f:7d:32:f6:45:89:ed:73:d1:69:48:18:02:35:62:67:3a:9f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcAddress
GetProcessHeap
HeapAlloc
HeapFree
InterlockedExchange
WaitForMultipleObjects
GetExitCodeThread
TerminateThread
LoadLibraryA
VirtualFree
InterlockedIncrement
EnterCriticalSection
GetSystemInfo
LeaveCriticalSection
VirtualAlloc
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetModuleHandleA
GetTickCount
GetLocalTime
WritePrivateProfileStringA
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateDirectoryA
WriteFile
ReadFile
GetFileSize
CreateFileA
InterlockedExchangeAdd
DeleteFileA
OutputDebugStringA
GetCurrentThreadId
CloseHandle
FlushFileBuffers
SetStdHandle
GetOEMCP
GetACP
RtlUnwind
RaiseException
GetLastError
CreateThread
TlsSetValue
TlsGetValue
ExitThread
GetFileAttributesA
InterlockedDecrement
GetCommandLineA
GetVersion
TlsAlloc
TlsFree
SetLastError
InitializeCriticalSection
ExitProcess
SetUnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapSize
IsBadReadPtr
IsBadCodePtr
SetFilePointer
GetStringTypeA
GetStringTypeW
GetCPInfo

user32

MessageBoxA
PostQuitMessage

basetrader

?GetConditionOrderList@CBaseTrader@@QAEIPAUCPtkConditionOrder@@I@Z
?DeletePendingOrder@CBaseTrader@@QAE?AW4PTK_ERRCODE@@H@Z
?GetBankList@CBaseTrader@@QAEIPAUCPtkBank@@I@Z
?GetPendingOrderList@CBaseTrader@@QAEIPAUCPtkOrder@@I@Z
?GetStopList@CBaseTrader@@QAEIPBD0DPAUCPtkStop@@I@Z
?GetPositionDetailList@CBaseTrader@@QAEIPAUCPtkPositionDetail@@I@Z
?GetPositionList@CBaseTrader@@QAEIPAUCPtkPosition@@I@Z
?GetTradeList@CBaseTrader@@QAEIPAUCPtkTrade@@I@Z
?GetOrderList@CBaseTrader@@QAEIPAUCPtkOrder@@I@Z
?TradeNotice@CBaseTrader@@QAEXPAUCPtkKernelContract@@PAUCPtkTrade@@@Z
?OrderChangeNotice@CBaseTrader@@QAEXPAUCPtkOrder@@@Z
?SavePendingOrder@CBaseTrader@@QAEXXZ
?SetCommissionRate@CBaseTrader@@QAEHPAUCPtkCommissionRate@@@Z
?SetMarginRate@CBaseTrader@@QAEHPAUCPtkMarginRate@@@Z
?IsCommissionRateReady@CBaseTrader@@QAEHPAD0@Z
?SetBankAccount@CBaseTrader@@QAEXPAUCPtkBank@@@Z
?AddBank@CBaseTrader@@QAEHPAUCPtkBankEx@@@Z
?AddPositionDetail@CBaseTrader@@QAEHPAUCPtkPositionDetailEx@@@Z
?SortPositionDetails@CBaseTrader@@QAEHXZ
?CalcPositionMargin@CBaseTrader@@QAEXXZ
?CalcTodayOpen@CBaseTrader@@QAEXPBD0DDHPAUCPtkPositionEx@@PAHPAN@Z
?AddPosition@CBaseTrader@@QAEPAUCPtkPositionEx@@PAU2@@Z
?SortPositions@CBaseTrader@@QAEHXZ
?LoadStopOrder@CBaseTrader@@QAEHXZ
?GetOrderSysID@CBaseTrader@@QAEXHPAD@Z
?AddTrade@CBaseTrader@@QAEHPAUCPtkTrade@@@Z
?SortTrades@CBaseTrader@@QAEHXZ
?CalcOrderTradePrice@CBaseTrader@@QAEXH@Z
?AddOrder@CBaseTrader@@QAEPAUCPtkOrderEx@@PAU2@@Z
?StopBatchQuery@CBaseTrader@@QAEHXZ
?SortOrders@CBaseTrader@@QAEHXZ
?CalcCancelTimes@CBaseTrader@@QAEXXZ
?UpdateFrozen@CBaseTrader@@QAEXXZ
?LoadPendingOrder@CBaseTrader@@QAEXXZ
?AddContract@CBaseTrader@@QAEHPAUCPtkTraderContract@@@Z
?SortContracts@CBaseTrader@@QAEHXZ
?ClearOrder@CBaseTrader@@QAEXXZ
?ClearTrade@CBaseTrader@@QAEXXZ
?ClearPosition@CBaseTrader@@QAEXXZ
?ClearPositionDetail@CBaseTrader@@QAEXXZ
?AddTask@CBaseTrader@@QAEXPAUTaskInfo@@@Z
??1CAutoResetEvent@@QAE@XZ
??0CAutoResetEvent@@QAE@XZ
??1CAutoLock@@QAE@XZ
?Set@CAutoResetEvent@@QAEHXZ
??0CPtkLogger@@QAE@XZ
?UpdateRequired@CBaseTrader@@QAEHXZ
?GetAccountSummary@CBaseTrader@@QAEXPAUCPtkAccountSummary@@@Z
?UpdatePositionProfit@CBaseTrader@@QAEXPAUCPtkKernelContract@@@Z
?Wait@CAutoResetEvent@@QAEKK@Z
?SetProxy@CBaseTrader@@QAEXPAUCPtkProxy@@@Z
?SetWorkingPath@CBaseTrader@@QAEXPBD@Z
?SetBroker@CBaseTrader@@QAEXH@Z
?SetBroker@CBaseTrader@@QAEXPBD@Z
?AddTradeServer@CBaseTrader@@QAEXPBD@Z
?AddQuoteServer@CBaseTrader@@QAEXPBD@Z
?IsOpenLimited@CBaseTrader@@QAEHPAUCPtkOptions@@HPAUCPtkError@@@Z
?CalcPosition@CBaseTrader@@QAEXPBD0DDPAH111@Z
?GetOrderByBatchID@CBaseTrader@@QAEHHPAUCPtkOrder@@@Z
?InitBatchQuery@CBaseTrader@@QAEHH@Z
?LoginCompleted@CBaseTrader@@QAEXXZ
?CheckCommissionRate@CBaseTrader@@QAEHPAD0@Z
?CheckMarginRate@CBaseTrader@@QAEHPAD00@Z
?GetOrderByOrderID@CBaseTrader@@QAEHHPAUCPtkOrder@@@Z

jsdftrader

??0CJsdfTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
?GetMaxSubscribable@CJsdfTrader@@UAEHXZ
?SubscribeQuote@CJsdfTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
??1CJsdfTrader@@UAE@XZ

hsftrader

?GetMaxSubscribable@CHsfTrader@@UAEHXZ
??0CHsfTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
??1CHsfTrader@@UAE@XZ
?SubscribeQuote@CHsfTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z

hsstrader

?GetMaxSubscribable@CHssTrader@@UAEHXZ
??0CHssTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
?SubscribeQuote@CHssTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
??1CHssTrader@@UAE@XZ

ddstrader

??0CDdsTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
?GetMaxSubscribable@CDdsTrader@@UAEHXZ
?SubscribeQuote@CDdsTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
??1CDdsTrader@@UAE@XZ

ddftrader

??0CDdfTrader@@QAE@PBDIPAVEBufferPool@@PAVCPtkLogger@@@Z
?GetMaxSubscribable@CDdfTrader@@UAEHXZ
?SubscribeQuote@CDdfTrader@@UAEHPAUCPtkQuoteSubscribe@@H0H0H@Z
??1CDdfTrader@@UAE@XZ

winmm

PlaySoundA

ws2_32

WSAStartup

Exports

Exports

??0CPtKernel@@QAE@ABV0@@Z
??0CPtKernel@@QAE@XZ
??0CPtKernelCallback@@QAE@ABV0@@Z
??0CPtKernelCallback@@QAE@XZ
??1CPtKernel@@UAE@XZ
??1CPtKernelCallback@@UAE@XZ
??4CPtKernel@@QAEAAV0@ABV0@@Z
??4CPtKernelCallback@@QAEAAV0@ABV0@@Z
??_7CPtKernel@@6B@
??_7CPtKernelCallback@@6B@
?AcquireQuote@CPtKernel@@QAEHPAVCBaseTrader@@PAD1PAUPTKQUOTE@@@Z
?AddContract@CPtKernel@@QAEHPAUCPtkKernelContract@@@Z
?AddContractGroup@CPtKernel@@QAEHPAUCPtkKernelContractGroup@@@Z
?AddQuoteServer@CPtKernel@@QAEXPBUCAccountInfo@@PBD@Z
?AddScriptTask@CPtKernel@@QAEXXZ
?AddTask@CPtKernel@@QAEXPAUTaskInfo@@@Z
?AddTradeHours@CPtKernel@@QAEXPBDHH@Z
?AddTradeServer@CPtKernel@@QAEXPBUCAccountInfo@@PBD@Z
?Alloc@CPtKernel@@QAEPAXXZ
?BankTransfer@CPtKernel@@QAEXPBUCAccountInfo@@PAUCBankRequest@@H@Z
?BankTransferResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCBankResult@@H@Z
?BatchQuery@CPtKernel@@QAEHPBUCAccountInfo@@@Z
?CancelOrder@CPtKernel@@QAEXPBUCAccountInfo@@HPBDH@Z
?CancelOrderResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@HH@Z
?ChangePassword@CPtKernel@@QAEXPBUCAccountInfo@@PAUCChangePassRequest@@H@Z
?ChangePasswordResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@H@Z
?CheckLocalSettlement@CPtKernel@@QAEHPAVCBaseTrader@@HHH@Z
?CheckPrivatePath@CPtKernel@@QAEXPBUCAccountInfo@@@Z
?ClearContractGroups@CPtKernel@@QAEXXZ
?ClearContracts@CPtKernel@@QAEXXZ
?CloseAccount@CPtKernel@@QAE?AW4PTK_ERRCODE@@PBUCAccountInfo@@@Z
?CloseKernel@CPtKernel@@SAXPAV1@@Z
?CloseTodaySupported@CPtKernel@@QAEHPBD@Z
?ConfirmSettle@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?ConfirmSettleResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@H@Z
?CreateKernel@CPtKernel@@SAPAV1@XZ
?DeletePendingOrder@CPtKernel@@QAE?AW4PTK_ERRCODE@@PBUCAccountInfo@@H@Z
?ErrorNotice@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@@Z
?ExchangeStatusNotice@CPtKernel@@QAEXPAVCBaseTrader@@PBDW4PTK_EXCHANGE_STATUS@@@Z
?ExecuteNextScript@CPtKernel@@QAEXXZ
?ExecuteScript@CPtKernel@@QAEHPBUCAccountInfo@@PAUCPtkScript@@H@Z
?Free@CPtKernel@@QAEXPAX@Z
?GetAccountName@CPtKernel@@QAEPBDPBUCAccountInfo@@@Z
?GetAccountSummary@CPtKernel@@QAEXPBUCAccountInfo@@PAUCPtkAccountSummary@@@Z
?GetBankList@CPtKernel@@QAEIPBUCAccountInfo@@PAUCPtkBank@@I@Z
?GetCallback@CPtKernel@@QAEPAVCPtKernelCallback@@XZ
?GetConditionOrderList@CPtKernel@@QAEIPBUCAccountInfo@@PAUCPtkConditionOrder@@I@Z
?GetContract@CPtKernel@@QAEPAUCPtkKernelContract@@PAD0H@Z
?GetContractGroup@CPtKernel@@QAEPAUCPtkKernelContractGroup@@PAUCPtkContractGroup@@@Z
?GetContractGroupList@CPtKernel@@QAEIPAUCPtkContractGroup@@I@Z
?GetContractList@CPtKernel@@QAEIPAUCPtkContract@@I@Z
?GetContractListInGroup@CPtKernel@@QAEIPAUCPtkContractGroup@@PAUCPtkContract@@I@Z
?GetExchange@CPtKernel@@QAEPAUCPtkExchangeEx@@PBD@Z
?GetLastError@CPtKernel@@QAEPBDXZ
?GetLastScript@CPtKernel@@QAEPAUCPtkScriptEx@@PAU2@@Z
?GetLastTradeDate@CPtKernel@@QAEHPBUCAccountInfo@@@Z
?GetMacAddr@CPtKernel@@QAEXXZ
?GetOptions@CPtKernel@@QAEXPAUCPtkOptions@@@Z
?GetOrderList@CPtKernel@@QAEIPBUCAccountInfo@@PAUCPtkOrder@@I@Z
?GetPassword@CPtKernel@@QAEPBDPBUCAccountInfo@@@Z
?GetPendingOrderList@CPtKernel@@QAEIPBUCAccountInfo@@PAUCPtkOrder@@I@Z
?GetPositionDetailList@CPtKernel@@QAEIPBUCAccountInfo@@PAUCPtkPositionDetail@@I@Z
?GetPositionList@CPtKernel@@QAEIPBUCAccountInfo@@PAUCPtkPosition@@I@Z
?GetStopList@CPtKernel@@QAEIPBUCAccountInfo@@PBD1DPAUCPtkStop@@I@Z
?GetTask@CPtKernel@@QAEPAUTaskInfo@@XZ
?GetTradeDate@CPtKernel@@QAEHPBUCAccountInfo@@@Z
?GetTradeList@CPtKernel@@QAEIPBUCAccountInfo@@PAUCPtkTrade@@I@Z
?GetTrader@CPtKernel@@QAEPAVCBaseTrader@@PBUCAccountInfo@@@Z
?InsertOrder@CPtKernel@@QAEHPBUCAccountInfo@@PAUCInsertOrderRequest@@@Z
?InsertOrderDirect@CPtKernel@@QAEHPBUCAccountInfo@@PAUCInsertOrderRequest@@H@Z
?InsertOrderResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCInsertOrderResult@@H@Z
?IsTradeClosing@CPtKernel@@QAEHPBDH@Z
?IsTradeDate@CPtKernel@@QAEHPBD@Z
?IsTradeTime@CPtKernel@@QAEHPBD@Z
?Log2@CPtKernel@@QAEXHPBD0@Z
?Log@CPtKernel@@QAEXHPBD@Z
?Login@CPtKernel@@QAEXPBUCAccountInfo@@PBDH11H@Z
?LoginResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCLoginResult@@H@Z
?LowMemoryNotice@CPtKernel@@QAEXPAVCBaseTrader@@@Z
?NetworkStatusNotice@CPtKernel@@QAEXPAVCBaseTrader@@W4PTK_CONNECTION@@W4PTK_CONNECTION_STATUS@@@Z
?OnScriptCancelOrderError@CPtKernel@@QAEHPBUCAccountInfo@@PAUCPtkError@@HH@Z
?OnScriptInsertOrderError@CPtKernel@@QAEHPBUCAccountInfo@@PAUCPtkError@@HH@Z
?OnScriptOrderChange@CPtKernel@@QAEHPAUCPtkOrder@@@Z
?OnScriptTimer@CPtKernel@@QAEXXZ
?OnTimer@CPtKernel@@QAEXXZ
?OnTradeReconnected@CPtKernel@@QAEXPBUCAccountInfo@@@Z
?OpenAccount@CPtKernel@@QAE?AW4PTK_ERRCODE@@PBUCAccountInfo@@I@Z
?OrderChangeNotice@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkOrder@@@Z
?PreprocessInsertOrder@CPtKernel@@QAEXPAVCBaseTrader@@PAUTaskInfo@@@Z
?ProceedLogin@CPtKernel@@QAEXPBUCAccountInfo@@@Z
?QueryAccount@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryAccountResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkAccountSummary@@H@Z
?QueryBank@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryBankAccount@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryBankAccountResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkBank@@HH@Z
?QueryBankBalance@CPtKernel@@QAEXPBUCAccountInfo@@PAUCBankRequest@@H@Z
?QueryBankBalanceResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCBankResult@@H@Z
?QueryBankResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkBank@@HH@Z
?QueryBankTransfer@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryBankTransferResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCBankTransfer@@HH@Z
?QueryCFMMC@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryCFMMCResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCQueryCFMMCResult@@H@Z
?QueryCommissionRate@CPtKernel@@QAEXPBUCAccountInfo@@PBD1H@Z
?QueryCommissionRateResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkCommissionRate@@H@Z
?QueryContracts@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryContractsResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkContractBase@@HH@Z
?QueryMarginRate@CPtKernel@@QAEXPBUCAccountInfo@@PBD1DH@Z
?QueryMarginRateResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkMarginRate@@H@Z
?QueryMaxVolume@CPtKernel@@QAEXPBUCAccountInfo@@PAUCQueryMaxVolumeRequest@@H@Z
?QueryMaxVolumeResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCQueryMaxVolumeResult@@H@Z
?QueryNotice@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryNoticeResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCQueryNoticeResult@@H@Z
?QueryOrder@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryOrderResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkOrder@@HH@Z
?QueryPosition@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryPositionDetail@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryPositionDetailResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkPositionDetail@@HH@Z
?QueryPositionResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkPositionInternal@@HH@Z
?QuerySettle@CPtKernel@@QAEXPBUCAccountInfo@@HH@Z
?QuerySettleResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCQuerySettleResult@@HH@Z
?QueryTimeResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCQueryTimeResult@@@Z
?QueryTrade@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryTradeByDate@CPtKernel@@QAEXPBUCAccountInfo@@HHH@Z
?QueryTradeByDateResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkTrade@@HH@Z
?QueryTradeNumber@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryTradeNumberResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@H@Z
?QueryTradeParam@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?QueryTradeParamResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkTradeParams@@H@Z
?QueryTradeResult@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkError@@PAUCPtkTrade@@HH@Z
?RemoveScript@CPtKernel@@QAEHPAUCPtkScriptEx@@@Z
?RequestID@CPtKernel@@QAEHXZ
?SaveSettlement@CPtKernel@@QAEHPBUCAccountInfo@@PBD@Z
?SetAuthorization@CPtKernel@@QAEXPBUCAccountInfo@@PBD@Z
?SetBroker@CPtKernel@@QAEXPBUCAccountInfo@@H@Z
?SetBroker@CPtKernel@@QAEXPBUCAccountInfo@@PBD@Z
?SetCallback@CPtKernel@@QAEXPAVCPtKernelCallback@@@Z
?SetExchangeTime@CPtKernel@@QAEXPAUCQueryTimeResult@@@Z
?SetNetworkType@CPtKernel@@QAEXW4PTK_NETWORKTYPE@@@Z
?SetOptions@CPtKernel@@QAEXPAUCPtkOptions@@@Z
?SetProxy@CPtKernel@@QAEXPAUCPtkProxy@@@Z
?SetQueryInterval@CPtKernel@@QAEXI@Z
?SetRiskType@CPtKernel@@QAEXD@Z
?SetWorkingPath@CPtKernel@@QAEXPBD@Z
?SortContracts@CPtKernel@@QAEHXZ
?SystemInitNotice@CPtKernel@@QAEXPAVCBaseTrader@@H@Z
?SystemNotice@CPtKernel@@QAEXPAVCBaseTrader@@PBD@Z
?T1Contract@CPtKernel@@QAEHPBD0@Z
?TradeNotice@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkTrade@@@Z
?UpdateExchangeTime@CPtKernel@@QAEXXZ
?UpdateOrderListNotice@CPtKernel@@QAEXPAVCBaseTrader@@@Z
?UpdatePositionDetailListNotice@CPtKernel@@QAEXPAVCBaseTrader@@@Z
?UpdatePositionListNotice@CPtKernel@@QAEXPAVCBaseTrader@@@Z
?UpdatePositionProfit@CPtKernel@@QAEXPAVCBaseTrader@@PAUCPtkKernelContract@@@Z
?UpdateTradeListNotice@CPtKernel@@QAEXPAVCBaseTrader@@@Z
?WaitTask@CPtKernel@@QAEKK@Z
?WorkThread@CPtKernel@@SGIPAX@Z

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/PttAuth_ctp.dat
pobo5/system/PttAuth_jsd.dat
pobo5/system/SSPXEncode.dll
.dll windows:4 windows x86 arch:x86

10b2db114905731a65b251beb89ff2f2

Code Sign

d5:50:28:c1:de:d3:a4:cc:5c:19:1a:60:d7:33:fd:8c:65:93:d0:29
Signer

Actual PE Digest

d5:50:28:c1:de:d3:a4:cc:5c:19:1a:60:d7:33:fd:8c:65:93:d0:29

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection

msvcrt

free
malloc
rand
strncpy
__dllonexit
_onexit
_initterm
_adjust_fdiv
_ltoa

Exports

Exports

SSPX_Cleanup
SSPX_Decode
SSPX_Encode
SSPX_Init

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 558B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 596B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/Server.ini
pobo5/system/SfitTrader.dll
.dll windows:4 windows x86 arch:x86

6d3515ef6906359c235421ae47697f02

Code Sign

1f:29:2b:e6:4f:dc:32:45:9c:90:d9:d0:7f:de:32:93:c7:8d:79:7f
Signer

Actual PE Digest

1f:29:2b:e6:4f:dc:32:45:9c:90:d9:d0:7f:de:32:93:c7:8d:79:7f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetPrivateProfileStringA
GetPrivateProfileIntA
ResetEvent
GetExitCodeThread
TerminateThread
WaitForMultipleObjects
SetEvent
Sleep
GetProcAddress
LoadLibraryA
GetModuleHandleA
WritePrivateProfileStringA
GetLocalTime
CreateDirectoryA
CopyFileA
FindClose
FindNextFileA
FindFirstFileA
GetTickCount
WaitForSingleObject
SetLastError
DeleteFileA
CloseHandle
EnterCriticalSection
HeapFree
HeapAlloc
GetProcessHeap
ReadFile
CreateFileA
GetSystemInfo
VirtualAlloc
InterlockedIncrement
VirtualFree
WideCharToMultiByte
MultiByteToWideChar
GetOEMCP
GetACP
IsBadCodePtr
FlushFileBuffers
CreateEventA
DeleteCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
IsBadWritePtr
HeapCreate
HeapDestroy
GetEnvironmentVariableA
InterlockedExchange
InterlockedExchangeAdd
InterlockedDecrement
GetStringTypeA
GetStringTypeW
GetVersionExA
GetCPInfo
LCMapStringA
CompareStringA
InitializeCriticalSection
LCMapStringW
GetLastError
CompareStringW
GetFileSize
SetFilePointer
SetEndOfFile
GetFileType
GetFileInformationByHandle
WriteFile
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetFileAttributesA
CreateThread
GetCurrentThreadId
TlsSetValue
TlsGetValue
ExitThread
RaiseException
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
GetVersion
IsBadReadPtr
SetHandleCount
GetStdHandle
GetStartupInfoA
SetStdHandle
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
TlsAlloc
TlsFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameA
SetEnvironmentVariableA

user32

PostMessageA
DispatchMessageA
TranslateMessage
PeekMessageA
MessageBoxA
PostQuitMessage

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

version

VerQueryValueA
GetFileVersionInfoA

ws2_32

gethostbyname
inet_addr
inet_ntoa

Exports

Exports

ChangePassword
GetExchangeID
GetInvestor
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankBalance
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryContract
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMarginRate
QueryMaxOrderVolume
QueryMoneyHistory
QueryOrder
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TraderDllFree
TransferBankToFuture
TransferFutureToBank

Sections

.text
Size: 280KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

STLPORT_
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_DD.dll
.dll windows:4 windows x86 arch:x86

3d86eea496307a3949f57c763019cfdd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindFirstFileA
DeleteFileA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
LoadLibraryA
GetModuleHandleA
ReadFile
WriteFile
CreateFileA
SetEndOfFile
SetFilePointer
GetSystemInfo
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
FindNextFileA
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
VirtualFree
WideCharToMultiByte
MultiByteToWideChar
FreeLibrary
FindClose
WritePrivateProfileStringA
CopyFileA
CreateDirectoryA
SetLastError
ResetEvent
CreateEventA
SetEvent
GetLocalTime
GetPrivateProfileIntA
GetPrivateProfileStringA
GetTickCount
WaitForSingleObject
GetExitCodeThread
TerminateThread
CloseHandle
InterlockedExchangeAdd
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
Sleep
VirtualAlloc
GetCurrentThreadId
GetLastError
GetVersion
GetFileType
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
GetVersionExA
CreateThread
TlsSetValue
ExitThread
GetFileAttributesA
RtlUnwind
RaiseException
GetTimeZoneInformation
GetSystemTime
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
TlsAlloc
TlsFree
TlsGetValue
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
InitializeCriticalSection
InterlockedDecrement
HeapSize
HeapDestroy
HeapCreate
IsBadWritePtr
SetUnhandledExceptionFilter
SetHandleCount
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
FlushFileBuffers
SetStdHandle
GetStringTypeA
GetStringTypeW
GetCPInfo
LCMapStringA
LCMapStringW
InterlockedExchange

user32

MessageBoxA
PostQuitMessage
PostMessageA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW

advapi32

RegisterEventSourceA
DeregisterEventSource
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventA

ws2_32

htons
inet_addr
setsockopt
connect
socket
recv
ioctlsocket
select
__WSAFDIsSet
WSAGetLastError
send
closesocket
WSAStartup
gethostbyname

informationcollect

apexsoft_getsysteminfo

Exports

Exports

ChangePassword
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetInvestorEx
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OptionSelfCloseAction
OptionSelfCloseInsert
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankBalance
QueryBankBalanceEx
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMaxOrderVolume
QueryMoneyHistory
QueryOptionSelfClose
QueryOrder
QueryQuote
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingAccountEx
QuoteInsert
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TradeInitializeExt
TraderDllFree
TransferBankToFuture
TransferBankToFutureEx
TransferFutureToBank
TransferFutureToBankEx

Sections

.text
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_HSO32.dll
.dll windows:4 windows x86 arch:x86

617453b0fc30f1629ff70bab8bc89898

Code Sign

15:eb:c4:c7:5d:f5:0c:ba:d9:1d:3f:ec:47:79:1a:e5
Certificate

Issuer

CN=WoSign Class 3 Code Signing CA G2,O=WoSign CA Limited,C=CN

Not Before

23/05/2016, 06:38

Not After

23/09/2017, 06:38

Subject

CN=上海澎博财经资讯有限公司,O=上海澎博财经资讯有限公司,L=上海市,ST=上海市,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftKernelCodeSigning

Key Usages

KeyUsageDigitalSignature

37:a6:0e:92:5f:23:f8:0c:fd:cd:97:65:92:98:c3:54
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/11/2014, 00:58

Not After

08/11/2029, 00:58

Subject

CN=WoSign Class 3 Code Signing CA G2,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

19:c2:85:30:e9:3b:36
Certificate

Issuer

CN=StartCom Certification Authority,OU=Secure Digital Certificate Signing,O=StartCom Ltd.,C=IL

Not Before

17/09/2006, 22:46

Not After

31/12/2019, 23:59

Subject

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

6a:0f:db:e6:78:b3:1e:23:2c:ba:5a:e1:4d:9d:bf:1b
Certificate

Issuer

CN=WoSign Time Stamping Services CA G2,O=WoSign CA Limited,C=CN

Not Before

08/04/2015, 01:00

Not After

08/04/2023, 01:00

Subject

CN=WoSign Time Stamping Signer G2,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0f:db:e6:78:b3:1e:23:2c:ba:5a:e1:4d:9d:bf:1b
Certificate

Issuer

CN=WoSign Time Stamping Services CA G2,O=WoSign CA Limited,C=CN

Not Before

08/04/2015, 01:00

Not After

08/04/2023, 01:00

Subject

CN=WoSign Time Stamping Signer G2,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

51:ec:ef:d7:72:99:ba:1a:dd:28:02:43:1e:86:e2:0e
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/04/2015, 00:58

Not After

08/04/2025, 00:58

Subject

CN=WoSign Time Stamping Services CA G2,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

48:5a:5a:dc:44:85:fb:24:17:64:be:04:23:e2:13:e6:f5:f4:2d:6a:64:fd:b2:d4:48:6b:5e:69:ef:e3:a4:1d
Signer

Actual PE Digest

48:5a:5a:dc:44:85:fb:24:17:64:be:04:23:e2:13:e6:f5:f4:2d:6a:64:fd:b2:d4:48:6b:5e:69:ef:e3:a4:1d

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

InterlockedIncrement
GetPrivateProfileStringA
GetPrivateProfileIntA
ResetEvent
TerminateThread
GetExitCodeThread
WaitForSingleObject
SetEvent
InterlockedExchangeAdd
GetLastError
InterlockedExchange
SetLastError
SetCurrentDirectoryA
GetCurrentDirectoryA
GetLocalTime
CreateDirectoryA
CopyFileA
WritePrivateProfileStringA
DeleteFileA
Sleep
GetTickCount
FindClose
FindNextFileA
FindFirstFileA
HeapFree
HeapAlloc
DeleteCriticalSection
GetProcAddress
LoadLibraryA
GetModuleHandleA
ReadFile
CreateFileA
LeaveCriticalSection
EnterCriticalSection
WriteFile
GetFileSize
SetEndOfFile
SetFilePointer
GetSystemInfo
VirtualAlloc
VirtualFree
WideCharToMultiByte
MultiByteToWideChar
GetOEMCP
GetACP
IsBadCodePtr
FlushFileBuffers
InitializeCriticalSectionAndSpinCount
CloseHandle
GetProcessHeap
CreateEventA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
IsBadWritePtr
HeapCreate
HeapDestroy
GetEnvironmentVariableA
InterlockedDecrement
GetStringTypeA
GetStringTypeW
GetVersionExA
GetCPInfo
LCMapStringA
InitializeCriticalSection
LCMapStringW
GetFileType
GetFileInformationByHandle
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
RtlUnwind
CreateThread
GetCurrentThreadId
TlsSetValue
TlsGetValue
ExitThread
GetFileAttributesA
RaiseException
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
GetVersion
IsBadReadPtr
SetHandleCount
GetStdHandle
GetStartupInfoA
SetStdHandle
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
TlsAlloc
TlsFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameA

user32

PeekMessageA
TranslateMessage
PostMessageA
MessageBoxA
PostQuitMessage
DispatchMessageA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

t2sdk

NewConfig
NewPacker
NewSubscribeParam
NewUnPacker
NewConnection

ws2_32

closesocket

Exports

Exports

ChangePassword
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetInvestorEx
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankAccount
QueryBankBalance
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryCommissionRate
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMarginRate
QueryMaxOrderVolume
QueryMoneyHistory
QueryOrder
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingParams
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TraderDllFree
TransferBankToFuture
TransferFutureToBank

Sections

.text
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

STLPORT_
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_HSUFT.dll
.dll windows:4 windows x86 arch:x86

8a53fe0ae85c8daf3f912e7e43244668

Code Sign

9d:4b:75:00:bc:9b:cc:f0:c9:60:66:d9:7f:df:ef:d3:36:23:6f:01
Signer

Actual PE Digest

9d:4b:75:00:bc:9b:cc:f0:c9:60:66:d9:7f:df:ef:d3:36:23:6f:01

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

WritePrivateProfileStringA
DeleteFileA
FindClose
FindNextFileA
FindFirstFileA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
LoadLibraryA
GetModuleHandleA
ReadFile
CreateFileA
WriteFile
CopyFileA
SetEndOfFile
SetFilePointer
GetSystemInfo
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
VirtualAlloc
LeaveCriticalSection
EnterCriticalSection
VirtualFree
WideCharToMultiByte
MultiByteToWideChar
FreeLibrary
CreateDirectoryA
GetLocalTime
GetCurrentDirectoryA
SetCurrentDirectoryA
InterlockedExchange
WaitForSingleObject
InterlockedExchangeAdd
Sleep
SetLastError
GetLastError
SetEvent
ResetEvent
GetPrivateProfileIntA
GetPrivateProfileStringA
InterlockedIncrement
CloseHandle
GetTickCount
GetFileAttributesA
RtlUnwind
RaiseException
GetTimeZoneInformation
GetSystemTime
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
InitializeCriticalSection
InterlockedDecrement
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetUnhandledExceptionFilter
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
IsBadWritePtr
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
CreateEventA

user32

GetUserObjectInformationW
GetProcessWindowStation
GetDesktopWindow
PeekMessageA
DispatchMessageA
TranslateMessage
PostQuitMessage
PostMessageA
MessageBoxA

advapi32

RegisterEventSourceA
DeregisterEventSource
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventA

hstraderapi

?CreateFtdcTraderApi@CThostFtdcTraderApi@HundsunAPI@@SAPAV12@PBD@Z

ws2_32

socket
closesocket

Exports

Exports

ChangePassword
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankAccount
QueryBankBalance
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryCommissionRate
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMarginRate
QueryMaxOrderVolume
QueryMoneyHistory
QueryOrder
QueryQuote
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingParams
QuoteInsert
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TraderDllFree
TransferBankToFuture
TransferFutureToBank

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_HSUFX.dll
.dll windows:4 windows x86 arch:x86

46423e82cca78bea0704c704be410194

Code Sign

04:44:c0
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

22/10/2008, 12:07

Not After

31/12/2029, 12:07

Subject

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

17:ef:72:b4:15:7d:6f:4b:68:e4:bd:d5:75:e5:cc:ae
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

09/11/2016, 08:45

Not After

09/11/2026, 08:45

Subject

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:7a:5b:a3:a0:d3:12:6b:51:7f:c2:93:be:7a:a0:48
Certificate

Issuer

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Not Before

23/05/2018, 07:01

Not After

07/10/2020, 11:08

Subject

CN=上海澎博财经资讯有限公司,O=上海澎博财经资讯有限公司,L=上海市,ST=上海市,C=CN,1.2.840.113549.1.9.1=#0c13737570706f727440706f626f2e6e65742e636e

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftKernelCodeSigning

Key Usages

KeyUsageDigitalSignature

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

a6:1a:df:a7:6d:71:88:1e:cb:f9:eb:d7:20:29:e4:64:55:e5:15:e8:79:16:f7:71:65:f5:ff:fd:e9:f6:28:ce
Signer

Actual PE Digest

a6:1a:df:a7:6d:71:88:1e:cb:f9:eb:d7:20:29:e4:64:55:e5:15:e8:79:16:f7:71:65:f5:ff:fd:e9:f6:28:ce

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

SetCurrentDirectoryA
GetCurrentDirectoryA
CreateDirectoryA
CopyFileA
WritePrivateProfileStringA
DeleteFileA
Sleep
FindClose
FindNextFileA
FindFirstFileA
HeapFree
HeapAlloc
GetProcessHeap
GetLastError
LoadLibraryA
GetModuleHandleA
GetComputerNameA
ReadFile
CreateFileA
OutputDebugStringA
GetCurrentThreadId
SetLastError
SetEndOfFile
SetFilePointer
WideCharToMultiByte
MultiByteToWideChar
WaitForMultipleObjects
TerminateThread
GetExitCodeThread
ResetEvent
GetPrivateProfileIntA
GetPrivateProfileStringA
InterlockedIncrement
CloseHandle
CreateEventA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LeaveCriticalSection
GetTickCount
GetLocalTime
InterlockedExchange
InterlockedExchangeAdd
WriteFile
WaitForSingleObject
GetProcAddress
SetEnvironmentVariableA
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
SetStdHandle
GetStringTypeA
GetStringTypeW
GetVersionExA
GetCPInfo
GetLocaleInfoA
LCMapStringA
CompareStringA
InitializeCriticalSection
lstrcmpiA
EnumSystemLocalesA
LCMapStringW
CompareStringW
GetLocaleInfoW
GetVersion
GetFileType
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
FreeLibrary
RtlUnwind
GetModuleFileNameA
RaiseException
CreateThread
TlsSetValue
ExitThread
GetFileAttributesA
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetSystemTime
InterlockedDecrement
GetCommandLineA
HeapReAlloc
TlsAlloc
TlsFree
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
ExitProcess
VirtualAlloc
IsBadWritePtr
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
HeapSize
UnhandledExceptionFilter
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
FlushFileBuffers
SetEvent

user32

MessageBoxA
PeekMessageA
TranslateMessage
DispatchMessageA
PostMessageA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW

advapi32

RegisterEventSourceA
DeregisterEventSource
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventA

t2sdkwrapper

NewWrapperConfig
NewWrapperPacker
NewWrapperUnPacker
NewWrapperBizMessage
NewWrapperConnection

hsfutusysteminfo

hundsun_getsysteminfo
hundsun_encrypt

ws2_32

gethostbyname
__WSAFDIsSet
closesocket
select
connect
ioctlsocket
setsockopt
socket
htons

Exports

Exports

ChangePassword
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetInvestorEx
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OptionSelfCloseAction
OptionSelfCloseInsert
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankAccount
QueryBankBalance
QueryBankBalanceEx
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryCommissionRate
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMarginRate
QueryMaxOrderVolume
QueryMoneyHistory
QueryOptionSelfClose
QueryOrder
QueryQuote
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingAccountEx
QueryTradingParams
QuoteInsert
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TradeInitializeExt
TraderDllFree
TransferBankToFuture
TransferBankToFutureEx
TransferFutureToBank
TransferFutureToBankEx

Sections

.text
Size: 316KB - Virtual size: 314KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_JSD.dll
.dll windows:4 windows x86 arch:x86

11113759e26c83ab9244ab3a001ec5f0

Code Sign

04:44:c0
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

22/10/2008, 12:07

Not After

31/12/2029, 12:07

Subject

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

17:ef:72:b4:15:7d:6f:4b:68:e4:bd:d5:75:e5:cc:ae
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

09/11/2016, 08:45

Not After

09/11/2026, 08:45

Subject

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:7a:5b:a3:a0:d3:12:6b:51:7f:c2:93:be:7a:a0:48
Certificate

Issuer

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Not Before

23/05/2018, 07:01

Not After

07/10/2020, 11:08

Subject

CN=上海澎博财经资讯有限公司,O=上海澎博财经资讯有限公司,L=上海市,ST=上海市,C=CN,1.2.840.113549.1.9.1=#0c13737570706f727440706f626f2e6e65742e636e

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftKernelCodeSigning

Key Usages

KeyUsageDigitalSignature

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2014, 00:00

Not After

22/10/2024, 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2021, 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d8:e8:06:2d:7a:9e:be:16:ce:2e:82:e1:3a:a2:95:60:46:30:09:d7:d9:7a:c5:4a:ba:b8:6b:ba:7e:28:47:fb
Signer

Actual PE Digest

d8:e8:06:2d:7a:9e:be:16:ce:2e:82:e1:3a:a2:95:60:46:30:09:d7:d9:7a:c5:4a:ba:b8:6b:ba:7e:28:47:fb

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

FindNextFileA
FindFirstFileA
GetTickCount
WaitForSingleObject
SetLastError
DeleteFileA
LeaveCriticalSection
FindClose
HeapFree
HeapAlloc
GetProcessHeap
ReadFile
CreateFileA
WideCharToMultiByte
MultiByteToWideChar
CopyFileA
CreateDirectoryA
GetLocalTime
WritePrivateProfileStringA
GetModuleHandleA
LoadLibraryA
GetProcAddress
Sleep
SetEvent
WaitForMultipleObjects
TerminateThread
GetExitCodeThread
ResetEvent
GetPrivateProfileIntA
GetPrivateProfileStringA
CloseHandle
CreateEventA
DeleteCriticalSection
EnterCriticalSection
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
InterlockedDecrement
GetStringTypeA
GetStringTypeW
GetVersionExA
GetCPInfo
LCMapStringA
CompareStringA
InitializeCriticalSection
LCMapStringW
GetLastError
CompareStringW
GetSystemInfo
GetFileSize
SetFilePointer
SetEndOfFile
GetFileType
GetFileInformationByHandle
WriteFile
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
GetCurrentThreadId
GetVersion
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
FreeLibrary
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetFileAttributesA
CreateThread
TlsSetValue
ExitThread
RaiseException
GetSystemTimeAsFileTime
GetCommandLineA
IsBadReadPtr
SetHandleCount
GetStartupInfoA
SetStdHandle
HeapReAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
TlsAlloc
TlsFree
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
FlushFileBuffers
IsBadCodePtr
GetACP
GetOEMCP
SetEnvironmentVariableA
InitializeCriticalSectionAndSpinCount

user32

GetProcessWindowStation
GetDesktopWindow
PostMessageA
DispatchMessageA
TranslateMessage
PeekMessageA
MessageBoxA
GetUserObjectInformationW

advapi32

RegisterEventSourceA
DeregisterEventSource
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventA

version

GetFileVersionInfoA
VerQueryValueA

ws2_32

inet_addr
gethostbyname
inet_ntoa

kcc_api

KingStar_GetSystemInfo

Exports

Exports

ChangePassword
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetInvestorEx
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OptionSelfCloseAction
OptionSelfCloseInsert
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankBalance
QueryBankBalanceEx
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMarginRate
QueryMaxOrderVolume
QueryMoneyHistory
QueryOptionSelfClose
QueryOrder
QueryQuote
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingAccountEx
QuoteInsert
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TraderDllFree
TransferBankToFuture
TransferBankToFutureEx
TransferFutureToBank
TransferFutureToBankEx

Sections

.text
Size: 440KB - Virtual size: 439KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

STLPORT_
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_ctp.dll
.dll windows:4 windows x86 arch:x86

01f00d8c22a59d1641f2fdcda736a103

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentDirectoryA
GetLocalTime
CreateDirectoryA
CopyFileA
WritePrivateProfileStringA
DeleteFileA
FindClose
FindNextFileA
FindFirstFileA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
LoadLibraryA
GetModuleHandleA
ReadFile
SetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WriteFile
SetEndOfFile
SetFilePointer
GetSystemInfo
VirtualAlloc
VirtualFree
WideCharToMultiByte
MultiByteToWideChar
FreeLibrary
InterlockedExchange
WaitForSingleObject
SetLastError
GetLastError
InterlockedExchangeAdd
SetEvent
WaitForMultipleObjects
TerminateThread
GetExitCodeThread
ResetEvent
GetPrivateProfileIntA
GetPrivateProfileStringA
InterlockedIncrement
GetTickCount
Sleep
CloseHandle
CreateFileA
QueryPerformanceCounter
CreateThread
GetCurrentThreadId
TlsSetValue
ExitThread
GetFileAttributesA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
RaiseException
GetSystemTimeAsFileTime
InterlockedDecrement
HeapReAlloc
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapSize
InitializeCriticalSection
TlsAlloc
TlsFree
TlsGetValue
UnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
IsBadWritePtr
LCMapStringA
LCMapStringW
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetVersionExA
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentProcessId
GlobalMemoryStatus
CreateEventA

user32

GetUserObjectInformationW
GetProcessWindowStation
GetDesktopWindow
PeekMessageA
DispatchMessageA
TranslateMessage
PostQuitMessage
MessageBoxA
PostMessageA

advapi32

RegisterEventSourceA
DeregisterEventSource
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventA

thosttraderapi

?CreateFtdcTraderApi@CThostFtdcTraderApi@@SAPAV1@PBD@Z

ws2_32

socket
closesocket

Exports

Exports

ChangePassword
ChangePasswordEx
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetInvestorEx
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OptionSelfCloseAction
OptionSelfCloseInsert
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankAccount
QueryBankBalance
QueryBankBalanceEx
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryCommissionRate
QueryCommonUse
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMarginRate
QueryMaxOrderVolume
QueryMoneyHistory
QueryOptionSelfClose
QueryOrder
QueryQuote
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingAccountEx
QueryTradingParams
QuoteInsert
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TradeInitializeExt
TraderDllFree
TransferBankToFuture
TransferBankToFutureEx
TransferFutureToBank
TransferFutureToBankEx

Sections

.text
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_ctp_se.dll
.dll windows:4 windows x86 arch:x86

4e1cee8134e862b26113b7883da95ee1

Code Sign

04:44:c0
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

22/10/2008, 12:07

Not After

31/12/2029, 12:07

Subject

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

17:ef:72:b4:15:7d:6f:4b:68:e4:bd:d5:75:e5:cc:ae
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

09/11/2016, 08:45

Not After

09/11/2026, 08:45

Subject

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:7a:5b:a3:a0:d3:12:6b:51:7f:c2:93:be:7a:a0:48
Certificate

Issuer

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Not Before

23/05/2018, 07:01

Not After

07/10/2020, 11:08

Subject

CN=上海澎博财经资讯有限公司,O=上海澎博财经资讯有限公司,L=上海市,ST=上海市,C=CN,1.2.840.113549.1.9.1=#0c13737570706f727440706f626f2e6e65742e636e

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftKernelCodeSigning

Key Usages

KeyUsageDigitalSignature

04:cd:3f:85:68:ae:76:c6:1b:b0:fe:71:60:cc:a7:6d
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/10/2019, 00:00

Not After

17/10/2030, 00:00

Subject

CN=TIMESTAMP-SHA256-2019-10-15,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

ce:23:1c:a0:fd:b8:82:b6:b9:66:90:cb:7a:d1:99:96:46:3d:94:0b:68:ff:f3:cc:a5:f6:dc:8f:11:57:e5:eb
Signer

Actual PE Digest

ce:23:1c:a0:fd:b8:82:b6:b9:66:90:cb:7a:d1:99:96:46:3d:94:0b:68:ff:f3:cc:a5:f6:dc:8f:11:57:e5:eb

Digest Algorithm

sha256

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateDirectoryA
CopyFileA
WritePrivateProfileStringA
Sleep
DeleteFileA
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetTickCount
FindClose
FindNextFileA
FindFirstFileA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
LoadLibraryA
GetModuleHandleA
ReadFile
CreateFileA
WriteFile
SetEndOfFile
SetFilePointer
WideCharToMultiByte
MultiByteToWideChar
GetLocalTime
GetCurrentDirectoryA
SetCurrentDirectoryA
InterlockedExchange
WaitForSingleObject
SetLastError
GetLastError
InterlockedExchangeAdd
SetEvent
WaitForMultipleObjects
TerminateThread
GetExitCodeThread
ResetEvent
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateThread
GetCurrentThreadId
TlsSetValue
InterlockedIncrement
GetTimeZoneInformation
GetSystemTime
GetFileAttributesA
RtlUnwind
RaiseException
HeapSize
GetSystemTimeAsFileTime
InterlockedDecrement
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
VirtualAlloc
IsBadWritePtr
TlsAlloc
TlsFree
TlsGetValue
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetVersionExA
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
FreeLibrary
CloseHandle
ExitThread
CreateEventA

user32

GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA
DispatchMessageA
TranslateMessage
PeekMessageA
GetDesktopWindow
PostMessageA

advapi32

RegisterEventSourceA
DeregisterEventSource
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventA

thosttraderapi_se

?CreateFtdcTraderApi@CThostFtdcTraderApi@@SAPAV1@PBD@Z

ws2_32

closesocket
socket

Exports

Exports

ChangePassword
ChangePasswordEx
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetInvestorEx
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OptionSelfCloseAction
OptionSelfCloseInsert
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankAccount
QueryBankBalance
QueryBankBalanceEx
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMaxOrderVolume
QueryMoneyHistory
QueryOptionSelfClose
QueryOrder
QueryQuote
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingAccountEx
QueryTradingParams
QuoteInsert
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TradeInitializeExt
TraderDllFree
TransferBankToFuture
TransferBankToFutureEx
TransferFutureToBank
TransferFutureToBankEx

Sections

.text
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SfitTrader_hs06.dll
.dll windows:4 windows x86 arch:x86

bd6d2d464584928fea2169f736a8aaad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateDirectoryA
CopyFileA
WritePrivateProfileStringA
FindClose
FindNextFileA
FindFirstFileA
SetLastError
DeleteFileA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
LoadLibraryA
GetModuleHandleA
ResetEvent
WriteFile
GetFileSize
CreateFileA
SetEndOfFile
SetFilePointer
GetSystemInfo
VirtualAlloc
InterlockedIncrement
VirtualFree
WideCharToMultiByte
MultiByteToWideChar
FreeLibrary
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
CreateEventA
SetEvent
EnterCriticalSection
LeaveCriticalSection
GetLocalTime
GetPrivateProfileIntA
GetPrivateProfileStringA
GetTickCount
WaitForSingleObject
GetExitCodeThread
TerminateThread
CloseHandle
InterlockedExchangeAdd
Sleep
ReadFile
SetEnvironmentVariableA
GetOEMCP
GetACP
IsBadCodePtr
FlushFileBuffers
InterlockedDecrement
GetStringTypeA
GetStringTypeW
GetVersionExA
GetCPInfo
LCMapStringA
CompareStringA
InitializeCriticalSection
LCMapStringW
GetLastError
CompareStringW
GetFileType
GetFileInformationByHandle
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
GetCurrentThreadId
GetVersion
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
CreateThread
TlsSetValue
ExitThread
RaiseException
RtlUnwind
GetFileAttributesA
GetTimeZoneInformation
GetSystemTime
GetSystemTimeAsFileTime
HeapReAlloc
GetCommandLineA
IsBadReadPtr
SetHandleCount
GetStartupInfoA
SetStdHandle
TlsAlloc
TlsFree
TlsGetValue
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapSize
HeapDestroy
HeapCreate
IsBadWritePtr
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
InterlockedExchange

user32

MessageBoxA
PostQuitMessage
PostMessageA
GetDesktopWindow
GetProcessWindowStation
GetUserObjectInformationW

advapi32

RegisterEventSourceA
DeregisterEventSource
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventA

ws2_32

htons
inet_addr
setsockopt
connect
socket
recv
ioctlsocket
select
__WSAFDIsSet
WSAGetLastError
send
closesocket
WSAStartup
gethostbyname

Exports

Exports

ChangePassword
ExecOrderAction
ExecOrderInsert
GetExchangeID
GetInvestor
GetInvestorEx
GetNameOfTradeSystem
GetServerCount
GetServerName
GetShortNameOfTradeSystem
GetTradeDate
GetTraderDllVersion
OrderAction
OrderInsert
OrderInsertEx
ProcessCloseToday
QueryBank
QueryBankBalance
QueryBankBalanceEx
QueryBankTransferDetail
QueryBrokerNotice
QueryCFMMC
QueryContract
QueryExecOrder
QueryFutureToBankLimit
QueryInvestorPosition
QueryInvestorPositionDetail
QueryMaxOrderVolume
QueryMoneyHistory
QueryOrder
QueryQuote
QuerySettlementInfo
QuerySingleOrder
QuerySinglePosition
QueryTrade
QueryTradeStatistics
QueryTradingAccount
QueryTradingAccountEx
QuoteInsert
SettlementInfoConfirm
TradeFinalize
TradeInitialize
TraderDllFree
TransferBankToFuture
TransferBankToFutureEx
TransferFutureToBank
TransferFutureToBankEx

Sections

.text
Size: 404KB - Virtual size: 401KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

STLPORT_
Size: 4KB - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 896B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/Skin/0/0/Skin.ini
pobo5/system/Skin/0/0/TBLEFT.bmp
pobo5/system/Skin/0/0/TBRIGHT.bmp
pobo5/system/Skin/0/0/Thumbs.db
pobo5/system/Skin/0/0/closenormal.bmp
pobo5/system/Skin/0/0/leftbottom.bmp
pobo5/system/Skin/0/0/lefttop.bmp
pobo5/system/Skin/0/0/maxnormal.bmp
pobo5/system/Skin/0/0/minnormal.bmp
pobo5/system/Skin/0/0/restorenormal.bmp
pobo5/system/Skin/0/0/rightbottom.bmp
pobo5/system/Skin/0/0/righttop.bmp
pobo5/system/Skin/0/0/toolbar.bmp
pobo5/system/Skin/0/1/Skin.ini
pobo5/system/Skin/0/1/Thumbs.db
pobo5/system/Skin/0/1/closenormal.bmp
pobo5/system/Skin/0/1/leftbottom.bmp
pobo5/system/Skin/0/1/lefttop.bmp
pobo5/system/Skin/0/1/maxnormal.bmp
pobo5/system/Skin/0/1/minnormal.bmp
pobo5/system/Skin/0/1/restorenormal.bmp
pobo5/system/Skin/0/1/rightbottom.bmp
pobo5/system/Skin/0/1/righttop.bmp
pobo5/system/Skin/0/1/toolbar.bmp
pobo5/system/Skin/0/2/Skin.ini
pobo5/system/Skin/0/2/Thumbs.db
pobo5/system/Skin/0/2/closenormal.bmp
pobo5/system/Skin/0/2/leftbottom.bmp
pobo5/system/Skin/0/2/lefttop.bmp
pobo5/system/Skin/0/2/maxnormal.bmp
pobo5/system/Skin/0/2/minnormal.bmp
pobo5/system/Skin/0/2/restorenormal.bmp
pobo5/system/Skin/0/2/rightbottom.bmp
pobo5/system/Skin/0/2/righttop.bmp
pobo5/system/Skin/0/2/toolbar.bmp
pobo5/system/Skin/1/0/Skin.ini
pobo5/system/Skin/1/0/TBLEFT.bmp
pobo5/system/Skin/1/0/TBRIGHT.bmp
pobo5/system/Skin/1/0/Thumbs.db
pobo5/system/Skin/1/0/closenormal.bmp
pobo5/system/Skin/1/0/leftbottom.bmp
pobo5/system/Skin/1/0/lefttop.bmp
pobo5/system/Skin/1/0/maxnormal.bmp
pobo5/system/Skin/1/0/minnormal.bmp
pobo5/system/Skin/1/0/restorenormal.bmp
pobo5/system/Skin/1/0/rightbottom.bmp
pobo5/system/Skin/1/0/righttop.bmp
pobo5/system/Skin/1/0/toolbar.bmp
pobo5/system/Skin/1/1/Skin.ini
pobo5/system/Skin/1/1/TBLEFT.bmp
pobo5/system/Skin/1/1/TBRIGHT.bmp
pobo5/system/Skin/1/1/Thumbs.db
pobo5/system/Skin/1/1/closenormal.bmp
pobo5/system/Skin/1/1/leftbottom.bmp
pobo5/system/Skin/1/1/lefttop.bmp
pobo5/system/Skin/1/1/maxnormal.bmp
pobo5/system/Skin/1/1/minnormal.bmp
pobo5/system/Skin/1/1/restorenormal.bmp
pobo5/system/Skin/1/1/rightbottom.bmp
pobo5/system/Skin/1/1/righttop.bmp
pobo5/system/Skin/1/1/toolbar.bmp
pobo5/system/Skin/1/2/Skin.ini
pobo5/system/Skin/1/2/Thumbs.db
pobo5/system/Skin/1/2/closenormal.bmp
pobo5/system/Skin/1/2/leftbottom.bmp
pobo5/system/Skin/1/2/lefttop.bmp
pobo5/system/Skin/1/2/maxnormal.bmp
pobo5/system/Skin/1/2/minnormal.bmp
pobo5/system/Skin/1/2/restorenormal.bmp
pobo5/system/Skin/1/2/rightbottom.bmp
pobo5/system/Skin/1/2/righttop.bmp
pobo5/system/Skin/1/2/toolbar.bmp
pobo5/system/SpeedTester.exe
.exe windows:5 windows x86 arch:x86

bcfacffbfc886080068f3b4d95989268

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\5.3VC\Release\SpeedTester.pdb

Imports

svrmgrinterface

SMI_FreeRTDataSvrObjArray
SMI_CreateRTDataSvrObjArray
SMI_Finalize
SMI_UpdateDynData
SMI_CheckDynData
SMI_UpdateSvrDynData
SMI_GetRTDataSvrs
SMI_GetSvrStatus
SMI_GetRTDataSvrCount
SMI_GetSvrGroupByServerID
SMI_FreeSvrGroupArray
SMI_GetSvrGroups
SMI_CreateSvrGroupArray
SMI_GetSvrGroupsCount
SMI_ClearSpeedReport
SMI_ReloadAllData
SMI_Initialize
SMI_SvrSpeedTest

shlwapi

PathIsDirectoryA

kernel32

IsDebuggerPresent
GetACP
CreateFileW
SetEnvironmentVariableA
FlushFileBuffers
WriteConsoleW
SetStdHandle
GetStringTypeW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LCMapStringW
CompareStringW
OutputDebugStringW
LoadLibraryExW
IsValidCodePage
LeaveCriticalSection
EnterCriticalSection
GetFileAttributesExW
GetTimeZoneInformation
GetCPInfo
MultiByteToWideChar
RaiseException
GetLastError
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
CloseHandle
DeleteFileW
FindFirstFileW
DecodePointer
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateMutexA
OutputDebugStringA
Sleep
FindNextFileW
CreateThread
WaitForSingleObject
lstrcpyA
lstrcatA
CreateDirectoryA
GetPrivateProfileStringW
WideCharToMultiByte
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCommandLineW
EncodePointer
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
RtlUnwind
SetLastError
GetCurrentThreadId
ExitProcess
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
GetStdHandle
GetFileType
GetStartupInfoW
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
GetOEMCP

user32

wsprintfW

shell32

SHGetFolderPathA

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/SvrMgrInterface.dll
.dll windows:5 windows x86 arch:x86

5f9cadd799792763235a0ac84681b8e3

Code Sign

04:44:c0
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

22/10/2008, 12:07

Not After

31/12/2029, 12:07

Subject

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

7e:93:eb:fb:7c:c6:4e:59:ea:4b:9a:77:d4:06:fc:3b
Certificate

Issuer

CN=Thawte Timestamping CA,OU=Thawte Certification,O=Thawte,L=Durbanville,ST=Western Cape,C=ZA

Not Before

21/12/2012, 00:00

Not After

30/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

0e:cf:f4:38:c8:fe:bf:35:6e:04:d8:6a:98:1b:1a:50
Certificate

Issuer

CN=Symantec Time Stamping Services CA - G2,O=Symantec Corporation,C=US

Not Before

18/10/2012, 00:00

Not After

29/12/2020, 23:59

Subject

CN=Symantec Time Stamping Services Signer - G4,O=Symantec Corporation,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

17:ef:72:b4:15:7d:6f:4b:68:e4:bd:d5:75:e5:cc:ae
Certificate

Issuer

CN=Certum Trusted Network CA,OU=Certum Certification Authority,O=Unizeto Technologies S.A.,C=PL

Not Before

09/11/2016, 08:45

Not After

09/11/2026, 08:45

Subject

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

10:7a:5b:a3:a0:d3:12:6b:51:7f:c2:93:be:7a:a0:48
Certificate

Issuer

CN=WoSign Code Signing CA,O=WoSign CA Limited,C=CN

Not Before

23/05/2018, 07:01

Not After

07/10/2020, 11:08

Subject

CN=上海澎博财经资讯有限公司,O=上海澎博财经资讯有限公司,L=上海市,ST=上海市,C=CN,1.2.840.113549.1.9.1=#0c13737570706f727440706f626f2e6e65742e636e

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftKernelCodeSigning

Key Usages

KeyUsageDigitalSignature

e0:6a:13:9b:0d:e7:7b:b1:fa:58:70:03:bd:84:57:30:5c:4a:15:a0:d0:a7:21:bf:cf:dc:b8:5a:e9:31:a8:98
Signer

Actual PE Digest

e0:6a:13:9b:0d:e7:7b:b1:fa:58:70:03:bd:84:57:30:5c:4a:15:a0:d0:a7:21:bf:cf:dc:b8:5a:e9:31:a8:98

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\5.3VC\Release\SvrMgrInterface.pdb

Imports

netapi32

Netbios

rpcrt4

UuidCreate
UuidToStringA
RpcStringFreeA

ws2_32

recv
send
WSASetLastError
gethostbyname
inet_addr
WSAStartup
getsockopt
__WSAFDIsSet
connect
htons
ioctlsocket
WSASocketA
select
WSASend
WSAGetLastError
WSARecv
shutdown
closesocket

kernel32

GetCommandLineA
SetEndOfFile
CreateFileW
WriteConsoleW
SetStdHandle
OutputDebugStringW
LoadLibraryExW
HeapReAlloc
ReadConsoleW
GetFileAttributesExW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
FlushFileBuffers
SetFilePointerEx
ReadFile
GetConsoleMode
GetConsoleCP
GetFileType
Sleep
GetLastError
lstrlenA
CreateEventA
ResetEvent
WaitForSingleObject
WideCharToMultiByte
MultiByteToWideChar
GetLocalTime
lstrcpyA
FindFirstFileA
GetSystemTime
SystemTimeToFileTime
FindNextFileA
DeleteFileA
GetTickCount
InterlockedExchange
SetEvent
CloseHandle
CreateThread
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
CreateDirectoryA
CreateMutexA
ReleaseMutex
GetProcessHeap
GetModuleFileNameW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetStringTypeW
IsDebuggerPresent
IsProcessorFeaturePresent
HeapAlloc
HeapFree
GetCurrentThreadId
RaiseException
RtlUnwind
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetLastError
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetStartupInfoW
GetModuleHandleW
GetProcAddress
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsValidCodePage
GetACP
GetOEMCP
ExitProcess
GetModuleHandleExW
AreFileApisANSI
HeapSize
GetStdHandle
WriteFile

user32

wsprintfA

Exports

Exports

SMI_BreakSpeedTest
SMI_CalcScore
SMI_ChangeRTDataSvr
SMI_CheckDynData
SMI_CheckIfGreenWayServerExist
SMI_CheckIntoRTDataSvr
SMI_ClearSpeedReport
SMI_CreateProxyInfo
SMI_CreateRTDataSvrObj
SMI_CreateRTDataSvrObjArray
SMI_CreateSvrGroup
SMI_CreateSvrGroupArray
SMI_CreateSvrStatusObj
SMI_Finalize
SMI_FreeProxyInfo
SMI_FreeRTDataSvrObj
SMI_FreeRTDataSvrObjArray
SMI_FreeSvrGroup
SMI_FreeSvrGroupArray
SMI_FreeSvrStatusObj
SMI_GetInterfaceVersion
SMI_GetMacAddress
SMI_GetProxyInfo
SMI_GetRTDataSvrCount
SMI_GetRTDataSvrs
SMI_GetSvrGroupByServerID
SMI_GetSvrGroups
SMI_GetSvrGroupsCount
SMI_GetSvrStatus
SMI_Initialize
SMI_QueryCurrentRTDataSvr
SMI_ReloadAllData
SMI_ReloadDynData
SMI_ReportSvrNotUsable
SMI_ReqRTDataSvr
SMI_SaveDynData
SMI_SvrSpeedTest
SMI_UpdateDynData
SMI_UpdateProxyInfo
SMI_UpdateSvrDynData

Sections

.text
Size: 321KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/USTPmduserapi.dll
.dll windows:4 windows x86 arch:x86

06e7769acd1e0c9e78a3f9214be69d06

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReleaseMutex
CreateSemaphoreA
ReleaseSemaphore
CreateThread
Sleep
GetCurrentThreadId
ExitThread
FindClose
FindNextFileA
GetLastError
FindFirstFileA
WaitForSingleObject
GetCurrentProcessId
GlobalMemoryStatus
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
GetTickCount
QueryPerformanceCounter
FlushConsoleInputBuffer
GetStdHandle
CloseHandle
CreateMutexA
CreateFileA
CreateFileMappingA
MapViewOfFile
GetLocalTime
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetLastError
InitializeCriticalSection
GetNumberOfConsoleInputEvents
PeekConsoleInputA
GetConsoleMode
SetConsoleMode
ReadConsoleInputA
GetLocaleInfoW
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetOEMCP
GetACP
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
UnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
LCMapStringW
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
RtlUnwind
RaiseException
GetTimeZoneInformation
GetSystemTime
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetModuleFileNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetSystemTimeAsFileTime
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
SetConsoleCtrlHandler
FatalAppExitA
DebugBreak
WriteFile
OutputDebugStringA
SetHandleCount
GetFileType
GetStartupInfoA
HeapFree
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
GetCurrentThread
SetUnhandledExceptionFilter
FlushFileBuffers
GetModuleHandleA
WideCharToMultiByte
HeapAlloc
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetFilePointer
ReadFile
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
WriteConsoleA

gdi32

CreateCompatibleDC
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
GetObjectA
BitBlt
GetBitmapBits
DeleteObject
DeleteDC
CreateDCA

wsock32

WSASetLastError
shutdown
gethostname
WSACleanup
bind
listen
inet_addr
WSAStartup
socket
setsockopt
inet_ntoa
htons
connect
accept
getpeername
closesocket
send
recv
WSAGetLastError
__WSAFDIsSet
select
ioctlsocket

Exports

Exports

??0CUstpFtdcMduserApi@@QAE@ABV0@@Z
??0CUstpFtdcMduserApi@@QAE@XZ
??1CUstpFtdcMduserApi@@IAE@XZ
??4CUstpFtdcMduserApi@@QAEAAV0@ABV0@@Z
??_7CUstpFtdcMduserApi@@6B@
?CreateFtdcMduserApi@CUstpFtdcMduserApi@@SAPAV1@PBD@Z
?GetVersion@CUstpFtdcMduserApi@@SAPBDAAH0@Z

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/USTPtraderapi.dll
.dll windows:4 windows x86 arch:x86

06e7769acd1e0c9e78a3f9214be69d06

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

ReleaseMutex
CreateSemaphoreA
ReleaseSemaphore
CreateThread
Sleep
GetCurrentThreadId
ExitThread
FindClose
FindNextFileA
GetLastError
FindFirstFileA
WaitForSingleObject
GetCurrentProcessId
GlobalMemoryStatus
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
GetTickCount
QueryPerformanceCounter
FlushConsoleInputBuffer
GetStdHandle
CloseHandle
CreateMutexA
CreateFileA
CreateFileMappingA
MapViewOfFile
GetLocalTime
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetLastError
InitializeCriticalSection
GetNumberOfConsoleInputEvents
PeekConsoleInputA
GetConsoleMode
SetConsoleMode
ReadConsoleInputA
GetLocaleInfoW
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetOEMCP
GetACP
IsBadCodePtr
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
UnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
LCMapStringW
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
RtlUnwind
RaiseException
GetTimeZoneInformation
GetSystemTime
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetModuleFileNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetSystemTimeAsFileTime
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
SetConsoleCtrlHandler
FatalAppExitA
DebugBreak
WriteFile
OutputDebugStringA
SetHandleCount
GetFileType
GetStartupInfoA
HeapFree
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
GetCurrentThread
SetUnhandledExceptionFilter
FlushFileBuffers
GetModuleHandleA
WideCharToMultiByte
HeapAlloc
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetFilePointer
ReadFile
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
SetStdHandle
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
WriteConsoleA

gdi32

CreateCompatibleDC
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
GetObjectA
BitBlt
GetBitmapBits
DeleteObject
DeleteDC
CreateDCA

wsock32

WSASetLastError
shutdown
gethostname
WSACleanup
bind
listen
inet_addr
WSAStartup
socket
setsockopt
inet_ntoa
htons
connect
accept
getpeername
closesocket
send
recv
WSAGetLastError
__WSAFDIsSet
select
ioctlsocket

Exports

Exports

??0CUstpFtdcTraderApi@@QAE@ABV0@@Z
??0CUstpFtdcTraderApi@@QAE@XZ
??1CUstpFtdcTraderApi@@IAE@XZ
??4CUstpFtdcTraderApi@@QAEAAV0@ABV0@@Z
??_7CUstpFtdcTraderApi@@6B@
?CreateFtdcTraderApi@CUstpFtdcTraderApi@@SAPAV1@PBD@Z
?GetVersion@CUstpFtdcTraderApi@@SAPBDAAH0@Z

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/UpdCliAssist.bat
pobo5/system/UpdCliAssist.exe
.exe windows:4 windows x86 arch:x86

bc7668b9747bf42a781096784d00a860

Code Sign

08:50:26:b7:19:d8:b9:aa:5b:36:78:01:6b:4a:24:3d:86:44:dc:6f
Signer

Actual PE Digest

08:50:26:b7:19:d8:b9:aa:5b:36:78:01:6b:4a:24:3d:86:44:dc:6f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteExA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

netapi32

Netbios

kernel32

DeleteCriticalSection
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
ReadFile
SetEndOfFile
SetConsoleCtrlHandler
GetModuleFileNameA
CloseHandle
FreeLibrary
GetProcAddress
LoadLibraryA
Process32Next
OpenProcess
GetCurrentProcessId
Process32First
CreateToolhelp32Snapshot
GetVersionExA
GetShortPathNameA
TerminateProcess
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
CreateFileA
GetExitCodeProcess
CreateProcessA
GetFileAttributesA
Sleep
InterlockedDecrement
InterlockedIncrement
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
GetCurrentProcess
HeapReAlloc
HeapAlloc
HeapSize
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
IsBadWritePtr
SetFilePointer
GetCPInfo
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
GetACP
GetOEMCP

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
pobo5/system/UpdClient.exe
.exe windows:4 windows x86 arch:x86

749d20f39a41f8f331b9409723f6394e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetErrorMode
GetCurrentDirectoryA
FileTimeToSystemTime
FileTimeToLocalFileTime
lstrlenW
GlobalSize
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
ExitThread
GetStartupInfoA
ExitProcess
HeapReAlloc
GetACP
LCMapStringA
LCMapStringW
FatalAppExitA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
GetOEMCP
GetUserDefaultLCID
SetStdHandle
SetConsoleCtrlHandler
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
CloseHandle
WaitForSingleObject
CreateProcessA
DeleteFileA
GetExitCodeProcess
SetFileAttributesA
CopyFileA
CreateFileA
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
Process32Next
OpenProcess
GetCurrentProcessId
Process32First
CreateToolhelp32Snapshot
GetVersionExA
GetShortPathNameA
TerminateProcess
GetFileAttributesA
Sleep
GetFileSize
CreateThread
SetFileTime
SetEndOfFile
WriteFile
ReadFile
SetFilePointer
CreateDirectoryA
GetTickCount
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCPInfo
GlobalFlags
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
lstrcmpA
GetCurrentThread
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
WritePrivateProfileStringA
HeapAlloc
GetProfileStringA
MoveFileA
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
lstrcpynA
GetLastError
SetLastError
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
GetProcessHeap
SuspendThread
GetCurrentThreadId
SetThreadPriority
GetCommandLineA
SetEvent
ResetEvent
FindResourceA
LoadResource
SizeofResource
LockResource
GlobalAlloc
ResumeThread
GlobalLock
GlobalUnlock
MulDiv
GlobalFree
CreateEventA
MoveFileExA
HeapSize
HeapFree
EnumSystemLocalesA

user32

SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
RegisterClipboardFormatA
RemoveMenu
PostThreadMessageA
DestroyIcon
ReleaseCapture
SetCapture
GetDesktopWindow
PtInRect
GetClassNameA
LoadStringA
GetSysColorBrush
LoadCursorA
wvsprintfA
DestroyMenu
MapDialogRect
SetWindowContextHelpId
CreateDialogIndirectParamA
SetCursor
ShowOwnedPopups
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
CharUpperA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
MoveWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
UpdateWindow
SendDlgItemMessageA
InflateRect
GetFocus
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
IsChild
GetParent
GetCapture
WinHelpA
InsertMenuA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
GetClassLongA
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindowLongA
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
GetDialogBaseUnits
GetMenuStringA
MapWindowPoints
DeleteMenu
IsIconic
GetWindowPlacement
OemToCharA
CharToOemA
GetMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
SetWindowsHookExA
GetWindowRect
KillTimer
GetSystemMetrics
LoadImageA
SendMessageA
GetCursorPos
CreatePopupMenu
AppendMenuA
ShowWindow
SetForegroundWindow
SetWindowPos
MessageBoxA
GetTopWindow
GetWindowThreadProcessId
GetWindow
LoadIconA
EndDialog
PostQuitMessage
FindWindowA
SetTimer
EnableWindow
CopyRect
GetSysColor
FillRect
InvalidateRect
GetDC
ReleaseDC
SetRect
PeekMessageA
DispatchMessageA
TranslateMessage
PostMessageA
HideCaret
UnregisterClassA
WindowFromPoint
wsprintfA
WaitMessage
SetScrollInfo

gdi32

SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
SetROP2
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
CreateRectRgnIndirect
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
SetRectRgn
CombineRgn
CopyMetaFileA
CreateDCA
SetPolyFillMode
SetBkMode
SelectPalette
GetStockObject
RestoreDC
SaveDC
StartDocA
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateSolidBrush
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
DeleteDC
DeleteObject
GetTextExtentPointA
ExtSelectClipRgn
CreateDIBitmap
GetDeviceCaps

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegEnumKeyA
RegCloseKey
RegOpenKeyA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegSetValueA
RegCreateKeyA
RegQueryValueExA
RegQueryValueA

shell32

DragQueryFileA
DragFinish
SHGetFileInfoA
DragAcceptFiles
Shell_NotifyIconA
ShellExecuteExA
ExtractIconA

comctl32

ord17
ord13
ord14
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Write

oledlg

ord8

ole32

CLSIDFromProgID
CLSIDFromString
OleFlushClipboard
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
OleRun
CoDisconnectObject
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleDuplicateData
CreateBindCtx
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
ReadFmtUserTypeStg
ReadClassStg
StringFromCLSID
CoTreatAsClass
ReleaseStgMedium
CoRegisterMessageFilter
CoRegisterClassObject
OleSetClipboard
CoRevokeClassObject
OleIsCurrentClipboard
CreateStreamOnHGlobal

olepro32

ord251
ord253

oleaut32

LoadTypeLi
SysStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
SysAllocStringByteLen
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SysReAllocStringLen
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

netapi32

Netbios

ws2_32

gethostbyname
listen
bind
__WSAFDIsSet
WSACleanup
WSAStartup
WSAGetLastError
accept
ioctlsocket
connect
select
closesocket
getpeername
socket
send
recv
htons
inet_addr

Sections

.text
Size: 360KB - Virtual size: 359KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/Usertool.exe
.exe windows:4 windows x86 arch:x86

07eb83cf30a30ea9fd7f47d56a8d9a5c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

vcl50.bpl

@System@initialization$qqrv
@System@Finalization$qqrv
@System@UnregisterModule$qqrp17System@TLibModule
@System@RegisterModule$qqrp17System@TLibModule
@System@LoadResourceModule$qqrpc
@System@FindHInstance$qqrpv
@System@@LStrFromPChar$qqrr17System@AnsiStringpc
@System@@LStrAsg$qqrv
@System@@LStrClr$qqrr17System@AnsiString
@System@@HandleFinally$qqrv
@System@TObject@Dispatch$qqrpv
@System@TObject@$bdtr$qqrv
@System@TObject@FreeInstance$qqrv
@System@TObject@NewInstance$qqrp17System@TMetaClass
@System@IsMemoryManagerSet$qqrv
@System@SetMemoryManager$qqrrx21System@TMemoryManager
@System@GetMemoryManager$qqrr21System@TMemoryManager
@System@IsMultiThread
@System@IsConsole
@System@ExitProc
@System@CmdLine
@System@IsLibrary
@System@MainInstance
@Sysconst@initialization$qqrv
@Sysconst@Finalization$qqrv
@Sysutils@initialization$qqrv
@Sysutils@Finalization$qqrv
@Sysutils@Exception@$bctr$qqrx17System@AnsiString
@Sysutils@EControlC@
@Sysutils@EStackOverflow@
@Sysutils@EPrivilege@
@Sysutils@EAccessViolation@
@Sysutils@EUnderflow@
@Sysutils@EOverflow@
@Sysutils@EZeroDivide@
@Sysutils@EInvalidOp@
@Sysutils@EIntOverflow@
@Sysutils@ERangeError@
@Sysutils@EDivByZero@
@Activex@initialization$qqrv
@Activex@Finalization$qqrv
@Math@initialization$qqrv
@Math@Finalization$qqrv
@Flatsb@initialization$qqrv
@Flatsb@Finalization$qqrv
@Multimon@initialization$qqrv
@Multimon@Finalization$qqrv
@Consts@initialization$qqrv
@Consts@Finalization$qqrv
@Typinfo@initialization$qqrv
@Typinfo@Finalization$qqrv
@Typinfo@DotSep
@Typinfo@BooleanIdents
@Classes@initialization$qqrv
@Classes@Finalization$qqrv
@Classes@TComponent@UpdateRegistry$qqrp17System@TMetaClassox17System@AnsiStringt3
@Classes@TComponent@SafeCallException$qqrp14System@TObjectpv
@Classes@TComponent@WriteState$qqrp15Classes@TWriter
@Classes@TComponent@$bdtr$qqrv
@Classes@TPersistent@Assign$qqrp19Classes@TPersistent
@Classes@TPersistent@$bdtr$qqrv
@Classes@Rect$qqriiii
@Classes@Point$qqrii
@Classes@TComponent@
@Graphics@initialization$qqrv
@Graphics@Finalization$qqrv
@Graphics@TCanvas@SetPixel$qqrii15Graphics@TColor
@Graphics@TCanvas@TextWidth$qqrx17System@AnsiString
@Graphics@TCanvas@TextOut$qqriix17System@AnsiString
@Graphics@TCanvas@Rectangle$qqriiii
@Graphics@TCanvas@Polygon$qqrpx14Windows@TPointxi
@Graphics@TCanvas@MoveTo$qqrii
@Graphics@TCanvas@LineTo$qqrii
@Graphics@TCanvas@FillRect$qqrrx13Windows@TRect
@Graphics@TBrush@SetColor$qqr15Graphics@TColor
@Graphics@TPen@SetWidth$qqri
@Graphics@TPen@SetMode$qqr17Graphics@TPenMode
@Graphics@TPen@SetColor$qqr15Graphics@TColor
@Graphics@TFont@SetStyle$qqr47System@%Set$t19Graphics@TFontStyle$iuc$0$iuc$3%
@Graphics@TFont@GetStyle$qqrv
@Graphics@TFont@SetSize$qqri
@Graphics@TFont@SetName$qqrx17System@AnsiString
@Graphics@TFont@GetName$qqrv
@Graphics@TFont@SetHeight$qqri
@Graphics@TFont@GetHeight$qqrv
@Graphics@TFont@SetColor$qqr15Graphics@TColor
@Contnrs@initialization$qqrv
@Contnrs@Finalization$qqrv
@Printers@initialization$qqrv
@Printers@Finalization$qqrv
@Stdctrls@initialization$qqrv
@Stdctrls@Finalization$qqrv
@Stdctrls@TCustomListBox@SetItemIndex$qqri
@Stdctrls@TCustomListBox@GetItemIndex$qqrv
@Stdctrls@TCustomComboBox@SetItemIndex$qqri
@Stdctrls@TCustomComboBox@GetItemIndex$qqrv
@Stdctrls@TListBox@
@Stdctrls@TCheckBox@
@Stdctrls@TButton@
@Stdctrls@TComboBox@
@Stdctrls@TMemo@
@Stdctrls@TLabel@
@Stdctrls@TGroupBox@
@Clipbrd@initialization$qqrv
@Clipbrd@Finalization$qqrv
@Stdactns@initialization$qqrv
@Stdactns@Finalization$qqrv
@Actnlist@initialization$qqrv
@Actnlist@Finalization$qqrv
@Forms@initialization$qqrv
@Forms@Finalization$qqrv
@Forms@TApplication@ShowException$qqrp18Sysutils@Exception
@Forms@TApplication@Run$qqrv
@Forms@TApplication@CreateForm$qqrp17System@TMetaClasspv
@Forms@TApplication@Initialize$qqrv
@Forms@TApplication@SetTitle$qqrx17System@AnsiString
@Forms@TCustomForm@QueryInterface$qqsrx5_GUIDpv
@Forms@TCustomForm@UpdateActions$qqrv
@Forms@TCustomForm@ShowModal$qqrv
@Forms@TCustomForm@SetFocus$qqrv
@Forms@TCustomForm@CloseQuery$qqrv
@Forms@TCustomForm@Close$qqrv
@Forms@TCustomForm@Resizing$qqr18Forms@TWindowState
@Forms@TCustomForm@PaintWindow$qqrui
@Forms@TCustomForm@SetFocusedControl$qqrp20Controls@TWinControl
@Forms@TCustomForm@DefaultHandler$qqrpv
@Forms@TCustomForm@DestroyWindowHandle$qqrv
@Forms@TCustomForm@CreateWindowHandle$qqrrx22Controls@TCreateParams
@Forms@TCustomForm@CreateWnd$qqrv
@Forms@TCustomForm@CreateParams$qqrr22Controls@TCreateParams
@Forms@TCustomForm@AlignControls$qqrp17Controls@TControlr13Windows@TRect
@Forms@TCustomForm@WndProc$qqrr17Messages@TMessage
@Forms@TCustomForm@ValidateRename$qqrp18Classes@TComponentx17System@AnsiStringt2
@Forms@TCustomForm@SetParent$qqrp20Controls@TWinControl
@Forms@TCustomForm@WantChildKey$qqrp17Controls@TControlr17Messages@TMessage
@Forms@TCustomForm@SetParentBiDiMode$qqro
@Forms@TCustomForm@GetFloating$qqrv
@Forms@TCustomForm@GetClientRect$qqrv
@Forms@TCustomForm@DefineProperties$qqrp14Classes@TFiler
@Forms@TCustomForm@ReadState$qqrp15Classes@TReader
@Forms@TCustomForm@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Forms@TCustomForm@Loaded$qqrv
@Forms@TCustomForm@DoDestroy$qqrv
@Forms@TCustomForm@DoCreate$qqrv
@Forms@TCustomForm@$bdtr$qqrv
@Forms@TCustomForm@BeforeDestruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponenti
@Forms@TCustomForm@AfterConstruction$qqrv
@Forms@TCustomForm@$bctr$qqrp18Classes@TComponent
@Forms@TScrollingWinControl@AdjustClientRect$qqrr13Windows@TRect
@Forms@TScrollingWinControl@AutoScrollInView$qqrp17Controls@TControl
@Forms@TScrollingWinControl@AutoScrollEnabled$qqrv
@Forms@TScrollingWinControl@$bdtr$qqrv
@Forms@Application
@$xp$11Forms@TForm
@Forms@TForm@
@Imglist@initialization$qqrv
@Imglist@Finalization$qqrv
@Menus@initialization$qqrv
@Menus@Finalization$qqrv
@Controls@initialization$qqrv
@Controls@Finalization$qqrv
@Controls@TWinControl@CanAutoSize$qqrrit1
@Controls@TWinControl@AssignTo$qqrp19Classes@TPersistent
@Controls@TWinControl@ConstrainedResize$qqrrit1t1t1
@Controls@TWinControl@CanResize$qqrrit1
@Controls@TWinControl@GetClientOrigin$qqrv
@Controls@TWinControl@GetControlExtents$qqrv
@Controls@TWinControl@GetHandle$qqrv
@Controls@TWinControl@Repaint$qqrv
@Controls@TWinControl@Update$qqrv
@Controls@TWinControl@Invalidate$qqrv
@Controls@TWinControl@GetDeviceContext$qqrrui
@Controls@TWinControl@ShowControl$qqrp17Controls@TControl
@Controls@TWinControl@SetBounds$qqriiii
@Controls@TWinControl@CreateHandle$qqrv
@Controls@TWinControl@DestroyWnd$qqrv
@Controls@TWinControl@$bdtr$qqrv
@Controls@TControl@InitiateAction$qqrv
@Controls@TControl@GetFloatingDockSiteClass$qqrv
@Controls@TControl@SetColor$qqr15Graphics@TColor
@Controls@TControl@SetBiDiMode$qqr17Classes@TBiDiMode
@Controls@TControl@SetEnabled$qqro
@Controls@TControl@SetName$qqrx17System@AnsiString
@Controls@TControl@SetDragMode$qqr18Controls@TDragMode
@Controls@TControl@GetEnabled$qqrv
@Controls@TControl@GetDragImages$qqrv
@Controls@TControl@$bdtr$qqrv
@Extctrls@initialization$qqrv
@Extctrls@Finalization$qqrv
@Extctrls@TPanel@
@Extctrls@TPaintBox@
@Buttons@initialization$qqrv
@Buttons@Finalization$qqrv
@Buttons@TBitBtn@
@Toolwin@initialization$qqrv
@Toolwin@Finalization$qqrv
@Comstrs@initialization$qqrv
@Comstrs@Finalization$qqrv
@Comctrls@initialization$qqrv
@Comctrls@Finalization$qqrv
@Comctrls@TPageControl@
@Comctrls@TTabSheet@
@Dialogs@initialization$qqrv
@Dialogs@Finalization$qqrv
@Dialogs@TFontDialog@
@Dialogs@TColorDialog@
@Mask@initialization$qqrv
@Mask@Finalization$qqrv
@Grids@initialization$qqrv
@Grids@Finalization$qqrv
@Grids@TDrawGrid@MouseToCell$qqriirit3
@Grids@TCustomGrid@SetColWidths$qqrii
@Grids@TDrawGrid@

kernel32

CloseHandle
CreateDirectoryA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetEnvironmentStrings
GetFileAttributesA
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileIntA
GetPrivateProfileStringA
GetPrivateProfileStringW
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDefaultLangID
GetUserDefaultLCID
GetVersion
GetVersionExA
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsValidLocale
LCMapStringA
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
OpenProcess
RaiseException
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetFilePointer
SetHandleCount
SetLastError
SetThreadLocale
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualQuery
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
lstrcatA
lstrcpyA

shfolder

SHGetFolderPathA

user32

EnumThreadWindows
FindWindowA
FindWindowExA
GetWindowThreadProcessId
IsWindow
MessageBoxA
PostMessageA
PostQuitMessage
wsprintfA

psapi

EnumProcessModules
GetModuleFileNameExA

shlwapi

PathIsDirectoryA

Exports

Exports

@@Configure@Finalize
@@Configure@Initialize
_SetTool
__GetExceptDLLinfo
___CPPdebugHook

Sections

.text
Size: 115KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/Vcl50.bpl
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

@$xp$10IEnumNames
@$xp$10IErrorInfo
@$xp$10ILockBytes
@$xp$10IMallocSpy
@$xp$10IOleCache2
@$xp$10IOleObject
@$xp$10IOleWindow
@$xp$10ITypeInfo2
@$xp$10TComObject
@$xp$10TParamFlag
@$xp$10tagREGKIND
@$xp$11Forms@TForm
@$xp$11IAdviseSink
@$xp$11IDataObject
@$xp$11IDropSource
@$xp$11IDropTarget
@$xp$11IEnumString
@$xp$11IOleControl
@$xp$11IViewObject
@$xp$11Masks@TMask
@$xp$11Menus@TMenu
@$xp$11System@Byte
@$xp$11System@Char
@$xp$11System@Comp
@$xp$11System@Real
@$xp$11System@Word
@$xp$11TActiveForm
@$xp$11TAutoObject
@$xp$11tagMULTI_QI
@$xp$11tagSTATDATA
@$xp$12ADDRESS_MODE
@$xp$12Forms@TFrame
@$xp$12IAdviseSink2
@$xp$12IChannelHook
@$xp$12IEnumMoniker
@$xp$12IEnumOLEVERB
@$xp$12IEnumStatStg
@$xp$12IEnumUnknown
@$xp$12IEnumVariant
@$xp$12IOleDocument
@$xp$12IPersistFile
@$xp$12IPictureDisp
@$xp$12IPropertyBag
@$xp$12IRootStorage
@$xp$12IViewObject2
@$xp$12Mask@Mask__1
@$xp$12Mask@Mask__3
@$xp$12System@Int64
@$xp$12TFactoryProc
@$xp$12tagEXCEPINFO
@$xp$13Classes@TBits
@$xp$13Classes@TList
@$xp$13Forms@TScreen
@$xp$13Graphics@TPen
@$xp$13IClassFactory
@$xp$13IEnumSTATDATA
@$xp$13IObjectSafety
@$xp$13IOleContainer
@$xp$13IPropertyPage
@$xp$13System@Double
@$xp$13System@Single
@$xp$13System@String
@$xp$13TConnectEvent
@$xp$14Classes@TFiler
@$xp$14Contnrs@TQueue
@$xp$14Contnrs@TStack
@$xp$14Extctrls@TPage
@$xp$14Forms@Forms__6
@$xp$14Forms@IOleForm
@$xp$14Forms@TMonitor
@$xp$14Graphics@TFont
@$xp$14Graphics@TIcon
@$xp$14Grids@Grids__3
@$xp$14Grids@Grids__4
@$xp$14IClassFactory2
@$xp$14ICreateTypeLib
@$xp$14IEnumFORMATETC
@$xp$14IFillLockBytes
@$xp$14IMessageFilter
@$xp$14IObjectContext
@$xp$14IObjectControl
@$xp$14IOleClientSite
@$xp$14IPersistStream
@$xp$14IPropertyPage2
@$xp$14IQuickActivate
@$xp$14IRpcStubBuffer
@$xp$14Libintf@TIFile
@$xp$14Libintf@TIForm
@$xp$14Mask@TMaskEdit
@$xp$14Stdctrls@TEdit
@$xp$14Stdctrls@TMemo
@$xp$14System@Boolean
@$xp$14System@Integer
@$xp$14System@TObject
@$xp$14System@Variant
@$xp$14TIntfFlagsBase
@$xp$14tagCONNECTDATA
@$xp$14tagQACONTAINER
@$xp$15Buttons@TBitBtn
@$xp$15Classes@EThread
@$xp$15Classes@TParser
@$xp$15Classes@TReader
@$xp$15Classes@TStream
@$xp$15Classes@TThread
@$xp$15Classes@TWriter
@$xp$15Comctrls@TWidth
@$xp$15Controls@TAlign
@$xp$15Controls@TMouse
@$xp$15Extctrls@TBevel
@$xp$15Extctrls@TImage
@$xp$15Extctrls@TPanel
@$xp$15Extctrls@TShape
@$xp$15Extctrls@TTimer
@$xp$15Forms@IDesigner
@$xp$15Forms@THintInfo
@$xp$15Forms@TPosition
@$xp$15Forms@TTileMode
@$xp$15Graphics@TBrush
@$xp$15Graphics@TColor
@$xp$15Grids@TDrawGrid
@$xp$15IActiveDesigner
@$xp$15ICreateTypeInfo
@$xp$15ICreateTypeLib2
@$xp$15IEnumVariant_D4
@$xp$15IObjectWithSite
@$xp$15IOleControlSite
@$xp$15IOleInPlaceSite
@$xp$15IOleUndoManager
@$xp$15IPersistStorage
@$xp$15IRpcProxyBuffer
@$xp$15IRunnableObject
@$xp$15ISharedProperty
@$xp$15IStdMarshalInfo
@$xp$15Libintf@TAffect
@$xp$15Menus@TMainMenu
@$xp$15Menus@TMenuItem
@$xp$15ShortStringBase
@$xp$15Stdctrls@TLabel
@$xp$15Stdvcl@IStrings
@$xp$15Svcmgr@TService
@$xp$15Syncobjs@TEvent
@$xp$15System@ByteBool
@$xp$15System@Cardinal
@$xp$15System@Currency
@$xp$15System@Extended
@$xp$15System@LongBool
@$xp$15System@Shortint
@$xp$15System@Smallint
@$xp$15System@WideChar
@$xp$15System@WordBool
@$xp$15Sysutils@EAbort
@$xp$15TActiveXControl
@$xp$15TConnectionKind
@$xp$15TParamFlagsBase
@$xp$15TTypedComObject
@$xp$16Activex@TOleEnum
@$xp$16Actnlist@TAction
@$xp$16Classes@TStrings
@$xp$16Comctrls@THotKey
@$xp$16Comctrls@TUpDown
@$xp$16Comobj@EOleError
@$xp$16Controls@TCursor
@$xp$16Extctrls@THeader
@$xp$16Forms@TFormState
@$xp$16Forms@TFormStyle
@$xp$16Forms@TIdleEvent
@$xp$16Forms@TScrollBox
@$xp$16Forms@TTimerMode
@$xp$16Graphics@TBitmap
@$xp$16Graphics@TCanvas
@$xp$16Grids@TGridState
@$xp$16IConnectionPoint
@$xp$16ICreateErrorInfo
@$xp$16ICreateTypeInfo2
@$xp$16IEnumConnections
@$xp$16IEnumSTATPROPSTG
@$xp$16IOleAdviseHolder
@$xp$16IOleCacheControl
@$xp$16IOleDocumentSite
@$xp$16IOleDocumentView
@$xp$16IOleInPlaceFrame
@$xp$16IPSFactoryBuffer
@$xp$16IPropertyStorage
@$xp$16IServiceProvider
@$xp$16ISimpleFrameSite
@$xp$16Imglist@TOverlay
@$xp$16Imglist@TResType
@$xp$16Libintf@ILibrary
@$xp$16Menus@EMenuError
@$xp$16Menus@TMenuBreak
@$xp$16Menus@TPopupList
@$xp$16Menus@TPopupMenu
@$xp$16Stdctrls@TButton
@$xp$16Stdvcl@IProvider
@$xp$16System@TDateTime
@$xp$16TComClassManager
@$xp$16TConnectionPoint
@$xp$16Typinfo@TOrdType
@$xp$16tagINTERFACEINFO
@$xp$17Activex@IEnumGUID
@$xp$17Classes@TBiDiMode
@$xp$17Classes@TShortCut
@$xp$17Comctrls@TAddMode
@$xp$17Comctrls@TAnimate
@$xp$17Comctrls@TCoolBar
@$xp$17Comctrls@THitTest
@$xp$17Comctrls@TToolBar
@$xp$17Controls@TAnchors
@$xp$17Controls@TCaption
@$xp$17Controls@TControl
@$xp$17Controls@TImeMode
@$xp$17Controls@TImeName
@$xp$17Exptintf@TIExpert
@$xp$17Extctrls@TRowSize
@$xp$17Forms@TBorderIcon
@$xp$17Forms@TCloseEvent
@$xp$17Forms@TCustomForm
@$xp$17Forms@TDataModule
@$xp$17Forms@TPrintScale
@$xp$17Forms@TShowAction
@$xp$17Forms@TWindowHook
@$xp$17Graphics@TGraphic
@$xp$17Graphics@TPenMode
@$xp$17Graphics@TPicture
@$xp$17Grids@TCustomGrid
@$xp$17Grids@TGridOption
@$xp$17Grids@TMovedEvent
@$xp$17Grids@TStringGrid
@$xp$17IContinueCallback
@$xp$17IDataAdviseHolder
@$xp$17IOleCommandTarget
@$xp$17IOleInPlaceObject
@$xp$17IOleItemContainer
@$xp$17IParseDisplayName
@$xp$17IPropertyPageSite
@$xp$17IProvideClassInfo
@$xp$17IRpcChannelBuffer
@$xp$17ISecurityProperty
@$xp$17ISequentialStream
@$xp$17ISupportErrorInfo
@$xp$17Inifiles@TIniFile
@$xp$17Libintf@ICompInfo
@$xp$17Libintf@IProperty
@$xp$17Libintf@TFIResult
@$xp$17Libintf@TPropKind
@$xp$17Mask@EDBEditError
@$xp$17Mask@TMaskedState
@$xp$17Math@TPaymentTime
@$xp$17Olectnrs@TOleForm
@$xp$17Printers@EPrinter
@$xp$17Printers@TPrinter
@$xp$17Stdactns@TEditCut
@$xp$17Stdctrls@TListBox
@$xp$17Svcmgr@TStartType
@$xp$17Svcmgr@TStopEvent
@$xp$17System@OleVariant
@$xp$17System@Openstring
@$xp$17System@WideString
@$xp$17Sysutils@TLangRec
@$xp$17TComObjectFactory
@$xp$17TConnectionPoints
@$xp$17Toolsapi@IOTAFile
@$xp$17Typinfo@TTypeKind
@$xp$18Axctrls@TOleStream
@$xp$18Buttons@TNumGlyphs
@$xp$18Classes@Classes__1
@$xp$18Classes@EBitsError
@$xp$18Classes@EListError
@$xp$18Classes@EReadError
@$xp$18Classes@TAlignment
@$xp$18Classes@TComponent
@$xp$18Classes@TFilerFlag
@$xp$18Classes@THelpEvent
@$xp$18Classes@TLeftRight
@$xp$18Classes@TOperation
@$xp$18Classes@TValueType
@$xp$18Clipbrd@TClipboard
@$xp$18Comctrls@TCoolBand
@$xp$18Comctrls@THitTests
@$xp$18Comctrls@TItemFind
@$xp$18Comctrls@TListItem
@$xp$18Comctrls@TListView
@$xp$18Comctrls@TRichEdit
@$xp$18Comctrls@TSortType
@$xp$18Comctrls@TTabSheet
@$xp$18Comctrls@TTabStyle
@$xp$18Comctrls@TTickMark
@$xp$18Comctrls@TTrackBar
@$xp$18Comctrls@TTreeNode
@$xp$18Comctrls@TTreeView
@$xp$18Comctrls@TWorkArea
@$xp$18Contnrs@TClassList
@$xp$18Controls@TAlignSet
@$xp$18Controls@TBevelCut
@$xp$18Controls@TDockTree
@$xp$18Controls@TDockZone
@$xp$18Controls@TDragKind
@$xp$18Controls@TDragMode
@$xp$18Controls@TKeyEvent
@$xp$18Controls@TTabOrder
@$xp$18Dialogs@TMsgDlgBtn
@$xp$18Extctrls@TNotebook
@$xp$18Extctrls@TPaintBox
@$xp$18Extctrls@TSplitter
@$xp$18Forms@TApplication
@$xp$18Forms@TBorderIcons
@$xp$18Forms@TBorderStyle
@$xp$18Forms@TCloseAction
@$xp$18Forms@TCustomFrame
@$xp$18Forms@TModalResult
@$xp$18Forms@TWindowState
@$xp$18Graphics@TFillMode
@$xp$18Graphics@TFontName
@$xp$18Graphics@TMetafile
@$xp$18Graphics@TPenStyle
@$xp$18Grids@TGridOptions
@$xp$18Grids@TInplaceEdit
@$xp$18IPersistStreamInit
@$xp$18IPersistTextStream
@$xp$18Imglist@TImageType
@$xp$18Libintf@IClassInfo
@$xp$18Libintf@IDelphiIDE
@$xp$18Libintf@LibIntf__2
@$xp$18Libintf@TFormState
@$xp$18Libintf@TICompInfo
@$xp$18Libintf@TIProperty
@$xp$18Libintf@TShowState
@$xp$18Mask@TMaskCharType
@$xp$18Menus@TTrackButton
@$xp$18Olectnrs@TSizeMode
@$xp$18Registry@TRegistry
@$xp$18Stdactns@TEditCopy
@$xp$18Stdactns@TEditUndo
@$xp$18Stdctrls@TCheckBox
@$xp$18Stdctrls@TComboBox
@$xp$18Stdctrls@TGroupBox
@$xp$18Stdvcl@IDataBroker
@$xp$18Svcmgr@TDependency
@$xp$18Svcmgr@TPauseEvent
@$xp$18Svcmgr@TStartEvent
@$xp$18System@ShortString
@$xp$18Sysutils@EControlC
@$xp$18Sysutils@EExternal
@$xp$18Sysutils@EIntError
@$xp$18Sysutils@EOverflow
@$xp$18Sysutils@Exception
@$xp$18Sysutils@TFileName
@$xp$18Sysutils@TNameType
@$xp$18TActiveFormControl
@$xp$18TActiveFormFactory
@$xp$18TAutoObjectFactory
@$xp$18Toolwin@TEdgeStyle
@$xp$18Typinfo@TFloatType
@$xp$18Typinfo@TIntfFlags
@$xp$18Typinfo@TTypeKinds
@$xp$18Typinfo@TypInfo__4
@$xp$19Actnlist@THintEvent
@$xp$19Axctrls@IFontAccess
@$xp$19Axctrls@TOleGraphic
@$xp$19Buttons@TBitBtnKind
@$xp$19Classes@Classes__34
@$xp$19Classes@Classes__44
@$xp$19Classes@EFOpenError
@$xp$19Classes@EFilerError
@$xp$19Classes@EWriteError
@$xp$19Classes@TCollection
@$xp$19Classes@TDuplicates
@$xp$19Classes@TFileStream
@$xp$19Classes@TFilerFlags
@$xp$19Classes@TGetStrProc
@$xp$19Classes@TPersistent
@$xp$19Classes@TReaderProc
@$xp$19Classes@TShiftState
@$xp$19Classes@TStreamProc
@$xp$19Classes@TStringItem
@$xp$19Classes@TStringList
@$xp$19Classes@TThreadList
@$xp$19Classes@TWriterProc
@$xp$19Comctrls@TCommonAVI
@$xp$19Comctrls@TCoolBands
@$xp$19Comctrls@TItemState
@$xp$19Comctrls@TListItems
@$xp$19Comctrls@TNodeState
@$xp$19Comctrls@TStatusBar
@$xp$19Comctrls@TTickStyle
@$xp$19Comctrls@TTreeNodes
@$xp$19Comctrls@TUDBtnType
@$xp$19Comctrls@TViewStyle
@$xp$19Comctrls@TWorkAreas
@$xp$19Commdlg@TOFNotifyEx
@$xp$19Comobj@EOleSysError
@$xp$19Contnrs@TObjectList
@$xp$19Controls@TBevelEdge
@$xp$19Controls@TBevelKind
@$xp$19Controls@TDragState
@$xp$19Controls@TImageList
@$xp$19Controls@TWndMethod
@$xp$19Dialogs@TFindDialog
@$xp$19Dialogs@TFindOption
@$xp$19Dialogs@TFontDialog
@$xp$19Dialogs@TMsgDlgType
@$xp$19Dialogs@TOpenDialog
@$xp$19Dialogs@TOpenOption
@$xp$19Dialogs@TPrintRange
@$xp$19Dialogs@TSaveDialog
@$xp$19Dsgnintf@IComponent
@$xp$19Dsgnintf@TEditState
@$xp$19Editintf@TBlockType
@$xp$19Editintf@TIEditView
@$xp$19Extctrls@TShapeType
@$xp$19Forms@TMessageEvent
@$xp$19Forms@TScrollBarInc
@$xp$19Graphics@TFillStyle
@$xp$19Graphics@TFontPitch
@$xp$19Graphics@TFontStyle
@$xp$19Graphics@TIconImage
@$xp$19Grids@TGetEditEvent
@$xp$19Grids@TGridMovement
@$xp$19Grids@TSetEditEvent
@$xp$19IEnumSTATPROPSETSTG
@$xp$19IExternalConnection
@$xp$19IOleInPlaceUIWindow
@$xp$19IPersistPropertyBag
@$xp$19IPropertyNotifySink
@$xp$19IPropertySetStorage
@$xp$19IProvideRuntimeText
@$xp$19IRunningObjectTable
@$xp$19ITransactionContext
@$xp$19Imglist@TChangeLink
@$xp$19Imglist@TImageIndex
@$xp$19Libintf@TDragTarget
@$xp$19Libintf@TICompClass
@$xp$19Libintf@TSizeAffect
@$xp$19Menus@TFindItemKind
@$xp$19Menus@TMenuAutoFlag
@$xp$19Olectrls@TEnumValue
@$xp$19Stdactns@TEditPaste
@$xp$19Stdctrls@TScrollBar
@$xp$19Stdvcl@IStringsDisp
@$xp$19Svcmgr@TEventLogger
@$xp$19Svcmgr@TServiceType
@$xp$19Sysutils@EDivByZero
@$xp$19Sysutils@EInvalidOp
@$xp$19Sysutils@EMathError
@$xp$19Sysutils@EPrivilege
@$xp$19Sysutils@EUnderflow
@$xp$19Sysutils@TLanguages
@$xp$19Sysutils@TSearchRec
@$xp$19Toolintf@TIMenuFlag
@$xp$19Toolsapi@IOTAEditor
@$xp$19Toolsapi@IOTAModule
@$xp$19Toolsapi@IOTARecord
@$xp$19Toolsapi@IOTAThread
@$xp$19Toolsapi@IOTAWizard
@$xp$19Toolwin@TEdgeBorder
@$xp$19Toolwin@TToolWindow
@$xp$19Typinfo@TMethodKind
@$xp$19Typinfo@TParamFlags
@$xp$19Virtintf@TInterface
@$xp$20Activex@ICatRegister
@$xp$20Activex@TUnknownList
@$xp$20Actnlist@TActionLink
@$xp$20Actnlist@TActionList
@$xp$20Axctrls@TFontAdapter
@$xp$20Buttons@TButtonState
@$xp$20Buttons@TButtonStyle
@$xp$20Buttons@TSpeedButton
@$xp$20Classes@EParserError
@$xp$20Classes@EResNotFound
@$xp$20Classes@EStreamError
@$xp$20Classes@TBasicAction
@$xp$20Classes@THelpContext
@$xp$20Classes@TNotifyEvent
@$xp$20Classes@TReaderError
@$xp$20Comctrls@ComCtrls__8
@$xp$20Comctrls@TConversion
@$xp$20Comctrls@TDTDateMode
@$xp$20Comctrls@THKModifier
@$xp$20Comctrls@TItemChange
@$xp$20Comctrls@TItemStates
@$xp$20Comctrls@TListColumn
@$xp$20Comctrls@TSearchType
@$xp$20Comctrls@TTabControl
@$xp$20Comctrls@TToolButton
@$xp$20Comobj@EOleException
@$xp$20Contnrs@TObjectQueue
@$xp$20Contnrs@TObjectStack
@$xp$20Contnrs@TOrderedList
@$xp$20Controls@Controls__7
@$xp$20Controls@Controls__8
@$xp$20Controls@Controls__9
@$xp$20Controls@TAnchorKind
@$xp$20Controls@TBevelEdges
@$xp$20Controls@TBevelWidth
@$xp$20Controls@TDragObject
@$xp$20Controls@THintWindow
@$xp$20Controls@TMouseEvent
@$xp$20Controls@TWinControl
@$xp$20Dialogs@TColorDialog
@$xp$20Dialogs@TFindOptions

Sections

UPX0
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 460KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 2KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 456KB - Virtual size: 455KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 33B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/Vclx50.bpl
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

@$xp$12Tabs@TTabSet
@$xp$13Tabs@TTabList
@$xp$14Ddeman@TDdeMgr
@$xp$14Tabs@TEdgePart
@$xp$14Tabs@TEdgeType
@$xp$14Tabs@TScroller
@$xp$14Tabs@TTabStyle
@$xp$15Tabs@TScrollBtn
@$xp$16Ddeman@TDataMode
@$xp$16Mplayer@TMPGlyph
@$xp$16Mplayer@TMPModes
@$xp$16Outline@TOutline
@$xp$17Mplayer@EMPNotify
@$xp$17Tabnotbk@TTabPage
@$xp$18Ddeman@TMacroEvent
@$xp$18Filectrl@TFileAttr
@$xp$18Filectrl@TFileType
@$xp$18Filectrl@TTextCase
@$xp$18Mplayer@TButtonSet
@$xp$18Mplayer@TMPBtnType
@$xp$18Mplayer@TMPDevCaps
@$xp$18Tabs@TDrawTabEvent
@$xp$19Colorgrd@TColorGrid
@$xp$19Filectrl@TDriveType
@$xp$19Outline@TAttachMode
@$xp$20Mplayer@TMediaPlayer
@$xp$20Outline@OutlineError
@$xp$20Outline@TChangeRange
@$xp$20Outline@TOutlineNode
@$xp$20Outline@TOutlineType
@$xp$20Tabs@TTabChangeEvent
@$xp$21Ddeman@TDdeClientConv
@$xp$21Ddeman@TDdeClientItem
@$xp$21Ddeman@TDdeServerConv
@$xp$21Ddeman@TDdeServerItem
@$xp$21Filectrl@TFileListBox
@$xp$21Mplayer@EMPPostNotify
@$xp$21Mplayer@TMPDevCapsSet
@$xp$21Outline@EOutlineError
@$xp$21Outline@TOutlineStyle
@$xp$21Tabs@TMeasureTabEvent
@$xp$22Checklst@TCheckListBox
@$xp$22Colorgrd@TGridOrdering
@$xp$22Filectrl@TSelectDirOpt
@$xp$22Mplayer@TMPDeviceTypes
@$xp$22Mplayer@TMPTimeFormats
@$xp$22Outline@EOutlineChange
@$xp$22Outline@TCustomOutline
@$xp$22Outline@TOutlineBitmap
@$xp$22Outline@TOutlineOption
@$xp$23Filectrl@TDriveComboBox
@$xp$23Filectrl@TSelectDirOpts
@$xp$23Mplayer@EMCIDeviceError
@$xp$23Mplayer@TMPNotifyValues
@$xp$23Outline@TOutlineBitmaps
@$xp$23Outline@TOutlineOptions
@$xp$24Filectrl@TFilterComboBox
@$xp$24Tabnotbk@TTabbedNotebook
@$xp$25Outline@TBitmapArrayRange
@$xp$25Tabnotbk@TPageChangeEvent
@$xp$26Filectrl@TDirectoryListBox
@$xp$27Outline@TOutlineNodeCompare
@Checklst@Finalization$qqrv
@Checklst@TCheckListBox@
@Checklst@TCheckListBox@$bctr$qqrp18Classes@TComponent
@Checklst@TCheckListBox@$bdtr$qqrv
@Checklst@TCheckListBox@CMFontChanged$qqrr17Messages@TMessage
@Checklst@TCheckListBox@CNDrawItem$qqrr20Messages@TWMDrawItem
@Checklst@TCheckListBox@ClickCheck$qqrv
@Checklst@TCheckListBox@CreateParams$qqrr22Controls@TCreateParams
@Checklst@TCheckListBox@CreateWnd$qqrv
@Checklst@TCheckListBox@CreateWrapper$qqri
@Checklst@TCheckListBox@DeleteString$qqri
@Checklst@TCheckListBox@DestroyWnd$qqrv
@Checklst@TCheckListBox@DrawCheck$qqrrx13Windows@TRect23Stdctrls@TCheckBoxStateo
@Checklst@TCheckListBox@DrawItem$qqrirx13Windows@TRect47System@%Set$t18Windows@Windows__1$iuc$0$iuc$12%
@Checklst@TCheckListBox@ExtractWrapper$qqri
@Checklst@TCheckListBox@GetCheckWidth$qqrv
@Checklst@TCheckListBox@GetChecked$qqri
@Checklst@TCheckListBox@GetItemData$qqri
@Checklst@TCheckListBox@GetItemEnabled$qqri
@Checklst@TCheckListBox@GetState$qqri
@Checklst@TCheckListBox@GetWrapper$qqri
@Checklst@TCheckListBox@HaveWrapper$qqri
@Checklst@TCheckListBox@InternalGetItemData$qqri
@Checklst@TCheckListBox@InternalSetItemData$qqrii
@Checklst@TCheckListBox@InvalidateCheck$qqri
@Checklst@TCheckListBox@KeyPress$qqrrc
@Checklst@TCheckListBox@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Checklst@TCheckListBox@ResetContent$qqrv
@Checklst@TCheckListBox@ResetItemHeight$qqrv
@Checklst@TCheckListBox@SetChecked$qqrio
@Checklst@TCheckListBox@SetFlat$qqro
@Checklst@TCheckListBox@SetItemData$qqrii
@Checklst@TCheckListBox@SetItemEnabled$qqrixo
@Checklst@TCheckListBox@SetState$qqri23Stdctrls@TCheckBoxState
@Checklst@TCheckListBox@ToggleClickCheck$qqri
@Checklst@TCheckListBox@WMDestroy$qqrr20Messages@TWMNoParams
@Checklst@initialization$qqrv
@Colorgrd@Finalization$qqrv
@Colorgrd@TColorGrid@
@Colorgrd@TColorGrid@$bctr$qqrp18Classes@TComponent
@Colorgrd@TColorGrid@CMCtl3DChanged$qqrr17Messages@TMessage
@Colorgrd@TColorGrid@Change$qqrv
@Colorgrd@TColorGrid@ColorToIndex$qqr15Graphics@TColor
@Colorgrd@TColorGrid@CreateWnd$qqrv
@Colorgrd@TColorGrid@DrawFgBg$qqrv
@Colorgrd@TColorGrid@DrawSquare$qqrio
@Colorgrd@TColorGrid@EnableBackground$qqro
@Colorgrd@TColorGrid@EnableForeground$qqro
@Colorgrd@TColorGrid@GetBackgroundColor$qqrv
@Colorgrd@TColorGrid@GetForegroundColor$qqrv
@Colorgrd@TColorGrid@KeyDown$qqrrus46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%
@Colorgrd@TColorGrid@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Colorgrd@TColorGrid@MouseMove$qqr46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Colorgrd@TColorGrid@MouseUp$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Colorgrd@TColorGrid@Paint$qqrv
@Colorgrd@TColorGrid@SetBackgroundIndex$qqri
@Colorgrd@TColorGrid@SetForegroundIndex$qqri
@Colorgrd@TColorGrid@SetGridOrdering$qqr22Colorgrd@TGridOrdering
@Colorgrd@TColorGrid@SetSelection$qqri
@Colorgrd@TColorGrid@SquareFromPos$qqrii
@Colorgrd@TColorGrid@UpdateCellSizes$qqro
@Colorgrd@TColorGrid@WMGetDlgCode$qqrr20Messages@TWMNoParams
@Colorgrd@TColorGrid@WMKillFocus$qqrr21Messages@TWMKillFocus
@Colorgrd@TColorGrid@WMSetFocus$qqrr20Messages@TWMSetFocus
@Colorgrd@TColorGrid@WMSize$qqrr16Messages@TWMSize
@Colorgrd@initialization$qqrv
@Ddeman@Finalization$qqrv
@Ddeman@GetPasteLinkInfo$qqrr17System@AnsiStringt1t1
@Ddeman@TDdeClientConv@
@Ddeman@TDdeClientConv@$bctr$qqrp18Classes@TComponent
@Ddeman@TDdeClientConv@$bdtr$qqrv
@Ddeman@TDdeClientConv@ChangeLink$qqrx17System@AnsiStringt1t1
@Ddeman@TDdeClientConv@ClearItems$qqrv
@Ddeman@TDdeClientConv@Close$qqrv
@Ddeman@TDdeClientConv@CloseLink$qqrv
@Ddeman@TDdeClientConv@CreateDdeConv$qqrii
@Ddeman@TDdeClientConv@DataChange$qqrii
@Ddeman@TDdeClientConv@DefineProperties$qqrp14Classes@TFiler
@Ddeman@TDdeClientConv@ExecuteMacro$qqrpco
@Ddeman@TDdeClientConv@ExecuteMacroLines$qqrp16Classes@TStringso
@Ddeman@TDdeClientConv@GetCliItemByCtrl$qqrp21Ddeman@TDdeClientItem
@Ddeman@TDdeClientConv@GetCliItemByName$qqrx17System@AnsiString
@Ddeman@TDdeClientConv@Loaded$qqrv
@Ddeman@TDdeClientConv@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Ddeman@TDdeClientConv@OnAttach$qqrp21Ddeman@TDdeClientItem
@Ddeman@TDdeClientConv@OnDetach$qqrp21Ddeman@TDdeClientItem
@Ddeman@TDdeClientConv@OnSetItem$qqrp21Ddeman@TDdeClientItemx17System@AnsiString
@Ddeman@TDdeClientConv@Open$qqrv
@Ddeman@TDdeClientConv@OpenLink$qqrv
@Ddeman@TDdeClientConv@PasteLink$qqrv
@Ddeman@TDdeClientConv@PokeData$qqrx17System@AnsiStringpc
@Ddeman@TDdeClientConv@PokeDataLines$qqrx17System@AnsiStringp16Classes@TStrings
@Ddeman@TDdeClientConv@ReadLinkInfo$qqrp15Classes@TReader
@Ddeman@TDdeClientConv@RequestData$qqrx17System@AnsiString
@Ddeman@TDdeClientConv@SetConnectMode$qqr16Ddeman@TDataMode
@Ddeman@TDdeClientConv@SetDdeService$qqrx17System@AnsiString
@Ddeman@TDdeClientConv@SetDdeTopic$qqrx17System@AnsiString
@Ddeman@TDdeClientConv@SetFormatChars$qqro
@Ddeman@TDdeClientConv@SetLink$qqrx17System@AnsiStringt1
@Ddeman@TDdeClientConv@SetService$qqrx17System@AnsiString
@Ddeman@TDdeClientConv@SetTopic$qqrx17System@AnsiString
@Ddeman@TDdeClientConv@SrvrDisconnect$qqrv
@Ddeman@TDdeClientConv@StartAdvise$qqrv
@Ddeman@TDdeClientConv@WriteLinkInfo$qqrp15Classes@TWriter
@Ddeman@TDdeClientConv@XactComplete$qqrv
@Ddeman@TDdeClientItem@
@Ddeman@TDdeClientItem@$bctr$qqrp18Classes@TComponent
@Ddeman@TDdeClientItem@$bdtr$qqrv
@Ddeman@TDdeClientItem@GetText$qqrv
@Ddeman@TDdeClientItem@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Ddeman@TDdeClientItem@OnAdvise$qqrv
@Ddeman@TDdeClientItem@SetDdeClientConv$qqrp21Ddeman@TDdeClientConv
@Ddeman@TDdeClientItem@SetDdeClientItem$qqrx17System@AnsiString
@Ddeman@TDdeClientItem@SetLines$qqrp16Classes@TStrings
@Ddeman@TDdeClientItem@SetText$qqrx17System@AnsiString
@Ddeman@TDdeMgr@
@Ddeman@TDdeMgr@$bctr$qqrp18Classes@TComponent
@Ddeman@TDdeMgr@$bdtr$qqrv
@Ddeman@TDdeMgr@AllowConnect$qqrii
@Ddeman@TDdeMgr@AllowWildConnect$qqrii
@Ddeman@TDdeMgr@Connect$qqriio
@Ddeman@TDdeMgr@Disconnect$qqrp18Classes@TComponent
@Ddeman@TDdeMgr@GetExeName$qqrv
@Ddeman@TDdeMgr@GetForm$qqrx17System@AnsiString
@Ddeman@TDdeMgr@GetServerConv$qqrx17System@AnsiString
@Ddeman@TDdeMgr@GetSrvrConv$qqrx17System@AnsiString
@Ddeman@TDdeMgr@InsertServerConv$qqrp21Ddeman@TDdeServerConv
@Ddeman@TDdeMgr@PostDataChange$qqrx17System@AnsiStringt1
@Ddeman@TDdeMgr@RemoveServerConv$qqrp21Ddeman@TDdeServerConv
@Ddeman@TDdeMgr@ResetAppName$qqrv
@Ddeman@TDdeMgr@SetAppName$qqrx17System@AnsiString
@Ddeman@TDdeServerConv@
@Ddeman@TDdeServerConv@$bctr$qqrp18Classes@TComponent
@Ddeman@TDdeServerConv@$bdtr$qqrv
@Ddeman@TDdeServerConv@Connect$qqrv
@Ddeman@TDdeServerConv@Disconnect$qqrv
@Ddeman@TDdeServerConv@ExecuteMacro$qqri
@Ddeman@TDdeServerItem@
@Ddeman@TDdeServerItem@$bctr$qqrp18Classes@TComponent
@Ddeman@TDdeServerItem@$bdtr$qqrv
@Ddeman@TDdeServerItem@Change$qqrv
@Ddeman@TDdeServerItem@CopyToClipboard$qqrv
@Ddeman@TDdeServerItem@GetText$qqrv
@Ddeman@TDdeServerItem@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Ddeman@TDdeServerItem@PokeData$qqri
@Ddeman@TDdeServerItem@SetLines$qqrp16Classes@TStrings
@Ddeman@TDdeServerItem@SetServerConv$qqrp21Ddeman@TDdeServerConv
@Ddeman@TDdeServerItem@SetText$qqrx17System@AnsiString
@Ddeman@TDdeServerItem@ValueChanged$qqrv
@Ddeman@ddeMgr
@Ddeman@initialization$qqrv
@Filectrl@DirectoryExists$qqrx17System@AnsiString
@Filectrl@Finalization$qqrv
@Filectrl@ForceDirectories$qqr17System@AnsiString
@Filectrl@MinimizeName$qqrx17System@AnsiStringp16Graphics@TCanvasi
@Filectrl@ProcessPath$qqrx17System@AnsiStringrcr17System@AnsiStringt3
@Filectrl@SelectDirectory$qqrr17System@AnsiString50System@%Set$t22Filectrl@TSelectDirOpt$iuc$0$iuc$2%i
@Filectrl@SelectDirectory$qqrx17System@AnsiStringx17System@WideStringr17System@AnsiString
@Filectrl@TDirectoryListBox@
@Filectrl@TDirectoryListBox@$bctr$qqrp18Classes@TComponent
@Filectrl@TDirectoryListBox@$bdtr$qqrv
@Filectrl@TDirectoryListBox@BuildList$qqrv
@Filectrl@TDirectoryListBox@CMFontChanged$qqrr17Messages@TMessage
@Filectrl@TDirectoryListBox@Change$qqrv
@Filectrl@TDirectoryListBox@CreateWnd$qqrv
@Filectrl@TDirectoryListBox@DblClick$qqrv
@Filectrl@TDirectoryListBox@DisplayCase$qqrx17System@AnsiString
@Filectrl@TDirectoryListBox@DrawItem$qqrirx13Windows@TRect47System@%Set$t18Windows@Windows__1$iuc$0$iuc$12%
@Filectrl@TDirectoryListBox@DriveChange$qqrc
@Filectrl@TDirectoryListBox@FileCompareText$qqrx17System@AnsiStringt1
@Filectrl@TDirectoryListBox@GetDrive$qqrv
@Filectrl@TDirectoryListBox@GetItemPath$qqri
@Filectrl@TDirectoryListBox@KeyPress$qqrrc
@Filectrl@TDirectoryListBox@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Filectrl@TDirectoryListBox@OpenCurrent$qqrv
@Filectrl@TDirectoryListBox@ReadBitmaps$qqrv
@Filectrl@TDirectoryListBox@ReadDirectoryNames$qqrx17System@AnsiStringp19Classes@TStringList
@Filectrl@TDirectoryListBox@ResetItemHeight$qqrv
@Filectrl@TDirectoryListBox@SetDir$qqrx17System@AnsiString
@Filectrl@TDirectoryListBox@SetDirLabel$qqrp15Stdctrls@TLabel
@Filectrl@TDirectoryListBox@SetDirLabelCaption$qqrv
@Filectrl@TDirectoryListBox@SetDirectory$qqrx17System@AnsiString
@Filectrl@TDirectoryListBox@SetDrive$qqrc
@Filectrl@TDirectoryListBox@SetFileListBox$qqrp21Filectrl@TFileListBox
@Filectrl@TDirectoryListBox@Update$qqrv
@Filectrl@TDriveComboBox@
@Filectrl@TDriveComboBox@$bctr$qqrp18Classes@TComponent
@Filectrl@TDriveComboBox@$bdtr$qqrv
@Filectrl@TDriveComboBox@BuildList$qqrv
@Filectrl@TDriveComboBox@CMFontChanged$qqrr17Messages@TMessage
@Filectrl@TDriveComboBox@Click$qqrv
@Filectrl@TDriveComboBox@CreateWnd$qqrv
@Filectrl@TDriveComboBox@DrawItem$qqrirx13Windows@TRect47System@%Set$t18Windows@Windows__1$iuc$0$iuc$12%
@Filectrl@TDriveComboBox@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Filectrl@TDriveComboBox@ReadBitmaps$qqrv
@Filectrl@TDriveComboBox@ResetItemHeight$qqrv
@Filectrl@TDriveComboBox@SetDirListBox$qqrp26Filectrl@TDirectoryListBox
@Filectrl@TDriveComboBox@SetDrive$qqrc
@Filectrl@TDriveComboBox@SetTextCase$qqr18Filectrl@TTextCase
@Filectrl@TFileListBox@
@Filectrl@TFileListBox@$bctr$qqrp18Classes@TComponent
@Filectrl@TFileListBox@$bdtr$qqrv
@Filectrl@TFileListBox@ApplyFilePath$qqrx17System@AnsiString
@Filectrl@TFileListBox@CMFontChanged$qqrr17Messages@TMessage
@Filectrl@TFileListBox@Change$qqrv
@Filectrl@TFileListBox@Click$qqrv
@Filectrl@TFileListBox@CreateWnd$qqrv
@Filectrl@TFileListBox@DrawItem$qqrirx13Windows@TRect47System@%Set$t18Windows@Windows__1$iuc$0$iuc$12%
@Filectrl@TFileListBox@GetDrive$qqrv
@Filectrl@TFileListBox@GetFileName$qqrv
@Filectrl@TFileListBox@GetFilePath$qqrv
@Filectrl@TFileListBox@IsMaskStored$qqrv
@Filectrl@TFileListBox@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Filectrl@TFileListBox@ReadBitmaps$qqrv
@Filectrl@TFileListBox@ReadFileNames$qqrv
@Filectrl@TFileListBox@ResetItemHeight$qqrv
@Filectrl@TFileListBox@SetDirectory$qqrx17System@AnsiString
@Filectrl@TFileListBox@SetDrive$qqrc
@Filectrl@TFileListBox@SetFileEdit$qqrp14Stdctrls@TEdit
@Filectrl@TFileListBox@SetFileName$qqrx17System@AnsiString
@Filectrl@TFileListBox@SetFileType$qqr46System@%Set$t18Filectrl@TFileAttr$iuc$0$iuc$6%
@Filectrl@TFileListBox@SetMask$qqrx17System@AnsiString
@Filectrl@TFileListBox@SetShowGlyphs$qqro
@Filectrl@TFileListBox@Update$qqrv
@Filectrl@TFilterComboBox@
@Filectrl@TFilterComboBox@$bctr$qqrp18Classes@TComponent
@Filectrl@TFilterComboBox@$bdtr$qqrv
@Filectrl@TFilterComboBox@BuildList$qqrv
@Filectrl@TFilterComboBox@Change$qqrv
@Filectrl@TFilterComboBox@Click$qqrv
@Filectrl@TFilterComboBox@CreateWnd$qqrv
@Filectrl@TFilterComboBox@GetMask$qqrv
@Filectrl@TFilterComboBox@IsFilterStored$qqrv
@Filectrl@TFilterComboBox@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Filectrl@TFilterComboBox@SetFileListBox$qqrp21Filectrl@TFileListBox
@Filectrl@TFilterComboBox@SetFilter$qqrx17System@AnsiString
@Filectrl@initialization$qqrv
@GetPackageInfoTable
@Mplayer@EMCIDeviceError@
@Mplayer@Finalization$qqrv
@Mplayer@TMediaPlayer@
@Mplayer@TMediaPlayer@$bctr$qqrp18Classes@TComponent
@Mplayer@TMediaPlayer@$bdtr$qqrv
@Mplayer@TMediaPlayer@Adjust$qqrv
@Mplayer@TMediaPlayer@AutoButtonSet$qqr18Mplayer@TMPBtnType
@Mplayer@TMediaPlayer@Back$qqrv
@Mplayer@TMediaPlayer@CheckIfOpen$qqrv
@Mplayer@TMediaPlayer@Click$qqr18Mplayer@TMPBtnTypero
@Mplayer@TMediaPlayer@Close$qqrv
@Mplayer@TMediaPlayer@DestroyBitmaps$qqrv
@Mplayer@TMediaPlayer@DoClick$qqr18Mplayer@TMPBtnType
@Mplayer@TMediaPlayer@DoMouseDown$qqrii
@Mplayer@TMediaPlayer@DoNotify$qqrv
@Mplayer@TMediaPlayer@DoPostClick$qqr18Mplayer@TMPBtnType
@Mplayer@TMediaPlayer@DrawAutoButtons$qqrv
@Mplayer@TMediaPlayer@DrawButton$qqr18Mplayer@TMPBtnTypei
@Mplayer@TMediaPlayer@Eject$qqrv
@Mplayer@TMediaPlayer@GetDeviceCaps$qqrv
@Mplayer@TMediaPlayer@GetDisplayRect$qqrv
@Mplayer@TMediaPlayer@GetErrorMessage$qqrv
@Mplayer@TMediaPlayer@GetLength$qqrv
@Mplayer@TMediaPlayer@GetMode$qqrv
@Mplayer@TMediaPlayer@GetPosition$qqrv
@Mplayer@TMediaPlayer@GetStart$qqrv
@Mplayer@TMediaPlayer@GetTimeFormat$qqrv
@Mplayer@TMediaPlayer@GetTrackLength$qqri
@Mplayer@TMediaPlayer@GetTrackPosition$qqri
@Mplayer@TMediaPlayer@GetTracks$qqrv
@Mplayer@TMediaPlayer@KeyDown$qqrrus46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%
@Mplayer@TMediaPlayer@LoadBitmaps$qqrv
@Mplayer@TMediaPlayer@Loaded$qqrv
@Mplayer@TMediaPlayer@MMNotify$qqrr17Messages@TMessage
@Mplayer@TMediaPlayer@Next$qqrv
@Mplayer@TMediaPlayer@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Mplayer@TMediaPlayer@Open$qqrv
@Mplayer@TMediaPlayer@Paint$qqrv
@Mplayer@TMediaPlayer@Pause$qqrv
@Mplayer@TMediaPlayer@PauseOnly$qqrv
@Mplayer@TMediaPlayer@Play$qqrv
@Mplayer@TMediaPlayer@PostClick$qqr18Mplayer@TMPBtnType
@Mplayer@TMediaPlayer@Previous$qqrv
@Mplayer@TMediaPlayer@Resume$qqrv
@Mplayer@TMediaPlayer@Rewind$qqrv
@Mplayer@TMediaPlayer@Save$qqrv
@Mplayer@TMediaPlayer@SetAutoEnable$qqro
@Mplayer@TMediaPlayer@SetColored$qqr46System@%Set$t18Mplayer@TMPBtnType$iuc$0$iuc$8%
@Mplayer@TMediaPlayer@SetDeviceType$qqr22Mplayer@TMPDeviceTypes
@Mplayer@TMediaPlayer@SetDisplay$qqrp20Controls@TWinControl
@Mplayer@TMediaPlayer@SetDisplayRect$qqrrx13Windows@TRect
@Mplayer@TMediaPlayer@SetEnabledButtons$qqr46System@%Set$t18Mplayer@TMPBtnType$iuc$0$iuc$8%
@Mplayer@TMediaPlayer@SetFrom$qqri
@Mplayer@TMediaPlayer@SetNotify$qqro
@Mplayer@TMediaPlayer@SetOrigDisplay$qqrv
@Mplayer@TMediaPlayer@SetPosition$qqri
@Mplayer@TMediaPlayer@SetTimeFormat$qqr22Mplayer@TMPTimeFormats
@Mplayer@TMediaPlayer@SetTo$qqri
@Mplayer@TMediaPlayer@SetVisible$qqr46System@%Set$t18Mplayer@TMPBtnType$iuc$0$iuc$8%
@Mplayer@TMediaPlayer@SetWait$qqro
@Mplayer@TMediaPlayer@StartRecording$qqrv
@Mplayer@TMediaPlayer@Step$qqrv
@Mplayer@TMediaPlayer@Stop$qqrv
@Mplayer@TMediaPlayer@Updated$qqrv
@Mplayer@TMediaPlayer@VisibleButtonCount$qqrv
@Mplayer@TMediaPlayer@WMGetDlgCode$qqrr20Messages@TWMNoParams
@Mplayer@TMediaPlayer@WMKillFocus$qqrr21Messages@TWMKillFocus
@Mplayer@TMediaPlayer@WMLButtonDblClk$qqrr17Messages@TWMMouse
@Mplayer@TMediaPlayer@WMLButtonDown$qqrr17Messages@TWMMouse
@Mplayer@TMediaPlayer@WMLButtonUp$qqrr17Messages@TWMMouse
@Mplayer@TMediaPlayer@WMMouseMove$qqrr17Messages@TWMMouse
@Mplayer@TMediaPlayer@WMSetFocus$qqrr20Messages@TWMSetFocus
@Mplayer@TMediaPlayer@WMSize$qqrr16Messages@TWMSize
@Mplayer@initialization$qqrv
@Outline@EOutlineError@
@Outline@Finalization$qqrv
@Outline@OutlineError@
@Outline@TCustomOutline@
@Outline@TCustomOutline@$bctr$qqrp18Classes@TComponent
@Outline@TCustomOutline@$bdtr$qqrv
@Outline@TCustomOutline@Add$qqrix17System@AnsiString
@Outline@TCustomOutline@AddChild$qqrix17System@AnsiString
@Outline@TCustomOutline@AddChildObject$qqrix17System@AnsiStringpxv
@Outline@TCustomOutline@AddObject$qqrix17System@AnsiStringpxv
@Outline@TCustomOutline@AttachNode$qqri17System@AnsiStringpv19Outline@TAttachMode
@Outline@TCustomOutline@BadIndex$qqrp20Outline@TOutlineNode
@Outline@TCustomOutline@BeginUpdate$qqrv
@Outline@TCustomOutline@CMFontChanged$qqrr17Messages@TMessage
@Outline@TCustomOutline@ChangeBitmap$qqrp16Graphics@TBitmap22Outline@TOutlineBitmap
@Outline@TCustomOutline@Clear$qqrv
@Outline@TCustomOutline@ClearBitmap$qqrrp16Graphics@TBitmap22Outline@TOutlineBitmap
@Outline@TCustomOutline@Click$qqrv
@Outline@TCustomOutline@Collapse$qqri
@Outline@TCustomOutline@CompareNodes$qqrp20Outline@TOutlineNodet1
@Outline@TCustomOutline@CreateGlyph$qqrv
@Outline@TCustomOutline@DblClick$qqrv
@Outline@TCustomOutline@DefineProperties$qqrp14Classes@TFiler
@Outline@TCustomOutline@Delete$qqri
@Outline@TCustomOutline@DeleteNode$qqrp20Outline@TOutlineNodei
@Outline@TCustomOutline@DoExpand$qqrp20Outline@TOutlineNode
@Outline@TCustomOutline@DrawCell$qqriirx13Windows@TRect42System@%Set$t14Grids@Grids__3$iuc$0$iuc$2%
@Outline@TCustomOutline@DrawPictures$qqrpxpx16Graphics@TBitmapxirx13Windows@TRect
@Outline@TCustomOutline@DrawText$qqrp20Outline@TOutlineNoderx13Windows@TRect
@Outline@TCustomOutline@DrawTree$qqrrx13Windows@TRectp20Outline@TOutlineNode
@Outline@TCustomOutline@EndUpdate$qqrv
@Outline@TCustomOutline@Error$qqrx17System@AnsiString
@Outline@TCustomOutline@Expand$qqri
@Outline@TCustomOutline@FullCollapse$qqrv
@Outline@TCustomOutline@FullExpand$qqrv
@Outline@TCustomOutline@Get$qqri
@Outline@TCustomOutline@GetDataItem$qqrpv
@Outline@TCustomOutline@GetItem$qqrii
@Outline@TCustomOutline@GetItemCount$qqrv
@Outline@TCustomOutline@GetNodeDisplayWidth$qqrp20Outline@TOutlineNode
@Outline@TCustomOutline@GetPicture$qqri
@Outline@TCustomOutline@GetSelectedItem$qqrv
@Outline@TCustomOutline@GetStrings$qqrv
@Outline@TCustomOutline@GetTextItem$qqrx17System@AnsiString
@Outline@TCustomOutline@GetVisibleNode$qqri
@Outline@TCustomOutline@Init$qqrv
@Outline@TCustomOutline@Insert$qqrix17System@AnsiString
@Outline@TCustomOutline@InsertObject$qqrix17System@AnsiStringpxv
@Outline@TCustomOutline@IsCurItem$qqri
@Outline@TCustomOutline@KeyDown$qqrrus46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%
@Outline@TCustomOutline@KeyPress$qqrrc
@Outline@TCustomOutline@LoadFromFile$qqrx17System@AnsiString
@Outline@TCustomOutline@LoadFromStream$qqrp15Classes@TStream
@Outline@TCustomOutline@Loaded$qqrv
@Outline@TCustomOutline@MouseDown$qqr21Controls@TMouseButton46System@%Set$t18Classes@Classes__1$iuc$0$iuc$6%ii
@Outline@TCustomOutline@Move$qqrii19Outline@TAttachMode
@Outline@TCustomOutline@MoveNode$qqrii19Outline@TAttachMode
@Outline@TCustomOutline@ReadBinaryData$qqrp15Classes@TStream
@Outline@TCustomOutline@ResetSelectedItem$qqrv
@Outline@TCustomOutline@ResizeGrid$qqrv
@Outline@TCustomOutline@SaveToFile$qqrx17System@AnsiString
@Outline@TCustomOutline@SaveToStream$qqrp15Classes@TStream
@Outline@TCustomOutline@SetCurItem$qqri
@Outline@TCustomOutline@SetDisplayWidth$qqri
@Outline@TCustomOutline@SetGoodIndex$qqrp20Outline@TOutlineNode
@Outline@TCustomOutline@SetHorzScrollBar$qqrv
@Outline@TCustomOutline@SetItemHeight$qqri
@Outline@TCustomOutline@SetLevel$qqrp20Outline@TOutlineNodeuiui
@Outline@TCustomOutline@SetOutlineOptions$qqr50System@%Set$t22Outline@TOutlineOption$iuc$0$iuc$2%
@Outline@TCustomOutline@SetOutlineStyle$qqr21Outline@TOutlineStyle
@Outline@TCustomOutline@SetPicture$qqrip16Graphics@TBitmap
@Outline@TCustomOutline@SetRowFromNode$qqrp20Outline@TOutlineNode
@Outline@TCustomOutline@SetRowHeight$qqrv
@Outline@TCustomOutline@SetSelectedItem$qqri
@Outline@TCustomOutline@SetStrings$qqrp16Classes@TStrings
@Outline@TCustomOutline@SetStyle$qqr20Outline@TOutlineType
@Outline@TCustomOutline@SetUpdateState$qqro
@Outline@TCustomOutline@StoreBitmap$qqri
@Outline@TCustomOutline@WMSize$qqrr16Messages@TWMSize
@Outline@TCustomOutline@WriteBinaryData$qqrp15Classes@TStream
@Outline@TOutline@
@Outline@TOutlineNode@
@Outline@TOutlineNode@$bctr$qqrp22Outline@TCustomOutline
@Outline@TOutlineNode@$bdtr$qqrv
@Outline@TOutlineNode@AddNode$qqrp20Outline@TOutlineNode
@Outline@TOutlineNode@ChangeExpandedCount$qqri
@Outline@TOutlineNode@ChangeLevelBy$qqrzc
@Outline@TOutlineNode@Clear$qqrv
@Outline@TOutlineNode@CloseNode$qqrv
@Outline@TOutlineNode@Collapse$qqrv
@Outline@TOutlineNode@Error$qqrx17System@AnsiString
@Outline@TOutlineNode@Expand$qqrv
@Outline@TOutlineNode@FullExpand$qqrv
@Outline@TOutlineNode@GetDataItem$qqrpv
@Outline@TOutlineNode@GetDisplayWidth$qqrv
@Outline@TOutlineNode@GetExpandedNodeCount$qqrv
@Outline@TOutlineNode@GetFullPath$qqrv
@Outline@TOutlineNode@GetIndex$qqrv
@Outline@TOutlineNode@GetLastChild$qqrv
@Outline@TOutlineNode@GetLastIndex$qqrv
@Outline@TOutlineNode@GetLevel$qqrv
@Outline@TOutlineNode@GetList$qqrv
@Outline@TOutlineNode@GetMaxDisplayWidth$qqrui
@Outline@TOutlineNode@GetNextChild$qqri
@Outline@TOutlineNode@GetNode$qqri
@Outline@TOutlineNode@GetNodeAtIndex$qqri
@Outline@TOutlineNode@GetPrevChild$qqri
@Outline@TOutlineNode@GetRowOfNode$qqrp20Outline@TOutlineNoderi
@Outline@TOutlineNode@GetTextItem$qqrx17System@AnsiString
@Outline@TOutlineNode@GetTopItem$qqrv
@Outline@TOutlineNode@GetVisibleNode$qqri
@Outline@TOutlineNode@GetVisibleParent$qqrv
@Outline@TOutlineNode@HasAsParent$qqrp20Outline@TOutlineNode
@Outline@TOutlineNode@HasChildren$qqrv
@Outline@TOutlineNode@HasVisibleParent$qqrv
@Outline@TOutlineNode@InsertNode$qqrip20Outline@TOutlineNode
@Outline@TOutlineNode@InternalRemove$qqrp20Outline@TOutlineNodei
@Outline@TOutlineNode@IsEqual$qqrp20Outline@TOutlineNode
@Outline@TOutlineNode@MoveTo$qqri19Outline@TAttachMode
@Outline@TOutlineNode@ReIndex$qqrp20Outline@TOutlineNodet1io
@Outline@TOutlineNode@Remove$qqrp20Outline@TOutlineNode
@Outline@TOutlineNode@Repaint$qqrv
@Outline@TOutlineNode@Resync$qqrrip20Outline@TOutlineNode
@Outline@TOutlineNode@SetExpandedState$qqro
@Outline@TOutlineNode@SetGoodIndex$qqrv
@Outline@TOutlineNode@SetHorzScrollBar$qqrv

Sections

UPX0
Size: - Virtual size: 252KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.dll windows:1 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 129B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/Version.txt
pobo5/system/alarm.wav
pobo5/system/autoreplay.xml
.xml
pobo5/system/bcbie50.bpl
.dll windows:4 windows x86 arch:x86

4d1f64b71117c7e16f29df53ef3e8fbb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

borlndmm

ord2

vcl50.bpl

@System@initialization$qqrv
@System@Finalization$qqrv
@System@UnregisterModule$qqrp17System@TLibModule
@System@RegisterModule$qqrp17System@TLibModule
@System@LoadResourceModule$qqrpc
@System@FindHInstance$qqrpv
@System@@VarClear$qqrr14System@Variant
@System@@LStrFromPChar$qqrr17System@AnsiStringpc
@System@@LStrAsg$qqrv
@System@@LStrClr$qqrr17System@AnsiString
@System@@PackageUnload$qqrpx23System@PackageInfoTable
@System@@PackageLoad$qqrpx23System@PackageInfoTable
@System@@HandleFinally$qqrv
@System@TObject@Dispatch$qqrpv
@System@TObject@AfterConstruction$qqrv
@System@TObject@DefaultHandler$qqrpv
@System@TObject@$bdtr$qqrv
@System@TObject@FreeInstance$qqrv
@System@TObject@NewInstance$qqrp17System@TMetaClass
@System@IsMemoryManagerSet$qqrv
@System@SetMemoryManager$qqrrx21System@TMemoryManager
@System@IsMultiThread
@System@IsConsole
@System@ExitProc
@System@CmdLine
@System@IsLibrary
@System@MainInstance
@$xp$17System@WideString
@Sysconst@initialization$qqrv
@Sysconst@Finalization$qqrv
@Sysutils@initialization$qqrv
@Sysutils@Finalization$qqrv
@Activex@initialization$qqrv
@Activex@Finalization$qqrv
@Comconst@initialization$qqrv
@Comconst@Finalization$qqrv
@Comobj@initialization$qqrv
@Comobj@Finalization$qqrv
@Math@initialization$qqrv
@Math@Finalization$qqrv
@Flatsb@initialization$qqrv
@Flatsb@Finalization$qqrv
@Multimon@initialization$qqrv
@Multimon@Finalization$qqrv
@Consts@initialization$qqrv
@Consts@Finalization$qqrv
@Typinfo@initialization$qqrv
@Typinfo@Finalization$qqrv
@Typinfo@DotSep
@Typinfo@BooleanIdents
@Classes@initialization$qqrv
@Classes@Finalization$qqrv
@Classes@TComponent@UpdateRegistry$qqrp17System@TMetaClassox17System@AnsiStringt3
@Classes@TComponent@SafeCallException$qqrp14System@TObjectpv
@Classes@TComponent@SetName$qqrx17System@AnsiString
@Classes@TComponent@ValidateRename$qqrp18Classes@TComponentx17System@AnsiStringt2
@Classes@TComponent@WriteState$qqrp15Classes@TWriter
@Classes@TComponent@ReadState$qqrp15Classes@TReader
@Classes@TComponent@DefineProperties$qqrp14Classes@TFiler
@Classes@TComponent@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Classes@TComponent@BeforeDestruction$qqrv
@Classes@TComponent@$bdtr$qqrv
@Classes@TPersistent@AssignTo$qqrp19Classes@TPersistent
@Classes@TPersistent@Assign$qqrp19Classes@TPersistent
@Classes@TPersistent@$bdtr$qqrv
@Classes@RegisterComponents$qqrx17System@AnsiStringpxp17System@TMetaClassxi
@Classes@TComponent@
@Graphics@initialization$qqrv
@Graphics@Finalization$qqrv
@Contnrs@initialization$qqrv
@Contnrs@Finalization$qqrv
@Printers@initialization$qqrv
@Printers@Finalization$qqrv
@Stdctrls@initialization$qqrv
@Stdctrls@Finalization$qqrv
@Clipbrd@initialization$qqrv
@Clipbrd@Finalization$qqrv
@Stdactns@initialization$qqrv
@Stdactns@Finalization$qqrv
@Actnlist@initialization$qqrv
@Actnlist@Finalization$qqrv
@Forms@initialization$qqrv
@Forms@Finalization$qqrv
@Imglist@initialization$qqrv
@Imglist@Finalization$qqrv
@Menus@initialization$qqrv
@Menus@Finalization$qqrv
@$xp$16Menus@TPopupMenu
@Controls@initialization$qqrv
@Controls@Finalization$qqrv
@Controls@TWinControl@CanAutoSize$qqrrit1
@Controls@TWinControl@AssignTo$qqrp19Classes@TPersistent
@Controls@TWinControl@ConstrainedResize$qqrrit1t1t1
@Controls@TWinControl@CanResize$qqrrit1
@Controls@TWinControl@SetTabStop$qqro
@Controls@TWinControl@SetTabOrder$qqrs
@Controls@TWinControl@GetTabOrder$qqrv
@Controls@TWinControl@GetClientRect$qqrv
@Controls@TWinControl@GetClientOrigin$qqrv
@Controls@TWinControl@GetControlExtents$qqrv
@Controls@TWinControl@SetFocus$qqrv
@Controls@TWinControl@Repaint$qqrv
@Controls@TWinControl@Update$qqrv
@Controls@TWinControl@Invalidate$qqrv
@Controls@TWinControl@GetDeviceContext$qqrrui
@Controls@TWinControl@ShowControl$qqrp17Controls@TControl
@Controls@TWinControl@PaintWindow$qqrui
@Controls@TWinControl@CreateHandle$qqrv
@Controls@TWinControl@DestroyWnd$qqrv
@Controls@TWinControl@CreateWindowHandle$qqrrx22Controls@TCreateParams
@Controls@TWinControl@CreateParams$qqrr22Controls@TCreateParams
@Controls@TWinControl@AlignControls$qqrp17Controls@TControlr13Windows@TRect
@Controls@TWinControl@AdjustClientRect$qqrr13Windows@TRect
@Controls@TWinControl@ReadState$qqrp15Classes@TReader
@Controls@TWinControl@$bdtr$qqrv
@Controls@TWinControl@$bctr$qqrui
@Controls@TControl@InitiateAction$qqrv
@Controls@TControl@GetFloatingDockSiteClass$qqrv
@Controls@TControl@GetFloating$qqrv
@Controls@TControl@Loaded$qqrv
@Controls@TControl@IsVisibleStored$qqrv
@Controls@TControl@SetParentBiDiMode$qqro
@Controls@TControl@SetParentShowHint$qqro
@Controls@TControl@SetShowHint$qqro
@Controls@TControl@IsShowHintStored$qqrv
@Controls@TControl@SetBiDiMode$qqr17Classes@TBiDiMode
@Controls@TControl@SetPopupMenu$qqrp16Menus@TPopupMenu
@Controls@TControl@SetEnabled$qqro
@Controls@TControl@SetVisible$qqro
@Controls@TControl@SetAlign$qqr15Controls@TAlign
@Controls@TControl@Notification$qqrp18Classes@TComponent18Classes@TOperation
@Controls@TControl@SetDragMode$qqr18Controls@TDragMode
@Controls@TControl@GetEnabled$qqrv
@Controls@TControl@GetDragImages$qqrv
@Controls@TControl@$bdtr$qqrv
@$xp$18Controls@TDragMode
@$xp$15Controls@TAlign
@$xp$16Controls@TCursor
@Extctrls@initialization$qqrv
@Extctrls@Finalization$qqrv
@Oleconst@initialization$qqrv
@Oleconst@Finalization$qqrv
@Stdvcl@initialization$qqrv
@Stdvcl@Finalization$qqrv
@Axctrls@initialization$qqrv
@Axctrls@Finalization$qqrv
@Olectrls@initialization$qqrv
@Olectrls@Finalization$qqrv
@Olectrls@TOleControl@OnRequestEdit$qqsi
@Olectrls@TOleControl@OnChanged$qqsi
@Olectrls@TOleControl@QueryInterface$qqsrx5_GUIDpv
@Olectrls@TOleControl@WndProc$qqrr17Messages@TMessage
@Olectrls@TOleControl@SetWideStringProp$qqrix17System@WideString
@Olectrls@TOleControl@SetParent$qqrp20Controls@TWinControl
@Olectrls@TOleControl@SetWordBoolProp$qqrius
@Olectrls@TOleControl@SetName$qqrx17System@AnsiString
@Olectrls@TOleControl@SetIntegerProp$qqrii
@Olectrls@TOleControl@SetBounds$qqriiii
@Olectrls@TOleControl@InitControlInterface$qqrx35System@%DelphiInterface$t8IUnknown%
@Olectrls@TOleControl@GetWideStringProp$qqri
@Olectrls@TOleControl@GetDefaultDispatch$qqrv
@Olectrls@TOleControl@GetWordBoolProp$qqri
@Olectrls@TOleControl@GetIntegerProp$qqri
@Olectrls@TOleControl@DestroyWindowHandle$qqrv
@Olectrls@TOleControl@DefineProperties$qqrp14Classes@TFiler
@Olectrls@TOleControl@DefaultHandler$qqrpv
@Olectrls@TOleControl@CreateWnd$qqrv
@Olectrls@TOleControl@$bdtr$qqrv
@Olectrls@TOleControl@$bctr$qqrp18Classes@TComponent
@$xp$20Olectrls@TOleControl
@Olectrls@TOleControl@
@Oleserver@initialization$qqrv
@Oleserver@Finalization$qqrv
@Oleserver@TOleServer@QueryInterface$qqsrx5_GUIDpv
@Oleserver@TOleServer@DisconnectEvents$qqrx35System@%DelphiInterface$t8IUnknown%
@Oleserver@TOleServer@ConnectEvents$qqrx35System@%DelphiInterface$t8IUnknown%
@Oleserver@TOleServer@GetServer$qqrv
@Oleserver@TOleServer@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Oleserver@TOleServer@Loaded$qqrv
@Oleserver@TOleServer@$bdtr$qqrv
@Oleserver@TOleServer@$bctr$qqrp18Classes@TComponent
@$xp$20Oleserver@TOleServer
@Oleserver@TOleServer@

kernel32

DebugBreak
FormatMessageA
FreeLibrary
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetVersion
HeapAlloc
HeapFree
LoadLibraryA
LocalFree

user32

MessageBoxA
wsprintfA

oleaut32

SysAllocString
VariantChangeType
VariantClear
VariantCopy
VariantInit

cc3250mt

@$bdele$qpv
@_InitTermAndUnexPtrs$qv
@_ThrowExceptionLDTC$qpvt1t1t1uiuiuipuct1
__ErrorExit
__ErrorMessage
___CRTL_MEM_GetBorMemPtrs
___CRTL_MEM_UseBorMM
___CRTL_TLS_Alloc
___CRTL_TLS_ExitThread
___CRTL_TLS_Free
___CRTL_TLS_GetValue
___CRTL_TLS_InitThread
___CRTL_TLS_SetValue
____ExceptionHandler
__argv_default_expand
__free_heaps
__handle_exitargv
__handle_setargv
__handle_wexitargv
__handle_wsetargv
__startupd
__wargv_default_expand
_memcmp
_memcpy
_memset

Exports

Exports

@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@@Bcbie50@Finalize
@@Bcbie50@Initialize
@@Shdocvw_ocx@Finalize
@@Shdocvw_ocx@Initialize
@@Shdocvw_tlb@Finalize
@@Shdocvw_tlb@Initialize
@Shdocvw_ocx@Register$qqrv
@Shdocvw_tlb@CLSID_CScriptErrorList
@Shdocvw_tlb@CLSID_CppInternetExplorer
@Shdocvw_tlb@CLSID_CppSearchAssistantOC
@Shdocvw_tlb@CLSID_CppShellBrowserWindow
@Shdocvw_tlb@CLSID_CppShellUIHelper
@Shdocvw_tlb@CLSID_CppShellWindows
@Shdocvw_tlb@CLSID_CppWebBrowser
@Shdocvw_tlb@CLSID_CppWebBrowser_V1
@Shdocvw_tlb@CLSID_ShellFavoritesNameSpace
@Shdocvw_tlb@DIID_DShellWindowsEvents
@Shdocvw_tlb@DIID_DWebBrowserEvents
@Shdocvw_tlb@DIID_DWebBrowserEvents2
@Shdocvw_tlb@DIID__SearchAssistantEvents
@Shdocvw_tlb@DIID__ShellFavoritesNameSpaceEvents
@Shdocvw_tlb@IID_IScriptErrorList
@Shdocvw_tlb@IID_ISearch
@Shdocvw_tlb@IID_ISearchAssistantOC
@Shdocvw_tlb@IID_ISearchAssistantOC2
@Shdocvw_tlb@IID_ISearches
@Shdocvw_tlb@IID_IShellFavoritesNameSpace
@Shdocvw_tlb@IID_IShellUIHelper
@Shdocvw_tlb@IID_IShellWindows
@Shdocvw_tlb@IID_IWebBrowser
@Shdocvw_tlb@IID_IWebBrowser2
@Shdocvw_tlb@IID_IWebBrowserApp
@Shdocvw_tlb@LIBID_SHDocVw
@Shdocvw_tlb@TCppInternetExplorer@
@Shdocvw_tlb@TCppInternetExplorer@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppInternetExplorer@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppInternetExplorer@Connect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@ConnectTo$qqr69%TComInterface$24Shdocvw_tlb@IWebBrowser2px5_GUID$gIID_IWebBrowser2$%
@Shdocvw_tlb@TCppInternetExplorer@Disconnect$qqrv
@Shdocvw_tlb@TCppInternetExplorer@GetDefaultInterface$qv
@Shdocvw_tlb@TCppInternetExplorer@GetDunk$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InitServerData$qqrv
@Shdocvw_tlb@TCppInternetExplorer@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppShellUIHelper@
@Shdocvw_tlb@TCppShellUIHelper@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellUIHelper@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellUIHelper@Connect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@ConnectTo$qqr73%TComInterface$26Shdocvw_tlb@IShellUIHelperpx5_GUID$gIID_IShellUIHelper$%
@Shdocvw_tlb@TCppShellUIHelper@Disconnect$qqrv
@Shdocvw_tlb@TCppShellUIHelper@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellUIHelper@GetDunk$qqrv
@Shdocvw_tlb@TCppShellUIHelper@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@
@Shdocvw_tlb@TCppShellWindows@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppShellWindows@BeforeDestruction$qqrv
@Shdocvw_tlb@TCppShellWindows@Connect$qqrv
@Shdocvw_tlb@TCppShellWindows@ConnectTo$qqr71%TComInterface$25Shdocvw_tlb@IShellWindowspx5_GUID$gIID_IShellWindows$%
@Shdocvw_tlb@TCppShellWindows@Disconnect$qqrv
@Shdocvw_tlb@TCppShellWindows@GetDefaultInterface$qv
@Shdocvw_tlb@TCppShellWindows@GetDunk$qqrv
@Shdocvw_tlb@TCppShellWindows@InitServerData$qqrv
@Shdocvw_tlb@TCppShellWindows@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
@Shdocvw_tlb@TCppWebBrowser@
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser@$bctr$qqrp6HWND__
@Shdocvw_tlb@TCppWebBrowser@CControlData
@Shdocvw_tlb@TCppWebBrowser@ClientToWindow$qqrpit1
@Shdocvw_tlb@TCppWebBrowser@CreateControl$qqrv
@Shdocvw_tlb@TCppWebBrowser@DEF_CTL_INTF
@Shdocvw_tlb@TCppWebBrowser@EventDispIDs
@Shdocvw_tlb@TCppWebBrowser@ExecWB$qqr20Shdocvw_tlb@OLECMDID25Shdocvw_tlb@OLECMDEXECOPTp24%TVariantT$10tagVARIANT%t3
@Shdocvw_tlb@TCppWebBrowser@GetDefaultInterface$qqrv
@Shdocvw_tlb@TCppWebBrowser@GetProperty$qqrpb
@Shdocvw_tlb@TCppWebBrowser@GetWordBoolProp$qqri
@Shdocvw_tlb@TCppWebBrowser@Get_Application$qqrv
@Shdocvw_tlb@TCppWebBrowser@Get_Container$qqrv
@Shdocvw_tlb@TCppWebBrowser@Get_Document$qqrv
@Shdocvw_tlb@TCppWebBrowser@Get_Parent$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoBack$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoForward$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoHome$qqrv
@Shdocvw_tlb@TCppWebBrowser@GoSearch$qqrv
@Shdocvw_tlb@TCppWebBrowser@InitControlData$qqrv
@Shdocvw_tlb@TCppWebBrowser@Navigate$qqrpbp24%TVariantT$10tagVARIANT%t2t2t2
@Shdocvw_tlb@TCppWebBrowser@Navigate2$qqrp24%TVariantT$10tagVARIANT%t1t1t1t1
@Shdocvw_tlb@TCppWebBrowser@OptParam
@Shdocvw_tlb@TCppWebBrowser@PutProperty$qqrpb31%TVariantInParamT$10tagVARIANT%
@Shdocvw_tlb@TCppWebBrowser@QueryStatusWB$qqr20Shdocvw_tlb@OLECMDID
@Shdocvw_tlb@TCppWebBrowser@Quit$qqrv
@Shdocvw_tlb@TCppWebBrowser@Refresh$qqrv
@Shdocvw_tlb@TCppWebBrowser@Refresh2$qqrp24%TVariantT$10tagVARIANT%
@Shdocvw_tlb@TCppWebBrowser@SetWordBoolProp$qqrio
@Shdocvw_tlb@TCppWebBrowser@ShowBrowserBar$qqrp24%TVariantT$10tagVARIANT%t1t1
@Shdocvw_tlb@TCppWebBrowser@Stop$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@
@Shdocvw_tlb@TCppWebBrowser_V1@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TCppWebBrowser_V1@$bctr$qqrp6HWND__
@Shdocvw_tlb@TCppWebBrowser_V1@CControlData
@Shdocvw_tlb@TCppWebBrowser_V1@CreateControl$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@DEF_CTL_INTF
@Shdocvw_tlb@TCppWebBrowser_V1@EventDispIDs
@Shdocvw_tlb@TCppWebBrowser_V1@GetDefaultInterface$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@Get_Application$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@Get_Container$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@Get_Document$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@Get_Parent$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@GoBack$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@GoForward$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@GoHome$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@GoSearch$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@InitControlData$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@Navigate$qqrpbp24%TVariantT$10tagVARIANT%t2t2t2
@Shdocvw_tlb@TCppWebBrowser_V1@OptParam
@Shdocvw_tlb@TCppWebBrowser_V1@Refresh$qqrv
@Shdocvw_tlb@TCppWebBrowser_V1@Refresh2$qqrp24%TVariantT$10tagVARIANT%
@Shdocvw_tlb@TCppWebBrowser_V1@Stop$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@
@Shdocvw_tlb@TShellFavoritesNameSpace@$bctr$qqrp18Classes@TComponent
@Shdocvw_tlb@TShellFavoritesNameSpace@BeforeDestruction$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@Connect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@ConnectTo$qqr93%TComInterface$36Shdocvw_tlb@IShellFavoritesNameSpacepx5_GUID$gIID_IShellFavoritesNameSpace$%
@Shdocvw_tlb@TShellFavoritesNameSpace@Disconnect$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@GetDefaultInterface$qv
@Shdocvw_tlb@TShellFavoritesNameSpace@GetDunk$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InitServerData$qqrv
@Shdocvw_tlb@TShellFavoritesNameSpace@InvokeEvent$qqrir42System@%DynamicArray$t17System@OleVariant%
Finalize
Initialize
___CPPdebugHook

Sections

.text
Size: 35KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/cpack.dll
.dll windows:4 windows x86 arch:x86

91b30cfcc7207bfcf80e46cf00dc4158

Code Sign

29:50:aa:e6:6c:92:7d:15:de:57:31:61:af:52:c9:58:20:fe:a0:37
Signer

Actual PE Digest

29:50:aa:e6:6c:92:7d:15:de:57:31:61:af:52:c9:58:20:fe:a0:37

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCommandLineA
GetVersion
EnterCriticalSection
LeaveCriticalSection
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
WriteFile
SetFilePointer
InterlockedDecrement
InterlockedIncrement
HeapAlloc
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
LoadLibraryA
SetStdHandle
RtlUnwind
FlushFileBuffers
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
CloseHandle

Exports

Exports

ClearParmBit
DecodeBuf
DecodeBufHead
DecodeBufWithArray
DecodeBufWithArrayEx
EncodeBuf
EncodeBufArray
EncodeRow
GetPatitionKey
IsInParmBits
ModifyHead
Reserve
Reverse
SetErrorPack
SetErrorPack2
SetErrorPack2New
SetErrorPackNew
SetNormalPack
SetParmBit
ShowHex
ShowPack
ShowPackItem
ShowPackNext
_DecodeSingleItem
_EncodeSingleItem

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/dbghelp.dll
.dll windows:6 windows x86 arch:x86

e246e1939eedffac25310343ba57d266

Code Sign

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

c1:00:8b:3c:3c:88:11:d1:3e:f6:63:ec:df:40
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

10/01/1997, 07:00

Not After

31/12/2020, 07:00

Subject

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

2e:ab:11:dc:50:ff:5c:9d:cb:c0
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

22/08/2007, 22:31

Not After

25/08/2012, 07:00

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:0f:78:4d:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

23/08/2007, 00:23

Not After

23/02/2009, 00:33

Subject

CN=Microsoft Corporation,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:47:52:ba:00:00:00:00:00:04
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/09/2006, 01:53

Not After

16/09/2011, 02:03

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:D8A9-CFCC-579C,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

61:49:7c:ed:00:00:00:00:00:05
Certificate

Issuer

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

16/09/2006, 01:55

Not After

16/09/2011, 02:05

Subject

CN=Microsoft Timestamping Service,OU=nCipher DSE ESN:10D8-5847-CBF8,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageContentCommitment

6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2
Certificate

Issuer

CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

Not Before

16/09/2006, 01:04

Not After

15/09/2019, 07:00

Subject

CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

53:12:dc:61:b5:ac:22:99:f7:b3:0a:4c:f8:7c:8c:75:88:08:11:78
Signer

Actual PE Digest

53:12:dc:61:b5:ac:22:99:f7:b3:0a:4c:f8:7c:8c:75:88:08:11:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

dbghelp.pdb

Imports

msvcrt

_isatty
_write
_lseeki64
??3@YAXPAX@Z
_fileno
_read
__pioinfo
__badioinfo
ferror
wctomb
_snprintf
isleadbyte
mbtowc
_onexit
_lock
__dllonexit
_unlock
_ismbblead
_amsg_exit
_initterm
_XcptFilter
memmove
_iob
__mb_cur_max
strchr
_vsnwprintf
_errno
__CxxFrameHandler
iswspace
calloc
_itoa
_wcsdup
towlower
tolower
_wcslwr
time
_wctime
_ltoa
_wcsnicmp
_purecall
ctime
malloc
strncmp
isspace
_stricmp
_strlwr
free
wcsrchr
strstr
memcpy
_wcsicmp
qsort
wcschr
wcsstr
wcsncmp
iswxdigit
memset
??2@YAPAXI@Z
iswprint
atol
fclose
__unDName
iswdigit
_CxxThrowException
bsearch
_wfsopen
fread
fseek
wcstol
_wfullpath
_wgetenv
_get_osfhandle
_chsize
_close
_open_osfhandle
ftell
_memicmp
_mbscmp
??1type_info@@UAE@XZ
_wsopen

kernel32

HeapAlloc
MapViewOfFileEx
GetCurrentDirectoryW
InitializeCriticalSectionAndSpinCount
GetFileType
DeviceIoControl
SetFileAttributesW
CreateFileMappingW
InterlockedIncrement
InterlockedDecrement
LocalFree
FormatMessageW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetTickCount
QueryPerformanceCounter
RtlUnwind
InterlockedExchange
GetThreadSelectorEntry
CreateThread
TerminateThread
VirtualQueryEx
GetPriorityClass
GetThreadPriority
GetThreadTimes
GetThreadContext
ResumeThread
SuspendThread
GetCurrentThreadId
GetSystemTimeAsFileTime
Sleep
GetVersion
GetSystemInfo
LoadLibraryA
InterlockedCompareExchange
DelayLoadFailureHook
ReadProcessMemory
GetProcessHeap
GetFileAttributesA
SetErrorMode
WriteFile
OutputDebugStringA
VirtualFree
OpenProcess
GetCurrentProcessId
GetModuleHandleA
CreateFileMappingA
MapViewOfFile
DuplicateHandle
VirtualAlloc
VirtualProtect
CreateDirectoryA
UnmapViewOfFile
GetCurrentProcess
SetFilePointer
IsDBCSLeadByte
HeapFree
HeapReAlloc
GetVersionExA
InitializeCriticalSection
HeapCreate
FindClose
LocalAlloc
SetLastError
LeaveCriticalSection
EnterCriticalSection
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetLastError
TlsSetValue
TlsGetValue
TlsAlloc
TlsFree
DeleteCriticalSection
HeapDestroy
FreeLibrary
FlushViewOfFile

Exports

Exports

DbgHelpCreateUserDump
DbgHelpCreateUserDumpW
EnumDirTree
EnumDirTreeW
EnumerateLoadedModules
EnumerateLoadedModules64
EnumerateLoadedModulesEx
EnumerateLoadedModulesExW
EnumerateLoadedModulesW64
ExtensionApiVersion
FindDebugInfoFile
FindDebugInfoFileEx
FindDebugInfoFileExW
FindExecutableImage
FindExecutableImageEx
FindExecutableImageExW
FindFileInPath
FindFileInSearchPath
GetTimestampForLoadedLibrary
ImageDirectoryEntryToData
ImageDirectoryEntryToDataEx
ImageNtHeader
ImageRvaToSection
ImageRvaToVa
ImagehlpApiVersion
ImagehlpApiVersionEx
MakeSureDirectoryPathExists
MapDebugInformation
MiniDumpReadDumpStream
MiniDumpWriteDump
SearchTreeForFile
SearchTreeForFileW
StackWalk
StackWalk64
SymAddSourceStream
SymAddSourceStreamA
SymAddSourceStreamW
SymAddSymbol
SymAddSymbolW
SymCleanup
SymDeleteSymbol
SymDeleteSymbolW
SymEnumLines
SymEnumLinesW
SymEnumProcesses
SymEnumSourceFileTokens
SymEnumSourceFiles
SymEnumSourceFilesW
SymEnumSourceLines
SymEnumSourceLinesW
SymEnumSym
SymEnumSymbols
SymEnumSymbolsForAddr
SymEnumSymbolsForAddrW
SymEnumSymbolsW
SymEnumTypes
SymEnumTypesByName
SymEnumTypesByNameW
SymEnumTypesW
SymEnumerateModules
SymEnumerateModules64
SymEnumerateModulesW64
SymEnumerateSymbols
SymEnumerateSymbols64
SymEnumerateSymbolsW
SymEnumerateSymbolsW64
SymFindDebugInfoFile
SymFindDebugInfoFileW
SymFindExecutableImage
SymFindExecutableImageW
SymFindFileInPath
SymFindFileInPathW
SymFromAddr
SymFromAddrW
SymFromIndex
SymFromIndexW
SymFromName
SymFromNameW
SymFromToken
SymFromTokenW
SymFunctionTableAccess
SymFunctionTableAccess64
SymGetFileLineOffsets64
SymGetHomeDirectory
SymGetHomeDirectoryW
SymGetLineFromAddr
SymGetLineFromAddr64
SymGetLineFromAddrW64
SymGetLineFromName
SymGetLineFromName64
SymGetLineFromNameW64
SymGetLineNext
SymGetLineNext64
SymGetLineNextW64
SymGetLinePrev
SymGetLinePrev64
SymGetLinePrevW64
SymGetModuleBase
SymGetModuleBase64
SymGetModuleInfo
SymGetModuleInfo64
SymGetModuleInfoW
SymGetModuleInfoW64
SymGetOmapBlockBase
SymGetOmaps
SymGetOptions
SymGetScope
SymGetScopeW
SymGetSearchPath
SymGetSearchPathW
SymGetSourceFile
SymGetSourceFileFromToken
SymGetSourceFileFromTokenW
SymGetSourceFileToken
SymGetSourceFileTokenW
SymGetSourceFileW
SymGetSourceVarFromToken
SymGetSourceVarFromTokenW
SymGetSymFromAddr
SymGetSymFromAddr64
SymGetSymFromName
SymGetSymFromName64
SymGetSymNext
SymGetSymNext64
SymGetSymPrev
SymGetSymPrev64
SymGetSymbolFile
SymGetSymbolFileW
SymGetTypeFromName
SymGetTypeFromNameW
SymGetTypeInfo
SymGetTypeInfoEx
SymGetUnwindInfo
SymInitialize
SymInitializeW
SymLoadModule
SymLoadModule64
SymLoadModuleEx
SymLoadModuleExW
SymMatchFileName
SymMatchFileNameW
SymMatchString
SymMatchStringA
SymMatchStringW
SymNext
SymNextW
SymPrev
SymPrevW
SymRefreshModuleList
SymRegisterCallback
SymRegisterCallback64
SymRegisterCallbackW64
SymRegisterFunctionEntryCallback
SymRegisterFunctionEntryCallback64
SymSearch
SymSearchW
SymSetContext
SymSetHomeDirectory
SymSetHomeDirectoryW
SymSetOptions
SymSetParentWindow
SymSetScopeFromAddr
SymSetScopeFromIndex
SymSetSearchPath
SymSetSearchPathW
SymSrvDeltaName
SymSrvDeltaNameW
SymSrvGetFileIndexInfo
SymSrvGetFileIndexInfoW
SymSrvGetFileIndexString
SymSrvGetFileIndexStringW
SymSrvGetFileIndexes
SymSrvGetFileIndexesW
SymSrvGetSupplement
SymSrvGetSupplementW
SymSrvIsStore
SymSrvIsStoreW
SymSrvStoreFile
SymSrvStoreFileW
SymSrvStoreSupplement
SymSrvStoreSupplementW
SymUnDName
SymUnDName64
SymUnloadModule
SymUnloadModule64
UnDecorateSymbolName
UnDecorateSymbolNameW
UnmapDebugInformation
WinDbgExtensionDllInit
block
chksym
dbghelp
dh
fptr
homedir
itoldyouso
lmi
lminfo
omap
srcfiles
stack_force_ebp
stackdbg
sym
symsrv
vc7fpo

Sections

.text
Size: 965KB - Virtual size: 965KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/futuefs.ini
pobo5/system/gpwrappr.dll
.dll windows:4 windows x86 arch:x86

132bcda0845c4da14c1e671ba03ead86

Code Sign

62:27:87:14:b2:af:5b:7e:ea:5c:5e:87:46:f8:9a:b4:9f:d2:e7:ef
Signer

Actual PE Digest

62:27:87:14:b2:af:5b:7e:ea:5c:5e:87:46:f8:9a:b4:9f:d2:e7:ef

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetProcessHeap
HeapAlloc
HeapFree
MultiByteToWideChar
GetStringTypeW
GetStringTypeA
LoadLibraryA
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
LCMapStringW
LCMapStringA
GetCPInfo
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
VirtualFree
HeapCreate
RtlUnwind
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy

gdi32

GetTextColor
GetCurrentObject
GetObjectA

gdiplus

GdipMeasureString
GdipCloneImage
GdipLoadImageFromFile
GdipSaveImageToFile
GdipDisposeImage
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipFree
GdipCloneBrush
GdipAlloc
GdipCreateSolidFill
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipSetTextRenderingHint
GdipStringFormatGetGenericTypographic
GdipDrawString
GdipDeleteFont
GdipDeleteBrush
GdipDrawEllipseI
GdipCreatePen1
GdipCreateFromHDC
GdipSetSmoothingMode
GdipDrawLineI
GdipDeleteGraphics
GdipDeletePen
GdiplusStartup
GdiplusShutdown

Exports

Exports

ConvertBitmap
DrawEllipseAntialiasing
DrawLineAntialiasing
GetTextExtentPoint32Antialiasing
TextOutAntialiasing

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/hsmduserapi.dll
.dll windows:5 windows x86 arch:x86

5403cd479675434e1d5114af5365f6f6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

t2sdk

NewUnPacker
NewConfig
NewConnection
NewPacker
NewBizMessage

iphlpapi

GetBestInterface
GetAdaptersInfo

ws2_32

gethostbyname
inet_ntoa
inet_addr
socket
htonl
htons
setsockopt
bind
closesocket
select
__WSAFDIsSet
recvfrom

kernel32

SetStdHandle
SetEndOfFile
CompareStringA
CompareStringW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
InitializeCriticalSectionAndSpinCount
GetStringTypeW
InitializeCriticalSection
EnterCriticalSection
SetEnvironmentVariableA
DeleteCriticalSection
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetVersionExA
QueryPerformanceCounter
QueryPerformanceFrequency
GetLocalTime
GetCurrentProcessId
GetComputerNameA
InterlockedIncrement
InterlockedDecrement
CreateEventA
SetEvent
WaitForSingleObject
ResetEvent
CloseHandle
Sleep
GetStringTypeA
LCMapStringW
LeaveCriticalSection
WriteFile
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
GetLastError
GetSystemTimeAsFileTime
ExitThread
GetCurrentThreadId
CreateThread
GetCommandLineA
CreateDirectoryA
GetStdHandle
GetModuleFileNameA
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
HeapDestroy
ExitProcess
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapSize
GetTimeZoneInformation
FlushFileBuffers
MultiByteToWideChar
ReadFile
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
LoadLibraryA
GetLocaleInfoA
LCMapStringA

user32

MessageBoxA

advapi32

GetUserNameA

Exports

Exports

??0CThostFtdcMdApi@HundsunAPI@@QAE@ABV01@@Z
??0CThostFtdcMdApi@HundsunAPI@@QAE@XZ
??1CThostFtdcMdApi@HundsunAPI@@IAE@XZ
??4CThostFtdcMdApi@HundsunAPI@@QAEAAV01@ABV01@@Z
??_7CThostFtdcMdApi@HundsunAPI@@6B@
?CreateFtdcMdApi@CThostFtdcMdApi@HundsunAPI@@SAPAV12@PBD_N1@Z
GetLibVersion

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/hstraderapi.dll
.dll windows:5 windows x86 arch:x86

fe7749804e56d6e35a9c0f22e4a5e109

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

t2sdk

NewUnPacker
NewConfig
NewConnection
NewBizMessage
NewPacker

iphlpapi

GetBestInterface
GetAdaptersInfo

ws2_32

gethostbyname
inet_ntoa
inet_addr

kernel32

SetEndOfFile
CompareStringA
CompareStringW
GetStringTypeW
GetStringTypeA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
SetEnvironmentVariableA
GetVersionExA
QueryPerformanceCounter
QueryPerformanceFrequency
GetLocalTime
GetCurrentProcessId
GetComputerNameA
InterlockedIncrement
InterlockedDecrement
CreateEventA
SetEvent
WaitForSingleObject
ResetEvent
CloseHandle
Sleep
FreeLibrary
LoadLibraryA
LCMapStringW
LCMapStringA
GetModuleHandleA
GetStdHandle
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
GetLastError
GetSystemTimeAsFileTime
ExitThread
GetCurrentThreadId
CreateThread
GetTimeFormatA
GetDateFormatA
GetCommandLineA
WriteFile
CreateDirectoryA
GetModuleFileNameA
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
SetFilePointer
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
HeapReAlloc
ExitProcess
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
HeapSize
GetTimeZoneInformation
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
FlushFileBuffers
MultiByteToWideChar
ReadFile
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetTickCount
GetLocaleInfoA
SetStdHandle
CreateFileA
InitializeCriticalSectionAndSpinCount
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW

user32

MessageBoxA

advapi32

GetUserNameA

Exports

Exports

??0CThostFtdcTraderApi@HundsunAPI@@QAE@ABV01@@Z
??0CThostFtdcTraderApi@HundsunAPI@@QAE@XZ
??1CThostFtdcTraderApi@HundsunAPI@@IAE@XZ
??4CThostFtdcTraderApi@HundsunAPI@@QAEAAV01@ABV01@@Z
??_7CThostFtdcTraderApi@HundsunAPI@@6B@
?CreateFtdcTraderApi@CThostFtdcTraderApi@HundsunAPI@@SAPAV12@PBD@Z
GetLibVersion

Sections

.text
Size: 422KB - Virtual size: 421KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/images/Report_02.jpg
.jpg
pobo5/system/images/Report_03.jpg
.jpg
pobo5/system/images/Report_04.jpg
.jpg
pobo5/system/images/Report_05.bmp
pobo5/system/images/Report_06.jpg
.jpg
pobo5/system/images/SAMPLE.bmp
pobo5/system/images/Thumbs.db
pobo5/system/images/bt_bg.gif
.gif
pobo5/system/images/ѡ.bmp
pobo5/system/images/ѡ.bmp
pobo5/system/images/.bmp
pobo5/system/images/.bmp
pobo5/system/ksPortalAPI.dll
.dll windows:4 windows x86 arch:x86

d4d76f66eb1310f5956622e456eb99ea

Code Sign

ce:66:23:5e:3a:91:0f:4c:b5:1b:bb:70:7c:42:05:50:bf:d7:e3:ef
Signer

Actual PE Digest

ce:66:23:5e:3a:91:0f:4c:b5:1b:bb:70:7c:42:05:50:bf:d7:e3:ef

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

ntohs
send
recv
setsockopt
inet_addr
connect
socket
htons
htonl
bind
closesocket
listen
accept
WSACleanup
WSAStartup

kernel32

InterlockedDecrement
CompareStringW
CompareStringA
SetEndOfFile
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
ReadFile
SetStdHandle
LoadLibraryA
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
WaitForMultipleObjects
CreateEventA
SetEvent
GetTickCount
WaitForSingleObject
CloseHandle
GetCurrentThreadId
VirtualAlloc
GetLocaleInfoA
RtlUnwind
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
ExitThread
GetLastError
CreateThread
DeleteFileA
GetSystemTimeAsFileTime
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetModuleHandleA
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
SetEnvironmentVariableA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
Sleep
HeapSize
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetTimeZoneInformation
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
SetFilePointer
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW

sspxencode

ord3
ord2
ord4
ord1

Exports

Exports

PAPI_ExitInstance
PAPI_GetErrorDescribe
PAPI_GetSwitchList
PAPI_InitInstance
PAPI_RestoralContext

Sections

.text
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/libcrypto-1_1.dll
.dll windows:6 windows x86 arch:x86

8c0767be991db4f5e9bd67fff379c857

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\CFILES\Projects\WinSSL\openssl-1.1.0h\libcrypto-1_1.pdb

Imports

ws2_32

sendto
recvfrom
WSASetLastError
send
recv
shutdown
socket
setsockopt
listen
connect
closesocket
bind
accept
WSAGetLastError
WSACleanup
WSAStartup
gethostbyname
getsockopt
getsockname
ioctlsocket
getnameinfo
freeaddrinfo
getaddrinfo
ntohs

advapi32

CryptReleaseContext
CryptAcquireContextW
ReportEventW
RegisterEventSourceW
DeregisterEventSource
CryptGenRandom

user32

MessageBoxW
GetUserObjectInformationW
GetProcessWindowStation

msvcr120

fflush
fgets
_fileno
fread
fseek
ftell
_errno
_setmode
isxdigit
getenv
_strdup
ferror
malloc
_exit
wcsstr
sscanf
_vsnprintf
_vsnwprintf
raise
atoi
sprintf
strncpy
strstr
strtol
fprintf
strcmp
realloc
fopen
_wfopen
strerror_s
_gmtime32
isalnum
memchr
strcspn
strspn
setbuf
_chmod
_fstat32
_stat32
signal
_stricmp
_snwprintf
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_except1
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
__CppXcptFilter
_amsg_exit
_malloc_crt
_initterm
_initterm_e
_except_handler4_common
__clean_type_info_names_internal
feof
fclose
perror
fputs
__iob_func
memmove
qsort
strrchr
tolower
isspace
isupper
_strnicmp
_time32
strncmp
strtoul
fwrite
strchr
isdigit
memset
memcpy
free

kernel32

ReadConsoleW
ReadConsoleA
GetConsoleMode
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetCurrentThreadId
SetConsoleMode
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetEnvironmentVariableW
GlobalMemoryStatus
GetTickCount
GetCurrentProcessId
QueryPerformanceCounter
GetSystemTimeAsFileTime
ExitProcess
IsDebuggerPresent
IsProcessorFeaturePresent
EncodePointer
DecodePointer
DeleteCriticalSection
WideCharToMultiByte
FindNextFileW
FindFirstFileW
FindClose
LoadLibraryW
LoadLibraryA
FreeLibrary
CloseHandle
MultiByteToWideChar
GetProcAddress
GetModuleHandleW
WriteFile
GetFileType
GetStdHandle
SetLastError
GetLastError
SystemTimeToFileTime
GetSystemTime
FormatMessageW
CreateFiber
DeleteFiber
SwitchToFiber
ConvertThreadToFiber
ConvertFiberToThread
GetModuleHandleExW

Exports

Exports

ACCESS_DESCRIPTION_free
ACCESS_DESCRIPTION_it
ACCESS_DESCRIPTION_new
AES_bi_ige_encrypt
AES_cbc_encrypt
AES_cfb128_encrypt
AES_cfb1_encrypt
AES_cfb8_encrypt
AES_decrypt
AES_ecb_encrypt
AES_encrypt
AES_ige_encrypt
AES_ofb128_encrypt
AES_options
AES_set_decrypt_key
AES_set_encrypt_key
AES_unwrap_key
AES_wrap_key
ASIdOrRange_free
ASIdOrRange_it
ASIdOrRange_new
ASIdentifierChoice_free
ASIdentifierChoice_it
ASIdentifierChoice_new
ASIdentifiers_free
ASIdentifiers_it
ASIdentifiers_new
ASN1_ANY_it
ASN1_BIT_STRING_check
ASN1_BIT_STRING_free
ASN1_BIT_STRING_get_bit
ASN1_BIT_STRING_it
ASN1_BIT_STRING_name_print
ASN1_BIT_STRING_new
ASN1_BIT_STRING_num_asc
ASN1_BIT_STRING_set
ASN1_BIT_STRING_set_asc
ASN1_BIT_STRING_set_bit
ASN1_BMPSTRING_free
ASN1_BMPSTRING_it
ASN1_BMPSTRING_new
ASN1_BOOLEAN_it
ASN1_ENUMERATED_free
ASN1_ENUMERATED_get
ASN1_ENUMERATED_get_int64
ASN1_ENUMERATED_it
ASN1_ENUMERATED_new
ASN1_ENUMERATED_set
ASN1_ENUMERATED_set_int64
ASN1_ENUMERATED_to_BN
ASN1_FBOOLEAN_it
ASN1_GENERALIZEDTIME_adj
ASN1_GENERALIZEDTIME_check
ASN1_GENERALIZEDTIME_free
ASN1_GENERALIZEDTIME_it
ASN1_GENERALIZEDTIME_new
ASN1_GENERALIZEDTIME_print
ASN1_GENERALIZEDTIME_set
ASN1_GENERALIZEDTIME_set_string
ASN1_GENERALSTRING_free
ASN1_GENERALSTRING_it
ASN1_GENERALSTRING_new
ASN1_IA5STRING_free
ASN1_IA5STRING_it
ASN1_IA5STRING_new
ASN1_INTEGER_cmp
ASN1_INTEGER_dup
ASN1_INTEGER_free
ASN1_INTEGER_get
ASN1_INTEGER_get_int64
ASN1_INTEGER_get_uint64
ASN1_INTEGER_it
ASN1_INTEGER_new
ASN1_INTEGER_set
ASN1_INTEGER_set_int64
ASN1_INTEGER_set_uint64
ASN1_INTEGER_to_BN
ASN1_NULL_free
ASN1_NULL_it
ASN1_NULL_new
ASN1_OBJECT_create
ASN1_OBJECT_free
ASN1_OBJECT_it
ASN1_OBJECT_new
ASN1_OCTET_STRING_NDEF_it
ASN1_OCTET_STRING_cmp
ASN1_OCTET_STRING_dup
ASN1_OCTET_STRING_free
ASN1_OCTET_STRING_it
ASN1_OCTET_STRING_new
ASN1_OCTET_STRING_set
ASN1_PCTX_free
ASN1_PCTX_get_cert_flags
ASN1_PCTX_get_flags
ASN1_PCTX_get_nm_flags
ASN1_PCTX_get_oid_flags
ASN1_PCTX_get_str_flags
ASN1_PCTX_new
ASN1_PCTX_set_cert_flags
ASN1_PCTX_set_flags
ASN1_PCTX_set_nm_flags
ASN1_PCTX_set_oid_flags
ASN1_PCTX_set_str_flags
ASN1_PRINTABLESTRING_free
ASN1_PRINTABLESTRING_it
ASN1_PRINTABLESTRING_new
ASN1_PRINTABLE_free
ASN1_PRINTABLE_it
ASN1_PRINTABLE_new
ASN1_PRINTABLE_type
ASN1_SCTX_free
ASN1_SCTX_get_app_data
ASN1_SCTX_get_flags
ASN1_SCTX_get_item
ASN1_SCTX_get_template
ASN1_SCTX_new
ASN1_SCTX_set_app_data
ASN1_SEQUENCE_ANY_it
ASN1_SEQUENCE_it
ASN1_SET_ANY_it
ASN1_STRING_TABLE_add
ASN1_STRING_TABLE_cleanup
ASN1_STRING_TABLE_get
ASN1_STRING_clear_free
ASN1_STRING_cmp
ASN1_STRING_copy
ASN1_STRING_data
ASN1_STRING_dup
ASN1_STRING_free
ASN1_STRING_get0_data
ASN1_STRING_get_default_mask
ASN1_STRING_length
ASN1_STRING_length_set
ASN1_STRING_new
ASN1_STRING_print
ASN1_STRING_print_ex
ASN1_STRING_print_ex_fp
ASN1_STRING_set
ASN1_STRING_set0
ASN1_STRING_set_by_NID
ASN1_STRING_set_default_mask
ASN1_STRING_set_default_mask_asc
ASN1_STRING_to_UTF8
ASN1_STRING_type
ASN1_STRING_type_new
ASN1_T61STRING_free
ASN1_T61STRING_it
ASN1_T61STRING_new
ASN1_TBOOLEAN_it
ASN1_TIME_adj
ASN1_TIME_check
ASN1_TIME_diff
ASN1_TIME_free
ASN1_TIME_it
ASN1_TIME_new
ASN1_TIME_print
ASN1_TIME_set
ASN1_TIME_set_string
ASN1_TIME_to_generalizedtime
ASN1_TYPE_cmp
ASN1_TYPE_free
ASN1_TYPE_get
ASN1_TYPE_get_int_octetstring
ASN1_TYPE_get_octetstring
ASN1_TYPE_new
ASN1_TYPE_pack_sequence
ASN1_TYPE_set
ASN1_TYPE_set1
ASN1_TYPE_set_int_octetstring
ASN1_TYPE_set_octetstring
ASN1_TYPE_unpack_sequence
ASN1_UNIVERSALSTRING_free
ASN1_UNIVERSALSTRING_it
ASN1_UNIVERSALSTRING_new
ASN1_UNIVERSALSTRING_to_string
ASN1_UTCTIME_adj
ASN1_UTCTIME_check
ASN1_UTCTIME_cmp_time_t
ASN1_UTCTIME_free
ASN1_UTCTIME_it
ASN1_UTCTIME_new
ASN1_UTCTIME_print
ASN1_UTCTIME_set
ASN1_UTCTIME_set_string
ASN1_UTF8STRING_free
ASN1_UTF8STRING_it
ASN1_UTF8STRING_new
ASN1_VISIBLESTRING_free
ASN1_VISIBLESTRING_it
ASN1_VISIBLESTRING_new
ASN1_add_oid_module
ASN1_add_stable_module
ASN1_bn_print
ASN1_buf_print
ASN1_check_infinite_end
ASN1_const_check_infinite_end
ASN1_d2i_bio
ASN1_d2i_fp
ASN1_digest
ASN1_dup
ASN1_generate_nconf
ASN1_generate_v3
ASN1_get_object
ASN1_i2d_bio
ASN1_i2d_fp
ASN1_item_d2i
ASN1_item_d2i_bio
ASN1_item_d2i_fp
ASN1_item_digest
ASN1_item_dup
ASN1_item_ex_d2i
ASN1_item_ex_free
ASN1_item_ex_i2d
ASN1_item_ex_new
ASN1_item_free
ASN1_item_i2d
ASN1_item_i2d_bio
ASN1_item_i2d_fp
ASN1_item_ndef_i2d
ASN1_item_new
ASN1_item_pack
ASN1_item_print
ASN1_item_sign
ASN1_item_sign_ctx
ASN1_item_unpack
ASN1_item_verify
ASN1_mbstring_copy
ASN1_mbstring_ncopy
ASN1_object_size
ASN1_parse
ASN1_parse_dump
ASN1_put_eoc
ASN1_put_object
ASN1_sign
ASN1_str2mask
ASN1_tag2bit
ASN1_tag2str
ASN1_verify
ASRange_free
ASRange_it
ASRange_new
ASYNC_WAIT_CTX_clear_fd
ASYNC_WAIT_CTX_free
ASYNC_WAIT_CTX_get_all_fds
ASYNC_WAIT_CTX_get_changed_fds
ASYNC_WAIT_CTX_get_fd
ASYNC_WAIT_CTX_new
ASYNC_WAIT_CTX_set_wait_fd
ASYNC_block_pause
ASYNC_cleanup_thread
ASYNC_get_current_job
ASYNC_get_wait_ctx
ASYNC_init_thread
ASYNC_is_capable
ASYNC_pause_job
ASYNC_start_job
ASYNC_unblock_pause
AUTHORITY_INFO_ACCESS_free
AUTHORITY_INFO_ACCESS_it
AUTHORITY_INFO_ACCESS_new
AUTHORITY_KEYID_free
AUTHORITY_KEYID_it
AUTHORITY_KEYID_new
BASIC_CONSTRAINTS_free
BASIC_CONSTRAINTS_it
BASIC_CONSTRAINTS_new
BF_cbc_encrypt
BF_cfb64_encrypt
BF_decrypt
BF_ecb_encrypt
BF_encrypt
BF_ofb64_encrypt
BF_options
BF_set_key
BIGNUM_it
BIO_ADDRINFO_address
BIO_ADDRINFO_family
BIO_ADDRINFO_free
BIO_ADDRINFO_next
BIO_ADDRINFO_protocol
BIO_ADDRINFO_socktype
BIO_ADDR_clear
BIO_ADDR_family
BIO_ADDR_free
BIO_ADDR_hostname_string
BIO_ADDR_new
BIO_ADDR_path_string
BIO_ADDR_rawaddress
BIO_ADDR_rawmake
BIO_ADDR_rawport
BIO_ADDR_service_string
BIO_accept
BIO_accept_ex
BIO_asn1_get_prefix
BIO_asn1_get_suffix
BIO_asn1_set_prefix
BIO_asn1_set_suffix
BIO_callback_ctrl
BIO_clear_flags
BIO_closesocket
BIO_connect
BIO_copy_next_retry
BIO_ctrl
BIO_ctrl_get_read_request
BIO_ctrl_get_write_guarantee
BIO_ctrl_pending
BIO_ctrl_reset_read_request
BIO_ctrl_wpending
BIO_debug_callback
BIO_dgram_non_fatal_error
BIO_dump
BIO_dump_cb
BIO_dump_fp
BIO_dump_indent
BIO_dump_indent_cb
BIO_dump_indent_fp
BIO_dup_chain
BIO_f_asn1
BIO_f_base64
BIO_f_buffer
BIO_f_cipher
BIO_f_linebuffer
BIO_f_md
BIO_f_nbio_test
BIO_f_null
BIO_f_reliable
BIO_fd_non_fatal_error
BIO_fd_should_retry
BIO_find_type
BIO_free
BIO_free_all
BIO_get_accept_socket
BIO_get_callback
BIO_get_callback_arg
BIO_get_data
BIO_get_ex_data
BIO_get_host_ip
BIO_get_init
BIO_get_new_index
BIO_get_port
BIO_get_retry_BIO
BIO_get_retry_reason
BIO_get_shutdown
BIO_gethostbyname
BIO_gets
BIO_hex_string
BIO_indent
BIO_int_ctrl
BIO_listen
BIO_lookup
BIO_meth_free
BIO_meth_get_callback_ctrl
BIO_meth_get_create
BIO_meth_get_ctrl
BIO_meth_get_destroy
BIO_meth_get_gets
BIO_meth_get_puts
BIO_meth_get_read
BIO_meth_get_write
BIO_meth_new
BIO_meth_set_callback_ctrl
BIO_meth_set_create
BIO_meth_set_ctrl
BIO_meth_set_destroy
BIO_meth_set_gets
BIO_meth_set_puts
BIO_meth_set_read
BIO_meth_set_write
BIO_method_name
BIO_method_type
BIO_new
BIO_new_CMS
BIO_new_NDEF
BIO_new_PKCS7
BIO_new_accept
BIO_new_bio_pair
BIO_new_connect
BIO_new_dgram
BIO_new_fd
BIO_new_file
BIO_new_fp
BIO_new_mem_buf
BIO_new_socket
BIO_next
BIO_nread
BIO_nread0
BIO_number_read
BIO_number_written
BIO_nwrite
BIO_nwrite0
BIO_parse_hostserv
BIO_pop
BIO_printf
BIO_ptr_ctrl
BIO_push
BIO_puts
BIO_read
BIO_s_accept
BIO_s_bio
BIO_s_connect
BIO_s_datagram
BIO_s_fd
BIO_s_file
BIO_s_mem
BIO_s_null
BIO_s_secmem
BIO_s_socket
BIO_set_callback
BIO_set_callback_arg
BIO_set_cipher
BIO_set_data
BIO_set_ex_data
BIO_set_flags
BIO_set_init
BIO_set_next
BIO_set_retry_reason
BIO_set_shutdown
BIO_set_tcp_ndelay
BIO_snprintf
BIO_sock_error
BIO_sock_info
BIO_sock_init
BIO_sock_non_fatal_error
BIO_sock_should_retry
BIO_socket
BIO_socket_ioctl
BIO_socket_nbio
BIO_test_flags
BIO_up_ref
BIO_vfree
BIO_vprintf
BIO_vsnprintf
BIO_write
BN_BLINDING_convert
BN_BLINDING_convert_ex
BN_BLINDING_create_param
BN_BLINDING_free
BN_BLINDING_get_flags
BN_BLINDING_invert
BN_BLINDING_invert_ex
BN_BLINDING_is_current_thread
BN_BLINDING_lock
BN_BLINDING_new
BN_BLINDING_set_current_thread
BN_BLINDING_set_flags
BN_BLINDING_unlock
BN_BLINDING_update
BN_CTX_end
BN_CTX_free
BN_CTX_get
BN_CTX_new
BN_CTX_secure_new
BN_CTX_start
BN_GENCB_call
BN_GENCB_free
BN_GENCB_get_arg
BN_GENCB_new
BN_GENCB_set
BN_GENCB_set_old
BN_GF2m_add
BN_GF2m_arr2poly
BN_GF2m_mod
BN_GF2m_mod_arr
BN_GF2m_mod_div
BN_GF2m_mod_div_arr
BN_GF2m_mod_exp
BN_GF2m_mod_exp_arr
BN_GF2m_mod_inv
BN_GF2m_mod_inv_arr
BN_GF2m_mod_mul
BN_GF2m_mod_mul_arr
BN_GF2m_mod_solve_quad
BN_GF2m_mod_solve_quad_arr
BN_GF2m_mod_sqr
BN_GF2m_mod_sqr_arr
BN_GF2m_mod_sqrt
BN_GF2m_mod_sqrt_arr
BN_GF2m_poly2arr
BN_MONT_CTX_copy
BN_MONT_CTX_free
BN_MONT_CTX_new
BN_MONT_CTX_set
BN_MONT_CTX_set_locked
BN_RECP_CTX_free
BN_RECP_CTX_new
BN_RECP_CTX_set
BN_X931_derive_prime_ex
BN_X931_generate_Xpq
BN_X931_generate_prime_ex
BN_abs_is_word
BN_add
BN_add_word
BN_asc2bn
BN_bin2bn
BN_bn2bin
BN_bn2binpad
BN_bn2dec
BN_bn2hex
BN_bn2lebinpad
BN_bn2mpi

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 464KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/lkcdll.dll
.dll windows:4 windows x86 arch:x86

7716911b0a2d6b0e170cd7143cae3569

Code Sign

ad:1c:25:00:9a:a3:a6:55:42:f3:58:1d:53:08:c4:ba:92:40:30:e6
Signer

Actual PE Digest

ad:1c:25:00:9a:a3:a6:55:42:f3:58:1d:53:08:c4:ba:92:40:30:e6

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetVolumeInformationA
GetComputerNameA
DisableThreadLibraryCalls

advapi32

GetUserNameA

msvcp60

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
??Hstd@@YA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@ABV10@0@Z
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
?max_size@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIXZ
?compare@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEHIIPBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

msvcrt

sprintf
??2@YAPAXI@Z
localtime
time
atoi
strncpy
free
malloc
memmove
__CxxFrameHandler
fclose
fread
fopen
fseek
fwrite
fgetc
fputc
_initterm
_adjust_fdiv
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
strftime

Exports

Exports

DLLLKCGetExpirationDate
DLLLKCGetItem
DLLLKCGetLastErrorMessage
DLLLKCGetLicensee
DLLLKCGetLocalLicensePair
DLLLKCGetTempRequisition
DLLLKCGetUsability
DLLLKCIsValidLicensed
DLLLKCLLGetItem
DLLLKCUpdateItem
_Java_com_kingstar_kslkc_kslkc_LKCGetExpirationDate@12
_Java_com_kingstar_kslkc_kslkc_LKCGetItem@28
_Java_com_kingstar_kslkc_kslkc_LKCGetLastErrorMessage@12
_Java_com_kingstar_kslkc_kslkc_LKCGetLicensee@20
_Java_com_kingstar_kslkc_kslkc_LKCGetLocalLicensePair@20
_Java_com_kingstar_kslkc_kslkc_LKCGetTempRequisition@16
_Java_com_kingstar_kslkc_kslkc_LKCGetUsability@12
_Java_com_kingstar_kslkc_kslkc_LKCIsValidLicensed@12
_Java_com_kingstar_kslkc_kslkc_LKCLLGetItem@28
_Java_com_kingstar_kslkc_kslkc_LKCUpdateItem@24

Sections

.text
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/msvcr120.dll
.dll windows:6 windows x86 arch:x86

aa8d086deb6960b10f8791df466a5610

Code Sign

33:00:00:00:34:24:31:40:c9:a0:c1:79:8d:00:00:00:00:00:34
Certificate

Issuer

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

27/03/2013, 20:08

Not After

27/06/2014, 20:08

Subject

CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:B8EC-30A4-7144,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

33:00:00:00:b0:11:af:0a:8b:d0:3b:9f:dd:00:01:00:00:00:b0
Certificate

Issuer

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/01/2013, 22:33

Not After

24/04/2014, 22:33

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:33:26:1a:00:00:00:00:00:31
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

31/08/2010, 22:19

Not After

31/08/2020, 22:29

Subject

CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

61:16:68:34:00:00:00:00:00:1c
Certificate

Issuer

CN=Microsoft Root Certificate Authority,0.9.2342.19200300.100.1.25=#13096d6963726f736f6674,0.9.2342.19200300.100.1.25=#1303636f6d

Not Before

03/04/2007, 12:53

Not After

03/04/2021, 13:03

Subject

CN=Microsoft Time-Stamp PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

33:00:00:00:1a:77:bb:74:b3:07:d1:16:b8:00:00:00:00:00:1a
Certificate

Issuer

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

24/09/2013, 17:41

Not After

24/12/2014, 17:41

Subject

CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

61:0e:90:d2:00:00:00:00:00:03
Certificate

Issuer

CN=Microsoft Root Certificate Authority 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Not Before

08/07/2011, 20:59

Not After

08/07/2026, 21:09

Subject

CN=Microsoft Code Signing PCA 2011,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0a:82:cf:f8:a2:0e:57:bd:cc:0a:76:cf:1e:4f:c9:43:8c:94:65:03:5e:34:db:a7:06:0b:42:ee:a6:9d:c2:88
Signer

Actual PE Digest

0a:82:cf:f8:a2:0e:57:bd:cc:0a:76:cf:1e:4f:c9:43:8c:94:65:03:5e:34:db:a7:06:0b:42:ee:a6:9d:c2:88

Digest Algorithm

sha256

PE Digest Matches

true

3f:08:90:50:77:63:e4:04:ba:19:2c:b1:94:32:e7:d0:82:51:35:78
Signer

Actual PE Digest

3f:08:90:50:77:63:e4:04:ba:19:2c:b1:94:32:e7:d0:82:51:35:78

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

msvcr120.i386.pdb

Imports

kernel32

EncodePointer
DecodePointer
RaiseException
GetLastError
ExitProcess
GetModuleHandleW
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
GetCommandLineA
GetCommandLineW
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetModuleFileNameA
SetLastError
GetCurrentThread
GetModuleFileNameW
IsProcessorFeaturePresent
GetStdHandle
WriteFile
FindClose
FindFirstFileExA
FindNextFileA
FindFirstFileExW
FindNextFileW
CloseHandle
CreateThread
ExitThread
ResumeThread
LoadLibraryExW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetDiskFreeSpaceA
GetLogicalDrives
SetErrorMode
Beep
Sleep
GetFullPathNameA
GetCurrentProcessId
GetFileAttributesExW
SetFileAttributesW
GetFullPathNameW
CreateDirectoryW
MoveFileExW
RemoveDirectoryW
GetDriveTypeW
DeleteFileW
SetEnvironmentVariableA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryW
SetEnvironmentVariableW
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
FreeLibrary
LoadLibraryExA
CreateProcessW
ReadFile
GetTempPathA
GetTempPathW
DuplicateHandle
GetCurrentProcess
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetLocalTime
LocalFileTimeToFileTime
SetFileTime
SystemTimeToFileTime
SetLocalTime
InterlockedPopEntrySList
InterlockedFlushSList
QueryDepthSList
InterlockedPushEntrySList
CreateTimerQueue
SetEvent
WaitForSingleObjectEx
UnregisterWait
TlsGetValue
SignalObjectAndWait
TlsSetValue
SetThreadPriority
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetNumaHighestNodeNumber
RegisterWaitForSingleObject
GetLogicalProcessorInformation
RtlCaptureStackBackTrace
GetThreadPriority
GetProcessAffinityMask
SetThreadAffinityMask
TlsAlloc
DeleteTimerQueueTimer
TlsFree
SwitchToThread
TryEnterCriticalSection
SetProcessAffinityMask
VirtualFree
GetVersionExW
VirtualAlloc
VirtualProtect
InitializeSListHead
ReleaseSemaphore
UnregisterWaitEx
LoadLibraryW
OutputDebugStringW
FreeLibraryAndExitThread
GetModuleHandleA
GetThreadTimes
CreateEventW
GetStringTypeW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
HeapFree
HeapAlloc
GetProcessHeap
HeapReAlloc
HeapSize
HeapQueryInformation
HeapValidate
HeapCompact
HeapWalk
GetSystemInfo
VirtualQuery
GetFileType
GetStartupInfoW
FileTimeToLocalFileTime
GetFileInformationByHandle
PeekNamedPipe
CreateFileW
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
FlushFileBuffers
CreatePipe
SetStdHandle
GetNumberOfConsoleInputEvents
PeekConsoleInputA
ReadConsoleInputA
SetConsoleMode
ReadConsoleInputW
WriteConsoleW
SetEndOfFile
LockFileEx
UnlockFileEx
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
TerminateProcess
GetTickCount
CreateSemaphoreW
SetConsoleCtrlHandler
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
OutputDebugStringA

Exports

Exports

$I10_OUTPUT
??0?$_SpinWait@$00@details@Concurrency@@QAE@P6AXXZ@Z
??0?$_SpinWait@$0A@@details@Concurrency@@QAE@P6AXXZ@Z
??0SchedulerPolicy@Concurrency@@QAA@IZZ
??0SchedulerPolicy@Concurrency@@QAE@ABV01@@Z
??0SchedulerPolicy@Concurrency@@QAE@XZ
??0_Cancellation_beacon@details@Concurrency@@QAE@XZ
??0_Condition_variable@details@Concurrency@@QAE@XZ
??0_Context@details@Concurrency@@QAE@PAVContext@2@@Z
??0_Interruption_exception@details@Concurrency@@QAE@PBD@Z
??0_Interruption_exception@details@Concurrency@@QAE@XZ
??0_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_ReaderWriterLock@details@Concurrency@@QAE@XZ
??0_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??0_ReentrantLock@details@Concurrency@@QAE@XZ
??0_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??0_Scheduler@details@Concurrency@@QAE@PAVScheduler@2@@Z
??0_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@AAV123@@Z
??0_SpinLock@details@Concurrency@@QAE@ACJ@Z
??0_StructuredTaskCollection@details@Concurrency@@QAE@PAV_CancellationTokenState@12@@Z
??0_TaskCollection@details@Concurrency@@QAE@PAV_CancellationTokenState@12@@Z
??0_TaskCollection@details@Concurrency@@QAE@XZ
??0_Timer@details@Concurrency@@IAE@I_N@Z
??0__non_rtti_object@std@@QAE@ABV01@@Z
??0__non_rtti_object@std@@QAE@PBD@Z
??0bad_cast@std@@AAE@PBQBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@PBD@Z
??0bad_target@Concurrency@@QAE@XZ
??0bad_typeid@std@@QAE@ABV01@@Z
??0bad_typeid@std@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@PBD@Z
??0context_self_unblock@Concurrency@@QAE@XZ
??0context_unblock_unbalanced@Concurrency@@QAE@PBD@Z
??0context_unblock_unbalanced@Concurrency@@QAE@XZ
??0critical_section@Concurrency@@QAE@XZ
??0default_scheduler_exists@Concurrency@@QAE@PBD@Z
??0default_scheduler_exists@Concurrency@@QAE@XZ
??0event@Concurrency@@QAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABQBDH@Z
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@XZ
??0improper_lock@Concurrency@@QAE@PBD@Z
??0improper_lock@Concurrency@@QAE@XZ
??0improper_scheduler_attach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_attach@Concurrency@@QAE@XZ
??0improper_scheduler_detach@Concurrency@@QAE@PBD@Z
??0improper_scheduler_detach@Concurrency@@QAE@XZ
??0improper_scheduler_reference@Concurrency@@QAE@PBD@Z
??0improper_scheduler_reference@Concurrency@@QAE@XZ
??0invalid_link_target@Concurrency@@QAE@PBD@Z
??0invalid_link_target@Concurrency@@QAE@XZ
??0invalid_multiple_scheduling@Concurrency@@QAE@PBD@Z
??0invalid_multiple_scheduling@Concurrency@@QAE@XZ
??0invalid_operation@Concurrency@@QAE@PBD@Z
??0invalid_operation@Concurrency@@QAE@XZ
??0invalid_oversubscribe_operation@Concurrency@@QAE@PBD@Z
??0invalid_oversubscribe_operation@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_key@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_key@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_thread_specification@Concurrency@@QAE@XZ
??0invalid_scheduler_policy_value@Concurrency@@QAE@PBD@Z
??0invalid_scheduler_policy_value@Concurrency@@QAE@XZ
??0message_not_found@Concurrency@@QAE@PBD@Z
??0message_not_found@Concurrency@@QAE@XZ
??0missing_wait@Concurrency@@QAE@PBD@Z
??0missing_wait@Concurrency@@QAE@XZ
??0nested_scheduler_missing_detach@Concurrency@@QAE@PBD@Z
??0nested_scheduler_missing_detach@Concurrency@@QAE@XZ
??0operation_timed_out@Concurrency@@QAE@PBD@Z
??0operation_timed_out@Concurrency@@QAE@XZ
??0reader_writer_lock@Concurrency@@QAE@XZ
??0scheduler_not_attached@Concurrency@@QAE@PBD@Z
??0scheduler_not_attached@Concurrency@@QAE@XZ
??0scheduler_resource_allocation_error@Concurrency@@QAE@J@Z
??0scheduler_resource_allocation_error@Concurrency@@QAE@PBDJ@Z
??0scheduler_worker_creation_error@Concurrency@@QAE@J@Z
??0scheduler_worker_creation_error@Concurrency@@QAE@PBDJ@Z
??0scoped_lock@critical_section@Concurrency@@QAE@AAV12@@Z
??0scoped_lock@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0scoped_lock_read@reader_writer_lock@Concurrency@@QAE@AAV12@@Z
??0task_canceled@Concurrency@@QAE@PBD@Z
??0task_canceled@Concurrency@@QAE@XZ
??0unsupported_os@Concurrency@@QAE@PBD@Z
??0unsupported_os@Concurrency@@QAE@XZ
??1SchedulerPolicy@Concurrency@@QAE@XZ
??1_Cancellation_beacon@details@Concurrency@@QAE@XZ
??1_Condition_variable@details@Concurrency@@QAE@XZ
??1_NonReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_ReentrantBlockingLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_NonReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_Scoped_lock@_ReentrantPPLLock@details@Concurrency@@QAE@XZ
??1_SpinLock@details@Concurrency@@QAE@XZ
??1_StructuredTaskCollection@details@Concurrency@@QAE@XZ
??1_TaskCollection@details@Concurrency@@QAE@XZ
??1_Timer@details@Concurrency@@MAE@XZ
??1__non_rtti_object@std@@UAE@XZ
??1bad_cast@std@@UAE@XZ
??1bad_typeid@std@@UAE@XZ
??1critical_section@Concurrency@@QAE@XZ
??1event@Concurrency@@QAE@XZ
??1exception@std@@UAE@XZ
??1reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock@critical_section@Concurrency@@QAE@XZ
??1scoped_lock@reader_writer_lock@Concurrency@@QAE@XZ
??1scoped_lock_read@reader_writer_lock@Concurrency@@QAE@XZ
??1type_info@@UAE@XZ
??2@YAPAXI@Z
??2@YAPAXIHPBDH@Z
??3@YAXPAX@Z
??3@YAXPAXHPBDH@Z
??4?$_SpinWait@$00@details@Concurrency@@QAEAAV012@ABV012@@Z
??4?$_SpinWait@$0A@@details@Concurrency@@QAEAAV012@ABV012@@Z
??4SchedulerPolicy@Concurrency@@QAEAAV01@ABV01@@Z
??4__non_rtti_object@std@@QAEAAV01@ABV01@@Z
??4bad_cast@std@@QAEAAV01@ABV01@@Z
??4bad_typeid@std@@QAEAAV01@ABV01@@Z
??4exception@std@@QAEAAV01@ABV01@@Z
??8type_info@@QBE_NABV0@@Z
??9type_info@@QBE_NABV0@@Z
??_7__non_rtti_object@std@@6B@
??_7bad_cast@std@@6B@
??_7bad_typeid@std@@6B@
??_7exception@std@@6B@
??_F?$_SpinWait@$00@details@Concurrency@@QAEXXZ
??_F?$_SpinWait@$0A@@details@Concurrency@@QAEXXZ
??_F_Context@details@Concurrency@@QAEXXZ
??_F_Scheduler@details@Concurrency@@QAEXXZ
??_Fbad_cast@std@@QAEXXZ
??_Fbad_typeid@std@@QAEXXZ
??_U@YAPAXI@Z
??_U@YAPAXIHPBDH@Z
??_V@YAXPAX@Z
??_V@YAXPAXHPBDH@Z
?Alloc@Concurrency@@YAPAXI@Z
?Block@Context@Concurrency@@SAXXZ
?CaptureCallstack@platform@details@Concurrency@@YAIPAPAXII@Z
?Create@CurrentScheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?Create@Scheduler@Concurrency@@SAPAV12@ABVSchedulerPolicy@2@@Z
?CreateResourceManager@Concurrency@@YAPAUIResourceManager@1@XZ
?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@AAVlocation@2@@Z
?CreateScheduleGroup@CurrentScheduler@Concurrency@@SAPAVScheduleGroup@2@XZ
?CurrentContext@Context@Concurrency@@SAPAV12@XZ
?Detach@CurrentScheduler@Concurrency@@SAXXZ
?DisableTracing@Concurrency@@YAJXZ
?EnableTracing@Concurrency@@YAJXZ
?Free@Concurrency@@YAXPAX@Z
?Get@CurrentScheduler@Concurrency@@SAPAVScheduler@2@XZ
?GetCurrentThreadId@platform@details@Concurrency@@YAJXZ
?GetExecutionContextId@Concurrency@@YAIXZ
?GetNumberOfVirtualProcessors@CurrentScheduler@Concurrency@@SAIXZ
?GetOSVersion@Concurrency@@YA?AW4OSVersion@IResourceManager@1@XZ
?GetPolicy@CurrentScheduler@Concurrency@@SA?AVSchedulerPolicy@2@XZ
?GetPolicyValue@SchedulerPolicy@Concurrency@@QBEIW4PolicyElementKey@2@@Z
?GetProcessorCount@Concurrency@@YAIXZ
?GetProcessorNodeCount@Concurrency@@YAIXZ
?GetSchedulerId@Concurrency@@YAIXZ
?GetSharedTimerQueue@details@Concurrency@@YAPAXXZ
?Id@Context@Concurrency@@SAIXZ
?Id@CurrentScheduler@Concurrency@@SAIXZ
?IsAvailableLocation@CurrentScheduler@Concurrency@@SA_NABVlocation@2@@Z
?IsCurrentTaskCollectionCanceling@Context@Concurrency@@SA_NXZ
?Log2@details@Concurrency@@YAKI@Z
?Oversubscribe@Context@Concurrency@@SAX_N@Z
?RegisterShutdownEvent@CurrentScheduler@Concurrency@@SAXPAX@Z
?ResetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXXZ
?ScheduleGroupId@Context@Concurrency@@SAIXZ
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0@Z
?ScheduleTask@CurrentScheduler@Concurrency@@SAXP6AXPAX@Z0AAVlocation@2@@Z
?SetConcurrencyLimits@SchedulerPolicy@Concurrency@@QAEXII@Z
?SetDefaultSchedulerPolicy@Scheduler@Concurrency@@SAXABVSchedulerPolicy@2@@Z
?SetPolicyValue@SchedulerPolicy@Concurrency@@QAEIW4PolicyElementKey@2@I@Z
?VirtualProcessorId@Context@Concurrency@@SAIXZ
?Yield@Context@Concurrency@@SAXXZ
?_Abort@_StructuredTaskCollection@details@Concurrency@@AAEXXZ
?_Acquire@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_NonReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_Acquire@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Acquire@_ReentrantPPLLock@details@Concurrency@@QAEXPAX@Z
?_AcquireRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_AcquireWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_Cancel@_StructuredTaskCollection@details@Concurrency@@QAEXXZ
?_Cancel@_TaskCollection@details@Concurrency@@QAEXXZ
?_CheckTaskCollection@_UnrealizedChore@details@Concurrency@@IAEXXZ
?_CleanupToken@_StructuredTaskCollection@details@Concurrency@@AAEXXZ
?_ConcRT_CoreAssert@details@Concurrency@@YAXPBD0H@Z
?_ConcRT_Trace@details@Concurrency@@YAXHPB_WZZ
?_Confirm_cancel@_Cancellation_beacon@details@Concurrency@@QAE_NXZ
?_Copy_str@exception@std@@AAEXPBD@Z
?_CurrentContext@_Context@details@Concurrency@@SA?AV123@XZ
?_Current_node@location@Concurrency@@SA?AV12@XZ
?_Destroy@_AsyncTaskCollection@details@Concurrency@@EAEXXZ
?_DoYield@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_DoYield@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_Get@_CurrentScheduler@details@Concurrency@@SA?AV_Scheduler@23@XZ
?_GetConcRTTraceInfo@Concurrency@@YAPBU_CONCRT_TRACE_INFO@details@1@XZ
?_GetConcurrency@details@Concurrency@@YAIXZ
?_GetCurrentInlineDepth@_StackGuard@details@Concurrency@@CAAAIXZ
?_GetNumberOfVirtualProcessors@_CurrentScheduler@details@Concurrency@@SAIXZ
?_GetScheduler@_Scheduler@details@Concurrency@@QAEPAVScheduler@3@XZ
?_Id@_CurrentScheduler@details@Concurrency@@SAIXZ
?_IsCanceling@_StructuredTaskCollection@details@Concurrency@@QAE_NXZ
?_IsCanceling@_TaskCollection@details@Concurrency@@QAE_NXZ
?_IsSynchronouslyBlocked@_Context@details@Concurrency@@QBE_NXZ
?_Name_base@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_Name_base_internal@type_info@@CAPBDPBV1@PAU__type_info_node@@@Z
?_NewCollection@_AsyncTaskCollection@details@Concurrency@@SAPAV123@PAV_CancellationTokenState@23@@Z
?_NumberOfSpins@?$_SpinWait@$00@details@Concurrency@@IAEKXZ
?_NumberOfSpins@?$_SpinWait@$0A@@details@Concurrency@@IAEKXZ
?_Oversubscribe@_Context@details@Concurrency@@SAX_N@Z
?_Reference@_Scheduler@details@Concurrency@@QAEIXZ
?_Release@_NonReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_NonReentrantPPLLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantBlockingLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantLock@details@Concurrency@@QAEXXZ
?_Release@_ReentrantPPLLock@details@Concurrency@@QAEXXZ
?_Release@_Scheduler@details@Concurrency@@QAEIXZ
?_ReleaseRead@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_ReleaseWrite@_ReaderWriterLock@details@Concurrency@@QAEXXZ
?_ReportUnobservedException@details@Concurrency@@YAXXZ
?_Reset@?$_SpinWait@$00@details@Concurrency@@IAEXXZ
?_Reset@?$_SpinWait@$0A@@details@Concurrency@@IAEXXZ
?_RunAndWait@_StructuredTaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_RunAndWait@_TaskCollection@details@Concurrency@@QAG?AW4_TaskCollectionStatus@23@PAV_UnrealizedChore@23@@Z
?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_Schedule@_StructuredTaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@PAVlocation@3@@Z
?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@@Z
?_Schedule@_TaskCollection@details@Concurrency@@QAEXPAV_UnrealizedChore@23@PAVlocation@3@@Z
?_ScheduleTask@_CurrentScheduler@details@Concurrency@@SAXP6AXPAX@Z0@Z
?_SetSpinCount@?$_SpinWait@$00@details@Concurrency@@QAEXI@Z
?_SetSpinCount@?$_SpinWait@$0A@@details@Concurrency@@QAEXI@Z
?_SetUnobservedExceptionHandler@details@Concurrency@@YAXP6AXXZ@Z
?_ShouldSpinAgain@?$_SpinWait@$00@details@Concurrency@@IAE_NXZ
?_ShouldSpinAgain@?$_SpinWait@$0A@@details@Concurrency@@IAE_NXZ
?_SpinOnce@?$_SpinWait@$00@details@Concurrency@@QAE_NXZ
?_SpinOnce@?$_SpinWait@$0A@@details@Concurrency@@QAE_NXZ
?_SpinYield@Context@Concurrency@@SAXXZ
?_Start@_Timer@details@Concurrency@@IAEXXZ
?_Stop@_Timer@details@Concurrency@@IAEXXZ
?_Tidy@exception@std@@AAEXXZ
?_Trace_agents@Concurrency@@YAXW4Agents_EventType@1@_JZZ
?_Trace_ppl_function@Concurrency@@YAXABU_GUID@@EW4ConcRT_EventType@1@@Z
?_TryAcquire@_NonReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantBlockingLock@details@Concurrency@@QAE_NXZ
?_TryAcquire@_ReentrantLock@details@Concurrency@@QAE_NXZ
?_TryAcquireWrite@_ReaderWriterLock@details@Concurrency@@QAE_NXZ
?_Type_info_dtor@type_info@@CAXPAV1@@Z
?_Type_info_dtor_internal@type_info@@CAXPAV1@@Z
?_UnderlyingYield@details@Concurrency@@YAXXZ
?_ValidateExecute@@YAHP6GHXZ@Z
?_ValidateRead@@YAHPBXI@Z
?_ValidateWrite@@YAHPAXI@Z
?_Value@_SpinCount@details@Concurrency@@SAIXZ
?_Yield@_Context@details@Concurrency@@SAXXZ
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrCompare@@YA_NPBX0@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrCopyException@@YAXPAXPBX1@Z
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
?__ExceptionPtrSwap@@YAXPAX0@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?_inconsistency@@YAXXZ
?_invalid_parameter@@YAXPBG00II@Z
?_is_exception_typeof@@YAHABVtype_info@@PAU_EXCEPTION_POINTERS@@@Z
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
?_open@@YAHPBDHH@Z
?_query_new_handler@@YAP6AHI@ZXZ
?_query_new_mode@@YAHXZ
?_set_new_handler@@YAP6AHI@ZH@Z
?_set_new_handler@@YAP6AHI@ZP6AHI@Z@Z
?_set_new_mode@@YAHH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZH@Z
?_set_se_translator@@YAP6AXIPAU_EXCEPTION_POINTERS@@@ZP6AXI0@Z@Z
?_sopen@@YAHPBDHHH@Z
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?_wopen@@YAHPB_WHH@Z
?_wsopen@@YAHPB_WHHH@Z
?before@type_info@@QBE_NABV1@@Z
?current@location@Concurrency@@SA?AV12@XZ
?from_numa_node@location@Concurrency@@SA?AV12@G@Z
?get_error_code@scheduler_resource_allocation_error@Concurrency@@QBEJXZ
?lock@critical_section@Concurrency@@QAEXXZ
?lock@reader_writer_lock@Concurrency@@QAEXXZ
?lock_read@reader_writer_lock@Concurrency@@QAEXXZ
?name@type_info@@QBEPBDPAU__type_info_node@@@Z
?native_handle@critical_section@Concurrency@@QAEAAV12@XZ
?notify_all@_Condition_variable@details@Concurrency@@QAEXXZ
?notify_one@_Condition_variable@details@Concurrency@@QAEXXZ
?raw_name@type_info@@QBEPBDXZ
?reset@event@Concurrency@@QAEXXZ
?set@event@Concurrency@@QAEXXZ
?set_new_handler@@YAP6AXXZP6AXXZ@Z
?set_task_execution_resources@Concurrency@@YAXGPAU_GROUP_AFFINITY@@@Z
?set_task_execution_resources@Concurrency@@YAXK@Z
?set_terminate@@YAP6AXXZH@Z
?set_terminate@@YAP6AXXZP6AXXZ@Z
?set_unexpected@@YAP6AXXZH@Z
?set_unexpected@@YAP6AXXZP6AXXZ@Z
?swprintf@@YAHPAGIPBGZZ
?swprintf@@YAHPA_WIPB_WZZ
?terminate@@YAXXZ
?try_lock@critical_section@Concurrency@@QAE_NXZ
?try_lock@reader_writer_lock@Concurrency@@QAE_NXZ
?try_lock_for@critical_section@Concurrency@@QAE_NI@Z
?try_lock_read@reader_writer_lock@Concurrency@@QAE_NXZ
?unexpected@@YAXXZ
?unlock@critical_section@Concurrency@@QAEXXZ
?unlock@reader_writer_lock@Concurrency@@QAEXXZ
?vswprintf@@YAHPA_WIPB_WPAD@Z
?wait@Concurrency@@YAXI@Z
?wait@_Condition_variable@details@Concurrency@@QAEXAAVcritical_section@3@@Z
?wait@event@Concurrency@@QAEII@Z
?wait_for@_Condition_variable@details@Concurrency@@QAE_NAAVcritical_section@3@I@Z
?wait_for_multiple@event@Concurrency@@SAIPAPAV12@I_NI@Z
?what@exception@std@@UBEPBDXZ
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIcosh
_CIexp
_CIfmod
_CIlog
_CIlog10
_CIpow
_CIsin
_CIsinh
_CIsqrt
_CItan
_CItanh
_CRT_RTC_INIT
_CRT_RTC_INITW
_Cbuild
_CreateFrameInfo
_CxxThrowException
_EH_prolog
_FCbuild
_FindAndUnlinkFrame
_Getdays
_Getmonths
_Gettnames
_HUGE
_IsExceptionObjectToBeDestroyed
_LCbuild
_NLG_Dispatch2
_NLG_Return
_NLG_Return2
_SetWinRTOutOfMemoryExceptionCallback
_Strftime
_W_Getdays
_W_Getmonths
_W_Gettnames
_Wcsftime
_XcptFilter
__AdjustPointer
__BuildCatchObject
__BuildCatchObjectHelper
__CppXcptFilter
__CxxDetectRethrow
__CxxExceptionFilter
__CxxFrameHandler
__CxxFrameHandler2
__CxxFrameHandler3
__CxxLongjmpUnwind
__CxxQueryExceptionSize
__CxxRegisterExceptionObject
__CxxUnregisterExceptionObject
__DestructExceptionObject
__FrameUnwindFilter
__GetPlatformExceptionInfo
__RTCastToVoid
__RTDynamicCast
__RTtypeid
__STRINGTOLD
__STRINGTOLD_L
__TypeMatch
___lc_codepage_func
___lc_collate_cp_func
___lc_locale_name_func
___mb_cur_max_func
___mb_cur_max_l_func
___setlc_active_func
___unguarded_readlc_active_add_func
__argc
__argv
__badioinfo
__clean_type_info_names_internal
__control87_2
__create_locale
__crtCompareStringA
__crtCompareStringEx
__crtCompareStringW
__crtCreateEventExW
__crtCreateSemaphoreExW
__crtCreateSymbolicLinkW
__crtEnumSystemLocalesEx
__crtFlsAlloc
__crtFlsFree
__crtFlsGetValue
__crtFlsSetValue
__crtGetDateFormatEx
__crtGetFileInformationByHandleEx
__crtGetLocaleInfoEx
__crtGetShowWindowMode
__crtGetTickCount64
__crtGetTimeFormatEx
__crtGetUserDefaultLocaleName
__crtInitializeCriticalSectionEx
__crtIsPackagedApp
__crtIsValidLocaleName
__crtLCMapStringA
__crtLCMapStringEx
__crtLCMapStringW
__crtSetFileInformationByHandle
__crtSetThreadStackGuarantee
__crtSetUnhandledExceptionFilter
__crtSleep
__crtTerminateProcess
__crtUnhandledException
__daylight
__dllonexit
__doserrno
__dstbias
__fpecode
__free_locale
__get_current_locale
__get_flsindex
__get_tlsindex
__getmainargs
__initenv
__iob_func
__isascii
__iscsym
__iscsymf
__iswcsym
__iswcsymf
__lconv
__lconv_init
__libm_sse2_acos
__libm_sse2_acosf
__libm_sse2_asin
__libm_sse2_asinf
__libm_sse2_atan
__libm_sse2_atan2
__libm_sse2_atanf
__libm_sse2_cos
__libm_sse2_cosf
__libm_sse2_exp
__libm_sse2_expf
__libm_sse2_log
__libm_sse2_log10
__libm_sse2_log10f
__libm_sse2_logf
__libm_sse2_pow
__libm_sse2_powf
__libm_sse2_sin
__libm_sse2_sinf
__libm_sse2_tan
__libm_sse2_tanf
__mb_cur_max
__p___argc
__p___argv
__p___initenv
__p___mb_cur_max
__p___wargv
__p___winitenv
__p__acmdln
__p__commode
__p__daylight
__p__dstbias
__p__environ
__p__fmode
__p__iob
__p__mbcasemap
__p__mbctype
__p__pctype
__p__pgmptr
__p__pwctype
__p__timezone
__p__tzname
__p__wcmdln
__p__wenviron
__p__wpgmptr
__pctype_func
__pioinfo
__pwctype_func
__pxcptinfoptrs
__report_gsfailure
__set_app_type
__setlc_active

Sections

.text
Size: 880KB - Virtual size: 880KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/pobo.exe
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Exports

Exports

@$xp$10TPBPageTab
@$xp$10TXPImgEdit
@$xp$10TXPListBox
@$xp$11TPoboTabSet
@$xp$11TXPCheckBox
@$xp$11TXPComboBox
@$xp$11TXPListView
@$xp$11TXPRichEdit
@$xp$11TXPTreeView
@$xp$12TMsgDrawGrid
@$xp$12TXPPriceEdit
@$xp$13TXPStringGrid
@$xp$13TXPTabControl
@$xp$14TPoboScrollBar
@$xp$14TXPPageControl
@$xp$14TXPPriceEditEx
@$xp$14TXPRadioButton
@$xp$15TOwnerDrawPanel
@$xp$15TXPCheckListBox
@$xp$17TXPDateTimePicker
@$xp$18TXPPushRadioButton
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$26Shdocvw_tlb@TCppWebBrowser
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$28Shdocvw_tlb@TCppShellWindows
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppShellUIHelper
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$29Shdocvw_tlb@TCppWebBrowser_V1
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$32Shdocvw_tlb@TCppInternetExplorer
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$36Shdocvw_tlb@TShellFavoritesNameSpace
@$xp$7TXPEdit
@$xp$7TXPMemo
@$xp$8TPanelEx
@$xp$9TXPButton
@$xp$9TXPEditEx
@$xp$9TXPUpDown
@@Adjtt@Finalize
@@Adjtt@Initialize
@@Alarmform@Finalize
@@Alarmform@Initialize
@@Alarmodi@Finalize
@@Alarmodi@Initialize
@@Alarmwindow@Finalize
@@Alarmwindow@Initialize
@@Arbitragecalculator@Finalize
@@Arbitragecalculator@Initialize
@@Autoexec@Finalize
@@Autoexec@Initialize
@@Bgamount@Finalize
@@Bgamount@Initialize
@@Blocktree@Finalize
@@Blocktree@Initialize
@@Bondscalculator@Finalize
@@Bondscalculator@Initialize
@@Bondsdatacenter@Finalize
@@Bondsdatacenter@Initialize
@@Calccenter@Finalize
@@Calccenter@Initialize
@@Cancelorder@Finalize
@@Cancelorder@Initialize
@@Captureform@Finalize
@@Captureform@Initialize
@@Cfmmcform@Finalize
@@Cfmmcform@Initialize
@@Changepsd@Finalize
@@Changepsd@Initialize
@@Classicorderpanelfrm@Finalize
@@Classicorderpanelfrm@Initialize
@@Clntrght@Finalize
@@Clntrght@Initialize
@@Codetablebooster@Finalize
@@Codetablebooster@Initialize
@@Colorselect@Finalize
@@Colorselect@Initialize
@@Comlineproperty@Finalize
@@Comlineproperty@Initialize
@@Commoncalculator@Finalize
@@Commoncalculator@Initialize
@@Commondatacenter@Finalize
@@Commondatacenter@Initialize
@@Configure@Finalize
@@Configure@Initialize
@@Cview@Finalize
@@Cview@Initialize
@@Cycleorderdlg@Finalize
@@Cycleorderdlg@Initialize
@@Datacenter@Finalize
@@Datacenter@Initialize
@@Datalog@Finalize
@@Datalog@Initialize
@@Datepicker@Finalize
@@Datepicker@Initialize
@@Drawline@Finalize
@@Drawline@Initialize
@@Dualcontractorderpanel@Finalize
@@Dualcontractorderpanel@Initialize
@@Dview@Finalize
@@Dview@Initialize
@@Dynform@Finalize
@@Dynform@Initialize
@@Editblock@Finalize
@@Editblock@Initialize
@@Embeddedorderpanelfrm@Finalize
@@Embeddedorderpanelfrm@Initialize
@@Execposlistform@Finalize
@@Execposlistform@Initialize
@@Export@Finalize
@@Export@Initialize
@@F10form@Finalize
@@F10form@Initialize
@@Globalerrrptdialog@Finalize
@@Globalerrrptdialog@Initialize
@@Hisinfodatacenter@Finalize
@@Hisinfodatacenter@Initialize
@@Hotkey@Finalize
@@Hotkey@Initialize
@@Indexrefline@Finalize
@@Indexrefline@Initialize
@@Inputtext@Finalize
@@Inputtext@Initialize
@@Integsort@Finalize
@@Integsort@Initialize
@@Lineconditool@Finalize
@@Lineconditool@Initialize
@@Lineproperty@Finalize
@@Lineproperty@Initialize
@@Linesettings@Finalize
@@Linesettings@Initialize
@@Linetool@Finalize
@@Linetool@Initialize
@@Longorderpanelfrm@Finalize
@@Longorderpanelfrm@Initialize
@@Luoli@Finalize
@@Luoli@Initialize
@@Mainform@Finalize
@@Mainform@Initialize
@@Manualexec@Finalize
@@Manualexec@Initialize
@@Marketreinitmgr@Finalize
@@Marketreinitmgr@Initialize
@@Marketselect@Finalize
@@Marketselect@Initialize
@@Modifybk@Finalize
@@Modifybk@Initialize
@@Modifypwd@Finalize
@@Modifypwd@Initialize
@@Mouseorderpanelfrm@Finalize
@@Mouseorderpanelfrm@Initialize
@@Mprotip@Finalize
@@Mprotip@Initialize
@@Msgdrawgrid@Finalize
@@Msgdrawgrid@Initialize
@@Msgeform@Finalize
@@Msgeform@Initialize
@@Multicontractorderpanel@Finalize

Sections

UPX0
Size: - Virtual size: 7.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 4.6MB - Virtual size: 4.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 925KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 65KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 95KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.5MB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 222KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
pobo5/system/pobo.exe.manifest
.xml
pobo5/system/priappvercfg.ini
pobo5/system/style.css
pobo5/system/t2sdk.dll
.dll windows:4 windows x86 arch:x86

e6edc63f816f9d6f654aff9fc11a430d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

ws2_32

select
WSACleanup
__WSAFDIsSet
shutdown
ioctlsocket
getsockname
WSAStartup
ntohl
htonl
WSASetLastError
send
sendto
setsockopt
connect
recv
WSAGetLastError
ntohs
gethostname
gethostbyname
inet_ntoa
recvfrom
closesocket
socket
htons
inet_addr
bind

advapi32

RegisterEventSourceA
RegQueryValueExA
RegOpenKeyExA
ReportEventA
DeregisterEventSource
RegCloseKey

msvcp60

?nothrow@std@@3Unothrow_t@1@B
??0_Lockit@std@@QAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1_Lockit@std@@QAE@XZ

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

msvcrt

fgets
fprintf
_access
_mkdir
localtime
strpbrk
strspn
??2@YAPAXI@Z
getenv
fflush
rename
_unlink
isalpha
_iob
atof
qsort
_stati64
_vsnprintf
_callnewh
__dllonexit
_onexit
_except_handler3
?terminate@@YAXXZ
_initterm
_adjust_fdiv
memmove
ftell
fseek
_stat
??1type_info@@UAE@XZ
srand
rand
_snprintf
malloc
free
realloc
strchr
_errno
printf
_ftol
_purecall
_ftime
time
atoi
memset
strncpy
fwrite
memcpy
strcmp
strcpy
strcat
sprintf
memcmp
strlen
atol
fopen
fread
fclose
__CxxFrameHandler
rewind
strncmp
strstr
isalnum
tolower
isspace
_stricmp
isprint
_getpid
_utime
wcslen
_CxxThrowException
_exit
raise
wcsstr
_wfopen
_setmode
isdigit
_strnicmp
memchr
strtoul
isxdigit
isupper
sscanf
gmtime
fputs
_getch
signal
abort
_beginthreadex

iphlpapi

GetAdaptersInfo

winmm

timeGetTime

kernel32

WideCharToMultiByte
lstrlenA
MultiByteToWideChar
DisableThreadLibraryCalls
UnlockFileEx
LockFileEx
GetCurrentThreadId
LoadLibraryA
FreeLibrary
GetProcAddress
DeleteFileA
GetVersion
WriteFile
GetFileType
GetStdHandle
ResetEvent
SetEvent
CreateEventA
WaitForSingleObject
TerminateThread
FormatMessageA
LocalFree
LeaveCriticalSection
GetCurrentProcessId
GlobalMemoryStatus
FlushConsoleInputBuffer
SetLastError
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
FindClose
FindNextFileA
FileTimeToLocalFileTime
FileTimeToDosDateTime
FindFirstFileA
GetFileAttributesA
Sleep
GetVersionExA
GetCurrentProcess
SetPriorityClass
GetLastError
CreateFileA
DeviceIoControl
CreateToolhelp32Snapshot
Module32First
Module32Next
CloseHandle
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
InterlockedDecrement
InterlockedIncrement
SystemTimeToFileTime
GetSystemTime
GetModuleHandleA
GetModuleFileNameA

ole32

CoInitializeEx
CoInitializeSecurity
CoUninitialize
CoCreateInstance
CoSetProxyBlanket

oleaut32

SysFreeString
VariantClear
VariantInit
SysAllocString

user32

GetUserObjectInformationW
GetProcessWindowStation
MessageBoxA

Exports

Exports

Encode
EncodeEx
GetCertID
GetCertValid
GetMultiNetWorkSpeed
GetPackVersion
GetVersionInfo
NewBizMessage
NewBizMessageEx
NewConfig
NewConnection
NewConnectionEx
NewESBMessage
NewESBMessageEx
NewEmptyUnPacker
NewFilter
NewPacker
NewSubscribeParam
NewUnPacker
NewUnPackerV1
t2sdk_library_end
t2sdk_library_init

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 220KB - Virtual size: 218KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/t2sdkWrapper.dll
.dll windows:5 windows x86 arch:x86

2d58b10b2e21828c0c5cbd56b0976779

Code Sign

23:a3:18:c1:da:ae:6c:2f:62:01:45:f5:59:84:96:85
Certificate

Issuer

CN=WoSign Class 3 Code Signing CA,O=WoSign CA Limited,C=CN

Not Before

01/03/2016, 08:06

Not After

01/06/2019, 08:06

Subject

CN=恒生电子股份有限公司,O=恒生电子股份有限公司,L=杭州市,ST=浙江省,C=CN,1.2.840.113549.1.9.1=#0c1768736e775f77696e6e65724068756e6473756e2e636f6d

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftKernelCodeSigning

Key Usages

KeyUsageDigitalSignature

46:bb:b3:40:fa:b9:c1:79:28:93:8c:93:da:10:86:79
Certificate

Issuer

CN=Certification Authority of WoSign,O=WoSign CA Limited,C=CN

Not Before

08/08/2009, 01:00

Not After

08/08/2024, 01:00

Subject

CN=WoSign Class 3 Code Signing CA,O=WoSign CA Limited,C=CN

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageMicrosoftCommercialCodeSigning

Key Usages

KeyUsageCertSign
KeyUsageCRLSign

03:01:9a:02:3a:ff:58:b1:6b:d6:d5:ea:e6:17:f0:66
Certificate

Issuer

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

22/10/2014, 00:00

Not After

22/10/2024, 00:00

Subject

CN=DigiCert Timestamp Responder,O=DigiCert,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

06:fd:f9:03:96:03:ad:ea:00:0a:eb:3f:27:bb:ba:1b
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

10/11/2006, 00:00

Not After

10/11/2021, 00:00

Subject

CN=DigiCert Assured ID CA-1,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageServerAuth
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
ExtKeyUsageEmailProtection
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

d9:d5:2d:f0:10:40:df:f1:e3:55:21:b9:0f:d5:6a:25:61:bf:9b:57
Signer

Actual PE Digest

d9:d5:2d:f0:10:40:df:f1:e3:55:21:b9:0f:d5:6a:25:61:bf:9b:57

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

e:\SVN配置库\TISM\trunk\SourcesEx\UFX\t2sdkWrapper\t2sdkWrapper\Release\t2sdkWrapper.pdb

Imports

t2sdk

GetVersionInfo
EncodeEx
Encode
NewConnection
GetMultiNetWorkSpeed
NewConfig
NewUnPacker
NewPacker
NewBizMessage

kernel32

CreateFileW
SetEndOfFile
CreateFileA
SetStdHandle
WriteConsoleW
CreateDirectoryA
GetLocaleInfoW
VirtualAlloc
HeapAlloc
HeapFree
WaitForSingleObject
SetEvent
GetProcessHeap
LeaveCriticalSection
EnterCriticalSection
GetLocalTime
CreateEventW
CloseHandle
GetCurrentProcessId
InitializeCriticalSection
WideCharToMultiByte
Sleep
GetModuleFileNameW
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
GetSystemTimeAsFileTime
GetLastError
ExitThread
GetCurrentThreadId
CreateThread
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
RaiseException
RtlUnwind
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCPInfo
HeapCreate
HeapDestroy
VirtualFree
GetModuleHandleA
HeapReAlloc
GetModuleHandleW
GetProcAddress
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetACP
GetOEMCP
IsValidCodePage
SetHandleCount
GetFileType
GetStartupInfoA
ReadFile
HeapSize
SetFilePointer
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
InitializeCriticalSectionAndSpinCount
LoadLibraryA
WriteConsoleA
GetConsoleOutputCP

Exports

Exports

GetWrapperMultiNetWorkSpeed
GetWrapperVersion
GetWrapperVersionInfo
NewWrapperBizMessage
NewWrapperConfig
NewWrapperConnection
NewWrapperPacker
NewWrapperUnPacker
WrapperEncode
WrapperEncodeEx

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/thostmduserapi.dll
.dll windows:6 windows x86 arch:x86

84779a9b6fdbe3c3b80686b79cd0cc32

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

iphlpapi

GetAdaptersInfo

kernel32

HeapFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetLocalTime
ReleaseMutex
WaitForSingleObject
CloseHandle
CreateMutexA
ReleaseSemaphore
CreateSemaphoreA
CreateThread
GetCurrentThreadId
Sleep
SetEnvironmentVariableA
SetEndOfFile
CreateFileW
GetStringTypeW
HeapReAlloc
LCMapStringW
CompareStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
OutputDebugStringW
SetStdHandle
EncodePointer
DecodePointer
RaiseException
RtlUnwind
GetSystemTimeAsFileTime
GetLastError
ExitProcess
GetModuleHandleExW
GetProcAddress
AreFileApisANSI
MultiByteToWideChar
WideCharToMultiByte
GetTimeZoneInformation
HeapAlloc
GetStdHandle
GetFileType
GetModuleFileNameW
WriteConsoleW
GetCommandLineA
IsProcessorFeaturePresent
HeapSize
IsDebuggerPresent
SetLastError
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
GetStartupInfoW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
LoadLibraryExW
GetProcessHeap
ReadFile
ReadConsoleW
SetFilePointerEx

wsock32

getsockname
ntohs
htonl
sendto
recvfrom
listen
bind
accept
gethostbyname
socket
setsockopt
htons
connect
WSAGetLastError
send
recv
inet_addr
getpeername
inet_ntoa
closesocket
select
__WSAFDIsSet
WSAStartup
ioctlsocket

Exports

Exports

??0CThostFtdcMdApi@@QAE@ABV0@@Z
??0CThostFtdcMdApi@@QAE@XZ
??1CThostFtdcMdApi@@IAE@XZ
??4CThostFtdcMdApi@@QAEAAV0@ABV0@@Z
??_7CThostFtdcMdApi@@6B@
?CreateFtdcMdApi@CThostFtdcMdApi@@SAPAV1@PBD_N1@Z
?GetApiVersion@CThostFtdcMdApi@@SAPBDXZ

Sections

.text
Size: 689KB - Virtual size: 689KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/thostmduserapi_se.dll
.dll windows:6 windows x86 arch:x86

3ad47dfe1e46fa593809d05180ad9fab

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

iphlpapi

GetAdaptersInfo

kernel32

GetProcessHeap
WideCharToMultiByte
GetStdHandle
GetFileType
WriteFile
GetLastError
GetModuleHandleW
GetProcAddress
MultiByteToWideChar
GetSystemTimeAsFileTime
DeleteFiber
QueryPerformanceCounter
GetCurrentProcessId
GetTickCount
GlobalMemoryStatus
ConvertFiberToThread
GetEnvironmentVariableW
GetConsoleMode
ReadConsoleA
ReadConsoleW
SetConsoleMode
SetEnvironmentVariableA
CreateFileW
HeapFree
HeapAlloc
ReadFile
GetCurrentThreadId
CreateThread
Sleep
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
WaitForSingleObject
ReleaseMutex
CloseHandle
GetStringTypeW
LCMapStringW
CompareStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
OutputDebugStringW
SetStdHandle
SetEndOfFile
SetFilePointerEx
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetLocalTime
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
TerminateProcess
GetCurrentProcess
EncodePointer
DecodePointer
RaiseException
RtlUnwind
ExitProcess
GetModuleHandleExW
AreFileApisANSI
GetTimeZoneInformation
GetModuleFileNameW
WriteConsoleW
GetCommandLineA
HeapReAlloc
SetConsoleCtrlHandler
IsDebuggerPresent
IsProcessorFeaturePresent
HeapSize
SetLastError
FlushFileBuffers
GetConsoleCP
GetStartupInfoW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount

user32

GetUserObjectInformationW
MessageBoxW
GetProcessWindowStation

advapi32

CryptCreateHash
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
CryptSetHashParam
CryptGenRandom
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
DeregisterEventSource
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam

wsock32

ntohs
htonl
sendto
recvfrom
listen
bind
gethostbyname
socket
getsockname
htons
connect
send
recv
inet_addr
getpeername
inet_ntoa
closesocket
select
__WSAFDIsSet
WSACleanup
WSAStartup
ioctlsocket
WSASetLastError
WSAGetLastError
setsockopt
accept

crypt32

CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CertDuplicateCertificateContext
CertFreeCertificateContext
CertOpenStore
CertGetCertificateContextProperty

Exports

Exports

??0CThostFtdcMdApi@@QAE@ABV0@@Z
??0CThostFtdcMdApi@@QAE@XZ
??1CThostFtdcMdApi@@IAE@XZ
??4CThostFtdcMdApi@@QAEAAV0@ABV0@@Z
??_7CThostFtdcMdApi@@6B@
?CreateFtdcMdApi@CThostFtdcMdApi@@SAPAV1@PBD_N1@Z
?GetApiVersion@CThostFtdcMdApi@@SAPBDXZ

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 360KB - Virtual size: 359KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/thosttraderapi.dll
.dll windows:6 windows x86 arch:x86

d6dc2a1f7a430eb23260418c1215a62f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

iphlpapi

GetAdaptersInfo

kernel32

CreateMutexA
ReleaseSemaphore
CreateSemaphoreA
CreateThread
GetCurrentThreadId
Sleep
SetLastError
GetLastError
GetSystemTime
SystemTimeToFileTime
GetStdHandle
GetFileType
WriteFile
GetModuleHandleA
CloseHandle
FindClose
MultiByteToWideChar
QueryPerformanceCounter
GetCurrentProcessId
GetTickCount
FreeLibrary
GlobalMemoryStatus
LoadLibraryA
FlushConsoleInputBuffer
SetEnvironmentVariableA
GetCurrentDirectoryW
GetFullPathNameW
PeekNamedPipe
GetFileInformationByHandle
WaitForSingleObject
ReleaseMutex
GetLocalTime
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
GetProcAddress
FileTimeToLocalFileTime
GetStringTypeW
LCMapStringW
CompareStringW
CreateFileW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
OutputDebugStringW
SetStdHandle
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetProcessHeap
LoadLibraryExW
SetEndOfFile
GetModuleHandleW
TlsFree
EncodePointer
DecodePointer
RaiseException
RtlUnwind
GetSystemTimeAsFileTime
ExitProcess
GetModuleHandleExW
AreFileApisANSI
WideCharToMultiByte
GetTimeZoneInformation
HeapAlloc
GetModuleFileNameW
WriteConsoleW
GetCommandLineA
IsProcessorFeaturePresent
IsDebuggerPresent
SetConsoleCtrlHandler
HeapFree
HeapReAlloc
ReadFile
GetConsoleMode
ReadConsoleInputA
SetConsoleMode
HeapSize
FlushFileBuffers
GetConsoleCP
GetStartupInfoW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount
GetCurrentProcess
TerminateProcess
TlsAlloc
TlsGetValue
TlsSetValue

user32

GetProcessWindowStation
MessageBoxA
GetUserObjectInformationW

advapi32

RegisterEventSourceA
DeregisterEventSource
ReportEventA

wsock32

ntohs
listen
bind
accept
gethostbyname
socket
setsockopt
htons
connect
WSAGetLastError
recvfrom
recv
inet_addr
getpeername
inet_ntoa
closesocket
select
__WSAFDIsSet
WSAStartup
ioctlsocket
sendto
htonl
shutdown
WSASetLastError
send
getsockname

Exports

Exports

??0CThostFtdcTraderApi@@QAE@ABV0@@Z
??0CThostFtdcTraderApi@@QAE@XZ
??1CThostFtdcTraderApi@@IAE@XZ
??4CThostFtdcTraderApi@@QAEAAV0@ABV0@@Z
??_7CThostFtdcTraderApi@@6B@
?CreateFtdcTraderApi@CThostFtdcTraderApi@@SAPAV1@PBD@Z
?GetApiVersion@CThostFtdcTraderApi@@SAPBDXZ

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/thosttraderapi_se.dll
.dll windows:6 windows x86 arch:x86

688d5ce056a5329e41b0e2a77292c870

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

iphlpapi

GetAdaptersInfo

kernel32

GetProcessHeap
CreateProcessA
GetSystemDirectoryA
GetStartupInfoA
GetVolumeInformationA
WideCharToMultiByte
GetStdHandle
GetFileType
WriteFile
GetLastError
GetModuleHandleW
GetProcAddress
MultiByteToWideChar
SwitchToFiber
DeleteFiber
CreateFiber
SetLastError
GetSystemTime
SystemTimeToFileTime
GetSystemTimeAsFileTime
ConvertFiberToThread
ConvertThreadToFiber
FindClose
FindFirstFileW
FindNextFileW
QueryPerformanceCounter
GetCurrentProcessId
GetTickCount
GlobalMemoryStatus
GetEnvironmentVariableW
GetConsoleMode
ReadConsoleA
HeapFree
SetConsoleMode
SetEnvironmentVariableA
CreateFileW
GetCurrentDirectoryW
HeapAlloc
CreatePipe
ReadFile
GetDiskFreeSpaceExA
GetCurrentThreadId
CreateThread
Sleep
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
WaitForSingleObject
ReleaseMutex
CloseHandle
GetFullPathNameW
PeekNamedPipe
GetFileInformationByHandle
FileTimeToLocalFileTime
GetStringTypeW
LCMapStringW
CompareStringW
FreeEnvironmentStringsW
SetEndOfFile
GetEnvironmentStringsW
GetModuleFileNameA
OutputDebugStringW
SetStdHandle
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetDriveTypeW
FindFirstFileExW
SetFilePointerEx
LoadLibraryExW
TlsFree
GetLocalTime
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
ReadConsoleW
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
EncodePointer
DecodePointer
RaiseException
RtlUnwind
ExitProcess
GetModuleHandleExW
AreFileApisANSI
GetTimeZoneInformation
GetModuleFileNameW
WriteConsoleW
GetCommandLineA
HeapReAlloc
SetConsoleCtrlHandler
IsDebuggerPresent
IsProcessorFeaturePresent
HeapSize
FlushFileBuffers
GetConsoleCP
GetStartupInfoW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

GetUserObjectInformationW
MessageBoxW
GetProcessWindowStation

advapi32

CryptCreateHash
RegisterEventSourceW
ReportEventW
CryptAcquireContextW
CryptReleaseContext
CryptDestroyKey
CryptSetHashParam
CryptGenRandom
CryptEnumProvidersW
CryptSignHashW
CryptDestroyHash
DeregisterEventSource
CryptDecrypt
CryptExportKey
CryptGetUserKey
CryptGetProvParam

wsock32

htonl
sendto
recvfrom
ntohs
listen
bind
accept
gethostbyname
getsockname
setsockopt
connect
WSASetLastError
send
recv
inet_addr
getpeername
inet_ntoa
closesocket
select
__WSAFDIsSet
WSACleanup
WSAStartup
ioctlsocket
WSAGetLastError
socket
htons

crypt32

CertCloseStore
CertEnumCertificatesInStore
CertFindCertificateInStore
CertDuplicateCertificateContext
CertFreeCertificateContext
CertOpenStore
CertGetCertificateContextProperty

netapi32

NetApiBufferFree
NetWkstaGetInfo

Exports

Exports

??0CThostFtdcTraderApi@@QAE@ABV0@@Z
??0CThostFtdcTraderApi@@QAE@XZ
??1CThostFtdcTraderApi@@IAE@XZ
??4CThostFtdcTraderApi@@QAEAAV0@ABV0@@Z
??_7CThostFtdcTraderApi@@6B@
?CreateFtdcTraderApi@CThostFtdcTraderApi@@SAPAV1@PBD@Z
?GetApiVersion@CThostFtdcTraderApi@@SAPBDXZ

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 404KB - Virtual size: 404KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
pobo5/system/updatecfg.ini
pobo5/system/updpriapp.bat
pobo5/system/updsvrscfg.ini
pobo5/system/ɽ.wav
pobo5/system/Э.txt
uninst.exe
.exe windows:4 windows x86 arch:x86

b76363e9cb88bf9390860da8e50999d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetShortPathNameA
GetFullPathNameA
MoveFileA
SetCurrentDirectoryA
GetFileAttributesA
SetFileAttributesA
CompareFileTime
SearchPathA
GetFileSize
GetModuleFileNameA
GetCurrentProcess
CopyFileA
ExitProcess
GetWindowsDirectoryA
GetTempPathA
Sleep
lstrcmpiA
GetVersion
SetErrorMode
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
GlobalLock
CreateThread
GetLastError
CreateDirectoryA
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrcatA
GetSystemDirectoryA
WaitForSingleObject
SetFileTime
CloseHandle
GlobalFree
lstrcmpA
ExpandEnvironmentStringsA
GetExitCodeProcess
GlobalAlloc
lstrlenA
GetCommandLineA
GetProcAddress
FindFirstFileA
FindNextFileA
DeleteFileA
SetFilePointer
ReadFile
FindClose
GetPrivateProfileStringA
WritePrivateProfileStringA
WriteFile
MulDiv
MultiByteToWideChar
LoadLibraryExA
GetModuleHandleA
FreeLibrary

user32

SetCursor
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
EndDialog
ScreenToClient
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetForegroundWindow
GetWindowLongA
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
ExitWindowsEx
SetTimer
PostQuitMessage
SetWindowLongA
SendMessageTimeoutA
LoadImageA
wsprintfA
GetDlgItem
FindWindowExA
IsWindow
SetClipboardData
EmptyClipboard
OpenClipboard
EndPaint
CreateDialogParamA
DestroyWindow
ShowWindow
SetWindowTextA

gdi32

SelectObject
SetBkMode
CreateFontIndirectA
SetTextColor
DeleteObject
GetDeviceCaps
CreateBrushIndirect
SetBkColor

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
SHFileOperationA
ShellExecuteA

advapi32

RegDeleteValueA
SetFileSecurityA
RegOpenKeyExA
RegDeleteKeyA
RegEnumValueA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegEnumKeyA

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ord17

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
CoCreateInstance

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b76363e9cb88bf9390860da8e50999d2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

advapi32

comctl32

ole32

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 108KB

.ndata Size: - Virtual size: 36KB

.rsrc Size: 28KB - Virtual size: 28KB

738dc9bb91549f627cf1953c2000e1d6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 10KB

.rsrc Size: 512B - Virtual size: 152B

.reloc Size: 1KB - Virtual size: 1KB

0bc7304e997c5a8c267fccb3a6cb5581

Code Sign

14:7d:42:92:73:a9:79:cc:6e:b7:79:93:17:f0:b8:03:ae:51:9a:e7Signer

Headers

File Characteristics

Imports

kernel32

user32

winmm

Exports

Exports

Sections

.text Size: 244KB - Virtual size: 242KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 20KB - Virtual size: 26KB

STLPORT_ Size: 4KB - Virtual size: 32B

.rsrc Size: 4KB - Virtual size: 888B

.reloc Size: 24KB - Virtual size: 22KB

259c49eec95a744dee91b0c4638d85ad

Headers

File Characteristics

Imports

vcl50.bpl

bcbie50.bpl

borlndmm

kernel32

user32

ole32

oleaut32

cc3250mt

Exports

Exports

Sections

.text Size: 19KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 8KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.idata Size: 16KB - Virtual size: 20KB

.edata Size: 1KB - Virtual size: 4KB

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 108KB

.ndata
Size: - Virtual size: 36KB

.rsrc
Size: 28KB - Virtual size: 28KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 10KB

.rsrc
Size: 512B - Virtual size: 152B

.reloc
Size: 1KB - Virtual size: 1KB

14:7d:42:92:73:a9:79:cc:6e:b7:79:93:17:f0:b8:03:ae:51:9a:e7
Signer

.text
Size: 244KB - Virtual size: 242KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 20KB - Virtual size: 26KB

STLPORT_
Size: 4KB - Virtual size: 32B

.rsrc
Size: 4KB - Virtual size: 888B

.reloc
Size: 24KB - Virtual size: 22KB

.text
Size: 19KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 8KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.idata
Size: 16KB - Virtual size: 20KB

.edata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 281KB - Virtual size: 284KB

.reloc
Size: 2KB - Virtual size: 4KB

UPX0
Size: - Virtual size: 156KB

UPX1
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 17KB - Virtual size: 20KB

.text
Size: 69KB - Virtual size: 72KB

.data
Size: 13KB - Virtual size: 16KB

.tls
Size: 512B - Virtual size: 4KB

.idata
Size: 29KB - Virtual size: 32KB

.edata
Size: 13KB - Virtual size: 16KB

.rsrc
Size: 9KB - Virtual size: 12KB

.reloc
Size: 6KB - Virtual size: 8KB

UPX0
Size: - Virtual size: 40KB

UPX1
Size: 10KB - Virtual size: 12KB

.rsrc
Size: 2KB - Virtual size: 4KB

CODE
Size: 18KB - Virtual size: 17KB

DATA
Size: 512B - Virtual size: 216B

BSS
Size: - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 402B

.reloc
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

UPX0
Size: - Virtual size: 1.3MB

UPX1
Size: 200KB - Virtual size: 204KB

.rsrc
Size: 736KB - Virtual size: 740KB

.text
Size: 527KB - Virtual size: 528KB

.data
Size: 152KB - Virtual size: 176KB

.tls
Size: 9KB - Virtual size: 12KB

.idata
Size: 5KB - Virtual size: 8KB

.edata
Size: 735KB - Virtual size: 736KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 27KB - Virtual size: 28KB

15:3e:b5:b8:f7:9e:6a:07:31:89:49:bb:06:4d:ed:13:13:e2:af:5d
Signer